A simple example demonstrating the provisioning of a Secure Landing Zone (SLZ) Virtual Private Cloud (VPC) across two zones (Zone 1 and Zone 2). This setup includes the creation of Domain Name System (DNS) Zones and Records, linking the provisioned VPC as a permitted network for DNS operations.
The following resources are provisioned by this example:
-
A new
resource group, if an existing one is not passed in. -
An IBM
Virtual Private Cloud (VPC)with a publicly exposed subnet. -
Private
DNS zonewhich can only be resolved from IBM Cloud's private network. -
DNS permitted network- DNS Service is a global service, hence the permitted networks (for example, aVPC) should be added from any IBM Cloud region. This adds the network to the DNS zone, giving the network access to the zone. Maximum of 10 permitted networks can be added to aDNS zone. Learn more -
DNS Records-DNS Recordsmake the connection between human-readable names and IP addresses.
Note: To create a
PTRtype record, you must have an existingAorAAAArecord that is not already associated with anotherPTRrecord. Learn More