ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 322 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional SAP-C02
Question #: 322
Topic #: 1
[All AWS Certified Solutions Architect - Professional SAP-C02 Questions]

A company is migrating mobile banking applications to run on Amazon EC2 instances in a VPC. Backend service applications run in an on-premises data center. The data center has an AWS Direct Connect connection into AWS. The applications that run in the VPC need to resolve DNS requests to an on-premises Active Directory domain that runs in the data center.

Which solution will meet these requirements with the LEAST administrative overhead?

  • A. Provision a set of EC2 instances across two Availability Zones in the VPC as caching DNS servers to resolve DNS queries from the application servers within the VPC.
  • B. Provision an Amazon Route 53 private hosted zone. Configure NS records that point to on-premises DNS servers.
  • C. Create DNS endpoints by using Amazon Route 53 Resolver. Add conditional forwarding rules to resolve DNS namespaces between the on-premises data center and the VPC.
  • D. Provision a new Active Directory domain controller in the VPC with a bidirectional trust between this new domain and the on-premises Active Directory domain.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by AM_aws at Oct. 29, 2023, 3:57 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
trungtd
Highly Voted 8 months, 1 week ago
Option C: Amazon Route 53 Resolver with Conditional Forwarding Rules Least Administrative Overhead: This option leverages AWS-managed services to handle DNS resolution without the need to manage additional infrastructure or complicated configurations. Route 53 Resolver Endpoints: Create inbound and outbound endpoints to handle DNS queries between AWS and the on-premises environment. Inbound Endpoints: Allow on-premises systems to resolve DNS names hosted in AWS. Outbound Endpoints: Forward DNS queries from AWS to on-premises DNS servers. Conditional Forwarding Rules: Set up rules to forward specific domain queries (like your Active Directory domain) to the on-premises DNS servers. This ensures seamless DNS resolution for the applications in the VPC. B: Private hosted zones are intended for DNS records within AWS. A & D: too much overhead
upvoted 5 times
...
AzureDP900
Most Recent 3 months ago
C is right The company needs to resolve DNS requests from EC2 instances in a VPC to an on-premises Active Directory domain that runs in a data center with an AWS Direct Connect connection. Amazon Route 53 Resolver is specifically designed for this use case, providing a secure way to enable name resolution between your on-premises and cloud-based resources. By using Route 53 Resolver, you can create DNS endpoints within the VPC that resolve DNS queries to the on-premises Active Directory domain without requiring any additional infrastructure or overhead in the data center.
upvoted 1 times
...
sarlos
9 months, 1 week ago
Why not B?
upvoted 2 times
...
career360guru
1 year, 1 month ago
Selected Answer: C
Option C
upvoted 1 times
...
shaaam80
1 year, 2 months ago
Selected Answer: C
Answer is C, least admin overhead using Route 53 resolver with conditional forwarding
upvoted 2 times
...
devalenzuela86
1 year, 2 months ago
Selected Answer: C
Answer C
upvoted 1 times
...
airgead
1 year, 3 months ago
Selected Answer: C
Option C: Amazon Route 53 Resolver > Conditional Forwarding Lower Maintenance than Option A which using EC2.
upvoted 4 times
...
gonzales
1 year, 3 months ago
Selected Answer: C
To forward DNS queries from your VPCs to your network, you create an outbound endpoint. reference: https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/resolver-forwarding-outbound-queries.html
upvoted 3 times
...
Bad_Mat
1 year, 3 months ago
I vote for C
upvoted 1 times
...
AM_aws
1 year, 3 months ago
Selected Answer: C
https://aws.amazon.com/blogs/security/how-to-set-up-dns-resolution-between-on-premises-networks-and-aws-using-aws-directory-service-and-amazon-route-53/
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago