Merge pull request #291693 from LiSeda/LS-tfdns

denrea · web-flow · commit 9d41c2254202 · 2025-02-20T10:45:46.000-08:00
LS_dns-private-zone-terraform.md
diff --git a/articles/dns/TOC.yml b/articles/dns/TOC.yml
@@ -38,6 +38,8 @@
       href: private-dns-getstarted-cli.md
     - name: Create a private zone - PowerShell
       href: private-dns-getstarted-powershell.md
+    - name: Create a private zone - Terraform
+      href: dns-private-zone-terraform.md
   - name: Private resolver
     items:
     - name: Create a private resolver - portal
diff --git a/articles/dns/dns-private-zone-terraform.md b/articles/dns/dns-private-zone-terraform.md
@@ -0,0 +1,115 @@
+---
+title: 'Quickstart: Use Terraform to configure private DNS zones in Azure'
+description: In this quickstart, you create a private DNS zone, network interfaces, Windows virtual machines, a private DNS A record, network security groups, and a network security rule in Azure.
+ms.topic: quickstart
+ms.date: 2/19/2025
+ms.custom: devx-track-terraform
+ms.service: azure-dns
+author: greg-lindsay
+ms.author: greglin
+#customer intent: As a Terraform user, I want to see how to create a private DNS zone and Windows virtual machines in Azure.
+content_well_notification: 
+  - AI-contribution
+---
+
+# Quickstart: Use Terraform to configure private DNS zones in Azure
+
+In this quickstart, you use Terraform to create private DNS zones, network interfaces, Windows virtual machines, a private DNS A record, network security groups, and a network security rule in Azure.
+
+[!INCLUDE [About Terraform](~/azure-dev-docs-pr/articles/terraform/includes/abstract.md)]
+
+> [!div class="checklist"]
+> * Create an Azure resource group with a unique name.
+> * Establish a virtual network with a specified name and address.
+> * Set up a subnet within the created virtual network.
+> * Create a private DNS zone.
+> * Generate random passwords for the virtual machines.
+> * Create two network interfaces.
+> * Create two Windows virtual machines, and attach the network interfaces.
+> * Create a private DNS A record.
+> * Create a network security group and a network security rule to allow ICMP traffic.
+> * Output the names and admin credentials of the virtual machines.
+
+## Prerequisites
+
+- Create an Azure account with an active subscription. You can [create an account for free](https://azure.microsoft.com/free/?WT.mc_id=A261C142F).
+
+- [Install and configure Terraform](/azure/developer/terraform/quickstart-configure).
+
+## Implement the Terraform code
+
+> [!NOTE]
+> The sample code for this article is located in the [Azure Terraform GitHub repo](https://github.com/Azure/terraform/tree/master/quickstart/101-dns-private-zone). You can view the log file containing the [test results from current and previous versions of Terraform](https://github.com/Azure/terraform/tree/master/quickstart/101-dns-private-zone/TestRecord.md).
+>
+> See more [articles and sample code showing how to use Terraform to manage Azure resources](/azure/terraform).
+
+1. Create a directory in which to test and run the sample Terraform code, and make it the current directory.
+
+1. Create a file named `main.tf`, and insert the following code:
+    :::code language="Terraform" source="~/terraform_samples/quickstart/101-dns-private-zone/main.tf":::
+
+1. Create a file named `outputs.tf`, and insert the following code:
+    :::code language="Terraform" source="~/terraform_samples/quickstart/101-dns-private-zone/outputs.tf":::
+
+1. Create a file named `providers.tf`, and insert the following code:
+    :::code language="Terraform" source="~/terraform_samples/quickstart/101-dns-private-zone/providers.tf":::
+
+1. Create a file named `variables.tf`, and insert the following code:
+    :::code language="Terraform" source="~/terraform_samples/quickstart/101-dns-private-zone/variables.tf":::
+
+## Initialize Terraform
+
+[!INCLUDE [terraform-init.md](~/azure-dev-docs-pr/articles/terraform/includes/terraform-init.md)]
+
+## Create a Terraform execution plan
+
+[!INCLUDE [terraform-plan.md](~/azure-dev-docs-pr/articles/terraform/includes/terraform-plan.md)]
+
+## Apply a Terraform execution plan
+
+[!INCLUDE [terraform-apply-plan.md](~/azure-dev-docs-pr/articles/terraform/includes/terraform-apply-plan.md)]
+
+## Verify the results
+
+### [Azure CLI](#tab/azure-cli)
+
+1. Run `az network private-dns zone list` to view all DNS zones and find yours.
+
+   ```azurecli
+   az network private-dns zone list --output table
+   ```
+
+1. Run `az network private-dns zone show` to view the resource group associate with your DNS zone.
+
+   ```azurecli
+   az network private-dns zone show --name $dnsZoneName --resource-group $resourceGroupName
+   ```
+
+### [Azure PowerShell](#tab/azure-powershell)
+
+1. Run `Get-AzPrivateDnsZone` to view all DNS zones and find yours.
+
+    ```azurepowershell
+    Get-AzPrivateDnsZone | Format-Table
+    ```
+
+2. Run `Get-AzPrivateDnsZone` to view the resource group associated with your DNS zone.
+
+    ```azurepowershell
+    Get-AzPrivateDnsZone -Name $dnsZoneName -ResourceGroupName $resourceGroupName
+    ```
+
+---
+
+## Clean up resources
+
+[!INCLUDE [terraform-plan-destroy.md](~/azure-dev-docs-pr/articles/terraform/includes/terraform-plan-destroy.md)]
+
+## Troubleshoot Terraform on Azure
+
+[Troubleshoot common problems when using Terraform on Azure](/azure/developer/terraform/troubleshoot).
+
+## Next steps
+
+> [!div class="nextstepaction"]
+> [See more articles about Azure DNS zones](/search/?terms=Azure%20dns%20zones%20and%20terraform).
