Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
kdavidk
New Contributor II

DNS server loadbalancing

Hi all,

 

I have 4 Recursive DNS servers that i puted behind NAT. Lets say 10.254.254.10-13

I want to make loadbalancing and HA and present them under 2 public IPs.

Each public IP will have 2 real DNS server for HA and Balancing.

 

What is the best way to set this up?

I created Virtual server with one of public IPs.

Type: UDP, Virtual server port 53. Load Balancing Round Robin, Healt Check: DNS.

I added under "Real Servers" 2 IPs 10.254.254.10-11

 

But it is not working.

 

The public IP i have set up as Virtual Server IP is the WAN interface IP.

Is it necesery to set up anything else?

 

Or i am doing it comlpetly wrong?

 

Thanx for help!

5 REPLIES 5
Anthony_E
Community Manager
Community Manager

Hello,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Anthony-Fortinet Community Team.
Anthony_E
Community Manager
Community Manager

Hello,

 

We are still looking for someone to help you.

We will come back to you ASAP.


Regards,

Anthony-Fortinet Community Team.
srajeswaran
Staff
Staff

When you say it is not working, is it the load balancing not working or the reachability towards the server?

Are you seeing the DNS packets reaching Fortigate? Are they getting NATed to the private IPs?

 

 

Regards,

Suraj

- Have you found a solution? Then give your helper a "Kudos" and mark the solution.

rosatechnocrat

Suraj , seems NAT configured is wrong .. sending to the interface

 

"The public IP i have set up as Virtual Server IP is the WAN interface IP."

Rosa Technocrat -- Also on YouTube---Please do Subscribe
Rosa Technocrat -- Also on YouTube---Please do Subscribe
rosatechnocrat
Contributor II

Setting UP WAN IP will not forward the traffic. Setting UP WAN IP means, you are sending the traffic destined to the interface not for forwarding. You need to use a free Public IP pool for the NAT. 

 

 

Rosa Technocrat -- Also on YouTube---Please do Subscribe
Rosa Technocrat -- Also on YouTube---Please do Subscribe
Top Kudoed Authors