Amazon Route 53 Resolver

Contents

Virtual Private Cloud (VPC)
1
What is a VPC?
PREVIEW2m 25s
2
Subnets
PREVIEW16m 20s
3
Network Access Control Lists (NACLs)
PREVIEW5m 20s
4
Security Groups
6m 2s
5
NAT Gateway
5m 38s
6
Bastion Hosts
7m 46s
7
VPN & Direct Connect
13m 19s
8
VPC Peering
6m 48s
9
Transit Gateway
3m 54s
AWS Data Migration
10
What is AWS DataSync?
PREVIEW3m 11s
11
What is the Snow Family?
PREVIEW2m 57s
12
What is the AWS Database Migration Service?
PREVIEW6m 43s
AWS Transit Gateway
13
Connecting Networks with AWS Transit Gateway
PREVIEW19m 3s
Amazon CloudFront
14
Amazon CloudFront
PREVIEW5m 40s

The course is part of this learning path

Designing Network & Data Transfer solutions in AWS - Level 1
1
4
1
Start course
Overview
Difficulty
Beginner
Duration
2h 2m
Students
13
Ratings
5/5
starstarstarstarstar
Description

This course covers the core learning objective to meet the requirements of the 'Designing Network & Data Transfer solutions in AWS - Level 1' skill

Learning Objectives:

  • Understand the different AWS connectivity options for implementing a Hybrid solution
  • Understand the AWS global infrastructure and its components in relation to networking and data transfer.
  • Understand the purpose of Route 53 & Amazon CloudFront
  • Analyze the different AWS data transfer services that are available
  • Understand the different components of a Virtual Private Cloud
Transcript

The Route 53 resolver is the DNS service for VPCs that integrates with your data center. Connectivity needs to be established between your data center DNS and AWS using a Direct Connect (DX) or a Virtual Private Network (VPN) connection.    You configure endpoints for DNS queries into and out of VPCs. Endpoints are configured through IP address assignment in each subnet needing the Route 53 Resolver. 

Inbound queries allow DNS queries that originate in your data center to resolve AWS-hosted domains.  

Outbound DNS queries are enabled using conditional forwarding rules. Domains hosted in your data center can be configured as forwarding rules in Route 53 resolver.  Rules trigger when a query is made to one of those domains and the request is forwarded to your data center.  This recursive DNS for your VPCs controls how DNS queries are handled between your VPCs and your data center. 

 

Finally, the Route 53 Resolver DNS firewall is a managed firewall service for DNS queries that start in your VPCs.  You use a firewall rule group to define how Route 53 Resolver DNS firewall inspects and filters traffic coming from your VPC.  Each rule consists of a domain list to inspect in DNS queries and an action to take when a query results in a match.  You can allow a matching query to go through, allow it to go through with an alert or you can block it and respond with a default or a custom response.  To begin the filtering you associate the rule group to the VPCs you want to protect.  Route 53 resolver DNS firewall will apply your defined filtering rules to the outgoing VPC traffic.

About the Author
Avatar
Stuart Scott
AWS Content Director
Students
218685
Labs
1
Courses
213
Learning Paths
174

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 150+ courses relating to Cloud reaching over 180,000 students, mostly within the AWS category and with a heavy focus on security and compliance.

Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.

Covered Topics

NetworkingMigrationSecurityStorageContent Delivery NetworkingHigh AvailabilityAmazon Web ServicesNetworking for AWSMigration for AWSContent Delivery Networking for AWSSecurity for AWSStorage for AWSAmazon VPCAWS DataSyncAmazon CloudFrontAmazon Route 53AWS Snow Family