Route53

Hosted Zones

DNS Record Types

Nameserver (NS)

A and AAAA Records

CNAME Records

MX Records

TXT Records

TTL - Time To Live

Public Hosted Zones

Private Hosted Zones

Split View Hosted Zones

CNAME vs ALIAS (the problem)

Simple Routing

Health Checks

Failover Routing

Multi Value Routing

Weighted Routing

Latency-Based Routing

Geolocation Routing

Geoproximity Routing

R53 Interoperability

Route 53 - Both Roles

Route 53 - Registrar Only

Route 53 - Hosting Only

Implementing DNSSEC using Route53

Route 53 Resolver DNS Firewall

• Filter and regulate outbound DNS traffic for VPCs

• Requests route through Route 53 Resolver for DNS

• Helps prevent DNS exfiltration of data

• Monitor and control the domains applications can query

• Can use AWS Firewall Manager to centrally configure and manage DNS Firewall

• Central management can span VPCs and accounts in AWS Organizations