Technical Tip: How to specify outgoing interface for local DNS traffic

Description

This article explains how to specify the outgoing interface for local DNS traffic.

Scope

FortiGate v6.2.4 and onwards.

Solution

From v6.2.4 onwards, it is possible to specify the outgoing interface for local DNS traffic under DNS configuration.

Use the following command.

config system dns
    set interface-select-method specify
    set interface <interface_name>
end

To remove the DNS interface and use the default:

config system dns
    unset interface-select-method
end

It can be changed through GUI as well to a specific interface or SD-WAN. With the help of the below article, it can be changed:

Change/specify the outgoing interface for... - Fortinet Community