DNS Firewall Advanced Rules

DNS Firewall Advanced Rule tier provides you with protections to help you detect and monitor for more advanced DNS threats (for example, Domain Generation Algorithms (DGA) or DNS Tunneling) or with more granular protections based on threat and web-content (for example, gambling, social networking).

There are three main types of advanced rules:

Advanced Protections that help detect suspicious DNS queries based on known threat signatures (for example, DGA) in DNS queries.
Advanced DNS threat and content categories that provide more granular control to block DNS queries based on the type of DNS threats (for example, spam, phishing) or web content (for example, adult content, social networking, gambling sites).
Partner Managed DNS protections from Palo Alto Networks Advanced DNS Security (requires AWS Marketplace subscription).

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Managing your own domain lists

Advanced DNS Protections