[Vigor3900] How to use LAN DNS?

Support Model : Vigor2960Vigor300BVigor3900
  • Tags :

LAN DNS feature is to make Vigor Router act as a DNS server which answers specific DNS queries from the LAN clients. Vigor3900 supports three types of LAN DNS settings, they are IP, CNAME and FORWARD. In this document, we will talk about them separately. 

(This article applies to Vigor3900, Vigor2960 and Vigor300B, for other models, please refer to the article here.)

 

Enable DNS Redirection

Note that no matter which LAN DNS type will be used, it is necessary to enable DNS Redirection via LAN >> General Setup >> lan1 or the specific LAN profile first.

   

LAN DNS with type IP

When type IP is selected,the router will respond to the DNS query asking for the specified domain name, and the answer will be the IP address configured in the LAN DNS profile. This can be used when there's a web server located on the internal network, and we want to force LAN hosts to access the web server with its private IP address instead of the public IP address.

   

To configure a LAN DNS profile with type IP, go to LAN >> LAN DNS, and then click Add:

  1. Input name for this LAN DNS profile
  2. Tick Enable to activate
  3. Input Domain Name www.draytek.com
  4. Input Alias Domain Name ftp.draytek.com if the same server provides different services and owns different domain names
  5. Select Type as IP
  6. Input the IP address of this server 192.168.239.100
  7. Select Apply to Specified LANs and tick LAN1 as LAN profile
   

With the above configuration, when LAN1 host sends a DNS query to ask who is "www.draytek.com" or who is "ftp.draytek.com", the router will respond it's IP is 192.168.239.13 to them directly.

 

LAN DNS with type CNAME

When type CNAME is selected, router will send a DNS query to ask the IP of the configured CNAME Domain Name first, and then respond the IP it obtained to the DNS query for the specified Domain Name. For example, because of the additional filter that Google SafeSearch server provides, suppose we want to force LAN clients to visit forcesafesearch.google.com whenever they tries to reach www.google.com, we may create LAN DNS profile with type CNAME to meet the purpose.

   

To configure a LAN DNS profile with type CNAME, go to LAN >> LAN DNS and then click Add:

  1. Input name for this LAN DNS profile
  2. Tick Enable to activate
  3. Input Domain Name www.google.com
  4. Select Type as CNAME
  5. Input forcesafesearch.google.com in CNAME field
  6. Select All LANs for Apply to
   

With the above configuration, when LAN host sends a DNS query to ask who is www.google.com, the router will send a DNS query to ask who is forcesafesearch.google.com first, and then reply the IP address it obtained to the LAN host. As a result, when the LAN host tries to access www.google.com, they will reach forcesafesearch.google.com instead.

 

LAN DNS with type FORWARD

When select type FORWARD, router will forward the DNS query and response between LAN hosts and the specified DNS server. For example, if domain name *.draytek.com is located in remote VPN private network and cannot be resolved with a public or local DNS servers, we can use LAN DNS with type FORWARD to forward the DNS query to the specific DNS server in remote VPN network.

   

To configure a LAN DNS profile with type FORWARD, go to LAN >> LAN DNS and then click Add:

a. Input name for this LAN DNS profile
b. Tick Enable to activate
c. Input Domain Name *.draytek.com (Wildcard * is supported so that we can input *.draytek.com to forward all domain names which includes ".draytek.com" to the specific DNS server.)
d. Select Type as FORWARD
e. Input the IP address of the DNS server 172.16.2.8

   

With the above configuration, when a LAN host sends DNS query to ask who is "www.draytek.com" or who is "ftp.draytek.com", the router will forward the DNS query to DNS server 172.16.2.8; if it gets the response, it will reply the LAN host with the response it got.

Note: No matter which LAN DNS type is used, it is necessary to enable DNS Redirection via LAN >> General Setup >> lan1 or the specific LAN profile first.

   
Was this article helpful ?
43[Vigor3900] How to use LAN DNS? has been viewed------ 43 ------times.