#edit "DDNS-User1"
set type fqdn
set associated-interface "wan1"
set fqdn "ddns1.notarealdomain.com"
set cache-ttl 30
next
edit "DDNS-User2"
set type fqdn
set associated-interface "wan1"
set fqdn "ddns2.notarealdomain.com"
set cache-ttl 30
next
end
#config firewall addrgrpSTEP 3: Add the address group or address object into the firewall policy allowing traffic to the VIP:
edit "DDNS-Users"
set member “DDNS-User1” “DDNS-User2”
next
end
#config firewall policy
edit 2
set name "VIP-firewall-policy"
set srcintf "wan1"
set dstintf "internal"
set srcaddr "DDNS-Users"
set dstaddr "VIP-Rule"
end
# diagnose firewall fqdn list
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.