2 Answers
- Newest
- Most votes
- Most comments
0
I think it'd be worth reaching out to your local AWS Solutions Architect and/or account team to discuss your requirements here.
However, to answer your question: Shield Advanced covers all of the services you mention. If you're going to enable it, you wouldn't just enable it for Route 53 (and that's not quite how it works in any case). it covers your entire workload.
0
Just because the authoritative DNS for an AWS resource is on Route53, does not mean the resource is 'behind a Route 53 Hosted Zone'. That's not how DNS works.
You need to enable Shield Advanced Protection for each resource that you want enhanced detection, mitigation or cost protection for.
answered 4 months ago
Relevant content
- Accepted Answerasked 5 months ago
- Can I cancel Shield Advanced before the minimum subscription period if it doesn't satisfy our needs?Accepted Answerasked a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 10 months ago