Point your DNS to Lumu’s DNS servers to start illuminating threats

Point your DNS to Lumu

To start taking advantage of Lumu Gateways, you need to configure your DNS resolver device to point all DNS requests to Lumu's IP addresses, substituting the automatic DNS servers provided by your internet service provider (ISP).

Once you have pointed your DNS to Lumu, all requests to resolve a hostname on the internet will be processed by Lumu against its proprietary intelligence including machine learning and artificial intelligence models to identify if your network is “talking” with adversarial infrastructure.
Enterprise perimeter pointing DNS to LumuEnterprise perimeter pointing DNS to Lumu

Add a Public Gateway in the Lumu Portal 

Remember to first register your public IP address or group of IPs as a Gateway for your company at the Lumu Portal before pointing your DNS to Lumu. 

Configuring Your DNS

We recommend doing this procedure on your edge DNS equipment , typically a router, DNS, or DHCP server in your company. Typically, the device that provides an internal non-routable IP address (DHCP) or the device that serves as your default gateway is also where you configure public DNS servers. Most often this will be a DNS server or a router—this might be your DSL router or cable modem if that is the only router in your network.

Remember to first register your public IP address or group of IPs as a gateway for your company at the Lumu Portal before configuring your DNS.

Before you change your DNS settings to use Lumu Gateways’, be sure to record the current DNS server addresses. It's important that you keep this data for backup purposes—just in case you need to revert to them at a later date.

Some ISPs hard-code their DNS servers into the equipment they provide. If you are using such a device, you will not be able to configure it to use Lumu. Instead, you can configure each one of your devices (desktops, servers, etc).

The process for changing your DNS settings varies according to the operating system (OS) and versions (Windows, Mac, or Linux) or the device (desktop, DNS server, router, or mobile device). For authoritative information, please consult the vendor documentation. We have created the following guides to help you with this configuration:

        • Related Articles

        • Set Lumu as primary network DNS Resolver on Virtual Appliances

          The Lumu Virtual Appliance (VA) offers a seamless way to integrate the network metadata of your entire enterprise into the Lumu platform. You can easily deploy and set up a Lumu Virtual appliance to collect DNS network metadata through the Virtual ...
        • Using Lumu Public Gateways as Primary DNS Resolvers

          With Lumu Public Gateways you can associate part of the traffic originating from your organization using Lumu public IP addresses as DNS resolvers while illuminating threats, attacks, and adversaries coming from your network. This document will help ...
        • Validate your DNS Settings

          After you have configured your DNS traffic to be routed through Lumu, check that your DNS connections are working as expected. Please note that this procedure will only produce valid results when setting up Lumu Gateways. When you make changes to DNS ...
        • Collect Firewall Metadata with Lumu VA and Check Point

          The Lumu Virtual Appliance (VA) offers the option to create Collectors, a seamless way to integrate the network metadata of your entire enterprise into the Lumu cloud with the lowest impact on the network operation. In cases where attacks avoid ...
        • Configure DNS in Windows 10

          Setting up DNS forwarding on a Windows 10 device is the configuration suggested for testing purposes. We recommend you configure your DNS server or your router to take the most advantage of Lumu Continuous Compromise Assessment on your entire ...