Applies To: DNSWatch in WatchGuard Cloud
This feature is only available to participants in the WatchGuard Cloud Beta program.
References to DNSWatch in this topic relate to DNSWatch in WatchGuard Cloud. To learn about the legacy DNSWatch UI, go to About WatchGuard DNSWatch in Fireware Help.
DNSWatch in WatchGuard Cloud is a subscription service available with the Total Security Suite that you can use to filter content and protect your network, devices, and users from malicious domains. DNSWatch monitors DNS requests regardless of connection type, protocol, or port. When a user tries to visit a malicious or filtered web domain, a block page appears in the browser.
Before you can enable the DNSWatch feature and configure it on your Firebox, your Firebox must be added to WatchGuard Cloud, allocated, and have the DNSWatch subscription service enabled in the feature key. For more information, go to Quick Start — Set Up DNSWatch in WatchGuard Cloud.
When your Firebox receives a DNS query on a protected network, it uses DNSWatch as the DNS resolver. If the request is to a domain on the Global Domain Feed or in your DNSWatch configuration, then DNSWatch returns a block page instead of the requested content. If the domain is not blocked by your DNSWatch configuration or the Global Domain Feed, DNSWatch returns the requested content to the user.