VPC Endpoint for Route 53

I am prototyping a scenario where a new VPC only has "intra" subnets (private with NO NAT Gateway).

We want to run a service inside the subnet that creates records in Route 53, but I cannot find any VPC endpoint for Route 53 in this list to create. This means our service tries to contact the Route 53 API and fails to do so until a timeout occurs.

I suspect (based on how many other services have an endpoint in the list above) this has not been implemented yet, or there are other ways to achieve this in a private "intra" subnet.

Can anyone advise?

The only option a colleague suggested was to create a VPC endpoint to Cloudformation and run a small stack there to create the records in Route 53. It might work, but seems a little hacky.

Thanks in advance for any help/guidance!

-gavin

Topics

Networking & Content Delivery

Tags

Amazon VPC AWS PrivateLink Virtual Private Cloud

Language

English

gavin

asked a month ago123 views

2 Answers

Newest
Most votes
Most comments

Hello.

The only option a colleague suggested was to create a VPC endpoint to Cloudformation and run a small stack there to create the records in Route 53. It might work, but seems a little hacky.

It's true that this is a slightly special workaround, but since Route53's VPC endpoints are currently not supported, I think this method is effective.
If this method cannot be used, you will need to create a NAT Gateway etc. and connect to Route53's API.

EXPERT

Riku_Kobayashi

answered a month ago

EXPERT

Oleksii Bebych

reviewed a month ago

EXPERT

AWS-User-alantam

reviewed a month ago

You could create a Lambda that you call and pass in a payload with information that you want to put in the Route 53 record. The Lambda will have access to the Route 53 API if you 1/ do not connect it to the VPC and 2/ the IAM role for the Lambda has permissions to create/update/delete records.

Hope this helps.

EXPERT

iBehr

answered a month ago

EXPERT

Oleksii Bebych

reviewed a month ago

EXPERT

AWS-User-alantam

reviewed a month ago

Relevant content

FSx for lustre with AWS Sagemaker Error - Artifact upload failed:Please ensure that the subnet's route table has a route to an S3 VPC endpoint or a NAT device
rePost-User-8013031
asked a year ago
Ingress rules for a private subnet NACL with VPC endpoints: Are AWS service CIDR ranges required?
Accepted Answer
AWS-User-8658107
asked 2 years ago
How does a private subnet know how to route to a NAT gateway in the public subnet
Accepted Answer
rePost-User-7071130
asked a year ago
Optimizing TGW Routing for Select VPC Subnets in DX Communication Scenario
Accepted Answer
Ali Md
asked a year ago
How do I configure a Route 53 Resolver outbound endpoint to resolve DNS records hosted on a remote network from resources in my VPC?
AWS OFFICIALUpdated a year ago
How do I set up a NAT gateway for a private subnet in Amazon VPC?
AWS OFFICIALUpdated 9 months ago
Why can't my Amazon EC2 instance in a private subnet connect to the internet using a NAT gateway?
AWS OFFICIALUpdated 2 years ago
How can I run an Amazon ECS task on Fargate in a private subnet?
AWS OFFICIALUpdated 2 months ago
How can we map entire AWS VPC CIDR to a single IP address using Private NAT Gateway via AWS Site to Site VPN connection.
EXPERT
Narinder Singh Kharbanda
published a year ago
Why can't I connect to a peered VPC when using an AWS Site-to-Site VPN connection that terminates on a virtual private gateway?
EXPERT
Karthikiran Ilango
published a year ago