The OpenDNS Hardware Integrations Developer Hub

Welcome to the OpenDNS Hardware Integrations developer hub. You'll find comprehensive guides and documentation to help you start working with OpenDNS Hardware Integrations as quickly as possible, as well as support if you get stuck. Let's jump right in!

Get Started    

Cisco Secure Firewall

Cisco Secure Firewall supports DNS integration with Cisco Umbrella. This integration enables the firewall to redirect DNS queries to Umbrella and allows Umbrella to apply DNS-based security policies.

Table of Contents


  • Cisco Secure Firewall Management Center (FMC) running version 7.2 or above.
  • FMC-managed Cisco Firepower Threat Defense (FTD) firewall running version 6.6 or above.
  • FTD able to resolve and connect to over port 443 for initial registration.
  • FTD access over TCP and UDP on port 53 (DNS) to and—the Cisco Umbrella public DNS resolvers.
  • The Umbrella Digicert CA (registration server certificate) installed on the FTD devices. The certificate needs to be trusted for purposes of 'SSL Server' validation which is a non-default option in FMC.
  • FMC Base license with ‘export-control’ functionality allowed.
  • The FMC needs to be able to resolve for policy configuration


  • Rollback of Umbrella configuration is not supported.

Configure the Umbrella Connection

To configure the Umbrella Connection, refer to the Cisco Secure Firewall Management Center Device Configuration Guide.

Create and Manage Umbrella DNS Policies

To create and manage Umbrella DNS policies, refer to the Cisco Secure Firewall Management Center Device Configuration Guide.

Cisco DNA Center < Cisco Secure Firewall

Updated 6 months ago

Cisco Secure Firewall

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.