[dns-operations] AWS footnote: DNS firewall rules are UDP only

Adrian Beaudin Adrian.Beaudin at nominum.com
Thu Jan 29 00:00:52 UTC 2015

I use AWS to run instances of our DNS Engines so I have to configure both DNS (UDP 53) and tcp port 53 to allow inbound access to the engine instances but it's only because I'm running DNS servers in AWS. For anything use, DNS flows properly as the traffic is outbound in those instances.

I suppose I don't find having to configure TCP and UDP as problematic since I've automated instance creation and teardown with the AWS EC2 apis and ansible so it's one script to instantiate, one script to tear down and it includes the security group creation, configuration and subsequent deletions.


Adrian Beaudin
Principal Architect, Special Projects
Nominum, Inc.
o: +1.650.587.1513
adrian.beaudin at nominum.com

From: dns-operations [dns-operations-bounces at dns-oarc.net] on behalf of Fred Morris [m3047 at m3047.net]
Sent: Wednesday, January 28, 2015 6:38 PM
To: dns-operations at dns-oarc.net
Subject: Re: [dns-operations] AWS footnote: DNS firewall rules are UDP only

On Wed, 28 Jan 2015, Paul Hoffman wrote:
> Are there any Route 53 people on this list? If so, this should be fixed ASAP.

I'm not sure that this is a Route 53 issue, I was trying to run my own DNS
(for "other" purposes). I would characterize it as a tragically uninspired


Fred Morris
dns-operations mailing list
dns-operations at lists.dns-oarc.net
dns-jobs mailing list

More information about the dns-operations mailing list