question

andrew avatar image
0 Likes"
andrew asked

Cleaning Up DNS Service On Interfaces

Traditionally, I have created a DNS service on EVERY Internal/DMZ interface and pointed DHCP clients to use the interface gateway as the DNS server for each. Pretty much every one of them is Recursive with the default DNS filter enabled. Is there any recourse drawback to doing this 1:1 setup, or should I cut this back and just use a single interface for DMS and another single one for Trusted and update the clients to point their DNS requests to those consolidated addresses? My firewalls have been running low on recourses and I wonder if this will help reduce that load given I have roughly 20 interfaces.

dns service
10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

0 Answers

·

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Welcome to FortiAnswers

FortiAnswers is the space dedicated to FortiSASE and FortiOS questions and suggestions.

  • Please review the Community guidelines
  • If you are a moderator, please refer to the Moderation guidelines
  • If something in the above guidelines is unclear, please post your question to the Community Feedback space or the Moderators' space