A cluster can only be associated with the distributed firewall of one ANS service.
The distributed firewall of an ANS service can be associated with a maximum of 512 hosts.
To avoid resource contention, it is recommended that each custom security policy contain no more than 100 virtual machines in total as policy targets and ingress or egress list members, and no more than 10 ports allowed per ingress or egress list. Avoid specifying overly large port ranges (for example, 1 to 65535).
A VM network can only be associated with the load balancer virtual machines of one ANS service.
A cluster can only be associated with the VPC networking of one ANS service.
The ANS controller configuration determines the maximum number of resources allowed in VPC networking, such as hosts, VPCs, and route tables. For details, refer to the Deployment > Deploying Arcfra Network Service > Requirements > Planning ANS controllers section.
The edge gateway virtual machine configuration determines the maximum number of gateways allowed in VPC networking. For details, refer to the Management > Managing network and security > Managing VPC networking > Managing edge gateways and edge gateway groups > Managing edge gateways > Creating an edge gateway section.
