Document Center

All Products

Document Center

Product Details

Limits

Last Updated: Mar 26, 2021

Before you get started with Virtual Private Cloud (VPC), make sure that you understand the limits described in the following tables.

Limits on VPCs and vSwitches


Item	Limit	Adjustable
Number of VPCs that can be created in each region	10	Go to the Quota Management page to increase the quota. For more information, see Manage service quotas.
Number of vSwitches that can be created in each VPC	24
Available CIDR blocks for each VPC	192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8, and subnets of the CIDR blocks	To assign a public CIDR block to a VPC,submit a ticket.
Number of secondary IPv4 CIDR blocks that can be created in each VPC	1	N/A
Number of customer CIDR blocks that can be created in each VPC	3
Number of private IP addresses that can be used by cloud resources in each VPC	60,000 Note If an Elastic Compute Service (ECS) instance has only one private IP address, the ECS instance uses only one network address. If an ECS instance is associated with multiple network interface controllers (NICs), or multiple IP addresses are assigned to an NIC, the number of network addresses used by the ECS instance equals the total number of the IP addresses assigned to the NICs that are associated with the ECS instance.
Number of tags that can be added to each VPC	20
Number of tags that can be added to each vSwitch	20

Limits on vRouters and route tables


Item	Limit	Adjustable
Number of vRouters that can be created in each VPC	1	N/A
Number of route tables that can be created in each VPC	9	Go to the Quota Management page to increase the quota. For more information, see Manage service quotas.
Number of custom route entries that can be created in each route table	48
VPCs that do not support custom route tables	VPCs that contain ECS instances of the following instance families: ecs.c1, ecs.c2, ecs.c4, ecs.ce4, ecs.cm4, ecs.d1, ecs.e3, ecs.e4, ecs.ga1, ecs.gn4, ecs.gn5, ecs.i1, ecs.m1, ecs.m2, ecs.mn4, ecs.n1, ecs.n2, ecs.n4, ecs.s1, ecs.s2, ecs.s3, ecs.se1, ecs.sn1, ecs.sn2, ecs.t1, and ecs.xn4. For more information, see Overview of VPC advanced features.	Upgrade or release an Elastic Compute Service (ECS) instance that does not support advanced network features. For more information, see Upgrade the instance types of subscription instances and Change the instance type of a pay-as-you-go instance. For more information, see Release an instance.
Number of tags that can be added to each route table	20

Limits on Dynamic Host Configuration Protocol (DHCP) options sets


Item	Limit	Adjustable
Number of DHCP options sets that can be created with each account	10	N/A
Number of VPCs that can be associated with each DHCP options set	10
Number of DHCP options sets that can be associated with each VPC	1
Number of domain names that can be specified in each DHCP options set	1
Number of Domain Name System (DNS) server IP addresses that can be specified in each DHCP options set	4
VPCs that cannot be associated with DHCP options sets	VPCs that contain ECS instances of the following instance families: ecs.c1, ecs.c2, ecs.c4, ecs.ce4, ecs.cm4, ecs.d1, ecs.e3, ecs.e4, ecs.ga1, ecs.gn4, ecs.gn5, ecs.i1, ecs.m1, ecs.m2, ecs.mn4, ecs.n1, ecs.n2, ecs.n4, ecs.s1, ecs.s2, ecs.s3, ecs.se1, ecs.sn1, ecs.sn2, ecs.t1, and ecs.xn4. For more information, see Overview of VPC advanced features.	Upgrade or release an Elastic Compute Service (ECS) instance that does not support advanced network features. For more information, see Upgrade the instance types of subscription instances and Change the instance type of a pay-as-you-go instance. For more information, see Release an instance.

Limits on shared VPCs


Item	Limit	Adjustable
Number of resource users supported by each VPC	20	N/A
Number of resource users supported by each vSwitch in a VPC	20
Number of vSwitches that can be shared with each resource user	10
Number of IP addresses that each VPC can use	Shared by the resource owner and resource users
Types of vSwitches that can be shared	Non-default vSwitches
Cloud resources that can be created in a shared vSwitch	ECS instances Server Load Balancer (SLB) instances ApsaraDB for RDS instances Terway ApsaraDB for MongoDB instances ApsaraDB for Redis instances Message Queue for Apache Kafka instances Elastic Search Container Registry instances PolarDB for MySQL clusters
Limits on security groups in a shared VPC	A resource user cannot create resources in security groups that belong to other resource users or the resource owner. The security groups include the default security group. The resource owner cannot create resources in security groups that belong to resource users

Limits on flow logs


Item	Limit	Adjustable
Number of flow logs that can be created in each region	10	N/A
ECS instance families that do not support flow logs	When you enable flow logs for a VPC or a vSwitch, ECS instances in the VPC or vSwitch do not support flow logs if they belong to the following instance families. Other ECS instances that meet the requirement support flow logs. Elastic network interfaces (ENIs) that are associated with ECS instances of the following instance families do not support flow logs. ecs.c1, ecs.c2, ecs.c4, ecs.ce4, ecs.cm4, ecs.d1, ecs.e3, ecs.e4, ecs.ga1, ecs.gn4, ecs.gn5, ecs.i1, ecs.m1, ecs.m2, ecs.mn4, ecs.n1, ecs.n2, ecs.n4, ecs.s1, ecs.s2, ecs.s3, ecs.se1, ecs.sn1, ecs.sn2, ecs.t1, and ecs.xn4.	Upgrade or release an ECS instance. For more information about how to upgrade an ECS instance, see Upgrade the instance types of subscription instances and Change the instance type of a pay-as-you-go instance. For more information about how to release an ECS instance, see Release an instance.

Limits on network access control lists (ACLs)


Item	Limit	Adjustable
Number of network ACLs that can be created in each VPC	200	N/A
Number of network ACLs that can be associated with each vSwitch	1	N/A
Number of rules that can be added to a network ACL	Inbound rules: 20 Outbound rules: 20	Go to the Quota Management page to increase the quota. For more information, see Manage service quotas.
VPCs that do not support network ACLs	VPCs that contain ECS instances of the following instance families: ecs.c1, ecs.c2, ecs.c4, ecs.ce4, ecs.cm4, ecs.d1, ecs.e3, ecs.e4, ecs.ga1, ecs.gn4, ecs.gn5, ecs.i1, ecs.m1, ecs.m2, ecs.mn4, ecs.n1, ecs.n2, ecs.n4, ecs.s1, ecs.s2, ecs.s3, ecs.se1, ecs.sn1, ecs.sn2, ecs.t1, and ecs.xn4. For more information, see Overview of VPC advanced features.	Upgrade or release an Elastic Compute Service (ECS) instance that does not support advanced network features. For more information, see Upgrade the instance types of subscription instances and Change the instance type of a pay-as-you-go instance. For more information, see Release an instance. Note If the VPC contains one of the specified ECS instance families and the network ACL feature is enabled, you must upgrade or release the ECS instance for the network ACL to function as expected.

Limits on high-availability virtual IP addresses (HAVIPs)


Item	Limit	Adjustable
Network types that support HAVIPs	VPCs	N/A
Number of HAVIPs that can be associated with each ECS instance	5
Number of ECS instances that can be associated with each HAVIP	2
Whether HAVIPs support broadcasting or multicasting	Not supported Note HAVIPs support only unicasting. To implement high availability through third-party software such as keepalived, you must modify the configuration file to change the communication method to unicasting.
Number of HAVIPs that can be created with each account	5	Go to the Quota Management page to increase the quota. For more information, see Manage service quotas.
Number of HAVIPs that can be created in each VPC	5
Number of route entries that point an HAVIP in each VPC	5

How helpful was this page?

What might be the problems?

More suggestions?

Free Trial Free Trial