All Products
Search
Document Center

Virtual Private Cloud:CreateVpc

Last Updated:Mar 04, 2024

Creates a virtual private cloud (VPC).

Operation description

When you call this operation, take note of the following items:

  • You can specify only one CIDR block for each VPC.

  • After you create a VPC, you cannot change its CIDR block. However, you can add secondary IPv4 CIDR blocks to the VPC.

  • In each VPC, cloud services can use a maximum of 60,000 private IP addresses. You cannot increase the quota.

  • After you create a VPC, a vRouter and a route table are automatically created.

  • At most three user CIDR blocks can be added to a VPC. If a user CIDR block includes another user CIDR block, the one with the shorter subnet mask takes effect. For example, if both 10.0.0.0/8 and 10.1.0.0/16 are specified, only 10.0.0.0/8 takes effect.

  • CreateVpc is an asynchronous operation. After a request is sent, the system returns a request ID and runs the task in the background. You can call the DescribeVpcAttribute operation to query the status of the task:

    • If the VPC is in the Creating state, the VPC is being created.
    • If the VPC is in the Created state, the VPC is created.
  • You cannot repeatedly call the DeleteRouteEntry operation to create default VPCs within a specific time period. However, you can repeatedly call this operation to create custom VPCs within a specific time period.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer.

Authorization information

The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

  • Operation: the value that you can use in the Action element to specify the operation on a resource.
  • Access level: the access level of each operation. The levels are read, write, and list.
  • Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
    • The required resource types are displayed in bold characters.
    • If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
  • Condition Key: the condition key that is defined by the cloud service.
  • Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.
OperationAccess levelResource typeCondition keyAssociated operation
vpc:CreateVpcWrite
  • VPC
    acs:vpc:{#regionId}:{#accountId}:vpc/*
    none
none

Request parameters

ParameterTypeRequiredDescriptionExample
RegionIdstringYes

The ID of the region to which the VPC belongs.

You can call the DescribeRegions operation to query the most recent region list.

cn-hangzhou
CidrBlockstringNo

The CIDR block of the VPC.

  • You can specify one of the following CIDR blocks or their subsets as the primary IPv4 CIDR block of the VPC: 192.168.0.0/16, 172.16.0.0/12, and 10.0.0.0/8. These CIDR blocks are standard private CIDR blocks as defined by Request for Comments (RFC) documents. The subnet mask must be 8 to 28 bits in length.
  • You can also use a custom CIDR block other than 100.64.0.0/10, 224.0.0.0/4, 127.0.0.0/8, 169.254.0.0/16, and their subnets as the primary IPv4 CIDR block of the VPC.
172.16.0.0/12
Ipv6CidrBlockstringNo

The IPv6 CIDR block of the VPC.

2408:XXXX:0:6a::/56
VpcNamestringNo

The name of the VPC.

The name must be 1 to 128 characters in length and cannot start with http:// or https://.

abc
EnableIpv6booleanNo

Specifies whether to enable IPv6. Valid values:

  • false (default)
  • true
false
DescriptionstringNo

The description of the VPC.

The description must be 1 to 256 characters in length and cannot start with http:// or https://.

This is my first Vpc
ResourceGroupIdstringNo

The ID of the resource group.

For more information about resource groups, see What is a resource group?

rg-acfmxazb4ph6aiy****
Tagobject []No

The tag of the resource.

KeystringNo

The key of tag N to add to the resource. You can specify at most 20 tag keys. The tag key cannot be an empty string.

The tag key can be at most 128 characters in length. It cannot start with aliyun or acs:, and cannot contain http:// or https://.

FinanceDept
ValuestringNo

The value of tag N to add to the resource. You can specify at most 20 tag values. The tag value can be an empty string.

The tag value can be up to 128 characters in length, but cannot contain http:// or https://. The tag value cannot start with aliyun or acs:.

FinanceJoshua
DryRunbooleanNo

Specifies whether to perform a dry run, without performing the actual request. Valid values:

  • true: performs only a dry run. The system checks the request for potential issues, including missing parameter values, incorrect request syntax, and service limits. If the request fails the dry run, an error code is returned. If the request passes the dry run, the DryRunOperation error code is returned.
  • false (default): performs a dry run and performs the actual request. If the request passes the dry run, a 2xx HTTP status code is returned and the operation is performed.
false
UserCidrstringNo

The user CIDR block. Separate user CIDR blocks with commas (,). You can specify up to three user CIDR blocks.

For more information about user CIDR blocks, see the What is a user CIDR block? section in VPC FAQ.

192.168.0.0/12
ClientTokenstringNo

The client token that is used to ensure the idempotence of the request.

You can use the client to generate the token, but you must make sure that the token is unique among different requests. The token can contain only ASCII characters.

Note If you do not specify this parameter, the system automatically uses the request ID as the client token. The request ID may be different for each request.
123e4567-e89b-12d3-a456-426655440000
Ipv6IspstringNo

The type of the IPv6 CIDR block of the VPC. Valid values:

  • BGP (default)
  • ChinaMobile
  • ChinaUnicom
  • ChinaTelecom
Note If you are allowed to use single-ISP bandwidth, you can set the value to ChinaTelecom, ChinaUnicom, or ChinaMobile.
BGP
Ipv4IpamPoolIdstringNo

The ID of the IP Address Manager (IPAM) pool of the IPv4 type.

ipam-pool-sycmt3p2a9v63i****

Response parameters

ParameterTypeDescriptionExample
object

The ID of the created VPC.

VpcIdstring

The ID of the created VPC.

vpc-bp15zckdt37pq72zv****
VRouterIdstring

The ID of the vRouter that is automatically created by the system after the VPC is created.

vrt-bp1lhl0taikrteen8****
RequestIdstring

The request ID.

0ED8D006-F706-4D23-88ED-E11ED28DCAC0
RouteTableIdstring

The ID of the route table that is automatically created by the system after the VPC is created.

vtb-bp145q7glnuzdv****
ResourceGroupIdstring

The resource group ID.

rg-acfmxazb4ph6aiy****

Examples

Sample success responses

JSONformat

{
  "VpcId": "vpc-bp15zckdt37pq72zv****",
  "VRouterId": "vrt-bp1lhl0taikrteen8****",
  "RequestId": "0ED8D006-F706-4D23-88ED-E11ED28DCAC0",
  "RouteTableId": "vtb-bp145q7glnuzdv****",
  "ResourceGroupId": "rg-acfmxazb4ph6aiy****"
}

Error codes

HTTP status codeError codeError messageDescription
400TOKEN_PROCESSINGAction is processing.-
400InvokeErrorinstance quota rule invoke error.-
400InvalidParameterSpecified CIDR block is not validThe specified CIDR block is invalid.
400ResourceNotAvailableResource you requested is not available in this region or zone.You cannot create a vSwitch in the current region or zone.
400InvalidVpcName.MalformedSpecified VPC name is not valid.The format of the VPC name is invalid. Enter a valid VPC name and try again.
400InvalidVpcDiscription.MalformedSpecified VPC description is not valid.The format of the VPC description is invalid.
400QuotaExceeded.VpcVPC quota exceeded.The number of VPCs in this account has reached the upper limit.
400ResourceNotAvailable.VpcResource you requested is not available in this region or zone.The resource you requested is not available in this region or zone.
400InvalidParameterSpecified UserCidr invalid format.The format of the user CIDR block is invalid.
400InvalidParameterSpecified UserCidr Subnet mask is not valid .The subnet mask of the user CIDR block is invalid.
400InvalidUserCidr.QuotaSpecified UserCidr number is greater than 3.The number of user CIDR blocks that you specify has reached the upper limit.
400InvalidUserCidr.MalformedSpecified UserCidr overlapping in of 100.64.0.0/10.The user CIDR block that you specify overlaps with 100.64.0.0/10.
400InvalidResourceGroupIdThe specified ResourceGroupId does not exist.The specified resource group ID does not exist.
400IllegalParam.Ipv6CidrBlock%s-
400OperationFailed.IPv6CidrNotReserved%s-
400MissingParam.EnableIpv6%s-
400OperationUnsupported.Ipv6Feature%s-
400System.ServiceBusySystem is busy, please try later.-
400IllegalParam.UserCidrUserCidr is not a valid or strict address.-
400OperationUnsupported.ResourceGroupIdResourceGroup is not supported in this region.ResourceGroup is not supported in this region.
400IllegalParam.UserCidr%s-
400IllegalParam.EnableIpv6%s-
400InvalidIpv6CidrBlock.MalformedSpecified Ipv6CidrBlock is not valid.-
400UnsupportedFeature.Ipv6IspThe Ipv6Isp feature is not supported.The specified IPv6 ISP is not supported.
400ResourceNotEnough.Ipv6CidrThe specified resource of Ipv6Cidr is not enough.IPv6 addresses are insufficient.
400UnsupportedFeature.IPAMVPCs cannot be created by using IPAM.You cannot use IPAM to create a VPC.
400OperationUnsupported.Ipv6FeatureThe IPv6 feature is not supported in the region.This region does not support IPv6.
403ForbiddenUser not authorized to operate on the specified resource.You do not have the permissions to manage the specified resource. Apply for the permissions and try again.
404InvalidRegionId.NotFoundSpecified value of "regionId" is not supported.RegionId is set to an invalid value. Check whether the service is available in the specified region and try again.
500InternalErrorThe request processing has failed due to some unknown error.An unknown error occurred.

For a list of error codes, visit the Service error codes.

Change history

Change timeSummary of changesOperation
2023-09-21API Description Update. The Error code has changedsee changesets
Change itemChange content
API DescriptionAPI Description Update.
Error CodesThe Error code has changed.
    delete Error Codes: 400
    delete Error Codes: 403
    delete Error Codes: 404
    delete Error Codes: 500
2023-07-05The Error code has changed. The request parameters of the API has changedsee changesets
Change itemChange content
Error CodesThe Error code has changed.
    delete Error Codes: 400
    delete Error Codes: 403
    delete Error Codes: 404
    delete Error Codes: 500
Input ParametersThe request parameters of the API has changed.
    Added Input Parameters: Tag
2023-06-13The Error code has changedsee changesets
Change itemChange content
Error CodesThe Error code has changed.
    Error Codes 400 change
    delete Error Codes: 403
    delete Error Codes: 404
    delete Error Codes: 500
2023-04-26The Error code has changedsee changesets
Change itemChange content
Error CodesThe Error code has changed.
    Error Codes 403 change
    delete Error Codes: 400
    delete Error Codes: 404
    delete Error Codes: 500
2023-04-13The Error code has changed. The request parameters of the API has changedsee changesets
Change itemChange content
Error CodesThe Error code has changed.
    delete Error Codes: 400
    delete Error Codes: 403
    delete Error Codes: 404
    delete Error Codes: 500
Input ParametersThe request parameters of the API has changed.
    Added Input Parameters: Ipv4IpamPoolId