Cisco ASA 5505 Configuration Manual page 280
Asa 5500 series
Hide thumbs
Also See for ASA 5505:
- Getting started manual (168 pages) ,
- Administrator's manual (118 pages) ,
- Hardware installation manual (82 pages)
Table of Contents
Advertisement
Configuring the DNS Server
Configuring the DNS Server
Some adaptive security appliance features require use of a DNS server to access external servers by
domain name; for example, the Botnet Traffic Filter feature requires a DNS server to access the dynamic
database server and to resolve entries in the static database. Other features, such as the ping or
traceroute command, let you enter a name that you want to PING for traceroute, and the adaptive
security appliance can resolve the name by communicating with a DNS server. Many SSL VPN and
certificate commands also support names.
The adaptive security appliance has limited support for using the DNS server, depending on the feature.
Note
For these feature, to resolve the server name to an IP address you must enter the IP address manually by
adding the server name in the Configuration > Firewall > Objects >
For information about dynamic DNS, see the
Prerequisites
Make sure you configure the appropriate routing for any interface on which you enable DNS domain
lookup so you can reach the DNS server. See the
more information about routing.
Detailed Steps
Step 1
In the ASDM main application window, choose Configuration > Device Management > DNS > DNS
Client.
Step 2
In the DNS Setup area, choose one of the following options:
•
•
Click Add to display the Add DNS Server Group dialog box.
Step 3
Specify up to six addresses to which DNS requests can be forwarded. The adaptive security appliance
Step 4
tries each DNS server in order until it receives a response.
Note
Enter the name of each configured DNS server group.
Step 5
Enter the IP addresses of the configured servers, and click Add to include them in the server group. To
Step 6
remove a configured server from the group, click Delete.
To change the sequence of the configured servers, click Move Up or Move Down.
Step 7
In the Other Settings area, enter the number of seconds to wait before trying the next DNS server in the
Step 8
list, between 1 and 30 seconds. The default is 2 seconds. Each time the adaptive security appliance retries
the list of servers, the timeout time doubles.
Enter the number of seconds to wait before trying the next DNS server in the group.
Step 9
Cisco ASA 5500 Series Configuration Guide using ASDM
9-10
Configure one DNS server group.
Configure multiple DNS server groups.
You must first enable DNS on at least one interface before you can add a DNS server. The DNS
Lookup area shows the DNS status of an interface. A False setting indicates that DNS is
disabled. A True setting indicates that DNS is enabled.
Chapter 9
Network Object/Groups
"Configuring Dynamic DNS" section on page
"Information About Routing" section on page 18-1
Configuring Basic Settings
pane.
11-2.
for
OL-20339-01
- Quick Links:
- Starting Asdm
- Downloading the Asdm Launcher
Hide quick links:
Advertisement
Chapters
Table of Contents
