Accept a VPC peering connection - Amazon Virtual Private Cloud
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Accept a VPC peering connection

A VPC peering connection that's in the pending-acceptance state must be accepted by the owner of the accepter VPC to be activated. For more information about the Deleted peering connection status, see VPC peering connection lifecycle. You cannot accept a VPC peering connection request that you've sent to another Amazon account. If you are creating a VPC peering connection in the same Amazon account, you must both create and accept the request yourself.

If the VPCs are in different Regions, the request must be accepted in the Region of the accepter VPC.

Important

Do not accept VPC peering connections from unknown Amazon accounts. A malicious user may have sent you a VPC peering connection request to gain unauthorized network access to your VPC. This is known as peer phishing. You can safely reject unwanted VPC peering connection requests without any risk of the requester gaining access to any information about your Amazon account or your VPC. For more information, see Reject a VPC peering connection. You can also ignore the request and let it expire; by default, requests expire after 7 days.

After you accept the VPC peering connection, you must add an entry to your route tables to enable traffic between the peered VPCs. For more information, see Update your route tables for a VPC peering connection.

To accept a VPC peering connection

  1. Open the Amazon VPC console at https://console.amazonaws.cn/vpc/.

  2. Use the Region selector to choose the Region of the accepter VPC.

  3. In the navigation pane, choose Peering connections.

  4. Select the pending VPC peering connection (the status is pending-acceptance), and choose Actions, Accept request. For more information about peering connection lifecycle statuses, see VPC peering connection lifecycle.

    Tip

    If you cannot see the pending VPC peering connection, check the Region. An inter-Region peering request must be accepted in the Region of the accepter VPC.

  5. When prompted for confirmation, choose Accept request.

  6. Choose Modify my route tables now to add a route to the VPC route table so that you can send and receive traffic across the peering connection. For more information, see Update your route tables for a VPC peering connection.

To accept a VPC peering connection using the command line or an API