Internal DNS
Internal DNS is the DNS server built in FortiWAN used to manage your domain for internal users. Internal DNS resolve domain name for DNS requests coming from LAN or DMZ subnets. FortiWAN’s Internal DNS is recursive DNS, which allows users to resolve other people’s domains. The DNS servers set in System > Network Setting > DNS Server will be asked by Internal DNS while it recursively resolve an unknown domain (See “Set DNS server to FortiWAN”). In case that all the set DNS servers are not available or the DNS server is not configured, Internal DNS will ask the root domain name server for resolving the domain. Allocate the Internal DNS to users in LAN and DMZ subnets by manually set the DNS server on their computers to the gateways, which are LAN ports or DMZ ports. It is unable to automatically allocate FortiWAN’s internal DNS to users by FortiWAN’s DHCP. An user in LAN or DMZ subnet need to manually configure the DNS server on its computer to the gateway it connects to for using FortiWAN’s Internal DNS. Activate DNS function by configuring fields below:
Global Settings: IPv4 / IPv6 PTR Record
| Enable Internal DNS | Turn on/off internal DNS server. |
Internal DNS
| IPv4 PTR Record | l | TTL: Specifies the amount of time other DNS servers and applications are allowed to cache the record. |
| l | IPv4 Address: Enter the reverse lookup IPv4 address. | |
| l | Host Name: Enter the corresponding FQDN for the reverse IP. | |
| IPv6 PTR Record | l | TTL: Specifies the amount of time other DNS servers and applications are allowed to cache the record. |
| l | IPv6 Address: Enter the reverse lookup IPv6 address. | |
| l | Host Name: Enter the corresponding FQDN for the reverse IP. |
Domain Settings
| Domain Name | Enter domain names for the internal DNS. Press “+” to add more domains. | |
| TTL | Assign DNS query response time. | |
| Responsible Mail | Enter domain administrator’s email. | |
| Primary Name Server | Enter primary server’s name. | |
| IPv4 Address | Query IPv4 address. It can be: IPv4 single address, range, subnet, or predefined IPv4 group. | |
| IPv6 Address | Query IPv6 address. It can be: IPv6 single address, range, subnet, or predefined IPv6 group. |
NS Record
| Name Server | Enter server name’s prefix. For example: if a server’s FQDN is “nsl.abc.com”, enter “nsl”. | |
| IPv4 Address | Enter the IPv4 address corresponding to the name server. | |
| IPv6 Address | Enter the IPv6 address corresponding to the name server. |
A/AAAA Record
| Host Name | Enter the prefix name of the primary workstation. For example: if the name is “www.abc.com”, enter “www”. | |
| IP Address | Enter the IPv4/IPv6 address of the primary workstation. |
Internal DNS
CName Record
| Alias | Enter the alias of the domain name. For example, if “www1.abc.com” is the alias of “www.abc.com”, (domain name), enter “www1” in this field. |
| Target | Enter the real domain name. For example, if “www1.abc.com” is the alias of “www.abc.com”, enter “www”. |
SRV Record
| Service | Specify the symbolic name prepended with an underscore. (e.g. _http, _ftp or _imap) |
| Protocol | Specify the protocol name prepended with an underscore. (e.g. _tcp or _udp) |
| Priority | Specify the relative priority of this service (0 – 65535). Lowest is highest priority. |
| Weight | Specify the weight of this service. Weight is used when more than one service has the same priority. The highest is most frequently delivered. Leave is blank or zero if no weight should be applied. |
| Port | Specify the port number of the service. |
| Target | The hostname of the machine providing this service. |
| TTL | TTL (Time To Live) specifies the amount of time that SRV Record is allowed to be cached. |
MX Record
| Host Name | Enter the prefix of the mail server’s domain name. For example, if domain name is “mail.abc.com”, enter “mail”. |
| Priority | Enter the priority of the mail servers. The higher the priority is, the lower the number is. |
| Mail Server | Enter the IP address of the mail server. |
External Subdomain Record
| Subdomain Name | Enter the name of an external subdomain. To add an additional subdomain, press +. |
| NS Record | l | Name server – Enter the prefix of domain name (e.g. if the FQDN of the host is “ns1.abc.com”, enter “ns1”) |
| l | IPv4 address – Enter the corresponding IPv4 address of the domain name. | |
| l | IPv6 address – Enter the corresponding IPv6 address of the domain name. |
Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!