Author : MD TAREQ HASSAN | Updated : 2022/02/05

What is DNS Proxy?

Enable DNS Proxy

Azure Firewall - enable DNS proxy using Azure Portal

Set VNet DNS Server

If we have hub-spoke topology, we need to set VNet DNS Server to Firewall private IP for both Hub VNet and Spoke VNet.

Azure Firewall DNS Proxy - Firewall private IP as VNet DNS server


We need to attach Private DNS Zones to Hub VNet to ensure that name resolution will work for private endpoints and private IP of Application Gateway:

Linking a private DNS to Hub VNet

Azure Firewall DNS Proxy - linking private DNS zone to Hub VNet

Name Resolution from On-premise