Skip to main content

AWS - Route53

Amazon Web Services Managed Cloud DNS Service.

Configure AWS - Route53 on Cortex XSOAR#

  1. Navigate to Settings > Integrations > Servers & Services.

  2. Search for AWS - Route53.

  3. Click Add instance to create and configure a new integration instance.

    ParameterRequired
    Role ArnFalse
    Role Session NameFalse
    Role Session DurationFalse
  4. Click Test to validate the URLs, token, and connection.

Commands#

You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

aws-route53-create-record#


Creates a resource record set. Creates a resource record set that has the specified values.

Base Command#

aws-route53-create-record

Input#

Argument NameDescriptionRequired
sourceThe name of the domain you want to Create. i.e. www.example.com.Required
targetThe DNS record value.Required
ttlThe resource record cache time to live (TTL), in seconds.Required
hostedZoneIdSpecify the hosted zone ID.Required
typeThe type of the record to create. Possible values are: A, AAAA, CAA, CNAME, MX, NAPTR, NS, PTR, SOA, SPF, SRV, TX.Required
commentAny comments you want to include.Optional
roleArnThe Amazon Resource Name (ARN) of the role to assume.Optional
roleSessionNameAn identifier for the assumed role session.Optional
roleSessionDurationThe duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role.Optional

Context Output#

PathTypeDescription
AWS.Route53.RecordSetsChange.IdstringThe ID of the request.
AWS.Route53.RecordSetsChange.StatusstringThe current state of the request. PENDING indicates that this request has not yet been applied to all Amazon Route 53 DNS servers.
AWS.Route53.RecordSetsChange.CommentstringA complex type that describes change information about changes made to your hosted zone.

Command Example#

!aws-route53-create-record hostedZoneId=Z33ASF9#22MSFA6R6M5G9 source=test.example.com target=192.168.1.1 ttl=300 type=A comment="test record"

aws-route53-delete-record#


Deletes a resource record set. Deletes an existing resource record set that has the specified values.

Base Command#

aws-route53-delete-record

Input#

Argument NameDescriptionRequired
sourceThe name of the domain you want to Create. i.e. www.example.com.Required
targetThe DNS record value.Required
ttlThe resource record cache time to live (TTL), in seconds.Required
hostedZoneIdSpecify the hosted zone ID.Required
typeThe type of the record to create. Possible values are: A, AAAA, CAA, CNAME, MX, NAPTR, NS, PTR, SOA, SPF, SRV, TX.Required
roleArnThe Amazon Resource Name (ARN) of the role to assume.Optional
roleSessionNameAn identifier for the assumed role session.Optional
roleSessionDurationThe duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role.Optional

Context Output#

PathTypeDescription
AWS.Route53.RecordSetsChange.IdstringThe ID of the request.
AWS.Route53.RecordSetsChange.StatusstringThe current state of the request. PENDING indicates that this request has not yet been applied to all Amazon Route 53 DNS servers.
AWS.Route53.RecordSetsChange.CommentstringA complex type that describes change information about changes made to your hosted zone.

Command Example#

!aws-route53-delete-record hostedZoneId=Z33935452MA6RDSFDSG6M5G9 source=test.example.com target=192.168.1.1 type=A ttl=300

aws-route53-list-hosted-zones#


Retrieves a list of the public and private hosted zones that are associated with the current AWS account.

Base Command#

aws-route53-list-hosted-zones

Input#

Argument NameDescriptionRequired
roleArnThe Amazon Resource Name (ARN) of the role to assume.Optional
roleSessionNameAn identifier for the assumed role session.Optional
roleSessionDurationThe duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role.Optional

Context Output#

PathTypeDescription
AWS.Route53.HostedZones.IdstringThe ID that Amazon Route 53 assigned to the hosted zone when you created it.
AWS.Route53.HostedZones.NamestringThe name of the domain.
AWS.Route53.HostedZones.CallerReferencestringThe value that you specified for CallerReference when you created the hosted zone.
AWS.Route53.HostedZones.Config.CommentstringAny comments that you want to include about the hosted zone.
AWS.Route53.HostedZones.Config.PrivateZonestringA value that indicates whether this is a private hosted zone.
AWS.Route53.HostedZones.ResourceRecordSetCountnumberThe number of resource record sets in the hosted zone.
AWS.Route53.HostedZones.LinkedService.ServicePrincipalstringIf the health check or hosted zone was created by another service, the service that created the resource.
AWS.Route53.HostedZones.LinkedService.DescriptionstringIf the health check or hosted zone was created by another service, an optional description that can be provided by the other service.

Command Example#

!aws-route53-list-hosted-zones

aws-route53-list-resource-record-sets#


Lists the resource record sets in a specified hosted zone.

Base Command#

aws-route53-list-resource-record-sets

Input#

Argument NameDescriptionRequired
hostedZoneIdThe ID of the hosted zone that contains the resource record sets that you want to list.Required
startRecordNameThe first name in the lexicographic ordering of resource record sets that you want to list.Optional
startRecordTypeThe type of resource record set to begin the record listing from. Possible values are: SOA, A, TXT, NS, CNAME, MX, NAPTR, PTR, SRV, SPF, AAAA, CAA.Optional
startRecordIdentifierWeighted resource record sets only.Optional
roleArnThe Amazon Resource Name (ARN) of the role to assume.Optional
roleSessionNameAn identifier for the assumed role session.Optional
roleSessionDurationThe duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role.Optional

Context Output#

PathTypeDescription
AWS.Route53.RecordSets.NamestringThe name of the domain.
AWS.Route53.RecordSets.TypestringThe DNS record type.
AWS.Route53.RecordSets.SetIdentifierstringAn identifier that differentiates among multiple resource record sets that have the same combination of DNS name and type.
AWS.Route53.RecordSets.WeightnumberWeighted resource record sets only.
AWS.Route53.RecordSets.RegionstringLatency-based resource record sets only
AWS.Route53.RecordSets.GeoLocation.ContinentCodestringThe two-letter code for the continent.
AWS.Route53.RecordSets.GeoLocation.CountryCodestringThe two-letter code for the country.
AWS.Route53.RecordSets.GeoLocation.SubdivisionCodestringThe code for the subdivision, for example, a state in the United States or a province in Canada.
AWS.Route53.RecordSets.FailoverstringFailover resource record sets only
AWS.Route53.RecordSets.MultiValueAnswerstringMultivalue answer resource record sets only
AWS.Route53.RecordSets.TTLstringThe resource record cache time to live (TTL), in seconds.
AWS.Route53.RecordSets.ResourceRecords.ValuestringThe current record value.
AWS.Route53.RecordSets.AliasTarget.HostedZoneIdstringAlias resource record sets only
AWS.Route53.RecordSets.AliasTarget.DNSNamestringAlias resource record sets only
AWS.Route53.RecordSets.AliasTarget.EvaluateTargetHealthstringAlias resource record sets only
AWS.Route53.RecordSets.HealthCheckIdstringID of the applicable health check.
AWS.Route53.RecordSets.TrafficPolicyInstanceIdstringthe ID of the traffic policy instance that Amazon Route 53 created this resource record set for.

Command Example#

!aws-route53-list-resource-record-sets hostedZoneId=Z33DFSDDFSDF6R6MDF5G9

aws-route53-waiter-resource-record-sets-changed#


A waiter function that waits until record set change is successful

Base Command#

aws-route53-waiter-resource-record-sets-changed

Input#

Argument NameDescriptionRequired
idThe ID of the change.Required
waiterDelayThe amount of time in seconds to wait between attempts. Default: 30.Optional
waiterMaxAttemptsThe maximum number of attempts to be made. Default: 60.Optional

Context Output#

There is no context output for this command.

Command Example#

!aws-route53-waiter-resource-record-sets-changed id=CM3UDCRD3ZYDSAF41

aws-route53-test-dns-answer#


Gets the value that Amazon Route 53 returns in response to a DNS request for a specified record name and type. You can optionally specify the IP address of a DNS resolver, an EDNS0 client subnet IP address, and a subnet mask.

Base Command#

aws-route53-test-dns-answer

Input#

Argument NameDescriptionRequired
hostedZoneIdThe ID of the hosted zone that you want Amazon Route 53 to simulate a query for.Required
recordNameThe name of the resource record set that you want Amazon Route 53 to simulate a query for.Required
recordTypeThe type of the resource record set. Possible values are: SOA, A, TXT, NS, CNAME, MX, NAPTR, PTR, SRV, SPF, AAAA, CAA.Required
resolverIPIf you want to simulate a request from a specific DNS resolver, specify the IP address for that resolver. If you omit this value, TestDnsAnswer uses the IP address of a DNS resolver in the AWS US East (N. Virginia) Region (us-east-1 ).Optional
roleArnThe Amazon Resource Name (ARN) of the role to assume.Optional
roleSessionNameAn identifier for the assumed role session.Optional
roleSessionDurationThe duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role.Optional

Context Output#

PathTypeDescription
AWS.Route53.TestDNSAnswer.NameserverstringThe Amazon Route 53 name server used to respond to the request.
AWS.Route53.TestDNSAnswer.RecordNamestringThe name of the resource record set that you submitted a request for.
AWS.Route53.TestDNSAnswer.RecordTypestringThe type of the resource record set that you submitted a request for.
AWS.Route53.TestDNSAnswer.ResponseCodestringA list that contains values that Amazon Route 53 returned for this resource record set.
AWS.Route53.TestDNSAnswer.ProtocolstringA code that indicates whether the request is valid or not.
AWS.Route53.TestDNSAnswer.RecordDatastringThe protocol that Amazon Route 53 used to respond to the request, either UDP or TCP .

Command Example#

!aws-route53-test-dns-answer hostedZoneId=Z339SDF2MA6R6ADFSM5G9 recordName=testing2.example.com recordType=A

aws-route53-upsert-record#


Upsert a resource record set. If a resource record set does not already exist, AWS creates it. If a resource set does exist, Amazon Route 53 updates it with the values in the request.

Base Command#

aws-route53-upsert-record

Input#

Argument NameDescriptionRequired
sourceThe name of the domain you want to Create. i.e. www.example.com.Required
targetThe DNS record value.Required
ttlThe resource record cache time to live (TTL), in seconds.Required
hostedZoneIdSpecify the hosted zone ID.Required
typeThe type of the record to create. Possible values are: A, AAAA, CAA, CNAME, MX, NAPTR, NS, PTR, SOA, SPF, SRV, TX.Required
commentAny comments you want to include.Optional
roleArnThe Amazon Resource Name (ARN) of the role to assume.Optional
roleSessionNameAn identifier for the assumed role session.Optional
roleSessionDurationThe duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role.Optional

Context Output#

PathTypeDescription
AWS.Route53.RecordSetsChange.IdstringThe ID of the request.
AWS.Route53.RecordSetsChange.StatusstringThe current state of the request. PENDING indicates that this request has not yet been applied to all Amazon Route 53 DNS servers.
AWS.Route53.RecordSetsChange.CommentstringA complex type that describes change information about changes made to your hosted zone.

Command Example#

!aws-route53-upsert-record hostedZoneId=Z33ASF9#22MSFA6R6M5G9 source=test.example.com target=192.168.1.2 ttl=300 type=A comment="test record"