AWS cli documentation change
Summary
Updated CLI version reference and DNS type range, added extensive documentation for advanced threat protection features including DGA detection, DNS tunneling, and confidence thresholds.
Security assessment
Documents new DNS threat protection capabilities (DGA/DNS tunneling detection) and security configuration parameters. While security-focused, there's no evidence of vulnerability remediation.
Diff
diff --git a/cli/latest/reference/route53resolver/delete-firewall-rule.md b/cli/latest/reference/route53resolver/delete-firewall-rule.md index db5f0135f..e2a7afb97 100644 --- a//cli/latest/reference/route53resolver/delete-firewall-rule.md +++ b//cli/latest/reference/route53resolver/delete-firewall-rule.md @@ -15 +15 @@ - * [AWS CLI 2.34.55 Command Reference](../../index.html) » + * [AWS CLI 2.34.57 Command Reference](../../index.html) » @@ -147 +147 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/route5 -> * A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be defined as TYPENUMBER, where the NUMBER can be 1-65334, for example, TYPE28. For more information, see [List of DNS record types](https://en.wikipedia.org/wiki/List_of_DNS_record_types) . +> * A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be defined as TYPENUMBER, where the NUMBER can be 1-65534, for example, TYPE28. For more information, see [List of DNS record types](https://en.wikipedia.org/wiki/List_of_DNS_record_types) . @@ -486 +486 @@ FirewallRule -> (structure) ->> * A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be defined as TYPENUMBER, where the NUMBER can be 1-65334, for example, TYPE28. For more information, see [List of DNS record types](https://en.wikipedia.org/wiki/List_of_DNS_record_types) . +>> * A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be defined as TYPENUMBER, where the NUMBER can be 1-65534, for example, TYPE28. For more information, see [List of DNS record types](https://en.wikipedia.org/wiki/List_of_DNS_record_types) . @@ -530,0 +531,73 @@ FirewallRule -> (structure) +> +> FirewallRuleType -> (structure) +> +>> The rule type configuration for the firewall rule. Exactly one member of this union should be set. +>> +>> FirewallAdvancedContentCategory -> (structure) +>> +>>> The configuration for a content category-based filtering rule. +>>> +>>> Category -> (string) [required] +>>> +>>>> The content category identifier. To retrieve the list of available content categories, call ListFirewallRuleTypes with `RuleType` set to `FirewallAdvancedContentCategory` . +>>>> +>>>> Constraints: +>>>> +>>>> * min: `1` +>>>> * max: `128` +>>>> + +>> +>> FirewallAdvancedThreatCategory -> (structure) +>> +>>> The configuration for a threat category-based filtering rule. +>>> +>>> Category -> (string) [required] +>>> +>>>> The threat category identifier. To retrieve the list of available threat categories, call ListFirewallRuleTypes with `RuleType` set to `FirewallAdvancedThreatCategory` . +>>>> +>>>> Constraints: +>>>> +>>>> * min: `1` +>>>> * max: `128` +>>>> + +>> +>> DnsThreatProtection -> (structure) +>> +>>> The configuration for a DNS threat protection rule type, such as DGA or DNS tunneling detection. +>>> +>>> Value -> (string) [required] +>>> +>>>> The type of DNS threat protection. Valid values are: +>>>> +>>>> * `DGA` : Domain generation algorithms detection. DGAs are used by attackers to generate a large number of domains to launch malware attacks. +>>>> * `DNS_TUNNELING` : DNS tunneling detection. DNS tunneling is used by attackers to exfiltrate data from the client by using the DNS tunnel without making a network connection to the client. +>>>> * `DICT_DGA` : Dictionary-based domain generation algorithms detection. Dictionary DGAs use wordlists to generate domains that appear more legitimate, making them harder to detect than traditional DGAs. +>>>> + +>>>> +>>>> Constraints: +>>>> +>>>> * min: `1` +>>>> * max: `128` +>>>> + +>>> +>>> ConfidenceThreshold -> (string) [required] +>>> +>>>> The confidence threshold for DNS Firewall Advanced. You must provide this value when you create or update a DNS Firewall Advanced rule. The confidence level values mean: +>>>> +>>>> * `LOW` : Provides the highest detection rate for threats, but also increases false positives. +>>>> * `MEDIUM` : Provides a balance between detecting threats and false positives. +>>>> * `HIGH` : Detects only the most well corroborated threats with a low rate of false positives. +>>>> + +>>>> +>>>> Possible values: +>>>> +>>>> * `LOW` +>>>> * `MEDIUM` +>>>> * `HIGH` +>>>> + @@ -542 +615 @@ FirewallRule -> (structure) - * [AWS CLI 2.34.55 Command Reference](../../index.html) » + * [AWS CLI 2.34.57 Command Reference](../../index.html) »