Fortinet black logo

Handbook

Home FortiADC 7.4.1 Handbook
7.4.1
7.4.3
7.4.2
7.4.1
7.4.0
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.1.4
7.1.3
7.1.2
7.1.1
7.1.0
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.1.6
6.1.5
6.1.4
6.1.3
6.1.2
6.1.1
6.1.0
6.0.1
6.0.0
5.4.3
5.4.2
5.4.1
5.4.0
5.3.6
5.3.5
5.3.4
5.3.3
5.3.2
5.3.1
5.3.0
5.2.7

Configuring DNS settings for non-root VDOM

Configuring DNS settings for non-root VDOM

For FortiADC systems with VDOM enabled, you can configure the System DNS resolver for non-root VDOMs and override Global DNS settings to set a DNS server IP per VDOM for more flexibility.

This functionality is only available in the non-root VDOM. The root VDOM defaults to inherit the Global DNS settings.

Note: The DNS settings per VDOM is also not available when VDOMs are in Share Network mode (ADOM mode) as all ADOMs will share the same network namespace.

DNS settings per VDOM does not affect the following global modules which will continue to use Global DNS settings:

  • Security Fabric external and fabric connectors
  • URL filters
  • FortiGuard
  • SMTP for logs and alerts
  • NTP
  • Admin FortiToken Cloud
  • AntiVirus cloud
Before you begin:
  • You must have VDOM enabled and have access to a non-root VDOM.

  • You must have a good understanding of DNS and knowledge of the remote DNS servers that can be used to communicate with Internet domain servers.

  • You must have read-write permission for system settings.
To configure DNS settings for a non-root VDOM:
  1. Go to System > Settings.
    The configuration page displays the DNS tab.
  2. Configure the following settings:

    Setting

    Description

    DNS OverrideEnable to apply the DNS settings configured for this non-root VDOM instead of inheriting from the Global DNS settings.
    Primary DNS

    Specify the IP address for the primary DNS server.

    Second DNS

    Specify the IP address for the secondary DNS server.

  3. Click Save.
Previous
Next

Configuring DNS settings for non-root VDOM

For FortiADC systems with VDOM enabled, you can configure the System DNS resolver for non-root VDOMs and override Global DNS settings to set a DNS server IP per VDOM for more flexibility.

This functionality is only available in the non-root VDOM. The root VDOM defaults to inherit the Global DNS settings.

Note: The DNS settings per VDOM is also not available when VDOMs are in Share Network mode (ADOM mode) as all ADOMs will share the same network namespace.

DNS settings per VDOM does not affect the following global modules which will continue to use Global DNS settings:

  • Security Fabric external and fabric connectors
  • URL filters
  • FortiGuard
  • SMTP for logs and alerts
  • NTP
  • Admin FortiToken Cloud
  • AntiVirus cloud
Before you begin:
  • You must have VDOM enabled and have access to a non-root VDOM.

  • You must have a good understanding of DNS and knowledge of the remote DNS servers that can be used to communicate with Internet domain servers.

  • You must have read-write permission for system settings.
To configure DNS settings for a non-root VDOM:
  1. Go to System > Settings.
    The configuration page displays the DNS tab.
  2. Configure the following settings:

    Setting

    Description

    DNS OverrideEnable to apply the DNS settings configured for this non-root VDOM instead of inheriting from the Global DNS settings.
    Primary DNS

    Specify the IP address for the primary DNS server.

    Second DNS

    Specify the IP address for the secondary DNS server.

  3. Click Save.
Previous
Next