Conditional DNS Forwarding

Topic

This article describes the Conditional DNS Forwarding feature of the Datto Networking Appliance (DNA).

Environment

  • Datto Networking Appliance (DNA)

Description

The Conditional DNS Forwarding feature allows the DNA to use a custom target IP address to resolve requests for specific URLs. When the DNA receives a request matching a saved rule, it will query the target IP address specified for routing information, and then route the traffic to the address provided by the target IP. If the DNS is unable to resolve the query, the traffic will not be routed to its destination, and no page will load.

Conditional DNS Forwarding only works if the DNA is acting as the DNS server for your client system, (which is the default when using DHCP on the DNA), or if the web filtering feature is enabled.

Configuration

To access the Conditional DNS Forwarding card, log into the DNA web interface, and click Applications, as shown in Figure 1.

mceclip0.png
Figure 1: Applications

Once on the Applications page, click the Conditional DNS Forwarding link. You will see the management card shown in Figure 2.


Figure 2: Conditional DNS Forwarding

To create a new rule, the only steps you will need to take are to enter the address you would like to query against the target IP in the Match Requests For field. Enter the address of the target IP in the DNS Server IP Address. Then, click Add Rule.

The example below in Figure 3 highlights a commonly added rule where the DNA forwards Active Directory zone requests to the Primary and Backup Domain Controller. This allows for local host resolution in this network.

Figure 3: Two Domain Controller rules

When you are finished adding rules, click Save Changes.

After clicking Save Changes, all network connections to the DNA will be temporarily interrupted while the device applies the new configuration.