Steampipe unbundled →
Steampipe Hub 
Hub
Plugins
turbot/aws
Overview
483Tables
Versions
PowerpipeMods
GitHub
steampipe plugin install aws

Table: aws_route53_query_log - Query AWS Route 53 Query Log using SQL

The AWS Route 53 Query Log is a feature of Amazon Route 53 that lets you log the DNS queries that Route 53 receives. It provides detailed records of the DNS queries that Amazon Route 53 receives and includes information like the domain or subdomain that was requested, the date and time of the request, and the DNS record type. This service is useful for troubleshooting and auditing purposes.

Table Usage Guide

The aws_route53_query_log table in Steampipe provides you with information about DNS queries made to Route 53 hosted zones within AWS Route 53. This table allows you, as a network administrator or DevOps engineer, to query DNS query-specific details, including the hosted zone, query name, query type, and response code. You can utilize this table to gather insights on DNS query patterns, troubleshoot DNS issues, and analyze DNS traffic. The schema outlines the various attributes of the Route 53 query log for you, including the query timestamp, query name, query type, query class, and response code.

Examples

Basic info

Determine the areas in which AWS Route53 query logs are being used. This can provide insights into the distribution and usage of specific hosted zones and associated log groups, assisting in resource management and security monitoring.

select
  id,
  hosted_zone_id,
  cloud_watch_logs_log_group_arn,
  title,
  akas
from
  aws_route53_query_log;
select
  id,
  hosted_zone_id,
  cloud_watch_logs_log_group_arn,
  title,
  akas
from
  aws_route53_query_log;

Get hosted zone details of each query log

Gain insights into the characteristics of each query log's hosted zone, such as whether it's private and its record set count. This is useful for understanding the properties and usage of different hosted zones in your AWS Route53 service.

select
  l.id,
  l.hosted_zone_id,
  z.private_zone,
  z.resource_record_set_count
from
  aws_route53_query_log as l,
  aws_route53_zone as z
where
  z.id = l.hosted_zone_id;
select
  l.id,
  l.hosted_zone_id,
  z.private_zone,
  z.resource_record_set_count
from
  aws_route53_query_log as l
  join aws_route53_zone as z on z.id = l.hosted_zone_id;

Count the number of query logs by hosted zone

Explore the distribution of query logs across different hosted zones to understand the areas of high activity and potential issues. This can aid in identifying zones that may require additional resources or troubleshooting.

select
  hosted_zone_id,
  count(id)
from
  aws_route53_query_log
group by
  hosted_zone_id;
select
  hosted_zone_id,
  count(id)
from
  aws_route53_query_log
group by
  hosted_zone_id;

Schema for aws_route53_query_log

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
account_idtext=, !=, ~~, ~~*, !~~, !~~*The AWS Account ID in which the resource is located.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
cloud_watch_logs_log_group_arntextThe Amazon Resource Name (ARN) of the CloudWatch Logs log group that Amazon Route 53 is publishing logs to.
hosted_zone_idtext=The ID of the hosted zone that CloudWatch Logs is logging queries for.
idtext=The ID for a configuration for DNS query logging.
partitiontextThe AWS partition in which the resource is located (aws, aws-cn, or aws-us-gov).
regiontextThe AWS Region in which the resource is located.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
titletextTitle of the resource.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- aws

You can pass the configuration to the command with the --config argument:

steampipe_export_aws --config '<your_config>' aws_route53_query_log