May 2022
new
improved
fixed
Web App
Blocked Page
Usage Graph
A usage summary is now available on the billing page that displays your organization’s estimated monthly user count and explains how the metric is calculated. The new data is meant to inform and assist with license count adjustments.
RCM4atjbsD9qGQCehdKHVhwC
Block Page Improvements
  • Long awaited and highly requested; the domain categories now appear on the block page. The feature works for threat categories, content categories, and extra categories like Advertising and Trackers. The behavior is consistent for standard, custom, and global block pages.
  • Text update to clarify how to proceed for the end user: “If you feel you’ve reached this page in error
    or need to request access
    , please click here to notify the network administrator."
Bug Fixes
  • Fixed Allow/Block List bug that allowed the same domain on both lists
  • Corrected a display bug on the IP/Hostname section of Deployments->Sites configuration
UI Support for Unlimited Sites
improved
Web App
As the top level of our hierarchy, a site plays an important role in managing your deployments and policies. Large organizations often have thousands of sites and our web UI truncated the list at 1,500 but is now unlimited.
Subscribe to this Changelog
new
Our changelog now has an RSS feed. If you are reading this you may want to subscribe. Just add our feed URL
https://dnsfilter.canny.io/api/changelog/feed.rss
to your favorite reader.
Screen Shot 2022-05-04 at 4
Query Log Search Enhancement
improved
Web App
Query log now supports searching subdomains to refine your investigations.
Example: searching for
content-autofill.googleapis.com
was previously not allowed in query log and resulted in an error. Now you can refine the search results to the desired subdomain.
image
new
Android Roaming Client
SSO
Policy Configuration
SSO is here!
DNSFilter now supports Single Sign-On (SSO).
Improve security and streamline workflows. Enforce SSO to the DNSF dashboard with third-party identity providers (IdPs), such as Okta and Azure AD, as well as others that support OIDC.
Screen Shot 2022-04-14 at 11
Getting started with SSO is quick and easy.
Simply configure an Identity Provider in the
Single Sign-On
section of the
Settings
page of your DNSFilter account. Once the values have been entered correctly, SSO can be turned on.
Screen Shot 2022-04-14 at 11
Check out our Knowledgebase for a detailed breakdown of how you can set up SSO for your account.
You can now add notes to the “Allow” and “Block” lists
Customers can now add a note using the new notes column or in the pop-up dialog when adding a domain to the
Allow
or
Block
list in the Policy settings on the dashboard.
Use this feature to remember why the domain was added to your lists. Notes can also be used as a reference in internal support tickets to help improve workflows.
Screen Shot 2022-04-14 at 11
Screen Shot 2022-04-14 at 11
Other
Local Domains support for Android:
Android has now joined the list of Operating systems (Windows and iOS) where local domains are supported.
February 2022
new
Windows Roaming Client
2FA Enforcement and User 2FA Reset
Owners and Administrators can now enforce Two-Factor Authentication (2FA) across their entire organization.
Additionally, owners and admins can reset 2FA for their dashboard users directly in the app.
2FA
Zapier Improvements for MSPs
New improvements have been made to the DNSFilter+Zapier integration to enable MSPs to create Zaps that can be customized for each sub-organization. An
External ID
field has now been added to the
Sites
and
Organization
profile settings to enable integration with external services.
Using this identifier, MSPs can now associate a DNSFilter sub-org/site to its existing location within a selected integration through Zapier.
Windows Roaming Client Logs
Users of the Windows roaming client can now collect logs locally. These logs can be found in a new folder we have introduced in the default installation location of the DNSFilter agent. Windows RC logs have a 7-day lifecycle thus, logs older than 7 days are automatically deleted. Because our roaming clients auto-update, customers who currently have the Windows RC installed should see logs within 2 days of the release.
Bug Fixes
  • Prior to this release, when the Windows RC encountered a specific error, the Windows RC restarted, giving the end-user the impression the application had crashed. This release corrects this issue.
  • Prior to this release, when an
    MSP
    navigated to the
    MSP org
    (not the dashboard), selected
    Deployments
    ,
    Sites
    , and edited the Block Page for multiple sites, the Policy would default to
    No Policy
    . This has been corrected.
  • Prior to this release when an
    MSP
    navigated to a sub-organization's
    Deployments
    ,
    Sites
    ,
    Global Policies
    had the
    globe icon
    , and
    Global Pages
    did not. This has been corrected.
AppAware Is here
new
Introducing AppAware, DNSFilter’s one-click application blocking feature.
Blocking an application that you need to disallow on your network can be quite difficult because of the numerous, sometimes thousands of, domains behind its operations. AppAware removes this complexity by providing you with all the necessary associated domains required to block the application.
With just one click, you can block an application and all its associated domains with AppAware.
one-click-app-blocking
Block an entire category of applications
AppAware also gives you the ability to block a group of applications. Related applications are grouped into categories in AppAware, and by clicking the
Block All Apps
button on a “category” tab, you can block all the applications listed in that category.
Now you can block remote desktop applications that can be compromised and exploited by attackers to gain access to your network and messaging applications to boost productivity amongst your team or block.
block-categories
Block Ecosystem Applications
One interesting category on AppAware is
Ecosystem Applications
. This category allows you to block all applications in a provider’s ecosystem. Let’s assume you want to block all Microsoft-based applications, you can simply turn on the block button on
Microsoft
in the
Ecosystem Applications
category.
ecosystem-apps-updated
This automatically blocks applications like Microsoft Teams, Office 365, Microsoft Azure, and any other application or service provided by Microsoft.
Customized Reporting
Because we know how important it is for you to monitor the operations of AppAware, we added a dedicated reporting page just for AppAware (
Reporting
->
AppAware
).
Here, you can view your traffic reports by application, sort them using AppAware categories, and block an application directly from the reports page by adding it to an existing policy.
The AppAware reporting page provides clear visibility into applications being utilized on your network. You can click individual applications to get more granular with the traffic details for that application. This can provide useful information in tracking unusual traffic coming through an application and help administrators apply security controls where necessary.
appaware-reporting
New AppAware column in Query logs
You can also monitor attempts at running blocked applications in your query logs under the newly added AppAware column.
query-logs
December 2021
new
Windows Roaming Client
Domain Report Tool Improvements for MSPs
MSPs can now view the domains in a global policy applied to a site in the
Allow List
and
Block List
of the Domain Report tool.
domain-report-tool
New label for queries allowed by SafeSearch
Queries on search engines and Youtube that are allowed by the
Safesearch
option when applied to a policy are now marked with the
Allowed - SafeSearch
label in the query log. This distinguishes them from other queries allowed by other policy settings. It also helps users identify why some queries are allowed even when they have not been explicitly configured to be allowed on the network.
safesearch-label
Other News
  • MSP admins that have access to multiple organizations can now see the name or email address of a user that makes a policy change displayed in the
    Performed By
    column of the Policy Audit Log.
  • Connectivity issues experienced on Windows roaming clients when switching from home/personal to business/office networks have been fixed
  • Errors experienced by read-only users when logging into the dashboard have been fixed
November 2021
new
Alphabetization of Columns for Sync Tools
If you use our Active Directory integration via our Sync Tool feature, items within a collection column are now automatically alphabetized making it easier for users to navigate. This improvement will also enable enhanced column sorting for collections.
column-sorting
Relays/LAN subnets now show the correct block page
Customers who apply a block page to their Relays/LAN subnets will now see the correct block page they applied. Prior to this release, customers who had block pages applied to Relays/LAN subnets page would receive the block page selected for a site.
Collections are now displayed on the assigned policy tab
The status column for a policy now displays all collections assigned to that policy. You can also find this information by going to
Deployments
Collections
.
New Nodes Added to our Anycast Servers
As we continue to boost our global coverage, we have added new nodes to our anycast servers (Istanbul Turkey, and Sydney).
October 2021
new
Improvements to Sync Tool
DNSFilter users now have the following capabilities for their AD instance:
  • Sync Dynamic Groups from On-premise AD and Azure AD
  • Sync Built-in groups from On-premise AD
  • Sync Security Groups from Azure AD
We also updated the User interface of the Sync tool and improved overall performance for a better user experience, including a New Sync Logs tab.
sync-logs-tab
The functions labeled in the above diagram are described below:
  1. The
    Sync Logs
    tab
  2. Sync message filtering options. Customers can filter messages using
    full
    ,
    errors only
    , and
    errors and warnings only
    filter options.
  3. The
    Refresh Logs
    button. When engaged, it reloads the logs screen displaying the most recent logs
  4. The
    Open folder with logs
    button. When engaged, it opens the window explorer with the file where logs exist on the customer’s local machine.
  5. Viewing modes. This allows you to switch between a single and dual page view.
  6. Search function. Enables you to perform a free text search on the log messages
  7. Zoom slider for improving your viewing experience
A Progress bar to indicate the progress of an ongoing synchronization
sync-tool-progressbar
Other Sync Tool improvements:
  • Automatic Full Sync
  • Up to 500,000 users supported
Insights default to 24 hours
Up until now, the viewable data on
Insights
defaulted to
Yesterday
. This option prevented trial users and users who are still in the process of deploying DNSFilter from seeing data until a full day had passed.
With this new release, the
Insights
page data now defaults to
Last 24 hours
enabling users to view data as soon as they begin resolving traffic through DNSFIlter.
last24hours
Load More