Domain Zone Forwarder redundancy
IT_Field_Support
Posts: 97
Ally Member
Ally Member
Hi all,
We have noticed some anormal behaviour on our many USG40w and Domaine Zone Forwarder.
We are using 4 DNS server for private zone.
After making some tests, we realise that if the first server on the list was not available for the zone xxx, the DNS request timeout without result.
The router does not failover on the other Domaine Zone Forwarder as we thought.
Could you tell us if it is a normal behaviour and how should act the Domain Zone Forwarder ? I cannot find any technical documentation on that.
Thanks,
Davy
0
All Replies
-
If USG cannot query the first DNS server, it will then uses the second DNS server to query.
In this example, create a fake DNS server 5.4.3.2 as the first DNS server and 8.8.8.8 as the second DNS server.
Connect one laptop in lan1 and open some websites.
Capture DNS packets in lan1.
In the packet trace, the first DNS server 5.4.3.2 doesn’t reply. Only the second DNS server 8.8.8.8 replies.
It means USG uses the second DNS server to query.
Click this link to start: https://bit.ly/3R2Wx52
Emily0
Zyxel Employee
Categories
- All Categories
- 164 Beta Program
- 1.7K Nebula
- 86 Nebula Ideas
- 62 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 50 Switch Ideas
- 908 WirelessLAN
- 27 WLAN Ideas
- 5.3K Consumer Product
- 172 Service & License
- 294 News and Release
- 65 Security Advisories
- 14 Education Center
- 911 FAQ
- 399 Nebula FAQ
- 249 Security FAQ
- 90 Switch FAQ
- 100 WirelessLAN FAQ
- 18 Consumer Product FAQ
- 55 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 51 Security Highlight
