How to Use Azure DNS Private Resolver and Inbound Endpoints

Thanks for this video.
I learned also that your DNS server must be configured to use root hints for this to work, or if you do have a general forwarder created, the DNS sever it is forwarded to must have the conditional forwarder and be able to reach your Azure DNS Private Resolver. In my circumstance, DNS was forwarding to a public DNS provider and thus a recursive query was being using instead of iterative and as a result it did not ever hit the conditional forwarder and thus did not return the private address.
Was a tricky one to resolve.

Nice video, thank you, i read like 200 times the azure documentation and still did not understand how this works until i saw your video.

Travis, Thank You very much. Your explanation has greatly helped me understanding Azure Private Resolver's and its inbound endpoints role and function.

Hi! Thank You for your video, it helped me understanding more of this technology. I suspect there is a mistake in the part describing the conditional forwarder settings, because it should be configured for the public domain and not the privatelink one (as described in the MS documentation - which makes sense since applications like Azure Storage Explorer won't use URLs to privatelink domains). Apparently UA-cam deleted my previous message on the subject, I guess because of a link to MS documentation.

This video is exactly what I'm experiencing with a client set-up. Amazing.

Nice video as always Travis :) Is this service supposed to support reverse dns in the future?

Thank you so much!

Hi Travis nice video. MS document state the conditional forwarder zone on-prem should be the public facing zone so should be: blob core windows net and not privatelink blob windows net - which is correct please? Thanks

Great video Travis :)
Everything working as expected expect the DNS server. My DNS server is not responding. Could you please make a video to setup a DNS server on on-prem or share a video link if you already have one!
Thanks in advance and looking forward to more videos :)

Great video

Hi Travis, Great Vid. However a point to the right direction would be appreciated here. I already have Azure Active Directory Domain Service configured handling dns resolution in a production environment. My challenge using this is i cant do conditional forwarding with AADDS. Whats my best route migrating to Azure DNS Private Resolver

Great explainer. Would this be possible without a conditional forwarder? Would be nice if I can configure it for the Azure VPN client's xml

It was a nice explanation ,what if I dont have Windows machines and DNS servers. How Do I create these conditional forwarders?
any thoughts on this please share

Thank you so much for explaining the concept so beautifully. I have a follow-up question, I'd appreciate if you could please answer that.
I'd like to know if we configure Azure VNET with Azure provided DNS and add Azure Provided DNS IP in the conditional forwarder of local DNS server, then how is Private resolver working differently than Azure Provided DNS IP? Eventually it is still forwarding requests to azure to resolve queries from Azure Private DNS zones.

Hi @travis
Do you have any video how to setup on prem network for using this video

Thanks!

Do we also use DNS resolver inbound address as the Firewall DNS proxy? Is it use to avoid the lopping for forwarding rules

I'm using 2 regions currently with 20+ on prem AD-DNS servers. I need clients in both regions to be able to resolve cross-regionally. Is that possible with this configuration?

Hello travis...i have one question i have private endpoints for storage account and inbould public access for databricks when i am connecting to power bi to adls storage account iam unable to connect to it when i am switching allow public access in networking then i am able to viee the data in power bi and when i n networking i am switching public access disabled i am unable to view it can you please help me on that.

Hello Robert, thanks for sharing your wonderful knowledge. can you please give me the reason why I am getting DNS request timed out error while resolving the DNS in my lab. FYI, the test VM that I am using is in azure. I have configured same as you shown in video.
Thanks.

❤❤❤

Hello is there a way to contact you for business purposes?

Travis ty again for such a great explanation! In case when azure firewall proxy dns is used, do we put both IPs of DNS private resolver? such as inbound and outbound? Maybe you could cover it in the coming up session?
PS: Current setup is to have AD DNS(static IP/DNS) and AZFW are in the same vnet. In AZFW proxy entered AD DNS. In the vnet DNS entered AZFW private IP - works great, how Private DNS would come to this picture?