Determine if the number of EC2-Classic Elastic IPs (EIPs) allocated per AWS cloud region is close to the limit number established by AWS for accounts that support the EC2-Classic platform and request a limit increase in order to avoid reaching IP resource limitations for Amazon EC2 instances. Because the IPv4 public IP addresses are a scarce resource nowadays, by default, all AWS cloud accounts are limited to 5 (five) Elastic IP addresses per region.
This rule can help you with the following compliance standards:
- APRA
- MAS
For further details on compliance standards supported by Conformity, see here.
This rule can help you work with the AWS Well-Architected Framework.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
efficiency
Monitoring your EC2-Classic Elastic IP limits will help you avoid public IP resource starvation in case you need to expand rapidly your Amazon EC2-Classic infrastructure.
Audit
For AWS cloud accounts that support the EC2-Classic platform, Amazon sets automatically a fixed limit of 5 for the number of Elastic IPs available per region. To determine if your AWS cloud account has reached the default EIP limit, perform the following operations:
Remediation / Resolution
To request an increase for the EC2-Classic Elastic IP address limit, perform the following operations:
Note: Creating a support case to request a service limit increase using the AWS Command Line Interface (AWS CLI) is not currently supported.References
- AWS Documentation
- Amazon EC2 FAQs
- Elastic IP Addresses
- AWS Service Limits
- Amazon VPC Limits
- AWS Command Line Interface (CLI) Documentation
- ec2
- describe-account-attributes
- describe-addresses