docs(srv): update serverless x VPC doc

SamyOubouaziz · SamyOubouaziz · commit ff60041322d0 · 2025-08-04T12:18:26.000+02:00
diff --git a/menu/navigation.json b/menu/navigation.json
@@ -4509,6 +4509,10 @@
                     "label": "Serverless overview",
                     "slug": "serverless-overview"
                   },
+                  {
+                    "label": "Containers and Private Networks integration",
+                    "slug": "containers-private-networks"
+                  },
                   {
                     "label": "Containers limitations",
                     "slug": "containers-limitations"
diff --git a/pages/organizations-and-projects/additional-content/organization-quotas.mdx b/pages/organizations-and-projects/additional-content/organization-quotas.mdx
@@ -333,6 +333,12 @@ After you order a server from the list of Elastic Metal servers compatible with
 The maximum RAM quota is obtained by multiplying the maximum scale factor of your container by the selected RAM quantity.
 For example, if you choose to create a container with 512 MB of memory and a maximum scale of 20, you will have 10 GB RAM.
 
+#### Private Networks (VPC) quotas
+
+|                                   | [Payment method validated](/billing/how-to/add-payment-method/#how-to-add-a-credit-card)                    | Payment method and [identity validated](/account/how-to/verify-identity/)            |
+|-----------------------------------|:----------------------------------------------------------------------------------------------------------: |:------------------------------------------------------------------------------------:|
+| Maximum attached Private Networks | 5                                                                                                           | 10                                                                                   |
+
 ## Serverless Functions
 
 <ComputeServerlessFunctions />
@@ -354,6 +360,12 @@ For example, if you choose to create a container with 512 MB of memory and a max
 The maximum RAM quota is obtained by multiplying the maximum scale factor of your container by the selected RAM quantity.
 For example, if you choose to create a container with 512 MB of memory and a max scale of 20, you will have 10 GB RAM.
 
+#### Private Networks (VPC) quotas
+
+|                                   | [Payment method validated](/billing/how-to/add-payment-method/#how-to-add-a-credit-card)                    | Payment method and [identity validated](/account/how-to/verify-identity/)            |
+|-----------------------------------|:----------------------------------------------------------------------------------------------------------: |:------------------------------------------------------------------------------------:|
+| Maximum attached Private Networks | 5                                                                                                           | 10                                                                                   |
+
 ## Serverless Jobs
 
 <ComputeServerlessJobs />
diff --git a/pages/serverless-containers/reference-content/containers-limitations.mdx b/pages/serverless-containers/reference-content/containers-limitations.mdx
@@ -84,21 +84,7 @@ Do not have your containers listen on these ports, as they are used by our servi
 
 ## Private Networks and Virtual Private Cloud (VPC)
 
-### Compatibility
-
-Scaleway Serverless Containers support [Virtual Private Cloud (VPC)](/vpc/) and can be attached to a Private Network, which allows you to securely connect your resources in an isolated environment. Refer to the [dedicated documentation](/serverless-containers/how-to/use-private-networks/) for more information.
-
-### Usage
-
-- Containers in the same namespace can be attached to different Private Networks.
-
-- Attaching Serverless Containers to Private Networks does not entail additional cost.
-
-### Limitations
-
-- VPC works with Namespaces that have **VPC support enabled**. VPC support can only be enabled at [namespace creation](/serverless-containers/how-to/create-manage-delete-containers-namespace/#creating-a-serverless-containers-namespace), and cannot be updated afterward.
-
-- Only one Private Network can be attached to a container.
+Refer to the [dedicated documentation](/serverless-containers/reference-content/containers-private-networks/) on VPC and Serverless Containers integration for more information.
 
 ## Default values for CPU and memory limits
 
diff --git a/pages/serverless-containers/reference-content/containers-private-networks.mdx b/pages/serverless-containers/reference-content/containers-private-networks.mdx
@@ -6,49 +6,29 @@ dates:
   - validation: 2025-07-29
 ---
 
-## Description
+## Compatibility
 
-Attach a Serverless Function or Container to a Private Network.
+Scaleway Serverless Containers support [Virtual Private Cloud (VPC)](/vpc/) and can be attached to a Private Network, which allows you to securely connect your resources in an isolated environment. Refer to the [dedicated documentation](/serverless-containers/how-to/use-private-networks/) for more information.
 
-### Availability
+## Features
 
-- Binding is done per Function or Container, not per namespace: multiple functions/containers in the same namespace can be attached to different PNs
-- Works for both sandboxes (v1, v2)
-- Feature is free of charge
+- Containers in the same namespace can be attached to different Private Networks.
+- Both [sandbox](/serverless-containers/concepts/#sandbox) environments (`V1` and `V2`) are compatible with Private Networks.
+- Attaching Serverless Containers to Private Networks **does not entail additional cost**.
+- **Egress** (outbound private traffic from a container to resources within the same Private Network) will be routed through the private interface, but external traffic (from the Internet) will be through the public endpoint of the container.
+- All DNS resolution is done through the Private Network (using the VPC DNS server `169.254.169.254`), which allows to resolve `*.internal` records.
 
-### Features
-Container to PN resources (egress)
-Currently, no ingress (PN resources to container)
-but container still available through public traffic
+## Quotas
 
-- All internal traffic (to PN) will be routed through the private interface, but external traffic (Internet) will be through the public (already existing) interface
+Refer to the [dedicated documentation](/organizations-and-projects/additional-content/organization-quotas/) for more information on Private Networks quotas for Serverless Containers.
 
-- All DNS resolution is done through PN (using DNS server `169.254.169.254` (=VPC dns server)). This allows to resolve `*.internal` records
-
-
-
-
-## Users limitations
-
-### API
-
-- A Function/Container can **only** be attached to a single PN
-- extra quota for VPC via Containers (Container Unique Private Networks) 5/10
-- UPDATE QUOTAS DOC
-
-
-
-### Infrastructure
-
-- **VPC routing** (custom routes) doesn't work yet
-
-- Each Function/Container instance will have a unique IP in the PN, assigned by Scaleway. this implies:
-  - it won't be possible for a user to **preemptively book an IP** in IPAM, and reference it in the attachment
-  - this can result in a **large number of IPs** being used in the PN. It might be confusing for clients as a single resource (a given Function/Container) with multiple instances will have multiple IPs
-
-- **Cold-starts will be slightly longer** due to the additional steps required to attach the node to the PN and book an IP.
-
-Also, as of today, only ingress is implemented (phase 1: call a resource in the PN from a Function/Container). 
-
-Egress (phase 2: calling a Function/Container from a resource in the PN) will be done [later](../#phases).
+## Limitations
 
+- VPC works with Namespaces that have **VPC support enabled**. VPC support can only be enabled at [namespace creation](/serverless-containers/how-to/create-manage-delete-containers-namespace/#creating-a-serverless-containers-namespace), and cannot be updated afterward.
+- Only one Private Network can be attached to a container.
+- **VPC routing** (custom routes and cross-PN automatic routing) is not supported yet.
+- **Ingress** (inbound private traffic from resources to a container within the same Private Network) is not supported yet.
+- Each [container instance](/serverless-containers/concepts/#instance) has a unique IP automatically assigned by Scaleway in the Private Network. This implies the following:
+    - Users **cannot preemptively book an IP** with [IPAM](/ipam/), and reference it in the attachment.
+    - A single Serverless Container can have a **large number of IPs** being used within the Private Network, depending on the number of concurrent instances.
+    - **Cold-starts are slightly longer** due to the additional steps required to attach the node to the Private Network and book an IP.
