A cluster can only be associated with the distributed firewall of one ANS service.
The distributed firewall of an ANS service can be associated with a maximum of 512 hosts.
To avoid resource contention, it is recommended that each custom security policy contain no more than 100 virtual machines in total as policy targets and ingress or egress list members, and no more than 10 ports allowed per ingress or egress list. Avoid specifying overly large port ranges (for example, 1 to 65535).
A VM network can only be associated with the load balancer virtual machines of one ANS service.
A cluster can only be associated with VPC networking of one ANS service.
The Arcfra network controller configuration determines the maximum number of resources allowed in VPC networking, such as hosts, VPCs, and route tables. For details, refer to the Planning Arcfra network controllers section for details.
The edge gateway virtual machine configuration determines the maximum number of gateways allowed in VPC networking. For details, refer to the Creating an edge gateway section for details.
