Accept or reject a VPC peering connection - Amazon Virtual Private Cloud
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Accept or reject a VPC peering connection

A VPC peering connection that's in the pending-acceptance state must be accepted by the owner of the accepter VPC to be activated. For more information about the Deleted peering connection status, see VPC peering connection lifecycle. You can't accept a VPC peering connection request that you sent to another Amazon account. To create a VPC peering connection between VPCs in the same Amazon account, you can both create and accept the request yourself.

You can reject any VPC peering connection request that you've received that's in the pending-acceptance state. You should only accept VPC peering connections from Amazon Web Services accounts that you know and trust; you can reject any unwanted requests. For more information about the Rejected peering connection status, see VPC peering connection lifecycle.

Important

Do not accept VPC peering connections from unknown Amazon accounts. A malicious user may have sent you a VPC peering connection request to gain unauthorized network access to your VPC. This is known as peer phishing. You can safely reject unwanted VPC peering connection requests without any risk of the requester gaining access to any information about your Amazon account or your VPC. For more information, see Accept or reject a VPC peering connection. You can also ignore the request and let it expire; by default, requests expire after 7 days.

To accept or reject a peering connection using the console

  1. Open the Amazon VPC console at https://console.amazonaws.cn/vpc/.

  2. Use the Region selector to choose the Region of the accepter VPC.

  3. In the navigation pane, choose Peering connections.

  4. To reject a peering connection, select the VPC peering connection, and choose Actions, Reject request. When prompted for confirmation, choose Reject request.

  5. To accept a peering connection, select the pending VPC peering connection (the status is pending-acceptance), and choose Actions, Accept request. For more information about peering connection lifecycle statuses, see VPC peering connection lifecycle.

    If there is no pending VPC peering connection, verify that you selected the Region of the accepter VPC.

  6. When prompted for confirmation, choose Accept request.

  7. Choose Modify my route tables now to add a route to the VPC route table so that you can send and receive traffic across the peering connection. For more information, see Update your route tables for a VPC peering connection.

To accept a peering connection using the command line
To reject a peering connection using the command line