Scribd
Upload
41 views

DNS Server:: Com Google Mail

The document discusses DNS (Domain Name System) which converts between domain names and IP addresses on the internet. It describes DNS servers, root servers, record types like A, CNAME, MX, and PTR. It also discusses configuring DNS settings and enabling DNS services on FortiGate firewalls, including setting up a master DNS zone with entries.

Uploaded by

Ayan
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
41 views

DNS Server:: Com Google Mail

The document discusses DNS (Domain Name System) which converts between domain names and IP addresses on the internet. It describes DNS servers, root servers, record types like A, CNAME, MX, and PTR. It also discusses configuring DNS settings and enabling DNS services on FortiGate firewalls, including setting up a master DNS zone with entries.

Uploaded by

Ayan
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

DNS Server:

o DNS Stands for Domain Name System or Domain Name Server.


o DNS is a large database, which resides on various computers in world.
o DNS contains names & IP addresses of hosts on Internet & various domains.
o DNS servers match domain names to their associated IP addresses.
o The Domain Name Systems (DNS) is the phonebook of the Internet.
o DNS convert IP Address to domain name & domain name into IP address.
o DNS names are assigned through the Internet Registries by the IANA.
o There are 13 root name servers from a.root-server.net to m.root-server.net.
o 13 DNS root name servers can be check on this link http://www.root-servers.org.
o DNS primarily uses User Datagram Protocol on port number 53 to serve requests.
o Domain name system of the Internet works in an inverted tree structure.
o The TLD is the letters immediately following the final dot in an Internet address.
o In Internet address, http://mail.google.com, com is the top-level domain name.
o Google is the second-level domain name and mail is a subdomain name.
o Altogether, http://mail.google.com is fully qualified domain name (FQDN).
o Addition of HTTP:// makes a fully qualified domain name FQDN complete URL.

1 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


DNS Records:
o There are several different types of resource records used by DNS.
o The A record specifies IP address Internet Protocol (IPv4) for given host.
o A, records are used for conversion of domain names to correspond IP addresses.
o The AAAA record specifies Internet Protocol (IPv6) address for given host name.
o Domain name system also allows us to name single device but give it multiple names.
o Give it nickname or secondary name it has called Canonical Name record, or CNAME.
o CNAME records in the DNS Server are used for creating aliases of domain names.
o CNAME records are truly useful when want to alias domain to an external domain.
o The MX resource record specifies a Mail Exchange server for a DNS domain name.
o SMTP use MX resource record to route emails to proper hosts uses the information.
o PTR stand for Pointer Record, this is opposite of an address record (A or AAAA).
o An address record took a name and provided you with an IP address IPV4 or IPV6.
o A Pointer record in DNS Server took IP address and come up with a name.
o Name Server (NS) The NS record specifies who the DNS servers are for the zone.
o Start of Authority (SOA) The SOA record stores the settings for the DNS zone.

2 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


DNS Configuration:
Go to Network > DNS by default, using Fortinet’s FortiGuard severs are select.

It is possible to specify using different DNS server, click on Specify and enter in primary /
secondary DNS servers. In Primary DNS Server, type the IP address of the primary DNS server
8.8.8.8. In Secondary DNS Server, type the IP address of the secondary DNS server 8.8.4.4. Click
Apply button to save the changes.

o In the Local Domain Name field, enter the first domain such as test.com etc.
o Click the + to add more domains You can enter up to eight domains names.
o DNS over TLS is security protocol for encrypting & wrapping DNS queries .
o DNS over TLS (DoT) is the security protocol answers via the TLS protocol.
o DNS over TLS increase user privacy and security by preventing eavesdropping.
o DNS over TLS preventing & manipulation of DNS data man-in-the-middle attacks.
Configure DNS domain List in CLI
config system dns
set primary 8.8.8.8
set secondary 8.8.4.4
set domain "test.com"
end

3 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


FortiGate DNS Server:
o FortiGate Unit Firewall can be created as a local DNS servers for your network.
o Depending on requirements can either manually maintain entries master DNS server.
o Or FortiGate Unit Firewall can use it to refer to an outside source Slave DNS server.
o Local, master DNS server requires to manually add all URL and IP address combinations.
o Using a master DNS server for local services can minimize inbound and outbound traffic.
o Using a master DNS server for local services can also minimize the access time for traffic.
o Slave DNS server refers to an alternate source to obtain URL and IP address combinations.
o This is useful when there is a master DNS server where the entry list is maintained there.

To enable DNS server options Go to System > Feature Visibility, Enable DNS Database in the
Additional Features section Click Apply.

Go to Network > DNS Servers In the DNS Database table, click Create New, Set Type to Master.

Set View to Shadow. The View setting controls the accessibility of the DNS server. If you select
Public, external users can access or use the DNS server. If you select Shadow, only internal users
can use it. Enter a DNS Zone, for example, WebServer. Enter the Domain Name of the zone, for
example, test.com. Enter the Hostname of the DNS server, for example, MyServer. Enter the
Contact Email Address for administrator, for example, [email protected]. Disable Authoritative.

4 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


Add DNS entries:
In the DNS Entries table, click Create New.

Select a Type, for example Address (A). Set the Hostname, for example webserver Add more
DNS entries as needed and Click OK.

5 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717


Enable DNS Services on an Interface:
Go to Network > DNS Servers, In the DNS Service on Interface table, click Create New.

Select the Interface for the DNS server, such as Port2(LAN) Set the Mode to Recursive.

Lets us verify from CLI Console ping webserver.test.com.

6 | P a g e Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717

You might also like