Use fortigate as forward to DNS server with virtual IP
we have to migrate all our server to a local hoster. The servers will all get new IP-addresses, even the DNS-servers. This is not a problem for our PCs, but the DNS Server set in all our printers must be changed.
Would it be possible to add a virtual IP-address to our fortigate 6.4.11 that is the same as the current IP of our DNS server and configure fortigate to act as Forward to System DNS ?
Yes, that would be possible but the ip you define in the VIP would then not be usable by anything else if it still exists. I am not sure if you are removing an old subnet that won't be used or if you are still going to use that subnet for other items.
Why don't you just do it right now that you have the chance. Change your printers to DHCP and set it all from the DHCP server. NOw you won't have this problem again :)
But yes otherwise you can play with DNAT but this opens up other issues like people forgetting what and how things are configured and continuning to use legacy IP addresses that might not work in the future...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.