Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.2.1
Copy Link

Configure DNS databases.

  config system dns-database
      Description: Configure DNS databases.
      edit <name>
          set status [enable|disable]
          set domain {string}
          set allow-transfer {user}
          set type [master|slave]
          set view [shadow|public]
          set ip-master {ipv4-address-any}
          set primary-name {string}
          set contact {string}
          set ttl {integer}
          set authoritative [enable|disable]
          set forwarder {user}
          set source-ip {ipv4-address}
          config dns-entry
              Description: DNS entry.
              edit <id>
                  set status [enable|disable]
                  set type [A|NS|...]
                  set ttl {integer}
                  set preference {integer}
                  set ip {ipv4-address-any}
                  set ipv6 {ipv6-address}
                  set hostname {string}
                  set canonical-name {string}
              next
          end
      next
  end

config system dns-database

Parameter Name Description Type Size
status Enable/disable this DNS zone.
enable: Enable setting.
disable: Disable setting.
option -
domain Domain name. string Maximum length: 255
allow-transfer DNS zone transfer IP address list. user Not Specified
type Zone type (master to manage entries directly, slave to import entries from other zones).
master: Master DNS zone, to manage entries directly.
slave: Slave DNS zone, to import entries from other DNS zones.
option -
view Zone view (public to serve public clients, shadow to serve internal clients).
shadow: Shadow DNS zone to serve internal clients.
public: Public DNS zone to serve public clients.
option -
ip-master IP address of master DNS server. Entries in this master DNS server and imported into the DNS zone. ipv4-address-any Not Specified
primary-name Domain name of the default DNS server for this zone. string Maximum length: 255
contact Email address of the administrator for this zone.
    You can specify only the username (e.g. admin) or full email address (e.g. admin@test.com) 
    When using a simple username, the domain of the email will be this zone. |string |Maximum length: 255

| ttl |Default time-to-live value for the entries of this DNS zone (0 - 2147483647 sec, default = 86400). |integer |Minimum value: 0 Maximum value: 2147483647 | authoritative |Enable/disable authoritative zone.
enable: Enable authoritative zone.
disable: Disable authoritative zone.
|option |- | forwarder |DNS zone forwarder IP address list. |user |Not Specified | source-ip |Source IP for forwarding to DNS server. |ipv4-address |Not Specified

config dns-entry

Parameter Name Description Type Size
status Enable/disable resource record status.
enable: Enable resource record status.
disable: Disable resource record status.
option -
type Resource record type.
A: Host type.
NS: Name server type.
CNAME: Canonical name type.
MX: Mail exchange type.
AAAA: IPv6 host type.
PTR: Pointer type.
PTR_V6: IPv6 pointer type.
option -
ttl Time-to-live for this entry (0 to 2147483647 sec, default = 0). integer Minimum value: 0 Maximum value: 2147483647
preference DNS entry preference, 0 is the highest preference (0 - 65535, default = 10) integer Minimum value: 0 Maximum value: 65535
ip IPv4 address of the host. ipv4-address-any Not Specified
ipv6 IPv6 address of the host. ipv6-address Not Specified
hostname Name of the host. string Maximum length: 255
canonical-name Canonical name of the host. string Maximum length: 255

Configure DNS databases.

  config system dns-database
      Description: Configure DNS databases.
      edit <name>
          set status [enable|disable]
          set domain {string}
          set allow-transfer {user}
          set type [master|slave]
          set view [shadow|public]
          set ip-master {ipv4-address-any}
          set primary-name {string}
          set contact {string}
          set ttl {integer}
          set authoritative [enable|disable]
          set forwarder {user}
          set source-ip {ipv4-address}
          config dns-entry
              Description: DNS entry.
              edit <id>
                  set status [enable|disable]
                  set type [A|NS|...]
                  set ttl {integer}
                  set preference {integer}
                  set ip {ipv4-address-any}
                  set ipv6 {ipv6-address}
                  set hostname {string}
                  set canonical-name {string}
              next
          end
      next
  end

config system dns-database

Parameter Name Description Type Size
status Enable/disable this DNS zone.
enable: Enable setting.
disable: Disable setting.
option -
domain Domain name. string Maximum length: 255
allow-transfer DNS zone transfer IP address list. user Not Specified
type Zone type (master to manage entries directly, slave to import entries from other zones).
master: Master DNS zone, to manage entries directly.
slave: Slave DNS zone, to import entries from other DNS zones.
option -
view Zone view (public to serve public clients, shadow to serve internal clients).
shadow: Shadow DNS zone to serve internal clients.
public: Public DNS zone to serve public clients.
option -
ip-master IP address of master DNS server. Entries in this master DNS server and imported into the DNS zone. ipv4-address-any Not Specified
primary-name Domain name of the default DNS server for this zone. string Maximum length: 255
contact Email address of the administrator for this zone.
    You can specify only the username (e.g. admin) or full email address (e.g. admin@test.com) 
    When using a simple username, the domain of the email will be this zone. |string |Maximum length: 255

| ttl |Default time-to-live value for the entries of this DNS zone (0 - 2147483647 sec, default = 86400). |integer |Minimum value: 0 Maximum value: 2147483647 | authoritative |Enable/disable authoritative zone.
enable: Enable authoritative zone.
disable: Disable authoritative zone.
|option |- | forwarder |DNS zone forwarder IP address list. |user |Not Specified | source-ip |Source IP for forwarding to DNS server. |ipv4-address |Not Specified

config dns-entry

Parameter Name Description Type Size
status Enable/disable resource record status.
enable: Enable resource record status.
disable: Disable resource record status.
option -
type Resource record type.
A: Host type.
NS: Name server type.
CNAME: Canonical name type.
MX: Mail exchange type.
AAAA: IPv6 host type.
PTR: Pointer type.
PTR_V6: IPv6 pointer type.
option -
ttl Time-to-live for this entry (0 to 2147483647 sec, default = 0). integer Minimum value: 0 Maximum value: 2147483647
preference DNS entry preference, 0 is the highest preference (0 - 65535, default = 10) integer Minimum value: 0 Maximum value: 65535
ip IPv4 address of the host. ipv4-address-any Not Specified
ipv6 IPv6 address of the host. ipv6-address Not Specified
hostname Name of the host. string Maximum length: 255
canonical-name Canonical name of the host. string Maximum length: 255