Fortinet white logo
Fortinet white logo

Handbook

Configuring remote DNS servers

Configuring remote DNS servers

The remote server configuration is used to create a list of DNS forwarders. DNS forwarders are commonly used when you do not want the local DNS server to connect to Internet DNS servers. For example, if the local DNS server is behind a firewall and you do not want to allow DNS through that firewall, you implement DNS forwarding to a remote server that is deployed in a DMZ or similar network region that can contact Internet DNS servers.

Before you begin:

  • You must have a good understanding of DNS and knowledge of the remote DNS servers that can be used to communicate with Internet domain servers.
  • You must have Read-Write permission for Global Load Balance settings.

After you have configured remote DNS servers, you can select them in DNS zone and DNS policy configurations.

To configure a remote server:
  1. Go to Global Load Balance > Zone Tools.
  2. Click the Remote DNS Server tab.
  3. Click Create New to display the configuration editor.
  4. Complete the configuration and add members as described in Remote DNS server configuration.

Remote DNS server configuration

Settings Guidelines

Name

Configuration name. Valid characters are A-Z, a-z, 0-9, _, and -. No spaces. You reference this name in the zone configuration (if you use forwarders).

Note: After you initially save the configuration, you cannot edit the name.

Member

Address Type

  • IPv4
  • IPv6

Address

IP address of the remote DNS server.

Port

Port number the remote server uses for DNS. The default is 53.

Configuring remote DNS servers

Configuring remote DNS servers

The remote server configuration is used to create a list of DNS forwarders. DNS forwarders are commonly used when you do not want the local DNS server to connect to Internet DNS servers. For example, if the local DNS server is behind a firewall and you do not want to allow DNS through that firewall, you implement DNS forwarding to a remote server that is deployed in a DMZ or similar network region that can contact Internet DNS servers.

Before you begin:

  • You must have a good understanding of DNS and knowledge of the remote DNS servers that can be used to communicate with Internet domain servers.
  • You must have Read-Write permission for Global Load Balance settings.

After you have configured remote DNS servers, you can select them in DNS zone and DNS policy configurations.

To configure a remote server:
  1. Go to Global Load Balance > Zone Tools.
  2. Click the Remote DNS Server tab.
  3. Click Create New to display the configuration editor.
  4. Complete the configuration and add members as described in Remote DNS server configuration.

Remote DNS server configuration

Settings Guidelines

Name

Configuration name. Valid characters are A-Z, a-z, 0-9, _, and -. No spaces. You reference this name in the zone configuration (if you use forwarders).

Note: After you initially save the configuration, you cannot edit the name.

Member

Address Type

  • IPv4
  • IPv6

Address

IP address of the remote DNS server.

Port

Port number the remote server uses for DNS. The default is 53.