Learn how to simplify DNS integration of VPCs and on-premises with an Amazon Route 53 Resolver outbound endpoint and forwarding rule, avoiding extra EC2 instances or complex resolver configurations.
Table of Contents
Question
A company has set up hybrid connectivity between its VPCs and its on-premises data center. The company has the on-premises.example.com subdomain configured at its DNS server in the on-premises data center. The company is using the aws.example.com subdomain for workloads that run on AWS across different VPCs and accounts. Resources in both environments can access each other by using IP addresses. The company wants workloads in the VPCs to be able to access resources on premises by using the on-premises.example.com DNS names.
Which solution will meet these requirements with MINIMUM management of resources?
A. Create an Amazon Route 53 Resolver outbound endpoint. Configure a Resolver rule that conditionally forwards DNS queries for on-premises.example.com to the on-premises DNS server. Associate the rule with the VPCs.
B. Create an Amazon Route 53 Resolver inbound endpoint and a Resolver outbound endpoint. Configure a Resolver rule that conditionally forwards DNS queries for on-premises.example.com to the on-premises DNS server. Associate the rule with the VPCs.
C. Launch an Amazon EC2 instance. Install and configure BIND software to conditionally forward DNS queries for on-premises.example.com to the on-premises DNS server. Configure the EC2 instance’s IP address as a custom DNS server in each VPC.
D. Launch an Amazon EC2 instance in each VPC. Install and configure BIND software to conditionally forward DNS queries for on-premises.example.com to the on-premises DNS server. Configure the EC2 instance’s IP address as a custom DNS server in each VPC.
Answer
A. Create an Amazon Route 53 Resolver outbound endpoint. Configure a Resolver rule that conditionally forwards DNS queries for on-premises.example.com to the on-premises DNS server. Associate the rule with the VPCs.
Explanation
This avoids the need to manage EC2 instances and custom DNS servers, reducing ongoing operational overhead. Route 53 Resolver is a fully managed service that allows configuring DNS resolvers and rules centrally to integrate AWS and on-premises namespaces seamlessly.
Creating just an outbound endpoint with a forwarding rule meets the goal of enabling name resolution across environments with minimum resources to manage. Using the resolver endpoint removes the need to launch and configure EC2 instances acting as DNS forwarders.
While options B, C and D could meet the requirements, they involve more manual effort to set up and maintain EC2 instances or additional resolver endpoints beyond what is strictly needed.
AWS Certified Advanced Networking – Specialty ANS-C01 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the AWS Certified Advanced Networking – Specialty ANS-C01 exam and earn AWS Certified Advanced Networking – Specialty ANS-C01 certification.