aws.route53.getResolverFirewallRules

AWS v7.24.0, Mar 31 26

Viewing docs for AWS v7.24.0
published on Tuesday, Mar 31, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-aws

Viewing docs for AWS v7.24.0
published on Tuesday, Mar 31, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-aws

Example Usage

The following example shows how to get Route53 Resolver Firewall rules based on its associated firewall group id.

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

const example = aws.route53.getResolverFirewallRules({
    firewallRuleGroupId: exampleAwsRoute53ResolverFirewallRuleGroup.id,
});

import pulumi
import pulumi_aws as aws

example = aws.route53.get_resolver_firewall_rules(firewall_rule_group_id=example_aws_route53_resolver_firewall_rule_group["id"])

package main

import (
	"github.com/pulumi/pulumi-aws/sdk/v7/go/aws/route53"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := route53.GetResolverFirewallRules(ctx, &route53.GetResolverFirewallRulesArgs{
			FirewallRuleGroupId: exampleAwsRoute53ResolverFirewallRuleGroup.Id,
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;

return await Deployment.RunAsync(() => 
{
    var example = Aws.Route53.GetResolverFirewallRules.Invoke(new()
    {
        FirewallRuleGroupId = exampleAwsRoute53ResolverFirewallRuleGroup.Id,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.route53.Route53Functions;
import com.pulumi.aws.route53.inputs.GetResolverFirewallRulesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var example = Route53Functions.getResolverFirewallRules(GetResolverFirewallRulesArgs.builder()
            .firewallRuleGroupId(exampleAwsRoute53ResolverFirewallRuleGroup.id())
            .build());

    }
}

variables:
  example:
    fn::invoke:
      function: aws:route53:getResolverFirewallRules
      arguments:
        firewallRuleGroupId: ${exampleAwsRoute53ResolverFirewallRuleGroup.id}

Using getResolverFirewallRules

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getResolverFirewallRules(args: GetResolverFirewallRulesArgs, opts?: InvokeOptions): Promise<GetResolverFirewallRulesResult>
function getResolverFirewallRulesOutput(args: GetResolverFirewallRulesOutputArgs, opts?: InvokeOptions): Output<GetResolverFirewallRulesResult>

def get_resolver_firewall_rules(action: Optional[str] = None,
                                firewall_rule_group_id: Optional[str] = None,
                                priority: Optional[int] = None,
                                region: Optional[str] = None,
                                opts: Optional[InvokeOptions] = None) -> GetResolverFirewallRulesResult
def get_resolver_firewall_rules_output(action: Optional[pulumi.Input[str]] = None,
                                firewall_rule_group_id: Optional[pulumi.Input[str]] = None,
                                priority: Optional[pulumi.Input[int]] = None,
                                region: Optional[pulumi.Input[str]] = None,
                                opts: Optional[InvokeOptions] = None) -> Output[GetResolverFirewallRulesResult]

func GetResolverFirewallRules(ctx *Context, args *GetResolverFirewallRulesArgs, opts ...InvokeOption) (*GetResolverFirewallRulesResult, error)
func GetResolverFirewallRulesOutput(ctx *Context, args *GetResolverFirewallRulesOutputArgs, opts ...InvokeOption) GetResolverFirewallRulesResultOutput

> Note: This function is named GetResolverFirewallRules in the Go SDK.

public static class GetResolverFirewallRules 
{
    public static Task<GetResolverFirewallRulesResult> InvokeAsync(GetResolverFirewallRulesArgs args, InvokeOptions? opts = null)
    public static Output<GetResolverFirewallRulesResult> Invoke(GetResolverFirewallRulesInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetResolverFirewallRulesResult> getResolverFirewallRules(GetResolverFirewallRulesArgs args, InvokeOptions options)
public static Output<GetResolverFirewallRulesResult> getResolverFirewallRules(GetResolverFirewallRulesArgs args, InvokeOptions options)

fn::invoke:
  function: aws:route53/getResolverFirewallRules:getResolverFirewallRules
  arguments:
    # arguments dictionary

The following arguments are supported:

FirewallRuleGroupId string: The unique identifier of the firewall rule group that you want to retrieve the rules for.
Action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
Priority int: The setting that determines the processing order of the rules in a rule group.
Region string: Region where this resource will be managed. Defaults to the Region set in the provider configuration.

FirewallRuleGroupId string: The unique identifier of the firewall rule group that you want to retrieve the rules for.
Action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
Priority int: The setting that determines the processing order of the rules in a rule group.
Region string: Region where this resource will be managed. Defaults to the Region set in the provider configuration.

firewallRuleGroupId String: The unique identifier of the firewall rule group that you want to retrieve the rules for.
action String: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
priority Integer: The setting that determines the processing order of the rules in a rule group.
region String: Region where this resource will be managed. Defaults to the Region set in the provider configuration.

firewallRuleGroupId string: The unique identifier of the firewall rule group that you want to retrieve the rules for.
action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
priority number: The setting that determines the processing order of the rules in a rule group.
region string: Region where this resource will be managed. Defaults to the Region set in the provider configuration.

firewall_rule_group_id str: The unique identifier of the firewall rule group that you want to retrieve the rules for.
action str: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
priority int: The setting that determines the processing order of the rules in a rule group.
region str: Region where this resource will be managed. Defaults to the Region set in the provider configuration.

firewallRuleGroupId String: The unique identifier of the firewall rule group that you want to retrieve the rules for.
action String: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
priority Number: The setting that determines the processing order of the rules in a rule group.
region String: Region where this resource will be managed. Defaults to the Region set in the provider configuration.

getResolverFirewallRules Result

The following output properties are available:

FirewallRuleGroupId string: The unique identifier of the firewall rule group.
FirewallRules List<GetResolverFirewallRulesFirewallRule>: List with information about the firewall rules. See details below.
Id string: The provider-assigned unique ID for this managed resource.
Region string
Action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
Priority int: The priority of the rule in the rule group.

FirewallRuleGroupId string: The unique identifier of the firewall rule group.
FirewallRules []GetResolverFirewallRulesFirewallRule: List with information about the firewall rules. See details below.
Id string: The provider-assigned unique ID for this managed resource.
Region string
Action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
Priority int: The priority of the rule in the rule group.

firewallRuleGroupId String: The unique identifier of the firewall rule group.
firewallRules List<GetResolverFirewallRulesFirewallRule>: List with information about the firewall rules. See details below.
id String: The provider-assigned unique ID for this managed resource.
region String
action String: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
priority Integer: The priority of the rule in the rule group.

firewallRuleGroupId string: The unique identifier of the firewall rule group.
firewallRules GetResolverFirewallRulesFirewallRule[]: List with information about the firewall rules. See details below.
id string: The provider-assigned unique ID for this managed resource.
region string
action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
priority number: The priority of the rule in the rule group.

firewall_rule_group_id str: The unique identifier of the firewall rule group.
firewall_rules Sequence[GetResolverFirewallRulesFirewallRule]: List with information about the firewall rules. See details below.
id str: The provider-assigned unique ID for this managed resource.
region str
action str: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
priority int: The priority of the rule in the rule group.

firewallRuleGroupId String: The unique identifier of the firewall rule group.
firewallRules List<Property Map>: List with information about the firewall rules. See details below.
id String: The provider-assigned unique ID for this managed resource.
region String
action String: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list, or a threat in a DNS Firewall Advanced rule.
priority Number: The priority of the rule in the rule group.

Supporting Types

GetResolverFirewallRulesFirewallRule

Action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
BlockOverrideDnsType string: The DNS record's type.
BlockOverrideDomain string: The custom DNS record to send back in response to the query.
BlockOverrideTtl int: The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record.
BlockResponse string: The way that you want DNS Firewall to block the request.
ConfidenceThreshold string: The confidence threshold for DNS Firewall Advanced rules.
CreationTime string: The date and time that the rule was created, in Unix time format and Coordinated Universal Time (UTC).
CreatorRequestId string: A unique string defined by you to identify the request.
DnsThreatProtection string: The type of DNS Firewall Advanced rule.
FirewallDomainListId string: The ID of the domain list that's used in the rule.
FirewallDomainRedirectionAction string: How DNS Firewall evaluates DNS redirection in the DNS redirection chain.
FirewallRuleGroupId string: The unique identifier of the firewall rule group that you want to retrieve the rules for.
FirewallThreatProtectionId string: The ID of the DNS Firewall Advanced rule.
ModificationTime string: The date and time that the rule was last modified, in Unix time format and Coordinated Universal Time (UTC).
Name string: The name of the rule.
Priority int: The setting that determines the processing order of the rules in a rule group.
QType string: The DNS query type that the rule evaluates.

Action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
BlockOverrideDnsType string: The DNS record's type.
BlockOverrideDomain string: The custom DNS record to send back in response to the query.
BlockOverrideTtl int: The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record.
BlockResponse string: The way that you want DNS Firewall to block the request.
ConfidenceThreshold string: The confidence threshold for DNS Firewall Advanced rules.
CreationTime string: The date and time that the rule was created, in Unix time format and Coordinated Universal Time (UTC).
CreatorRequestId string: A unique string defined by you to identify the request.
DnsThreatProtection string: The type of DNS Firewall Advanced rule.
FirewallDomainListId string: The ID of the domain list that's used in the rule.
FirewallDomainRedirectionAction string: How DNS Firewall evaluates DNS redirection in the DNS redirection chain.
FirewallRuleGroupId string: The unique identifier of the firewall rule group that you want to retrieve the rules for.
FirewallThreatProtectionId string: The ID of the DNS Firewall Advanced rule.
ModificationTime string: The date and time that the rule was last modified, in Unix time format and Coordinated Universal Time (UTC).
Name string: The name of the rule.
Priority int: The setting that determines the processing order of the rules in a rule group.
QType string: The DNS query type that the rule evaluates.

action String: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
blockOverrideDnsType String: The DNS record's type.
blockOverrideDomain String: The custom DNS record to send back in response to the query.
blockOverrideTtl Integer: The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record.
blockResponse String: The way that you want DNS Firewall to block the request.
confidenceThreshold String: The confidence threshold for DNS Firewall Advanced rules.
creationTime String: The date and time that the rule was created, in Unix time format and Coordinated Universal Time (UTC).
creatorRequestId String: A unique string defined by you to identify the request.
dnsThreatProtection String: The type of DNS Firewall Advanced rule.
firewallDomainListId String: The ID of the domain list that's used in the rule.
firewallDomainRedirectionAction String: How DNS Firewall evaluates DNS redirection in the DNS redirection chain.
firewallRuleGroupId String: The unique identifier of the firewall rule group that you want to retrieve the rules for.
firewallThreatProtectionId String: The ID of the DNS Firewall Advanced rule.
modificationTime String: The date and time that the rule was last modified, in Unix time format and Coordinated Universal Time (UTC).
name String: The name of the rule.
priority Integer: The setting that determines the processing order of the rules in a rule group.
qType String: The DNS query type that the rule evaluates.

action string: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
blockOverrideDnsType string: The DNS record's type.
blockOverrideDomain string: The custom DNS record to send back in response to the query.
blockOverrideTtl number: The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record.
blockResponse string: The way that you want DNS Firewall to block the request.
confidenceThreshold string: The confidence threshold for DNS Firewall Advanced rules.
creationTime string: The date and time that the rule was created, in Unix time format and Coordinated Universal Time (UTC).
creatorRequestId string: A unique string defined by you to identify the request.
dnsThreatProtection string: The type of DNS Firewall Advanced rule.
firewallDomainListId string: The ID of the domain list that's used in the rule.
firewallDomainRedirectionAction string: How DNS Firewall evaluates DNS redirection in the DNS redirection chain.
firewallRuleGroupId string: The unique identifier of the firewall rule group that you want to retrieve the rules for.
firewallThreatProtectionId string: The ID of the DNS Firewall Advanced rule.
modificationTime string: The date and time that the rule was last modified, in Unix time format and Coordinated Universal Time (UTC).
name string: The name of the rule.
priority number: The setting that determines the processing order of the rules in a rule group.
qType string: The DNS query type that the rule evaluates.

action str: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
block_override_dns_type str: The DNS record's type.
block_override_domain str: The custom DNS record to send back in response to the query.
block_override_ttl int: The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record.
block_response str: The way that you want DNS Firewall to block the request.
confidence_threshold str: The confidence threshold for DNS Firewall Advanced rules.
creation_time str: The date and time that the rule was created, in Unix time format and Coordinated Universal Time (UTC).
creator_request_id str: A unique string defined by you to identify the request.
dns_threat_protection str: The type of DNS Firewall Advanced rule.
firewall_domain_list_id str: The ID of the domain list that's used in the rule.
firewall_domain_redirection_action str: How DNS Firewall evaluates DNS redirection in the DNS redirection chain.
firewall_rule_group_id str: The unique identifier of the firewall rule group that you want to retrieve the rules for.
firewall_threat_protection_id str: The ID of the DNS Firewall Advanced rule.
modification_time str: The date and time that the rule was last modified, in Unix time format and Coordinated Universal Time (UTC).
name str: The name of the rule.
priority int: The setting that determines the processing order of the rules in a rule group.
q_type str: The DNS query type that the rule evaluates.

action String: The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list.
blockOverrideDnsType String: The DNS record's type.
blockOverrideDomain String: The custom DNS record to send back in response to the query.
blockOverrideTtl Number: The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record.
blockResponse String: The way that you want DNS Firewall to block the request.
confidenceThreshold String: The confidence threshold for DNS Firewall Advanced rules.
creationTime String: The date and time that the rule was created, in Unix time format and Coordinated Universal Time (UTC).
creatorRequestId String: A unique string defined by you to identify the request.
dnsThreatProtection String: The type of DNS Firewall Advanced rule.
firewallDomainListId String: The ID of the domain list that's used in the rule.
firewallDomainRedirectionAction String: How DNS Firewall evaluates DNS redirection in the DNS redirection chain.
firewallRuleGroupId String: The unique identifier of the firewall rule group that you want to retrieve the rules for.
firewallThreatProtectionId String: The ID of the DNS Firewall Advanced rule.
modificationTime String: The date and time that the rule was last modified, in Unix time format and Coordinated Universal Time (UTC).
name String: The name of the rule.
priority Number: The setting that determines the processing order of the rules in a rule group.
qType String: The DNS query type that the rule evaluates.

Package Details

Repository: AWS Classic pulumi/pulumi-aws
License: Apache-2.0
Notes: This Pulumi package is based on the aws Terraform Provider.

Viewing docs for AWS v7.24.0
published on Tuesday, Mar 31, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-aws

aws.route53.getResolverFirewallRules

On this page

On this page

Example Usage

Using getResolverFirewallRules

getResolverFirewallRules Result

Supporting Types

GetResolverFirewallRulesFirewallRule

Package Details

On this page

On this page