AWS Route 53
Version: AWS Route 53.
AWS Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to provide developers and businesses a way to route end users to Internet applications. AWS Route 53 is fully compliant with IPv6.
Netsurion’s Open XDR platform assists in overseeing events from AWS Route 53, and its dashboard and reports aid in monitoring activities related to DNS queries. The AWS Route 53 dashboard enables users to view the most frequently queried domain and its responses, which is useful in detecting cache poisoning and other DNS-related attacks.
Dashboard displays the geolocation of the client and resolver, and the count of DNS queries done on per day basis to track DNS amplification attack. Dashboard can also help in tracking queries with multiple domain or lengthy domain, view query request volume based on record type. User can track high volume of request for specific record type.
Netsurion’s built-in data source integration enables you to gather business intelligence providing increased security, performance, availability, and reliability of your systems.
Netsurion data source integration for AWS Route 53 allows you to monitor the following components:
- Operation – DNS Query Activities.
Some of the Data Source Integrations available in Netsurion are listed below.
Reports
| Type | Name | Description |
|---|---|---|
| Security | Route 53 – DNS Query Activities | This report provides information about all the DNS query activities. Report contains details of query name, query type, protocol, response code, client IP, resolver IP, etc., which can be useful for monitoring. |
Documentation
The configuration details are consistent with Netsurion’s Open XDR platform version 9.2 and later, AWS Route 53.
Download Integration Guide and How-to Guide for more information and to configuration instructions.