You can use a Lambda function to update the security group’s rules dynamically whenever AWS publishes new internal service IP ranges for CloudFront.
lambda
How to run AWS CLI within a Lambda function
Learn how to setup lambda execution environment to run awscli commands.
How to Stream Data from Amazon DynamoDB to Amazon S3 using AWS Lambda and Amazon Kinesis Firehose and analyse using Microsoft Power BI
With DynamoDB Streams and the data-transformation feature of Amazon Kinesis Firehose, you have a powerful and scalable way to replicate data from DynamoDB into data sources such as S3 and then analyse using Power BI
Create lambda function to buffer items newly added to the DynamoDB table and then send a batch of these items (JSON-formatted source records) to Amazon Kinesis Firehose delivery stream
This lambda function takes all messages in the DynamoDB stream and forwards them to the Firehose delivery stream.
How to set up the Amazon Kinesis Firehose delivery stream
Kinesis Firehose delivery streams continuously collect, transform, and load streaming data into the destinations that you specify.