Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
ymasaki
Staff
Staff

Created on ‎12-27-2019 12:09 AM Edited on ‎04-02-2023 10:06 PM By Community Manager

Article Id 191554

Technical Tip: Configure DDNS update override in FortiGate DHCP server

Description


This article describes how to configure DDNS update override in FortiGate DHCP server.

Solution


FortiGate can update a record in local DNS server enabling dynamic updates with DDNS update override option in FortiGate DHCP server.

Note:
Dynamic update for PTR records is not supported with this option.

 

# config system dhcp server
    edit 0
        set ddns-update enable
        set ddns-update_override enable
        set ddns-server-ip 10.165.0.84 # ddns_server_ip
        set domain fortitest.com # ddns_zone (only if running FOS 6.4+)
        set ddns-zone fortitest.com # ddns_zone
    next
end

 

In this example, FortiGate has 10.165.0.83 as DHCP server.
Windows 2016 server has 10.165.0.84 as DDNS server.
A test client machine has 10.165.0.57 and will be updated with DDNS update from DHCP server.


 
Here is a record for the client machine (10.165.0.57) in Windows 2016 DNS server before DDNS update received.
 
 
When DDNS update is accepted (in wireshark), a record for the client is updated properly:

 
 
Related document:
14557
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.