ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Advanced Networking - Specialty ANS-C01 All Questions

View all questions & answers for the AWS Certified Advanced Networking - Specialty ANS-C01 exam
Go to Exam

Exam AWS Certified Advanced Networking - Specialty ANS-C01 topic 1 question 77 discussion

Exam question from Amazon's AWS Certified Advanced Networking - Specialty ANS-C01
Question #: 77
Topic #: 1
[All AWS Certified Advanced Networking - Specialty ANS-C01 Questions]

An insurance company is planning the migration of workloads from its on-premises data center to the AWS Cloud. The company requires end-to-end domain name resolution. Bi-directional DNS resolution between AWS and the existing on-premises environments must be established. The workloads will be migrated into multiple VPCs. The workloads also have dependencies on each other, and not all the workloads will be migrated at the same time.

Which solution meets these requirements?

  • A. Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC, and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
  • B. Configure a public hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC. and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
  • C. Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPDefine Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPand share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 outbound endpoints.
  • D. Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the Route 53 outbound rules with the application VPCs, and share the private hosted zones with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Spike2020 at April 24, 2023, 8:23 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
study_aws1
Highly Voted 1 year, 9 months ago
It is A). PHZ cannot be shared, Route 53 resolver rules can be shared uusing AWS RAM.
upvoted 9 times
secdaddy
2 days, 21 hours ago
The use of 'egress zone' bothers me as it *could* indicate Internet which means public zone (B) instead of private zone (A).
upvoted 1 times
...
...
woorkim
Most Recent 2 months, 3 weeks ago
A is right * associate the private hosted zones with the egress VPC, allowing centralized DNS management, while sharing the rules through RAM for consistency
upvoted 1 times
...
Raphaello
9 months, 2 weeks ago
Selected Answer: A
Associate private hosted zoneS with egress VPC, and share forwarding rules (to on-prem DNS) with application VPC's via RAM. Pay attention to the details and wording. A is the correct answer.
upvoted 2 times
...
shinzor
1 year, 2 months ago
A and C are the same answer. C has some typo's
upvoted 1 times
...
marcosbude
1 year, 2 months ago
efffff
upvoted 1 times
...
Arad
1 year, 2 months ago
Selected Answer: A
A is the right answer.
upvoted 1 times
...
MohamedSherif1
1 year, 5 months ago
Selected Answer: A
A. Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC, and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
upvoted 3 times
...
ISSDoksim
1 year, 5 months ago
agreed A -
upvoted 1 times
...
rhinozD
1 year, 9 months ago
Selected Answer: A
A is correct.
upvoted 4 times
...
Spike2020
1 year, 9 months ago
D is the correct answer
upvoted 3 times
rhinozD
1 year, 9 months ago
"Associate the Route 53 outbound rules with the application VPCs" -> wrong.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago