AWS::Route53GlobalResolver::FirewallDomainList - Amazon CloudFormation
SyntaxPropertiesReturn values
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

This is the new Amazon CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the Amazon CloudFormation User Guide.

AWS::Route53GlobalResolver::FirewallDomainList

Creates a firewall domain list. Domain lists are reusable sets of domain specifications that you use in DNS firewall rules to allow, block, or alert on DNS queries to specific domains.

Important

Route 53 Global Resolver is a global service that supports resolvers in multiple Amazon Web Services Regions but you must specify the US East (Ohio) Region to create, update, or otherwise work with Route 53 Global Resolver resources. That is, for example, specify --region us-east-2 on Amazon CLI commands.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{
  "Type" : "AWS::Route53GlobalResolver::FirewallDomainList",
  "Properties" : {
      "ClientToken" : String,
      "Description" : String,
      "DomainFileUrl" : String,
      "Domains" : [ String, ... ],
      "GlobalResolverId" : String,
      "Name" : String,
      "Tags" : [ Tag, ... ]
    }
}

YAML

Type: AWS::Route53GlobalResolver::FirewallDomainList
Properties:
  ClientToken: String
  Description: String
  DomainFileUrl: String
  Domains: 
    - String
  GlobalResolverId: String
  Name: String
  Tags: 
    - Tag

Properties

ClientToken

A unique, case-sensitive identifier to ensure idempotency. This means that making the same request multiple times with the same clientToken has the same result every time.

Required: No

Type: String

Minimum: 1

Maximum: 256

Update requires: Replacement

Description

A description of the firewall domain list.

Required: No

Type: String

Minimum: 1

Maximum: 256

Update requires: Replacement

DomainFileUrl

The fully qualified URL of the file in Amazon S3 that contains the list of domains to import. The file should contain one domain per line.

Required: No

Type: String

Minimum: 1

Maximum: 1024

Update requires: No interruption

Domains

A list of the domains. You can add up to 1000 domains per request.

Required: No

Type: Array of String

Minimum: 1

Maximum: 255

Update requires: No interruption

GlobalResolverId

The ID of the global resolver that the firewall domain list is associated with.

Required: Yes

Type: String

Minimum: 1

Maximum: 64

Update requires: Replacement

Name

The name of the firewall domain list.

Required: Yes

Type: String

Pattern: (?!^[0-9]+$)([a-zA-Z0-9-_' ']+)

Minimum: 1

Maximum: 64

Update requires: Replacement

Tags

An array of user-defined keys and optional values. These tags can be used for categorization and organization.

Required: No

Type: Array of Tag

Maximum: 50

Update requires: No interruption

Return values

Ref

Fn::GetAtt

Arn

The Amazon Resource Name (ARN) of the firewall domain list.

CreatedAt

The date and time when the firewall domain list was created.

DomainCount

Number of domains in the domain list.

FirewallDomainListId

ID of the domain list.

Status

The current status of the firewall domain list.

StatusMessage

Additional information about the status of the domain list.

UpdatedAt

The date and time when the firewall domain list was last updated.