Route 53

Preparation

Before enabling Route 53 resolver logs for ingestion by AE, an AWS S3 bucket for CloudTrail event storage and a SQS Queue must be designated and/or created. Please refer to Collecting data: Amazon S3 before continuing further.

Route 53 Resolver Logs

Navigate to Route 53 > Resolver > Query logging and click on Configure query logging.

Give the configuration a name, and select S3 bucket as the Query logs destination. Choose the appropriate bucket you designated and/or created via the Browse S3 button or enter the S3 URI directly (ie. s3://a3-s3-bucket-1).

Finally, under VPCs to log queries for, click Add VPC and select which VPCs to log.

r53-create

Preparation​

Route 53 Resolver Logs​

Preparation

Route 53 Resolver Logs