We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.
If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”
Customize cookie preferences
We use cookies and similar tools (collectively, "cookies") for the following purposes.
Essential
Essential cookies are necessary to provide our site and services and cannot be deactivated. They are usually set in response to your actions on the site, such as setting your privacy preferences, signing in, or filling in forms.
Performance
Performance cookies provide anonymous statistics about how customers navigate our site so we can improve site experience and performance. Approved third parties may perform analytics on our behalf, but they cannot use the data for their own purposes.
Allowed
Functional
Functional cookies help us provide useful site features, remember your preferences, and display relevant content. Approved third parties may set these cookies to provide certain site features. If you do not allow these cookies, then some or all of these services may not function properly.
Allowed
Advertising
Advertising cookies may be set through our site by us or our advertising partners and help us deliver relevant marketing content. If you do not allow these cookies, you will experience less relevant advertising.
Allowed
Blocking some types of cookies may impact your experience of our sites. You may review and change your choices at any time by selecting Cookie preferences in the footer of this site. We and selected third-parties use cookies or similar technologies as specified in the AWS Cookie Notice.
Your privacy choices
We and our advertising partners (“we”) may use information we collect from or about you to show you ads on other websites and online services. Under certain laws, this activity is referred to as “cross-context behavioral advertising” or “targeted advertising.”
To opt out of our use of cookies or similar technologies to engage in these activities, select “Opt out of cross-context behavioral ads” and “Save preferences” below. If you clear your browser cookies or visit this site from a different device or browser, you will need to make your selection again. For more information about cookies and how we use them, read our Cookie Notice.
To opt out of the use of other identifiers, such as contact information, for these activities, fill out the form here.
For more information about how AWS handles your information, read the AWS Privacy Notice.
Unable to save cookie preferences
We will only store essential cookies at this time, because we were unable to save your cookie preferences.
If you want to change your cookie preferences, try again later using the link in the AWS console footer, or contact support if the problem persists.
Secure and control hybrid DNS requests with Amazon Route 53 Resolver DNS Firewall. Define custom rules to prevent DNS exfiltration attacks.
Access for DNS requests
Allow AWS services access for DNS requests from anywhere within your hybrid network.
Debug, troubleshoot, and monitor DNS traffic
Debug, troubleshoot, and monitor DNS traffic with Resolver Query Logging to gain visibility into your hybrid DNS.
How it works
Amazon Route 53 Resolver provides a robust toolset for DNS query resolution across AWS, the internet, and on-premises networks with secure control over your Amazon Virtual Private Cloud (VPC) DNS. Queries that are forwarded to the Route 53 Resolver are evaluated through your configured forwarding rules and through system rules. If the query name matches a forwarding rule, the Route 53 Resolver uses a Resolver Outbound Endpoint to forward the query to on-premises DNS servers. If the query name matches a system rule, the Route 53 Resolver will forward the query to be answered based on Route 53 private hosted zone records, the local VPC domain names for Amazon Elastic Compute Cloud (EC2) instances, or lookups against public name servers on the internet.
Use cases
Resolve hybrid cloud DNS queries
Resolve DNS queries locally on AWS Outposts or create Route 53 endpoints and conditional forwarding rules to resolve DNS namespaces between on-premises data centers and Amazon VPCs.
Secure DNS traffic
Define firewall rules using Amazon Route 53 Resolver DNS Firewall to inspect and block DNS queries from custom and pre-defined domain name lists. Enhance security and privacy for DNS queries by sending and receiving DNS data over HTTPS using TLS.
Configure with flexibility
Manage internal DNS resource hostnames and customize traffic flow for granular control over your routing with Amazon Route 53 Private DNS.