update procedure for freshness

Author: vhorne

articles/firewall-manager/dns-settings.md

@@ -5,25 +5,17 @@ services: firewall-manager
 author: vhorne
 ms.service: firewall-manager
 ms.topic: how-to
-ms.date: 02/17/2021
+ms.date: 04/06/2023
 ms.author: victorh
 ---
 
 # Azure Firewall policy DNS settings
 
-You can configure a custom DNS server and enable DNS proxy for Azure Firewall policies. You can configure these settings when you deploy the firewall or later from the **DNS settings** page.
+You can configure a custom DNS server and enable DNS proxy for Azure Firewall policies. You can configure these settings when you deploy the firewall or later from the **Settings**, **DNS** page.
 
 ## DNS servers
 
-A DNS server maintains and resolves domain names to IP addresses. By default, Azure Firewall uses Azure DNS for name resolution. The **DNS server** setting lets you configure your own DNS servers for Azure Firewall name resolution. You can configure a single or multiple servers.
-
-### Configure custom DNS servers
-
-1. Select your firewall policy.
-2. Under **Settings**, select **DNS Settings**.
-3. Under **DNS servers**, you can type or add existing DNS servers that have been previously specified in your Virtual Network.
-4. Select **Save**.
-5. The firewall now directs DNS traffic to the specified DNS server(s) for name resolution.
+A DNS server maintains and resolves domain names to IP addresses. By default, Azure Firewall uses Azure DNS for name resolution. The **DNS servers** setting lets you configure your own DNS servers for Azure Firewall name resolution. You can configure a single or multiple servers.
 
 ## DNS proxy
 
@@ -37,25 +29,28 @@ DNS Proxy configuration requires three steps:
 2. Optionally configure your custom DNS server or use the provided default.
 3. Finally, you must configure the Azure Firewall’s private IP address as a Custom DNS address in your virtual network DNS server settings. This ensures DNS traffic is directed to Azure Firewall.
 
-### Configure DNS proxy
+## Configure firewall policy DNS
+
+1. Select your firewall policy.
+2. Under **Settings**, select **DNS**.
+1. Select **Enabled** to enable DNS settings for this policy.
+1. Under **DNS servers**, you can accept the **Default (Azure provided)** setting, or select **Custom** to add custom DNS servers you'll configure for your virtual network.
+1. Under **DNS Proxy**, select **Enabled** to enable DNS Proxy if you configured a customer DNS server.
+1. Select **Apply**.
 
-To configure DNS proxy, you must configure your virtual network DNS servers setting to use the firewall private IP address. Then, enable DNS Proxy in Azure Firewall policy **DNS settings**.
 
-#### Configure virtual network DNS servers
+## Configure virtual network
+
+To configure DNS proxy, you must also configure your virtual network DNS servers setting to use the firewall private IP address.
+
+### Configure virtual network DNS servers
 
 1. Select the virtual network where the DNS traffic will be routed through the Azure Firewall.
 2. Under **Settings**, select **DNS servers**.
 3. Select **Custom** under **DNS servers**.
 4. Enter the firewall’s private IP address.
 5. Select **Save**.
 
-#### Enable DNS proxy
-
-1. Select your Azure Firewall policy.
-2. Under **Settings**, select **DNS settings**.
-3. By default, **DNS Proxy** is disabled. When enabled, the firewall listens on port 53 and forwards DNS requests to the configured DNS servers.
-4. Review the **DNS servers** configuration to make sure that the settings are appropriate for your environment.
-5. Select **Save**.
 
 ## Next steps