Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    6.2.7
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.0.0
    5.6.0
    5.4.0
    5.2.0
    5.0.0

    config system dns-database

    config system dns-database

    Configure DNS databases.

    config system dns-database

    Description: Configure DNS databases.

    edit <name>

    set status [enable|disable]

    set domain {string}

    set allow-transfer {user}

    set type [master|slave]

    set view [shadow|public]

    set ip-master {ipv4-address-any}

    set primary-name {string}

    set contact {string}

    set ttl {integer}

    set authoritative [enable|disable]

    set forwarder {user}

    set source-ip {ipv4-address}

    config dns-entry

    Description: DNS entry.

    edit <id>

    set status [enable|disable]

    set type [A|NS|...]

    set ttl {integer}

    set preference {integer}

    set ip {ipv4-address-any}

    set ipv6 {ipv6-address}

    set hostname {string}

    set canonical-name {string}

    next

    end

    next

    end

    config system dns-database

    Parameter name

    Description

    Type

    Size

    status

    Enable/disable this DNS zone.

    option

    -

    Option

    Description

    enable

    Enable setting.

    disable

    Disable setting.

    domain

    Domain name.

    string

    Maximum length: 255

    allow-transfer

    DNS zone transfer IP address list.

    user

    Not Specified

    type

    Zone type (master to manage entries directly, slave to import entries from other zones).

    option

    -

    Option

    Description

    master

    Master DNS zone, to manage entries directly.

    slave

    Slave DNS zone, to import entries from other DNS zones.

    view

    Zone view (public to serve public clients, shadow to serve internal clients).

    option

    -

    Option

    Description

    shadow

    Shadow DNS zone to serve internal clients.

    public

    Public DNS zone to serve public clients.

    ip-master

    IP address of master DNS server. Entries in this master DNS server and imported into the DNS zone.

    ipv4-address-any

    Not Specified

    primary-name

    Domain name of the default DNS server for this zone.

    string

    Maximum length: 255

    contact

    Email address of the administrator for this zone. You can specify only the username (e.g. admin) or full email address (e.g. admin@test.com) When using a simple username, the domain of the email will be this zone.

    string

    Maximum length: 255

    ttl

    Default time-to-live value for the entries of this DNS zone (0 - 2147483647 sec, default = 86400).

    integer

    Minimum value: 0 Maximum value: 2147483647

    authoritative

    Enable/disable authoritative zone.

    option

    -

    Option

    Description

    enable

    Enable authoritative zone.

    disable

    Disable authoritative zone.

    forwarder

    DNS zone forwarder IP address list.

    user

    Not Specified

    source-ip

    Source IP for forwarding to DNS server.

    ipv4-address

    Not Specified

    config dns-entry

    Parameter name

    Description

    Type

    Size

    status

    Enable/disable resource record status.

    option

    -

    Option

    Description

    enable

    Enable resource record status.

    disable

    Disable resource record status.

    type

    Resource record type.

    option

    -

    Option

    Description

    A

    Host type.

    NS

    Name server type.

    CNAME

    Canonical name type.

    MX

    Mail exchange type.

    AAAA

    IPv6 host type.

    PTR

    Pointer type.

    PTR_V6

    IPv6 pointer type.

    ttl

    Time-to-live for this entry (0 to 2147483647 sec, default = 0).

    integer

    Minimum value: 0 Maximum value: 2147483647

    preference

    DNS entry preference, 0 is the highest preference (0 - 65535, default = 10)

    integer

    Minimum value: 0 Maximum value: 65535

    ip

    IPv4 address of the host.

    ipv4-address-any

    Not Specified

    ipv6

    IPv6 address of the host.

    ipv6-address

    Not Specified

    hostname

    Name of the host.

    string

    Maximum length: 255

    canonical-name

    Canonical name of the host.

    string

    Maximum length: 255
    Previous
    Next

    config system dns-database

    config system dns-database

    Configure DNS databases.

    config system dns-database

    Description: Configure DNS databases.

    edit <name>

    set status [enable|disable]

    set domain {string}

    set allow-transfer {user}

    set type [master|slave]

    set view [shadow|public]

    set ip-master {ipv4-address-any}

    set primary-name {string}

    set contact {string}

    set ttl {integer}

    set authoritative [enable|disable]

    set forwarder {user}

    set source-ip {ipv4-address}

    config dns-entry

    Description: DNS entry.

    edit <id>

    set status [enable|disable]

    set type [A|NS|...]

    set ttl {integer}

    set preference {integer}

    set ip {ipv4-address-any}

    set ipv6 {ipv6-address}

    set hostname {string}

    set canonical-name {string}

    next

    end

    next

    end

    config system dns-database

    Parameter name

    Description

    Type

    Size

    status

    Enable/disable this DNS zone.

    option

    -

    Option

    Description

    enable

    Enable setting.

    disable

    Disable setting.

    domain

    Domain name.

    string

    Maximum length: 255

    allow-transfer

    DNS zone transfer IP address list.

    user

    Not Specified

    type

    Zone type (master to manage entries directly, slave to import entries from other zones).

    option

    -

    Option

    Description

    master

    Master DNS zone, to manage entries directly.

    slave

    Slave DNS zone, to import entries from other DNS zones.

    view

    Zone view (public to serve public clients, shadow to serve internal clients).

    option

    -

    Option

    Description

    shadow

    Shadow DNS zone to serve internal clients.

    public

    Public DNS zone to serve public clients.

    ip-master

    IP address of master DNS server. Entries in this master DNS server and imported into the DNS zone.

    ipv4-address-any

    Not Specified

    primary-name

    Domain name of the default DNS server for this zone.

    string

    Maximum length: 255

    contact

    Email address of the administrator for this zone. You can specify only the username (e.g. admin) or full email address (e.g. admin@test.com) When using a simple username, the domain of the email will be this zone.

    string

    Maximum length: 255

    ttl

    Default time-to-live value for the entries of this DNS zone (0 - 2147483647 sec, default = 86400).

    integer

    Minimum value: 0 Maximum value: 2147483647

    authoritative

    Enable/disable authoritative zone.

    option

    -

    Option

    Description

    enable

    Enable authoritative zone.

    disable

    Disable authoritative zone.

    forwarder

    DNS zone forwarder IP address list.

    user

    Not Specified

    source-ip

    Source IP for forwarding to DNS server.

    ipv4-address

    Not Specified

    config dns-entry

    Parameter name

    Description

    Type

    Size

    status

    Enable/disable resource record status.

    option

    -

    Option

    Description

    enable

    Enable resource record status.

    disable

    Disable resource record status.

    type

    Resource record type.

    option

    -

    Option

    Description

    A

    Host type.

    NS

    Name server type.

    CNAME

    Canonical name type.

    MX

    Mail exchange type.

    AAAA

    IPv6 host type.

    PTR

    Pointer type.

    PTR_V6

    IPv6 pointer type.

    ttl

    Time-to-live for this entry (0 to 2147483647 sec, default = 0).

    integer

    Minimum value: 0 Maximum value: 2147483647

    preference

    DNS entry preference, 0 is the highest preference (0 - 65535, default = 10)

    integer

    Minimum value: 0 Maximum value: 65535

    ip

    IPv4 address of the host.

    ipv4-address-any

    Not Specified

    ipv6

    IPv6 address of the host.

    ipv6-address

    Not Specified

    hostname

    Name of the host.

    string

    Maximum length: 255

    canonical-name

    Canonical name of the host.

    string

    Maximum length: 255
    Previous
    Next