Fortinet black logo

Handbook

Configuring DNS

Copy Link
Copy Doc ID 7b437c33-fcc7-11ec-bb32-fa163e15d75b:762568
Download PDF

Configuring DNS

The system must be able to contact DNS servers to resolve IP addresses and fully qualified domain names.

Before you begin:

  • You must know the IP addresses of the DNS servers used in your network.
  • Your Internet service provider (ISP) might supply IP addresses of DNS servers, or you might want to use the IP addresses of your own DNS servers. You must provide unicast, non-local addresses for your DNS servers. Local host and broadcast addresses are not accepted.
  • Incorrect DNS settings or unreliable DNS connectivity can cause issues with other features, such as FortiGuard services and NTP system time.
  • You must have Read-Write permission for System settings.
To configure DNS:
  1. Go to System > Network > DNS.
  2. Complete the configuration as described in the table below.
  3. Save the configuration.

DNS configuration page

DNS configuration guidelines

Settings Guidelines
Primary DNS Server IPv4/IPv6 address of the primary DNS server. For best performance, use a DNS server on your local network.
Secondary DNS Server IPv4/IPv6 address of the secondary DNS server for your local network.

CLI commands:

config system dns

set primary <ipv4/ipv6 address>

set secondary <ipv4/ipv6 address>

end

To verify DNS:

execute traceroute <server_fqdn>

where <server_fqdn> is a domain name such as www.example.com.

Configuring DNS

The system must be able to contact DNS servers to resolve IP addresses and fully qualified domain names.

Before you begin:

  • You must know the IP addresses of the DNS servers used in your network.
  • Your Internet service provider (ISP) might supply IP addresses of DNS servers, or you might want to use the IP addresses of your own DNS servers. You must provide unicast, non-local addresses for your DNS servers. Local host and broadcast addresses are not accepted.
  • Incorrect DNS settings or unreliable DNS connectivity can cause issues with other features, such as FortiGuard services and NTP system time.
  • You must have Read-Write permission for System settings.
To configure DNS:
  1. Go to System > Network > DNS.
  2. Complete the configuration as described in the table below.
  3. Save the configuration.

DNS configuration page

DNS configuration guidelines

Settings Guidelines
Primary DNS Server IPv4/IPv6 address of the primary DNS server. For best performance, use a DNS server on your local network.
Secondary DNS Server IPv4/IPv6 address of the secondary DNS server for your local network.

CLI commands:

config system dns

set primary <ipv4/ipv6 address>

set secondary <ipv4/ipv6 address>

end

To verify DNS:

execute traceroute <server_fqdn>

where <server_fqdn> is a domain name such as www.example.com.