Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nithincs
Staff
Staff

Created on ‎05-08-2020 03:23 AM Edited on ‎11-21-2024 11:04 PM By Community Manager

Article Id 191032

Technical Tip: How to add secondary DNS server in dialup IPsec VPN setting

Description

 

This article describes that from the GUI, configuring a single DNS server IP is possible.

 

Scope

 

FortiGate.

 

Single DNS configuration while using the IPSEC wizard tool.Single DNS configuration while using the IPSEC wizard tool.


DNS configuration in existing IPSEC tunnel.DNS configuration in existing IPSEC tunnel.

 

 

Solution


Edit the VPN tunnel from CLI.

 

config  vpn ipsec phase1-interface
    edit <vpn name>
        set dns-mode manual
        set ipv4-dns-server1 3.3.3.3
        set ipv4-dns-server2 4.4.4.4
    end

 

Dialup VPN client will get 3.3.3.3 as the primary and 4.4.4.4 as the secondary DNS server.

5157
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.