Requester-managed network interfaces - Amazon Elastic Compute Cloud
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Requester-managed network interfaces

A requester-managed network interface is a network interface that an Amazon service creates in your VPC. This network interface can represent an instance for another service, such as an Amazon RDS instance, or it can enable you to access another service or resource, such as an Amazon PrivateLink service, or an Amazon ECS task.

You cannot modify or detach a requester-managed network interface. If you delete the resource that the network interface represents, the Amazon service detaches and deletes the network interface for you. To change the security groups for a requester-managed network interface, you might have to use the console or command line tools for that service. For more information, see the service-specific documentation.

You can tag a requester-managed network interface. For more information, see Add or edit tags.

You can view the requester-managed network interfaces that are in your account.

To view requester-managed network interfaces using the console

  1. Open the Amazon EC2 console at

  2. In the navigation pane, choose Network Interfaces.

  3. Select the network interface and view the following information on the details pane:

    • Attachment owner: If you created the network interface, this field displays your Amazon account ID. Otherwise, it displays an alias or ID for the principal or service that created the network interface.

    • Description: Provides information about the purpose of the network interface; for example, "VPC Endpoint Interface".

To view requester-managed network interfaces using the command line

  1. Use the describe-network-interfaces Amazon CLI command to describe the network interfaces in your account.

    aws ec2 describe-network-interfaces
  2. In the output, the RequesterManaged field displays true if the network interface is managed by another Amazon service.

    { "Status": "in-use", ... "Description": "VPC Endpoint Interface vpce-089f2123488812123", "NetworkInterfaceId": "eni-c8fbc27e", "VpcId": "vpc-1a2b3c4d", "PrivateIpAddresses": [ { "PrivateDnsName": "ip-10-0-2-227.ec2.internal", "Primary": true, "PrivateIpAddress": "" } ], "RequesterManaged": true, ... }

    Alternatively, use the Get-EC2NetworkInterface Tools for Windows PowerShell command.