Fortinet 253 FortiWeb 5.0 Patch 6 Administration Guide
Defining your web server by its DNS domain name“Domain servers” use DNS A record domain names to define a web server, while
“physical servers” use IP addresses.
Domain servers define an individual server or a member of a server farm that is the ultimate
destination of traffic received by the FortiWeb appliance at a virtual server address, and where
the FortiWeb appliance will forward traffic (or let it pass through, depending on the operation
mode) after applying the protection profile and other policy settings. Alternatively, you can use
IP addresses to define the protected web servers. For details, see “Defining your web server by
its IP address” on page 251.
To configure a domain server
1. Go to Server Objects > Server > Domain Server.
To access this part of the web UI, your administrator’s account access profile must have
Read and Write permission to items in the Server Policy Configuration category. For details,
see “Permissions” on page 47.
2. Click Create New.
A dialog appears.
3. In Name, type a unique name that can be referenced by other parts of the configuration. Do
not use spaces or special characters. The maximum length is 35 characters.
A domain server is usually not the same as a protected hosts group. See “Protected web
servers vs. protected/allowed host names” on page 248.
Server definitions by domain name cannot be used in most server farm definitions. Support
varies by the server farm’s request forwarding setting, Type . See “Grouping your web servers
into server farms” on page 256.
Unlike with a physical server, for domain servers, FortiWeb must query a DNS server in order to
query and resolve each web server’s domain name into an IP address. For improved
performance, either:
• use physical servers instead, or
• ensure highly reliable, low-latency service to a DNS server on your local network