Using Protective DNS services with AWS workloads
Public Sector Blog
The article discusses using Protective DNS (PDNS) services to enhance security for AWS workloads by preventing malicious DNS requests and mitigating threats like botnets and data exfiltration attacks.
Specifically, the article covers:
- How PDNS services work by scrutinizing DNS requests against predefined rules and policies, and responding with actions like NXDOMAIN or custom responses
- Examples of PDNS service providers like Cisco Umbrella, Neustar UltraDNS, NSA CCC, and NCSC
- An example architecture using AWS services like Route 53 Resolver, DNS Firewall, and VPC to integrate with third-party PDNS services
- Benefits of using PDNS services with AWS, including centralized protection across VPCs, compliance adherence, threat detection through logging, and analysis using services like CloudWatch
- Conclusion highlighting the enhanced security and resilience against DNS-based attacks by integrating AWS workloads with PDNS services
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Mar 13
2023
2023
Centralizing Domain List Management for AWS Network Firewall and Route 53 Resolver DNS Firewall
May 13
2025
2025
Protect against advanced DNS threats with Amazon Route 53 Resolver DNS Firewall
Jun 23
2025
2025
Introducing security group referencing and enhanced DNS support for AWS Cloud WAN
May 29
2025
2025
Managing DNS resolution with Amazon VPC Lattice and VPC resources
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.