Microsoft releases Azure DNS Private Resolver in public preview


Azure DNS Private Resolver is a new service that allows customers to query Azure DNS private zones from an on-premises environment and vice versa without deploying VM-based DNS servers. This new service is fully managed in Azure and in public preview.

With Azure DNS Private Resolver, customers will now be able to conditionally redirect domains to on-premises sites through multi-cloud providers and public DNS servers without having to provision IaaS-based solutions on their virtual networks. This works for customers’ existing Azure ExpressRoute, Azure VPN, or Azure Bastion configurations. Additionally, customers will also be able to change their DNS settings at the virtual network level in a much simpler way by attaching rules to each virtual network and enabling conditional forwarding at scale.

Azure DNS Private Resolver requires a virtual network (VNet) and users can provision an Azure DNS Private Resolver inside of it. Later, they can create one or more inbound endpoints that can be used as a DNS query destination. Additionally, DNS queries are handled by the outbound resolver endpoint using a set of DNS forwarding rules that users establish. DNS queries from networks connected to a set of rules can be sent to other DNS servers.


John SavillPrincipal Technical Architect at Microsoft, concluded in an Azure DNS Private Resolver Deep Dive technical training video:

Azure DNS Private Resolver removes me from my DNS servers outside of Azure to resolve private DNS zones, nor have to manage a custom DNS forwarder. I can now transfer from Azure DNS to zones hosted on my DNS zones on my DNS servers, whether in Azure or outside of Azure.

For some, the service should have arrived sooner, as one correspondent stated in a Reddit thread:

Unfortunately, this comes out just like my org. has finished finalizing its Private Endpoint infrastructure (by which I mean creating VMs that serve as DNS forwarders!)

And Brandon OlinSRE staff at StackOverflow, tweeted:

To finish! An Azure-managed service for resolving private DNS zones from on-premises environments. This is usually done with custom DNS forwarding setups using bind or CoreDNS. Glad to see that.

Currently, Azure DNS Private Resolver is available in Australia East, UK South, Northern Europe, South Central US, West US 3, East US, North Central US, US Update Access Program ( EUAP), East US 2 EUAP, West Central US, East US 2, and West Europe Azure regions. Each of these zones supports Availability Zones, which will help with regional and global resiliency of customer workloads. Finally, pricing details will follow soon.


Comments are closed.