I have found an interesting way to rewrite DNS requests to other IP addresses.
This makes it possible to use the internal private addresses on the internal DNS server for the DNS requests.
External DNS queries that are requested via the Internet can be rewritten to official addresses on the firewall.
The ISP function can be used as a hack for this purpose.

If you activate and configure ISP Redundancy on the gateway, you have the option of rewriting DNS queries. This can be used to rewrite regular DNS queries to other IP addresses.

Example configuration:

1) Enable ISP on the gateway


2) Now select the “Primary/Backup” redundancy mode (see picture 1)

3) Now create an ISP link (that corresponds to your external interface in the direction to the Internet in my example “external_interface”.

4) Unfortunately, two interfaces must be defined, so you have to work with a placeholder interface for ISP2 link. Then create a link that only functions as a placeholder in my example “not_used”. Fictitious IP addresses can be used for the interface.

5) Now enabling “DNS Proxy”

6) In the next step, you can enter the DNS settings that you want to rewrite (red).

You can enter any address for the second ISP backup link (blue), as this is not used in my example.