Readonly
nameA friendly name for the DNS firewall rule group.
CAUTION: Changing this property value after initial deployment causes the configuration to be recreated. Please be aware that any downstream dependencies may cause this property update to fail.
Readonly
regionsReadonly
rulesReadonly
share(OPTIONAL) Resource Access Manager (RAM) share targets.
Targets can be account names and/or organizational units. Targets must include the account(s)/OU(s) of any VPCs that the logging configuration will be associated with. You do not need to target the delegated admin account.
Readonly
tagsAn array of tags for the rule group.
Generated using TypeDoc
NetworkConfig / CentralNetworkServicesConfig / ResolverConfig / DnsFirewallRuleGroupConfig
Route 53 DNS firewall rule group configuration. Use this configuration to define a group of rules for your DNS firewall. Rule groups contain one to many rules that can be associated with VPCs in your environment. These rules allow you to define the behavior of your DNS firewall.
The following example creates a rule group that contains one rule entry. The rule blocks a list of custom domains contained in a file in the accelerator configuration repository. The rule group is shared to the entire organization.
Example