Answer-first summary for fast verification
Answer: Set up an AWS Site-to-Site VPN connection between on premises and AWS. Deploy an Amazon Route 53 Resolver outbound endpoint in the Region that is hosting the VPC.
To meet the requirements with the least amount of configuration, the network engineer should set up an AWS Site-to-Site VPN connection between on-premises and AWS. This is because a Site-to-Site VPN is easier and quicker to set up compared to AWS Direct Connect, which requires physical connectivity and more configuration. Additionally, deploying an Amazon Route 53 Resolver outbound endpoint in the Region hosting the VPC allows the EC2 instances to resolve DNS names of on-premises servers by forwarding DNS queries to the on-premises DNS servers. This setup is temporary and aligns with the 3-month migration period requirement. Option A is the most straightforward and least complex solution for the given scenario.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
What is the most efficient configuration a network engineer should implement to ensure DNS queries from EC2 instances in a single VPC can resolve on-premises server names during a 3-month migration period, after which this resolution will no longer be required?
A
Set up an AWS Site-to-Site VPN connection between on premises and AWS. Deploy an Amazon Route 53 Resolver outbound endpoint in the Region that is hosting the VPC.
B
Set up an AWS Direct Connect connection with a private VIF. Deploy an Amazon Route 53 Resolver inbound endpoint and a Route 53 Resolver outbound endpoint in the Region that is hosting the VPC.
C
Set up an AWS Client VPN connection between on premises and AWS. Deploy an Amazon Route 53 Resolver inbound endpoint in the VPC.
D
Set up an AWS Direct Connect connection with a public VIF. Deploy an Amazon Route 53 Resolver inbound endpoint in the Region that is hosting the VPC. Use the IP address that is assigned to the endpoint for connectivity to the on-premises DNS servers.
No comments yet.