Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
cramirez
Staff
Staff

Created on ‎03-04-2016 07:10 PM Edited on ‎04-23-2025 09:33 PM By Community Manager

Article Id 190559

Technical Note: How to use FortiGuard DDNS when FortiGate WAN interface has a private IP address

Description

 

This article describes how to use FortiGuard DDNS to resolve to the public IP of the FortiGate when the 'wan' interface is configured with a private IP. The goal is to get management access to a FortiGate using a domain name instead of IP address. 
 
Scope
 
FortiGate.


Solution

 
  1. Configure a private IP address on the 'wan' interface.  Note that the FortiGate must be behind a NAT device using a public IP address.
  2. Go to System -> DNS and configure the following:
    1. Make sure 'Use FortiGuard Servers' is selected.
    2. Select an interface (wan1 in this example).
    3. Select 'Use Public IP Address'.
    4. Select the 'Unique Location', for example, 'fgtest'.
  3. Apply.

cramirez_FD38213_tn_FD38213.jpg

 

To configure in the CLI: 

 

config system ddns
    edit 1
        set ddns-server FortiGuardDDNS
        set ddns-domain fgtest.fortiddns.com
        set use-public-ip enable
        set monitor-interface wan1
    next
end


After it has been configured, 'fgtest.fortiddns.com' should resolve to the public IP address of the FortiGate.


Related article:
Troubleshooting Tip: DDNS Private IP Issue

Labels:
13602
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.