Limits

CloudFront entities have the following limits. Note that Lambda@Edge has specific limits as well, that are in addition to the default CloudFront limits.

Topics

General Limits
General Limits on Web Distributions
Limits on Whitelisted Cookies (Web Distributions Only)
Limits on Whitelisted Query Strings (Web Distributions Only)
Limits on Custom Headers (Web Distributions Only)
Limits on SSL Certificates (Web Distributions Only)
Limits on Invalidations
Limits on Field-Level Encryption
Limits on Lambda@Edge
Limits on RTMP Distributions

General Limits

Entity	Limit
Data transfer rate per distribution	40 Gbps Request a higher limit
Requests per second per distribution	100,000 Request a higher limit
Tags that can be added to a CloudFront web or RTMP distribution	50
Objects that you can serve per distribution	Unlimited
Maximum length of a request, including headers and query strings	20,480 bytes
Maximum length of a URL	8,192 bytes
Active CloudFront key pairs for trusted signers For more information, see Specifying the AWS Accounts That Can Create Signed URLs and Signed Cookies (Trusted Signers).	2

General Limits on Web Distributions

Entity	Limit
Web distributions per AWS account For more information, see Working with Web Distributions.	200 Request a higher limit
Maximum file size for HTTP GET, POST, and PUT requests	20 GB
Response timeout per origin For more information, see Origin Response Timeout (Amazon EC2, Elastic Load Balancing, and Other Custom Origins Only).	4-60 seconds Request a higher limit
File compression: range of file sizes that CloudFront compresses For more information, see Serving Compressed Files.	1,000 to 10,000,000 bytes
Alternate domain names (CNAMEs) per distribution For more information, see Adding and Moving Alternate Domain Names (CNAMEs).	100 Request a higher limit
Origins per distribution	25 Request a higher limit
Cache behaviors per distribution	25 Request a higher limit

Limits on Whitelisted Cookies (Web Distributions Only)

Entity	Limit
Whitelisted cookies per cache behavior For more information, see Configuring CloudFront to Cache Objects Based on Cookies.	10 Request a higher limit
Total number of bytes in whitelisted cookie names (doesn't apply if you configure CloudFront to forward all cookies to the origin)	512 minus the number of whitelisted cookies

Limits on Whitelisted Query Strings (Web Distributions Only)

Entity	Limit
Maximum number of characters in a whitelisted query string	128 characters
Maximum number of characters total for all whitelisted query strings in the same parameter	512 characters
Whitelisted query strings per cache behavior For more information, see Configuring CloudFront to Cache Based on Query String Parameters.	10 Request a higher limit

Limits on Custom Headers (Web Distributions Only)

Entity	Limit
Whitelisted headers per cache behavior For more information, see Configuring CloudFront to Cache Objects Based on Request Headers.	10 Request a higher limit
Custom headers: maximum number of custom headers that you can configure CloudFront to forward to the origin For more information, see Forwarding Custom Headers to Your Origin (Web Distributions Only).	10 name/value pairs Request a higher limit
Custom headers: maximum length of a header name	256 characters
Custom headers: maximum length of a header value	1,783 characters
Custom headers: maximum length of all header values and names combined	10,240 characters

Limits on SSL Certificates (Web Distributions Only)

Entity	Limit
SSL certificates per AWS account when serving HTTPS requests using dedicated IP addresses (no limit when serving HTTPS requests using SNI) For more information, see Using HTTPS with CloudFront.	2 Request a higher limit
SSL certificates that can be associated with a CloudFront web distribution	1

Limits on Invalidations

Entity	Limit
Object invalidation: maximum number of objects allowed in active invalidation requests, excluding wildcard invalidations For more information, see Invalidating Objects (Web Distributions Only).	3,000
Object invalidation: maximum number of active wildcard invalidations allowed	15
Object invalidation: maximum number of objects that one wildcard invalidation can process	Unlimited

Limits on Field-Level Encryption

Entity	Limit
Maximum length of a field to encrypt For more information, see Using Field-Level Encryption to Help Protect Sensitive Data.	16 KB
Maximum number of fields in a request body when field-level encryption encryption is configured	10
Maximum length of a request body when field-level encryption is configured	1 MB
Maximum number of field-level encryption configurations that can be associated with one AWS account	10
Maximum number of field-level encryption profiles that can be associated with one AWS account	10
Maximum number of public keys that can be added to one AWS account	10
Maximum number of fields to encrypt that can be specified in one profile	10
Maximum number of CloudFront distributions that can be associated with a field-level encryption configuration	20
Maximum number of query argument profile mappings that can be included in a field-level encryption configuration	5

Limits on Lambda@Edge

The limits in this section apply to Lambda@Edge. These limits are in addition to the default CloudFront and Lambda limits, which also apply. See the default Lambda limits in the Limits section of the AWS Lambda Developer Guide.

Note
Lambda dynamically scales capacity in response to increased traffic, within your account’s limits. For more information, see the Scaling section of the AWS Lambda Developer Guide.

In addition, be aware that there are some other restrictions when using Lambda@Edge functions. For more information, see Requirements and Restrictions on Lambda Functions.

Limits that differ by event-type

Entity	Origin request and response event limits	Viewer request and response event limits
Function resource allocation	Same as Lambda limits	128 MB
Function timeout. The function can make network calls to resources such as Amazon S3 buckets, DynamoDB tables, or Amazon EC2 instances in AWS Regions.	30 seconds	5 seconds
Size of a response that is generated by a Lambda function, including headers and body	1 MB	40 KB
Maximum compressed size of a Lambda function and any included libraries	50 MB	1 MB

Other limits

Entity	Limit
Distributions per AWS account that you can create triggers for	25 Request a higher limit
Triggers per distribution	25 Request a higher limit
Requests per second	10,000 (in each region) Request a higher limit
Concurrent executions For more information, see Lambda Function Concurrent Executions in the AWS Lambda Developer Guide.	1000 (in each region) Request a higher limit

Limits on RTMP Distributions

Entity	Limit
RTMP distributions per AWS account For more information, see Working with RTMP Distributions.	100 Request a higher limit

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Limits

General Limits

General Limits on Web Distributions

Limits on Whitelisted Cookies (Web Distributions Only)

Limits on Whitelisted Query Strings (Web Distributions Only)

Limits on Custom Headers (Web Distributions Only)

Limits on SSL Certificates (Web Distributions Only)

Limits on Invalidations

Limits on Field-Level Encryption

Limits on Lambda@Edge

Limits on RTMP Distributions

FilesExpand file tree

cloudfront-limits.md

Latest commit

History

cloudfront-limits.md

File metadata and controls

Limits

General Limits

General Limits on Web Distributions

Limits on Whitelisted Cookies (Web Distributions Only)

Limits on Whitelisted Query Strings (Web Distributions Only)

Limits on Custom Headers (Web Distributions Only)

Limits on SSL Certificates (Web Distributions Only)

Limits on Invalidations

Limits on Field-Level Encryption

Limits on Lambda@Edge

Limits on RTMP Distributions