diff --git a/images/VPC-Diagram.png b/images/VPC-Diagram.png
new file mode 100644
index 0000000000..862355d985
Binary files /dev/null and b/images/VPC-Diagram.png differ
diff --git a/modules/ccs-aws-provisioned.adoc b/modules/ccs-aws-provisioned.adoc
index ec2f83bdcb..ee382586ec 100644
--- a/modules/ccs-aws-provisioned.adoc
+++ b/modules/ccs-aws-provisioned.adoc
@@ -71,6 +71,10 @@ Customers should expect to see one VPC per cluster. Additionally, the VPC needs
 
 * *NAT gateways*: One NAT Gateway per public subnet.
 
+=== Sample VPC Architecture
+
+image::VPC-Diagram.png[VPC Reference Architecture]
+
 [id="aws-policy-security-groups_{context}"]
 == Security groups
 
diff --git a/modules/rosa-aws-provisioned.adoc b/modules/rosa-aws-provisioned.adoc
index 4e9ce9eff7..5c4a7078f3 100644
--- a/modules/rosa-aws-provisioned.adoc
+++ b/modules/rosa-aws-provisioned.adoc
@@ -69,6 +69,10 @@ Customers should expect to see one VPC per cluster. Additionally, the VPC will n
 
 * *NAT gateways*: One NAT Gateway per public subnet.
 
+=== Sample VPC Architecture
+
+image::VPC-Diagram.png[VPC Reference Architecture]
+
 [id="rosa-security-groups_{context}"]
 == Security groups
 
diff --git a/rosa_getting_started_sts/rosa_creating_a_cluster_with_sts/rosa-sts-interactive-mode-reference.adoc b/rosa_getting_started_sts/rosa_creating_a_cluster_with_sts/rosa-sts-interactive-mode-reference.adoc
index ff482a7c0d..3a86d7d47f 100644
--- a/rosa_getting_started_sts/rosa_creating_a_cluster_with_sts/rosa-sts-interactive-mode-reference.adoc
+++ b/rosa_getting_started_sts/rosa_creating_a_cluster_with_sts/rosa-sts-interactive-mode-reference.adoc
@@ -15,3 +15,4 @@ include::modules/rosa-sts-interactive-mode-reference.adoc[leveloffset=+1]
 * For detailed steps to quickly create a ROSA cluster with STS, including the AWS IAM resources, see xref:../../rosa_getting_started_sts/rosa_creating_a_cluster_with_sts/rosa-sts-creating-a-cluster-quickly.adoc#rosa-sts-creating-a-cluster-quickly[Creating a ROSA cluster with STS quickly].
 * For detailed steps to create a ROSA cluster with STS using customizations, including the AWS IAM resources, see xref:../../rosa_getting_started_sts/rosa_creating_a_cluster_with_sts/rosa-sts-creating-a-cluster-with-customizations.adoc#rosa-sts-creating-a-cluster-with-customizations[Creating a ROSA cluster with STS using customizations].
 * For more information about etcd encryption, see the xref:../../rosa_policy/rosa-service-definition.adoc#rosa-sdpolicy-etcd-encryption_rosa-service-definition[etcd encryption service definition].
+* For an example VPC architecture, see xref:../../rosa_getting_started_sts/rosa-sts-aws-prereqs.adoc#rosa-vpc_rosa-sts-aws-prerequisites[this sample VPC architecture].