Recursive resolution proxy
PrivateZone supports the recursive resolution proxy feature. After you enable this feature, when you query the subdomain names that are not configured in the zone namespace in the Virtual Private Cloud (VPC), PrivateZone will recursively resolve the subdomain names on the Internet, and use the recursive resolution result as the Domain Name System (DNS) response to your query. Then, PrivateZone returns this response to the VPC.
Assume that a private zone is named aliyun.com and three DNS records have been created for the aliyun.com private zone, as listed in the following table.
Resource record | Type | TTL | Record value |
host01 | A | 60 | 10.0.0.1 |
host02 | A | 60 | 10.0.0.2 |
host03 | A | 60 | 10.0.0.3 |
When you query the subdomain names
host01.aliyun.com, host02.aliyun.com, and host03.aliyun.comin the VPC, PrivateZone returns the resolution result as10.0.0.1, 10.0.0.2, and 10.0.0.3respectively.When you query the public subdomain names
www.aliyun.com, api.aliyun.com, and rds.aliyun.comin the VPC, PrivateZone recursively resolves the subdomain names on the Internet and uses the recursive resolution result as the DNS response to your query.
Enable recursive resolution proxy
You can enable the recursive resolution proxy feature when you create a private zone. Alternatively, after a private zone is created, you can turn on the Subdomain recursive resolution proxy switch on the Details page of the private zone, as shown in the following figures.
Enable the recursive resolution proxy feature when you create a private zone.
Turn on the Subdomain recursive resolution proxy switch on the Details page of a created private zone. After the feature is enabled, existing DNS records in the private zone are not affected.
Disable recursive resolution proxy
You can turn off the Subdomain recursive resolution proxy switch on the Details page of a private zone, as shown in the following figures.
