AWS Certified Advanced Networking - Specialty

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Add a forwarding rule for “*” that targets the on-premises server's DNS IP address. Add a system rule for aws.example.internal that targets Route 53 Resolver.

To meet the requirements, DNS queries for hostnames ending with aws.example.internal should use the private hosted zone in Route 53, and queries for all other domains should be forwarded to a private on-premises DNS resolver. Option A correctly addresses this by adding a forwarding rule for '*' (which matches all domains) that targets the on-premises server's DNS IP address for forwarding queries not ending with aws.example.internal. Additionally, it adds a system rule for aws.example.internal that targets Route 53 Resolver, ensuring that queries for this domain are resolved using the private hosted zone. This setup ensures that DNS resolution is correctly split between AWS and on-premises resources based on the domain name.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Add a forwarding rule for “*” that targets the on-premises server's DNS IP address. Add a system rule for aws.example.internal that targets Route 53 Resolver.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A network engineer is designing a private DNS solution to integrate AWS workloads and on-premises resources. The AWS environment includes five VPCs in the eu-west-1 Region, connected to the on-premises network via AWS Direct Connect. The VPCs communicate with each other through a transit gateway, and each VPC is associated with a private hosted zone using the aws.example.internal domain. The engineer has created an Amazon Route 53 Resolver outbound endpoint in a shared services VPC, which is attached to the transit gateway.

The engineer needs to implement a DNS resolution solution where queries for hostnames ending with aws.example.internal are resolved using the private hosted zone, and queries for hostnames ending with all other domains are forwarded to a private on-premises DNS resolver.

Which solution meets these requirements?

Exam-Like

Last updated: April 1, 2026 at 14:03

Add a forwarding rule for “*” that targets the on-premises server's DNS IP address. Add a system rule for aws.example.internal that targets Route 53 Resolver.

100.0%

Add a forwarding rule for aws.example.internal that targets Route 53 Resolver. Add a system rule for “.” that targets the Route 53 Resolver outbound endpoint.

0.0%

Add a forwarding rule for “*” that targets the Route 53 Resolver outbound endpoint.

Add a forwarding rule for “.” that targets the Route 53 Resolver outbound endpoint.