Manual Chapter : Managing FQDN Resolvers
Applies To:Show Versions
BIG-IQ Centralized Management
- 8.3.0, 8.2.0, 8.1.0, 8.0.0
Managing FQDN Resolvers
About FQDN resolvers
FQDNis an acronym for a fully qualified domain name. The FQDN resolver in the Network Security Policy Editor works with the ADC DNS resolver to allow you to use fully qualified domain names where you would otherwise only be able to enter IP addresses.
You configure an FQDN resolver by clicking the device name of the FQDN resolver on the FQDN Resolvers page.
You access the DNS resolver by selecting
ADCfrom the BIG-IQ menu, and then clicking
DNS Resolverson the left.
The BIG-IQ system can discover FQDN support on a BIG-IP ®device version 12.0 or later, or created on a BIG-IQ system using the Network Security Policy Editor and then deployed to a BIG-IP device version 12.0 or later.
Configuring FQDN resolvers
You configure FQDN resolvers for use in your environment, including associating them with a DNS resolver.
- At the top left of the screen, selectNetwork Securityfrom the BIG-IQ menu.
- ClickPolicy Editor, and then from the list on the left, clickFQDN Resolvers.A list of the FQDN resolvers displays, one listed for each discovered BIG-IP device.
- Click the name of the BIG-IP device with an FQDN resolver to configure.The FQDN Resolvers - global-fqdn-policy screen opens for that BIG-IP device. Note that the device, name, and partition used by the FQDN resolver cannot be changed.
- If needed, change the minimum refresh interval value in theMin Refresh Intervalfield.By default, the value of theMin Refresh Intervalfield is 60 minutes. The interval is given as the number of minutes, expressed as an integer from 10 to 46080, inclusive.
- Select a DNS resolver from those listed in theDNS Resolverfield.If no DNS resolver is listed, create one and then select it from theDNS Resolverfield. You create DNS resolvers separately by selectingADCfrom the BIG-IQ menu and thenDNS Resolvers. You can have different DNS resolvers for different BIG-IP devices, unless those BIG-IP devices are clustered, in which case the DNS resolver should be the same.
- ClickSaveto save the FQDN resolver changes, or clickSave & Closeto save the FQDN resolver changes and return to the FQDN Resolvers screen.
The FQDN resolver is now defined and can be used to resolve fully qualified domain names on the BIG-IP device.