DNS Servers

Create and modify DNS server profiles. View, reorder, add, modify, and delete DNS servers within each DNS server profile.

Navigation

Navigate using the tab icons. Hover over an icon to see the name of the tab.

Configure > Common Objects > Management > DNS Servers > { Add | server_name }

or

Configure > Network Policies > policy_name > Additional Settings > Management Server > DNS Server

or

Manage > Devices > vgva_name > Management Services > DNS Server

About DNS

DNS (Domain Name System) is a hierarchical and decentralized naming system for computers, services, and other resources connected to a private network or to the Internet. DNS associates various information with domain names assigned to each participant. It translates domain names to the numerical IP addresses required to identify and locate computer services and devices .

ExtremeCloud IQ supports multiple DNS server profiles. For example, you can configure a DNS server object for each company location. You can rename any of the factory-defined DNS server profiles and add more DNS server profiles as required.

ExtremeCloud IQ provides multiple ways to configure many of your network components. How and where you configure settings depends on how you want to apply them throughout your network. You can configure settings in advance for easy reuse; from within the network policy workflow; or at the device level where they function as device overrides. (For more information about these configuration options, see Configuration Options in "Understand the ExtremeCloud IQ Interface".)

When configuring a DNS server profile in a network policy or at the device level for an individual VGVA (VPN Gateway Virtual Appliance), first enable DNS service by toggling it to ON. Any configuration settings you make at the device level override those at the network policy level.

Add a DNS Server Profile

Enter the following information when configuring a DNS server profile in the Common Objects section or when configuring the default DNS server in the Additional Settings section within the context of a network policy or within the context of a VGVA configuration, and then select Save:

Name: Enter a name for the default DNS server profile. The name can contain up to 32 characters and cannot have spaces.

Domain Name: Enter the domain name to which the devices that you apply this configuration belong. The devices can then use it to resolve non-fully qualified domain names within the same domain. For example, if the domain name is extreme.com and there are Active Directory, syslog, SNMP, and NTP servers in that domain, you can simply configure their host names and the devices will add "extreme.com" to convert them into FQDNs (fully qualified domain names). A syslog server with the server name "syslog1" would become "syslog1.extreme.com".

Description: Enter an optional description about the DNS assignment. The description can contain up to 64 characters, including spaces.

Add a DNS Server

You can add up to three DNS servers to the DNS server profile:

  • To add a DNS server to the profile, select , enter the DNS server IP address, and then select Add. Repeat to add more servers. Each new entry appears below the previous one.
  • To move a server up or down in the table, use the up and down arrow keys. The first entry becomes the primary DNS server, the second entry becomes the secondary server, and the third entry becomes the tertiary server.

View DNS Server Profile Classifications

The column titles in the Classification table include:

DNS Server: The DNS server profile name. Select to see the associated DNS server names and IP addresses.

Classification Rules: Which classification rules, if any are applied to this DNS server profile. The classification rule column displays , , and the associated classification rule. See any of the "Add a Classification Rule" sections in "Network Policy Classification Rules" for how to use the and icons.

Assignment Description: The icon and the optional classification rule description. Select to see the type and definition of the included classification rules.

Add a Classification Rule

You must have created a Cloud Config Group for the target DNS server profile, as described in "Cloud Config Group Settings" before completing this procedure.

  1. Select the Apply DNS servers to devices via classification check box to add a classification to the DNS server profile. Clear this check box to remove all classifications from the DNS server profile.

  2. Select to add an existing classification. In the DNS Object panel, select a DNS object and choose Select.

  3. Or, select to add an existing classification. In the DNS Object panel, select a DNS object and choose Select. Or you can choose to copy an existing classification. In the DNS Object panel, select a DNS object and select Copy. Enter a new DNS object name in the Save As text box, and then select Save.

  4. Or, select Add to add a new classification. Enter a name, enter an optional domain name and description. Select to add a DNS server IP address, and then select Add. Repeat to add more servers. Use the arrows in the table to move a server up or down in the table, use the up and down arrow keys. The first entry becomes the primary DNS server, the second entry becomes the secondary server, and the third entry becomes the tertiary server. Select Save.

  5. Select , select an existing classification rule then select Link. To clone an existing classification rule, select a target classification rule, select Copy, enter a new classification rule name in the Save As text box, and then select Save.

  6. Select in the Classification Rules column and then select an existing classification rule from the Select Classification Rules panel. Then select Link.

  7. Select to add a new classification rule. Enter the classification rule name and optional description. Then select Add and Device Location, Cloud Config Group, IP Address, IP Subnet, or IP Range from the drop-down list, depending the classification type required. Select the Match Type (Contains or Does Not Contain), select the existing classification rule, and then select Continue. Use the up and down arrows in the Order column to define the order in which the classification rules are considered. (Classification rules are considered using a top-down, first-match, stop-on-match method, so if a device is a member of more than one matching criteria for an element, only the first match is applied.) Select Save Rule.

  8. When you are done, select Save.

After you create a DNS server profile, you can reference it in multiple network policies. In the Additional Settings > Management Server > DNS Server window in a network policy, select to see existing DNS server profiles in the DNS Object panel. Select the check box of the one you want to use and then select Select.

  • You can create objects used for classification in the Configure > Network Policies > Common Objects section, but best practice suggests that you configure them inside the network policy workflow so that you can easily apply the classification rules.

For more information, see "DNS Server Settings", "DNS Server Classification By Location", and "DNS Servers".