This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 51%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFR%3C/text%3E%3C/svg%3E)
I have applications running in two separate VNETs (in same subscription) that need to connect to a third party DB service using Private Link. I have created two private end points specific to each VNET then created a private DNS Zone that maps to the private IP of the VNET.
It works fine when only a single VNET is linked and corresponding IP is mapped for the DNS name A-record.
When I link both VNETs and add both IPs in the A-record, connection is throwing timeout error( somehow the referenced IPs are swapped for the VNETs). Any help in resolving this issue is much appreciated! Thanks
Hi @faizal rub
I hope you are doing well.
Private address resolves to IP but timeout to connect? Ex:
my.privatelink.database.windows.net resolves to 10.10.5.1
But not connect to 10.10.5.1,
In this case, only a vnet peering between the vnets is missing, like a hub to spoke topology
Best Regards
Hi,
In your scenario, you will need to create 2 Private DNS Zone for the same name which is privatelink.db.com and add respective A records.
Then link each Private DNS Zone to respective VNETs. It should work fine.
Regards,
Karthik Srinivas
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 0%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPB%3C/text%3E%3C/svg%3E)
Could you please provide an example for how to do this? We are using ARM templates to create our VNETs and DNS zones, and I can't create more than one in the same resource group for this. Is there a different way that you recommend going about this?