Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    6.0.0
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.0.0
    5.6.0
    5.4.0
    5.2.0
    5.0.0

    system dns-database

    system dns-database

    Introduction.

    config system dns-database
    edit {name}
    # Configure DNS databases.
        set name {string}   Zone name. size[35]
        set status {enable | disable}   Enable/disable this DNS zone.
        set domain {string}   Domain name. size[255]
        set allow-transfer {string}   DNS zone transfer IP address list.
        set type {master | slave}   Zone type (master to manage entries directly, slave to import entries from other zones).
                master  Master DNS zone, to manage entries directly.
                slave   Slave DNS zone, to import entries from other DNS zones.
        set view {shadow | public}   Zone view (public to serve public clients, shadow to serve internal clients).
                shadow  Shadow DNS zone to serve internal clients.
                public  Public DNS zone to serve public clients.
        set ip-master {ipv4 address any}   IP address of master DNS server. Entries in this master DNS server and imported into the DNS zone.
        set primary-name {string}   Domain name of the default DNS server for this zone. size[255]
        set contact {string}   Email address of the administrator for this zone.
		You can specify only the username (e.g. admin) or full email address (e.g. admin@test.com) 
		When using a simple username, the domain of the email will be this zone. size[255]
        set ttl {integer}   Default time-to-live value for the entries of this DNS zone (0 - 2147483647 sec, default = 86400). range[0-2147483647]
        set authoritative {enable | disable}   Enable/disable authoritative zone.
        set forwarder {string}   DNS zone forwarder IP address list.
        set source-ip {ipv4 address}   Source IP for forwarding to DNS server.
        config dns-entry
            edit {id}
            # DNS entry.
                set id {integer}   DNS entry ID. range[0-4294967295]
                set status {enable | disable}   Enable/disable resource record status.
                set type {option}   Resource record type.
                        A       Host type.
                        NS      Name server type.
                        CNAME   Canonical name type.
                        MX      Mail exchange type.
                        AAAA    IPv6 host type.
                        PTR     Pointer type.
                        PTR_V6  IPv6 pointer type.
                set ttl {integer}   Time-to-live for this entry (0 to 2147483647 sec, default = 0). range[0-2147483647]
                set preference {integer}   DNS entry preference, 0 is the highest preference (0 - 65535, default = 10) range[0-65535]
                set ip {ipv4 address any}   IPv4 address of the host.
                set ipv6 {ipv6 address}   IPv6 address of the host.
                set hostname {string}   Name of the host. size[255]
                set canonical-name {string}   Canonical name of the host. size[255]
            next
    next
end
    Previous
    Next

    system dns-database

    system dns-database

    Introduction.

    config system dns-database
    edit {name}
    # Configure DNS databases.
        set name {string}   Zone name. size[35]
        set status {enable | disable}   Enable/disable this DNS zone.
        set domain {string}   Domain name. size[255]
        set allow-transfer {string}   DNS zone transfer IP address list.
        set type {master | slave}   Zone type (master to manage entries directly, slave to import entries from other zones).
                master  Master DNS zone, to manage entries directly.
                slave   Slave DNS zone, to import entries from other DNS zones.
        set view {shadow | public}   Zone view (public to serve public clients, shadow to serve internal clients).
                shadow  Shadow DNS zone to serve internal clients.
                public  Public DNS zone to serve public clients.
        set ip-master {ipv4 address any}   IP address of master DNS server. Entries in this master DNS server and imported into the DNS zone.
        set primary-name {string}   Domain name of the default DNS server for this zone. size[255]
        set contact {string}   Email address of the administrator for this zone.
		You can specify only the username (e.g. admin) or full email address (e.g. admin@test.com) 
		When using a simple username, the domain of the email will be this zone. size[255]
        set ttl {integer}   Default time-to-live value for the entries of this DNS zone (0 - 2147483647 sec, default = 86400). range[0-2147483647]
        set authoritative {enable | disable}   Enable/disable authoritative zone.
        set forwarder {string}   DNS zone forwarder IP address list.
        set source-ip {ipv4 address}   Source IP for forwarding to DNS server.
        config dns-entry
            edit {id}
            # DNS entry.
                set id {integer}   DNS entry ID. range[0-4294967295]
                set status {enable | disable}   Enable/disable resource record status.
                set type {option}   Resource record type.
                        A       Host type.
                        NS      Name server type.
                        CNAME   Canonical name type.
                        MX      Mail exchange type.
                        AAAA    IPv6 host type.
                        PTR     Pointer type.
                        PTR_V6  IPv6 pointer type.
                set ttl {integer}   Time-to-live for this entry (0 to 2147483647 sec, default = 0). range[0-2147483647]
                set preference {integer}   DNS entry preference, 0 is the highest preference (0 - 65535, default = 10) range[0-65535]
                set ip {ipv4 address any}   IPv4 address of the host.
                set ipv6 {ipv6 address}   IPv6 address of the host.
                set hostname {string}   Name of the host. size[255]
                set canonical-name {string}   Canonical name of the host. size[255]
            next
    next
end
    Previous
    Next