Enabling Dns On An Interface - Fortinet FortiGate Series Administration Manual
Hide thumbs
Also See for FortiGate Series:
- Administration manual (60 pages) ,
- Install manual (51 pages) ,
- Quick start manual (14 pages)
Table of Contents
Advertisement
What's new in FortiOS Version 4.0 MR1
Enabling DNS on an interface
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903
http://docs.fortinet.com/
•
Feedback
set
preference <preference_value>
set
status {enable | disable}
set
ttl <entry_ttl_value>
set
type {A|AAAA|MX|NS|CNAME}
end
end
Variable
edit <zone-string>
set domain <domain>
set ttl <int>
config dns-entry Variables
edit <entry-id>
canonical-name
<canonical_name_string>
hostname
<hostname_string>
ip <ip_address>
ipv6 <ipv6_address>
preference
<preference_value>
status
{enable | disable}
ttl <entry_ttl_value>
type
{A|AAAA|MX|NS|CNAME}
In earlier versions of FortiOS, relay of DNS queries could be configured on models
numbered 100 or lower for the Internal or DMZ interfaces. In FortiOS Version 4.0 MR1,
DNS relay can be configured on any FortiGate model for any network interface.
In the web-based manager, configure DNS relay as follows.
1 Go to System > Network > Interface.
2 Select the Edit icon for the interface that you want to configure.
3 Select DNS Query and then choose one of the following options:
•
— Look up domain name in local database. If the entry is not found, relay
recursive
the request to the DNS server configured for the FortiGate unit.
•
— Look up domain name in local database. Do not relay the request
non-recursive
to the DNS server configured for the FortiGate unit.
Description
Enter the DNS zone name. This is significant
only on the FortiGate unit itself.
Set the domain name here -- when matching
lookup, use this zone name to match DNS
queries
Set the packet time-to-live in seconds. Range
0 to 2 147 483 647.
Enter the canonical name of the host. This is
available if type is CNAME.
Enter the name of the host.
Enter the IP address (IPv4) of the host. This is
available if type is A.
Enter the IP address (IPv6) of the host. This is
available if type is AAAA.
Enter the preference level. 0 is the highest
preference. This is available if type is MX.
Enable the DNS entry.
Optionally, override the zone time-to-live value.
Range 0 to 2 147 483 647 seconds.
Set to 0 to use zone ttl value.
A — IPv4 host
AAAA — IPv6 host
CNAME — alias
MX — mail server
NS — name server
Integral basic DNS server
Default
No default.
No default.
86400
Null
Null
0.0.0.0
::
10
enable
0
A
73
Advertisement
Table of Contents
