Posted On: Sep 16, 2021
Today, we are pleased to announced that the Route 53 Resolver DNS Firewall is now generally available in the Asia Pacific (Osaka) Region. The Route 53 Resolver DNS Firewall is a managed firewall that allows customers to block DNS queries made for known malicious domains and to allow queries for trusted domains.
With Route 53 Resolver DNS Firewall, customers can centrally deploy DNS firewall rules across accounts, organizational units (OUs), and VPCs in their organization using AWS Firewall Manager. Alternately, customers can also choose to directly share their firewall rules across their accounts by using AWS Resource Access Manager (RAM). They can utilize Amazon CloudWatch Metrics and Contributor Insights to understand the number of DNS queries being blocked or allowed by their firewall, down to the rule level. They can also enable logging by using Route 53 Resolver Query Logs to get instance-level information on blocked and allowed queries, such as the instance ID or source IP address of the instance making the query. AWS Managed Domain Lists allow customers to quickly get started with baseline protections against common network threats.