CompTIA DataX (CNX-001) — Question 31

A company deployed new applications in the cloud and configured a site-to-site VPN to connect the internal data center with the cloud. The IT team wants the internal servers to connect to those applications without using public IP addresses. Which of the following is the best solution?

Answer options

• A. Create a DNS server in the cloud. Configure the DNS server in the customer data center to forward DNS requests for cloud resources to the cloud DNS server.
• B. Configure a NAT server on the cloud to allow internal servers to connect to the applications through the NAT server.
• C. Register applications on the cloud with a public DNS sever and configure internal servers to connect to them using their public DNS names.
• D. Configure proxy service in the site-to-site VPN to allow internal servers to access applications through the proxy.

Correct answer: A

Explanation

The correct answer is A because creating a DNS server in the cloud and forwarding requests allows internal servers to resolve cloud resource addresses without exposing them to public IPs. Option B is incorrect as a NAT server would require public IPs for outgoing connections. Option C is not suitable since it relies on public DNS, which contradicts the requirement to avoid public IPs. Option D also does not address the issue of using public IPs effectively.