Sophos XG: routing DNS queries

Presentation

The routing of DNS queries is similar to a conditional redirector under Windows, which allows to indicate for a DNS zone the server or servers to contact to resolve a record.

This type of routing is useful in the case where your network consists of several private domains or for a public domain (yours) not to use a public service (ISP, Google ….), which makes it possible not to have to wait for the spread on the internet.

Prerequisites

You must create DNS hosts in the firewall and it must be configured as a DNS server on the clients or as a redirector on the DNS servers.

Configuration

Go to the administration of the firewall, in menu click NETWORK 1 . From the network configuration page go to the DNS tab and in the Routing section of DNS queries click on Add 3 .
DNS configuration

Indicate the DNS name to be routed 1 , then select the DNS server (s) previously added 2 and click Save 3 .

DNS routing is added, now when the firewall receives DNS requests for the lab.intra domain, queries will automatically be sent to the LAB-AD1 server.


How useful was this post?

Click on a star to rate it!

Average rating / 5. Vote count:

We are sorry that this post was not useful for you!

Let us improve this post!



Related Posts


How to install and configure Windows server routing
In this tutorial, I will explain how to set up routing with Windows Server. I regularly use this role in the different labs that I put in place under Hyper-V. I isolate the test platform with a private switch and I use a virtual machine with two netw

Sophos XG: add a vlan
In this article, I'll explain how to declare a vlan on your Sophos XG firewall. Before you create it on the firewall, you must make sure that the port of the switch where the firewall is connected is tagged. Go to the firewall administration web inte

Sophos XG: secure emails
Introduction In this tutorial, we will see how to secure emails with a Sophos XG firewall. The firewall offers two modes of operation for filtering emails: MTA : the firewall will act as an SMTP relay Legacy : it will be placed in transparent mode, w

Leave a Comment