Azure DNS Zone: What should I do so that my custom DNS will be used instead of the Azure DNS with IP address 168.63.129.16?
Currently, I am setting up a Hybrid Environment in Azure along with the existing Data Center.
I have configured the Site-to-Site connection between Azure HUB-VNET & On-Prem using Virtual Gateway. Communication between Azure HUB-VNET & On-Prem is working.
I have the following Hub-Spoke model
vnet-hub-poc-hubspoke is the Hub VNET with an Azure Firewall
Hub VNET is peered with Prod VNET
Prod VNET is configured as shown below
also peered with HUB VNET
I have following VMs created in the Prod VNET
with Routing Table configured
I have create a DNS Zone in Azure
# Create DNS Zone
domainName="northeasttechnie.xyz"
az network dns zone create -g $rgName -n $domainName
az network dns record-set a add-record -g $rgName -z $domainName -n www -a $vmIP
Questions:
- What should I do so that my custom DNS will be used instead of the Azure DNS with IP address 168.63.129.16? should I update the DNS Server configuraiton at the VNET Level like mentioned below
- What should I do so that my Custom DNS will forward the queries to on On-Prem DNS?
- What should I do so that my On-Prem DNS will forward the queries to Azure DNS or DNS Server for further resolution?
I tried to add my custom server instead of the Azure DNS with IP address 168.63.129.16 as below.
To add your custom DNS, Make sure you need to set up VPN before using the custom dns otherwise machine deployed in vnet to network from being unable to connect on-premises domain controllers.
To configure an azure vpn, In your virtual machine gateway -> point to site configuration -> authentication as active directory as below.
- For tenant Sign in with your azure ad global admin portal use the tenant id as
https://login.microsoftonline.com/<tenantID>/ - In azure portal -> enterprise application -> add new application -> create your own application -> azurevpn singin with azurevpn
once your vpn is created in enterprise application, your azure vpn application id as Audience
- Issuers as
https://sts.windows.net/<tenantID>/and save
Then, refresh and download the vpn client in desktop and install the azurevpnclient import your downloaded file and automatically displayed the details as below.
when I tried and add my custom server it added successfully and vpn also connected like below.
Also, please check this document: Ref1, Ref2 & Q&A which gives some points
- Deploy filtered metrics on Azure dashboard with Bicep
- IAsyncEnumerable JSON streaming is not streaming on azure web app running on IIS
- node-fetch azure document translator
- Need help getting Azure AD B2C SSO with Azure AD
- Unable to get all users from Microsoft Graph using Python SDK
- You need to ensure that WebApp1 uses the ASP.NET v4.7 runtime stack
- MS Graph API - How to query additional pages
- how to hash users into random values in azure databricks
- How can I manage Azure SQL user/login/credentials
- How to connect secrets value stored in Azure key vault to Azure app service env variables directly
- AVD Insights Host Performance Blade Empty after vhange to new Azure Monitoring Agent
- How to get a list of users from azure graph API
- Azure App Service Flask Deployment Error: "Failed to Respond to HTTP Pings on Port 8000; Site Start Failed. Check Container Logs for Debugging."
- Azure Function App - No continuous deployment setting for "Flex Consumption" hosting plan?
- Az-GetRoleAssigments Not returning Data for DisplayName, SignInName & Object Type - Azure Powershell Runbook
- Can you publish a new standalone Angular project (esproj) directly from VS2022 to Azure?
- Cors configuration
- Publish error: Found multiple publish output files with the same relative path
- remove event subscriptions from system topics
- Is it possible to use .env in a React Web project?
- Sign in to Azure Account from VS Code
- How to copy blobs from azure to aws using python?
- AKV10032: Invalid issuer error when connecting to Azure Key Vault from App Service
- how to mask hash users into random values [email protected] in azure databricks
- Can we use PostgREST API with Azure
- Bicep adding DNS Records saying already exists when it doesn't
- Issue in sending personal message in MS Teams with Graph API
- import files to databricks workspace
- Create an Api connection to log analytics workspace via bicep
- az funcapp publish .net8 Isolated breaking Azure configuration runtime settings on Sync