ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 354 discussion

Exam question from Amazon's ANS-C00
Question #: 354
Topic #: 1
[All ANS-C00 Questions]

A financial company is designing a secure AWS network architecture to support a hybrid cloud strategy. Systems deployed in the AWS Cloud are mission critical and have strict availability requirements. The company anticipates the need for hundreds of VPCs. Instances will be transient and rely heavily on DNS resolution.
The applications must be designed to have Availability Zone isolation and tolerate the loss of an Availability Zone.
What is the MOST reliable way to implement DNS in this scenario?

  • A. Create a new DHCP options set with DNS settings with on-premises DNS servers that traverse an AWS Direct Connect connection.
  • B. Create private hosted zones and share them with each VPC. Use Amazon Route 53 Resolver for hybrid DNS.
  • C. Modify the default DHCP options set with a fleet of proxy DNS servers that are deployed in each VPC.
  • D. Create a fleet of DNS proxy servers in a central VPC. Share the proxy fleet with each VPC using AWS PrivateLink.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by walkwolf3 at Sept. 5, 2021, 2:11 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mabalon
Highly Voted 3 years, 6 months ago
Selected Answer: B
B The question ask us about "... support its hybrid cloud strategy", in my opinion we will have two dns zones, one on AWS and another in On-Prem, for communicate them we need the Route 53 Resolver. For the other aspects, Rotuer 53 is High Available between AZ. Im not sure if i understand correctly the "Most Resonsible" statement
upvoted 10 times
...
Balki
Most Recent 2 years, 5 months ago
Selected Answer: B
https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/set-up-dns-resolution-for-hybrid-networks-in-a-single-account-aws-environment.html
upvoted 1 times
...
KS_LIM
2 years, 12 months ago
Answer should be B. https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/set-up-integrated-dns-resolution-for-hybrid-networks-in-amazon-route-53.html
upvoted 1 times
...
sapien45
3 years, 3 months ago
Amazon Route 53 Resolver saved my life when configuring hybrid dns .. B
upvoted 3 times
...
Moziqiao
3 years, 4 months ago
the answer should be B, all the VPCs will share the private zones. and the Route 53 resolver is the most responsible way for hybrid DNS.
upvoted 2 times
...
JoMainAWS
3 years, 7 months ago
definitely A
upvoted 1 times
...
walkwolf3
3 years, 8 months ago
D A. This solution can't resolve AWS resources. B. If private hosted zones are mirrored from on-premises domains, resolver is not required. C. Deploy a fleet of proxy DNS servers each in hundreds of VPCs. It's a workable soultion, but it's a over killed and costly solution. D. A fleet of DNS proxy servers could be deployed in at leat two AZs, if one AZ is lost/fail, servers are still available.
upvoted 4 times
zoomac
3 years, 4 months ago
https://docs.aws.amazon.com/vpc/latest/userguide/amazon-vpc-limits.html Active VPC peering connections per VPC is 50. The company has hundreds of VPCs. So centralized VPC can't be used.
upvoted 5 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel