Managed DNS Services
🚧 This capability reference page is a draft.
If you want to be notified when the capability reference page is finished, click here.
Many cloud workloads host web services that need to be available via DNS. This can cover internal domains (e.g. split-horizon DNS) as well as public domains.
Proven Patterns When Implementing DNS Services
Leverage Existing Internal Services
Most organizations already have internal processes for managing DNS, e.g. via an ITSM ticketing system or IPAM system like Infoblox. While a direct and fully automated integration with these systems provides the highest degree of automation, application teams will already greatly benefit from managing their infrastructure services from the Foundation Service Platform even if the actual service implementation just sends a service request by email.
Delegate Entire DNS Zones
Most cloud platforms offer managed DNS services, e.g. AWS Route 53 or Google Cloud DNS. These cloud DNS services typically offer tight integration with the cloud’s workload services like API Gateways and CDN services.
Application teams can best leverage these integrations when the organization delegates an entire DNS zone to the cloud platform’s DNS service. Below you can find a typical example implementation
An application team has a GCP project provided by the cloud foundation called
An application team requests an internal DNS Service for
The organization’s authoritative DNS team creates a
SOArecord delegating the zone
.app.example.comto Google Cloud DNS in the
The application team can now use Google Cloud DNS inside the
app-prodproject to manage records for their application workloads, e.g. integrating it with GKE ingress so that the ingress controller automatically manages DNS
As you can see from the example above, the tight integration between GKE and Cloud DNS removes a lot of manual work that the application team would otherwise have to perform to create and manage the correct DNS entries.
Currently no tool implementations documented. Contributions welcome!