AWS Route53

Associate firewall rule group

Associate a firewall rule group with a VPC, to provide DNS filtering for the VPC.

Inputs

Field

Type

Description

region [required]

enum

default: us-east-1

firewallRuleGroupId [required]

string

name [required]

string

priority [required]

number

The processing order of the rule group among the rule groups that you associate with a VPC. DNS firewall filters are applied to VPC traffic starting from the rule group with the lowest numeric priority setting.

vpcId [required]

string

The unique identifier of the VPC to associate with the rule group.

creatorRequestId

string

A unique string to identify the request and allow failed requests to be retried, without risk of running the operation twice. Can be any unique string, for example, a date or time stamp.

Outputs

Expand All

Field

Type

Description

association [required]

object

Id

string

The identifier for the association.

Arn

string

The Amazon Resource Name (ARN) of the firewall rule group association.

FirewallRuleGroupId

string

The unique identifier of the firewall rule group.

VpcId

string

The unique identifier of the VPC that is associated with the rule group.

Name

string

The name of the association.

Priority

number

The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC. DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.

MutationProtection

string

If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.

ManagedOwnerName

string

The owner of the association, used only for associations that are not managed by you. If you use Firewall Manager to manage your DNS Firewalls, then this reports Firewall Manager as the managed owner.

Status

string

The current status of the association.

StatusMessage

string

Additional information about the status of the response, if available.

CreatorRequestId

string

A unique string defined by you to identify the request. This allows you to retry failed requests without the risk of running the operation twice. This can be any unique string, for example, a timestamp.

CreationTime

string

The date and time that the association was created, in Unix time format and Coordinated Universal Time (UTC).

ModificationTime

string

The date and time that the association was last modified, in Unix time format and Coordinated Universal Time (UTC).

associationAlreadyExists [required]

boolean

amzRequestId [required]

string