DNS forwarding to seperate servers
I have a guest network which is routed to the internet via a seperate vlan on the wan side.
The guest network uses a a captive portal on a different network, in order to implement https for the captive portal i need clients to dns resolve the CP url, this i can do with a dns database on the FG and setting dhcp to use the FG interface for dns.
This works fine except for one thing.
Forwarding uses the DNS servers configured on the FG, the forwarders configured on the dns database only work for that domain, all other dns lookups use the box dns servers. This is a problem that creates a lot of extra configuration work arounds.
The Question is. Is it possible to define specific DNS forwarders for a specific vlan/net and not use the 'default' DNS servers configured on the box which are used for all other non-guest network DNS?
what i mean is.
let's say the FG is configured with 10.10.10.10 as a dns server
vlan 10 dhcp is configured to use the FG interface as DNS so that clients can resolve an internal captive portal. but i want DNS forwarding to use 188.8.131.52 and not 10.10.10.10
hope that makes sense
FCNSP V.4, V.5, NSE5
Fortinet platinum partner - Norway