Merge pull request #275791 from greg-lindsay/dns-azdns

denrea · web-flow · commit cfaea52f5166 · 2024-08-12T14:28:30.000-07:00
azdns define
diff --git a/articles/dns/TOC.yml b/articles/dns/TOC.yml
@@ -2,12 +2,16 @@
   href: index.yml
 - name: Overview
   items:
-  - name: What is Azure DNS?
+  - name: Azure DNS overview
     href: dns-overview.md
+  - name: What is Azure Public DNS?
+    href: public-dns-overview.md
   - name: What is Azure Private DNS?
     href: private-dns-overview.md
   - name: What is Azure DNS Private Resolver?
     href: dns-private-resolver-overview.md
+  - name: What is Azure Traffic Manager?
+    href: /azure/traffic-manager/traffic-manager-overview
 - name: Quickstarts
   items:
   - name: Public DNS
diff --git a/articles/dns/dns-overview.md b/articles/dns/dns-overview.md
@@ -1,70 +1,49 @@
 ---
-title: What is Azure DNS?
-description: Overview of DNS hosting service on Microsoft Azure. Host your domain on Microsoft Azure.
+title: Azure DNS overview
+description: An overview of services provided by Azure DNS.
 author: greg-lindsay
 ms.service: azure-dns
 ms.topic: overview
-ms.date: 11/30/2023
+ms.date: 08/12/2024
 ms.author: greglin
 #Customer intent: As an administrator, I want to evaluate Azure DNS so I can determine if I want to use it instead of my current DNS service.
 ---
 
-# What is Azure DNS?
+# Azure DNS overview
 
-Azure DNS is a hosting service for DNS domains that provides name resolution by using Microsoft Azure infrastructure. By hosting your domains in Azure, you can manage your DNS records by using the same credentials, APIs, tools, and billing as your other Azure services.
+The Domain Name System (DNS) is responsible for translating (resolving) a service name to an IP address. Azure DNS provides DNS hosting, resolution, and load balancing for your applications using the Microsoft Azure infrastructure. 
 
-You can't use Azure DNS to buy a domain name. For an annual fee, you can buy a domain name by using [App Service domains](../app-service/manage-custom-dns-buy-domain.md#buy-and-map-an-app-service-domain) or a third-party domain name registrar. Your domains then can be hosted in Azure DNS for record management. For more information, see [Delegate a domain to Azure DNS](dns-domain-delegation.md).
+Azure DNS supports both internet-facing DNS domains and private DNS zones, and provides the following services:
+- **[Azure Public DNS](public-dns-overview.md)** is a hosting service for DNS domains. By hosting your domains in Azure, you can manage your DNS records by using the same credentials, APIs, tools, and billing as your other Azure services.
 
-The following features are included with Azure DNS.
+- **[Azure Private DNS](private-dns-overview.md)** is a DNS service for your virtual networks. Azure Private DNS manages and resolves domain names in the virtual network without the need to configure a custom DNS solution. 
 
-## Reliability and performance
+- **[Azure DNS Private Resolver](dns-private-resolver-overview.md)** is a service that enables you to query Azure DNS private zones from an on-premises environment and vice versa without deploying VM based DNS servers.
 
-DNS domains in Azure DNS are hosted on Azure's global network of DNS name servers. Azure DNS uses anycast networking. Each DNS query is answered by the closest available DNS server to provide fast performance and high availability for your domain.
+- **[Azure Traffic Manager](/azure/traffic-manager/traffic-manager-overview)** is a DNS-based traffic load balancer. This service allows you to distribute traffic to your public facing applications across the global Azure regions.
 
-## Security
+Azure DNS enables multiple scenarios, including:
 
- Azure DNS is based on Azure Resource Manager, which provides features such as:
-
-* [Azure role-based access control (Azure RBAC)](../azure-resource-manager/management/overview.md) to control who has access to specific actions for your organization.
-
-* [Activity logs](../azure-resource-manager/management/overview.md) to monitor how a user in your organization modified a resource or to find an error when troubleshooting.
-
-* [Resource locking](../azure-resource-manager/management/lock-resources.md) to lock a subscription, resource group, or resource. Locking prevents other users in your organization from accidentally deleting or modifying critical resources.
-
-For more information, see [How to protect DNS zones and records](dns-protect-zones-recordsets.md). 
-
-## DNSSEC
-
-Azure DNS does not currently support DNSSEC. In most cases, you can reduce the need for DNSSEC by consistently using HTTPS/TLS in your applications. If DNSSEC is a critical requirement for your DNS zones, you can host these zones with third-party DNS hosting providers.
-
-## Ease of use
-
- Azure DNS can manage DNS records for your Azure services and provide DNS for your external resources as well. Azure DNS is integrated in the Azure portal and uses the same credentials, support contract, and billing as your other Azure services. 
-
-DNS billing is based on the number of DNS zones hosted in Azure and on the number of DNS queries received. To learn more about pricing, see [Azure DNS pricing](https://azure.microsoft.com/pricing/details/dns/).
-
-Your domains and records can be managed by using the Azure portal, Azure PowerShell cmdlets, and the cross-platform Azure CLI. Applications that require automated DNS management can integrate with the service by using the REST API and SDKs.
-
-## Customizable virtual networks with private domains
-
-Azure DNS also supports private DNS domains. This feature allows you to use your own custom domain names in your private virtual networks rather than the Azure-provided names available today.
-
-For more information, see [Use Azure DNS for private domains](private-dns-overview.md).
-
-## Alias records
-
-Azure DNS supports alias record sets. You can use an alias record set to refer to an Azure resource, such as an Azure public IP address, an Azure Traffic Manager profile, or an Azure Content Delivery Network (CDN) endpoint. If the IP address of the underlying resource changes, the alias record set seamlessly updates itself during DNS resolution. The alias record set points to the service instance, and the service instance is associated with an IP address.
-
-Also, you can now point your apex or naked domain to a Traffic Manager profile or CDN endpoint using an alias record. An example is contoso.com.
-
-For more information, see [Overview of Azure DNS alias records](dns-alias.md).
+* [Host and resolve public domains](/azure/dns/dns-delegate-domain-azure-dns)
+* [Manage DNS resolution in your virtual networks](/azure/dns/private-dns-privatednszone)
+* [Enable autoregistration for VMs](/azure/dns/private-dns-autoregistration)
+* [Enable name resolution between Azure and your on-premises resources](/azure/dns/private-resolver-hybrid-dns)
+* [Secure hybrid networking](/azure/architecture/networking/architecture/azure-dns-private-resolver#use-dns-private-resolver)
+* [Monitor DNS metrics and alerts](/azure/dns/dns-alerts-metrics)
+* [Integrate with your other Azure services](/azure/dns/dns-for-azure-services)
+* [Perform Private Link and DNS integration at scale](/azure/cloud-adoption-framework/ready/azure-best-practices/private-link-and-dns-integration-at-scale)
+* Protect your [public](/azure/dns/dns-protect-zones-recordsets) and [private](/azure/dns/dns-protect-private-zones-recordsets) DNS zones and records
+* Enable automatic [fault tolerance](/azure/dns/private-resolver-reliability) and [failover](/azure/dns/tutorial-dns-private-resolver-failover) for DNS resolution
+* [Load-balance your applications](/azure/traffic-manager/traffic-manager-how-it-works)
+* Increase application [availability](/azure/traffic-manager/traffic-manager-monitoring) and [performance](/azure/traffic-manager/traffic-manager-configure-performance-routing-method)
+* [Monitor your application traffic patterns](/azure/traffic-manager/traffic-manager-traffic-view-overview)
 
 ## Next steps
 
-* To learn about DNS zones and records, see [DNS zones and records overview](dns-zones-records.md).
-
-* To learn how to create a zone in Azure DNS, see [Create a DNS zone](./dns-getstarted-portal.md).
-
-* For frequently asked questions about Azure DNS, see the [Azure DNS FAQ](dns-faq.yml).
-
-* [Learn module: Introduction to Azure DNS](/training/modules/intro-to-azure-dns).
+* To learn about Public DNS zones and records, see [DNS zones and records overview](dns-zones-records.md).
+* To learn about Private DNS zones, see [What is an Azure Private DNS zone](private-dns-privatednszone.md).
+* To learn about private resolver endpoints and rulesets, see [Azure DNS Private Resolver endpoints and rulesets](private-resolver-endpoints-rulesets.md).
+* For frequently asked questions about Azure DNS, see [Azure DNS FAQ](dns-faq-private.yml).
+* For frequently asked questions about Azure Private DNS, see [Azure Private DNS FAQ](dns-faq.yml).
+* For frequently asked questions about Traffic Manager, see [Traffic Manager routing methods](/azure/traffic-manager/traffic-manager-faqs)
+* Also see [Learn module: Introduction to Azure DNS](/training/modules/intro-to-azure-dns).
diff --git a/articles/dns/dns-private-resolver-overview.md b/articles/dns/dns-private-resolver-overview.md
@@ -1,12 +1,11 @@
 ---
 title: What is Azure DNS Private Resolver?
 description: In this article, get started with an overview of the Azure DNS Private Resolver service.
-services: dns
 ms.custom: references_regions
 author: greg-lindsay
 ms.service: azure-dns
 ms.topic: overview
-ms.date: 07/01/2024
+ms.date: 08/09/2024
 ms.author: greglin
 #Customer intent: As an administrator, I want to evaluate Azure DNS Private Resolver so I can determine if I want to use it instead of my current DNS resolver service.
 ---
@@ -17,7 +16,7 @@ Azure DNS Private Resolver is a new service that enables you to query Azure DNS
 
 ## How does it work?
 
-Azure DNS Private Resolver requires an [Azure Virtual Network](../virtual-network/virtual-networks-overview.md).  When you create an Azure DNS Private Resolver inside a virtual network, one or more [inbound endpoints](#inbound-endpoints) are established that can be used as the destination for DNS queries. The resolver's [outbound endpoint](#outbound-endpoints) processes DNS queries based on a [DNS forwarding ruleset](#dns-forwarding-rulesets) that you configure.  DNS queries that are initiated in networks linked to a ruleset can be sent to other DNS servers.
+Azure DNS Private Resolver requires an [Azure Virtual Network](../virtual-network/virtual-networks-overview.md). When you create an Azure DNS Private Resolver inside a virtual network, one or more [inbound endpoints](#inbound-endpoints) are established that can be used as the destination for DNS queries. The resolver's [outbound endpoint](#outbound-endpoints) processes DNS queries based on a [DNS forwarding ruleset](#dns-forwarding-rulesets) that you configure. DNS queries that are initiated in networks linked to a ruleset can be sent to other DNS servers.
 
 You don't need to change any DNS client settings on your virtual machines (VMs) to use the Azure DNS Private Resolver.
 
@@ -101,7 +100,7 @@ The following limits currently apply to Azure DNS Private Resolver:
 ### Virtual network restrictions 
 
 The following restrictions hold with respect to virtual networks:
-- VNets with [encryption](/azure/virtual-network/virtual-network-encryption-overview) enabled do not support Azure DNS Private Resolver.
+- VNets with [encryption](/azure/virtual-network/virtual-network-encryption-overview) enabled don't support Azure DNS Private Resolver.
 - A DNS resolver can only reference a virtual network in the same region as the DNS resolver.
 - A virtual network can't be shared between multiple DNS resolvers. A single virtual network can only be referenced by a single DNS resolver.
 
@@ -126,7 +125,7 @@ Outbound endpoints have the following limitations:
 ### Other restrictions
 
 - IPv6 enabled subnets aren't supported.
-- DNS private resolver does not support Azure ExpressRoute FastPath.
+- DNS private resolver doesn't support Azure ExpressRoute FastPath.
 - DNS private resolver inbound endpoint provisioning isn't compatible with [Azure Lighthouse](../lighthouse/overview.md).
     - To see if Azure Lighthouse is in use, search for **Service providers** in the Azure portal and select **Service provider offers**. 
 
diff --git a/articles/dns/private-dns-overview.md b/articles/dns/private-dns-overview.md
@@ -1,27 +1,24 @@
 ---
 title: What is Azure Private DNS?
 description: In this article, get started with an overview of the private DNS hosting service on Microsoft Azure.
-services: dns
 author: greg-lindsay
 ms.service: azure-dns
 ms.topic: overview
-ms.date: 06/21/2024
+ms.date: 08/09/2024
 ms.author: greglin
 #Customer intent: As an administrator, I want to evaluate Azure Private DNS so I can determine if I want to use it instead of my current DNS service.
 ---
 
 # What is Azure Private DNS?
 
-The Domain Name System (DNS) is responsible for translating (resolving) a service name to an IP address.  Azure DNS is a hosting service for domains and provides naming resolution using the Microsoft Azure infrastructure. Azure DNS not only supports internet-facing DNS domains, but it also supports private DNS zones.
-
 Azure Private DNS provides a reliable and secure DNS service for your virtual networks. Azure Private DNS manages and resolves domain names in the virtual network without the need to configure a custom DNS solution. By using private DNS zones, you can use your own custom domain name instead of the Azure-provided names during deployment. Using a custom domain name helps you tailor your virtual network architecture to best suit your organization's needs. It provides a naming resolution for virtual machines (VMs) within a virtual network and connected virtual networks. Additionally, you can configure zones names with a split-horizon view, which allows a private and a public DNS zone to share the name.
 
 To resolve the records of a private DNS zone from your virtual network, you must link the virtual network with the zone. Linked virtual networks have full access and can resolve all DNS records published in the private zone. You can also enable [autoregistration](private-dns-autoregistration.md) on a [virtual network link](private-dns-virtual-network-links.md). When you enable autoregistration on a virtual network link, the DNS records for the virtual machines in that virtual network are registered in the private zone. When autoregistration gets enabled, Azure DNS will update the zone record whenever a virtual machine gets created, changes its' IP address, or gets deleted.
 
 ![DNS overview](./media/private-dns-overview/scenario.png)
 
 > [!NOTE]
-> As a best practice, do not use a *.local* domain for your private DNS zone. Not all operating systems support this.
+> As a best practice, don't use a *.local* domain for your private DNS zone. Not all operating systems support this.
 
 ## Private zone resiliency
 
diff --git a/articles/dns/public-dns-overview.md b/articles/dns/public-dns-overview.md
@@ -0,0 +1,65 @@
+---
+title: What is Azure Public DNS?
+description: Overview of DNS hosting service on Microsoft Azure. Host your domain on Microsoft Azure.
+author: greg-lindsay
+ms.service: azure-dns
+ms.topic: overview
+ms.date: 08/09/2024
+ms.author: greglin
+#Customer intent: As an administrator, I want to evaluate Azure Public DNS so I can determine if I want to use it instead of my current DNS service.
+---
+
+# What is Azure Public DNS?
+
+Azure Public DNS is a hosting service for DNS domains that provides name resolution by using Microsoft Azure infrastructure. By hosting your domains in Azure, you can manage your DNS records by using the same credentials, APIs, tools, and billing as your other Azure services.
+
+You can't use Azure Public DNS to buy a domain name. For an annual fee, you can buy a domain name by using [App Service domains](../app-service/manage-custom-dns-buy-domain.md#buy-and-map-an-app-service-domain) or a third-party domain name registrar. Your domains then can be hosted in Azure Public DNS for record management. For more information, see [Delegate a domain to Azure DNS](dns-domain-delegation.md).
+
+The following features are included with Azure Public DNS.
+
+## Reliability and performance
+
+DNS domains in Azure Public DNS are hosted on Azure's global network of DNS name servers. Azure Public DNS uses anycast networking. Each DNS query is answered by the closest available DNS server to provide fast performance and high availability for your domain.
+
+## Security
+
+ Azure Public DNS is based on Azure Resource Manager, which provides features such as:
+
+* [Azure role-based access control (Azure RBAC)](../azure-resource-manager/management/overview.md) to control who has access to specific actions for your organization.
+* [Activity logs](../azure-resource-manager/management/overview.md) to monitor how a user in your organization modified a resource or to find an error when troubleshooting.
+* [Resource locking](../azure-resource-manager/management/lock-resources.md) to lock a subscription, resource group, or resource. Locking prevents other users in your organization from accidentally deleting or modifying critical resources.
+
+For more information, see [How to protect DNS zones and records](dns-protect-zones-recordsets.md). 
+
+## DNSSEC
+
+Azure Public DNS doesn't currently support DNSSEC. In most cases, you can reduce the need for DNSSEC by consistently using HTTPS/TLS in your applications. If DNSSEC is a critical requirement for your DNS zones, you can host these zones with third-party DNS hosting providers.
+
+## Ease of use
+
+ Azure Public DNS can manage DNS records for your Azure services and provide DNS for your external resources as well. Azure Public DNS is integrated in the Azure portal and uses the same credentials, support contract, and billing as your other Azure services. 
+
+DNS billing is based on the number of DNS zones hosted in Azure and on the number of DNS queries received. To learn more about pricing, see [Azure DNS pricing](https://azure.microsoft.com/pricing/details/dns/).
+
+Your domains and records can be managed by using the Azure portal, Azure PowerShell cmdlets, and the cross-platform Azure CLI. Applications that require automated DNS management can integrate with the service by using the REST API and SDKs.
+
+## Customizable virtual networks with private domains
+
+Azure Public DNS also supports private DNS domains. This feature allows you to use your own custom domain names in your private virtual networks rather than the Azure-provided names available today.
+
+For more information, see [Use Azure DNS for private domains](private-dns-overview.md).
+
+## Alias records
+
+Azure Public DNS supports alias record sets. You can use an alias record set to refer to an Azure resource, such as an Azure public IP address, an Azure Traffic Manager profile, or an Azure Content Delivery Network (CDN) endpoint. If the IP address of the underlying resource changes, the alias record set seamlessly updates itself during DNS resolution. The alias record set points to the service instance, and the service instance is associated with an IP address.
+
+Also, you can now point your apex or naked domain to a Traffic Manager profile or CDN endpoint using an alias record. An example is contoso.com.
+
+For more information, see [Overview of Azure DNS alias records](dns-alias.md).
+
+## Next steps
+
+* To learn about DNS zones and records, see [DNS zones and records overview](dns-zones-records.md).
+* To learn how to create a zone in Azure Public DNS, see [Create a DNS zone](./dns-getstarted-portal.md).
+* For frequently asked questions about Azure DNS, see the [Azure DNS FAQ](dns-faq.yml).
+* [Learn module: Introduction to Azure DNS](/training/modules/intro-to-azure-dns).
