What are the three DNS query modes available on FortiGate?

The three DNS query modes available on FortiGate are Forward, Non-Recursive, and Recursive.

In Forward mode, a FortiGate device is configured to forward DNS queries to a specified DNS server. This is typically used when the FortiGate needs to rely on external or upstream DNS servers for name resolution instead of resolving DNS queries internally.

Non-Recursive mode means that the FortiGate will not perform any recursive queries on behalf of clients; it expects the DNS server to have the answer or to not query further upstream DNS servers. This is useful in scenarios where reduced load on the DNS server is desired as it minimizes the number of queries that need to go out to the internet or additional DNS servers for resolution.

Recursive mode allows the FortiGate to perform full DNS resolution. When it receives a query, it will directly resolve it by querying other DNS servers if the answer is not found locally in its cache. This mode provides greater flexibility in name resolution for clients connected to the FortiGate.

Understanding these modes is crucial as each has unique implications for how DNS queries are handled, impacting both performance and security depending on the network configuration and requirements.

The other options present terms that do not accurately represent the DNS query modes implemented in Fort