Data isolation
To guarantee data security, PrivateZone isolates private zone data in different Virtual Private Clouds (VPCs).
- The records in your private zones cannot be looked up from the Internet. This protects your business information and internal system architectures from malicious probing.
- Your private zones cannot be queried in unassociated VPCs. This helps you better control the users who are allowed to access the core data in the internal system.
- The data in a private zone is strictly protected by the tunneling feature of Alibaba Cloud VPC. This makes sure that your private zone data is not compromised.
Flexibility
You can add an unlimited number of private zone files.
- You can create any private zone such as
taobao.comand associate it with a VPC. The private zone record oftaobao.comin the VPC overrides the DNS record on the Internet. - You can add custom domain names, for example,
example.testandexample.abcd, to the VPC. - You can associate private zones with the same name to VPCs that reside in different regions. This allows you to access different resources using the same domain name. The system automatically assigns the resource that is closest to you. For example, if you send DNS queries for
test.example.comin VPCs that reside in China (Beijing) and China (Shanghai), the DNS server returns IP addresses for the two regions.