AWS InfrastructureDNS

Summary

This document covers domain name resolution within AI Cloud Engineering (ACE) AWS and between ACE and Roche Corporate Network (RCN).

Current Topology

<!— image: image (from original wiki uploads) —>

RCN

  • Employs split-horizon DNS whereby resolution for roche.com and gene.com depends on whether the resolver is inside or outside RCN.
  • ACE AWS can only resolve public roche.com and gene.com addresses.

ACE AWS

  • ACE employs a single gred.ai Route 53 hosted zone for all DNS records.
  • This zone is public even though (nearly) all of its addresses are private.
  • This is done to enable RCN to resolve AWS hosted private addresses without the need of internal zone forwarding rules. DNS for gred.ai works just like DNS for any other Internet domain.
  • Users can resolve gred.ai addresses inside or outside RCN.
Network ArchitectureAWS Backup