Ultimate access to all questions.
A company has an organization in AWS Organizations that includes multiple AWS accounts. Each account has a single VPC.In an account named Shared Services, there is a transit gateway that is connected to a Direct Connect gateway that provides access to the company's on-premises network.The company configured AWS Resource Access Manager (AWS RAM) to share the transit gateway to all the accounts that are in the organization. The company has attached all the VPCs to the transit gateway to facilitate routing between each other. The company uses a DNS server for on-premises servers.There are a pair of DNS servers on premises and in the Shared Services account VPC.The company discovers that Amazon EC2 instances that the company starts within the VPCs are not able to resolve addresses in the private on-premises domain. Which solution will allow EC2 instances in all VPCs to resolve on-premises addresses'
A
Define an Amazon Route 53 Resolver outbound endpoint for the on-premises domain in the Shared Services account VPC. Configure the outbound endpoint to use the IP addresses of the DNS servers for the on-premises domain. Configure a forwarder on the DNS servers to point to the internal DNS resolver of the VPC
B
Create an Amazon Route 53 private hosted zone for the on-premises domain in the Shared Services account VP
C
Configure the outbound endpoint to use the IP addresses of the DNS servers for the on-premises domain. Configure a forwarder on the DNS servers to point to the internal DNS resolver of the VPC B. Create an Amazon Route 53 private hosted zone for the on-premises domain in the Shared Services account VPC. Configure AWS Resource Access Manager (AWS RAM) to share the hosted zone to all accounts in the organization. Associate the Route 53 private hosted zone with each VPC C. Define an Amazon Route 53 Resolver outbound endpoint for the on-premises domain in the Shared Services account VPC. Configure the outbound endpoint to use the IP addresses of the DNS servers for the on-premises domain. Configure AWS Resource Access Manager (AWS RAM) to share the Route 53 Resolver rule to all accounts in the organization. Associate the Route 53 Resolver rule with each VPC
D
Define an Amazon Route 53 Resolver inbound endpoint for the on-premises domain in the Shared Services account VPC. Configure the inbound endpoint to use the IP addresses of the DNS servers for the on-premises domain. Configure AWS Resource Access Manager (AWS RAM) to share the Route 53 Resolver rule to all accounts in the organization. Associate the Route 53 Resolver rule with each VPC