Is it safe to whitelist amazonaws.com?

2 replies

    • Pro subscriber ✓
    • DynamicNotSlow
    • 2 yrs ago
    • Reported - view


    If a filter block it, you should avoid that one ASAP as the dev doesn’t know what he’s doing. 

    • Paul_Rafferty
    • 1 yr ago
    • Reported - view

    For anyone else landing here, the reason it's getting blocked isn't that it's in a filter list, it's because it can get blocked due to "DNS Rebind" protection. Many AWS resources are private (like internal-only EKS, RDS endpoints) and accessible only over VPN. While the DNS records are public, they resolve to private IP addresses (eg: depending on your service configuration. NextDNS will block DNS results that contain private IP addresses if you nave DNS Rebind protection enabled. Your options are either:

    1. Disable DNS Rebind protection completely (bad)

    2. Whitelist domains that resolve to private IP address ranges (better)

Content aside

  • 1 yr agoLast active
  • 2Replies
  • 111Views
  • 2 Following