Split DNS/DNS resolver for a wireless network

  • 1
  • Question
  • Updated 4 weeks ago
Hi all,

We've got the HiveManager 6.8r1 applicance with 8x APs in our small enterprise network.  We have a BYOD SSID that is currently using our domain controllers as the DNS servers.

I would like to use external DNS servers primarily, with the exception of using the AD servers for certain sub/domains.  I have found the DNS Service configuration page but this appears to be only for Aerohive routers/other devices, although it doesn't mention that.

Is there any way to apply this configuration to access points and use the APs as the DNS servers in the DHCP scope?




Thanks,
Craig
Photo of Craig

Craig

  • 3 Posts
  • 0 Reply Likes

Posted 4 weeks ago

  • 1
Photo of Fabien Gaille

Fabien Gaille

  • 53 Posts
  • 3 Reply Likes
Hi Craig,

Configuration > Advanced configuration > Common Objects > DHCP Server and Relay, should be what you're looking for. 

On the AP : Optional Settings > Service Settings > DHCP Server and Relay, to apply the previously created object.

Cheers,
Fabien
Photo of Craig

Craig

  • 3 Posts
  • 0 Reply Likes
Hi Fabien,

I believe this would only configure DHCP on the AP.  I'm wanting to use the APs as DNS servers with the functionality in the image above, which might only be applied to router interfaces.

Regards,
Craig
Photo of Carsten Buchenau

Carsten Buchenau, Champ

  • 356 Posts
  • 117 Reply Likes
Craig, as to my knowledge this is correct. You can only configure devices in router-mode as DNS server, at least via GUI.

I think in the past we once used a cheap BR100 to do that, which was just sitting inside the network to provide DHCP and DNS (the default gw was the real router in the network). You cannot buy the BR100 anymore, but if you you devices that do support router mode (AP330, for example), you could try this with one of them. You just have to adjust its routing a bit, for management...
Photo of Craig

Craig

  • 3 Posts
  • 0 Reply Likes
Thanks Carsten,

I did wonder if that was the case.  I've the used DNS Forwarder in pfSense before, and that's the sort of thing I need, but it's not really something I'd want to put in an enterprise network and have to support in addition to everything else.

Regards,
Photo of Carsten Buchenau

Carsten Buchenau, Champ

  • 356 Posts
  • 117 Reply Likes
I understand. We often deploy Fortinet Firewalls, either for the whole Enterprise or just to separate the Guest network, and they support it as well.