Updated on 2025-04-16 GMT+08:00

Managing Policies

Scenarios

A policy is a single document that defines the configuration of a central network and records how VPCs and global DC gateways access your central network. To better manage your central networks, you can use policies to record the configuration history. You can also apply policies of any version as needed.

You can perform the following operations to manage your central network policies:

Constraints

  • Only one policy can be applied to a central network. If you need to change the policy, apply a new policy. The previously applied policy will be automatically canceled.
  • In each policy, only one enterprise router can be added for a region. All added enterprise routers can communicate with each other by default.
  • A policy that is being applied or cancelled cannot be deleted.

Creating a Policy

  1. Go to the Central Networks page.
  2. Locate the central network and click its name.
  3. Click the Policies tab. You can view the policy applied to the central network. The default version is version 1. You can also check the enterprise routers that have been connected and the full-mesh peering connections.
  4. Click Add Policy and configure a new policy based on Table 1.
    Table 1 Parameters for adding a policy

    Parameter

    Description

    Example Value

    Basic Information

    Add Enterprise Router

    Add an enterprise router to enable VPCs in the same region to communicate with each other. By working with global DC gateways provided by Direct Connect, enterprise routers enable the VPCs and on-premises data centers to communicate with each other. Enterprise routers in different regions can be connected over a central network to allow for cross-region communication between VPCs and between on-premises data centers and VPCs.

    Click Add Enterprise Router and select the region and route table.

    Only one enterprise router can be added for a region. All added enterprise routers can communicate with each other by default.

    10 kbit/s of free bandwidth is provided for testing the connectivity between enterprise routers.

    If no enterprise router is available for your services, click Create Enterprise Router to create one.

    • ER-01
    • ER-02

    Advanced Settings

    Full-Mesh Peering

    This function is enabled by default. Expand Advanced Settings to check the full-mesh peering connections.

    -

    Full-Mesh Peering Connections

    If this option is enabled, a peering connection will be automatically created between every two enterprise routers you select. All these peering connections will be displayed in the full-mesh peering connection list. You can remove unnecessary peering connections as needed.

    • Removing a peering connection: Click To be removed in the Operation column of the target peering connection.
    • Connecting a peering connection: Click Peering Connection in the Operation column of the target peering connection.
    • A numerical value that is used to identify a peering connection on an enterprise router. For full-mesh peering connections, the value can only be 0.

    -

  5. Click Submit. The Policies page is displayed. You can see the policy of version 2 you have added.

Applying a Policy

  1. Go to the Central Networks page.
  2. Locate the central network and click its name.
  3. Choose the Policies tab and click Apply on the right of the target policy version. On the Apply Policy page, confirm the information shown in Table 2 and click Submit.
    Table 2 Parameters for applying a policy

    Parameter

    Description

    Existing Policy Details

    Existing Policy Name

    • Version 1: the name of the existing policy.
    • Enterprise Routers: the enterprise routers on the central network that the existing policy is applied to.
    • Peering Connections: the peering connections that connect the enterprise routers in the existing policy.

    New Policy Details

    New Policy Name

    • Version 2: name of the new policy to be applied.
    • Enterprise Routers: the enterprise routers on the central network that the new policy will be applied to.
    • Peering Connections: the peering connections that connect the enterprise routers in the new policy.

    Policy Change Details

    Enterprise Routers

    The enterprise routers on the central network that the new policy will be applied to.

    Peering Connections

    The peering connections that connect the enterprise routers in the new policy.

    Confirm

    Current Configuration

    Existing Policy Name: Version 1

    New Configuration

    New Policy Name: Version 2

    Enterprise router attachment change

    Price for changing the policy of a central network.

  4. Confirm the settings and click Submit. The Policies tab is displayed. If Version 2 is in the Applied state, the new policy is applied.

Deleting a Policy

  1. Go to the Central Networks page.
  2. Locate the central network and click its name.
  3. On the Policies tab, locate the policy you want to delete and click Delete on the right.
  4. In the displayed dialog box, click OK.