ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 18 discussion

Exam question from Amazon's ANS-C00
Question #: 18
Topic #: 1
[All ANS-C00 Questions]

Your organization needs to resolve DNS entries stored in an Amazon Route 53 private zone `awscloud:internal` from the corporate network. An AWS Direct
Connect connection with a private virtual interface is configured to provide access to a VPC with the CIDR block 192.168.0.0/16. A DNS Resolver (BIND) is configured on an Amazon Elastic Compute Cloud (EC2) instance with the IP address 192.168.10.5 within the VPC. The DNS Resolver has standard root server hints configured and conditional forwarding for `awscloud.internal` to the IP address 192.168.0.2.
From your PC on the corporate network, you query the DNS server at 192.168.10.5 for www.amazon.com. The query is successful and returns the appropriate response. When you query for `server.awscloud.internal`, the query times out. You receive no response.
How should you enable successful queries for `server.awscloud.internal`?

  • A. Attach an internet gateway to the VPC and create a default route.
  • B. Configure the VPC settings for enableDnsHostnames and enableDnsSupport as True
  • C. Relocate the BIND DNS Resolver to the corporate network.
  • D. Update the security group for the EC2 instance at 192.168.10.5 to allow UDP Port 53 outbound.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Globetrotter at Nov. 3, 2019, 2:28 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Globetrotter
Highly Voted 3 years, 8 months ago
Answser is B, which enables 192.168.0.2 as a dns server for that subnet
upvoted 11 times
...
PavanKushwah123
Most Recent 2 years, 5 months ago
Correct Answer B
upvoted 1 times
...
liteup
3 years, 7 months ago
B - it should be good reference link below; https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/hosted-zone-private-creating.html
upvoted 3 times
...
PeppaPig
3 years, 7 months ago
B is correct. .2 is the "AmazonProvideDNS" server reserved by each VPC. Also it mentioned the PHZ (Privated Hosted Zone) is hosted in Route 53, thus you need to make sure both "enableDNS" and "enableHostName" are enabled in your VPC
upvoted 1 times
...
2aldous
3 years, 8 months ago
Inside AWS VPC, 192.168.0.2 is reserved to DNS "B" is correct.
upvoted 1 times
...
backfringe
3 years, 8 months ago
it's B
upvoted 1 times
...
kvirk
3 years, 8 months ago
B is correct
upvoted 1 times
...
BillyC
3 years, 8 months ago
Yes B is correct!
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel