Amazon AWS: Resolving DNS Names from On-Premises to Private Hosted Zone in Route 53

Resolving DNS Names from On-Premises to Private Hosted Zone in Route 53

Prev Question Next Question

Question

You've set up a private hosted zone in Route 53

You've set up a VPN connection between the AWS VPC and your on-premises network.

You need to ensure that you can resolve DNS names from on-premises to the resources records defined in the Private hosted zone.

How can you accomplish this?

Answers

A. Create a DNS resolver server in your on-premises location. Configure the VPC with a new DHCP option set which uses this DNS resolver.

B. Create a DNS forwarder server in your on-premises location. Configure the VPC with a new DHCP option set which uses this DNS forwarder.

C. Configure a DNS forwarder on-premises, which will forward DNS requests to a Route53 Resolver Inbound Endpoint.

D. Configure a DNS resolver in the VPC to resolve DNS requests to the Route 53 private hosted zone.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - C.

Options A and D are incorrect since you need to use a DNS forwarder.

Option B is incorrect since the forwarder needs to be defined in the VPC.Such an example is also given in the AWS Documentation.

Issue.

How can I resolve Amazon Route 53 private hosted zones from an on-premises network via an Ubuntu instance?

Resolution.

You can resolve domain names in private hosted zones from your on-premises network by configuring a DNS forwarder.

The following instructions assume that your on-premises network is configured with a VPN or AWS Direct Connect to an AWS VPC, and a Route 53 private hosted zone is associated with that VPC.For full details on this configuration, please refer to the below URL.

https://aws.amazon.com/premiumsupport/knowledge-center/r53-private-ubuntu/

To ensure that you can resolve DNS names from on-premises to the resources records defined in the Private hosted zone, you can use option C or D.

Option A and B are incorrect because they require the configuration of a DNS resolver or forwarder in the on-premises location, which is not necessary in this case.

Option C involves configuring a DNS forwarder on-premises, which will forward DNS requests to a Route53 Resolver Inbound Endpoint. This is accomplished by creating a Route 53 Resolver Inbound Endpoint in the VPC, which provides a static IP address that can be used by on-premises DNS servers to forward DNS requests. The Route53 Resolver Inbound Endpoint can then be configured to forward DNS requests to the private hosted zone in Route 53.

Option D involves configuring a DNS resolver in the VPC to resolve DNS requests to the Route 53 private hosted zone. This can be accomplished by creating a resolver rule in the VPC that maps the private hosted zone name to the IP addresses of the DNS servers that Route 53 provides. This allows the DNS resolver in the VPC to forward DNS requests to the private hosted zone in Route 53.

Both options C and D provide a solution to the problem of resolving DNS names from on-premises to the resources records defined in the Private hosted zone. However, the choice between these options will depend on your specific use case and requirements.

Prev Question Next Question