Private Master DNS If your company has a private master DNS server that should always be preferred to any of the ISP provided or manually configured DNS servers, you should enter its IP address here. When specified, the other DNS servers will only be used if the master DNS server does not respond in a timely manner. EasyTunnel:If you fill in a value for a Private Master DNS in an EasyTunnel Server, the setting will also be used in its EasyTunnel Clients (if they support the Private Master DNS functionality).
Master DNS Domain If you only want to use the Private Master DNS server to handle requests related to hosts in your own organization's private domain, such as somehost.mycompany.com, you can specify your private domain here, e.g. mycompany.com. In that case, all DNS requests that are not related to your private domain will be sent to the primary (or secondary) DNS server. You may also create your own top-level domain and just specify its name here, e.g. mytld.
Master DNS Subnets Likewise, if you have specified your private domain above, you can also restrict reverse DNS requests (where a computer tries to get the hostname for a specific IP address) to one or more specific subnets in your network by entering the subnets (separated by whitespace or commas) here, e.g. 10.0.0.0/8 220.127.116.11/16.
Use ISP-Assigned DNS Select "Yes" to forward DNS queries to DNS servers automatically assigned by the ISP. If UPLINK mode is "Static", the ISP cannot assign any DNS servers, and "Yes" will have no effect.
Primary DNS If you selected "No" above, you must enter the IP address of a DNS server to forward DNS queries to. Note: When you use ISP-Assigned DNS servers, this parameter is automatically updated with the Primary DNS server from the ISP.
Secondary DNS IP address of a secondary DNS server, to be used when the Primary DNS server cannot resolve queries. Note: When you use ISP-Assigned DNS servers, this parameter is automatically updated with the Secondary DNS server from the ISP.
[UPLINK2] Primary DNS IP address of the Primary DNS server to be used by UPLINK2. Some ISPs' DNS servers reject queries from sources other than their own customers. So if you use different ISPs for the UPLINK interfaces, you will likely need to use different DNS servers too. Note: If you leave the [UPLINK2] DNS server fields at 0.0.0.0, the ordinary Primary and Secondary DNS servers will be used by UPLINK2 also.
[UPLINK2] Secondary DNS IP address of the Secondary DNS server to be used by UPLINK2.
DNS Server Access (not on all models) In some cases, the way VPN Tunnels are configured may imply that the SiteManager itself (and the DNS Proxy on DEV1) cannot access the configured DNS servers, or traffic to the DNS servers does not follow the optimal route. To control how requests to DNS servers are routed, you can select various methods to access the DNS servers here:
The "Automatic Route Selection" method is the default for DEV1 and will usually select the proper route to each of the DNS servers (either through a VPN tunnel or directly through UPLINK).
The "Always use VPN Tunnels" method will force all DNS servers to be accessed through a VPN tunnel originating on the DEV1 segment. If no such VPN tunnel exists for one of the DNS servers, that server cannot be reached.
The "Never use VPN Tunnels" method will force all DNS servers to be accessed directly on UPLINK; this setting is useful if you only use ISP-Assigned DNS servers.
The "Only use VPN for Master DNS" method forces access to the Master DNS server to use a VPN tunnel originating on the DEV1 segment, while all other DNS servers are accessed directly on UPLINK; this setting is useful if you mix a private DNS server at the central office with ISP-Assigned DNS servers.
EasyTunnel: A EasyTunnel Client receives the value for DNS Server Access from its EasyTunnel Server.
DNS Proxy Default is "enabled", which enables clients on DEV1 to use the SiteManager as a normal DNS server (query only). Note: In order for this to actually work, you must either enter at least one DNS IP address or select the ISP-assigned DNS in the fields above. In addition, you must either enable System > DEV1 > DHCP: DHCP Server Mode ("Manual or Auto" or "ET-Controlled") or enter the IP address of the DEV1 interface to each client machine's own list of DNS servers. EasyTunnel: The setting for DNS Proxy on an EasyTunnel Client is not affected by the setting for DNS Proxy in the EasyTunnel Server.