SAP-C02 第 1 题
题目
A company needs to architect a hybrid DNS solution. This solution will use an Amazon Route 53 private hosted zone for the domain cloud.example.com for the resources stored within VPCs. The company has the following DNS resolution requirements: On-premises systems should be able to resolve and connect to cloud.example.com. All VPCs should be able to resolve cloud.example.com. There is already an AWS Direct Connect connection between the on-premises corporate network and AWS Transit Gateway. Which architecture should the company use to meet these requirements with the HIGHEST performance?
中文翻译:
一家公司需要构建混合 DNS 解决方案。此解决方案将使用域 cloud.example.com 的 Amazon Route 53 私有托管区域来存储 VPC 内的资源。该公司有以下 DNS 解析要求: 本地系统应能够解析并连接到 cloud.example.com。所有 VPC 都应该能够解析 cloud.example.com。本地企业网络和 AWS Transit Gateway 之间已存在 AWS Direct Connect 连接。公司应该使用哪种架构来满足这些要求并具有最高的性能?
选项
A. Associate the private hosted zone to all the VPCs. Create a Route 53 inbound resolver in the shared services VPC. Attach all VPCs to the transit gateway and create forwarding rules in the on-premises DNS server for cloud.example.com that point to the inbound resolver.
中文翻译:
将私有托管区域关联到所有 VPC。在共享服务 VPC 中创建 Route 53 入站解析器。将所有 VPC 连接到中转网关,并在 cloud.example.com 的本地 DNS 服务器中创建指向入站解析器的转发规则。
B. Associate the private hosted zone to all the VPCs. Deploy an Amazon EC2 conditional forwarder in the shared services VPC. Attach all VPCs to the transit gateway and create forwarding rules in the on-premises DNS server for cloud.example.com that point to the conditional forwarder.
中文翻译:
将私有托管区域关联到所有 VPC。在共享服务 VPC 中部署 Amazon EC2 条件转发器。将所有 VPC 连接到中转网关,并在 cloud.example.com 的本地 DNS 服务器中创建指向条件转发器的转发规则。
C. Associate the private hosted zone to the shared services VPC. Create a Route 53 outbound resolver in the shared services VPC. Attach all VPCs to the transit gateway and create forwarding rules in the on-premises DNS server for cloud.example.com that point to the outbound resolver.
中文翻译:
将私有托管区域关联到共享服务 VPC。在共享服务 VPC 中创建 Route 53 出站解析器。将所有 VPC 连接到中转网关,并在 cloud.example.com 的本地 DNS 服务器中创建指向出站解析器的转发规则。
D. Associate the private hosted zone to the shared services VPC. Create a Route 53 inbound resolver in the shared services VPC. Attach the shared services VPC to the transit gateway and create forwarding rules in the on-premises DNS server for cloud.example.com that point to the inbound resolver.
中文翻译:
将私有托管区域关联到共享服务 VPC。在共享服务 VPC 中创建 Route 53 入站解析器。将共享服务 VPC 连接到中转网关,并在 cloud.example.com 的本地 DNS 服务器中创建指向入站解析器的转发规则。
答案
A
解析
正确答案:A 解析: 本题应选择 A。 正确选项: A. 将私有托管区域关联到所有 VPC。在共享服务 VPC 中创建 Route 53 入站解析器。将所有 VPC 连接到中转网关,并在 cloud.example.com 的本地 DNS 服务器中创建指向入站解析器的转发规则。 选择理由: 该选项最直接地满足题干中的关键约束。做 SAP-C02 题目时,需要同时对照题干里的限定词,例如最高性能、最低运维开销、成本效益、可靠性、可扩展性、...