Q29 — AWS ANS-C01 Ch.1
Question 29 of 100 | ← Chapter 1
A company has set up hybrid connectivity between its VPCs and its on-premises data center. The company has the on-premises.example.com subdomain configured at its DNS server in the on-premises data center. The company is using the aws.example.com subdomain for workloads that run on AWS across different VPCs and accounts. Resources in both environments can access each other by using IP addresses. The company wants workloads in the VPCs to be able to access resources on premises by using the on-premises.example.com DNS names. Which solution will meet these requirements with MINIMUM management of resources?
- A. Create an Amazon Route 53 Resolver outbound endpoint. Configure a Resolver rule that conditionally forwards DNS queries for onpremises.example.com to the on-premises DNS server. Associate the rule with the VPCs. ✓
- B. Create an Amazon Route 53 Resolver inbound endpoint and a Resolver outbound endpoint. Configure a Resolver rule that conditionally forwards DNS queries for on-premises.example.com to the on-premises DNS server. Associate the rule with the VPCs.
- C. Launch an Amazon EC2 instance. Install and configure BIND software to conditionally forward DNS queries for on-premises.example.com to the on-premises DNS server. Configure the EC2 instance's IP address as a custom DNS server in each VPC.
- D. Launch an Amazon EC2 instance in each VPC. Install and configure BIND software to conditionally forward DNS queries for onpremises.example.com to the on-premises DNS server. Configure the EC2 instance's IP address as a custom DNS server in each VPC.
Correct Answer: A. Create an Amazon Route 53 Resolver outbound endpoint. Configure a Resolver rule that conditionally forwards DNS queries for onpremises.example.com to the on-premises DNS server. Associate the rule with the VPCs.
Explanation
答案A是正确的。创建AmazonRoute53Resolver出站端点,并配置有条件地将onpremises.example.com的DNS查询转发到本地DNS服务器的解析器规则,然后将该规则与VPC相关联,这种方式可以满足公司的需求,并且相对其他选项,在资源管理方面更为简便和高效。选项B中创建入站端点并非必要。选项C和D中通过在每个VPC中启动安装和配置BIND软件的EC2实例来实现,这种方式在资源配置和管理上相对复杂。所以,综合来看,选项A是满足需求且资源管理最简的方案。 查看全部