Document history
The following table describes the important changes in each release of the Amazon VPC User Guide.
Change | Description | Date |
---|---|---|
Amazon VPC updated the AmazonVPCFullAccess and AmazonVPCReadOnlyAccess managed policies. | December 9, 2024 | |
If you are using AWS Organizations to manage accounts in your organization, you can use a declarative policy to enforce VPC BPA on the accounts in the organization. | December 1, 2024 | |
VPC Block public Access (BPA) enables you to block resources in VPCs and subnets that you own in a Region from reaching or being reached from the internet through internet gateways and egress-only internet gateways. | November 19, 2024 | |
This feature enables you to share a security group with other AWS Organizations accounts. | October 30, 2024 | |
This feature enables you to associate a security group with multiple VPCs in the same Region. | October 30, 2024 | |
NAT gateways support traffic with a maximum transmission unit (MTU) of 8500. | September 10, 2024 | |
Information about private IPv6 addressing was added. Private IPv6 addresses are only available in Amazon VPC IP Address Manager. | August 8, 2024 | |
You can now choose how frequently a running instance with an IPv6 assigned to it goes through DHCPv6 lease renewal. | February 20, 2024 | |
Guide structure review and improvements | The structure of the guide was reviewed and improvements were made to improve the customer experience related to finding info for specific scenarios. | February 20, 2024 |
Amazon VPC updated the AmazonVPCFullAccess and AmazonVPCReadOnlyAccess managed policies. | February 8, 2024 | |
Amazon VPC updated the AmazonVPCCrossAccountNetworkInterfaceOperations managed policy. | September 25, 2023 | |
EC2-Classic is deprecated | With EC2-Classic, EC2 instances ran in a single, flat network shared with other customers. Amazon VPC replaces EC2-Classic. With Amazon VPC, your instances run in a virtual private cloud (VPC) that's logically isolated to your AWS account. | July 31, 2023 |
You can add secondary private IPv4 addresses to public and private NAT gateways. Secondary IPv4 addresses increase the number of available ports, and therefore they increase the limit on the number of concurrent connections that your workloads can establish using a NAT gateway. | January 31, 2023 | |
Aligning with IAM best practices | Updated guide to align with the IAM best practices. For more information, see Security best practices in IAM. | January 4, 2023 |
When you create a NAT gateway, you can now choose to pick the private IP address that's assigned to the NAT gateway. Previously, the private IP address was automatically assigned from the IP address range of the subnet. | November 17, 2022 | |
Three IPv6 addresses are now reserved for use by the default VPC router. | November 11, 2022 | |
You can now transfer Elastic IP addresses from one AWS account to another. | October 31, 2022 | |
You can enable Network Address Usage metrics for your VPC to help you plan for and monitor the size of your VPC. | October 4, 2022 | |
You can specify a Amazon Data Firehose delivery stream as a destination for flow log data. | September 8, 2022 | |
NAT gateways now support bandwidth up to 100 Gbps (an increase from 45 Gbps) and can process up to ten million packets per second (up from four million packets). | June 15, 2022 | |
Multiple IPv6 CIDR blocks | You can associate up to five IPv6 CIDR blocks to a VPC. | May 12, 2022 |
Reorganization | General reorganization of this Amazon Virtual Private Cloud User Guide. | January 2, 2022 |
NAT gateway supports network address translation from IPv6 to IPv4, popularly known as NAT64. | November 24, 2021 | |
You can create IPv6-only subnets into which you can launch IPv6-only EC2 instances. | November 23, 2021 | |
You can specify the Apache Parquet log file format, hourly partitions, and Hive-compatible S3 prefixes. | October 13, 2021 | |
Amazon EC2 Global View enables you to view VPCs, subnets, instances, security groups, and volumes across multiple AWS Regions in a single console. | September 1, 2021 | |
More specific routes | You can add a route to your route tables that is more specific than the local route. You can use more specific routes to redirect traffic between subnets within a VPC (East-West traffic) to a middlebox appliance. You can set the destination of a route to match an entire IPv4 or IPv6 CIDR block of a subnet in your VPC. | August 30, 2021 |
Resource IDs and tagging support for security group rules | You can refer to security group rules by resource ID. You can also add tags to your security group rules. | July 7, 2021 |
You can use a private NAT gateway for outbound-only private communication between VPCs or between a VPC and your on-premises network. | June 10, 2021 | |
Tag on create | You can add tags when you create a VPC, DHCP options, internet gateway, egress-only gateway, network ACL, and security group. | June 30, 2020 |
You can create and manage a set of CIDR blocks in prefix list. | June 29, 2020 | |
New flow log fields are available, and you can specify a custom format for flow logs that publish to CloudWatch Logs. | May 4, 2020 | |
You can add tags to your flow logs. | March 16, 2020 | |
You can add a tag when you create a NAT gateway. | March 9, 2020 | |
You can specify the maximum period of time during which a flow is captured and aggregated into a flow log record. | February 4, 2020 | |
Network border group configuration | You can configure network border groups for your VPCs from the Amazon Virtual Private Cloud Console. | January 22, 2020 |
You can associate a route table with a gateway and route inbound VPC traffic to a specific network interface in your VPC. | December 3, 2019 | |
You can specify a custom format for your flow log and choose which fields to return in the flow log records. | September 11, 2019 | |
You can share subnets that are in the same VPC with multiple accounts in the same AWS organization. | November 27, 2018 | |
You can create a default subnet in an Availability Zone that does not have one. | November 9, 2017 | |
You can tag your NAT gateway. | September 7, 2017 | |
You can view CloudWatch metrics for your NAT gateway. | September 7, 2017 | |
You can add descriptions to your security group rules. | August 31, 2017 | |
Secondary IPv4 CIDR blocks for your VPC | You can add multiple IPv4 CIDR blocks to your VPC. | August 29, 2017 |
If you release an Elastic IP address, you might be able to recover it. | August 11, 2017 | |
You can create a new default VPC if you delete your existing default VPC. | July 27, 2017 | |
You can associate an IPv6 CIDR block with your VPC and assign IPv6 addresses to resources in your VPC. | December 1, 2016 | |
DNS resolution support for non-RFC 1918 IP address ranges | The Amazon DNS server can now resolve private DNS hostnames to private IP addresses for all address spaces. | October 24, 2016 |
You can create a NAT gateway in a public subnet and enable instances in a private subnet to initiate outbound traffic to the internet or other AWS services. | December 17, 2015 | |
You can create a flow log to capture information about the IP traffic going to and from network interfaces in your VPC. | June 10, 2015 | |
ClassicLink | You can use ClassicLink to link your EC2-Classic instance to a VPC in your account. You can associate VPC security groups with the EC2-Classic instance, enabling communication between your EC2-Classic instance and instances in your VPC using private IP addresses. | January 7, 2015 |
You can access resources in your VPC using custom DNS domain names that you define in a private hosted zone in RouteĀ 53. | November 5, 2014 | |
You can modify the public IP addressing attribute of your subnet to indicate whether instances launched into that subnet should receive a public IP address. | June 21, 2014 | |
You can assign a public IP address to an instance during launch. | August 20, 2013 | |
You can modify VPC defaults and disable DNS resolution and enable DNS hostnames. | March 11, 2013 | |
VPC Everywhere | Added support for VPC in five AWS Regions, VPCs in multiple Availability Zones, multiple VPCs per AWS account,and multiple VPN connections per VPC. | August 3, 2011 |
Dedicated Instances | Dedicated Instances are Amazon EC2 instances launched within your VPC that run hardware dedicated to a single customer. | March 27, 2011 |