Posted On: Jan 4, 2023

Starting today, Amazon Managed Domain Lists for Route 53 Resolver DNS Firewall is available in the Amazon Web Services China (Beijing) region, operated by Sinnet, and in the Amazon Web Services China (Ningxia) region, operated by NWCD, making it easier for customers to quickly get started with managed protections against DNS threats. In addition, Route 53 now sources threat intelligence from Recorded Future for DNS Firewall, expanding the breadth of DNS threats you can block using Amazon Managed Domain Lists, with new domains continuously added as DNS threats emerge and are identified by Recorded Future’s threat intelligence systems.

Route 53 Resolver DNS Firewall is a managed security service that enables customers to filter DNS queries made for domains identified as low-reputation or that are known or suspected to be malicious, while allowing queries for trusted domains. Before today, customers using DNS Firewall to block malicious DNS queries for Amazon Virtual Private Clouds (VPCs) had to create and manage their own lists of domains they considered potential threats. With this launch, customers may choose from Amazon Managed Domain Lists that are provided and maintained by Amazon Web Services. The Amazon Managed Domain Lists include three different lists: 

  1. AWSManagedDomainsMalwareDomainList, to block domains associated with malware; 
  2. AWSManagedDomainsBotnetCommandandControl, to block domains associated with controlling networks of computers that are infected with spamming malware; 
  3. AWSManagedAggregateThreatList, to block domains associated with a range of DNS threats (malware, ransomware, botnet, spyware, and DNS tunneling), at a time. 

The Amazon Managed Domain Lists contain domains flagged by Recorded Future Intelligence Cloud, which publishes over 100,000 domains using both internal mechanisms such as sandbox analysis, network traffic analysis, and command and control detections by its machine learning systems, and external sources such as news, blogs, dark web, TOR sites, underground forums etc.

You can get started with DNS Firewall’s Amazon Managed Domain Lists at no additional cost. To learn more about Amazon Managed Domain Lists including region availability, visit the Route 53 documentation. To learn about Route 53 DNS Firewall, you can visit the Route 53 website and documentation.