Configure a DNS Server Profile
Table of Contents
10.1
Expand all | Collapse all
-
- Tap Interfaces
-
- Layer 2 and Layer 3 Packets over a Virtual Wire
- Port Speeds of Virtual Wire Interfaces
- LLDP over a Virtual Wire
- Aggregated Interfaces for a Virtual Wire
- Virtual Wire Support of High Availability
- Zone Protection for a Virtual Wire Interface
- VLAN-Tagged Traffic
- Virtual Wire Subinterfaces
- Configure Virtual Wires
- Configure an Aggregate Interface Group
- Configure Bonjour Reflector for Network Segmentation
- Use Interface Management Profiles to Restrict Access
-
- DNS Overview
- DNS Proxy Object
- DNS Server Profile
- Multi-Tenant DNS Deployments
- Configure a DNS Proxy Object
- Configure a DNS Server Profile
- Use Case 1: Firewall Requires DNS Resolution
- Use Case 2: ISP Tenant Uses DNS Proxy to Handle DNS Resolution for Security Policies, Reporting, and Services within its Virtual System
- Use Case 3: Firewall Acts as DNS Proxy Between Client and Server
- DNS Proxy Rule and FQDN Matching
-
- NAT Rule Capacities
- Dynamic IP and Port NAT Oversubscription
- Dataplane NAT Memory Statistics
-
- Translate Internal Client IP Addresses to Your Public IP Address (Source DIPP NAT)
- Enable Clients on the Internal Network to Access your Public Servers (Destination U-Turn NAT)
- Enable Bi-Directional Address Translation for Your Public-Facing Servers (Static Source NAT)
- Configure Destination NAT with DNS Rewrite
- Configure Destination NAT Using Dynamic IP Addresses
- Modify the Oversubscription Rate for DIPP NAT
- Reserve Dynamic IP NAT Addresses
- Disable NAT for a Specific Host or Interface
-
- Network Packet Broker Overview
- How Network Packet Broker Works
- Prepare to Deploy Network Packet Broker
- Configure Transparent Bridge Security Chains
- Configure Routed Layer 3 Security Chains
- Network Packet Broker HA Support
- User Interface Changes for Network Packet Broker
- Limitations of Network Packet Broker
- Troubleshoot Network Packet Broker
Configure a DNS Server Profile
Configure a DNS
Server Profile, which simplifies configuration of a virtual
system. The
Primary DNS
or Secondary
DNS
address is used to create the DNS request that the
virtual system sends to the DNS server.- Name the DNS server profile, select the virtual system to which it applies, and specify the primary and secondary DNS server addresses.
- SelectandDeviceServer ProfilesDNSAddaNamefor the DNS server profile.
- ForLocation, select the virtual system to which the profile applies.
- ForInheritance Source, selectNoneif the DNS server addresses are not inherited. Otherwise, specify the DNS server from which the profile should inherit settings. If you choose a DNS server, clickCheck inheritance source statusto see that information.
- Specify the IP address of thePrimary DNSserver, or leave asinheritedif you chose anInheritance Source.Keep in mind that if you specify an FQDN instead of an IP address, the DNS for that FQDN is resolved in.DeviceVirtual SystemsDNS Proxy
- Specify the IP address of theSecondary DNSserver, or leave asinheritedif you chose anInheritance Source.
- Configure the service route that the firewall automatically uses, based on whether the target DNS Server has an IP address family type of IPv4 or IPv6.
- ClickService Route IPv4to enable the subsequent interface and IPv4 address to be used as the service route, if the target DNS address is an IPv4 address.
- Specify theSource Interfaceto select the DNS server’s source IP address that the service route will use. The firewall determines which virtual router is assigned that interface, and then does a route lookup in the virtual router routing table to reach the destination network (based on thePrimary DNSaddress).
- Specify the IPv4Source Addressfrom which packets going to the DNS server are sourced.
- ClickService Route IPv6to enable the subsequent interface and IPv6 address to be used as the service route, if the target DNS address is an IPv6 address.
- Specify theSource Interfaceto select the DNS server’s source IP address that the service route will use. The firewall determines which virtual router is assigned that interface, and then does a route lookup in the virtual router routing table to reach the destination network (based on thePrimary DNSaddress).
- Specify the IPv6Source Addressfrom which packets going to the DNS server are sourced.
- ClickOK.
- Commit the configuration.ClickOKandCommit.