Skip to content

Binbash Leverage™

DNS

binbashar/le-ref-architecture-doc

Binbash Leverage™

binbashar/le-ref-architecture-doc

Home
Home
- Home
- Welcome
- First steps
- How it works
- User guide
- Work with us
- License
First Steps
First Steps
How it works
How it works
- Reference Architecture
  Reference Architecture
  - Overview
  - Reference Architecture | AWS
  - Reference Architecture | EKS
  - General concepts
    General concepts
    
    Why Leverage?
    
    Why our stack?
  - Considerations
- Infra Code Library
  Infra Code Library
- Leverage CLI
- Features
  Features
  - Overview
  - AWS Organization
    AWS Organization
    
    Organization
    
    Accounts
    
    Billing
  - Identities
    Identities
    
    Overview
    
    IAM Roles
  - SSO
  - Costs
  - Security
    Security
    
    Overview
    
    VPN
    
    Services
    
    Certificates
    
    Audit | CloudTrail
    
    IAM Access Analyzer
  - Network
    Network
    
    VPC Topology
    
    VPC Adressing
    
    VPC Peering
    
    TGW Topology
    
    VPC Outbound Traffic
    
    DNS
  - Secrets
  - Compute
    Compute
    
    Overview
    
    K8s Kops
    
    K8s EKS
    
    K8s Service Mesh
    
    Serverless
    
    Tools
  - Database
    Database
    
    Databases
    
    MySQL
    
    PostgresSQL
  - Storage
  - CDN
  - CI/CD
    CI/CD
    
    Overview
    
    ArgoCD
  - Monitoring
    Monitoring
    
    Monitoring
    
    Metrics
    
    Logs
    
    Tracing
    
    APM
    
    Notifications
  - Reliability
    Reliability
    
    Backups
    
    High Availability
    
    Health Checks
    
    Disaster Recovery
- Read More
User guide
User guide
- Pre-requisites
- Reference Architecture | AWS
  Reference Architecture | AWS
- Reference Architecture | Vault
  Reference Architecture | Vault
- Reference Architecture | Ansible
  Reference Architecture | Ansible
  - Configs
  - Workflow
- Leverage CLI
  Leverage CLI
  - Install Leverage CLI
  - Reference
    Reference
    
    Basic features
    
    Commands
    Commands
    
    project
    
    credentials
    
    aws
    
    terraform
    
    run
  - Custom tasks
  - Shell environment
- Features
  Features
  - Overview
  - AWS Organization
    AWS Organization
    
    Organization Init
    
    Invite Legacy accounts
  - Identities
    Identities
    
    gpg
    
    Identities
    
    Credentials
    
    Credentials Vault
  - SSO
  - Costs
  - Security
    Security
    
    VPN
    
    Services
  - Network
    Network
    
    VPC
    
    VPC Peering
    
    DNS
  - Secrets
  - Compute
    Compute
    
    Overview
    
    K8s Kops
    
    K8s EKS
    
    Serverless
  - Database
    Database
    
    Databases
    
    MySQL
    
    PostgresSQL
  - Storage
  - CDN
  - CI/CD
  - Monitoring
    Monitoring
    
    Monitoring
    
    Metrics
    
    Logs
    
    Tracing
    
    APM
  - Reliability
    Reliability
    
    Backups
    
    Disaster Recovery
    
    Health Checks
Work with us
Work with us
- Overview
- Support
  Support
  - Support
- Releases
  Releases
  - Releases and Versions
  - Versions compatibility matrix
- Leverage vs Competition
- Contribute
- Roadmap
  Roadmap
  - Reference Architecture
    Reference Architecture
    
    Overview
    
    Operational Excellence
    
    Reliability & Performance
    
    Security
    
    Cost Optimization
    
    Demo Applications
  - Leverage CLI
- Careers
- FAQs
- Contact Us

Route53 DNS hosted zones ¶

aws-service Route53 Considerations

Route53 private hosted zone will have associations with VPCs on different AWS organization accounts
Route53 should ideally be hosted in the Shared account, although sometimes Route53 is already deployed in a Legacy account where it can be imported and fully supported as code.
Route53 zero downtime migration (active-active hosted zones) is completely possible and achievable with Leverage terraform code

leverage-aws-dns

Figure: AWS Organization shared account Route53 DNS diagram. (Source: Cristian Southall, "Using CloudFormation Custom Resources to Configure Route53 Aliases", Abstractable.io Blog post, accessed November 18th 2020).