Solutions

The solutions in this whitepaper present options and best practices to architect a DNS solution in the hybrid cloud, keeping in mind criteria such as ease of implementation, management overhead, cost, resilience, and the distribution of DNS queries directed toward the Route 53 Resolver. We cover the following solutions:

Route 53 Resolver endpoints and forwarding rules – This solution focuses on using Route 53 Resolver endpoints to forward traffic between your Amazon VPC and on-premises data center over both AWS Direct Connect and Amazon VPN.
Secondary DNS in an Amazon VPC – This solution focuses on using Route 53 to mirror on-premises DNS zones that can then be natively resolved from within VPCs, without the need for additional DNS forwarding resources.
Decentralized conditional forwarders – This solution uses distributed conditional forwarders and provides two options for using them efficiently. While we use unbound as a conditional forwarder in some of these solutions, you can use any DNS server that supports conditional forwarding with similar features.
Scaling DNS management across multiple accounts and VPCs – This solution walks through options for managing DNS names as you scale your hybrid DNS solution.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Constraints

Route 53 Resolver endpoints and forwarding rules