Description | This article describes how to configure a DNS health check monitor for improved server load balancing, ensuring seamless network performance. |
Scope | Any supported version of FortiOS. |
Solution |
By utilizing DNS health checks, which include TCP or UDP DNS probes, efficient server distribution and high availability can be achieved. Below are the steps for setting up the monitor with different IPs and domain names for demonstration purposes.
To optimize server load balancing using DNS health checks, follow these steps.
Configure the DNS health check monitor:
Begin by creating a new DNS health check monitor in the firewall settings.
config firewall ldb-monitor edit "custom-dns-monitor" set type dns set interval 45 set port 53 set src-ip 10.2.2.5 set dns-request-domain <Fully qualified domain name to resolve for the DNS probe> set dns-match-ip 10.2.2.100 next end
Link the DNS health check monitor to a virtual server for effective load balancing.
config firewall vip edit "load-balanced-virtual-server" set type server-load-balance set extip 10.1.1.1 set extintf "wan1" set server-type ip set monitor "custom-dns-monitor" set ldb-method round-robin config realservers edit 1 set ip 10.2.2.100 next edit 2 set ip 10.2.2.101 next end
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.