Package software.amazon.awscdk.services.route53
Amazon Route53 Construct Library
To add a public hosted zone:
PublicHostedZone.Builder.create(this, "HostedZone")
.zoneName("fully.qualified.domain.com")
.build();
To add a private hosted zone, use PrivateHostedZone. Note that
enableDnsHostnames and enableDnsSupport must have been enabled for the
VPC you're configuring for private hosted zones.
Vpc vpc;
PrivateHostedZone zone = PrivateHostedZone.Builder.create(this, "HostedZone")
.zoneName("fully.qualified.domain.com")
.vpc(vpc)
.build();
Additional VPCs can be added with zone.addVpc().
Adding Records
To add a TXT record to your zone:
HostedZone myZone;
TxtRecord.Builder.create(this, "TXTRecord")
.zone(myZone)
.recordName("_foo") // If the name ends with a ".", it will be used as-is;
// if it ends with a "." followed by the zone name, a trailing "." will be added automatically;
// otherwise, a ".", the zone name, and a trailing "." will be added automatically.
// Defaults to zone root if not specified.
.values(List.of("Bar!", "Baz?"))
.ttl(Duration.minutes(90))
.build();
To add a NS record to your zone:
HostedZone myZone;
NsRecord.Builder.create(this, "NSRecord")
.zone(myZone)
.recordName("foo")
.values(List.of("ns-1.awsdns.co.uk.", "ns-2.awsdns.com."))
.ttl(Duration.minutes(90))
.build();
To add a DS record to your zone:
HostedZone myZone;
DsRecord.Builder.create(this, "DSRecord")
.zone(myZone)
.recordName("foo")
.values(List.of("12345 3 1 123456789abcdef67890123456789abcdef67890"))
.ttl(Duration.minutes(90))
.build();
To add an A record to your zone:
HostedZone myZone;
ARecord.Builder.create(this, "ARecord")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.4", "5.6.7.8"))
.build();
To add an A record for an EC2 instance with an Elastic IP (EIP) to your zone:
Instance instance;
HostedZone myZone;
CfnEIP elasticIp = CfnEIP.Builder.create(this, "EIP")
.domain("vpc")
.instanceId(instance.getInstanceId())
.build();
ARecord.Builder.create(this, "ARecord")
.zone(myZone)
.target(RecordTarget.fromIpAddresses(elasticIp.getRef()))
.build();
To add an AAAA record pointing to a CloudFront distribution:
import software.amazon.awscdk.services.cloudfront.*;
HostedZone myZone;
CloudFrontWebDistribution distribution;
AaaaRecord.Builder.create(this, "Alias")
.zone(myZone)
.target(RecordTarget.fromAlias(new CloudFrontTarget(distribution)))
.build();
Geolocation routing can be enabled for continent, country or subdivision:
HostedZone myZone;
// continent
// continent
ARecord.Builder.create(this, "ARecordGeoLocationContinent")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.0", "5.6.7.0"))
.geoLocation(GeoLocation.continent(Continent.EUROPE))
.build();
// country
// country
ARecord.Builder.create(this, "ARecordGeoLocationCountry")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.1", "5.6.7.1"))
.geoLocation(GeoLocation.country("DE"))
.build();
// subdivision
// subdivision
ARecord.Builder.create(this, "ARecordGeoLocationSubDividion")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.2", "5.6.7.2"))
.geoLocation(GeoLocation.subdivision("WA"))
.build();
// default (wildcard record if no specific record is found)
// default (wildcard record if no specific record is found)
ARecord.Builder.create(this, "ARecordGeoLocationDefault")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.3", "5.6.7.3"))
.geoLocation(GeoLocation.default())
.build();
To enable weighted routing, use the weight parameter:
HostedZone myZone;
ARecord.Builder.create(this, "ARecordWeighted1")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.4"))
.weight(10)
.build();
To enable latency based routing, use the region parameter:
HostedZone myZone;
ARecord.Builder.create(this, "ARecordLatency1")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.4"))
.region("us-east-1")
.build();
To enable multivalue answer routing, use the multivalueAnswer parameter:
HostedZone myZone;
ARecord.Builder.create(this, "ARecordMultiValue1")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.4"))
.multiValueAnswer(true)
.build();
To specify a unique identifier to differentiate among multiple resource record sets that have the same combination of name and type, use the setIdentifier parameter:
HostedZone myZone;
ARecord.Builder.create(this, "ARecordWeighted1")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.4"))
.weight(10)
.setIdentifier("weighted-record-id")
.build();
Warning It is not possible to specify setIdentifier for a simple routing policy.
Constructs are available for A, AAAA, CAA, CNAME, MX, NS, SRV and TXT records.
Use the CaaAmazonRecord construct to easily restrict certificate authorities
allowed to issue certificates for a domain to Amazon only.
Replacing existing record sets (dangerous!)
Use the deleteExisting prop to delete an existing record set before deploying the new one.
This is useful if you want to minimize downtime and avoid "manual" actions while deploying a
stack with a record set that already exists. This is typically the case for record sets that
are not already "owned" by CloudFormation or "owned" by another stack or construct that is
going to be deleted (migration).
N.B.: this feature is dangerous, use with caution! It can only be used safely when
deleteExistingis set totrueas soon as the resource is added to the stack. Changing an existing Record Set'sdeleteExistingproperty fromfalse -> trueafter deployment will delete the record!
HostedZone myZone;
ARecord.Builder.create(this, "ARecord")
.zone(myZone)
.target(RecordTarget.fromIpAddresses("1.2.3.4", "5.6.7.8"))
.deleteExisting(true)
.build();
Cross Account Zone Delegation
If you want to have your root domain hosted zone in one account and your subdomain hosted
zone in a different one, you can use CrossAccountZoneDelegationRecord to set up delegation
between them.
In the account containing the parent hosted zone:
PublicHostedZone parentZone = PublicHostedZone.Builder.create(this, "HostedZone")
.zoneName("someexample.com")
.build();
Role crossAccountRole = Role.Builder.create(this, "CrossAccountRole")
// The role name must be predictable
.roleName("MyDelegationRole")
// The other account
.assumedBy(new AccountPrincipal("12345678901"))
// You can scope down this role policy to be least privileged.
// If you want the other account to be able to manage specific records,
// you can scope down by resource and/or normalized record names
.inlinePolicies(Map.of(
"crossAccountPolicy", PolicyDocument.Builder.create()
.statements(List.of(
PolicyStatement.Builder.create()
.sid("ListHostedZonesByName")
.effect(Effect.ALLOW)
.actions(List.of("route53:ListHostedZonesByName"))
.resources(List.of("*"))
.build(),
PolicyStatement.Builder.create()
.sid("GetHostedZoneAndChangeResourceRecordSets")
.effect(Effect.ALLOW)
.actions(List.of("route53:GetHostedZone", "route53:ChangeResourceRecordSets"))
// This example assumes the RecordSet subdomain.somexample.com
// is contained in the HostedZone
.resources(List.of("arn:aws:route53:::hostedzone/HZID00000000000000000"))
.conditions(Map.of(
"ForAllValues:StringLike", Map.of(
"route53:ChangeResourceRecordSetsNormalizedRecordNames", List.of("subdomain.someexample.com"))))
.build()))
.build()))
.build();
parentZone.grantDelegation(crossAccountRole);
In the account containing the child zone to be delegated:
PublicHostedZone subZone = PublicHostedZone.Builder.create(this, "SubZone")
.zoneName("sub.someexample.com")
.build();
// import the delegation role by constructing the roleArn
String delegationRoleArn = Stack.of(this).formatArn(ArnComponents.builder()
.region("") // IAM is global in each partition
.service("iam")
.account("parent-account-id")
.resource("role")
.resourceName("MyDelegationRole")
.build());
IRole delegationRole = Role.fromRoleArn(this, "DelegationRole", delegationRoleArn);
// create the record
// create the record
CrossAccountZoneDelegationRecord.Builder.create(this, "delegate")
.delegatedZone(subZone)
.parentHostedZoneName("someexample.com") // or you can use parentHostedZoneId
.delegationRole(delegationRole)
.build();
Delegating the hosted zone requires assuming a role in the parent hosted zone's account.
In order for the assumed credentials to be valid, the resource must assume the role using
an STS endpoint in a region where both the subdomain's account and the parent's account
are opted-in. By default, this region is determined automatically, but if you need to
change the region used for the AssumeRole call, specify assumeRoleRegion:
PublicHostedZone subZone = PublicHostedZone.Builder.create(this, "SubZone")
.zoneName("sub.someexample.com")
.build();
// import the delegation role by constructing the roleArn
String delegationRoleArn = Stack.of(this).formatArn(ArnComponents.builder()
.region("") // IAM is global in each partition
.service("iam")
.account("parent-account-id")
.resource("role")
.resourceName("MyDelegationRole")
.build());
IRole delegationRole = Role.fromRoleArn(this, "DelegationRole", delegationRoleArn);
CrossAccountZoneDelegationRecord.Builder.create(this, "delegate")
.delegatedZone(subZone)
.parentHostedZoneName("someexample.com") // or you can use parentHostedZoneId
.delegationRole(delegationRole)
.assumeRoleRegion("us-east-1")
.build();
Add Trailing Dot to Domain Names
In order to continue managing existing domain names with trailing dots using CDK, you can set addTrailingDot: false to prevent the Construct from adding a dot at the end of the domain name.
PublicHostedZone.Builder.create(this, "HostedZone")
.zoneName("fully.qualified.domain.com.")
.addTrailingDot(false)
.build();
Enabling DNSSEC
DNSSEC can be enabled for Hosted Zones. For detailed information, see Configuring DNSSEC signing in Amazon Route 53.
Enabling DNSSEC requires an asymmetric KMS Customer-Managed Key using the ECC_NIST_P256 key spec.
Additionally, that KMS key must be in us-east-1.
Key kmsKey = Key.Builder.create(this, "KmsCMK")
.keySpec(KeySpec.ECC_NIST_P256)
.keyUsage(KeyUsage.SIGN_VERIFY)
.build();
HostedZone hostedZone = HostedZone.Builder.create(this, "HostedZone")
.zoneName("example.com")
.build();
// Enable DNSSEC signing for the zone
hostedZone.enableDnssec(ZoneSigningOptions.builder().kmsKey(kmsKey).build());
The necessary permissions for Route 53 to use the key will automatically be added when using
this configuration. If it is necessary to create a key signing key manually, that can be done
using the KeySigningKey construct:
HostedZone hostedZone;
Key kmsKey;
KeySigningKey.Builder.create(this, "KeySigningKey")
.hostedZone(hostedZone)
.kmsKey(kmsKey)
.keySigningKeyName("ksk")
.status(KeySigningKeyStatus.ACTIVE)
.build();
When directly constructing the KeySigningKey resource, enabling DNSSEC signing for the hosted
zone will be need to be done explicitly (either using the CfnDNSSEC construct or via another
means).
Imports
If you don't know the ID of the Hosted Zone to import, you can use the
HostedZone.fromLookup:
HostedZone.fromLookup(this, "MyZone", HostedZoneProviderProps.builder()
.domainName("example.com")
.build());
HostedZone.fromLookup requires an environment to be configured. Check
out the documentation for more documentation and examples. CDK
automatically looks into your ~/.aws/config file for the [default] profile.
If you want to specify a different account run cdk deploy --profile [profile].
new MyDevStack(app, 'dev', {
env: {
account: process.env.CDK_DEFAULT_ACCOUNT,
region: process.env.CDK_DEFAULT_REGION,
},
});
If you know the ID and Name of a Hosted Zone, you can import it directly:
IHostedZone zone = HostedZone.fromHostedZoneAttributes(this, "MyZone", HostedZoneAttributes.builder()
.zoneName("example.com")
.hostedZoneId("ZOJJZC49E0EPZ")
.build());
Alternatively, use the HostedZone.fromHostedZoneId to import hosted zones if
you know the ID and the retrieval for the zoneName is undesirable.
IHostedZone zone = HostedZone.fromHostedZoneId(this, "MyZone", "ZOJJZC49E0EPZ");
You can import a Public Hosted Zone as well with the similar PublicHostedZone.fromPublicHostedZoneId and PublicHostedZone.fromPublicHostedZoneAttributes methods:
IPublicHostedZone zoneFromAttributes = PublicHostedZone.fromPublicHostedZoneAttributes(this, "MyZone", PublicHostedZoneAttributes.builder()
.zoneName("example.com")
.hostedZoneId("ZOJJZC49E0EPZ")
.build());
// Does not know zoneName
IPublicHostedZone zoneFromId = PublicHostedZone.fromPublicHostedZoneId(this, "MyZone", "ZOJJZC49E0EPZ");
You can use CrossAccountZoneDelegationRecord on imported Hosted Zones with the grantDelegation method:
Role crossAccountRole = Role.Builder.create(this, "CrossAccountRole")
// The role name must be predictable
.roleName("MyDelegationRole")
// The other account
.assumedBy(new AccountPrincipal("12345678901"))
.build();
IHostedZone zoneFromId = HostedZone.fromHostedZoneId(this, "MyZone", "zone-id");
zoneFromId.grantDelegation(crossAccountRole);
IPublicHostedZone publicZoneFromId = PublicHostedZone.fromPublicHostedZoneId(this, "MyPublicZone", "public-zone-id");
publicZoneFromId.grantDelegation(crossAccountRole);
IPrivateHostedZone privateZoneFromId = PrivateHostedZone.fromPrivateHostedZoneId(this, "MyPrivateZone", "private-zone-id");
privateZoneFromId.grantDelegation(crossAccountRole);
VPC Endpoint Service Private DNS
When you create a VPC endpoint service, AWS generates endpoint-specific DNS hostnames that consumers use to communicate with the service. For example, vpce-1234-abcdev-us-east-1.vpce-svc-123345.us-east-1.vpce.amazonaws.com. By default, your consumers access the service with that DNS name. This can cause problems with HTTPS traffic because the DNS will not match the backend certificate:
curl: (60) SSL: no alternative certificate subject name matches target host name 'vpce-abcdefghijklmnopq-rstuvwx.vpce-svc-abcdefghijklmnopq.us-east-1.vpce.amazonaws.com'
Effectively, the endpoint appears untrustworthy. To mitigate this, clients have to create an alias for this DNS name in Route53.
Private DNS for an endpoint service lets you configure a private DNS name so consumers can access the service using an existing DNS name without creating this Route53 DNS alias This DNS name can also be guaranteed to match up with the backend certificate.
Before consumers can use the private DNS name, you must verify that you have control of the domain/subdomain.
Assuming your account has ownership of the particular domain/subdomain, this construct sets up the private DNS configuration on the endpoint service, creates all the necessary Route53 entries, and verifies domain ownership.
import software.amazon.awscdk.services.elasticloadbalancingv2.NetworkLoadBalancer;
Vpc vpc = new Vpc(this, "VPC");
NetworkLoadBalancer nlb = NetworkLoadBalancer.Builder.create(this, "NLB")
.vpc(vpc)
.build();
VpcEndpointService vpces = VpcEndpointService.Builder.create(this, "VPCES")
.vpcEndpointServiceLoadBalancers(List.of(nlb))
.build();
// You must use a public hosted zone so domain ownership can be verified
PublicHostedZone zone = PublicHostedZone.Builder.create(this, "PHZ")
.zoneName("aws-cdk.dev")
.build();
VpcEndpointServiceDomainName.Builder.create(this, "EndpointDomain")
.endpointService(vpces)
.domainName("my-stuff.aws-cdk.dev")
.publicHostedZone(zone)
.build();
-
ClassDescriptionA DNS AAAA record.A fluent builder for
AaaaRecord.Construction properties for a AaaaRecord.A builder forAaaaRecordPropsAn implementation forAaaaRecordPropsRepresents the properties of an alias target destination.A builder forAliasRecordTargetConfigAn implementation forAliasRecordTargetConfigA DNS A record.A fluent builder forARecord.Construction properties for a ARecord.A builder forARecordPropsAn implementation forARecordPropsA DNS Amazon CAA record.A fluent builder forCaaAmazonRecord.Construction properties for a CaaAmazonRecord.A builder forCaaAmazonRecordPropsAn implementation forCaaAmazonRecordPropsA DNS CAA record.A fluent builder forCaaRecord.Construction properties for a CaaRecord.A builder forCaaRecordPropsAn implementation forCaaRecordPropsProperties for a CAA record value.A builder forCaaRecordValueAn implementation forCaaRecordValueThe CAA tag.Creates a CIDR collection in the current AWS account.A fluent builder forCfnCidrCollection.Specifies the list of CIDR blocks for a CIDR location.A builder forCfnCidrCollection.LocationPropertyAn implementation forCfnCidrCollection.LocationPropertyProperties for defining aCfnCidrCollection.A builder forCfnCidrCollectionPropsAn implementation forCfnCidrCollectionPropsTheAWS::Route53::DNSSECresource is used to enable DNSSEC signing in a hosted zone.A fluent builder forCfnDNSSEC.Properties for defining aCfnDNSSEC.A builder forCfnDNSSECPropsAn implementation forCfnDNSSECPropsTheAWS::Route53::HealthCheckresource is a Route 53 resource type that contains settings for a Route 53 health check.A complex type that identifies the CloudWatch alarm that you want Amazon Route 53 health checkers to use to determine whether the specified health check is healthy.A builder forCfnHealthCheck.AlarmIdentifierPropertyAn implementation forCfnHealthCheck.AlarmIdentifierPropertyA fluent builder forCfnHealthCheck.A complex type that contains information about the health check.A builder forCfnHealthCheck.HealthCheckConfigPropertyAn implementation forCfnHealthCheck.HealthCheckConfigPropertyTheHealthCheckTagproperty describes one key-value pair that is associated with anAWS::Route53::HealthCheckresource.A builder forCfnHealthCheck.HealthCheckTagPropertyAn implementation forCfnHealthCheck.HealthCheckTagPropertyProperties for defining aCfnHealthCheck.A builder forCfnHealthCheckPropsAn implementation forCfnHealthCheckPropsCreates a new public or private hosted zone.A fluent builder forCfnHostedZone.A complex type that contains an optional comment about your hosted zone.A builder forCfnHostedZone.HostedZoneConfigPropertyAn implementation forCfnHostedZone.HostedZoneConfigPropertyA complex type that contains information about a tag that you want to add or edit for the specified health check or hosted zone.A builder forCfnHostedZone.HostedZoneTagPropertyAn implementation forCfnHostedZone.HostedZoneTagPropertyA complex type that contains information about a configuration for DNS query logging.A builder forCfnHostedZone.QueryLoggingConfigPropertyAn implementation forCfnHostedZone.QueryLoggingConfigPropertyPrivate hosted zones only: A complex type that contains information about an Amazon VPC.A builder forCfnHostedZone.VPCPropertyAn implementation forCfnHostedZone.VPCPropertyProperties for defining aCfnHostedZone.A builder forCfnHostedZonePropsAn implementation forCfnHostedZonePropsTheAWS::Route53::KeySigningKeyresource creates a new key-signing key (KSK) in a hosted zone.A fluent builder forCfnKeySigningKey.Properties for defining aCfnKeySigningKey.A builder forCfnKeySigningKeyPropsAn implementation forCfnKeySigningKeyPropsInformation about the record that you want to create.Alias records only: Information about the AWS resource, such as a CloudFront distribution or an Amazon S3 bucket, that you want to route traffic to.A builder forCfnRecordSet.AliasTargetPropertyAn implementation forCfnRecordSet.AliasTargetPropertyA fluent builder forCfnRecordSet.The object that is specified in resource record set object when you are linking a resource record set to a CIDR location.A builder forCfnRecordSet.CidrRoutingConfigPropertyAn implementation forCfnRecordSet.CidrRoutingConfigPropertyA complex type that lists the coordinates for a geoproximity resource record.A builder forCfnRecordSet.CoordinatesPropertyAn implementation forCfnRecordSet.CoordinatesPropertyA complex type that contains information about a geographic location.A builder forCfnRecordSet.GeoLocationPropertyAn implementation forCfnRecordSet.GeoLocationProperty(Resource record sets only): A complex type that lets you specify where your resources are located.A builder forCfnRecordSet.GeoProximityLocationPropertyAn implementation forCfnRecordSet.GeoProximityLocationPropertyA complex type that contains an optional comment, the name and ID of the hosted zone that you want to make changes in, and values for the records that you want to create.Alias records only: Information about the AWS resource, such as a CloudFront distribution or an Amazon S3 bucket, that you want to route traffic to.A builder forCfnRecordSetGroup.AliasTargetPropertyAn implementation forCfnRecordSetGroup.AliasTargetPropertyA fluent builder forCfnRecordSetGroup.The object that is specified in resource record set object when you are linking a resource record set to a CIDR location.A builder forCfnRecordSetGroup.CidrRoutingConfigPropertyAn implementation forCfnRecordSetGroup.CidrRoutingConfigPropertyA complex type that lists the coordinates for a geoproximity resource record.A builder forCfnRecordSetGroup.CoordinatesPropertyAn implementation forCfnRecordSetGroup.CoordinatesPropertyA complex type that contains information about a geographic location.A builder forCfnRecordSetGroup.GeoLocationPropertyAn implementation forCfnRecordSetGroup.GeoLocationProperty(Resource record sets only): A complex type that lets you specify where your resources are located.A builder forCfnRecordSetGroup.GeoProximityLocationPropertyAn implementation forCfnRecordSetGroup.GeoProximityLocationPropertyInformation about one record that you want to create.A builder forCfnRecordSetGroup.RecordSetPropertyAn implementation forCfnRecordSetGroup.RecordSetPropertyProperties for defining aCfnRecordSetGroup.A builder forCfnRecordSetGroupPropsAn implementation forCfnRecordSetGroupPropsProperties for defining aCfnRecordSet.A builder forCfnRecordSetPropsAn implementation forCfnRecordSetPropsA DNS CNAME record.A fluent builder forCnameRecord.Construction properties for a CnameRecord.A builder forCnameRecordPropsAn implementation forCnameRecordPropsCommon properties to create a Route 53 hosted zone.A builder forCommonHostedZonePropsAn implementation forCommonHostedZonePropsContinents for geolocation routing.A Cross Account Zone Delegation record.A fluent builder forCrossAccountZoneDelegationRecord.Construction properties for a CrossAccountZoneDelegationRecord.A builder forCrossAccountZoneDelegationRecordPropsAn implementation forCrossAccountZoneDelegationRecordPropsA DNS DS record.A fluent builder forDsRecord.Construction properties for a DSRecord.A builder forDsRecordPropsAn implementation forDsRecordPropsRouting based on geographical location.Container for records, and records contain information about how to route traffic for a specific domain, such as example.com and its subdomains (acme.example.com, zenith.example.com).A fluent builder forHostedZone.Reference to a hosted zone.A builder forHostedZoneAttributesAn implementation forHostedZoneAttributesProperties of a new hosted zone.A builder forHostedZonePropsAn implementation forHostedZonePropsZone properties for looking up the Hosted Zone.A builder forHostedZoneProviderPropsAn implementation forHostedZoneProviderPropsClasses that are valid alias record targets, like CloudFront distributions and load balancers, should implement this interface.Internal default implementation forIAliasRecordTarget.A proxy class which represents a concrete javascript instance of this type.Imported or created hosted zone.Internal default implementation forIHostedZone.A proxy class which represents a concrete javascript instance of this type.A Key Signing Key for a Route 53 Hosted Zone.Internal default implementation forIKeySigningKey.A proxy class which represents a concrete javascript instance of this type.Represents a Route 53 private hosted zone.Internal default implementation forIPrivateHostedZone.A proxy class which represents a concrete javascript instance of this type.Represents a Route 53 public hosted zone.Internal default implementation forIPublicHostedZone.A proxy class which represents a concrete javascript instance of this type.A record set.Internal default implementation forIRecordSet.A proxy class which represents a concrete javascript instance of this type.A Key Signing Key for a Route 53 Hosted Zone.A fluent builder forKeySigningKey.The attributes of a key signing key.A builder forKeySigningKeyAttributesAn implementation forKeySigningKeyAttributesProperties for constructing a Key Signing Key.A builder forKeySigningKeyPropsAn implementation forKeySigningKeyPropsThe status for a Key Signing Key.A DNS MX record.A fluent builder forMxRecord.Construction properties for a MxRecord.A builder forMxRecordPropsAn implementation forMxRecordPropsProperties for a MX record value.A builder forMxRecordValueAn implementation forMxRecordValueA DNS NS record.A fluent builder forNsRecord.Construction properties for a NSRecord.A builder forNsRecordPropsAn implementation forNsRecordPropsCreate a Route53 private hosted zone for use in one or more VPCs.A fluent builder forPrivateHostedZone.Properties to create a Route 53 private hosted zone.A builder forPrivateHostedZonePropsAn implementation forPrivateHostedZonePropsCreate a Route53 public hosted zone.A fluent builder forPublicHostedZone.Reference to a public hosted zone.A builder forPublicHostedZoneAttributesAn implementation forPublicHostedZoneAttributesConstruction properties for a PublicHostedZone.A builder forPublicHostedZonePropsAn implementation forPublicHostedZonePropsA record set.A fluent builder forRecordSet.Options for a RecordSet.A builder forRecordSetOptionsAn implementation forRecordSetOptionsConstruction properties for a RecordSet.A builder forRecordSetPropsAn implementation forRecordSetPropsType union for a record that accepts multiple types of target.The record type.A DNS SRV record.A fluent builder forSrvRecord.Construction properties for a SrvRecord.A builder forSrvRecordPropsAn implementation forSrvRecordPropsProperties for a SRV record value.A builder forSrvRecordValueAn implementation forSrvRecordValueA DNS TXT record.A fluent builder forTxtRecord.Construction properties for a TxtRecord.A builder forTxtRecordPropsAn implementation forTxtRecordPropsA Private DNS configuration for a VPC endpoint service.A fluent builder forVpcEndpointServiceDomainName.Properties to configure a VPC Endpoint Service domain name.A builder forVpcEndpointServiceDomainNamePropsAn implementation forVpcEndpointServiceDomainNamePropsOptions available when creating a delegation relationship from one PublicHostedZone to another.A builder forZoneDelegationOptionsAn implementation forZoneDelegationOptionsA record to delegate further lookups to a different set of name servers.A fluent builder forZoneDelegationRecord.Construction properties for a ZoneDelegationRecord.A builder forZoneDelegationRecordPropsAn implementation forZoneDelegationRecordPropsOptions for enabling key signing from a hosted zone.A builder forZoneSigningOptionsAn implementation forZoneSigningOptions