dns express - gtm as secondary dns server

Question

Hi Guys,&nbsp;
I would like to configure gtm to use dns express and act as secondary dns server. The primary dns server is running microsoft intergrated DNS. dns express will be used to transfer any forward lookup for wide-ip load balancing request and non-load balancing request will forward to primary dns (microsoft). My questions are:&nbsp;
using dns express, does the gtm make a copy of the primary dns zones or does it simply forward requests to gtm? how does it work? will the non-load balancing requests from the client go to the GTM and gtm will forward to the primary dns? has anyone setup gtm with dns express with microsoft dns? 
Thanks,&nbsp;
Richard&nbsp;

kevin_davies_40 · Answer

I think you may have Wide-IP confused with DNS express. Wide-IP is intelligent resolution for FQDN hosts to resources monitored by it. Be it LTM's or any other device. If it cannot find a matching Wide-IP name then it falls back to other DNS resolution methods such as DNS express.&nbsp;
DNS Express acts a nameserver on behalf of your existing nameservers. It will become a secondary for the domains so it will take a copy of the entire zone file for any domain it is handling.&nbsp;
I am not sure what you gain from forwarding the requests to the internal Microsoft server. You are better off using DNS express for those domains as well. A lot of companies do it this way to protect their internal name servers and utilise the high performance and speed of GTM.&nbsp;

richard_75751 · Answer

Thanks Kevin, with using dns express, will the gtm response to all dns queries on behalf of the primary dns? (wide-ip and non-load balanced traffic.). The SOA will still remain on the primary dns correct? I cant find any sample configs using microsoft dns with dns express.

Thanks again.

kevin_davies_40 · Answer

Yes it will. As long as you have told DNS express to secondary those domains then it will answer for them. Don't get wide-ip mixed up with DNS express. Wide-IP configuration will always take precedence and it is configured in GTM, not in your DNS.

How it works is simple. GTM will see if a FQDN matches an incoming request in Wide-IP. If not then it will check if the domain has been hosted in DNS express. If not then it will continues to check about five other name resolution configurations it can support to resolve the address. So essentially it falls through to each one if the previous does not provide resolution. The top of that list is Wide-IP.

richard_75751 · Answer

Thank you so much Kevin. You have been very helpful.

brian_t_246032 · Answer

hi Richard,&nbsp;
I'm trying to set up a Windows DNS as a primary DNS server, and the F5 will be the secondary. Do you have a document on how it can be done?&nbsp;
Thank you&nbsp;
Brian&nbsp;

Forum Discussion

dns express - gtm as secondary dns server

5 Replies

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

F5 AI Roadmap

Disabling signature for a URL

F5 rSeries || Upgrade tenant

Round-robin method not load balanced

F5 object groups in AFM

Related Content

Use F5 Distributed Cloud to control Primary and Secondary DNS

Advanced iRules: Regular Expressions

DNS Express and Zone Transfers

iRule based 'Natural Speech' Expression Language

dns express reboot gtm

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS