Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/sophos-firewall/21.5/Help/en-us/webhelp/onlinehelp/index.html?contextId=CLI-set-dns

dns

The dns command lets you configure DNS settings from the CLI.

DNS Time-to-live (TTL) determines how long it takes for a DNS record change to take effect. The domain's DNS record is cached until the next lookup. The firewall performs DNS lookups at the default interval rather than the TTL value in the DNS record for domains that resolve to localhost.

The command option localhost-ttl lets you change the interval at which the DNS lookups for localhost occur. For example, you can specify a lower TTL value to make sure that the firewall updates its record earlier when you change the DNS record entry from localhost to another host.

Command

set dns
show dns

Syntax

set dns [localhost-ttl] {<60-655360>|default}

show dns

Options

localhost-ttl {<TTL in seconds>|default}

The interval in seconds at which DNS lookups for domains that resolve to localhost occur.

Default: 655360

Range: 60 to 655360