AWS::Route53Resolver::FirewallDomainList - Amazon CloudFormation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).


High-level information about a list of firewall domains for use in a AWS::Route53Resolver::FirewallRule. This is returned by GetFirewallDomainList.

To retrieve the domains that are defined for this domain list, call ListFirewallDomains.


To declare this entity in your Amazon CloudFormation template, use the following syntax:


{ "Type" : "AWS::Route53Resolver::FirewallDomainList", "Properties" : { "DomainFileUrl" : String, "Domains" : [ String, ... ], "Name" : String, "Tags" : [ Tag, ... ] } }


Type: AWS::Route53Resolver::FirewallDomainList Properties: DomainFileUrl: String Domains: - String Name: String Tags: - Tag



The fully qualified URL or URI of the file stored in Amazon Simple Storage Service (Amazon S3) that contains the list of domains to import.

The file must be in an S3 bucket that's in the same Region as your DNS Firewall. The file must be a text file and must contain a single domain per line.

Required: No

Type: String

Minimum: 1

Maximum: 1024

Update requires: No interruption


A list of the domain lists that you have defined.

Required: No

Type: Array of String

Minimum: 1

Maximum: 255

Update requires: No interruption


The name of the domain list.

Required: No

Type: String

Pattern: (?!^[0-9]+$)([a-zA-Z0-9\-_' ']+)

Minimum: 1

Maximum: 64

Update requires: Replacement


A list of the tag keys and values that you want to associate with the domain list.

Required: No

Type: Array of Tag

Maximum: 200

Update requires: No interruption

Return values


When you pass the logical ID of this resource to the intrinsic Ref function, Ref returns the FirewallDomainList object.

For more information about using the Ref function, see Ref.


The Fn::GetAtt intrinsic function returns a value for a specified attribute of this type. The following are the available attributes and sample return values.

For more information about using the Fn::GetAtt intrinsic function, see Fn::GetAtt.


The Amazon Resource Name (ARN) of the firewall domain list.


The date and time that the domain list was created, in Unix time format and Coordinated Universal Time (UTC).


A unique string defined by you to identify the request. This allows you to retry failed requests without the risk of running the operation twice. This can be any unique string, for example, a timestamp.


The number of domain names that are specified in the domain list.


The ID of the domain list.


The owner of the list, used only for lists that are not managed by you. For example, the managed domain list AWSManagedDomainsMalwareDomainList has the managed owner name Route 53 Resolver DNS Firewall.


The date and time that the domain list was last modified, in Unix time format and Coordinated Universal Time (UTC).


The status of the domain list.


Additional information about the status of the list, if available.