Discover effective DNS resolution methods for AWS VPCs & on-premises integration. Route 53 Resolver setup ensures seamless query routing within internal domains while forwarding external queries to on-premises DNS.
Table of Contents
Question
A network engineer is working on a private DNS design to integrate AWS workloads and on-premises resources. The AWS deployment consists of five VPCs in the eu-west-1 Region that connect to the on-premises network over AWS Direct Connect. The VPCs communicate with each other by using a transit gateway. Each VPC is associated with a private hosted zone that uses the aws.example.internal domain. The network engineer creates an Amazon Route 53 Resolver outbound endpoint in a shared services VPC and attaches the shared services VPC to the transit gateway.
The network engineer is implementing a solution for DNS resolution. Queries for hostnames that end with aws.example.internal must use the private hosted zone. Queries for hostnames that end with all other domains must be forwarded to a private on-premises DNS resolver.
Which solution will meet these requirements?
A. Add a forwarding rule for “*” that targets the on-premises server’s DNS IP address. Add a system rule for aws.example.internal that targets Route 53 Resolver.
B. Add a forwarding rule for aws.example.internal that targets Route 53 Resolver. Add a system rule for “.” that targets the Route 53 Resolver outbound endpoint.
C. Add a forwarding rule for “*” that targets the Route 53 Resolver outbound endpoint.
D. Add a forwarding rule for “.” that targets the Route 53 Resolver outbound endpoint.
Answer
B. Add a forwarding rule for aws.example.internal that targets Route 53 Resolver. Add a system rule for “.” that targets the Route 53 Resolver outbound endpoint.
Explanation
The suitable solution for DNS resolution requirements involving different domains for AWS and on-premises networks is:
B. Add a forwarding rule for aws.example.internal that targets Route 53 Resolver. Add a system rule for “.” that targets the Route 53 Resolver outbound endpoint.
This solution efficiently addresses the specific DNS resolution needs. By setting up a forwarding rule for the internal domain aws.example.internal to the Route 53 Resolver, it ensures queries for these internal hostnames utilize the private hosted zone. Additionally, setting a system rule for the root domain “.” ensures all other queries are directed to the Route 53 Resolver outbound endpoint for resolution through the on-premises DNS resolver.
AWS Certified Advanced Networking – Specialty ANS-C01 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the AWS Certified Advanced Networking – Specialty ANS-C01 exam and earn AWS Certified Advanced Networking – Specialty ANS-C01 certification.