Domain Name resolution locally

jfernandz · ‎06-21-2021

Hi everyone,

I'm trying to setting up the internal DNS server in FortiGate, so I'm following this article, however my hosts can't still resolve the domain that I'm trying to configure. This is my config for system dns-database and system dns-server

config system dns-database

edit "PAS"

set domain "pas-maintenance.com"
set authoritative disable
config dns-entry
edit 1
set hostname "@"
set ip 10.101.0.103
next
end
next
end

config system dns-server

edit "wan1"

I'm connected to an AP in the internal5 interface, however the laptop I'm connected with, cannot resolve `pas-maintenance.com` as `10.101.0.103`, why is this?

pavankr5 · ‎10-03-2023

Hello,

follow below configuration for DNS forwarding on a FortiGate firewall

config system dns-database
edit "PAS"
set domain "pas-maintenance.com"
set authoritative disable
config dns-entry
edit 1
set hostname "@"
set ip 10.101.0.103
next
end
next
end

config system dns-server
edit "wan1"
set primary 8.8.8.8 // Google's public DNS server
next
edit "internal1"
set primary 10.101.0.103 // Your internal DNS server
next
end

hope this helps if you still face issue update us.

Thanks

Pavan

mle2802 · ‎10-04-2023

Hi @jfernandz,

Can you try to add internal5 as DNS server on FortiGate and use that interface IP as DNS server for wifi client. Make sure have a secondary DNS server for external resolve.

Regards,
Minh

Domain Name resolution locally

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website