system : dns
 
dns
Use this command to set the DNS server addresses. Several FortiGate functions, including sending email alerts and URL blocking, use DNS.
Syntax
config system dns
set cache-notfound-responses {enable | disable}
set dns-cache-limit <integer>
set dns-cache-ttl <int>
set domain <domain_name>
set ip6-primary <dns_ipv6>
set ip6-secondary <dns_ip6>
set primary <dns_ipv4>
set secondary <dns_ip4>
set source-ip <ipv4_addr>
end
Variable
Description
Default
cache-notfound-responses {enable | disable}
Enable to cache NOTFOUND responses from the DNS server.
disable
dns-cache-limit <integer>
Set maximum number of entries in the DNS cache.
5000
dns-cache-ttl <int>
Enter the duration, in seconds, that the DNS cache retains information.
1800
domain <domain_name>
Set the local domain name (optional).
No default.
ip6-primary <dns_ipv6>
Enter the primary IPv6 DNS server IP address.
::
ip6-secondary <dns_ip6>
Enter the secondary IPv6 DNS server IP address.
::
primary <dns_ipv4>
Enter the primary DNS server IP address.
208.91.112.53
secondary <dns_ip4>
Enter the secondary DNS IP server address.
208.91.112.52
source-ip <ipv4_addr>
Enter the IP address for communications to DNS server.
0.0.0.0