StrixTheKiet Notes

Search

SearchSearch

Azure Private DNS Zone

Nov 22, 20242 min read

Description:

  • Azure Private DNS zones can be created by using your own custom domain names rather than the names provided by Azure.
  • With your own custom domain names, you can tailor your virtual network architecture to best suit your organization’s needs.
  • You gain name resolution for virtual machines within your virtual network and between virtual networks.
  • You can configure DNS zone names with a split-horizon view, which allows a private and a public DNS zone to share the same domain name.

  • The private dns zone needs to have at least 1 Azure VNet linked to it

  • What is a virtual network link subresource of Azure DNS private zones | Microsoft Learn

  • Registration virtual network

    • When creating a link between a private DNS zone and a virtual network. You have the option to enable autoregistration. With this setting enabled, the virtual network becomes a registration virtual network for the private DNS zone. A DNS record gets automatically created for any virtual machines you deploy in the virtual network. DNS records will also be created for virtual machines already deployed in the virtual network.
    • From the virtual network perspective, private DNS zone becomes the registration zone for that virtual network. A private DNS zone can have multiple registration virtual networks. However, every virtual network can only have one registration zone associated with it.

  • Resolution virtual network

    • If you choose to link your virtual network with the private DNS zone without autoregistration, the virtual network is treated as a resolution virtual network only. DNS records for virtual machines deployed this virtual network won’t be created automatically in the private zone. However, virtual machines deployed in the virtual network can successfully query for DNS records in the private zone. These records include manually created and auto registered records from other virtual networks linked to the private DNS zone.
    • One private DNS zone can have multiple resolution virtual networks and a virtual network can have multiple resolution zones associated to it.

Split-horizon DNS support

  • With Azure Private DNS, you can create zones with the same name that resolve to different answers from within a virtual network and from the public internet.
  • A typical scenario for a split-horizon DNS is to provide a dedicated version of a service for use inside your virtual network.
  • Custom dns lookup within the vm

Graph View

Backlinks