- 最新
- 投票最多
- 评论最多
I believe you are almost here. The Route53 Inbound IPs must be used in the DNS server that is being used in your VPN. You have to create a forward rule for the private hosted zone domain pointing to the Inbound IPs. The clients shouldn't query the inbound IPs directly.
For reference -> https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/resolver-forwarding-inbound-queries.html
Hello,
There is a Knowledge Center article with detail steps on how to allow end users (clients connected to Client VPN) to query resource records hosted in my Amazon Route 53 private hosted zone.
https://aws.amazon.com/premiumsupport/knowledge-center/client-vpn-resolve-resource-records/
Yes i referred the article and it says- "Depending on your server configuration and the values that you specify for the "DNS Server IP address" parameter, the resolution of the private hosted zone domain varies" So what value should i specify. I did specify (VPC+2) and even the inbound endpoint ips but both did not work. Should i add something else as well?
So what exactly is the request track. If im not wrong-
Client VPN settings should include the DNS ip of Route 53 input endpoint. The input endpoint internally will resolve to VPC+2. The DNS Server at VPC+2 will forward the request to Route 53 resolver. Route 53 Resolver uses the forward rule. Am i correct on this?
相关内容
AWS 官方已更新 8 个月前- AWS 官方已更新 3 年前
- AWS 官方已更新 9 个月前
- AWS 官方已更新 6 个月前
So what exactly is the request track. If im not wrong-
The R53 endpoint doesn't go in the VPN configuration. It goes in the configuration of the DNS server that is used by the VPN. See https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/resolver-overview-DSN-queries-to-vpc.html#resolver-overview-forward-network-to-vpc The VPN clients will get a DNS server from the DHCP service and that server must know which domains must be resolved by R53.
This will be the flow: [VPN Client]-------DNS Query------>[VPN DNS Server]----------DNS FORWARD THROUGH THE VPN--------------->[R53 Resolver Inbound Endpoint]