Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sjoshi
Staff
Staff

Created on ‎02-10-2025 12:43 AM

Article Id 375382

Technical Tip: FortiSASE Split-DNS: Why It Works on Windows but Not on Mobile Devices

Description

 

This article describes why FortiSASE Split-DNS is supported only on Windows PCs and not on Android mobile devices

 

Scope

 

FortiSASE.

 

Solution

 

There are scenarios where FortiSASE users need to use a private DNS server to resolve certain internal domains.
Refer: Split DNS Use Case 

 

To accommodate these scenarios, FortiSASE allows the configuration of Split DNS through Split DNS Rules.

This mechanism enables the use of an internal DNS server exclusively for resolving hostnames associated with designated internal domains while relying on public DNS servers for other queries.

 

Split DNS operates seamlessly on Windows machines, ensuring internal domains are resolved through the designated internal DNS server. However, on Android devices, all domain resolution requests are routed to public DNS servers, preventing Split DNS rules from taking effect.

 

This limitation arises because Split DNS Rules are not supported in the Android version of FortiClient.

 

Product integration details can be referred to from the below link: FortiSASE product integration and support 

173
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.