Computers and smart devices use IP addresses to communicate with each other over the internet and other networks. As the internet continues to grow, so does the need for IP addresses. The most common format for IP addresses is IPv4. The new format for IP addresses is IPv6, which provides a larger address space than IPv4.
AWS services support for IPv6 includes support for dual stack configuration (IPv4 and IPv6) or IPv6 only configurations. For example, a virtual private cloud (VPC) is a logically isolated section of the AWS Cloud where you can launch AWS resources. Within a VPC, you can create subnets that are IPv4 only, dual stack, or IPv6 only.
AWS services support access through public endpoints. Some AWS services also support access using private endpoints powered by AWS PrivateLink. AWS services can support IPv6 through their private endpoints even if they do not support IPv6 through their public endpoints. Endpoints that support IPv6 can respond to DNS queries with AAAA records.
Services that support IPv6
The following table lists the AWS services that provide dual stack support, IPv6 only support, and endpoints that support IPv6. We will update this table as we release additional support for IPv6. For the specifics about how a service supports IPv6, refer to the documentation for the service.
| Service name | Dual stack support | IPv6 only support | Public endpoints support IPv6 | Private endpoints support IPv6 1 |
|---|---|---|---|---|
| AWS Amplify | ||||
| Amazon API Gateway | ||||
| AWS App Mesh | ||||
| AWS AppConfig | ||||
| AWS Application Discovery Service | ||||
| Application Recovery Controller (ARC) | ||||
| Amazon AppStream 2.0 | ||||
| AWS AppSync2 | ||||
| Amazon Athena | ||||
| Amazon Aurora | ||||
| AWS Backup | ||||
| AWS Batch | ||||
| AWS Billing and Cost Management Data Exports | ||||
| AWS Billing and Cost Management Pricing Calculator | ||||
| AWS Billing Conductor | ||||
| Amazon Braket | ||||
| AWS Certificate Manager | ||||
| Amazon Comprehend | ||||
| AWS Clean Rooms | ||||
| AWS Clean Rooms ML | ||||
| AWS Cloud9 | ||||
| AWS Cloud Control API | ||||
| Amazon CloudFront | ||||
| AWS CloudHSM | ||||
| AWS CloudTrail | ||||
| Amazon CloudWatch Logs | ||||
| AWS Cloud Map | ||||
| AWS Cloud WAN | ||||
| AWS CodeArtifact | ||||
| Amazon CodeGuru Profiler | ||||
| AWS Cost Optimization Hub | ||||
| AWS Elastic Beanstalk | ||||
| Amazon Cognito | ||||
| Amazon Data Firehose | ||||
| Amazon Data Lifecycle Manager | ||||
| AWS Database Migration Service | ||||
| AWS Deadline Cloud | ||||
| Amazon Detective | ||||
| AWS Direct Connect | ||||
| Amazon EBS direct APIs | ||||
| Amazon EC2 | ||||
| Amazon ECS | ||||
| Amazon EKS | ||||
| Elastic Load Balancing | ||||
| Amazon ElastiCache | ||||
| AWS End User Messaging Social | ||||
| AWS Entity Resolution | ||||
| AWS Fargate | ||||
| Amazon FSx | ||||
| Amazon GameLift Streams | ||||
| AWS Global Accelerator | ||||
| AWS Glue | ||||
| Amazon Managed Grafana 3 | ||||
| AWS Ground Station 4 | ||||
| AWS Identity and Access Management (IAM) | ||||
| AWS IAM Access Analyzer | ||||
| Amazon Inspector | ||||
| AWS IoT | ||||
| AWS IoT FleetWise | ||||
| AWS IoT Wireless | ||||
| Amazon Kinesis Data Streams | ||||
| AWS Lake Formation | ||||
| AWS Lambda | ||||
| Amazon Lightsail | ||||
| Amazon Macie | ||||
| AWS Mainframe Modernization | ||||
| AWS Network Firewall | ||||
| AWS Network Manager | ||||
| Amazon OpenSearch Service | ||||
| Amazon Personalize | ||||
| Amazon Pinpoint | ||||
| Amazon Polly | ||||
| AWS Private CA Connector for SCEP | ||||
| AWS PrivateLink | ||||
| Amazon Managed Service for Prometheus | ||||
| AWS RAM | ||||
| Amazon RDS | ||||
| Recycle Bin | ||||
| AWS re:Post Private | ||||
| AWS Resource Explorer | ||||
| AWS Resource Groups | ||||
| AWS Resource Groups Tagging API | ||||
| Amazon Route 53 | ||||
| Amazon S3 | ||||
| AWS Secrets Manager | ||||
| Amazon Security Lake | ||||
| AWS Shield | ||||
| Amazon Simple Email Service | ||||
| Amazon Simple Notification Service | ||||
| Amazon Simple Queue Service | ||||
| AWS Site-to-Site VPN | ||||
| Amazon Transcribe | ||||
| AWS Transit Gateway | ||||
| Amazon Translate | ||||
| Amazon VPC | ||||
| AWS WAF | ||||
| Amazon WorkSpaces | ||||
| AWS X-Ray | ||||
| EC2 Image Builder |
1 An empty cell indicates that the service does not integrate with AWS PrivateLink.
2 This entry represents IPv6 support for AWS AppSync GraphlQL and Event API configuration operations, through the AWS AppSync SDK API. IPv6 is not supported for client connections to customer managed AWS AppSync GraphQL and Event APIs.
3 This entry represents IPv6 support for Grafana workspace management operations, such as updating workspaces and workspace permissions. There is no IPv6 support for general Grafana workspace operations, such as creating and editing dashboards or querying data sources.
4 This entry represents IPv6 support for AWS Ground Station control plane operations, such as calling the AWS Ground Station API. IPv6 is not supported by the AWS Ground Station data plane, so make sure the resources you are delivering data to (such as Amazon EC2 instances) are accessible over IPv4.
Additional IPv6 support
Compute
-
Amazon EC2 supports launching instances based on the Nitro System into IPv6-only subnets.
-
Amazon EC2 provides IPv6 endpoints for Instance Metadata Service (IMDS) and Amazon Time Sync Service.
Networking and Content Delivery
-
Amazon VPC supports creating IPv6-only subnets.
-
Amazon VPC helps IPv6 AWS resources communicate with IPv4 resources by supporting DNS64 on your subnets and NAT64 on your NAT gateways.
Security, Identity, and Compliance
-
AWS Identity and Access Management (IAM) supports IPv6 addresses in IAM identity-based policies.
-
Amazon Macie supports IPv6 addresses in personally identifiable information (PII).
-
Amazon Security Lake supports IPv6 addresses across all operations on log sources and subscribers.
Management and Governance
-
AWS CloudTrail records include source IPv6 information.
-
AWS CLI v2 supports download over IPv6 connections for IPv6-only clients.
Learn more
