What is IPAM?-Virtual Private Cloud(VPC)-阿里云帮助中心

Use cases

Centralized address planning

Network administrators can use IPAM to plan available CIDR blocks for the business.

In an organization with multiple accounts, network administrators can share planned address pools with member accounts.

Address resource allocation

Automatically allocate CIDR blocks to VPCs based on allocation rules.

Reserve CIDR blocks as needed to avoid address conflicts.

Global resource management

After associating an IPAM with a resource discovery, you can centrally view and manage all VPCs and vSwitches across all operating regions and identify address conflicts.

Conflict detection and usage monitoring

Identify overlapping CIDR blocks before they cause connectivity issues.

Track IP utilization to proactively scale capacity.

How it works

IPAM is a modular feature. You must select one region to host it, which becomes the hosted region. Plan and manage all address resources across regions using IPAM. These regions become the operating regions of IPAM. If a region within the scope fails, it does not affect other regions.

Create an IPAM instance in a hosted region. Add operating regions as needed.
The system creates two default scopes, each representing an IP address space:
- Public: For all public spaces. Allocate and use only IPv6 CIDR blocks provided by Alibaba Cloud.
- Private: For all private spaces. Allocate and use IPv4 CIDR blocks. You can also create custom private scopes.
Create an IPAM Pool within an IPAM scope. Divide pools and provision CIDR blocks if necessary.
- Subpools divide large CIDR blocks into smaller ones — for example, by region — that you can allocate to departments or lines of business.
- Each subpool can be associated with security rules, avoiding IP conflicts and meeting security needs.
Allocate CIDR blocks from pools to VPCs. You can also create custom allocations for hybrid or multi-cloud environments.

More information

Billing

IPAM is in public preview and currently free of charge.

Supported regions

Area	Regions
Asia Pacific - China	China (Hangzhou), China (Shanghai), China (Nanjing - Local Region, Closing Down), China (Qingdao), China (Beijing), China (Zhangjiakou), China (Hohhot), China (Ulanqab), China (Shenzhen), China (Heyuan), China (Guangzhou), China (Chengdu), China (Hong Kong), China (Wuhan - Local Region), and China (Fuzhou - Local Region, Closing Down)
Asia Pacific - Others	Japan (Tokyo), South Korea (Seoul), Singapore, Malaysia (Kuala Lumpur), Indonesia (Jakarta), Philippines (Manila), and Thailand (Bangkok)
Europe & Americas	Germany (Frankfurt), UK (London), US (Silicon Valley), and US (Virginia)
Middle East	UAE (Dubai) and Saudi Arabia (Riyadh - Partner Region)

Quota

Quota name	Description	Default limit	Adjustable
ipam_quota_per_region	IPAMs per user in each region.	1	No.
ipam_scope_quota_per_ipam	IPAM scopes per IPAM.	5
ipam_pool_quota_depth	The maximum depth of an IPAM pool.	10
ipam_cidr_quota_per_ipam_pool	CIDRs that can be provisioned in an IPAM pool.	50
ipam_sub_pool_quota_per_ipam_pool	Sub-pools per IPAM pool.	50
ipam_pool_quota_per_scope	IPAM pools that can be created in each private IPAM scope.	500
ipam_resource_discovery_quota_per_region	Resource discoveries per account in a region.	1
resource_share_quota_per_ipam_resource_discovery	Shared resources created by a resource discovery.	100
shared_ipam_resource_discovery_quota_per_user	Shared resource discoveries per user.	100
resource_share_quota_per_ipam_pool	Resource shares per IPAM pool.	100
shared_ipam_pool_quota_per_user	Shared IPAM pools per user.	100
ipam_public_ipv6_top_pool_quota_per_region_isp	Public top-level IPv6 IPAM pools each user can create for each ISP type in each region.	1
ipam_cidr_quota_per_public_ipv6_top_pool	CIDR blocks that each user can provision for public top-level IPv6 IPAM pools in each region.	1