All Products
Search
Document Center

Container Compute Service:Limits and quotas

Last Updated:Dec 25, 2024

This topic describes the quotas and limits on using Container Compute Service (ACS), including cluster configuration limits, cluster capacity limits, and concurrency. This topic also describes how to apply for quota increases.

Overview

Before you use Container Compute Service (ACS), take note of the following limits:

  • After you create an ACS cluster, you cannot perform the following operations on the cluster:

    • Change the virtual private cloud (VPC) where the cluster resides.

    • Change the network plug-in of the cluster.

    • Change the volume plug-in of the cluster.

    • Migrate applications across namespaces.

  • Limits on access to control plane components:

    Bandwidth limits apply when you access the control plane components of a cluster, including kube-apiserver and etcd, by calling API operations or by using the CLI. If you read a large number of cluster events at a time, bandwidth throttling may be triggered and you may fail to read the events. We recommend that you query cluster events by using the Kubernetes event center. To use the Kubernetes event center, go to the ACS console and choose Operations > Event Center. Alternatively, you can add paging parameters, such as --chunk-size=500, to the API request or command lines to reduce the number of events to be read.

Quota

Type

Upper limit

Default limit

Adjustable

Total number of all ACS clusters within an Alibaba Cloud account

20

3

Go to the Quota Center. Select the Number of ACS Clusters quota.

Note

If the upper limit does not meet your requirements, submit a ticket to contact the technical support team to increase the upper limit. When you submit the ticket, select Container Service for Kubernetes from the Product Catalog drop-down list.

Total number of pay-as-you-go and scalable vCores in a region

30000 vCPU

100 vCPU

Go to the Quota Center. Select the region that you want to manage and increase the quota.

Note

If the upper limit does not meet your requirements, submit a ticket to contact the technical support team to increase the upper limit. When you submit the ticket, select Container Service for Kubernetes from the Product Catalog drop-down list.

Capacity limits

Type

Upper limit

Default limit

Adjustable

etcd capacity

8 GB

2 GB

N/A

Maximum etcd capacity for each type of object

800 MB

200 MB

N/A

Pod

300,000

2,000

If the number of pods reaches 2,500, new creation requests will be rejected. Submit a ticket to contact the technical support team and apply for a quota increase.

Service

10,000

2,000

The default limit is the same as the default limit of pods. If the upper limit is reached, new creation requests will be rejected. Submit a ticket to contact the technical support team and apply for a quota increase.

ConfigMap

30,000

3,000

The default upper limit is 3,000, which is 1.5 times the default upper limit of pods. If the upper limit is reached, new creation requests will be rejected. Submit a ticket to contact the technical support team and apply for a quota increase.

Secret

30,000

3,000

PVC

300,000

3,000

PV

300,000

3,000

Single-type custom resource

300,000

10,000

The default upper limit of custom resources that belong to the same type is 10,000. Submit a ticket to contact the technical support team and apply for a quota increase.

CustomResourceDefinition (CRD)

500,000

100,000

N/A

Concurrency limits

Note

Queries per second (QPS) refers to the number of requests received per second.

Type

Upper limit

Default limit

Adjustable

QPS for listing all pods

1

1

Frequently listing all pods may overload the Kubernetes control plane. You can add selectors or namespaces to the code to reduce the number of pods in a single list operation.

Pod Create QPS

300

30

A 429 status code is returned if the QPS exceeds 30. Submit a ticket to contact the technical support team and apply for a quota increase.

Pod Delete QPS

300

30

Pod Patch QPS

300

30

Pod Update QPS

300

30

Service write QPS

50

5

A 429 status code is returned if the QPS exceeds 5. Submit a ticket to contact the technical support team and apply for a quota increase.

Lease Update QPS

500

100

A 429 status code is returned if the QPS exceeds 100. Submit a ticket to contact the technical support team and apply for a quota increase.

Configmap Update QPS

500

100

Endpoint Update QPS

500

100

QPS for other creation requests

300

50

A 429 status code is returned if the QPS exceeds 50. Submit a ticket to contact the technical support team and apply for a quota increase.

QPS for other deletion requests

300

50

QPS for other patching requests

300

50

QPS for other update requests

300

50

Quota limits on underlying cloud resources

Category

Item

Default limit

Adjustable

Limits on VPCs

Maximum number of custom routes that can be created in each route table (excluding dynamic routes)

200

You can increase the quota by performing the following operations:

Maximum number of dynamic routes in each route table

500

Maximum number of vSwitches that can be created in each VPC

150

You can increase the quota by performing the following operations:

Maximum number of VPCs that can be created in each region

10

You can increase the quota by performing the following operations:

Maximum number of private IP addresses that can be used by cloud resources in each VPC

300,000

Note
  • If an Elastic Compute Service (ECS) instance has only one private IP address, it uses only one network address.

  • If an ECS instance is associated with multiple elastic network interfaces (ENIs), or multiple IP addresses are assigned to an ENI of an ECS instance, the number of network addresses used by the ECS instance equals the total number of IP addresses assigned to the ENIs associated with the ECS instance.

N/A

Maximum number of private IP addresses that can be contained in a security group of the VPC type

  • Limits on basic security groups:

    6,000

    Note
    • You can view the quota in the Quota Center console.

    • If more than 6,000 private IP addresses that are assigned to ECS instances require mutual access over the internal network, you can assign the ECS instances to multiple security groups and allow mutual access between ECS instances in the security groups.

  • Limits on advanced security groups:

    65,536

N/A

Maximum number of secondary ENIs that can be created in an account

You can view the limit in the Quota Center console.

You can log on to the Quota Center console to apply for a quota increase.

Maximum number of EIPs that each Alibaba Cloud account can apply for

20

You can log on to the Quota Center console to apply for a quota increase.

Server Load Balancer (SLB) limits

Maximum number of CLB instances that can be created by each Alibaba Cloud account

30

You can request a quota increase by using one of the following methods:

Maximum number of backend servers that can be added to a CLB instance

200

You can request a quota increase by using one of the following methods:

Maximum number of listeners that can be added to a CLB instance

50

You can request a quota increase by using one of the following methods:

Disk limits

Maximum number of pay-as-you-go disks in all regions within an Alibaba Cloud account

You can view the limit in the Quota Center console.

Submit a ticket to apply for a quota increase.

Total capacity of all pay-as-you-go data disks within an Alibaba Cloud account

This quota varies based on the number of ECS instances within the account, the regions in which the ECS instances reside, and the disk types that the ECS instances use. You can view the limit in the Quota Center console. For more information, see View and increase instance quotas.

Submit a ticket to apply for a quota increase.