Skip to content

feat: Added ARG for Private DNS Zone TTL, Network watcher, Connection Monitor and fixed a bug for storage redundancy#766

Merged
arthurclares merged 8 commits into
Azure:mainfrom
EshaG-Solanki:main
Aug 5, 2025
Merged

feat: Added ARG for Private DNS Zone TTL, Network watcher, Connection Monitor and fixed a bug for storage redundancy#766
arthurclares merged 8 commits into
Azure:mainfrom
EshaG-Solanki:main

Conversation

@EshaG-Solanki
Copy link
Copy Markdown
Contributor

@EshaG-Solanki EshaG-Solanki commented Jul 16, 2025

Added KQL for Private DNS Zone TTL - Since its a manual check and will vary based on the RTO needs, the query just lists the TTL for each DNS recordset, the validation will still need to be done with the customer. But it helps when the customer is using Private endpoints heavily as seen in many cases.
Private DNS KQL

Let me know if something is missing/any improvement ideas.

Copilot AI review requested due to automatic review settings July 16, 2025 08:19
@EshaG-Solanki EshaG-Solanki requested review from a team as code owners July 16, 2025 08:19
Copilot AI reviewed Jul 16, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds an Azure Resource Graph KQL query to list the Time-To-Live (TTL) for each Private DNS Zone recordset, aiding manual validation against Recovery Time Objective requirements.

  • Introduces an ARG query file to project TTL values alongside resource identifiers.
  • Tags the output with a static recommendationId for integration in existing workflows.
  • Formats TTL in a human-readable string.
Comments suppressed due to low confidence (2)

azure-resources/Network/privateDnsZones/kql/3538aa48-c40b-455b-a93b-269fe6e65be2.kql:4

  • The alias param1 is not descriptive. Rename it to something like ttl or timeToLive to clearly indicate the column represents the recordset's TTL.
| project recommendationId = "3538aa48-c40b-455b-a93b-269fe6e65be2", name, id, tags, param1 = strcat("Time-To-Live: ", properties.ttl)

azure-resources/Network/privateDnsZones/kql/3538aa48-c40b-455b-a93b-269fe6e65be2.kql:2

  • Clarify the acronym RTO by expanding it to Recovery Time Objective (RTO) so the comment is self-explanatory.
// This query will return Time-To-Live (TTL) for the DNS recordsets. Make sure it is set appropriately to ensure RTOs

Comment thread azure-resources/Network/privateDnsZones/kql/3538aa48-c40b-455b-a93b-269fe6e65be2.kql Outdated
@tksh164 tksh164 changed the title Added KQL for Private DNS Zone TTL feat: Added KQL for Private DNS Zone TTL Jul 16, 2025
@microsoft-github-policy-service microsoft-github-policy-service Bot added the Enhancement 🆕 New feature or request label Jul 16, 2025
@EshaG-Solanki
Copy link
Copy Markdown
Contributor Author

EshaG-Solanki commented Jul 17, 2025
edited
Loading

Hi, I am Microsoft employee and I confirm this is my original work.
@microsoft-github-policy-service agree company="Microsoft"

@EshaG-Solanki EshaG-Solanki changed the title feat: Added KQL for Private DNS Zone TTL feat: Added ARG for Private DNS Zone TTL, Network watcher, Connection Monitor and fixed a bug for storage redundancy Jul 17, 2025
@EshaG-Solanki
Copy link
Copy Markdown
Contributor Author

EshaG-Solanki commented Jul 17, 2025

Added additional 3 changes today. Please find below the details:

  1. Added ARG Query for Connection Monitor not deployed
    Missing connection Monitor

  2. Added ARG Query for Network Watcher not deployed
    Missing Network watcher

  3. Bug fix - ARG query for storage redundancy - Removed regions as all regions are either support ZRS or GRS - A customer had LRS storage deployed in AU Southeast (which doesnot have Availability zones) and because of this check, the redundancy gap was not captured. Any region that does not support Availability zones, does have paired region to support geo-redundancy, hence region filter is not required.

tksh164
tksh164 reviewed Jul 23, 2025
View reviewed changes
Comment thread azure-resources/Network/networkWatchers/kql/4e133bd0-8762-bc40-a95b-b29142427d73.kql Outdated
@EshaG-Solanki
Added line break at the end - Update 4e133bd0-8762-bc40-a95b-b2914242…
0165ec6 
…7d73.kql

Added line break at the end - Update 4e133bd0-8762-bc40-a95b-b29142427d73.kql
@arthurclares
Update azure-resources/Network/privateDnsZones/kql/3538aa48-c40b-455b…
4be3b8b 
…-a93b-269fe6e65be2.kql

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@arthurclares arthurclares enabled auto-merge (squash) August 5, 2025 08:27
arthurclares
arthurclares approved these changes Aug 5, 2025
View reviewed changes
Copy link
Copy Markdown
Collaborator

@arthurclares arthurclares left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also reviewed and approved by Venkat Kannan via Teams chat.

@arthurclares arthurclares merged commit d7ec4c5 into Azure:main Aug 5, 2025
8 of 9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@tksh164 tksh164 tksh164 approved these changes

@arthurclares arthurclares arthurclares approved these changes

Assignees

No one assigned

Labels

Enhancement 🆕 New feature or request

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@EshaG-Solanki @tksh164 @arthurclares