Information About Cisco Umbrella WLAN
The Cisco Umbrella WLAN provides a cloud-delivered network security service at the Domain Name System (DNS) level, with automatic detection of both known and emergent threats.
This feature allows you to block sites that host malware, bot networks, and phishing before they actually become malicious.
Cisco Umbrella WLAN provides the following:
-
Policy configuration per user group at a single point.
-
Policy configuration per network, group, user, device, or IP address.
The following is the policy priority order:
-
Local policy
-
AP group
-
WLAN
-
-
Visual security activity dashboard in real time with aggregated reports.
-
Schedule and send reports through email.
-
Support up to 60 content categories, with a provision to add custom allowed list and blocked list entries.
-
Supports custom parameter-type Umbrella profiles. One Global profile and 15 custom profiles are supported.
-
Although IPv6 is supported, device registration will always be over IPv4. There is no support of device registration over IPv6.
-
The communication from device to the Umbrella Cloud can be done over IPv6 also.
-
In the Flexconnect mode, DNS handling takes place in the AP instead of the controller. Multiple profiles are supported in the Flex mode.
This feature does not work in the following scenarios:
-
If an application or host use an IP address directly, instead of using DNS to query domain names.
-
If a client is connected to a web proxy and does not send a DNS query to resolve the server address.