Howto: Point AWS to Umbrella with new Route 53 Feature

Overview

Amazon Route 53 has now provided a new functionality that allows users to forward DNS queries to a specific network. This will enable users who have this service to point their DNS traffic to the Umbrella resolvers and apply settings to their Amazon VPC (Virtual Private Cloud).

Setting Up Your Route 53 Resolver

To forward your DNS requests to the Umbrella resolvers, you'll need to add a rule to forward all of your DNS queries to your network:

1. Sign in to the AWS Management Console and open the Route 53 console at https://console.aws.amazon.com/route53/.
2. Navigate to Rule > Create Rule
3. Specify "forward" as the value
4. Add the root domain "." (dot) for the domain name
5. Associate the rule with all of the VPCs for which you want this to apply to
6. Enter 208.67.222.222 and 208.67.220.220 as your Target IP Address

Note that the "dot rule" will not apply to some AWS internal domain names and record names in private hosted zones. If you want to forward these inquiries to an external network or to Umbrella for any reason, you will need to set up a separate rule using the specific internal domain names. If you run into issues setting up your Route 53 resolver, you can also visit the Amazon Route 53 Developer Guide for more details.

Once your Route 53 Resolver is configured to forward DNS traffic to Umbrella, you'll need to create a Network in the Umbrella dashboard with the IP address of the AWS Outbound endpoint you configured.