Menu
Amazon CloudFront
Developer Guide (API Version 2016-09-29)

Limits

CloudFront is subject to the following limits. Note that Lambda@Edge has specific limits as well, that are in addition to the default CloudFront limits.

General Limits

Entity Limit

Data transfer rate per distribution

40 Gbps

Request a higher limit

Requests per second per distribution

100,000

Request a higher limit

Tags that can be added to a CloudFront web or RTMP distribution

50

Objects that you can serve per distribution

Unlimited

Maximum length of a request, including headers and query strings

20,480 bytes

Maximum length of a URL

8,192 bytes

Active CloudFront key pairs for trusted signers

For more information, see Specifying the AWS Accounts That Can Create Signed URLs and Signed Cookies (Trusted Signers).

2

General Limits on Web Distributions

Entity Limit

Web distributions per AWS account

For more information, see Creating a Distribution.

200

Request a higher limit

Maximum file size for HTTP GET, POST, and PUT requests

20 GB

Response timeout per origin

For more information, see Origin Response Timeout (Amazon EC2, Elastic Load Balancing, and Other Custom Origins Only).

4-60 seconds

Request a higher limit

File compression: range of file sizes that CloudFront compresses

For more information, see Serving Compressed Files.

1,000 to 10,000,000 bytes

Alternate domain names (CNAMEs) per distribution

For more information, see Using Custom URLs for Files by Adding Alternate Domain Names (CNAMEs).

100

Request a higher limit

Origins per distribution

25

Request a higher limit

Cache behaviors per distribution

25

Request a higher limit

Limits on Whitelisted Cookies (Web Distributions Only)

Entity Limit

Whitelisted cookies per cache behavior

For more information, see Caching Content Based on Cookies.

10

Request a higher limit

Total number of bytes in whitelisted cookie names (doesn't apply if you configure CloudFront to forward all cookies to the origin)

512 minus the number of whitelisted cookies

Limits on Whitelisted Query Strings (Web Distributions Only)

Entity Limit

Maximum number of characters in a whitelisted query string

128 characters

Maximum number of characters total for all whitelisted query strings in the same parameter

512 characters

Whitelisted query strings per cache behavior

For more information, see Caching Content Based on Query String Parameters.

10

Request a higher limit

Limits on Custom Headers (Web Distributions Only)

Entity Limit

Whitelisted headers per cache behavior

For more information, see Caching Content Based on Request Headers.

10

Request a higher limit

Custom headers: maximum number of custom headers that you can configure CloudFront to forward to the origin

For more information, see Forwarding Custom Headers to Your Origin (Web Distributions Only).

10 name/value pairs

Request a higher limit

Custom headers: maximum length of a header name

256 characters

Custom headers: maximum length of a header value

1,783 characters

Custom headers: maximum length of all header values and names combined

10,240 characters

Limits on SSL Certificates (Web Distributions Only)

Entity Limit

SSL certificates per AWS account when serving HTTPS requests using dedicated IP addresses (no limit when serving HTTPS requests using SNI)

For more information, see Using HTTPS with CloudFront.

2

Request a higher limit

SSL certificates that can be associated with a CloudFront web distribution

1

Limits on Invalidations

Entity Limit

Object invalidation: maximum number of objects allowed in active invalidation requests, excluding wildcard invalidations

For more information, see Invalidating Files.

3,000

Object invalidation: maximum number of active wildcard invalidations allowed

15

Object invalidation: maximum number of objects that one wildcard invalidation can process

Unlimited

Limits on Field-Level Encryption

Entity Limit

Maximum length of a field to encrypt

For more information, see Using Field-Level Encryption to Help Protect Sensitive Data.

16 KB

Maximum number of fields in a request body when field-level encryption is configured

10

Maximum length of a request body when field-level encryption is configured

1 MB

Maximum number of field-level encryption configurations that can be associated with one AWS account

10

Maximum number of field-level encryption profiles that can be associated with one AWS account

10

Maximum number of public keys that can be added to one AWS account

10

Maximum number of fields to encrypt that can be specified in one profile

10

Maximum number of CloudFront distributions that can be associated with a field-level encryption configuration

20

Maximum number of query argument profile mappings that can be included in a field-level encryption configuration

5

Limits on Lambda@Edge

The limits in this section apply to Lambda@Edge. These limits are in addition to the default CloudFront and Lambda limits, which also apply. See the default Lambda limits in the Limits section of the AWS Lambda Developer Guide.

Note

Lambda dynamically scales capacity in response to increased traffic, within your account’s limits. For more information, see the Scaling section of the AWS Lambda Developer Guide.

In addition, be aware that there are some other restrictions when using Lambda@Edge functions. For more information, see Requirements and Restrictions on Lambda Functions.

Limits that differ by event-type

Entity

Origin request and response event limits

Viewer request and response event limits

Function resource allocation

Same as Lambda limits

128 MB

Function timeout. The function can make network calls to resources such as Amazon S3 buckets, DynamoDB tables, or Amazon EC2 instances in AWS Regions.

30 seconds

5 seconds

Size of a response that is generated by a Lambda function, including headers and body

1 MB

40 KB

Maximum compressed size of a Lambda function and any included libraries

50 MB

1 MB

Other limits

Entity

Limit

Distributions per AWS account that you can create triggers for

25

Request a higher limit

Triggers per distribution

25

Request a higher limit

Requests per second

10,000 (in each region)

Request a higher limit

Concurrent executions

For more information, see Lambda Function Concurrent Executions in the AWS Lambda Developer Guide.

1000 (in each region)

Request a higher limit

Request Timeout

Entity Limit

Request timeout

30 seconds

Request a higher limit

Limits on RTMP Distributions

Entity Limit

RTMP distributions per AWS account

For more information, see Working with RTMP Distributions.

100

Request a higher limit