Private Endpoints and DNS Part Deux: Azure Private DNS Zones

Thank you so much for this great explanation.
I always find your videos super helpful.

thank you for the video. The new managed service "DNS private resolver" does the exact same thing but with additional features

Most enterprise dns has api. You can use powershell to automate the dns during the build process. Cool video though, thanks!

Great video thanks! So, what would you do if you didn't have a private DNS zone in your hub? Would you create them manually and if so, would you need to add something into the Virtual network links on the private DNS zone for your spoke VNETs?

Awesome video! Could you please make another video demonstrating how to leverage Azure DNS Private Resolver with inbound and outbound endpoints to resolve Azure Private Endpoints from On-Prem Windows DNS server, as well as reverse resolving from Azure to on-Premises? Thanks in advance and looking forward to the demo :)

I may have missed it from a previous video, but is vnet peering configured between the 3 vnets ?

What I can't understand is why you would forward DNS from your DC to another DNS forwarder. Why wouldn't you just attach the private DNS zone to the vNet containing your DCs?

Thanks for the video, i tríes to replícate it in my environment, however, on a server that is standalone DNS, i aleyas get the ip from the interface and not from the privatelink.

Do you have Custom DNS setup on the vNet that the DNS forwarder lives on? Or are you using the Default (Azure Provided) DNS on that vNet?

Is there an easy way to resolve multiple hostnames in a private DNS zone? I have about 900 hostnames and Ip addresses I need to add on my private DNS zone, Should I be adding all of them manually? I checked with a couple of them and it works, the Private DNS zone returns the corresponding IP but how do I do it for a really big IP & hostname range?

Great video as usual, i do have a question / clarification if possible, when testing the solution and trying to change the DNS configuration for a specific PEP, i am always receiving the error : A configuration already exists with a private DNS name with the same name !! however i has a able to achieve the same result using the virtual network link withing the DNS private zone to link different VNETs. what do you thing is the problem !!

Would the new Azure private DNS resolver resolve the issues with the wireserver being able to only see the private endpoint dns records local to the vnet?

great videos and great explanations. Is there a way to use these when using a Split Tunnel VPN like Azure VPN?

Microsoft recommended having just one private dns zone for each private endpoint type in the hub network. When you create the private endpoint in the spokes and register it to DNS, just select the private endpoint dns zone on the hub instead of creating new private dns zone in the spoke. Isn't that a simpler option that having to merge it manually in the hub from the different spoke private zones?

This is too complicated and not easy to understand still