BatchCreateFirewallRuleInputItem - Amazon Route 53
ContentsSee Also
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

BatchCreateFirewallRuleInputItem

Information about a DNS Firewall rule to create in a batch operation.

Contents

action

The action to take when a DNS query matches the firewall rule.

Type: String

Valid Values: ALLOW | ALERT | BLOCK

Required: Yes

clientToken

A unique string that identifies the request and ensures idempotency.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 256.

Required: Yes

dnsViewId

The ID of the DNS view to associate the firewall rule with.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 64.

Pattern: [-.a-zA-Z0-9]+

Required: Yes

name

A name for the firewall rule.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 64.

Pattern: (?!^[0-9]+$)([a-zA-Z0-9-_/' ']+)

Required: Yes

blockOverrideDnsType

The DNS record type for the custom response when the action is BLOCK.

Type: String

Valid Values: CNAME

Required: No

blockOverrideDomain

The custom domain name for the BLOCK response.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 256.

Pattern: \*?[-a-zA-Z0-9.]+

Required: No

blockOverrideTtl

The TTL value for the custom response when the action is BLOCK.

Type: Integer

Valid Range: Minimum value of 0. Maximum value of 604800.

Required: No

blockResponse

The type of block response to return when the action is BLOCK.

Type: String

Valid Values: NODATA | NXDOMAIN | OVERRIDE

Required: No

confidenceThreshold

The confidence threshold for advanced threat detection.

Type: String

Valid Values: LOW | MEDIUM | HIGH

Required: No

description

A description of the firewall rule.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 256.

Required: No

dnsAdvancedProtection

Whether to enable advanced DNS threat protection for the firewall rule.

Type: String

Valid Values: DGA | DNS_TUNNELING

Required: No

firewallDomainListId

The ID of the firewall domain list to associate with the rule.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 64.

Pattern: [-.a-zA-Z0-9]+

Required: No

priority

The priority of the firewall rule.

Type: Long

Valid Range: Minimum value of 1. Maximum value of 10000.

Required: No

qType

The DNS query type that the firewall rule should match.

Type: String

Length Constraints: Minimum length of 0. Maximum length of 16.

Required: No

See Also

For more information about using this API in one of the language-specific Amazon SDKs, see the following: