config global-dns-server load-balance-pool
Use this command to configure the pool of virtual servers that are available to DNS policies.
You can build a pool list from the following sources:
• Local—A local virtual server is a FortiADC virtual server that is configured on the local system. Select a local virtual server from the list to add it to the pool. The system gets the IP address for local virtual servers from this configuration.
• Remote—A remote virtual server is a FortiADC virtual server that is configured on another system. If you add a remote virtual server, specify its IPv4/IPv6 type and IP address.
• Self-defined—Use the self-defined server configuration if the FortiADC system uses 1-to-1 NAT. In those deployments, you want to publish the external address, not use the address from the virtual server configuration. You can also use the self-defined configuration to add the IPv4/IPv6 type and IP address for a non-FortiADC server.
Before you begin:
• You must have completed the virtual server configuration.
• You must have knowledge of any remote virtual servers that are available to the global deployment.
• You must have read-write permission for global load balancing settings.
After you have configured a pool, you can select it when you add A/AAAA records to a DNS zone configuration.
Syntax
config global-dns-server load-balance-pool
edit <name>
config pool_member
edit <No.>
set addr-source {local-vs | remote-vs | self-define}
set addr-type {vs_ipv4|vs_ipv6}
set ip <class_ip>
set ip6 <class_ip>
set link-group <datasource>
set llb-link-member <string>
set local-virtual-server <datasource>
set weight <integer>
next
end
next
end
addr-source | • self-define: Use the self-defined server configuration if the FortiADC system uses 1-to-1 NAT. In that deployment, you want to publish the external address, not use the address from the virtual server configuration. You can also use the self-defined configuration to add the IPv4/IPv6 type and IP address for a non-FortiADC server. • local-vs: A local virtual server is a FortiADC virtual server that is configured on the local system. Specify a local virtual server from the list to add it to the pool. The system gets the IP address for local virtual servers from this configuration. • remote-vs: A remote virtual server is a FortiADC virtual server that is configured on another system. If you add a remote virtual server, specify its IPv4/IPv6 type and IP address. |
addr-type | • IPv4 • IPv6 |
ip | IP address of a virtual server to be added to the pool. |
ip6 | IP address of a virtual server to be added to the pool. |
link-group | If you add a link group to the configuration, the system uses it to perform a health check. If the link group is not available, the system excludes the virtual server from the DNS load balancing distribution. This behavior applies only to pools with local virtual servers or self-defined virtual servers. |
llb-link-member | Like link group, but only the health of a link member is polled. Specify the name of gateway to serve as a beacon for the health check. The string must match the configured name of the link member. |
local-virtual-server | If you specify the local source option, select a virtual server. Virtual servers that you add can be the targets for the DNS zone RR. |
weight | Assigns relative preference among members—higher values are more preferred and are assigned connections more frequently. The default is 1. The valid range is 1-255. |
Example
FortiADC-VM # config global-dns-server load-balance-pool
FortiADC-VM (load-balance-p~o) # edit global-pool-1
Add new entry 'global-pool-1' for node 1820
FortiADC-VM (global-pool-1) # config pool_member
FortiADC-VM (pool_member) # edit 1
Add new entry '1' for node 1822
FortiADC-VM (1) # get
addr-source : local-vs
weight : 1
local-virtual-server:
link-group :
llb-link-member :
FortiADC-VM (1) # set local-virtual-server example-vs
FortiADC-VM (1) # end