Create Route 53 Outbound Endpoint
Create Route 53 Outbound Endpoint
- First, we will create an Outbound Endpoint in Route 53 to allow Route 53 Resolver to forward DNS queries for domain names hosted on systems outside of Route 53. When you create an Outbound Endpoint in Route 53, AWS will automatically create an Elastic Network Interface (ENI) in each Availability Zone (AZ) that you specify.
- Access the Route 53 interface through the search box and select Route 53.
- Expand the left menu, select Outbound Endpoints and click Create Outbound Endpoint.
- On the Create Outbound Endpoint page, enter the following information:
- Endpoint name:
R53-OutboundEndpoint - VPC in the Region: HybridDNS-VPCStack- (This is the VPC created by CloudFormation in the previous section)
- Security group for this endpoint: d-###….#_controllers (This is the security group created by CloudFormation to protect connections to AWS Managed Microsoft Active Directory)
- Endpoint name:
-
In Endpoint Type, select: IPv4
-
In Protocols for this endpoint, select: Do53
-
In RNI Enhanced Metrics, select:Disable
-
In Target Name Server Metrics, select:Disable
- Configure IP addresses
- IP address #1:
- In Availability Zone, select “ap-southeast-1a”
- In Subnet, select “Private subnet 1A”
- In IP address, select “Use an IP address that is selected automatically”
- IP address #2:
- In Availability Zone, select “ap-southeast-1c”
- In Subnet, select “Private subnet 2A”
- In IP address, select “Use an IP address that is selected automatically”
- Finally, click Create Outbound Endpoint.
- After about 5 minutes, the Outbound Endpoint will be successfully configured in your VPC.
