• Skip to main content
  • Skip to primary sidebar
  • Skip to footer

securitywing

Menu
  • About
  • Must Read
      • IIS Performance Boost
      • RFID Security
      • Web App Security Testing
      • How to Secure Home Network
      • Prevent Cross-Site Scripting Attacks
      • Renew Self-Signed Certificates
      • Penetration Testing Tools
      • VPN Concentrator
      • Forensic Investigation Tools
      • Digital Certificates
      • Cloud Security Issues
      • Advanced Evasion Prevention
      • Firewall Types
      • Tips to Prevent Data Exfiltration
      • Classified Info Handling
      • MySQL Security
      • Definition of 7 Types of Malware
      • VOIP Security
      • Why Antivirus Software Fails
      • 15 Network Security Vulnerabilities
      • Web App Security
      • IT Security Standards
      • Types of Virtualization
      • Android Security
      • Digital Signature
      • Advanced Malware Protection
    • Close
  • Consultancy
  • Contact

How to Resolve Route 53 Privated Hosted zone from a VPC in a different AWS account

by wing

When you have mulitiple AWS accounts and a specic privated DNS  name that you want to resovled from a VPC in a different account you need to allow the hosted zone to to be resolver from a differnet acccount. For example, you have a hoste zone in account A  with serveral types of recoords and you want a DNS query for that zone get resovled from a specific VPC in account B. To allow the account B VPC resolve the hosted zone of accunt A, you need to do the following to

  1. Authorize the zone association from accocunt A
  2. Attach the zone with the VPC of account B from account B

Step 1: Take a note of the VPC ID and the hosted  zone id.

  • VPC ID IN Account B: vpc-087cb371
  • HOsted zone Id in account A: Z07969891FB4C978V4WOV

Step 2: Authorization
Connect to an Amazon Elastic Compute Cloud (Amazon EC2) instance in Account A and run
aws route53 create-vpc-association-authorization –hosted-zone-id Z07969891FB4C978V4WOV –vpc VPCRegion=eu-west-1,VPCId=vpc-087cb371 –region eu-west-1

Step 3: Association

Login to the account B and run the command beloew, make sure the use right right account profile.
aws route53 associate-vpc-with-hosted-zone –hosted-zone-id Z07969891FB4C978V4WOV –vpc VPCRegion=eu-west-1,VPCId=vpc-087cb371 –region eu-west-1

Delete the the associaotn authorizaton
Connect to accont A and run the command below:
aws route53 delete-vpc-association-authorization –hosted-zone-id Z07969891FB4C978V4WOV –vpc VPCRegion=eu-west-1,VPCId=vpc-087cb371 –region eu-west-1

Ref: https://aws.amazon.com/premiumsupport/knowledge-center/private-hosted-zone-different-account/

Related Posts:

  • How to Enable AWS Cross Account ECR Image Replication
  • How to Mount Amazon EFS in EC2-CentOS Instance
  • How to Install Boto3 for AWS SDK using Anaconda in Windows
  • How to Setup AWS CloudFront for Externally Registered Domain Name
  • How to Setup SSL in AWS application load balancer for WordPress

Filed Under: AWS Tagged With: AWS, hosted zone, route53

Primary Sidebar

CISSP Sample Test

Take a CISSP Sample Test

CISA IT governance Sample test



Twitter Follow @securitywing

Categories

  • AWS
  • containers
  • Internet Security and Safety
  • IS Audit
  • IT Security Exams
  • Network Security Tips
  • Off Track
  • Telecom
  • Tutorial

Pages

  • About
  • Best IT Security Certification Exam
  • CISA IT governance Sample test
  • CISA Sample Test
  • CISSP Sample Test Online
  • Consultancy
  • Contact

Popular Posts

  • 3 Steps to Install Miniku...
  • How to install a new Goda...
  • 63 Web Application Securi...
  • How to Renew Self-Signed...
  • Host Based IDS vs Network...
  • How to Setup AWS CloudFro...
  • 8 Effective Ways to Impro...
  • Active vs Passive FTP Mod...
  • Top 10 RFID Security Conc...
  • 3 Simple Steps to Capture...

Footer

Copyrights

Protected by Copyscape Duplicate Content Detection Software

Securitywing.com reserves the copyrights of all of its published articles.No contents of this site is permitted to be published to anywhere else in the Internet.If any contents are found in any other websites, securitywing reserves the rights to file a DMCA complaint. But you have the right to use the link of any relevant article of this site to point from your website if you consider that it might improve the quality of your article.

Tags

antivirus audit AWS backup browser check cisco cloud computer cyber data database encryption firewall home hsrp ids informaiton internet intrusion it kubernetes linux load balancing malware network protection putty risk router security security tips server ssh SSL switch tools virus vpn vulnerability web webserver website windows wordpress

Copyright © 2010-2023 ·All Rights Reserved · SecurityWing.com