DNS transparent proxy is an intermediate device (usually the gateway) that intercepts the DNS packets sent from a client through the device itself to the DNS server for parsing according to the relevant settings and returns the responses received to the client. This proxy process is undetectable and completely transparent.

The DNS Transparent Proxy page is for intranet users whose DNS address does not point to the Network Secure device but requests to transmit through the Network Secure. The Network Secure's DNS transparent proxy resolution settings are shown in the following figure.

External DNS Server: Set the external DNS server address for the DNS transparent proxy, such as 114.114.114.114. For the DNS address set here, when the DNS Transparent Proxy is enabled, the domain names not uploaded from the Upload Domain File will be subject to proxy resolution using the external DNS address set here.

Local DNS Server: Set the local DNS server address for the DNS transparent proxy. When the DNS Transparent Proxy is enabled, only the domain names uploaded from the Upload Domain File will be subject to proxy resolution using the local DNS address set here.

DNS Transparent Proxy: Set the switch options to enable or disable the DNS transparent proxy function.

DNS64: DNS transparent proxy needs to be enabled before it can be used. DNS64 mainly works in conjunction with NAT64. It mainly synthesizes the A record (IPv4 address) in the DNS query information into the AAAA record (IPv6 address) and returns the synthesized AAAA record to the user.

Upload Domain File: Set the domain names that need to be resolved through the local DNS address configured in the Local DNS Server. Under normal circumstances, for access with the domain name of the company's website, it directly resolves the LAN IP address of the website.