Skip to content

Commit dcf64e3

Browse files
mblanco77mblanco77
committed
changes notes and table
1 parent de269c2 commit dcf64e3

File tree

1 file changed

+34
-34
lines changed

1 file changed

+34
-34
lines changed

articles/private-link/private-endpoint-dns.md

Lines changed: 34 additions & 34 deletions
Original file line numberDiff line numberDiff line change
@@ -30,37 +30,37 @@ Your applications don't need to change the connection URL. When attempting to re
3030

3131
For Azure services, use the recommended zone names as described in the following table:
3232

33-
| Private Link resource type | Subresource | Zone name | Public zone name |
34-
|----------------------------------------------------------------------------------------|-------------------------------------------------|-------------------------------------------------|-------------------------------------|
35-
| SQL DB (Microsoft.Sql/servers) | Sql Server (sqlServer) | privatelink.database.windows.net | database.windows.net |
36-
| Azure Synapse Analytics (Microsoft.Sql/servers) | Sql Server (sqlServer) | privatelink.database.windows.net | database.windows.net |
37-
| Storage Account (Microsoft.Storage/storageAccounts) | Blob (blob, blob_secondary) | privatelink.blob.core.windows.net | blob.core.windows.net |
38-
| Storage Account (Microsoft.Storage/storageAccounts) | Table (table, table_secondary) | privatelink.table.core.windows.net | table.core.windows.net |
39-
| Storage Account (Microsoft.Storage/storageAccounts) | Queue (queue, queue_secondary) | privatelink.queue.core.windows.net | queue.core.windows.net |
40-
| Storage Account (Microsoft.Storage/storageAccounts) | File (file, file_secondary) | privatelink.file.core.windows.net | file.core.windows.net |
41-
| Storage Account (Microsoft.Storage/storageAccounts) | Web (web, web_secondary) | privatelink.web.core.windows.net | web.core.windows.net |
42-
| Data Lake File System Gen2 (Microsoft.Storage/storageAccounts) | Data Lake File System Gen2 (dfs, dfs_secondary) | privatelink.dfs.core.windows.net | dfs.core.windows.net |
43-
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | SQL | privatelink.documents.azure.com | documents.azure.com |
44-
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | MongoDB | privatelink.mongo.cosmos.azure.com | mongo.cosmos.azure.com |
45-
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | Cassandra | privatelink.cassandra.cosmos.azure.com | cassandra.cosmos.azure.com |
46-
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | Gremlin | privatelink.gremlin.cosmos.azure.com | gremlin.cosmos.azure.com |
47-
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | Table | privatelink.table.cosmos.azure.com | table.cosmos.azure.com |
48-
| Azure Database for PostgreSQL - Single server (Microsoft.DBforPostgreSQL/servers) | postgresqlServer | privatelink.postgres.database.azure.com | postgres.database.azure.com |
49-
| Azure Database for MySQL (Microsoft.DBforMySQL/servers) | mysqlServer | privatelink.mysql.database.azure.com | mysql.database.azure.com |
50-
| Azure Database for MariaDB (Microsoft.DBforMariaDB/servers) | mariadbServer | privatelink.mariadb.database.azure.com | mariadb.database.azure.com |
51-
| Azure Key Vault (Microsoft.KeyVault/vaults) | vault | privatelink.vaultcore.azure.net | vaultcore.azure.net |
52-
| Azure Kubernetes Service - Kubernetes API (Microsoft.ContainerService/managedClusters) | managedCluster | {guid}.privatelink.{region}.azmk8s.io | {guid}.{region}.azmk8s.io |
53-
| Azure Search (Microsoft.Search/searchServices) | searchService | privatelink.search.windows.net | search.windows.net |
54-
| Azure Container Registry (Microsoft.ContainerRegistry/registries) | registry | privatelink.azurecr.io | azurecr.io |
55-
| Azure App Configuration (Microsoft.Appconfiguration/configurationStores) | configurationStore | privatelink.azconfig.io | azconfig.io |
56-
| Azure Backup (Microsoft.RecoveryServices/vaults) | vault | privatelink.{region}.backup.windowsazure.com | {region}.backup.windowsazure.com |
57-
| Azure Event Hub (Microsoft.EventHub/namespaces) | namespace | privatelink.servicebus.windows.net | servicebus.windows.net |
58-
| Azure Service Bus (Microsoft.ServiceBus/namespaces) | namespace | privatelink.servicebus.windows.net | servicebus.windows.net |
59-
| Azure Relay (Microsoft.Relay/namespaces) | namespace | privatelink.servicebus.windows.net | servicebus.windows.net |
60-
| Azure Event Grid (Microsoft.EventGrid/topics) | topic | topic.{region}.privatelink.eventgrid.azure.net | topic.{region}.eventgrid.azure.net |
61-
| Azure Event Grid (Microsoft.EventGrid/domains) | domain | domain.{region}.privatelink.eventgrid.azure.net | domain.{region}.eventgrid.azure.net |
62-
| Azure WebApps (Microsoft.Web/sites) | site | privatelink.azurewebsites.net | azurewebsites.net |
63-
| Azure Machine Learning(Microsoft.MachineLearningServices/workspaces) | workspace | privatelink.api.azureml.ms | api.azureml.ms |
33+
| Private Link resource type | Subresource | Zone name | Public zone name |
34+
|---|---|---|---|
35+
| SQL DB (Microsoft.Sql/servers) | Sql Server (sqlServer) | privatelink.database.windows.net | database.windows.net |
36+
| Azure Synapse Analytics (Microsoft.Sql/servers) | Sql Server (sqlServer) | privatelink.database.windows.net | database.windows.net |
37+
| Storage Account (Microsoft.Storage/storageAccounts) | Blob (blob, blob_secondary) | privatelink.blob.core.windows.net | blob.core.windows.net |
38+
| Storage Account (Microsoft.Storage/storageAccounts) | Table (table, table_secondary) | privatelink.table.core.windows.net | table.core.windows.net |
39+
| Storage Account (Microsoft.Storage/storageAccounts) | Queue (queue, queue_secondary) | privatelink.queue.core.windows.net | queue.core.windows.net |
40+
| Storage Account (Microsoft.Storage/storageAccounts) | File (file, file_secondary) | privatelink.file.core.windows.net | file.core.windows.net |
41+
| Storage Account (Microsoft.Storage/storageAccounts) | Web (web, web_secondary) | privatelink.web.core.windows.net | web.core.windows.net |
42+
| Data Lake File System Gen2 (Microsoft.Storage/storageAccounts) | Data Lake File System Gen2 (dfs, dfs_secondary) | privatelink.dfs.core.windows.net | dfs.core.windows.net |
43+
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | SQL | privatelink.documents.azure.com | documents.azure.com |
44+
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | MongoDB | privatelink.mongo.cosmos.azure.com | mongo.cosmos.azure.com |
45+
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | Cassandra | privatelink.cassandra.cosmos.azure.com | cassandra.cosmos.azure.com |
46+
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | Gremlin | privatelink.gremlin.cosmos.azure.com | gremlin.cosmos.azure.com |
47+
| Azure Cosmos DB (Microsoft.AzureCosmosDB/databaseAccounts) | Table | privatelink.table.cosmos.azure.com | table.cosmos.azure.com |
48+
| Azure Database for PostgreSQL - Single server (Microsoft.DBforPostgreSQL/servers) | postgresqlServer | privatelink.postgres.database.azure.com | postgres.database.azure.com |
49+
| Azure Database for MySQL (Microsoft.DBforMySQL/servers) | mysqlServer | privatelink.mysql.database.azure.com | mysql.database.azure.com |
50+
| Azure Database for MariaDB (Microsoft.DBforMariaDB/servers) | mariadbServer | privatelink.mariadb.database.azure.com | mariadb.database.azure.com |
51+
| Azure Key Vault (Microsoft.KeyVault/vaults) | vault | privatelink.vaultcore.azure.net | vaultcore.azure.net |
52+
| Azure Kubernetes Service - Kubernetes API (Microsoft.ContainerService/managedClusters) | managedCluster | {guid}.privatelink.{region}.azmk8s.io | {guid}.{region}.azmk8s.io |
53+
| Azure Search (Microsoft.Search/searchServices) | searchService | privatelink.search.windows.net | search.windows.net |
54+
| Azure Container Registry (Microsoft.ContainerRegistry/registries) | registry | privatelink.azurecr.io | azurecr.io |
55+
| Azure App Configuration (Microsoft.Appconfiguration/configurationStores) | configurationStore | privatelink.azconfig.io | azconfig.io |
56+
| Azure Backup (Microsoft.RecoveryServices/vaults) | vault | privatelink.{region}.backup.windowsazure.com | {region}.backup.windowsazure.com |
57+
| Azure Event Hub (Microsoft.EventHub/namespaces) | namespace | privatelink.servicebus.windows.net | servicebus.windows.net |
58+
| Azure Service Bus (Microsoft.ServiceBus/namespaces) | namespace | privatelink.servicebus.windows.net | servicebus.windows.net |
59+
| Azure Relay (Microsoft.Relay/namespaces) | namespace | privatelink.servicebus.windows.net | servicebus.windows.net |
60+
| Azure Event Grid (Microsoft.EventGrid/topics) | topic | topic.{region}.privatelink.eventgrid.azure.net | topic.{region}.eventgrid.azure.net |
61+
| Azure Event Grid (Microsoft.EventGrid/domains) | domain | domain.{region}.privatelink.eventgrid.azure.net | domain.{region}.eventgrid.azure.net |
62+
| Azure WebApps (Microsoft.Web/sites) | site | privatelink.azurewebsites.net | azurewebsites.net |
63+
| Azure Machine Learning(Microsoft.MachineLearningServices/workspaces) | workspace | privatelink.api.azureml.ms | api.azureml.ms |
6464

6565

6666

@@ -112,7 +112,7 @@ In order to get on premises clients to resolve the IP address of a private endpo
112112

113113
The following scenario is appropriate for an on premises network that has a DNS forwarder in Azure, which in turn is responsible for resolving all the DNS queries via a server level forwarder to the Azure provided DNS [168.63.129.16](../virtual-network/what-is-ip-address-168-63-129-16.md)
114114

115-
> [!NOTE]
115+
> [!NOTE]
116116
> This scenario is using Azure SQL database recommended Private DNS zone. For other services you can adjust the model using the following reference [Azure services DNS zone configuration](#azure-services-dns-zone-configuration).
117117
118118
To configure properly you would need the following resources:
@@ -129,7 +129,7 @@ The following diagram illustrates the DNS resolution sequence from an 
129129
This configuration can be extended for an on premise network that has already a DNS solution in place. 
130130
The on premises DNS solution needs to be configured to forward DNS traffic to the Azure DNS via a [conditional forwarder](../virtual-network/virtual-networks-name-resolution-for-vms-and-role-instances.md#name-resolution-that-uses-your-own-dns-server) referencing the Custom DNS deployed in Azure.
131131

132-
> [!NOTE]
132+
> [!NOTE]
133133
> This scenario is using Azure SQL database recommended Private DNS zone. For other services you can adjust the model using the following reference [Azure services DNS zone configuration](#azure-services-dns-zone-configuration).
134134
135135
To configure properly you would need the following resources :
@@ -141,7 +141,7 @@ To configure properly you would need the following resources :
141141
- Private endpoint information (FQDN record name and Private IP Address)
142142
The following diagram illustrates the DNS resolution sequence from an on premise network that conditionally forwards DNS traffic to Azure, where the resolution is made by an private DNS zone linked to a virtual network
143143

144-
> [!IMPORTANT]
144+
> [!IMPORTANT]
145145
> The conditional forwarding must be made to the [public DNS zone](#azure-services-dns-zone-configuration) Ex: `database.windows.net` , instead of **privatelink**.database.windows.net
146146
147147
:::image type="content" source="media/private-endpoint-dns/on-premise-forwarding-to-azure.png" alt-text="on premise forwarding to azure dns":::

0 commit comments

Comments
 (0)