Help
FortiExtender
FortiExtender offers wireless connectivity for nearly any operational network.
wleo
Staff
Staff

Created on ‎10-20-2022 02:01 PM

Article Id 227388

Technical Tip: DNS Service in Non-Recursive Mode with Public DNS Database

Description

 

This article describes about DNS service proxy mode Non-Recursive on FortiExtender.

When DNS service is on Non-Recursive mode, FortiExtender interface firstly query local public DNS database. If no naming resolution in local public DNS database, the DNS query will return response without naming resolution. 

 

Scope

 

FortiExtender DNS proxy service in Non-Recursive mode.

 

Solution

 

1) On FortiExtender go to Networking - > DNS Servers.

 

wleo_0-1666292344216.png


2) Create DNS Service with Non-Recursive mode.

 

wleo_1-1666292787815.png


3) On CLI, check DNS proxy service.

 

wleo_2-1666292823463.png

 

4) On CLI, check DNS server in DNS server pool.

 

wleo_3-1666292847120.png


5) On client, send DNS request. If the request has naming resolution in public DNS database.

 

wleo_4-1666292924192.png

 

6) On FortiExtender, DNS log message displays the processing on Non-Recursive mode.

 

wleo_6-1666293180871.png

 

7) On client, send DNS request. If the request has NO naming resolution in public DNS database, DNS query will return empty (No Naming Resolution Response).

 

wleo_7-1666293269380.png

 

8) On FortiExtender, Debug log message shows the sequence of DNS processing in Non-Recursive mode.

 

wleo_8-1666293336096.png

Labels:
953
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.