Last active
August 25, 2023 17:08
-
-
Save dmauser/ea8451ab359e55675347e718993efda8 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This is a script leveraged on OnPrem DNS Integration with Private Link focusing on Conditional Forwarders. | |
| #On DNS Server side: | |
| #Set DNS Forwarder to INETDNS (DMZ DNS) | |
| Get-DnsServerForwarder | |
| Set-DnsServerForwarder -IPAddress 192.168.0.45 # Set DMZ DNS as Forwarder | |
| Remove-DnsServerForwarder -IPAddress 192.168.0.45 -Force | Clear-DnsServerCache -Force | |
| #Zone: privatelink.blob.core.windows.net_ | |
| Add-DnsServerConditionalForwarderZone -Name "privatelink.blob.core.windows.net" -MasterServers 10.0.0.4 -PassThru | |
| Clear-DnsServerCache -Force | |
| #Making Privatelink.blob.core.windows.net zone to work | SOLUTION: RootHints = No Forwarders set. | |
| Get-DnsServerForwarder | |
| Remove-DnsServerForwarder -IPAddress 192.168.0.45 -Force | Clear-DnsServerCache -Force | |
| Clear-DnsServerCache -Force | |
| Remove-DnsServerZone -Name "privatelink.blob.core.windows.net" -Force | |
| Clear-DnsServerCache -Force | |
| #WORKAROUND for PL/PE add Zone: blob.core.windows.net_ | |
| Get-DnsServerForwarder | |
| Set-DnsServerForwarder -IPAddress 192.168.0.45 # Set DMZ DNS as Forwarder | |
| Remove-DnsServerForwarder -IPAddress 192.168.0.45 -Force | Clear-DnsServerCache -Force | |
| Add-DnsServerConditionalForwarderZone -Name "blob.core.windows.net" -MasterServers 10.0.0.4 -PassThru | |
| Clear-DnsServerCache -Force | |
| Remove-DnsServerZone -Name "blob.core.windows.net" -Force | |
| Clear-DnsServerCache -Force | |
| # FQDN Cond. Forwarder: stgspk1.blob.core.windows.net | |
| Add-DnsServerConditionalForwarderZone -Name "stgspk1.blob.core.windows.net" -MasterServers 10.0.0.4 -PassThru | |
| Clear-DnsServerCache -Force -Verbose | |
| Remove-DnsServerZone -Name "stgspk1.blob.core.windows.net" -Force | |
| Clear-DnsServerCache -Force -Verbose | |
| Client side: | |
| #DNS LAB - OnPrem Integration with Azure Private DNS Zone. | |
| Resolve-DnsName -Name stgspk1.blob.core.windows.net. -DnsOnly -Type A | Format-Table -AutoSize # Using Local OnPrem DNS Server | |
| Resolve-DnsName -Name stgspk1.blob.core.windows.net. -DnsOnly -Type A -Server 10.0.0.4 | Format-Table -AutoSize #Direct Query to Azure Custom DNS Server. | |
| Resolve-DnsName -Name stgspk1.blob.core.windows.net. -DnsOnly # Type A and AAAA (same as NSLOOKUP) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment