Answer-first summary for fast verification
Answer: Create an Amazon Route 53 Resolver outbound endpoint. Add the IP addresses of an on-premises DNS server for the domain names that need to be forwarded.
Amazon Route 53 Resolver outbound endpoints allow DNS queries to be forwarded from a VPC to an on-premises DNS server over a Direct Connect or VPN connection. This requires the least amount of ongoing maintenance because DNS queries are natively routed via the Resolver rule without the need to maintain manual entries in a hosted zone or the /etc/hosts file on individual EC2 instances.
Author: Ritesh Yadav
Ultimate access to all questions.
Question #24
A company operates compute resources in a VPC and in the company's on-premises data center. The company already has an AWS Direct Connect connection between the VPC and the on-premises data center. A CloudOps engineer needs to ensure that Amazon EC2 instances in the VPC can resolve DNS names for hosts in the on-premises data center.
Which solution will meet this requirement with the LEAST amount of ongoing maintenance?
A
Create an Amazon Route 53 private hosted zone. Populate the zone with the hostnames and IP addresses of the hosts in the on-premises data center.
B
Create an Amazon Route 53 Resolver outbound endpoint. Add the IP addresses of an on-premises DNS server for the domain names that need to be forwarded.
C
Set up a forwarding rule for reverse DNS queries in Amazon Route 53 Resolver. Set the enableDnsHostnames attribute to true for the VPC.
D
Add the hostnames and IP addresses for the on-premises hosts to the /etc/hosts file of each EC2 instance.
No comments yet.