2026/03/09 - Amazon Route 53 Global Resolver - 12 updated api methods
Changes Adds support for dual stack Global Resolvers and Dictionary-based Domain Generation Firewall Advanced Protection.
{'firewallRules': {'dnsAdvancedProtection': {'DICTIONARY_DGA'}}}
Response {'failures': {'firewallRule': {'dnsAdvancedProtection': {'DICTIONARY_DGA'}}},
'successes': {'firewallRule': {'dnsAdvancedProtection': {'DICTIONARY_DGA'}}}}
Creates multiple DNS firewall rules in a single operation. This is more efficient than creating rules individually when you need to set up multiple rules at once.
See also: AWS API Documentation
Request Syntax
client.batch_create_firewall_rule(
firewallRules=[
{
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'clientToken': 'string',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'qType': 'string'
},
]
)
list
[REQUIRED]
The BatchCreateFirewallRuleInputItem objects contain the information for each Firewall rule.
(dict) --
Information about a DNS Firewall rule to create in a batch operation.
action (string) -- [REQUIRED]
The action to take when a DNS query matches the firewall rule.
blockOverrideDnsType (string) --
The DNS record type for the custom response when the action is BLOCK.
blockOverrideDomain (string) --
The custom domain name for the BLOCK response.
blockOverrideTtl (integer) --
The TTL value for the custom response when the action is BLOCK.
blockResponse (string) --
The type of block response to return when the action is BLOCK.
clientToken (string) -- [REQUIRED]
A unique string that identifies the request and ensures idempotency.
confidenceThreshold (string) --
The confidence threshold for advanced threat detection.
description (string) --
A description of the firewall rule.
dnsAdvancedProtection (string) --
Whether to enable advanced DNS threat protection for the firewall rule.
firewallDomainListId (string) --
The ID of the firewall domain list to associate with the rule.
name (string) -- [REQUIRED]
A name for the firewall rule.
priority (integer) --
The priority of the firewall rule.
dnsViewId (string) -- [REQUIRED]
The ID of the DNS view to associate the firewall rule with.
qType (string) --
The DNS query type that the firewall rule should match.
dict
Response Syntax
{
'failures': [
{
'firewallRule': {
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'clientToken': 'string',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'managedDomainListName': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
},
'code': 123,
'message': 'string'
},
],
'successes': [
{
'firewallRule': {
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'clientToken': 'string',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'managedDomainListName': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
},
'code': 123,
'message': 'string'
},
]
}
Response Structure
(dict) --
failures (list) --
High level information about the DNS Firewall rules that failed to create.
(dict) --
Information about the result of creating a DNS Firewall rule in a batch operation.
firewallRule (dict) --
The firewall rule that was created in the batch operation.
action (string) --
The action configured for the created firewall rule.
blockOverrideDnsType (string) --
The DNS record type configured for the created firewall rule's custom response.
blockOverrideDomain (string) --
The custom domain name configured for the created firewall rule's BLOCK response.
blockOverrideTtl (integer) --
The TTL value configured for the created firewall rule's custom response.
blockResponse (string) --
The type of block response configured for the created firewall rule.
clientToken (string) --
The unique string that identified the request and ensured idempotency.
confidenceThreshold (string) --
The confidence threshold configured for the created firewall rule's advanced threat detection.
createdAt (datetime) --
The date and time when the firewall rule was created.
description (string) --
The description of the created firewall rule.
dnsAdvancedProtection (string) --
Whether advanced DNS threat protection is enabled for the created firewall rule.
firewallDomainListId (string) --
The ID of the firewall domain list associated with the created firewall rule.
id (string) --
The unique identifier of the created firewall rule.
managedDomainListName (string) --
The name of the managed domain list associated with the created firewall rule.
name (string) --
The name of the created firewall rule.
priority (integer) --
The priority of the created firewall rule.
dnsViewId (string) --
The ID of the DNS view associated with the created firewall rule.
queryType (string) --
The DNS query type that the created firewall rule matches.
status (string) --
The current status of the created firewall rule.
updatedAt (datetime) --
The date and time when the firewall rule was last updated.
code (integer) --
The HTTP response code for the batch operation result.
message (string) --
A message describing the result of the batch operation, including error details if applicable.
successes (list) --
High level information about the DNS Firewall rules that were created.
(dict) --
Information about the result of creating a DNS Firewall rule in a batch operation.
firewallRule (dict) --
The firewall rule that was created in the batch operation.
action (string) --
The action configured for the created firewall rule.
blockOverrideDnsType (string) --
The DNS record type configured for the created firewall rule's custom response.
blockOverrideDomain (string) --
The custom domain name configured for the created firewall rule's BLOCK response.
blockOverrideTtl (integer) --
The TTL value configured for the created firewall rule's custom response.
blockResponse (string) --
The type of block response configured for the created firewall rule.
clientToken (string) --
The unique string that identified the request and ensured idempotency.
confidenceThreshold (string) --
The confidence threshold configured for the created firewall rule's advanced threat detection.
createdAt (datetime) --
The date and time when the firewall rule was created.
description (string) --
The description of the created firewall rule.
dnsAdvancedProtection (string) --
Whether advanced DNS threat protection is enabled for the created firewall rule.
firewallDomainListId (string) --
The ID of the firewall domain list associated with the created firewall rule.
id (string) --
The unique identifier of the created firewall rule.
managedDomainListName (string) --
The name of the managed domain list associated with the created firewall rule.
name (string) --
The name of the created firewall rule.
priority (integer) --
The priority of the created firewall rule.
dnsViewId (string) --
The ID of the DNS view associated with the created firewall rule.
queryType (string) --
The DNS query type that the created firewall rule matches.
status (string) --
The current status of the created firewall rule.
updatedAt (datetime) --
The date and time when the firewall rule was last updated.
code (integer) --
The HTTP response code for the batch operation result.
message (string) --
A message describing the result of the batch operation, including error details if applicable.
{'firewallRules': {'dnsAdvancedProtection': {'DICTIONARY_DGA'}}}
Response {'failures': {'firewallRule': {'dnsAdvancedProtection': {'DICTIONARY_DGA'}}},
'successes': {'firewallRule': {'dnsAdvancedProtection': {'DICTIONARY_DGA'}}}}
Updates multiple DNS firewall rules in a single operation. This is more efficient than updating rules individually.
See also: AWS API Documentation
Request Syntax
client.batch_update_firewall_rule(
firewallRules=[
{
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallRuleId': 'string',
'name': 'string',
'priority': 123
},
]
)
list
[REQUIRED]
The DNS Firewall rule IDs to be updated.
(dict) --
Information for updating a firewall rule in a batch operation.
action (string) --
The action to take when a DNS query matches the firewall rule.
blockOverrideDnsType (string) --
The DNS record type for the custom response when the action is BLOCK.
blockOverrideDomain (string) --
The custom domain name for the BLOCK response.
blockOverrideTtl (integer) --
The TTL value for the custom response when the action is BLOCK.
blockResponse (string) --
The type of block response to return when the action is BLOCK.
confidenceThreshold (string) --
The confidence threshold for advanced threat detection.
description (string) --
A description of the firewall rule.
dnsAdvancedProtection (string) --
Whether to enable advanced DNS threat protection for the firewall rule.
firewallRuleId (string) -- [REQUIRED]
The unique identifier of the firewall rule to update.
name (string) --
A name for the firewall rule.
priority (integer) --
The priority of the firewall rule.
dict
Response Syntax
{
'failures': [
{
'firewallRule': {
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'clientToken': 'string',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
},
'code': 123,
'message': 'string'
},
],
'successes': [
{
'firewallRule': {
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'clientToken': 'string',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
},
'code': 123,
'message': 'string'
},
]
}
Response Structure
(dict) --
failures (list) --
High level information about the DNS Firewall rules that failed to update.
(dict) --
The result of updating a firewall rule in a batch operation.
firewallRule (dict) --
The firewall rule that was updated in the batch operation.
action (string) --
The action configured for the updated firewall rule.
blockOverrideDnsType (string) --
The DNS record type configured for the updated firewall rule's custom response.
blockOverrideDomain (string) --
The custom domain name configured for the updated firewall rule's BLOCK response.
blockOverrideTtl (integer) --
The TTL value configured for the updated firewall rule's custom response.
blockResponse (string) --
The type of block response configured for the updated firewall rule.
clientToken (string) --
The unique string that identified the request and ensured idempotency.
confidenceThreshold (string) --
The confidence threshold configured for the updated firewall rule's advanced threat detection.
createdAt (datetime) --
The date and time when the firewall rule was originally created.
description (string) --
The description of the updated firewall rule.
dnsAdvancedProtection (string) --
Whether advanced DNS threat protection is enabled for the updated firewall rule.
firewallDomainListId (string) --
The ID of the firewall domain list associated with the updated firewall rule.
id (string) --
The unique identifier of the updated firewall rule.
name (string) --
The name of the updated firewall rule.
priority (integer) --
The priority of the updated firewall rule.
dnsViewId (string) --
The ID of the DNS view associated with the updated firewall rule.
queryType (string) --
The DNS query type that the updated firewall rule matches.
status (string) --
The current status of the updated firewall rule.
updatedAt (datetime) --
The date and time when the firewall rule was last updated.
code (integer) --
The response code for the update operation.
message (string) --
The response message for the update operation.
successes (list) --
High level information about the DNS Firewall rules that were successfully updated.
(dict) --
The result of updating a firewall rule in a batch operation.
firewallRule (dict) --
The firewall rule that was updated in the batch operation.
action (string) --
The action configured for the updated firewall rule.
blockOverrideDnsType (string) --
The DNS record type configured for the updated firewall rule's custom response.
blockOverrideDomain (string) --
The custom domain name configured for the updated firewall rule's BLOCK response.
blockOverrideTtl (integer) --
The TTL value configured for the updated firewall rule's custom response.
blockResponse (string) --
The type of block response configured for the updated firewall rule.
clientToken (string) --
The unique string that identified the request and ensured idempotency.
confidenceThreshold (string) --
The confidence threshold configured for the updated firewall rule's advanced threat detection.
createdAt (datetime) --
The date and time when the firewall rule was originally created.
description (string) --
The description of the updated firewall rule.
dnsAdvancedProtection (string) --
Whether advanced DNS threat protection is enabled for the updated firewall rule.
firewallDomainListId (string) --
The ID of the firewall domain list associated with the updated firewall rule.
id (string) --
The unique identifier of the updated firewall rule.
name (string) --
The name of the updated firewall rule.
priority (integer) --
The priority of the updated firewall rule.
dnsViewId (string) --
The ID of the DNS view associated with the updated firewall rule.
queryType (string) --
The DNS query type that the updated firewall rule matches.
status (string) --
The current status of the updated firewall rule.
updatedAt (datetime) --
The date and time when the firewall rule was last updated.
code (integer) --
The response code for the update operation.
message (string) --
The response message for the update operation.
{'dnsAdvancedProtection': {'DICTIONARY_DGA'}}
Creates a DNS firewall rule. Firewall rules define actions (ALLOW, BLOCK, or ALERT) to take on DNS queries that match specified domain lists, managed domain lists, or advanced threat protections.
See also: AWS API Documentation
Request Syntax
client.create_firewall_rule(
action='ALLOW'|'ALERT'|'BLOCK',
blockOverrideDnsType='CNAME',
blockOverrideDomain='string',
blockOverrideTtl=123,
blockResponse='NODATA'|'NXDOMAIN'|'OVERRIDE',
clientToken='string',
confidenceThreshold='LOW'|'MEDIUM'|'HIGH',
description='string',
dnsAdvancedProtection='DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
firewallDomainListId='string',
name='string',
priority=123,
dnsViewId='string',
qType='string'
)
string
[REQUIRED]
The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list:
ALLOW - Permit the request to go through.
ALERT - Permit the request and send metrics and logs to CloudWatch.
BLOCK - Disallow the request. This option requires additional details in the rule's BlockResponse.
string
The DNS record's type. This determines the format of the record value that you provided in BlockOverrideDomain. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
This setting is required if the BlockResponse setting is OVERRIDE.
string
The custom DNS record to send back in response to the query. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
This setting is required if the BlockResponse setting is OVERRIDE.
integer
The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
This setting is required if the BlockResponse setting is OVERRIDE.
string
The response to return when the action is BLOCK. Valid values are NXDOMAIN (domain does not exist), NODATA (domain exists but no records), or OVERRIDE (return custom response).
string
A unique, case-sensitive identifier to ensure idempotency. This means that making the same request multiple times with the same clientToken has the same result every time.
This field is autopopulated if not provided.
string
The confidence threshold for advanced threat detection. Valid values are HIGH, MEDIUM, or LOW, indicating the accuracy level required for threat detection.
string
An optional description for the firewall rule.
string
Whether to enable advanced DNS threat protection for this rule. Advanced protection can detect and block DNS tunneling and Domain Generation Algorithm (DGA) threats.
string
The ID of the firewall domain list to use in this rule.
string
[REQUIRED]
A descriptive name for the firewall rule.
integer
The priority of this rule. Rules are evaluated in priority order, with lower numbers having higher priority. When a DNS query matches multiple rules, the rule with the highest priority (lowest number) is applied.
string
[REQUIRED]
The ID of the DNS view to associate with this firewall rule.
string
The DNS query type to match for this rule. Examples include A (IPv4 address), AAAA (IPv6 address), MX (mail exchange), or TXT (text record).
dict
Response Syntax
{
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
}
Response Structure
(dict) --
action (string) --
The action that DNS Firewall takes on DNS queries that match this rule.
blockOverrideDnsType (string) --
The DNS record type for the custom response when blockResponse is OVERRIDE.
blockOverrideDomain (string) --
The custom domain to return when the action is BLOCK and blockResponse is OVERRIDE.
blockOverrideTtl (integer) --
The time-to-live (TTL) value for the custom response when blockResponse is OVERRIDE.
blockResponse (string) --
The response to return when the action is BLOCK.
confidenceThreshold (string) --
The confidence threshold for advanced threat detection.
createdAt (datetime) --
The date and time when the firewall rule was created.
description (string) --
The description of the firewall rule.
dnsAdvancedProtection (string) --
Whether advanced DNS threat protection is enabled for this rule.
firewallDomainListId (string) --
The ID of the firewall domain list used in this rule.
id (string) --
The unique identifier for the firewall rule.
name (string) --
The name of the firewall rule.
priority (integer) --
The priority of the firewall rule.
dnsViewId (string) --
The ID of the DNS view associated with this firewall rule.
queryType (string) --
The DNS query type that this rule matches.
status (string) --
The operational status of the firewall rule.
updatedAt (datetime) --
The date and time when the firewall rule was last updated.
{'ipAddressType': 'IPV4 | DUAL_STACK'}
Response {'ipAddressType': 'IPV4 | DUAL_STACK', 'ipv6Addresses': ['string']}
Creates a new Route 53 Global Resolver instance. A Route 53 Global Resolver is a global, internet-accessible DNS resolver that provides secure DNS resolution for both public and private domains through global anycast IP addresses.
See also: AWS API Documentation
Request Syntax
client.create_global_resolver(
clientToken='string',
description='string',
ipAddressType='IPV4'|'DUAL_STACK',
name='string',
observabilityRegion='string',
regions=[
'string',
],
tags={
'string': 'string'
}
)
string
A unique string that identifies the request and ensures idempotency. If you make multiple requests with the same client token, only one Route 53 Global Resolver is created.
This field is autopopulated if not provided.
string
An optional description for the Route 53 Global Resolver instance. Maximum length of 1024 characters.
string
The IP address type for the Route 53 Global Resolver. Valid values are IPV4 (default) or DUAL_STACK for both IPv4 and IPv6 support.
string
[REQUIRED]
A descriptive name for the Route 53 Global Resolver instance. Maximum length of 64 characters.
string
The Amazon Web Services Region where query resolution logs and metrics will be aggregated and delivered. If not specified, logging is not enabled.
list
[REQUIRED]
List of Amazon Web Services Regions where the Route 53 Global Resolver will operate. The resolver will be distributed across these Regions to provide global availability and low-latency DNS resolution.
(string) --
dict
Tags to associate with the Route 53 Global Resolver. Tags are key-value pairs that help you organize and identify your resources.
(string) --
(string) --
dict
Response Syntax
{
'id': 'string',
'arn': 'string',
'clientToken': 'string',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsName': 'string',
'ipAddressType': 'IPV4'|'DUAL_STACK',
'ipv4Addresses': [
'string',
],
'ipv6Addresses': [
'string',
],
'name': 'string',
'observabilityRegion': 'string',
'regions': [
'string',
],
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
}
Response Structure
(dict) --
id (string) --
The unique identifier for the Route 53 Global Resolver.
arn (string) --
The Amazon Resource Name (ARN) of the Route 53 Global Resolver.
clientToken (string) --
The unique string that identifies the request and ensures idempotency.
createdAt (datetime) --
The date and time when the Route 53 Global Resolver was created.
description (string) --
The description of the Route 53 Global Resolver.
dnsName (string) --
The hostname that DNS clients should use for TLS certificate validation when connecting to the Route 53 Global Resolver. This value resolves to the global anycast IP addresses for the resolver.
ipAddressType (string) --
The IP address type configured for the Route 53 Global Resolver (IPV4 or DUAL_STACK).
ipv4Addresses (list) --
The global anycast IPv4 addresses associated with the Route 53 Global Resolver. DNS clients can send queries to these addresses from anywhere on the internet.
(string) --
ipv6Addresses (list) --
The global anycast IPv6 addresses associated with the Route 53 Global Resolver. This field is only populated when ipAddressType is DUAL_STACK. DNS clients can send queries to these addresses from anywhere on the internet.
(string) --
name (string) --
The name of the Route 53 Global Resolver.
observabilityRegion (string) --
The Amazon Web Services Region where observability data for the Route 53 Global Resolver is stored.
regions (list) --
The Amazon Web Services Regions where the Route 53 Global Resolver is deployed and operational.
(string) --
status (string) --
The current status of the Route 53 Global Resolver. Possible values are CREATING (being provisioned), UPDATING (being modified), OPERATIONAL (ready to serve queries), or DELETING (being removed).
updatedAt (datetime) --
The date and time when the Route 53 Global Resolver was last updated.
{'dnsAdvancedProtection': {'DICTIONARY_DGA'}}
Deletes a DNS firewall rule. This operation cannot be undone.
See also: AWS API Documentation
Request Syntax
client.delete_firewall_rule(
firewallRuleId='string'
)
string
[REQUIRED]
The unique identifier of the firewall rule to delete.
dict
Response Syntax
{
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
}
Response Structure
(dict) --
action (string) --
The action that was configured for the deleted firewall rule.
blockOverrideDnsType (string) --
The DNS record type that was configured for the deleted firewall rule's custom response.
blockOverrideDomain (string) --
The custom domain that was configured for the deleted firewall rule's BLOCK response.
blockOverrideTtl (integer) --
The TTL value that was configured for the deleted firewall rule's custom response.
blockResponse (string) --
The block response type that was configured for the deleted firewall rule.
confidenceThreshold (string) --
The confidence threshold that was configured for the deleted firewall rule's advanced threat detection.
createdAt (datetime) --
The date and time when the firewall rule was originally created.
description (string) --
The description of the deleted firewall rule.
dnsAdvancedProtection (string) --
Whether advanced DNS threat protection was enabled for the deleted firewall rule.
firewallDomainListId (string) --
The ID of the firewall domain list that was associated with the deleted firewall rule.
id (string) --
The unique identifier of the deleted firewall rule.
name (string) --
The name of the deleted firewall rule.
priority (integer) --
The priority that was configured for the deleted firewall rule.
dnsViewId (string) --
The ID of the DNS view that was associated with the deleted firewall rule.
queryType (string) --
The DNS query type that the deleted firewall rule was configured to match.
status (string) --
The final status of the deleted firewall rule.
updatedAt (datetime) --
The date and time when the firewall rule was last updated before deletion.
{'ipAddressType': 'IPV4 | DUAL_STACK', 'ipv6Addresses': ['string']}
Deletes a Route 53 Global Resolver instance. This operation cannot be undone. All associated DNS views, access sources, tokens, and firewall rules are also deleted.
See also: AWS API Documentation
Request Syntax
client.delete_global_resolver(
globalResolverId='string'
)
string
[REQUIRED]
The unique identifier of the Route 53 Global Resolver to delete.
dict
Response Syntax
{
'id': 'string',
'arn': 'string',
'clientToken': 'string',
'dnsName': 'string',
'observabilityRegion': 'string',
'name': 'string',
'description': 'string',
'regions': [
'string',
],
'createdAt': datetime(2015, 1, 1),
'updatedAt': datetime(2015, 1, 1),
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'ipv4Addresses': [
'string',
],
'ipv6Addresses': [
'string',
],
'ipAddressType': 'IPV4'|'DUAL_STACK'
}
Response Structure
(dict) --
id (string) --
The unique identifier of the deleted Route 53 Global Resolver.
arn (string) --
The Amazon Resource Name (ARN) of the deleted Route 53 Global Resolver.
clientToken (string) --
The unique string that identifies the request and ensures idempotency.
dnsName (string) --
The hostname that DNS clients used for TLS certificate validation when connecting to the deleted Route 53 Global Resolver.
observabilityRegion (string) --
The Amazon Web Services Region where observability data for the deleted Route 53 Global Resolver was stored.
name (string) --
The name of the deleted Route 53 Global Resolver.
description (string) --
The description of the deleted Route 53 Global Resolver.
regions (list) --
The Amazon Web Services Regions where the deleted Route 53 Global Resolver was deployed and operational.
(string) --
createdAt (datetime) --
The date and time when the Route 53 Global Resolver was originally created.
updatedAt (datetime) --
The date and time when the Route 53 Global Resolver was last updated before deletion.
status (string) --
The final status of the deleted Route 53 Global Resolver.
ipv4Addresses (list) --
The global anycast IPv4 addresses that were associated with the deleted Route 53 Global Resolver.
(string) --
ipv6Addresses (list) --
The global anycast IPv6 addresses that were associated with the deleted Route 53 Global Resolver.
(string) --
ipAddressType (string) --
The IP address type that was configured for the deleted Route 53 Global Resolver.
{'dnsAdvancedProtection': {'DICTIONARY_DGA'}}
Retrieves information about a DNS firewall rule.
See also: AWS API Documentation
Request Syntax
client.get_firewall_rule(
firewallRuleId='string'
)
string
[REQUIRED]
ID of the DNS Firewall rule.
dict
Response Syntax
{
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
}
Response Structure
(dict) --
action (string) --
The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
blockOverrideDnsType (string) --
The DNS record's type. This determines the format of the record value that you provided in BlockOverrideDomain. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
blockOverrideDomain (string) --
The custom DNS record to send back in response to the query. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
blockOverrideTtl (integer) --
The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
blockResponse (string) --
The way that you want DNS Firewall to block the request. Used for the rule action setting BLOCK.
confidenceThreshold (string) --
The confidence threshold for DNS Firewall Advanced. You must provide this value when you create a DNS Firewall Advanced rule.
createdAt (datetime) --
The time and date the DNS Firewall rule was created.
description (string) --
The description of the DNS Firewall rule.
dnsAdvancedProtection (string) --
The type of the DNS Firewall Advanced rule. Valid values are DGA, DNS_TUNNELING, and DICTIONARY_DGA.
firewallDomainListId (string) --
The ID of a DNS Firewall domain list.
id (string) --
ID of the DNS Firewall rule.
name (string) --
The name of the DNS Firewall rule.
priority (integer) --
The setting that determines the processing order of the rule in the rule group. DNS Firewall processes the rules in a rule group by order of priority, starting from the lowest setting.
dnsViewId (string) --
The DNS view ID the DNS Firewall is associated with.
queryType (string) --
The DNS query type you want the rule to evaluate.
status (string) --
The operational status of the DNS Firewall rule.
updatedAt (datetime) --
The date and time the DNS Firewall rule was updated.
{'ipAddressType': 'IPV4 | DUAL_STACK', 'ipv6Addresses': ['string']}
Retrieves information about a Route 53 Global Resolver instance.
See also: AWS API Documentation
Request Syntax
client.get_global_resolver(
globalResolverId='string'
)
string
[REQUIRED]
The ID of the Route 53 Global Resolver to retrieve information about.
dict
Response Syntax
{
'id': 'string',
'arn': 'string',
'clientToken': 'string',
'dnsName': 'string',
'observabilityRegion': 'string',
'name': 'string',
'description': 'string',
'regions': [
'string',
],
'createdAt': datetime(2015, 1, 1),
'updatedAt': datetime(2015, 1, 1),
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'ipv4Addresses': [
'string',
],
'ipv6Addresses': [
'string',
],
'ipAddressType': 'IPV4'|'DUAL_STACK'
}
Response Structure
(dict) --
id (string) --
The ID of the Global Resolver.
arn (string) --
The Amazon Resource Name (ARN) of the Global Resolver.
clientToken (string) --
A unique, case-sensitive identifier to ensure idempotency. This means that making the same request multiple times with the same clientToken has the same result every time.
dnsName (string) --
The hostname used by the customers' DNS clients for certification validation.
observabilityRegion (string) --
The Amazon Web Services Regions in which the users' Global Resolver query resolution logs will be propagated.
name (string) --
The name of the Global Resolver.
description (string) --
The description of the Global Resolver.
regions (list) --
The Amazon Web Services Regions in which the Global Resolver operate.
(string) --
createdAt (datetime) --
The date and time the Global Resolver was created.
updatedAt (datetime) --
The date and time the Global Resolver was updated.
status (string) --
The operational status of the Global Resolver.
ipv4Addresses (list) --
List of anycast IPv4 addresses associated with the Global Resolver instance.
(string) --
ipv6Addresses (list) --
List of anycast IPv6 addresses associated with the Global Resolver instance. This field is only populated when ipAddressType is DUAL_STACK.
(string) --
ipAddressType (string) --
The IP address type configured for the Global Resolver.
{'firewallRules': {'dnsAdvancedProtection': {'DICTIONARY_DGA'}}}
Lists all DNS firewall rules for a DNS view with pagination support.
See also: AWS API Documentation
Request Syntax
client.list_firewall_rules(
maxResults=123,
nextToken='string',
dnsViewId='string',
filters={
'string': [
'string',
]
}
)
integer
The maximum number of results to retrieve in a single call.
string
A pagination token used for large sets of results that can't be returned in a single response.
string
[REQUIRED]
ID of the DNS view.
dict
Values to filter the results.
(string) --
(list) --
(string) --
dict
Response Syntax
{
'nextToken': 'string',
'firewallRules': [
{
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
},
]
}
Response Structure
(dict) --
nextToken (string) --
A pagination token used for large sets of results that can't be returned in a single response. Provide this token in the next call to get the results not returned in this call.
firewallRules (list) --
List of the firewall rules and information about them.
(dict) --
Summary information about a firewall rule.
action (string) --
The action configured for the firewall rule.
blockOverrideDnsType (string) --
The DNS record type configured for the firewall rule's custom response.
blockOverrideDomain (string) --
The custom domain name configured for the firewall rule's BLOCK response.
blockOverrideTtl (integer) --
The TTL value configured for the firewall rule's custom response.
blockResponse (string) --
The type of block response configured for the firewall rule.
confidenceThreshold (string) --
The confidence threshold configured for the firewall rule's advanced threat detection.
createdAt (datetime) --
The date and time when the firewall rule was created.
description (string) --
The description of the firewall rule.
dnsAdvancedProtection (string) --
Whether advanced DNS threat protection is enabled for the firewall rule.
firewallDomainListId (string) --
The ID of the firewall domain list associated with the firewall rule.
id (string) --
The unique identifier of the firewall rule.
name (string) --
The name of the firewall rule.
priority (integer) --
The priority of the firewall rule.
dnsViewId (string) --
The ID of the DNS view associated with the firewall rule.
queryType (string) --
The DNS query type that the firewall rule matches.
status (string) --
The current status of the firewall rule.
updatedAt (datetime) --
The date and time when the firewall rule was last updated.
{'globalResolvers': {'ipAddressType': 'IPV4 | DUAL_STACK',
'ipv6Addresses': ['string']}}
Lists all Route 53 Global Resolver instances in your account with pagination support.
See also: AWS API Documentation
Request Syntax
client.list_global_resolvers(
maxResults=123,
nextToken='string'
)
integer
The maximum number of Route 53 Global Resolver instances to return in the response. Valid range is 1-100.
string
The token for the next page of results. This value is returned in the response if there are more results to retrieve.
dict
Response Syntax
{
'nextToken': 'string',
'globalResolvers': [
{
'id': 'string',
'arn': 'string',
'clientToken': 'string',
'dnsName': 'string',
'observabilityRegion': 'string',
'name': 'string',
'description': 'string',
'regions': [
'string',
],
'createdAt': datetime(2015, 1, 1),
'updatedAt': datetime(2015, 1, 1),
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'ipv4Addresses': [
'string',
],
'ipv6Addresses': [
'string',
],
'ipAddressType': 'IPV4'|'DUAL_STACK'
},
]
}
Response Structure
(dict) --
nextToken (string) --
A pagination token used for large sets of results that can't be returned in a single response. Provide this token in the next call to get the results not returned in this call.
globalResolvers (list) --
Paginated list of Global Resolvers.
(dict) --
Summary information about a global resolver.
id (string) --
The unique identifier of the global resolver.
arn (string) --
The Amazon Resource Name (ARN) of the global resolver.
clientToken (string) --
The unique string that identifies the request and ensures idempotency.
dnsName (string) --
The DNS name of the global resolver.
observabilityRegion (string) --
The Amazon Web Services Region where observability data is collected for the global resolver.
name (string) --
The name of the global resolver.
description (string) --
A description of the global resolver.
regions (list) --
The Amazon Web Services Regions where the global resolver is deployed.
(string) --
createdAt (datetime) --
The date and time when the global resolver was created.
updatedAt (datetime) --
The date and time when the global resolver was last updated.
status (string) --
The current status of the global resolver.
ipv4Addresses (list) --
The IPv4 addresses assigned to the global resolver.
(string) --
ipv6Addresses (list) --
The IPv6 addresses assigned to the global resolver. This field is only populated when ipAddressType is DUAL_STACK.
(string) --
ipAddressType (string) --
The IP address type configured for the global resolver.
{'dnsAdvancedProtection': {'DICTIONARY_DGA'}}
Updates the configuration of a DNS firewall rule.
See also: AWS API Documentation
Request Syntax
client.update_firewall_rule(
action='ALLOW'|'ALERT'|'BLOCK',
blockOverrideDnsType='CNAME',
blockOverrideDomain='string',
blockOverrideTtl=123,
blockResponse='NODATA'|'NXDOMAIN'|'OVERRIDE',
clientToken='string',
confidenceThreshold='LOW'|'MEDIUM'|'HIGH',
description='string',
dnsAdvancedProtection='DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
firewallRuleId='string',
name='string',
priority=123
)
string
The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
string
The DNS record's type. This determines the format of the record value that you provided in BlockOverrideDomain. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
string
The custom DNS record to send back in response to the query. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
integer
The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
string
The way that you want DNS Firewall to block the request. Used for the rule action setting BLOCK.
string
[REQUIRED]
A unique, case-sensitive identifier to ensure idempotency. This means that making the same request multiple times with the same clientToken has the same result every time.
This field is autopopulated if not provided.
string
The confidence threshold for DNS Firewall Advanced. You must provide this value when you create a DNS Firewall Advanced rule.
string
The description for the Firewall rule.
string
The type of the DNS Firewall Advanced rule. Valid values are DGA, DNS_TUNNELING, and DICTIONARY_DGA.
string
[REQUIRED]
The ID of the DNS Firewall rule.
string
The name of the DNS Firewall rule.
integer
The setting that determines the processing order of the rule in the rule group. DNS Firewall processes the rules in a rule group by order of priority, starting from the lowest setting.
dict
Response Syntax
{
'action': 'ALLOW'|'ALERT'|'BLOCK',
'blockOverrideDnsType': 'CNAME',
'blockOverrideDomain': 'string',
'blockOverrideTtl': 123,
'blockResponse': 'NODATA'|'NXDOMAIN'|'OVERRIDE',
'confidenceThreshold': 'LOW'|'MEDIUM'|'HIGH',
'createdAt': datetime(2015, 1, 1),
'description': 'string',
'dnsAdvancedProtection': 'DGA'|'DNS_TUNNELING'|'DICTIONARY_DGA',
'firewallDomainListId': 'string',
'id': 'string',
'name': 'string',
'priority': 123,
'dnsViewId': 'string',
'queryType': 'string',
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'updatedAt': datetime(2015, 1, 1)
}
Response Structure
(dict) --
action (string) --
The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
blockOverrideDnsType (string) --
The DNS record's type. This determines the format of the record value that you provided in BlockOverrideDomain. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
blockOverrideDomain (string) --
The custom DNS record to send back in response to the query. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
blockOverrideTtl (integer) --
The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record. Used for the rule action BLOCK with a BlockResponse setting of OVERRIDE.
blockResponse (string) --
The way that you want DNS Firewall to block the request. Used for the rule action setting BLOCK.
confidenceThreshold (string) --
The confidence threshold for DNS Firewall Advanced. You must provide this value when you create a DNS Firewall Advanced rule.
createdAt (datetime) --
The time and date the Firewall rule was created.
description (string) --
The description of the Firewall rule.
dnsAdvancedProtection (string) --
The type of the DNS Firewall Advanced rule. Valid values are DGA, DNS_TUNNELING, and DICTIONARY_DGA.
firewallDomainListId (string) --
The ID of the domain list associated with the Firewall rule.
id (string) --
The ID of the Firewall rule.
name (string) --
The name of the Firewall rule.
priority (integer) --
The setting that determines the processing order of the rule in the rule group. DNS Firewall processes the rules in a rule group by order of priority, starting from the lowest setting.
dnsViewId (string) --
The ID of the DNS view the Firewall rule is associated with.
queryType (string) --
The DNS query type you want the rule to evaluate.
status (string) --
The operational status of the firewall rule.
updatedAt (datetime) --
The time and date the rule was updated.
{'ipAddressType': 'IPV4 | DUAL_STACK'}
Response {'ipAddressType': 'IPV4 | DUAL_STACK', 'ipv6Addresses': ['string']}
Updates the configuration of a Route 53 Global Resolver instance. You can modify the name, description, and observability Region.
See also: AWS API Documentation
Request Syntax
client.update_global_resolver(
globalResolverId='string',
name='string',
observabilityRegion='string',
description='string',
ipAddressType='IPV4'|'DUAL_STACK'
)
string
[REQUIRED]
The ID of the Global Resolver.
string
The name of the Global Resolver.
string
The Amazon Web Services Regions in which the users' Global Resolver query resolution logs will be propagated.
string
The description of the Global Resolver.
string
The IP address type for the Global Resolver. Valid values are IPV4 or DUAL_STACK for both IPv4 and IPv6 support.
dict
Response Syntax
{
'id': 'string',
'arn': 'string',
'clientToken': 'string',
'dnsName': 'string',
'observabilityRegion': 'string',
'name': 'string',
'description': 'string',
'regions': [
'string',
],
'createdAt': datetime(2015, 1, 1),
'updatedAt': datetime(2015, 1, 1),
'status': 'CREATING'|'OPERATIONAL'|'UPDATING'|'DELETING',
'ipv4Addresses': [
'string',
],
'ipv6Addresses': [
'string',
],
'ipAddressType': 'IPV4'|'DUAL_STACK'
}
Response Structure
(dict) --
id (string) --
The ID of the Global Resolver.
arn (string) --
The Amazon Resource Name (ARN) of the Global Resolver.
clientToken (string) --
A unique, case-sensitive identifier to ensure idempotency. This means that making the same request multiple times with the same clientToken has the same result every time.
dnsName (string) --
The hostname to be used by the customers' DNS clients for certification validation.
observabilityRegion (string) --
The Amazon Web Services Regions in which the users' Global Resolver query resolution logs will be propagated.
name (string) --
Name of the Global Resolver.
description (string) --
Description of the Global Resolver.
regions (list) --
The Amazon Web Services Regions in which the Global Resolver will operate.
(string) --
createdAt (datetime) --
The time and date the Global Resolverwas created.
updatedAt (datetime) --
The time and date the Global Resolver was updated.
status (string) --
The operational status of the Global Resolver.
ipv4Addresses (list) --
List of anycast IPv4 addresses associated with the Global Resolver instance.
(string) --
ipv6Addresses (list) --
List of anycast IPv6 addresses associated with the updated Global Resolver instance. This field is only populated when ipAddressType is DUAL_STACK.
(string) --
ipAddressType (string) --
The IP address type configured for the updated Global Resolver.