Menu
Amazon Web Services
General Reference (Version 1.0)

AWS Service Limits

The following tables provide the default limits for AWS services for an AWS account. Unless otherwise noted, each limit is region specific. Many services contain limits that cannot be changed. For more information about the limits for a specific service, see the documentation for that service.

If your support plan includes Trusted Advisor, you can use it to display your usage and limits for each service in a specific region. For more information, see Trusted Advisor.

You can take the following steps to request an increase for limits. These increases are not granted immediately, so it may take a couple of days for your increase to become effective.

To request a limit increase

  1. Open the AWS Support Center page, sign in, if necessary, and then choose Create Case.

  2. Under Regarding, choose Service Limit Increase.

  3. Under Limit Type, choose the type of limit to increase, fill in the necessary fields in the form, and then choose your preferred method of contact.

Amazon API Gateway Limits

ResourceDefault Limit
APIs per account60
API keys per account10,000
Client certificates per account60
Resources per API300
Stages per API10
Timeout for both AWS Lambda and HTTP integrations;

this limit cannot be increased currently

10
Sustained API requests per account500
Throttled API requests per account1000
Payload size; this limit cannot be increased currently10 MB

For information about additional documented limits, see Limits in Amazon API Gateway in the API Gateway Developer Guide.

Amazon AppStream Limits

An Amazon AppStream account has a service limit of up to five concurrent streaming sessions:

  • Up to two concurrent streaming application deployments using the interactive wizard.

  • Up to three streaming applications in the Building, Active, or Error states.

For more information, see Amazon AppStream Application Lifecycle in the Amazon AppStream Developer Guide.

Auto Scaling Limits

ResourceDefault Limit
Launch configurations100
Auto Scaling groups20
Lifecycle hooks per Auto Scaling group50
Load balancers per Auto Scaling group50
Step adjustments per scaling policy20

For information about additional documented limits, see Auto Scaling Limits in the Auto Scaling Developer Guide.

AWS Certificate Manager Limits

ObjectLimit
Certificates (in Pending and Issued states)20
Names per Certificate10
Certificates issued per year20

For information about additional documented limits, see Limits in the AWS Certificate Manager User Guide.

AWS CloudFormation Limits

ResourceDefault Limit
Stacks200

For information about additional documented limits, see AWS CloudFormation Limits in the AWS CloudFormation User Guide.

Amazon CloudFront Limits

ResourceDefault Limit
Data transfer rate per distribution10 Gbps
Requests per second per distribution15,000
Web distributions per account200
RTMP distributions per account100
Alternate domain names (CNAMEs) per distribution100
Origins per distribution25
Cache behaviors per distribution25
Whitelisted headers per cache behavior10
Whitelisted cookies per cache behavior10
SSL certificates per account when serving HTTPS requests using dedicated IP addresses (no limit when serving HTTPS requests using SNI)2
Custom headers that you can have Amazon CloudFront forward to the origin10 name/value pairs

For information about additional documented limits, see Limits in the Amazon CloudFront Developer Guide.

AWS CloudHSM Limits

ResourceDefault Limit
HSM appliances3
High-availability partition groups20
Clients800

Amazon CloudSearch Limits

ResourceDefault Limit
Partitions10
Search instances50

For information about additional documented limits, see Understanding Amazon CloudSearch Limits in the Amazon CloudSearch Developer Guide.

AWS CodeCommit Limits

ResourceDefault Limit
Number of repositories1,000 per AWS account

For information about additional documented limits, see Limits in AWS CodeCommit in the AWS CodeCommit User Guide.

AWS CodeDeploy Limits

ResourceDefault Limit
Number of applications under an account in a single region40
Number of concurrent deployments under an account10
Number of hours until a deployment fails if not completed8
Number of hours until an individual deployment lifecycle event fails if not completed1
Number of deployment groups associated with a single application10
Number of instances in a single deployment50

For information about additional documented limits, see Limits in AWS CodeDeploy in the AWS CodeDeploy User Guide.

AWS CodePipeline Limits

ResourceDefault Limit

Number of pipelines

20

Number of stages

Minimum of 2, maxi­mum of 10

Number of actions

Minimum of 1, maxi­mum of 20

Maximum number of revisions running across all pipelines

20

Maximum size of source artifacts

500 megabytes (MB)

Maximum number of times an action can be run per month

1,000 per calendar month

For information about additional documented limits, see Limits in AWS CodePipeline in the AWS CodePipeline User Guide.

AWS Device Farm Limits

ResourceDefault LimitComments

Maximum app file size you can upload

4 GB

Maximum number of devices Device Farm can test during a run

5

This limit can be increased to 100 upon request.

Limit on the number of devices you can include in a test run

None

Limit on the number of runs you can schedule

None

AWS Directory Service Limits

ResourceDefault Limit
Simple AD directories10
AD Connector directories10
Manual snapshots5 per Simple AD

Amazon DynamoDB Limits

ResourceDefault Limit
Read capacity units (individual table)10,000
Write capacity units (individual table)10,000
Read capacity units (account)20,000
Write capacity units (account)20,000
Maximum number of tables 256

For information about additional documented limits, see Limits in Amazon DynamoDB in the Amazon DynamoDB Developer Guide.

Amazon EC2 Container Registry (Amazon ECR) Limits

ResourceDefault Limit
Maximum number of repositories per account1,000
Maximum number of images per repository500

Amazon EC2 Container Service (Amazon ECS) Limits

ResourceDefault Limit
Number of clusters per region, per account1000
Number of container instances per cluster1000
Number of load balancers per service1
Number of tasks per service1000
Number of tasks launched (count) per run-task10
Number of container instances per start-task10
Throttle on number of container instances per second per run-task5 per cluster
Throttle on container instance registration rate1 per second / 60 max per minute
Task definition size limit32 KiB
Task definition max containers10
Throttle on task definition registration rate1 per second / 60 max per minute

AWS Elastic Beanstalk Limits

ResourceDefault Limit
Applications25
Versions500
Environments200

Amazon Elastic Block Store (Amazon EBS) Limits

ResourceDefault Limit
Number of EBS volumes5,000
Number of EBS snapshots10,000
Total volume storage of General Purpose (SSD) volumes20 TiB
Total volume storage of Provisioned IOPS (SSD) volumes20 TiB
Total volume storage of Magnetic volumes20 TiB
Total provisioned IOPS40,000

For information about additional documented limits, see Amazon EC2 Service Limits in the Amazon EC2 User Guide for Linux Instances.

Amazon Elastic Compute Cloud (Amazon EC2) Limits

ResourceDefault Limit
Elastic IP addresses for EC2-Classic5
Security groups for EC2-Classic per instance500
Rules per security group for EC2-Classic100
Throttle on the emails that can be sent from your Amazon EC2 accountThrottle applied
On-demand instancesLimits vary depending on instance type. For more information, see How many instances can I run in Amazon EC2.
Spot InstancesLimits vary depending on instance type, region, and account. For more information, see Spot Instance Limits.
Reserved Instances20 instance reservations per Availability Zone, per month
AMI CopiesDestination regions are limited to 50 concurrent AMI copies at a time, with no more than 25 of those coming from a single source region.

For information about related limits for EC2-VPC, see Amazon Virtual Private Cloud (Amazon VPC) Limits.

For information about viewing your current limits, see Amazon EC2 Service Limits in the Amazon EC2 User Guide for Linux Instances.

Amazon EC2 Simple Systems Manager Limits

ResourceDefault Limit
Number of documents per account200
Number of associations per account10,000

Amazon ElastiCache Limits

ResourceDefault Limit
Nodes per region50
Nodes per cluster (Memcached)

Nodes per cluster (Redis)

20

1

Read replicas per replication group (Redis)

Clusters per replication group (Redis)

5

6

Parameter Groups per region20
Security Groups per region50
Subnet Groups per region50
Subnets per Subnet Group20

These limits are global limits per customer account. If you need to exceed these limits, make your request using the Amazon ElastiCache Cache Node request form.

Elastic Load Balancing Limits

ResourceDefault LimitComments
Load balancers per region20

This limit can be increased upon request.

Listeners per load balancer100

This limit cannot be increased.

For information about additional documented limits, see Elastic Load Balancing Limits in the Elastic Load Balancing Developer Guide.

Amazon Elastic Transcoder Limits

ResourceDefault Limit
Pipelines per region4
User-defined presets50
Maximum number of jobs processed simultaneously by each pipeline

US East (N. Virginia) region – 20

US West (N. California) region – 12

US West (Oregon) region – 20

EU (Ireland) region – 20

Asia Pacific (Singapore) region – 12

Asia Pacific (Tokyo) region – 12

For information about additional documented limits, see Amazon Elastic Transcoder limits in the Amazon Elastic Transcoder Developer Guide.

Amazon Elasticsearch Service Limits

ResourceDefault Limit
Maximum number of Elasticsearch instances per cluster10


AWS Identity and Access Management (IAM) Limits

For information about AWS Identity and Access Management (IAM) limits, see Limitations on IAM Entities in the IAM User Guide.

AWS Key Management Service (AWS KMS) Limits

ResourceDefault Limit
Keys100
Aliases200
Grants per key250
Grants for a given principal per key30
Requests per secondVaries by API operation; see Limits in the AWS Key Management Service Developer Guide.

All limits in the preceding table apply per region and per AWS account.

For information about additional documented limits, see AWS KMS Limits in the AWS Key Management Service Developer Guide.

Amazon Kinesis Streams Limits

ResourceDefault Limit
Shards per account

US East (N. Virginia) region – 50

US West (Oregon) region – 50

EU (Ireland) region – 50

All other regions – 25

For information about additional documented limits, see Amazon Kinesis Streams Limits in the Amazon Kinesis Streams Developer Guide.

AWS Lambda Limits

ResourceLimit
Concurrent requests safety throttle per account100

For information about additional documented limits, see AWS Lambda Limits in the AWS Lambda Developer Guide.

Amazon Machine Learning (Amazon ML) Limits

ResourceDefault Limit
Data file size*100 GB
Batch prediction input size1 TB
Batch prediction input (number of records)100 million
Number of variables in a data file (schema)1,000
Recipe complexity (number of processed output variables)10,000
Transactions Per Second for each real-time prediction endpoint200
Total Transactions Per Second for all real-time prediction endpoints10,000
Total RAM for all real-time prediction endpoints10 GB
Number of simultaneous jobs5
Longest run time for any job7 days
Number of classes for multiclass ML models100
ML model size2 GB

Note

The size of your data files is limited to ensure that jobs finish in a timely manner. Jobs that have been running for more than seven days will be automatically terminated, resulting in a FAILED status.

For information about additional documented limits, see Amazon ML Limits in the Amazon Machine Learning Developer Guide.

AWS OpsWorks Limits

ResourceDefault Limit
Stacks40
Layers per stack40
Instances per stack40
Apps per stack40

Amazon Redshift Limits

ResourceDefault Limit
Nodes per cluster101
Nodes200
Reserved Nodes200
Snapshots20
Parameter Groups20
Security Groups20
Subnet Groups20
Subnets per Subnet Group20
Event Subscriptions20

For information about additional documented limits, see Limits in Amazon Redshift in the Amazon Redshift Cluster Management Guide.

Amazon Relational Database Service (Amazon RDS) Limits

ResourceDefault Limit
Instances40
Reserved Instances40
Total storage for all DB instances100 TB
Manual Snapshots50
Parameter Groups50
Security Groups25
VPC Security Groups5
Subnet Groups20
Subnets per Subnet Group20
Option Groups20
Event Subscriptions20
Read Replicas per Master5

Amazon Route 53 Limits

ResourceDefault Limit
Hosted zones500
Domains5
Resource record sets per hosted zone10,000
Reusable delegation sets100
Hosted zones that can use the same reusable delegation set100
Amazon VPCs that you can associate with a private hosted zone100
Health checks50
Traffic policies50
Policy records5

For information about additional documented limits, see Amazon Route 53 Limits in the Amazon Route 53 Developer Guide.

AWS Service Catalog Limits

ResourceDefault Limit
Portfolios25
Users, groups, and roles25 per portfolio
Products25 per portfolio, 25 total
Product versions10 per product
Constraints25 per product per portfolio
Tags3 per product, 3 per portfolio, 10 per stack
Stacks200 (AWS CloudFormation limit)

Amazon Simple Email Service (Amazon SES) Limits

The following are the default limits for Amazon SES in the sandbox environment.

ResourceDefault Limit
Daily sending quota200 messages per 24 hour period.
Maximum send rate1 email per second.

Note

The rate at which Amazon SES accepts your messages might be less than the maximum send rate.

Recipient address verificationAll recipient addresses must be verified.

For information about additional documented limits, see Limits in Amazon SES in the Amazon Simple Email Service Developer Guide.

Amazon Simple Notification Service (Amazon SNS) Limits

ResourceDefault Limit
Topics per AWS account100,000

Amazon Simple Storage Service (Amazon S3) Limits

ResourceDefault Limit
Buckets100 per account

For information about additional documented limits, see Amazon S3 limits in the Amazon Simple Storage Service Developer Guide.

Amazon Simple Workflow Service (Amazon SWF) Limits

For information about additional documented limits, see Amazon SWF Service Limits in the Amazon Simple Workflow Service Developer Guide.

Amazon SimpleDB Limits

ResourceDefault Limit
Domains250

For information about additional documented limits, see Amazon SimpleDB Limits in the Amazon SimpleDB Developer Guide.

Amazon Virtual Private Cloud (Amazon VPC) Limits

ResourceDefault limitComments

VPCs per region

5

The limit for Internet gateways per region is directly correlated to this one. Increasing this limit will increase the limit on Internet gateways per region by the same amount. If you need to increase this limit, submit a request.

Subnets per VPC

200

If you need to increase this limit, submit a request.

Internet gateways per region

5

This limit is directly correlated with the limit on VPCs per region. You cannot increase this limit individually; the only way to increase this limit is to increase the limit on VPCs per region. Only one Internet gateway can be attached to a VPC at a time.

Virtual private gateways per region

5

If you need to increase this limit, contact AWS Support; however, only one virtual private gateway can be attached to a VPC at a time.

Customer gateways per region

50

If you need to increase this limit, contact AWS Support.

VPN connections per region

50

If you need to increase this limit, submit a request.

VPN connections per VPC (per virtual private gateway)

10

If you need to increase this limit, submit a request.

Route tables per VPC

200

Including the main route table. You can associate one route table to one or more subnets in a VPC.

Routes per route table (non-propagated routes)

50

This is the limit for the number of non-propagated entries per route table. You can submit a request for an increase of up to a maximum of 100; however, network performance may be impacted.

BGP advertised routes per route table (propagated routes)

100

You can have up to 100 propagated routes per route table; however, the total number of propagated and non-propagated entries per route table cannot exceed 100. For example, if you have 50 non-propagated entries (the default limit for this type of entry), you can only have 50 propagated entries. This limit cannot be increased. If you require more than 100 prefixes, advertise a default route.

Elastic IP addresses per region for each AWS account

5

This is the limit for the number of VPC Elastic IP addresses you can allocate within a region. This is a separate limit from the Amazon EC2 Elastic IP address limit. If you need to increase this limit, submit a request.

Security groups per VPC

500

If you need to increase this limit, you can submit a request.

Inbound or outbound rules per security group

50

You can have 50 inbound and 50 outbound rules per security group (giving a total of 100 combined inbound and outbound rules). If you need to increase or decrease this limit, you can contact AWS Support — a limit change applies to both inbound and outbound rules. However, the multiple of the limit for rules per security group and the limit for security groups per network interface cannot exceed 250. For example, if you want 100 rules per security group, we decrease your number of security groups per network interface to 2.

Security groups per network interface

5

If you need to increase or decrease this limit, you can contact AWS Support. The maximum is 16. The multiple of the limit for security groups per network interface and the limit for rules per security group cannot exceed 250. For example, if you want 10 security groups per network interface, we decrease your number of rules per security group to 25.

Network interfaces per instance

-

This limit varies by instance type. For more information, see Private IP Addresses Per ENI Per Instance Type.

Network interfaces per VPC

100

This limit is calculated by multiplying your On-Demand instance limit by 5. The default limit for On-Demand instances is 20. You can increase the number of network interfaces per VPC by contacting AWS Support, or by increasing your On-Demand instance limit.

Network ACLs per VPC

200

You can associate one network ACL to one or more subnets in a VPC. This limit is not the same as the number of rules per network ACL.

Rules per network ACL

20

This is the one-way limit for a single network ACL, where the limit for ingress rules is 20, and the limit for egress rules is 20. This limit can be increased upon request up to a maximum if 40; however, network performance may be impacted due to the increased workload to process the additional rules.

Active VPC peering connections per VPC

50

If you need to increase this limit, contact AWS Support . The maximum limit is 125 peering connections per VPC. The number of entries per route table should be increased accordingly; however, network performance may be impacted.

Outstanding VPC peering connection requests

25

This is the limit for the number of outstanding VPC peering connection requests that you've requested from your account. If you need to increase this limit, contact AWS Support.

Expiry time for an unaccepted VPC peering connection request

1 week (168 hours)

If you need to increase this limit, contact AWS Support.

VPC endpoints per region

20

If you need to increase this limit, contact AWS Support; up to a maximum of 255 endpoints per VPC.

Flow logs per single network interface, single subnet, or single VPC in a region

2You can effectively have 6 flow logs per network interface if you create 2 flow logs for the subnet, and 2 flow logs for the VPC in which your network interface resides. This limit cannot be increased.
NAT gateways per Availability Zone5If you need to increase this limit, submit a request. A NAT gateway in the pending, active, or deleting state counts against your limit.

For information about additional documented limits, see Amazon VPC Limits in the Amazon VPC User Guide.

AWS WAF Limits

ResourceDefault Limit
Web ACLs per account10
Rules per account50
Conditions per account50

For information about additional documented limits, see AWS WAF Limits in the AWS WAF Developer Guide.

Amazon WorkSpaces Limits

ResourceDefault LimitComments
WorkSpaces 5To prevent denial of service attacks, accounts new to the Amazon WorkSpaces service are limited to five WorkSpaces.

For information about additional documented limits, see Amazon WorkSpaces Limits in the Amazon WorkSpaces Administration Guide.