Networking

The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.

Virtual Network:

  • Service overview

  • Technical documentation

  • Pricing details
  • Traffic Manager:

  • Service overview

  • Technical documentation

  • Pricing details
  • Network Watcher:

  • Service overview

  • Technical documentation

  • Pricing details
  • If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.

    • Hot ideas
    • Top ideas
    • New ideas
    • My feedback
    1. Traffic Manager should default to port 443 for HTTPS

      First time configuring Traffic Manager and I pointed it at https but forgot to change the port, took a support call to resolve.

      Suggest that the default port be changed to 443 if you toggle to https, or at least warn that you are on a non-default https port

      6 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    2. Support SSHFP records in Azure DNS zones

      Since Windows now supports OpenSSH natively, as well as Linux and other clients/servers on the same network, supporting this standard for server authentication seems like an obvious win.

      6 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →

      Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

    3. Audit logs for DNS record changes

      Multiple people have access to our DNS zones. We would like to know who changed what.

      5 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      2 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    4. Traffic Manager Probe Success and Failure Logs

      Currently in the metrics for Traffic Manager, you cannot see a history of when probes passed or failed. You can only see an average of the probes over a period of time.

      Seeing the logs of when probes succeeded and failed for each endpoint could be helpful for troubleshooting. Particularly when you think a failover should have occurred, but it did not.

      5 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      started  ·  0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    5. DNS and DHCP server without the dependency of on premises server and router

      Cloud technology has great competition. In future, the leader of cloud technology will have one edge against their competitors which will be providing DHCP/DNS Server on the cloud without an on-premises server and all workstations can log in from anywhere and WDS will be more easy for IT support team in an organization.

      5 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    6. Support reverse DNS for Azure Container Instance (ACI)

      For my project I'm setting up an Azure Container Instance with a public IP address and FDQN. The docker image used (OWASP ZAP), requires a reverse DNS.

      At this moment a public IP address is not visible in the Azure CLI networking, and this a reverse FDQN cannot be setup and results in the following error;

      PublicIp is trying to use does not belong to subscription yyyyyy. One of the following conditions need to be met to establish ownership: 1) ReverseFqdn matches fqdn of any public ip resource under the subscription; 2) ReverseFqdn resolves to thefqdn (through CName records chain)…

      5 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    7. SQL Managed Instances VNET DNS Queries are not clear and impact Windows VMs on the same VNET

      There is no clarity on how DNS is resolved under a SQL managed instance VNET and the consequential impact on Windows VMs hosted in the same VNET

      5 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    8. Provide traffic manager regions in Africa/South Africa

      Hi,

      You currently have good coverage for external external traffic manager endpoints everywhere except none in Africa. This will result in poor performance for Africa clients even if we put servers all over Africa.

      Do you plan to extend Azure coverage to Africa/South Africa?

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      3 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    9. Performance based load balancing should consider application load as an input

      Akamai offers ability to load balance traffic based on the current load of the endpoint. The endpoints return load data via GET or POST to the akamai api. This basically enables customers to get best of both the world's, be able to route traffic to the least latent node and fail over to next latent node if it gets overloaded.

      It can be argued that the node should take itself offline via health probes when it is overloaded, but that's not ideal as it would cause massive traffic swings instead of smoothening out the requests.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      under review  ·  0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    10. Support Azure Traffic Manager endpoints that are nested and external to allow us to use alias records

      We have an Apex domain that needs to point to Traffic Manager. We use Traffic Manager nested profiles.
      We want to use alias records to point to our DNS alias record to Traffic manager. This requires using external endpoints in traffic manager.
      Problem is that we use nested profiles. It is not possible to create nested external endpoints in traffic manager.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →

      Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

    11. Enable Internal Facing Traffic Manager profile

      As of today, Azure Traffic manager supports only Internet facing applications. However, it does allow routing traffic to external end points (DNS/IP) which could be used to route traffic to on-prem resources.

      It would be an essential feature if we could leverage the same features on a vnet.

      Eg. Route internal traffic to multiple on-prem resources (via Express route) based on the service health check.

      Features to support
      1. Enable Internal facing with custom domains (internal domains) & SSL

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    12. API to retrieve the max number of DNS zones currently configured in each sub

      A support ticket can increase the max number of DNS zones in a subscription (and correspondingly reduce the max number of records in zones then created). The API results for a zone GET includes MaxNumberOfRecords. It would also be useful to be able to retrieve MaxNumberOfZones for the DNS provider in a subscription.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    13. Allow modifying TTL per record instead of per record-set

      Real-world scenarios need different TTL values per record in the same zone. The service currently allows only to define TTL per record-set that is not bad, but not good enough.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    14. Azure DNS should not be listed as globally available

      According to

      https://azure.microsoft.com/en-us/regions/services/

      Azure DNS, as a service, is globally available. However, as stated by a Microsoft support engineer here

      https://social.msdn.microsoft.com/Forums/en-US/a26ca6e1-28a6-44f1-8807-6fdd6bdae66f/

      it isn't. The service availability chart should reflect this.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →

      Thank you for the feedback.

      The intent of the ‘global’ availability for Azure DNS is to indicate that is available as part of the Azure Public cloud, but not tied to any specific region. However, I appreciate that this can easily be misunderstood as meaning the service is available in Azure National Clouds, which it is not (as yet).

      I’ll share your feedback with the page owners.

    15. Traffic manager https

      Why dont subdomains of trafficmanager.net automatically support https? Similar to azurewebsites.net.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    16. Roelant

      when adding endpoints to the traffic manager, you get all app-services that are available, but in our case, the list is very long, and searching makes it difficult. The list is not sorted, and neither can we filter it.
      Adding a filter would be very helpfull.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      planned  ·  0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    17. traffic manager api

      I would like an API call that can be made to get the list of traffic manager IP addresses. (this list https://docs.microsoft.com/en-us/azure/traffic-manager/traffic-manager-faqs#what-are-the-ip-addresses-from-which-the-health-checks-originate.)

      That way we can automate the checking of this list and alert if it is amended, and also automate updating our azure services. Just having a website to check is too manual.

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      started  ·  0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    18. rfc7871 user IP in DNS request

      Add support for the rfc7871 to Geographic traffic-routing method

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    19. Ability to set a TTL value to Automatic

      I've never seen this option in a DNS service but I always thought it would be cool to have an automatic TTL setting that would work like this:

      Whenever I change a record, if I had the TTL on Auto then it would lower the TTL to something like 5 minutes. Then each week after it would double it until it was finally up to some max value (it would be nice also if I could optionally specify the max value).

      The scenario I have for this are cases like domain name transfers, or any time I'm setting up some…

      4 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
    20. add source port for every conversation in Traffic Analytics dashboard

      Currently sessions are summarized for source IP to desination IP+port. There is source port missing in that schema which would allow for recognition of separate conversations to the same client+service pair.

      3 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →

      Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

    • Don't see your idea?

    Feedback and Knowledge Base