Copyright (c) 2026 MindMesh Academy. All rights reserved. This content is proprietary and may not be reproduced or distributed without permission.
2.2.2. Private DNS Zones
Private DNS zones provide name resolution inside your Azure environment without exposing names to the internet.
Key Capabilities:
- Automatic VM registration (auto-registration)
- Split-horizon DNS (same name resolves differently inside vs. outside)
- Private Endpoint DNS integration
VNet Linking:
| Link Type | Auto-Registration | Use Case |
|---|---|---|
| With registration | Yes | VMs automatically get DNS records |
| Without registration | No | Resolution only (e.g., for Private Endpoints) |
Private Endpoint DNS Zones:
Each Azure service has a specific private DNS zone for Private Endpoints:
| Service | Private DNS Zone |
|---|---|
| Azure Storage (blob) | privatelink.blob.core.windows.net |
| Azure SQL Database | privatelink.database.windows.net |
| Azure Key Vault | privatelink.vaultcore.azure.net |
| Azure App Service | privatelink.azurewebsites.net |
Resolution Flow for Private Endpoints:
Written byAlvin Varughese
Founder•15 professional certifications