Skip to content

Update dns-traffic-log-how-to.md to reflect the current GA behavior #127709

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update dns-traffic-log-how-to.md to reflect the current GA behavior #127709

wants to merge 1 commit into from

Conversation

RutujaJadhav1710
Copy link
Contributor

Coming from AzNet support engineer [email protected].

Azure security policy provide CNAME blockpolicy.azuredns.invalid instead of RCODE Servfail when blocked domain is queried.
RCODE Servfail was public preview behavior which has changed to CNAME since GA in July.

@RutujaJadhav1710
Update dns-traffic-log-how-to.md
a29f317 
Coming from AzNet support engineer [email protected]. 

Azure security policy provide CNAME blockpolicy.azuredns.invalid instead of RCODE Servfail when blocked domain is queried.
@learn-build-service-prod Learn Build Service (PROD)
Copy link
Contributor

Learn Build status updates of commit a29f317:

✅ Validation status: passed

File Status Preview URL Details
articles/dns/dns-traffic-log-how-to.md ✅Succeeded

For more details, please refer to the build report.

@ShannonLeavitt
Copy link
Contributor

@RutujaJadhav1710 - Please take a moment to agree to the CLA so we can process this PR.

@RutujaJadhav1710
Copy link
Contributor Author

@microsoft-github-policy-service agree company="Microsoft"

I am making Submissions in the course of work for my employer (or my employer has intellectual property rights in my Submissions by contract or applicable law). I have permission from my employer to make Submissions and enter into this Agreement on behalf of my employer. By signing below, the defined term “You” includes me and my employer.

@prmerger-automator PRMerger Automator
Copy link
Contributor

@RutujaJadhav1710 : Thanks for your contribution! The author(s) and reviewer(s) have been notified to review your proposed change.

@prmerger-automator PRMerger Automator
Copy link
Contributor

@RutujaJadhav1710 : Thanks for your contribution! The author(s) and reviewer(s) have been notified to review your proposed change.

@ttorble ttorble requested a review from Copilot October 9, 2025 14:30
Copilot
Copilot AI reviewed Oct 9, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

Updates DNS traffic logging documentation to reflect GA behavior changes for blocked domains. The Azure security policy now returns a CNAME response pointing to blockpolicy.azuredns.invalid instead of the previous RCODE SERVFAIL error that was used during public preview.

  • Updated dig command output to show current GA behavior with CNAME blocking response
  • Replaced SERVFAIL status with NOERROR status and CNAME record to blockpolicy.azuredns.invalid
  • Added complete dig output including ANSWER, AUTHORITY, and OPT sections

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

articles/dns/dns-traffic-log-how-to.md
;; Query time: 0 msec
;; SERVER: 168.63.129.16#53(168.63.129.16) (UDP)
;; WHEN: Mon Sep 08 11:06:59 UTC 2025
Copy link

Copilot AI Oct 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The timestamp shows a future date (2025) which appears to be incorrect. This should reflect a realistic date when the example was captured.

Suggested change
;; WHEN: Mon Sep 08 11:06:59 UTC 2025
;; WHEN: Fri Sep 08 11:06:59 UTC 2023

Copilot uses AI. Check for mistakes.

@ttorble
Copy link
Contributor

ttorble commented Oct 9, 2025

@asudbring

Can you review the proposed changes?

IMPORTANT: When the changes are ready for publication, adding a #sign-off comment is the best way to signal that the PR is ready for the review team to merge.

#label:"aq-pr-triaged"
@MicrosoftDocs/public-repo-pr-review-team

@prmerger-automator prmerger-automator bot added the aq-pr-triaged tracking label for the PR review team label Oct 9, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@asudbring asudbring Awaiting requested review from asudbring

@cherylmc cherylmc Awaiting requested review from cherylmc

@AbdullahBell AbdullahBell Awaiting requested review from AbdullahBell

Assignees

@asudbring asudbring

Labels

aq-pr-triaged tracking label for the PR review team azure-dns/svc Change sent to author do-not-merge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@RutujaJadhav1710 @ShannonLeavitt @ttorble @asudbring