You can bring part or all of your public IPv4 address range or IPv6 address range from your on-premises network to your AWS account. You continue to own the address range, but AWS advertises it on the internet by default. After you bring the address range to AWS, it appears in your account as an address pool.
Requirements
- The address range must be registered with your Regional internet registry (RIR), such as the American Registry for Internet Numbers (ARIN), Réseaux IP Européens Network Coordination Centre (RIPE), or Asia-Pacific Network Information Centre (APNIC). It must be registered to a business or institutional entity and cannot be registered to an individual person.
- The most specific IPv4 address range that you can bring is /24.
- The most specific IPv6 address range that you can bring is /48 for CIDRs that are publicly advertised, and /56 for CIDRs that are not publicly advertised.
- You can bring each address range to one Region at a time.
- You can bring a total of five IPv4 and IPv6 address ranges per Region to your AWS account.
- The addresses in the IP address range must have a clean history. We might investigate the reputation of the IP address range and reserve the right to reject an IP address range if it contains an IP address that has a poor reputation or is associated with malicious behavior.
- You must own the IP address that you use. This means that only the following are supported:
- ARIN – “Direct Allocation” and “Direct Assignment” network types
- RIPE – “ALLOCATED PA”, “LEGACY”, “ASSIGNED PI”, and “ALLOCATED-BY-RIR” allocation statuses
- APNIC – “ALLOCATED PORTABLE” and “ASSIGNED PORTABLE” allocation statuses