Outbound Endpoints Outbound endpoints allow DNS resolutions originating inside of your VPC to your on-premise DNS deployment or to another VPC. As with all DNS endpoint architectures, a direct connection is required and can be either the DX, Direct Connect, service or by using a VPN connection. Outbound DNS queries require forwarding rules to define […]

Configuring DNSSEC As you learned in Chapter 2, DNS Security is a feature added to Route 53 that adds digital signing for public hosted zones, and validation for the Route 53 Resolvers. Data origin, authentication, and integrity verifications are features of this security extension for DNS. Each record in a Route 53 hosted zone is […]

TXT Record Text records are containers used by administrators to attach both human- and machine-readable notes to the zones. TXT records are used to validate, for example, email ownership, application licensing, or any information about a server, network, data center, company, or accounting data. The TXT record is formatted as standard UTF-8 ASCII text data. […]

Forwarding Rules Conditional forwarding rules are required to tell the Route 53 Resolver what domain names you want to forward to remote resolvers such as an on-premise DNS server. A forwarding rule is needed for each domain to which you want queries to be forwarded. In the Route 53 console dashboard, select Rules in the […]

Health Checking Health checking for Route 53 is used to test that the endpoints are reachable and responding to application requests before returning the IP address in response to a query. Route 53 will send a test connection at regular intervals to either an IP address or domain name that you specify. If a resource […]

Latency Latency-based routing is configured at the record level in the Route 53 console. AWS calculates the delay, or latency, over the Internet from the requesting device to the endpoint in the AWS cloud. However, latency-based routing does not calculate the application’s delay such as the latency inherent in a database or backend application. Select […]

Public Hosted Zones Public hosted zones are created to deliver name resolution and other Route 53 DNS services on the Internet. In Route 53 a public zone routes traffic on the Internet for a specific domain. For Internet-based DNS queries, the public hosted zone is used. A public hosted zone contains your defined instructions about how […]

THE AWS CERTIFIED ADVANCED NETWORKING – SPECIALTY EXAM OBJECTIVES COVERED IN THIS CHAPTER MAY INCLUDE, BUT ARE NOT LIMITED TO, THE FOLLOWING: Objective 2.3: Implement complex hybrid and multi-account DNS architectures. Implementing Hybrid and Multi-account DNS Architectures In this chapter, we will expand on the DNS and Route 53 topics covered in Chapter 2, “Domain […]

Review Questions The following questions are designed to test your understanding of this chapter’s material. For more information on how to obtain additional questions, please see this book’s introduction.

Exam Essentials Know the DNS resolution steps. Understand the resolution steps that DNS takes to resolve a URL that a user types in a browser to resolve the DNS name to an IP address. Know what a zone is. A zone is a subset of your domain records that contains your DNS records such as […]