VPC Limits

Question 1

VPCs per region

Answer 1

5; Number of VPC*Number of SG <=10000

Question 2

Subnets per VPC

Answer 2

200

Question 3

IPv4 CIDR blocks per VPC

Answer 3

5

Question 4

IPv6 CIDR blocks per VPC

Answer 4

1

Question 5

Elastic IP addresses per region

Answer 5

5

Question 6

Flow logs per single network interface, single subnet, or single VPC in a region

Answer 6

2

Question 7

Customer gateways per region

Answer 7

50; To increase this limit, contact AWS Support.

Question 8

Egress-only internet gateways per region

Answer 8

5; This limit is directly correlated with the limit on VPCs per region

Question 9

Internet gateways per region

Answer 9

5; This limit is directly correlated with the limit on VPCs per region

Question 10

NAT gateways per Availability Zone

Answer 10

5; A NAT gateway in the pending, active, or deleting state counts against your limit.

Question 11

Virtual private gateways per region

Answer 11

5; This limit is directly correlated with the limit on VPCs per region

Question 12

Network ACLs per VPC

Answer 12

200

Question 13

Rules per network ACL

Answer 13

20; This limit can be increased up to a maximum of 40

Question 14

Network interfaces per region

Answer 14

350; This limit is the greater of either the default limit (350) or your On-Demand Instance limit multiplied by 5.

Question 15

Route tables per VPC

Answer 15

200

Question 16

Routes per route table (non-propagated routes)

Answer 16

50; You can increase this limit up to a maximum of 100

Question 17

BGP advertised routes per route table (propagated routes)

Answer 17

100

Question 18

Security groups per VPC (per region)

Answer 18

500; Number of VPC*Number of SG <=10000

Question 19

Inbound or outbound rules per security group

Answer 19

60 ; You can have 60 inbound and 60 outbound rules per security group (making a total of 120 rules). This limit is enforced separately for IPv4 rules and IPv6 rules;

Question 20

Security groups per network interface

Answer 20

5; To increase or decrease this limit, contact AWS Support. The maximum is 16. The limit for security groups per network interface multiplied by the limit for rules per security group cannot exceed 300

Question 21

Active VPC peering connections per VPC

Answer 21

50; The maximum limit is 125 peering connections per VPC.

Question 22

Outstanding VPC peering connection requests

Answer 22

25; To increase this limit, contact AWS Support.

Question 23

Expiry time for an unaccepted VPC peering connection request

Answer 23

1 week (168 hours); To increase this limit, contact AWS Support.

Question 24

Gateway VPC endpoints per region

Answer 24

20; To increase this limit, contact AWS Support. You cannot have more than 255 gateway endpoints per VPC.

Question 25

Interface VPC endpoints per VPC

Answer 25

20; To increase this limit, contact AWS Support.

Question 26

VPN connections per region

Answer 26

50

Question 27

VPN connections per VPC (per virtual private gateway)

Answer 27

10

Question 28

Default limit for On-Demand Instances

Answer 28

default limit for On-Demand Instances is 20 ; To increase this limit, contact AWS Support.

Question 29

Network interfaces per instance

Answer 29

This limit varies by instance type. For more information, see IP Addresses Per ENI Per Instance Type.