Securing hybrid workloads using Amazon Route 53 Resolver DNS Firewall

Networking & Content Delivery Blog

This article explains how to extend Amazon Route 53 Resolver DNS Firewall protection to hybrid AWS environments, providing comprehensive DNS security across on-premises and cloud networks.

Two connectivity options for extending DNS protection:
- Private connectivity via AWS Direct Connect or Site-to-Site VPN
- Public connectivity through internet-facing AWS Network Load Balancer
Key design considerations include:
- Scalability and query volume handling
- High availability and redundancy
- Performance optimization
- Security measures and threat mitigation
Centralized management using:
- AWS Firewall Manager
- Security Hub
- Route 53 Resolver DNS Firewall

The solution enables consistent DNS filtering policies, centralized management, and enhanced protection against DNS-based threats across hybrid infrastructure.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Aug 25
2025

Streamline hybrid DNS management using Amazon Route 53 Resolver endpoints delegation

May 13
2025

Protect against advanced DNS threats with Amazon Route 53 Resolver DNS Firewall

Jul 2
2025

Scaling your hybrid DNS setup with Amazon Route 53 Resolver endpoint metrics

Nov 15
2024

Introducing Amazon Route 53 Resolver DNS Firewall Advanced

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Securing hybrid workloads using Amazon Route 53 Resolver DNS Firewall

Related articles