DNS Configuration

Domain Name Support

The security device incorporates Domain Name System (DNS) support, allowing you to use domain names for identifying locations. DNS translation supports the following services:

  • Address Book

  • AutoKey IKE Remote Gateways

  • Syslog

  • E-mail

  • WebTrends

  • Websense

  • LDAP

  • SecurID

  • RADIUS

  • NetScreen-Global PRO

  • Simple Certificate Enrollment Protocol (SCEP)

Note: The server IP addresses for each service above must also accept domain names.

Domain Name Servers

A Domain Name Server (DNS) keeps a table of the IP addresses associated with domain names. Using DNS makes it possible to reference locations by domain name (such as www.juniper.net) instead of using the routable IP address, which is 207.17.137.68 for www.juniper.net.

Before you can use DNS names with the services described above, you must configure DNS servers.

To Configure DNS Servers

  1. Enter the necessary information:

Host Name: Enter the name of the security Device. The default name is based on the model of the device, for example ns208, ns500.

Domain Name: Enter the domain name. You must fill this in if you want Domain Name System (DNS) name/address resolution to work.

Primary DNS Server: Enter the IP address of your primary DNS server. Enter the Src Interface of the Primary DNS Server to enable DNS lookup for SCEP.

Secondary DNS Server: Enter the IP address of your secondary DNS server. Enter the Src Interface of the Secondary DNS Server to enable DNS lookup for SCEP.

Tertiary DNS Server: Enter the IP address of your tertiary DNS server. Enter the Src Interface of the Tertiary DNS Server to enable DNS lookup for SCEP.

DNS refresh every day at: Allows you to specify a daily time (in 24 hour format) or an interval of  time at which the security device resolves DNS settings.

Clicking the Refresh button forces the security device to do a DNS lookup. For more information on the functions of the Refresh button, see "DNS Lookup".

  1. Click Apply to save your configuration.

DNS Lookup

The security device lookup is subject to several conditions:

DNS Report

To view a report of the DNS lookup, click Show DNS Table. The report lists all the domain names that were searched for:

Name: Indicates the domain name that was searched.

IP Address: Indicates the IP addresses of the domain.

Status: Indicates if the lookup was successful or if it failed.

Last Lookup: Indicates the date and time of the last DNS lookup.