This article walks you through how to import and export DNS zone files for Azure DNS using the Azure CLI.<\/p>\n\n\n\n
A DNS zone file is a text file that contains details of every Domain Name System (DNS) record in the zone. It follows a standard format, making it suitable for transferring DNS records between DNS systems. Using a zone file is a quick, reliable, and convenient way to transfer a DNS zone into or out of Azure DNS.<\/p>\n\n\n\n
Azure DNS supports importing and exporting zone files by using the Azure command-line interface (CLI). Zone file import is not<\/strong> currently supported via Azure PowerShell or the Azure portal.<\/p>\n\n\n\n The Azure CLI is a cross-platform command-line tool used for managing Azure services. It is available for the Windows, Mac, and Linux platforms from the Azure downloads page<\/a>. Cross-platform support is important for importing and exporting zone files, because the most common name server software, BIND<\/a>, typically runs on Linux.<\/p>\n\n\n\n Before you import a DNS zone file into Azure DNS, you need to obtain a copy of the zone file. The source of this file depends on where the DNS zone is currently hosted.<\/p>\n\n\n\n Importing a zone file creates a new zone in Azure DNS if one does not already exist. If the zone already exists, the record sets in the zone file must be merged with the existing record sets.<\/p>\n\n\n\n The following notes provide additional technical details about the zone import process.<\/p>\n\n\n\n The format of the Azure CLI command to import a DNS zone is:Azure CLICopy<\/p>\n\n\n\n Values:<\/p>\n\n\n\n If a zone with this name does not exist in the resource group, it is created for you. If the zone already exists, the imported record sets are merged with existing record sets.<\/p>\n\n\n\n To import a zone file for the zone contoso.com<\/strong>.<\/p>\n\n\n\n To verify the DNS zone after you import the file, you can use any one of the following methods:<\/p>\n\n\n\n After you have verified that the zone has been imported correctly, you need to update the DNS delegation to point to the Azure DNS name servers. For more information, see the article Update the DNS delegation<\/a>.<\/p>\n\n\n\n The format of the Azure CLI command to export a DNS zone is:Azure CLICopy<\/p>\n\n\n\n Values:<\/p>\n\n\n\n As with the zone import, you first need to sign in, choose your subscription, and configure the Azure CLI to use Resource Manager mode.<\/p>\n\n\n\n To export the existing Azure DNS zone contoso.com<\/strong> in resource group myresourcegroup<\/strong> to the file contoso.com.txt<\/strong> (in the current folder), run Original: https:\/\/docs.microsoft.com\/en-us\/azure\/dns\/dns-import-export<\/a><\/p>\n","protected":false},"excerpt":{"rendered":" This article walks you through how to import and export DNS zone files for Azure DNS using the Azure CLI. Introduction to DNS zone migration A DNS zone file is a text file that contains details of every Domain Name System (DNS) record in the zone. It follows a standard format, making it suitable for Read More<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[238,239],"tags":[],"class_list":["post-1704","post","type-post","status-publish","format-standard","hentry","category-cloud","category-azure"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/1704","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1704"}],"version-history":[{"count":0,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/1704\/revisions"}],"wp:attachment":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1704"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1704"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1704"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Obtain your existing DNS zone file<\/h2>\n\n\n\n
Import a DNS zone file into Azure DNS<\/h2>\n\n\n\n
Merge behavior<\/h3>\n\n\n\n
host<\/code>) are always taken from the imported zone file. Similarly, for the name server record set at the zone apex, the TTL is always taken from the imported zone file.<\/li>Additional information about importing<\/h3>\n\n\n\n
$TTL<\/code> directive is optional, and it is supported. When no $TTL<\/code> directive is given, records without an explicit TTL are imported set to a default TTL of 3600 seconds. When two records in the same record set specify different TTLs, the lower value is used.<\/li>$ORIGIN<\/code> directive is optional, and it is supported. When no $ORIGIN<\/code> is set, the default value used is the zone name as specified on the command line (plus the terminating “.”).<\/li>$INCLUDE<\/code> and $GENERATE<\/code> directives are not supported.<\/li>host<\/code> parameter. This parameter uses the value provided by Azure DNS. This is because this parameter must refer to the primary name server provided by Azure DNS.<\/li>CLI format and values<\/h3>\n\n\n\n
az network dns zone import -g <resource group> -n <zone name> -f <zone file name><\/code><\/pre>\n\n\n\n<resource group><\/code> is the name of the resource group for the zone in Azure DNS.<\/li><zone name><\/code> is the name of the zone.<\/li><zone file name><\/code> is the path\/name of the zone file to be imported.<\/li><\/ul>\n\n\n\nStep 1. Import a zone file<\/h3>\n\n\n\n
az group create --group myresourcegroup -l westeurope<\/code><\/li>az network dns zone import<\/code>.
This command loads the zone file and parses it. The command executes a series of commands on the Azure DNS service to create the zone and all the record sets in the zone. The command reports progress in the console window, along with any errors or warnings. Because record sets are created in series, it may take a few minutes to import a large zone file.Azure CLICopyaz network dns zone import -g myresourcegroup -n contoso.com -f contoso.com.txt<\/code><\/li><\/ol>\n\n\n\nStep 2. Verify the zone<\/h3>\n\n\n\n
az network dns record-set list -g myresourcegroup -z contoso.com<\/code><\/li>az network dns record-set ns list<\/code>.<\/li>nslookup<\/code> to verify name resolution for the records. Because the zone isn’t delegated yet, you need to specify the correct Azure DNS name servers explicitly. The following sample shows how to retrieve the name server names assigned to the zone. This also shows how to query the “www” record by using nslookup<\/code>.Azure CLICopyaz network dns record-set ns list -g myresourcegroup -z contoso.com --output json <\/code>JSONCopy[ { ....... \"name\": \"@\", \"nsRecords\": [ { \"additionalProperties\": {}, \"nsdname\": \"ns1-03.azure-dns.com.\" }, { \"additionalProperties\": {}, \"nsdname\": \"ns2-03.azure-dns.net.\" }, { \"additionalProperties\": {}, \"nsdname\": \"ns3-03.azure-dns.org.\" }, { \"additionalProperties\": {}, \"nsdname\": \"ns4-03.azure-dns.info.\" } ], \"resourceGroup\": \"myresourcegroup\", \"ttl\": 86400, \"type\": \"Microsoft.Network\/dnszones\/NS\" } ] <\/code>cmdCopynslookup www.contoso.com ns1-03.azure-dns.com Server: ns1-01.azure-dns.com Address: 40.90.4.1 Name:www.contoso.com Addresses: 134.170.185.46 134.170.188.221<\/code><\/li><\/ul>\n\n\n\nStep 3. Update DNS delegation<\/h3>\n\n\n\n
Export a DNS zone file from Azure DNS<\/h2>\n\n\n\n
az network dns zone export -g <resource group> -n <zone name> -f <zone file name><\/code><\/pre>\n\n\n\n<resource group><\/code> is the name of the resource group for the zone in Azure DNS.<\/li><zone name><\/code> is the name of the zone.<\/li><zone file name><\/code> is the path\/name of the zone file to be exported.<\/li><\/ul>\n\n\n\nTo export a zone file<\/h3>\n\n\n\n
azure network dns zone export<\/code>. This command calls the Azure DNS service to enumerate record sets in the zone and export the results to a BIND-compatible zone file.Azure CLICopy<\/p>\n\n\n\naz network dns zone export -g myresourcegroup -n contoso.com -f contoso.com.txt<\/code><\/pre>\n\n\n\nNext steps<\/h2>\n\n\n\n