I’m starting off-topic (it does say Ramblings at the top of the screen after all) but stay with me! <\/p>\n\n\n\n
😃👀🍻👀😃<\/p>\n\n\n\n
Hiding your DNS might seem like a good idea<\/strong>; I have nothing against as long as it is free, but to me it is like changing RDP port 3389 to 4444 (not that you have RDP directly exposed to the internet of course – you have an RD Gateway!). Sure, you’ve made it harder to identify an available target, but if someone is really after you they’ll have methods to get around this pretty quickly using port scans or other techniques. You’ve also made it harder for people trying to help to work out what is going on. <\/p>\n\n\n\n The best thing you can do is hurry up on that cloud journey<\/strong> so you can offload concerns about external IP addresses exposing your on-premises entry points. And as long as you are keeping those entry points secure and up to date, there shouldn’t be any major concern here anyway. <\/p>\n\n\n\n If you are running RDS or Citrix services<\/strong>, generally these do not work well with SSL inspection or pre-authentication so are configured to pass-through directly to the entry point i.e. Cloudflare is providing minimal benefit here.<\/p>\n\n\n\n Instead of being fancy pants <\/strong>and paying for these services to provide minimal benefit, let’s look at a great set up for minimal cost that let’s you easily add, remove or change DNS entries right in the portal you use everyday!<\/p>\n\n\n\n First, make sure your entry points are secure:<\/strong><\/p>\n\n\n\n Right what was I actually posting about? Ah yes – Azure DNS is easy to set up <\/strong>and costs literally a dollar and cents per month. You don’t transfer your records to Azure though as they are not (and may never be) a registrar. But no bother, once you’ve set up your records in Azure, you simply change the ‘nameserver’ configuration with your existing provider. I use Free Parking in New Zealand, a great low(ish) cost no-frills provider. About $45\/year for a domain name and of course they have DNS management, but I’d rather do it in Azure so I after I configured the zone, I copied the four nameserver entries on the right:<\/p>\n\n\n\n …then changed my nameservers from Free Parking to Azure – there will be somewhere you can do this in your providers portal, or just log a request for them to do it:<\/p>\n\n\n\n <\/p>\n\n\n\n Done! Once the update is complete you are now serving and managing your DNS entries from the familiar Azure portal.<\/p>\n\n\n\n Here is my Azure DNS zone cost… as you can see – cheap as cheeps mate! Yes I’ll pay a whopping NZD$1.58\/month or $18.96\/year. That’s only 5.42857 Steak ‘n’ Cheese from Mrs. Miggins pie shop! 🥧<\/p>\n\n\n\n The console is intuitive and I love the fact I can manage my DNS easily and securely from within my Azure tenant. I can also get some metrics about the DNS usage that I couldn’t get before:<\/p>\n\n\n\n Thanks Azure – you get better every day!<\/p>\n\n\n\n TTFN!! 🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻👀🍻<\/p>\n![\"\"](\"https:\/\/www.howdoiuseacomputer.com\/wp-content\/uploads\/2022\/07\/image-5.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.howdoiuseacomputer.com\/wp-content\/uploads\/2022\/07\/image-4.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.howdoiuseacomputer.com\/wp-content\/uploads\/2022\/07\/image-3.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.howdoiuseacomputer.com\/wp-content\/uploads\/2022\/07\/image-6.png\")
<\/figure>\n\n\n\n