Skip to main content
wleo
Staff
wleo
Staff
October 20, 2022

Technical Tip: DNS Service in Non-Recursive Mode with Public DNS Database

  • October 20, 2022
  • 0 replies
  • 1312 views

Description

 

This article describes about DNS service proxy mode Non-Recursive on FortiExtender.

When DNS service is on Non-Recursive mode, FortiExtender interface firstly query local public DNS database. If no naming resolution in local public DNS database, the DNS query will return response without naming resolution. 

 

Scope

 

FortiExtender DNS proxy service in Non-Recursive mode.

 

Solution

 

1) On FortiExtender go to Networking - > DNS Servers.

 

wleo_0-1666292344216.png


2) Create DNS Service with Non-Recursive mode.

 

wleo_1-1666292787815.png


3) On CLI, check DNS proxy service.

 

wleo_2-1666292823463.png

 

4) On CLI, check DNS server in DNS server pool.

 

wleo_3-1666292847120.png


5) On client, send DNS request. If the request has naming resolution in public DNS database.

 

wleo_4-1666292924192.png

 

6) On FortiExtender, DNS log message displays the processing on Non-Recursive mode.

 

wleo_6-1666293180871.png

 

7) On client, send DNS request. If the request has NO naming resolution in public DNS database, DNS query will return empty (No Naming Resolution Response).

 

wleo_7-1666293269380.png

 

8) On FortiExtender, Debug log message shows the sequence of DNS processing in Non-Recursive mode.

 

wleo_8-1666293336096.png

    Terms & ConditionsAccessibility statement