I am new to AWS that's why, I am asking this question. Is it possible in AWS network firewall to only allow the incoming traffic from outside that comes from a particular DNS. According to my knowledge, it's easily possible with IP address but the problem is that the IP address of the source does not remain same and is dynamic. I have also read in various posts that in security groups we also can not mention DNS and we can only mention IP addresses. I have also read that in AWS network firewall, it's also possible to block traffic for a particular domain that's generated from EC2 instance using firewall but is it possible the other way around? Is it possible to only allow the traffic of the particular DNS that's coming from the Internet gateway to the VPC using AWS network firewall. Can anyone guide me in this regard?
Allow traffic on the basis of the host DNS instead of the IP that is coming from the internet gateway to the VPC in AWS Network Firewall
360 Views Asked by Usman Sajid At
1
There are 1 best solutions below
Related Questions in AMAZON-WEB-SERVICES
- Can I deploy multiple instances of my application on the same windows phone?
- Deploy enterprise (in-house) application on windows phone without developer unlocking the phone?
- uninitialized constant ActiveMerchant::Billing::CreditCard::Validateable (NameError) - in Spree shop
- How to Continuously Develop and Deploy an Access 2010 Database Application
- Efficient way of organizaing mail sending from Rails app
- Deployment over GPRS to embedded devices
- Weblogic 12c web application not start properly after server reboot
- Deployment in Weblogic 10.3, how to change properties
- Deployed Version of MVC Site Not Working
- Laravel 5 on shared hosting getting internal server error
Related Questions in AWS-NETWORKING
- Can I deploy multiple instances of my application on the same windows phone?
- Deploy enterprise (in-house) application on windows phone without developer unlocking the phone?
- uninitialized constant ActiveMerchant::Billing::CreditCard::Validateable (NameError) - in Spree shop
- How to Continuously Develop and Deploy an Access 2010 Database Application
- Efficient way of organizaing mail sending from Rails app
- Deployment over GPRS to embedded devices
- Weblogic 12c web application not start properly after server reboot
- Deployment in Weblogic 10.3, how to change properties
- Deployed Version of MVC Site Not Working
- Laravel 5 on shared hosting getting internal server error
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
This doesn't sound like something you can solve with any security measures available natively from AWS or any reverse-proxy solutions I know.
You are most likely going down a rabbit hole of solving a problem at the wrong abstraction layer.
Can you talk about the higher-order problem you are trying to solve? e.g., what types of clients are you expecting to hit the applications? Where will you collect their DNS names in the first place? Why not use authentication at the application layer (passwords, multi-factor, certificates) to authenticate the sources?