DNS forwarding allows you to forward requests from a local DNS server to a recursive DNS server outside the corporate network. This configuration is necessary for your ETP implementation. By directing your enterprise's external DNS traffic to ETP, the requested domains are checked against ETP threat intelligence.
Depending on your network topology and how DNS servers communicate within your organization's network, you may only need to configure the primary DNS servers to forward requests to ETP.
This table lists instructions for common DNS server products. Refer to the instructions for your organization’s DNS server product.
|Microsoft Windows Server 2008 R2
Microsoft Windows Server 2016
|Configure DNS forwarders on Microsoft Windows Server 2008 R2 and 2016|
|BIND||Configure DNS forwarding on BIND|
|Blue Coat Proxy SG||Configure DNS forwarding on Blue Coat ProxySG|
|Palo Alto Networks||Configure a DNS proxy on a Palo Alto Networks firewall|
|Citrix NetScaler||Configure DNS recursion on Citrix NetScaler|
|Infoblox||Configure DNS forwarders on Infoblox|
|Cisco Routers||Configure split-DNS forwarding on Cisco routers|
|Unbound||Configure DNS forwarding on Unbound|
Before you begin, make sure that you note the primary and secondary IP addresses of your ETP recursive servers. To view this information in ETP, see View DNS server information.