Step 1 — Locate Your DNS Configuration
Identify which device on your network manages public DNS server addresses. This is typically your router, default gateway, or an internal DNS server that provides DHCP addresses.
Call a Specialist Today! 800-886-5369
Cisco Umbrella DNS-Layer Security
Stop Threats at the DNS Layer, Before Connections Are Made
Umbrella's recursive DNS services route your network's internet traffic through Cisco's global security cloud — blocking malicious domains, phishing sites, and command-and-control callbacks before any connection is established.
The Fastest Way to Improve Your Security Posture
DNS-layer security is the earliest point in the attack chain where you can block a threat. Before malware downloads, before a phishing page loads, before a C2 callback completes — Umbrella's recursive DNS resolvers check every request against Cisco's threat intelligence and block anything malicious. No agents required, no hardware to install. Change your DNS servers and you're protected in minutes.
Umbrella DNS Resolvers
Simple Configuration, Immediate Protection
Point your network's DNS settings to Umbrella's resolvers and all internet requests will be routed through Cisco's security cloud. Both IPv4 and IPv6 are supported.
IPv4 Addresses
208.67.222.222
208.67.220.220
IPv6 Addresses
2620:119:35::35
2620:119:53::53
If your router requires a third or fourth DNS server, use 208.67.220.222 and 208.67.222.220 for IPv4, or 2620:119:35::35 and 2620:119:53::53 for IPv6.
How to Point Your Network to Cisco Umbrella
Getting started takes four steps. You only need admin access to your router, DNS server, or firewall to complete the configuration.
Step 2 — Log In With Admin Credentials
Access the device using administrator credentials and navigate to the DNS server settings. Note your current DNS server addresses before making any changes — you may need them as a fallback.
Step 3 — Update DNS to Umbrella Resolvers
Replace your existing DNS server addresses with Umbrella's IPv4 addresses (208.67.222.222 and 208.67.220.220) or IPv6 addresses. Use both addresses in the set — never the same IP twice. Save your changes and flush your DNS cache.
Step 4 — Verify Your Configuration
Browse to welcome.umbrella.com in your browser. If you see the Umbrella welcome page, your DNS is correctly pointing to Cisco Umbrella and security policies are active.
What DNS-Layer Security Protects You Against
Umbrella's DNS resolvers check every request against Cisco Talos intelligence — blocking a broad range of threats before any traffic reaches your network.
Phishing & Credential Theft
Block access to phishing domains before users click malicious links — protecting credentials and reducing the risk of account compromise across your organization.
Malware & Ransomware
Prevent malware downloads and ransomware delivery by blocking domains and IPs associated with known malware campaigns, exploit kits, and malicious file distribution.
Command-and-Control Callbacks
Stop compromised devices from communicating with attacker infrastructure. Blocking C2 callbacks prevents lateral movement and limits damage from endpoints that are already infected.
The Next Evolution
Cisco Umbrella Is Evolving to Cisco Secure Access
Building on Cisco Umbrella’s proven security with more than 30,000 customers globally, Cisco Secure Access delivers an intuitive user experience, simplified IT management, and powerful new capabilities — for the same price.
Explore Cisco Secure AccessStart Blocking Threats at the DNS Layer
Our Cisco-certified team can help you deploy Umbrella DNS security quickly and select the right package for your organization's needs — from basic DNS protection to a full cloud security service.
- Protection active in minutes — no hardware required
- Covers users on and off the corporate network
- Threat intelligence powered by Cisco Talos
- Response from a certified Cisco specialist within one business day