Fortinet Fortigate -Windows Server 2008 R2 Configuration
-
@scottalanmiller said:
This is very recent...
http://manilastandardtoday.com/mobile/2014/06/10/speed-up-your-browsing/
That has nothing to do with Google having a server close to them. I know what the public DNS values are for Google and OpenDNS (and AT&T not in that article). That does not mean any of those companies has a server farm close enough (and load balanced well) to serve all users.
There is very much a value add to using an ISP provided DNS as long as the ISP is doing both a solid caching job and correctly expiring out entries. The aggregate from all the ISP users hitting everything would likely mean that most sites are already cached locally at the ISP and will not be fed out to a server more hops away.
For most locations in the US, I would not ever bother with anything other than Google and OpenDNS. Based on the things @Joyfano has said about their networks over time, I would try to keep the number of hops as small as possible.
-
@JaredBusch hops are one thing and I agree, extra hops are bad. But bad ISPs with flaky DNS are worse. I'd lean to reliability before anything else.
-
The DNS benchmark tool I mentioned earlier runs query tests against many known considered local to you DNS server. You can broaden the test to any and every DNS server known as well in the hopes of finding the fastest one FOR you.
-
Yes, you can definitely test your DNS speeds to see if the ISP, Google or OpenDNS is faster or by how much.
-
Looks like @joy is already awake!
-
Good morning to all. Yeah I can't sleep. Thank you for all replies.. I'll try to figure out this things later.
-
Good morning.
-
@Joyfano morning. we argu... er debated about things while you were sleeping.
-
@JaredBusch said:
@Joyfano morning. we argu... er debated about things while you were sleeping.
Wow a lots of response i will check and read each post..I haven't use this router so I am sure i will learn a lot.
-
@Joyfano yup, we work hard to discuss your issues while you sleep!
-
How is it going today, @Joyfano?
-
@StrongBad said:
How is it going today, @Joyfano?
Thank you for asking @StrongBad i haven't really tried to check day..
pretty busy over here.I talked with my real boss and he told me that we should ask the provider to help us or if we need to attend training to fully utilize this router without being worried on how to integrate with AD.
-
@scottalanmiller said:
@Joyfano yup, we work hard to discuss your issues while you sleep!
Thanks.. i will read all the replies probably after lunch..
crossed finger -
@Joyfano said:
I talked with my real boss and he told me that we should ask the provider to help us or if we need to attend training to fully utilize this router without being worried on how to integrate with AD.
Your boss is seriously confused, isn't he?
-
@scottalanmiller said:
@Joyfano said:
I talked with my real boss and he told me that we should ask the provider to help us or if we need to attend training to fully utilize this router without being worried on how to integrate with AD.
Your boss is seriously confused, isn't he?
It sounds like it.
-
@ajstringham her manager can't even tell what an ISP doesn't or when things integrate or the basics of DNS. He's failing both at IT and at being a manager (knowing when to break things or when to let people do their jobs, who to trust with the network, etc.)
-
@scottalanmiller said:
@ajstringham her manager can't even tell what an ISP doesn't or when things integrate or the basics of DNS. He's failing both at IT and at being a manager (knowing when to break things or when to let people do their jobs, who to trust with the network, etc.)
Today seems to be the day of failing managers.
-
Hello everyone Thank you to all.
I already resolve the problem.I changed the dns of fortigate to use the DNS of internal DNS server.
All of your replies are very much appreciated.
i watched some demos recommended by @Bill-Kindle as well as the replies of other IT folks from SW.
@scottalanmiller Thank you for pointing out that i don't need to use the DNS of ISP.I learned a lot and since this stuff is new to me i thought before i need to use the LDAP but i just realized that i don't need to use it since that i already resolved the problem.
-
Another question..
Knowing that i don't have much ideas about Fortigate
as i mentioned before i thought the LDAP is the way to resolve our problem.My question now is:
Is it useful if we use the LDAP SERVERS? or i don't need that stuff..
=we don't have VPN so basically users are internal. -
You should not be looking at LDAP. Active Directory is LDAP. You don't want a second LDAP system.
