AWS Certified CloudOps Engineer – Associate

Get started today

Ultimate access to all questions.

Explanation:

To allow an on-premises network to resolve DNS queries for resources in an AWS VPC, you must configure a Route 53 Resolver inbound endpoint. The on-premises DNS server is then configured to forward queries for the specific AWS domain (in this case, awsccloud.private) to the IP addresses of the inbound resolver endpoint. Outbound endpoints are used for the reverse scenario (AWS resolving on-premises hostnames).

Explanation:

Comments (0)

No comments yet.

Question 13. A company is trying to connect two applications. One application runs in an on-premises data center that has a hostname of `host1.onprem.private`. The other application runs on an Amazon EC2 instance that has a hostname of `host1.awsccloud.private`. An AWS Site-to-Site VPN connection is in place between the on-premises network and AWS. The application that runs in the data center tries to connect to the application that runs on the EC2 instance, but DNS resolution fails. A SysOps administrator must implement DNS resolution between on-premises and AWS resources. Which solution allows the on-premises application to resolve the EC2 instance hostname?

Exam-Like

Last updated: May 9, 2026 at 17:23

Set up an Amazon Route 53 inbound resolver endpoint with a forwarding rule for the onprem.private hosted zone. Associate the resolver with the VPC of the EC2 instance. Configure the on-premises DNS resolver to forward onprem.private DNS queries to the inbound resolver endpoint.

Set up an Amazon Route 53 inbound resolver endpoint. Associate the resolver with the VPC of the EC2 instance. Configure the on-premises DNS resolver to forward awsccloud.private DNS queries to the inbound resolver endpoint.

Set up an Amazon Route 53 outbound resolver endpoint with a forwarding rule for the onprem.private hosted zone. Associate the resolver with the AWS Region of the EC2 instance. Configure the on-premises DNS resolver to forward onprem.private DNS queries to the outbound resolver endpoint.

Set up an Amazon Route 53 outbound resolver endpoint. Associate the resolver with the AWS Region of the EC2 instance. Configure the on-premises DNS resolver to forward awsccloud.private DNS queries to the outbound resolver endpoint.