Amazon EFS Quotas and Limits - Amazon Elastic File System

Amazon EFS Quotas and Limits

Following, you can find out about quotas when working with Amazon EFS.

Amazon EFS Quotas That You Can Increase

Service Quotas is an AWS service that helps you manage your quotas, or limits, from one location. You can view all Amazon EFS limit values in the Service Quotas console. You can also request a quota increase for the number of EFS file systems in an AWS Region using the Service Quotas console.

You can also request an increase to the following Amazon EFS quotas by contacting AWS Support. To learn more, see Requesting a Quota Increase. The Amazon EFS service team reviews each request individually.

Resource Default Quota
Number of file systems for each customer account in an AWS Region 1,000

The default throughput quotas apply to both throughput modes, Bursting and Provisioned. For more information about these different modes, see Amazon EFS Performance.

Resource Default Quota
Total bursting throughput for all connected clients

US East (Ohio) Region – 3 GB/s

US East (N. Virginia) Region – 3 GB/s

US West (N. California) Region – 1 GB/s

US West (Oregon) Region – 3 GB/s

Asia Pacific (Hong Kong) Region – 1 GB/s

Asia Pacific (Mumbai) Region – 1 GB/s

Asia Pacific (Seoul) Region – 1 GB/s

Asia Pacific (Singapore) Region – 1 GB/s

Asia Pacific (Sydney) Region – 3 GB/s

Asia Pacific (Tokyo) Region – 1 GB/s

Canada (Central) Region – 1 GB/s

China (Beijing) Region – 1 GB/s

China (Ningxia) Region – 1 GB/s

Europe (Frankfurt) Region – 1 GB/s

Europe (Ireland) Region – 3 GB/s

Europe (London) Region – 1 GB/s

Europe (Paris) Region – 1 GB/s

Europe (Stockholm) Region – 1 GB/s

Middle East (Bahrain) Region – 1 GB/s

South America (São Paulo) Region – 1 GB/s

Total provisioned throughput for all connected clients

All AWS Regions – 1 GB/s

Requesting a Quota Increase

To request an increase for these quotas through AWS Support, take the following steps. The Amazon EFS team reviews each quota increase request.

To request a quota increase through AWS Support

  1. Open the AWS Support Center page, and sign in if necessary. Then choose Create Case.

  2. Under Create case, choose Service Limit Increase.

  3. For Limit Type, choose the type of limit to increase. Fill in the necessary fields in the form, and then choose your preferred method of contact.

Resource Quotas

Following are the quotas on Amazon EFS resources for each customer account in an AWS Region.

Resource Quota
Number of access points for each file system 120
Number of mount targets for each file system in an Availability Zone 1
Number of mount targets for each VPC 400
Number of security groups for each mount target 5
Number of tags for each file system 50
Number of VPCs for each file system 1
Note

Clients can also connect to mount targets in another account or VPC. For more information, see Mounting EFS File Systems from Another Account or VPC.

Quotas for NFS Clients

The following quotas for NFS clients apply, assuming a Linux NFSv4.1 client:

  • The maximum throughput you can drive for each NFS client is 250 MB/s. NFS client throughput is calculated as the total number of bytes that are sent and received, with a minimum NFS request size of 4KB.

  • Up to 128 active user accounts for each client can have files open at the same time. Each user account represents one local user logged in to the instance. A user account that is logged in multiple times counts as one active user.

  • Up to 32,768 files open at the same time on the instance. Listing directory contents doesn't count as opening a file.

  • Each unique mount on the client can acquire up to a total of 8,192 locks across a maximum of 256 unique file-process pairs. For example, a single process can acquire one or more locks on 256 separate files. As another example, eight processes can each acquire one or more locks on 32 files.

  • When connecting to Amazon EFS, NFS clients located on-premises or in another AWS Region can observe lower throughput than when connecting to EFS from the same AWS Region. This effect is because of increased network latency. Network latency of 1 ms or less is required to achieve maximum per-client throughput. Use the DataSync data migration service when migrating large datasets from on-premises servers to EFS.

  • Using Amazon EFS with Microsoft Windows isn't supported.

Quotas for Amazon EFS File Systems

The following quotas are specific to Amazon EFS file systems:

  • Maximum name length: 255 bytes.

  • Maximum symbolic link (symlink) length: 4,080 bytes.

  • Maximum number of hard links to a file: 177.

  • Maximum size of a single file: 52,673,613,135,872 bytes (47.9 TiB).

  • Maximum directory depth: 1,000 levels deep.

  • Any one particular file can have up to 512 locks across all instances connected and users accessing the file.

  • In General Purpose mode, there is a limit of 35,000 file operations per second. Operations that read data or metadata consume one file operation, operations that write data or update metadata consume five file operations. This means that a file system can support 35,000 read operations per second, or 7,000 write operations, or some combination of the two. For example, 20,000 read operations and 3,000 write operations (20,000 reads x 1 file operation per read + 3,000 writes x 5 file operations per write = 35,000 file operations). File operations are counted from all connecting clients.

Unsupported NFSv4 Features

Although Amazon Elastic File System doesn't support NFSv2, or NFSv3, Amazon EFS supports both NFSv4.1 and NFSv4.0, except for the following features:

  • pNFS

  • Client delegation or callbacks of any type

    • Operation OPEN always returns OPEN_DELEGATE_NONE as the delegation type.

    • The operation OPEN returns NFSERR_NOTSUPP for the CLAIM_DELEGATE_CUR and CLAIM_DELEGATE_PREV claim types.

  • Mandatory locking

    All locks in Amazon EFS are advisory, which means that READ and WRITE operations don't check for conflicting locks before the operation is executed.

  • Deny share

    NFS supports the concept of a share deny. A share deny is primarily used by Windows clients for users to deny others access to a particular file that has been opened. Amazon EFS doesn't support this, and returns the NFS error NFS4ERR_NOTSUPP for any OPEN commands specifying a share deny value other than OPEN4_SHARE_DENY_NONE. Linux NFS clients don't use anything other than OPEN4_SHARE_DENY_NONE.

  • Access control lists (ACLs)

  • Amazon EFS doesn't update the time_access attribute on file reads. Amazon EFS updates time_access in the following events:

    • When a file is created (an inode is created).

    • When an NFS client makes an explicit setattr call.

    • On a write to the inode caused by, for example, file size changes or file metadata changes.

    • Any inode attribute is updated.

  • Namespaces

  • Persistent reply cache

  • Kerberos based security

  • NFSv4.1 data retention

  • SetUID on directories

  • Unsupported file types when using the CREATE operation: Block devices (NF4BLK), character devices (NF4CHR), attribute directory (NF4ATTRDIR), and named attribute (NF4NAMEDATTR).

  • Unsupported attributes: FATTR4_ARCHIVE, FATTR4_FILES_AVAIL, FATTR4_FILES_FREE, FATTR4_FILES_TOTAL, FATTR4_FS_LOCATIONS, FATTR4_MIMETYPE, FATTR4_QUOTA_AVAIL_HARD, FATTR4_QUOTA_AVAIL_SOFT, FATTR4_QUOTA_USED, FATTR4_TIME_BACKUP, and FATTR4_ACL.

    An attempt to set these attributes results in an NFS4ERR_ATTRNOTSUPP error that is sent back to the client.

Additional Considerations

In addition, note the following:

  • For a list of AWS Regions where you can create Amazon EFS file systems, see the AWS General Reference.

  • You mount your file system from EC2 instances in your VPC by using the mount targets you create in the VPC. You can also mount your file system on your EC2-Classic instances, which are not in the VPC. However, you must first link them to your VPC by using ClassicLink. For more information about using ClassicLink, see ClassicLink in the Amazon EC2 User Guide for Linux Instances.

  • You can mount an Amazon EFS file system from on-premises data center servers using AWS Direct Connect and VPN.