Name: Fortinet FortiGate Series
Brand: Fortinet
Rating: 4 (1 reviews)

To Next Page

To Previous Page

What’s new in FortiOS Version 4.0 MR1 Integral basic DNS server

FortiGate Version 4.0 MR1 Administration Guide

01-410-89802-20090903 73

http://docs.fortinet.com/ • Feedback

set preference <preference_value>

set status {enable | disable}

set ttl <entry_ttl_value>

set type {A|AAAA|MX|NS|CNAME}

end

Enabling DNS on an interface

In earlier versions of FortiOS, relay of DNS queries could be configured on models

numbered 100 or lower for the Internal or DMZ interfaces. In FortiOS Version 4.0 MR1,

DNS relay can be configured on any FortiGate model for any network interface.

In the web-based manager, configure DNS relay as follows.

1 Go to System > Network > Interface.

2 Select the Edit icon for the interface that you want to configure.

3 Select DNS Query and then choose one of the following options:

•

recursive — Look up domain name in local database. If the entry is not found, relay

the request to the DNS server configured for the FortiGate unit.

•

non-recursive — Look up domain name in local database. Do not relay the request

to the DNS server configured for the FortiGate unit.

Variable Description Default

edit <zone-string> Enter the DNS zone name. This is significant

only on the FortiGate unit itself.

No default.

set domain <domain> Set the domain name here -- when matching

lookup, use this zone name to match DNS

queries

No default.

set ttl <int> Set the packet time-to-live in seconds. Range

0 to 2 147 483 647.

86400

config dns-entry Variables

edit <entry-id>

canonical-name

<canonical_name_string>

Enter the canonical name of the host. This is

available if type is CNAME.

Null

hostname

<hostname_string>

Enter the name of the host. Null

ip <ip_address> Enter the IP address (IPv4) of the host. This is

available if type is A.

0.0.0.0

ipv6 <ipv6_address> Enter the IP address (IPv6) of the host. This is

available if type is AAAA.

preference

<preference_value>

Enter the preference level. 0 is the highest

preference. This is available if type is MX.

status

{enable | disable}

Enable the DNS entry. enable

ttl <entry_ttl_value> Optionally, override the zone time-to-live value.

Range 0 to 2 147 483 647 seconds.

Set to 0 to use zone ttl value.

type

{A|AAAA|MX|NS|CNAME}

A — IPv4 host

AAAA — IPv6 host

CNAME — alias

MX — mail server

NS — name server

Brand	Fortinet
Model	FortiGate Series
Category	Firewall
Language	English

Fortinet FortiGate Series Administration Guide

Table of Contents

Other manuals for Fortinet FortiGate Series

Questions and Answers:

Fortinet FortiGate Series Specifications

Related product manuals