Skip to main content
jfernandz
jfernandz
New Member
June 21, 2021
Question

Domain Name resolution locally

  • June 21, 2021
  • 2 replies
  • 3203 views

Hi everyone, 

 

I'm trying to setting up the internal DNS server in FortiGate, so I'm following this article, however my hosts can't still resolve the domain that I'm trying to configure. This is my config for system dns-database and system dns-server

 

config system dns-database

    edit "PAS"

        set domain "pas-maintenance.com"
        set authoritative disable
        config dns-entry
            edit 1
                set hostname "@"
                set ip 10.101.0.103
            next
         end
     next
end

config system dns-server

    edit "wan1"

    next

    edit "internal1"

    next

end

 

I'm connected to an AP in the internal5 interface, however the laptop I'm connected with, cannot resolve `pas-maintenance.com` as `10.101.0.103`, why is this? 

    2 replies

    pavankr5
    Staff
    pavankr5
    Staff
    October 3, 2023

    Hello,

     

    follow below configuration for DNS forwarding on a FortiGate firewall

    config system dns-database
    edit "PAS"
    set domain "pas-maintenance.com"
    set authoritative disable
    config dns-entry
    edit 1
    set hostname "@"
    set ip 10.101.0.103
    next
    end
    next
    end

    config system dns-server
    edit "wan1"
    set primary 8.8.8.8 // Google's public DNS server
    next
    edit "internal1"
    set primary 10.101.0.103 // Your internal DNS server
    next
    end

    hope this helps if you still face issue update us.

     

    Thanks

    Pavan




    mle2802
    Staff
    mle2802
    Staff
    October 4, 2023

    Hi @jfernandz,

    Can you try to add internal5 as DNS server on FortiGate and use that interface IP as DNS server for wifi client. Make sure have a secondary DNS server for external resolve.

    Regards,
    Minh

    Terms & ConditionsAccessibility statement