DigitalOcean

Report this

What is the reason for this report?
Question

How does DO handle overlapping VPC IP space per customer?

Posted on March 8, 2021
DigitalOcean Accounts
DigitalOcean VPC
Networking
2e3512649a644b54ae3c78b3eca483

By 2e3512649a644b54ae3c78b3eca483

Referencing https://www.digitalocean.com/docs/networking/vpc … it read that a given customer can only have one VPC using, say, 10.10.0.0/16:

VPC network ranges cannot overlap with the ranges of other networks in the same account.

Why would this limit be in place, if multiple customers can have otherwise-overlapping private IP space?

Does assigning a VPC to a different Project still suffer from the same cannot-overlap-IP-space constraint?

When the docs say “VPC network ranges cannot overlap with the ranges of other networks in the same account”, is that across all datacenters & regions? Or is it intra-DC/-region only? Ie, could I deploy 10.10.0.0/16 to both FRA1 and NYC3? The statement

We do not support VPC networks between resources in different datacenter regions

would seem to indicate overlapping private IP space could be handed-out to the same account, so long as it’s not in the same place. Is that the case?



This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
0
Bobby
Bobby
March 9, 2021

Hi there,

Yes, your VPC IP ranges are isolated from other accounts so they can overlap with the VPC IP ranges of other accounts. However indeed, as you stated, the IP rages can not overlap in the same account.

This is also the case for separate projects, as the projects are still under the same account.

This is also true for different regions, for example, if you have this IP rage: 10.136.0.0/16 for NYC1, if you try to add the same range for FRA1 it will not work and you will get the following message:

This range/size overlaps with another VPC network in your account. 

Learn more about setting IP ranges

default-nyc1 10.136.0.0/16

It will also automatically provide you with an alternative range you could use.

Hope that this helps. Regards, Bobby

Become a contributor for community

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Sign Up

DigitalOcean Documentation

Full documentation for every DigitalOcean product.

Learn more

Resources for startups and SMBs

The Wave has everything you need to know about building a business, from raising funding to marketing your product.

Learn more

Get our newsletter

Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

New accounts only. By submitting your email you agree to our Privacy Policy

The developer cloud

Scale up as you grow — whether you're running one virtual machine or ten thousand.

Get started for free

Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

*This promotional offer applies to new accounts only.

© 2025 DigitalOcean, LLC.Sitemap.