diff --git a/docs/cce/umn/.placeholder b/docs/cce/umn/.placeholder
deleted file mode 100644
index e69de29b..00000000
diff --git a/docs/cce/umn/ALL_META.TXT.json b/docs/cce/umn/ALL_META.TXT.json
index 45ca625e..bebc082e 100644
--- a/docs/cce/umn/ALL_META.TXT.json
+++ b/docs/cce/umn/ALL_META.TXT.json
@@ -20,7 +20,7 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0236.html",
+		"uri":"cce_bulletin_0000.html",
 		"product_code":"cce",
 		"code":"3",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -43,7 +43,7 @@
 		"uri":"cce_bulletin_0003.html",
 		"product_code":"cce",
 		"code":"5",
-		"des":"This section describes the Kubernetes version support mechanism of CCE.Version number: The format is x.y.z-r{n}, where x.y is the major version and z is the minor version",
+		"des":"This section explains versioning in CCE, and the policies for Kubernetes version support.Version number: The format is x.y.z, where x.y is the major version and z is the ",
 		"doc_type":"usermanual2",
 		"kw":"Kubernetes Version Support Mechanism,Product Bulletin,User Guide",
 		"title":"Kubernetes Version Support Mechanism",
@@ -63,7 +63,7 @@
 		"uri":"cce_bulletin_0301.html",
 		"product_code":"cce",
 		"code":"7",
-		"des":"CCE nodes in Hybrid clusters can run on EulerOS 2.2, EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.The OS patches",
+		"des":"CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.The OS patches and verifica",
 		"doc_type":"usermanual2",
 		"kw":"OS Patch Notes for Cluster Nodes,Product Bulletin,User Guide",
 		"title":"OS Patch Notes for Cluster Nodes",
@@ -80,9 +80,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"CVE-2021-4034.html",
+		"uri":"cce_bulletin_0011.html",
 		"product_code":"cce",
 		"code":"9",
+		"des":"High-risk vulnerabilities:CCE fixes vulnerabilities as soon as possible after the Kubernetes community detects them and releases fixing solutions. The fixing policies are",
+		"doc_type":"usermanual2",
+		"kw":"Vulnerability Fixing Policies,Security Vulnerability Responses,User Guide",
+		"title":"Vulnerability Fixing Policies",
+		"githuburl":""
+	},
+	{
+		"uri":"CVE-2021-4034.html",
+		"product_code":"cce",
+		"code":"10",
 		"des":"Recently, a security research team disclosed a privilege escalation vulnerability (CVE-2021-4034, also dubbed PwnKit) in PolKit's pkexec. Unprivileged users can gain full",
 		"doc_type":"usermanual2",
 		"kw":"Linux Polkit Privilege Escalation Vulnerability (CVE-2021-4034),Security Vulnerability Responses,Use",
@@ -92,17 +102,27 @@
 	{
 		"uri":"cce_bulletin_0206.html",
 		"product_code":"cce",
-		"code":"10",
+		"code":"11",
 		"des":"The Linux Kernel SACK vulnerabilities have been fixed. This section describes the solution to these vulnerabilities.On June 18, 2019, Red Hat released a security notice, ",
 		"doc_type":"usermanual2",
 		"kw":"Notice on Fixing Linux Kernel SACK Vulnerabilities,Security Vulnerability Responses,User Guide",
 		"title":"Notice on Fixing Linux Kernel SACK Vulnerabilities",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_10_0477.html",
+		"product_code":"cce",
+		"code":"12",
+		"des":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
+		"doc_type":"usermanual2",
+		"kw":"Service Account Token Security Improvement,Product Bulletin,User Guide",
+		"title":"Service Account Token Security Improvement",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_01_9994.html",
 		"product_code":"cce",
-		"code":"11",
+		"code":"13",
 		"des":"CCE works closely with multiple cloud services to support computing, storage, networking, and monitoring functions. When you log in to the CCE console for the first time,",
 		"doc_type":"usermanual2",
 		"kw":"Obtaining Resource Permissions,User Guide",
@@ -110,9 +130,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0027.html",
+		"uri":"cce_10_0091.html",
 		"product_code":"cce",
-		"code":"12",
+		"code":"14",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Clusters",
@@ -120,29 +140,109 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0002.html",
+		"uri":"cce_10_0002.html",
 		"product_code":"cce",
-		"code":"13",
-		"des":"Kubernetes is a containerized application software system that can be easily deployed and managed. It facilitates container scheduling and orchestration.For application d",
+		"code":"15",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Cluster Overview,Clusters,User Guide",
+		"kw":"Cluster Overview",
 		"title":"Cluster Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0342.html",
+		"uri":"cce_10_0430.html",
 		"product_code":"cce",
-		"code":"14",
+		"code":"16",
+		"des":"Kubernetes allows you to easily deploy and manage containerized application and facilitates container scheduling and orchestration.For developers, Kubernetes is a cluster",
+		"doc_type":"usermanual2",
+		"kw":"Basic Cluster Information,Cluster Overview,User Guide",
+		"title":"Basic Cluster Information",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0342.html",
+		"product_code":"cce",
+		"code":"17",
 		"des":"The following table lists the differences between CCE Turbo clusters and CCE clusters:The QingTian architecture consists of data plane (software-hardware synergy) and man",
 		"doc_type":"usermanual2",
-		"kw":"CCE Turbo Clusters and CCE Clusters,Clusters,User Guide",
+		"kw":"CCE Turbo Clusters and CCE Clusters,Cluster Overview,User Guide",
 		"title":"CCE Turbo Clusters and CCE Clusters",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0298.html",
+		"uri":"cce_10_0349.html",
 		"product_code":"cce",
-		"code":"15",
+		"code":"18",
+		"des":"kube-proxy is a key component of a Kubernetes cluster. It is responsible for load balancing and forwarding between a Service and its backend pod.CCE supports two forwardi",
+		"doc_type":"usermanual2",
+		"kw":"Comparing iptables and IPVS,Cluster Overview,User Guide",
+		"title":"Comparing iptables and IPVS",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0068.html",
+		"product_code":"cce",
+		"code":"19",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Release Notes",
+		"title":"Release Notes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0467.html",
+		"product_code":"cce",
+		"code":"20",
+		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.25.Kubernetes 1",
+		"doc_type":"usermanual2",
+		"kw":"CCE Kubernetes 1.25 Release Notes,Release Notes,User Guide",
+		"title":"CCE Kubernetes 1.25 Release Notes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0468.html",
+		"product_code":"cce",
+		"code":"21",
+		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.23.Changes in C",
+		"doc_type":"usermanual2",
+		"kw":"CCE Kubernetes 1.23 Release Notes,Release Notes,User Guide",
+		"title":"CCE Kubernetes 1.23 Release Notes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0469.html",
+		"product_code":"cce",
+		"code":"22",
+		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.21.Kubernetes 1",
+		"doc_type":"usermanual2",
+		"kw":"CCE Kubernetes 1.21 Release Notes,Release Notes,User Guide",
+		"title":"CCE Kubernetes 1.21 Release Notes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0470.html",
+		"product_code":"cce",
+		"code":"23",
+		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.19.Kubernetes 1",
+		"doc_type":"usermanual2",
+		"kw":"CCE Kubernetes 1.19 Release Notes,Release Notes,User Guide",
+		"title":"CCE Kubernetes 1.19 Release Notes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0471.html",
+		"product_code":"cce",
+		"code":"24",
+		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.17.All resource",
+		"doc_type":"usermanual2",
+		"kw":"CCE Kubernetes 1.17 Release Notes,Release Notes,User Guide",
+		"title":"CCE Kubernetes 1.17 Release Notes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0298.html",
+		"product_code":"cce",
+		"code":"25",
 		"des":"CCE Turbo clusters run on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and inte",
 		"doc_type":"usermanual2",
 		"kw":"Creating a CCE Turbo Cluster,Clusters,User Guide",
@@ -150,9 +250,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0028.html",
+		"uri":"cce_10_0028.html",
 		"product_code":"cce",
-		"code":"16",
+		"code":"26",
 		"des":"On the CCE console, you can easily create Kubernetes clusters. Kubernetes can manage container clusters at scale. A cluster manages a group of node resources.In CCE, you ",
 		"doc_type":"usermanual2",
 		"kw":"Creating a CCE Cluster,Clusters,User Guide",
@@ -160,9 +260,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0140.html",
+		"uri":"cce_10_0140.html",
 		"product_code":"cce",
-		"code":"17",
+		"code":"27",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Using kubectl to Run a Cluster",
@@ -170,19 +270,29 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0107.html",
+		"uri":"cce_10_0107.html",
 		"product_code":"cce",
-		"code":"18",
+		"code":"28",
 		"des":"This section uses a CCE cluster as an example to describe how to connect to a CCE cluster using kubectl.When you access a cluster using kubectl, CCE uses thekubeconfig.js",
 		"doc_type":"usermanual2",
-		"kw":"Public network access,Connecting to a Cluster Using kubectl,Using kubectl to Run a Cluster,User Guid",
+		"kw":"Connecting to a Cluster Using kubectl,Using kubectl to Run a Cluster,User Guide",
 		"title":"Connecting to a Cluster Using kubectl",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0139.html",
+		"uri":"cce_10_0367.html",
 		"product_code":"cce",
-		"code":"19",
+		"code":"29",
+		"des":"A Subject Alternative Name (SAN) can be signed in to a cluster server certificate. A SAN is usually used by the client to verify the server validity in TLS handshakes. Sp",
+		"doc_type":"usermanual2",
+		"kw":"Customizing a Cluster Certificate SAN,Using kubectl to Run a Cluster,User Guide",
+		"title":"Customizing a Cluster Certificate SAN",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0139.html",
+		"product_code":"cce",
+		"code":"30",
 		"des":"getThe get command displays one or many resources of a cluster.This command prints a table of the most important information about all resources, including cluster nodes,",
 		"doc_type":"usermanual2",
 		"kw":"Common kubectl Commands,Using kubectl to Run a Cluster,User Guide",
@@ -190,29 +300,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0023.html",
+		"uri":"cce_10_0215.html",
 		"product_code":"cce",
-		"code":"20",
-		"des":"Before running kubectl commands, you should have the kubectl development skills and understand the kubectl operations. For details, see Kubernetes API and kubectl CLI.Go ",
-		"doc_type":"usermanual2",
-		"kw":"kubectl,Affinity,Anti-affinity,Workload Access Mode,Advanced Workload Settings,Configuration Center,",
-		"title":"kubectl Usage Guide",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0157.html",
-		"product_code":"cce",
-		"code":"21",
-		"des":"The Cluster Auto Scaling feature allows CCE to automatically scale out a cluster (adding worker nodes to a cluster) according to custom policies when workloads cannot be ",
-		"doc_type":"usermanual2",
-		"kw":"scale out,Cooldown Period,Metric-based policy,Scheduled policy,Periodic policy,Setting Cluster Auto ",
-		"title":"Setting Cluster Auto Scaling",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0215.html",
-		"product_code":"cce",
-		"code":"22",
+		"code":"31",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Upgrading a Cluster",
@@ -220,49 +310,49 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0197.html",
+		"uri":"cce_10_0197.html",
 		"product_code":"cce",
-		"code":"23",
+		"code":"32",
 		"des":"To enable interoperability from one Kubernetes installation to the next, you must upgrade your Kubernetes clusters before the maintenance period ends.After the latest Kub",
 		"doc_type":"usermanual2",
-		"kw":"Overview,Upgrading a Cluster,User Guide",
-		"title":"Overview",
+		"kw":"Upgrade Overview,Upgrading a Cluster,User Guide",
+		"title":"Upgrade Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0302.html",
+		"uri":"cce_10_0302.html",
 		"product_code":"cce",
-		"code":"24",
-		"des":"Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see Overview.Upgraded clusters ca",
+		"code":"33",
+		"des":"Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see Upgrade Overview.Upgraded clu",
 		"doc_type":"usermanual2",
 		"kw":"Before You Start,Upgrading a Cluster,User Guide",
 		"title":"Before You Start",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0120.html",
+		"uri":"cce_10_0120.html",
 		"product_code":"cce",
-		"code":"25",
+		"code":"34",
 		"des":"You can upgrade your clusters to a newer Kubernetes version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgrade",
 		"doc_type":"usermanual2",
-		"kw":"Performing Replace/Rolling Upgrade (v1.13 and Earlier),Upgrading a Cluster,User Guide",
-		"title":"Performing Replace/Rolling Upgrade (v1.13 and Earlier)",
+		"kw":"Performing Replace/Rolling Upgrade,Upgrading a Cluster,User Guide",
+		"title":"Performing Replace/Rolling Upgrade",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0301.html",
+		"uri":"cce_10_0301.html",
 		"product_code":"cce",
-		"code":"26",
-		"des":"On the CCE console, You can perform an in-place cluster upgrade to use new cluster features.Before the upgrade, learn about the target version to which each CCE cluster c",
+		"code":"35",
+		"des":"You can upgrade your clusters to a newer version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what w",
 		"doc_type":"usermanual2",
-		"kw":"Performing In-place Upgrade (v1.15 and Later),Upgrading a Cluster,User Guide",
-		"title":"Performing In-place Upgrade (v1.15 and Later)",
+		"kw":"Performing In-place Upgrade,Upgrading a Cluster,User Guide",
+		"title":"Performing In-place Upgrade",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0210.html",
+		"uri":"cce_10_0210.html",
 		"product_code":"cce",
-		"code":"27",
+		"code":"36",
 		"des":"This section describes how to migrate services from a cluster of an earlier version to a cluster of a later version in CCE.This operation is applicable when a cross-versi",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Services Across Clusters of Different Versions,Upgrading a Cluster,User Guide",
@@ -270,19 +360,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0068.html",
+		"uri":"cce_10_0031.html",
 		"product_code":"cce",
-		"code":"28",
-		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. To enable interoperability from one Kubernetes installation to the nex",
-		"doc_type":"usermanual2",
-		"kw":"CCE Kubernetes Release Notes,Upgrading a Cluster,User Guide",
-		"title":"CCE Kubernetes Release Notes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0031.html",
-		"product_code":"cce",
-		"code":"29",
+		"code":"37",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Managing a Cluster",
@@ -290,9 +370,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0212.html",
+		"uri":"cce_10_0213.html",
 		"product_code":"cce",
-		"code":"30",
+		"code":"38",
+		"des":"CCE allows you to manage cluster parameters, through which you can let core components work under your very requirements.This function is supported only in clusters of v1",
+		"doc_type":"usermanual2",
+		"kw":"Managing Cluster Components,Managing a Cluster,User Guide",
+		"title":"Managing Cluster Components",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0212.html",
+		"product_code":"cce",
+		"code":"39",
 		"des":"This section describes how to delete a cluster.Deleting a cluster will delete the nodes in the cluster (excluding accepted nodes), data disks attached to the nodes, workl",
 		"doc_type":"usermanual2",
 		"kw":"Deleting a Cluster,Managing a Cluster,User Guide",
@@ -300,69 +390,49 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0214.html",
+		"uri":"cce_10_0214.html",
 		"product_code":"cce",
-		"code":"31",
-		"des":"If you do not need to use a cluster temporarily, you are advised to hibernate the cluster to save cluster management costs.After a cluster is hibernated, resources such a",
+		"code":"40",
+		"des":"If you do not need to use a cluster temporarily, you are advised to hibernate the cluster.After a cluster is hibernated, resources such as workloads cannot be created or ",
 		"doc_type":"usermanual2",
 		"kw":"Hibernating and Waking Up a Cluster,Managing a Cluster,User Guide",
 		"title":"Hibernating and Waking Up a Cluster",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0213.html",
+		"uri":"cce_10_0602.html",
 		"product_code":"cce",
-		"code":"32",
-		"des":"CCE clusters allow you to manage Kubernetes parameters, through which you can let core components work under your very requirements.This function is supported only in clu",
+		"code":"41",
+		"des":"If overload control is enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.The c",
 		"doc_type":"usermanual2",
-		"kw":"Configuring Kubernetes Parameters,Managing a Cluster,User Guide",
-		"title":"Configuring Kubernetes Parameters",
+		"kw":"Cluster Overload Control,Managing a Cluster,User Guide",
+		"title":"Cluster Overload Control",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0175.html",
+		"uri":"cce_10_0175.html",
 		"product_code":"cce",
-		"code":"33",
-		"des":"Before accessing cluster resources through open-source Kubernetes APIs, obtain the cluster's certificate.The downloaded certificate contains three files: client.key, clie",
+		"code":"42",
+		"des":"This section describes how to obtain the cluster certificate from the console and use it to access Kubernetes clusters.The downloaded certificate contains three files: cl",
 		"doc_type":"usermanual2",
 		"kw":"Obtaining a Cluster Certificate,Clusters,User Guide",
 		"title":"Obtaining a Cluster Certificate",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0085.html",
+		"uri":"cce_10_0403.html",
 		"product_code":"cce",
-		"code":"34",
-		"des":"This section describes how to control permissions on resources in a cluster, for example, allow user A to read and write application data in a namespace, and user B to on",
+		"code":"43",
+		"des":"CCE allows you to change the number of nodes managed in a cluster.This function is supported for clusters of v1.15 and later versions.Starting from v1.15.11, the number o",
 		"doc_type":"usermanual2",
-		"kw":"Controlling Cluster Permissions,Clusters,User Guide",
-		"title":"Controlling Cluster Permissions",
+		"kw":"Changing Cluster Scale,Clusters,User Guide",
+		"title":"Changing Cluster Scale",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0347.html",
+		"uri":"cce_10_0183.html",
 		"product_code":"cce",
-		"code":"35",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Cluster Parameters",
-		"title":"Cluster Parameters",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0348.html",
-		"product_code":"cce",
-		"code":"36",
-		"des":"The maximum number of pods that can be created on a node is determined by the following parameters:Number of container IP addresses that can be allocated on a node (alpha",
-		"doc_type":"usermanual2",
-		"kw":"Maximum Number of Pods That Can Be Created on a Node,Cluster Parameters,User Guide",
-		"title":"Maximum Number of Pods That Can Be Created on a Node",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0183.html",
-		"product_code":"cce",
-		"code":"37",
+		"code":"44",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"node labels",
@@ -370,89 +440,109 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0180.html",
+		"uri":"cce_10_0180.html",
 		"product_code":"cce",
-		"code":"38",
-		"des":"A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (P",
+		"code":"45",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Overview,Nodes,User Guide",
-		"title":"Overview",
+		"kw":"Node Overview",
+		"title":"Node Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0033.html",
+		"uri":"cce_10_0461.html",
 		"product_code":"cce",
-		"code":"39",
-		"des":"A node is a virtual or physical machine that provides computing resources. Sufficient nodes must be available in your project to ensure that operations, such as creating ",
+		"code":"46",
+		"des":"A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (P",
+		"doc_type":"usermanual2",
+		"kw":"Precautions for Using a Node,Node Overview,User Guide",
+		"title":"Precautions for Using a Node",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0462.html",
+		"product_code":"cce",
+		"code":"47",
+		"des":"Container engines, one of the most important components of Kubernetes, manage the lifecycle of images and containers. The kubelet interacts with a container runtime throu",
+		"doc_type":"usermanual2",
+		"kw":"Container Engine,Node Overview,User Guide",
+		"title":"Container Engine",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0463.html",
+		"product_code":"cce",
+		"code":"48",
+		"des":"The most significant difference is that each Kata container (pod) runs on an independent micro-VM, has an independent OS kernel, and is securely isolated at the virtualiz",
+		"doc_type":"usermanual2",
+		"kw":"Kata Containers and Common Containers,Node Overview,User Guide",
+		"title":"Kata Containers and Common Containers",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0348.html",
+		"product_code":"cce",
+		"code":"49",
+		"des":"The maximum number of pods that can be created on a node is determined by the following parameters:Number of container IP addresses that can be allocated on a node (alpha",
+		"doc_type":"usermanual2",
+		"kw":"Maximum Number of Pods That Can Be Created on a Node,Node Overview,User Guide",
+		"title":"Maximum Number of Pods That Can Be Created on a Node",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0178.html",
+		"product_code":"cce",
+		"code":"50",
+		"des":"Some of the resources on the node need to run some necessary Kubernetes system components and resources to make the node as part of your cluster. Therefore, the total num",
+		"doc_type":"usermanual2",
+		"kw":"node,Kubernetes,Formula for Calculating the Reserved Resources of a Node,Node Overview,User Guide",
+		"title":"Formula for Calculating the Reserved Resources of a Node",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0341.html",
+		"product_code":"cce",
+		"code":"51",
+		"des":"This section describes how to allocate data disk space.When creating a node, you need to configure a data disk whose capacity is greater than or equal to 100GB for the no",
+		"doc_type":"usermanual2",
+		"kw":"Data Disk Space Allocation,Node Overview,User Guide",
+		"title":"Data Disk Space Allocation",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0363.html",
+		"product_code":"cce",
+		"code":"52",
+		"des":"At least one cluster has been created.A key pair has been created for identity authentication upon remote node login.The node has 2-core or higher CPU, 4 GB or larger mem",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Node,Nodes,User Guide",
 		"title":"Creating a Node",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0363.html",
+		"uri":"cce_10_0198.html",
 		"product_code":"cce",
-		"code":"40",
-		"des":"At least one CCE Turbo cluster is available. For details on how to create a cluster, see Creating a CCE Turbo Cluster.A key pair has been created for identity authenticat",
+		"code":"53",
+		"des":"In CCE, you can Creating a Node or add existing nodes (ECSs) into your cluster.While an ECS is being accepted into a cluster, the operating system of the ECS will be rese",
 		"doc_type":"usermanual2",
-		"kw":"Creating a Node in a CCE Turbo Cluster,Nodes,User Guide",
-		"title":"Creating a Node in a CCE Turbo Cluster",
+		"kw":"Adding Nodes for Management,Nodes,User Guide",
+		"title":"Adding Nodes for Management",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0338.html",
+		"uri":"cce_10_0338.html",
 		"product_code":"cce",
-		"code":"41",
-		"des":"Removing a node from a cluster in CCE will re-install the node OS and clear CCE components on the node.Removing a node will not delete the server (ECS) corresponding to t",
+		"code":"54",
+		"des":"Removing a node from a cluster will re-install the node OS and clear CCE components on the node.Removing a node will not delete the server corresponding to the node. You ",
 		"doc_type":"usermanual2",
 		"kw":"Removing a Node,Nodes,User Guide",
 		"title":"Removing a Node",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0185.html",
+		"uri":"cce_10_0003.html",
 		"product_code":"cce",
-		"code":"42",
-		"des":"If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).Only login to a running ECS is allowed.Only the user linux can l",
-		"doc_type":"usermanual2",
-		"kw":"Logging In to a Node,Nodes,User Guide",
-		"title":"Logging In to a Node",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0004.html",
-		"product_code":"cce",
-		"code":"43",
-		"des":"You can add different labels to nodes and define different attributes for labels. By using these node labels, you can quickly understand the characteristics of each node.",
-		"doc_type":"usermanual2",
-		"kw":"node labels,Inherent Label of a Node,Deleting a Node Label,Managing Node Labels,Nodes,User Guide",
-		"title":"Managing Node Labels",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0184.html",
-		"product_code":"cce",
-		"code":"44",
-		"des":"Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.Some inf",
-		"doc_type":"usermanual2",
-		"kw":"Synchronizing Node Data,Nodes,User Guide",
-		"title":"Synchronizing Node Data",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0352.html",
-		"product_code":"cce",
-		"code":"45",
-		"des":"Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.A taint is a key-value pair associated with an effect. The following ef",
-		"doc_type":"usermanual2",
-		"kw":"Configuring Node Scheduling (Tainting),Nodes,User Guide",
-		"title":"Configuring Node Scheduling (Tainting)",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0003.html",
-		"product_code":"cce",
-		"code":"46",
+		"code":"55",
 		"des":"You can reset a node to modify the node configuration, such as the node OS and login mode.Resetting a node will reinstall the node OS and the Kubernetes software on the n",
 		"doc_type":"usermanual2",
 		"kw":"Resetting a Node,Nodes,User Guide",
@@ -460,9 +550,49 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0186.html",
+		"uri":"cce_10_0185.html",
 		"product_code":"cce",
-		"code":"47",
+		"code":"56",
+		"des":"If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).Only login to a running ECS is allowed.Only the user linux can l",
+		"doc_type":"usermanual2",
+		"kw":"Logging In to a Node,Nodes,User Guide",
+		"title":"Logging In to a Node",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0004.html",
+		"product_code":"cce",
+		"code":"57",
+		"des":"You can add different labels to nodes and define different attributes for labels. By using these node labels, you can quickly understand the characteristics of each node.",
+		"doc_type":"usermanual2",
+		"kw":"node labels,Inherent Label of a Node,Managing Node Labels,Nodes,User Guide",
+		"title":"Managing Node Labels",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0352.html",
+		"product_code":"cce",
+		"code":"58",
+		"des":"Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.A taint is a key-value pair associated with an effect. The following ef",
+		"doc_type":"usermanual2",
+		"kw":"Managing Node Taints,Nodes,User Guide",
+		"title":"Managing Node Taints",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0184.html",
+		"product_code":"cce",
+		"code":"59",
+		"des":"Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.Some inf",
+		"doc_type":"usermanual2",
+		"kw":"Synchronizing Data with Cloud Servers,Nodes,User Guide",
+		"title":"Synchronizing Data with Cloud Servers",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0186.html",
+		"product_code":"cce",
+		"code":"60",
 		"des":"When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.After a CCE cluster is deleted",
 		"doc_type":"usermanual2",
 		"kw":"Deleting a Node,Nodes,User Guide",
@@ -470,9 +600,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0036.html",
+		"uri":"cce_10_0036.html",
 		"product_code":"cce",
-		"code":"48",
+		"code":"61",
 		"des":"After a node in the cluster is stopped, services on the node are also stopped. Before stopping a node, ensure that discontinuity of the services on the node will not resu",
 		"doc_type":"usermanual2",
 		"kw":"Stopping a Node,Nodes,User Guide",
@@ -480,9 +610,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0276.html",
+		"uri":"cce_10_0276.html",
 		"product_code":"cce",
-		"code":"49",
+		"code":"62",
 		"des":"In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. Figure 1 shows the migration process.The o",
 		"doc_type":"usermanual2",
 		"kw":"Performing Rolling Upgrade for Nodes,Nodes,User Guide",
@@ -490,49 +620,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0178.html",
+		"uri":"cce_10_0035.html",
 		"product_code":"cce",
-		"code":"50",
-		"des":"Some of the resources on the node need to run some necessary Kubernetes system components and resources to make the node as part of your cluster. Therefore, the total num",
-		"doc_type":"usermanual2",
-		"kw":"node,Kubernetes,Formula for Calculating the Reserved Resources of a Node,Nodes,User Guide",
-		"title":"Formula for Calculating the Reserved Resources of a Node",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0200.html",
-		"product_code":"cce",
-		"code":"51",
-		"des":"This section describes how to check whether there are available raw disks and Linux LVM disk partitions and how to create Linux LVM disk partitions.To improve the system ",
-		"doc_type":"usermanual2",
-		"kw":"direct-lvm,raw disk,Creating a Linux LVM Disk Partition for Docker,Nodes,User Guide",
-		"title":"Creating a Linux LVM Disk Partition for Docker",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0341.html",
-		"product_code":"cce",
-		"code":"52",
-		"des":"When creating a node, you need to configure data disks for the node.The data disk is divided into Kubernetes space and user space. The user space defines the space that i",
-		"doc_type":"usermanual2",
-		"kw":"Data Disk Space Allocation,Nodes,User Guide",
-		"title":"Data Disk Space Allocation",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0344.html",
-		"product_code":"cce",
-		"code":"53",
-		"des":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).When creating a node in a cluster of v1.13.10 or later, if a data disk is not manage",
-		"doc_type":"usermanual2",
-		"kw":"Adding a Second Data Disk to a Node in a CCE Cluster,Nodes,User Guide",
-		"title":"Adding a Second Data Disk to a Node in a CCE Cluster",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0035.html",
-		"product_code":"cce",
-		"code":"54",
+		"code":"63",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Node Pools",
@@ -540,9 +630,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0081.html",
+		"uri":"cce_10_0081.html",
 		"product_code":"cce",
-		"code":"55",
+		"code":"64",
 		"des":"CCE introduces node pools to help you better manage nodes in Kubernetes clusters. A node pool contains one node or a group of nodes with identical configuration in a clus",
 		"doc_type":"usermanual2",
 		"kw":"Deploying a Workload in a Specified Node Pool,Node Pool Overview,Node Pools,User Guide",
@@ -550,19 +640,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0012.html",
+		"uri":"cce_10_0012.html",
 		"product_code":"cce",
-		"code":"56",
-		"des":"This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see Node Pool Overview.For details abou",
+		"code":"65",
+		"des":"This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see Node Pool Overview.The autoscaler a",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Node Pool,Node Pools,User Guide",
 		"title":"Creating a Node Pool",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0222.html",
+		"uri":"cce_10_0222.html",
 		"product_code":"cce",
-		"code":"57",
+		"code":"66",
 		"des":"The default node pool DefaultPool does not support the following management operations.CCE allows you to highly customize Kubernetes parameter settings on core components",
 		"doc_type":"usermanual2",
 		"kw":"Managing a Node Pool,Node Pools,User Guide",
@@ -570,19 +660,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0046.html",
+		"uri":"cce_10_0046.html",
 		"product_code":"cce",
-		"code":"58",
+		"code":"67",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"scaling policies",
+		"kw":"Workloads",
 		"title":"Workloads",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0006.html",
+		"uri":"cce_10_0006.html",
 		"product_code":"cce",
-		"code":"59",
+		"code":"68",
 		"des":"A workload is an application running on Kubernetes. No matter how many components are there in your workload, you can run it in a group of Kubernetes pods. A workload is ",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Workloads,User Guide",
@@ -590,89 +680,69 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0047.html",
+		"uri":"cce_10_0047.html",
 		"product_code":"cce",
-		"code":"60",
+		"code":"69",
 		"des":"Deployments are workloads (for example, Nginx) that do not store any data or status. You can create Deployments on the CCE console or by running kubectl commands.Before c",
 		"doc_type":"usermanual2",
-		"kw":"Create YAML,create a workload using kubectl,Creating a Deployment,Workloads,User Guide",
+		"kw":"create a workload using kubectl,Creating a Deployment,Workloads,User Guide",
 		"title":"Creating a Deployment",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0048.html",
+		"uri":"cce_10_0048.html",
 		"product_code":"cce",
-		"code":"61",
+		"code":"70",
 		"des":"StatefulSets are a type of workloads whose data or status is stored while they are running. For example, MySQL is a StatefulSet because it needs to store new data.A conta",
 		"doc_type":"usermanual2",
-		"kw":"Create YAML,Using kubectl,Creating a StatefulSet,Workloads,User Guide",
+		"kw":"Using kubectl,Creating a StatefulSet,Workloads,User Guide",
 		"title":"Creating a StatefulSet",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0216.html",
+		"uri":"cce_10_0216.html",
 		"product_code":"cce",
-		"code":"62",
+		"code":"71",
 		"des":"CCE provides deployment and management capabilities for multiple types of containers and supports features of container workloads, including creation, configuration, moni",
 		"doc_type":"usermanual2",
-		"kw":"Creating a DaemonSet,Workloads,User Guide",
+		"kw":"create a workload using kubectl,Creating a DaemonSet,Workloads,User Guide",
 		"title":"Creating a DaemonSet",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0150.html",
+		"uri":"cce_10_0150.html",
 		"product_code":"cce",
-		"code":"63",
+		"code":"72",
 		"des":"Jobs are short-lived and run for a certain time to completion. They can be executed immediately after being deployed. It is completed after it exits normally (exit 0).A j",
 		"doc_type":"usermanual2",
-		"kw":"private container image,My Images,authenticated,Shared Images,Creating a Job,Workloads,User Guide",
+		"kw":"Creating a Job,Workloads,User Guide",
 		"title":"Creating a Job",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0151.html",
+		"uri":"cce_10_0151.html",
 		"product_code":"cce",
-		"code":"64",
+		"code":"73",
 		"des":"A cron job runs on a repeating schedule. You can perform time synchronization for all active nodes at a fixed time point.A cron job runs periodically at the specified tim",
 		"doc_type":"usermanual2",
-		"kw":"time synchronization,private container image,Concurrency Policy,Forbid,Allow,Replace,Schedule,My Ima",
+		"kw":"time synchronization,Creating a Cron Job,Workloads,User Guide",
 		"title":"Creating a Cron Job",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0013.html",
+		"uri":"cce_10_0007.html",
 		"product_code":"cce",
-		"code":"65",
-		"des":"A pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. A pod encapsulates an application's container (or, in some cases, multip",
+		"code":"74",
+		"des":"After a workload is created, you can upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.Workload/Job managementOperationDescriptionMonitor",
 		"doc_type":"usermanual2",
-		"kw":"Deleting a Pod,Managing Pods,Workloads,User Guide",
-		"title":"Managing Pods",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0007.html",
-		"product_code":"cce",
-		"code":"66",
-		"des":"After a workload is created, you can scale, upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.Workload/Job managementOperationDescription",
-		"doc_type":"usermanual2",
-		"kw":"Add Label,Managing Workloads and Jobs,Workloads,User Guide",
+		"kw":"Managing Workloads and Jobs,Workloads,User Guide",
 		"title":"Managing Workloads and Jobs",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0057.html",
+		"uri":"cce_10_0130.html",
 		"product_code":"cce",
-		"code":"67",
-		"des":"After scaling policies are defined, pods can be automatically added or deleted based on resource changes, fixed time, and fixed periods. You do not need to manually adjus",
-		"doc_type":"usermanual2",
-		"kw":"scaling policies,Metric-based policy,Scheduled policy,Periodic policy,Scaling a Workload,Workloads,U",
-		"title":"Scaling a Workload",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0130.html",
-		"product_code":"cce",
-		"code":"68",
+		"code":"75",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Configuring a Container",
@@ -680,9 +750,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0009.html",
+		"uri":"cce_10_0396.html",
 		"product_code":"cce",
-		"code":"69",
+		"code":"76",
+		"des":"A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click Add Container in the upper right corner to add multiple ",
+		"doc_type":"usermanual2",
+		"kw":"Setting Basic Container Information,Configuring a Container,User Guide",
+		"title":"Setting Basic Container Information",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0009.html",
+		"product_code":"cce",
+		"code":"77",
 		"des":"CCE allows you to create workloads using images pulled from third-party image repositories.Generally, a third-party image repository can be accessed only after authentica",
 		"doc_type":"usermanual2",
 		"kw":"Using a Third-Party Image,Configuring a Container,User Guide",
@@ -690,189 +770,159 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0163.html",
+		"uri":"cce_10_0163.html",
 		"product_code":"cce",
-		"code":"70",
-		"des":"CCE allows you to set resource limits for added containers during workload creation. You can request and limit the CPU and memory quotas used by each pod in the workload.",
+		"code":"78",
+		"des":"CCE allows you to set resource limits for added containers during workload creation. You can apply for and limit the CPU and memory quotas used by each pod in a workload.",
 		"doc_type":"usermanual2",
 		"kw":"Setting Container Specifications,Configuring a Container,User Guide",
 		"title":"Setting Container Specifications",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0105.html",
+		"uri":"cce_10_0105.html",
 		"product_code":"cce",
-		"code":"71",
+		"code":"79",
 		"des":"CCE provides callback functions for the lifecycle management of containerized applications. For example, if you want a container to perform a certain operation before sto",
 		"doc_type":"usermanual2",
-		"kw":"Start Command,Post-Start,Pre-Stop,CLI,CLI,Setting Container Lifecycle Parameters,Configuring a Conta",
+		"kw":"Startup Command,Post-Start,Pre-Stop,Setting Container Lifecycle Parameters,Configuring a Container,U",
 		"title":"Setting Container Lifecycle Parameters",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0008.html",
+		"uri":"cce_10_0112.html",
 		"product_code":"cce",
-		"code":"72",
-		"des":"When creating a workload or job, you can use an image to specify the processes running in the container.By default, the image runs the default command. To run a specific ",
+		"code":"80",
+		"des":"Health check regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect application ex",
 		"doc_type":"usermanual2",
-		"kw":"Commands and parameters used to run a container,Setting the Startup Command,Setting Container Startu",
-		"title":"Setting Container Startup Commands",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0112.html",
-		"product_code":"cce",
-		"code":"73",
-		"des":"Health check regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect service except",
-		"doc_type":"usermanual2",
-		"kw":"Health check,Health Check Methods,HTTP request,TCP port,CLI,Setting Health Check for a Container,Con",
+		"kw":"Health check,HTTP request,TCP port,CLI,Setting Health Check for a Container,Configuring a Container,",
 		"title":"Setting Health Check for a Container",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0113.html",
+		"uri":"cce_10_0113.html",
 		"product_code":"cce",
-		"code":"74",
+		"code":"81",
 		"des":"An environment variable is a variable whose value can affect the way a running container will behave. You can modify environment variables even after workloads are deploy",
 		"doc_type":"usermanual2",
-		"kw":"Manually add environment variables,import environment variables from a secret,import environment var",
+		"kw":"Setting an Environment Variable,Configuring a Container,User Guide",
 		"title":"Setting an Environment Variable",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0149.html",
-		"product_code":"cce",
-		"code":"75",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Affinity and Anti-Affinity Scheduling",
-		"title":"Affinity and Anti-Affinity Scheduling",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0051.html",
-		"product_code":"cce",
-		"code":"76",
-		"des":"CCE supports custom and simple scheduling policies. A custom scheduling policy allows you to customize node affinity, workload affinity, and workload anti-affinity to mee",
-		"doc_type":"usermanual2",
-		"kw":"Simple Scheduling Policies,Workload-AZ affinity,Workload-node affinity,Workload-workload affinity,Sc",
-		"title":"Scheduling Policy Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0231.html",
-		"product_code":"cce",
-		"code":"77",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Custom Scheduling Policies",
-		"title":"Custom Scheduling Policies",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0232.html",
-		"product_code":"cce",
-		"code":"78",
-		"des":"This section uses Nginx as an example to describe how to configure node affinity.PrerequisitesA workload that uses the nginx container image has been deployed on a node.P",
-		"doc_type":"usermanual2",
-		"kw":"Node Affinity,Custom Scheduling Policies,User Guide",
-		"title":"Node Affinity",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0233.html",
-		"product_code":"cce",
-		"code":"79",
-		"des":"Workload affinity determines the pods as which the target workload will be deployed in the same topology domain.There are two types of pod affinity rules: Required (hard ",
-		"doc_type":"usermanual2",
-		"kw":"Workload Affinity,Custom Scheduling Policies,User Guide",
-		"title":"Workload Affinity",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0234.html",
-		"product_code":"cce",
-		"code":"80",
-		"des":"Workload anti-affinity determines the pods from which the target workload will be deployed in a different topology domain.There are two types of pod anti-affinity rules: ",
-		"doc_type":"usermanual2",
-		"kw":"Workload Anti-Affinity,Custom Scheduling Policies,User Guide",
-		"title":"Workload Anti-Affinity",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0230.html",
-		"product_code":"cce",
-		"code":"81",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Simple Scheduling Policies",
-		"title":"Simple Scheduling Policies",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0228.html",
+		"uri":"cce_10_0353.html",
 		"product_code":"cce",
 		"code":"82",
-		"des":"The created workload will be deployed in the selected AZ.This section uses an Nginx workload as an example to describe how to create a workload using kubectl.Prerequisite",
+		"des":"When a workload is created, the container image is pulled from the image repository to the node. The image is also pulled when the workload is restarted or upgraded.By de",
 		"doc_type":"usermanual2",
-		"kw":"Workload-AZ Affinity,Simple Scheduling Policies,User Guide",
-		"title":"Workload-AZ Affinity",
+		"kw":"Configuring an Image Pull Policy,Configuring a Container,User Guide",
+		"title":"Configuring an Image Pull Policy",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0229.html",
+		"uri":"cce_10_0354.html",
 		"product_code":"cce",
 		"code":"83",
-		"des":"The created workload is not deployed on the selected AZ.This section uses Nginx as an example to describe how to create a workload using kubectl.PrerequisitesThe ECS wher",
+		"des":"When creating a workload, you can configure containers to use the same time zone as the node. You can enable time zone synchronization when creating a workload.The time z",
 		"doc_type":"usermanual2",
-		"kw":"Workload-AZ Anti-Affinity,Simple Scheduling Policies,User Guide",
-		"title":"Workload-AZ Anti-Affinity",
+		"kw":"Configuring Time Zone Synchronization,Configuring a Container,User Guide",
+		"title":"Configuring Time Zone Synchronization",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0225.html",
+		"uri":"cce_10_0397.html",
 		"product_code":"cce",
 		"code":"84",
-		"des":"If you select multiple nodes, the system automatically chooses one of them during workload deployment.This section uses an Nginx workload as an example to describe how to",
+		"des":"In actual applications, upgrade is a common operation. A Deployment, StatefulSet, or DaemonSet can easily support application upgrade.You can set different upgrade polici",
 		"doc_type":"usermanual2",
-		"kw":"Workload-Node Affinity,Simple Scheduling Policies,User Guide",
-		"title":"Workload-Node Affinity",
+		"kw":"Configuring the Workload Upgrade Policy,Configuring a Container,User Guide",
+		"title":"Configuring the Workload Upgrade Policy",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0226.html",
+		"uri":"cce_10_0232.html",
 		"product_code":"cce",
 		"code":"85",
-		"des":"If you select multiple nodes, the workload will not be deployed on these nodes.This section uses Nginx as an example to describe how to create a workload using kubectl.Pr",
+		"des":"A nodeSelector provides a very simple way to constrain pods to nodes with particular labels, as mentioned in Creating a DaemonSet. The affinity and anti-affinity feature ",
 		"doc_type":"usermanual2",
-		"kw":"Workload-Node Anti-Affinity,Simple Scheduling Policies,User Guide",
-		"title":"Workload-Node Anti-Affinity",
+		"kw":"Scheduling Policy (Affinity/Anti-affinity),Configuring a Container,User Guide",
+		"title":"Scheduling Policy (Affinity/Anti-affinity)",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0220.html",
+		"uri":"cce_10_0345.html",
 		"product_code":"cce",
 		"code":"86",
-		"des":"The workload to be created will be deployed on the same node as the selected affinity workloads.This section uses Nginx as an example to describe how to create a workload",
+		"des":"You can use GPUs in CCE containers.A GPU node has been created. For details, see Creating a Node.The gpu-beta add-on has been installed. During the installation, select t",
 		"doc_type":"usermanual2",
-		"kw":"Workload-Workload Affinity,Simple Scheduling Policies,User Guide",
-		"title":"Workload-Workload Affinity",
+		"kw":"GPU Scheduling,Workloads,User Guide",
+		"title":"GPU Scheduling",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0227.html",
+		"uri":"cce_10_0551.html",
 		"product_code":"cce",
 		"code":"87",
-		"des":"The workload to be created and the selected workloads will be deployed on different nodes.This section uses Nginx as an example to describe how to create a workload using",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Workload-Workload Anti-Affinity,Simple Scheduling Policies,User Guide",
-		"title":"Workload-Workload Anti-Affinity",
+		"kw":"CPU Core Binding",
+		"title":"CPU Core Binding",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0020.html",
+		"uri":"cce_10_0351.html",
 		"product_code":"cce",
 		"code":"88",
+		"des":"By default, kubelet uses CFS quotas to enforce pod CPU limits. When the node runs many CPU-bound pods, the workload can move to different CPU cores depending on whether t",
+		"doc_type":"usermanual2",
+		"kw":"Binding CPU Cores,CPU Core Binding,User Guide",
+		"title":"Binding CPU Cores",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0386.html",
+		"product_code":"cce",
+		"code":"89",
+		"des":"CCE allows you to add annotations to a YAML file to realize some advanced pod functions. The following table describes the annotations you can add.When you create a workl",
+		"doc_type":"usermanual2",
+		"kw":"Pod Labels and Annotations,Workloads,User Guide",
+		"title":"Pod Labels and Annotations",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0423.html",
+		"product_code":"cce",
+		"code":"90",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Volcano Scheduling",
+		"title":"Volcano Scheduling",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0384.html",
+		"product_code":"cce",
+		"code":"91",
+		"des":"Jobs can be classified into online jobs and offline jobs based on whether services are always online.Online job: Such jobs run for a long time, with regular traffic surge",
+		"doc_type":"usermanual2",
+		"kw":"Hybrid Deployment of Online and Offline Jobs,Volcano Scheduling,User Guide",
+		"title":"Hybrid Deployment of Online and Offline Jobs",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0288.html",
+		"product_code":"cce",
+		"code":"92",
+		"des":"When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a cust",
+		"doc_type":"usermanual2",
+		"kw":"Security Group Policies,Workloads,User Guide",
+		"title":"Security Group Policies",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0020.html",
+		"product_code":"cce",
+		"code":"93",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Networking",
@@ -880,9 +930,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0010.html",
+		"uri":"cce_10_0010.html",
 		"product_code":"cce",
-		"code":"89",
+		"code":"94",
 		"des":"You can learn about a cluster network from the following two aspects:What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are ru",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Networking,User Guide",
@@ -890,9 +940,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0280.html",
+		"uri":"cce_10_0280.html",
 		"product_code":"cce",
-		"code":"90",
+		"code":"95",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Container Network Models",
@@ -900,19 +950,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0281.html",
+		"uri":"cce_10_0281.html",
 		"product_code":"cce",
-		"code":"91",
-		"des":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Con",
+		"code":"96",
+		"des":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Tun",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Container Network Models,User Guide",
 		"title":"Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0282.html",
+		"uri":"cce_10_0282.html",
 		"product_code":"cce",
-		"code":"92",
+		"code":"97",
 		"des":"The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet pac",
 		"doc_type":"usermanual2",
 		"kw":"Container Tunnel Network,Container Network Models,User Guide",
@@ -920,9 +970,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0283.html",
+		"uri":"cce_10_0283.html",
 		"product_code":"cce",
-		"code":"93",
+		"code":"98",
 		"des":"The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes",
 		"doc_type":"usermanual2",
 		"kw":"VPC Network,Container Network Models,User Guide",
@@ -930,9 +980,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0284.html",
+		"uri":"cce_10_0284.html",
 		"product_code":"cce",
-		"code":"94",
+		"code":"99",
 		"des":"Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are all",
 		"doc_type":"usermanual2",
 		"kw":"Cloud Native Network 2.0,Container Network Models,User Guide",
@@ -940,9 +990,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0247.html",
+		"uri":"cce_10_0247.html",
 		"product_code":"cce",
-		"code":"95",
+		"code":"100",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Services",
@@ -950,19 +1000,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0249.html",
+		"uri":"cce_10_0249.html",
 		"product_code":"cce",
-		"code":"96",
+		"code":"101",
 		"des":"After a pod is created, the following problems may occur if you directly access the pod:The pod can be deleted and recreated at any time by a controller such as a Deploym",
 		"doc_type":"usermanual2",
-		"kw":"Overview,Services,User Guide",
-		"title":"Overview",
+		"kw":"Service Overview,Services,User Guide",
+		"title":"Service Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0011.html",
+		"uri":"cce_10_0011.html",
 		"product_code":"cce",
-		"code":"97",
+		"code":"102",
 		"des":"ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.The cluster-internal domain name format is <Service",
 		"doc_type":"usermanual2",
 		"kw":"Intra-Cluster Access (ClusterIP),Services,User Guide",
@@ -970,19 +1020,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0142.html",
+		"uri":"cce_10_0142.html",
 		"product_code":"cce",
-		"code":"98",
+		"code":"103",
 		"des":"A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By re",
 		"doc_type":"usermanual2",
-		"kw":"workload,NodePort,Services,User Guide",
+		"kw":"NodePort,Services,User Guide",
 		"title":"NodePort",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0014.html",
+		"uri":"cce_10_0014.html",
 		"product_code":"cce",
-		"code":"99",
+		"code":"104",
 		"des":"A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.The LoadBalancer access address is in the format of <I",
 		"doc_type":"usermanual2",
 		"kw":"LoadBalancer,Services,User Guide",
@@ -990,169 +1040,239 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0114.html",
+		"uri":"cce_10_0398.html",
 		"product_code":"cce",
-		"code":"100",
-		"des":"An ENI LoadBalancer Service directs traffic from a load balancer at backend pods, reducing the latency and avoiding performance loss for containerized applications.Extern",
+		"code":"105",
+		"des":"The preceding types of Services allow internal and external pod access, but not the following scenarios:Accessing all pods at the same timePods in a Service accessing eac",
 		"doc_type":"usermanual2",
-		"kw":"ENI LoadBalancer,Services,User Guide",
-		"title":"ENI LoadBalancer",
+		"kw":"Headless Service,Services,User Guide",
+		"title":"Headless Service",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0248.html",
+		"uri":"cce_10_0385.html",
 		"product_code":"cce",
-		"code":"101",
+		"code":"106",
+		"des":"CCE allows you to add annotations to a YAML file to realize some advanced Service functions. The following table describes the annotations you can add.The annotations of ",
+		"doc_type":"usermanual2",
+		"kw":"Service Annotations,Services,User Guide",
+		"title":"Service Annotations",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0248.html",
+		"product_code":"cce",
+		"code":"107",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Ingress",
-		"title":"Ingress",
+		"kw":"Ingresses",
+		"title":"Ingresses",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0094.html",
+		"uri":"cce_10_0094.html",
 		"product_code":"cce",
-		"code":"102",
+		"code":"108",
 		"des":"A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a l",
 		"doc_type":"usermanual2",
-		"kw":"Overview,Ingress,User Guide",
-		"title":"Overview",
+		"kw":"Ingress Overview,Ingresses,User Guide",
+		"title":"Ingress Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0251.html",
+		"uri":"cce_10_0251.html",
 		"product_code":"cce",
-		"code":"103",
+		"code":"109",
 		"des":"An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a workload by referring to",
 		"doc_type":"usermanual2",
-		"kw":"Using ELB Ingresses on the Console,Ingress,User Guide",
+		"kw":"Using ELB Ingresses on the Console,Ingresses,User Guide",
 		"title":"Using ELB Ingresses on the Console",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0252.html",
+		"uri":"cce_10_0252.html",
 		"product_code":"cce",
-		"code":"104",
+		"code":"110",
 		"des":"This section uses an Nginx workload as an example to describe how to create an ELB ingress using kubectl.If no load balancer is available in the same VPC, CCE can automat",
 		"doc_type":"usermanual2",
-		"kw":"TLS certificate configuration,HTTPS,Using kubectl to Create an ELB Ingress,Ingress,User Guide",
+		"kw":"Using kubectl to Create an ELB Ingress,Ingresses,User Guide",
 		"title":"Using kubectl to Create an ELB Ingress",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0059.html",
+		"uri":"cce_10_0359.html",
 		"product_code":"cce",
-		"code":"105",
-		"des":"As the service logic becomes increasingly complex, many applications require network calls between modules. Traditional external firewalls or application-based firewalls ",
+		"code":"111",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"DNS",
+		"title":"DNS",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0360.html",
+		"product_code":"cce",
+		"code":"112",
+		"des":"When you create a cluster, the coredns add-on is installed to resolve domain names in the cluster.You can view the pod of the coredns add-on in the kube-system namespace.",
+		"doc_type":"usermanual2",
+		"kw":"Overview,DNS,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0365.html",
+		"product_code":"cce",
+		"code":"113",
+		"des":"Every Kubernetes cluster has a built-in DNS add-on (Kube-DNS or CoreDNS) to provide domain name resolution for workloads in the cluster. When handling a high concurrency ",
+		"doc_type":"usermanual2",
+		"kw":"DNS Configuration,DNS,User Guide",
+		"title":"DNS Configuration",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0361.html",
+		"product_code":"cce",
+		"code":"114",
+		"des":"When using CCE, you may need to resolve custom internal domain names in the following scenarios:In the legacy code, a fixed domain name is configured for calling other in",
+		"doc_type":"usermanual2",
+		"kw":"Using CoreDNS for Custom Domain Name Resolution,DNS,User Guide",
+		"title":"Using CoreDNS for Custom Domain Name Resolution",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0399.html",
+		"product_code":"cce",
+		"code":"115",
+		"des":"This section describes how to access an intranet from a container (outside the cluster in a VPC), including intra-VPC access and cross-VPC access.The performance of acces",
+		"doc_type":"usermanual2",
+		"kw":"Configuring Intra-VPC Access,Networking,User Guide",
+		"title":"Configuring Intra-VPC Access",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0400.html",
+		"product_code":"cce",
+		"code":"116",
+		"des":"Containers can access public networks in either of the following ways:Bind a public IP address to the node where the container is located if the network model is VPC netw",
+		"doc_type":"usermanual2",
+		"kw":"Accessing Public Networks from a Container,Networking,User Guide",
+		"title":"Accessing Public Networks from a Container",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0059.html",
+		"product_code":"cce",
+		"code":"117",
+		"des":"NetworkPolicy is a Kubernetes object used to restrict pod access. In CCE, by setting network policies, you can define ingress rules specifying the addresses to access pod",
 		"doc_type":"usermanual2",
 		"kw":"Network Policies,Networking,User Guide",
 		"title":"Network Policies",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0288.html",
+		"uri":"cce_10_0402.html",
 		"product_code":"cce",
-		"code":"106",
-		"des":"When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a cust",
+		"code":"118",
+		"des":"Kubernetes allows pods to directly use the host/node network.Add hostNetwork: true to the pod definition.The configuration succeeds if the pod IP is the same as the node ",
 		"doc_type":"usermanual2",
-		"kw":"SecurityGroups,Networking,User Guide",
-		"title":"SecurityGroups",
+		"kw":"Host Network,Networking,User Guide",
+		"title":"Host Network",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0042.html",
+		"uri":"cce_10_0374.html",
 		"product_code":"cce",
-		"code":"107",
+		"code":"119",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Storage (CSI)",
-		"title":"Storage (CSI)",
+		"kw":"Storage",
+		"title":"Storage",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0307.html",
+		"uri":"cce_10_0307.html",
 		"product_code":"cce",
-		"code":"108",
+		"code":"120",
 		"des":"On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The",
 		"doc_type":"usermanual2",
-		"kw":"Overview,Storage (CSI),User Guide",
+		"kw":"Overview,Storage,User Guide",
 		"title":"Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0053.html",
+		"uri":"cce_10_0377.html",
 		"product_code":"cce",
-		"code":"109",
+		"code":"121",
 		"des":"You can mount a file directory of the host where a container is located to a specified container path (the hostPath mode in Kubernetes) for persistent data storage. Alter",
 		"doc_type":"usermanual2",
-		"kw":"Using Local Disks as Storage Volumes,Storage (CSI),User Guide",
+		"kw":"Using Local Disks as Storage Volumes,Storage,User Guide",
 		"title":"Using Local Disks as Storage Volumes",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0379.html",
+		"uri":"cce_10_0379.html",
 		"product_code":"cce",
-		"code":"110",
+		"code":"122",
 		"des":"A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource.On the new CCE console (the cluster needs to be upgraded to v1.19.10 or",
 		"doc_type":"usermanual2",
-		"kw":"PersistentVolumes (PVs),Storage (CSI),User Guide",
+		"kw":"PersistentVolumes (PVs),Storage,User Guide",
 		"title":"PersistentVolumes (PVs)",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0378.html",
+		"uri":"cce_10_0378.html",
 		"product_code":"cce",
-		"code":"111",
+		"code":"123",
 		"des":"A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are",
 		"doc_type":"usermanual2",
-		"kw":"PersistentVolumeClaims (PVCs),Storage (CSI),User Guide",
+		"kw":"PersistentVolumeClaims (PVCs),Storage,User Guide",
 		"title":"PersistentVolumeClaims (PVCs)",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0380.html",
+		"uri":"cce_10_0380.html",
 		"product_code":"cce",
-		"code":"112",
+		"code":"124",
 		"des":"StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as ",
 		"doc_type":"usermanual2",
-		"kw":"StorageClass,Storage (CSI),User Guide",
+		"kw":"StorageClass,Storage,User Guide",
 		"title":"StorageClass",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0211.html",
+		"uri":"cce_10_0381.html",
 		"product_code":"cce",
-		"code":"113",
+		"code":"125",
 		"des":"CCE works with EVS to support snapshots. A snapshot is a complete copy or image of EVS disk data at a certain point of time, which can be used for data DR.You can create ",
 		"doc_type":"usermanual2",
-		"kw":"Snapshots and Backups,Storage (CSI),User Guide",
+		"kw":"Snapshots and Backups,Storage,User Guide",
 		"title":"Snapshots and Backups",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0336.html",
+		"uri":"cce_10_0336.html",
 		"product_code":"cce",
-		"code":"114",
+		"code":"126",
 		"des":"You can solve this issue by using Everest 1.2.8 and later versions to use custom access keys for different IAM users.The everest add-on version must be 1.2.8 or later.The",
 		"doc_type":"usermanual2",
-		"kw":"Using a Custom AK/SK to Mount an OBS Volume,Storage (CSI),User Guide",
+		"kw":"Using a Custom AK/SK to Mount an OBS Volume,Storage,User Guide",
 		"title":"Using a Custom AK/SK to Mount an OBS Volume",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0337.html",
+		"uri":"cce_10_0337.html",
 		"product_code":"cce",
-		"code":"115",
+		"code":"127",
 		"des":"You can mount cloud storage volumes to your containers and use these volumes as local directories.This section describes how to set mount options when mounting SFS and OB",
 		"doc_type":"usermanual2",
-		"kw":"Setting Mount Options,Storage (CSI),User Guide",
+		"kw":"Setting Mount Options,Storage,User Guide",
 		"title":"Setting Mount Options",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0393.html",
+		"uri":"cce_10_0393.html",
 		"product_code":"cce",
-		"code":"116",
+		"code":"128",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Deployment Examples",
@@ -1160,479 +1280,119 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0044.html",
+		"uri":"cce_10_0257.html",
 		"product_code":"cce",
-		"code":"117",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"EVS Volumes",
-		"title":"EVS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0254.html",
-		"product_code":"cce",
-		"code":"118",
-		"des":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.EVS disks cannot be attached across AZs and cannot be used by multiple workloads, mu",
-		"doc_type":"usermanual2",
-		"kw":"Using EVS Volumes,EVS Volumes,User Guide",
-		"title":"Using EVS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0257.html",
-		"product_code":"cce",
-		"code":"119",
+		"code":"129",
 		"des":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
 		"doc_type":"usermanual2",
-		"kw":"Creating a Pod Mounted with an EVS Volume,EVS Volumes,User Guide",
-		"title":"Creating a Pod Mounted with an EVS Volume",
+		"kw":"Creating a Deployment Mounted with an EVS Volume,Deployment Examples,User Guide",
+		"title":"Creating a Deployment Mounted with an EVS Volume",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0125.html",
+		"uri":"cce_10_0269.html",
 		"product_code":"cce",
-		"code":"120",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"SFS Turbo Volumes",
-		"title":"SFS Turbo Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0271.html",
-		"product_code":"cce",
-		"code":"121",
-		"des":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.SFS Turbo volumes are available only in certain regions.Currently, SFS Turbo file sy",
-		"doc_type":"usermanual2",
-		"kw":"Using SFS Turbo Volumes,SFS Turbo Volumes,User Guide",
-		"title":"Using SFS Turbo Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0274.html",
-		"product_code":"cce",
-		"code":"122",
-		"des":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in ",
-		"doc_type":"usermanual2",
-		"kw":"Creating a Deployment Mounted with an SFS Turbo Volume,SFS Turbo Volumes,User Guide",
-		"title":"Creating a Deployment Mounted with an SFS Turbo Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0273.html",
-		"product_code":"cce",
-		"code":"123",
-		"des":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.The follo",
-		"doc_type":"usermanual2",
-		"kw":"Creating a StatefulSet Mounted with an SFS Turbo Volume,SFS Turbo Volumes,User Guide",
-		"title":"Creating a StatefulSet Mounted with an SFS Turbo Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0160.html",
-		"product_code":"cce",
-		"code":"124",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"OBS Volumes",
-		"title":"OBS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0265.html",
-		"product_code":"cce",
-		"code":"125",
-		"des":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.CCE clusters of v1.7.3-r8 and earlier do not support OBS volumes. You need to upgrad",
-		"doc_type":"usermanual2",
-		"kw":"Using OBS Volumes,OBS Volumes,User Guide",
-		"title":"Using OBS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0269.html",
-		"product_code":"cce",
-		"code":"126",
+		"code":"130",
 		"des":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
 		"doc_type":"usermanual2",
-		"kw":"Creating a Deployment Mounted with an OBS Volume,OBS Volumes,User Guide",
+		"kw":"Creating a Deployment Mounted with an OBS Volume,Deployment Examples,User Guide",
 		"title":"Creating a Deployment Mounted with an OBS Volume",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0268.html",
+		"uri":"cce_10_0268.html",
 		"product_code":"cce",
-		"code":"127",
+		"code":"131",
 		"des":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.T",
 		"doc_type":"usermanual2",
-		"kw":"Creating a StatefulSet Mounted with an OBS Volume,OBS Volumes,User Guide",
+		"kw":"Creating a StatefulSet Mounted with an OBS Volume,Deployment Examples,User Guide",
 		"title":"Creating a StatefulSet Mounted with an OBS Volume",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0111.html",
+		"uri":"cce_10_0263.html",
 		"product_code":"cce",
-		"code":"128",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"SFS Volumes",
-		"title":"SFS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0259.html",
-		"product_code":"cce",
-		"code":"129",
-		"des":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.SFS volumes are available only in certain regions.Container storage in CCE clusters ",
-		"doc_type":"usermanual2",
-		"kw":"Using SFS Volumes,SFS Volumes,User Guide",
-		"title":"Using SFS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0263.html",
-		"product_code":"cce",
-		"code":"130",
+		"code":"132",
 		"des":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
 		"doc_type":"usermanual2",
-		"kw":"Creating a Deployment Mounted with an SFS Volume,SFS Volumes,User Guide",
+		"kw":"Creating a Deployment Mounted with an SFS Volume,Deployment Examples,User Guide",
 		"title":"Creating a Deployment Mounted with an SFS Volume",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0262.html",
+		"uri":"cce_10_0262.html",
 		"product_code":"cce",
-		"code":"131",
+		"code":"133",
 		"des":"CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).You have created a CCE cluster and installed the CSI plug-in (everest) in the cluste",
 		"doc_type":"usermanual2",
-		"kw":"Creating a StatefulSet Mounted with an SFS Volume,SFS Volumes,User Guide",
+		"kw":"Creating a StatefulSet Mounted with an SFS Volume,Deployment Examples,User Guide",
 		"title":"Creating a StatefulSet Mounted with an SFS Volume",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0305.html",
-		"product_code":"cce",
-		"code":"132",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Storage (FlexVolume)",
-		"title":"Storage (FlexVolume)",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0306.html",
-		"product_code":"cce",
-		"code":"133",
-		"des":"In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.In CCE, container storage is backed both by Kubernet",
-		"doc_type":"usermanual2",
-		"kw":"FlexVolume Overview,Storage (FlexVolume),User Guide",
-		"title":"FlexVolume Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0343.html",
+		"uri":"cce_10_0110.html",
 		"product_code":"cce",
 		"code":"134",
-		"des":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?,Storage",
-		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
+		"kw":"Monitoring and Alarm",
+		"title":"Monitoring and Alarm",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0309.html",
+		"uri":"cce_10_0182.html",
 		"product_code":"cce",
 		"code":"135",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Using EVS Disks as Storage Volumes",
-		"title":"Using EVS Disks as Storage Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0310.html",
-		"product_code":"cce",
-		"code":"136",
-		"des":"To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is",
-		"doc_type":"usermanual2",
-		"kw":"Overview,Using EVS Disks as Storage Volumes,User Guide",
-		"title":"Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0311.html",
-		"product_code":"cce",
-		"code":"137",
-		"des":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.EVS disks cannot be attached across AZs and cannot be used by multiple",
-		"doc_type":"usermanual2",
-		"kw":"Using EVS Volumes,Using EVS Disks as Storage Volumes,User Guide",
-		"title":"Using EVS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0312.html",
-		"product_code":"cce",
-		"code":"138",
-		"des":"CCE supports creating EVS volumes through PersistentVolumeClaims (PVCs).You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluste",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Automatically Creating an EVS Disk,Using EVS Disks as Storage Volumes,User Guide",
-		"title":"(kubectl) Automatically Creating an EVS Disk",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0313.html",
-		"product_code":"cce",
-		"code":"139",
-		"des":"CCE allows you to create a PersistentVolume (PV) using an existing EVS disk. After the PV is created, you can create a PersistentVolumeClaim (PVC) and bind it to the PV.Y",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a PV from an Existing EVS Disk,Using EVS Disks as Storage Volumes,User Guide",
-		"title":"(kubectl) Creating a PV from an Existing EVS Disk",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0314.html",
-		"product_code":"cce",
-		"code":"140",
-		"des":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a Pod Mounted with an EVS Volume,Using EVS Disks as Storage Volumes,User Guide",
-		"title":"(kubectl) Creating a Pod Mounted with an EVS Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0329.html",
-		"product_code":"cce",
-		"code":"141",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Using SFS Turbo File Systems as Storage Volumes",
-		"title":"Using SFS Turbo File Systems as Storage Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0330.html",
-		"product_code":"cce",
-		"code":"142",
-		"des":"CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable fo",
-		"doc_type":"usermanual2",
-		"kw":"Overview,Using SFS Turbo File Systems as Storage Volumes,User Guide",
-		"title":"Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0331.html",
-		"product_code":"cce",
-		"code":"143",
-		"des":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.SFS Turbo volumes are available only in certain regions.Currently, SFS",
-		"doc_type":"usermanual2",
-		"kw":"Using SFS Turbo Volumes,Using SFS Turbo File Systems as Storage Volumes,User Guide",
-		"title":"Using SFS Turbo Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0332.html",
-		"product_code":"cce",
-		"code":"144",
-		"des":"CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) ",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a PV from an Existing SFS Turbo File System,Using SFS Turbo File Systems as Stora",
-		"title":"(kubectl) Creating a PV from an Existing SFS Turbo File System",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0333.html",
-		"product_code":"cce",
-		"code":"145",
-		"des":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the FlexVolume plug-in (stora",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume,Using SFS Turbo File Systems as Sto",
-		"title":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0334.html",
-		"product_code":"cce",
-		"code":"146",
-		"des":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the clu",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume,Using SFS Turbo File Systems as St",
-		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0322.html",
-		"product_code":"cce",
-		"code":"147",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Using OBS Buckets as Storage Volumes",
-		"title":"Using OBS Buckets as Storage Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0323.html",
-		"product_code":"cce",
-		"code":"148",
-		"des":"CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud w",
-		"doc_type":"usermanual2",
-		"kw":"Overview,Using OBS Buckets as Storage Volumes,User Guide",
-		"title":"Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0324.html",
-		"product_code":"cce",
-		"code":"149",
-		"des":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.CCE clusters of v1.7.3-r8 and earlier do not support OBS volumes. You ",
-		"doc_type":"usermanual2",
-		"kw":"Using OBS Volumes,Using OBS Buckets as Storage Volumes,User Guide",
-		"title":"Using OBS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0325.html",
-		"product_code":"cce",
-		"code":"150",
-		"des":"During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, whic",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Automatically Creating an OBS Volume,Using OBS Buckets as Storage Volumes,User Guide",
-		"title":"(kubectl) Automatically Creating an OBS Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0326.html",
-		"product_code":"cce",
-		"code":"151",
-		"des":"CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.You have created a CCE ",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a PV from an Existing OBS Bucket,Using OBS Buckets as Storage Volumes,User Guide",
-		"title":"(kubectl) Creating a PV from an Existing OBS Bucket",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0327.html",
-		"product_code":"cce",
-		"code":"152",
-		"des":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the FlexVolume plug-in (storage-dri",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a Deployment Mounted with an OBS Volume,Using OBS Buckets as Storage Volumes,User",
-		"title":"(kubectl) Creating a Deployment Mounted with an OBS Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0328.html",
-		"product_code":"cce",
-		"code":"153",
-		"des":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).You have created a CCE cluster and installed the FlexVolume plu",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume,Using OBS Buckets as Storage Volumes,Use",
-		"title":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0315.html",
-		"product_code":"cce",
-		"code":"154",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Using SFS File Systems as Storage Volumes",
-		"title":"Using SFS File Systems as Storage Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0316.html",
-		"product_code":"cce",
-		"code":"155",
-		"des":"CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWr",
-		"doc_type":"usermanual2",
-		"kw":"Overview,Using SFS File Systems as Storage Volumes,User Guide",
-		"title":"Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0317.html",
-		"product_code":"cce",
-		"code":"156",
-		"des":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.SFS volumes are available only in certain regions.Container storage in",
-		"doc_type":"usermanual2",
-		"kw":"Using SFS Volumes,Using SFS File Systems as Storage Volumes,User Guide",
-		"title":"Using SFS Volumes",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0318.html",
-		"product_code":"cce",
-		"code":"157",
-		"des":"CCE supports creating SFS volumes through PersistentVolumeClaims (PVCs).You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluste",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Automatically Creating an SFS Volume,Using SFS File Systems as Storage Volumes,User Guide",
-		"title":"(kubectl) Automatically Creating an SFS Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0319.html",
-		"product_code":"cce",
-		"code":"158",
-		"des":"CCE allows you to use an existing file system to create a PersistentVolume (PV). After the creation is successful, create the corresponding PersistentVolumeClaim (PVC) an",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a PV from an Existing SFS File System,Using SFS File Systems as Storage Volumes,U",
-		"title":"(kubectl) Creating a PV from an Existing SFS File System",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0320.html",
-		"product_code":"cce",
-		"code":"159",
-		"des":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the FlexVolume plug-in (storage-dri",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a Deployment Mounted with an SFS Volume,Using SFS File Systems as Storage Volumes",
-		"title":"(kubectl) Creating a Deployment Mounted with an SFS Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0321.html",
-		"product_code":"cce",
-		"code":"160",
-		"des":"CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).You have created a CCE cluster and installed the FlexVolume plu",
-		"doc_type":"usermanual2",
-		"kw":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume,Using SFS File Systems as Storage Volume",
-		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0110.html",
-		"product_code":"cce",
-		"code":"161",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Monitoring and Logs",
-		"title":"Monitoring and Logs",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0182.html",
-		"product_code":"cce",
-		"code":"162",
 		"des":"CCE works with AOM to comprehensively monitor clusters. When a node is created, the ICAgent (the DaemonSet named icagent in the kube-system namespace of the cluster) of A",
 		"doc_type":"usermanual2",
-		"kw":"Monitoring Overview,Monitoring and Logs,User Guide",
+		"kw":"Monitoring Overview,Monitoring and Alarm,User Guide",
 		"title":"Monitoring Overview",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0018.html",
+		"uri":"cce_10_0201.html",
 		"product_code":"cce",
-		"code":"163",
-		"des":"CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.CCE works with AOM to collec",
+		"code":"136",
+		"des":"CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and th",
 		"doc_type":"usermanual2",
-		"kw":"Pod,Pod,Container Logs,Monitoring and Logs,User Guide",
-		"title":"Container Logs",
+		"kw":"Custom Monitoring,Monitoring and Alarm,User Guide",
+		"title":"Custom Monitoring",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0030.html",
+		"uri":"cce_10_0553.html",
 		"product_code":"cce",
-		"code":"164",
+		"code":"137",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Logging",
+		"title":"Logging",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0557.html",
+		"product_code":"cce",
+		"code":"138",
+		"des":"CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.Using ICAgent:By default, th",
+		"doc_type":"usermanual2",
+		"kw":"Log Management Overview,Logging,User Guide",
+		"title":"Log Management Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0018.html",
+		"product_code":"cce",
+		"code":"139",
+		"des":"CCE works with AOM to collect workload logs. When creating a node, CCE installs the ICAgent for you (the DaemonSet named icagent in the kube-system namespace of the clust",
+		"doc_type":"usermanual2",
+		"kw":"Pod,Pod,Using ICAgent to Collect Container Logs,Logging,User Guide",
+		"title":"Using ICAgent to Collect Container Logs",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0030.html",
+		"product_code":"cce",
+		"code":"140",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Namespaces",
@@ -1640,9 +1400,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0278.html",
+		"uri":"cce_10_0278.html",
 		"product_code":"cce",
-		"code":"165",
+		"code":"141",
 		"des":"A namespace is a collection of resources and objects. Multiple namespaces can be created inside a cluster and isolated from each other. This enables namespaces to share t",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Namespace,Namespaces,User Guide",
@@ -1650,9 +1410,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0285.html",
+		"uri":"cce_10_0285.html",
 		"product_code":"cce",
-		"code":"166",
+		"code":"142",
 		"des":"When creating a workload, you can select a namespace to isolate resources or users.When querying workloads, you can select a namespace to view all workloads in the namesp",
 		"doc_type":"usermanual2",
 		"kw":"Managing Namespaces,Namespaces,User Guide",
@@ -1660,19 +1420,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0286.html",
+		"uri":"cce_10_0287.html",
 		"product_code":"cce",
-		"code":"167",
-		"des":"You can configure a namespace-level network policy after enabling network isolation.By default, Network Isolation is disabled for namespaces. For example, if network isol",
-		"doc_type":"usermanual2",
-		"kw":"Configuring a Namespace-level Network Policy,Namespaces,User Guide",
-		"title":"Configuring a Namespace-level Network Policy",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0287.html",
-		"product_code":"cce",
-		"code":"168",
+		"code":"143",
 		"des":"Namespace-level resource quotas limit the amount of resources available to teams or users when these teams or users use the same cluster. The quotas include the total num",
 		"doc_type":"usermanual2",
 		"kw":"Setting a Resource Quota,Namespaces,User Guide",
@@ -1680,9 +1430,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0045.html",
+		"uri":"cce_10_0045.html",
 		"product_code":"cce",
-		"code":"169",
+		"code":"144",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"environment variables,command line parameters,data volumes,data volumes,environment variables",
@@ -1690,19 +1440,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0152.html",
+		"uri":"cce_10_0152.html",
 		"product_code":"cce",
-		"code":"170",
+		"code":"145",
 		"des":"A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. After creating ConfigMaps, you can use them a",
 		"doc_type":"usermanual2",
-		"kw":"container images,Cluster,node,container,Labels,Creating a ConfigMap,Configuration Center,User Guide",
+		"kw":"Creating a ConfigMap,Configuration Center,User Guide",
 		"title":"Creating a ConfigMap",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0015.html",
+		"uri":"cce_10_0015.html",
 		"product_code":"cce",
-		"code":"171",
+		"code":"146",
 		"des":"After a ConfigMap is created, it can be used in three workload scenarios: environment variables, command line parameters, and data volumes.",
 		"doc_type":"usermanual2",
 		"kw":"environment variables,command line parameters,data volumes,Using a ConfigMap,Configuration Center,Us",
@@ -1710,19 +1460,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0153.html",
+		"uri":"cce_10_0153.html",
 		"product_code":"cce",
-		"code":"172",
+		"code":"147",
 		"des":"A secret is a type of resource that holds sensitive data, such as authentication and key information. Its content is user-defined. After creating secrets, you can use the",
 		"doc_type":"usermanual2",
-		"kw":"Cluster,Opaque,kubernetes.io/dockerconfigjson,IngressTLS,kubernetes.io/,Creating a Secret,Configurat",
+		"kw":"Opaque,kubernetes.io/dockerconfigjson,IngressTLS,kubernetes.io/,Creating a Secret,Configuration Cent",
 		"title":"Creating a Secret",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0016.html",
+		"uri":"cce_10_0016.html",
 		"product_code":"cce",
-		"code":"173",
+		"code":"148",
 		"des":"After secrets are created, they can be mounted as data volumes or be exposed as environment variables to be used by a container in a pod.",
 		"doc_type":"usermanual2",
 		"kw":"data volumes,environment variables,Using a Secret,Configuration Center,User Guide",
@@ -1730,9 +1480,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0388.html",
+		"uri":"cce_10_0388.html",
 		"product_code":"cce",
-		"code":"174",
+		"code":"149",
 		"des":"By default, CCE creates the following secrets in each namespace:default-secretpaas.elbdefault-token-xxxxx (xxxxx is a random number.)The functions of these secrets are de",
 		"doc_type":"usermanual2",
 		"kw":"Cluster Secrets,Configuration Center,User Guide",
@@ -1740,149 +1490,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0019.html",
+		"uri":"cce_10_0207.html",
 		"product_code":"cce",
-		"code":"175",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Charts (Helm)",
-		"title":"Charts (Helm)",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0143.html",
-		"product_code":"cce",
-		"code":"176",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"My Charts",
-		"title":"My Charts",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0191.html",
-		"product_code":"cce",
-		"code":"177",
-		"des":"CCE uses Helm, a Kubernetes package manager, to simplify deployment and management of packages (also called charts). A chart is a collection of files that describe a rela",
-		"doc_type":"usermanual2",
-		"kw":"CCE uses Helm, a Kubernetes package manager, to simplify deployment and management of packages (also",
-		"title":"Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0144.html",
-		"product_code":"cce",
-		"code":"178",
-		"des":"You can prepare a chart using one of the following methods:Customizing a ChartUsing a Kubernetes Official ChartFor details about how to create a chart, see https://helm.s",
-		"doc_type":"usermanual2",
-		"kw":"Kubernetes,Official Chart,Linux,redis,Preparing a Chart,My Charts,User Guide",
-		"title":"Preparing a Chart",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0145.html",
-		"product_code":"cce",
-		"code":"179",
-		"des":"Upload a chart to Charts > Uploaded Charts for subsequent workload creation.When you upload a chart, the naming rule of the OBS bucket is changed from cce-charts-{region}",
-		"doc_type":"usermanual2",
-		"kw":"Installing a chart,Updating a chart,Downloading a chart,Deleting a chart,Uploading a Chart,My Charts",
-		"title":"Uploading a Chart",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0146.html",
-		"product_code":"cce",
-		"code":"180",
-		"des":"In the workload list, if the status is Rollback successful, the workload is rolled back successfully.",
-		"doc_type":"usermanual2",
-		"kw":"Creating a Chart-based Workload,Cluster,Upgrading a Chart-based Workload,Rolling Back a Chart-based ",
-		"title":"Creating a Workload from a Chart",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0064.html",
-		"product_code":"cce",
-		"code":"181",
-		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"doc_type":"usermanual2",
-		"kw":"Add-ons",
-		"title":"Add-ons",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0277.html",
-		"product_code":"cce",
-		"code":"182",
-		"des":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.",
-		"doc_type":"usermanual2",
-		"kw":"Overview,Add-ons,User Guide",
-		"title":"Overview",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0129.html",
-		"product_code":"cce",
-		"code":"183",
-		"des":"The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.coredns i",
-		"doc_type":"usermanual2",
-		"kw":"coredns add-on,DNS server,domain name resolution services,Kubernetes,coredns (System Resource Add-on",
-		"title":"coredns (System Resource Add-on, Mandatory)",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0127.html",
-		"product_code":"cce",
-		"code":"184",
-		"des":"storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use IaaS storage resources. By installing and upgrading storage-driver, you ca",
-		"doc_type":"usermanual2",
-		"kw":"storage-driver (System Resource Add-on, Mandatory),Add-ons,User Guide",
-		"title":"storage-driver (System Resource Add-on, Mandatory)",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0066.html",
-		"product_code":"cce",
-		"code":"185",
-		"des":"Everest is a cloud-native container storage system. Based on Container Storage Interface (CSI), clusters of Kubernetes v1.15 or later can interconnect with cloud storage ",
-		"doc_type":"usermanual2",
-		"kw":"everest (System Resource Add-on, Mandatory),Add-ons,User Guide",
-		"title":"everest (System Resource Add-on, Mandatory)",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0154.html",
-		"product_code":"cce",
-		"code":"186",
-		"des":"Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.When the CPU or memory usage of a microservice is too h",
-		"doc_type":"usermanual2",
-		"kw":"Auto Scale-In,autoscaler,Add-ons,User Guide",
-		"title":"autoscaler",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0205.html",
-		"product_code":"cce",
-		"code":"187",
-		"des":"From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly a",
-		"doc_type":"usermanual2",
-		"kw":"metrics-server,Add-ons,User Guide",
-		"title":"metrics-server",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0141.html",
-		"product_code":"cce",
-		"code":"188",
-		"des":"gpu-beta is a device management add-on that supports GPUs in containers. It supports only NVIDIA Tesla drivers.This add-on is available only in certain regions.This add-o",
-		"doc_type":"usermanual2",
-		"kw":"gpu-beta,Add-ons,User Guide",
-		"title":"gpu-beta",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0207.html",
-		"product_code":"cce",
-		"code":"189",
+		"code":"150",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Auto Scaling",
@@ -1890,9 +1500,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0279.html",
+		"uri":"cce_10_0279.html",
 		"product_code":"cce",
-		"code":"190",
+		"code":"151",
 		"des":"Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.More and more applicati",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Auto Scaling,User Guide",
@@ -1900,9 +1510,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0293.html",
+		"uri":"cce_10_0293.html",
 		"product_code":"cce",
-		"code":"191",
+		"code":"152",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Scaling a Workload",
@@ -1910,19 +1520,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0290.html",
+		"uri":"cce_10_0290.html",
 		"product_code":"cce",
-		"code":"192",
-		"des":"Scaling policy priority: If you do not manually adjust the number of pods, auto scaling policies will take effect for resource scheduling. If manual scaling is triggered,",
+		"code":"153",
+		"des":"HPA is a controller that controls horizontal pod scaling. HPA periodically checks the pod metrics, calculates the number of replicas required to meet the target values co",
 		"doc_type":"usermanual2",
 		"kw":"Workload Scaling Mechanisms,Scaling a Workload,User Guide",
 		"title":"Workload Scaling Mechanisms",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0208.html",
+		"uri":"cce_10_0208.html",
 		"product_code":"cce",
-		"code":"193",
+		"code":"154",
 		"des":"Horizontal Pod Autoscaling (HPA) in Kubernetes implements horizontal scaling of pods. In a CCE HPA policy, you can configure different cooldown time windows and scaling t",
 		"doc_type":"usermanual2",
 		"kw":"Creating an HPA Policy for Workload Auto Scaling,Scaling a Workload,User Guide",
@@ -1930,9 +1540,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0083.html",
+		"uri":"cce_10_0083.html",
 		"product_code":"cce",
-		"code":"194",
+		"code":"155",
 		"des":"After an HPA policy is created, you can update, clone, edit, and delete the policy, as well as edit the YAML file.You can view the rules, status, and events of an HPA pol",
 		"doc_type":"usermanual2",
 		"kw":"Managing Workload Scaling Policies,Scaling a Workload,User Guide",
@@ -1940,59 +1550,189 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0395.html",
+		"uri":"cce_10_0291.html",
 		"product_code":"cce",
-		"code":"195",
-		"des":"CCE clusters of v1.15 or earlier support workload scaling based on AOM monitoring data. This function is no longer supported in CCE clusters of v1.17 or later.If you have",
-		"doc_type":"usermanual2",
-		"kw":"Switching from AOM to HPA for Auto Scaling,Scaling a Workload,User Guide",
-		"title":"Switching from AOM to HPA for Auto Scaling",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_01_0291.html",
-		"product_code":"cce",
-		"code":"196",
+		"code":"156",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Scaling a Cluster/Node",
-		"title":"Scaling a Cluster/Node",
+		"kw":"Scaling a Node",
+		"title":"Scaling a Node",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0296.html",
+		"uri":"cce_10_0296.html",
 		"product_code":"cce",
-		"code":"197",
+		"code":"157",
 		"des":"Kubernetes HPA is designed for pods. However, if the cluster resources are insufficient, you can only add nodes. Scaling of cluster nodes could be laborious. Now with clo",
 		"doc_type":"usermanual2",
-		"kw":"Node Scaling Mechanisms,Scaling a Cluster/Node,User Guide",
+		"kw":"Node Scaling Mechanisms,Scaling a Node,User Guide",
 		"title":"Node Scaling Mechanisms",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0209.html",
+		"uri":"cce_10_0209.html",
 		"product_code":"cce",
-		"code":"198",
+		"code":"158",
 		"des":"CCE provides auto scaling through the autoscaler add-on. Nodes with different specifications can be automatically added across AZs on demand.If a node scaling policy and ",
 		"doc_type":"usermanual2",
-		"kw":"Creating a Node Scaling Policy,Scaling a Cluster/Node,User Guide",
+		"kw":"Creating a Node Scaling Policy,Scaling a Node,User Guide",
 		"title":"Creating a Node Scaling Policy",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0063.html",
+		"uri":"cce_10_0063.html",
 		"product_code":"cce",
-		"code":"199",
+		"code":"159",
 		"des":"After a node scaling policy is created, you can delete, edit, disable, enable, or clone the policy.You can view the associated node pool, rules, and scaling history of a ",
 		"doc_type":"usermanual2",
-		"kw":"Managing Node Scaling Policies,Scaling a Cluster/Node,User Guide",
+		"kw":"Managing Node Scaling Policies,Scaling a Node,User Guide",
 		"title":"Managing Node Scaling Policies",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0164.html",
+		"uri":"cce_10_0300.html",
 		"product_code":"cce",
-		"code":"200",
+		"code":"160",
+		"des":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
+		"doc_type":"usermanual2",
+		"kw":"Using HPA and CA for Auto Scaling of Workloads and Nodes,Auto Scaling,User Guide",
+		"title":"Using HPA and CA for Auto Scaling of Workloads and Nodes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0064.html",
+		"product_code":"cce",
+		"code":"161",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Add-ons",
+		"title":"Add-ons",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0277.html",
+		"product_code":"cce",
+		"code":"162",
+		"des":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Add-ons,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0129.html",
+		"product_code":"cce",
+		"code":"163",
+		"des":"The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.coredns i",
+		"doc_type":"usermanual2",
+		"kw":"coredns (System Resource Add-On, Mandatory),Add-ons,User Guide",
+		"title":"coredns (System Resource Add-On, Mandatory)",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0127.html",
+		"product_code":"cce",
+		"code":"164",
+		"des":"storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use EVS, SFS, OBS, and SFS Turbo storage resources. By installing and upgradin",
+		"doc_type":"usermanual2",
+		"kw":"storage-driver (System Resource Add-On, Discarded),Add-ons,User Guide",
+		"title":"storage-driver (System Resource Add-On, Discarded)",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0066.html",
+		"product_code":"cce",
+		"code":"165",
+		"des":"Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage",
+		"doc_type":"usermanual2",
+		"kw":"everest (System Resource Add-On, Mandatory),Add-ons,User Guide",
+		"title":"everest (System Resource Add-On, Mandatory)",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0132.html",
+		"product_code":"cce",
+		"code":"166",
+		"des":"node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon runnin",
+		"doc_type":"usermanual2",
+		"kw":"npd,Add-ons,User Guide",
+		"title":"npd",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0154.html",
+		"product_code":"cce",
+		"code":"167",
+		"des":"Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.When the CPU or memory usage of a microservice is too h",
+		"doc_type":"usermanual2",
+		"kw":"autoscaler,Add-ons,User Guide",
+		"title":"autoscaler",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0205.html",
+		"product_code":"cce",
+		"code":"168",
+		"des":"From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly a",
+		"doc_type":"usermanual2",
+		"kw":"metrics-server,Add-ons,User Guide",
+		"title":"metrics-server",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0141.html",
+		"product_code":"cce",
+		"code":"169",
+		"des":"gpu-beta is a device management add-on that supports GPUs in containers. If GPU nodes are used in the cluster, the gpu-beta add-on must be installed.The driver to be down",
+		"doc_type":"usermanual2",
+		"kw":"gpu-beta,Add-ons,User Guide",
+		"title":"gpu-beta",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0193.html",
+		"product_code":"cce",
+		"code":"170",
+		"des":"Volcano is a batch processing platform based on Kubernetes. It provides a series of features required by machine learning, deep learning, bioinformatics, genomics, and ot",
+		"doc_type":"usermanual2",
+		"kw":"volcano,Add-ons,User Guide",
+		"title":"volcano",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0019.html",
+		"product_code":"cce",
+		"code":"171",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Charts",
+		"title":"Charts",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0191.html",
+		"product_code":"cce",
+		"code":"172",
+		"des":"CCE provides a console for managing Helm charts, helping you easily deploy applications using the charts and manage applications on the console.Helm is a package manager ",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Charts,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0146.html",
+		"product_code":"cce",
+		"code":"173",
+		"des":"On the CCE console, you can upload a Helm chart package, deploy it, and manage the deployed pods.The number of charts that can be uploaded by a single user is limited. Th",
+		"doc_type":"usermanual2",
+		"kw":"Deploying an Application from a Chart,Charts,User Guide",
+		"title":"Deploying an Application from a Chart",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0164.html",
+		"product_code":"cce",
+		"code":"174",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Permissions Management",
@@ -2000,9 +1740,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0187.html",
+		"uri":"cce_10_0187.html",
 		"product_code":"cce",
-		"code":"201",
+		"code":"175",
 		"des":"CCE permissions management allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Ma",
 		"doc_type":"usermanual2",
 		"kw":"Permissions Overview,Permissions Management,User Guide",
@@ -2010,19 +1750,19 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0188.html",
+		"uri":"cce_10_0188.html",
 		"product_code":"cce",
-		"code":"202",
-		"des":"CCE cluster permissions are assigned based on IAM system policies and custom policies. You can use user groups to assign permissions to IAM users.Cluster permissions are ",
+		"code":"176",
+		"des":"CCE cluster-level permissions are assigned based on IAM system policies and custom policies. You can use user groups to assign permissions to IAM users.Cluster permission",
 		"doc_type":"usermanual2",
 		"kw":"Cluster Permissions (IAM-based),Permissions Management,User Guide",
 		"title":"Cluster Permissions (IAM-based)",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0189.html",
+		"uri":"cce_10_0189.html",
 		"product_code":"cce",
-		"code":"203",
+		"code":"177",
 		"des":"You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kub",
 		"doc_type":"usermanual2",
 		"kw":"Namespace Permissions (Kubernetes RBAC-based),Permissions Management,User Guide",
@@ -2030,19 +1770,69 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0275.html",
+		"uri":"cce_10_0245.html",
 		"product_code":"cce",
-		"code":"204",
-		"des":"A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The PodSecurityPolicy object in Kubernetes defi",
+		"code":"178",
+		"des":"The conventional distributed task scheduling mode is being replaced by Kubernetes. CCE allows you to easily deploy, manage, and scale containerized applications in the cl",
 		"doc_type":"usermanual2",
-		"kw":"Pod Security Policies,Permissions Management,User Guide",
-		"title":"Pod Security Policies",
+		"kw":"Example: Designing and Configuring Permissions for Users in a Department,Permissions Management,User",
+		"title":"Example: Designing and Configuring Permissions for Users in a Department",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0024.html",
+		"uri":"cce_10_0190.html",
 		"product_code":"cce",
-		"code":"205",
+		"code":"179",
+		"des":"Some CCE permissions policies depend on the policies of other cloud services. To view or use other cloud resources on the CCE console, you need to enable the system polic",
+		"doc_type":"usermanual2",
+		"kw":"Permission Dependency of the CCE Console,Permissions Management,User Guide",
+		"title":"Permission Dependency of the CCE Console",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0465.html",
+		"product_code":"cce",
+		"code":"180",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Pod Security",
+		"title":"Pod Security",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0275.html",
+		"product_code":"cce",
+		"code":"181",
+		"des":"A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The PodSecurityPolicy object in Kubernetes defi",
+		"doc_type":"usermanual2",
+		"kw":"Configuring a Pod Security Policy,Pod Security,User Guide",
+		"title":"Configuring a Pod Security Policy",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0466.html",
+		"product_code":"cce",
+		"code":"182",
+		"des":"Before using Pod Security Admission, you need to understand Kubernetes Pod Security Standards. These standards define different isolation levels for pods. They let you de",
+		"doc_type":"usermanual2",
+		"kw":"Configuring Pod Security Admission,Pod Security,User Guide",
+		"title":"Configuring Pod Security Admission",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0477_0.html",
+		"product_code":"cce",
+		"code":"183",
+		"des":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
+		"doc_type":"usermanual2",
+		"kw":"Service Account Token Security Improvement,Permissions Management,User Guide",
+		"title":"Service Account Token Security Improvement",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0024.html",
+		"product_code":"cce",
+		"code":"184",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Cloud Trace Service (CTS)",
@@ -2050,9 +1840,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0025.html",
+		"uri":"cce_10_0025.html",
 		"product_code":"cce",
-		"code":"206",
+		"code":"185",
 		"des":"Cloud Trace Service (CTS) records operations on cloud service resources, allowing users to query, audit, and backtrack the resource operation requests initiated from the ",
 		"doc_type":"usermanual2",
 		"kw":"CCE Operations Supported by CTS,Cloud Trace Service (CTS),User Guide",
@@ -2060,9 +1850,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_0026.html",
+		"uri":"cce_10_0026.html",
 		"product_code":"cce",
-		"code":"207",
+		"code":"186",
 		"des":"After you enable CTS, the system starts recording operations on CCE resources. Operation records of the last 7 days can be viewed on the CTS management console.Trace Sour",
 		"doc_type":"usermanual2",
 		"kw":"Querying CTS Logs,Cloud Trace Service (CTS),User Guide",
@@ -2070,29 +1860,269 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_faq_0083.html",
+		"uri":"cce_10_0305.html",
+		"product_code":"cce",
+		"code":"187",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Storage (FlexVolume)",
+		"title":"Storage (FlexVolume)",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0306.html",
+		"product_code":"cce",
+		"code":"188",
+		"des":"In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.In CCE, container storage is backed both by Kubernet",
+		"doc_type":"usermanual2",
+		"kw":"FlexVolume Overview,Storage (FlexVolume),User Guide",
+		"title":"FlexVolume Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0343.html",
+		"product_code":"cce",
+		"code":"189",
+		"des":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
+		"doc_type":"usermanual2",
+		"kw":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?,Storage",
+		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0309.html",
+		"product_code":"cce",
+		"code":"190",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Using EVS Disks as Storage Volumes",
+		"title":"Using EVS Disks as Storage Volumes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0310.html",
+		"product_code":"cce",
+		"code":"191",
+		"des":"To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Using EVS Disks as Storage Volumes,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0312.html",
+		"product_code":"cce",
+		"code":"192",
+		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-evs-auto-example.yamlvi pvc-evs-auto-example.yamlExample YAML file for clu",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Automatically Creating an EVS Disk,Using EVS Disks as Storage Volumes,User Guide",
+		"title":"(kubectl) Automatically Creating an EVS Disk",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0313.html",
+		"product_code":"cce",
+		"code":"193",
+		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-evs-example.yaml pvc-evs-example.yamlClusters from v1.11.7 to v1.13Example ",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a PV from an Existing EVS Disk,Using EVS Disks as Storage Volumes,User Guide",
+		"title":"(kubectl) Creating a PV from an Existing EVS Disk",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0314.html",
+		"product_code":"cce",
+		"code":"194",
+		"des":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a Pod Mounted with an EVS Volume,Using EVS Disks as Storage Volumes,User Guide",
+		"title":"(kubectl) Creating a Pod Mounted with an EVS Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0329.html",
+		"product_code":"cce",
+		"code":"195",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Using SFS Turbo File Systems as Storage Volumes",
+		"title":"Using SFS Turbo File Systems as Storage Volumes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0330.html",
+		"product_code":"cce",
+		"code":"196",
+		"des":"CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable fo",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Using SFS Turbo File Systems as Storage Volumes,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0332.html",
+		"product_code":"cce",
+		"code":"197",
+		"des":"CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) ",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a PV from an Existing SFS Turbo File System,Using SFS Turbo File Systems as Stora",
+		"title":"(kubectl) Creating a PV from an Existing SFS Turbo File System",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0333.html",
+		"product_code":"cce",
+		"code":"198",
+		"des":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume,Using SFS Turbo File Systems as Sto",
+		"title":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0334.html",
+		"product_code":"cce",
+		"code":"199",
+		"des":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch efs",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume,Using SFS Turbo File Systems as St",
+		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0322.html",
+		"product_code":"cce",
+		"code":"200",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Using OBS Buckets as Storage Volumes",
+		"title":"Using OBS Buckets as Storage Volumes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0323.html",
+		"product_code":"cce",
+		"code":"201",
+		"des":"CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud w",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Using OBS Buckets as Storage Volumes,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0325.html",
+		"product_code":"cce",
+		"code":"202",
+		"des":"During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, whic",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Automatically Creating an OBS Volume,Using OBS Buckets as Storage Volumes,User Guide",
+		"title":"(kubectl) Automatically Creating an OBS Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0326.html",
+		"product_code":"cce",
+		"code":"203",
+		"des":"CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.The following configura",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a PV from an Existing OBS Bucket,Using OBS Buckets as Storage Volumes,User Guide",
+		"title":"(kubectl) Creating a PV from an Existing OBS Bucket",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0327.html",
+		"product_code":"cce",
+		"code":"204",
+		"des":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a Deployment Mounted with an OBS Volume,Using OBS Buckets as Storage Volumes,User",
+		"title":"(kubectl) Creating a Deployment Mounted with an OBS Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0328.html",
+		"product_code":"cce",
+		"code":"205",
+		"des":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume,Using OBS Buckets as Storage Volumes,Use",
+		"title":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0315.html",
+		"product_code":"cce",
+		"code":"206",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Using SFS File Systems as Storage Volumes",
+		"title":"Using SFS File Systems as Storage Volumes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0316.html",
+		"product_code":"cce",
+		"code":"207",
+		"des":"CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWr",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Using SFS File Systems as Storage Volumes,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0318.html",
 		"product_code":"cce",
 		"code":"208",
+		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-sfs-auto-example.yamlvi pvc-sfs-auto-example.yamlExample YAML file:apiVers",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Automatically Creating an SFS Volume,Using SFS File Systems as Storage Volumes,User Guide",
+		"title":"(kubectl) Automatically Creating an SFS Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0319.html",
+		"product_code":"cce",
+		"code":"209",
+		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-sfs-example.yaml pvc-sfs-example.yamlClusters from v1.11 to v1.13Example YA",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a PV from an Existing SFS File System,Using SFS File Systems as Storage Volumes,U",
+		"title":"(kubectl) Creating a PV from an Existing SFS File System",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0320.html",
+		"product_code":"cce",
+		"code":"210",
+		"des":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a Deployment Mounted with an SFS Volume,Using SFS File Systems as Storage Volumes",
+		"title":"(kubectl) Creating a Deployment Mounted with an SFS Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0321.html",
+		"product_code":"cce",
+		"code":"211",
+		"des":"CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
+		"doc_type":"usermanual2",
+		"kw":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume,Using SFS File Systems as Storage Volume",
+		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_faq_0083.html",
+		"product_code":"cce",
+		"code":"212",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Reference",
 		"title":"Reference",
 		"githuburl":""
 	},
-	{
-		"uri":"cce_faq_00006.html",
-		"product_code":"cce",
-		"code":"209",
-		"des":"Cloud Container Engine (CCE) provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily dep",
-		"doc_type":"usermanual2",
-		"kw":"Checklist for Migrating Containerized Applications to the Cloud,Reference,User Guide",
-		"title":"Checklist for Migrating Containerized Applications to the Cloud",
-		"githuburl":""
-	},
 	{
 		"uri":"cce_01_0203.html",
 		"product_code":"cce",
-		"code":"210",
+		"code":"213",
 		"des":"When a node is added, EIP is set to Automatically assign. The node cannot be created, and a message indicating that EIPs are insufficient is displayed.Two methods are ava",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Troubleshoot Insufficient EIPs When a Node Is Added?,Reference,User Guide",
@@ -2102,7 +2132,7 @@
 	{
 		"uri":"cce_01_0204.html",
 		"product_code":"cce",
-		"code":"211",
+		"code":"214",
 		"des":"Before using command line injection, write a script that can format data disks and save it to your OBS bucket. Then, inject a command line that will automatically execute",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Format a Data Disk Using Command Line Injection?,Reference,User Guide",
@@ -2112,7 +2142,7 @@
 	{
 		"uri":"cce_01_0999.html",
 		"product_code":"cce",
-		"code":"212",
+		"code":"215",
 		"des":"After a cluster of v1.13.10 is created, you can use heapster only after rbac is enabled.kubectl delete clusterrole system:heapsterCopy the following file to a server on w",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Use heapster in Clusters of v1.13.10?,Reference,User Guide",
@@ -2122,7 +2152,7 @@
 	{
 		"uri":"cce_faq_00096.html",
 		"product_code":"cce",
-		"code":"213",
+		"code":"216",
 		"des":"Currently, private CCE clusters use Device Mapper as the Docker storage driver.Device Mapper is developed based on the kernel framework and supports many advanced volume ",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Change the Mode of the Docker Device Mapper?,Reference,User Guide",
@@ -2132,7 +2162,7 @@
 	{
 		"uri":"cce_faq_00120.html",
 		"product_code":"cce",
-		"code":"214",
+		"code":"217",
 		"des":"If the cluster status is available but some nodes in the cluster are unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Node Is ",
 		"doc_type":"usermanual2",
 		"kw":"monitrc,What Can I Do If My Cluster Status Is Available but the Node Status Is Unavailable?,Referenc",
@@ -2142,7 +2172,7 @@
 	{
 		"uri":"cce_faq_00039.html",
 		"product_code":"cce",
-		"code":"215",
+		"code":"218",
 		"des":"If the cluster is Unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Security Group Is ModifiedCheck Item 2: Whether the DHCP Fu",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Rectify the Fault When the Cluster Status Is Unavailable?,Reference,User Guide",
@@ -2152,7 +2182,7 @@
 	{
 		"uri":"cce_faq_00099.html",
 		"product_code":"cce",
-		"code":"216",
+		"code":"219",
 		"des":"This section uses the Nginx workload as an example to describe how to set the workload access type to LoadBalancer (ELB).An ELB has been created.You have connected an Ela",
 		"doc_type":"usermanual2",
 		"kw":"ECS,kubectl,How Do I Use kubectl to Set the Workload Access Type to LoadBalancer (ELB)?,Reference,Us",
@@ -2162,7 +2192,7 @@
 	{
 		"uri":"cce_faq_00190.html",
 		"product_code":"cce",
-		"code":"217",
+		"code":"220",
 		"des":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).Before using this feature, write a script that can format data disks and save it to ",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Add a Second Data Disk to a Node in a CCE Cluster?,Reference,User Guide",
@@ -2172,7 +2202,7 @@
 	{
 		"uri":"cce_faq_00029.html",
 		"product_code":"cce",
-		"code":"218",
+		"code":"221",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Workload Abnormalities",
@@ -2182,7 +2212,7 @@
 	{
 		"uri":"cce_faq_00134.html",
 		"product_code":"cce",
-		"code":"219",
+		"code":"222",
 		"des":"If a workload is running improperly, you can view events to determine the cause.On the CCE console, choose Workloads > Deployments or StatefulSets in the navigation pane ",
 		"doc_type":"usermanual2",
 		"kw":"Fault Locating and Troubleshooting for Abnormal Workloads,Workload Abnormalities,User Guide",
@@ -2192,7 +2222,7 @@
 	{
 		"uri":"cce_faq_00098.html",
 		"product_code":"cce",
-		"code":"220",
+		"code":"223",
 		"des":"Viewing K8s Event InformationCheck Item 1: Checking Whether a Node Is Available in the ClusterCheck Item 2: Checking Whether Node Resources (CPU and Memory) Are Sufficien",
 		"doc_type":"usermanual2",
 		"kw":"workload,InstanceSchedulingFailed,Failed to Schedule an Instance,Workload Abnormalities,User Guide",
@@ -2202,7 +2232,7 @@
 	{
 		"uri":"cce_faq_00015.html",
 		"product_code":"cce",
-		"code":"221",
+		"code":"224",
 		"des":"If the workload details page displays an event indicating that image pulling fails, perform the following operations to locate the fault:Check Item 1: Checking Whether im",
 		"doc_type":"usermanual2",
 		"kw":"workload,Failed to Pull an Image,Workload Abnormalities,User Guide",
@@ -2212,7 +2242,7 @@
 	{
 		"uri":"cce_faq_00018.html",
 		"product_code":"cce",
-		"code":"222",
+		"code":"225",
 		"des":"On the details page of a workload, if an event is displayed indicating that the container fails to be restarted, perform the following operations to locate the fault:Rect",
 		"doc_type":"usermanual2",
 		"kw":"Failed to Restart a Container,Workload Abnormalities,User Guide",
@@ -2222,7 +2252,7 @@
 	{
 		"uri":"cce_faq_00209.html",
 		"product_code":"cce",
-		"code":"223",
+		"code":"226",
 		"des":"Pod actions are classified into the following two types:kube-controller-manager periodically checks the status of all nodes. If a node is in the NotReady state for a peri",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If An Evicted Pod Exists?,Workload Abnormalities,User Guide",
@@ -2232,7 +2262,7 @@
 	{
 		"uri":"cce_faq_00140.html",
 		"product_code":"cce",
-		"code":"224",
+		"code":"227",
 		"des":"When a node is faulty, pods on the node are evicted to ensure workload availability. If the pods are not evicted when the node is faulty, perform the following steps:Use ",
 		"doc_type":"usermanual2",
 		"kw":"Instance Eviction Exception,Workload Abnormalities,User Guide",
@@ -2242,7 +2272,7 @@
 	{
 		"uri":"cce_faq_00210.html",
 		"product_code":"cce",
-		"code":"225",
+		"code":"228",
 		"des":"When a node is in the Unavailable state, CCE migrates container pods on the node and sets the pods running on the node to the Terminating state.After the node is restored",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If Pods in the Terminating State Cannot Be Deleted?,Workload Abnormalities,User Gui",
@@ -2252,7 +2282,7 @@
 	{
 		"uri":"cce_faq_00012.html",
 		"product_code":"cce",
-		"code":"226",
+		"code":"229",
 		"des":"The metadata.enable field in the YAML file of the workload is false. As a result, the pod of the workload is deleted and the workload is in the stopped status.The workloa",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If a Workload Is Stopped Caused by Pod Deletion?,Workload Abnormalities,User Guide",
@@ -2262,7 +2292,7 @@
 	{
 		"uri":"cce_faq_00005.html",
 		"product_code":"cce",
-		"code":"227",
+		"code":"230",
 		"des":"The pod remains in the creating state for a long time, and the sandbox-related errors are reported.Select a troubleshooting method for your cluster:Clusters of V1.13 or l",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If Sandbox-Related Errors Are Reported When the Pod Remains in the Creating State?,",
@@ -2272,7 +2302,7 @@
 	{
 		"uri":"cce_faq_00199.html",
 		"product_code":"cce",
-		"code":"228",
+		"code":"231",
 		"des":"Workload pods in the cluster fail and are being redeployed constantly.After the following command is run, the command output shows that many pods are in the evicted state",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If a Pod Is in the Evicted State?,Workload Abnormalities,User Guide",
@@ -2282,7 +2312,7 @@
 	{
 		"uri":"cce_faq_00002.html",
 		"product_code":"cce",
-		"code":"229",
+		"code":"232",
 		"des":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If the OOM Killer Is Triggered When a Container Uses Memory Resources More Than Lim",
@@ -2292,53 +2322,23 @@
 	{
 		"uri":"cce_faq_00202.html",
 		"product_code":"cce",
-		"code":"230",
+		"code":"233",
 		"des":"A workload can be accessed from public networks through a load balancer. LoadBalancer provides higher reliability than EIP-based NodePort because an EIP is no longer boun",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If a Service Released in a Workload Cannot Be Accessed from Public Networks?,Refere",
 		"title":"What Should I Do If a Service Released in a Workload Cannot Be Accessed from Public Networks?",
 		"githuburl":""
 	},
-	{
-		"uri":"cce_bestpractice_00162.html",
-		"product_code":"cce",
-		"code":"231",
-		"des":"CCE uses high-performance container networking add-ons, which support the tunnel network and VPC network models.After a cluster is created, the network model cannot be ch",
-		"doc_type":"usermanual2",
-		"kw":"Selecting a Network Model When Creating a Cluster on CCE,Reference,User Guide",
-		"title":"Selecting a Network Model When Creating a Cluster on CCE",
-		"githuburl":""
-	},
-	{
-		"uri":"cce_bestpractice_00004.html",
-		"product_code":"cce",
-		"code":"232",
-		"des":"Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.This secti",
-		"doc_type":"usermanual2",
-		"kw":"Planning CIDR Blocks for a CCE Cluster,Reference,User Guide",
-		"title":"Planning CIDR Blocks for a CCE Cluster",
-		"githuburl":""
-	},
 	{
 		"uri":"cce_faq_00266.html",
 		"product_code":"cce",
-		"code":"233",
+		"code":"234",
 		"des":"A VPC is similar to a private local area network (LAN) managed by a home gateway whose IP address is 192.168.0.0/16. A VPC is a private network built on the cloud and pro",
 		"doc_type":"usermanual2",
 		"kw":"VPC,cluster,nodes,What Is the Relationship Between Clusters, VPCs, and Subnets?,Reference,User Guide",
 		"title":"What Is the Relationship Between Clusters, VPCs, and Subnets?",
 		"githuburl":""
 	},
-	{
-		"uri":"cce_bestpractice_0107.html",
-		"product_code":"cce",
-		"code":"234",
-		"des":"For clusters of v1.15.11-r1 and later, the CSI everest add-on has taken over all functions of the fuxi FlexVolume driver (the storage-driver add-on) for container storage",
-		"doc_type":"usermanual2",
-		"kw":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?,Referen",
-		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
-		"githuburl":""
-	},
 	{
 		"uri":"cce_faq_00265.html",
 		"product_code":"cce",
@@ -2350,11 +2350,451 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_9999.html",
+		"uri":"cce_bestpractice.html",
 		"product_code":"cce",
 		"code":"236",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
+		"kw":"Best Practice",
+		"title":"Best Practice",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00006.html",
+		"product_code":"cce",
+		"code":"237",
+		"des":"Security, efficiency, stability, and availability are common requirements on all cloud services. To meet these requirements, the system availability, data reliability, an",
+		"doc_type":"usermanual2",
+		"kw":"Checklist for Deploying Containerized Applications in the Cloud,Best Practice,User Guide",
+		"title":"Checklist for Deploying Containerized Applications in the Cloud",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00237.html",
+		"product_code":"cce",
+		"code":"238",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Migration",
+		"title":"Migration",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0306.html",
+		"product_code":"cce",
+		"code":"239",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Migrating On-premises Kubernetes Clusters to CCE",
+		"title":"Migrating On-premises Kubernetes Clusters to CCE",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0307.html",
+		"product_code":"cce",
+		"code":"240",
+		"des":"Containers are growing in popularity and Kubernetes simplifies containerized deployment. Many companies choose to build their own Kubernetes clusters. However, the O&M wo",
+		"doc_type":"usermanual2",
+		"kw":"Solution Overview,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
+		"title":"Solution Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0308.html",
+		"product_code":"cce",
+		"code":"241",
+		"des":"CCE allows you to customize cluster resources to meet various service requirements. Table 1 lists the key performance parameters of a cluster and provides the planned val",
+		"doc_type":"usermanual2",
+		"kw":"Planning Resources for the Target Cluster,Migrating On-premises Kubernetes Clusters to CCE,User Guid",
+		"title":"Planning Resources for the Target Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0309.html",
+		"product_code":"cce",
+		"code":"242",
+		"des":"If your migration does not involve resources outside a cluster listed in Table 1 or you do not need to use other services to update resources after the migration, skip th",
+		"doc_type":"usermanual2",
+		"kw":"Migrating Resources Outside a Cluster,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
+		"title":"Migrating Resources Outside a Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0310.html",
+		"product_code":"cce",
+		"code":"243",
+		"des":"Velero is an open-source backup and migration tool for Kubernetes clusters. It integrates the persistent volume (PV) data backup capability of the Restic tool and can be ",
+		"doc_type":"usermanual2",
+		"kw":"Installing the Migration Tool,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
+		"title":"Installing the Migration Tool",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0311.html",
+		"product_code":"cce",
+		"code":"244",
+		"des":"WordPress is used as an example to describe how to migrate an application from an on-premises Kubernetes cluster to a CCE cluster. The WordPress application consists of t",
+		"doc_type":"usermanual2",
+		"kw":"Migrating Resources in a Cluster,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
+		"title":"Migrating Resources in a Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0312.html",
+		"product_code":"cce",
+		"code":"245",
+		"des":"The WordPress and MySQL images used in this example can be pulled from SWR. Therefore, the image pull failure (ErrImagePull) will not occur. If the application to be migr",
+		"doc_type":"usermanual2",
+		"kw":"Updating Resources Accordingly,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
+		"title":"Updating Resources Accordingly",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0313.html",
+		"product_code":"cce",
+		"code":"246",
+		"des":"Cluster migration involves full migration of application data, which may cause intra-application adaptation problems. In this example, after the cluster is migrated, the ",
+		"doc_type":"usermanual2",
+		"kw":"Performing Additional Tasks,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
+		"title":"Performing Additional Tasks",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0314.html",
+		"product_code":"cce",
+		"code":"247",
+		"des":"Both HostPath and Local volumes are local storage volumes. However, the Restic tool integrated in Velero cannot back up the PVs of the HostPath type and supports only the",
+		"doc_type":"usermanual2",
+		"kw":"Troubleshooting,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
+		"title":"Troubleshooting",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0322.html",
+		"product_code":"cce",
+		"code":"248",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"DevOps",
+		"title":"DevOps",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0324.html",
+		"product_code":"cce",
+		"code":"249",
+		"des":"GitLab is an open-source version management system developed with Ruby on Rails for Git project repository management. It supports web-based access to public and private ",
+		"doc_type":"usermanual2",
+		"kw":"Interconnecting GitLab with SWR and CCE for CI/CD,DevOps,User Guide",
+		"title":"Interconnecting GitLab with SWR and CCE for CI/CD",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0323.html",
+		"product_code":"cce",
+		"code":"250",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Disaster Recovery",
+		"title":"Disaster Recovery",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00220.html",
+		"product_code":"cce",
+		"code":"251",
+		"des":"To achieve high availability for your CCE containers, you can do as follows:Deploy three master nodes for the cluster.When nodes are deployed across AZs, set custom sched",
+		"doc_type":"usermanual2",
+		"kw":"Implementing High Availability for Containers in CCE,Disaster Recovery,User Guide",
+		"title":"Implementing High Availability for Containers in CCE",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0315.html",
+		"product_code":"cce",
+		"code":"252",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Security",
+		"title":"Security",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0317.html",
+		"product_code":"cce",
+		"code":"253",
+		"des":"For security purposes, you are advised to configure a cluster as follows.Kubernetes releases a major version in about four months. CCE follows the same frequency as Kuber",
+		"doc_type":"usermanual2",
+		"kw":"Cluster Security,Security,User Guide",
+		"title":"Cluster Security",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0318.html",
+		"product_code":"cce",
+		"code":"254",
+		"des":"Do not bind an EIP to a node unless necessary to reduce the attack surface.If an EIP must be used, properly configure the firewall or security group rules to restrict acc",
+		"doc_type":"usermanual2",
+		"kw":"Node Security,Security,User Guide",
+		"title":"Node Security",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0319.html",
+		"product_code":"cce",
+		"code":"255",
+		"des":"The nodeSelector or nodeAffinity is used to limit the range of nodes to which applications can be scheduled, preventing the entire cluster from being threatened due to th",
+		"doc_type":"usermanual2",
+		"kw":"Container Security,Security,User Guide",
+		"title":"Container Security",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0320.html",
+		"product_code":"cce",
+		"code":"256",
+		"des":"Currently, CCE has configured static encryption for secret resources. The secrets created by users will be encrypted and stored in etcd of the CCE cluster. Secrets can be",
+		"doc_type":"usermanual2",
+		"kw":"Secret Security,Security,User Guide",
+		"title":"Secret Security",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0090.html",
+		"product_code":"cce",
+		"code":"257",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Auto Scaling",
+		"title":"Auto Scaling",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00282.html",
+		"product_code":"cce",
+		"code":"258",
+		"des":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
+		"doc_type":"usermanual2",
+		"kw":"Using HPA and CA for Auto Scaling of Workloads and Nodes,Auto Scaling,User Guide",
+		"title":"Using HPA and CA for Auto Scaling of Workloads and Nodes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0050.html",
+		"product_code":"cce",
+		"code":"259",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Cluster",
+		"title":"Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00254.html",
+		"product_code":"cce",
+		"code":"260",
+		"des":"When you have multiple CCE clusters, you may find it difficult to efficiently connect to all of them.This section describes how to configure access to multiple clusters b",
+		"doc_type":"usermanual2",
+		"kw":"Connecting to Multiple Clusters Using kubectl,Cluster,User Guide",
+		"title":"Connecting to Multiple Clusters Using kubectl",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00190.html",
+		"product_code":"cce",
+		"code":"261",
+		"des":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).When creating a node in a cluster of v1.13.10 or later, if a data disk is not manage",
+		"doc_type":"usermanual2",
+		"kw":"Adding a Second Data Disk to a Node in a CCE Cluster,Cluster,User Guide",
+		"title":"Adding a Second Data Disk to a Node in a CCE Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0052.html",
+		"product_code":"cce",
+		"code":"262",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Networking",
+		"title":"Networking",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00004.html",
+		"product_code":"cce",
+		"code":"263",
+		"des":"Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.This topic",
+		"doc_type":"usermanual2",
+		"kw":"Planning CIDR Blocks for a Cluster,Networking,User Guide",
+		"title":"Planning CIDR Blocks for a Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00162.html",
+		"product_code":"cce",
+		"code":"264",
+		"des":"CCE uses self-proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.After a cluster i",
+		"doc_type":"usermanual2",
+		"kw":"Selecting a Network Model,Networking,User Guide",
+		"title":"Selecting a Network Model",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00231.html",
+		"product_code":"cce",
+		"code":"265",
+		"des":"Session persistence is one of the most common while complex problems in load balancing.Session persistence is also called sticky sessions. After the sticky session functi",
+		"doc_type":"usermanual2",
+		"kw":"Implementing Sticky Session Through Load Balancing,Networking,User Guide",
+		"title":"Implementing Sticky Session Through Load Balancing",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00035.html",
+		"product_code":"cce",
+		"code":"266",
+		"des":"There may be different types of proxy servers between a client and a container server. How can a container obtain the real source IP address of the client? This section d",
+		"doc_type":"usermanual2",
+		"kw":"Obtaining the Client Source IP Address for a Container,Networking,User Guide",
+		"title":"Obtaining the Client Source IP Address for a Container",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0053.html",
+		"product_code":"cce",
+		"code":"267",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Storage",
+		"title":"Storage",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00198.html",
+		"product_code":"cce",
+		"code":"268",
+		"des":"A data disk is divided depending on the container storage Rootfs:Overlayfs: No independent thin pool is allocated. Image data is stored in the dockersys disk.# lsblk\nNAME",
+		"doc_type":"usermanual2",
+		"kw":"Expanding Node Disk Capacity,Storage,User Guide",
+		"title":"Expanding Node Disk Capacity",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00199.html",
+		"product_code":"cce",
+		"code":"269",
+		"des":"This section describes how to mount OBS buckets and OBS parallel file systems (preferred) of third-party tenants.The CCE cluster of a SaaS service provider needs to be mo",
+		"doc_type":"usermanual2",
+		"kw":"Mounting an Object Storage Bucket of a Third-Party Tenant,Storage,User Guide",
+		"title":"Mounting an Object Storage Bucket of a Third-Party Tenant",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00253_0.html",
+		"product_code":"cce",
+		"code":"270",
+		"des":"The minimum capacity of an SFS Turbo file system is 500 GB, and the SFS Turbo file system cannot be billed by usage. By default, the root directory of an SFS Turbo file s",
+		"doc_type":"usermanual2",
+		"kw":"Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System,Storage,User Guide",
+		"title":"Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0107.html",
+		"product_code":"cce",
+		"code":"271",
+		"des":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
+		"doc_type":"usermanual2",
+		"kw":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?,Storage",
+		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00281_0.html",
+		"product_code":"cce",
+		"code":"272",
+		"des":"When using storage resources in CCE, the most common method is to specify storageClassName to define the type of storage resources to be created when creating a PVC. The ",
+		"doc_type":"usermanual2",
+		"kw":"Custom Storage Classes,Storage,User Guide",
+		"title":"Custom Storage Classes",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00284.html",
+		"product_code":"cce",
+		"code":"273",
+		"des":"EVS disks cannot be attached across AZs. For example, EVS disks in AZ 1 cannot be attached to nodes in AZ 2.If the storage class csi-disk is used for StatefulSets, when a",
+		"doc_type":"usermanual2",
+		"kw":"Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology),St",
+		"title":"Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology)",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0051.html",
+		"product_code":"cce",
+		"code":"274",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Container",
+		"title":"Container",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00002.html",
+		"product_code":"cce",
+		"code":"275",
+		"des":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
+		"doc_type":"usermanual2",
+		"kw":"Properly Allocating Container Computing Resources,Container,User Guide",
+		"title":"Properly Allocating Container Computing Resources",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00227.html",
+		"product_code":"cce",
+		"code":"276",
+		"des":"To access a Kubernetes cluster from a client, you can use the Kubernetes command line tool kubectl.Create a DaemonSet file.vi daemonSet.yamlAn example YAML file is provid",
+		"doc_type":"usermanual2",
+		"kw":"Modifying Kernel Parameters Using a Privileged Container,Container,User Guide",
+		"title":"Modifying Kernel Parameters Using a Privileged Container",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00228.html",
+		"product_code":"cce",
+		"code":"277",
+		"des":"Before containers running applications are started, one or some init containers are started first. If there are multiple init containers, they will be started in the defi",
+		"doc_type":"usermanual2",
+		"kw":"Initializing a Container,Container,User Guide",
+		"title":"Initializing a Container",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00226.html",
+		"product_code":"cce",
+		"code":"278",
+		"des":"If DNS or other related settings are inappropriate, you can use hostAliases to overwrite the resolution of the host name at the pod level when adding entries to the /etc/",
+		"doc_type":"usermanual2",
+		"kw":"Using hostAliases to Configure /etc/hosts in a Pod,Container,User Guide",
+		"title":"Using hostAliases to Configure /etc/hosts in a Pod",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0325.html",
+		"product_code":"cce",
+		"code":"279",
+		"des":"Linux allows you to create a core dump file if an application crashes, which contains the data the application had in memory at the time of the crash. You can analyze the",
+		"doc_type":"usermanual2",
+		"kw":"Configuring Core Dumps,Container,User Guide",
+		"title":"Configuring Core Dumps",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_01_9999.html",
+		"product_code":"cce",
+		"code":"280",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
 		"kw":"Migrating Data from CCE 1.0 to CCE 2.0",
 		"title":"Migrating Data from CCE 1.0 to CCE 2.0",
 		"githuburl":""
@@ -2362,7 +2802,7 @@
 	{
 		"uri":"cce_01_9998.html",
 		"product_code":"cce",
-		"code":"237",
+		"code":"281",
 		"des":"CCE 2.0 inherits and modifies the features of CCE 1.0, and release new features.Modified features:Clusters in CCE 1.0 are equivalent to Hybrid clusters in CCE 2.0.CCE 2.0",
 		"doc_type":"usermanual2",
 		"kw":"Differences Between CCE 1.0 and CCE 2.0,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2372,7 +2812,7 @@
 	{
 		"uri":"cce_01_9997.html",
 		"product_code":"cce",
-		"code":"238",
+		"code":"282",
 		"des":"Migrate the images stored in the image repository of CCE 1.0 to CCE 2.0.A VM is available. The VM is bound to a public IP address and can access the Internet. Docker (ear",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Images,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2382,7 +2822,7 @@
 	{
 		"uri":"cce_01_9996.html",
 		"product_code":"cce",
-		"code":"239",
+		"code":"283",
 		"des":"Create Hybrid clusters on the CCE 2.0 console. These new Hybrid clusters should have the same specifications with those created on CCE 1.0.To create clusters using APIs, ",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Clusters,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2392,7 +2832,7 @@
 	{
 		"uri":"cce_01_9995.html",
 		"product_code":"cce",
-		"code":"240",
+		"code":"284",
 		"des":"This section describes how to create a Deployment with the same specifications as that in CCE 1.0 on the CCE 2.0 console.It is advised to delete the applications on CCE 1",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Applications,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2402,7 +2842,7 @@
 	{
 		"uri":"cce_01_0300.html",
 		"product_code":"cce",
-		"code":"241",
+		"code":"285",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Change History,User Guide",
diff --git a/docs/cce/umn/CLASS.TXT.json b/docs/cce/umn/CLASS.TXT.json
index bc280604..afd0e381 100644
--- a/docs/cce/umn/CLASS.TXT.json
+++ b/docs/cce/umn/CLASS.TXT.json
@@ -21,7 +21,7 @@
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Product Bulletin",
-		"uri":"cce_01_0236.html",
+		"uri":"cce_bulletin_0000.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
 		"code":"3"
@@ -36,7 +36,7 @@
 		"code":"4"
 	},
 	{
-		"desc":"This section describes the Kubernetes version support mechanism of CCE.Version number: The format is x.y.z-r{n}, where x.y is the major version and z is the minor version",
+		"desc":"This section explains versioning in CCE, and the policies for Kubernetes version support.Version number: The format is x.y.z, where x.y is the major version and z is the ",
 		"product_code":"cce",
 		"title":"Kubernetes Version Support Mechanism",
 		"uri":"cce_bulletin_0003.html",
@@ -54,7 +54,7 @@
 		"code":"6"
 	},
 	{
-		"desc":"CCE nodes in Hybrid clusters can run on EulerOS 2.2, EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.The OS patches",
+		"desc":"CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.The OS patches and verifica",
 		"product_code":"cce",
 		"title":"OS Patch Notes for Cluster Nodes",
 		"uri":"cce_bulletin_0301.html",
@@ -71,6 +71,15 @@
 		"p_code":"3",
 		"code":"8"
 	},
+	{
+		"desc":"High-risk vulnerabilities:CCE fixes vulnerabilities as soon as possible after the Kubernetes community detects them and releases fixing solutions. The fixing policies are",
+		"product_code":"cce",
+		"title":"Vulnerability Fixing Policies",
+		"uri":"cce_bulletin_0011.html",
+		"doc_type":"usermanual2",
+		"p_code":"8",
+		"code":"9"
+	},
 	{
 		"desc":"Recently, a security research team disclosed a privilege escalation vulnerability (CVE-2021-4034, also dubbed PwnKit) in PolKit's pkexec. Unprivileged users can gain full",
 		"product_code":"cce",
@@ -78,7 +87,7 @@
 		"uri":"CVE-2021-4034.html",
 		"doc_type":"usermanual2",
 		"p_code":"8",
-		"code":"9"
+		"code":"10"
 	},
 	{
 		"desc":"The Linux Kernel SACK vulnerabilities have been fixed. This section describes the solution to these vulnerabilities.On June 18, 2019, Red Hat released a security notice, ",
@@ -87,7 +96,16 @@
 		"uri":"cce_bulletin_0206.html",
 		"doc_type":"usermanual2",
 		"p_code":"8",
-		"code":"10"
+		"code":"11"
+	},
+	{
+		"desc":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
+		"product_code":"cce",
+		"title":"Service Account Token Security Improvement",
+		"uri":"cce_10_0477.html",
+		"doc_type":"usermanual2",
+		"p_code":"3",
+		"code":"12"
 	},
 	{
 		"desc":"CCE works closely with multiple cloud services to support computing, storage, networking, and monitoring functions. When you log in to the CCE console for the first time,",
@@ -96,1772 +114,1790 @@
 		"uri":"cce_01_9994.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"11"
+		"code":"13"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Clusters",
-		"uri":"cce_01_0027.html",
+		"uri":"cce_10_0091.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"12"
+		"code":"14"
 	},
 	{
-		"desc":"Kubernetes is a containerized application software system that can be easily deployed and managed. It facilitates container scheduling and orchestration.For application d",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Cluster Overview",
-		"uri":"cce_01_0002.html",
+		"uri":"cce_10_0002.html",
 		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"13"
+		"p_code":"14",
+		"code":"15"
+	},
+	{
+		"desc":"Kubernetes allows you to easily deploy and manage containerized application and facilitates container scheduling and orchestration.For developers, Kubernetes is a cluster",
+		"product_code":"cce",
+		"title":"Basic Cluster Information",
+		"uri":"cce_10_0430.html",
+		"doc_type":"usermanual2",
+		"p_code":"15",
+		"code":"16"
 	},
 	{
 		"desc":"The following table lists the differences between CCE Turbo clusters and CCE clusters:The QingTian architecture consists of data plane (software-hardware synergy) and man",
 		"product_code":"cce",
 		"title":"CCE Turbo Clusters and CCE Clusters",
-		"uri":"cce_01_0342.html",
+		"uri":"cce_10_0342.html",
 		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"14"
+		"p_code":"15",
+		"code":"17"
+	},
+	{
+		"desc":"kube-proxy is a key component of a Kubernetes cluster. It is responsible for load balancing and forwarding between a Service and its backend pod.CCE supports two forwardi",
+		"product_code":"cce",
+		"title":"Comparing iptables and IPVS",
+		"uri":"cce_10_0349.html",
+		"doc_type":"usermanual2",
+		"p_code":"15",
+		"code":"18"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Release Notes",
+		"uri":"cce_10_0068.html",
+		"doc_type":"usermanual2",
+		"p_code":"15",
+		"code":"19"
+	},
+	{
+		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.25.Kubernetes 1",
+		"product_code":"cce",
+		"title":"CCE Kubernetes 1.25 Release Notes",
+		"uri":"cce_10_0467.html",
+		"doc_type":"usermanual2",
+		"p_code":"19",
+		"code":"20"
+	},
+	{
+		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.23.Changes in C",
+		"product_code":"cce",
+		"title":"CCE Kubernetes 1.23 Release Notes",
+		"uri":"cce_10_0468.html",
+		"doc_type":"usermanual2",
+		"p_code":"19",
+		"code":"21"
+	},
+	{
+		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.21.Kubernetes 1",
+		"product_code":"cce",
+		"title":"CCE Kubernetes 1.21 Release Notes",
+		"uri":"cce_10_0469.html",
+		"doc_type":"usermanual2",
+		"p_code":"19",
+		"code":"22"
+	},
+	{
+		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.19.Kubernetes 1",
+		"product_code":"cce",
+		"title":"CCE Kubernetes 1.19 Release Notes",
+		"uri":"cce_10_0470.html",
+		"doc_type":"usermanual2",
+		"p_code":"19",
+		"code":"23"
+	},
+	{
+		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.17.All resource",
+		"product_code":"cce",
+		"title":"CCE Kubernetes 1.17 Release Notes",
+		"uri":"cce_10_0471.html",
+		"doc_type":"usermanual2",
+		"p_code":"19",
+		"code":"24"
 	},
 	{
 		"desc":"CCE Turbo clusters run on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and inte",
 		"product_code":"cce",
 		"title":"Creating a CCE Turbo Cluster",
-		"uri":"cce_01_0298.html",
+		"uri":"cce_10_0298.html",
 		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"15"
+		"p_code":"14",
+		"code":"25"
 	},
 	{
 		"desc":"On the CCE console, you can easily create Kubernetes clusters. Kubernetes can manage container clusters at scale. A cluster manages a group of node resources.In CCE, you ",
 		"product_code":"cce",
 		"title":"Creating a CCE Cluster",
-		"uri":"cce_01_0028.html",
+		"uri":"cce_10_0028.html",
 		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"16"
+		"p_code":"14",
+		"code":"26"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Using kubectl to Run a Cluster",
-		"uri":"cce_01_0140.html",
+		"uri":"cce_10_0140.html",
 		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"17"
+		"p_code":"14",
+		"code":"27"
 	},
 	{
 		"desc":"This section uses a CCE cluster as an example to describe how to connect to a CCE cluster using kubectl.When you access a cluster using kubectl, CCE uses thekubeconfig.js",
 		"product_code":"cce",
 		"title":"Connecting to a Cluster Using kubectl",
-		"uri":"cce_01_0107.html",
+		"uri":"cce_10_0107.html",
 		"doc_type":"usermanual2",
-		"p_code":"17",
-		"code":"18"
+		"p_code":"27",
+		"code":"28"
+	},
+	{
+		"desc":"A Subject Alternative Name (SAN) can be signed in to a cluster server certificate. A SAN is usually used by the client to verify the server validity in TLS handshakes. Sp",
+		"product_code":"cce",
+		"title":"Customizing a Cluster Certificate SAN",
+		"uri":"cce_10_0367.html",
+		"doc_type":"usermanual2",
+		"p_code":"27",
+		"code":"29"
 	},
 	{
 		"desc":"getThe get command displays one or many resources of a cluster.This command prints a table of the most important information about all resources, including cluster nodes,",
 		"product_code":"cce",
 		"title":"Common kubectl Commands",
-		"uri":"cce_01_0139.html",
+		"uri":"cce_10_0139.html",
 		"doc_type":"usermanual2",
-		"p_code":"17",
-		"code":"19"
-	},
-	{
-		"desc":"Before running kubectl commands, you should have the kubectl development skills and understand the kubectl operations. For details, see Kubernetes API and kubectl CLI.Go ",
-		"product_code":"cce",
-		"title":"kubectl Usage Guide",
-		"uri":"cce_01_0023.html",
-		"doc_type":"usermanual2",
-		"p_code":"17",
-		"code":"20"
-	},
-	{
-		"desc":"The Cluster Auto Scaling feature allows CCE to automatically scale out a cluster (adding worker nodes to a cluster) according to custom policies when workloads cannot be ",
-		"product_code":"cce",
-		"title":"Setting Cluster Auto Scaling",
-		"uri":"cce_01_0157.html",
-		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"21"
+		"p_code":"27",
+		"code":"30"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Upgrading a Cluster",
-		"uri":"cce_01_0215.html",
+		"uri":"cce_10_0215.html",
 		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"22"
+		"p_code":"14",
+		"code":"31"
 	},
 	{
 		"desc":"To enable interoperability from one Kubernetes installation to the next, you must upgrade your Kubernetes clusters before the maintenance period ends.After the latest Kub",
 		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0197.html",
+		"title":"Upgrade Overview",
+		"uri":"cce_10_0197.html",
 		"doc_type":"usermanual2",
-		"p_code":"22",
-		"code":"23"
+		"p_code":"31",
+		"code":"32"
 	},
 	{
-		"desc":"Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see Overview.Upgraded clusters ca",
+		"desc":"Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see Upgrade Overview.Upgraded clu",
 		"product_code":"cce",
 		"title":"Before You Start",
-		"uri":"cce_01_0302.html",
+		"uri":"cce_10_0302.html",
 		"doc_type":"usermanual2",
-		"p_code":"22",
-		"code":"24"
+		"p_code":"31",
+		"code":"33"
 	},
 	{
 		"desc":"You can upgrade your clusters to a newer Kubernetes version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgrade",
 		"product_code":"cce",
-		"title":"Performing Replace/Rolling Upgrade (v1.13 and Earlier)",
-		"uri":"cce_01_0120.html",
+		"title":"Performing Replace/Rolling Upgrade",
+		"uri":"cce_10_0120.html",
 		"doc_type":"usermanual2",
-		"p_code":"22",
-		"code":"25"
+		"p_code":"31",
+		"code":"34"
 	},
 	{
-		"desc":"On the CCE console, You can perform an in-place cluster upgrade to use new cluster features.Before the upgrade, learn about the target version to which each CCE cluster c",
+		"desc":"You can upgrade your clusters to a newer version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what w",
 		"product_code":"cce",
-		"title":"Performing In-place Upgrade (v1.15 and Later)",
-		"uri":"cce_01_0301.html",
+		"title":"Performing In-place Upgrade",
+		"uri":"cce_10_0301.html",
 		"doc_type":"usermanual2",
-		"p_code":"22",
-		"code":"26"
+		"p_code":"31",
+		"code":"35"
 	},
 	{
 		"desc":"This section describes how to migrate services from a cluster of an earlier version to a cluster of a later version in CCE.This operation is applicable when a cross-versi",
 		"product_code":"cce",
 		"title":"Migrating Services Across Clusters of Different Versions",
-		"uri":"cce_01_0210.html",
+		"uri":"cce_10_0210.html",
 		"doc_type":"usermanual2",
-		"p_code":"22",
-		"code":"27"
-	},
-	{
-		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. To enable interoperability from one Kubernetes installation to the nex",
-		"product_code":"cce",
-		"title":"CCE Kubernetes Release Notes",
-		"uri":"cce_01_0068.html",
-		"doc_type":"usermanual2",
-		"p_code":"22",
-		"code":"28"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Managing a Cluster",
-		"uri":"cce_01_0031.html",
-		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"29"
-	},
-	{
-		"desc":"This section describes how to delete a cluster.Deleting a cluster will delete the nodes in the cluster (excluding accepted nodes), data disks attached to the nodes, workl",
-		"product_code":"cce",
-		"title":"Deleting a Cluster",
-		"uri":"cce_01_0212.html",
-		"doc_type":"usermanual2",
-		"p_code":"29",
-		"code":"30"
-	},
-	{
-		"desc":"If you do not need to use a cluster temporarily, you are advised to hibernate the cluster to save cluster management costs.After a cluster is hibernated, resources such a",
-		"product_code":"cce",
-		"title":"Hibernating and Waking Up a Cluster",
-		"uri":"cce_01_0214.html",
-		"doc_type":"usermanual2",
-		"p_code":"29",
-		"code":"31"
-	},
-	{
-		"desc":"CCE clusters allow you to manage Kubernetes parameters, through which you can let core components work under your very requirements.This function is supported only in clu",
-		"product_code":"cce",
-		"title":"Configuring Kubernetes Parameters",
-		"uri":"cce_01_0213.html",
-		"doc_type":"usermanual2",
-		"p_code":"29",
-		"code":"32"
-	},
-	{
-		"desc":"Before accessing cluster resources through open-source Kubernetes APIs, obtain the cluster's certificate.The downloaded certificate contains three files: client.key, clie",
-		"product_code":"cce",
-		"title":"Obtaining a Cluster Certificate",
-		"uri":"cce_01_0175.html",
-		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"33"
-	},
-	{
-		"desc":"This section describes how to control permissions on resources in a cluster, for example, allow user A to read and write application data in a namespace, and user B to on",
-		"product_code":"cce",
-		"title":"Controlling Cluster Permissions",
-		"uri":"cce_01_0085.html",
-		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"34"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Cluster Parameters",
-		"uri":"cce_01_0347.html",
-		"doc_type":"usermanual2",
-		"p_code":"12",
-		"code":"35"
-	},
-	{
-		"desc":"The maximum number of pods that can be created on a node is determined by the following parameters:Number of container IP addresses that can be allocated on a node (alpha",
-		"product_code":"cce",
-		"title":"Maximum Number of Pods That Can Be Created on a Node",
-		"uri":"cce_01_0348.html",
-		"doc_type":"usermanual2",
-		"p_code":"35",
+		"p_code":"31",
 		"code":"36"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Nodes",
-		"uri":"cce_01_0183.html",
+		"title":"Managing a Cluster",
+		"uri":"cce_10_0031.html",
 		"doc_type":"usermanual2",
-		"p_code":"",
+		"p_code":"14",
 		"code":"37"
 	},
 	{
-		"desc":"A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (P",
+		"desc":"CCE allows you to manage cluster parameters, through which you can let core components work under your very requirements.This function is supported only in clusters of v1",
 		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0180.html",
+		"title":"Managing Cluster Components",
+		"uri":"cce_10_0213.html",
 		"doc_type":"usermanual2",
 		"p_code":"37",
 		"code":"38"
 	},
 	{
-		"desc":"A node is a virtual or physical machine that provides computing resources. Sufficient nodes must be available in your project to ensure that operations, such as creating ",
+		"desc":"This section describes how to delete a cluster.Deleting a cluster will delete the nodes in the cluster (excluding accepted nodes), data disks attached to the nodes, workl",
 		"product_code":"cce",
-		"title":"Creating a Node",
-		"uri":"cce_01_0033.html",
+		"title":"Deleting a Cluster",
+		"uri":"cce_10_0212.html",
 		"doc_type":"usermanual2",
 		"p_code":"37",
 		"code":"39"
 	},
 	{
-		"desc":"At least one CCE Turbo cluster is available. For details on how to create a cluster, see Creating a CCE Turbo Cluster.A key pair has been created for identity authenticat",
+		"desc":"If you do not need to use a cluster temporarily, you are advised to hibernate the cluster.After a cluster is hibernated, resources such as workloads cannot be created or ",
 		"product_code":"cce",
-		"title":"Creating a Node in a CCE Turbo Cluster",
-		"uri":"cce_01_0363.html",
+		"title":"Hibernating and Waking Up a Cluster",
+		"uri":"cce_10_0214.html",
 		"doc_type":"usermanual2",
 		"p_code":"37",
 		"code":"40"
 	},
 	{
-		"desc":"Removing a node from a cluster in CCE will re-install the node OS and clear CCE components on the node.Removing a node will not delete the server (ECS) corresponding to t",
+		"desc":"If overload control is enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.The c",
 		"product_code":"cce",
-		"title":"Removing a Node",
-		"uri":"cce_01_0338.html",
+		"title":"Cluster Overload Control",
+		"uri":"cce_10_0602.html",
 		"doc_type":"usermanual2",
 		"p_code":"37",
 		"code":"41"
 	},
 	{
-		"desc":"If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).Only login to a running ECS is allowed.Only the user linux can l",
+		"desc":"This section describes how to obtain the cluster certificate from the console and use it to access Kubernetes clusters.The downloaded certificate contains three files: cl",
 		"product_code":"cce",
-		"title":"Logging In to a Node",
-		"uri":"cce_01_0185.html",
+		"title":"Obtaining a Cluster Certificate",
+		"uri":"cce_10_0175.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"14",
 		"code":"42"
 	},
 	{
-		"desc":"You can add different labels to nodes and define different attributes for labels. By using these node labels, you can quickly understand the characteristics of each node.",
+		"desc":"CCE allows you to change the number of nodes managed in a cluster.This function is supported for clusters of v1.15 and later versions.Starting from v1.15.11, the number o",
 		"product_code":"cce",
-		"title":"Managing Node Labels",
-		"uri":"cce_01_0004.html",
+		"title":"Changing Cluster Scale",
+		"uri":"cce_10_0403.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"14",
 		"code":"43"
 	},
 	{
-		"desc":"Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.Some inf",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Synchronizing Node Data",
-		"uri":"cce_01_0184.html",
+		"title":"Nodes",
+		"uri":"cce_10_0183.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"",
 		"code":"44"
 	},
 	{
-		"desc":"Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.A taint is a key-value pair associated with an effect. The following ef",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Configuring Node Scheduling (Tainting)",
-		"uri":"cce_01_0352.html",
+		"title":"Node Overview",
+		"uri":"cce_10_0180.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"44",
 		"code":"45"
 	},
 	{
-		"desc":"You can reset a node to modify the node configuration, such as the node OS and login mode.Resetting a node will reinstall the node OS and the Kubernetes software on the n",
+		"desc":"A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (P",
 		"product_code":"cce",
-		"title":"Resetting a Node",
-		"uri":"cce_01_0003.html",
+		"title":"Precautions for Using a Node",
+		"uri":"cce_10_0461.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"45",
 		"code":"46"
 	},
 	{
-		"desc":"When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.After a CCE cluster is deleted",
+		"desc":"Container engines, one of the most important components of Kubernetes, manage the lifecycle of images and containers. The kubelet interacts with a container runtime throu",
 		"product_code":"cce",
-		"title":"Deleting a Node",
-		"uri":"cce_01_0186.html",
+		"title":"Container Engine",
+		"uri":"cce_10_0462.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"45",
 		"code":"47"
 	},
 	{
-		"desc":"After a node in the cluster is stopped, services on the node are also stopped. Before stopping a node, ensure that discontinuity of the services on the node will not resu",
+		"desc":"The most significant difference is that each Kata container (pod) runs on an independent micro-VM, has an independent OS kernel, and is securely isolated at the virtualiz",
 		"product_code":"cce",
-		"title":"Stopping a Node",
-		"uri":"cce_01_0036.html",
+		"title":"Kata Containers and Common Containers",
+		"uri":"cce_10_0463.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"45",
 		"code":"48"
 	},
 	{
-		"desc":"In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. Figure 1 shows the migration process.The o",
+		"desc":"The maximum number of pods that can be created on a node is determined by the following parameters:Number of container IP addresses that can be allocated on a node (alpha",
 		"product_code":"cce",
-		"title":"Performing Rolling Upgrade for Nodes",
-		"uri":"cce_01_0276.html",
+		"title":"Maximum Number of Pods That Can Be Created on a Node",
+		"uri":"cce_10_0348.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"45",
 		"code":"49"
 	},
 	{
 		"desc":"Some of the resources on the node need to run some necessary Kubernetes system components and resources to make the node as part of your cluster. Therefore, the total num",
 		"product_code":"cce",
 		"title":"Formula for Calculating the Reserved Resources of a Node",
-		"uri":"cce_01_0178.html",
+		"uri":"cce_10_0178.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"45",
 		"code":"50"
 	},
 	{
-		"desc":"This section describes how to check whether there are available raw disks and Linux LVM disk partitions and how to create Linux LVM disk partitions.To improve the system ",
+		"desc":"This section describes how to allocate data disk space.When creating a node, you need to configure a data disk whose capacity is greater than or equal to 100GB for the no",
 		"product_code":"cce",
-		"title":"Creating a Linux LVM Disk Partition for Docker",
-		"uri":"cce_01_0200.html",
+		"title":"Data Disk Space Allocation",
+		"uri":"cce_10_0341.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"45",
 		"code":"51"
 	},
 	{
-		"desc":"When creating a node, you need to configure data disks for the node.The data disk is divided into Kubernetes space and user space. The user space defines the space that i",
+		"desc":"At least one cluster has been created.A key pair has been created for identity authentication upon remote node login.The node has 2-core or higher CPU, 4 GB or larger mem",
 		"product_code":"cce",
-		"title":"Data Disk Space Allocation",
-		"uri":"cce_01_0341.html",
+		"title":"Creating a Node",
+		"uri":"cce_10_0363.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"44",
 		"code":"52"
 	},
 	{
-		"desc":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).When creating a node in a cluster of v1.13.10 or later, if a data disk is not manage",
+		"desc":"In CCE, you can Creating a Node or add existing nodes (ECSs) into your cluster.While an ECS is being accepted into a cluster, the operating system of the ECS will be rese",
 		"product_code":"cce",
-		"title":"Adding a Second Data Disk to a Node in a CCE Cluster",
-		"uri":"cce_01_0344.html",
+		"title":"Adding Nodes for Management",
+		"uri":"cce_10_0198.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
+		"p_code":"44",
 		"code":"53"
 	},
+	{
+		"desc":"Removing a node from a cluster will re-install the node OS and clear CCE components on the node.Removing a node will not delete the server corresponding to the node. You ",
+		"product_code":"cce",
+		"title":"Removing a Node",
+		"uri":"cce_10_0338.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"54"
+	},
+	{
+		"desc":"You can reset a node to modify the node configuration, such as the node OS and login mode.Resetting a node will reinstall the node OS and the Kubernetes software on the n",
+		"product_code":"cce",
+		"title":"Resetting a Node",
+		"uri":"cce_10_0003.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"55"
+	},
+	{
+		"desc":"If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).Only login to a running ECS is allowed.Only the user linux can l",
+		"product_code":"cce",
+		"title":"Logging In to a Node",
+		"uri":"cce_10_0185.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"56"
+	},
+	{
+		"desc":"You can add different labels to nodes and define different attributes for labels. By using these node labels, you can quickly understand the characteristics of each node.",
+		"product_code":"cce",
+		"title":"Managing Node Labels",
+		"uri":"cce_10_0004.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"57"
+	},
+	{
+		"desc":"Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.A taint is a key-value pair associated with an effect. The following ef",
+		"product_code":"cce",
+		"title":"Managing Node Taints",
+		"uri":"cce_10_0352.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"58"
+	},
+	{
+		"desc":"Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.Some inf",
+		"product_code":"cce",
+		"title":"Synchronizing Data with Cloud Servers",
+		"uri":"cce_10_0184.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"59"
+	},
+	{
+		"desc":"When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.After a CCE cluster is deleted",
+		"product_code":"cce",
+		"title":"Deleting a Node",
+		"uri":"cce_10_0186.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"60"
+	},
+	{
+		"desc":"After a node in the cluster is stopped, services on the node are also stopped. Before stopping a node, ensure that discontinuity of the services on the node will not resu",
+		"product_code":"cce",
+		"title":"Stopping a Node",
+		"uri":"cce_10_0036.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"61"
+	},
+	{
+		"desc":"In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. Figure 1 shows the migration process.The o",
+		"product_code":"cce",
+		"title":"Performing Rolling Upgrade for Nodes",
+		"uri":"cce_10_0276.html",
+		"doc_type":"usermanual2",
+		"p_code":"44",
+		"code":"62"
+	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Node Pools",
-		"uri":"cce_01_0035.html",
+		"uri":"cce_10_0035.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"54"
+		"code":"63"
 	},
 	{
 		"desc":"CCE introduces node pools to help you better manage nodes in Kubernetes clusters. A node pool contains one node or a group of nodes with identical configuration in a clus",
 		"product_code":"cce",
 		"title":"Node Pool Overview",
-		"uri":"cce_01_0081.html",
+		"uri":"cce_10_0081.html",
 		"doc_type":"usermanual2",
-		"p_code":"54",
-		"code":"55"
+		"p_code":"63",
+		"code":"64"
 	},
 	{
-		"desc":"This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see Node Pool Overview.For details abou",
+		"desc":"This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see Node Pool Overview.The autoscaler a",
 		"product_code":"cce",
 		"title":"Creating a Node Pool",
-		"uri":"cce_01_0012.html",
+		"uri":"cce_10_0012.html",
 		"doc_type":"usermanual2",
-		"p_code":"54",
-		"code":"56"
+		"p_code":"63",
+		"code":"65"
 	},
 	{
 		"desc":"The default node pool DefaultPool does not support the following management operations.CCE allows you to highly customize Kubernetes parameter settings on core components",
 		"product_code":"cce",
 		"title":"Managing a Node Pool",
-		"uri":"cce_01_0222.html",
+		"uri":"cce_10_0222.html",
 		"doc_type":"usermanual2",
-		"p_code":"54",
-		"code":"57"
+		"p_code":"63",
+		"code":"66"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Workloads",
-		"uri":"cce_01_0046.html",
+		"uri":"cce_10_0046.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"58"
+		"code":"67"
 	},
 	{
 		"desc":"A workload is an application running on Kubernetes. No matter how many components are there in your workload, you can run it in a group of Kubernetes pods. A workload is ",
 		"product_code":"cce",
 		"title":"Overview",
-		"uri":"cce_01_0006.html",
+		"uri":"cce_10_0006.html",
 		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"59"
+		"p_code":"67",
+		"code":"68"
 	},
 	{
 		"desc":"Deployments are workloads (for example, Nginx) that do not store any data or status. You can create Deployments on the CCE console or by running kubectl commands.Before c",
 		"product_code":"cce",
 		"title":"Creating a Deployment",
-		"uri":"cce_01_0047.html",
+		"uri":"cce_10_0047.html",
 		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"60"
+		"p_code":"67",
+		"code":"69"
 	},
 	{
 		"desc":"StatefulSets are a type of workloads whose data or status is stored while they are running. For example, MySQL is a StatefulSet because it needs to store new data.A conta",
 		"product_code":"cce",
 		"title":"Creating a StatefulSet",
-		"uri":"cce_01_0048.html",
+		"uri":"cce_10_0048.html",
 		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"61"
+		"p_code":"67",
+		"code":"70"
 	},
 	{
 		"desc":"CCE provides deployment and management capabilities for multiple types of containers and supports features of container workloads, including creation, configuration, moni",
 		"product_code":"cce",
 		"title":"Creating a DaemonSet",
-		"uri":"cce_01_0216.html",
+		"uri":"cce_10_0216.html",
 		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"62"
+		"p_code":"67",
+		"code":"71"
 	},
 	{
 		"desc":"Jobs are short-lived and run for a certain time to completion. They can be executed immediately after being deployed. It is completed after it exits normally (exit 0).A j",
 		"product_code":"cce",
 		"title":"Creating a Job",
-		"uri":"cce_01_0150.html",
+		"uri":"cce_10_0150.html",
 		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"63"
+		"p_code":"67",
+		"code":"72"
 	},
 	{
 		"desc":"A cron job runs on a repeating schedule. You can perform time synchronization for all active nodes at a fixed time point.A cron job runs periodically at the specified tim",
 		"product_code":"cce",
 		"title":"Creating a Cron Job",
-		"uri":"cce_01_0151.html",
+		"uri":"cce_10_0151.html",
 		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"64"
-	},
-	{
-		"desc":"A pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. A pod encapsulates an application's container (or, in some cases, multip",
-		"product_code":"cce",
-		"title":"Managing Pods",
-		"uri":"cce_01_0013.html",
-		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"65"
-	},
-	{
-		"desc":"After a workload is created, you can scale, upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.Workload/Job managementOperationDescription",
-		"product_code":"cce",
-		"title":"Managing Workloads and Jobs",
-		"uri":"cce_01_0007.html",
-		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"66"
-	},
-	{
-		"desc":"After scaling policies are defined, pods can be automatically added or deleted based on resource changes, fixed time, and fixed periods. You do not need to manually adjus",
-		"product_code":"cce",
-		"title":"Scaling a Workload",
-		"uri":"cce_01_0057.html",
-		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"67"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Configuring a Container",
-		"uri":"cce_01_0130.html",
-		"doc_type":"usermanual2",
-		"p_code":"58",
-		"code":"68"
-	},
-	{
-		"desc":"CCE allows you to create workloads using images pulled from third-party image repositories.Generally, a third-party image repository can be accessed only after authentica",
-		"product_code":"cce",
-		"title":"Using a Third-Party Image",
-		"uri":"cce_01_0009.html",
-		"doc_type":"usermanual2",
-		"p_code":"68",
-		"code":"69"
-	},
-	{
-		"desc":"CCE allows you to set resource limits for added containers during workload creation. You can request and limit the CPU and memory quotas used by each pod in the workload.",
-		"product_code":"cce",
-		"title":"Setting Container Specifications",
-		"uri":"cce_01_0163.html",
-		"doc_type":"usermanual2",
-		"p_code":"68",
-		"code":"70"
-	},
-	{
-		"desc":"CCE provides callback functions for the lifecycle management of containerized applications. For example, if you want a container to perform a certain operation before sto",
-		"product_code":"cce",
-		"title":"Setting Container Lifecycle Parameters",
-		"uri":"cce_01_0105.html",
-		"doc_type":"usermanual2",
-		"p_code":"68",
-		"code":"71"
-	},
-	{
-		"desc":"When creating a workload or job, you can use an image to specify the processes running in the container.By default, the image runs the default command. To run a specific ",
-		"product_code":"cce",
-		"title":"Setting Container Startup Commands",
-		"uri":"cce_01_0008.html",
-		"doc_type":"usermanual2",
-		"p_code":"68",
-		"code":"72"
-	},
-	{
-		"desc":"Health check regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect service except",
-		"product_code":"cce",
-		"title":"Setting Health Check for a Container",
-		"uri":"cce_01_0112.html",
-		"doc_type":"usermanual2",
-		"p_code":"68",
+		"p_code":"67",
 		"code":"73"
 	},
 	{
-		"desc":"An environment variable is a variable whose value can affect the way a running container will behave. You can modify environment variables even after workloads are deploy",
+		"desc":"After a workload is created, you can upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.Workload/Job managementOperationDescriptionMonitor",
 		"product_code":"cce",
-		"title":"Setting an Environment Variable",
-		"uri":"cce_01_0113.html",
+		"title":"Managing Workloads and Jobs",
+		"uri":"cce_10_0007.html",
 		"doc_type":"usermanual2",
-		"p_code":"68",
+		"p_code":"67",
 		"code":"74"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Affinity and Anti-Affinity Scheduling",
-		"uri":"cce_01_0149.html",
+		"title":"Configuring a Container",
+		"uri":"cce_10_0130.html",
 		"doc_type":"usermanual2",
-		"p_code":"",
+		"p_code":"67",
 		"code":"75"
 	},
 	{
-		"desc":"CCE supports custom and simple scheduling policies. A custom scheduling policy allows you to customize node affinity, workload affinity, and workload anti-affinity to mee",
+		"desc":"A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click Add Container in the upper right corner to add multiple ",
 		"product_code":"cce",
-		"title":"Scheduling Policy Overview",
-		"uri":"cce_01_0051.html",
+		"title":"Setting Basic Container Information",
+		"uri":"cce_10_0396.html",
 		"doc_type":"usermanual2",
 		"p_code":"75",
 		"code":"76"
 	},
 	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"desc":"CCE allows you to create workloads using images pulled from third-party image repositories.Generally, a third-party image repository can be accessed only after authentica",
 		"product_code":"cce",
-		"title":"Custom Scheduling Policies",
-		"uri":"cce_01_0231.html",
+		"title":"Using a Third-Party Image",
+		"uri":"cce_10_0009.html",
 		"doc_type":"usermanual2",
 		"p_code":"75",
 		"code":"77"
 	},
 	{
-		"desc":"This section uses Nginx as an example to describe how to configure node affinity.PrerequisitesA workload that uses the nginx container image has been deployed on a node.P",
+		"desc":"CCE allows you to set resource limits for added containers during workload creation. You can apply for and limit the CPU and memory quotas used by each pod in a workload.",
 		"product_code":"cce",
-		"title":"Node Affinity",
-		"uri":"cce_01_0232.html",
+		"title":"Setting Container Specifications",
+		"uri":"cce_10_0163.html",
 		"doc_type":"usermanual2",
-		"p_code":"77",
+		"p_code":"75",
 		"code":"78"
 	},
 	{
-		"desc":"Workload affinity determines the pods as which the target workload will be deployed in the same topology domain.There are two types of pod affinity rules: Required (hard ",
+		"desc":"CCE provides callback functions for the lifecycle management of containerized applications. For example, if you want a container to perform a certain operation before sto",
 		"product_code":"cce",
-		"title":"Workload Affinity",
-		"uri":"cce_01_0233.html",
+		"title":"Setting Container Lifecycle Parameters",
+		"uri":"cce_10_0105.html",
 		"doc_type":"usermanual2",
-		"p_code":"77",
+		"p_code":"75",
 		"code":"79"
 	},
 	{
-		"desc":"Workload anti-affinity determines the pods from which the target workload will be deployed in a different topology domain.There are two types of pod anti-affinity rules: ",
+		"desc":"Health check regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect application ex",
 		"product_code":"cce",
-		"title":"Workload Anti-Affinity",
-		"uri":"cce_01_0234.html",
+		"title":"Setting Health Check for a Container",
+		"uri":"cce_10_0112.html",
 		"doc_type":"usermanual2",
-		"p_code":"77",
+		"p_code":"75",
 		"code":"80"
 	},
 	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"desc":"An environment variable is a variable whose value can affect the way a running container will behave. You can modify environment variables even after workloads are deploy",
 		"product_code":"cce",
-		"title":"Simple Scheduling Policies",
-		"uri":"cce_01_0230.html",
+		"title":"Setting an Environment Variable",
+		"uri":"cce_10_0113.html",
 		"doc_type":"usermanual2",
 		"p_code":"75",
 		"code":"81"
 	},
 	{
-		"desc":"The created workload will be deployed in the selected AZ.This section uses an Nginx workload as an example to describe how to create a workload using kubectl.Prerequisite",
+		"desc":"When a workload is created, the container image is pulled from the image repository to the node. The image is also pulled when the workload is restarted or upgraded.By de",
 		"product_code":"cce",
-		"title":"Workload-AZ Affinity",
-		"uri":"cce_01_0228.html",
+		"title":"Configuring an Image Pull Policy",
+		"uri":"cce_10_0353.html",
 		"doc_type":"usermanual2",
-		"p_code":"81",
+		"p_code":"75",
 		"code":"82"
 	},
 	{
-		"desc":"The created workload is not deployed on the selected AZ.This section uses Nginx as an example to describe how to create a workload using kubectl.PrerequisitesThe ECS wher",
+		"desc":"When creating a workload, you can configure containers to use the same time zone as the node. You can enable time zone synchronization when creating a workload.The time z",
 		"product_code":"cce",
-		"title":"Workload-AZ Anti-Affinity",
-		"uri":"cce_01_0229.html",
+		"title":"Configuring Time Zone Synchronization",
+		"uri":"cce_10_0354.html",
 		"doc_type":"usermanual2",
-		"p_code":"81",
+		"p_code":"75",
 		"code":"83"
 	},
 	{
-		"desc":"If you select multiple nodes, the system automatically chooses one of them during workload deployment.This section uses an Nginx workload as an example to describe how to",
+		"desc":"In actual applications, upgrade is a common operation. A Deployment, StatefulSet, or DaemonSet can easily support application upgrade.You can set different upgrade polici",
 		"product_code":"cce",
-		"title":"Workload-Node Affinity",
-		"uri":"cce_01_0225.html",
+		"title":"Configuring the Workload Upgrade Policy",
+		"uri":"cce_10_0397.html",
 		"doc_type":"usermanual2",
-		"p_code":"81",
+		"p_code":"75",
 		"code":"84"
 	},
 	{
-		"desc":"If you select multiple nodes, the workload will not be deployed on these nodes.This section uses Nginx as an example to describe how to create a workload using kubectl.Pr",
+		"desc":"A nodeSelector provides a very simple way to constrain pods to nodes with particular labels, as mentioned in Creating a DaemonSet. The affinity and anti-affinity feature ",
 		"product_code":"cce",
-		"title":"Workload-Node Anti-Affinity",
-		"uri":"cce_01_0226.html",
+		"title":"Scheduling Policy (Affinity/Anti-affinity)",
+		"uri":"cce_10_0232.html",
 		"doc_type":"usermanual2",
-		"p_code":"81",
+		"p_code":"75",
 		"code":"85"
 	},
 	{
-		"desc":"The workload to be created will be deployed on the same node as the selected affinity workloads.This section uses Nginx as an example to describe how to create a workload",
+		"desc":"You can use GPUs in CCE containers.A GPU node has been created. For details, see Creating a Node.The gpu-beta add-on has been installed. During the installation, select t",
 		"product_code":"cce",
-		"title":"Workload-Workload Affinity",
-		"uri":"cce_01_0220.html",
+		"title":"GPU Scheduling",
+		"uri":"cce_10_0345.html",
 		"doc_type":"usermanual2",
-		"p_code":"81",
+		"p_code":"67",
 		"code":"86"
 	},
-	{
-		"desc":"The workload to be created and the selected workloads will be deployed on different nodes.This section uses Nginx as an example to describe how to create a workload using",
-		"product_code":"cce",
-		"title":"Workload-Workload Anti-Affinity",
-		"uri":"cce_01_0227.html",
-		"doc_type":"usermanual2",
-		"p_code":"81",
-		"code":"87"
-	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Networking",
-		"uri":"cce_01_0020.html",
+		"title":"CPU Core Binding",
+		"uri":"cce_10_0551.html",
 		"doc_type":"usermanual2",
-		"p_code":"",
+		"p_code":"67",
+		"code":"87"
+	},
+	{
+		"desc":"By default, kubelet uses CFS quotas to enforce pod CPU limits. When the node runs many CPU-bound pods, the workload can move to different CPU cores depending on whether t",
+		"product_code":"cce",
+		"title":"Binding CPU Cores",
+		"uri":"cce_10_0351.html",
+		"doc_type":"usermanual2",
+		"p_code":"87",
 		"code":"88"
 	},
 	{
-		"desc":"You can learn about a cluster network from the following two aspects:What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are ru",
+		"desc":"CCE allows you to add annotations to a YAML file to realize some advanced pod functions. The following table describes the annotations you can add.When you create a workl",
 		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0010.html",
+		"title":"Pod Labels and Annotations",
+		"uri":"cce_10_0386.html",
 		"doc_type":"usermanual2",
-		"p_code":"88",
+		"p_code":"67",
 		"code":"89"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Container Network Models",
-		"uri":"cce_01_0280.html",
+		"title":"Volcano Scheduling",
+		"uri":"cce_10_0423.html",
 		"doc_type":"usermanual2",
-		"p_code":"88",
+		"p_code":"67",
 		"code":"90"
 	},
 	{
-		"desc":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Con",
+		"desc":"Jobs can be classified into online jobs and offline jobs based on whether services are always online.Online job: Such jobs run for a long time, with regular traffic surge",
 		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0281.html",
+		"title":"Hybrid Deployment of Online and Offline Jobs",
+		"uri":"cce_10_0384.html",
 		"doc_type":"usermanual2",
 		"p_code":"90",
 		"code":"91"
 	},
 	{
-		"desc":"The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet pac",
+		"desc":"When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a cust",
 		"product_code":"cce",
-		"title":"Container Tunnel Network",
-		"uri":"cce_01_0282.html",
+		"title":"Security Group Policies",
+		"uri":"cce_10_0288.html",
 		"doc_type":"usermanual2",
-		"p_code":"90",
+		"p_code":"67",
 		"code":"92"
 	},
 	{
-		"desc":"The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"VPC Network",
-		"uri":"cce_01_0283.html",
+		"title":"Networking",
+		"uri":"cce_10_0020.html",
 		"doc_type":"usermanual2",
-		"p_code":"90",
+		"p_code":"",
 		"code":"93"
 	},
 	{
-		"desc":"Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are all",
+		"desc":"You can learn about a cluster network from the following two aspects:What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are ru",
 		"product_code":"cce",
-		"title":"Cloud Native Network 2.0",
-		"uri":"cce_01_0284.html",
+		"title":"Overview",
+		"uri":"cce_10_0010.html",
 		"doc_type":"usermanual2",
-		"p_code":"90",
+		"p_code":"93",
 		"code":"94"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Services",
-		"uri":"cce_01_0247.html",
+		"title":"Container Network Models",
+		"uri":"cce_10_0280.html",
 		"doc_type":"usermanual2",
-		"p_code":"88",
+		"p_code":"93",
 		"code":"95"
 	},
 	{
-		"desc":"After a pod is created, the following problems may occur if you directly access the pod:The pod can be deleted and recreated at any time by a controller such as a Deploym",
+		"desc":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Tun",
 		"product_code":"cce",
 		"title":"Overview",
-		"uri":"cce_01_0249.html",
+		"uri":"cce_10_0281.html",
 		"doc_type":"usermanual2",
 		"p_code":"95",
 		"code":"96"
 	},
 	{
-		"desc":"ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.The cluster-internal domain name format is <Service",
+		"desc":"The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet pac",
 		"product_code":"cce",
-		"title":"Intra-Cluster Access (ClusterIP)",
-		"uri":"cce_01_0011.html",
+		"title":"Container Tunnel Network",
+		"uri":"cce_10_0282.html",
 		"doc_type":"usermanual2",
 		"p_code":"95",
 		"code":"97"
 	},
 	{
-		"desc":"A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By re",
+		"desc":"The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes",
 		"product_code":"cce",
-		"title":"NodePort",
-		"uri":"cce_01_0142.html",
+		"title":"VPC Network",
+		"uri":"cce_10_0283.html",
 		"doc_type":"usermanual2",
 		"p_code":"95",
 		"code":"98"
 	},
 	{
-		"desc":"A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.The LoadBalancer access address is in the format of <I",
+		"desc":"Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are all",
 		"product_code":"cce",
-		"title":"LoadBalancer",
-		"uri":"cce_01_0014.html",
+		"title":"Cloud Native Network 2.0",
+		"uri":"cce_10_0284.html",
 		"doc_type":"usermanual2",
 		"p_code":"95",
 		"code":"99"
 	},
 	{
-		"desc":"An ENI LoadBalancer Service directs traffic from a load balancer at backend pods, reducing the latency and avoiding performance loss for containerized applications.Extern",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"ENI LoadBalancer",
-		"uri":"cce_01_0114.html",
+		"title":"Services",
+		"uri":"cce_10_0247.html",
 		"doc_type":"usermanual2",
-		"p_code":"95",
+		"p_code":"93",
 		"code":"100"
 	},
 	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"desc":"After a pod is created, the following problems may occur if you directly access the pod:The pod can be deleted and recreated at any time by a controller such as a Deploym",
 		"product_code":"cce",
-		"title":"Ingress",
-		"uri":"cce_01_0248.html",
+		"title":"Service Overview",
+		"uri":"cce_10_0249.html",
 		"doc_type":"usermanual2",
-		"p_code":"88",
+		"p_code":"100",
 		"code":"101"
 	},
 	{
-		"desc":"A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a l",
+		"desc":"ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.The cluster-internal domain name format is <Service",
 		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0094.html",
+		"title":"Intra-Cluster Access (ClusterIP)",
+		"uri":"cce_10_0011.html",
 		"doc_type":"usermanual2",
-		"p_code":"101",
+		"p_code":"100",
 		"code":"102"
 	},
 	{
-		"desc":"An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a workload by referring to",
+		"desc":"A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By re",
 		"product_code":"cce",
-		"title":"Using ELB Ingresses on the Console",
-		"uri":"cce_01_0251.html",
+		"title":"NodePort",
+		"uri":"cce_10_0142.html",
 		"doc_type":"usermanual2",
-		"p_code":"101",
+		"p_code":"100",
 		"code":"103"
 	},
 	{
-		"desc":"This section uses an Nginx workload as an example to describe how to create an ELB ingress using kubectl.If no load balancer is available in the same VPC, CCE can automat",
+		"desc":"A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.The LoadBalancer access address is in the format of <I",
 		"product_code":"cce",
-		"title":"Using kubectl to Create an ELB Ingress",
-		"uri":"cce_01_0252.html",
+		"title":"LoadBalancer",
+		"uri":"cce_10_0014.html",
 		"doc_type":"usermanual2",
-		"p_code":"101",
+		"p_code":"100",
 		"code":"104"
 	},
 	{
-		"desc":"As the service logic becomes increasingly complex, many applications require network calls between modules. Traditional external firewalls or application-based firewalls ",
+		"desc":"The preceding types of Services allow internal and external pod access, but not the following scenarios:Accessing all pods at the same timePods in a Service accessing eac",
 		"product_code":"cce",
-		"title":"Network Policies",
-		"uri":"cce_01_0059.html",
+		"title":"Headless Service",
+		"uri":"cce_10_0398.html",
 		"doc_type":"usermanual2",
-		"p_code":"88",
+		"p_code":"100",
 		"code":"105"
 	},
 	{
-		"desc":"When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a cust",
+		"desc":"CCE allows you to add annotations to a YAML file to realize some advanced Service functions. The following table describes the annotations you can add.The annotations of ",
 		"product_code":"cce",
-		"title":"SecurityGroups",
-		"uri":"cce_01_0288.html",
+		"title":"Service Annotations",
+		"uri":"cce_10_0385.html",
 		"doc_type":"usermanual2",
-		"p_code":"88",
+		"p_code":"100",
 		"code":"106"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Storage (CSI)",
-		"uri":"cce_01_0042.html",
+		"title":"Ingresses",
+		"uri":"cce_10_0248.html",
 		"doc_type":"usermanual2",
-		"p_code":"",
+		"p_code":"93",
 		"code":"107"
 	},
 	{
-		"desc":"On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The",
+		"desc":"A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a l",
 		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0307.html",
+		"title":"Ingress Overview",
+		"uri":"cce_10_0094.html",
 		"doc_type":"usermanual2",
 		"p_code":"107",
 		"code":"108"
 	},
 	{
-		"desc":"You can mount a file directory of the host where a container is located to a specified container path (the hostPath mode in Kubernetes) for persistent data storage. Alter",
+		"desc":"An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a workload by referring to",
 		"product_code":"cce",
-		"title":"Using Local Disks as Storage Volumes",
-		"uri":"cce_01_0053.html",
+		"title":"Using ELB Ingresses on the Console",
+		"uri":"cce_10_0251.html",
 		"doc_type":"usermanual2",
 		"p_code":"107",
 		"code":"109"
 	},
 	{
-		"desc":"A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource.On the new CCE console (the cluster needs to be upgraded to v1.19.10 or",
+		"desc":"This section uses an Nginx workload as an example to describe how to create an ELB ingress using kubectl.If no load balancer is available in the same VPC, CCE can automat",
 		"product_code":"cce",
-		"title":"PersistentVolumes (PVs)",
-		"uri":"cce_01_0379.html",
+		"title":"Using kubectl to Create an ELB Ingress",
+		"uri":"cce_10_0252.html",
 		"doc_type":"usermanual2",
 		"p_code":"107",
 		"code":"110"
 	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"DNS",
+		"uri":"cce_10_0359.html",
+		"doc_type":"usermanual2",
+		"p_code":"93",
+		"code":"111"
+	},
+	{
+		"desc":"When you create a cluster, the coredns add-on is installed to resolve domain names in the cluster.You can view the pod of the coredns add-on in the kube-system namespace.",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0360.html",
+		"doc_type":"usermanual2",
+		"p_code":"111",
+		"code":"112"
+	},
+	{
+		"desc":"Every Kubernetes cluster has a built-in DNS add-on (Kube-DNS or CoreDNS) to provide domain name resolution for workloads in the cluster. When handling a high concurrency ",
+		"product_code":"cce",
+		"title":"DNS Configuration",
+		"uri":"cce_10_0365.html",
+		"doc_type":"usermanual2",
+		"p_code":"111",
+		"code":"113"
+	},
+	{
+		"desc":"When using CCE, you may need to resolve custom internal domain names in the following scenarios:In the legacy code, a fixed domain name is configured for calling other in",
+		"product_code":"cce",
+		"title":"Using CoreDNS for Custom Domain Name Resolution",
+		"uri":"cce_10_0361.html",
+		"doc_type":"usermanual2",
+		"p_code":"111",
+		"code":"114"
+	},
+	{
+		"desc":"This section describes how to access an intranet from a container (outside the cluster in a VPC), including intra-VPC access and cross-VPC access.The performance of acces",
+		"product_code":"cce",
+		"title":"Configuring Intra-VPC Access",
+		"uri":"cce_10_0399.html",
+		"doc_type":"usermanual2",
+		"p_code":"93",
+		"code":"115"
+	},
+	{
+		"desc":"Containers can access public networks in either of the following ways:Bind a public IP address to the node where the container is located if the network model is VPC netw",
+		"product_code":"cce",
+		"title":"Accessing Public Networks from a Container",
+		"uri":"cce_10_0400.html",
+		"doc_type":"usermanual2",
+		"p_code":"93",
+		"code":"116"
+	},
+	{
+		"desc":"NetworkPolicy is a Kubernetes object used to restrict pod access. In CCE, by setting network policies, you can define ingress rules specifying the addresses to access pod",
+		"product_code":"cce",
+		"title":"Network Policies",
+		"uri":"cce_10_0059.html",
+		"doc_type":"usermanual2",
+		"p_code":"93",
+		"code":"117"
+	},
+	{
+		"desc":"Kubernetes allows pods to directly use the host/node network.Add hostNetwork: true to the pod definition.The configuration succeeds if the pod IP is the same as the node ",
+		"product_code":"cce",
+		"title":"Host Network",
+		"uri":"cce_10_0402.html",
+		"doc_type":"usermanual2",
+		"p_code":"93",
+		"code":"118"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Storage",
+		"uri":"cce_10_0374.html",
+		"doc_type":"usermanual2",
+		"p_code":"",
+		"code":"119"
+	},
+	{
+		"desc":"On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0307.html",
+		"doc_type":"usermanual2",
+		"p_code":"119",
+		"code":"120"
+	},
+	{
+		"desc":"You can mount a file directory of the host where a container is located to a specified container path (the hostPath mode in Kubernetes) for persistent data storage. Alter",
+		"product_code":"cce",
+		"title":"Using Local Disks as Storage Volumes",
+		"uri":"cce_10_0377.html",
+		"doc_type":"usermanual2",
+		"p_code":"119",
+		"code":"121"
+	},
+	{
+		"desc":"A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource.On the new CCE console (the cluster needs to be upgraded to v1.19.10 or",
+		"product_code":"cce",
+		"title":"PersistentVolumes (PVs)",
+		"uri":"cce_10_0379.html",
+		"doc_type":"usermanual2",
+		"p_code":"119",
+		"code":"122"
+	},
 	{
 		"desc":"A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are",
 		"product_code":"cce",
 		"title":"PersistentVolumeClaims (PVCs)",
-		"uri":"cce_01_0378.html",
+		"uri":"cce_10_0378.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"111"
+		"p_code":"119",
+		"code":"123"
 	},
 	{
 		"desc":"StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as ",
 		"product_code":"cce",
 		"title":"StorageClass",
-		"uri":"cce_01_0380.html",
+		"uri":"cce_10_0380.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"112"
+		"p_code":"119",
+		"code":"124"
 	},
 	{
 		"desc":"CCE works with EVS to support snapshots. A snapshot is a complete copy or image of EVS disk data at a certain point of time, which can be used for data DR.You can create ",
 		"product_code":"cce",
 		"title":"Snapshots and Backups",
-		"uri":"cce_01_0211.html",
+		"uri":"cce_10_0381.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"113"
+		"p_code":"119",
+		"code":"125"
 	},
 	{
 		"desc":"You can solve this issue by using Everest 1.2.8 and later versions to use custom access keys for different IAM users.The everest add-on version must be 1.2.8 or later.The",
 		"product_code":"cce",
 		"title":"Using a Custom AK/SK to Mount an OBS Volume",
-		"uri":"cce_01_0336.html",
+		"uri":"cce_10_0336.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"114"
+		"p_code":"119",
+		"code":"126"
 	},
 	{
 		"desc":"You can mount cloud storage volumes to your containers and use these volumes as local directories.This section describes how to set mount options when mounting SFS and OB",
 		"product_code":"cce",
 		"title":"Setting Mount Options",
-		"uri":"cce_01_0337.html",
+		"uri":"cce_10_0337.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"115"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Deployment Examples",
-		"uri":"cce_01_0393.html",
-		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"116"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"EVS Volumes",
-		"uri":"cce_01_0044.html",
-		"doc_type":"usermanual2",
-		"p_code":"116",
-		"code":"117"
-	},
-	{
-		"desc":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.EVS disks cannot be attached across AZs and cannot be used by multiple workloads, mu",
-		"product_code":"cce",
-		"title":"Using EVS Volumes",
-		"uri":"cce_01_0254.html",
-		"doc_type":"usermanual2",
-		"p_code":"117",
-		"code":"118"
-	},
-	{
-		"desc":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
-		"product_code":"cce",
-		"title":"Creating a Pod Mounted with an EVS Volume",
-		"uri":"cce_01_0257.html",
-		"doc_type":"usermanual2",
-		"p_code":"117",
-		"code":"119"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"SFS Turbo Volumes",
-		"uri":"cce_01_0125.html",
-		"doc_type":"usermanual2",
-		"p_code":"116",
-		"code":"120"
-	},
-	{
-		"desc":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.SFS Turbo volumes are available only in certain regions.Currently, SFS Turbo file sy",
-		"product_code":"cce",
-		"title":"Using SFS Turbo Volumes",
-		"uri":"cce_01_0271.html",
-		"doc_type":"usermanual2",
-		"p_code":"120",
-		"code":"121"
-	},
-	{
-		"desc":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in ",
-		"product_code":"cce",
-		"title":"Creating a Deployment Mounted with an SFS Turbo Volume",
-		"uri":"cce_01_0274.html",
-		"doc_type":"usermanual2",
-		"p_code":"120",
-		"code":"122"
-	},
-	{
-		"desc":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.The follo",
-		"product_code":"cce",
-		"title":"Creating a StatefulSet Mounted with an SFS Turbo Volume",
-		"uri":"cce_01_0273.html",
-		"doc_type":"usermanual2",
-		"p_code":"120",
-		"code":"123"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"OBS Volumes",
-		"uri":"cce_01_0160.html",
-		"doc_type":"usermanual2",
-		"p_code":"116",
-		"code":"124"
-	},
-	{
-		"desc":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.CCE clusters of v1.7.3-r8 and earlier do not support OBS volumes. You need to upgrad",
-		"product_code":"cce",
-		"title":"Using OBS Volumes",
-		"uri":"cce_01_0265.html",
-		"doc_type":"usermanual2",
-		"p_code":"124",
-		"code":"125"
-	},
-	{
-		"desc":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
-		"product_code":"cce",
-		"title":"Creating a Deployment Mounted with an OBS Volume",
-		"uri":"cce_01_0269.html",
-		"doc_type":"usermanual2",
-		"p_code":"124",
-		"code":"126"
-	},
-	{
-		"desc":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.T",
-		"product_code":"cce",
-		"title":"Creating a StatefulSet Mounted with an OBS Volume",
-		"uri":"cce_01_0268.html",
-		"doc_type":"usermanual2",
-		"p_code":"124",
+		"p_code":"119",
 		"code":"127"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"SFS Volumes",
-		"uri":"cce_01_0111.html",
+		"title":"Deployment Examples",
+		"uri":"cce_10_0393.html",
 		"doc_type":"usermanual2",
-		"p_code":"116",
+		"p_code":"119",
 		"code":"128"
 	},
 	{
-		"desc":"You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.SFS volumes are available only in certain regions.Container storage in CCE clusters ",
+		"desc":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
 		"product_code":"cce",
-		"title":"Using SFS Volumes",
-		"uri":"cce_01_0259.html",
+		"title":"Creating a Deployment Mounted with an EVS Volume",
+		"uri":"cce_10_0257.html",
 		"doc_type":"usermanual2",
 		"p_code":"128",
 		"code":"129"
 	},
 	{
-		"desc":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
+		"desc":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
 		"product_code":"cce",
-		"title":"Creating a Deployment Mounted with an SFS Volume",
-		"uri":"cce_01_0263.html",
+		"title":"Creating a Deployment Mounted with an OBS Volume",
+		"uri":"cce_10_0269.html",
 		"doc_type":"usermanual2",
 		"p_code":"128",
 		"code":"130"
 	},
 	{
-		"desc":"CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).You have created a CCE cluster and installed the CSI plug-in (everest) in the cluste",
+		"desc":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.T",
 		"product_code":"cce",
-		"title":"Creating a StatefulSet Mounted with an SFS Volume",
-		"uri":"cce_01_0262.html",
+		"title":"Creating a StatefulSet Mounted with an OBS Volume",
+		"uri":"cce_10_0268.html",
 		"doc_type":"usermanual2",
 		"p_code":"128",
 		"code":"131"
 	},
 	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"desc":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
 		"product_code":"cce",
-		"title":"Storage (FlexVolume)",
-		"uri":"cce_01_0305.html",
+		"title":"Creating a Deployment Mounted with an SFS Volume",
+		"uri":"cce_10_0263.html",
 		"doc_type":"usermanual2",
-		"p_code":"",
+		"p_code":"128",
 		"code":"132"
 	},
 	{
-		"desc":"In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.In CCE, container storage is backed both by Kubernet",
+		"desc":"CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).You have created a CCE cluster and installed the CSI plug-in (everest) in the cluste",
 		"product_code":"cce",
-		"title":"FlexVolume Overview",
-		"uri":"cce_01_0306.html",
+		"title":"Creating a StatefulSet Mounted with an SFS Volume",
+		"uri":"cce_10_0262.html",
 		"doc_type":"usermanual2",
-		"p_code":"132",
+		"p_code":"128",
 		"code":"133"
 	},
-	{
-		"desc":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
-		"product_code":"cce",
-		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
-		"uri":"cce_01_0343.html",
-		"doc_type":"usermanual2",
-		"p_code":"132",
-		"code":"134"
-	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Using EVS Disks as Storage Volumes",
-		"uri":"cce_01_0309.html",
-		"doc_type":"usermanual2",
-		"p_code":"132",
-		"code":"135"
-	},
-	{
-		"desc":"To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is",
-		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0310.html",
-		"doc_type":"usermanual2",
-		"p_code":"135",
-		"code":"136"
-	},
-	{
-		"desc":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.EVS disks cannot be attached across AZs and cannot be used by multiple",
-		"product_code":"cce",
-		"title":"Using EVS Volumes",
-		"uri":"cce_01_0311.html",
-		"doc_type":"usermanual2",
-		"p_code":"135",
-		"code":"137"
-	},
-	{
-		"desc":"CCE supports creating EVS volumes through PersistentVolumeClaims (PVCs).You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluste",
-		"product_code":"cce",
-		"title":"(kubectl) Automatically Creating an EVS Disk",
-		"uri":"cce_01_0312.html",
-		"doc_type":"usermanual2",
-		"p_code":"135",
-		"code":"138"
-	},
-	{
-		"desc":"CCE allows you to create a PersistentVolume (PV) using an existing EVS disk. After the PV is created, you can create a PersistentVolumeClaim (PVC) and bind it to the PV.Y",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a PV from an Existing EVS Disk",
-		"uri":"cce_01_0313.html",
-		"doc_type":"usermanual2",
-		"p_code":"135",
-		"code":"139"
-	},
-	{
-		"desc":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a Pod Mounted with an EVS Volume",
-		"uri":"cce_01_0314.html",
-		"doc_type":"usermanual2",
-		"p_code":"135",
-		"code":"140"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Using SFS Turbo File Systems as Storage Volumes",
-		"uri":"cce_01_0329.html",
-		"doc_type":"usermanual2",
-		"p_code":"132",
-		"code":"141"
-	},
-	{
-		"desc":"CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable fo",
-		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0330.html",
-		"doc_type":"usermanual2",
-		"p_code":"141",
-		"code":"142"
-	},
-	{
-		"desc":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.SFS Turbo volumes are available only in certain regions.Currently, SFS",
-		"product_code":"cce",
-		"title":"Using SFS Turbo Volumes",
-		"uri":"cce_01_0331.html",
-		"doc_type":"usermanual2",
-		"p_code":"141",
-		"code":"143"
-	},
-	{
-		"desc":"CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) ",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a PV from an Existing SFS Turbo File System",
-		"uri":"cce_01_0332.html",
-		"doc_type":"usermanual2",
-		"p_code":"141",
-		"code":"144"
-	},
-	{
-		"desc":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the FlexVolume plug-in (stora",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume",
-		"uri":"cce_01_0333.html",
-		"doc_type":"usermanual2",
-		"p_code":"141",
-		"code":"145"
-	},
-	{
-		"desc":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the clu",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume",
-		"uri":"cce_01_0334.html",
-		"doc_type":"usermanual2",
-		"p_code":"141",
-		"code":"146"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Using OBS Buckets as Storage Volumes",
-		"uri":"cce_01_0322.html",
-		"doc_type":"usermanual2",
-		"p_code":"132",
-		"code":"147"
-	},
-	{
-		"desc":"CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud w",
-		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0323.html",
-		"doc_type":"usermanual2",
-		"p_code":"147",
-		"code":"148"
-	},
-	{
-		"desc":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.CCE clusters of v1.7.3-r8 and earlier do not support OBS volumes. You ",
-		"product_code":"cce",
-		"title":"Using OBS Volumes",
-		"uri":"cce_01_0324.html",
-		"doc_type":"usermanual2",
-		"p_code":"147",
-		"code":"149"
-	},
-	{
-		"desc":"During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, whic",
-		"product_code":"cce",
-		"title":"(kubectl) Automatically Creating an OBS Volume",
-		"uri":"cce_01_0325.html",
-		"doc_type":"usermanual2",
-		"p_code":"147",
-		"code":"150"
-	},
-	{
-		"desc":"CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.You have created a CCE ",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a PV from an Existing OBS Bucket",
-		"uri":"cce_01_0326.html",
-		"doc_type":"usermanual2",
-		"p_code":"147",
-		"code":"151"
-	},
-	{
-		"desc":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the FlexVolume plug-in (storage-dri",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a Deployment Mounted with an OBS Volume",
-		"uri":"cce_01_0327.html",
-		"doc_type":"usermanual2",
-		"p_code":"147",
-		"code":"152"
-	},
-	{
-		"desc":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).You have created a CCE cluster and installed the FlexVolume plu",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume",
-		"uri":"cce_01_0328.html",
-		"doc_type":"usermanual2",
-		"p_code":"147",
-		"code":"153"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Using SFS File Systems as Storage Volumes",
-		"uri":"cce_01_0315.html",
-		"doc_type":"usermanual2",
-		"p_code":"132",
-		"code":"154"
-	},
-	{
-		"desc":"CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWr",
-		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0316.html",
-		"doc_type":"usermanual2",
-		"p_code":"154",
-		"code":"155"
-	},
-	{
-		"desc":"You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluster.SFS volumes are available only in certain regions.Container storage in",
-		"product_code":"cce",
-		"title":"Using SFS Volumes",
-		"uri":"cce_01_0317.html",
-		"doc_type":"usermanual2",
-		"p_code":"154",
-		"code":"156"
-	},
-	{
-		"desc":"CCE supports creating SFS volumes through PersistentVolumeClaims (PVCs).You have created a CCE cluster and installed the FlexVolume plug-in (storage-driver) in the cluste",
-		"product_code":"cce",
-		"title":"(kubectl) Automatically Creating an SFS Volume",
-		"uri":"cce_01_0318.html",
-		"doc_type":"usermanual2",
-		"p_code":"154",
-		"code":"157"
-	},
-	{
-		"desc":"CCE allows you to use an existing file system to create a PersistentVolume (PV). After the creation is successful, create the corresponding PersistentVolumeClaim (PVC) an",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a PV from an Existing SFS File System",
-		"uri":"cce_01_0319.html",
-		"doc_type":"usermanual2",
-		"p_code":"154",
-		"code":"158"
-	},
-	{
-		"desc":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the FlexVolume plug-in (storage-dri",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a Deployment Mounted with an SFS Volume",
-		"uri":"cce_01_0320.html",
-		"doc_type":"usermanual2",
-		"p_code":"154",
-		"code":"159"
-	},
-	{
-		"desc":"CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).You have created a CCE cluster and installed the FlexVolume plu",
-		"product_code":"cce",
-		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume",
-		"uri":"cce_01_0321.html",
-		"doc_type":"usermanual2",
-		"p_code":"154",
-		"code":"160"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Monitoring and Logs",
-		"uri":"cce_01_0110.html",
+		"title":"Monitoring and Alarm",
+		"uri":"cce_10_0110.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"161"
+		"code":"134"
 	},
 	{
 		"desc":"CCE works with AOM to comprehensively monitor clusters. When a node is created, the ICAgent (the DaemonSet named icagent in the kube-system namespace of the cluster) of A",
 		"product_code":"cce",
 		"title":"Monitoring Overview",
-		"uri":"cce_01_0182.html",
+		"uri":"cce_10_0182.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"162"
+		"p_code":"134",
+		"code":"135"
 	},
 	{
-		"desc":"CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.CCE works with AOM to collec",
+		"desc":"CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and th",
 		"product_code":"cce",
-		"title":"Container Logs",
-		"uri":"cce_01_0018.html",
+		"title":"Custom Monitoring",
+		"uri":"cce_10_0201.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"163"
+		"p_code":"134",
+		"code":"136"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Logging",
+		"uri":"cce_10_0553.html",
+		"doc_type":"usermanual2",
+		"p_code":"",
+		"code":"137"
+	},
+	{
+		"desc":"CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.Using ICAgent:By default, th",
+		"product_code":"cce",
+		"title":"Log Management Overview",
+		"uri":"cce_10_0557.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"138"
+	},
+	{
+		"desc":"CCE works with AOM to collect workload logs. When creating a node, CCE installs the ICAgent for you (the DaemonSet named icagent in the kube-system namespace of the clust",
+		"product_code":"cce",
+		"title":"Using ICAgent to Collect Container Logs",
+		"uri":"cce_10_0018.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"139"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Namespaces",
-		"uri":"cce_01_0030.html",
+		"uri":"cce_10_0030.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"164"
+		"code":"140"
 	},
 	{
 		"desc":"A namespace is a collection of resources and objects. Multiple namespaces can be created inside a cluster and isolated from each other. This enables namespaces to share t",
 		"product_code":"cce",
 		"title":"Creating a Namespace",
-		"uri":"cce_01_0278.html",
+		"uri":"cce_10_0278.html",
 		"doc_type":"usermanual2",
-		"p_code":"164",
-		"code":"165"
+		"p_code":"140",
+		"code":"141"
 	},
 	{
 		"desc":"When creating a workload, you can select a namespace to isolate resources or users.When querying workloads, you can select a namespace to view all workloads in the namesp",
 		"product_code":"cce",
 		"title":"Managing Namespaces",
-		"uri":"cce_01_0285.html",
+		"uri":"cce_10_0285.html",
 		"doc_type":"usermanual2",
-		"p_code":"164",
-		"code":"166"
-	},
-	{
-		"desc":"You can configure a namespace-level network policy after enabling network isolation.By default, Network Isolation is disabled for namespaces. For example, if network isol",
-		"product_code":"cce",
-		"title":"Configuring a Namespace-level Network Policy",
-		"uri":"cce_01_0286.html",
-		"doc_type":"usermanual2",
-		"p_code":"164",
-		"code":"167"
+		"p_code":"140",
+		"code":"142"
 	},
 	{
 		"desc":"Namespace-level resource quotas limit the amount of resources available to teams or users when these teams or users use the same cluster. The quotas include the total num",
 		"product_code":"cce",
 		"title":"Setting a Resource Quota",
-		"uri":"cce_01_0287.html",
+		"uri":"cce_10_0287.html",
 		"doc_type":"usermanual2",
-		"p_code":"164",
-		"code":"168"
+		"p_code":"140",
+		"code":"143"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Configuration Center",
-		"uri":"cce_01_0045.html",
+		"uri":"cce_10_0045.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"169"
+		"code":"144"
 	},
 	{
 		"desc":"A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. After creating ConfigMaps, you can use them a",
 		"product_code":"cce",
 		"title":"Creating a ConfigMap",
-		"uri":"cce_01_0152.html",
+		"uri":"cce_10_0152.html",
 		"doc_type":"usermanual2",
-		"p_code":"169",
-		"code":"170"
+		"p_code":"144",
+		"code":"145"
 	},
 	{
 		"desc":"After a ConfigMap is created, it can be used in three workload scenarios: environment variables, command line parameters, and data volumes.",
 		"product_code":"cce",
 		"title":"Using a ConfigMap",
-		"uri":"cce_01_0015.html",
+		"uri":"cce_10_0015.html",
 		"doc_type":"usermanual2",
-		"p_code":"169",
-		"code":"171"
+		"p_code":"144",
+		"code":"146"
 	},
 	{
 		"desc":"A secret is a type of resource that holds sensitive data, such as authentication and key information. Its content is user-defined. After creating secrets, you can use the",
 		"product_code":"cce",
 		"title":"Creating a Secret",
-		"uri":"cce_01_0153.html",
+		"uri":"cce_10_0153.html",
 		"doc_type":"usermanual2",
-		"p_code":"169",
-		"code":"172"
+		"p_code":"144",
+		"code":"147"
 	},
 	{
 		"desc":"After secrets are created, they can be mounted as data volumes or be exposed as environment variables to be used by a container in a pod.",
 		"product_code":"cce",
 		"title":"Using a Secret",
-		"uri":"cce_01_0016.html",
+		"uri":"cce_10_0016.html",
 		"doc_type":"usermanual2",
-		"p_code":"169",
-		"code":"173"
+		"p_code":"144",
+		"code":"148"
 	},
 	{
 		"desc":"By default, CCE creates the following secrets in each namespace:default-secretpaas.elbdefault-token-xxxxx (xxxxx is a random number.)The functions of these secrets are de",
 		"product_code":"cce",
 		"title":"Cluster Secrets",
-		"uri":"cce_01_0388.html",
+		"uri":"cce_10_0388.html",
 		"doc_type":"usermanual2",
-		"p_code":"169",
-		"code":"174"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Charts (Helm)",
-		"uri":"cce_01_0019.html",
-		"doc_type":"usermanual2",
-		"p_code":"",
-		"code":"175"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"My Charts",
-		"uri":"cce_01_0143.html",
-		"doc_type":"usermanual2",
-		"p_code":"175",
-		"code":"176"
-	},
-	{
-		"desc":"CCE uses Helm, a Kubernetes package manager, to simplify deployment and management of packages (also called charts). A chart is a collection of files that describe a rela",
-		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0191.html",
-		"doc_type":"usermanual2",
-		"p_code":"176",
-		"code":"177"
-	},
-	{
-		"desc":"You can prepare a chart using one of the following methods:Customizing a ChartUsing a Kubernetes Official ChartFor details about how to create a chart, see https://helm.s",
-		"product_code":"cce",
-		"title":"Preparing a Chart",
-		"uri":"cce_01_0144.html",
-		"doc_type":"usermanual2",
-		"p_code":"176",
-		"code":"178"
-	},
-	{
-		"desc":"Upload a chart to Charts > Uploaded Charts for subsequent workload creation.When you upload a chart, the naming rule of the OBS bucket is changed from cce-charts-{region}",
-		"product_code":"cce",
-		"title":"Uploading a Chart",
-		"uri":"cce_01_0145.html",
-		"doc_type":"usermanual2",
-		"p_code":"176",
-		"code":"179"
-	},
-	{
-		"desc":"In the workload list, if the status is Rollback successful, the workload is rolled back successfully.",
-		"product_code":"cce",
-		"title":"Creating a Workload from a Chart",
-		"uri":"cce_01_0146.html",
-		"doc_type":"usermanual2",
-		"p_code":"176",
-		"code":"180"
-	},
-	{
-		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
-		"product_code":"cce",
-		"title":"Add-ons",
-		"uri":"cce_01_0064.html",
-		"doc_type":"usermanual2",
-		"p_code":"",
-		"code":"181"
-	},
-	{
-		"desc":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.",
-		"product_code":"cce",
-		"title":"Overview",
-		"uri":"cce_01_0277.html",
-		"doc_type":"usermanual2",
-		"p_code":"181",
-		"code":"182"
-	},
-	{
-		"desc":"The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.coredns i",
-		"product_code":"cce",
-		"title":"coredns (System Resource Add-on, Mandatory)",
-		"uri":"cce_01_0129.html",
-		"doc_type":"usermanual2",
-		"p_code":"181",
-		"code":"183"
-	},
-	{
-		"desc":"storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use IaaS storage resources. By installing and upgrading storage-driver, you ca",
-		"product_code":"cce",
-		"title":"storage-driver (System Resource Add-on, Mandatory)",
-		"uri":"cce_01_0127.html",
-		"doc_type":"usermanual2",
-		"p_code":"181",
-		"code":"184"
-	},
-	{
-		"desc":"Everest is a cloud-native container storage system. Based on Container Storage Interface (CSI), clusters of Kubernetes v1.15 or later can interconnect with cloud storage ",
-		"product_code":"cce",
-		"title":"everest (System Resource Add-on, Mandatory)",
-		"uri":"cce_01_0066.html",
-		"doc_type":"usermanual2",
-		"p_code":"181",
-		"code":"185"
-	},
-	{
-		"desc":"Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.When the CPU or memory usage of a microservice is too h",
-		"product_code":"cce",
-		"title":"autoscaler",
-		"uri":"cce_01_0154.html",
-		"doc_type":"usermanual2",
-		"p_code":"181",
-		"code":"186"
-	},
-	{
-		"desc":"From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly a",
-		"product_code":"cce",
-		"title":"metrics-server",
-		"uri":"cce_01_0205.html",
-		"doc_type":"usermanual2",
-		"p_code":"181",
-		"code":"187"
-	},
-	{
-		"desc":"gpu-beta is a device management add-on that supports GPUs in containers. It supports only NVIDIA Tesla drivers.This add-on is available only in certain regions.This add-o",
-		"product_code":"cce",
-		"title":"gpu-beta",
-		"uri":"cce_01_0141.html",
-		"doc_type":"usermanual2",
-		"p_code":"181",
-		"code":"188"
+		"p_code":"144",
+		"code":"149"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Auto Scaling",
-		"uri":"cce_01_0207.html",
+		"uri":"cce_10_0207.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"189"
+		"code":"150"
 	},
 	{
 		"desc":"Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.More and more applicati",
 		"product_code":"cce",
 		"title":"Overview",
-		"uri":"cce_01_0279.html",
+		"uri":"cce_10_0279.html",
 		"doc_type":"usermanual2",
-		"p_code":"189",
-		"code":"190"
+		"p_code":"150",
+		"code":"151"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Scaling a Workload",
-		"uri":"cce_01_0293.html",
+		"uri":"cce_10_0293.html",
 		"doc_type":"usermanual2",
-		"p_code":"189",
-		"code":"191"
+		"p_code":"150",
+		"code":"152"
 	},
 	{
-		"desc":"Scaling policy priority: If you do not manually adjust the number of pods, auto scaling policies will take effect for resource scheduling. If manual scaling is triggered,",
+		"desc":"HPA is a controller that controls horizontal pod scaling. HPA periodically checks the pod metrics, calculates the number of replicas required to meet the target values co",
 		"product_code":"cce",
 		"title":"Workload Scaling Mechanisms",
-		"uri":"cce_01_0290.html",
+		"uri":"cce_10_0290.html",
 		"doc_type":"usermanual2",
-		"p_code":"191",
-		"code":"192"
+		"p_code":"152",
+		"code":"153"
 	},
 	{
 		"desc":"Horizontal Pod Autoscaling (HPA) in Kubernetes implements horizontal scaling of pods. In a CCE HPA policy, you can configure different cooldown time windows and scaling t",
 		"product_code":"cce",
 		"title":"Creating an HPA Policy for Workload Auto Scaling",
-		"uri":"cce_01_0208.html",
+		"uri":"cce_10_0208.html",
 		"doc_type":"usermanual2",
-		"p_code":"191",
-		"code":"193"
+		"p_code":"152",
+		"code":"154"
 	},
 	{
 		"desc":"After an HPA policy is created, you can update, clone, edit, and delete the policy, as well as edit the YAML file.You can view the rules, status, and events of an HPA pol",
 		"product_code":"cce",
 		"title":"Managing Workload Scaling Policies",
-		"uri":"cce_01_0083.html",
+		"uri":"cce_10_0083.html",
 		"doc_type":"usermanual2",
-		"p_code":"191",
-		"code":"194"
-	},
-	{
-		"desc":"CCE clusters of v1.15 or earlier support workload scaling based on AOM monitoring data. This function is no longer supported in CCE clusters of v1.17 or later.If you have",
-		"product_code":"cce",
-		"title":"Switching from AOM to HPA for Auto Scaling",
-		"uri":"cce_01_0395.html",
-		"doc_type":"usermanual2",
-		"p_code":"191",
-		"code":"195"
+		"p_code":"152",
+		"code":"155"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Scaling a Cluster/Node",
-		"uri":"cce_01_0291.html",
+		"title":"Scaling a Node",
+		"uri":"cce_10_0291.html",
 		"doc_type":"usermanual2",
-		"p_code":"189",
-		"code":"196"
+		"p_code":"150",
+		"code":"156"
 	},
 	{
 		"desc":"Kubernetes HPA is designed for pods. However, if the cluster resources are insufficient, you can only add nodes. Scaling of cluster nodes could be laborious. Now with clo",
 		"product_code":"cce",
 		"title":"Node Scaling Mechanisms",
-		"uri":"cce_01_0296.html",
+		"uri":"cce_10_0296.html",
 		"doc_type":"usermanual2",
-		"p_code":"196",
-		"code":"197"
+		"p_code":"156",
+		"code":"157"
 	},
 	{
 		"desc":"CCE provides auto scaling through the autoscaler add-on. Nodes with different specifications can be automatically added across AZs on demand.If a node scaling policy and ",
 		"product_code":"cce",
 		"title":"Creating a Node Scaling Policy",
-		"uri":"cce_01_0209.html",
+		"uri":"cce_10_0209.html",
 		"doc_type":"usermanual2",
-		"p_code":"196",
-		"code":"198"
+		"p_code":"156",
+		"code":"158"
 	},
 	{
 		"desc":"After a node scaling policy is created, you can delete, edit, disable, enable, or clone the policy.You can view the associated node pool, rules, and scaling history of a ",
 		"product_code":"cce",
 		"title":"Managing Node Scaling Policies",
-		"uri":"cce_01_0063.html",
+		"uri":"cce_10_0063.html",
 		"doc_type":"usermanual2",
-		"p_code":"196",
-		"code":"199"
+		"p_code":"156",
+		"code":"159"
+	},
+	{
+		"desc":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
+		"product_code":"cce",
+		"title":"Using HPA and CA for Auto Scaling of Workloads and Nodes",
+		"uri":"cce_10_0300.html",
+		"doc_type":"usermanual2",
+		"p_code":"150",
+		"code":"160"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Add-ons",
+		"uri":"cce_10_0064.html",
+		"doc_type":"usermanual2",
+		"p_code":"",
+		"code":"161"
+	},
+	{
+		"desc":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0277.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"162"
+	},
+	{
+		"desc":"The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.coredns i",
+		"product_code":"cce",
+		"title":"coredns (System Resource Add-On, Mandatory)",
+		"uri":"cce_10_0129.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"163"
+	},
+	{
+		"desc":"storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use EVS, SFS, OBS, and SFS Turbo storage resources. By installing and upgradin",
+		"product_code":"cce",
+		"title":"storage-driver (System Resource Add-On, Discarded)",
+		"uri":"cce_10_0127.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"164"
+	},
+	{
+		"desc":"Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage",
+		"product_code":"cce",
+		"title":"everest (System Resource Add-On, Mandatory)",
+		"uri":"cce_10_0066.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"165"
+	},
+	{
+		"desc":"node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon runnin",
+		"product_code":"cce",
+		"title":"npd",
+		"uri":"cce_10_0132.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"166"
+	},
+	{
+		"desc":"Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.When the CPU or memory usage of a microservice is too h",
+		"product_code":"cce",
+		"title":"autoscaler",
+		"uri":"cce_10_0154.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"167"
+	},
+	{
+		"desc":"From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly a",
+		"product_code":"cce",
+		"title":"metrics-server",
+		"uri":"cce_10_0205.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"168"
+	},
+	{
+		"desc":"gpu-beta is a device management add-on that supports GPUs in containers. If GPU nodes are used in the cluster, the gpu-beta add-on must be installed.The driver to be down",
+		"product_code":"cce",
+		"title":"gpu-beta",
+		"uri":"cce_10_0141.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"169"
+	},
+	{
+		"desc":"Volcano is a batch processing platform based on Kubernetes. It provides a series of features required by machine learning, deep learning, bioinformatics, genomics, and ot",
+		"product_code":"cce",
+		"title":"volcano",
+		"uri":"cce_10_0193.html",
+		"doc_type":"usermanual2",
+		"p_code":"161",
+		"code":"170"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Charts",
+		"uri":"cce_10_0019.html",
+		"doc_type":"usermanual2",
+		"p_code":"",
+		"code":"171"
+	},
+	{
+		"desc":"CCE provides a console for managing Helm charts, helping you easily deploy applications using the charts and manage applications on the console.Helm is a package manager ",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0191.html",
+		"doc_type":"usermanual2",
+		"p_code":"171",
+		"code":"172"
+	},
+	{
+		"desc":"On the CCE console, you can upload a Helm chart package, deploy it, and manage the deployed pods.The number of charts that can be uploaded by a single user is limited. Th",
+		"product_code":"cce",
+		"title":"Deploying an Application from a Chart",
+		"uri":"cce_10_0146.html",
+		"doc_type":"usermanual2",
+		"p_code":"171",
+		"code":"173"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Permissions Management",
-		"uri":"cce_01_0164.html",
+		"uri":"cce_10_0164.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"200"
+		"code":"174"
 	},
 	{
 		"desc":"CCE permissions management allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Ma",
 		"product_code":"cce",
 		"title":"Permissions Overview",
-		"uri":"cce_01_0187.html",
+		"uri":"cce_10_0187.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"201"
+		"p_code":"174",
+		"code":"175"
 	},
 	{
-		"desc":"CCE cluster permissions are assigned based on IAM system policies and custom policies. You can use user groups to assign permissions to IAM users.Cluster permissions are ",
+		"desc":"CCE cluster-level permissions are assigned based on IAM system policies and custom policies. You can use user groups to assign permissions to IAM users.Cluster permission",
 		"product_code":"cce",
 		"title":"Cluster Permissions (IAM-based)",
-		"uri":"cce_01_0188.html",
+		"uri":"cce_10_0188.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"202"
+		"p_code":"174",
+		"code":"176"
 	},
 	{
 		"desc":"You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kub",
 		"product_code":"cce",
 		"title":"Namespace Permissions (Kubernetes RBAC-based)",
-		"uri":"cce_01_0189.html",
+		"uri":"cce_10_0189.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"203"
+		"p_code":"174",
+		"code":"177"
+	},
+	{
+		"desc":"The conventional distributed task scheduling mode is being replaced by Kubernetes. CCE allows you to easily deploy, manage, and scale containerized applications in the cl",
+		"product_code":"cce",
+		"title":"Example: Designing and Configuring Permissions for Users in a Department",
+		"uri":"cce_10_0245.html",
+		"doc_type":"usermanual2",
+		"p_code":"174",
+		"code":"178"
+	},
+	{
+		"desc":"Some CCE permissions policies depend on the policies of other cloud services. To view or use other cloud resources on the CCE console, you need to enable the system polic",
+		"product_code":"cce",
+		"title":"Permission Dependency of the CCE Console",
+		"uri":"cce_10_0190.html",
+		"doc_type":"usermanual2",
+		"p_code":"174",
+		"code":"179"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Pod Security",
+		"uri":"cce_10_0465.html",
+		"doc_type":"usermanual2",
+		"p_code":"174",
+		"code":"180"
 	},
 	{
 		"desc":"A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The PodSecurityPolicy object in Kubernetes defi",
 		"product_code":"cce",
-		"title":"Pod Security Policies",
-		"uri":"cce_01_0275.html",
+		"title":"Configuring a Pod Security Policy",
+		"uri":"cce_10_0275.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"204"
+		"p_code":"180",
+		"code":"181"
+	},
+	{
+		"desc":"Before using Pod Security Admission, you need to understand Kubernetes Pod Security Standards. These standards define different isolation levels for pods. They let you de",
+		"product_code":"cce",
+		"title":"Configuring Pod Security Admission",
+		"uri":"cce_10_0466.html",
+		"doc_type":"usermanual2",
+		"p_code":"180",
+		"code":"182"
+	},
+	{
+		"desc":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
+		"product_code":"cce",
+		"title":"Service Account Token Security Improvement",
+		"uri":"cce_10_0477_0.html",
+		"doc_type":"usermanual2",
+		"p_code":"174",
+		"code":"183"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Cloud Trace Service (CTS)",
-		"uri":"cce_01_0024.html",
+		"uri":"cce_10_0024.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"205"
+		"code":"184"
 	},
 	{
 		"desc":"Cloud Trace Service (CTS) records operations on cloud service resources, allowing users to query, audit, and backtrack the resource operation requests initiated from the ",
 		"product_code":"cce",
 		"title":"CCE Operations Supported by CTS",
-		"uri":"cce_01_0025.html",
+		"uri":"cce_10_0025.html",
 		"doc_type":"usermanual2",
-		"p_code":"205",
-		"code":"206"
+		"p_code":"184",
+		"code":"185"
 	},
 	{
 		"desc":"After you enable CTS, the system starts recording operations on CCE resources. Operation records of the last 7 days can be viewed on the CTS management console.Trace Sour",
 		"product_code":"cce",
 		"title":"Querying CTS Logs",
-		"uri":"cce_01_0026.html",
+		"uri":"cce_10_0026.html",
 		"doc_type":"usermanual2",
-		"p_code":"205",
+		"p_code":"184",
+		"code":"186"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Storage (FlexVolume)",
+		"uri":"cce_10_0305.html",
+		"doc_type":"usermanual2",
+		"p_code":"",
+		"code":"187"
+	},
+	{
+		"desc":"In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.In CCE, container storage is backed both by Kubernet",
+		"product_code":"cce",
+		"title":"FlexVolume Overview",
+		"uri":"cce_10_0306.html",
+		"doc_type":"usermanual2",
+		"p_code":"187",
+		"code":"188"
+	},
+	{
+		"desc":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
+		"product_code":"cce",
+		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
+		"uri":"cce_10_0343.html",
+		"doc_type":"usermanual2",
+		"p_code":"187",
+		"code":"189"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Using EVS Disks as Storage Volumes",
+		"uri":"cce_10_0309.html",
+		"doc_type":"usermanual2",
+		"p_code":"187",
+		"code":"190"
+	},
+	{
+		"desc":"To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0310.html",
+		"doc_type":"usermanual2",
+		"p_code":"190",
+		"code":"191"
+	},
+	{
+		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-evs-auto-example.yamlvi pvc-evs-auto-example.yamlExample YAML file for clu",
+		"product_code":"cce",
+		"title":"(kubectl) Automatically Creating an EVS Disk",
+		"uri":"cce_10_0312.html",
+		"doc_type":"usermanual2",
+		"p_code":"190",
+		"code":"192"
+	},
+	{
+		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-evs-example.yaml pvc-evs-example.yamlClusters from v1.11.7 to v1.13Example ",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a PV from an Existing EVS Disk",
+		"uri":"cce_10_0313.html",
+		"doc_type":"usermanual2",
+		"p_code":"190",
+		"code":"193"
+	},
+	{
+		"desc":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a Pod Mounted with an EVS Volume",
+		"uri":"cce_10_0314.html",
+		"doc_type":"usermanual2",
+		"p_code":"190",
+		"code":"194"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Using SFS Turbo File Systems as Storage Volumes",
+		"uri":"cce_10_0329.html",
+		"doc_type":"usermanual2",
+		"p_code":"187",
+		"code":"195"
+	},
+	{
+		"desc":"CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable fo",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0330.html",
+		"doc_type":"usermanual2",
+		"p_code":"195",
+		"code":"196"
+	},
+	{
+		"desc":"CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) ",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a PV from an Existing SFS Turbo File System",
+		"uri":"cce_10_0332.html",
+		"doc_type":"usermanual2",
+		"p_code":"195",
+		"code":"197"
+	},
+	{
+		"desc":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume",
+		"uri":"cce_10_0333.html",
+		"doc_type":"usermanual2",
+		"p_code":"195",
+		"code":"198"
+	},
+	{
+		"desc":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch efs",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume",
+		"uri":"cce_10_0334.html",
+		"doc_type":"usermanual2",
+		"p_code":"195",
+		"code":"199"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Using OBS Buckets as Storage Volumes",
+		"uri":"cce_10_0322.html",
+		"doc_type":"usermanual2",
+		"p_code":"187",
+		"code":"200"
+	},
+	{
+		"desc":"CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud w",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0323.html",
+		"doc_type":"usermanual2",
+		"p_code":"200",
+		"code":"201"
+	},
+	{
+		"desc":"During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, whic",
+		"product_code":"cce",
+		"title":"(kubectl) Automatically Creating an OBS Volume",
+		"uri":"cce_10_0325.html",
+		"doc_type":"usermanual2",
+		"p_code":"200",
+		"code":"202"
+	},
+	{
+		"desc":"CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.The following configura",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a PV from an Existing OBS Bucket",
+		"uri":"cce_10_0326.html",
+		"doc_type":"usermanual2",
+		"p_code":"200",
+		"code":"203"
+	},
+	{
+		"desc":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a Deployment Mounted with an OBS Volume",
+		"uri":"cce_10_0327.html",
+		"doc_type":"usermanual2",
+		"p_code":"200",
+		"code":"204"
+	},
+	{
+		"desc":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume",
+		"uri":"cce_10_0328.html",
+		"doc_type":"usermanual2",
+		"p_code":"200",
+		"code":"205"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Using SFS File Systems as Storage Volumes",
+		"uri":"cce_10_0315.html",
+		"doc_type":"usermanual2",
+		"p_code":"187",
+		"code":"206"
+	},
+	{
+		"desc":"CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWr",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_10_0316.html",
+		"doc_type":"usermanual2",
+		"p_code":"206",
 		"code":"207"
 	},
+	{
+		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-sfs-auto-example.yamlvi pvc-sfs-auto-example.yamlExample YAML file:apiVers",
+		"product_code":"cce",
+		"title":"(kubectl) Automatically Creating an SFS Volume",
+		"uri":"cce_10_0318.html",
+		"doc_type":"usermanual2",
+		"p_code":"206",
+		"code":"208"
+	},
+	{
+		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-sfs-example.yaml pvc-sfs-example.yamlClusters from v1.11 to v1.13Example YA",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a PV from an Existing SFS File System",
+		"uri":"cce_10_0319.html",
+		"doc_type":"usermanual2",
+		"p_code":"206",
+		"code":"209"
+	},
+	{
+		"desc":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a Deployment Mounted with an SFS Volume",
+		"uri":"cce_10_0320.html",
+		"doc_type":"usermanual2",
+		"p_code":"206",
+		"code":"210"
+	},
+	{
+		"desc":"CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
+		"product_code":"cce",
+		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume",
+		"uri":"cce_10_0321.html",
+		"doc_type":"usermanual2",
+		"p_code":"206",
+		"code":"211"
+	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
@@ -1869,16 +1905,7 @@
 		"uri":"cce_faq_0083.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"208"
-	},
-	{
-		"desc":"Cloud Container Engine (CCE) provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily dep",
-		"product_code":"cce",
-		"title":"Checklist for Migrating Containerized Applications to the Cloud",
-		"uri":"cce_faq_00006.html",
-		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"209"
+		"code":"212"
 	},
 	{
 		"desc":"When a node is added, EIP is set to Automatically assign. The node cannot be created, and a message indicating that EIPs are insufficient is displayed.Two methods are ava",
@@ -1886,8 +1913,8 @@
 		"title":"How Do I Troubleshoot Insufficient EIPs When a Node Is Added?",
 		"uri":"cce_01_0203.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"210"
+		"p_code":"212",
+		"code":"213"
 	},
 	{
 		"desc":"Before using command line injection, write a script that can format data disks and save it to your OBS bucket. Then, inject a command line that will automatically execute",
@@ -1895,8 +1922,8 @@
 		"title":"How Do I Format a Data Disk Using Command Line Injection?",
 		"uri":"cce_01_0204.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"211"
+		"p_code":"212",
+		"code":"214"
 	},
 	{
 		"desc":"After a cluster of v1.13.10 is created, you can use heapster only after rbac is enabled.kubectl delete clusterrole system:heapsterCopy the following file to a server on w",
@@ -1904,8 +1931,8 @@
 		"title":"How Do I Use heapster in Clusters of v1.13.10?",
 		"uri":"cce_01_0999.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"212"
+		"p_code":"212",
+		"code":"215"
 	},
 	{
 		"desc":"Currently, private CCE clusters use Device Mapper as the Docker storage driver.Device Mapper is developed based on the kernel framework and supports many advanced volume ",
@@ -1913,8 +1940,8 @@
 		"title":"How Do I Change the Mode of the Docker Device Mapper?",
 		"uri":"cce_faq_00096.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"213"
+		"p_code":"212",
+		"code":"216"
 	},
 	{
 		"desc":"If the cluster status is available but some nodes in the cluster are unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Node Is ",
@@ -1922,8 +1949,8 @@
 		"title":"What Can I Do If My Cluster Status Is Available but the Node Status Is Unavailable?",
 		"uri":"cce_faq_00120.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"214"
+		"p_code":"212",
+		"code":"217"
 	},
 	{
 		"desc":"If the cluster is Unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Security Group Is ModifiedCheck Item 2: Whether the DHCP Fu",
@@ -1931,8 +1958,8 @@
 		"title":"How Do I Rectify the Fault When the Cluster Status Is Unavailable?",
 		"uri":"cce_faq_00039.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"215"
+		"p_code":"212",
+		"code":"218"
 	},
 	{
 		"desc":"This section uses the Nginx workload as an example to describe how to set the workload access type to LoadBalancer (ELB).An ELB has been created.You have connected an Ela",
@@ -1940,8 +1967,8 @@
 		"title":"How Do I Use kubectl to Set the Workload Access Type to LoadBalancer (ELB)?",
 		"uri":"cce_faq_00099.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"216"
+		"p_code":"212",
+		"code":"219"
 	},
 	{
 		"desc":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).Before using this feature, write a script that can format data disks and save it to ",
@@ -1949,8 +1976,8 @@
 		"title":"How Do I Add a Second Data Disk to a Node in a CCE Cluster?",
 		"uri":"cce_faq_00190.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"217"
+		"p_code":"212",
+		"code":"220"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1958,8 +1985,8 @@
 		"title":"Workload Abnormalities",
 		"uri":"cce_faq_00029.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"218"
+		"p_code":"212",
+		"code":"221"
 	},
 	{
 		"desc":"If a workload is running improperly, you can view events to determine the cause.On the CCE console, choose Workloads > Deployments or StatefulSets in the navigation pane ",
@@ -1967,8 +1994,8 @@
 		"title":"Fault Locating and Troubleshooting for Abnormal Workloads",
 		"uri":"cce_faq_00134.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"219"
+		"p_code":"221",
+		"code":"222"
 	},
 	{
 		"desc":"Viewing K8s Event InformationCheck Item 1: Checking Whether a Node Is Available in the ClusterCheck Item 2: Checking Whether Node Resources (CPU and Memory) Are Sufficien",
@@ -1976,8 +2003,8 @@
 		"title":"Failed to Schedule an Instance",
 		"uri":"cce_faq_00098.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"220"
+		"p_code":"221",
+		"code":"223"
 	},
 	{
 		"desc":"If the workload details page displays an event indicating that image pulling fails, perform the following operations to locate the fault:Check Item 1: Checking Whether im",
@@ -1985,8 +2012,8 @@
 		"title":"Failed to Pull an Image",
 		"uri":"cce_faq_00015.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"221"
+		"p_code":"221",
+		"code":"224"
 	},
 	{
 		"desc":"On the details page of a workload, if an event is displayed indicating that the container fails to be restarted, perform the following operations to locate the fault:Rect",
@@ -1994,8 +2021,8 @@
 		"title":"Failed to Restart a Container",
 		"uri":"cce_faq_00018.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"222"
+		"p_code":"221",
+		"code":"225"
 	},
 	{
 		"desc":"Pod actions are classified into the following two types:kube-controller-manager periodically checks the status of all nodes. If a node is in the NotReady state for a peri",
@@ -2003,8 +2030,8 @@
 		"title":"What Should I Do If An Evicted Pod Exists?",
 		"uri":"cce_faq_00209.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"223"
+		"p_code":"221",
+		"code":"226"
 	},
 	{
 		"desc":"When a node is faulty, pods on the node are evicted to ensure workload availability. If the pods are not evicted when the node is faulty, perform the following steps:Use ",
@@ -2012,8 +2039,8 @@
 		"title":"Instance Eviction Exception",
 		"uri":"cce_faq_00140.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"224"
+		"p_code":"221",
+		"code":"227"
 	},
 	{
 		"desc":"When a node is in the Unavailable state, CCE migrates container pods on the node and sets the pods running on the node to the Terminating state.After the node is restored",
@@ -2021,8 +2048,8 @@
 		"title":"What Should I Do If Pods in the Terminating State Cannot Be Deleted?",
 		"uri":"cce_faq_00210.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"225"
+		"p_code":"221",
+		"code":"228"
 	},
 	{
 		"desc":"The metadata.enable field in the YAML file of the workload is false. As a result, the pod of the workload is deleted and the workload is in the stopped status.The workloa",
@@ -2030,8 +2057,8 @@
 		"title":"What Should I Do If a Workload Is Stopped Caused by Pod Deletion?",
 		"uri":"cce_faq_00012.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"226"
+		"p_code":"221",
+		"code":"229"
 	},
 	{
 		"desc":"The pod remains in the creating state for a long time, and the sandbox-related errors are reported.Select a troubleshooting method for your cluster:Clusters of V1.13 or l",
@@ -2039,8 +2066,8 @@
 		"title":"What Should I Do If Sandbox-Related Errors Are Reported When the Pod Remains in the Creating State?",
 		"uri":"cce_faq_00005.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"227"
+		"p_code":"221",
+		"code":"230"
 	},
 	{
 		"desc":"Workload pods in the cluster fail and are being redeployed constantly.After the following command is run, the command output shows that many pods are in the evicted state",
@@ -2048,8 +2075,8 @@
 		"title":"What Should I Do If a Pod Is in the Evicted State?",
 		"uri":"cce_faq_00199.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"228"
+		"p_code":"221",
+		"code":"231"
 	},
 	{
 		"desc":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
@@ -2057,8 +2084,8 @@
 		"title":"What Should I Do If the OOM Killer Is Triggered When a Container Uses Memory Resources More Than Limited?",
 		"uri":"cce_faq_00002.html",
 		"doc_type":"usermanual2",
-		"p_code":"218",
-		"code":"229"
+		"p_code":"221",
+		"code":"232"
 	},
 	{
 		"desc":"A workload can be accessed from public networks through a load balancer. LoadBalancer provides higher reliability than EIP-based NodePort because an EIP is no longer boun",
@@ -2066,26 +2093,8 @@
 		"title":"What Should I Do If a Service Released in a Workload Cannot Be Accessed from Public Networks?",
 		"uri":"cce_faq_00202.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"230"
-	},
-	{
-		"desc":"CCE uses high-performance container networking add-ons, which support the tunnel network and VPC network models.After a cluster is created, the network model cannot be ch",
-		"product_code":"cce",
-		"title":"Selecting a Network Model When Creating a Cluster on CCE",
-		"uri":"cce_bestpractice_00162.html",
-		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"231"
-	},
-	{
-		"desc":"Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.This secti",
-		"product_code":"cce",
-		"title":"Planning CIDR Blocks for a CCE Cluster",
-		"uri":"cce_bestpractice_00004.html",
-		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"232"
+		"p_code":"212",
+		"code":"233"
 	},
 	{
 		"desc":"A VPC is similar to a private local area network (LAN) managed by a home gateway whose IP address is 192.168.0.0/16. A VPC is a private network built on the cloud and pro",
@@ -2093,16 +2102,7 @@
 		"title":"What Is the Relationship Between Clusters, VPCs, and Subnets?",
 		"uri":"cce_faq_00266.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
-		"code":"233"
-	},
-	{
-		"desc":"For clusters of v1.15.11-r1 and later, the CSI everest add-on has taken over all functions of the fuxi FlexVolume driver (the storage-driver add-on) for container storage",
-		"product_code":"cce",
-		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
-		"uri":"cce_bestpractice_0107.html",
-		"doc_type":"usermanual2",
-		"p_code":"208",
+		"p_code":"212",
 		"code":"234"
 	},
 	{
@@ -2111,9 +2111,405 @@
 		"title":"How Do I Harden the VPC Security Group Rules for CCE Cluster Nodes?",
 		"uri":"cce_faq_00265.html",
 		"doc_type":"usermanual2",
-		"p_code":"208",
+		"p_code":"212",
 		"code":"235"
 	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Best Practice",
+		"uri":"cce_bestpractice.html",
+		"doc_type":"usermanual2",
+		"p_code":"",
+		"code":"236"
+	},
+	{
+		"desc":"Security, efficiency, stability, and availability are common requirements on all cloud services. To meet these requirements, the system availability, data reliability, an",
+		"product_code":"cce",
+		"title":"Checklist for Deploying Containerized Applications in the Cloud",
+		"uri":"cce_bestpractice_00006.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"237"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Migration",
+		"uri":"cce_bestpractice_00237.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"238"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Migrating On-premises Kubernetes Clusters to CCE",
+		"uri":"cce_bestpractice_0306.html",
+		"doc_type":"usermanual2",
+		"p_code":"238",
+		"code":"239"
+	},
+	{
+		"desc":"Containers are growing in popularity and Kubernetes simplifies containerized deployment. Many companies choose to build their own Kubernetes clusters. However, the O&M wo",
+		"product_code":"cce",
+		"title":"Solution Overview",
+		"uri":"cce_bestpractice_0307.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"240"
+	},
+	{
+		"desc":"CCE allows you to customize cluster resources to meet various service requirements. Table 1 lists the key performance parameters of a cluster and provides the planned val",
+		"product_code":"cce",
+		"title":"Planning Resources for the Target Cluster",
+		"uri":"cce_bestpractice_0308.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"241"
+	},
+	{
+		"desc":"If your migration does not involve resources outside a cluster listed in Table 1 or you do not need to use other services to update resources after the migration, skip th",
+		"product_code":"cce",
+		"title":"Migrating Resources Outside a Cluster",
+		"uri":"cce_bestpractice_0309.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"242"
+	},
+	{
+		"desc":"Velero is an open-source backup and migration tool for Kubernetes clusters. It integrates the persistent volume (PV) data backup capability of the Restic tool and can be ",
+		"product_code":"cce",
+		"title":"Installing the Migration Tool",
+		"uri":"cce_bestpractice_0310.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"243"
+	},
+	{
+		"desc":"WordPress is used as an example to describe how to migrate an application from an on-premises Kubernetes cluster to a CCE cluster. The WordPress application consists of t",
+		"product_code":"cce",
+		"title":"Migrating Resources in a Cluster",
+		"uri":"cce_bestpractice_0311.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"244"
+	},
+	{
+		"desc":"The WordPress and MySQL images used in this example can be pulled from SWR. Therefore, the image pull failure (ErrImagePull) will not occur. If the application to be migr",
+		"product_code":"cce",
+		"title":"Updating Resources Accordingly",
+		"uri":"cce_bestpractice_0312.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"245"
+	},
+	{
+		"desc":"Cluster migration involves full migration of application data, which may cause intra-application adaptation problems. In this example, after the cluster is migrated, the ",
+		"product_code":"cce",
+		"title":"Performing Additional Tasks",
+		"uri":"cce_bestpractice_0313.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"246"
+	},
+	{
+		"desc":"Both HostPath and Local volumes are local storage volumes. However, the Restic tool integrated in Velero cannot back up the PVs of the HostPath type and supports only the",
+		"product_code":"cce",
+		"title":"Troubleshooting",
+		"uri":"cce_bestpractice_0314.html",
+		"doc_type":"usermanual2",
+		"p_code":"239",
+		"code":"247"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"DevOps",
+		"uri":"cce_bestpractice_0322.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"248"
+	},
+	{
+		"desc":"GitLab is an open-source version management system developed with Ruby on Rails for Git project repository management. It supports web-based access to public and private ",
+		"product_code":"cce",
+		"title":"Interconnecting GitLab with SWR and CCE for CI/CD",
+		"uri":"cce_bestpractice_0324.html",
+		"doc_type":"usermanual2",
+		"p_code":"248",
+		"code":"249"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Disaster Recovery",
+		"uri":"cce_bestpractice_0323.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"250"
+	},
+	{
+		"desc":"To achieve high availability for your CCE containers, you can do as follows:Deploy three master nodes for the cluster.When nodes are deployed across AZs, set custom sched",
+		"product_code":"cce",
+		"title":"Implementing High Availability for Containers in CCE",
+		"uri":"cce_bestpractice_00220.html",
+		"doc_type":"usermanual2",
+		"p_code":"250",
+		"code":"251"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Security",
+		"uri":"cce_bestpractice_0315.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"252"
+	},
+	{
+		"desc":"For security purposes, you are advised to configure a cluster as follows.Kubernetes releases a major version in about four months. CCE follows the same frequency as Kuber",
+		"product_code":"cce",
+		"title":"Cluster Security",
+		"uri":"cce_bestpractice_0317.html",
+		"doc_type":"usermanual2",
+		"p_code":"252",
+		"code":"253"
+	},
+	{
+		"desc":"Do not bind an EIP to a node unless necessary to reduce the attack surface.If an EIP must be used, properly configure the firewall or security group rules to restrict acc",
+		"product_code":"cce",
+		"title":"Node Security",
+		"uri":"cce_bestpractice_0318.html",
+		"doc_type":"usermanual2",
+		"p_code":"252",
+		"code":"254"
+	},
+	{
+		"desc":"The nodeSelector or nodeAffinity is used to limit the range of nodes to which applications can be scheduled, preventing the entire cluster from being threatened due to th",
+		"product_code":"cce",
+		"title":"Container Security",
+		"uri":"cce_bestpractice_0319.html",
+		"doc_type":"usermanual2",
+		"p_code":"252",
+		"code":"255"
+	},
+	{
+		"desc":"Currently, CCE has configured static encryption for secret resources. The secrets created by users will be encrypted and stored in etcd of the CCE cluster. Secrets can be",
+		"product_code":"cce",
+		"title":"Secret Security",
+		"uri":"cce_bestpractice_0320.html",
+		"doc_type":"usermanual2",
+		"p_code":"252",
+		"code":"256"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Auto Scaling",
+		"uri":"cce_bestpractice_0090.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"257"
+	},
+	{
+		"desc":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
+		"product_code":"cce",
+		"title":"Using HPA and CA for Auto Scaling of Workloads and Nodes",
+		"uri":"cce_bestpractice_00282.html",
+		"doc_type":"usermanual2",
+		"p_code":"257",
+		"code":"258"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Cluster",
+		"uri":"cce_bestpractice_0050.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"259"
+	},
+	{
+		"desc":"When you have multiple CCE clusters, you may find it difficult to efficiently connect to all of them.This section describes how to configure access to multiple clusters b",
+		"product_code":"cce",
+		"title":"Connecting to Multiple Clusters Using kubectl",
+		"uri":"cce_bestpractice_00254.html",
+		"doc_type":"usermanual2",
+		"p_code":"259",
+		"code":"260"
+	},
+	{
+		"desc":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).When creating a node in a cluster of v1.13.10 or later, if a data disk is not manage",
+		"product_code":"cce",
+		"title":"Adding a Second Data Disk to a Node in a CCE Cluster",
+		"uri":"cce_bestpractice_00190.html",
+		"doc_type":"usermanual2",
+		"p_code":"259",
+		"code":"261"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Networking",
+		"uri":"cce_bestpractice_0052.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"262"
+	},
+	{
+		"desc":"Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.This topic",
+		"product_code":"cce",
+		"title":"Planning CIDR Blocks for a Cluster",
+		"uri":"cce_bestpractice_00004.html",
+		"doc_type":"usermanual2",
+		"p_code":"262",
+		"code":"263"
+	},
+	{
+		"desc":"CCE uses self-proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.After a cluster i",
+		"product_code":"cce",
+		"title":"Selecting a Network Model",
+		"uri":"cce_bestpractice_00162.html",
+		"doc_type":"usermanual2",
+		"p_code":"262",
+		"code":"264"
+	},
+	{
+		"desc":"Session persistence is one of the most common while complex problems in load balancing.Session persistence is also called sticky sessions. After the sticky session functi",
+		"product_code":"cce",
+		"title":"Implementing Sticky Session Through Load Balancing",
+		"uri":"cce_bestpractice_00231.html",
+		"doc_type":"usermanual2",
+		"p_code":"262",
+		"code":"265"
+	},
+	{
+		"desc":"There may be different types of proxy servers between a client and a container server. How can a container obtain the real source IP address of the client? This section d",
+		"product_code":"cce",
+		"title":"Obtaining the Client Source IP Address for a Container",
+		"uri":"cce_bestpractice_00035.html",
+		"doc_type":"usermanual2",
+		"p_code":"262",
+		"code":"266"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Storage",
+		"uri":"cce_bestpractice_0053.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"267"
+	},
+	{
+		"desc":"A data disk is divided depending on the container storage Rootfs:Overlayfs: No independent thin pool is allocated. Image data is stored in the dockersys disk.# lsblk\nNAME",
+		"product_code":"cce",
+		"title":"Expanding Node Disk Capacity",
+		"uri":"cce_bestpractice_00198.html",
+		"doc_type":"usermanual2",
+		"p_code":"267",
+		"code":"268"
+	},
+	{
+		"desc":"This section describes how to mount OBS buckets and OBS parallel file systems (preferred) of third-party tenants.The CCE cluster of a SaaS service provider needs to be mo",
+		"product_code":"cce",
+		"title":"Mounting an Object Storage Bucket of a Third-Party Tenant",
+		"uri":"cce_bestpractice_00199.html",
+		"doc_type":"usermanual2",
+		"p_code":"267",
+		"code":"269"
+	},
+	{
+		"desc":"The minimum capacity of an SFS Turbo file system is 500 GB, and the SFS Turbo file system cannot be billed by usage. By default, the root directory of an SFS Turbo file s",
+		"product_code":"cce",
+		"title":"Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System",
+		"uri":"cce_bestpractice_00253_0.html",
+		"doc_type":"usermanual2",
+		"p_code":"267",
+		"code":"270"
+	},
+	{
+		"desc":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
+		"product_code":"cce",
+		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
+		"uri":"cce_bestpractice_0107.html",
+		"doc_type":"usermanual2",
+		"p_code":"267",
+		"code":"271"
+	},
+	{
+		"desc":"When using storage resources in CCE, the most common method is to specify storageClassName to define the type of storage resources to be created when creating a PVC. The ",
+		"product_code":"cce",
+		"title":"Custom Storage Classes",
+		"uri":"cce_bestpractice_00281_0.html",
+		"doc_type":"usermanual2",
+		"p_code":"267",
+		"code":"272"
+	},
+	{
+		"desc":"EVS disks cannot be attached across AZs. For example, EVS disks in AZ 1 cannot be attached to nodes in AZ 2.If the storage class csi-disk is used for StatefulSets, when a",
+		"product_code":"cce",
+		"title":"Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology)",
+		"uri":"cce_bestpractice_00284.html",
+		"doc_type":"usermanual2",
+		"p_code":"267",
+		"code":"273"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Container",
+		"uri":"cce_bestpractice_0051.html",
+		"doc_type":"usermanual2",
+		"p_code":"236",
+		"code":"274"
+	},
+	{
+		"desc":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
+		"product_code":"cce",
+		"title":"Properly Allocating Container Computing Resources",
+		"uri":"cce_bestpractice_00002.html",
+		"doc_type":"usermanual2",
+		"p_code":"274",
+		"code":"275"
+	},
+	{
+		"desc":"To access a Kubernetes cluster from a client, you can use the Kubernetes command line tool kubectl.Create a DaemonSet file.vi daemonSet.yamlAn example YAML file is provid",
+		"product_code":"cce",
+		"title":"Modifying Kernel Parameters Using a Privileged Container",
+		"uri":"cce_bestpractice_00227.html",
+		"doc_type":"usermanual2",
+		"p_code":"274",
+		"code":"276"
+	},
+	{
+		"desc":"Before containers running applications are started, one or some init containers are started first. If there are multiple init containers, they will be started in the defi",
+		"product_code":"cce",
+		"title":"Initializing a Container",
+		"uri":"cce_bestpractice_00228.html",
+		"doc_type":"usermanual2",
+		"p_code":"274",
+		"code":"277"
+	},
+	{
+		"desc":"If DNS or other related settings are inappropriate, you can use hostAliases to overwrite the resolution of the host name at the pod level when adding entries to the /etc/",
+		"product_code":"cce",
+		"title":"Using hostAliases to Configure /etc/hosts in a Pod",
+		"uri":"cce_bestpractice_00226.html",
+		"doc_type":"usermanual2",
+		"p_code":"274",
+		"code":"278"
+	},
+	{
+		"desc":"Linux allows you to create a core dump file if an application crashes, which contains the data the application had in memory at the time of the crash. You can analyze the",
+		"product_code":"cce",
+		"title":"Configuring Core Dumps",
+		"uri":"cce_bestpractice_0325.html",
+		"doc_type":"usermanual2",
+		"p_code":"274",
+		"code":"279"
+	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
@@ -2121,7 +2517,7 @@
 		"uri":"cce_01_9999.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"236"
+		"code":"280"
 	},
 	{
 		"desc":"CCE 2.0 inherits and modifies the features of CCE 1.0, and release new features.Modified features:Clusters in CCE 1.0 are equivalent to Hybrid clusters in CCE 2.0.CCE 2.0",
@@ -2129,8 +2525,8 @@
 		"title":"Differences Between CCE 1.0 and CCE 2.0",
 		"uri":"cce_01_9998.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"237"
+		"p_code":"280",
+		"code":"281"
 	},
 	{
 		"desc":"Migrate the images stored in the image repository of CCE 1.0 to CCE 2.0.A VM is available. The VM is bound to a public IP address and can access the Internet. Docker (ear",
@@ -2138,8 +2534,8 @@
 		"title":"Migrating Images",
 		"uri":"cce_01_9997.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"238"
+		"p_code":"280",
+		"code":"282"
 	},
 	{
 		"desc":"Create Hybrid clusters on the CCE 2.0 console. These new Hybrid clusters should have the same specifications with those created on CCE 1.0.To create clusters using APIs, ",
@@ -2147,8 +2543,8 @@
 		"title":"Migrating Clusters",
 		"uri":"cce_01_9996.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"239"
+		"p_code":"280",
+		"code":"283"
 	},
 	{
 		"desc":"This section describes how to create a Deployment with the same specifications as that in CCE 1.0 on the CCE 2.0 console.It is advised to delete the applications on CCE 1",
@@ -2156,8 +2552,8 @@
 		"title":"Migrating Applications",
 		"uri":"cce_01_9995.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"240"
+		"p_code":"280",
+		"code":"284"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2166,6 +2562,6 @@
 		"uri":"cce_01_0300.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"241"
+		"code":"285"
 	}
 ]
\ No newline at end of file
diff --git a/docs/cce/umn/cce_01_0002.html b/docs/cce/umn/cce_01_0002.html
deleted file mode 100644
index 24eeb3db..00000000
--- a/docs/cce/umn/cce_01_0002.html
+++ /dev/null
@@ -1,100 +0,0 @@
-<a name="cce_01_0002"></a><a name="cce_01_0002"></a>
-
-<h1 class="topictitle1">Cluster Overview</h1>
-<div id="body1522665832344"><p id="cce_01_0002__p923425843412"><a href="https://kubernetes.io/" target="_blank" rel="noopener noreferrer">Kubernetes</a> is a containerized application software system that can be easily deployed and managed. It facilitates container scheduling and orchestration.</p>
-<p id="cce_01_0002__p087617574435">For application developers, Kubernetes can be regarded as a cluster operating system. Kubernetes provides functions such as service discovery, scaling, load balancing, self-healing, and even leader election, freeing developers from infrastructure-related configurations.</p>
-<p id="cce_01_0002__p11204125211240">When using Kubernetes, it is like you run a large number of servers as one on which your applications run. Regardless of the number of servers in a Kubernetes cluster, the method for deploying applications in Kubernetes is always the same.</p>
-<div class="section" id="cce_01_0002__section1865552014316"><h4 class="sectiontitle">Kubernetes Cluster Architecture</h4><p id="cce_01_0002__en-us_topic_0249851107_p989413913431">A Kubernetes cluster consists of master nodes (masters) and worker nodes (nodes). Applications are deployed on worker nodes, and you can specify the nodes for deployment.</p>
-<p id="cce_01_0002__en-us_topic_0249851107_p177913134514">The following figure shows the architecture of a Kubernetes cluster.</p>
-<div class="fignone" id="cce_01_0002__en-us_topic_0249851107_fig1124035552814"><span class="figcap"><b>Figure 1 </b>Kubernetes cluster architecture</span><br><span><img id="cce_01_0002__en-us_topic_0249851107_image91201347266" src="en-us_image_0267028603.png"></span></div>
-<p id="cce_01_0002__en-us_topic_0249851107_p1679744211105"><strong id="cce_01_0002__en-us_topic_0249851107_b115641204135">Master node</strong></p>
-<p id="cce_01_0002__en-us_topic_0249851107_p16688915171213">A master node is the machine where the control plane components run, including API server, Scheduler, Controller manager, and etcd.</p>
-<ul id="cce_01_0002__en-us_topic_0249851107_ul36981436204616"><li id="cce_01_0002__en-us_topic_0249851107_li15698173615464">API server: functions as a transit station for components to communicate with each other, receives external requests, and writes information to etcd.</li><li id="cce_01_0002__en-us_topic_0249851107_li6698183610466">Controller manager: performs cluster-level functions, such as component replication, node tracing, and node fault fixing.</li><li id="cce_01_0002__en-us_topic_0249851107_li8698173674618">Scheduler: schedules containers to nodes based on various conditions (such as available resources and node affinity).</li><li id="cce_01_0002__en-us_topic_0249851107_li6698173684613">etcd: serves as a distributed data storage component that stores cluster configuration information.</li></ul>
-<p id="cce_01_0002__en-us_topic_0249851107_p84384449512">In the production environment, multiple master nodes are deployed to ensure cluster high availability. For example, you can deploy three master nodes for your CCE cluster.</p>
-<p id="cce_01_0002__en-us_topic_0249851107_p691416554116"><strong id="cce_01_0002__en-us_topic_0249851107_b9975345122">Worker node</strong></p>
-<p id="cce_01_0002__en-us_topic_0249851107_p18205041220">A worker node is a compute node in a cluster, that is, a node running containerized applications. A worker node has the following components:</p>
-<ul id="cce_01_0002__en-us_topic_0249851107_ul19181255131118"><li id="cce_01_0002__en-us_topic_0249851107_li59181055191113">kubelet: communicates with the container runtime, interacts with the API server, and manages containers on the node.</li><li id="cce_01_0002__en-us_topic_0249851107_li191820550116">kube-proxy: serves as an access proxy between application components.</li><li id="cce_01_0002__en-us_topic_0249851107_li9918205591116">Container runtime: functions as the software for running containers. You can download images to build your container runtime, such as Docker.</li></ul>
-</div>
-<div class="section" id="cce_01_0002__section12927055173912"><h4 class="sectiontitle">Number of Master Nodes and Cluster Scale</h4><p id="cce_01_0002__p5724161191510">When you create a cluster on CCE, the number of master nodes can be set to 1 or 3. Three master nodes can be deployed to create a cluster in HA mode.</p>
-<p id="cce_01_0002__p1577917514285">The master node specifications determine the number of nodes that can be managed by a cluster. When creating a cluster, you can select the cluster management scale, for example, 50 or 200 nodes.</p>
-</div>
-<div class="section" id="cce_01_0002__section151319151072"><h4 class="sectiontitle">Cluster Network</h4><p id="cce_01_0002__p5731628134020">From the perspective of the network, all nodes in a cluster are located in a VPC, and containers are running on the nodes. You need to configure node-node, node-container, and container-container communication.</p>
-<p id="cce_01_0002__p324784610184">A cluster network can be divided into three network types:</p>
-<ul id="cce_01_0002__ul165402429382"><li id="cce_01_0002__li954017424388">Node network: IP addresses are assigned to nodes in a cluster.</li><li id="cce_01_0002__li1557254623819">Container network: IP addresses are assigned to containers in a cluster for communication between them. Currently, multiple container network models are supported, and each model has its own working mechanism.</li><li id="cce_01_0002__li17172121185311">Service network: A service is a Kubernetes object used to access containers. Each Service has a fixed IP address.</li></ul>
-<p id="cce_01_0002__p1671864135914">When you create a cluster, select a proper CIDR block for each network to ensure that the CIDR blocks do not conflict with each other and each CIDR block has sufficient available IP addresses. <strong id="cce_01_0002__b12363117162219">After a cluster is created, the container network model cannot be modified.</strong> Plan the container network model properly before creating a cluster.</p>
-<p id="cce_01_0002__p12245104074016">You are advised to learn about the cluster network and container network models before creating a cluster. For details, see <a href="cce_01_0010.html">Overview</a>.</p>
-</div>
-<div class="section" id="cce_01_0002__section86671946161117"><h4 class="sectiontitle">Cluster Security Groups</h4><p id="cce_01_0002__p1174128181212">When a cluster is created, the following security groups are created to ensure cluster security:</p>
-<ul id="cce_01_0002__ul221832102919"><li id="cce_01_0002__li621173217297"><em id="cce_01_0002__i82270388132">Cluster name</em>-cce-control-<em id="cce_01_0002__i64671342151318">Random number</em>: security group of the master node.<div class="p" id="cce_01_0002__p264909191817">Observe the following principles when configuring security groups:<ul id="cce_01_0002__ul111109111813"><li id="cce_01_0002__li1368813543209">The source IP addresses defined in the security group rules must be permitted.</li><li id="cce_01_0002__li1695915214223"><strong id="cce_01_0002__b7608134231610">4789</strong> (required only for clusters using the container tunnel network model): used for network access between containers.</li><li id="cce_01_0002__li171159111810"><strong id="cce_01_0002__b9528202951615">5443</strong> and <strong id="cce_01_0002__b453512912162">5444</strong>: ports to which kube-apiserver of the master node listens. These ports must permit requests from VPC and container CIDR blocks.</li><li id="cce_01_0002__li12115941814"><strong id="cce_01_0002__b18661154151716">9443</strong>: used by the network add-on of a worker node to access the master node.</li><li id="cce_01_0002__li41139121814"><strong id="cce_01_0002__b17463175461917">8445</strong>: used by the storage add-on of a worker node to access the master node.</li></ul>
-</div>
-</li><li id="cce_01_0002__li2213326292"><em id="cce_01_0002__i16581023113111">Cluster name</em>-cce-node-<em id="cce_01_0002__i155317327317">Random number</em>: security group of a worker node.<div class="p" id="cce_01_0002__p1348045210183">Observe the following principles when configuring security groups:<ul id="cce_01_0002__ul16848185112183"><li id="cce_01_0002__li574364832014">The source IP addresses defined in the security group rules must be permitted.</li><li id="cce_01_0002__li9174251182213"><strong id="cce_01_0002__b16475750326">4789</strong> (required only for clusters using the container tunnel network model): used for network access between containers.</li><li id="cce_01_0002__li118477511187"><strong id="cce_01_0002__b16292151463217">10250</strong>: used by the master node to access the kubelet component of a worker node (for example, run the kubectl exec {pod} command).</li><li id="cce_01_0002__li684845118180"><strong id="cce_01_0002__b948725214504">30000</strong>-<strong id="cce_01_0002__b136222545509">32767</strong>: external access port (Nodeport) of a node. These ports need be specified when you create a Service. These ports must permit requests from VPC, container, and ELB CIDR blocks.</li></ul>
-</div>
-</li></ul>
-<p id="cce_01_0002__p162881231153214">After a cluster is created, you can view the created security group on the VPC console.</p>
-<div class="warning" id="cce_01_0002__note143511051161210"><span class="warningtitle"><img src="public_sys-resources/warning_3.0-en-us.png"> </span><div class="warningbody"><p id="cce_01_0002__p0351105111211">Do not delete the security groups and related rules automatically configured during cluster creation. Otherwise, the cluster will exhibit unexpected behavior.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0002__section2048514305592"><h4 class="sectiontitle">Cluster Lifecycle</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0002__table12191040104" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster status</caption><thead align="left"><tr id="cce_01_0002__row222012402006"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.8.2.2.3.1.1"><p id="cce_01_0002__p1322094012018">Status</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.8.2.2.3.1.2"><p id="cce_01_0002__p622024012014">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0002__row6220640203"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p822064015018">Creating</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p8220440605">A cluster is being created and is requesting for cloud resources.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row1822020409010"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p2022034016018">Normal</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p1222014401700">A cluster is running properly.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row14220840606"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p10220640508">Scaling-out</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p17220184017012">A node is being added to a cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row12220440503"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p680253414204">Scaling-in</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p9208569201">A node is being deleted from a cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row1224521014401"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p2246111054012">Hibernating</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p72461510194016">A cluster is hibernating.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row1450522112209"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p8817339102011">Awaking</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p1250502111207">A cluster is being woken up.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row13614111762019"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p1261441762018">Upgrading</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p1361415175200">A cluster is being upgraded.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row142095617205"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p42065612200">Unavailable</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p22055652016">A cluster is unavailable.</p>
-</td>
-</tr>
-<tr id="cce_01_0002__row2056716914216"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_01_0002__p13567129172113">Deleting</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_01_0002__p105678916214">A cluster is being deleted.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="fignone" id="cce_01_0002__fig22977482545"><span class="figcap"><b>Figure 2 </b>Cluster status transition</span><br><span><img id="cce_01_0002__image102061357105014" src="en-us_image_0000001160731158.png"></span></div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0003.html b/docs/cce/umn/cce_01_0003.html
deleted file mode 100644
index 3c5ffd78..00000000
--- a/docs/cce/umn/cce_01_0003.html
+++ /dev/null
@@ -1,21 +0,0 @@
-<a name="cce_01_0003"></a><a name="cce_01_0003"></a>
-
-<h1 class="topictitle1">Resetting a Node</h1>
-<div id="body1522736306717"><div class="section" id="cce_01_0003__section87051629113714"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0003__p13461109175017">You can reset a node to modify the node configuration, such as the node OS and login mode.</p>
-<p id="cce_01_0003__p341155285120">Resetting a node will reinstall the node OS and the Kubernetes software on the node. If a node is unavailable because you modify the node configuration, you can reset the node to rectify the fault.</p>
-</div>
-<div class="section" id="cce_01_0003__section0339185914138"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0003__ul975585510397"><li id="cce_01_0003__li15755125513910">The cluster version must be v1.13 or later.</li></ul>
-</div>
-<div class="section" id="cce_01_0003__section83421713122615"><h4 class="sectiontitle">Notes</h4><ul id="cce_01_0003__ul189321612123615"><li id="cce_01_0003__li139331412133615">Only worker nodes can be reset. If the node is still unavailable after the resetting, delete the node and create a new one.</li><li id="cce_01_0003__li133748101461"><strong id="cce_01_0003__b1724353045920">Resetting a node will reinstall the node OS and interrupt workload services running on the node. Therefore, perform this operation during off-peak hours.</strong></li><li id="cce_01_0003__li11336171744612"><strong id="cce_01_0003__b1654931913492">Data in the system disk and Docker data disks will be cleared. Back up important data before resetting the node.</strong></li><li id="cce_01_0003__li159325122367"><strong id="cce_01_0003__b18976436631">When an extra data disk is mounted to a node, data in this disk will be cleared if the disk has not been unmounted before the node reset. To prevent data loss, back up data in advance and mount the data disk again after the node reset is complete.</strong></li><li id="cce_01_0003__li18904821103817">The IP addresses of the workload pods on the node will change, but the container network access is not affected.</li><li id="cce_01_0003__li33901348389">There is remaining EVS disk quota.</li><li id="cce_01_0003__li893261218365">While the node is being deleted, the backend will set the node to the unschedulable state.</li></ul>
-</div>
-<div class="section" id="cce_01_0003__section144215001311"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0003__ol856117271009"><li id="cce_01_0003__li1856111271603"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0003__b2784174517571">Resource Management</strong> &gt; <strong id="cce_01_0003__b11790194510573">Nodes</strong>. In the same row as the node you will reset, choose <strong id="cce_01_0003__b1979011451573">More</strong> &gt; <strong id="cce_01_0003__b679034518574">Reset</strong>.</span></li><li id="cce_01_0003__li18203142544612"><span>In the dialog box displayed, enter <strong id="cce_01_0003__b14488101611562">RESET</strong> and reconfigure the key pair for login.</span><p><div class="fignone" id="cce_01_0003__fig10143855684"><span class="figcap"><b>Figure 1 </b>Resetting the selected node</span><br><span><img id="cce_01_0003__image119110714912" src="en-us_image_0000001190302085.png"></span></div>
-</p></li><li id="cce_01_0003__li6145420265"><span>Click <span class="uicontrol" id="cce_01_0003__uicontrol102341912773"><b>Yes</b></span> and wait until the node is reset.</span><p><p id="cce_01_0003__p1557151272914">After the node is reset, pods on it are automatically migrated to other available nodes. </p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0004.html b/docs/cce/umn/cce_01_0004.html
deleted file mode 100644
index 92e2ae8c..00000000
--- a/docs/cce/umn/cce_01_0004.html
+++ /dev/null
@@ -1,95 +0,0 @@
-<a name="cce_01_0004"></a><a name="cce_01_0004"></a>
-
-<h1 class="topictitle1">Managing Node Labels</h1>
-<div id="body1523168310157"><div class="section" id="cce_01_0004__section825504204814"><h4 class="sectiontitle">Node Label Usage Scenario</h4><p id="cce_01_0004__p780125519482">Node labels are mainly used in the following scenarios:</p>
-<ul id="cce_01_0004__ul1269074720287"><li id="cce_01_0004__li1269054722816">Node management: Node labels are used to classify nodes.</li><li id="cce_01_0004__li13690184719287">Affinity and anti-affinity between a workload and node:<ul id="cce_01_0004__ul1329315507281"><li id="cce_01_0004__li17292050192815">Some workloads require a large CPU, some require a large memory, some require a large I/O, and other workloads may be affected. In this case, you are advised to add different labels to nodes. When deploying a workload, you can select nodes with specified labels for affinity deployment to ensure the normal operation of the system. Otherwise, node anti-affinity deployment can be used.</li><li id="cce_01_0004__li1229255012816">A system can be divided into multiple modules. Each module consists of multiple microservices. To ensure the efficiency of subsequent O&amp;M, you can add a module label to each node so that each module can be deployed on the corresponding node, does not interfere with other modules, and can be easily developed and maintained on its node.</li></ul>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0004__section74111324152813"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0004__en-us_topic_0000001199181148_keyword544709935144944">Inherent Label of a Node</span></h4><p id="cce_01_0004__en-us_topic_0000001199181148_p096179164111">After a node is created, some fixed labels exist and cannot be deleted. For details about these labels, see <a href="#cce_01_0004__en-us_topic_0000001199181148_table83962234533">Table 1</a>.</p>
-
-<div class="tablenoborder"><a name="cce_01_0004__en-us_topic_0000001199181148_table83962234533"></a><a name="en-us_topic_0000001199181148_table83962234533"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0004__en-us_topic_0000001199181148_table83962234533" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Inherent label of a node</caption><thead align="left"><tr id="cce_01_0004__en-us_topic_0000001199181148_row941112314533"><th align="left" class="cellrowborder" valign="top" width="34%" id="mcps1.4.2.3.2.3.1.1"><p id="cce_01_0004__en-us_topic_0000001199181148_p1541113238536">Key</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="66%" id="mcps1.4.2.3.2.3.1.2"><p id="cce_01_0004__en-us_topic_0000001199181148_p1741119232538">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0004__en-us_topic_0000001199181148_row846191265011"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p107369065316">New: topology.kubernetes.io/region</p>
-<p id="cce_01_0004__en-us_topic_0000001199181148_p841172365311">Old: failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p38743391437">Region where the node is located</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row11957143818577"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p67558441573">New: topology.kubernetes.io/zone</p>
-<p id="cce_01_0004__en-us_topic_0000001199181148_p27551644185718">Old: failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p5141948155717">AZ where the node is located</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row186452248235"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p935922465512">New: node.kubernetes.io/baremetal</p>
-<p id="cce_01_0004__en-us_topic_0000001199181148_p1664611247230">Old: failure-domain.beta.kubernetes.io/is-baremetal</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p10646132416235">Whether the node is a bare metal node</p>
-<p id="cce_01_0004__en-us_topic_0000001199181148_p878819218284"><strong id="cce_01_0004__en-us_topic_0000001199181148_b137781937201815">false</strong> indicates that the node is not a bare metal node.</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row5551359185318"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p126155014549">node.kubernetes.io/instance-type</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p11552159195316">Node specifications</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row11411923145318"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p89228418575">kubernetes.io/arch</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p3103855811">Node processor architecture</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row18812913105819"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p981281335818">kubernetes.io/hostname</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p1981261314582">Node name</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row15479121185815"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p1931642055818">kubernetes.io/os</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p7479101125812">OS type</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row85011821447"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p950218211147">node.kubernetes.io/subnetid</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p950282110419">ID of the subnet where the node is located.</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row15411523165312"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p2411192310532">os.architecture</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p1741162315319">Node processor architecture</p>
-<p id="cce_01_0004__en-us_topic_0000001199181148_p11218831135415">For example, <strong id="cce_01_0004__en-us_topic_0000001199181148_b842352706145330">amd64</strong> indicates a AMD64-bit processor.</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row17411162365318"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p8411102345311">os.name</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p7411112315537">Node OS name</p>
-</td>
-</tr>
-<tr id="cce_01_0004__en-us_topic_0000001199181148_row1041115238531"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_01_0004__en-us_topic_0000001199181148_p2411323135319">os.version</p>
-</td>
-<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_01_0004__en-us_topic_0000001199181148_p641192311530">Node OS kernel version</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0004__section33951611481"><h4 class="sectiontitle">Adding a Node Label</h4><ol id="cce_01_0004__ol4618636938"><li id="cce_01_0004__li19833133920416"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0004__b1435391912552">Resource Management</strong> &gt; <strong id="cce_01_0004__b163534191551">Nodes</strong>.</span></li><li id="cce_01_0004__li161816361831"><span>In the same row as the node for which you will add labels, choose <strong id="cce_01_0004__b527481414242">Operation</strong> &gt; <strong id="cce_01_0004__b1891522117305">More</strong> &gt; <strong id="cce_01_0004__b557931762416">Manage Labels</strong>.</span></li><li id="cce_01_0004__li461622412711"><span>In the dialog box displayed, click <span class="uicontrol" id="cce_01_0004__uicontrol579618153013"><b>Add Label</b></span> below the label list, enter the key and value of the label to be added, and click <span class="uicontrol" id="cce_01_0004__uicontrol51683011307"><b>OK</b></span>.</span><p><p id="cce_01_0004__p12647141114247">As shown in the figure, the key is <strong id="cce_01_0004__b842352706145648">deploy_qa</strong> and the value is <strong id="cce_01_0004__b842352706145652">true</strong>, indicating that the node is used to deploy the QA (test) environment.</p>
-</p></li><li id="cce_01_0004__li68199221571"><span>After the label is added, click <strong id="cce_01_0004__b16434125017341">Manage Labels</strong>. Then, you will see the label that you have added.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0004__section947332017485"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0004__keyword1945340339145914">Deleting a Node Label</span></h4><p id="cce_01_0004__p189437339488">Only labels added by users can be deleted. Labels that are fixed on the node cannot be deleted.</p>
-<ol id="cce_01_0004__ol13733101093118"><li id="cce_01_0004__li1460522594314"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0004__b1845712155516">Resource Management</strong> &gt; <strong id="cce_01_0004__b845772175513">Nodes</strong>.</span></li><li id="cce_01_0004__li13733141003110"><span>In the same row as the node for which you will delete labels, choose <strong id="cce_01_0004__b1812010163281">Operation</strong> &gt; <strong id="cce_01_0004__b125337420401">More</strong> &gt; <strong id="cce_01_0004__b712010161281">Manage Labels</strong>.</span></li><li id="cce_01_0004__li3733110193114"><span>Click <strong id="cce_01_0004__b84235270615037">Delete</strong>, and then click <strong id="cce_01_0004__b84235270615040">OK</strong> to delete the label.</span><p><p id="cce_01_0004__p22371816555"><strong id="cce_01_0004__b11451165073419">Label updated successfully</strong> is displayed.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0004__section3741052121216"><h4 class="sectiontitle">Searching for a Node by Label</h4><ol id="cce_01_0004__ol175957485139"><li id="cce_01_0004__li559574831319"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0004__b54653245551">Resource Management</strong> &gt; <strong id="cce_01_0004__b8465824135518">Nodes</strong>.</span></li><li id="cce_01_0004__li459515480135"><span>In the upper right corner of the node list, click <strong id="cce_01_0004__b328816538273">Search by Label</strong>.</span></li><li id="cce_01_0004__li990316161147"><span>Enter a Kubernetes label to find the target node.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0007.html b/docs/cce/umn/cce_01_0007.html
deleted file mode 100644
index 22d1f7ee..00000000
--- a/docs/cce/umn/cce_01_0007.html
+++ /dev/null
@@ -1,159 +0,0 @@
-<a name="cce_01_0007"></a><a name="cce_01_0007"></a>
-
-<h1 class="topictitle1">Managing Workloads and Jobs</h1>
-<div id="body1522665832344"><div class="section" id="cce_01_0007__section430113764416"><h4 class="sectiontitle">Scenario</h4><div class="p" id="cce_01_0007__p723817425449">After a workload is created, you can scale, upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0007__table156143911815" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Workload/Job management</caption><thead align="left"><tr id="cce_01_0007__row856143916184"><th align="left" class="cellrowborder" valign="top" width="24.610000000000003%" id="mcps1.3.1.2.1.2.3.1.1"><p id="cce_01_0007__p1571039111814">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="75.39%" id="mcps1.3.1.2.1.2.3.1.2"><p id="cce_01_0007__p175703931816">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0007__row75714395185"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p1557739101816"><a href="#cce_01_0007__section51511928173817">Logging</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p1457133921816">You can view logs of Deployments, StatefulSets, DaemonSets, and jobs.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row657239111818"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p357239201816"><a href="#cce_01_0007__section17604174417381">Upgrade</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p45783918183">You can replace images or image tags to quickly upgrade Deployments, StatefulSets, and DaemonSets without interrupting services.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row1657153916181"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p1457639131817"><a href="#cce_01_0007__section21669213390">Editing a YAML file</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p11572397189">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row105733961815"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p45743981817"><a href="#cce_01_0007__section11703514131711">Scaling</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p1571394187">A workload can be automatically resized according to scaling policies, freeing you from the efforts to manually adjust resources for fluctuating service traffic. This saves you big on both resources and labors.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row75733951812"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p125712399185"><a href="#cce_01_0007__section15303324141816">Monitoring</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p1757123919189">You can view the CPU and memory usage of Deployments, DaemonSets, and pods on the CCE console to determine the resource specifications you may need.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row1571539101815"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p105743919187"><a href="#cce_01_0007__section13324541124815">Rollback</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p19575392187">Only Deployments can be rolled back.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row1957163914184"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p1457103915188"><a href="#cce_01_0007__section10207209154017">Pausing</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p1457163910187">Only Deployments can be paused.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row936119475198"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p183611847121911"><a href="#cce_01_0007__section12087915401">Resuming</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p3361747151920">Only Deployments can be resumed.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row133611447101912"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p73613476199"><a href="#cce_01_0007__section5931193015488">Labeling</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p136104716195">Labels are key-value pairs and can be attached to workloads for affinity and anti-affinity scheduling.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row123611847141914"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p5361154721910"><a href="#cce_01_0007__section14423721191418">Deletion</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p73612471192">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row13361747201913"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p10361747161912"><a href="cce_01_0249.html">Access settings</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p3553397366">You can determine how your workloads can be accessed. For details, see <a href="cce_01_0010.html">Overview</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row9361124791911"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p203611547191912"><a href="cce_01_0051.html">Scheduling policies</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p63611047201920">CCE supports custom and simple scheduling policies. <strong id="cce_01_0007__b14482281144">Custom scheduling policies</strong> allow you to customize node affinity, workload affinity, and workload anti-affinity. <strong id="cce_01_0007__b8273571567">Simple scheduling policies</strong> allow easy and convenient scheduling.</p>
-</td>
-</tr>
-<tr id="cce_01_0007__row62541871218"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_01_0007__p1425413732116"><a href="#cce_01_0007__section1947616516301">Event</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_01_0007__p1725437122110">CCE provides event names, event types, number of occurrences, Kubernetes events, first occurrence time, and last occurrence time by workload or pod.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div class="section" id="cce_01_0007__section51511928173817"><a name="cce_01_0007__section51511928173817"></a><a name="section51511928173817"></a><h4 class="sectiontitle">Viewing Logs</h4><p id="cce_01_0007__p7643185724813">You can view logs of Deployments, StatefulSets, DaemonSets, and jobs. This section uses a Deployment as an example to describe how to view logs.</p>
-<ol id="cce_01_0007__ol14644105712488"><li id="cce_01_0007__li2619151017014"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b088935161412">Workloads</strong> &gt; <strong id="cce_01_0007__b7890851171415">Deployments</strong>.</span></li><li id="cce_01_0007__li1340513385528"><span>In the same row as the workload you will view, click <span class="uicontrol" id="cce_01_0007__uicontrol3637152995911"><b>Logs</b></span>.</span><p><p id="cce_01_0007__p17548132715421">In the displayed <span class="uicontrol" id="cce_01_0007__uicontrol96631537154317"><b>Logs</b></span> window, view the logs generated in the last 5 minutes, 30 minutes, or 1 hour.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section17604174417381"><a name="cce_01_0007__section17604174417381"></a><a name="section17604174417381"></a><h4 class="sectiontitle">Upgrading a Workload</h4><p id="cce_01_0007__p96551832133014">You can replace images or image tags to quickly upgrade Deployments, StatefulSets, and DaemonSets without interrupting services.</p>
-<p id="cce_01_0007__p1243174462216">This section uses a Deployment as an example to describe how to upgrade a workload.</p>
-<p id="cce_01_0007__p15663124812311">Before replacing an image or image version, upload the new image to the SWR service.</p>
-<ol id="cce_01_0007__ol583013911434"><li id="cce_01_0007__li148303911437"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b513812617167">Workloads</strong> &gt; <strong id="cce_01_0007__b513806101615">Deployments</strong>, and click <strong id="cce_01_0007__b51389641616">Upgrade</strong> for the Deployment to be upgraded.</span><p><div class="note" id="cce_01_0007__note104981317262"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0007__ul6585203411317"><li id="cce_01_0007__li658513412313">Workloads cannot be upgraded in batches.</li><li id="cce_01_0007__li175851834193120">Before performing an in-place StatefulSet upgrade, you must manually delete old pods. Otherwise, the upgrade status is always displayed as <strong id="cce_01_0007__b340512519164">Upgrading</strong>.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0007__li8831149194314"><span>Upgrade the Deployment.</span><p><ul id="cce_01_0007__ul1139411404256"><li id="cce_01_0007__li15394940182520"><strong id="cce_01_0007__b398712516358">Image Name</strong>: To replace the Deployment image, click <strong id="cce_01_0007__b966110308184">Replace Image</strong> and select a new image.</li><li id="cce_01_0007__li83570082818"><strong id="cce_01_0007__b8446253113514">Image Version</strong>: To replace the Deployment image version, select a new version from the <strong id="cce_01_0007__b12123916119750">Image Version</strong> drop-down list.</li><li id="cce_01_0007__li41658521301"><strong id="cce_01_0007__b1139110257367">Container Name</strong>: To change the container name, click <span><img id="cce_01_0007__image1254112218112" src="en-us_image_0195434915.png"></span> next to <strong id="cce_01_0007__b41965529153">Container Name</strong> and enter a new name.</li><li id="cce_01_0007__li102027582113"><strong id="cce_01_0007__b19135164573610">Privileged Container</strong>: After this function is enabled, the container can access all devices on the host.</li><li id="cce_01_0007__li891615408212"><strong id="cce_01_0007__b161596319375">Container Resources</strong>: You can set the CPU, memory and GPU quotas.</li><li id="cce_01_0007__li154931083017"><strong id="cce_01_0007__b226912461386">Advanced Settings</strong>:<ul id="cce_01_0007__ul1451433418191"><li id="cce_01_0007__li9970193091816"><strong id="cce_01_0007__cce_01_0047_b1811814372134">Lifecycle</strong>: Commands for starting and running containers can be set.<ul id="cce_01_0007__cce_01_0047_ul124564035015"><li id="cce_01_0007__cce_01_0047_li16519153875013"><strong id="cce_01_0007__cce_01_0047_b16554101991219">Start Command</strong>: executed when the workload is started. For details, see <a href="cce_01_0008.html">Setting Container Startup Commands</a>.</li><li id="cce_01_0007__cce_01_0047_li1782513550502"><strong id="cce_01_0007__cce_01_0047_b151136332127">Post-Start</strong>: executed after the workload runs successfully. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_01_0007__cce_01_0047_li864113426503"><strong id="cce_01_0007__cce_01_0047_b14841164721212">Pre-Stop</strong>: executed to delete logs or temporary files before the workload ends. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li></ul>
-</li><li id="cce_01_0007__li18741243131815"><strong id="cce_01_0007__cce_01_0047_b62611842103018">Health Check</strong>: CCE provides two types of probes: liveness probe and readiness probe. They are used to determine whether containers and user services are running properly. For more information, see <a href="cce_01_0112.html">Setting Health Check for a Container</a>.<ul id="cce_01_0007__cce_01_0047_ul13466311391"><li id="cce_01_0007__cce_01_0047_li2466111392"><strong id="cce_01_0007__cce_01_0047_b56971206226">Liveness Probe</strong>: used to restart the unhealthy container.</li><li id="cce_01_0007__cce_01_0047_li94667111590"><strong id="cce_01_0007__cce_01_0047_b158039254221">Readiness Probe</strong>: used to change the container to the unready state when detecting that the container is unhealthy. In this way, service traffic will not be directed to the container.</li></ul>
-</li><li id="cce_01_0007__li86444541816"><strong id="cce_01_0007__cce_01_0047_b201393655011">Environment Variables</strong>: Environment variables can be added to a container. In general, environment variables are used to set parameters. <div class="p" id="cce_01_0007__cce_01_0047_p9697195651817">On the <span class="uicontrol" id="cce_01_0007__cce_01_0047_uicontrol168876396366"><b>Environment Variables</b></span> tab page, click <strong id="cce_01_0007__cce_01_0047_b125520434541">Add Environment Variable</strong>. Currently, three types of environment variables are supported:<ul id="cce_01_0007__cce_01_0047_ul13887039113610"><li id="cce_01_0007__cce_01_0047_li1788713397365"><strong id="cce_01_0007__cce_01_0047_b1323448596142039">Added manually</strong>: Set <strong id="cce_01_0007__cce_01_0047_b376903439142039">Variable Name</strong> and <strong id="cce_01_0007__cce_01_0047_b400931500142039">Variable Value/Reference</strong>.</li><li id="cce_01_0007__cce_01_0047_li388763963612"><strong id="cce_01_0007__cce_01_0047_b1396515598363">Added from Secret</strong>: Set <strong id="cce_01_0007__cce_01_0047_b12965059183612">Variable Name</strong> and select the desired secret name and data. A secret must be created in advance. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</li><li id="cce_01_0007__cce_01_0047_li288783963612"><strong id="cce_01_0007__cce_01_0047_b2096088672142111">Added from ConfigMap</strong>: Set <strong id="cce_01_0007__cce_01_0047_b634935011142111">Variable Name</strong> and select the desired ConfigMap name and data. A ConfigMap must be created in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.<div class="note" id="cce_01_0007__cce_01_0047_note470614298582"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0007__cce_01_0047_p10707122910587">To edit an environment variable that has been set, click <strong id="cce_01_0007__cce_01_0047_b106004813540">Edit</strong>. To delete an environment variable that has been set, click <strong id="cce_01_0007__cce_01_0047_b19257143125510">Delete</strong>.</p>
-</div></div>
-</li></ul>
-</div>
-</li><li id="cce_01_0007__li7739154615184"><strong id="cce_01_0007__b17605125141912">Data Storage</strong>: Data storage can be mounted to containers for persistent storage and high disk I/O. Local disks and cloud storage volumes are supported. For details, see <a href="cce_01_0042.html">Storage (CSI)</a>.<div class="note" id="cce_01_0007__note6579161125218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0007__p958011116522">You can add data storage volumes only when creating a StatefulSet.</p>
-</div></div>
-</li><li id="cce_01_0007__li1920716485181"><strong id="cce_01_0007__cce_01_0047_b669215095116">Security Context</strong>: Container permissions can be configured to protect CCE and other containers from being affected.<p id="cce_01_0007__cce_01_0047_p202021016182811">Enter the user ID to set container permissions and prevent systems and other containers from being affected.</p>
-</li><li id="cce_01_0007__li12417144918181"><strong id="cce_01_0007__cce_01_0047_b112571342517">Log Policies</strong>: Log collection policies and log directory can be configured to collect container logs for unified management and analysis. For details, see <a href="cce_01_0018.html">Container Logs</a>.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0007__li3833189134315"><span>Click <strong id="cce_01_0007__b17583231391358">Submit</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section21669213390"><a name="cce_01_0007__section21669213390"></a><a name="section21669213390"></a><h4 class="sectiontitle">Editing a YAML file</h4><p id="cce_01_0007__p879119319360">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded. This section uses a Deployment as an example to describe how to edit the YAML file.</p>
-<ol id="cce_01_0007__ol1879112311361"><li id="cce_01_0007__li279113103612"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b104801046181715">Workloads</strong> &gt; <strong id="cce_01_0007__b104801246161711">Deployments</strong>.</span></li><li id="cce_01_0007__li379163103617"><span>In the same row as the workload you will edit, choose <strong id="cce_01_0007__b1460614319113">Operation</strong> &gt; <strong id="cce_01_0007__b20619929102">More</strong> &gt; <strong id="cce_01_0007__b588546161011">Edit YAML</strong>. In the <strong id="cce_01_0007__b785183315108">Edit YAML</strong> window, edit the YAML file of the current workload.</span></li><li id="cce_01_0007__li97921133367"><span>Click <strong id="cce_01_0007__b37471280123">Edit</strong> and then <strong id="cce_01_0007__b12759155891220">OK</strong> to save the changes.</span></li><li id="cce_01_0007__li87324268415"><span>(Optional) In the <strong id="cce_01_0007__b8257102371317">Edit YAML</strong> window, click <strong id="cce_01_0007__b13222327121315">Download</strong> to download the YAML file.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section11703514131711"><a name="cce_01_0007__section11703514131711"></a><a name="section11703514131711"></a><h4 class="sectiontitle">Scaling a Workload</h4><p id="cce_01_0007__p242664611170">A workload can be automatically resized according to custom scaling policies, freeing you from the efforts to manually adjust the amount of resources for fluctuating service traffic. This saves you big on both resources and labors. This section uses a Deployment as an example to describe how to scale a workload.</p>
-<ol id="cce_01_0007__ol142104456206"><li id="cce_01_0007__li1147385082018"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b160974821716">Workloads</strong> &gt; <strong id="cce_01_0007__b860984820177">Deployments</strong>.</span></li><li id="cce_01_0007__li2473195002015"><span>In the same row as the workload for which you will add a scaling policy, choose <strong id="cce_01_0007__b11531195819559">Operation</strong> &gt; <strong id="cce_01_0007__b160483112357">More</strong> &gt; <strong id="cce_01_0007__b68371111563">Scaling</strong>.</span></li><li id="cce_01_0007__li132661010112915"><span>On the <span class="uicontrol" id="cce_01_0007__uicontrol1670495552219"><b>Scaling</b></span> tab page, add or edit scaling policies. Scaling policies are classified as auto and manual scaling policies.</span><p><p id="cce_01_0007__p1979921314294">For details, see <a href="cce_01_0057.html">Scaling a Workload</a>.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section15303324141816"><a name="cce_01_0007__section15303324141816"></a><a name="section15303324141816"></a><h4 class="sectiontitle">Monitoring a Workload</h4><p id="cce_01_0007__p785625243110">You can view the CPU and memory usage of Deployments, DaemonSets, and pods on the CCE console to determine the resource specifications you may need. This section uses a Deployment as an example to describe how to monitor a workload.</p>
-<ol id="cce_01_0007__ol121998089396"><li id="cce_01_0007__li9879311402"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b17536165010179">Workloads</strong> &gt; <strong id="cce_01_0007__b125367509178">Deployments</strong>.</span></li><li id="cce_01_0007__li2774856895942"><span>Click the name of the Deployment to be monitored. On the displayed Deployment details page, click the <strong id="cce_01_0007__b122456757791434">Monitoring</strong> tab to view CPU usage and memory usage of the Deployment.</span></li><li id="cce_01_0007__li08455571501"><span>Click the <strong id="cce_01_0007__b200813506791512">Pods</strong> tab. Click <span><img id="cce_01_0007__image103475366297" src="en-us_image_0121749065.png"></span> next to a pod to be monitored and click <span class="uicontrol" id="cce_01_0007__uicontrol1867308752105559"><b>Monitoring</b></span>.</span></li><li id="cce_01_0007__li1592811579113"><span>Check CPU usage and memory usage of the pod.</span><p><ul id="cce_01_0007__ul2039302310435"><li id="cce_01_0007__li5552980410435">CPU usage<p id="cce_01_0007__p3621675910715"><a name="cce_01_0007__li5552980410435"></a><a name="li5552980410435"></a>The horizontal axis indicates time while the vertical axis indicates the CPU usage. The green line indicates the CPU usage while the red line indicates the CPU usage limit.</p>
-<div class="note" id="cce_01_0007__note15025589102032"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0007__p10926830736">It takes some time to calculate CPU usage. Therefore, when CPU and memory usage are displayed for the first time, CPU usage is displayed about one minute later than memory usage.</p>
-<p id="cce_01_0007__p1012581102032">CPU and memory usage are displayed only for pods in the running state.</p>
-</div></div>
-</li><li id="cce_01_0007__li2616192210442">Memory usage<p id="cce_01_0007__p59940712201758"><a name="cce_01_0007__li2616192210442"></a><a name="li2616192210442"></a>The horizontal axis indicates time while the vertical axis indicates the memory usage. The green line indicates the memory usage while the red line indicates the memory usage limit.</p>
-<div class="note" id="cce_01_0007__note23359528201758"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0007__p8909166201758">Memory usage is displayed only for a running pod.</p>
-</div></div>
-</li></ul>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section13324541124815"><a name="cce_01_0007__section13324541124815"></a><a name="section13324541124815"></a><h4 class="sectiontitle">Rolling Back a Workload (Available Only for Deployments)</h4><p id="cce_01_0007__p252119142614">CCE records the release history of all Deployments. You can roll back a Deployment to a specified version.</p>
-<ol id="cce_01_0007__ol165211495268"><li id="cce_01_0007__li0901438403"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b1720115219172">Workloads</strong> &gt; <strong id="cce_01_0007__b620120527170">Deployments</strong>.</span></li><li id="cce_01_0007__li1254215491914"><span>In the same row as the Deployment you will roll back, choose <strong id="cce_01_0007__b1358661620412">Operation</strong> &gt; <strong id="cce_01_0007__b9974018144114">More</strong> &gt; <strong id="cce_01_0007__b16885192213419">Roll Back</strong>.</span></li><li id="cce_01_0007__li383212838"><span>In the <strong id="cce_01_0007__b03371851204113">Roll Back to This Version</strong> drop-down list, select the version to which you will roll back the Deployment. Then, click <strong id="cce_01_0007__b1246691624215">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section10207209154017"><a name="cce_01_0007__section10207209154017"></a><a name="section10207209154017"></a><h4 class="sectiontitle">Pausing a Workload (Available Only for Deployments)</h4><p id="cce_01_0007__p1658318481563">You can pause Deployments. After a Deployment is paused, the upgrade command can be successfully issued but will not be applied to the pods.</p>
-<p id="cce_01_0007__p1658354819617">If you are performing a rolling upgrade, the rolling upgrade stops after the pause command is issued. In this case, the new and old pods coexist.</p>
-<ol id="cce_01_0007__ol2016218317343"><li id="cce_01_0007__li25071333124320"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b631165414178">Workloads</strong> &gt; <strong id="cce_01_0007__b153215549178">Deployments</strong>.</span></li><li id="cce_01_0007__li1716273183415"><span>In the same row as the Deployment you will pause, choose <strong id="cce_01_0007__b10863191012533">Operation</strong> &gt; <strong id="cce_01_0007__b95111144539">More</strong> &gt; <strong id="cce_01_0007__b191192345312">Pause</strong>.</span></li><li id="cce_01_0007__li716211320342"><span>In the displayed <strong id="cce_01_0007__b955473615318">Pause Workload</strong> dialog box, click <strong id="cce_01_0007__b6235448539">OK</strong>.</span></li><li id="cce_01_0007__li1816215373416"><span>Click <strong id="cce_01_0007__b21822501534">OK</strong>.</span><p><div class="notice" id="cce_01_0007__note10276839151110"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0007__p17277163941114">Deployments in the paused state cannot be rolled back.</p>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section12087915401"><a name="cce_01_0007__section12087915401"></a><a name="section12087915401"></a><h4 class="sectiontitle">Resuming a Workload (Available Only for Deployments)</h4><p id="cce_01_0007__p97827111375">You can resume paused Deployments. After a Deployment is resumed, it can be upgraded or rolled back. Its pods will inherit the latest updates of the Deployment. If they are inconsistent, the pods are upgraded automatically according to the latest information of the Deployment.</p>
-<ol id="cce_01_0007__ol1188315418332"><li id="cce_01_0007__li1388334119335"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b9935115591715">Workloads</strong> &gt; <strong id="cce_01_0007__b1593510556176">Deployments</strong>.</span></li><li id="cce_01_0007__li1588424111338"><span>In the same row as the Deployment you will resume, choose <strong id="cce_01_0007__b4815115719562">Operation</strong> &gt; <strong id="cce_01_0007__b6816457175617">More</strong> &gt; <strong id="cce_01_0007__b198171157125617">Resume</strong>.</span></li><li id="cce_01_0007__li1288404118334"><span>In the displayed <strong id="cce_01_0007__b1813091414574">Resume Workload</strong> dialog box, click <strong id="cce_01_0007__b18132141413575">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section5931193015488"><a name="cce_01_0007__section5931193015488"></a><a name="section5931193015488"></a><h4 class="sectiontitle">Managing Labels</h4><p id="cce_01_0007__p13735621112611">Labels are key-value pairs and can be attached to workloads. Workload labels are often used for affinity and anti-affinity scheduling. You can add labels to multiple workloads or a specified workload.</p>
-<p id="cce_01_0007__p224810259211">You can manage the labels of Deployments, StatefulSets, and DaemonSets based on service requirements. This section uses Deployments as an example to describe how to manage labels.</p>
-<p id="cce_01_0007__a25e981ca77e9418595f87f7400290694">In the following figure, three labels (release, env, and role) are defined for workload APP 1, APP 2, and APP 3. The values of these labels vary with workload.</p>
-<ul id="cce_01_0007__ul7510750182517"><li id="cce_01_0007__li451085020252">Label of APP 1: [release:alpha;env:development;role:frontend]</li><li id="cce_01_0007__li168003418263">Label of APP 2: [release:beta;env:testing;role:frontend]</li><li id="cce_01_0007__li28171735122615">Label of APP 3: [release:alpha;env:production;role:backend]</li></ul>
-<p id="cce_01_0007__a3ba0363fee1e4f84a725cc485dc75fab">If you set <span class="uicontrol" id="cce_01_0007__uicontrol5203060593540"><b>key</b></span> to <span class="uicontrol" id="cce_01_0007__uicontrol1036857593540"><b>role</b></span> and <span class="uicontrol" id="cce_01_0007__uicontrol5756907293540"><b>value</b></span> to <span class="uicontrol" id="cce_01_0007__uicontrol4045549593540"><b>frontend</b></span> when using workload scheduling or another function, APP 1 and APP 2 will be selected.</p>
-<div class="fignone" id="cce_01_0007__ff50c8d071f4d462bb116f4e3d67c131c"><span class="figcap"><b>Figure 1 </b>Label example</span><br><span><img class="vsd" id="cce_01_0007__image1555172419716" src="en-us_image_0165888686.png"></span></div>
-<ol id="cce_01_0007__ol6251112511220"><li id="cce_01_0007__li53548551606"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b759114581170">Workloads</strong> &gt; <strong id="cce_01_0007__b115921758141719">Deployments</strong>.</span></li><li id="cce_01_0007__li22871259152611"><span>Click the name of the workload whose labels will be managed.</span></li><li id="cce_01_0007__li47616189277"><span>On the workload details page, click <strong id="cce_01_0007__b912017320553">Manage Label</strong>. In the displayed dialog box, click <strong id="cce_01_0007__b6581936152913"><span class="keyword" id="cce_01_0007__keyword1141374409161831">Add Label</span></strong>. Enter the label key and value, and click <strong id="cce_01_0007__b958115360290">OK</strong>.</span><p><div class="note" id="cce_01_0007__note163751811133416"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0007__p03751011133411">A key-value pair must contain 1 to 63 characters starting and ending with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed.</p>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section14423721191418"><a name="cce_01_0007__section14423721191418"></a><a name="section14423721191418"></a><h4 class="sectiontitle">Deleting a Workload/Job</h4><p id="cce_01_0007__p44461328132920">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered. Exercise caution when you perform this operation. This section uses a Deployment as an example to describe how to delete a workload.</p>
-<ol id="cce_01_0007__ol16301162312555"><li id="cce_01_0007__li12308471214"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0007__b6607120171815">Workloads</strong> &gt; <strong id="cce_01_0007__b560714017182">Deployments</strong>.</span></li><li id="cce_01_0007__li23014231555"><span>In the same row as the workload you will delete, choose <strong id="cce_01_0007__b2032918125613">Operation</strong> &gt; <strong id="cce_01_0007__b0329141219611">More</strong> &gt; <strong id="cce_01_0007__b23291912765">Delete</strong>.</span><p><p id="cce_01_0007__p11245223162515">Read the system prompts carefully. A workload cannot be recovered after it is deleted. Exercise caution when performing this operation.</p>
-</p></li><li id="cce_01_0007__li1566102365617"><span>Click <strong id="cce_01_0007__b2297164413617">Yes</strong>.</span><p><div class="note" id="cce_01_0007__note1933510551189"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0007__ul204031813191914"><li id="cce_01_0007__li7404151371913">If the node where the pod is located is unavailable or shut down and the workload cannot be deleted, you can forcibly delete the pod from the pod list on the workload details page.</li><li id="cce_01_0007__li10404113191914">Ensure that the storage volumes to be deleted are not used by other workloads. If these volumes are imported or have snapshots, you can only unbind them.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0007__section1947616516301"><a name="cce_01_0007__section1947616516301"></a><a name="section1947616516301"></a><h4 class="sectiontitle">Events</h4><div class="p" id="cce_01_0007__p17884134743310">On the workload details page, click the <strong id="cce_01_0007__b8551143811710">Events</strong> or <strong id="cce_01_0007__b199371925161915">Pods</strong> tab to view the events, event types, number of occurrences, Kubernetes events, first occurrence time, and last occurrence time.<div class="note" id="cce_01_0007__note645916250256"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0007__p2459102542512">Event data will be retained for one hour and then automatically deleted.</p>
-</div></div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0008.html b/docs/cce/umn/cce_01_0008.html
deleted file mode 100644
index 7f7433c8..00000000
--- a/docs/cce/umn/cce_01_0008.html
+++ /dev/null
@@ -1,177 +0,0 @@
-<a name="cce_01_0008"></a><a name="cce_01_0008"></a>
-
-<h1 class="topictitle1">Setting Container Startup Commands</h1>
-<div id="body1523425031641"><div class="section" id="cce_01_0008__section17606029373"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0008__p138311355714">When creating a workload or job, you can use an image to specify the processes running in the container.</p>
-<p id="cce_01_0008__p488664216719">By default, the image runs the default command. To run a specific command or rewrite the default image value, you must perform the following settings:</p>
-<ul id="cce_01_0008__ul1788612423710"><li id="cce_01_0008__li1886742273"><strong id="cce_01_0008__b583136125915">Working directory</strong>: working directory of the command.<p id="cce_01_0008__p1588611421877">If the working directory is not specified in the image or on the console, the default value is <strong id="cce_01_0008__b8423527061799">/</strong>.</p>
-</li><li id="cce_01_0008__li48861542379"><strong id="cce_01_0008__b148861911101">Command</strong>: command that controls the running of an image.</li><li id="cce_01_0008__li388684216711"><strong id="cce_01_0008__b1697417131015">Args</strong>: parameters transferred to the running command.</li></ul>
-<div class="notice" id="cce_01_0008__note12886124215719"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0008__p888634214716">After a container is started, do not modify configurations in the container. If configurations in the container are modified (for example, passwords, certificates, and environment variables of a containerized application are added to the container), the configurations will be lost after the container restarts and container services will become abnormal. An example scenario of container restart is pod rescheduling due to node anomalies.</p>
-<p id="cce_01_0008__p118864425711">Configurations must be imported to a container as arguments. Otherwise, configurations will be lost after the container restarts.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0008__section913591582414"><h4 class="sectiontitle">Commands and Arguments Used to Run a Container</h4><p id="cce_01_0008__p5170150172516">A Docker image has metadata that stores image information. If lifecycle commands and arguments are not set, CCE runs the default commands and arguments, that is, Docker instructions <strong id="cce_01_0008__b183011629528">ENTRYPOINT</strong> and <strong id="cce_01_0008__b123061123526">CMD</strong>, provided during image creation.</p>
-<p id="cce_01_0008__p1617110012512">If the commands and arguments used to run a container are set during application creation, the default commands <strong id="cce_01_0008__b2419173115528">ENTRYPOINT</strong> and <strong id="cce_01_0008__b1642413315528">CMD</strong> are overwritten during image build. The rules are as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0008__table4833929202611" frame="border" border="1" rules="all"><caption><b>Table 1 </b><span class="keyword" id="cce_01_0008__keyword19834102171453">Commands and parameters used to run a container</span></caption><thead align="left"><tr id="cce_01_0008__row1683442952610"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.1"><p id="cce_01_0008__p17834192919269">Image Entrypoint</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.2"><p id="cce_01_0008__p168345294268">Image CMD</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.3"><p id="cce_01_0008__p283416297265">Command to Run a Container</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.4"><p id="cce_01_0008__p583412914264">Args to Run a Container</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.5"><p id="cce_01_0008__p198341629182620">Command Executed</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0008__row283622962618"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0008__p583642920263">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0008__p128361129162616">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0008__p15836162952619">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0008__p18836529172618">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0008__p1836132922617">[touch /root/test]</p>
-</td>
-</tr>
-<tr id="cce_01_0008__row283662932612"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0008__p3836229172615">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0008__p18836142932613">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0008__p1183602917269">[mkdir]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0008__p983642982611">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0008__p1183612293269">[mkdir]</p>
-</td>
-</tr>
-<tr id="cce_01_0008__row9836152912618"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0008__p167981050113418">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0008__p17837142972617">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0008__p168379292269">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0008__p1583702911260">[/opt/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0008__p58371729182613">[touch /opt/test]</p>
-</td>
-</tr>
-<tr id="cce_01_0008__row16837172972617"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0008__p138691301355">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0008__p208371129182610">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0008__p1283715298267">[mkdir]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0008__p544733220362">[/opt/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0008__p20837112917262">[mkdir /opt/test]</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0008__section16375562215"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0008__keyword478253534171512">Setting the Startup Command</span></h4><ol id="cce_01_0008__ol4904646935"><li id="cce_01_0008__li190412461831"><span>Log in to the CCE console. Expand <strong id="cce_01_0008__b14729155522913">Lifecycle</strong> when adding a container during workload or job creation.</span></li><li id="cce_01_0008__li1060727152219"><span>Enter the running command and parameters, as shown in <a href="#cce_01_0008__table15533234825">Table 2</a>.</span><p><div class="note" id="cce_01_0008__note1760277142218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0008__ul11731171412912"><li id="cce_01_0008__li56054181994">The current startup command is provided as a string array and corresponds to the Entrypoint startup command of Docker. The format is as follows: ["executable", "param1", "param2",..]. For details about how to start Kubernetes containers, click <a href="https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell" target="_blank" rel="noopener noreferrer">here</a>.</li><li id="cce_01_0008__li3731121413910">The lifecycle of a container is the same as that of the startup command. That is, the lifecycle of the container ends after the command is executed.</li></ul>
-</div></div>
-
-<div class="tablenoborder"><a name="cce_01_0008__table15533234825"></a><a name="table15533234825"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0008__table15533234825" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Container startup command</caption><thead align="left"><tr id="cce_01_0008__row85331634326"><th align="left" class="cellrowborder" valign="top" width="28.999999999999996%" id="mcps1.3.3.2.2.2.2.2.3.1.1"><p id="cce_01_0008__p18442342527">Configuration Item</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="71%" id="mcps1.3.3.2.2.2.2.2.3.1.2"><p id="cce_01_0008__p1444519421210">Procedure</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0008__row65339348218"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.3.2.2.2.2.2.3.1.1 "><p id="cce_01_0008__p353573415215">Command</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.3.2.2.2.2.2.3.1.2 "><p id="cce_01_0008__p853515342215">Enter an executable command, for example, <span class="parmvalue" id="cce_01_0008__parmvalue131750455817197"><b>/run/server</b></span>.</p>
-<p id="cce_01_0008__p2595134133217">If there are multiple commands, separate them with spaces. If the command contains a space, you need to add a quotation mark ("").</p>
-<div class="note" id="cce_01_0008__note11952193619513"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0008__p1795213665120">If there are multiple commands, you are advised to run the <strong id="cce_01_0008__b203507453333">/bin/sh</strong> or other shell commands. Other commands are used as parameters.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0008__row85351342022"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.3.2.2.2.2.2.3.1.1 "><p id="cce_01_0008__p165351342212">Args</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.3.2.2.2.2.2.3.1.2 "><p id="cce_01_0008__p74728683919">Enter the argument that controls the container running command, for example, <strong id="cce_01_0008__b842352706172146">--port=8080</strong>.</p>
-<p id="cce_01_0008__p10535163420216">If there are multiple arguments, separate them in different lines.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0008__p386374012547">The following uses Nginx as an example to describe three typical application scenarios of the container startup command:</p>
-<div class="p" id="cce_01_0008__p82531927641">Example code:<pre class="screen" id="cce_01_0008__screen8893145135915">nginx -c nginx.conf</pre>
-</div>
-<ul id="cce_01_0008__ul2577711175519"><li id="cce_01_0008__li1557851135516">Scenario 1: Both the <span class="uicontrol" id="cce_01_0008__uicontrol2606726132016"><b>command</b></span> and <span class="uicontrol" id="cce_01_0008__uicontrol12162920206"><b>arguments</b></span> are set.<div class="fignone" id="cce_01_0008__fig12347117203918"><span class="figcap"><b>Figure 1 </b>Setting the startup command and parameters</span><br><span><img id="cce_01_0008__image563352439" src="en-us_image_0000001190302089.png"></span></div>
-<p id="cce_01_0008__p118941245165912">Example YAML file:</p>
-<pre class="screen" id="cce_01_0008__screen16895124514597">          command:
-            - nginx
-          args:
-            - '-c'
-            - nginx.conf</pre>
-</li><li id="cce_01_0008__li15119136595">Scenario 2: Only the <span class="uicontrol" id="cce_01_0008__uicontrol202126818251"><b>command</b></span> is set.<div class="fignone" id="cce_01_0008__fig882815173820"><span class="figcap"><b>Figure 2 </b>Setting the startup command</span><br><span><img id="cce_01_0008__image131952184215" src="en-us_image_0000001144342236.png"></span></div>
-<div class="note" id="cce_01_0008__note08958450591"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0008__p14895174535916">A command must be enclosed in double quotes. If no double quotes are added, the command is split into multiple commands based on space character.</p>
-</div></div>
-<p id="cce_01_0008__p8520104452113">Example YAML file:</p>
-<pre class="screen" id="cce_01_0008__screen128961645195914">          command:
-            - nginx -c nginx.conf
-          args:</pre>
-</li><li id="cce_01_0008__li1428316256591">Scenario 3: Only <span class="uicontrol" id="cce_01_0008__uicontrol1496022820183"><b>arguments</b></span> are set.<div class="fignone" id="cce_01_0008__fig24041027134510"><span class="figcap"><b>Figure 3 </b>Setting startup arguments</span><br><span><img id="cce_01_0008__image4404527154519" src="en-us_image_0000001190302091.png"></span></div>
-<div class="note" id="cce_01_0008__note0229104615319"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0008__p1422954643115">If the container startup command is not added to the system path, run the <strong id="cce_01_0008__b106538228193">/bin/sh</strong> command to execute the container startup command. The container startup command must be enclosed in double quotes.</p>
-</div></div>
-<p id="cce_01_0008__p337833483214">Example YAML file:</p>
-<pre class="screen" id="cce_01_0008__screen1023084618312">          command:
-            - /bin/sh
-          args:
-            - '-c'
-            - '"nginx -c nginx.conf"'</pre>
-</li></ul>
-</p></li><li id="cce_01_0008__li10623163183610"><span>Check or modify the YAML file.</span><p><ul id="cce_01_0008__ul6288831121311"><li id="cce_01_0008__li2288231141320">When creating a workload, in the <span class="uicontrol" id="cce_01_0008__uicontrol11155695418"><b>Configure Advanced Settings</b></span> step, click YAML on the right.<div class="fignone" id="cce_01_0008__fig114968536485"><span class="figcap"><b>Figure 4 </b>Checking or editing a YAML file</span><br><span><img id="cce_01_0008__image1549785319482" src="en-us_image_0000001144342238.png"></span></div>
-</li><li id="cce_01_0008__li158121534101311">After the workload is created, go to the workload list. In the same row as the workload, choose <strong id="cce_01_0008__b15519731492">More</strong> &gt; <strong id="cce_01_0008__b1155718231293">Edit YAML</strong>.</li><li id="cce_01_0008__li181111438101316">After the workload is created, go to the workload details page. On the displayed page, click <strong id="cce_01_0008__b445095311127">Edit YAML</strong> in the upper right corner.</li></ul>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0008__section151181981167"><h4 class="sectiontitle">Example YAML for Setting Container Startup Commands</h4><p id="cce_01_0008__p13147194016468">This section uses Nginx as an example to describe how to set container startup commands using kubectl.</p>
-<p id="cce_01_0008__p7763145810338">Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>. See <a href="cce_01_0047.html#cce_01_0047__section155246177178">Using kubectl to create a Deployment</a> or <a href="cce_01_0048.html#cce_01_0048__section113441881214">Using kubectl to create a StatefulSet</a>. For more details on how to set container startup commands, see <a href="https://kubernetes.io/docs/concepts/workloads/pods/init-containers/" target="_blank" rel="noopener noreferrer">official Kubernetes documentation</a>.</p>
-<pre class="screen" id="cce_01_0008__screen1217219816165">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-<strong style="color:#FF0000;" id="cce_01_0008__b673617432171">        command:</strong>
-<strong id="cce_01_0008__b03491458152415"><span style="color:#FF0000;">        - sleep</span></strong>
-<strong id="cce_01_0008__b6744533111210">        - '3600'</strong>                       <strong id="cce_01_0008__b1874883311128"> #Startup command</strong>
-        imagePullPolicy: Always
-        lifecycle:
-<strong style="color:#FF0000;" id="cce_01_0008__b182471949161715">          postStart:</strong>
-<strong id="cce_01_0008__b122501349121718"><span style="color:#FF0000;">            exec:</span></strong>
-<strong id="cce_01_0008__b10252849141717"><span style="color:#FF0000;">              command:</span></strong>
-<strong id="cce_01_0008__b18254249131710"><span style="color:#FF0000;">              - /bin/bash</span></strong>
-<strong id="cce_01_0008__b5984012195132">              - install.sh</strong>                 <strong id="cce_01_0008__b737670595132"> #Post-start command</strong>
-<strong style="color:#FF0000;" id="cce_01_0008__b17980754191713">          preStop:</strong>
-<strong id="cce_01_0008__b698320546177"><span style="color:#FF0000;">            exec:</span></strong>
-<strong id="cce_01_0008__b1298455411718"><span style="color:#FF0000;">              command:</span></strong>
-<strong id="cce_01_0008__b6986195401712"><span style="color:#FF0000;">              - /bin/bash</span></strong>
-<strong id="cce_01_0008__b110644295144">              - uninstall.sh</strong>            <strong id="cce_01_0008__b556114495144">     #<strong id="cce_01_0008__b815245295144">Pre-stop command</strong></strong>
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0130.html">Configuring a Container</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0009.html b/docs/cce/umn/cce_01_0009.html
deleted file mode 100644
index 7905014f..00000000
--- a/docs/cce/umn/cce_01_0009.html
+++ /dev/null
@@ -1,37 +0,0 @@
-<a name="cce_01_0009"></a><a name="cce_01_0009"></a>
-
-<h1 class="topictitle1">Using a Third-Party Image</h1>
-<div id="body1523239642063"><div class="section" id="cce_01_0009__section96721544452"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0009__p106141253452">CCE allows you to create workloads using images pulled from third-party image repositories.</p>
-<p id="cce_01_0009__p1261413531252">Generally, a third-party image repository can be accessed only after authentication (using your account and password). CCE uses the secret-based authentication to pull images. Therefore, you need to create a secret for an image repository before pulling images from the repository.</p>
-</div>
-<div class="section" id="cce_01_0009__section14876601632"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0009__p545510319312">The node where the workload is running is accessible from public networks. You can access public networks through <a href="cce_01_0014.html">LoadBalancer</a>.</p>
-</div>
-<div class="section" id="cce_01_0009__section0402183334411"><h4 class="sectiontitle">Using the Console</h4><ol id="cce_01_0009__ol1748117409446"><li id="cce_01_0009__li16481144064414"><a name="cce_01_0009__li16481144064414"></a><a name="li16481144064414"></a><span>Create a secret for accessing a third-party image repository.</span><p><p id="cce_01_0009__p75695254516">In the navigation pane, choose <strong id="cce_01_0009__b11729201473811">Configuration Center</strong> &gt; <strong id="cce_01_0009__b7729114133811">Secret</strong>, and click <strong id="cce_01_0009__b17729214133816">Create Secret</strong>. <strong id="cce_01_0009__b19729914183819">Type</strong> must be set to <strong id="cce_01_0009__b07293141388">kubernetes.io/dockerconfigjson</strong>. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</p>
-<p id="cce_01_0009__p819111064514">Enter the user name and password used to access the third-party image repository.</p>
-</p></li><li id="cce_01_0009__li13221161713456"><span>Create a workload. For details, see <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>. If the workload will be created from a third-party image, set the image parameters as follows:</span><p><ol type="a" id="cce_01_0009__ol8645134085919"><li id="cce_01_0009__li17283133917595">Set <strong id="cce_01_0009__b95353255715312">Secret Authentication</strong> to <strong id="cce_01_0009__b22537885915312">Yes</strong>.</li><li id="cce_01_0009__li886114816598">Select the secret created in step <a href="#cce_01_0009__li16481144064414">1</a>.</li><li id="cce_01_0009__li25271611405">Enter the image address.</li></ol>
-</p></li><li id="cce_01_0009__li1682113518595"><span>Click <span class="uicontrol" id="cce_01_0009__uicontrol122057192514"><b>Create</b></span>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0009__section18217101117197"><h4 class="sectiontitle">Using kubectl</h4><ol id="cce_01_0009__ol84677271516"><li id="cce_01_0009__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0009__li54671627213"><span>Create a secret of the dockercfg type using kubectl.</span><p><pre class="screen" id="cce_01_0009__screen1466527017">kubectl create secret docker-registry <strong id="cce_01_0009__b184651127812">myregistrykey </strong>--docker-server=<strong id="cce_01_0009__b124669278112">DOCKER_REGISTRY_SERVER</strong> --docker-username=<strong id="cce_01_0009__b9466927114">DOCKER_USER</strong> --docker-password=<strong id="cce_01_0009__b1046662715116">DOCKER_PASSWORD</strong> --docker-email=<strong id="cce_01_0009__b54661627119">DOCKER_EMAIL</strong></pre>
-<p id="cce_01_0009__p164665271714">In the preceding commands, <strong id="cce_01_0009__b740124517418">myregistrykey</strong> indicates the secret name, and other parameters are described as follows:</p>
-<ul id="cce_01_0009__ul84670278112"><li id="cce_01_0009__li4467142711112"><strong id="cce_01_0009__b640184594119">DOCKER_REGISTRY_SERVER</strong>: address of a third-party image repository, for example, <strong id="cce_01_0009__b240104584114">www.3rdregistry.com</strong> or <strong id="cce_01_0009__b1440215458415">10.10.10.10:443</strong></li><li id="cce_01_0009__li13467127716"><strong id="cce_01_0009__b164021745114117">DOCKER_USER</strong>: account used for logging in to a third-party image repository</li><li id="cce_01_0009__li746782712110"><strong id="cce_01_0009__b1539245574117">DOCKER</strong><strong id="cce_01_0009__b4392185511418">_PASSWORD</strong>: password used for logging in to a third-party image repository</li><li id="cce_01_0009__li1546712278117"><strong id="cce_01_0009__b10402845154110">DOCKER_EMAIL</strong>: email of a third-party image repository</li></ul>
-</p></li><li id="cce_01_0009__li161523518110"><span>Use a third-party image to create a workload.</span><p><div class="p" id="cce_01_0009__p13583471429">A dockecfg secret is used for authentication when you obtain a private image. The following is an example of using the myregistrykey for authentication.<pre class="screen" id="cce_01_0009__screen0583771125">apiVersion: v1
-kind: Pod
-metadata:
-  name: foo
-  namespace: default
-spec:
-  containers:
-    - name: foo
-      image: www.3rdregistry.com/janedoe/awesomeapp:v1
-  imagePullSecrets:
-    - name: myregistrykey              #Use the created secret.</pre>
-</div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0130.html">Configuring a Container</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0010.html b/docs/cce/umn/cce_01_0010.html
deleted file mode 100644
index 94e68226..00000000
--- a/docs/cce/umn/cce_01_0010.html
+++ /dev/null
@@ -1,38 +0,0 @@
-<a name="cce_01_0010"></a><a name="cce_01_0010"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body1522665832344"><p id="cce_01_0010__p13310145119810">You can learn about a cluster network from the following two aspects:</p>
-<ul id="cce_01_0010__ul65247121891"><li id="cce_01_0010__li14524161214917">What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are running on the nodes. Nodes and containers need to communicate with each other. For details about the cluster network types and their functions, see <a href="#cce_01_0010__section1131733719195">Cluster Network Structure</a>.</li><li id="cce_01_0010__li55241612391">How is pod access is implemented in a cluster? Accessing a pod or container is a process of accessing services of a user. Kubernetes provides <a href="#cce_01_0010__section1860619221134">Service</a> and <a href="#cce_01_0010__section1248852094313">Ingress</a> to address pod access issues. This section summarizes common network access scenarios. You can select the proper scenario based on site requirements. For details about the network access scenarios, see <a href="#cce_01_0010__section1286493159">Access Scenarios</a>.</li></ul>
-<div class="section" id="cce_01_0010__section1131733719195"><a name="cce_01_0010__section1131733719195"></a><a name="section1131733719195"></a><h4 class="sectiontitle">Cluster Network Structure</h4><p id="cce_01_0010__p3299181794916">All nodes in the cluster are located in a VPC and use the VPC network. The container network is managed by dedicated network add-ons.</p>
-<p id="cce_01_0010__p452843519446"><span><img id="cce_01_0010__image94831936164418" src="en-us_image_0000001159292060.png"></span></p>
-<ul id="cce_01_0010__ul1916179122617"><li id="cce_01_0010__li13455145754315"><strong id="cce_01_0010__b19468105563811">Node Network</strong><p id="cce_01_0010__p17682193014812">A node network assigns IP addresses to hosts (nodes in the figure above) in a cluster. You need to select a VPC subnet as the node network of the CCE cluster. The number of available IP addresses in a subnet determines the maximum number of nodes (including master nodes and worker nodes) that can be created in a cluster. This quantity is also affected by the container network. For details, see the container network model.</p>
-</li><li id="cce_01_0010__li16131141644715"><strong id="cce_01_0010__b1975815172433">Container Network</strong><p id="cce_01_0010__p523322010499">A container network assigns IP addresses to containers in a cluster. CCE inherits the IP-Per-Pod-Per-Network network model of Kubernetes. That is, each pod has an independent IP address on a network plane and all containers in a pod share the same network namespace. All pods in a cluster exist in a directly connected flat network. They can access each other through their IP addresses without using NAT. Kubernetes only provides a network mechanism for pods, but does not directly configure pod networks. The configuration of pod networks is implemented by specific container network add-ons. The container network add-ons are responsible for configuring networks for pods and managing container IP addresses.</p>
-<p id="cce_01_0010__p3753153443514">Currently, CCE supports the following container network models:</p>
-<ul id="cce_01_0010__ul1751111534368"><li id="cce_01_0010__li133611549182410">Container tunnel network: The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet packets into UDP packets and transmits them in tunnels. Open vSwitch serves as the backend virtual switch.</li><li id="cce_01_0010__li285944033514">VPC network: The VPC network uses VPC routing to integrate with the underlying network. This network model is applicable to performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the route quota in a VPC network. Each node is assigned a CIDR block of a fixed size. This networking model is free from tunnel encapsulation overhead and outperforms the container tunnel network model. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in the cluster can be directly accessed from outside the cluster.</li><li id="cce_01_0010__li5395140132618">Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and Sub Network Interfaces (sub-ENIs) of VPC. Container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and elastic IPs (EIPs) are bound to deliver high performance.</li></ul>
-<p id="cce_01_0010__p397482011109">The performance, networking scale, and application scenarios of a container network vary according to the container network model. For details about the functions and features of different container network models, see <a href="cce_01_0281.html">Overview</a>.</p>
-</li><li id="cce_01_0010__li9139522183714"><strong id="cce_01_0010__b1885317214113">Service Network</strong><p id="cce_01_0010__p584703114499">Service is also a Kubernetes object. Each Service has a fixed IP address. When creating a cluster on CCE, you can specify the Service CIDR block. The Service CIDR block cannot overlap with the node or container CIDR block. The Service CIDR block can be used only within a cluster.</p>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0010__section1860619221134"><a name="cce_01_0010__section1860619221134"></a><a name="section1860619221134"></a><h4 class="sectiontitle">Service</h4><p id="cce_01_0010__p314709111318">A Service is used for pod access. With a fixed IP address, a Service forwards access traffic to pods and performs load balancing for these pods.</p>
-<div class="fignone" id="cce_01_0010__en-us_topic_0249851121_fig163156154816"><span class="figcap"><b>Figure 1 </b>Accessing pods through a Service</span><br><span><img id="cce_01_0010__en-us_topic_0249851121_image1926812771312" src="en-us_image_0258889981.png"></span></div>
-<p id="cce_01_0010__p831948183818">You can configure the following types of Services:</p>
-<ul id="cce_01_0010__ul953218444116"><li id="cce_01_0010__li87791418174620">ClusterIP: used to make the Service only reachable from within a cluster.</li><li id="cce_01_0010__li17876227144612">NodePort: used for access from outside a cluster. A NodePort Service is accessed through the port on the node.</li><li id="cce_01_0010__li94953274615">LoadBalancer: used for access from outside a cluster. It is an extension of NodePort, to which a load balancer routes, and external systems only need to access the load balancer.</li><li id="cce_01_0010__li1462811212513">ENI LoadBalancer: used for access from outside the cluster. An ENI LoadBalancer Service directs traffic from a load balancer at backend pods, reducing the latency and avoiding performance loss for containerized applications.</li></ul>
-<p id="cce_01_0010__p1677717174140">For details about the Service, see <a href="cce_01_0249.html">Overview</a>.</p>
-</div>
-<div class="section" id="cce_01_0010__section1248852094313"><a name="cce_01_0010__section1248852094313"></a><a name="section1248852094313"></a><h4 class="sectiontitle">Ingress</h4><p id="cce_01_0010__p96672218193">Services forward requests using layer-4 TCP and UDP protocols. Ingresses forward requests using layer-7 HTTP and HTTPS protocols. Domain names and paths can be used to achieve finer granularities.</p>
-<div class="fignone" id="cce_01_0010__fig816719454212"><span class="figcap"><b>Figure 2 </b>Ingress and Service</span><br><span><img id="cce_01_0010__en-us_topic_0249851122_image8371183511310" src="en-us_image_0258961458.png"></span></div>
-<p id="cce_01_0010__p174691141141410">For details about the ingress, see <a href="cce_01_0094.html">Overview</a>.</p>
-</div>
-<div class="section" id="cce_01_0010__section1286493159"><a name="cce_01_0010__section1286493159"></a><a name="section1286493159"></a><h4 class="sectiontitle">Access Scenarios</h4><p id="cce_01_0010__p1558001514155">Workload access scenarios can be categorized as follows:</p>
-<ul id="cce_01_0010__ul125010117542"><li id="cce_01_0010__li1466355519018">Intra-cluster access: A ClusterIP Service is used for workloads in the same cluster to access each other.</li><li id="cce_01_0010__li1014011111110">Access from outside a cluster: A Service (NodePort or LoadBalancer type) or an ingress is recommended for a workload outside a cluster to access workloads in the cluster.<ul id="cce_01_0010__ul101426119117"><li id="cce_01_0010__li1014213113116">Access through the internet requires an EIP to be bound the node or load balancer.</li><li id="cce_01_0010__li2501311125411">Access through an intranet uses only the intranet IP address of the node or load balancer. If workloads are located in different VPCs, a peering connection is required to enable communication between different VPCs.</li></ul>
-</li><li id="cce_01_0010__li1066365520014">External access initiated by a workload:<ul id="cce_01_0010__ul17529512239"><li id="cce_01_0010__li26601017165619">Accessing an intranet: The workload accesses the intranet address, but the implementation method varies depending on container network models. Ensure that the peer security group allows the access requests from the container CIDR block. </li><li id="cce_01_0010__li8257105318237">Accessing a public network: You need to assign an EIP to the node where the workload runs, or configure SNAT rules through the NAT gateway.</li></ul>
-</li></ul>
-<div class="fignone" id="cce_01_0010__fig13795829151515"><span class="figcap"><b>Figure 3 </b>Network access diagram</span><br><span><img id="cce_01_0010__image445972519529" src="en-us_image_0000001160748146.png"></span></div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0020.html">Networking</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0011.html b/docs/cce/umn/cce_01_0011.html
deleted file mode 100644
index e5d9c508..00000000
--- a/docs/cce/umn/cce_01_0011.html
+++ /dev/null
@@ -1,124 +0,0 @@
-<a name="cce_01_0011"></a><a name="cce_01_0011"></a>
-
-<h1 class="topictitle1">Intra-Cluster Access (ClusterIP)</h1>
-<div id="body1522736584192"><div class="section" id="cce_01_0011__section13559184110492"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0011__p32401248184910">ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
-<p id="cce_01_0011__p653753053815">The cluster-internal domain name format is <em id="cce_01_0011__i8179113533712">&lt;Service name&gt;</em>.<em id="cce_01_0011__i14179133519374">&lt;Namespace of the workload&gt;</em><strong id="cce_01_0011__b164892813716">.svc.cluster.local:</strong><em id="cce_01_0011__i19337102815712">&lt;Port&gt;</em>, for example, <strong id="cce_01_0011__b8115811381">nginx.default.svc.cluster.local:80</strong>.</p>
-<p id="cce_01_0011__p1778412445517"><a href="#cce_01_0011__fig192245420557">Figure 1</a> shows the mapping relationships between access channels, container ports, and access ports.</p>
-<div class="fignone" id="cce_01_0011__fig192245420557"><a name="cce_01_0011__fig192245420557"></a><a name="fig192245420557"></a><span class="figcap"><b>Figure 1 </b>Intra-cluster access (ClusterIP)</span><br><span><img id="cce_01_0011__image1942163010278" src="en-us_image_0000001117575950.png"></span></div>
-</div>
-<div class="section" id="cce_01_0011__section363413419562"><h4 class="sectiontitle">Adding a Service When Creating a Workload</h4><p id="cce_01_0011__p3218185314114">You can set the access type (Service) when creating a workload on the CCE console.</p>
-<ol id="cce_01_0011__ol361813335611"><li id="cce_01_0011__li4618033165"><span>In the <strong id="cce_01_0011__b148801918161710">Set Application Access</strong> step of <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0216.html">Creating a DaemonSet</a>, click <strong id="cce_01_0011__b32522570132">Add Service</strong> and set the following parameters:</span><p><ul id="cce_01_0011__ul4309141961920"><li id="cce_01_0011__li458711509249"><strong id="cce_01_0011__b46591363102">Access Type</strong>: Select <strong id="cce_01_0011__b258372811117">ClusterIP</strong>.</li><li id="cce_01_0011__li1530917191197"><strong id="cce_01_0011__b19379204515367">Service Name</strong>: Specify a Service name, which can be the same as the workload name.</li><li id="cce_01_0011__li1881162310191"><strong id="cce_01_0011__b478251098154241">Port Settings</strong><ul id="cce_01_0011__ul1014942310265"><li id="cce_01_0011__li25641447141"><strong id="cce_01_0011__b134051368198">Protocol</strong>: protocol used by the Service.</li><li id="cce_01_0011__li142471635131918"><strong id="cce_01_0011__b827497039152537">Container Port</strong>: port on which the workload listens. The Nginx application listens on port 80.</li><li id="cce_01_0011__li115410373199"><strong id="cce_01_0011__b227910774510">Access Port</strong>: a port mapped to the container port at the cluster-internal IP address. The workload can be accessed at &lt;cluster-internal IP address&gt;:&lt;access port&gt;. The port number range is 1–65535.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0011__li090492615184"><span>After the configuration, click <strong id="cce_01_0011__b428816113323">OK</strong> and then <strong id="cce_01_0011__b127751447332">Next: Configure Advanced Settings</strong>. On the page displayed, click <strong id="cce_01_0011__b9378842461">Create</strong>.</span></li><li id="cce_01_0011__li16964121448"><span>Click <strong id="cce_01_0011__b207933389515845">View Deployment Details</strong> or <strong id="cce_01_0011__b93581642124914">View StatefulSet Details</strong>. On the <strong id="cce_01_0011__b3754141114464">Services</strong> tab page, obtain the access address, for example, 10.247.74.100:8080.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0011__section51925078171335"><h4 class="sectiontitle">Adding a Service After Creating a Workload</h4><p id="cce_01_0011__p840043862415">You can set the Service after creating a workload. This has no impact on the workload status and takes effect immediately. The procedure is as follows:</p>
-<ol id="cce_01_0011__ol1321170617144"><li id="cce_01_0011__li836916478329"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0011__b1135183918467">Workloads</strong> &gt; <strong id="cce_01_0011__b1641103924620">Deployments</strong>. On the workload list, click the name of the workload for which you will create a Service.</span></li><li id="cce_01_0011__li966212113342"><span>On the <strong id="cce_01_0011__b1160913418392">Services</strong> tab page, click <strong id="cce_01_0011__b8609934203917">Add Service</strong>.</span></li><li id="cce_01_0011__li5179649417144"><span>On the <span class="uicontrol" id="cce_01_0011__uicontrol1785412843411"><b>Create Service</b></span> page, select <span class="uicontrol" id="cce_01_0011__uicontrol1774312351333"><b>ClusterIP</b></span> from the <strong id="cce_01_0011__b69261418153714">Access Type</strong> drop-down list.</span></li><li id="cce_01_0011__li3476651017144"><span>Set intra-cluster access parameters.</span><p><ul id="cce_01_0011__ul4446314017144"><li id="cce_01_0011__li6462394317144"><strong id="cce_01_0011__b181470402505">Service Name</strong>: Service name, which can be the same as the workload name.</li><li id="cce_01_0011__li4474457617144"><strong id="cce_01_0011__b18877134619617">Cluster Name</strong>: name of the cluster where the workload runs. The value is inherited from the workload creation page and cannot be changed.</li><li id="cce_01_0011__li4800017144"><strong id="cce_01_0011__b988518196818">Namespace</strong>: namespace where the workload is located. The value is inherited from the workload creation page and cannot be changed.</li><li id="cce_01_0011__li43200017144"><strong id="cce_01_0011__b18303401815952">Workload</strong>: workload for which you want to add a Service.</li><li id="cce_01_0011__li388800117144"><strong id="cce_01_0011__b150413392315954">Port Settings</strong><ul id="cce_01_0011__ul3499201217144"><li id="cce_01_0011__li4649265917144"><strong id="cce_01_0011__b1682649399">Protocol</strong>: protocol used by the Service.</li><li id="cce_01_0011__li1578074917144"><strong id="cce_01_0011__b2078832605">Container Port</strong>: port on which the workload listens. The Nginx application listens on port 80.</li><li id="cce_01_0011__li780902117144"><strong id="cce_01_0011__b1043122314114">Access Port</strong>: port mapped to the container port at the cluster-internal IP address. The workload can be accessed at &lt;cluster-internal IP address&gt;:&lt;access port&gt;. The port number range is 1–65535.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0011__li5563226917144"><span>Click <strong id="cce_01_0011__b1080054189151042">Create</strong>. The ClusterIP Service will be added for the workload.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0011__section9813121512319"><a name="cce_01_0011__section9813121512319"></a><a name="section9813121512319"></a><h4 class="sectiontitle">Setting the Access Type Using kubectl</h4><p id="cce_01_0011__p1626583075113">You can run kubectl commands to set the access type (Service). This section uses a Nginx workload as an example to describe how to implement intra-cluster access using kubectl.</p>
-<ol id="cce_01_0011__ol19191171513118"><li id="cce_01_0011__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0011__li1020013819415"><span>Create and edit the <strong id="cce_01_0011__b1451217585494">nginx-deployment.yaml</strong> and <strong id="cce_01_0011__b0512195818499">nginx-clusterip-svc.yaml</strong> files.</span><p><p id="cce_01_0011__p1527690125210">The file names are user-defined. <strong id="cce_01_0011__b1073117514231">nginx-deployment.yaml</strong> and <strong id="cce_01_0011__b1373115162318">nginx-clusterip-svc.yaml</strong> are merely example file names.</p>
-<div class="p" id="cce_01_0011__p7581950184318"><strong id="cce_01_0011__b111191541172515">vi nginx-deployment.yaml</strong><pre class="screen" id="cce_01_0011__screen47713471440">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx:latest
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret</pre>
-</div>
-<div class="p" id="cce_01_0011__p7860118114418"><strong id="cce_01_0011__b14265165062511">vi nginx-clusterip-svc.yaml</strong><pre class="screen" id="cce_01_0011__screen36141743673">apiVersion: v1
-kind: <span style="color:#FF0000;">Service</span>
-metadata:
-  labels:
-    app: nginx
-  name: nginx-clusterip
-spec:
-  ports:
-  - name: service0
-    <span style="color:#FF0000;">port</span>: 8080                # Port for accessing a Service.
-    <span style="color:#FF0000;">protocol</span>: TCP             # Protocol used for accessing a Service. The value can be <strong id="cce_01_0011__b1514733811263">TCP</strong> or <strong id="cce_01_0011__b155641140172611">UDP</strong>.
-    <span style="color:#FF0000;">targetPort</span>: 80            # Port used by a Service to access the target container. This port is closely related to the applications running in a container. In this example, the Nginx image uses port 80 by default.
-  selector:                   # Label selector. A Service selects a pod based on the label and forwards the requests for accessing the Service to the pod. In this example, select the pod with the <strong id="cce_01_0011__b2209621143016">app:nginx</strong> label.
-    app: nginx
-  <span style="color:#FF0000;">type: ClusterIP</span>             # Type of a Service. <strong id="cce_01_0011__b137564817318">ClusterIP</strong> indicates that a Service is only reachable from within the cluster.</pre>
-</div>
-</p></li><li id="cce_01_0011__li12194551184412"><span>Create a workload.</span><p><p id="cce_01_0011__p175719718459"><strong id="cce_01_0011__b692820516453">kubectl create -f nginx-deployment.yaml</strong></p>
-<p id="cce_01_0011__p6944430183115">If information similar to the following is displayed, the workload has been created.</p>
-<pre class="screen" id="cce_01_0011__screen1689415623114">deployment "nginx" created</pre>
-<p id="cce_01_0011__p10542111017457"><strong id="cce_01_0011__b8874010124511">kubectl get po</strong></p>
-<p id="cce_01_0011__p897594218311">If information similar to the following is displayed, the workload is running.</p>
-<pre class="screen" id="cce_01_0011__screen088610169318">NAME                     READY     STATUS             RESTARTS   AGE
-<strong id="cce_01_0011__b859512281317">nginx-2601814895-znhbr   1/1       Running            0          15s</strong></pre>
-</p></li><li id="cce_01_0011__li72314917413"><span>Create a Service.</span><p><p id="cce_01_0011__p652151618484"><strong id="cce_01_0011__b125716411456">kubectl create -f nginx-clusterip-svc.yaml</strong></p>
-<p id="cce_01_0011__p7647437193211">If information similar to the following is displayed, the Service is being created.</p>
-<pre class="screen" id="cce_01_0011__screen21756141325">service "nginx-clusterip" created</pre>
-<p id="cce_01_0011__p94411847104519"><strong id="cce_01_0011__b139414472452">kubectl get svc</strong></p>
-<p id="cce_01_0011__p6551651193219">If information similar to the following is displayed, the Service has been created, and a cluster-internal IP address has been assigned to the Service.</p>
-<pre class="screen" id="cce_01_0011__screen123716238321"># kubectl get svc
-NAME              TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)    AGE
-kubernetes        ClusterIP   10.247.0.1     &lt;none&gt;        443/TCP    4d6h
-<span style="color:#FF0000;">nginx-clusterip   ClusterIP   10.247.74.52   </span><span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">none</span><span style="color:#FF0000;">&gt;</span><span style="color:#FF0000;">        8080/TCP   14m</span></pre>
-</p></li><li id="cce_01_0011__li1847854017180"><span>Access a Service.</span><p><p id="cce_01_0011__p7601154373418">A Service can be accessed from containers or nodes in a cluster.</p>
-<p id="cce_01_0011__p73315335616">Create a pod, access the pod, and run the <strong id="cce_01_0011__b91231031103314">curl</strong> command to access <em id="cce_01_0011__i34141151351">IP address:Port</em> or the domain name of the Service, as shown in the following figure.</p>
-<p id="cce_01_0011__p1258754194715">The domain name suffix can be omitted. In the same namespace, you can directly use <strong id="cce_01_0011__b12708123293515">nginx-clusterip:8080</strong> for access. In other namespaces, you can use <strong id="cce_01_0011__b1747923918014">nginx-clusterip.default:8080</strong> for access.</p>
-<pre class="screen" id="cce_01_0011__screen3418202633310"># <span style="color:#FF0000;">kubectl run -i --tty --image nginx:alpine test --rm /bin/sh</span>
-If you don't see a command prompt, try pressing enter.
-/ # <span style="color:#FF0000;">curl 10.247.74.52:8080</span>
-&lt;!DOCTYPE html&gt;
-&lt;html&gt;
-&lt;head&gt;
-&lt;title&gt;Welcome to nginx!&lt;/title&gt;
-&lt;style&gt;
-    body {
-        width: 35em;
-        margin: 0 auto;
-        font-family: Tahoma, Verdana, Arial, sans-serif;
-    }
-&lt;/style&gt;
-&lt;/head&gt;
-&lt;body&gt;
-&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
-&lt;p&gt;If you see this page, the nginx web server is successfully installed and
-working. Further configuration is required.&lt;/p&gt;
-
-&lt;p&gt;For online documentation and support please refer to
-&lt;a href="http://nginx.org/"&gt;nginx.org&lt;/a&gt;.&lt;br/&gt;
-Commercial support is available at
-&lt;a href="http://nginx.com/"&gt;nginx.com&lt;/a&gt;.&lt;/p&gt;
-
-&lt;p&gt;&lt;em&gt;Thank you for using nginx.&lt;/em&gt;&lt;/p&gt;
-&lt;/body&gt;
-&lt;/html&gt;
-/ # <span style="color:#FF0000;">curl nginx-clusterip.default.svc.cluster.local:8080</span>
-...
-&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
-...
-/ # <span style="color:#FF0000;">curl nginx-clusterip.default:8080</span>
-...
-&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
-...
-/ # <span style="color:#FF0000;">curl nginx-clusterip:8080</span>
-...
-&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
-...</pre>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0247.html">Services</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0012.html b/docs/cce/umn/cce_01_0012.html
deleted file mode 100644
index e8127065..00000000
--- a/docs/cce/umn/cce_01_0012.html
+++ /dev/null
@@ -1,127 +0,0 @@
-<a name="cce_01_0012"></a><a name="cce_01_0012"></a>
-
-<h1 class="topictitle1">Creating a Node Pool</h1>
-<div id="body1564122277019"><div class="section" id="cce_01_0012__section14878105383915"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0012__p8060118">This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see <a href="cce_01_0081.html">Node Pool Overview</a>.</p>
-</div>
-<div class="section" id="cce_01_0012__section4988121734011"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0012__ul194117397405"><li id="cce_01_0012__li297410252362">For details about how to add a node pool to a CCE Turbo cluster, see <a href="#cce_01_0012__section953835110714">Procedure - for CCE Turbo Clusters</a>.</li><li id="cce_01_0012__li9346218204215">The autoscaler add-on needs to be installed for node auto scaling. For details about the add-on installation and parameter configuration, see <a href="cce_01_0154.html">autoscaler</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0012__section138731847143716"><h4 class="sectiontitle">Procedure </h4><p id="cce_01_0012__p4888204045612">To create a node pool in a cluster, perform the following steps:</p>
-<ol id="cce_01_0012__ol1825417365713"><li id="cce_01_0012__li12909182184017"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0012__b739411141314">Resource Management</strong> &gt; <strong id="cce_01_0012__b74002141119">Node Pools</strong>.</span></li><li id="cce_01_0012__li325413315720"><span>In the upper right corner of the page, click <strong id="cce_01_0012__b67115243114">Create Node Pool</strong>.</span></li><li id="cce_01_0012__li1625412375710"><span>Set node pool parameters.</span><p><ul id="cce_01_0012__ul1435104116119"><li id="cce_01_0012__li118901216217"><strong id="cce_01_0012__b1375215557450">Current Region</strong>: geographic location of the node pool to be created.<p id="cce_01_0012__p2050514225614">To minimize network latency and resource access time, select the region nearest to your node pool. Cloud resources are region-specific and cannot be used across regions over internal networks.</p>
-</li><li id="cce_01_0012__li1817111719219"><strong id="cce_01_0012__b649214557484">Name</strong>: name of the new node pool. By default, the name is in the format of <em id="cce_01_0012__i05936446483">Cluster name</em>-nodepool-<em id="cce_01_0012__i359834415481">Random number</em>. You can also use a custom name.</li><li id="cce_01_0012__li1164215293214"><strong id="cce_01_0012__b472314380532">Node Type</strong>: Currently, only VM nodes are supported.</li><li id="cce_01_0012__li2562936821"><strong id="cce_01_0012__b6527827194013">Nodes</strong>: number of nodes to be created for this node pool. The value cannot exceed the maximum number of nodes that can be managed by the cluster.</li><li id="cce_01_0012__li153215432027"><a name="cce_01_0012__li153215432027"></a><a name="li153215432027"></a><strong id="cce_01_0012__b1561103712259">Auto Scaling</strong>:<ul id="cce_01_0012__ul1645914380315"><li id="cce_01_0012__li1133510291316">By default, this parameter is disabled.</li><li id="cce_01_0012__li16336929734">After you enable autoscaler by clicking <span><img id="cce_01_0012__image16680652104914" src="en-us_image_0258503428.png"></span>, nodes in the node pool will be automatically created or deleted based on cluster loads.<ul id="cce_01_0012__ul15733045165119"><li id="cce_01_0012__li773311459517"><strong id="cce_01_0012__b98562832611">Maximum Nodes</strong> and <strong id="cce_01_0012__b4541113102617">Minimum Nodes</strong>: You can set the maximum and minimum number of nodes to ensure that the number of nodes to be scaled is within a proper range.</li><li id="cce_01_0012__li1273111202311"><strong id="cce_01_0012__b149731294710">Priority</strong>: Set this parameter based on service requirements. A larger value indicates a higher priority. For example, if this parameter is set to <strong id="cce_01_0012__b1569562231020">1</strong> and <strong id="cce_01_0012__b8475101019811">4</strong> respectively for node pools A and B, B has a higher priority than A. If the priorities of multiple node pools are set to the same value, for example, <strong id="cce_01_0012__b1276582211110">2</strong>, the node pools are not prioritized and the system performs scaling based on the minimum resource waste principle.<div class="note" id="cce_01_0012__note1228614214325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0012__en-us_topic_0000001137107909_en-us_topic_0254866626_p198781922578">CCE selects a node pool for auto scaling based on the following policies:</p>
-<ol type="a" id="cce_01_0012__en-us_topic_0000001137107909_en-us_topic_0254866626_ol133814916283"><li id="cce_01_0012__en-us_topic_0000001137107909_en-us_topic_0254866626_li14381899286">CCE uses algorithms to determine whether a node pool meets the conditions to allow scheduling of a pod in pending state, including whether the node resources are greater than requested by the pod, and whether the nodeSelect, nodeAffinity, and taints meet the conditions. In addition, the node pools that fail to be scaled (due to insufficient resources or other reasons) and are still in the 15-minute cool-down interval are filtered.</li><li id="cce_01_0012__en-us_topic_0000001137107909_en-us_topic_0254866626_li8388918282">If multiple node pools meet the scaling requirements, the system checks the priority of each node pool and selects the node pool with the highest priority for scaling. The value ranges from 0 to 100 and the default priority is 0. The value 100 indicates the highest priority, and the value 0 indicates the lowest priority.</li><li id="cce_01_0012__en-us_topic_0000001137107909_en-us_topic_0254866626_li1338189132818">If multiple node pools have the same priority or no priority is configured for them, the system selects the node pool that will consume the least resources based on the configured VM specification.</li><li id="cce_01_0012__en-us_topic_0000001137107909_en-us_topic_0254866626_li0382910282">If the VM specifications of multiple node pools are the same but the node pools are deployed in different AZs, the system randomly selects a node pool to trigger scaling.</li></ol>
-</div></div>
-</li><li id="cce_01_0012__li16733114525110"><a name="cce_01_0012__li16733114525110"></a><a name="li16733114525110"></a><strong id="cce_01_0012__b189431493331">Scale-In Cooling Interval</strong>: Set this parameter in the unit of minute or hour. This parameter indicates the interval between the previous scale-out action and the next scale-in action.<p id="cce_01_0012__p1121035123318">Scale-in cooling intervals can be configured in the node pool settings and the <a href="cce_01_0154.html">autoscaler add-on</a> settings.</p>
-<p id="cce_01_0012__p96061458103313"><strong id="cce_01_0012__b25971337443">Scale-in cooling interval configured in a node pool</strong></p>
-<p id="cce_01_0012__p11267539347">This interval indicates the period during which nodes added to the current node pool after a scale-out operation cannot be deleted. This interval takes effect at the node pool level.</p>
-<p id="cce_01_0012__p17442197133413"><strong id="cce_01_0012__b16222161213517">Scale-in cooling interval configured in the autoscaler add-on</strong></p>
-<p id="cce_01_0012__p521591313361">The interval after a scale-out indicates the period during which the entire cluster cannot be scaled in after the autoscaler add-on triggers scale-out (due to the unschedulable pods, metrics, and scaling policies). This interval takes effect at the cluster level.</p>
-<p id="cce_01_0012__p3247181715367">The interval after a node is deleted indicates the period during which the cluster cannot be scaled in after the autoscaler add-on triggers scale-in. This interval takes effect at the cluster level.</p>
-<p id="cce_01_0012__p259072620339">The interval after a failed scale-in indicates the period during which the cluster cannot be scaled in after the autoscaler add-on triggers scale-in. This interval takes effect at the cluster level.</p>
-</li></ul>
-<div class="note" id="cce_01_0012__note234313603519"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0012__p83445364354">You are advised not to store important data on nodes in a node pool because after auto scaling, data cannot be restored as nodes may be deleted.</p>
-</div></div>
-<p id="cce_01_0012__p1760612431935">If <strong id="cce_01_0012__b145334210019">Autoscaler</strong> is enabled, install the <a href="cce_01_0154.html">autoscaler add-on</a> to use the auto scaling feature.</p>
-</li></ul>
-</li><li id="cce_01_0012__li198415527312"><strong id="cce_01_0012__b589710314101">AZ</strong>: An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network.<p id="cce_01_0012__p189781826103413">Set an AZ based on your requirements. After a node pool is created, <strong id="cce_01_0012__b365316521039">AZ</strong> cannot be modified. Exercise caution when selecting an AZ for the node pool.</p>
-<p id="cce_01_0012__p17503267586">To enhance workload reliability, you are advised to select <strong id="cce_01_0012__b29331621191013">Random AZ</strong>, allowing nodes to be randomly and evenly distributed among different AZs.</p>
-<div class="note" id="cce_01_0012__note9118035155318"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0012__p14118835155320">In a CCE Turbo cluster, an AZ is randomly selected from available AZs, and all nodes are created in the selected AZ.</p>
-</div></div>
-</li><li id="cce_01_0012__li1376012131841"><strong id="cce_01_0012__cce_01_0028_b16100183432814">Specifications</strong>: Select node specifications that best fit your business needs.<ul id="cce_01_0012__cce_01_0028_ul2581647145016"><li id="cce_01_0012__cce_01_0028_li1458211473505"><strong id="cce_01_0012__cce_01_0028_b62505295394">General-purpose</strong>: provides a balance of computing, memory, and network resources. It is a good choice for many applications, such as web servers, workload development, workload testing, and small-scale databases.</li><li id="cce_01_0012__cce_01_0028_li64951927195119"><strong id="cce_01_0012__cce_01_0028_b19897143519544">Memory-optimized</strong>: provides higher memory capacity than general-purpose nodes and is suitable for relational databases, NoSQL, and other workloads that are both memory-intensive and data-intensive.</li><li id="cce_01_0012__cce_01_0028_li1050769193112"><strong id="cce_01_0012__cce_01_0028_b2152663587">GPU-accelerated</strong>: provides powerful floating-point computing and is suitable for real-time, highly concurrent massive computing. Graphical processing units (GPUs) of P series are suitable for deep learning, scientific computing, and CAE. GPUs of G series are suitable for 3D animation rendering and CAD. <strong id="cce_01_0012__cce_01_0028_b193285495448">GPU-accelerated nodes can be created only in clusters of v1.11 or later</strong>. GPU-accelerated nodes are available only in certain regions.</li><li id="cce_01_0012__cce_01_0028_li7155144113514"><strong id="cce_01_0012__cce_01_0028_b1243213616911">General computing-plus</strong>: provides stable performance and exclusive resources to enterprise-class workloads with high and stable computing performance.</li><li id="cce_01_0012__cce_01_0028_li162155965212"><strong id="cce_01_0012__cce_01_0028_b19525182091018">Disk-intensive</strong>: supports <a href="cce_01_0053.html">local disk storage</a> and provides high network performance. It is designed for workloads requiring high throughput and data switching, such as big data workloads.</li></ul>
-<p id="cce_01_0012__cce_01_0028_p9915153163017">To ensure node stability, CCE automatically reserves some resources to run necessary system components. For details, see <a href="cce_01_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
-</li><li id="cce_01_0012__li103428516412"><strong id="cce_01_0012__b128021634175916">OS</strong>: Select an OS for the node to be created.<div class="notice" id="cce_01_0012__note1134713152619"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0012__p163421372611">Reinstalling the OS or modifying OS configurations could make the node unavailable. Exercise caution when performing these operations.</p>
-</div></div>
-</li><li id="cce_01_0012__li1356415170514"><strong id="cce_01_0012__b105431571317">VPC</strong>: The value is the same as that of the cluster and cannot be changed.<p id="cce_01_0012__p20904154065915"><strong id="cce_01_0012__b2019891015139">This parameter is displayed only for clusters of v1.13.10-r0 and later.</strong></p>
-</li><li id="cce_01_0012__li199302281151"><strong id="cce_01_0012__b17933111814137">Subnet</strong>: A subnet improves network security by providing exclusive network resources that are isolated from other networks.<p id="cce_01_0012__p41239614562">You can select any subnet in the cluster VPC. Cluster nodes can belong to different subnets.</p>
-<p id="cce_01_0012__p206861454101811">Ensure that the DNS server in the subnet can resolve the OBS domain name. Otherwise, nodes cannot be created.</p>
-<p id="cce_01_0012__p4450021603"><strong id="cce_01_0012__b3647113871312">This parameter is displayed only for clusters of v1.13.10-r0 and later.</strong></p>
-</li><li id="cce_01_0012__li1870117486571"><strong id="cce_01_0012__cce_01_0028_b192514299515">System Disk</strong>: Set the system disk space of the worker node. The value ranges from <span id="cce_01_0012__cce_01_0028_text1330724217365">40GB</span> to 1024 GB. The default value is <span id="cce_01_0012__cce_01_0028_text159658476365">40GB</span>.<p id="cce_01_0012__cce_01_0028_p1922117423324">By default, system disks support <span id="cce_01_0012__cce_01_0028_text0858201711334">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span> EVS disks.</p>
-<div class="p" id="cce_01_0012__cce_01_0028_p196385417139"><strong id="cce_01_0012__cce_01_0028_b2864728125818">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_01_0012__cce_01_0028_b134171320013">This function is available only in certain regions.</strong><ul id="cce_01_0012__cce_01_0028_ul6195114261211"><li id="cce_01_0012__cce_01_0028_li5195194211127"><strong id="cce_01_0012__cce_01_0028_b593951417016">Encryption</strong> is not selected by default.</li><li id="cce_01_0012__cce_01_0028_li5195184201217">After you select <strong id="cce_01_0012__cce_01_0028_b135345191605">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0012__cce_01_0028_b125655191803">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</div>
-</li><li id="cce_01_0012__li1931815591054"><a name="cce_01_0012__li1931815591054"></a><a name="li1931815591054"></a><strong id="cce_01_0012__cce_01_0028_b97242441917">Data Disk</strong>: Set the data disk space of the worker node. The value ranges from 100 GB to 32,768 GB. The default value is 100 GB. The EVS disk types provided for the data disk are the same as those for the system disk.<div class="caution" id="cce_01_0012__cce_01_0028_note164211755115812"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0012__cce_01_0028_p342185565817">If the data disk is uninstalled or damaged, the Docker service becomes abnormal and the node becomes unavailable. You are advised not to delete the data disk.</p>
-</div></div>
-<ul id="cce_01_0012__cce_01_0028_ul295084018332"><li id="cce_01_0012__cce_01_0028_li2512044204319"><strong id="cce_01_0012__cce_01_0028_b1077365616343">LVM</strong>: If this option is selected, CCE data disks are managed by the Logical Volume Manager (LVM). On this condition, you can adjust the disk space allocation for different resources. This option is selected for the first disk by default and cannot be unselected. You can choose to enable or disable LVM for new data disks.<ul id="cce_01_0012__cce_01_0028_ul5276249174617"><li id="cce_01_0012__cce_01_0028_li17431415461">This option is selected by default, indicating that LVM management is enabled.</li><li id="cce_01_0012__cce_01_0028_li129920427482">You can deselect the check box to disable LVM management.<div class="caution" id="cce_01_0012__cce_01_0028_note144345175814"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_01_0012__cce_01_0028_ul148441643567"><li id="cce_01_0012__cce_01_0028_li1022153213250">Disk space of the data disks managed by LVM will be allocated according to the ratio you set.</li><li id="cce_01_0012__cce_01_0028_li78443455617">When creating a node in a cluster of v1.13.10 or later, if LVM is not selected for a data disk, follow instructions in <a href="cce_01_0344.html">Adding a Second Data Disk to a Node in a CCE Cluster</a> to fill in the pre-installation script and format the data disk. Otherwise, the data disk will still be managed by LVM.</li><li id="cce_01_0012__cce_01_0028_li284412417565">When creating a node in a cluster earlier than v1.13.10, you must format the data disks that are not managed by LVM. Otherwise, either these data disks or the first data disk will be managed by LVM.</li></ul>
-</div></div>
-</li></ul>
-</li><li id="cce_01_0012__cce_01_0028_li13480132822014"><strong id="cce_01_0012__cce_01_0028_b17382155322214">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function.<div class="p" id="cce_01_0012__cce_01_0028_p59911430112010"><strong id="cce_01_0012__cce_01_0028_b12100193914235">This function is supported only for clusters of v1.13.10 or later in certain regions,</strong> and is not displayed for clusters of v1.13.10 or earlier.<ul id="cce_01_0012__cce_01_0028_ul1998753519474"><li id="cce_01_0012__cce_01_0028_li3162162914479"><strong id="cce_01_0012__cce_01_0028_b2533191113497">Encryption</strong> is not selected by default.</li><li id="cce_01_0012__cce_01_0028_li169101850184415">After you select <strong id="cce_01_0012__cce_01_0028_b8585114154919">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0012__cce_01_0028_b75851314134919">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</div>
-</li><li id="cce_01_0012__cce_01_0028_li542714325504"><strong id="cce_01_0012__cce_01_0028_b813723085014">Add Data Disk</strong>: Currently, a maximum of two data disks can be attached to a node. After the node is created, you can go to the ECS console to attach more data disks. This function is available only to clusters of certain versions.</li><li id="cce_01_0012__cce_01_0028_li28006368331"><strong id="cce_01_0012__cce_01_0028_b5674125201617">Data disk space allocation</strong>: Click <span><img id="cce_01_0012__cce_01_0028_image331213511271" src="en-us_image_0273156799.png"></span> to specify the resource ratio for <strong id="cce_01_0012__cce_01_0028_b12931104261718">Kubernetes Space</strong> and <strong id="cce_01_0012__cce_01_0028_b9882456172">User Space</strong>. Disk space of the data disks managed by LVM will be allocated according to the ratio you set. This function is available only to clusters of certain versions.<ul id="cce_01_0012__cce_01_0028_ul15312175122713"><li id="cce_01_0012__cce_01_0028_li1312051142712"><strong id="cce_01_0012__cce_01_0028_b154411322111416">Kubernetes Space</strong>: You can specify the ratio of the data disk space for storing Docker and kubelet resources. Docker resources include the Docker working directory, Docker images, and image metadata. kubelet resources include pod configuration files, secrets, and emptyDirs.<p id="cce_01_0012__cce_01_0028_p20126104712595">The Docker space cannot be less than 10%, and the space size cannot be less than 60 GB. The kubelet space cannot be less than 10%.</p>
-<p id="cce_01_0012__cce_01_0028_p6174194615594">The Docker space size is determined by your service requirements. For details, see <a href="cce_01_0341.html">Data Disk Space Allocation</a>.</p>
-</li><li id="cce_01_0012__cce_01_0028_li3312145116273"><strong id="cce_01_0012__cce_01_0028_b12105194652812">User Space</strong>: You can set the ratio of the disk space that is not allocated to Kubernetes resources and the path to which the user space is mounted.<div class="note" id="cce_01_0012__cce_01_0028_note168401426124510"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0012__cce_01_0028_p732075742919">Note that the mount path cannot be <strong id="cce_01_0012__cce_01_0028_b12678109121212">/</strong>, <strong id="cce_01_0012__cce_01_0028_b286214119126">/home/paas</strong>, <strong id="cce_01_0012__cce_01_0028_b1857531417123">/var/paas</strong>, <strong id="cce_01_0012__cce_01_0028_b750101831214">/var/lib</strong>, <strong id="cce_01_0012__cce_01_0028_b320519229122">/var/script</strong>, <strong id="cce_01_0012__cce_01_0028_b5501152417124">/var/log</strong>, <strong id="cce_01_0012__cce_01_0028_b979114261127">/mnt/paas</strong>, or <strong id="cce_01_0012__cce_01_0028_b2113144491215">/opt/cloud</strong>, and cannot conflict with the system directories (such as <strong id="cce_01_0012__cce_01_0028_b9614105712121">bin</strong>, <strong id="cce_01_0012__cce_01_0028_b139416594126">lib</strong>, <strong id="cce_01_0012__cce_01_0028_b1137591171316">home</strong>, <strong id="cce_01_0012__cce_01_0028_b109825231317">root</strong>, <strong id="cce_01_0012__cce_01_0028_b11543194171312">boot</strong>, <strong id="cce_01_0012__cce_01_0028_b1371816571311">dev</strong>, <strong id="cce_01_0012__cce_01_0028_b19151678139">etc</strong>, <strong id="cce_01_0012__cce_01_0028_b9328181018132">lost+found</strong>, <strong id="cce_01_0012__cce_01_0028_b84469113135">mnt</strong>, <strong id="cce_01_0012__cce_01_0028_b210216136131">proc</strong>, <strong id="cce_01_0012__cce_01_0028_b6971014171310">sbin</strong>, <strong id="cce_01_0012__cce_01_0028_b1611714166139">srv</strong>, <strong id="cce_01_0012__cce_01_0028_b387417178138">tmp</strong>, <strong id="cce_01_0012__cce_01_0028_b101401319171317">var</strong>, <strong id="cce_01_0012__cce_01_0028_b33846205138">media</strong>, <strong id="cce_01_0012__cce_01_0028_b248112213133">opt</strong>, <strong id="cce_01_0012__cce_01_0028_b198571622141310">selinux</strong>, <strong id="cce_01_0012__cce_01_0028_b392817279133">sys</strong>, and <strong id="cce_01_0012__cce_01_0028_b9694829151318">usr</strong>). Otherwise, the system or node installation will fail.</p>
-</div></div>
-</li></ul>
-</li></ul>
-<div class="p" id="cce_01_0012__cce_01_0028_p19423163173413"><strong id="cce_01_0012__cce_01_0028_b1184048101710">If the cluster version is v1.13.10-r0 or later and the node specification is <span id="cce_01_0012__cce_01_0028_text15505352268">Disk-intensive</span>, the following options are displayed for data disks:</strong><ul id="cce_01_0012__cce_01_0028_ul83121151162719"><li id="cce_01_0012__cce_01_0028_li14312751122720"><strong id="cce_01_0012__cce_01_0028_b52749232337">EVS</strong>: Parameters are the same as those when the node type is not <span id="cce_01_0012__cce_01_0028_text1334715452614">Disk-intensive</span>. For details, see <a href="#cce_01_0012__li1931815591054">Data Disk</a> above.</li><li id="cce_01_0012__cce_01_0028_li17312351192713"><strong id="cce_01_0012__cce_01_0028_b1397611819250">Local disk</strong>: Local disks may break down and do not ensure data reliability. It is recommended that you store service data in EVS disks, which are more reliable than local disks.<div class="p" id="cce_01_0012__cce_01_0028_p103124515276">Local disk parameters are as follows:<ul id="cce_01_0012__cce_01_0028_ul731225122719"><li id="cce_01_0012__cce_01_0028_li20312185114276"><strong id="cce_01_0012__cce_01_0028_b12607039194011">Disk Mode</strong>: If the node type is <strong id="cce_01_0012__cce_01_0028_b9607143994010">disk-intensive</strong>, the supported disk mode is HDD.</li><li id="cce_01_0012__cce_01_0028_li2312551172713"><strong id="cce_01_0012__cce_01_0028_b18107122625717">Read/Write Mode</strong>: When multiple local disks exist, you can set the read/write mode. The serial and sequential modes are supported. <strong id="cce_01_0012__cce_01_0028_b1058165413386">Sequential</strong> indicates that data is read and written in linear mode. When a disk is used up, the next disk is used. <strong id="cce_01_0012__cce_01_0028_b115014811394">Serial</strong> indicates that data is read and written in striping mode, allowing multiple local disks to be read and written at the same time.</li><li id="cce_01_0012__cce_01_0028_li3312185192713"><strong id="cce_01_0012__cce_01_0028_b11515316378">Kubernetes Space</strong>: You can specify the ratio of the data disk space for storing Docker and kubelet resources. Docker resources include the Docker working directory, Docker images, and image metadata. kubelet resources include pod configuration files, secrets, and emptyDirs.</li><li id="cce_01_0012__cce_01_0028_li1131255118278"><strong id="cce_01_0012__cce_01_0028_b822438863">User Space</strong>: You can set the ratio of the disk space that is not allocated to Kubernetes resources and the path to which the user space is mounted.</li></ul>
-</div>
-</li></ul>
-<div class="notice" id="cce_01_0012__cce_01_0028_note731210512270"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0012__cce_01_0028_ul1631215519271"><li id="cce_01_0012__cce_01_0028_li1731213514278">The ratio of disk space allocated to the Kubernetes space and user space must be equal to 100% in total. You can click <span><img id="cce_01_0012__cce_01_0028_image3376115316309" src="en-us_image_0220702939.png"></span> to refresh the data after you have modified the ratio.</li><li id="cce_01_0012__cce_01_0028_li1931211515272">By default, disks run in the direct-lvm mode. If data disks are removed, the loop-lvm mode will be used and this will impair system stability.</li></ul>
-</div></div>
-</div>
-</li><li id="cce_01_0012__li1624613562619"><strong id="cce_01_0012__cce_01_0028_b15704748145913">Login Mode</strong>:<ul id="cce_01_0012__cce_01_0028_ul10227542183218"><li id="cce_01_0012__cce_01_0028_li922784273210"><span class="parmvalue" id="cce_01_0012__cce_01_0028_parmvalue20179883119"><b>Key pair</b></span>: Select the key pair used to log in to the node. You can select a shared key.<p id="cce_01_0012__cce_01_0028_p102267427326">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0012__cce_01_0028_b193902038879">Create a key pair</strong>.</p>
-<div class="notice" id="cce_01_0012__cce_01_0028_note1476122284"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0012__cce_01_0028_p37611821585">When creating a node using a key pair, IAM users can select only the key pairs created by their own, regardless of whether these users are in the same group. For example, user B cannot use the key pair created by user A to create a node, and the key pair is not displayed in the drop-down list on the CCE console.</p>
-</div></div>
-</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0012__li7131135517019"><span><strong id="cce_01_0012__cce_01_0028_b149511434123320">Advanced ECS Settings</strong> (optional): Click <span><img id="cce_01_0012__cce_01_0028_image13227184214322" src="en-us_image_0183134608.png"></span> to show advanced ECS settings.</span><p><ul id="cce_01_0012__cce_01_0028_ul124844233220"><li id="cce_01_0012__cce_01_0028_li17938610694"><strong id="cce_01_0012__cce_01_0028_b310182353710">ECS Group</strong>: An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.<ul id="cce_01_0012__cce_01_0028_ul127311142095"><li id="cce_01_0012__cce_01_0028_li13731314598"><strong id="cce_01_0012__cce_01_0028_b68267735716">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</li></ul>
-<p id="cce_01_0012__cce_01_0028_p7755165819820">Select an existing ECS group, or click <span class="uicontrol" id="cce_01_0012__cce_01_0028_uicontrol1048116461867"><b>Create ECS Group</b></span> to create one. After the ECS group is created, click the refresh button.</p>
-</li><li id="cce_01_0012__cce_01_0028_li202301642143216"><strong id="cce_01_0012__cce_01_0028_b111489416348">Resource Tags</strong>: By adding tags to resources, you can classify resources.<p id="cce_01_0012__cce_01_0028_p10327184710426">You can create predefined tags in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use predefined tags to improve tag creation and migration efficiency. </p>
-<p id="cce_01_0012__cce_01_0028_p2939181144320">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=node id" tag. A maximum of 5 tags can be added.</p>
-</li><li id="cce_01_0012__cce_01_0028_li11472519267"><strong id="cce_01_0012__cce_01_0028_b2837052124813">Agency</strong>: An agency is created by a tenant administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources. To authorize an ECS or BMS to call cloud services, select <strong id="cce_01_0012__cce_01_0028_b7449141823516">Cloud service</strong> as the agency type, click <strong id="cce_01_0012__cce_01_0028_b1528322212357">Select</strong>, and then select <strong id="cce_01_0012__cce_01_0028_b1112992803513">ECS BMS</strong>.</li><li id="cce_01_0012__cce_01_0028_li623512421327"><strong id="cce_01_0012__cce_01_0028_b14234183363514">Pre-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0012__cce_01_0028_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed. The script is usually used to format data disks.</p>
-</li><li id="cce_01_0012__cce_01_0028_li824516422326"><strong id="cce_01_0012__cce_01_0028_b61796481356">Post-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0012__cce_01_0028_p121041911114618">The script will be executed after Kubernetes software is installed and will not affect the installation. The script is usually used to modify Docker parameters.</p>
-</li><li id="cce_01_0012__cce_01_0028_li524744213216"><strong id="cce_01_0012__cce_01_0028_b8454171752510">Subnet IP Address</strong>: Select <strong id="cce_01_0012__cce_01_0028_b4454121712258">Automatically assign IP address</strong> (recommended) or <strong id="cce_01_0012__cce_01_0028_b1454517102518">Manually assigning IP addresses</strong>.</li></ul>
-</p></li><li id="cce_01_0012__li61521931411"><span><strong id="cce_01_0012__b0280124417531">Advanced Kubernetes Settings</strong> (optional): Click <span><img id="cce_01_0012__image13230193314219" src="en-us_image_0183134473.png"></span> to show advanced Kubernetes settings.</span><p><ul id="cce_01_0012__ul667572811415"><li id="cce_01_0012__li3254034131415"><strong id="cce_01_0012__cce_01_0028_b182981344142016">Max Pods</strong>: maximum number of pods that can be created on a node, including the system's default pods. If the cluster uses the <strong id="cce_01_0012__cce_01_0028_b18337195111520">VPC network model</strong>, the maximum value is determined by the number of IP addresses that can be allocated to containers on each node.<p id="cce_01_0012__cce_01_0028_p1867372514496">This limit prevents the node from being overloaded by managing too many pods. For details, see <a href="cce_01_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
-</li><li id="cce_01_0012__li552312812152"><strong id="cce_01_0012__b114982219544">Taints</strong>: This field is left blank by default. Taints allow nodes to repel a set of pods. You can add a maximum of 10 taints for each node. Each taint contains the following parameters:<ul id="cce_01_0012__ul17274222121015"><li id="cce_01_0012__li227482216106"><strong id="cce_01_0012__b6921811213">Key</strong>: A key must contain 1 to 63 characters starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_01_0012__li7274112241020"><strong id="cce_01_0012__b9973556175416">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_01_0012__li2274182211010"><strong id="cce_01_0012__b838411376810">Effect</strong>: Available options are <strong id="cce_01_0012__b10854184131219">NoSchedule</strong>, <strong id="cce_01_0012__b15432119161211">PreferNoSchedule</strong>, and <strong id="cce_01_0012__b73476124120">NoExecute</strong>.</li></ul>
-<div class="notice" id="cce_01_0012__note77443231113"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0012__ul104271158181515"><li id="cce_01_0012__li042725811158">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-up may fail or pods cannot be scheduled onto the added nodes.</li><li id="cce_01_0012__li642712581152">After a node pool is created, you can click <strong id="cce_01_0012__b790344322519">Edit</strong> to modify its configuration. The modification will be synchronized to all nodes in the node pool.</li></ul>
-</div></div>
-</li><li id="cce_01_0012__li915301316417"><strong id="cce_01_0012__b1814224183215">K8S Labels</strong>: Labels are key/value pairs that are attached to objects, such as pods. Labels are used to specify identifying attributes of objects that are meaningful and relevant to users, but do not directly imply semantics to the core system. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</li><li id="cce_01_0012__li13590205314442"><strong id="cce_01_0012__cce_01_0028_b153416485118">Maximum Data Space per Container</strong>: maximum data space that can be used by a container. The value ranges from 10 GB to 500 GB. If the value of this field is larger than the data disk space allocated to Docker resources, the latter will override the value specified here. Typically, 90% of the data disk space is allocated to Docker resources. This parameter is displayed only for clusters of v1.13.10-r0 and later.</li></ul>
-</p></li><li id="cce_01_0012__li118628713"><span>Click <strong id="cce_01_0012__b432613103422">Next: Confirm</strong> to confirm the configured service parameters and specifications.</span></li><li id="cce_01_0012__li6422192516566"><span>Click <strong id="cce_01_0012__b181391636174216">Submit</strong>.</span><p><p id="cce_01_0012__p156171554175920">It takes about 6 to 10 minutes to create a node pool. You can click <span class="uicontrol" id="cce_01_0012__uicontrol828232717016"><b>Back to Node Pool List</b></span> to perform other operations on the node pool or click <span class="uicontrol" id="cce_01_0012__uicontrol6287727703"><b>Go to Node Pool Events</b></span> to view the node pool details. If the status of the node pool is Normal, the node pool is successfully created.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0012__section953835110714"><a name="cce_01_0012__section953835110714"></a><a name="section953835110714"></a><h4 class="sectiontitle">Procedure - for CCE Turbo Clusters</h4><ol id="cce_01_0012__ol20304182312323"><li id="cce_01_0012__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_01_0012__li2075471341"><span>Click the cluster name to open its details page, choose <span class="uicontrol" id="cce_01_0012__uicontrol1687204583717"><b>Nodes</b></span> on the left, and click the <strong id="cce_01_0012__b1624616332153">Node Pool</strong> tab on the right.</span></li><li id="cce_01_0012__li3387652384"><span>In the upper right corner of the page, click <strong id="cce_01_0012__b11543594158">Create Node Pool</strong>.</span></li><li id="cce_01_0012__li176577542387"><span>Configure computing parameters.</span><p><ul id="cce_01_0012__ul11768183710715"><li id="cce_01_0012__li066713381171"><strong id="cce_01_0012__b250912055218">AZ</strong>: An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network.<p id="cce_01_0012__p366712382715">Set an AZ based on your requirements. After a node pool is created, <strong id="cce_01_0012__b146201433155213">AZ</strong> cannot be modified. Exercise caution when selecting an AZ for the node pool.</p>
-<p id="cce_01_0012__p379411252">To enhance workload reliability, you are advised to select <strong id="cce_01_0012__b11590157132918">Random AZ</strong>, allowing nodes to be randomly and evenly distributed among different AZs.</p>
-</li><li id="cce_01_0012__li10707193064410"><strong id="cce_01_0012__b14295016194415">Container Runtime</strong>: runc or kata.<p id="cce_01_0012__p72221231441">For details about common containers and secure containers, see <a href="cce_01_0180.html#cce_01_0180__section7201124294111">Secure Containers and Common Containers</a>.</p>
-</li><li id="cce_01_0012__li176677382071"><strong id="cce_01_0012__cce_01_0028_b16100183432814_1">Specifications</strong>: Select node specifications that best fit your business needs.<ul id="cce_01_0012__cce_01_0028_ul2581647145016_1"><li id="cce_01_0012__cce_01_0028_li1458211473505_1"><strong id="cce_01_0012__cce_01_0028_b62505295394_1">General-purpose</strong>: provides a balance of computing, memory, and network resources. It is a good choice for many applications, such as web servers, workload development, workload testing, and small-scale databases.</li><li id="cce_01_0012__cce_01_0028_li64951927195119_1"><strong id="cce_01_0012__cce_01_0028_b19897143519544_1">Memory-optimized</strong>: provides higher memory capacity than general-purpose nodes and is suitable for relational databases, NoSQL, and other workloads that are both memory-intensive and data-intensive.</li><li id="cce_01_0012__cce_01_0028_li1050769193112_1"><strong id="cce_01_0012__cce_01_0028_b2152663587_1">GPU-accelerated</strong>: provides powerful floating-point computing and is suitable for real-time, highly concurrent massive computing. Graphical processing units (GPUs) of P series are suitable for deep learning, scientific computing, and CAE. GPUs of G series are suitable for 3D animation rendering and CAD. <strong id="cce_01_0012__cce_01_0028_b193285495448_1">GPU-accelerated nodes can be created only in clusters of v1.11 or later</strong>. GPU-accelerated nodes are available only in certain regions.</li><li id="cce_01_0012__cce_01_0028_li7155144113514_1"><strong id="cce_01_0012__cce_01_0028_b1243213616911_1">General computing-plus</strong>: provides stable performance and exclusive resources to enterprise-class workloads with high and stable computing performance.</li><li id="cce_01_0012__cce_01_0028_li162155965212_1"><strong id="cce_01_0012__cce_01_0028_b19525182091018_1">Disk-intensive</strong>: supports <a href="cce_01_0053.html">local disk storage</a> and provides high network performance. It is designed for workloads requiring high throughput and data switching, such as big data workloads.</li></ul>
-<p id="cce_01_0012__cce_01_0028_p9915153163017_1">To ensure node stability, CCE automatically reserves some resources to run necessary system components. For details, see <a href="cce_01_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
-</li><li id="cce_01_0012__li1166815381077"><strong id="cce_01_0012__b953265145910">OS</strong>: Select an OS for the node to be created. In certain regions, only OSs are displayed and options <strong id="cce_01_0012__b35337575913">Public image</strong> and <strong id="cce_01_0012__b185334512591">Private image</strong> are unavailable.<ul id="cce_01_0012__ul17668133810715"><li id="cce_01_0012__li1966813820713"><strong id="cce_01_0012__b397860324">Public image</strong>: Select an OS for the node.</li><li id="cce_01_0012__li1566816387719"><strong id="cce_01_0012__b9135151414110">Private image (OBT)</strong>: If no private image is available, click <strong id="cce_01_0012__b81356148116">Creating a Private Image</strong> to create one. <strong id="cce_01_0012__b101361914111113">This function is available only for clusters of v1.15 or later.</strong></li></ul>
-<div class="notice" id="cce_01_0012__note46682381712"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0012__p366818381479">Reinstalling the OS or modifying OS configurations could make the node unavailable. Exercise caution when performing these operations.</p>
-</div></div>
-</li><li id="cce_01_0012__li667063812711"><strong id="cce_01_0012__cce_01_0028_b15704748145913_1">Login Mode</strong>:<ul id="cce_01_0012__cce_01_0028_ul10227542183218_1"><li id="cce_01_0012__cce_01_0028_li922784273210_1"><span class="parmvalue" id="cce_01_0012__cce_01_0028_parmvalue20179883119_1"><b>Key pair</b></span>: Select the key pair used to log in to the node. You can select a shared key.<p id="cce_01_0012__cce_01_0028_p102267427326_1">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0012__cce_01_0028_b193902038879_1">Create a key pair</strong>.</p>
-<div class="notice" id="cce_01_0012__cce_01_0028_note1476122284_1"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0012__cce_01_0028_p37611821585_1">When creating a node using a key pair, IAM users can select only the key pairs created by their own, regardless of whether these users are in the same group. For example, user B cannot use the key pair created by user A to create a node, and the key pair is not displayed in the drop-down list on the CCE console.</p>
-</div></div>
-</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0012__li3791823333"><span>Configure storage parameters.</span><p><ul id="cce_01_0012__ul74961032191414"><li id="cce_01_0012__li146687382072"><strong id="cce_01_0012__b12753428107">System Disk</strong>: Set the system disk space of the worker node. The value ranges from <span id="cce_01_0012__text858419314018">40GB</span> to 1024 GB. The default value is 50 GB.<p id="cce_01_0012__p427572820327">By default, system disks support <span id="cce_01_0012__text417778134712">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span> EVS disks.</p>
-</li><li id="cce_01_0012__li1366903811716"><strong id="cce_01_0012__b12441128211">Data Disk</strong>: Set the data disk space of the worker node. The value ranges from 100 GB to 32,768 GB. The default value is 100 GB. The data disk space size is determined by your service requirements. For details, see <a href="cce_01_0341.html">Data Disk Space Allocation</a>.<p id="cce_01_0012__p6544259173710">If the cluster version is v1.13.10-r0 or later and the node type is <span id="cce_01_0012__text05431759173719">Disk-intensive</span>, data disks can be EVS disks or local disks.</p>
-<div class="p" id="cce_01_0012__p103311758105814"><div class="caution" id="cce_01_0012__note53302058165812"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0012__p1233025819588">If the data disk is uninstalled or damaged, the Docker service becomes abnormal and the node becomes unavailable. You are advised not to delete the data disk.</p>
-</div></div>
-<ul id="cce_01_0012__ul113319589584"><li id="cce_01_0012__li193308589585">Data disk space allocation: Click <strong id="cce_01_0012__b179885453214">Expand</strong> and select <strong id="cce_01_0012__b598316224320">Allocate Disk Space</strong> to customize the data disk space usage.<p id="cce_01_0012__p17330558175814">You can customize the resource proportion for the container runtime and kubelet in the data disk. By default, 90% of the space is allocated to containers, and the remaining space is allocated to the kubelet component.</p>
-<p id="cce_01_0012__p233045825819">You can also define the maximum space that can be occupied by a single container. The default value is 10 GB.</p>
-</li><li id="cce_01_0012__li43318587584">Adding data disks: The node must have at least one data disk, and data disks can be added. Click <strong id="cce_01_0012__b8289349133218">Add Data Disk</strong>. Click <strong id="cce_01_0012__b15304469331">Expand</strong> to attach the new data disk to the specified directory.<div class="note" id="cce_01_0012__note1833135835817"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0012__p12331155865818">Note that the mount path cannot be <strong id="cce_01_0012__b2914135051514">/</strong>, <strong id="cce_01_0012__b0920650171512">/home/paas</strong>, <strong id="cce_01_0012__b11920165014151">/var/paas</strong>, <strong id="cce_01_0012__b17920185015156">/var/lib</strong>, <strong id="cce_01_0012__b149201650151519">/var/script</strong>, <strong id="cce_01_0012__b192125019158">/var/log</strong>, <strong id="cce_01_0012__b79213509151">/mnt/paas</strong>, or <strong id="cce_01_0012__b19921145018154">/opt/cloud</strong>, and cannot conflict with the system directories (such as <strong id="cce_01_0012__b1192135011515">bin</strong>, <strong id="cce_01_0012__b89221150141520">lib</strong>, <strong id="cce_01_0012__b199221950181513">home</strong>, <strong id="cce_01_0012__b209236504156">root</strong>, <strong id="cce_01_0012__b4923250161516">boot</strong>, <strong id="cce_01_0012__b1692317504158">dev</strong>, <strong id="cce_01_0012__b12923105071514">etc</strong>, <strong id="cce_01_0012__b892317503151">lost+found</strong>, <strong id="cce_01_0012__b169232501152">mnt</strong>, <strong id="cce_01_0012__b18923135071511">proc</strong>, <strong id="cce_01_0012__b10924105012152">sbin</strong>, <strong id="cce_01_0012__b9924950161517">srv</strong>, <strong id="cce_01_0012__b19924105015158">tmp</strong>, <strong id="cce_01_0012__b12924195016150">var</strong>, <strong id="cce_01_0012__b2924195041515">media</strong>, <strong id="cce_01_0012__b1892410506156">opt</strong>, <strong id="cce_01_0012__b1392518508152">selinux</strong>, <strong id="cce_01_0012__b129256506158">sys</strong>, and <strong id="cce_01_0012__b13925165081514">usr</strong>). Otherwise, the system or node installation will fail.</p>
-</div></div>
-</li><li id="cce_01_0012__li13480132822014"><strong id="cce_01_0012__b1147720328434">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function.<ul id="cce_01_0012__ul1998753519474"><li id="cce_01_0012__li3162162914479"><strong id="cce_01_0012__b68611634154317">Encryption</strong> is not selected by default.</li><li id="cce_01_0012__li169101850184415">After you select <strong id="cce_01_0012__b1330543774319">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0012__b15305237174314">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</li></ul>
-</div>
-</li></ul>
-</p></li><li id="cce_01_0012__li119551455133"><span>Configure networking parameters.</span><p><ul id="cce_01_0012__ul8797173791512"><li id="cce_01_0012__li1466893814717"><strong id="cce_01_0012__b06711713165315">VPC</strong>: The value is the same as that of the cluster and cannot be changed.<p id="cce_01_0012__p1666811383720"><strong id="cce_01_0012__b1985574843">This parameter is displayed only for clusters of v1.13.10-r0 and later.</strong></p>
-</li><li id="cce_01_0012__li1466813819720"><strong id="cce_01_0012__b2051832045">Subnet</strong>: A subnet improves network security by providing exclusive network resources that are isolated from other networks.<p id="cce_01_0012__p266820381070">You can select any subnet in the cluster VPC. Cluster nodes can belong to different subnets.</p>
-<p id="cce_01_0012__p4668138772">Ensure that the DNS server in the subnet can resolve the OBS domain name. Otherwise, nodes cannot be created.</p>
-<p id="cce_01_0012__p1566819381574"><strong id="cce_01_0012__b19199102011531">This parameter is displayed only for clusters of v1.13.10-r0 and later.</strong></p>
-</li></ul>
-</p></li><li id="cce_01_0012__li1375571818133"><span>Configure advanced settings.</span><p><ul id="cce_01_0012__ul9489162271617"><li id="cce_01_0012__li1838916914171"><strong id="cce_01_0012__b98201338335">Kubernetes Label</strong>: Kubernetes provides labels for you to run kubectl commands to filter node resources by label.</li><li id="cce_01_0012__li949062215164"><strong id="cce_01_0012__b1497813567474">Resource Tags</strong>: Resource tags can be added to classify resources.<p id="cce_01_0012__p6490922191612">You can create <strong id="cce_01_0012__b17665105818479">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
-<p id="cce_01_0012__p14490122291611">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_01_0012__i1595521154818">Node ID</em>" tag. A maximum of 5 tags can be added.</p>
-</li><li id="cce_01_0012__li10606174811493"><strong id="cce_01_0012__b289391411717">Taints</strong>: Taints allow a node to repel a set of pods and work with tolerations to ensure that pods are not scheduled onto inappropriate nodes. For details, see <a href="cce_01_0352.html">Configuring Node Scheduling (Tainting)</a>.</li><li id="cce_01_0012__li78135831713"><strong id="cce_01_0012__cce_01_0028_b182981344142016_1">Max Pods</strong>: maximum number of pods that can be created on a node, including the system's default pods. If the cluster uses the <strong id="cce_01_0012__cce_01_0028_b18337195111520_1">VPC network model</strong>, the maximum value is determined by the number of IP addresses that can be allocated to containers on each node.<p id="cce_01_0012__cce_01_0028_p1867372514496_1">This limit prevents the node from being overloaded by managing too many pods. For details, see <a href="cce_01_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
-</li><li id="cce_01_0012__li1649022217164"><strong id="cce_01_0012__b49701529939">Pre-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0012__p1549092251613">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed. It is commonly used to format data disks.</p>
-</li><li id="cce_01_0012__li1149017228169"><strong id="cce_01_0012__b1361873716311">Post-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0012__p164901222131617">The script will be executed after Kubernetes software is installed and will not affect the installation. It is commonly used to modify Docker parameters.</p>
-</li><li id="cce_01_0012__li1194115618497"><strong id="cce_01_0012__b1845613913436">Maximum Data Space per Container</strong>: maximum data space that can be used by a container. The value ranges from 10 GB to 500 GB. If the value of this field is larger than the data disk space allocated to Docker resources, the latter will override the value specified here. Typically, 90% of the data disk space is allocated to Docker resources. This parameter is displayed only for clusters of v1.13.10-r0 and later.</li></ul>
-</p></li><li id="cce_01_0012__li36051030165413"><span>Click <strong id="cce_01_0012__b207211374416">Next: Confirm</strong>.</span></li><li id="cce_01_0012__li957713521647"><span>Click <strong id="cce_01_0012__b15680539645">Submit</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0012__section1147314023811"><h4 class="sectiontitle">Viewing Node Pools in a Cluster</h4><ol id="cce_01_0012__ol533919754511"><li id="cce_01_0012__li1333272912453"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0012__b773615381306">Resource Management</strong> &gt; <strong id="cce_01_0012__b67367381109">Node Pools</strong>.</span></li><li id="cce_01_0012__li123331629174513"><span>In the upper right corner of the node pool list, select a cluster. All node pools in the cluster will be displayed. You can view the node type, node specifications, autoscaler status, and OS of each node pool.</span><p><div class="note" id="cce_01_0012__note13945145115710"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0012__ul994511518718"><li id="cce_01_0012__li159455515717">A default node pool <strong id="cce_01_0012__b15446511871">DefaultPool</strong> is automatically created in each cluster. The default node pool cannot be edited, deleted, or migrated. All nodes created during and after cluster creation are displayed in the default node pool.</li><li id="cce_01_0012__li14945115118718">To display a list of nodes in <strong id="cce_01_0012__b132181146398">DefaultPool</strong>, click the <span class="uicontrol" id="cce_01_0012__uicontrol794585113716"><b>Nodes</b></span> subcard in the <strong id="cce_01_0012__b10125144710812">DefaultPool</strong> card.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0012__li1838417417567"><span>To filter node pools by autoscaler status, select the autoscaler status in the upper right corner of the node pool list.</span></li><li id="cce_01_0012__li1734027154510"><span>In the node pool list, click a node pool name. On the node pool details page, view the basic information, advanced ECS settings, advanced Kubernetes settings, and node list of the node pool.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0035.html">Node Pools</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0013.html b/docs/cce/umn/cce_01_0013.html
deleted file mode 100644
index 05431118..00000000
--- a/docs/cce/umn/cce_01_0013.html
+++ /dev/null
@@ -1,34 +0,0 @@
-<a name="cce_01_0013"></a><a name="cce_01_0013"></a>
-
-<h1 class="topictitle1">Managing Pods</h1>
-<div id="body1564122277019"><div class="section" id="cce_01_0013__section204441317154411"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0013__p962213172051">A pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. A pod encapsulates an application's container (or, in some cases, multiple containers), storage resources, a unique network identity (IP address), as well as options that govern how the container(s) should run. A pod represents a single instance of an application in Kubernetes, which might consist of either a single container or a small number of containers that are tightly coupled and that share resources.</p>
-<p id="cce_01_0013__p589774718597">Pods in a Kubernetes cluster can be used in either of the following ways:</p>
-<ul id="cce_01_0013__ul9462959175919"><li id="cce_01_0013__li16462559205910"><strong id="cce_01_0013__b1627921013913">Pods that run a single container.</strong> The "one-container-per-pod" model is the most common Kubernetes use case. In this case, a pod functions as a wrapper around a single container, and Kubernetes manages the pods rather than the containers directly.</li><li id="cce_01_0013__li64621959125917"><strong id="cce_01_0013__b746765415107">Pods that run multiple containers that need to work together.</strong> A pod might encapsulate an application composed of multiple co-located containers that are tightly coupled and need to share resources. The possible scenarios are as follows:<ul id="cce_01_0013__ul17380211501"><li id="cce_01_0013__li194310912018">Content management systems, file and data loaders, local cache managers, etc;</li><li id="cce_01_0013__li4431292016">Log and checkpoint backup, compression, rotation, snapshotting, etc;</li><li id="cce_01_0013__li1543229100">Data change watchers, log tailers, logging and monitoring adapters, event publishers, etc;</li><li id="cce_01_0013__li64321096015">Proxies, bridges, adapters, etc;</li><li id="cce_01_0013__li9433291007">Controllers, managers, configurators, and updaters</li></ul>
-</li></ul>
-<p id="cce_01_0013__p580215651118">You can easily manage pods on CCE, such as editing YAML files and monitoring pods.</p>
-</div>
-<div class="section" id="cce_01_0013__section13937181015513"><h4 class="sectiontitle">Editing a YAML File</h4><p id="cce_01_0013__p879119319360">To edit and download the YAML file of a pod online, do as follows:</p>
-<ol id="cce_01_0013__ol1879112311361"><li id="cce_01_0013__li279113103612"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0013__b6666163091312">Workloads</strong> &gt; <strong id="cce_01_0013__b767211308131">Pods</strong>.</span></li><li id="cce_01_0013__li379163103617"><span>Click <strong id="cce_01_0013__b18107151114183">Edit YAML</strong> at the same row as the target pod. In the <strong id="cce_01_0013__b11621193891817">Edit YAML</strong> dialog box displayed, modify the YAML file of the pod.</span></li><li id="cce_01_0013__li97921133367"><span>Click <strong id="cce_01_0013__b24151514186">Edit</strong> and then <strong id="cce_01_0013__b242045117184">OK</strong> to save the changes.</span><p><div class="note" id="cce_01_0013__note1365975191714"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0013__p766045111714">If a pod is created by another workload, its YAML file cannot be modified individually on the <strong id="cce_01_0013__b17661536142912">Pods</strong> page.</p>
-</div></div>
-</p></li><li id="cce_01_0013__li87324268415"><span>(Optional) In the <strong id="cce_01_0013__b1045015126211">Edit YAML</strong> window, click <strong id="cce_01_0013__b1245615128214">Download</strong> to download the YAML file.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0013__section88077333511"><h4 class="sectiontitle">Monitoring Pods</h4><p id="cce_01_0013__p785625243110">On the CCE console, you can view the CPU and memory usage, upstream and downstream rates, and disk read/write rates of a workload pod to determine the required resource specifications.</p>
-<ol id="cce_01_0013__ol121998089396"><li id="cce_01_0013__li9879311402"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0013__b163290354135">Workloads</strong> &gt; <strong id="cce_01_0013__b143298357136">Pods</strong>.</span></li><li id="cce_01_0013__li2774856895942"><span>Click <strong id="cce_01_0013__b0397052418">Monitoring</strong> at the same row as the target pod to view the CPU and memory usage, upstream and downstream rates, and disk read/write rates of the pod.</span><p><div class="note" id="cce_01_0013__note23359528201758"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0013__p8909166201758">You cannot view the monitoring data of a pod that is not running.</p>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0013__section1917010503513"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0013__keyword17515174102412">Deleting a Pod</span></h4><p id="cce_01_0013__p44461328132920">If a pod is no longer needed, you can delete it. Deleted pods cannot be recovered. Exercise caution when performing this operation.</p>
-<ol id="cce_01_0013__ol16301162312555"><li id="cce_01_0013__li12308471214"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0013__b43361435121318">Workloads</strong> &gt; <strong id="cce_01_0013__b11336173519133">Pods</strong>.</span></li><li id="cce_01_0013__li23014231555"><span>Click <strong id="cce_01_0013__b19516108195318">Delete</strong> at the same row as the pod to be deleted.</span><p><p id="cce_01_0013__p11245223162515">Read the system prompts carefully. A pod cannot be restored after it is deleted. Exercise caution when performing this operation.</p>
-</p></li><li id="cce_01_0013__li1566102365617"><span>Click <strong id="cce_01_0013__b1910253213588">Yes</strong> to delete the pod.</span><p><div class="note" id="cce_01_0013__note1933510551189"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0013__ul204031813191914"><li id="cce_01_0013__li7404151371913">If the node where the pod is located is unavailable or shut down and the workload cannot be deleted, you can forcibly delete the pod from the pod list on the workload details page.</li><li id="cce_01_0013__li10404113191914">Ensure that the storage volumes to be deleted are not used by other workloads. If these volumes are imported or have snapshots, you can only unbind them.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0013__section367274071320"><h4 class="sectiontitle">Helpful Links</h4><ul id="cce_01_0013__ul1423164118113"><li id="cce_01_0013__li184231841710"><a href="https://kubernetes.io/blog/2015/06/the-distributed-system-toolkit-patterns" target="_blank" rel="noopener noreferrer">The Distributed System Toolkit: Patterns for Composite Containers</a></li><li id="cce_01_0013__li24235411313"><a href="https://kubernetes.io/blog/2016/06/container-design-patterns/" target="_blank" rel="noopener noreferrer">Container Design Patterns</a></li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0014.html b/docs/cce/umn/cce_01_0014.html
deleted file mode 100644
index 160930bf..00000000
--- a/docs/cce/umn/cce_01_0014.html
+++ /dev/null
@@ -1,711 +0,0 @@
-<a name="cce_01_0014"></a><a name="cce_01_0014"></a>
-
-<h1 class="topictitle1">LoadBalancer</h1>
-<div id="body1522736584192"><div class="section" id="cce_01_0014__section19854101411508"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0014__p1858152125017">A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.</p>
-<p id="cce_01_0014__p18345124185316">The LoadBalancer access address is in the format of &lt;IP address of public network load balancer&gt;:&lt;access port&gt;, for example, <strong id="cce_01_0014__b11546131414542">10.117.117.117:80</strong>.</p>
-<p id="cce_01_0014__p7801158125217">In this access mode, requests are transmitted through an ELB load balancer to a node and then forwarded to the destination pod through the Service.</p>
-<div class="fignone" id="cce_01_0014__fig1454926316508"><span class="figcap"><b>Figure 1 </b>LoadBalancer</span><br><span><img id="cce_01_0014__image846021786" src="en-us_image_0000001163928763.png"></span></div>
-</div>
-<div class="section" id="cce_01_0014__section11642143794611"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0014__ul1801539464"><li id="cce_01_0014__li1529952816473">LoadBalancer Services allow workloads to be accessed from public networks through <strong id="cce_01_0014__b1511118124819">ELB</strong>. This access mode has the following restrictions:<ul id="cce_01_0014__ul1241483374717"><li id="cce_01_0014__li162242024131019">It is recommended that automatically created load balancers not be used by other resources. Otherwise, these load balancers cannot be completely deleted, causing residual resources.</li><li id="cce_01_0014__li1080453124610">Do not change the listener name for the load balancer in clusters of v1.15 and earlier. Otherwise, the load balancer cannot be accessed.</li></ul>
-</li><li id="cce_01_0014__li128551156114310">After a Service is created, if the <a href="#cce_01_0014__li36098269511">affinity setting</a> is switched from the cluster level to the node level, the connection tracing table will not be cleared. You are advised not to modify the Service affinity setting after the Service is created. If you need to modify it, create a Service again.</li><li id="cce_01_0014__li1553715571314">If the service affinity is set to the node level (that is, <strong id="cce_01_0014__b16405133417613">externalTrafficPolicy</strong> is set to <strong id="cce_01_0014__b12712364614">Local</strong>), the cluster may fail to access the Service by using the ELB address. For details, see <a href="#cce_01_0014__section52631714117">Why a Cluster Fails to Access Services by Using the ELB Address</a>.</li><li id="cce_01_0014__li62831358182017">CCE Turbo clusters support only cluster-level service affinity.</li><li id="cce_01_0014__li35821536336">Dedicated ELB load balancers can be used only in clusters of v1.17 and later.</li><li id="cce_01_0014__li12633182118309">The specifications of dedicated load balancers must use TCP/UDP (network load balancing) and support private networks. If the Service needs to support HTTP, the specifications of dedicated load balancers must use HTTP (application load balancing) in addition to TCP/UDP (network load balancing).</li><li id="cce_01_0014__li2627549105716">If you create a LoadBalancer Service on the CCE console, a random node port is automatically generated. If you use kubectl to create a LoadBalancer Service, a random node port is generated unless you specify one.</li><li id="cce_01_0014__li93797513138">In a CCE cluster, if the cluster-level affinity is configured for a LoadBalancer Service, requests are distributed to the node ports of each node using SNAT when entering the cluster. The number of node ports cannot exceed the number of available node ports on the node. If the Service affinity is at the node level (local), there is no such constraint. In a CCE Turbo cluster, this constraint applies to shared ELB load balancers, but not dedicated ones. You are advised to use dedicated ELB load balancers in CCE Turbo clusters.</li><li id="cce_01_0014__li1031414582416">When the cluster service forwarding (proxy) mode is IPVS, the node IP cannot be configured as the external IP of the Service. Otherwise, the node is unavailable.</li><li id="cce_01_0014__li942188187">Dedicated load balancers are available only in certain regions.</li></ul>
-</div>
-<div class="section" id="cce_01_0014__section744117150366"><a name="cce_01_0014__section744117150366"></a><a name="section744117150366"></a><h4 class="sectiontitle">Adding a Service When Creating a Workload</h4><p id="cce_01_0014__p10881143321716">You can set the Service when creating a workload on the CCE console. An Nginx workload is used as an example.</p>
-<ol id="cce_01_0014__ol361813335611"><li id="cce_01_0014__li4618033165"><span>In the <strong id="cce_01_0014__b922420532016">Set Application Access</strong> step of <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0216.html">Creating a DaemonSet</a>, click <strong id="cce_01_0014__b132258517209">Add Service</strong> and set the following parameters:</span><p><ul id="cce_01_0014__ul4309141961920"><li id="cce_01_0014__li11721165313480"><strong id="cce_01_0014__b1854241915209">Access Type</strong>: Select <strong id="cce_01_0014__b054721942011">LoadBalancer (ELB)</strong>.</li><li id="cce_01_0014__li1530917191197"><strong id="cce_01_0014__b10917172211209">Service Name</strong>: Specify a Service name, which can be the same as the workload name.</li><li id="cce_01_0014__li36098269511"><a name="cce_01_0014__li36098269511"></a><a name="li36098269511"></a><strong id="cce_01_0014__b1381692616208">Service Affinity:</strong><ul id="cce_01_0014__ul460912261519"><li id="cce_01_0014__li17623100818">Cluster level: The IP addresses and access ports of all nodes in a cluster can access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_01_0014__li54538251119">Node level: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
-</li></ul>
-<p id="cce_01_0014__p1496525517449"><strong id="cce_01_0014__b2520734162010">ELB Configuration</strong></p>
-<ul id="cce_01_0014__ul15989355204410"><li id="cce_01_0014__li615114472205"><strong id="cce_01_0014__b1530613016587">Elastic Load Balancer</strong>: A load balancer automatically distributes Internet access traffic to multiple nodes where the workload is located.<ul id="cce_01_0014__ul1015111471204"><li id="cce_01_0014__li71511747142014"><strong id="cce_01_0014__b1389718333212">Shared</strong>: Shared load balancers provide domain name- and URL-based route balancing. Resources are shared among load balancers, and the performance of a load balancer is affected by other load balancers.</li><li id="cce_01_0014__li21517475205"><strong id="cce_01_0014__b942641319277">Dedicated</strong>: Resources are exclusively used by a load balancer, and the performance of a load balancer is not affected by other load balancers. IPv6 is supported.<ul id="cce_01_0014__ul111518477205"><li id="cce_01_0014__li1015116471202"><strong id="cce_01_0014__b1113312115264">AZ</strong>: Dedicated load balancers can be deployed across AZs to provide higher reliability.</li><li id="cce_01_0014__li61521147132020"><strong id="cce_01_0014__b1825912614284">Subnet</strong>: subnet where the backend server of the load balancer is located.<p id="cce_01_0014__p13152147152010">Load balancers occupy different number of subnet IP addresses based on their specifications. Therefore, you are not advised to use the subnet CIDR blocks of other resources (such as clusters and nodes) as the load balancer subnet CIDR block.</p>
-</li><li id="cce_01_0014__li015244762017"><strong id="cce_01_0014__b19915593815">Specifications</strong>: Specifications determine the types of listeners that can be added to a load balancer. Select specifications that best fit your needs. </li></ul>
-</li></ul>
-<p id="cce_01_0014__p2015294716205">You can create <strong id="cce_01_0014__b1351217307197">public network</strong> or <strong id="cce_01_0014__b11513430201916">private network</strong> load balancers.</p>
-<ul id="cce_01_0014__ul18152184720205"><li id="cce_01_0014__li14152124712011"><strong id="cce_01_0014__b169841553164115">Public network</strong>: You can select an existing public network load balancer or have the system automatically create a new one.</li><li id="cce_01_0014__li21521447192013"><strong id="cce_01_0014__b35931110144717">Private network</strong>: You can select an existing private network load balancer or have the system automatically create a new private network load balancer.</li></ul>
-<div class="p" id="cce_01_0014__p2015224719208">The selected or created load balancer must be in the same VPC as the current cluster, and it must match the load balancer type (private or public network).<ul id="cce_01_0014__ul1515254715203"><li id="cce_01_0014__li1152174717201"><strong id="cce_01_0014__b119112984315">Enterprise Project</strong>: Select an enterprise project in which the load balancer is created.</li><li id="cce_01_0014__li3152847202016"><span class="uicontrol" id="cce_01_0014__uicontrol16145617134314"><b>Specifications</b></span>: This field is displayed only when you select <span class="uicontrol" id="cce_01_0014__uicontrol12145121711430"><b>Public network</b></span> and <span class="uicontrol" id="cce_01_0014__uicontrol2146131784313"><b>Automatically created</b></span> for <span class="uicontrol" id="cce_01_0014__uicontrol11146717134316"><b>Elastic Load Balancer</b></span>. You can click <span><img id="cce_01_0014__image01521647192018" src="en-us_image_0298565473.png"></span> to modify the name, specifications, billing mode, and bandwidth of the load balancer.</li><li id="cce_01_0014__li615284732011"><strong id="cce_01_0014__b153011418226">Algorithm Type</strong>: Three algorithms are available: weighted round robin, weighted least connections algorithm, or source IP hash.<div class="note" id="cce_01_0014__note4152144792011"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0014__ul171525479200"><li id="cce_01_0014__li17152647162010"><strong id="cce_01_0014__b8139183255011">Weighted round robin</strong>: Requests are forwarded to different servers based on their weights, which indicate server processing performance. Backend servers with higher weights receive proportionately more requests, whereas equal-weighted servers receive the same number of requests. This algorithm is often used for short connections, such as HTTP services.</li><li id="cce_01_0014__li1015217471202"><strong id="cce_01_0014__b9879547125012">Weighted least connections</strong>: In addition to the weight assigned to each server, the number of connections processed by each backend server is also considered. Requests are forwarded to the server with the lowest connections-to-weight ratio. Building on <strong id="cce_01_0014__b19132751145011">least connections</strong>, the <strong id="cce_01_0014__b71328516505">weighted least connections</strong> algorithm assigns a weight to each server based on their processing capability. This algorithm is often used for persistent connections, such as database connections.</li><li id="cce_01_0014__li16152147102013"><strong id="cce_01_0014__b8109955125015">Source IP hash</strong>: The source IP address of each request is calculated using the hash algorithm to obtain a unique hash key, and all backend servers are numbered. The generated key allocates the client to a particular server. This enables requests from different clients to be distributed in load balancing mode and ensures that requests from the same client are forwarded to the same server. This algorithm applies to TCP connections without cookies.</li></ul>
-</div></div>
-</li><li id="cce_01_0014__li415324792019"><strong id="cce_01_0014__b43411498117">Sticky Session</strong>: This function is disabled by default. You can select <strong id="cce_01_0014__b0394332121213">Based on source IP address</strong>. Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</li><li id="cce_01_0014__li715374762012"><strong id="cce_01_0014__b9887155318122">Health Check</strong>: This function is enabled by default. Enabling it will perform health checks on your load balancer. By default, the Service ports (Node Port and container port of the Service) is used for health check. You can also specify another port for health check. After the port is specified, a Service port (name: <strong id="cce_01_0014__b139950917106">cce-healthz</strong>; protocol: <strong id="cce_01_0014__b13327939131118">TCP</strong>) will be added for the Service.</li></ul>
-</div>
-</li><li id="cce_01_0014__li29894558447"><strong id="cce_01_0014__b89301584315175">Port Settings</strong><ul id="cce_01_0014__ul498917554444"><li id="cce_01_0014__li1398819558443"><strong id="cce_01_0014__b1639553111441">Protocol</strong>: protocol used by the Service.</li><li id="cce_01_0014__li18989195594412"><strong id="cce_01_0014__b12651144244413">Container Port</strong>: port defined in the container image and on which the workload listens. The Nginx application listens on port 80.</li><li id="cce_01_0014__li498916551441"><strong id="cce_01_0014__b32066328451">Access Port</strong>: port mapped to the container port at the load balancer's IP address. The workload can be accessed at &lt;<em id="cce_01_0014__i52440390451">Load balancer's IP address</em>&gt;:&lt;<em id="cce_01_0014__i1575184254517">Access port</em>&gt;. The port number range is 1–65535.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0014__li196461348133512"><span>After the configuration is complete, click <strong id="cce_01_0014__b9622143164520">OK</strong>.</span></li><li id="cce_01_0014__li1228622253914"><span>On the workload creation page, click <strong id="cce_01_0014__b589422994619">Next: Configure Advanced Settings</strong>. On the page displayed, click <strong id="cce_01_0014__b11899122919467">Create</strong>.</span></li><li id="cce_01_0014__li12600154835615"><span>After the workload is successfully created, choose <strong id="cce_01_0014__b117817534719">Workloads</strong> &gt; <strong id="cce_01_0014__b151781159474">Deployments</strong> or <strong id="cce_01_0014__b12178251471">Workloads</strong> &gt; <strong id="cce_01_0014__b1417917524718">StatefulSets</strong> on the CCE console. Click the name of the workload to view its details. On the workload details page, click the <strong id="cce_01_0014__b101796594715">Services</strong> tab and obtain the access address.</span><p><p id="cce_01_0014__p13242445123010"></p>
-</p></li><li id="cce_01_0014__li1687011439510"><span>Click the access address.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0014__section51925078171335"><h4 class="sectiontitle">Adding a Service After Creating a Workload</h4><p id="cce_01_0014__p10179127141512">You can set the Service after creating a workload. This has no impact on the workload status and takes effect immediately. The procedure is as follows:</p>
-<ol id="cce_01_0014__ol1321170617144"><li id="cce_01_0014__li5179649417144"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0014__b1467051915255">Resource Management</strong> &gt; <strong id="cce_01_0014__b467011982517">Network</strong>.</span></li><li id="cce_01_0014__li10922528184414"><span>On the <strong id="cce_01_0014__b17908151317258">Services</strong> tab page, click <strong id="cce_01_0014__b990811131253">Create Service</strong>.</span><p><p id="cce_01_0014__p183801585316">The parameters are the same as those in <a href="#cce_01_0014__section744117150366">Adding a Service When Creating a Workload</a>.</p>
-</p></li><li id="cce_01_0014__li34141012068"><span>Click <strong id="cce_01_0014__b6719252102911">Create</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0014__section1984211714368"><a name="cce_01_0014__section1984211714368"></a><a name="section1984211714368"></a><h4 class="sectiontitle">Using kubectl to Create a Service (Using an Existing Load Balancer)</h4><p id="cce_01_0014__p1626583075113">You can set the access type when creating a workload using kubectl. This section uses an Nginx workload as an example to describe how to add a LoadBalancer Service using kubectl.</p>
-<ol id="cce_01_0014__ol19191171513118"><li id="cce_01_0014__li713365518486"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0014__li1020013819415"><span>Create and edit the <strong id="cce_01_0014__b17995175442616">nginx-deployment.yaml</strong> and <strong id="cce_01_0014__b99952549261">nginx-elb-svc.yaml</strong> files.</span><p><p id="cce_01_0014__p9991172514276">The file names are user-defined. <strong id="cce_01_0014__b1245543612412">nginx-deployment.yaml</strong> and <strong id="cce_01_0014__b5316154117419">nginx-elb-svc.yaml</strong> are merely example file names.</p>
-<p id="cce_01_0014__p12826517192713"><strong id="cce_01_0014__b10826161752712">vi nginx-deployment.yaml</strong></p>
-<pre class="screen" id="cce_01_0014__screen108271017192718">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret</pre>
-<p id="cce_01_0014__p5699954164214"></p>
-<p id="cce_01_0014__p8828617202712"><strong id="cce_01_0014__b1282718173276">vi nginx-elb-svc.yaml</strong></p>
-<div class="note" id="cce_01_0014__note11622519165956"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0014__p37493813165956">Before enabling sticky session, ensure that the following conditions are met:</p>
-<ul id="cce_01_0014__ul1138349517031"><li id="cce_01_0014__li5546555417031">The workload protocol is TCP.</li><li id="cce_01_0014__li732857617050">Anti-affinity has been configured between pods of the workload. That is, all pods of the workload are deployed on different nodes. For details, see <a href="cce_01_0226.html">Workload-Node Anti-Affinity</a>.</li></ul>
-</div></div>
-<pre class="screen" id="cce_01_0014__screen1035116474393">apiVersion: v1 
-kind: Service 
-metadata: 
-  annotations:
-    <span style="color:#FF0000;">kubernetes.io/elb.id</span>: 3c7caa5a-a641-4bff-801a-feace27424b6          # Load balancer ID. Replace it with the actual value.
-    kubernetes.io/elb.class: performance                               # Load balancer type
-  name: nginx 
-spec: 
-  ports: 
-  - name: service0 
-    port: 80
-    protocol: TCP 
-    targetPort: 80
-  selector: 
-    app: nginx 
-  <span style="color:#FF0000;">type: LoadBalancer</span></pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0014__table5352104717398" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0014__row83526476396"><th align="left" class="cellrowborder" valign="top" width="24.85%" id="mcps1.3.5.3.2.2.8.2.5.1.1"><p id="cce_01_0014__p10352194713392">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.5.3.2.2.8.2.5.1.2"><p id="cce_01_0014__p157981414511">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.639999999999999%" id="mcps1.3.5.3.2.2.8.2.5.1.3"><p id="cce_01_0014__p173521147153917">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49.19%" id="mcps1.3.5.3.2.2.8.2.5.1.4"><p id="cce_01_0014__p1135224717395">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0014__row435284723911"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p1535274714391">kubernetes.io/elb.class</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p1968618512213">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p163521247103920">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p193521947123917">Select a proper load balancer type as required.</p>
-<p id="cce_01_0014__p163524473399">The value can be:</p>
-<ul id="cce_01_0014__ul16352114763920"><li id="cce_01_0014__li735384716395"><strong id="cce_01_0014__b3322231123015">union</strong>: shared load balancer</li><li id="cce_01_0014__li1535310477392"><strong id="cce_01_0014__b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
-<p id="cce_01_0014__p861911425283">Default value: <strong id="cce_01_0014__b66965531835">union</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0014__row8353174763911"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p6353144783916">kubernetes.io/elb.session-affinity-mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p157989412514">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p19353247143915">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p2353847153912">Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</p>
-<ul id="cce_01_0014__ul1135354733913"><li id="cce_01_0014__li1835312476397">Disabling sticky session: Do not set this parameter.</li><li id="cce_01_0014__li173535473393">Enabling sticky session: Set this parameter to <strong id="cce_01_0014__b117783514210">SOURCE_IP</strong>, indicating that the sticky session is based on the source IP address.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row6353194714393"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p235454793914">kubernetes.io/elb.session-affinity-option</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p177981347513">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p435474783911"><a href="#cce_01_0014__table43592047133910">Table 2</a> Object</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p11354154711399">This parameter specifies the sticky session timeout.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row43547471392"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p1735404763915">kubernetes.io/elb.id</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p2798174555">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p10354947203912">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p1435464793910">This parameter indicates the ID of a load balancer. The value can contain 1 to 100 characters.</p>
-<p id="cce_01_0014__p123611341161318">Mandatory when an existing load balancer is to be associated.</p>
-<p id="cce_01_0014__p735464753918"><strong id="cce_01_0014__b92881533114">Obtaining the load balancer ID:</strong></p>
-<p id="cce_01_0014__p1335417476396">On the management console, click <strong id="cce_01_0014__b51491214123112">Service List</strong>, and choose <strong id="cce_01_0014__b21501014163113">Networking</strong> &gt; <strong id="cce_01_0014__b14150171473116">Elastic Load Balance</strong>. Click the name of the target load balancer. On the <strong id="cce_01_0014__b141504140317">Summary</strong> tab page, find and copy the ID.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row13354124714392"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p1435534753920">kubernetes.io/elb.subnet-id</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p11798134154">-</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p16355204793913">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p13355154723918">This parameter indicates the ID of the subnet where the cluster is located. The value can contain 1 to 100 characters.</p>
-<ul id="cce_01_0014__ul93551647173917"><li id="cce_01_0014__li173557475394">Mandatory when a cluster of v1.11.7-r0 or earlier is to be automatically created.</li><li id="cce_01_0014__li13355164733914">Optional for clusters later than v1.11.7-r0.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row136381999318"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p88687101934">kubernetes.io/elb.lb-algorithm</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p4869141016313">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p19869210635">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p1486931014317">This parameter indicates the load balancing algorithm of the backend server group. The default value is <strong id="cce_01_0014__b354512211581">ROUND_ROBIN</strong>.</p>
-<p id="cce_01_0014__p486911016317">Options:</p>
-<ul id="cce_01_0014__ul2869210432"><li id="cce_01_0014__li14869110538"><strong id="cce_01_0014__b135818573559">ROUND_ROBIN</strong>: weighted round robin algorithm</li><li id="cce_01_0014__li48694101538"><strong id="cce_01_0014__b584112545610">LEAST_CONNECTIONS</strong>: weighted least connections algorithm</li><li id="cce_01_0014__li586941010316"><strong id="cce_01_0014__b55107885610">SOURCE_IP</strong>: source IP hash algorithm</li></ul>
-<p id="cce_01_0014__p78692010435">When the value is <strong id="cce_01_0014__b7386731105614">SOURCE_IP</strong>, the weights of backend servers in the server group are invalid.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row53581147103917"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p1986921014314">kubernetes.io/elb.health-check-flag</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p886910101038">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p786920109319">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p168696109319">Whether to enable the ELB health check.</p>
-<p id="cce_01_0014__p148701510835">Enabled by default.</p>
-<ul id="cce_01_0014__ul10870710633"><li id="cce_01_0014__li1387013101036">Enabling health check: Leave blank this parameter or set it to <strong id="cce_01_0014__b4744125603">on</strong>.</li><li id="cce_01_0014__li14870161011311">Disabling health check: Set this parameter to <strong id="cce_01_0014__b181956271601">off</strong>.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row3358194712396"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p1287011015315">kubernetes.io/elb.health-check-option</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p48707103318">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p187081019312"><a href="#cce_01_0014__table236017471397">Table 3</a> Object</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p7870111013310">ELB health check configuration items.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row83591847203914"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p1735944715392">port</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p67999417519">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p6359134716391">Integer</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p13359647163913">Access port that is registered on the load balancer and mapped to the cluster-internal IP address.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row7359447173918"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.8.2.5.1.1 "><p id="cce_01_0014__p3359124753916">targetPort</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.8.2.5.1.2 "><p id="cce_01_0014__p127991041253">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.8.2.5.1.3 "><p id="cce_01_0014__p4359184712395">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.8.2.5.1.4 "><p id="cce_01_0014__p135924733911">Container port set on the CCE console.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0014__table43592047133910"></a><a name="table43592047133910"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0014__table43592047133910" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data structure of the elb.session-affinity-option field</caption><thead align="left"><tr id="cce_01_0014__row23591547163913"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.5.3.2.2.9.2.5.1.1"><p id="cce_01_0014__p6359124763911">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="12.139999999999999%" id="mcps1.3.5.3.2.2.9.2.5.1.2"><p id="cce_01_0014__p8442205011314">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.69%" id="mcps1.3.5.3.2.2.9.2.5.1.3"><p id="cce_01_0014__p23601947173914">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49.220000000000006%" id="mcps1.3.5.3.2.2.9.2.5.1.4"><p id="cce_01_0014__p19360647113911">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0014__row1236084719399"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_01_0014__p1636019470393">persistence_timeout</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.139999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_01_0014__p164427503134">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.69%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_01_0014__p1236084793919">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.220000000000006%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_01_0014__p12360147143917">Sticky session timeout, in minutes. This parameter is valid only when <strong id="cce_01_0014__b1651462119461">elb.session-affinity-mode</strong> is set to <strong id="cce_01_0014__b973718232469">SOURCE_IP</strong>.</p>
-<p id="cce_01_0014__p0360204713398">Value range: 1 to 60. Default value: <strong id="cce_01_0014__b83331032104616">60</strong></p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0014__table236017471397"></a><a name="table236017471397"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0014__table236017471397" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Data structure description of the <strong id="cce_01_0014__b209486325462">elb.health-check-option</strong> field</caption><thead align="left"><tr id="cce_01_0014__row336018475396"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.5.3.2.2.10.2.5.1.1"><p id="cce_01_0014__p15360184723911">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.5.3.2.2.10.2.5.1.2"><p id="cce_01_0014__p139932420145">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.5%" id="mcps1.3.5.3.2.2.10.2.5.1.3"><p id="cce_01_0014__p1036074715392">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49.230000000000004%" id="mcps1.3.5.3.2.2.10.2.5.1.4"><p id="cce_01_0014__p036084733912">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0014__row1136012478397"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p1736074717393">delay</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p2099132416147">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p1360144773911">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p7361154710397">Initial waiting time (in seconds) for starting the health check.</p>
-<p id="cce_01_0014__p17361184715394">Value range: 1 to 50. Default value: <strong id="cce_01_0014__b0772113914818">5</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0014__row163618473395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p636114763916">timeout</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p69919246147">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p103611347123914">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p113611447183912">Health check timeout, in seconds.</p>
-<p id="cce_01_0014__p143612047133913">Value range: 1 to 50. Default value: <strong id="cce_01_0014__b166661875494">10</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0014__row18361154723913"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p136144716396">max_retries</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p166343581149">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p17361114717395">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p14361114712397">Maximum number of health check retries.</p>
-<p id="cce_01_0014__p6361114733910">Value range: 1 to 10. Default value: <strong id="cce_01_0014__b940918204498">3</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0014__row9361104720394"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p1636111476395">protocol</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p763495881417">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p14361144716395">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p15361164723916">Health check protocol.</p>
-<p id="cce_01_0014__p2361204719390">Default value: protocol of the associated Service</p>
-<p id="cce_01_0014__p143617474391">Value options: TCP, UDP_CONNECT, or HTTP</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row036113475395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p93612047133915">path</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p159952471418">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p13361747173915">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p6361647183913">Health check URL. This parameter needs to be configured when the protocol is HTTP.</p>
-<p id="cce_01_0014__p636184753911">Default value: <strong id="cce_01_0014__b2032803325105021">/</strong></p>
-<p id="cce_01_0014__p8361847153910">The value contains 1 to 10,000 characters.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0014__li72314917413"><span>Create a workload.</span><p><p id="cce_01_0014__p3315182011255"><strong id="cce_01_0014__b56467233250">kubectl create -f nginx-deployment.yaml</strong></p>
-<p id="cce_01_0014__p19710857162712">If information similar to the following is displayed, the workload has been created.</p>
-<pre class="screen" id="cce_01_0014__screen16991756142716">deployment "nginx" created</pre>
-<p id="cce_01_0014__p11761214251"><strong id="cce_01_0014__b96501723152519">kubectl get pod</strong></p>
-<p id="cce_01_0014__p148435115281">If information similar to the following is displayed, the workload is running.</p>
-<pre class="screen" id="cce_01_0014__screen1257212072815">NAME                     READY     STATUS             RESTARTS   AGE
-<strong id="cce_01_0014__b169455915281">nginx-2601814895-c1xwh   1/1       Running            0          6s</strong></pre>
-</p></li><li id="cce_01_0014__li533223116253"><span>Create a Service.</span><p><p id="cce_01_0014__p56441354202519"><strong id="cce_01_0014__b819441152615">kubectl create -f nginx-elb-svc.yaml</strong></p>
-<p id="cce_01_0014__p115908595306">If information similar to the following is displayed, the Service has been created.</p>
-<pre class="screen" id="cce_01_0014__screen63017536304">service "nginx" created</pre>
-<p id="cce_01_0014__p123535511259"><strong id="cce_01_0014__b141981712260">kubectl get svc</strong></p>
-<p id="cce_01_0014__p3841216318">If information similar to the following is displayed, the access type has been set successfully, and the workload is accessible.</p>
-<pre class="screen" id="cce_01_0014__screen391817433116">NAME         TYPE           CLUSTER-IP       EXTERNAL-IP   PORT(S)        AGE
-kubernetes   ClusterIP      10.247.0.1       &lt;none&gt;        443/TCP        3d
-<strong id="cce_01_0014__b1214411223310">nginx        LoadBalancer   10.247.130.196   10.78.42.242   80:31540/TCP   51s</strong></pre>
-</p></li><li id="cce_01_0014__li167017242"><span>Enter the URL in the address box of the browser, for example, <strong id="cce_01_0014__b842352706164951">10.78.42.242:80</strong>. <strong id="cce_01_0014__b84235270616505">10.78.42.242</strong> indicates the IP address of the load balancer, and <strong id="cce_01_0014__b842352706165024">80</strong> indicates the access port displayed on the CCE console.</span><p><p id="cce_01_0014__p167058343415">The Nginx is accessible.</p>
-<div class="fignone" id="cce_01_0014__fig1498213713356"><span class="figcap"><b>Figure 2 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_01_0014__image4983479359" src="en-us_image_0276664171.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0014__section12168131904611"><h4 class="sectiontitle">Using kubectl to Create a Service (Automatically Creating a Load Balancer)</h4><p id="cce_01_0014__p1036918271467">You can add a Service when creating a workload using kubectl. This section uses an Nginx workload as an example to describe how to add a LoadBalancer Service using kubectl.</p>
-<ol id="cce_01_0014__ol1236962794610"><li id="cce_01_0014__li103401710124914"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0014__li337012724615"><span>Create and edit the <strong id="cce_01_0014__b1064324216">nginx-deployment.yaml</strong> and <strong id="cce_01_0014__b694380552">nginx-elb-svc.yaml</strong> files.</span><p><p id="cce_01_0014__p1137014271463">The file names are user-defined. <strong id="cce_01_0014__b802014346">nginx-deployment.yaml</strong> and <strong id="cce_01_0014__b471479382">nginx-elb-svc.yaml</strong> are merely example file names.</p>
-<p id="cce_01_0014__p153702275465"><strong id="cce_01_0014__b13370127184617">vi nginx-deployment.yaml</strong></p>
-<pre class="screen" id="cce_01_0014__screen17370112710466">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret</pre>
-<p id="cce_01_0014__p1937115274469"></p>
-<p id="cce_01_0014__p4371142734620"><strong id="cce_01_0014__b1371142717469">vi nginx-elb-svc.yaml</strong></p>
-<div class="note" id="cce_01_0014__note1237142704611"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0014__p1237242714464">Before enabling sticky session, ensure that the following conditions are met:</p>
-<ul id="cce_01_0014__ul1637272764617"><li id="cce_01_0014__li337202718462">The workload protocol is TCP.</li><li id="cce_01_0014__li143721027164615">Anti-affinity has been configured between pods of the workload. That is, all pods of the workload are deployed on different nodes. For details, see <a href="cce_01_0226.html">Workload-Node Anti-Affinity</a>.</li></ul>
-</div></div>
-<div class="p" id="cce_01_0014__p188357109471">Example of a Service using a shared, public network load balancer:<pre class="screen" id="cce_01_0014__screen43927275469">apiVersion: v1 
-kind: Service 
-metadata: 
-  annotations:   
-    kubernetes.io/elb.class: <span style="color:#FF0000;">union</span>
-    kubernetes.io/elb.<span style="color:#FF0000;">autocreate</span>: 
-        '{
-            "type": "public",
-            "bandwidth_name": "cce-bandwidth-1551163379627",
-            "bandwidth_chargemode":"traffic",
-            "bandwidth_size": 5,
-            "bandwidth_sharetype": "PER",
-            "eip_type": "5_bgp",
-            "name": "james"
-        }'
-  labels: 
-    app: nginx 
-  name: nginx 
-spec: 
-  ports: 
-  - name: service0 
-    port: 80
-    protocol: TCP 
-    targetPort: 80
-  selector: 
-    app: nginx 
-  type: LoadBalancer</pre>
-</div>
-<p id="cce_01_0014__p750946894">Example of a Service using a dedicated, public network load balancer:</p>
-<pre class="screen" id="cce_01_0014__screen182962282208">apiVersion: v1
-kind: Service
-metadata:
-  name: nginx
-  labels:
-    app: nginx
-  namespace: default
-  annotations:
-    kubernetes.io/elb.class: <span style="color:#FF0000;">performance</span>
-    kubernetes.io/elb.<span style="color:#FF0000;">autocreate</span>: 
-        '{
-            "type": "public",
-            "bandwidth_name": "cce-bandwidth-1626694478577",
-            "bandwidth_chargemode": "traffic",
-            "bandwidth_size": 5,
-            "bandwidth_sharetype": "PER",
-            "eip_type": "5_bgp",
-            <span style="color:#FF0000;">"available_zone": [</span>
-                "<span id="cce_01_0014__text106391359594">eu-de-01</span>"
-<span style="color:#FF0000;">            ],</span>
-<span style="color:#FF0000;">            "l4_flavor_name": "L4_flavor.elb.s1.small"</span>
-        }'
-spec:
-  selector:
-    app: nginx
-  ports:
-  - name: cce-service-0
-    targetPort: 80
-    nodePort: 0
-    port: 80
-    protocol: TCP
-  type: LoadBalancer</pre>
-
-<div class="tablenoborder"><a name="cce_01_0014__table133089105019"></a><a name="table133089105019"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0014__table133089105019" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0014__row11330199501"><th align="left" class="cellrowborder" valign="top" width="24.85%" id="mcps1.3.6.3.2.2.10.2.5.1.1"><p id="cce_01_0014__p173306915017">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.6.3.2.2.10.2.5.1.2"><p id="cce_01_0014__p173308910507">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.639999999999999%" id="mcps1.3.6.3.2.2.10.2.5.1.3"><p id="cce_01_0014__p233039175014">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49.19%" id="mcps1.3.6.3.2.2.10.2.5.1.4"><p id="cce_01_0014__p133301795508">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0014__row433017915509"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p17331159135017">kubernetes.io/elb.class</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p173313910501">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p5331189115017">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p17331169135014">Select a proper load balancer type as required.</p>
-<p id="cce_01_0014__p143311298508">The value can be:</p>
-<ul id="cce_01_0014__ul3415201212612"><li id="cce_01_0014__cce_01_0014_li735384716395"><strong id="cce_01_0014__cce_01_0014_b3322231123015">union</strong>: shared load balancer</li><li id="cce_01_0014__cce_01_0014_li1535310477392"><strong id="cce_01_0014__cce_01_0014_b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
-<p id="cce_01_0014__p733118975010">Default value: <strong id="cce_01_0014__cce_01_0014_b66965531835">union</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0014__row790233013543"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p143324917501">kubernetes.io/elb.subnet-id</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p233212945015">-</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p133327917509">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p7332119105010">This parameter indicates the ID of the subnet where the cluster is located. The value can contain 1 to 100 characters.</p>
-<ul id="cce_01_0014__ul19332189145019"><li id="cce_01_0014__li14332109185017">Mandatory when a cluster of v1.11.7-r0 or earlier is to be automatically created.</li><li id="cce_01_0014__li203324919509">Optional for clusters later than v1.11.7-r0.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row523155017545"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p433229115017">kubernetes.io/elb.enterpriseID</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p193321994506">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p123331599500">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p1833312925015"><strong id="cce_01_0014__b2884152682618">Clusters of v1.15 and later versions support this field. In clusters earlier than v1.15, load balancers are created in the default project by default.</strong></p>
-<p id="cce_01_0014__p153331592508">This parameter indicates the ID of the enterprise project in which the ELB load balancer will be created.</p>
-<p id="cce_01_0014__p63331395501">If this parameter is not specified or is set to <strong id="cce_01_0014__b9723185516351">0</strong>, resources will be bound to the default enterprise project.</p>
-<p id="cce_01_0014__p233313917501"><strong id="cce_01_0014__b1281203313363">How to obtain</strong>:</p>
-<p id="cce_01_0014__p833389105013">Log in to the management console and choose <strong id="cce_01_0014__b11561038103619">Enterprise</strong> &gt; <strong id="cce_01_0014__b1815719383369">Project Management</strong> on the top menu bar. In the list displayed, click the name of the target enterprise project, and copy the ID on the enterprise project details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row1133114925015"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p13312912502">kubernetes.io/elb.session-affinity-option</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p2331179195013">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p8331199185014"><a href="#cce_01_0014__table43592047133910">Table 2</a> Object</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p1233116911506">Sticky session timeout.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row8332096503"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p839452715462">kubernetes.io/elb.autocreate</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p143944279464">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p1539432714615"><a href="#cce_01_0014__table939522754617">elb.autocreate</a> object</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p3394827134612">Whether to automatically create a load balancer associated with the Service.</p>
-<p id="cce_01_0014__p113941527154613"><strong id="cce_01_0014__b188439451227">Example:</strong></p>
-<ul id="cce_01_0014__ul17394182711462"><li id="cce_01_0014__li1939492713460">Automatically created public network load balancer:<p id="cce_01_0014__p339413273467"><a name="cce_01_0014__li1939492713460"></a><a name="li1939492713460"></a>{"type":"public","bandwidth_name":"cce-bandwidth-1551163379627","bandwidth_chargemode":"traffic","bandwidth_size":5,"bandwidth_sharetype":"PER","eip_type":"5_bgp","name":"james"}</p>
-</li><li id="cce_01_0014__li1939417272469">Automatically created private network load balancer:<p id="cce_01_0014__p14395132717468"><a name="cce_01_0014__li1939417272469"></a><a name="li1939417272469"></a>{"type":"inner","name":"A-location-d-test"}</p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row1333313918508"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p1133339115016">kubernetes.io/elb.lb-algorithm</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p16333139115018">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p933315995019">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p0333699508">This parameter indicates the load balancing algorithm of the backend server group. The default value is <strong id="cce_01_0014__b843526592">ROUND_ROBIN</strong>.</p>
-<p id="cce_01_0014__p6333198503">Options:</p>
-<ul id="cce_01_0014__ul13337919508"><li id="cce_01_0014__li3333893501"><strong id="cce_01_0014__b878515527">ROUND_ROBIN</strong>: weighted round robin algorithm</li><li id="cce_01_0014__li93331191509"><strong id="cce_01_0014__b1865251666">LEAST_CONNECTIONS</strong>: weighted least connections algorithm</li><li id="cce_01_0014__li1333379105016"><strong id="cce_01_0014__b1453807041">SOURCE_IP</strong>: source IP hash algorithm</li></ul>
-<p id="cce_01_0014__p833315910507">When the value is <strong id="cce_01_0014__b6145295">SOURCE_IP</strong>, the weights of backend servers in the server group are invalid.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row1533329185018"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p1533313905015">kubernetes.io/elb.health-check-flag</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p43331394508">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p16333993504">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p1833315910509">Whether to enable the ELB health check.</p>
-<p id="cce_01_0014__p1233320913508">Disabled by default.</p>
-<ul id="cce_01_0014__ul19333199205012"><li id="cce_01_0014__li8333109155020">Enabling health check: Leave blank this parameter or set it to <strong id="cce_01_0014__b373250804">on</strong>.</li><li id="cce_01_0014__li103330914504">Disabling health check: Set this parameter to <strong id="cce_01_0014__b1418060420">off</strong>.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row14334169195010"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p43341794509">kubernetes.io/elb.health-check-option</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p113349935012">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p113341919507"><a href="#cce_01_0014__table236017471397">Table 3</a> Object</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p933489175020">ELB health check configuration items.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row638444875814"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p9331159155018">kubernetes.io/elb.session-affinity-mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p7331179125018">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p43315965016">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p533113915503">Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</p>
-<ul id="cce_01_0014__ul113311191508"><li id="cce_01_0014__li11331189195017">Disabling sticky session: Do not set this parameter.</li><li id="cce_01_0014__li133313914502">Enabling sticky session: Set this parameter to <strong id="cce_01_0014__b1063702220">SOURCE_IP</strong>, indicating that the sticky session is based on the source IP address.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row1421317512156"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p12624252121514">kubernetes.io/elb.session-affinity-option</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p662415526159">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p116241552181515"><a href="#cce_01_0014__table43592047133910">Table 2</a> Object</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p5624145218150">Sticky session timeout.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row619410431615"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p93349995013">kubernetes.io/hws-hostNetwork</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p1433413905019">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p33341990503">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p6334798502">This parameter indicates whether the workload Services use the host network. Setting this parameter to <strong id="cce_01_0014__b86031650134918">true</strong> will enable the load balancer to forward requests to the host network.</p>
-<p id="cce_01_0014__p14334095506">The host network is not used by default. The value can be <strong id="cce_01_0014__b9191147134115">true</strong> or <strong id="cce_01_0014__b1919144764120">false</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row933412905011"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.6.3.2.2.10.2.5.1.1 "><p id="cce_01_0014__p12334129155012">externalTrafficPolicy</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.6.3.2.2.10.2.5.1.2 "><p id="cce_01_0014__p113346910501">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.6.3.2.2.10.2.5.1.3 "><p id="cce_01_0014__p1833499135011">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.6.3.2.2.10.2.5.1.4 "><p id="cce_01_0014__p1533411945011">If sticky session is enabled, add this parameter so that requests are transferred to a fixed node. If a LoadBalancer Service with this parameter set to <strong id="cce_01_0014__b5207205820419">Local</strong> is created, a client can access the target backend only if the client is installed on the same node as the backend.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0014__table939522754617"></a><a name="table939522754617"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0014__table939522754617" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Data structure of the elb.autocreate field</caption><thead align="left"><tr id="cce_01_0014__row183958279468"><th align="left" class="cellrowborder" valign="top" width="26.96%" id="mcps1.3.6.3.2.2.11.2.5.1.1"><p id="cce_01_0014__p439572712466">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="12.08%" id="mcps1.3.6.3.2.2.11.2.5.1.2"><p id="cce_01_0014__p5395162716461">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.25%" id="mcps1.3.6.3.2.2.11.2.5.1.3"><p id="cce_01_0014__p1839522764612">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="47.71%" id="mcps1.3.6.3.2.2.11.2.5.1.4"><p id="cce_01_0014__p13395182713462">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0014__row17395132744615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p239612715462">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p939602714615">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p039672712468">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p1939611278467">Name of the automatically created load balancer.</p>
-<p id="cce_01_0014__p1339672794620">Value range: a string of 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
-<p id="cce_01_0014__p1039616277465">Default name: <strong id="cce_01_0014__b4743102120314">cce-lb+service.UID</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0014__row153968276468"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p1939617273464">type</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p1739622713461">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p16396102784619">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p14396172764615">Network type of the load balancer.</p>
-<ul id="cce_01_0014__ul23961827154617"><li id="cce_01_0014__li8396127154616"><strong id="cce_01_0014__b1121645643414">public</strong>: public network load balancer</li><li id="cce_01_0014__li73971827184618"><strong id="cce_01_0014__b383111529316">inner</strong>: private network load balancer</li></ul>
-<p id="cce_01_0014__p539752754611">Default value: <strong id="cce_01_0014__b64071431273">inner</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0014__row2397927194613"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p12397122718464">bandwidth_name</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p1129745332217">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p16397182734610">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p113972278461">Bandwidth name. The default value is <strong id="cce_01_0014__b10901181916366">cce-bandwidth-******</strong>.</p>
-<p id="cce_01_0014__p1439717273462">Value range: a string of 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row1439722794619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p7397182720466">bandwidth_chargemode</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p71019556225">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p193974278460">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p83981227124616">Bandwidth billing mode.</p>
-<ul id="cce_01_0014__ul33989277466"><li id="cce_01_0014__li239818275466"><strong id="cce_01_0014__b842352706184041">traffic</strong>: billed by traffic</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row19398122716461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p739892794619">bandwidth_size</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p639862719463">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p439882734619">Integer</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p14398927134615">Bandwidth size. The default value is 1 to 2000 Mbit/s. Set this parameter based on the bandwidth range allowed in your region.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row193991627164615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p15399627174614">bandwidth_sharetype</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p1239962754620">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p4399327124618">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p6399227154620">Bandwidth sharing mode.</p>
-<ul id="cce_01_0014__ul1539932712464"><li id="cce_01_0014__li163992272465"><strong id="cce_01_0014__b1753918428519">PER</strong>: dedicated bandwidth</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row139952712463"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p1139952764611">eip_type</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p266247192314">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p84001027124612">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p440013273464">EIP type, which may vary depending on sites. For details, see the type parameter specified when <a href="https://docs.otc.t-systems.com/api/eip/eip_api_0001.html#eip_api_0001__en-us_topic_0201534274_table44471219" target="_blank" rel="noopener noreferrer">creating an EIP</a>.</p>
-<ul id="cce_01_0014__ul18765175214406"><li id="cce_01_0014__li27656521408"><strong id="cce_01_0014__b572720271246">5_bgp</strong>: dynamic BGP</li><li id="cce_01_0014__li18126733269"><strong id="cce_01_0014__b73411841202113">5_gray</strong>: dedicated load balancer</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0014__row20400102713466"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p140015271469">available_zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p15400727164618">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p04001927144618">Array of strings</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p64001827194610">AZ where the load balancer is located.</p>
-<p id="cce_01_0014__p2040082784615">This parameter is available only for dedicated load balancers.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row12400122734616"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p040102718464">l4_flavor_name</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p74011327184614">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p4401227124615">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p124018276462">Flavor name of the layer-4 load balancer.</p>
-<p id="cce_01_0014__p16615412105">This parameter is available only for dedicated load balancers.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row64018274461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p94015275467">l7_flavor_name</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p1840182714466">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p5401132754612">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p540115278464">Flavor name of the layer-7 load balancer.</p>
-<p id="cce_01_0014__p439195851013">This parameter is available only for dedicated load balancers.</p>
-</td>
-</tr>
-<tr id="cce_01_0014__row17401027104619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.6.3.2.2.11.2.5.1.1 "><p id="cce_01_0014__p2040112275467">elb_virsubnet_ids</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.6.3.2.2.11.2.5.1.2 "><p id="cce_01_0014__p040262754619">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.6.3.2.2.11.2.5.1.3 "><p id="cce_01_0014__p1540222710464">Array of strings</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.6.3.2.2.11.2.5.1.4 "><p id="cce_01_0014__p723243152212">Subnet where the backend server of the load balancer is located. If this parameter is left blank, the default cluster subnet is used.</p>
-<p id="cce_01_0014__p1840292719463">Load balancers occupy different number of subnet IP addresses based on their specifications. Therefore, you are not advised to use the subnet CIDR blocks of other resources (such as clusters and nodes) as the load balancer CIDR block.</p>
-<p id="cce_01_0014__p3476173161118">This parameter is available only for dedicated load balancers.</p>
-<p id="cce_01_0014__p443144042612">Example:</p>
-<pre class="screen" id="cce_01_0014__screen18587145018263">"elb_virsubnet_ids": [
-   "14567f27-8ae4-42b8-ae47-9f847a4690dd"
- ]</pre>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0014__li15402142716465"><span>Create a workload.</span><p><p id="cce_01_0014__p1040212715468"><strong id="cce_01_0014__b940222744618">kubectl create -f nginx-deployment.yaml</strong></p>
-<p id="cce_01_0014__p134024278467">If information similar to the following is displayed, the workload is being created.</p>
-<pre class="screen" id="cce_01_0014__screen54024274462">deployment "nginx" created</pre>
-<p id="cce_01_0014__p154021027174617"><strong id="cce_01_0014__b6402112718467">kubectl get po</strong></p>
-<p id="cce_01_0014__p4402142716462">If information similar to the following is displayed, the workload is running.</p>
-<pre class="screen" id="cce_01_0014__screen840252717462">NAME                     READY     STATUS             RESTARTS   AGE
-<strong id="cce_01_0014__b19403727114611">nginx-2601814895-c1xwh   1/1       Running            0          6s</strong></pre>
-</p></li><li id="cce_01_0014__li64031827194611"><span>Create a Service.</span><p><p id="cce_01_0014__p9403127134610"><strong id="cce_01_0014__b1940312714467">kubectl create -f nginx-elb-svc.yaml</strong></p>
-<p id="cce_01_0014__p9403172717465">If information similar to the following is displayed, the Service has been created.</p>
-<pre class="screen" id="cce_01_0014__screen184036279461">service "nginx" created</pre>
-<p id="cce_01_0014__p194039277461"><strong id="cce_01_0014__b54038273469">kubectl get svc</strong></p>
-<p id="cce_01_0014__p04031627124616">If information similar to the following is displayed, the access type has been set successfully, and the workload is accessible.</p>
-<pre class="screen" id="cce_01_0014__screen94033273464">NAME         TYPE           CLUSTER-IP       EXTERNAL-IP   PORT(S)        AGE
-kubernetes   ClusterIP      10.247.0.1       &lt;none&gt;        443/TCP        3d
-<strong id="cce_01_0014__b15405527194615">nginx        LoadBalancer   10.247.130.196   10.78.42.242   80:31540/TCP   51s</strong></pre>
-</p></li><li id="cce_01_0014__li1940672734614"><span>Enter the URL in the address box of the browser, for example, <strong id="cce_01_0014__b1646891363">10.78.42.242:80</strong>. <strong id="cce_01_0014__b99255221">10.78.42.242</strong> indicates the IP address of the load balancer, and <strong id="cce_01_0014__b2076494490">80</strong> indicates the access port displayed on the CCE console.</span><p><p id="cce_01_0014__p184066272466">The Nginx is accessible.</p>
-<div class="fignone" id="cce_01_0014__fig2406102717469"><span class="figcap"><b>Figure 3 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_01_0014__image13406827194620" src="en-us_image_0000001093275701.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0014__section52631714117"><a name="cce_01_0014__section52631714117"></a><a name="section52631714117"></a><h4 class="sectiontitle">Why a Cluster Fails to Access Services by Using the ELB Address</h4><p id="cce_01_0014__p4833134814113">If the service affinity of a LoadBalancer Service is set to the node level, that is, the value of <strong id="cce_01_0014__b5987183511139">externalTrafficPolicy</strong> is <strong id="cce_01_0014__b37861837171312">Local</strong>, the ELB address may fail to be accessed from the cluster (specifically, nodes or containers).</p>
-<p id="cce_01_0014__p19340172031518">This is because when the LoadBalancer Service is created, kube-proxy adds the ELB access address (external-ip) to iptables or IPVS. When the ELB address is accessed from the cluster, the ELB load balancer is not used. Instead, kube-proxy directly forwards the access request. The case depends on which container network model and service forwarding mode you use.</p>
-<p id="cce_01_0014__p493719291203">The following methods can be used to solve this problem:</p>
-<ul id="cce_01_0014__ul141811413314"><li id="cce_01_0014__li34181541335">(<strong id="cce_01_0014__b16141017112014">Recommended</strong>) In the cluster, use the ClusterIP Service or service domain name for access.</li><li id="cce_01_0014__li63557281418">Set <strong id="cce_01_0014__b17519115202011">externalTrafficPolicy</strong> of the Service to <strong id="cce_01_0014__b5662155716204">Cluster</strong>, which means cluster-level service affinity. Note that this affects source address persistence.<pre class="screen" id="cce_01_0014__screen422315222107">apiVersion: v1 
-kind: Service
-metadata: 
-  annotations:   
-    kubernetes.io/elb.class: union
-    kubernetes.io/elb.autocreate: '{"type":"public","bandwidth_name":"cce-bandwidth","bandwidth_chargemode":"traffic","bandwidth_size":5,"bandwidth_sharetype":"PER","eip_type":"5_bgp","name":"james"}'
-  labels: 
-    app: nginx 
-  name: nginx 
-spec: 
-  <span style="color:#FF0000;">externalTrafficPolicy: Cluster</span>
-  ports: 
-  - name: service0 
-    port: 80
-    protocol: TCP 
-    targetPort: 80
-  selector: 
-    app: nginx 
-  type: LoadBalancer</pre>
-</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0247.html">Services</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0016.html b/docs/cce/umn/cce_01_0016.html
deleted file mode 100644
index 737f296c..00000000
--- a/docs/cce/umn/cce_01_0016.html
+++ /dev/null
@@ -1,86 +0,0 @@
-<a name="cce_01_0016"></a><a name="cce_01_0016"></a>
-
-<h1 class="topictitle1">Using a Secret</h1>
-<div id="body1523236302435"><div class="notice" id="cce_01_0016__note13556115019429"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0016__p39918120437">The following secrets are used by the CCE system. Do not perform any operations on them.</p>
-<ul id="cce_01_0016__ul13678122414717"><li id="cce_01_0016__li19678132424718">Do not operate secrets under kube-system.</li><li id="cce_01_0016__li206781324204718">Do not operate default-secret and paas.elb in any of the namespaces. The default-secret is used to pull the private image of SWR, and the paas.elb is used to connect the service in the namespace to the ELB service.</li></ul>
-</div></div>
-<ul id="cce_01_0016__ul784252913353"><li id="cce_01_0016__li0842229163518"><a href="#cce_01_0016__section472505211214">Configuring the Data Volume of a Pod</a></li><li id="cce_01_0016__li56474053519"><a href="#cce_01_0016__section207271352141216">Setting Environment Variables of a Pod</a></li></ul>
-<p id="cce_01_0016__p1119921953413">The following example shows how to use a secret.</p>
-<pre class="screen" id="cce_01_0016__screen1032654214366">apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  username: ****** #The value must be Base64-encoded.
-  password: ******  #The value must be encoded using Base64.</pre>
-<div class="notice" id="cce_01_0016__note250219438139"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0016__p132702112389">When a secret is used in a pod, the pod and secret must be in the same cluster and namespace.</p>
-</div></div>
-<div class="section" id="cce_01_0016__section472505211214"><a name="cce_01_0016__section472505211214"></a><a name="section472505211214"></a><h4 class="sectiontitle">Configuring the Data Volume of a Pod</h4><div class="p" id="cce_01_0016__p9949138153913">A secret can be used as a file in a pod. As shown in the following example, the username and password of the <strong id="cce_01_0016__b18969914308">mysecret </strong>secret are saved in the <strong id="cce_01_0016__b396199143010">/etc/foo</strong> directory as files.<pre class="screen" id="cce_01_0016__screen1237163595414">apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: <span style="color:#FF0000;">mysecret</span></pre>
-</div>
-<div class="p" id="cce_01_0016__p234055713124">In addition, you can specify the directory and permission to access a secret. The username is stored in the <strong id="cce_01_0016__b5930378811228">/etc/foo/my-group/my-username</strong> directory of the container.<pre class="screen" id="cce_01_0016__screen12711144211311">apiVersion: v1
-kind: Pod
-metadata:
-  name: mypod
-spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
-    - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: <span style="color:#FF0000;">mysecret</span>
-      items:
-      - key: <span style="color:#FF0000;">username</span>
-        path: <span style="color:#FF0000;">my-group/my-username</span>
-        mode: <span style="color:#FF0000;">511</span></pre>
-</div>
-<p id="cce_01_0016__p2031118172817">To mount a secret to a data volume, you can also perform operations on the CCE console. When creating a workload, set advanced settings for the container, choose <strong id="cce_01_0016__b159591743143117">Data Storage &gt; Local Volume</strong>, click <strong id="cce_01_0016__b89592043143116">Add Local Volume</strong>, and select <strong id="cce_01_0016__b10959144373116">Secret</strong>. For details, see <a href="cce_01_0053.html#cce_01_0053__en-us_topic_0000001199341206_section10197243134710">Secret</a>.</p>
-</div>
-<div class="section" id="cce_01_0016__section207271352141216"><a name="cce_01_0016__section207271352141216"></a><a name="section207271352141216"></a><h4 class="sectiontitle">Setting Environment Variables of a Pod</h4><div class="p" id="cce_01_0016__p765814229403">A secret can be used as an environment variable of a pod. As shown in the following example, the username and password of the <strong id="cce_01_0016__b106728345329">mysecret</strong> secret are defined as an environment variable of the pod.<pre class="screen" id="cce_01_0016__screen67991151399">apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-env-pod
-spec:
-  containers:
-  - name: mycontainer
-    image: redis
-    env:
-      - name: SECRET_USERNAME
-        valueFrom:
-          secretKeyRef:
-            name: <span style="color:#FF0000;">mysecret</span>
-            key: <span style="color:#FF0000;">username</span>
-      - name: SECRET_PASSWORD
-        valueFrom:
-          secretKeyRef:
-            name: <span style="color:#FF0000;">mysecret</span>
-            key: <span style="color:#FF0000;">password</span>
-  restartPolicy: Never</pre>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0045.html">Configuration Center</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0018.html b/docs/cce/umn/cce_01_0018.html
deleted file mode 100644
index a5f57dc6..00000000
--- a/docs/cce/umn/cce_01_0018.html
+++ /dev/null
@@ -1,217 +0,0 @@
-<a name="cce_01_0018"></a><a name="cce_01_0018"></a>
-
-<h1 class="topictitle1">Container Logs</h1>
-<div id="body1522667123001"><div class="section" id="cce_01_0018__section1629125493020"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0018__p157261918103214">CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.</p>
-<p id="cce_01_0018__p8060118">CCE works with AOM to collect workload logs. When a node is created, the ICAgent (the DaemonSet named <strong id="cce_01_0018__b844717419199">icagent</strong> in the kube-system namespace of the cluster) of AOM is installed by default. After the ICAgent collects workload logs and reports them to AOM, you can view workload logs on the CCE or AOM console.</p>
-<ul id="cce_01_0018__ul457271019313"><li id="cce_01_0018__li95721810435">By default, the ICAgent collects the standard outputs of containers. You do not need to perform any configuration.</li><li id="cce_01_0018__li867710564284">You can also configure the path for storing container logs when creating a workload so that the ICAgent collects logs from this path.<div class="p" id="cce_01_0018__p855218320413"><a name="cce_01_0018__li867710564284"></a><a name="li867710564284"></a>You can select either of the following modes for container logs:<ul id="cce_01_0018__ul1926614011410"><li id="cce_01_0018__li5266601416">HostPath: The host path is mounted to the specified container path (mount path). In the node host path, you can view the container logs output into the mount path.</li><li id="cce_01_0018__li11151123116426">EmptyDir: The temporary path of the node is mounted to the specified path (mount path). Log data that exists in the temporary path but is not reported by the collector to AOM will disappear after the pod is deleted.</li></ul>
-</div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0018__section17884754413"><h4 class="sectiontitle">Precautions</h4><p id="cce_01_0018__p23831558355">The ICAgent only collects <strong id="cce_01_0018__b39280572146">*.log</strong>, <strong id="cce_01_0018__b1793513574146">*.trace</strong>, and <strong id="cce_01_0018__b29351157191412">*.out</strong> text log files.</p>
-</div>
-<div class="section" id="cce_01_0018__section1951732710"><h4 class="sectiontitle">Setting the Path for Storing Container Logs</h4><ol id="cce_01_0018__ol1253654833013"><li id="cce_01_0018__li19284854163014"><span>When creating a <a href="cce_01_0047.html">workload</a> on the CCE console, add a container and expand <strong id="cce_01_0018__b19286134717165">Log Policies</strong>.</span></li><li id="cce_01_0018__li4437151914463"><span>In the <strong id="cce_01_0018__b139391412183710">Log Policies</strong> area, click <strong id="cce_01_0018__b18941212183715">Add Log Policy</strong>. Configure parameters in the log policy. The following uses Nginx as an example.</span><p><div class="fignone" id="cce_01_0018__fig19856172153216"><span class="figcap"><b>Figure 1 </b>Adding a log policy</span><br><span><img id="cce_01_0018__image168953502558" src="en-us_image_0000001190538599.png"></span></div>
-</p></li><li id="cce_01_0018__li1479392315150"><span>Set <strong id="cce_01_0018__b5461630195419">Storage Type</strong> to <span class="uicontrol" id="cce_01_0018__uicontrol105212302547"><b>Host Path</b></span> or <span class="uicontrol" id="cce_01_0018__uicontrol1752103095410"><b>Container Path</b></span>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0018__table115901715550" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuring log policies</caption><thead align="left"><tr id="cce_01_0018__row45851074554"><th align="left" class="cellrowborder" valign="top" width="22.12%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_01_0018__p115843785517">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77.88000000000001%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_01_0018__p12584573550">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0018__row1458511725510"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0018__p115855785514">Storage Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><ul id="cce_01_0018__ul76619114518"><li id="cce_01_0018__li136612110459"><strong id="cce_01_0018__b5948115385420">Host Path</strong>: In HostPath mode, the host path is mounted to the specified container path (mount path). In the node host path, you can view the container logs output into the mount path.</li><li id="cce_01_0018__li6661161104511"><strong id="cce_01_0018__b347751165515">Container Path</strong>: In EmptyDir mode, the temporary path of the node is mounted to the specified path (mount path). Log data that exists in the temporary path but is not reported by the collector to AOM will disappear after the pod is deleted.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0018__row75867795518"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.3.2.3.2.1.2.3.1.1 mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0018__p75869775515"><strong id="cce_01_0018__b17502441102718">Add Container Path</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0018__row1358135034614"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0018__p1257415611468">*Host Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0018__p73591502462">Enter the host path, for example, <strong id="cce_01_0018__b177191346201412">/var/paas/sys/log/nginx</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0018__row19587147165512"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0018__p1158647155518">Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><div class="p" id="cce_01_0018__p358711715554">Container path (for example, <strong id="cce_01_0018__b8656121314711">/tmp</strong>) to which the storage resources will be mounted.<div class="notice" id="cce_01_0018__note155879745516"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_01_0018__ul14587570556"><li id="cce_01_0018__li95877735510">Do not mount storage to a system directory such as <strong id="cce_01_0018__b0630176102713">/</strong> or <strong id="cce_01_0018__b063118642719">/var/run</strong>; this action may cause a container error to occur. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.</li><li id="cce_01_0018__li1258777175519">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</li><li id="cce_01_0018__li1943916477113">AOM collects only the first 20 log files that have been modified recently. It collects files from 2 levels of subdirectories by default.</li><li id="cce_01_0018__li545718441116">AOM only collects <span class="uicontrol" id="cce_01_0018__uicontrol27371025162017"><b>.log</b></span>, <span class="uicontrol" id="cce_01_0018__uicontrol874242592011"><b>.trace</b></span>, and <span class="uicontrol" id="cce_01_0018__uicontrol1974322522012"><b>.out</b></span> text log files in mounting paths.</li><li id="cce_01_0018__li866676185016">For details about how to set permissions for mount points in a container, see <a href="https://kubernetes.io/docs/tasks/configure-pod-container/security-context/" target="_blank" rel="noopener noreferrer">Configure a Security Context for a Pod or Container</a>.</li></ul>
-</div></div>
-</div>
-</td>
-</tr>
-<tr id="cce_01_0018__row6588187135510"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0018__p758720775520">Extended Host Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0018__p10159815204516">This parameter is mandatory only if <strong id="cce_01_0018__b1319582314326">Storage Type</strong> is set to <span class="uicontrol" id="cce_01_0018__uicontrol104741538114511"><b>Host Path</b></span>.</p>
-<p id="cce_01_0018__p15012414486">Extended host paths contain pod IDs or container names to distinguish different containers into which the host path is mounted.</p>
-<p id="cce_01_0018__p158737185514">A level-3 directory is added to the original volume directory/subdirectory. You can easily obtain the files output by a single <span class="keyword" id="cce_01_0018__keyword1142267981799">Pod</span>.</p>
-<ul id="cce_01_0018__ul1358877135514"><li id="cce_01_0018__li115872725517"><strong id="cce_01_0018__b67128281231">None</strong>: No extended path is configured. </li><li id="cce_01_0018__li8587474550"><strong id="cce_01_0018__b37109352310">PodUID</strong>: ID of a pod.</li><li id="cce_01_0018__li14587127185513"><strong id="cce_01_0018__b1246417411639">PodName</strong>: name of a pod.</li><li id="cce_01_0018__li10587117175514"><strong id="cce_01_0018__b1232314820315">PodUID/ContainerName</strong>: ID of a pod or name of a container.</li><li id="cce_01_0018__li758816716559"><strong id="cce_01_0018__b15921753534">PodName/ContainerName</strong>: name of a pod or container.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0018__row85891275552"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0018__p258847105513">Log Dumping</p>
-</td>
-<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0018__p674918171418">Log dump refers to rolling log files on a local host.</p>
-<ul id="cce_01_0018__ul1493171511410"><li id="cce_01_0018__li129311551416"><strong id="cce_01_0018__b4837638192520">Enabled</strong>: AOM scans log files every minute. When a log file exceeds 50 MB, it is dumped immediately. A new <strong id="cce_01_0018__b98429388254">.zip</strong> file is generated in the directory where the log file locates. For a log file, AOM stores only the latest 20 <strong id="cce_01_0018__b2216332192917">.zip</strong> files. When the number of <strong id="cce_01_0018__b1621653252914">.zip</strong> files exceeds 20, earlier <strong id="cce_01_0018__b1321623212917">.zip</strong> files will be deleted. After the dump is complete, the log file in AOM will be cleared.</li><li id="cce_01_0018__li79301514142"><strong id="cce_01_0018__b1646121113016">Disabled</strong>: AOM does not dump log files.</li></ul>
-<div class="note" id="cce_01_0018__note746743620142"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0018__ul148957434143"><li id="cce_01_0018__li3895243141410">Log file rolling of AOM is implemented in the copytruncate mode. Before enabling log dumping, ensure that log files are written in the append mode. Otherwise, file holes may occur.</li><li id="cce_01_0018__li7895164351412">Currently, mainstream log components such as Log4j and Logback support log file rolling. If your log files already support rolling, skip the configuration. Otherwise, conflicts may occur.</li><li id="cce_01_0018__li589554311145">You are advised to configure log file rolling for your own services to flexibly control the size and number of rolled files.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0018__row7606830131615"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0018__p26071630181612">Multi-line Log</p>
-</td>
-<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0018__p153553236594">Some program logs (for example, Java program logs) contain a log that occupies multiple lines. By default, the log collection system collects logs by line. If you want to display logs as a single log message in the log collection system, you can enable the multi-line log function and use the log time or regular pattern mode. When a line of log message matches the preset time format or regular expression, it is considered as the start of a log message and the next line starts with this line of log message is considered as the end identifier of the log message.</p>
-<p id="cce_01_0018__p12791691714"><strong id="cce_01_0018__b1644131123013">Split Mode</strong></p>
-<ul id="cce_01_0018__ul7651213182"><li id="cce_01_0018__li0651914181"><strong id="cce_01_0018__b7742174220305">Log Time</strong>: Enter a time wildcard. For example, if the time in the log is 2017-01-01 23:59:59, the wildcard is YYYY-MM-DD hh:mm:ss.</li><li id="cce_01_0018__li1365161141813"><strong id="cce_01_0018__b1782710395380">Regular Pattern</strong>: Enter a regular expression.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0018__li192435574452"><span>Click <strong id="cce_01_0018__b842352706171121">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0018__section3676337461"><h4 class="sectiontitle">Using kubectl to Set the Container Log Storage Path</h4><p id="cce_01_0018__p163745559461">You can set the container log storage path by defining a YAML file.</p>
-<p id="cce_01_0018__p135895194011">As shown in the following figure, EmptyDir is mounted a temporary path to <span class="uicontrol" id="cce_01_0018__uicontrol35891193014"><b>/var/log/nginx</b></span>. In this way, the ICAgent collects logs in <span class="uicontrol" id="cce_01_0018__uicontrol8186192791916"><b>/var/log/nginx</b></span>. The <strong id="cce_01_0018__b19884404015">policy</strong> field is customized by CCE and allows the ICAgent to identify and collect logs.</p>
-<pre class="screen" id="cce_01_0018__screen863910461482">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: testlog
-  namespace: default
-spec:
-  selector:
-    matchLabels:
-      app: testlog
-  template:
-    replicas: 1
-    metadata:
-      labels:
-        app: testlog
-    spec:
-      containers:
-        - image: 'nginx:alpine'
-          name: container-0
-          resources:
-            requests:
-              cpu: 250m
-              memory: 512Mi
-            limits:
-              cpu: 250m
-              memory: 512Mi
-         <span style="color:#FF0000;"> volumeMounts:</span>
-<span style="color:#FF0000;">            - name: vol-log</span>
-<span style="color:#FF0000;">              mountPath: /var/log/nginx</span>
-              <span style="color:#FF0000;">policy:</span>
-<span style="color:#FF0000;">                logs:</span>
-<span style="color:#FF0000;">                  rotate: ''</span>
-      <span style="color:#FF0000;">volumes:</span>
-<span style="color:#FF0000;">        - emptyDir: {}</span>
-<span style="color:#FF0000;">          name: vol-log</span>
-      imagePullSecrets:
-        - name: default-secret</pre>
-<p id="cce_01_0018__p878213715533">The following shows how to use the HostPath mode. Compared with the EmptyDir mode, the type of volume is changed to hostPath, and the path on the host needs to be configured for this hostPath volume. In the following example, <span class="uicontrol" id="cce_01_0018__uicontrol7482103384212"><b>/tmp/log</b></span> on the host is mounted to <span class="uicontrol" id="cce_01_0018__uicontrol34848402428"><b>/var/log/nginx</b></span>. In this way, the ICAgent can collects logs in <strong id="cce_01_0018__b56284246203">/var/log/nginx</strong>, without deleting the logs from <strong id="cce_01_0018__b1586510272205">/tmp/log</strong>.</p>
-<pre class="screen" id="cce_01_0018__screen1347245314534">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: testlog
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: testlog
-  template:
-    metadata:
-      labels:
-        app: testlog
-    spec:
-      containers:
-        - image: 'nginx:alpine'
-          name: container-0
-          resources:
-            requests:
-              cpu: 250m
-              memory: 512Mi
-            limits:
-              cpu: 250m
-              memory: 512Mi
-          <span style="color:#FF0000;">volumeMounts:</span>
-<span style="color:#FF0000;">            - name: vol-log</span>
-<span style="color:#FF0000;">              mountPath: /var/log/nginx</span>
-              <span style="color:#FF0000;">readOnly: false</span>
-<span style="color:#FF0000;">              extendPathMode: PodUID</span>
-<span style="color:#FF0000;">              policy:</span>
-<span style="color:#FF0000;">                logs:</span>
-<span style="color:#FF0000;">                  rotate: Hourly</span>
-<span style="color:#FF0000;">                  annotations:</span>
-                    
-                    format: ''
-<span style="color:#FF0000;">      volumes:</span>
-<span style="color:#FF0000;">        - hostPath:</span>
-<span style="color:#FF0000;">            path: /tmp/log</span>
-<span style="color:#FF0000;">          name: vol-log</span>
-      imagePullSecrets:
-        - name: default-secret</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0018__table1332817095114" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameter description</caption><thead align="left"><tr id="cce_01_0018__row63291603518"><th align="left" class="cellrowborder" valign="top" width="17.06%" id="mcps1.3.4.7.2.4.1.1"><p id="cce_01_0018__p53291009514">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="19.23%" id="mcps1.3.4.7.2.4.1.2"><p id="cce_01_0018__p3329208519">Explanation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="63.71%" id="mcps1.3.4.7.2.4.1.3"><p id="cce_01_0018__p93291706517">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0018__row932940125114"><td class="cellrowborder" valign="top" width="17.06%" headers="mcps1.3.4.7.2.4.1.1 "><p id="cce_01_0018__p173292019514">extendPathMode</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_01_0018__p6329709512">Extended host path</p>
-</td>
-<td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_01_0018__p32881805119">Extended host paths contain pod IDs or container names to distinguish different containers into which the host path is mounted.</p>
-<p id="cce_01_0018__p1728888115112">A level-3 directory is added to the original volume directory/subdirectory. You can easily obtain the files output by a single <span class="keyword" id="cce_01_0018__keyword907662374">Pod</span>.</p>
-<ul id="cce_01_0018__ul2028828105113"><li id="cce_01_0018__li428815865110"><strong id="cce_01_0018__b1644250822">None</strong>: No extended path is configured. </li><li id="cce_01_0018__li62889814517"><strong id="cce_01_0018__b1260191128">PodUID</strong>: ID of a pod.</li><li id="cce_01_0018__li528818135113"><strong id="cce_01_0018__b1499103150">PodName</strong>: name of a pod.</li><li id="cce_01_0018__li62882084517"><strong id="cce_01_0018__b1862693772">PodUID/ContainerName</strong>: ID of a pod or name of a container.</li><li id="cce_01_0018__li528898175110"><strong id="cce_01_0018__b8818125942116">PodName/ContainerName</strong>: name of a pod or container.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0018__row732915085118"><td class="cellrowborder" valign="top" width="17.06%" headers="mcps1.3.4.7.2.4.1.1 "><p id="cce_01_0018__p17329004514">policy.logs.rotate</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_01_0018__p123292055113">Log dumping</p>
-</td>
-<td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_01_0018__p1017113396539">Log dump refers to rolling log files on a local host.</p>
-<ul id="cce_01_0018__ul1617120398533"><li id="cce_01_0018__li71711639105316"><strong id="cce_01_0018__b346020193">Enabled</strong>: AOM scans log files every minute. When a log file exceeds 50 MB, it is dumped immediately. A new <strong id="cce_01_0018__b1538264370">.zip</strong> file is generated in the directory where the log file locates. For a log file, AOM stores only the latest 20 <strong id="cce_01_0018__b749499979">.zip</strong> files. When the number of <strong id="cce_01_0018__b408117236">.zip</strong> files exceeds 20, earlier <strong id="cce_01_0018__b869496135">.zip</strong> files will be deleted. After the dump is complete, the log file in AOM will be cleared.</li><li id="cce_01_0018__li817133985315"><strong id="cce_01_0018__b44419864">Disabled</strong>: AOM does not dump log files.</li></ul>
-<div class="note" id="cce_01_0018__note121711639195319"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0018__ul817183918533"><li id="cce_01_0018__li9171183945310">Log file rolling of AOM is implemented in the copytruncate mode. Before enabling log dumping, ensure that log files are written in the append mode. Otherwise, file holes may occur.</li><li id="cce_01_0018__li1117153914535">Currently, mainstream log components such as Log4j and Logback support log file rolling. If your log files already support rolling, skip the configuration. Otherwise, conflicts may occur.</li><li id="cce_01_0018__li317113915532">You are advised to configure log file rolling for your own services to flexibly control the size and number of rolled files.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0018__row10264639195415"><td class="cellrowborder" valign="top" width="17.06%" headers="mcps1.3.4.7.2.4.1.1 "><p id="cce_01_0018__p17265103911544">policy.logs.annotations.format</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_01_0018__p17265039125417">Multi-line log matching</p>
-</td>
-<td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_01_0018__p0105153218557">Some program logs (for example, Java program logs) contain a log that occupies multiple lines. By default, the log collection system collects logs by line. If you want to display logs as a single log message in the log collection system, you can enable the multi-line log function and use the log time or regular pattern mode. When a line of log message matches the preset time format or regular expression, it is considered as the start of a log message and the next line starts with this line of log message is considered as the end identifier of the log message.</p>
-<p id="cce_01_0018__p11877353598">The format is as follows:</p>
-<pre class="screen" id="cce_01_0018__screen91091621603">{
-    "multi": {
-        "mode": "time",
-        "value": "YYYY-MM-DD hh:mm:ss"
-    }
-}</pre>
-<p id="cce_01_0018__p16105113225519"><strong id="cce_01_0018__b16734357132419">multi</strong> indicates the multi-line mode.</p>
-<ul id="cce_01_0018__ul4106732185516"><li id="cce_01_0018__li1610616324551"><strong id="cce_01_0018__b148001114259">time</strong>: log time. Enter a time wildcard. For example, if the time in the log is 2017-01-01 23:59:59, the wildcard is YYYY-MM-DD hh:mm:ss.</li><li id="cce_01_0018__li3106193275517"><strong id="cce_01_0018__b174241649102518">regular</strong>: regular pattern. Enter a regular expression.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0018__section25851847232"><h4 class="sectiontitle">Viewing Logs</h4><p id="cce_01_0018__p209669599247">After a log collection path is configured and the workload is created, the ICAgent collects log files from the configured path. The collection takes about 1 minute.</p>
-<p id="cce_01_0018__p242194515304">After the log collection is complete, go to the workload details page and click <strong id="cce_01_0018__b13484541192818">Logs</strong> in the upper right corner to view logs.</p>
-<p id="cce_01_0018__p32989282515">You can also view logs on the AOM console.</p>
-<p id="cce_01_0018__p160613416815">You can also run the <strong id="cce_01_0018__b9741144192912">kubectl logs</strong> command to view the standard output of a container.</p>
-<pre class="screen" id="cce_01_0018__screen1210248152712"># View logs of a specified pod.
-kubectl logs &lt;pod_name&gt;
-kubectl logs -f &lt;pod_name&gt; # Similar to <strong id="cce_01_0018__b34131514579">tail -f</strong>
-
-# View logs of a specified container in a specified pod.
-kubectl logs &lt;pod_name&gt; -c &lt;container_name&gt;
-
-kubectl logs pod_name -c container_name -n namespace (one-off query)
-kubectl logs -f &lt;pod_name&gt; -n namespace (real-time query in tail -f mode)</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0110.html">Monitoring and Logs</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0019.html b/docs/cce/umn/cce_01_0019.html
deleted file mode 100644
index 6567cb8c..00000000
--- a/docs/cce/umn/cce_01_0019.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<a name="cce_01_0019"></a><a name="cce_01_0019"></a>
-
-<h1 class="topictitle1">Charts (Helm)</h1>
-<div id="body1522665832345"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0143.html">My Charts</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0020.html b/docs/cce/umn/cce_01_0020.html
deleted file mode 100644
index 76ddc328..00000000
--- a/docs/cce/umn/cce_01_0020.html
+++ /dev/null
@@ -1,21 +0,0 @@
-<a name="cce_01_0020"></a><a name="cce_01_0020"></a>
-
-<h1 class="topictitle1">Networking</h1>
-<div id="body1506570432072"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0010.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0280.html">Container Network Models</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0247.html">Services</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0248.html">Ingress</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0059.html">Network Policies</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0288.html">SecurityGroups</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0023.html b/docs/cce/umn/cce_01_0023.html
deleted file mode 100644
index 686278bc..00000000
--- a/docs/cce/umn/cce_01_0023.html
+++ /dev/null
@@ -1,28 +0,0 @@
-<a name="cce_01_0023"></a><a name="cce_01_0023"></a>
-
-<h1 class="topictitle1">kubectl Usage Guide</h1>
-<div id="body1522736585969"><p id="cce_01_0023__p835118311455">Before running <span class="keyword" id="cce_01_0023__keyword153407726816273">kubectl</span> commands, you should have the kubectl development skills and understand the kubectl operations. For details, see <a href="https://kubernetes.io/docs/concepts/overview/kubernetes-api/" target="_blank" rel="noopener noreferrer">Kubernetes API</a> and <a href="https://kubernetes.io/docs/reference/kubectl/overview/" target="_blank" rel="noopener noreferrer">kubectl CLI</a>.</p>
-<p id="cce_01_0023__p11412125284012">Go to the <a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/README.md" target="_blank" rel="noopener noreferrer">Kubernetes release page</a> to download kubectl corresponding to the cluster version or a later version.</p>
-<div class="section" id="cce_01_0023__section223415528535"><h4 class="sectiontitle">Cluster Connection</h4><ul id="cce_01_0023__ul9218101025420"><li id="cce_01_0023__li421811020546"><a href="cce_01_0107.html">Connecting to a Kubernetes cluster using kubectl</a></li></ul>
-</div>
-<div class="section" id="cce_01_0023__section81661268550"><h4 class="sectiontitle">Workload Creation</h4><ul id="cce_01_0023__ul043813218553"><li id="cce_01_0023__li54381320555"><a href="cce_01_0047.html#cce_01_0047__section155246177178">Creating a Deployment using kubectl</a></li><li id="cce_01_0023__li1143816328559"><a href="cce_01_0048.html#cce_01_0048__section113441881214">Creating a StatefulSet using kubectl</a></li></ul>
-</div>
-<div class="section" id="cce_01_0023__section1294518341552"><h4 class="sectiontitle">Workload <span class="keyword" id="cce_01_0023__keyword2125179630163515">Affinity</span>/<span class="keyword" id="cce_01_0023__keyword1303019494163518">Anti-affinity</span> Scheduling</h4><ul id="cce_01_0023__ul16157916145711"><li id="cce_01_0023__li16157161613574"><a href="cce_01_0225.html#cce_01_0225__section711574271117">Example YAML for workload-node affinity</a></li><li id="cce_01_0023__li1015719169575"><a href="cce_01_0226.html#cce_01_0226__section1361482522712">Example YAML for workload-node anti-affinity</a></li><li id="cce_01_0023__li16157141613572"><a href="cce_01_0220.html#cce_01_0220__section5140193643912">Example YAML for workload-workload affinity</a></li><li id="cce_01_0023__li0158131605713"><a href="cce_01_0227.html#cce_01_0227__section1894310152317">Example YAML for workload-workload anti-affinity</a></li><li id="cce_01_0023__li9158416125718"><a href="cce_01_0228.html#cce_01_0228__section4201420133117">Example YAML for workload-AZ affinity</a></li><li id="cce_01_0023__li8158151665719"><a href="cce_01_0229.html#cce_01_0229__section102822029173111">Example YAML for workload-AZ anti-affinity</a></li></ul>
-</div>
-<div class="section" id="cce_01_0023__section557132035713"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0023__keyword1218303978163611">Workload Access Mode</span> Settings</h4><ul id="cce_01_0023__ul153741345812"><li id="cce_01_0023__li143751314587"><a href="cce_01_0011.html#cce_01_0011__section9813121512319">Implementing intra-cluster access using kubectl</a></li><li id="cce_01_0023__li103781345818"><a href="cce_01_0142.html#cce_01_0142__section7114174773118">Implementing node access using kubectl</a></li><li id="cce_01_0023__li193715130582"><a href="cce_01_0014.html#cce_01_0014__section1984211714368">Implementing Layer 4 load balancing using kubectl</a></li><li id="cce_01_0023__li123781319584"><a href="cce_01_0252.html">Implementing Layer 7 load balancing using kubectl</a></li></ul>
-</div>
-<div class="section" id="cce_01_0023__section927251814582"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0023__keyword1569546850163650">Advanced Workload Settings</span></h4><ul id="cce_01_0023__ul1043016377582"><li id="cce_01_0023__li743017374580"><a href="cce_01_0105.html#cce_01_0105__section151181981167">Example YAML for setting the container lifecycle</a></li></ul>
-</div>
-<div class="section" id="cce_01_0023__section1660674011584"><h4 class="sectiontitle">Job Management</h4><ul id="cce_01_0023__ul1990515291014"><li id="cce_01_0023__li14905629916"><a href="cce_01_0150.html#cce_01_0150__section450152719412">Creating a job using kubectl</a></li><li id="cce_01_0023__li6905192917112"><a href="cce_01_0151.html#cce_01_0151__section13519162224919">Creating a cron job using kubectl</a></li></ul>
-</div>
-<div class="section" id="cce_01_0023__section12376151215916"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0023__keyword1611535067163714">Configuration Center</span></h4><ul id="cce_01_0023__ul5692715111"><li id="cce_01_0023__li4617272111"><a href="cce_01_0152.html#cce_01_0152__section639712716372">Creating a ConfigMap using kubectl</a></li><li id="cce_01_0023__li16827616"><a href="cce_01_0153.html#cce_01_0153__section821112149514">Creating a secret using kubectl</a></li></ul>
-</div>
-<div class="section" id="cce_01_0023__section274418453590"><h4 class="sectiontitle">Storage Management</h4><ul id="cce_01_0023__ul56081523813"><li id="cce_01_0023__li1160882312115"><a href="cce_01_0379.html">Creating a PV using kubectl</a></li><li id="cce_01_0023__li106081723819"><a href="cce_01_0378.html">Creating a PVC using kubectl</a></li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0140.html">Using kubectl to Run a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0025.html b/docs/cce/umn/cce_01_0025.html
deleted file mode 100644
index ce0be9fe..00000000
--- a/docs/cce/umn/cce_01_0025.html
+++ /dev/null
@@ -1,598 +0,0 @@
-<a name="cce_01_0025"></a><a name="cce_01_0025"></a>
-
-<h1 class="topictitle1">CCE Operations Supported by CTS</h1>
-<div id="body1525226397666"><div class="notice" id="cce_01_0025__note17223302191"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0025__p7223140111912">CTS is available only in certain regions.</p>
-</div></div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0025__table10122133613599" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CCE operations supported by CTS</caption><thead align="left"><tr id="cce_01_0025__row1612243618593"><th align="left" class="cellrowborder" valign="top" width="28.37%" id="mcps1.4.2.2.4.1.1"><p id="cce_01_0025__p5122153665915">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="25.230000000000004%" id="mcps1.4.2.2.4.1.2"><p id="cce_01_0025__p11394135314515">Resource Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="46.400000000000006%" id="mcps1.4.2.2.4.1.3"><p id="cce_01_0025__p13195515620">Event Name</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0025__row384725144914"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p13908102164920">Creating an agency</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p15333419174616">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1993945965019">createUserAgencies</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1284895184910"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p199081221194919">Creating a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p433311984616">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p593905975012">createCluster</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row17848185114913"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1990920218494">Updating the description of a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p147962302015">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p49391596502">updateCluster</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row784805164917"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1090912210492">Upgrading a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p155208351618">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p29392059115015">clusterUpgrade</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row18494524910"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p17909162174912">Deleting a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p752019351819">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p139391059125010">claimCluster/deleteCluster</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row9849205154915"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p12909122174919">Downloading a cluster certificate</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p12520133510112">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p3939105975020">getClusterCertByUID</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row684915513497"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p390972118494">Binding and unbinding an EIP</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1952018351410">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1393995925016">operateMasterEIP</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row2084918564916"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1490922117497">Waking up a cluster and resetting node management (V2)</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p186260487111">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p12939195912508">operateCluster</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row82138711593"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p2909182110497">Hibernating a cluster (V3)</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1462714816114">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p20939105925019">hibernateCluster</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row2213779595"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p6909122124915">Waking up a cluster (V3)</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p16271648711">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1693995916508">awakeCluster</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row18491564913"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p11909152124916">Changing the specifications of a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1062714481712">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p16939205918504">resizeCluster</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row14159124616588"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p8909122117491">Modifying configurations of a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1162245314111">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1393995915502">updateConfiguration</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row108501254498"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p16909112184915">Creating a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p380202410469">Node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p194012597503">createNodePool</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1085013554914"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p15909102144912">Updating a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1780212413468">Node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p49407593507">updateNodePool</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row0114164016599"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p119091621124910">Deleting a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p177971572218">Node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p129404598501">claimNodePool</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row785017564910"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p3909162104914">Migrating a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p9798127421">Node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p15940125912508">migrateNodepool</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row2965135415912"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1790902112496">Modifying node pool configurations</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p13334131994612">Node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p179399594508">updateConfiguration</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row158507514494"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p13909112112490">Creating a node</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p13334219144613">Node</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p8939859205016">createNode</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row128501050492"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1390982110492">Deleting all the nodes from a specified cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1547962610210">Node</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p3940135919502">deleteAllHosts</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row285020515496"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p8909122120498">Deleting a single node</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p15479126929">Node</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p209404590505">deleteOneHost/claimOneHost</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row88504534919"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1690942194917">Updating the description of a node</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1930214311225">Node</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p7940959125011">updateNode</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row785120513499"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p15909142111496">Creating an add-on instance</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p9302931825">Add-on instance</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p6940659195015">createAddonInstance</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row58431159124518"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1390910213499">Deleting an add-on instance</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1990710595494">Add-on instance</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p694012594504">deleteAddonInstance</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row19844559124519"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1990932114918">Uploading a chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p7532155174914">Chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1940135915010">uploadChart</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row48441859124517"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1890972104914">Updating a chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p16532855174914">Chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p179401598508">updateChart</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row884417597459"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p190912119493">Deleting a chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p171112818311">Chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p209401159165020">deleteChart</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row118441759144514"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p4910122114496">Creating a release</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p164601332936">Release</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p12940115916506">createRelease</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row17844195912458"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p0910162118492">Upgrading a release</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1846010326310">Release</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p29401859185012">updateRelease</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row13844175934515"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p3910182164916">Deleting a release</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p135329556494">Release</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p18940125919509">deleteRelease</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row16450535103817"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1351243543918">Creating a ConfigMap</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p14476171817820">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p14794158123914">createConfigmaps</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row107342035123814"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p85121835133911">Creating a DaemonSet</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1831114214817">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p179458103919">createDaemonsets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row189915354383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p85121535103919">Creating a Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p126142345">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p77941781394">createDeployments</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row11247123618381"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p451213352396">Creating an event</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p152615214410">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p17794188173919">createEvents</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row13528183623818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p251210351397">Creating an Ingress</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p184187315412">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p97948863919">createIngresses</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row138443361388"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p35131235103910">Creating a job</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p9418731347">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p3794883397">createJobs</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row11196173713381"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1051363523919">Creating a namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p12304126246">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p147941873920">createNamespaces</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1547923713817"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p151316356394">Creating a node</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p4304366410">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p47958813910">createNodes</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1806137163818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1151310357393">Creating a PersistentVolumeClaim</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p23046620416">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p16795128113912">createPersistentvolumeclaims</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row15143838133818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1451343543916">Creating a pod</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p19304664419">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1079513812399">createPods</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row14502038193811"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p5513935123919">Creating a replica set</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1330413612410">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p197955843913">createReplicasets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1980053883816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p75138353395">Creating a resource quota</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p193041261843">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p197958863913">createResourcequotas</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row11151173923816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p10513835193915">Creating a secret</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p198581310146">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p37958833915">createSecrets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1950073943815"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p4514835193915">Creating a service</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p18859121011410">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1679519813919">createServices</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row118871714163811"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p4514935153910">Creating a StatefulSet</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p48590101244">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p779514820397">createStatefulsets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row11704159385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p13514133513392">Creating a volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p138596101745">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p127951887398">createVolumes</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row6236161516385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p175141335173920">Deleting a ConfigMap</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1485914101947">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p117959818394">deleteConfigmaps</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row64003156383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p45141635123918">Deleting a DaemonSet</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1785911010413">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p97951280398">deleteDaemonsets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row8588151520383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p45149357396">Deleting a Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p16859191014418">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p47951889391">deleteDeployments</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row976691573816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p145141535183916">Deleting an event</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p5859131013417">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p127951786399">deleteEvents</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1093116152383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p351414356394">Deleting an Ingress</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1885913101146">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p117951580397">deleteIngresses</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row8952162389"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p185141935123913">Deleting a job</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p68590102411">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p77966815390">deleteJobs</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row627551663812"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1151417358393">Deleting a namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1985920103415">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1079648183911">deleteNamespaces</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row24561416203810"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p2051523520395">Deleting a node</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1859111018414">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1579614813394">deleteNodes</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row86221816163818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p15151135103918">Deleting a Pod</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p166639124418">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1379668193911">deletePods</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1779151617386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1751583512391">Deleting a replica set</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1866361217412">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p20796686397">deleteReplicasets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1995721663817"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p14515143503916">Deleting a resource quota</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p566421215420">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p107966817394">deleteResourcequotas</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1412191773811"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p251510357397">Deleting a secret</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p266461212419">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p879638113910">deleteSecrets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row7664121717383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p451543520393">Deleting a service</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p0664151216418">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p13796108103917">deleteServices</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1079231717386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p4515113518397">Deleting a StatefulSet</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p466415122412">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p107964812397">deleteStatefulsets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row69931317173813"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p135151335143920">Deleting volumes</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p86648121546">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p127963811395">deleteVolumes</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row18139518193810"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1751673511397">Replacing a specified ConfigMap</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p176641312140">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p127961184391">updateConfigmaps</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row20277111853814"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p951693519394">Replacing a specified DaemonSet</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p126642125411">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p979614863919">updateDaemonsets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row54522018183815"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1051610358398">Replacing a specified Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p56647124411">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1679678103917">updateDeployments</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row360941815385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1551653515395">Replacing a specified event</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1166461210411">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1679616820395">updateEvents</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row16763111843812"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p10516133517390">Replacing a specified ingress</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p17664151210410">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1679648203910">updateIngresses</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1992131833810"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p851683510393">Replacing a specified job</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p9820181413410">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p1379712820396">updateJobs</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1892121915386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p55161635173912">Replacing a specified namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1382017141543">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p2797188397">updateNamespaces</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row12598191387"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1851783510393">Replacing a specified node</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p982018146411">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p10797184398">updateNodes</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row245716197383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p135174357398">Replacing a specified PersistentVolumeClaim</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p158205149420">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p179748163912">updatePersistentvolumeclaims</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1464391963816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p205179354391">Replacing a specified pod</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p10821141419419">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p5797118153916">updatePods</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row2840101919381"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p451710355392">Replacing a specified replica set</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p88215148413">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p57978893918">updateReplicasets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row644102018385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1751793513395">Replacing a specified resource quota</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1882118141541">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p57978819395">updateResourcequotas</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1324482019385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1151716357397">Replacing a specified secret</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p18214144415">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p77972820393">updateSecrets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1244119202386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p19517183553910">Replacing a specified service</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p11821171414418">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p167976817394">updateServices</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row564613201384"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p2051713515397">Replacing a specified StatefulSet</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p082117144418">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p107973820392">updateStatefulsets</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row0883172013813"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p851813523918">Replacing the specified status</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1182110141544">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p9797128143918">updateStatus</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row10923218388"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p8518163593919">Uploading a chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p1582181415417">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p279716816396">uploadChart</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row16310621113819"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p165182350390">Updating a component template</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p83327201445">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p97972853914">updateChart</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row1540921183816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1751833516394">Deleting a chart</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p733262011411">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p879712816397">deleteChart</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row912313616599"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1851853518391">Creating a template application</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p153321220948">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p77971980392">createRelease</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row161231136185917"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p15518163523911">Updating a template application</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p733210201411">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p07971889398">updateRelease</p>
-</td>
-</tr>
-<tr id="cce_01_0025__row4919512193916"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.2.2.4.1.1 "><p id="cce_01_0025__p1051813520394">Deleting a template application</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.2.2.4.1.2 "><p id="cce_01_0025__p533222017416">Kubernetes resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.2.2.4.1.3 "><p id="cce_01_0025__p17919131216393">deleteRelease</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0024.html">Cloud Trace Service (CTS)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0026.html b/docs/cce/umn/cce_01_0026.html
deleted file mode 100644
index 9b0b379a..00000000
--- a/docs/cce/umn/cce_01_0026.html
+++ /dev/null
@@ -1,21 +0,0 @@
-<a name="cce_01_0026"></a><a name="cce_01_0026"></a>
-
-<h1 class="topictitle1">Querying CTS Logs</h1>
-<div id="body1525226397666"><div class="section" id="cce_01_0026__section19908104613460"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0026__p1349415403233">After you enable CTS, the system starts recording operations on CCE resources. Operation records of the last 7 days can be viewed on the CTS management console.</p>
-</div>
-<div class="section" id="cce_01_0026__section208814582456"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0026__ol968681862911"><li id="cce_01_0026__li18356228445"><span>Log in to the management console.</span></li><li id="cce_01_0026__li14905725134512"><span>Click <span><img id="cce_01_0026__image1180502423211" src="en-us_image_0144054048.gif"></span> in the upper left corner and select a region.</span></li><li id="cce_01_0026__li56856187296"><span>Choose <strong id="cce_01_0026__b161841334316020">Service List</strong> from the main menu. Choose <strong id="cce_01_0026__b14174101155814">Management &amp; Deployment</strong> &gt; <strong id="cce_01_0026__b1917414113585">Cloud Trace Service</strong>.</span></li><li id="cce_01_0026__li6685018122920"><span>In the navigation pane of the CTS console, choose <strong id="cce_01_0026__b091641316584">Cloud Trace Service</strong> &gt; <strong id="cce_01_0026__b6917813165811">Trace List</strong>.</span></li><li id="cce_01_0026__li0686618152911"><span>On the <strong id="cce_01_0026__b156310494616044">Trace List</strong> page, query operation records based on the search criteria. Currently, the trace list supports trace query based on the combination of the following search criteria:</span><p><ul id="cce_01_0026__ul2686318142919"><li id="cce_01_0026__li9685018132914"><strong id="cce_01_0026__b147767585916113">Trace Source</strong>, <strong id="cce_01_0026__b33843206916113">Resource Type</strong>, and <strong id="cce_01_0026__b104136949616113">Search By</strong><p id="cce_01_0026__p068517181297">Select the search criteria from the drop-down lists. Select <strong id="cce_01_0026__b987393825817">CCE</strong> from the <strong id="cce_01_0026__b1287312387583">Trace Source</strong> drop-down list.</p>
-<p id="cce_01_0026__p26851618102915">If you select <strong id="cce_01_0026__b23175131216221">Trace name</strong> from the <strong id="cce_01_0026__b172899127516221">Search By</strong> drop-down list, specify the trace name.</p>
-<p id="cce_01_0026__p7685191818293">If you select <strong id="cce_01_0026__b33083335616231">Resource ID</strong> from the <strong id="cce_01_0026__b153919820216231">Search By</strong> drop-down list, select or enter a specific resource ID.</p>
-<p id="cce_01_0026__p166851718102917">If you select <strong id="cce_01_0026__b50135831116238">Resource name</strong> from the <strong id="cce_01_0026__b186507588316238">Search By</strong> drop-down list, select or enter a specific resource name.</p>
-</li><li id="cce_01_0026__li1968671815297"><strong id="cce_01_0026__b168444573616245">Operator</strong>: Select a specific operator (at user level rather than account level).</li><li id="cce_01_0026__li368641832910"><strong id="cce_01_0026__b113712261116258">Trace Status</strong>: Set this parameter to any of the following values: <strong id="cce_01_0026__b135890568716258">All trace statuses</strong>, <strong id="cce_01_0026__b192911413716258">normal</strong>, <strong id="cce_01_0026__b59570413316258">warning</strong>, and <strong id="cce_01_0026__b169117565716258">incident</strong>.</li><li id="cce_01_0026__li12686118112916">Time range: You can query traces generated during any time range in the last seven days.</li></ul>
-</p></li><li id="cce_01_0026__li01301836122914"><span>Click <span><img id="cce_01_0026__image07291172331" src="en-us_image_0144049227.png"></span> on the left of a trace to expand its details, as shown below.</span><p><div class="fignone" id="cce_01_0026__fig1324117817394"><span class="figcap"><b>Figure 1 </b>Expanding trace details</span><br><span><img id="cce_01_0026__image19242788396" src="en-us_image_0000001144779790.png"></span></div>
-</p></li><li id="cce_01_0026__li186863182294"><span>Click <strong id="cce_01_0026__b25871212163720">View Trace</strong> in the <strong id="cce_01_0026__b1597141217374">Operation</strong> column. The trace details are displayed.</span><p><div class="fignone" id="cce_01_0026__fig365411360512"><span class="figcap"><b>Figure 2 </b>Viewing event details</span><br><span><img id="cce_01_0026__image21436386418" src="en-us_image_0000001144620002.png"></span></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0024.html">Cloud Trace Service (CTS)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0027.html b/docs/cce/umn/cce_01_0027.html
deleted file mode 100644
index 5c0cd79e..00000000
--- a/docs/cce/umn/cce_01_0027.html
+++ /dev/null
@@ -1,31 +0,0 @@
-<a name="cce_01_0027"></a><a name="cce_01_0027"></a>
-
-<h1 class="topictitle1">Clusters</h1>
-<div id="body1505899032898"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0002.html">Cluster Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0342.html">CCE Turbo Clusters and CCE Clusters</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0298.html">Creating a CCE Turbo Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0028.html">Creating a CCE Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0140.html">Using kubectl to Run a Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0157.html">Setting Cluster Auto Scaling</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0215.html">Upgrading a Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0031.html">Managing a Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0175.html">Obtaining a Cluster Certificate</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0085.html">Controlling Cluster Permissions</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0347.html">Cluster Parameters</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0028.html b/docs/cce/umn/cce_01_0028.html
deleted file mode 100644
index 161b419f..00000000
--- a/docs/cce/umn/cce_01_0028.html
+++ /dev/null
@@ -1,233 +0,0 @@
-<a name="cce_01_0028"></a><a name="cce_01_0028"></a>
-
-<h1 class="topictitle1">Creating a CCE Cluster</h1>
-<div id="body1505899032898"><p id="cce_01_0028__p126541913151116">On the CCE console, you can easily create Kubernetes clusters. Kubernetes can manage container clusters at scale. A cluster manages a group of node resources.</p>
-<p id="cce_01_0028__p162026117205">In CCE, you can create a CCE cluster to manage VMs as nodes. By using high-performance network models, hybrid clusters provide a multi-scenario, secure, and stable runtime environment for containers.</p>
-<div class="section" id="cce_01_0028__section1386743114294"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0028__ul686414167496"><li id="cce_01_0028__li190817135320">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_01_0028__li124606217339">You can create a maximum of 50 clusters in a single region.</li><li id="cce_01_0028__li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_01_0028__ul1386431634910"><li id="cce_01_0028__li359558115311">Number of master nodes in the cluster.</li><li id="cce_01_0028__li452948112016">AZ of a master node.</li><li id="cce_01_0028__li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, and kube-proxy (forwarding) settings.</li><li id="cce_01_0028__li1686451618494">Network model. For example, change the <strong id="cce_01_0028__b16979154810810">tunnel network</strong> to the <strong id="cce_01_0028__b1297916485820">VPC network</strong>.</li></ul>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0028__section463761220269"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0028__ol363781272614"><li id="cce_01_0028__li136571149356"><span>Log in to the CCE console. On the <strong id="cce_01_0028__b359111491219">Dashboard</strong> page, click <span class="uicontrol" id="cce_01_0028__uicontrol76611414121"><b>Create Cluster</b></span>. Alternatively, choose <strong id="cce_01_0028__b166814111219">Resource Management</strong> &gt; <strong id="cce_01_0028__b1967161413121">Clusters</strong> in the navigation pane and click <strong id="cce_01_0028__b36831414121">Create</strong> next to <strong id="cce_01_0028__b468191421218">CCE Cluster</strong>.</span></li><li id="cce_01_0028__li16388123263"><span>Set cluster parameters by referring to <a href="#cce_01_0028__table8638121213265">Table 1</a>. Pay attention to the parameters marked with an asterisk (*).</span><p>
-<div class="tablenoborder"><a name="cce_01_0028__table8638121213265"></a><a name="table8638121213265"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0028__table8638121213265" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a cluster</caption><thead align="left"><tr id="cce_01_0028__row10638181262612"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0028__p1063821214265">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="80%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0028__p1638181232617">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0028__row42961494311"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p812874116011">Region</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p161283411302">Select a region near you to ensure the lowest latency possible.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row1063812126263"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p15639812122620">*Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p26391512172614">Name of the new cluster, which cannot be changed after the cluster is created.</p>
-<p id="cce_01_0028__p1520317181911">A cluster name contains 4 to 128 characters starting with a letter and not ending with a hyphen (-). Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row6649879161231"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p1769363161231">Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p9100682161231">Kubernetes community baseline version. The latest version is recommended.</p>
-<p id="cce_01_0028__p1022520483">If a <strong id="cce_01_0028__b11300133219395">Beta</strong> version is available, you can use it for trial. However, it is not recommended for commercial use.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row572593234714"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p14725432104718">Management Scale</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p14899102111550">Maximum number of worker nodes that can be managed by the master nodes of the current cluster. You can select 50 nodes, 200 nodes, or 1,000 nodes for your cluster, or 2,000 nodes if you are buying a cluster of v1.15.11 or later. </p>
-<p id="cce_01_0028__p192696516218">If you select <span class="uicontrol" id="cce_01_0028__uicontrol397182434417"><b>1000 nodes</b></span>, the master nodes of the cluster can manage a maximum of 1000 worker nodes. The configuration fee varies depending on the specifications of master nodes for different management scales.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row17367436403"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p16736194318408">Number of master nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p67371743164017"><strong id="cce_01_0028__b146712413387">3</strong>: Three master nodes will be created to make the cluster highly available. If a master node is faulty, the cluster can still be available without affecting service functions. Click <strong id="cce_01_0028__b598316237010">Change</strong>. In the dialog box displayed, you can configure the following parameters:</p>
-<p id="cce_01_0028__p1459193512420"><strong id="cce_01_0028__b11752691914">Disaster recovery level</strong></p>
-<ul id="cce_01_0028__ul196515617488"><li id="cce_01_0028__li1396520611481"><strong id="cce_01_0028__b138221054119">AZ</strong>: Master nodes are deployed in different AZs for disaster recovery.</li><li id="cce_01_0028__li19170196175110"><strong id="cce_01_0028__b139675121303">Fault domain</strong>: Master nodes are deployed in different failure domains in the same AZ for disaster recovery. This option is displayed only when the environment supports failure domains.</li><li id="cce_01_0028__li1257794915502"><strong id="cce_01_0028__b1122671762718">Host computer</strong>: Master nodes are deployed on different hosts in the same AZ for disaster recovery.</li><li id="cce_01_0028__li21081843154917"><strong id="cce_01_0028__b16840649102719">Customize</strong>: You can select different locations to deploy different master nodes. In the fault domain mode, master nodes must be in the same AZ.</li></ul>
-<p id="cce_01_0028__p14985022174110"><strong id="cce_01_0028__b16420738133810">1</strong>: Only one master node is created in the cluster, which cannot ensure SLA for the cluster. Single-master clusters (non-HA clusters) are not recommended for commercial scenarios. Click <strong id="cce_01_0028__b7962203673114">Change</strong>. In the <strong id="cce_01_0028__b18724187163213">AZ Settings</strong> dialog box, select an AZ for the master node.</p>
-<div class="note" id="cce_01_0028__note15800847104112"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0028__ul1869875074110"><li id="cce_01_0028__li869865084113">You are advised to create multiple master nodes to improve the cluster DR capability in commercial scenarios.</li><li id="cce_01_0028__li162561012144216">The multi-master mode cannot be changed after the cluster is created. A single-master cluster cannot be upgraded to a multi-master cluster. For a single-master cluster, if a master node is faulty, services will be affected.</li><li id="cce_01_0028__li1699871612450">To ensure reliability, the multi-master mode is enabled by default for a cluster with 1,000 or more nodes.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0028__row1763991215268"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p15639181282617">*VPC</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p20558173114298">VPC where the cluster is located. The value cannot be changed after the cluster is created.</p>
-<p id="cce_01_0028__p116393128265">A VPC provides a secure and logically isolated network environment.</p>
-<p id="cce_01_0028__p1063941211266">If no VPC is available, click <span class="uicontrol" id="cce_01_0028__uicontrol045415317323"><b>Create a VPC</b></span> to create a VPC. After the VPC is created, click the refresh icon.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row15639412132615"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p36391812172618">*Subnet</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p924510014306">Subnet where the node VM runs. The value cannot be changed after the cluster is created.</p>
-<p id="cce_01_0028__p594513252114">A subnet provides dedicated network resources that are logically isolated from other networks for network security.</p>
-<p id="cce_01_0028__p1108371202">If no subnet is available, click <strong id="cce_01_0028__b1411551812209">Create Subnet</strong> to create a subnet. After the subnet is created, click the refresh icon. For details about the relationship between VPCs, subnets, and clusters, see <a href="cce_01_0002.html">Cluster Overview</a>.</p>
-<p id="cce_01_0028__p1369519572172">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</p>
-<p id="cce_01_0028__p9619101653511"><strong id="cce_01_0028__b104869469511">The selected subnet cannot be changed after the cluster is created.</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0028__row482955911270"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p9831659192715">Network Model</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p135701052194711">After a cluster is created, the network model cannot be changed. Exercise caution when selecting a network model. For details about how to select a network model, see <a href="cce_01_0281.html">Overview</a>.</p>
-<p id="cce_01_0028__p6806448162015"><strong id="cce_01_0028__b35441012191">VPC network</strong></p>
-<p id="cce_01_0028__p1319614613446">In this network model, each node occupies one VPC route. The number of VPC routes supported by the current region and the number of container IP addresses that can be allocated to each node (that is, the maximum number of pods that can be created) are displayed on the console.</p>
-<ul id="cce_01_0028__ul68480277225"><li id="cce_01_0028__li13848152715220">The container network uses VPC routes to integrate with the underlying network. This network model is applicable to performance-intensive scenarios. However, each node occupies one VPC route, and the maximum number of nodes allowed in a cluster depends on the VPC route quota.</li><li id="cce_01_0028__li1898663154412">Each node is assigned a CIDR block of a fixed size. VPC networks are free from packet encapsulation overheads and outperform container tunnel networks. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in the cluster can be directly accessed from outside the cluster.<div class="note" id="cce_01_0028__note126721123118"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0028__ul123221124171119"><li id="cce_01_0028__li1832262414119">In the VPC network model, extended CIDR blocks and network policies are not supported.</li><li id="cce_01_0028__li615441181617">When creating multiple clusters using the VPC network model in one VPC, select a CIDR block for each cluster that does not overlap with the VPC address or other container CIDR blocks.</li></ul>
-</div></div>
-</li></ul>
-<p id="cce_01_0028__p0724144517209"><strong id="cce_01_0028__b88275815149">Tunnel network</strong></p>
-<ul id="cce_01_0028__ul1221141842110"><li id="cce_01_0028__li9221101817219">The container network is an overlay tunnel network on top of a VPC network and uses the VXLAN technology. This network model is applicable when there is no high requirements on performance.</li><li id="cce_01_0028__li2221201802116">VXLAN encapsulates Ethernet packets as UDP packets for tunnel transmission. Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0028__row64648564171234"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p2042307171234">Container Network Segment</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p31209167171234">An IP address range that can be allocated to container pods. After the cluster is created, the value cannot be changed.</p>
-<ul id="cce_01_0028__ul1423120351449"><li id="cce_01_0028__li19560172316395">If <strong id="cce_01_0028__b321555963315">Automatically select</strong> is deselected, enter a CIDR block manually. If the CIDR block you specify conflicts with a subnet CIDR block, the system prompts you to select another CIDR block. The recommended CIDR blocks are 10.0.0.0/8-18, 172.16.0.0/16-18, and 192.168.0.0/16-18.<p id="cce_01_0028__p158661543014"><strong id="cce_01_0028__b1135314113592">If different clusters share a container CIDR block, an IP address conflict will occur and access to applications may fail.</strong></p>
-</li><li id="cce_01_0028__li13230193564410">If <strong id="cce_01_0028__b18918152155411">Automatically select</strong> is selected, the system automatically assigns a CIDR block that does not conflict with any subnet CIDR block.</li></ul>
-<p id="cce_01_0028__p873618346117">The mask of the container CIDR block must be appropriate. It determines the number of available nodes in a cluster. A too small mask value will cause the cluster to soon fall short of nodes. After the mask is set, the estimated maximum number of containers supported by the current CIDR block will be displayed. </p>
-</td>
-</tr>
-<tr id="cce_01_0028__row6775143217241"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p677653218246">Service Network Segment</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p977633218244">An IP address range that can be allocated to Kubernetes Services. After the cluster is created, the value cannot be changed. The Service CIDR block cannot conflict with the created route. If they conflict, select another CIDR block.</p>
-<ul id="cce_01_0028__ul13104152611581"><li id="cce_01_0028__li16495165918529"><strong id="cce_01_0028__b0647941101211">Default</strong>: The default CIDR block 10.247.0.0/16 will be used.</li><li id="cce_01_0028__li7104162685815"><strong id="cce_01_0028__b723663413517">Custom</strong>: Manually set a CIDR block and mask based on service requirements. The mask determines the maximum number of Service IP addresses available in the cluster.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0028__row773511171567"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p37371717105616">Authorization Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p2017413473382"><strong id="cce_01_0028__b14933163218513">RBAC</strong> is selected by default and cannot be deselected.</p>
-<p id="cce_01_0028__p16141515161117">After RBAC is enabled, IAM users access resources in the cluster according to fine-grained permissions policies. For details, see <a href="cce_01_0189.html">Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row1610917221609"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p6655100911">Authentication Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p933784218111">The authentication mechanism controls user permission on resources in a cluster.</p>
-<p id="cce_01_0028__p1186713484551">The X.509-based authentication mode is enabled by default. X.509 is a commonly used certificate format.</p>
-<p id="cce_01_0028__p201651655441">If you want to perform permission control on the cluster, select <strong id="cce_01_0028__b1269615100501">Enhanced authentication</strong>. The cluster will identify users based on the header of the request for authentication.</p>
-<p id="cce_01_0028__p16929105085512">You need to upload your own <strong id="cce_01_0028__b203261222511">CA certificate</strong>, <strong id="cce_01_0028__b1888852755115">client certificate</strong>, and <strong id="cce_01_0028__b865053216516">client certificate private key</strong> (for details about how to create a certificate, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/certificates/" target="_blank" rel="noopener noreferrer">Certificates</a>), and select <strong id="cce_01_0028__b94091113115213">I have confirmed that the uploaded certificates are valid</strong>.</p>
-<div class="caution" id="cce_01_0028__note173064357597"><span class="cautiontitle"> CAUTION: </span><div class="cautionbody"><ul id="cce_01_0028__ul63601125729"><li id="cce_01_0028__li16243349611">Upload a file <strong id="cce_01_0028__b201241024115213">smaller than 1 MB</strong>. The CA certificate and client certificate can be in <strong id="cce_01_0028__b1841525511527">.crt</strong> or <strong id="cce_01_0028__b6857115813526">.cer</strong> format. The private key of the client certificate can only be uploaded <strong id="cce_01_0028__b48051913175319">unencrypted</strong>.</li><li id="cce_01_0028__li2030917431258">The validity period of the client certificate must be longer than five years.</li><li id="cce_01_0028__li082643315619">The uploaded CA certificate is used for both the authentication proxy and the kube-apiserver aggregation layer configuration. <strong id="cce_01_0028__b096473419568">If the certificate is invalid, the cluster cannot be created</strong>.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0028__row463941216264"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p2063961212268">Cluster Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p664014125268">Optional. Enter the description of the new container cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row96582533813"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0028__p2285145420345">Advanced Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0028__p1911106205716">Click <span class="parmname" id="cce_01_0028__parmname11971555868"><b>Advanced Settings</b></span> to expand the details page. The following functions are supported (unsupported functions in current AZs are hidden):</p>
-<p id="cce_01_0028__p113568261434"><strong id="cce_01_0028__b494315061511">Service Forwarding Mode</strong></p>
-<ul id="cce_01_0028__ul1435618265318"><li id="cce_01_0028__li212916916527"><strong id="cce_01_0028__b1530695315303">iptables</strong>: Traditional kube-proxy uses iptables rules to implement Service load balancing. In this mode, too many iptables rules will be generated when many Services are deployed. In addition, non-incremental updates will cause a latency and even obvious performance issues in the case of heavy service traffic.</li><li id="cce_01_0028__li191309975213"><strong id="cce_01_0028__b182448102064">ipvs</strong>: optimized kube-proxy mode to achieve higher throughput and faster speed, ideal for large-sized clusters. This mode supports incremental updates and can keep connections uninterrupted during Service updates.<p id="cce_01_0028__p52781357485">In this mode, when the ingress and Service use the same ELB instance, the ingress cannot be accessed from the nodes and containers in the cluster.</p>
-</li></ul>
-<div class="note" id="cce_01_0028__note551324732117"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0028__ul2513447132113"><li id="cce_01_0028__li13513347132110">ipvs provides better scalability and performance for large clusters.</li><li id="cce_01_0028__li1751324782113">Compared with iptables, ipvs supports more complex load balancing algorithms such as least load first (LLF) and weighted least connections (WLC).</li><li id="cce_01_0028__li65145475214">ipvs supports server health checking and connection retries.</li></ul>
-</div></div>
-<p id="cce_01_0028__p2448659163311"><strong id="cce_01_0028__b15868154114358">CPU Policy</strong></p>
-<p id="cce_01_0028__p658055813489">This parameter is displayed only for clusters of v1.13.10-r0 and later.</p>
-<ul id="cce_01_0028__ul14813182993518"><li id="cce_01_0028__li14813182973520"><strong id="cce_01_0028__b1742104553817">On</strong>: Exclusive CPU cores can be allocated to workload pods. Select <strong id="cce_01_0028__b189511156164219">On</strong> if your workload is sensitive to latency in CPU cache and scheduling.</li><li id="cce_01_0028__li381392910357"><strong id="cce_01_0028__b631214279429">Off</strong>: Exclusive CPU cores will not be allocated to workload pods. Select <strong id="cce_01_0028__b443461812442">Off</strong> if you want a large pool of shareable CPU cores.</li></ul>
-<p id="cce_01_0028__p1363818291491">For details about CPU management policies, see <a href="https://kubernetes.io/blog/2018/07/24/feature-highlight-cpu-manager/" target="_blank" rel="noopener noreferrer">Feature Highlight: CPU Manager</a>.</p>
-<p id="cce_01_0028__p14525175194312">After <strong id="cce_01_0028__b9443112612711">CPU Policy</strong> is enabled, workloads cannot be started or created on nodes after the node specifications are changed.</p>
-<p id="cce_01_0028__p169756473406"><strong id="cce_01_0028__b116182481532">Open EIP</strong></p>
-<p id="cce_01_0028__p520212417409">An independent public IP address that is reachable from public networks. Select an EIP that has not been bound to any node. A cluster's EIP is preset in the cluster's certificate. Do no delete the EIP after the cluster has been created. Otherwise, two-way authentication will fail.</p>
-<ul id="cce_01_0028__ul16202184184014"><li id="cce_01_0028__li72021741144010"><strong id="cce_01_0028__b17413459194514">Do not configure</strong>: The cluster's master node will not have an EIP.</li><li id="cce_01_0028__li1120214112401"><strong id="cce_01_0028__b14676634612">Configure now</strong>: If no EIP is available for selection, create one.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0028__li564051282611"><span>Click <strong id="cce_01_0028__b8266105225712">Next: Create Node</strong> and set the following parameters.</span><p><ul id="cce_01_0028__ul1325394283219"><li id="cce_01_0028__li92051442133210"><strong id="cce_01_0028__b1435533582610">Create Node</strong><ul id="cce_01_0028__ul1120504212328"><li id="cce_01_0028__li1820494213323"><strong id="cce_01_0028__b987105516484">Create now</strong>: Create a node when creating a cluster. Currently, only VM nodes are supported. If a node fails to be created, the cluster will be rolled back.</li><li id="cce_01_0028__li520404220329"><strong id="cce_01_0028__b127741829184919">Create later</strong>: No node will be created. Only an empty cluster will be created.</li></ul>
-</li><li id="cce_01_0028__li2208142153213"><strong id="cce_01_0028__b1536414140279">Current Region</strong>: geographic location of the nodes to be created.</li><li id="cce_01_0028__li18209104293210"><strong id="cce_01_0028__b14136152617272">AZ</strong>: Set this parameter based on the site requirements. An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network.<p id="cce_01_0028__p1820919422327">You are advised to deploy worker nodes in different AZs after the cluster is created to make your workloads more reliable. When creating a cluster, you can deploy nodes only in one AZ.</p>
-</li><li id="cce_01_0028__li921217424329"><strong id="cce_01_0028__b333451116287">Node Type</strong><ul id="cce_01_0028__ul521215421329"><li id="cce_01_0028__li12105427323"><strong id="cce_01_0028__b1557215574277">VM node</strong>: A VM node will be created in the cluster.</li></ul>
-</li><li id="cce_01_0028__li168419515227"><strong id="cce_01_0028__b0421527102814">Node Name</strong>: Enter a node name. A node name contains 1 to 56 characters starting with a lowercase letter and not ending with a hyphen (-). Only lowercase letters, digits, and hyphens (-) are allowed.</li><li id="cce_01_0028__li1213174214329"><strong id="cce_01_0028__b16100183432814">Specifications</strong>: Select node specifications that best fit your business needs.<ul id="cce_01_0028__ul2581647145016"><li id="cce_01_0028__li1458211473505"><strong id="cce_01_0028__b62505295394">General-purpose</strong>: provides a balance of computing, memory, and network resources. It is a good choice for many applications, such as web servers, workload development, workload testing, and small-scale databases.</li><li id="cce_01_0028__li64951927195119"><strong id="cce_01_0028__b19897143519544">Memory-optimized</strong>: provides higher memory capacity than general-purpose nodes and is suitable for relational databases, NoSQL, and other workloads that are both memory-intensive and data-intensive.</li><li id="cce_01_0028__li1050769193112"><strong id="cce_01_0028__b2152663587">GPU-accelerated</strong>: provides powerful floating-point computing and is suitable for real-time, highly concurrent massive computing. Graphical processing units (GPUs) of P series are suitable for deep learning, scientific computing, and CAE. GPUs of G series are suitable for 3D animation rendering and CAD. <strong id="cce_01_0028__b193285495448">GPU-accelerated nodes can be created only in clusters of v1.11 or later</strong>. GPU-accelerated nodes are available only in certain regions.</li><li id="cce_01_0028__li7155144113514"><strong id="cce_01_0028__b1243213616911">General computing-plus</strong>: provides stable performance and exclusive resources to enterprise-class workloads with high and stable computing performance.</li><li id="cce_01_0028__li162155965212"><strong id="cce_01_0028__b19525182091018">Disk-intensive</strong>: supports <a href="cce_01_0053.html">local disk storage</a> and provides high network performance. It is designed for workloads requiring high throughput and data switching, such as big data workloads.</li></ul>
-<p id="cce_01_0028__p9915153163017">To ensure node stability, CCE automatically reserves some resources to run necessary system components. For details, see <a href="cce_01_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
-</li><li id="cce_01_0028__li19299105792614"><strong id="cce_01_0028__b16835153671716">OS</strong>: Select an OS for the node to be created.
-<p id="cce_01_0028__p294212842712">Reinstalling the OS or modifying OS configurations could make the node unavailable. Exercise caution when performing these operations.</p>
-</li><li id="cce_01_0028__li1555813274589"><strong id="cce_01_0028__b192514299515">System Disk</strong>: Set the system disk space of the worker node. The value ranges from <span id="cce_01_0028__text1330724217365">40GB</span> to 1024 GB. The default value is <span id="cce_01_0028__text159658476365">40GB</span>.<p id="cce_01_0028__p1922117423324">By default, system disks support <span id="cce_01_0028__text0858201711334">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span> EVS disks.</p>
-<div class="p" id="cce_01_0028__p196385417139"><strong id="cce_01_0028__b2864728125818">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_01_0028__b134171320013">This function is available only in certain regions.</strong><ul id="cce_01_0028__ul6195114261211"><li id="cce_01_0028__li5195194211127"><strong id="cce_01_0028__b593951417016">Encryption</strong> is not selected by default.</li><li id="cce_01_0028__li5195184201217">After you select <strong id="cce_01_0028__b135345191605">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0028__b125655191803">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</div>
-</li><li id="cce_01_0028__li12223421320"><a name="cce_01_0028__li12223421320"></a><a name="li12223421320"></a><strong id="cce_01_0028__b97242441917">Data Disk</strong>: Set the data disk space of the worker node. The value ranges from 100 GB to 32,768 GB. The default value is 100 GB. The EVS disk types provided for the data disk are the same as those for the system disk.<div class="caution" id="cce_01_0028__note164211755115812"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0028__p342185565817">If the data disk is uninstalled or damaged, the Docker service becomes abnormal and the node becomes unavailable. You are advised not to delete the data disk.</p>
-</div></div>
-<ul id="cce_01_0028__ul295084018332"><li id="cce_01_0028__li2512044204319"><strong id="cce_01_0028__b1077365616343">LVM</strong>: If this option is selected, CCE data disks are managed by the Logical Volume Manager (LVM). On this condition, you can adjust the disk space allocation for different resources. This option is selected for the first disk by default and cannot be unselected. You can choose to enable or disable LVM for new data disks.<ul id="cce_01_0028__ul5276249174617"><li id="cce_01_0028__li17431415461">This option is selected by default, indicating that LVM management is enabled.</li><li id="cce_01_0028__li129920427482">You can deselect the check box to disable LVM management.<div class="caution" id="cce_01_0028__note144345175814"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_01_0028__ul148441643567"><li id="cce_01_0028__li1022153213250">Disk space of the data disks managed by LVM will be allocated according to the ratio you set.</li><li id="cce_01_0028__li78443455617">When creating a node in a cluster of v1.13.10 or later, if LVM is not selected for a data disk, follow instructions in <a href="cce_01_0344.html">Adding a Second Data Disk to a Node in a CCE Cluster</a> to fill in the pre-installation script and format the data disk. Otherwise, the data disk will still be managed by LVM.</li><li id="cce_01_0028__li284412417565">When creating a node in a cluster earlier than v1.13.10, you must format the data disks that are not managed by LVM. Otherwise, either these data disks or the first data disk will be managed by LVM.</li></ul>
-</div></div>
-</li></ul>
-</li><li id="cce_01_0028__li13480132822014"><strong id="cce_01_0028__b17382155322214">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function.<div class="p" id="cce_01_0028__p59911430112010"><strong id="cce_01_0028__b12100193914235">This function is supported only for clusters of v1.13.10 or later in certain regions,</strong> and is not displayed for clusters of v1.13.10 or earlier.<ul id="cce_01_0028__ul1998753519474"><li id="cce_01_0028__li3162162914479"><strong id="cce_01_0028__b2533191113497">Encryption</strong> is not selected by default.</li><li id="cce_01_0028__li169101850184415">After you select <strong id="cce_01_0028__b8585114154919">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0028__b75851314134919">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</div>
-</li><li id="cce_01_0028__li542714325504"><strong id="cce_01_0028__b813723085014">Add Data Disk</strong>: Currently, a maximum of two data disks can be attached to a node. After the node is created, you can go to the ECS console to attach more data disks. This function is available only to clusters of certain versions.</li><li id="cce_01_0028__li28006368331"><strong id="cce_01_0028__b5674125201617">Data disk space allocation</strong>: Click <span><img id="cce_01_0028__image331213511271" src="en-us_image_0273156799.png"></span> to specify the resource ratio for <strong id="cce_01_0028__b12931104261718">Kubernetes Space</strong> and <strong id="cce_01_0028__b9882456172">User Space</strong>. Disk space of the data disks managed by LVM will be allocated according to the ratio you set. This function is available only to clusters of certain versions.<ul id="cce_01_0028__ul15312175122713"><li id="cce_01_0028__li1312051142712"><strong id="cce_01_0028__b154411322111416">Kubernetes Space</strong>: You can specify the ratio of the data disk space for storing Docker and kubelet resources. Docker resources include the Docker working directory, Docker images, and image metadata. kubelet resources include pod configuration files, secrets, and emptyDirs.<p id="cce_01_0028__p20126104712595">The Docker space cannot be less than 10%, and the space size cannot be less than 60 GB. The kubelet space cannot be less than 10%.</p>
-<p id="cce_01_0028__p6174194615594">The Docker space size is determined by your service requirements. For details, see <a href="cce_01_0341.html">Data Disk Space Allocation</a>.</p>
-</li><li id="cce_01_0028__li3312145116273"><strong id="cce_01_0028__b12105194652812">User Space</strong>: You can set the ratio of the disk space that is not allocated to Kubernetes resources and the path to which the user space is mounted.<div class="note" id="cce_01_0028__note168401426124510"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0028__p732075742919">Note that the mount path cannot be <strong id="cce_01_0028__b12678109121212">/</strong>, <strong id="cce_01_0028__b286214119126">/home/paas</strong>, <strong id="cce_01_0028__b1857531417123">/var/paas</strong>, <strong id="cce_01_0028__b750101831214">/var/lib</strong>, <strong id="cce_01_0028__b320519229122">/var/script</strong>, <strong id="cce_01_0028__b5501152417124">/var/log</strong>, <strong id="cce_01_0028__b979114261127">/mnt/paas</strong>, or <strong id="cce_01_0028__b2113144491215">/opt/cloud</strong>, and cannot conflict with the system directories (such as <strong id="cce_01_0028__b9614105712121">bin</strong>, <strong id="cce_01_0028__b139416594126">lib</strong>, <strong id="cce_01_0028__b1137591171316">home</strong>, <strong id="cce_01_0028__b109825231317">root</strong>, <strong id="cce_01_0028__b11543194171312">boot</strong>, <strong id="cce_01_0028__b1371816571311">dev</strong>, <strong id="cce_01_0028__b19151678139">etc</strong>, <strong id="cce_01_0028__b9328181018132">lost+found</strong>, <strong id="cce_01_0028__b84469113135">mnt</strong>, <strong id="cce_01_0028__b210216136131">proc</strong>, <strong id="cce_01_0028__b6971014171310">sbin</strong>, <strong id="cce_01_0028__b1611714166139">srv</strong>, <strong id="cce_01_0028__b387417178138">tmp</strong>, <strong id="cce_01_0028__b101401319171317">var</strong>, <strong id="cce_01_0028__b33846205138">media</strong>, <strong id="cce_01_0028__b248112213133">opt</strong>, <strong id="cce_01_0028__b198571622141310">selinux</strong>, <strong id="cce_01_0028__b392817279133">sys</strong>, and <strong id="cce_01_0028__b9694829151318">usr</strong>). Otherwise, the system or node installation will fail.</p>
-</div></div>
-</li></ul>
-</li></ul>
-<div class="p" id="cce_01_0028__p19423163173413"><strong id="cce_01_0028__b1184048101710">If the cluster version is v1.13.10-r0 or later and the node specification is <span id="cce_01_0028__text15505352268">Disk-intensive</span>, the following options are displayed for data disks:</strong><ul id="cce_01_0028__ul83121151162719"><li id="cce_01_0028__li14312751122720"><strong id="cce_01_0028__b52749232337">EVS</strong>: Parameters are the same as those when the node type is not <span id="cce_01_0028__text1334715452614">Disk-intensive</span>. For details, see <a href="#cce_01_0028__li12223421320">Data Disk</a> above.</li><li id="cce_01_0028__li17312351192713"><strong id="cce_01_0028__b1397611819250">Local disk</strong>: Local disks may break down and do not ensure data reliability. It is recommended that you store service data in EVS disks, which are more reliable than local disks.<div class="p" id="cce_01_0028__p103124515276">Local disk parameters are as follows:<ul id="cce_01_0028__ul731225122719"><li id="cce_01_0028__li20312185114276"><strong id="cce_01_0028__b12607039194011">Disk Mode</strong>: If the node type is <strong id="cce_01_0028__b9607143994010">disk-intensive</strong>, the supported disk mode is HDD.</li><li id="cce_01_0028__li2312551172713"><strong id="cce_01_0028__b18107122625717">Read/Write Mode</strong>: When multiple local disks exist, you can set the read/write mode. The serial and sequential modes are supported. <strong id="cce_01_0028__b1058165413386">Sequential</strong> indicates that data is read and written in linear mode. When a disk is used up, the next disk is used. <strong id="cce_01_0028__b115014811394">Serial</strong> indicates that data is read and written in striping mode, allowing multiple local disks to be read and written at the same time.</li><li id="cce_01_0028__li3312185192713"><strong id="cce_01_0028__b11515316378">Kubernetes Space</strong>: You can specify the ratio of the data disk space for storing Docker and kubelet resources. Docker resources include the Docker working directory, Docker images, and image metadata. kubelet resources include pod configuration files, secrets, and emptyDirs.</li><li id="cce_01_0028__li1131255118278"><strong id="cce_01_0028__b822438863">User Space</strong>: You can set the ratio of the disk space that is not allocated to Kubernetes resources and the path to which the user space is mounted.</li></ul>
-</div>
-</li></ul>
-<div class="notice" id="cce_01_0028__note731210512270"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0028__ul1631215519271"><li id="cce_01_0028__li1731213514278">The ratio of disk space allocated to the Kubernetes space and user space must be equal to 100% in total. You can click <span><img id="cce_01_0028__image3376115316309" src="en-us_image_0220702939.png"></span> to refresh the data after you have modified the ratio.</li><li id="cce_01_0028__li1931211515272">By default, disks run in the direct-lvm mode. If data disks are removed, the loop-lvm mode will be used and this will impair system stability.</li></ul>
-</div></div>
-</div>
-</li><li id="cce_01_0028__li11392154418710"><strong id="cce_01_0028__b480013111544">VPC</strong>: A VPC where the current cluster is located. This parameter cannot be changed and is displayed only for clusters of v1.13.10-r0 or later.</li><li id="cce_01_0028__li796613104535"><strong id="cce_01_0028__b95758189385">Subnet</strong>: A subnet improves network security by providing exclusive network resources that are isolated from other networks. You can select any subnet in the cluster VPC. Cluster nodes can belong to different subnets.<p id="cce_01_0028__p4796113615141">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</p>
-<p id="cce_01_0028__p02618161333"></p>
-</li><li id="cce_01_0028__li3218144253211"><strong id="cce_01_0028__b777614111929">EIP</strong>: an independent public IP address. If the nodes to be created require public network access, select <strong id="cce_01_0028__b0875102912213">Automatically assign</strong> or <strong id="cce_01_0028__b1190393312212">Use existing</strong>. <div class="p" id="cce_01_0028__p132804247236">An EIP bound to the node allows public network access. EIP bandwidth can be modified at any time. An ECS without a bound EIP cannot access the Internet or be accessed by public networks. <ul id="cce_01_0028__ul83111819172314"><li id="cce_01_0028__li631131920236"><strong id="cce_01_0028__b49331471105">Do not use</strong>: A node without an EIP cannot be accessed from public networks. It can be used only as a cloud server for deploying services or clusters on a private network.</li><li id="cce_01_0028__li143119192235"><strong id="cce_01_0028__b34240613419">Automatically assign</strong>: An EIP with specified configurations is automatically assigned to each node. If the number of EIPs is smaller than the number of nodes, the EIPs are randomly bound to the nodes.<p id="cce_01_0028__p18311519152312">Configure the EIP specifications, billing factor, bandwidth type, and bandwidth size as required. When creating an ECS, ensure that the elastic IP address quota is sufficient.</p>
-</li><li id="cce_01_0028__li103111519182314"><strong id="cce_01_0028__b836911281616">Use existing</strong>: Existing EIPs are assigned to the nodes to be created.</li></ul>
-<div class="note" id="cce_01_0028__note731161915238"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0028__p2031191911236">By default, VPC's SNAT feature is disabled for CCE. If SNAT is enabled, you do not need to use EIPs to access public networks. For details about SNAT, see <a href="cce_01_0188.html#cce_01_0188__section1437818291149">Custom Policies</a>.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0028__li142278428324"><strong id="cce_01_0028__b15704748145913">Login Mode</strong>:<ul id="cce_01_0028__ul10227542183218"><li id="cce_01_0028__li922784273210"><span class="parmvalue" id="cce_01_0028__parmvalue20179883119"><b>Key pair</b></span>: Select the key pair used to log in to the node. You can select a shared key.<p id="cce_01_0028__p102267427326">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0028__b193902038879">Create a key pair</strong>.</p>
-<div class="notice" id="cce_01_0028__note1476122284"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0028__p37611821585">When creating a node using a key pair, IAM users can select only the key pairs created by their own, regardless of whether these users are in the same group. For example, user B cannot use the key pair created by user A to create a node, and the key pair is not displayed in the drop-down list on the CCE console.</p>
-</div></div>
-</li></ul>
-</li><li id="cce_01_0028__li1824844253210"><strong id="cce_01_0028__b149511434123320">Advanced ECS Settings</strong> (optional): Click <span><img id="cce_01_0028__image13227184214322" src="en-us_image_0183134608.png"></span> to show advanced ECS settings.<ul id="cce_01_0028__ul124844233220"><li id="cce_01_0028__li17938610694"><strong id="cce_01_0028__b310182353710">ECS Group</strong>: An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.<ul id="cce_01_0028__ul127311142095"><li id="cce_01_0028__li13731314598"><strong id="cce_01_0028__b68267735716">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</li></ul>
-<p id="cce_01_0028__p7755165819820">Select an existing ECS group, or click <span class="uicontrol" id="cce_01_0028__uicontrol1048116461867"><b>Create ECS Group</b></span> to create one. After the ECS group is created, click the refresh button.</p>
-</li><li id="cce_01_0028__li202301642143216"><strong id="cce_01_0028__b111489416348">Resource Tags</strong>: By adding tags to resources, you can classify resources.<p id="cce_01_0028__p10327184710426">You can create predefined tags in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use predefined tags to improve tag creation and migration efficiency. </p>
-<p id="cce_01_0028__p2939181144320">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=node id" tag. A maximum of 5 tags can be added.</p>
-</li><li id="cce_01_0028__li11472519267"><strong id="cce_01_0028__b2837052124813">Agency</strong>: An agency is created by a tenant administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources. To authorize an ECS or BMS to call cloud services, select <strong id="cce_01_0028__b7449141823516">Cloud service</strong> as the agency type, click <strong id="cce_01_0028__b1528322212357">Select</strong>, and then select <strong id="cce_01_0028__b1112992803513">ECS BMS</strong>.</li><li id="cce_01_0028__li623512421327"><strong id="cce_01_0028__b14234183363514">Pre-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0028__p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed. The script is usually used to format data disks.</p>
-</li><li id="cce_01_0028__li824516422326"><strong id="cce_01_0028__b61796481356">Post-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0028__p121041911114618">The script will be executed after Kubernetes software is installed and will not affect the installation. The script is usually used to modify Docker parameters.</p>
-</li><li id="cce_01_0028__li524744213216"><strong id="cce_01_0028__b8454171752510">Subnet IP Address</strong>: Select <strong id="cce_01_0028__b4454121712258">Automatically assign IP address</strong> (recommended) or <strong id="cce_01_0028__b1454517102518">Manually assigning IP addresses</strong>.</li></ul>
-</li><li id="cce_01_0028__li9252442183217"><strong id="cce_01_0028__b15996143333619">Advanced Kubernetes Settings</strong>: (Optional) Click <span><img id="cce_01_0028__image024894211324" src="en-us_image_0183134479.png"></span> to show advanced cluster settings.<ul id="cce_01_0028__ul62521142103220"><li id="cce_01_0028__li1824984273218"><strong id="cce_01_0028__b182981344142016">Max Pods</strong>: maximum number of pods that can be created on a node, including the system's default pods. If the cluster uses the <strong id="cce_01_0028__b18337195111520">VPC network model</strong>, the maximum value is determined by the number of IP addresses that can be allocated to containers on each node.<p id="cce_01_0028__p1867372514496">This limit prevents the node from being overloaded by managing too many pods. For details, see <a href="cce_01_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
-</li><li id="cce_01_0028__li13590205314442"><strong id="cce_01_0028__b153416485118">Maximum Data Space per Container</strong>: maximum data space that can be used by a container. The value ranges from 10 GB to 500 GB. If the value of this field is larger than the data disk space allocated to Docker resources, the latter will override the value specified here. Typically, 90% of the data disk space is allocated to Docker resources. This parameter is displayed only for clusters of v1.13.10-r0 and later.</li></ul>
-</li><li id="cce_01_0028__li82531342123220"><strong id="cce_01_0028__b73262163215">Nodes</strong>: The value cannot exceed the management scale you select when configuring cluster parameters. Set this parameter based on service requirements and the remaining quota displayed on the page. Click <span><img id="cce_01_0028__image9405213153219" src="en-us_image_0250508826.png"></span> to view the factors that affect the number of nodes to be added (depending on the factor with the minimum value). </li></ul>
-</p></li><li id="cce_01_0028__li62331449191411"><span>Click <strong id="cce_01_0028__b13862154914316">Next: Install Add-on</strong>, and select the add-ons to be installed in the <strong id="cce_01_0028__b854617307446">Install Add-on</strong> step.</span><p><p id="cce_01_0028__p16242151917508">System resource add-ons must be installed. Advanced functional add-ons are optional.</p>
-<p id="cce_01_0028__p987031411110">You can also install all add-ons after the cluster is created. To do so, choose <span class="uicontrol" id="cce_01_0028__uicontrol578010414360"><b>Add-ons</b></span> in the navigation pane of the CCE console and select the add-on you will install. For details, see <a href="cce_01_0064.html">Add-ons</a>.</p>
-</p></li><li id="cce_01_0028__li118628713"><span>Click <span class="uicontrol" id="cce_01_0028__uicontrol10491191215144"><b>Next: Confirm</b></span>. Read the <strong id="cce_01_0028__b1537614401948">product instructions</strong> and select <strong id="cce_01_0028__b7327134711158">I am aware of the above limitations</strong>. Confirm the configured parameters, specifications, and fees.</span></li><li id="cce_01_0028__li6422192516566"><span>Click <strong id="cce_01_0028__b17469931827">Submit</strong>.</span><p><p id="cce_01_0028__p5566203019365">It takes about 6 to 10 minutes to create a cluster. You can click <span class="uicontrol" id="cce_01_0028__uicontrol145421876145"><b>Back to Cluster List</b></span> to perform other operations on the cluster or click <span class="uicontrol" id="cce_01_0028__uicontrol1754212716141"><b>Go to Cluster Events</b></span> to view the cluster details. If the cluster status is Available, the cluster is successfully created.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0028__section125261255139"><h4 class="sectiontitle">Related Operations</h4><ul id="cce_01_0028__ul912451119262"><li id="cce_01_0028__li1030825181117">After creating a cluster, you can use the Kubernetes command line (CLI) tool kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</li><li id="cce_01_0028__li312413114263">Add more nodes to the cluster. For details, see <a href="cce_01_0033.html">Creating a Node</a>.</li><li id="cce_01_0028__li71881616124815">Log in to a node. For details, see <a href="cce_01_0185.html">Logging In to a Node</a>.</li></ul>
-<ul id="cce_01_0028__ul146511412161316"><li id="cce_01_0028__li19707944113713">Create a namespace. You can create multiple namespaces in a cluster and organize resources in the cluster into different namespaces. These namespaces serve as logical groups and can be managed separately. For more information about how to create a namespace for a cluster, see <a href="cce_01_0030.html">Namespaces</a>.</li><li id="cce_01_0028__li13260557114311">Create a workload. Once the cluster is created, you can use an image to create an application that can be accessed from public networks. For details, see <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>.</li><li id="cce_01_0028__li59102435313">Click the cluster name to view cluster details.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0028__table1642185503514" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Cluster details</caption><thead align="left"><tr id="cce_01_0028__row1264365516359"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.5.3.3.1.2.3.1.1"><p id="cce_01_0028__p76431955153512">Tab</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="80%" id="mcps1.3.5.3.3.1.2.3.1.2"><p id="cce_01_0028__p176431155163517">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0028__row5975069716956"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0028__p796825616956">Cluster Details</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0028__p4144902016956">View the details and operating status of the cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row106431055133510"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0028__p1364315552359">Monitoring</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0028__p5583863516649">You can view the CPU and memory allocation rates of all nodes in the cluster (that is, the maximum allocated amount), as well as the CPU usage, memory usage, and specifications of the master node(s).</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row1464335593515"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0028__p1264365518351">Events</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><ul id="cce_01_0028__ul42186174161243"><li id="cce_01_0028__li37414170161243">View cluster events on the <strong id="cce_01_0028__b842352706143826">Events</strong> tab page.</li><li id="cce_01_0028__li2102868161329">Set search criteria. For example, you can set the time segment or enter an event name to view corresponding events.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0028__row506129238"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0028__p160812132312">Auto Scaling</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0028__p90512182317">You can configure auto scaling to add or reduce worker nodes in a cluster to meet service requirements. For details, see <a href="cce_01_0157.html">Setting Cluster Auto Scaling</a>.</p>
-<p id="cce_01_0028__p218234511328">Clusters of v1.17 do not support auto scaling using AOM. You can use node pools for auto scaling. For details, see <a href="cce_01_0081.html">Node Pool Overview</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0028__row651036112414"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0028__p1251015692419">kubectl</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0028__p35101368242">To access a Kubernetes cluster from a PC, you need to use the Kubernetes command line tool <a href="https://kubernetes.io/docs/user-guide/kubectl/" target="_blank" rel="noopener noreferrer">kubectl</a>. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0030.html b/docs/cce/umn/cce_01_0030.html
deleted file mode 100644
index ece577f5..00000000
--- a/docs/cce/umn/cce_01_0030.html
+++ /dev/null
@@ -1,17 +0,0 @@
-<a name="cce_01_0030"></a><a name="cce_01_0030"></a>
-
-<h1 class="topictitle1">Namespaces</h1>
-<div id="body1505966783221"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0278.html">Creating a Namespace</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0285.html">Managing Namespaces</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0286.html">Configuring a Namespace-level Network Policy</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0287.html">Setting a Resource Quota</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0031.html b/docs/cce/umn/cce_01_0031.html
deleted file mode 100644
index 7891cf88..00000000
--- a/docs/cce/umn/cce_01_0031.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="cce_01_0031"></a><a name="cce_01_0031"></a>
-
-<h1 class="topictitle1">Managing a Cluster</h1>
-<div id="body1506157580881"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0212.html">Deleting a Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0214.html">Hibernating and Waking Up a Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0213.html">Configuring Kubernetes Parameters</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0033.html b/docs/cce/umn/cce_01_0033.html
deleted file mode 100644
index 6aeabcec..00000000
--- a/docs/cce/umn/cce_01_0033.html
+++ /dev/null
@@ -1,76 +0,0 @@
-<a name="cce_01_0033"></a><a name="cce_01_0033"></a>
-
-<h1 class="topictitle1">Creating a Node</h1>
-<div id="body1505899032898"><div class="section" id="cce_01_0033__section1372154273312"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0033__p18355115417330">A node is a virtual or physical machine that provides computing resources. Sufficient nodes must be available in your project to ensure that operations, such as creating workloads, can be performed.</p>
-</div>
-<div class="section" id="cce_01_0033__section103205496263"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0033__ul1074615557447"><li id="cce_01_0033__li474645512448">At least one cluster is available. For details on how to create a cluster, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_01_0033__li1919515393327">A key pair has been created. The key pair will be used for identity authentication upon remote node login.</li></ul>
-</div>
-<div class="section" id="cce_01_0033__section172601129872"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0033__ul1963914497274"><li id="cce_01_0033__li190817135320">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_01_0033__li186405498273">Only KVM nodes can be created. Non-KVM nodes cannot be used after being created.</li><li id="cce_01_0033__li1164034982716">Once a node is created, its AZ cannot be changed.</li><li id="cce_01_0033__li121985211519">CCE supports GPUs through an add-on named <a href="cce_01_0141.html">gpu-beta</a>. You need to install this add-on to use GPU-enabled nodes in your cluster.</li></ul>
-</div>
-<div class="section" id="cce_01_0033__section19320144922620"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0033__ol1432013497268"><li id="cce_01_0033__li28183131548"><span>Log in to the CCE console. Use either of the following methods to add a node:</span><p><ul id="cce_01_0033__ul05711943842"><li id="cce_01_0033__li105711143440">In the navigation pane, choose <strong id="cce_01_0033__b51641611872">Resource Management</strong> &gt; <strong id="cce_01_0033__b14171111179">Nodes</strong>. Select the cluster to which the node will belong and click <strong id="cce_01_0033__b121721116719">Create</strong><strong id="cce_01_0033__b61721211471"> Node</strong> on the upper part of the node list page.</li><li id="cce_01_0033__li1857110431343">In the navigation pane, choose <strong id="cce_01_0033__b19396182">Resource Management</strong> &gt; <strong id="cce_01_0033__b41001861288">Clusters</strong>. In the card view of the cluster to which you will add nodes, click <strong id="cce_01_0033__b121000613817"></strong><strong id="cce_01_0033__b17100063818">Create</strong><strong id="cce_01_0033__b1710110618812"> Node</strong>.</li></ul>
-</p></li><li id="cce_01_0033__li8652222123119"><span>Select a region and an AZ.</span><p><ul id="cce_01_0033__ul587193815262"><li id="cce_01_0033__li1687143810264"><strong id="cce_01_0033__cce_01_0028_b1536414140279">Current Region</strong>: geographic location of the nodes to be created.</li><li id="cce_01_0033__li25561440112615"><strong id="cce_01_0033__cce_01_0028_b14136152617272">AZ</strong>: Set this parameter based on the site requirements. An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network.<p id="cce_01_0033__cce_01_0028_p1820919422327">You are advised to deploy worker nodes in different AZs after the cluster is created to make your workloads more reliable. When creating a cluster, you can deploy nodes only in one AZ.</p>
-</li></ul>
-</p></li><li id="cce_01_0033__li14558457324"><span>Configure node parameters.</span><p><ul id="cce_01_0033__ul9458227102717"><li id="cce_01_0033__li1345852792710"><strong id="cce_01_0033__cce_01_0028_b333451116287">Node Type</strong><ul id="cce_01_0033__cce_01_0028_ul521215421329"><li id="cce_01_0033__cce_01_0028_li12105427323"><strong id="cce_01_0033__cce_01_0028_b1557215574277">VM node</strong>: A VM node will be created in the cluster.</li></ul>
-</li><li id="cce_01_0033__li592014281271"><strong id="cce_01_0033__cce_01_0028_b0421527102814">Node Name</strong>: Enter a node name. A node name contains 1 to 56 characters starting with a lowercase letter and not ending with a hyphen (-). Only lowercase letters, digits, and hyphens (-) are allowed.</li><li id="cce_01_0033__li85443322812"><strong id="cce_01_0033__cce_01_0028_b16100183432814">Specifications</strong>: Select node specifications that best fit your business needs.<ul id="cce_01_0033__cce_01_0028_ul2581647145016"><li id="cce_01_0033__cce_01_0028_li1458211473505"><strong id="cce_01_0033__cce_01_0028_b62505295394">General-purpose</strong>: provides a balance of computing, memory, and network resources. It is a good choice for many applications, such as web servers, workload development, workload testing, and small-scale databases.</li><li id="cce_01_0033__cce_01_0028_li64951927195119"><strong id="cce_01_0033__cce_01_0028_b19897143519544">Memory-optimized</strong>: provides higher memory capacity than general-purpose nodes and is suitable for relational databases, NoSQL, and other workloads that are both memory-intensive and data-intensive.</li><li id="cce_01_0033__cce_01_0028_li1050769193112"><strong id="cce_01_0033__cce_01_0028_b2152663587">GPU-accelerated</strong>: provides powerful floating-point computing and is suitable for real-time, highly concurrent massive computing. Graphical processing units (GPUs) of P series are suitable for deep learning, scientific computing, and CAE. GPUs of G series are suitable for 3D animation rendering and CAD. <strong id="cce_01_0033__cce_01_0028_b193285495448">GPU-accelerated nodes can be created only in clusters of v1.11 or later</strong>. GPU-accelerated nodes are available only in certain regions.</li><li id="cce_01_0033__cce_01_0028_li7155144113514"><strong id="cce_01_0033__cce_01_0028_b1243213616911">General computing-plus</strong>: provides stable performance and exclusive resources to enterprise-class workloads with high and stable computing performance.</li><li id="cce_01_0033__cce_01_0028_li162155965212"><strong id="cce_01_0033__cce_01_0028_b19525182091018">Disk-intensive</strong>: supports <a href="cce_01_0053.html">local disk storage</a> and provides high network performance. It is designed for workloads requiring high throughput and data switching, such as big data workloads.</li></ul>
-<p id="cce_01_0033__cce_01_0028_p9915153163017">To ensure node stability, CCE automatically reserves some resources to run necessary system components. For details, see <a href="cce_01_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
-</li><li id="cce_01_0033__li171631839172816"><strong id="cce_01_0033__cce_01_0028_b16835153671716">OS</strong>: Select an OS for the node to be created.
-<p id="cce_01_0033__cce_01_0028_p294212842712">Reinstalling the OS or modifying OS configurations could make the node unavailable. Exercise caution when performing these operations.</p>
-</li><li id="cce_01_0033__li1870117486571"><strong id="cce_01_0033__cce_01_0028_b192514299515">System Disk</strong>: Set the system disk space of the worker node. The value ranges from <span id="cce_01_0033__cce_01_0028_text1330724217365">40GB</span> to 1024 GB. The default value is <span id="cce_01_0033__cce_01_0028_text159658476365">40GB</span>.<p id="cce_01_0033__cce_01_0028_p1922117423324">By default, system disks support <span id="cce_01_0033__cce_01_0028_text0858201711334">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span> EVS disks.</p>
-<div class="p" id="cce_01_0033__cce_01_0028_p196385417139"><strong id="cce_01_0033__cce_01_0028_b2864728125818">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_01_0033__cce_01_0028_b134171320013">This function is available only in certain regions.</strong><ul id="cce_01_0033__cce_01_0028_ul6195114261211"><li id="cce_01_0033__cce_01_0028_li5195194211127"><strong id="cce_01_0033__cce_01_0028_b593951417016">Encryption</strong> is not selected by default.</li><li id="cce_01_0033__cce_01_0028_li5195184201217">After you select <strong id="cce_01_0033__cce_01_0028_b135345191605">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0033__cce_01_0028_b125655191803">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</div>
-</li><li id="cce_01_0033__li12223421320"><a name="cce_01_0033__li12223421320"></a><a name="li12223421320"></a><strong id="cce_01_0033__cce_01_0028_b97242441917">Data Disk</strong>: Set the data disk space of the worker node. The value ranges from 100 GB to 32,768 GB. The default value is 100 GB. The EVS disk types provided for the data disk are the same as those for the system disk.<div class="caution" id="cce_01_0033__cce_01_0028_note164211755115812"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0033__cce_01_0028_p342185565817">If the data disk is uninstalled or damaged, the Docker service becomes abnormal and the node becomes unavailable. You are advised not to delete the data disk.</p>
-</div></div>
-<ul id="cce_01_0033__cce_01_0028_ul295084018332"><li id="cce_01_0033__cce_01_0028_li2512044204319"><strong id="cce_01_0033__cce_01_0028_b1077365616343">LVM</strong>: If this option is selected, CCE data disks are managed by the Logical Volume Manager (LVM). On this condition, you can adjust the disk space allocation for different resources. This option is selected for the first disk by default and cannot be unselected. You can choose to enable or disable LVM for new data disks.<ul id="cce_01_0033__cce_01_0028_ul5276249174617"><li id="cce_01_0033__cce_01_0028_li17431415461">This option is selected by default, indicating that LVM management is enabled.</li><li id="cce_01_0033__cce_01_0028_li129920427482">You can deselect the check box to disable LVM management.<div class="caution" id="cce_01_0033__cce_01_0028_note144345175814"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_01_0033__cce_01_0028_ul148441643567"><li id="cce_01_0033__cce_01_0028_li1022153213250">Disk space of the data disks managed by LVM will be allocated according to the ratio you set.</li><li id="cce_01_0033__cce_01_0028_li78443455617">When creating a node in a cluster of v1.13.10 or later, if LVM is not selected for a data disk, follow instructions in <a href="cce_01_0344.html">Adding a Second Data Disk to a Node in a CCE Cluster</a> to fill in the pre-installation script and format the data disk. Otherwise, the data disk will still be managed by LVM.</li><li id="cce_01_0033__cce_01_0028_li284412417565">When creating a node in a cluster earlier than v1.13.10, you must format the data disks that are not managed by LVM. Otherwise, either these data disks or the first data disk will be managed by LVM.</li></ul>
-</div></div>
-</li></ul>
-</li><li id="cce_01_0033__cce_01_0028_li13480132822014"><strong id="cce_01_0033__cce_01_0028_b17382155322214">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function.<div class="p" id="cce_01_0033__cce_01_0028_p59911430112010"><strong id="cce_01_0033__cce_01_0028_b12100193914235">This function is supported only for clusters of v1.13.10 or later in certain regions,</strong> and is not displayed for clusters of v1.13.10 or earlier.<ul id="cce_01_0033__cce_01_0028_ul1998753519474"><li id="cce_01_0033__cce_01_0028_li3162162914479"><strong id="cce_01_0033__cce_01_0028_b2533191113497">Encryption</strong> is not selected by default.</li><li id="cce_01_0033__cce_01_0028_li169101850184415">After you select <strong id="cce_01_0033__cce_01_0028_b8585114154919">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0033__cce_01_0028_b75851314134919">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</div>
-</li><li id="cce_01_0033__cce_01_0028_li542714325504"><strong id="cce_01_0033__cce_01_0028_b813723085014">Add Data Disk</strong>: Currently, a maximum of two data disks can be attached to a node. After the node is created, you can go to the ECS console to attach more data disks. This function is available only to clusters of certain versions.</li><li id="cce_01_0033__cce_01_0028_li28006368331"><strong id="cce_01_0033__cce_01_0028_b5674125201617">Data disk space allocation</strong>: Click <span><img id="cce_01_0033__cce_01_0028_image331213511271" src="en-us_image_0273156799.png"></span> to specify the resource ratio for <strong id="cce_01_0033__cce_01_0028_b12931104261718">Kubernetes Space</strong> and <strong id="cce_01_0033__cce_01_0028_b9882456172">User Space</strong>. Disk space of the data disks managed by LVM will be allocated according to the ratio you set. This function is available only to clusters of certain versions.<ul id="cce_01_0033__cce_01_0028_ul15312175122713"><li id="cce_01_0033__cce_01_0028_li1312051142712"><strong id="cce_01_0033__cce_01_0028_b154411322111416">Kubernetes Space</strong>: You can specify the ratio of the data disk space for storing Docker and kubelet resources. Docker resources include the Docker working directory, Docker images, and image metadata. kubelet resources include pod configuration files, secrets, and emptyDirs.<p id="cce_01_0033__cce_01_0028_p20126104712595">The Docker space cannot be less than 10%, and the space size cannot be less than 60 GB. The kubelet space cannot be less than 10%.</p>
-<p id="cce_01_0033__cce_01_0028_p6174194615594">The Docker space size is determined by your service requirements. For details, see <a href="cce_01_0341.html">Data Disk Space Allocation</a>.</p>
-</li><li id="cce_01_0033__cce_01_0028_li3312145116273"><strong id="cce_01_0033__cce_01_0028_b12105194652812">User Space</strong>: You can set the ratio of the disk space that is not allocated to Kubernetes resources and the path to which the user space is mounted.<div class="note" id="cce_01_0033__cce_01_0028_note168401426124510"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0033__cce_01_0028_p732075742919">Note that the mount path cannot be <strong id="cce_01_0033__cce_01_0028_b12678109121212">/</strong>, <strong id="cce_01_0033__cce_01_0028_b286214119126">/home/paas</strong>, <strong id="cce_01_0033__cce_01_0028_b1857531417123">/var/paas</strong>, <strong id="cce_01_0033__cce_01_0028_b750101831214">/var/lib</strong>, <strong id="cce_01_0033__cce_01_0028_b320519229122">/var/script</strong>, <strong id="cce_01_0033__cce_01_0028_b5501152417124">/var/log</strong>, <strong id="cce_01_0033__cce_01_0028_b979114261127">/mnt/paas</strong>, or <strong id="cce_01_0033__cce_01_0028_b2113144491215">/opt/cloud</strong>, and cannot conflict with the system directories (such as <strong id="cce_01_0033__cce_01_0028_b9614105712121">bin</strong>, <strong id="cce_01_0033__cce_01_0028_b139416594126">lib</strong>, <strong id="cce_01_0033__cce_01_0028_b1137591171316">home</strong>, <strong id="cce_01_0033__cce_01_0028_b109825231317">root</strong>, <strong id="cce_01_0033__cce_01_0028_b11543194171312">boot</strong>, <strong id="cce_01_0033__cce_01_0028_b1371816571311">dev</strong>, <strong id="cce_01_0033__cce_01_0028_b19151678139">etc</strong>, <strong id="cce_01_0033__cce_01_0028_b9328181018132">lost+found</strong>, <strong id="cce_01_0033__cce_01_0028_b84469113135">mnt</strong>, <strong id="cce_01_0033__cce_01_0028_b210216136131">proc</strong>, <strong id="cce_01_0033__cce_01_0028_b6971014171310">sbin</strong>, <strong id="cce_01_0033__cce_01_0028_b1611714166139">srv</strong>, <strong id="cce_01_0033__cce_01_0028_b387417178138">tmp</strong>, <strong id="cce_01_0033__cce_01_0028_b101401319171317">var</strong>, <strong id="cce_01_0033__cce_01_0028_b33846205138">media</strong>, <strong id="cce_01_0033__cce_01_0028_b248112213133">opt</strong>, <strong id="cce_01_0033__cce_01_0028_b198571622141310">selinux</strong>, <strong id="cce_01_0033__cce_01_0028_b392817279133">sys</strong>, and <strong id="cce_01_0033__cce_01_0028_b9694829151318">usr</strong>). Otherwise, the system or node installation will fail.</p>
-</div></div>
-</li></ul>
-</li></ul>
-<div class="p" id="cce_01_0033__cce_01_0028_p19423163173413"><strong id="cce_01_0033__cce_01_0028_b1184048101710">If the cluster version is v1.13.10-r0 or later and the node specification is <span id="cce_01_0033__cce_01_0028_text15505352268">Disk-intensive</span>, the following options are displayed for data disks:</strong><ul id="cce_01_0033__cce_01_0028_ul83121151162719"><li id="cce_01_0033__cce_01_0028_li14312751122720"><strong id="cce_01_0033__cce_01_0028_b52749232337">EVS</strong>: Parameters are the same as those when the node type is not <span id="cce_01_0033__cce_01_0028_text1334715452614">Disk-intensive</span>. For details, see <a href="#cce_01_0033__li12223421320">Data Disk</a> above.</li><li id="cce_01_0033__cce_01_0028_li17312351192713"><strong id="cce_01_0033__cce_01_0028_b1397611819250">Local disk</strong>: Local disks may break down and do not ensure data reliability. It is recommended that you store service data in EVS disks, which are more reliable than local disks.<div class="p" id="cce_01_0033__cce_01_0028_p103124515276">Local disk parameters are as follows:<ul id="cce_01_0033__cce_01_0028_ul731225122719"><li id="cce_01_0033__cce_01_0028_li20312185114276"><strong id="cce_01_0033__cce_01_0028_b12607039194011">Disk Mode</strong>: If the node type is <strong id="cce_01_0033__cce_01_0028_b9607143994010">disk-intensive</strong>, the supported disk mode is HDD.</li><li id="cce_01_0033__cce_01_0028_li2312551172713"><strong id="cce_01_0033__cce_01_0028_b18107122625717">Read/Write Mode</strong>: When multiple local disks exist, you can set the read/write mode. The serial and sequential modes are supported. <strong id="cce_01_0033__cce_01_0028_b1058165413386">Sequential</strong> indicates that data is read and written in linear mode. When a disk is used up, the next disk is used. <strong id="cce_01_0033__cce_01_0028_b115014811394">Serial</strong> indicates that data is read and written in striping mode, allowing multiple local disks to be read and written at the same time.</li><li id="cce_01_0033__cce_01_0028_li3312185192713"><strong id="cce_01_0033__cce_01_0028_b11515316378">Kubernetes Space</strong>: You can specify the ratio of the data disk space for storing Docker and kubelet resources. Docker resources include the Docker working directory, Docker images, and image metadata. kubelet resources include pod configuration files, secrets, and emptyDirs.</li><li id="cce_01_0033__cce_01_0028_li1131255118278"><strong id="cce_01_0033__cce_01_0028_b822438863">User Space</strong>: You can set the ratio of the disk space that is not allocated to Kubernetes resources and the path to which the user space is mounted.</li></ul>
-</div>
-</li></ul>
-<div class="notice" id="cce_01_0033__cce_01_0028_note731210512270"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0033__cce_01_0028_ul1631215519271"><li id="cce_01_0033__cce_01_0028_li1731213514278">The ratio of disk space allocated to the Kubernetes space and user space must be equal to 100% in total. You can click <span><img id="cce_01_0033__cce_01_0028_image3376115316309" src="en-us_image_0220702939.png"></span> to refresh the data after you have modified the ratio.</li><li id="cce_01_0033__cce_01_0028_li1931211515272">By default, disks run in the direct-lvm mode. If data disks are removed, the loop-lvm mode will be used and this will impair system stability.</li></ul>
-</div></div>
-</div>
-</li><li id="cce_01_0033__li1488319138297"><strong id="cce_01_0033__cce_01_0028_b480013111544">VPC</strong>: A VPC where the current cluster is located. This parameter cannot be changed and is displayed only for clusters of v1.13.10-r0 or later.</li><li id="cce_01_0033__li796613104535"><strong id="cce_01_0033__cce_01_0028_b95758189385">Subnet</strong>: A subnet improves network security by providing exclusive network resources that are isolated from other networks. You can select any subnet in the cluster VPC. Cluster nodes can belong to different subnets.<p id="cce_01_0033__cce_01_0028_p4796113615141">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</p>
-<p id="cce_01_0033__cce_01_0028_p02618161333"></p>
-</li></ul>
-</p></li><li id="cce_01_0033__li1073152764211"><span><strong id="cce_01_0033__cce_01_0028_b777614111929">EIP</strong>: an independent public IP address. If the nodes to be created require public network access, select <strong id="cce_01_0033__cce_01_0028_b0875102912213">Automatically assign</strong> or <strong id="cce_01_0033__cce_01_0028_b1190393312212">Use existing</strong>. </span><p><div class="p" id="cce_01_0033__cce_01_0028_p132804247236">An EIP bound to the node allows public network access. EIP bandwidth can be modified at any time. An ECS without a bound EIP cannot access the Internet or be accessed by public networks. <ul id="cce_01_0033__cce_01_0028_ul83111819172314"><li id="cce_01_0033__cce_01_0028_li631131920236"><strong id="cce_01_0033__cce_01_0028_b49331471105">Do not use</strong>: A node without an EIP cannot be accessed from public networks. It can be used only as a cloud server for deploying services or clusters on a private network.</li><li id="cce_01_0033__cce_01_0028_li143119192235"><strong id="cce_01_0033__cce_01_0028_b34240613419">Automatically assign</strong>: An EIP with specified configurations is automatically assigned to each node. If the number of EIPs is smaller than the number of nodes, the EIPs are randomly bound to the nodes.<p id="cce_01_0033__cce_01_0028_p18311519152312">Configure the EIP specifications, billing factor, bandwidth type, and bandwidth size as required. When creating an ECS, ensure that the elastic IP address quota is sufficient.</p>
-</li><li id="cce_01_0033__cce_01_0028_li103111519182314"><strong id="cce_01_0033__cce_01_0028_b836911281616">Use existing</strong>: Existing EIPs are assigned to the nodes to be created.</li></ul>
-<div class="note" id="cce_01_0033__cce_01_0028_note731161915238"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0033__cce_01_0028_p2031191911236">By default, VPC's SNAT feature is disabled for CCE. If SNAT is enabled, you do not need to use EIPs to access public networks. For details about SNAT, see <a href="cce_01_0188.html#cce_01_0188__section1437818291149">Custom Policies</a>.</p>
-</div></div>
-</div>
-</p></li><li id="cce_01_0033__li022815451332"><span><strong id="cce_01_0033__cce_01_0028_b15704748145913">Login Mode</strong>:</span><p><ul id="cce_01_0033__cce_01_0028_ul10227542183218"><li id="cce_01_0033__cce_01_0028_li922784273210"><span class="parmvalue" id="cce_01_0033__cce_01_0028_parmvalue20179883119"><b>Key pair</b></span>: Select the key pair used to log in to the node. You can select a shared key.<p id="cce_01_0033__cce_01_0028_p102267427326">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0033__cce_01_0028_b193902038879">Create a key pair</strong>.</p>
-<div class="notice" id="cce_01_0033__cce_01_0028_note1476122284"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0033__cce_01_0028_p37611821585">When creating a node using a key pair, IAM users can select only the key pairs created by their own, regardless of whether these users are in the same group. For example, user B cannot use the key pair created by user A to create a node, and the key pair is not displayed in the drop-down list on the CCE console.</p>
-</div></div>
-</li></ul>
-</p></li><li id="cce_01_0033__li1824844253210"><span><strong id="cce_01_0033__cce_01_0028_b149511434123320">Advanced ECS Settings</strong> (optional): Click <span><img id="cce_01_0033__cce_01_0028_image13227184214322" src="en-us_image_0183134608.png"></span> to show advanced ECS settings.</span><p><ul id="cce_01_0033__cce_01_0028_ul124844233220"><li id="cce_01_0033__cce_01_0028_li17938610694"><strong id="cce_01_0033__cce_01_0028_b310182353710">ECS Group</strong>: An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.<ul id="cce_01_0033__cce_01_0028_ul127311142095"><li id="cce_01_0033__cce_01_0028_li13731314598"><strong id="cce_01_0033__cce_01_0028_b68267735716">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</li></ul>
-<p id="cce_01_0033__cce_01_0028_p7755165819820">Select an existing ECS group, or click <span class="uicontrol" id="cce_01_0033__cce_01_0028_uicontrol1048116461867"><b>Create ECS Group</b></span> to create one. After the ECS group is created, click the refresh button.</p>
-</li><li id="cce_01_0033__cce_01_0028_li202301642143216"><strong id="cce_01_0033__cce_01_0028_b111489416348">Resource Tags</strong>: By adding tags to resources, you can classify resources.<p id="cce_01_0033__cce_01_0028_p10327184710426">You can create predefined tags in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use predefined tags to improve tag creation and migration efficiency. </p>
-<p id="cce_01_0033__cce_01_0028_p2939181144320">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=node id" tag. A maximum of 5 tags can be added.</p>
-</li><li id="cce_01_0033__cce_01_0028_li11472519267"><strong id="cce_01_0033__cce_01_0028_b2837052124813">Agency</strong>: An agency is created by a tenant administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources. To authorize an ECS or BMS to call cloud services, select <strong id="cce_01_0033__cce_01_0028_b7449141823516">Cloud service</strong> as the agency type, click <strong id="cce_01_0033__cce_01_0028_b1528322212357">Select</strong>, and then select <strong id="cce_01_0033__cce_01_0028_b1112992803513">ECS BMS</strong>.</li><li id="cce_01_0033__cce_01_0028_li623512421327"><strong id="cce_01_0033__cce_01_0028_b14234183363514">Pre-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0033__cce_01_0028_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed. The script is usually used to format data disks.</p>
-</li><li id="cce_01_0033__cce_01_0028_li824516422326"><strong id="cce_01_0033__cce_01_0028_b61796481356">Post-installation Script</strong>: Enter a maximum of 1,000 characters.<p id="cce_01_0033__cce_01_0028_p121041911114618">The script will be executed after Kubernetes software is installed and will not affect the installation. The script is usually used to modify Docker parameters.</p>
-</li><li id="cce_01_0033__cce_01_0028_li524744213216"><strong id="cce_01_0033__cce_01_0028_b8454171752510">Subnet IP Address</strong>: Select <strong id="cce_01_0033__cce_01_0028_b4454121712258">Automatically assign IP address</strong> (recommended) or <strong id="cce_01_0033__cce_01_0028_b1454517102518">Manually assigning IP addresses</strong>.</li></ul>
-</p></li><li id="cce_01_0033__li127380212350"><span><strong id="cce_01_0033__cce_01_0028_b15996143333619">Advanced Kubernetes Settings</strong>: (Optional) Click <span><img id="cce_01_0033__cce_01_0028_image024894211324" src="en-us_image_0183134479.png"></span> to show advanced cluster settings.</span><p><ul id="cce_01_0033__cce_01_0028_ul62521142103220"><li id="cce_01_0033__cce_01_0028_li1824984273218"><strong id="cce_01_0033__cce_01_0028_b182981344142016">Max Pods</strong>: maximum number of pods that can be created on a node, including the system's default pods. If the cluster uses the <strong id="cce_01_0033__cce_01_0028_b18337195111520">VPC network model</strong>, the maximum value is determined by the number of IP addresses that can be allocated to containers on each node.<p id="cce_01_0033__cce_01_0028_p1867372514496">This limit prevents the node from being overloaded by managing too many pods. For details, see <a href="cce_01_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
-</li><li id="cce_01_0033__cce_01_0028_li13590205314442"><strong id="cce_01_0033__cce_01_0028_b153416485118">Maximum Data Space per Container</strong>: maximum data space that can be used by a container. The value ranges from 10 GB to 500 GB. If the value of this field is larger than the data disk space allocated to Docker resources, the latter will override the value specified here. Typically, 90% of the data disk space is allocated to Docker resources. This parameter is displayed only for clusters of v1.13.10-r0 and later.</li></ul>
-</p></li><li id="cce_01_0033__li13521229144413"><span><strong id="cce_01_0033__cce_01_0028_b73262163215">Nodes</strong>: The value cannot exceed the management scale you select when configuring cluster parameters. Set this parameter based on service requirements and the remaining quota displayed on the page. Click <span><img id="cce_01_0033__cce_01_0028_image9405213153219" src="en-us_image_0250508826.png"></span> to view the factors that affect the number of nodes to be added (depending on the factor with the minimum value). </span></li><li id="cce_01_0033__li18470101114216"><span>Click <strong id="cce_01_0033__b53783339427">Next: Confirm</strong>. After confirming that the configuration is correct, click <strong id="cce_01_0033__b142531613431">Submit</strong>.</span><p><div class="p" id="cce_01_0033__p1582601641210">The node list page is displayed. If the node status is <strong id="cce_01_0033__b40028583492531">Available</strong>, the node is added successfully. It takes about 6 to 10 minutes to create a node.<div class="note" id="cce_01_0033__note532851320120"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0033__ul5328113181214"><li id="cce_01_0033__li15267150143511">Do not delete the security groups and related rules automatically configured during cluster creation. Otherwise, the cluster will exhibit unexpected behavior.</li></ul>
-</div></div>
-</div>
-</p></li><li id="cce_01_0033__li8393044161317"><span>Click <strong id="cce_01_0033__b14948810192019">Back to Node List</strong>. The node has been created successfully if it changes to the <strong id="cce_01_0033__b8507105174319">Available</strong> state.</span><p><div class="note" id="cce_01_0033__note96535331218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0033__p454185814155">The allocatable resources are calculated based on the resource request value (<strong id="cce_01_0033__b15693124320235">Request</strong>), which indicates the upper limit of resources that can be requested by pods on this node, but does not indicate the actual available resources of the node.</p>
-<p id="cce_01_0033__p73492457214">The calculation formula is as follows:</p>
-<ul id="cce_01_0033__ul259653921"><li id="cce_01_0033__li1259253828">Allocatable CPUs = Total CPUs – Requested CPUs of all pods – Reserved CPUs for other resources</li><li id="cce_01_0033__li15913539216">Allocatable memory = Total memory – Requested memory of all pods – Reserved memory for other resources</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0035.html b/docs/cce/umn/cce_01_0035.html
deleted file mode 100644
index 578ca003..00000000
--- a/docs/cce/umn/cce_01_0035.html
+++ /dev/null
@@ -1,15 +0,0 @@
-<a name="cce_01_0035"></a><a name="cce_01_0035"></a>
-
-<h1 class="topictitle1">Node Pools</h1>
-<div id="body1564122277019"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0081.html">Node Pool Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0012.html">Creating a Node Pool</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0222.html">Managing a Node Pool</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0036.html b/docs/cce/umn/cce_01_0036.html
deleted file mode 100644
index 553e85b1..00000000
--- a/docs/cce/umn/cce_01_0036.html
+++ /dev/null
@@ -1,18 +0,0 @@
-<a name="cce_01_0036"></a><a name="cce_01_0036"></a>
-
-<h1 class="topictitle1">Stopping a Node</h1>
-<div id="body1564130562761"><div class="section" id="cce_01_0036__section127213017388"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0036__p866311509249">After a node in the cluster is stopped, services on the node are also stopped. Before stopping a node, ensure that discontinuity of the services on the node will not result in adverse impacts.</p>
-</div>
-<div class="section" id="cce_01_0036__section1489437103610"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0036__ul0917755162415"><li id="cce_01_0036__li1891719552246">Deleting a node will lead to pod migration, which may affect services. Therefore, delete nodes during off-peak hours.</li><li id="cce_01_0036__li791875552416">Unexpected risks may occur during node deletion. Back up related data in advance.</li><li id="cce_01_0036__li15918105582417">While the node is being deleted, the backend will set the node to the unschedulable state.</li><li id="cce_01_0036__li12918145520241">Only worker nodes can be stopped.</li></ul>
-</div>
-<div class="section" id="cce_01_0036__section14341135612442"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0036__ol5687174923613"><li id="cce_01_0036__li133915311359"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0036__b1182817351012">Resource Management</strong> &gt; <strong id="cce_01_0036__b12834113513018">Nodes</strong>.</span></li><li id="cce_01_0036__li6687049203616"><span>In the node list, click the name of the node to be stopped.</span></li><li id="cce_01_0036__li1528433717347"><span>On the node details page displayed, click the node name.</span><p><div class="fignone" id="cce_01_0036__fig781172715419"><span class="figcap"><b>Figure 1 </b>Nodes details page</span><br><span><img id="cce_01_0036__image2788981136" src="en-us_image_0000001190302087.png"></span></div>
-</p></li><li id="cce_01_0036__li117301253183717"><span>In the upper right corner of the ECS details page, click <span class="uicontrol" id="cce_01_0036__uicontrol12772142432"><b>Stop</b></span>. In the <strong id="cce_01_0036__b14681416411">Stop ECS</strong> dialog box, click <span class="uicontrol" id="cce_01_0036__uicontrol4670148204310"><b>Yes</b></span>.</span><p><div class="fignone" id="cce_01_0036__fig19269101385311"><span class="figcap"><b>Figure 2 </b>ECS details page</span><br><span><img id="cce_01_0036__image6847636155" src="en-us_image_0000001144342232.png"></span></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0042.html b/docs/cce/umn/cce_01_0042.html
deleted file mode 100644
index 08ca90ec..00000000
--- a/docs/cce/umn/cce_01_0042.html
+++ /dev/null
@@ -1,28 +0,0 @@
-<a name="cce_01_0042"></a><a name="cce_01_0042"></a>
-
-<h1 class="topictitle1">Storage (CSI)</h1>
-<div id="body8662426"><p id="cce_01_0042__en-us_topic_0000001244261047_p8060118"></p>
-</div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0307.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0053.html">Using Local Disks as Storage Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0379.html">PersistentVolumes (PVs)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0378.html">PersistentVolumeClaims (PVCs)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0380.html">StorageClass</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0211.html">Snapshots and Backups</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0337.html">Setting Mount Options</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0393.html">Deployment Examples</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0044.html b/docs/cce/umn/cce_01_0044.html
deleted file mode 100644
index 77545b16..00000000
--- a/docs/cce/umn/cce_01_0044.html
+++ /dev/null
@@ -1,18 +0,0 @@
-<a name="cce_01_0044"></a><a name="cce_01_0044"></a>
-
-<h1 class="topictitle1">EVS Volumes</h1>
-<div id="body0000001365917780"><p id="cce_01_0044__p8060118"></p>
-</div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0254.html">Using EVS Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0257.html">Creating a Pod Mounted with an EVS Volume</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0393.html">Deployment Examples</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0045.html b/docs/cce/umn/cce_01_0045.html
deleted file mode 100644
index d6f81ab3..00000000
--- a/docs/cce/umn/cce_01_0045.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="cce_01_0045"></a><a name="cce_01_0045"></a>
-
-<h1 class="topictitle1">Configuration Center</h1>
-<div id="body1507606688948"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0152.html">Creating a ConfigMap</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0015.html">Using a ConfigMap</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0153.html">Creating a Secret</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0016.html">Using a Secret</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0388.html">Cluster Secrets</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0046.html b/docs/cce/umn/cce_01_0046.html
deleted file mode 100644
index eef0c613..00000000
--- a/docs/cce/umn/cce_01_0046.html
+++ /dev/null
@@ -1,29 +0,0 @@
-<a name="cce_01_0046"></a><a name="cce_01_0046"></a>
-
-<h1 class="topictitle1">Workloads</h1>
-<div id="body1508729244098"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0006.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0047.html">Creating a Deployment</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0048.html">Creating a StatefulSet</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0216.html">Creating a DaemonSet</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0150.html">Creating a Job</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0151.html">Creating a Cron Job</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0013.html">Managing Pods</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0007.html">Managing Workloads and Jobs</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0057.html">Scaling a Workload</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0130.html">Configuring a Container</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0047.html b/docs/cce/umn/cce_01_0047.html
deleted file mode 100644
index 0d933869..00000000
--- a/docs/cce/umn/cce_01_0047.html
+++ /dev/null
@@ -1,294 +0,0 @@
-<a name="cce_01_0047"></a><a name="cce_01_0047"></a>
-
-<h1 class="topictitle1">Creating a Deployment</h1>
-<div id="body1505966783091"><div class="section" id="cce_01_0047__section686591217411"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0047__p1695318124112">Deployments are workloads (for example, Nginx) that do not store any data or status. You can create Deployments on the CCE console or by running kubectl commands.</p>
-</div>
-<div class="section" id="cce_01_0047__section7271245481"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0047__ul12960152618147"><li id="cce_01_0047__li596019263145">Before creating a containerized workload, you must have an available cluster. For details on how to create a cluster, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_01_0047__li19160540131415">To enable public access to a workload, ensure that an EIP or load balancer has been bound to at least one node in the cluster.<div class="note" id="cce_01_0047__note991371915511"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0047__p7914191915520">If a pod has multiple containers, ensure that the ports used by the containers do not conflict with each other. Otherwise, creating the Deployment will fail.</p>
-</div></div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0047__section1996635141916"><h4 class="sectiontitle">Using the CCE Console</h4><div class="p" id="cce_01_0047__p2098473212532">CCE provides multiple methods for creating a workload. You can use any of the following methods:<ul id="cce_01_0047__ul13101758228"><li id="cce_01_0047__li32713413484">Use an image in <span id="cce_01_0047__text969813552158">Third-Party Images</span>. You do not need to upload any image before using it.</li><li id="cce_01_0047__li111045142213">Use an image that you have uploaded to SWR. </li><li id="cce_01_0047__li16698770223">Use a <strong id="cce_01_0047__b1862510335410">shared image</strong> to create a workload. Specifically, other tenants share an image with you by using the <strong id="cce_01_0047__b19942123814110">SWR service</strong>.</li><li id="cce_01_0047__li410657220">Use a YAML file to create a workload. You can click <strong id="cce_01_0047__b842352706163720"><span class="keyword" id="cce_01_0047__keyword2083039976163724">Create YAML</span></strong> on the right of the <strong id="cce_01_0047__b10415414413">Configure Advanced Settings</strong> page when creating a Deployment. For details about YAML, see <a href="#cce_01_0047__table132326831016">Table 3</a>. After the YAML file is written, click <strong id="cce_01_0047__b842352706163813">Create</strong> to create a workload.<div class="note" id="cce_01_0047__note11259101419326"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0047__p290410511910">Settings in the YAML file are synchronized with those on the console. You can edit the YAML file on the console to create a workload. For example:</p>
-<ul id="cce_01_0047__ul14171822101013"><li id="cce_01_0047__li19171142251014">If you enter a workload name on the console, the name will automatically appear in the YAML file.</li><li id="cce_01_0047__li1417110222102">If you add an image on the console, the image will be automatically added to the YAML file.</li></ul>
-<p id="cce_01_0047__p81521271112">When you click <strong id="cce_01_0047__b98809298321">Create YAML</strong> on the right of the console, do not create multiple YAML files in the YAML definition pane displayed. You need to create them one by one. Otherwise, an error will be reported during the creation.</p>
-</div></div>
-</li></ul>
-</div>
-<ol id="cce_01_0047__ol162711945486"><li id="cce_01_0047__li490240103814"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0047__b10643154674120">Workloads</strong> &gt; <strong id="cce_01_0047__b10651446104112">Deployments</strong>. On the page displayed, click <strong id="cce_01_0047__b17652144620411">Create Deployment</strong>. Set basic workload parameters as described in <a href="#cce_01_0047__table12741447488">Table 1</a>. The parameters marked with an asterisk (*) are mandatory.</span><p>
-<div class="tablenoborder"><a name="cce_01_0047__table12741447488"></a><a name="table12741447488"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0047__table12741447488" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic workload parameters</caption><thead align="left"><tr id="cce_01_0047__row52758419481"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.3.1.2.1.2.3.1.1"><p id="cce_01_0047__p152759464816">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.3.1.2.1.2.3.1.2"><p id="cce_01_0047__p3275134114811">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0047__row18415163712618"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0047__p32763416485">* Workload Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0047__p5276341485">Name of the workload to be created. The name must be unique.</p>
-<p id="cce_01_0047__p99562111597">Enter 4 to 63 characters starting with a letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row81437181202"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0047__p514451811010">* Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0047__p323714215492">Cluster to which the workload belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row169810201307"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0047__p19698152011011">* Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0047__p12447336131710">In a single cluster, data in different namespaces is isolated from each other. This enables applications to share the services of the same cluster without interfering each other. If no namespace is set, the default namespace is used.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row165805182316"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0047__p45913512317">* Instances</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0047__p1042648123717">Number of pods in the workload. A workload can have one or more pods. You can set the number of pods. The default value is <strong id="cce_01_0047__b842352706154640">2</strong> and can be set to <strong id="cce_01_0047__b842352706154646">1</strong>.</p>
-<p id="cce_01_0047__p17713926910">Each workload pod consists of the same containers. Configuring multiple pods for a workload ensures that the workload can still run properly even if a pod is faulty. If only one pod is used, a node or pod exception may cause service exceptions.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row2211182143"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0047__p1522718171417">* Container runtime</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0047__p1166918711589">Select a container runtime, which cannot be changed after creation. <strong id="cce_01_0047__b196059101265">This parameter is available only for CCE Turbo clusters.</strong></p>
-<ul id="cce_01_0047__ul1138261162510"><li id="cce_01_0047__li193831813259"><strong id="cce_01_0047__b145526115262">runc</strong>: Common containers will run on the node.</li><li id="cce_01_0047__li15383110254"><strong id="cce_01_0047__b5771161215265">kata</strong>: Secure containers will be used and the workload can run only on the node that uses the secure runtime.</li></ul>
-<p id="cce_01_0047__p11513151810263">For details about common containers and secure containers, see <a href="cce_01_0180.html#cce_01_0180__section7201124294111">Secure Containers and Common Containers</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row18442191224514"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0047__p244261214513">Time Zone Synchronization</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0047__p644215125454">If this parameter is enabled, the container and the node use the same time zone.</p>
-<div class="notice" id="cce_01_0047__note5422953172616"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0047__p11422145392614">After time zone synchronization is enabled, disks of the hostPath type will be automatically added and listed in the <strong id="cce_01_0047__b84235270616465">Data Storage</strong> &gt; <strong id="cce_01_0047__b84235270616468">Local Volume</strong> area. Do not modify or delete the disks.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0047__row1027719414818"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0047__p1527715418485">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0047__p827734134817">Description of the workload.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0047__li182796474816"><span>Click <strong id="cce_01_0047__b15618173485619">Next: Add Container</strong>.</span><p><ol type="a" id="cce_01_0047__ol198822305597"><li id="cce_01_0047__li1294121810244">Click <strong id="cce_01_0047__b842352706164643">Add Container</strong> and select the image to be deployed.<ul id="cce_01_0047__ul43691476597"><li id="cce_01_0047__l2da4599a06574ef2b0ac10946059a8b3"><strong id="cce_01_0047__b15727110141014">My Images</strong>: Create a workload using an image in the image repository you created.</li><li id="cce_01_0047__li559823415327"><strong id="cce_01_0047__b842352706165735">Third-Party Images</strong>: Create a workload using an image from any third-party image repository. When you create a workload using a third-party image, ensure that the node where the workload is running can access public networks. For details on how to create a workload using a third-party image, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.<ul id="cce_01_0047__ul132968453466"><li id="cce_01_0047__li1293204318469">If your image repository does not require authentication, set <strong id="cce_01_0047__b17571823181115">Secret Authentication</strong> to <strong id="cce_01_0047__b05712310114">No</strong>, enter an image pull address, and then click <strong id="cce_01_0047__b6571423161120">OK</strong>.</li><li id="cce_01_0047__li670713173471">If your image repository must be authenticated (account and password), you need to create a secret and then use a third-party image. For details, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.</li></ul>
-</li><li id="cce_01_0047__li762719255234"><strong id="cce_01_0047__b842352706165837">Shared Images</strong>: Create a workload using an image shared by another tenant through the SWR service.</li></ul>
-</li><li id="cce_01_0047__li72821454814">Configure basic image information.<p id="cce_01_0047__p3913954122219"><a name="cce_01_0047__li72821454814"></a><a name="li72821454814"></a>A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click <strong id="cce_01_0047__b37467815579">Add Container</strong> in the upper right corner to add multiple container images and set them separately.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0047__table128216444815" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Image parameters</caption><thead align="left"><tr id="cce_01_0047__row0282348486"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.3.2.2.1.2.2.2.3.1.1"><p id="cce_01_0047__p3282147483">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.3.2.2.1.2.2.2.3.1.2"><p id="cce_01_0047__p1828244144819">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0047__row1844916557597"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.1 "><p id="cce_01_0047__p182837474815">Image Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.2 "><p id="cce_01_0047__p3283134134820">Name of the image. You can click <strong id="cce_01_0047__b84235270617012">Change Image</strong> to update it.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row338117362515"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.1 "><p id="cce_01_0047__p1038143616517">*Image Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.2 "><p id="cce_01_0047__p1338110368519">Select the image tag to be deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row32839494813"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.1 "><p id="cce_01_0047__p122831140486">*Container Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.2 "><p id="cce_01_0047__p528314415486">Name of the container. You can modify it.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row1449911299503"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.1 "><p id="cce_01_0047__p53374336504">Privileged Container</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.2 "><p id="cce_01_0047__p49887211526">Programs in a privileged container have certain privileges.</p>
-<p id="cce_01_0047__p65001729105011">If <strong id="cce_01_0047__b13252222105114">Privileged Container</strong> is <strong id="cce_01_0047__b11849182725112">On</strong>, the container is granted superuser permissions. For example, privileged containers can manipulate network devices on the host machine and modify kernel parameters.</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row152831345485"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.1 "><p id="cce_01_0047__p875325925918">Container Resources</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.2.2.3.1.2 "><p id="cce_01_0047__p5379182494610"><strong id="cce_01_0047__b195545582515">CPU</strong></p>
-<ul id="cce_01_0047__ul67283495467"><li id="cce_01_0047__li9729124917467"><strong id="cce_01_0047__b837912315811">Request</strong>: minimum number of CPU cores required by a container. The default value is 0.25 cores.</li><li id="cce_01_0047__li07291449124616"><strong id="cce_01_0047__b1728781088">Limit</strong>: maximum number of CPU cores available for a container. Do not leave <strong id="cce_01_0047__b71778281894">Limit</strong> unspecified. Otherwise, intensive use of container resources will occur and your workload may exhibit unexpected behavior.</li></ul>
-<p id="cce_01_0047__p633394210502"><strong id="cce_01_0047__b149312464252">Memory</strong></p>
-<ul id="cce_01_0047__ul14326165915010"><li id="cce_01_0047__li15327155915017"><strong id="cce_01_0047__b2325104041116">Request</strong>: minimum amount of memory required by a container. The default value is 512 MiB.</li><li id="cce_01_0047__li0327259195017"><strong id="cce_01_0047__b4467144318115">Limit</strong>: maximum amount of memory available for a container. When memory usage exceeds the specified memory limit, the container will be terminated. </li></ul>
-<p id="cce_01_0047__p1825119142351">For more information about <strong id="cce_01_0047__b1672210449245">Request</strong> and <strong id="cce_01_0047__b5722194432420">Limit</strong>, see <a href="cce_01_0163.html">Setting Container Specifications</a>.</p>
-<p id="cce_01_0047__p38521896343"><strong id="cce_01_0047__b9658159125916">GPU</strong>: configurable only when the cluster contains GPU nodes.</p>
-<p id="cce_01_0047__p15403132914341">It indicates the percentage of GPU resources reserved for a container. Select <span class="uicontrol" id="cce_01_0047__uicontrol19942102410563"><b>Use</b></span> and set the percentage. For example, if this parameter is set to 10%, the container is allowed to use 10% of GPU resources. If you do not select <span class="uicontrol" id="cce_01_0047__uicontrol12950184715612"><b>Use</b></span> or set this parameter to <span class="parmvalue" id="cce_01_0047__parmvalue458724301413"><b>0</b></span>, no GPU resources can be used.</p>
-<p id="cce_01_0047__p9626154413340"><strong id="cce_01_0047__b20489865364">GPU/Graphics Card</strong>: The workload's pods will be scheduled to the node with the specified GPU.</p>
-<p id="cce_01_0047__p15765438173416">If <strong id="cce_01_0047__b376171219323">Any GPU type</strong> is selected, the container uses a random GPU in the node. If you select a specific GPU, the container uses this GPU accordingly.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0047__li32388111392"><strong id="cce_01_0047__b1811814372134">Lifecycle</strong>: Commands for starting and running containers can be set.<ul id="cce_01_0047__ul124564035015"><li id="cce_01_0047__li16519153875013"><strong id="cce_01_0047__b16554101991219">Start Command</strong>: executed when the workload is started. For details, see <a href="cce_01_0008.html">Setting Container Startup Commands</a>.</li><li id="cce_01_0047__li1782513550502"><strong id="cce_01_0047__b151136332127">Post-Start</strong>: executed after the workload runs successfully. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_01_0047__li864113426503"><strong id="cce_01_0047__b14841164721212">Pre-Stop</strong>: executed to delete logs or temporary files before the workload ends. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li></ul>
-</li><li id="cce_01_0047__li136942482097"><strong id="cce_01_0047__b62611842103018">Health Check</strong>: CCE provides two types of probes: liveness probe and readiness probe. They are used to determine whether containers and user services are running properly. For more information, see <a href="cce_01_0112.html">Setting Health Check for a Container</a>.<ul id="cce_01_0047__ul13466311391"><li id="cce_01_0047__li2466111392"><strong id="cce_01_0047__b56971206226">Liveness Probe</strong>: used to restart the unhealthy container.</li><li id="cce_01_0047__li94667111590"><strong id="cce_01_0047__b158039254221">Readiness Probe</strong>: used to change the container to the unready state when detecting that the container is unhealthy. In this way, service traffic will not be directed to the container.</li></ul>
-</li><li id="cce_01_0047__li557612420114"><strong id="cce_01_0047__b201393655011">Environment Variables</strong>: Environment variables can be added to a container. In general, environment variables are used to set parameters. <div class="p" id="cce_01_0047__p9697195651817">On the <span class="uicontrol" id="cce_01_0047__uicontrol168876396366"><b>Environment Variables</b></span> tab page, click <strong id="cce_01_0047__b125520434541">Add Environment Variable</strong>. Currently, three types of environment variables are supported:<ul id="cce_01_0047__ul13887039113610"><li id="cce_01_0047__li1788713397365"><strong id="cce_01_0047__b1323448596142039">Added manually</strong>: Set <strong id="cce_01_0047__b376903439142039">Variable Name</strong> and <strong id="cce_01_0047__b400931500142039">Variable Value/Reference</strong>.</li><li id="cce_01_0047__li388763963612"><strong id="cce_01_0047__b1396515598363">Added from Secret</strong>: Set <strong id="cce_01_0047__b12965059183612">Variable Name</strong> and select the desired secret name and data. A secret must be created in advance. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</li><li id="cce_01_0047__li288783963612"><strong id="cce_01_0047__b2096088672142111">Added from ConfigMap</strong>: Set <strong id="cce_01_0047__b634935011142111">Variable Name</strong> and select the desired ConfigMap name and data. A ConfigMap must be created in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.<div class="note" id="cce_01_0047__note470614298582"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0047__p10707122910587">To edit an environment variable that has been set, click <strong id="cce_01_0047__b106004813540">Edit</strong>. To delete an environment variable that has been set, click <strong id="cce_01_0047__b19257143125510">Delete</strong>.</p>
-</div></div>
-</li></ul>
-</div>
-</li><li id="cce_01_0047__li13746141121120"><strong id="cce_01_0047__b1272132725719">Data Storage</strong>: Data storage can be mounted to containers for persistent storage and high disk I/O. Local volume and cloud storage are supported. For details, see <a href="cce_01_0042.html">Storage (CSI)</a>.<div class="note" id="cce_01_0047__note1893813337536"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0047__p18938173335315">Currently, cloud storage cannot be mounted to secure (Kata) containers in a CCE Turbo cluster.</p>
-</div></div>
-</li><li id="cce_01_0047__li7767162152511"><strong id="cce_01_0047__b669215095116">Security Context</strong>: Container permissions can be configured to protect CCE and other containers from being affected.<p id="cce_01_0047__p202021016182811">Enter the user ID to set container permissions and prevent systems and other containers from being affected.</p>
-</li><li id="cce_01_0047__li106381946131117"><strong id="cce_01_0047__b112571342517">Log Policies</strong>: Log collection policies and log directory can be configured to collect container logs for unified management and analysis. For details, see <a href="cce_01_0018.html">Container Logs</a>.</li></ol>
-</p></li><li id="cce_01_0047__li3580132418215"><span>Click <span class="uicontrol" id="cce_01_0047__uicontrol020714554817"><b>Next: Set Application Access</b></span>. Then, click <span class="uicontrol" id="cce_01_0047__uicontrol114612509227"><b>Add Service</b></span> and set the workload access type.</span><p><p id="cce_01_0047__p381464813257">If your workload will be reachable to other workloads or public networks, add a Service to define the workload access type.</p>
-<p id="cce_01_0047__p33897513516">The workload access type determines the network attributes of the workload. Workloads with different access types can provide different network capabilities. For details, see <a href="cce_01_0010.html">Overview</a>.</p>
-</p></li><li id="cce_01_0047__li36451516615"><span>Click <span class="uicontrol" id="cce_01_0047__uicontrol10582159173710"><b>Next: Configure Advanced Settings</b></span> to configure advanced policies.</span><p><ul id="cce_01_0047__ul0183172014512"><li id="cce_01_0047__li06483333717"><strong id="cce_01_0047__b106194491389">Upgrade Mode</strong>: You can specify the upgrade mode of a Deployment, including <span class="uicontrol" id="cce_01_0047__uicontrol1387119260387"><b>Rolling upgrade</b></span> and <span class="uicontrol" id="cce_01_0047__uicontrol1748311294386"><b>In-place upgrade</b></span>.<ul id="cce_01_0047__ul31823209517"><li id="cce_01_0047__li12814038163917"><strong id="cce_01_0047__b198625111106">Rolling upgrade</strong>: Old pods are gradually replaced with new ones. During the upgrade, service traffic is evenly distributed to both pods to ensure service continuity.<ul id="cce_01_0047__ul234176144119"><li id="cce_01_0047__li534611144119"><strong id="cce_01_0047__b92318157253">Maximum Number of Unavailable Pods</strong>: maximum number of unavailable pods allowed in a rolling upgrade. If the number is equal to the total number of pods, services may be interrupted. Minimum number of alive pods = Total pods – Maximum number of unavailable pods</li></ul>
-</li><li id="cce_01_0047__li15540101118401"><strong id="cce_01_0047__b20687183912111">In-place upgrade</strong>: Old pods are deleted before new pods are created. Services will be interrupted during an in-place upgrade.</li></ul>
-</li><li id="cce_01_0047__li21301617436"><strong id="cce_01_0047__b1846713311465">Graceful Deletion</strong>: A time window can be set for workload deletion and reserved for executing commands in the pre-stop phase in the lifecycle. If workload processes are not terminated after the time window elapses, the workload will be forcibly deleted.<ul id="cce_01_0047__ul133343419433"><li id="cce_01_0047__li318213201855"><strong id="cce_01_0047__b0541948115116">Graceful Time Window (s)</strong>: Set a time window (0–9999s) for pre-stop commands to finish execution before a workload is deleted. The default value is 30s.</li><li id="cce_01_0047__li01675227146"><strong id="cce_01_0047__b75318381716">Scale Order</strong>: Choose <span class="parmvalue" id="cce_01_0047__parmvalue3926162931711"><b>Prioritize new pods</b></span> or <span class="parmvalue" id="cce_01_0047__parmvalue1997144618172"><b>Prioritize old pods</b></span> based on service requirements. <span class="parmvalue" id="cce_01_0047__parmvalue1998517552313"><b>Prioritize new pods</b></span> indicates that new pods will be first deleted when a scale-in is triggered.</li></ul>
-</li><li id="cce_01_0047__li544013520441"><strong id="cce_01_0047__b44402544414">Migration Policy</strong>: When the node where a workload's pods are located is unavailable for the specified amount of time, the pods will be rescheduled to other available nodes.<ul id="cce_01_0047__ul8396151311446"><li id="cce_01_0047__li12190134210518"><strong id="cce_01_0047__b5309226111618">Migration Time Window (s)</strong>: Set a time window for migration. The default value is 300s.</li></ul>
-</li><li id="cce_01_0047__li29401535165713"><strong id="cce_01_0047__b92691135725">Scheduling Policies</strong>: You can combine static global scheduling policies or dynamic runtime scheduling policies as required. For details, see <a href="cce_01_0051.html">Scheduling Policy Overview</a>.</li><li id="cce_01_0047__li15127423125217"><strong id="cce_01_0047__b19540359588">Advanced Pod Settings</strong><ul id="cce_01_0047__ul15756125395212"><li id="cce_01_0047__li1671890191212"><strong id="cce_01_0047__b1716755611438">Pod Label</strong>: The built-in <strong id="cce_01_0047__b9426111018448">app</strong> label is specified when the workload is created. It is used to set affinity and anti-affinity scheduling and cannot be modified. You can click <span class="uicontrol" id="cce_01_0047__uicontrol72371624529"><b>Add Label</b></span> to add labels.</li></ul>
-<div class="fignone" id="cce_01_0047__fig2225829163110"><span class="figcap"><b>Figure 1 </b>Advanced pod settings</span><br><span><img id="cce_01_0047__image1468415371626" src="en-us_image_0220765374.png"></span></div>
-</li><li id="cce_01_0047__li1772285622218"><strong id="cce_01_0047__b4950827165">Client DNS Configuration</strong>: A CCE cluster has a built-in DNS add-on (CoreDNS) to provide domain name resolution for workloads in the cluster. <ul id="cce_01_0047__ul9218338244"><li id="cce_01_0047__li34801125185919"><strong id="cce_01_0047__b1659101314456">DNS Policy</strong><ul id="cce_01_0047__ul0696537519"><li id="cce_01_0047__li5171255504"><strong id="cce_01_0047__b457117417818">ClusterFirst</strong>: The default DNS configuration overrides the <span class="uicontrol" id="cce_01_0047__uicontrol108011491423"><b>Nameserver</b></span> and <span class="uicontrol" id="cce_01_0047__uicontrol578652429"><b>DNS Search Domain</b></span> configurations of the client.</li><li id="cce_01_0047__li576964211"><strong id="cce_01_0047__b72301146283">None</strong>: Only the <span class="uicontrol" id="cce_01_0047__uicontrol7940171812294"><b>Nameserver</b></span> and <span class="uicontrol" id="cce_01_0047__uicontrol2940518172915"><b>DNS Search Domain</b></span> configurations are used for domain name resolution.</li><li id="cce_01_0047__li1666416213"><strong id="cce_01_0047__b36987155115">Default</strong>: The pod inherits the DNS configuration from the node on which the pod runs.</li></ul>
-</li><li id="cce_01_0047__li1383931112318"><strong id="cce_01_0047__b72651219280">Nameserver</strong>: You can configure a domain name server for a user-defined domain name. The value is one or a group of DNS IP addresses, for example, 1.2.3.4.</li><li id="cce_01_0047__li1935891810248"><strong id="cce_01_0047__b6637135395713">DNS Search Domain</strong>: a search list for host-name lookup. When a domain name cannot be resolved, DNS queries will be attempted combining the domain name with each domain in the search list in turn until a match is found or all domains in the search list are tried.</li><li id="cce_01_0047__li12674742122314"><strong id="cce_01_0047__b542711357283">Timeout (s)</strong>: amount of time the resolver will wait for a response from a remote name server before retrying the query on a different name server. Set it based on the site requirements.</li><li id="cce_01_0047__li6194537241"><strong id="cce_01_0047__b151901444102814">ndots</strong>: threshold for the number of dots that must appear in a domain name before an initial absolute query will be made. If a domain name has <strong id="cce_01_0047__b1259384716207">ndots</strong> or more than <strong id="cce_01_0047__b1096710298202">ndots</strong> dots, the name is a fully qualified domain name (FQDN) and will be tried first as an absolute name. If a domain name has less than <strong id="cce_01_0047__b9376181617208">ndots</strong> dots, the operating system will look up the name in a list of search domain names.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0047__li939210312512"><span>After the preceding configurations are complete, click <strong id="cce_01_0047__b10992115052917">Create</strong>. On the page displayed, click <strong id="cce_01_0047__b5116238183015">Return to Workload List</strong> to view the workload status.</span><p><p id="cce_01_0047__p43411647145216">If the workload is in the <span class="uicontrol" id="cce_01_0047__uicontrol3808193419321"><b>Running</b></span> state, it has been successfully created.</p>
-<p id="cce_01_0047__p1034114755215">Workload status is not updated in real time. Click <span><img id="cce_01_0047__image1279225783311" src="en-us_image_0183674977.png"></span> in the upper right corner or press <strong id="cce_01_0047__b1341347114214">F5</strong> to refresh the page.</p>
-</p></li><li id="cce_01_0047__li16135454966"><span>To access the workload in a browser, go to the workload list on the <strong id="cce_01_0047__b1875159638113822">Deployments</strong> page. Copy the corresponding <strong id="cce_01_0047__b20766850242">External Access Address</strong> and paste it into the address box in the browser.</span><p><div class="note" id="cce_01_0047__note114692046164717"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0047__ul82031499406"><li id="cce_01_0047__li3203169154014">External access addresses are available only if the Deployment access type is set to <strong id="cce_01_0047__b11461167112912">NodePort</strong> and an EIP is assigned to any node in the cluster, or if the Deployment access type is set to <strong id="cce_01_0047__b1946317192910">LoadBalancer (ELB)</strong>.</li><li id="cce_01_0047__li720312984011">If the workload list contains more than 500 records, the Kubernetes pagination mechanism will be used. Specifically, you can only go to the first page or the next page, but cannot go to the previous page. In addition, if resources are divided into discrete pages, the total number of resources displayed is the maximum number of resources that can be queried at a time, not the actual total number of resources.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0047__section155246177178"><a name="cce_01_0047__section155246177178"></a><a name="section155246177178"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0047__p13147194016468">The following procedure uses Nginx as an example to describe how to <span class="keyword" id="cce_01_0047__keyword1613307257114737">create a workload using kubectl</span>.</p>
-<ol id="cce_01_0047__ol1424992320616"><li id="cce_01_0047__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0047__li1020013819415"><span>Create and edit the <strong id="cce_01_0047__b27748113122">nginx-deployment.yaml</strong> file. <strong id="cce_01_0047__b630359246113719">nginx-deployment.yaml</strong> is an example file name. You can rename it as required.</span><p><p id="cce_01_0047__p7581950184318"><strong id="cce_01_0047__b111191541172515">vi nginx-deployment.yaml</strong></p>
-<p id="cce_01_0047__p5292517598">The following is an example YAML file. For more information about Deployments, see <a href="https://kubernetes.io/docs/concepts/workloads/controllers/deployment/" target="_blank" rel="noopener noreferrer">Kubernetes documentation</a>.</p>
-<pre class="screen" id="cce_01_0047__screen47761831782">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx    # If you use an image in <strong id="cce_01_0047__b6805145325216">My Images</strong>, obtain the image path from SWR.
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret</pre>
-<p id="cce_01_0047__p2848155215917">For details about these parameters, see <a href="#cce_01_0047__table132326831016">Table 3</a>.</p>
-
-<div class="tablenoborder"><a name="cce_01_0047__table132326831016"></a><a name="table132326831016"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0047__table132326831016" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Deployment YAML parameters</caption><thead align="left"><tr id="cce_01_0047__row523318817104"><th align="left" class="cellrowborder" valign="top" width="37%" id="mcps1.3.4.3.2.2.5.2.4.1.1"><p id="cce_01_0047__p162344817100">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="47%" id="mcps1.3.4.3.2.2.5.2.4.1.2"><p id="cce_01_0047__p16234138161012">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16%" id="mcps1.3.4.3.2.2.5.2.4.1.3"><p id="cce_01_0047__p102881159151016">Mandatory/Optional</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0047__row112346841018"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p182345811107">apiVersion</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p2023458141014">API version.</p>
-<div class="note" id="cce_01_0047__note143305521379"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0047__p1819911527102">Set this parameter based on the cluster version.</p>
-<ul id="cce_01_0047__ul1823483313109"><li id="cce_01_0047__li20235163319106">For clusters of v1.17 or later, the apiVersion format of Deployments is <strong id="cce_01_0047__b1946544592610">apps/v1</strong>.</li><li id="cce_01_0047__li19235203331014">For clusters of v1.15 or earlier, the apiVersion format of Deployments is <strong id="cce_01_0047__b73401590270">extensions/v1beta1</strong>. </li></ul>
-</div></div>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p6234158101019">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row202347814100"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p172342815109">kind</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p142346871019">Type of a created object.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p2023416841019">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row1459172931315"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p1659232941311">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p165932298137">Metadata of a resource object.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p16593112941310">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row33638545115"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p036575412114">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p1036510541116">Name of the Deployment.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p1936585415110">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row52341382109"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p2234188171017">Spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p1023414811012">Detailed description of the Deployment.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p92341186101">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row490820516139"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p99089513134">replicas</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p1890815551313">Number of pods.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p1390895141312">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row29372135139"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p1493821315132">selector</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p10938171341312">Determines container pods that can be managed by the Deployment.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p5939181320135">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row393931310133"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p8731714131517">strategy</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p24327545152918">Upgrade mode. Possible values:</p>
-<ul id="cce_01_0047__ul2391401152910"><li id="cce_01_0047__li64771531152920">RollingUpdate</li><li id="cce_01_0047__li22390446152910">ReplaceUpdate</li></ul>
-<p id="cce_01_0047__p43301055163212">By default, rolling update is used.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p169393137138">Optional</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row793916134135"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p14939131391317">template</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p993921331312">Detailed description of a created container pod.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p1193919138132">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row69398139139"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p132126496218">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p10939121391317">Metadata.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p4939161321314">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row1479918372441"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p67994378445">labels</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p1680012377440"><strong id="cce_01_0047__b842352706115258">metadata.labels</strong>: Container labels.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p180033714449">Optional</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row6939151316138"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p793911361316">spec:</p>
-<p id="cce_01_0047__p17330235102212">containers</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><ul id="cce_01_0047__ul48282256265"><li id="cce_01_0047__li15828142513268"><strong id="cce_01_0047__b021334265015">image</strong> (mandatory): Name of a container image.</li><li id="cce_01_0047__li37363299261"><strong id="cce_01_0047__b17212125217501">imagePullPolicy </strong>(optional): Policy for obtaining an image. The options include <strong id="cce_01_0047__b47004369113256">Always</strong> (attempting to download images each time), <strong id="cce_01_0047__b1385119962113256">Never</strong> (only using local images), and <strong id="cce_01_0047__b1264351417113256">IfNotPresent</strong> (using local images if they are available; downloading images if local images are unavailable). The default value is <strong id="cce_01_0047__b184934519113256">Always</strong>.</li><li id="cce_01_0047__li11743144117263"><strong id="cce_01_0047__b658160590113251">name </strong>(mandatory): Container name.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p1193991381318">Mandatory</p>
-</td>
-</tr>
-<tr id="cce_01_0047__row18939013161315"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_01_0047__p159394135139">imagePullSecrets</p>
-</td>
-<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_01_0047__p49391813131318">Name of the secret used during image pulling. If a private image is used, this parameter is mandatory.</p>
-<ul id="cce_01_0047__ul125550172614"><li id="cce_01_0047__li1117672142612">To pull an image from the Software Repository for Container (SWR), set this parameter to <strong id="cce_01_0047__b1963523125916">default-secret</strong>.</li><li id="cce_01_0047__li25520122618">To pull an image from a third-party image repository, set this parameter to the name of the created secret.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_01_0047__p1193981391318">Optional</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0047__li12194551184412"><span>Create a Deployment.</span><p><p id="cce_01_0047__p175719718459"><strong id="cce_01_0047__b692820516453">kubectl create -f nginx-deployment.yaml</strong></p>
-<p id="cce_01_0047__p128631411141717">If the following information is displayed, the Deployment is being created.</p>
-<pre class="screen" id="cce_01_0047__screen1028913107179">deployment "nginx" created</pre>
-</p></li><li id="cce_01_0047__li166931817162412"><span>Query the Deployment status.</span><p><p id="cce_01_0047__p1127482013249"><strong id="cce_01_0047__b8874010124511">kubectl get deployment</strong></p>
-<p id="cce_01_0047__p1046019326248">If the following information is displayed, the Deployment is running.</p>
-<pre class="screen" id="cce_01_0047__screen148241342419">NAME           READY     UP-TO-DATE   AVAILABLE   AGE 
-nginx          1/1       1            1           4m5s</pre>
-<p id="cce_01_0047__p194511348101611"><strong id="cce_01_0047__b1018145319612">Parameter description</strong></p>
-<ul id="cce_01_0047__ul1964317513175"><li id="cce_01_0047__li1264312531719"><strong id="cce_01_0047__b78812106125">NAME</strong>: pod name</li><li id="cce_01_0047__li864317513171"><strong id="cce_01_0047__b1048742018121">READY</strong>: number of pod replicas that have been deployed</li><li id="cce_01_0047__li16643955172"><strong id="cce_01_0047__b108214291073">STATUS</strong>: status of the Deployment</li><li id="cce_01_0047__li18643558176"><strong id="cce_01_0047__b620913401719">RESTARTS</strong>: restart times</li><li id="cce_01_0047__li964310512175"><strong id="cce_01_0047__b1263501118815">AGE</strong>: period the Deployment keeps running</li></ul>
-</p></li><li id="cce_01_0047__li128617541093"><span>If the Deployment will be accessed through a ClusterIP or NodePort Service, add the corresponding Service. For details, see <a href="cce_01_0020.html">Networking</a>.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0048.html b/docs/cce/umn/cce_01_0048.html
deleted file mode 100644
index 18d3e23c..00000000
--- a/docs/cce/umn/cce_01_0048.html
+++ /dev/null
@@ -1,224 +0,0 @@
-<a name="cce_01_0048"></a><a name="cce_01_0048"></a>
-
-<h1 class="topictitle1">Creating a StatefulSet</h1>
-<div id="body1505966783091"><div class="section" id="cce_01_0048__section530452474212"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0048__p475763119422">StatefulSets are a type of workloads whose data or status is stored while they are running. For example, MySQL is a StatefulSet because it needs to store new data.</p>
-<p id="cce_01_0048__p167381126153418">A container can be migrated between different hosts, but data is not stored on the hosts. To store StatefulSet data persistently, attach HA storage volumes provided by CCE to the container.</p>
-</div>
-<div class="section" id="cce_01_0048__section1734962819219"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0048__ul1685719423426"><li id="cce_01_0048__li612018144437">Before creating a workload, you must have an available cluster. For details on how to create a cluster, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_01_0048__li19160540131415">To enable public access to a workload, ensure that an EIP or load balancer has been bound to at least one node in the cluster.<div class="note" id="cce_01_0048__note991371915511"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0048__p195248425512">If a pod has multiple containers, ensure that the ports used by the containers do not conflict with each other. Otherwise, creating the StatefulSet will fail.</p>
-</div></div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0048__section16385130102112"><h4 class="sectiontitle">Using the CCE Console</h4><div class="p" id="cce_01_0048__p012861355315">CCE provides multiple methods for creating a workload. You can use any of the following methods:<ol id="cce_01_0048__ol181151743153310"><li id="cce_01_0048__li32713413484">Use an image in <span id="cce_01_0048__text1479128163413">Third-Party Images</span>. You do not need to upload any image before using it.</li><li id="cce_01_0048__li128525419422">Use an image that you have uploaded to SWR.</li><li id="cce_01_0048__li16698770223">Use a shared image to create a workload. Specifically, other tenants share an image with you by using the SWR service.</li><li id="cce_01_0048__li1426183514310">Use a YAML file to create a workload. You can click <strong id="cce_01_0048__b12381058164410"><span class="keyword" id="cce_01_0048__keyword33817587448">Create YAML</span></strong> on the right of the <strong id="cce_01_0048__b93829584445">Create StatefulSet</strong> page. For details about YAML, see <a href="#cce_01_0048__section113441881214">Using kubectl</a>. After the YAML file is written, click <strong id="cce_01_0048__b1459112515464">Create</strong> to create a workload.<div class="note" id="cce_01_0048__note22618355314"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0048__p290410511910">Settings in the YAML file are synchronized with those on the console. You can edit the YAML file on the console to create a workload. For example:</p>
-<ul id="cce_01_0048__ul14171822101013"><li id="cce_01_0048__li19171142251014">If you enter a workload name on the console, the name will automatically appear in the YAML file.</li><li id="cce_01_0048__li1417110222102">If you add an image on the console, the image will be automatically added to the YAML file.</li></ul>
-<p id="cce_01_0048__p81521271112">When you click <strong id="cce_01_0048__b382014752814">Create YAML</strong> on the right of the console, do not create multiple YAML files in the YAML definition pane displayed. You need to create them one by one. Otherwise, an error will be reported during the creation.</p>
-</div></div>
-</li></ol>
-</div>
-<ol id="cce_01_0048__ol203661632118"><li id="cce_01_0048__li490240103814"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0048__b20512192075113">Workloads</strong> &gt; <strong id="cce_01_0048__b4512520115119">StatefulSets</strong>. On the displayed page, click <strong id="cce_01_0048__b1751362014516">Create StatefulSet</strong>. Set basic workload parameters as described in <a href="#cce_01_0048__table12741447488">Table 1</a>. The parameters marked with an asterisk (*) are mandatory.</span><p>
-<div class="tablenoborder"><a name="cce_01_0048__table12741447488"></a><a name="table12741447488"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0048__table12741447488" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic workload parameters</caption><thead align="left"><tr id="cce_01_0048__cce_01_0047_row52758419481"><th align="left" class="cellrowborder" valign="top" width="23.07%" id="mcps1.3.3.3.1.2.1.2.3.1.1"><p id="cce_01_0048__cce_01_0047_p152759464816">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.92999999999999%" id="mcps1.3.3.3.1.2.1.2.3.1.2"><p id="cce_01_0048__cce_01_0047_p3275134114811">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0048__cce_01_0047_row18415163712618"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p32763416485">* Workload Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p5276341485">Name of a workload, which must be unique.</p>
-<p id="cce_01_0048__cce_01_0047_p99562111597">Enter 4 to 52 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row81437181202"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p514451811010">* Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p323714215492">Cluster to which the workload belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row169810201307"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p19698152011011">* Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p12447336131710">In a single cluster, data in different namespaces is isolated from each other. This enables applications to share the services of the same cluster without interfering each other. If no namespace is set, the <strong id="cce_01_0048__b0450144334612">default</strong> namespace is used.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row165805182316"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p45913512317">* Instances</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p1042648123717">Number of pods in a workload. A workload can have one or more pods. The default value is <strong id="cce_01_0048__b7381829144716">2</strong>. You can customize the value, for example, setting it to <strong id="cce_01_0048__b15431029104712">1</strong>.</p>
-<p id="cce_01_0048__cce_01_0047_p17713926910">Each workload pod consists of the same containers. You can configure multiple pods for a workload to ensure high reliability. For such a workload, if one pod is faulty, the workload can still run properly. If only one pod is used, a node or pod exception may cause service exceptions.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row18442191224514"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p244261214513">Time Zone Synchronization</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p644215125454">If this parameter is enabled, the container and the node use the same time zone.</p>
-<div class="notice" id="cce_01_0048__cce_01_0047_note5422953172616"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0048__cce_01_0047_p11422145392614">After time zone synchronization is enabled, disks of the hostPath type will be automatically added and listed in the <strong id="cce_01_0048__b16481154495113">Data Storage</strong> &gt; <strong id="cce_01_0048__b34861447512">Local Volume</strong> area. Do not modify or delete the disks.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row1027719414818"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.3.1.2.1.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p1527715418485">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.3.1.2.1.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p827734134817">Description of the workload.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0048__li104527416528"><span>Click <strong id="cce_01_0048__b1645251473912">Next: Add Container</strong>.</span><p><ol type="a" id="cce_01_0048__ol14337125410526"><li id="cce_01_0048__l3a64f7ec0b9c428796fabd9e95960c1e">Click <strong id="cce_01_0048__cce_01_0047_b842352706164643">Add Container</strong> and select the image to be deployed.<ul id="cce_01_0048__cce_01_0047_ul43691476597"><li id="cce_01_0048__cce_01_0047_l2da4599a06574ef2b0ac10946059a8b3"><strong id="cce_01_0048__cce_01_0047_b15727110141014">My Images</strong>: Create a workload using an image in the image repository you created.</li><li id="cce_01_0048__cce_01_0047_li559823415327"><strong id="cce_01_0048__cce_01_0047_b842352706165735">Third-Party Images</strong>: Create a workload using an image from any third-party image repository. When you create a workload using a third-party image, ensure that the node where the workload is running can access public networks. For details on how to create a workload using a third-party image, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.<ul id="cce_01_0048__cce_01_0047_ul132968453466"><li id="cce_01_0048__cce_01_0047_li1293204318469">If your image repository does not require authentication, set <strong id="cce_01_0048__cce_01_0047_b17571823181115">Secret Authentication</strong> to <strong id="cce_01_0048__cce_01_0047_b05712310114">No</strong>, enter an image pull address, and then click <strong id="cce_01_0048__cce_01_0047_b6571423161120">OK</strong>.</li><li id="cce_01_0048__cce_01_0047_li670713173471">If your image repository must be authenticated (account and password), you need to create a secret and then use a third-party image. For details, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.</li></ul>
-</li><li id="cce_01_0048__cce_01_0047_li762719255234"><strong id="cce_01_0048__cce_01_0047_b842352706165837">Shared Images</strong>: Create a workload using an image shared by another tenant through the SWR service.</li></ul>
-</li><li id="cce_01_0048__en-us_topic_0077759602_li72821454814">Configure basic image information.<div class="p" id="cce_01_0048__p10259132418370"><a name="cce_01_0048__en-us_topic_0077759602_li72821454814"></a><a name="en-us_topic_0077759602_li72821454814"></a>A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click <strong id="cce_01_0048__b1811787164011">Add Container</strong> in the upper right corner to add multiple container images and set them separately.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0048__table14155182113372" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Image parameters</caption><thead align="left"><tr id="cce_01_0048__cce_01_0047_row0282348486"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.1"><p id="cce_01_0048__cce_01_0047_p3282147483">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.2"><p id="cce_01_0048__cce_01_0047_p1828244144819">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0048__cce_01_0047_row1844916557597"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p182837474815">Image Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p3283134134820">Name of the image. You can click <strong id="cce_01_0048__cce_01_0047_b84235270617012">Change Image</strong> to update it.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row338117362515"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p1038143616517">*Image Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p1338110368519">Select the image tag to be deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row32839494813"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p122831140486">*Container Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p528314415486">Name of the container. You can modify it.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row1449911299503"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p53374336504">Privileged Container</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p49887211526">Programs in a privileged container have certain privileges.</p>
-<p id="cce_01_0048__cce_01_0047_p65001729105011">If <strong id="cce_01_0048__cce_01_0047_b13252222105114">Privileged Container</strong> is <strong id="cce_01_0048__cce_01_0047_b11849182725112">On</strong>, the container is granted superuser permissions. For example, privileged containers can manipulate network devices on the host machine and modify kernel parameters.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__cce_01_0047_row152831345485"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.1 "><p id="cce_01_0048__cce_01_0047_p875325925918">Container Resources</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.3.2.2.1.2.1.2.2.3.1.2 "><p id="cce_01_0048__cce_01_0047_p5379182494610"><strong id="cce_01_0048__cce_01_0047_b195545582515">CPU</strong></p>
-<ul id="cce_01_0048__cce_01_0047_ul67283495467"><li id="cce_01_0048__cce_01_0047_li9729124917467"><strong id="cce_01_0048__cce_01_0047_b837912315811">Request</strong>: minimum number of CPU cores required by a container. The default value is 0.25 cores.</li><li id="cce_01_0048__cce_01_0047_li07291449124616"><strong id="cce_01_0048__cce_01_0047_b1728781088">Limit</strong>: maximum number of CPU cores available for a container. Do not leave <strong id="cce_01_0048__cce_01_0047_b71778281894">Limit</strong> unspecified. Otherwise, intensive use of container resources will occur and your workload may exhibit unexpected behavior.</li></ul>
-<p id="cce_01_0048__cce_01_0047_p633394210502"><strong id="cce_01_0048__cce_01_0047_b149312464252">Memory</strong></p>
-<ul id="cce_01_0048__cce_01_0047_ul14326165915010"><li id="cce_01_0048__cce_01_0047_li15327155915017"><strong id="cce_01_0048__cce_01_0047_b2325104041116">Request</strong>: minimum amount of memory required by a container. The default value is 512 MiB.</li><li id="cce_01_0048__cce_01_0047_li0327259195017"><strong id="cce_01_0048__cce_01_0047_b4467144318115">Limit</strong>: maximum amount of memory available for a container. When memory usage exceeds the specified memory limit, the container will be terminated. </li></ul>
-<p id="cce_01_0048__cce_01_0047_p1825119142351">For more information about <strong id="cce_01_0048__cce_01_0047_b1672210449245">Request</strong> and <strong id="cce_01_0048__cce_01_0047_b5722194432420">Limit</strong>, see <a href="cce_01_0163.html">Setting Container Specifications</a>.</p>
-<p id="cce_01_0048__cce_01_0047_p38521896343"><strong id="cce_01_0048__cce_01_0047_b9658159125916">GPU</strong>: configurable only when the cluster contains GPU nodes.</p>
-<p id="cce_01_0048__cce_01_0047_p15403132914341">It indicates the percentage of GPU resources reserved for a container. Select <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol19942102410563"><b>Use</b></span> and set the percentage. For example, if this parameter is set to 10%, the container is allowed to use 10% of GPU resources. If you do not select <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol12950184715612"><b>Use</b></span> or set this parameter to <span class="parmvalue" id="cce_01_0048__cce_01_0047_parmvalue458724301413"><b>0</b></span>, no GPU resources can be used.</p>
-<p id="cce_01_0048__cce_01_0047_p9626154413340"><strong id="cce_01_0048__cce_01_0047_b20489865364">GPU/Graphics Card</strong>: The workload's pods will be scheduled to the node with the specified GPU.</p>
-<p id="cce_01_0048__cce_01_0047_p15765438173416">If <strong id="cce_01_0048__cce_01_0047_b376171219323">Any GPU type</strong> is selected, the container uses a random GPU in the node. If you select a specific GPU, the container uses this GPU accordingly.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</li><li id="cce_01_0048__li1461216451621"><strong id="cce_01_0048__cce_01_0047_b1811814372134">Lifecycle</strong>: Commands for starting and running containers can be set.<ul id="cce_01_0048__cce_01_0047_ul124564035015"><li id="cce_01_0048__cce_01_0047_li16519153875013"><strong id="cce_01_0048__cce_01_0047_b16554101991219">Start Command</strong>: executed when the workload is started. For details, see <a href="cce_01_0008.html">Setting Container Startup Commands</a>.</li><li id="cce_01_0048__cce_01_0047_li1782513550502"><strong id="cce_01_0048__cce_01_0047_b151136332127">Post-Start</strong>: executed after the workload runs successfully. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_01_0048__cce_01_0047_li864113426503"><strong id="cce_01_0048__cce_01_0047_b14841164721212">Pre-Stop</strong>: executed to delete logs or temporary files before the workload ends. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li></ul>
-</li><li id="cce_01_0048__li118475411326"><strong id="cce_01_0048__cce_01_0047_b62611842103018">Health Check</strong>: CCE provides two types of probes: liveness probe and readiness probe. They are used to determine whether containers and user services are running properly. For more information, see <a href="cce_01_0112.html">Setting Health Check for a Container</a>.<ul id="cce_01_0048__cce_01_0047_ul13466311391"><li id="cce_01_0048__cce_01_0047_li2466111392"><strong id="cce_01_0048__cce_01_0047_b56971206226">Liveness Probe</strong>: used to restart the unhealthy container.</li><li id="cce_01_0048__cce_01_0047_li94667111590"><strong id="cce_01_0048__cce_01_0047_b158039254221">Readiness Probe</strong>: used to change the container to the unready state when detecting that the container is unhealthy. In this way, service traffic will not be directed to the container.</li></ul>
-</li><li id="cce_01_0048__li45463553255"><strong id="cce_01_0048__cce_01_0047_b201393655011">Environment Variables</strong>: Environment variables can be added to a container. In general, environment variables are used to set parameters. <div class="p" id="cce_01_0048__cce_01_0047_p9697195651817">On the <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol168876396366"><b>Environment Variables</b></span> tab page, click <strong id="cce_01_0048__cce_01_0047_b125520434541">Add Environment Variable</strong>. Currently, three types of environment variables are supported:<ul id="cce_01_0048__cce_01_0047_ul13887039113610"><li id="cce_01_0048__cce_01_0047_li1788713397365"><strong id="cce_01_0048__cce_01_0047_b1323448596142039">Added manually</strong>: Set <strong id="cce_01_0048__cce_01_0047_b376903439142039">Variable Name</strong> and <strong id="cce_01_0048__cce_01_0047_b400931500142039">Variable Value/Reference</strong>.</li><li id="cce_01_0048__cce_01_0047_li388763963612"><strong id="cce_01_0048__cce_01_0047_b1396515598363">Added from Secret</strong>: Set <strong id="cce_01_0048__cce_01_0047_b12965059183612">Variable Name</strong> and select the desired secret name and data. A secret must be created in advance. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</li><li id="cce_01_0048__cce_01_0047_li288783963612"><strong id="cce_01_0048__cce_01_0047_b2096088672142111">Added from ConfigMap</strong>: Set <strong id="cce_01_0048__cce_01_0047_b634935011142111">Variable Name</strong> and select the desired ConfigMap name and data. A ConfigMap must be created in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.<div class="note" id="cce_01_0048__cce_01_0047_note470614298582"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0048__cce_01_0047_p10707122910587">To edit an environment variable that has been set, click <strong id="cce_01_0048__cce_01_0047_b106004813540">Edit</strong>. To delete an environment variable that has been set, click <strong id="cce_01_0048__cce_01_0047_b19257143125510">Delete</strong>.</p>
-</div></div>
-</li></ul>
-</div>
-</li><li id="cce_01_0048__li18761843173219"><strong id="cce_01_0048__b4777810111718">Data Storage</strong>: Data storage can be mounted to containers for persistent storage and high disk I/O. Local volume and cloud storage are supported. For details, see <a href="cce_01_0042.html">Storage (CSI)</a>.<div class="note" id="cce_01_0048__note6579161125218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0048__p958011116522">You can add data storage volumes only when creating a StatefulSet.</p>
-</div></div>
-</li><li id="cce_01_0048__li712816716330"><strong id="cce_01_0048__cce_01_0047_b669215095116">Security Context</strong>: Container permissions can be configured to protect CCE and other containers from being affected.<p id="cce_01_0048__cce_01_0047_p202021016182811">Enter the user ID to set container permissions and prevent systems and other containers from being affected.</p>
-</li><li id="cce_01_0048__li11696131133314"><strong id="cce_01_0048__cce_01_0047_b112571342517">Log Policies</strong>: Log collection policies and log directory can be configured to collect container logs for unified management and analysis. For details, see <a href="cce_01_0018.html">Container Logs</a>.</li></ol>
-</p></li><li id="cce_01_0048__li75471087555"><span>Click <strong id="cce_01_0048__b21734406462">Next: Set Application Access</strong> and set <strong id="cce_01_0048__b104291958133114">Headless Service</strong> and workload access type.</span><p><div class="p" id="cce_01_0048__p1942517501495"><a href="#cce_01_0048__table2293204814496">Table 3</a> describes the parameters in the <strong id="cce_01_0048__b16346745173219">Headless Service</strong> area.
-<div class="tablenoborder"><a name="cce_01_0048__table2293204814496"></a><a name="table2293204814496"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0048__table2293204814496" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Parameter description</caption><thead align="left"><tr id="cce_01_0048__row4293184813490"><th align="left" class="cellrowborder" valign="top" width="18%" id="mcps1.3.3.3.3.2.1.3.2.3.1.1"><p id="cce_01_0048__p1929315489491">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="82%" id="mcps1.3.3.3.3.2.1.3.2.3.1.2"><p id="cce_01_0048__p11293948134919">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0048__row9293194864911"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.3.3.3.2.1.3.2.3.1.1 "><p id="cce_01_0048__p229384818497">Service Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="82%" headers="mcps1.3.3.3.3.2.1.3.2.3.1.2 "><p id="cce_01_0048__p1229313484495">Name of the Service corresponding to the workload for mutual access between pods. This Service is used for internal discovery of pods, and does not require an independent IP address or load balancing.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__row15293748104915"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.3.3.3.2.1.3.2.3.1.1 "><p id="cce_01_0048__p6293144814912">Port Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="82%" headers="mcps1.3.3.3.3.2.1.3.2.3.1.2 "><p id="cce_01_0048__p9293144884912">Name of the container port. You are advised to enter a name that indicates the function of the port.</p>
-</td>
-</tr>
-<tr id="cce_01_0048__row1129313489499"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.3.3.3.2.1.3.2.3.1.1 "><p id="cce_01_0048__p1829304834913">Container Port</p>
-</td>
-<td class="cellrowborder" valign="top" width="82%" headers="mcps1.3.3.3.3.2.1.3.2.3.1.2 "><p id="cce_01_0048__p42931448114914">Listening port inside the container.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<p id="cce_01_0048__p13293748134910">Click <strong id="cce_01_0048__b116549026515542">Add Service</strong> and set the workload access type.</p>
-<p id="cce_01_0048__p5293114820497">If your workload will be reachable to other workloads or public networks, add a Service to define the workload access type.</p>
-<p id="cce_01_0048__p3293124814496">The workload access type determines the network attributes of the workload. Workloads with different access types can provide different network capabilities. For details, see <a href="cce_01_0010.html">Overview</a>.</p>
-</p></li><li id="cce_01_0048__li7618105914713"><span>Click <span class="uicontrol" id="cce_01_0048__ubfa7ece6e0084a8e8942facce06defcc"><b>Next: Configure Advanced Settings</b></span>.</span><p><ul id="cce_01_0048__udb277f30d99b4d13bb0dba5005c9f919"><li id="cce_01_0048__en-us_topic_0104802762_li41827202516"><strong id="cce_01_0048__b103281451573">Upgrade Policy</strong>: Only <strong id="cce_01_0048__b1032920519716">Rolling upgrade</strong> is supported.<p id="cce_01_0048__p72221540145914">During a rolling upgrade, old pods are gradually replaced with new ones, and service traffic is evenly distributed to both pods to ensure service continuity.</p>
-</li><li id="cce_01_0048__li3977114254516"><strong id="cce_01_0048__b49801929134014">Pod Management Policy</strong>: There are two types of policies: ordered and parallel.<p id="cce_01_0048__p1151415034816"><strong id="cce_01_0048__b13534251116">Ordered</strong>: The StatefulSet will deploy, delete, or scale pods in order and one by one (the StatefulSet waits until each pod is ready before continuing). This is the default policy.</p>
-<p id="cce_01_0048__p1883821184610"><strong id="cce_01_0048__b087715501416">Parallel</strong>: The StatefulSet will create pods in parallel to match the desired scale without waiting, and will delete all pods at once.</p>
-</li><li id="cce_01_0048__l1127115570554e35a38b34f9f4ee947d"><strong id="cce_01_0048__cce_01_0047_b1846713311465">Graceful Deletion</strong>: A time window can be set for workload deletion and reserved for executing commands in the pre-stop phase in the lifecycle. If workload processes are not terminated after the time window elapses, the workload will be forcibly deleted.<ul id="cce_01_0048__cce_01_0047_ul133343419433"><li id="cce_01_0048__cce_01_0047_li318213201855"><strong id="cce_01_0048__cce_01_0047_b0541948115116">Graceful Time Window (s)</strong>: Set a time window (0–9999s) for pre-stop commands to finish execution before a workload is deleted. The default value is 30s.</li><li id="cce_01_0048__cce_01_0047_li01675227146"><strong id="cce_01_0048__cce_01_0047_b75318381716">Scale Order</strong>: Choose <span class="parmvalue" id="cce_01_0048__cce_01_0047_parmvalue3926162931711"><b>Prioritize new pods</b></span> or <span class="parmvalue" id="cce_01_0048__cce_01_0047_parmvalue1997144618172"><b>Prioritize old pods</b></span> based on service requirements. <span class="parmvalue" id="cce_01_0048__cce_01_0047_parmvalue1998517552313"><b>Prioritize new pods</b></span> indicates that new pods will be first deleted when a scale-in is triggered.</li></ul>
-</li><li id="cce_01_0048__li175331549134017"><strong id="cce_01_0048__cce_01_0047_b92691135725">Scheduling Policies</strong>: You can combine static global scheduling policies or dynamic runtime scheduling policies as required. For details, see <a href="cce_01_0051.html">Scheduling Policy Overview</a>.</li><li id="cce_01_0048__li516015330120"><strong id="cce_01_0048__cce_01_0047_b19540359588">Advanced Pod Settings</strong><ul id="cce_01_0048__cce_01_0047_ul15756125395212"><li id="cce_01_0048__cce_01_0047_li1671890191212"><strong id="cce_01_0048__cce_01_0047_b1716755611438">Pod Label</strong>: The built-in <strong id="cce_01_0048__cce_01_0047_b9426111018448">app</strong> label is specified when the workload is created. It is used to set affinity and anti-affinity scheduling and cannot be modified. You can click <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol72371624529"><b>Add Label</b></span> to add labels.</li></ul>
-<div class="fignone" id="cce_01_0048__cce_01_0047_fig2225829163110"><span class="figcap"><b>Figure 1 </b>Advanced pod settings</span><br><span><img id="cce_01_0048__cce_01_0047_image1468415371626" src="en-us_image_0220765374.png"></span></div>
-</li><li id="cce_01_0048__li2764148297"><strong id="cce_01_0048__cce_01_0047_b4950827165">Client DNS Configuration</strong>: A CCE cluster has a built-in DNS add-on (CoreDNS) to provide domain name resolution for workloads in the cluster. <ul id="cce_01_0048__cce_01_0047_ul9218338244"><li id="cce_01_0048__cce_01_0047_li34801125185919"><strong id="cce_01_0048__cce_01_0047_b1659101314456">DNS Policy</strong><ul id="cce_01_0048__cce_01_0047_ul0696537519"><li id="cce_01_0048__cce_01_0047_li5171255504"><strong id="cce_01_0048__cce_01_0047_b457117417818">ClusterFirst</strong>: The default DNS configuration overrides the <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol108011491423"><b>Nameserver</b></span> and <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol578652429"><b>DNS Search Domain</b></span> configurations of the client.</li><li id="cce_01_0048__cce_01_0047_li576964211"><strong id="cce_01_0048__cce_01_0047_b72301146283">None</strong>: Only the <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol7940171812294"><b>Nameserver</b></span> and <span class="uicontrol" id="cce_01_0048__cce_01_0047_uicontrol2940518172915"><b>DNS Search Domain</b></span> configurations are used for domain name resolution.</li><li id="cce_01_0048__cce_01_0047_li1666416213"><strong id="cce_01_0048__cce_01_0047_b36987155115">Default</strong>: The pod inherits the DNS configuration from the node on which the pod runs.</li></ul>
-</li><li id="cce_01_0048__cce_01_0047_li1383931112318"><strong id="cce_01_0048__cce_01_0047_b72651219280">Nameserver</strong>: You can configure a domain name server for a user-defined domain name. The value is one or a group of DNS IP addresses, for example, 1.2.3.4.</li><li id="cce_01_0048__cce_01_0047_li1935891810248"><strong id="cce_01_0048__cce_01_0047_b6637135395713">DNS Search Domain</strong>: a search list for host-name lookup. When a domain name cannot be resolved, DNS queries will be attempted combining the domain name with each domain in the search list in turn until a match is found or all domains in the search list are tried.</li><li id="cce_01_0048__cce_01_0047_li12674742122314"><strong id="cce_01_0048__cce_01_0047_b542711357283">Timeout (s)</strong>: amount of time the resolver will wait for a response from a remote name server before retrying the query on a different name server. Set it based on the site requirements.</li><li id="cce_01_0048__cce_01_0047_li6194537241"><strong id="cce_01_0048__cce_01_0047_b151901444102814">ndots</strong>: threshold for the number of dots that must appear in a domain name before an initial absolute query will be made. If a domain name has <strong id="cce_01_0048__cce_01_0047_b1259384716207">ndots</strong> or more than <strong id="cce_01_0048__cce_01_0047_b1096710298202">ndots</strong> dots, the name is a fully qualified domain name (FQDN) and will be tried first as an absolute name. If a domain name has less than <strong id="cce_01_0048__cce_01_0047_b9376181617208">ndots</strong> dots, the operating system will look up the name in a list of search domain names.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0048__li1540515915518"><span>Click <strong id="cce_01_0048__b17191153910154">Create</strong> and then <strong id="cce_01_0048__b176947318492">Back to StatefulSet List</strong>. If the workload is in the <span class="uicontrol" id="cce_01_0048__uicontrol10634125652014"><b>Running</b></span> state, it has been successfully created. If the workload status is not updated, click <span><img id="cce_01_0048__image1279225783311" src="en-us_image_0300973777.png"></span> in the upper right corner or press <strong id="cce_01_0048__b783510134213">F5</strong> to refresh the page.</span><p><div class="note" id="cce_01_0048__note114692046164717"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0048__ul15823925143710"><li id="cce_01_0048__li7871459104815">When a node is unavailable, pods become <strong id="cce_01_0048__b796343044816">Unready</strong>. In this case, you need to manually delete the pods of the StatefulSet so that the pods can be migrated to a normal node.</li><li id="cce_01_0048__li13823172523711">If the workload list contains more than 500 records, the Kubernetes pagination mechanism will be used. Specifically, you can only go to the first page or the next page, but cannot go to the previous page. In addition, if resources are divided into discrete pages, the total number of resources displayed is the maximum number of resources that can be queried at a time, not the actual total number of resources.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0048__section113441881214"><a name="cce_01_0048__section113441881214"></a><a name="section113441881214"></a><h4 class="sectiontitle"><span class="keyword" id="cce_01_0048__keyword1096424634155120">Using kubectl</span></h4><p id="cce_01_0048__p13147194016468">The following procedure uses an etcd workload as an example to describe how to create a workload using kubectl.</p>
-<ol id="cce_01_0048__ol8784163652310"><li id="cce_01_0048__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0048__li786619612249"><span>Create and edit the <strong id="cce_01_0048__b17333192071415">etcd-statefulset.yaml</strong> file.</span><p><p id="cce_01_0048__li1020013819415p0"><strong id="cce_01_0048__b122558194376">etcd-statefulset.yaml</strong> is an example file name, and you can change it as required.</p>
-<p id="cce_01_0048__p1587215618244"><strong id="cce_01_0048__b28744642413">vi etcd-statefulset.yaml</strong></p>
-<p id="cce_01_0048__p211135719251">The following provides an example of the file contents. For more information on StatefulSet, see the <a href="https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/" target="_blank" rel="noopener noreferrer">Kubernetes documentation</a>.</p>
-<pre class="screen" id="cce_01_0048__screen188753615243">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: etcd
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: etcd
-  serviceName: etcd-svc
-  template:
-    metadata:
-      labels:
-        app: etcd
-    spec:
-      containers:
-      - env:
-        - name: PAAS_APP_NAME
-          value: tesyhhj
-        - name: PAAS_NAMESPACE
-          value: default
-        - name: PAAS_PROJECT_ID
-          value: 9632fae707ce4416a0ab1e3e121fe555
-        image: etcd # If you use an image in <strong id="cce_01_0048__b2998205312256">My Images</strong>, obtain the image path from SWR.
-        imagePullPolicy: IfNotPresent
-        name: container-0
-  updateStrategy:
-    type: RollingUpdate</pre>
-<p id="cce_01_0048__p2939196152413"><strong id="cce_01_0048__b1394256172413">vi etcd-headless.yaml</strong></p>
-<pre class="screen" id="cce_01_0048__screen294316112416">apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app: etcd
-  name: etcd-svc
-spec:
-  clusterIP: None
-  ports:
-  - name: etcd-svc
-    port: 3120
-    protocol: TCP
-    targetPort: 3120
-  selector:
-    app: etcd
-  sessionAffinity: None
-  type: ClusterIP</pre>
-</p></li><li id="cce_01_0048__li1998416615246"><span>Create a workload and the corresponding headless service.</span><p><p id="cce_01_0048__p1198813611249"><strong id="cce_01_0048__b15990126112416">kubectl create -f etcd-statefulset.yaml</strong></p>
-<p id="cce_01_0048__p12328163452813">If the following information is displayed, the StatefulSet has been successfully created.</p>
-<pre class="screen" id="cce_01_0048__screen2571141615288">statefulset.apps/etcd created</pre>
-<p id="cce_01_0048__p1990064241"><strong id="cce_01_0048__b599213611242">kubectl create -f <strong id="cce_01_0048__b599417613242">etcd-headless</strong>.yaml</strong></p>
-<p id="cce_01_0048__p16120180172919">If the following information is displayed, the headless service has been successfully created.</p>
-<pre class="screen" id="cce_01_0048__screen78956247288">service/etcd-svc created</pre>
-</p></li><li id="cce_01_0048__li17997169246"><span>If the workload will be accessed through a ClusterIP or NodePort Service, set the corresponding workload access type. For details, see <a href="cce_01_0020.html">Networking</a>.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0051.html b/docs/cce/umn/cce_01_0051.html
deleted file mode 100644
index cbc5181d..00000000
--- a/docs/cce/umn/cce_01_0051.html
+++ /dev/null
@@ -1,29 +0,0 @@
-<a name="cce_01_0051"></a><a name="cce_01_0051"></a>
-
-<h1 class="topictitle1">Scheduling Policy Overview</h1>
-<div id="body1508311265137"><div class="section" id="cce_01_0051__section2169530191212"><h4 class="sectiontitle">Custom Scheduling Policies</h4><p id="cce_01_0051__p32318416269">You can configure node affinity, workload affinity, and workload anti-affinity in custom scheduling policies.</p>
-<ul id="cce_01_0051__ul79623122811"><li id="cce_01_0051__li29627118283"><a href="cce_01_0232.html">Node Affinity</a></li><li id="cce_01_0051__li1196251142818"><a href="cce_01_0233.html">Workload Affinity</a></li><li id="cce_01_0051__li129621913286"><a href="cce_01_0234.html">Workload Anti-Affinity</a></li></ul>
-<div class="note" id="cce_01_0051__note20751102210133"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0051__p6751922131312">Custom scheduling policies depend on node labels and pod labels. You can use default labels or customize labels as required.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0051__section10806164114720"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0051__keyword156029512711">Simple Scheduling Policies</span></h4><p id="cce_01_0051__p9438052131112">A simple scheduling policy allows you to configure affinity between workloads and AZs, between workloads and nodes, and between workloads.</p>
-</div>
-<ul id="cce_01_0051__ul18117421673"><li id="cce_01_0051__li299944111719"><strong id="cce_01_0051__b1821161819367"><span class="keyword" id="cce_01_0051__keyword799915410710">Workload-AZ affinity</span></strong>: Multiple AZ-based scheduling policies (including affinity and anti-affinity policies) can be configured. However, scheduling is performed as long as one of the scheduling policies is met.<ul id="cce_01_0051__ul49994411177"><li id="cce_01_0051__li139999411474"><strong id="cce_01_0051__b480716381254">Affinity between workloads and AZs</strong>: <a href="cce_01_0228.html">Workload-AZ Affinity</a></li><li id="cce_01_0051__li699984114710"><strong id="cce_01_0051__b63931301060">Anti-affinity between workloads and AZs</strong>: <a href="cce_01_0229.html">Workload-AZ Anti-Affinity</a></li></ul>
-</li><li id="cce_01_0051__li189991416718"><strong id="cce_01_0051__b47342033183718"><span class="keyword" id="cce_01_0051__keyword999911419715">Workload-node affinity</span></strong>: Multiple node-based scheduling policies (including affinity and anti-affinity scheduling) can be configured. However, scheduling is performed as long as one of the scheduling policies is met. For example, if a cluster contains nodes A, B, and C and two scheduling policies are set (one policy defines node A as an affinity node and the other policy defines node B as an anti-affinity node), then the workload can be scheduled to any node other than B.<ul id="cce_01_0051__ul139991541672"><li id="cce_01_0051__li79994414710"><strong id="cce_01_0051__b665191917610">Affinity between workloads and nodes</strong>: <a href="cce_01_0225.html">Workload-Node Affinity</a></li><li id="cce_01_0051__li209991441278"><strong id="cce_01_0051__b885015376617">Anti-affinity between workloads and nodes</strong>: <a href="cce_01_0226.html">Workload-Node Anti-Affinity</a></li></ul>
-</li><li id="cce_01_0051__li10174219717"><strong id="cce_01_0051__b063422094317"><span class="keyword" id="cce_01_0051__keyword15999144118713">Workload-workload affinity</span></strong>: Multiple workload-based scheduling policies can be configured, but the labels in these policies must belong to the same workload.<ul id="cce_01_0051__ul20442773"><li id="cce_01_0051__li969982310122"><strong id="cce_01_0051__b1188711210372">Affinity between workloads</strong>: For details, see <a href="cce_01_0220.html">Workload-Workload Affinity</a>. You can deploy workloads on the same node to reduce consumption of network resources.<div class="p" id="cce_01_0051__p143703252129"><a href="#cce_01_0051__fig3017424713">Figure 1</a> shows an example of affinity deployment, in which all workloads are deployed on the same node.<div class="fignone" id="cce_01_0051__fig3017424713"><a name="cce_01_0051__fig3017424713"></a><a name="fig3017424713"></a><span class="figcap"><b>Figure 1 </b>Affinity between workloads</span><br><span><img id="cce_01_0051__image1681212182717" src="en-us_image_0165899095.png"></span></div>
-</div>
-</li><li id="cce_01_0051__li165871616121216"><strong id="cce_01_0051__b3951358165514">Anti-affinity between workloads</strong>: For details, see <a href="cce_01_0227.html">Workload-Workload Anti-Affinity</a>. Constraining multiple instances of the same workload from being deployed on the same node reduces the impact of system breakdowns. Anti-affinity deployment is also recommended for workloads that may interfere with each other.<div class="p" id="cce_01_0051__p20930162019121"><a href="#cce_01_0051__fig1505421971">Figure 2</a> shows an example of anti-affinity deployment, in which four workloads are deployed on four different nodes.<div class="fignone" id="cce_01_0051__fig1505421971"><a name="cce_01_0051__fig1505421971"></a><a name="fig1505421971"></a><span class="figcap"><b>Figure 2 </b>Anti-affinity between workloads</span><br><span><img id="cce_01_0051__image521533119278" src="en-us_image_0165899282.png"></span></div>
-</div>
-</li></ul>
-</li></ul>
-<div class="notice" id="cce_01_0051__note1899711411179"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0051__p1584112714376">When setting workload-workload affinity and workload-node affinity, ensure that the affinity relationships do not contradict each other; otherwise, workload deployment will fail. </p>
-<p id="cce_01_0051__p59973411714">For example, Workload 3 will fail to be deployed when the following conditions are met:</p>
-<ul id="cce_01_0051__ul159971841573"><li id="cce_01_0051__li599712411278">Anti-affinity is configured for Workload 1 and Workload 2. Workload 1 is deployed on <strong id="cce_01_0051__b1334142191413">Node A</strong> and Workload 2 is deployed on <strong id="cce_01_0051__b1582394618141">Node B</strong>.</li><li id="cce_01_0051__li15997641772">Affinity is configured between Workload 2 and Workload 3, but the target node on which Workload 3 is to be deployed is <strong id="cce_01_0051__b080052872720">Node C</strong> or <strong id="cce_01_0051__b7805728172715">Node A</strong>.</li></ul>
-</div></div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0149.html">Affinity and Anti-Affinity Scheduling</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0053.html b/docs/cce/umn/cce_01_0053.html
deleted file mode 100644
index 9a3fd38b..00000000
--- a/docs/cce/umn/cce_01_0053.html
+++ /dev/null
@@ -1,231 +0,0 @@
-<a name="cce_01_0053"></a><a name="cce_01_0053"></a>
-
-<h1 class="topictitle1">Using Local Disks as Storage Volumes</h1>
-<div id="body8662426"><p id="cce_01_0053__en-us_topic_0000001199341206_p1095113173412">You can mount a file directory of the host where a container is located to a specified container path (the hostPath mode in Kubernetes) for persistent data storage. Alternatively, you can leave the source path empty (the emptyDir mode in Kubernetes), and a temporary directory of the host will be mounted to the mount point of the container for temporary storage.</p>
-<div class="section" id="cce_01_0053__en-us_topic_0000001199341206_section12724113154514"><h4 class="sectiontitle">Using Local Volumes</h4><p id="cce_01_0053__en-us_topic_0000001199341206_p17507173819455">CCE supports four types of local volumes.</p>
-</div>
-<ul id="cce_01_0053__en-us_topic_0000001199341206_ul194180134612"><li id="cce_01_0053__en-us_topic_0000001199341206_li694015064614"><strong id="cce_01_0053__b185611812103"><a href="#cce_01_0053__en-us_topic_0000001199341206_section196700523438">hostPath</a></strong>: mounts a file directory of the host where the container is located to the specified mount point of the container. For example, if the container needs to access <strong id="cce_01_0053__b885616189103">/etc/hosts</strong>, you can use a hostPath volume to map <strong id="cce_01_0053__b118569180108">/etc/hosts</strong>.</li><li id="cce_01_0053__en-us_topic_0000001199341206_li14816734462"><strong id="cce_01_0053__en-us_topic_0000001199341206_b7496927195019"><a href="#cce_01_0053__en-us_topic_0000001199341206_section550555216467">emptyDir</a></strong>: stores data temporarily. An emptyDir volume is first created when a pod is assigned to a node, and exists as long as that pod is running on that node. When a container pod is terminated, <strong id="cce_01_0053__en-us_topic_0000001199341206_b35121429155013">EmptyDir</strong> will be deleted and the data is permanently lost.</li><li id="cce_01_0053__en-us_topic_0000001199341206_li207169844620"><strong id="cce_01_0053__en-us_topic_0000001199341206_b72194320507"><a href="#cce_01_0053__en-us_topic_0000001199341206_section18638191594712">ConfigMap</a></strong>: A ConfigMap can be mounted as a volume, and all contents stored in its key are mounted onto the specified container directory. A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. For details about how to create a ConfigMap, see <a href="cce_01_0152.html">Creating a ConfigMap</a>. For details about how to use a ConfigMap, see <a href="cce_01_0015.html">Using a ConfigMap</a>.</li><li id="cce_01_0053__en-us_topic_0000001199341206_li18308105468"><strong id="cce_01_0053__b1520045911256"><a href="#cce_01_0053__en-us_topic_0000001199341206_section10197243134710">Secret</a></strong>: You can store sensitive information such as passwords, in secrets and mount them as files for use by pods. A secret is a type of resource that holds sensitive data, such as authentication and key information. All content is user-defined. For details about how to create a secret, see <a href="cce_01_0153.html">Creating a Secret</a>. For details about how to use a secret, see <a href="cce_01_0016.html">Using a Secret</a>.</li></ul>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p145851339143512">The following describes how to mount these four types of volumes.</p>
-<div class="section" id="cce_01_0053__en-us_topic_0000001199341206_section196700523438"><a name="cce_01_0053__en-us_topic_0000001199341206_section196700523438"></a><a name="en-us_topic_0000001199341206_section196700523438"></a><h4 class="sectiontitle">hostPath</h4><p id="cce_01_0053__en-us_topic_0000001199341206_p10373195993517">You can mount a path on the host to a specified container path. A hostPath volume is usually used to <strong id="cce_01_0053__en-us_topic_0000001199341206_b3581158125010">store workload logs permanently</strong> or used by workloads that need to <strong id="cce_01_0053__en-us_topic_0000001199341206_b258817584507">access internal data structure of the Docker engine on the host</strong>. </p>
-</div>
-<ol id="cce_01_0053__en-us_topic_0000001199341206_ol12431489443"><li id="cce_01_0053__en-us_topic_0000001199341206_li3604125131815"><span>Log in to the CCE console.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li32521216162315"><span>When creating a workload, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol92825450013"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol928215451509"><b>Container Settings</b></span>. Click the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol105013551011"><b>Local Volumes</b></span> tab and click <span><img id="cce_01_0053__en-us_topic_0000001199341206_image202771451304" src="en-us_image_0000001409700089.png"></span>.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li1743198144418"><span>Set parameters for adding a local volume, as listed in <a href="#cce_01_0053__en-us_topic_0000001199341206_table14312815449">Table 1</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0053__en-us_topic_0000001199341206_table14312815449"></a><a name="en-us_topic_0000001199341206_table14312815449"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0053__en-us_topic_0000001199341206_table14312815449" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Setting parameters for mounting a hostPath volume</caption><thead align="left"><tr id="cce_01_0053__en-us_topic_0000001199341206_row1430108144414"><th align="left" class="cellrowborder" valign="top" width="23.02%" id="mcps1.3.6.3.2.1.2.3.1.1"><p id="cce_01_0053__en-us_topic_0000001199341206_p3304815443">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.98%" id="mcps1.3.6.3.2.1.2.3.1.2"><p id="cce_01_0053__en-us_topic_0000001199341206_p63012813442">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0053__en-us_topic_0000001199341206_row931118184415"><td class="cellrowborder" valign="top" width="23.02%" headers="mcps1.3.6.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p7315824414">Storage Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.98%" headers="mcps1.3.6.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p193112817449">Select <strong id="cce_01_0053__en-us_topic_0000001199341206_b1345161419539">HostPath</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row203214811443"><td class="cellrowborder" valign="top" width="23.02%" headers="mcps1.3.6.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p5314818448">Host Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.98%" headers="mcps1.3.6.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p133114874418">Path of the host to which the local volume is to be mounted, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_b1094411178537">/etc/hosts</strong>.</p>
-<div class="note" id="cce_01_0053__en-us_topic_0000001199341206_note168401426124510"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0053__en-us_topic_0000001199341206_p384172604518"><strong id="cce_01_0053__en-us_topic_0000001199341206_b10763132915310">Host Path</strong> cannot be set to the root directory <strong id="cce_01_0053__en-us_topic_0000001199341206_b117691129195315">/</strong>. Otherwise, the mounting fails. Mount paths can be as follows:</p>
-<ul id="cce_01_0053__en-us_topic_0000001199341206_ul9786952142610"><li id="cce_01_0053__en-us_topic_0000001199341206_li19786105242619">/opt/xxxx (excluding <strong id="cce_01_0053__en-us_topic_0000001199341206_b080123215314">/opt/cloud</strong>)</li><li id="cce_01_0053__en-us_topic_0000001199341206_li278615525269">/mnt/xxxx (excluding <strong id="cce_01_0053__en-us_topic_0000001199341206_b159481033115310">/mnt/paas</strong>)</li><li id="cce_01_0053__en-us_topic_0000001199341206_li167861752152610">/tmp/xxx</li><li id="cce_01_0053__en-us_topic_0000001199341206_li1176843184115">/var/xxx (excluding key directories such as <strong id="cce_01_0053__en-us_topic_0000001199341206_b1832183612535">/var/lib</strong>, <strong id="cce_01_0053__en-us_topic_0000001199341206_b5832123685314">/var/script</strong>, and <strong id="cce_01_0053__en-us_topic_0000001199341206_b1783317366536">/var/paas</strong>)</li><li id="cce_01_0053__en-us_topic_0000001199341206_li8786105216260">/xxxx (It cannot conflict with the system directory, such as bin, lib, home, root, boot, dev, etc, lost+found, mnt, proc, sbin, srv, tmp, var, media, opt, selinux, sys, and usr.)</li></ul>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p1257852412335">Do not set this parameter to <strong id="cce_01_0053__en-us_topic_0000001199341206_b19391104235311">/home/paas</strong>, <strong id="cce_01_0053__en-us_topic_0000001199341206_b19392164235310">/var/paas</strong>, <strong id="cce_01_0053__en-us_topic_0000001199341206_b143921642205310">/var/lib</strong>, <strong id="cce_01_0053__en-us_topic_0000001199341206_b13921042165313">/var/script</strong>, <strong id="cce_01_0053__en-us_topic_0000001199341206_b7393194217534">/mnt/paas</strong>, or <strong id="cce_01_0053__en-us_topic_0000001199341206_b2039316428539">/opt/cloud</strong>. Otherwise, the system or node installation will fail.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row53620864414"><td class="cellrowborder" valign="top" width="23.02%" headers="mcps1.3.6.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p153212810443">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.98%" headers="mcps1.3.6.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p4174161519591">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0053__en-us_topic_0000001199341206_ol1535285447"><li id="cce_01_0053__en-us_topic_0000001199341206_li81991024215"><strong id="cce_01_0053__en-us_topic_0000001199341206_b457724713533">subPath</strong>: Enter a subpath, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_b1557718476536">tmp</strong>.<p id="cce_01_0053__en-us_topic_0000001199341206_p183671375216">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li1498071020210"><strong id="cce_01_0053__en-us_topic_0000001199341206_b122452553539">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_b3252185515539">/tmp</strong>.<div class="p" id="cce_01_0053__en-us_topic_0000001199341206_p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_01_0053__en-us_topic_0000001199341206_b1887395915531">/</strong> or <strong id="cce_01_0053__en-us_topic_0000001199341206_b88791559175320">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0053__en-us_topic_0000001199341206_note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0053__en-us_topic_0000001199341206_p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li3356824413">Permission<ul id="cce_01_0053__en-us_topic_0000001199341206_ul3352818447"><li id="cce_01_0053__en-us_topic_0000001199341206_li1351488444"><strong id="cce_01_0053__en-us_topic_0000001199341206_b1561171095419">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_01_0053__en-us_topic_0000001199341206_li535148164412"><strong id="cce_01_0053__en-us_topic_0000001199341206_b20905191114541">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p156433043">Click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol16649615125414"><b>Add Container Path</b></span> to add multiple settings. Then, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol18655121520543"><b>OK</b></span>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-<div class="section" id="cce_01_0053__en-us_topic_0000001199341206_section550555216467"><a name="cce_01_0053__en-us_topic_0000001199341206_section550555216467"></a><a name="en-us_topic_0000001199341206_section550555216467"></a><h4 class="sectiontitle">emptyDir</h4><p id="cce_01_0053__en-us_topic_0000001199341206_p1538455920350">emptyDir applies to temporary data storage, disaster recovery, and runtime data sharing. It will be deleted upon deletion or transfer of workload pods.</p>
-</div>
-<ol id="cce_01_0053__en-us_topic_0000001199341206_ol17674181064719"><li id="cce_01_0053__en-us_topic_0000001199341206_li1518017451310"><span>Log in to the CCE console.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li191801845817"><span>When creating a workload, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol20449173318265"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol8450153315266"><b>Container Settings</b></span>. Click the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol44501533202615"><b>Local Volumes</b></span> tab and click <span><img id="cce_01_0053__en-us_topic_0000001199341206_image418010454117" src="en-us_image_0000001359980148.png"></span>.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li66741810134716"><span>Set the local volume type to <strong id="cce_01_0053__en-us_topic_0000001199341206_b126951325115415">emptyDir</strong> and set parameters for adding a local volume, as described in <a href="#cce_01_0053__en-us_topic_0000001199341206_table1867417102475">Table 2</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0053__en-us_topic_0000001199341206_table1867417102475"></a><a name="en-us_topic_0000001199341206_table1867417102475"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0053__en-us_topic_0000001199341206_table1867417102475" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Setting parameters for mounting an emptyDir volume</caption><thead align="left"><tr id="cce_01_0053__en-us_topic_0000001199341206_row116705107477"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.8.3.2.1.2.3.1.1"><p id="cce_01_0053__en-us_topic_0000001199341206_p367021084716">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.8.3.2.1.2.3.1.2"><p id="cce_01_0053__en-us_topic_0000001199341206_p1367017107472">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0053__en-us_topic_0000001199341206_row867231016476"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.8.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p15672210204710">Storage Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.8.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p1267271094716">Select <strong id="cce_01_0053__en-us_topic_0000001199341206_b09201035105419">emptyDir</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row8672181011474"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.8.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p967231014479">Medium</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.8.3.2.1.2.3.1.2 "><ul id="cce_01_0053__en-us_topic_0000001199341206_ul2672201015476"><li id="cce_01_0053__en-us_topic_0000001199341206_li7753916194314"><strong id="cce_01_0053__en-us_topic_0000001199341206_b1287874818548">Default</strong>: Data is stored in hard disks, which is applicable to a large amount of data with low requirements on reading and writing efficiency. </li><li id="cce_01_0053__en-us_topic_0000001199341206_li122925104438"><strong id="cce_01_0053__en-us_topic_0000001199341206_b10762155112819">Memory</strong>: Selecting this option can improve the running speed, but the storage capacity is subject to the memory size. This mode applies to scenarios where the data volume is small and the read and write efficiency is high.</li></ul>
-<div class="note" id="cce_01_0053__en-us_topic_0000001199341206_note1698854220427"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0053__en-us_topic_0000001199341206_ul3988742134214"><li id="cce_01_0053__en-us_topic_0000001199341206_li129881142134218">If you select <strong id="cce_01_0053__en-us_topic_0000001199341206_b7227125815410">Memory</strong>, any files you write will count against your container's memory limit. Pay attention to the memory quota. If the memory usage exceeds the threshold, OOM may occur.</li><li id="cce_01_0053__en-us_topic_0000001199341206_li998824210422">If <strong id="cce_01_0053__en-us_topic_0000001199341206_b14191812551">Memory</strong> is selected, the size of an emptyDir volume is 50% of the pod specifications and cannot be changed.</li><li id="cce_01_0053__en-us_topic_0000001199341206_li59888422427">If <strong id="cce_01_0053__en-us_topic_0000001199341206_b19262948558">Memory</strong> is not selected, emptyDir volumes will not occupy the system memory.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row10674101084717"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.8.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p96728108473">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.8.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p18708203013719">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0053__en-us_topic_0000001199341206_ol76839501038"><li id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_li81991024215"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b457724713533">subPath</strong>: Enter a subpath, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b1557718476536">tmp</strong>.<p id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p183671375216">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_li1498071020210"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b122452553539">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b3252185515539">/tmp</strong>.<div class="p" id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b1887395915531">/</strong> or <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b88791559175320">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_li3356824413">Permission<ul id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_ul3352818447"><li id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_li1351488444"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b1561171095419">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_li535148164412"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b20905191114541">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p443859151014">Click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol95134919557"><b>Add Container Path</b></span> to add multiple settings. Then, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol145191913553"><b>OK</b></span>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-<div class="section" id="cce_01_0053__en-us_topic_0000001199341206_section18638191594712"><a name="cce_01_0053__en-us_topic_0000001199341206_section18638191594712"></a><a name="en-us_topic_0000001199341206_section18638191594712"></a><h4 class="sectiontitle">ConfigMap</h4><p id="cce_01_0053__en-us_topic_0000001199341206_p192196124125">The data stored in a ConfigMap can be referenced in a volume of type ConfigMap. You can mount such a volume to a specified container path. The platform supports the separation of workload codes and configuration files. ConfigMap volumes are used to store workload configuration parameters. Before that, you need to create ConfigMaps in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.</p>
-</div>
-<ol id="cce_01_0053__en-us_topic_0000001199341206_ol1964410161043"><li id="cce_01_0053__en-us_topic_0000001199341206_li597113523117"><span>Log in to the CCE console.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li0971752112"><span>When creating a workload, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol132721717322"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol827121723215"><b>Container Settings</b></span>. Click the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol11274171325"><b>Local Volumes</b></span> tab and click <span><img id="cce_01_0053__en-us_topic_0000001199341206_image189711529110" src="en-us_image_0000001360140128.png"></span>.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li6644161617412"><span>Set the local volume type to <strong id="cce_01_0053__en-us_topic_0000001199341206_b1887350153410">ConfigMap</strong> and set parameters for adding a local volume, as shown in <a href="#cce_01_0053__en-us_topic_0000001199341206_table1776324831114">Table 3</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0053__en-us_topic_0000001199341206_table1776324831114"></a><a name="en-us_topic_0000001199341206_table1776324831114"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0053__en-us_topic_0000001199341206_table1776324831114" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Setting parameters for mounting a ConfigMap volume</caption><thead align="left"><tr id="cce_01_0053__en-us_topic_0000001199341206_row177484871120"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.10.3.2.1.2.3.1.1"><p id="cce_01_0053__en-us_topic_0000001199341206_p977974818111">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.10.3.2.1.2.3.1.2"><p id="cce_01_0053__en-us_topic_0000001199341206_p978113488113">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0053__en-us_topic_0000001199341206_row20785144820118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p197881548171117">Storage Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p479110483117">Select <strong id="cce_01_0053__en-us_topic_0000001199341206_b5198113819364">ConfigMap</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row342915156166"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p17429315151617">Option</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p3133142513414">Select the desired ConfigMap name.</p>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p17741424142">A ConfigMap must be created in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row28091948181115"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p9813048191118">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p6972055171410">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0053__en-us_topic_0000001199341206_ol18607172216391"><li id="cce_01_0053__en-us_topic_0000001199341206_li842512390413"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b457724713533_1">subPath</strong>: Enter a subpath, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b1557718476536_1">tmp</strong>.<p id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p183671375216_1">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li26161221390"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b122452553539_1">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b3252185515539_1">/tmp</strong>.<div class="p" id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p5157313628_1">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b1887395915531_1">/</strong> or <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b88791559175320_1">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_note235158114415_1"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p22751516234_1">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li126321222103912">Set the permission to <strong id="cce_01_0053__en-us_topic_0000001199341206_b10399165510382">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p6374955151514">Click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol168210592381"><b>Add Container Path</b></span> to add multiple settings. Then, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol19827115917384"><b>OK</b></span>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-<div class="section" id="cce_01_0053__en-us_topic_0000001199341206_section10197243134710"><a name="cce_01_0053__en-us_topic_0000001199341206_section10197243134710"></a><a name="en-us_topic_0000001199341206_section10197243134710"></a><h4 class="sectiontitle">Secret</h4><p id="cce_01_0053__en-us_topic_0000001199341206_p196047901010">You can mount a secret as a volume to the specified container path. Contents in a secret are user-defined. Before that, you need to create a secret. For details, see <a href="cce_01_0153.html">Creating a Secret</a>. </p>
-</div>
-<ol id="cce_01_0053__en-us_topic_0000001199341206_ol668714114817"><li id="cce_01_0053__en-us_topic_0000001199341206_li5675379212"><span>Log in to the CCE console.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li176751271627"><span>When creating a workload, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol046084443218"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol14466114423216"><b>Container Settings</b></span>. Click the <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol174661244183211"><b>Local Volumes</b></span> tab and click <span><img id="cce_01_0053__en-us_topic_0000001199341206_image136751716212" src="en-us_image_0000001409740389.png"></span>.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li06877414482"><span>Set the local volume type to <strong id="cce_01_0053__en-us_topic_0000001199341206_b112241816123918">Secret</strong> and set parameters for adding a local volume, as shown in <a href="#cce_01_0053__en-us_topic_0000001199341206_table861818920109">Table 4</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0053__en-us_topic_0000001199341206_table861818920109"></a><a name="en-us_topic_0000001199341206_table861818920109"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0053__en-us_topic_0000001199341206_table861818920109" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Setting parameters for mounting a secret volume</caption><thead align="left"><tr id="cce_01_0053__en-us_topic_0000001199341206_row1962619171020"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.12.3.2.1.2.3.1.1"><p id="cce_01_0053__en-us_topic_0000001199341206_p196285991018">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.12.3.2.1.2.3.1.2"><p id="cce_01_0053__en-us_topic_0000001199341206_p126314951020">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0053__en-us_topic_0000001199341206_row20632792101"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p56341798108">Storage Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p206363911018">Select <strong id="cce_01_0053__en-us_topic_0000001199341206_b8430441113918">Secret</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row563713981015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p16638594102">Secret</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p790921317488">Select the desired secret name.</p>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p128541638181620">A secret must be created in advance. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row146458911015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p46473921020">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p15454317176">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0053__en-us_topic_0000001199341206_ol1365012913103"><li id="cce_01_0053__en-us_topic_0000001199341206_li106519951015"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b457724713533_2">subPath</strong>: Enter a subpath, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b1557718476536_2">tmp</strong>.<p id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p183671375216_2">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li865414941020"><strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b122452553539_2">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b3252185515539_2">/tmp</strong>.<div class="p" id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p5157313628_2">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b1887395915531_2">/</strong> or <strong id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_b88791559175320_2">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_note235158114415_2"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0053__en-us_topic_0000001199341206_en-us_topic_0000001199341206_p22751516234_2">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li1666210911012">Set the permission to <strong id="cce_01_0053__en-us_topic_0000001199341206_b614195817399">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p145078478238">Click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol91981210406"><b>Add Container Path</b></span> to add multiple settings. Then, click <span class="uicontrol" id="cce_01_0053__en-us_topic_0000001199341206_uicontrol9204162154011"><b>OK</b></span>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-<div class="section" id="cce_01_0053__en-us_topic_0000001199341206_section2432104516110"><h4 class="sectiontitle">Mounting a hostPath Volume Using kubectl</h4><p id="cce_01_0053__en-us_topic_0000001199341206_p8648172081919">You can use kubectl to mount a file directory of the host where the container is located to a specified mount path of the container.</p>
-<ol id="cce_01_0053__en-us_topic_0000001199341206_ol119461810195916"><li id="cce_01_0053__en-us_topic_0000001199341206_li1681024195710"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0053__en-us_topic_0000001199341206_li19947131075915"><span>Run the following commands to configure the <strong id="cce_01_0053__en-us_topic_0000001199341206_b19091326184016">hostPath-pod-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_01_0053__en-us_topic_0000001199341206_p494741020593"><b><span class="cmdname" id="cce_01_0053__en-us_topic_0000001199341206_cmdname1967825151319">touch hostPath-pod-example.yaml</span></b></p>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p1894721016594"><b><span class="cmdname" id="cce_01_0053__en-us_topic_0000001199341206_cmdname11936124712136">vi hostPath-pod-example.yaml</span></b></p>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p7947310185911">Mount the hostPath volume for the Deployment. The following is an example:</p>
-<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen20715184017393">apiVersion: apps/v1 
-kind: Deployment 
-metadata: 
-  name: hostpath-pod-example 
-  namespace: default 
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      app: hostpath-pod-example 
-  template: 
-    metadata: 
-      labels: 
-        app: hostpath-pod-example 
-    spec: 
-      containers: 
-      - image: nginx
-        name: container-0 
-        volumeMounts: 
-        - mountPath: /tmp 
-          name: hostpath-example 
-      imagePullSecrets:
-        - name: default-secret
-      restartPolicy: Always 
-      volumes: 
-      - name: hostpath-example 
-        hostPath: 
-          path: /tmp/test</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0053__en-us_topic_0000001199341206_table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Local disk storage dependency parameters</caption><thead align="left"><tr id="cce_01_0053__en-us_topic_0000001199341206_row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.13.3.2.2.5.2.3.1.1"><p id="cce_01_0053__en-us_topic_0000001199341206_p18191161619356">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.13.3.2.2.5.2.3.1.2"><p id="cce_01_0053__en-us_topic_0000001199341206_p1919116161353">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0053__en-us_topic_0000001199341206_row2318123021219"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.13.3.2.2.5.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p9319103017129">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.13.3.2.2.5.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p1631923081216">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_01_0053__en-us_topic_0000001199341206_b53751640134019">/tmp</strong> directory.</p>
-</td>
-</tr>
-<tr id="cce_01_0053__en-us_topic_0000001199341206_row163191830121220"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.13.3.2.2.5.2.3.1.1 "><p id="cce_01_0053__en-us_topic_0000001199341206_p14319143031212">hostPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.13.3.2.2.5.2.3.1.2 "><p id="cce_01_0053__en-us_topic_0000001199341206_p18319530131211">Host path. In this example, the host path is <strong id="cce_01_0053__en-us_topic_0000001199341206_b189589425404">/tmp/test</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0053__en-us_topic_0000001199341206_note14426266132"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0053__en-us_topic_0000001199341206_p1544282651314"><strong id="cce_01_0053__en-us_topic_0000001199341206_b418064514018">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0053__en-us_topic_0000001199341206_b9181134564014">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0053__en-us_topic_0000001199341206_li1894851020597"><span>Run the following command to create the pod:</span><p><p id="cce_01_0053__en-us_topic_0000001199341206_p17708712161919"><b><span class="cmdname" id="cce_01_0053__en-us_topic_0000001199341206_cmdname1081472281913">kubectl create -f hostPath-pod-example.yaml</span></b></p>
-</p></li><li id="cce_01_0053__en-us_topic_0000001199341206_li151611271311"><span>Verify the mounting.</span><p><ol type="a" id="cce_01_0053__en-us_topic_0000001199341206_ol206428471234"><li id="cce_01_0053__en-us_topic_0000001199341206_li1964274717317">Query the pod name of the workload (<strong id="cce_01_0053__en-us_topic_0000001199341206_b15577165674012">hostpath-pod-example</strong> is used as an example).<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen1725316813160">kubectl get po|grep hostpath-pod-example</pre>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p758622061118">Expected outputs:</p>
-<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen12939131191619">hostpath-pod-example-55c8d4dc59-md5d9   1/1     Running   0          35s</pre>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li12332123651112">Create the <strong id="cce_01_0053__en-us_topic_0000001199341206_b158918573449">test1</strong> file in the container mount path <strong id="cce_01_0053__en-us_topic_0000001199341206_b129595784410">/tmp</strong>.<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen6227121671616">kubectl exec hostpath-pod-example-55c8d4dc59-md5d9 -- touch /tmp/test1</pre>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li1596943101211">Verify that the file is created in the host path <strong id="cce_01_0053__en-us_topic_0000001199341206_b83267012452">/tmp/test/</strong>.<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen207161721161615">ll /tmp/test/</pre>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p967063519139">Expected outputs:</p>
-<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen68741225191619">-rw-r--r--  1 root root    0 Jun  1 16:12 test1</pre>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li151383557138">Create the <strong id="cce_01_0053__en-us_topic_0000001199341206_b75798518454">test2</strong> file in the host path <strong id="cce_01_0053__en-us_topic_0000001199341206_b145851954452">/tmp/test/</strong>.<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen11543112919163">touch /tmp/test/test2</pre>
-</li><li id="cce_01_0053__en-us_topic_0000001199341206_li14867104819146">Verify that the file is created in the container mount path.<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen3419183312163">kubectl exec hostpath-pod-example-55c8d4dc59-md5d9 -- ls -l /tmp</pre>
-<p id="cce_01_0053__en-us_topic_0000001199341206_p1827844616159">Expected outputs:</p>
-<pre class="screen" id="cce_01_0053__en-us_topic_0000001199341206_screen1724419394161">-rw-r--r-- 1 root root 0 Jun  1 08:12 test1
--rw-r--r-- 1 root root 0 Jun  1 08:14 test2</pre>
-</li></ol>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0057.html b/docs/cce/umn/cce_01_0057.html
deleted file mode 100644
index 274f2512..00000000
--- a/docs/cce/umn/cce_01_0057.html
+++ /dev/null
@@ -1,144 +0,0 @@
-<a name="cce_01_0057"></a><a name="cce_01_0057"></a>
-
-<h1 class="topictitle1">Scaling a Workload</h1>
-<div id="body1506158968293"><ul id="cce_01_0057__ul455732316470"><li id="cce_01_0057__li19557132315479">Auto scaling: You can set metric-based, scheduled, and periodic policies. After configuration, pods can be automatically added or deleted based on resource changes or the specified schedule.</li><li id="cce_01_0057__li1637317261477">Manual scaling: Pods are immediately added or deleted after the configuration is complete.</li></ul>
-<div class="note" id="cce_01_0057__note3171115617368"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0057__p8384174113814"><strong id="cce_01_0057__b338164071712">Scaling policy priority</strong>: If you do not manually adjust the number of pods, auto scaling policies will take effect for resource scheduling. If <a href="cce_01_0057.html#cce_01_0057__section1050418516503">manual scaling</a> is triggered, auto scaling policies will be temporarily invalid.</p>
-</div></div>
-<div class="section" id="cce_01_0057__section172825412391"><h4 class="sectiontitle">Auto Scaling - HPA</h4><p id="cce_01_0057__p19871108144419">HPA policies can be used for auto scaling. <strong id="cce_01_0057__b19850163611819">You can view all policies or perform more operations in </strong><strong id="cce_01_0057__b208511636983"><a href="cce_01_0208.html">Auto Scaling</a></strong>.</p>
-</div>
-<div class="section" id="cce_01_0057__section1656965814562"><h4 class="sectiontitle">Auto Scaling - AOM</h4><p id="cce_01_0057__p99521842194019">You can define auto scaling policies as required, which can intelligently adjust resources in response to service changes and data traffic spikes.</p>
-<p id="cce_01_0057__p76532013105017">Auto scaling can be backed by Application Operations Management (AOM), but not for clusters of v1.17 and later.</p>
-<p id="cce_01_0057__p115886431289">Currently, CCE supports the following types of auto scaling policies:</p>
-<p id="cce_01_0057__p166625924515"><a href="#cce_01_0057__li16804196913"><span class="keyword" id="cce_01_0057__keyword19431604941055">Metric-based policy</span></a>: After a workload is created, pods will be automatically scaled when the workload's CPU or memory usage exceeds or falls below a preset limit.</p>
-<p id="cce_01_0057__p19984161334517"><a href="#cce_01_0057__li1595211281895"><span class="keyword" id="cce_01_0057__keyword50958192310519">Scheduled policy</span></a>: scaling at a specified time. Scheduled auto scaling is applicable flash sales, premier shopping events, and other regular events that bring a high burst of traffic load.</p>
-<p id="cce_01_0057__p469922812454"><a href="#cce_01_0057__li35861531491"><span class="keyword" id="cce_01_0057__keyword76588233010530">Periodic policy</span></a>: scaling at a specified time on a daily, weekly, or monthly basis. Periodic scheduling is applicable to scenarios where traffic changes periodically.</p>
-</div>
-<ul id="cce_01_0057__ul4680191914918"><li id="cce_01_0057__li16804196913"><a name="cce_01_0057__li16804196913"></a><a name="li16804196913"></a><strong id="cce_01_0057__b85234311310622">Metric-based policy</strong>: Supports auto scaling of a workload based on the CPU/memory usage.<ol id="cce_01_0057__ol822232595717"><li id="cce_01_0057__li13222125165711">Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0057__b91391112172211">Workloads</strong> &gt; <strong id="cce_01_0057__b121391712112210">Deployments</strong> or <strong id="cce_01_0057__b913981272211">StatefulSets</strong>. In the same row as the target workload, choose <strong id="cce_01_0057__b161401412112212">More</strong> &gt; <strong id="cce_01_0057__b16140201292213">Scaling</strong>.</li><li id="cce_01_0057__li9995191618576">In the <strong id="cce_01_0057__b12583124731719">Auto Scaling</strong> area, click <span class="uicontrol" id="cce_01_0057__uicontrol758474771718"><b>Add Scaling Policy</b></span>.</li><li id="cce_01_0057__li14974154663017">Set the policy parameters as listed in <a href="#cce_01_0057__table297454613303">Table 1</a>.
-<div class="tablenoborder"><a name="cce_01_0057__table297454613303"></a><a name="table297454613303"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0057__table297454613303" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for adding a metric-based policy</caption><thead align="left"><tr id="cce_01_0057__row1897304663020"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.4.5.1.2.3.2.2.3.1.1"><p id="cce_01_0057__p497313469306">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.4.5.1.2.3.2.2.3.1.2"><p id="cce_01_0057__p6973446153015">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0057__row17973746163017"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.4.5.1.2.3.2.2.3.1.1 "><p id="cce_01_0057__p199736462309">Policy Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.4.5.1.2.3.2.2.3.1.2 "><p id="cce_01_0057__p19973164633011">Enter the name of the scaling policy.</p>
-<p id="cce_01_0057__p1099525133217">The policy name must be 1 to 64 characters in length and start with a letter. Only letters, digits, underscores (_), and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row997320460302"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.4.5.1.2.3.2.2.3.1.1 "><p id="cce_01_0057__p1973104623013">Policy Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.4.5.1.2.3.2.2.3.1.2 "><p id="cce_01_0057__p797344663019">Set this parameter to <span class="uicontrol" id="cce_01_0057__uicontrol57503634515"><b>Metric-based policy</b></span>.</p>
-<p id="cce_01_0057__p102851720322">The alarm policy is triggered based on historical data. The system checks whether the indicators set by the user in the monitoring window meet the triggering conditions <strong id="cce_01_0057__b17720182820408">every minute</strong>. If the triggering conditions are met for N consecutive periods, the system performs the action specified by the policy.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row29735463308"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.4.5.1.2.3.2.2.3.1.1 "><p id="cce_01_0057__p14973646163020">Metric</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.4.5.1.2.3.2.2.3.1.2 "><p id="cce_01_0057__p16973104673016">Set the metrics that describe the resource performance data or status.</p>
-<ul id="cce_01_0057__ul18973184614308"><li id="cce_01_0057__li6973446193015"><strong id="cce_01_0057__b5311310184217">CPU Usage</strong>: CPU usage of the measured object. The value is the percentage of the used CPU cores to the total CPU cores.</li><li id="cce_01_0057__li29736460303"><strong id="cce_01_0057__b1764184811255">Physical Memory Usage</strong>: percentage of the physical memory size used by the measured object to the physical memory size that the measured object has applied for.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0057__row197324610309"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.4.5.1.2.3.2.2.3.1.1 "><p id="cce_01_0057__p7973104693015">Trigger Condition</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.4.5.1.2.3.2.2.3.1.2 "><p id="cce_01_0057__p10973144619303">The value can be higher (&gt;) or lower (&lt;) than a threshold. When the usage of the preceding metrics reaches the specified value, the scaling policy is triggered.</p>
-<p id="cce_01_0057__p159731746133017">For example, if <span class="parmname" id="cce_01_0057__parmname1533253819544"><b>Metric</b></span> is set to <span class="parmvalue" id="cce_01_0057__parmvalue168151843175412"><b>CPU Usage</b></span> and this parameter is set to <span class="parmvalue" id="cce_01_0057__parmvalue10465351115412"><b>&gt; 70%</b></span>, the scaling policy is triggered when the CPU usage exceeds 70%.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row3973144603014"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.4.5.1.2.3.2.2.3.1.1 "><p id="cce_01_0057__p18973154633018">Monitoring window</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.4.5.1.2.3.2.2.3.1.2 "><p id="cce_01_0057__p177371515155818">Size of the data aggregation window.</p>
-<p id="cce_01_0057__p1297314614307">If the value is set to <strong id="cce_01_0057__b153681317175513">60</strong>, metric statistics are collected every 60 seconds.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row19973104613011"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.4.5.1.2.3.2.2.3.1.1 "><p id="cce_01_0057__p4973346163014">Threshold Crossings</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.4.5.1.2.3.2.2.3.1.2 "><p id="cce_01_0057__p146951424595">Number of consecutive times that the threshold is reached within the monitoring window. The calculation cycle is fixed at one minute.</p>
-<p id="cce_01_0057__p1297320469307">If the parameter is set to <strong id="cce_01_0057__b66181047141719">3</strong>, the action is triggered if threshold is reached for three consecutive measurement periods.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row69742462306"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.4.5.1.2.3.2.2.3.1.1 "><p id="cce_01_0057__p15973174603010">Action</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.4.5.1.2.3.2.2.3.1.2 "><p id="cce_01_0057__p1097410466307">Action executed after a policy is triggered. Two actions are available: add or reduce pods.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0057__li1647753518576">Click <span class="uicontrol" id="cce_01_0057__uicontrol562416472173"><b>OK</b></span>.</li><li id="cce_01_0057__li206859299404">In the <strong id="cce_01_0057__b14681036143317">Auto Scaling</strong> area, check that the policy has been started.<p id="cce_01_0057__p14344132115425">When the trigger condition is met, the auto scaling policy starts automatically.</p>
-</li></ol>
-</li><li id="cce_01_0057__li1595211281895"><a name="cce_01_0057__li1595211281895"></a><a name="li1595211281895"></a><strong id="cce_01_0057__b3387162319173">Scheduled policy: </strong>scaling at a specified time.<ol id="cce_01_0057__ol142814472514"><li id="cce_01_0057__li192814462512">In the <strong id="cce_01_0057__b1798513825101013">Auto Scaling</strong> area, click <span class="uicontrol" id="cce_01_0057__uicontrol1432159264101013"><b>Add Scaling Policy</b></span>. Select <strong id="cce_01_0057__b842352706101055">Scheduled policy</strong>.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0057__table0281144172511" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters for adding a scheduled policy</caption><thead align="left"><tr id="cce_01_0057__row1428011412512"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.4.5.2.2.1.4.2.3.1.1"><p id="cce_01_0057__p8280443259">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.4.5.2.2.1.4.2.3.1.2"><p id="cce_01_0057__p12280847252">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0057__row1728054182516"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.2.2.1.4.2.3.1.1 "><p id="cce_01_0057__p20280164142516">Policy Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.2.2.1.4.2.3.1.2 "><p id="cce_01_0057__p19280144112510">Enter the name of the scaling policy.</p>
-<p id="cce_01_0057__p10573961401">The policy name must be 1 to 64 characters in length and start with a letter. Only letters, digits, underscores (_), and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row5280154182518"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.2.2.1.4.2.3.1.1 "><p id="cce_01_0057__p8280164192519">Policy Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.2.2.1.4.2.3.1.2 "><p id="cce_01_0057__p15280134182513">Set this parameter to <strong id="cce_01_0057__b71891229131820">Scheduled policy</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row1728113415258"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.2.2.1.4.2.3.1.1 "><p id="cce_01_0057__p112804418256">Trigger Time</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.2.2.1.4.2.3.1.2 "><p id="cce_01_0057__p1280646254">Time at which the policy is enforced.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row112811346259"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.2.2.1.4.2.3.1.1 "><p id="cce_01_0057__p82812472513">Action</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.2.2.1.4.2.3.1.2 "><p id="cce_01_0057__p82813416258">Action executed after a policy is triggered. Three actions are available: add pods, reduce pods, and set the number of pods.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0057__li43442059152411">Click <span class="uicontrol" id="cce_01_0057__uicontrol637314276"><b>OK</b></span>.</li><li id="cce_01_0057__li17813143903120">In the <strong id="cce_01_0057__b561647505">Auto Scaling</strong> area, check that the policy has been started.<p id="cce_01_0057__p7441320185710">When the trigger time is reached, you can see on the <strong id="cce_01_0057__b139991631173413">Pods</strong> tab page that the auto scaling policy has taken effect.</p>
-</li></ol>
-</li><li id="cce_01_0057__li35861531491"><a name="cce_01_0057__li35861531491"></a><a name="li35861531491"></a><strong id="cce_01_0057__b13189122641717">Periodic policy: </strong>scaling at a specified time on a daily, weekly, or monthly basis.<ol id="cce_01_0057__ol341031612717"><li id="cce_01_0057__li19410716152710">In the <strong id="cce_01_0057__b632858843">Auto Scaling</strong> area, click <span class="uicontrol" id="cce_01_0057__uicontrol1804881232"><b>Add Scaling Policy</b></span>. Select <strong id="cce_01_0057__b1012773552">Periodic policy</strong>.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0057__table184091016102710" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Parameters for adding a periodic policy</caption><thead align="left"><tr id="cce_01_0057__row13407141620275"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.4.5.3.2.1.4.2.3.1.1"><p id="cce_01_0057__p19407916192711">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.4.5.3.2.1.4.2.3.1.2"><p id="cce_01_0057__p24071016172711">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0057__row10407101652718"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.3.2.1.4.2.3.1.1 "><p id="cce_01_0057__p18407191622715">Policy Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.3.2.1.4.2.3.1.2 "><p id="cce_01_0057__p11407121616277">Enter the name of the scaling policy.</p>
-<p id="cce_01_0057__p142021529908">The policy name must be 1 to 64 characters in length and start with a letter. Only letters, digits, underscores (_), and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row3409316102719"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.3.2.1.4.2.3.1.1 "><p id="cce_01_0057__p144071116132713">Policy Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.3.2.1.4.2.3.1.2 "><p id="cce_01_0057__p7409181672718">Set this parameter to <strong id="cce_01_0057__b8124749151812">Periodic policy</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row1940915163272"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.3.2.1.4.2.3.1.1 "><p id="cce_01_0057__p5409161662713">Time Range</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.3.2.1.4.2.3.1.2 "><p id="cce_01_0057__p6409131672714">Specify the time for triggering the policy.</p>
-</td>
-</tr>
-<tr id="cce_01_0057__row154091616182715"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.4.5.3.2.1.4.2.3.1.1 "><p id="cce_01_0057__p174096168271">Action</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.4.5.3.2.1.4.2.3.1.2 "><p id="cce_01_0057__p4409101613276">Action executed after a policy is triggered. Three actions are available: add pods, reduce pods, and set the number of pods.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0057__li93441711112715">Click <span class="uicontrol" id="cce_01_0057__uicontrol9138174912184"><b>OK</b></span>.</li><li id="cce_01_0057__li7136125817431">In the <strong id="cce_01_0057__b1593034903">Auto Scaling</strong> area, check that the policy has been started.<p id="cce_01_0057__p1791943811447">When the trigger condition is met, the auto scaling policy starts automatically.</p>
-</li></ol>
-</li></ul>
-<div class="section" id="cce_01_0057__section1050418516503"><a name="cce_01_0057__section1050418516503"></a><a name="section1050418516503"></a><h4 class="sectiontitle">Manual Scaling</h4><ol id="cce_01_0057__ol1041720154376"><li id="cce_01_0057__li1693381220585"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0057__b11808194510223">Workloads</strong> &gt; <strong id="cce_01_0057__b78141745182216">Deployments</strong> or <strong id="cce_01_0057__b108151645142214">StatefulSets</strong>. In the same row as the target workload, choose <strong id="cce_01_0057__b208167453220">More</strong> &gt; <strong id="cce_01_0057__b081664517226">Scaling</strong>.</span></li><li id="cce_01_0057__li79361712175810"><span>In the <strong id="cce_01_0057__b842352706101259">Manual Scaling</strong> area, click <span><img id="cce_01_0057__image5898516111417" src="en-us_image_0144045351.png"></span> and change the number of pods to, for example, <strong id="cce_01_0057__b842352706101315">3</strong>. Then, click <strong id="cce_01_0057__b842352706101323">Save</strong>. The scaling takes effect immediately.</span></li><li id="cce_01_0057__li120918015173"><span>On the <strong id="cce_01_0057__b675033517355">Pods</strong> tab page, check that a new pod is being created. When the pod status becomes <strong id="cce_01_0057__b10750153513512">Running</strong>, pod scaling is complete.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0059.html b/docs/cce/umn/cce_01_0059.html
deleted file mode 100644
index 50e9139b..00000000
--- a/docs/cce/umn/cce_01_0059.html
+++ /dev/null
@@ -1,147 +0,0 @@
-<a name="cce_01_0059"></a><a name="cce_01_0059"></a>
-
-<h1 class="topictitle1">Network Policies</h1>
-<div id="body1526883582577"><p id="cce_01_0059__p11236146172019">As the service logic becomes increasingly complex, many applications require network calls between modules. Traditional external firewalls or application-based firewalls cannot meet the requirements. Network policies are urgently needed between modules, service logic layers, or functional teams in a large cluster.</p>
-<p id="cce_01_0059__p65152020382">CCE has enhanced the Kubernetes-based network policy feature, allowing network isolation in a cluster by configuring network policies. This means that a firewall can be set between pods.</p>
-<p id="cce_01_0059__p288121794111">For example, to make a payment system accessible only to specified components for security purposes, you can configure network policies.</p>
-<div class="section" id="cce_01_0059__section332285584912"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0059__en-us_topic_0000001199501178_ul178821748131512"><li id="cce_01_0059__en-us_topic_0000001199501178_li1388224818153">Only clusters that use the <strong id="cce_01_0059__b1650320292142">tunnel network model</strong> support network policies.</li><li id="cce_01_0059__en-us_topic_0000001199501178_li1393141012329">Network isolation is not supported for IPv6 addresses.</li><li id="cce_01_0059__en-us_topic_0000001199501178_li570615420397">Network policies do not support egress rules except for clusters of v1.23 or later.<p id="cce_01_0059__p27292611408"><a name="cce_01_0059__en-us_topic_0000001199501178_li570615420397"></a><a name="en-us_topic_0000001199501178_li570615420397"></a>Egress rules are supported only in the following operating systems:</p>
-<ul id="cce_01_0059__en-us_topic_0000001199501178_ul2065234861112"><li id="cce_01_0059__en-us_topic_0000001199501178_li36461462116">EulerOS 2.9: kernel version 4.18.0-147.5.1.6.h541.eulerosv2r9.x86_64</li><li id="cce_01_0059__en-us_topic_0000001199501178_li136497469119">CentOS 7.7: kernel version 3.10.0-1062.18.1.el7.x86_64</li><li id="cce_01_0059__en-us_topic_0000001199501178_li1665216460111">EulerOS 2.5: kernel version 3.10.0-862.14.1.5.h591.eulerosv2r7.x86_64</li></ul>
-</li><li id="cce_01_0059__en-us_topic_0000001199501178_li513145015013">If a cluster is upgraded to v1.23 in in-place mode, you cannot use egress rules because the node OS is not upgraded. In this case, reset the node.</li></ul>
-</div>
-<div class="section" id="cce_01_0059__section146088501667"><h4 class="sectiontitle">Precautions</h4><p id="cce_01_0059__p177221532616">If no network policies have been configured for a workload, such as <strong id="cce_01_0059__b611423523">workload-1</strong>, other workloads in the same cluster can access <strong id="cce_01_0059__b2014428520">workload-1</strong>.</p>
-</div>
-<div class="section" id="cce_01_0059__section84141116145010"><h4 class="sectiontitle">Using Ingress Rules</h4><ul id="cce_01_0059__en-us_topic_0249851123_ul4805332011"><li id="cce_01_0059__en-us_topic_0249851123_li1981853162018"><strong id="cce_01_0059__en-us_topic_0249851123_b1888635215324">Using podSelector to specify the access scope</strong><pre class="screen" id="cce_01_0059__en-us_topic_0249851123_screen5967726154511">apiVersion: networking.k8s.io/v1
-kind: <span style="color:#FF0000;">NetworkPolicy</span>
-metadata:
-  name: test-network-policy
-  namespace: default
-spec:
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_01_0059__en-us_topic_0249851123_b651195916261">role=db</strong> label.
-    matchLabels:
-      role: db
-  ingress:                      #This is an ingress rule.
-  - from:
-    - <span style="color:#FF0000;">podSelector</span>:              #Only traffic from the pods with the <strong id="cce_01_0059__en-us_topic_0249851123_b5774142342718">role=frontend</strong> label is allowed.
-        matchLabels:
-          role: frontend
-    ports:                      #Only TCP can be used to access port 6379.
-    - protocol: TCP
-      port: 6379</pre>
-<p id="cce_01_0059__en-us_topic_0249851123_p88888434711">Diagram:</p>
-<div class="fignone" id="cce_01_0059__en-us_topic_0249851123_fig139410543444"><span class="figcap"><b>Figure 1 </b>podSelector</span><br><span><img id="cce_01_0059__en-us_topic_0249851123_image185021946194414" src="en-us_image_0259557735.png"></span></div>
-</li></ul>
-<ul id="cce_01_0059__en-us_topic_0249851123_ul68309714213"><li id="cce_01_0059__en-us_topic_0249851123_li1283027192120"><strong id="cce_01_0059__en-us_topic_0249851123_b2544223134019">Using namespaceSelector to specify the access scope</strong><pre class="screen" id="cce_01_0059__en-us_topic_0249851123_screen18399134874818">apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: test-network-policy
-spec:
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_01_0059__en-us_topic_0249851123_b667880142713">role=db</strong> label.
-    matchLabels:
-      role: db
-  ingress:                      #This is an ingress rule.
-  - from:
-    - <span style="color:#FF0000;">namespaceSelector</span>:        # Only traffic from the pods in the namespace with the "project=myproject" label is allowed.
-        matchLabels:
-          project: myproject
-    ports:                      #Only TCP can be used to access port 6379.
-    - protocol: TCP
-      port: 6379</pre>
-<p id="cce_01_0059__en-us_topic_0249851123_p3874718155019"><a href="#cce_01_0059__en-us_topic_0249851123_fig127351855617">Figure 2</a> shows how namespaceSelector selects ingress sources.</p>
-<div class="fignone" id="cce_01_0059__en-us_topic_0249851123_fig127351855617"><a name="cce_01_0059__en-us_topic_0249851123_fig127351855617"></a><a name="en-us_topic_0249851123_fig127351855617"></a><span class="figcap"><b>Figure 2 </b>namespaceSelector</span><br><span><img id="cce_01_0059__en-us_topic_0249851123_image141441335560" src="en-us_image_0259558489.png"></span></div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0059__section2654135712507"><h4 class="sectiontitle">Using Egress Rules</h4><p id="cce_01_0059__en-us_topic_0249851123_p1311606618">Egress supports not only podSelector and namespaceSelector, but also ipBlock.</p>
-<div class="note" id="cce_01_0059__en-us_topic_0249851123_note16478276101"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0059__en-us_topic_0249851123_p1547814741018">Only clusters of version 1.23 or later support egress rules. Currently, only EulerOS 2.5, EulerOS 2.9, and CentOS 7.7 nodes are supported.</p>
-</div></div>
-<pre class="screen" id="cce_01_0059__en-us_topic_0249851123_screen14581393131">apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: deny-client-a-via-except-cidr-egress-rule
-  namespace: default
-spec:
-  policyTypes:                  # Must be specified for an egress rule.
-    - <span style="color:#FF0000;">Egress</span>
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_01_0059__en-us_topic_0249851123_b26884016271">role=db</strong> label.
-    matchLabels:
-      role: db
-  <span style="color:#FF0000;">egress</span>:                       # Egress rule
-  - to:
-    - <span style="color:#FF0000;">ipBlock</span>:
-        cidr: 172.16.0.16/16    # Allow access to this CIDR block.
-        except:
-        - 172.16.0.40/32        # This CIDR block cannot be accessed. This value must fall within the range specified by <strong id="cce_01_0059__en-us_topic_0249851123_b9998156103415">cidr</strong>.</pre>
-<p id="cce_01_0059__en-us_topic_0249851123_p3245846202818">Diagram:</p>
-<div class="fignone" id="cce_01_0059__en-us_topic_0249851123_fig15678132552812"><span class="figcap"><b>Figure 3 </b>ipBlock</span><br><span><img id="cce_01_0059__en-us_topic_0249851123_image6270134419182" src="en-us_image_0000001340138373.png"></span></div>
-<p id="cce_01_0059__en-us_topic_0249851123_p1260313810298">You can define ingress and egress in the same rule.</p>
-<pre class="screen" id="cce_01_0059__en-us_topic_0249851123_screen235835922918">apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: test-network-policy
-  namespace: default
-spec:
-  policyTypes:
-  - Ingress
-  - Egress
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_01_0059__en-us_topic_0249851123_b136942042718">role=db</strong> label.
-    matchLabels:
-      role: db
-  <span style="color:#FF0000;">ingress</span>:                      # Ingress rule
-  - from:
-    - podSelector:              #Only traffic from the pods with the "role=frontend" label is allowed.
-        matchLabels:
-          role: frontend
-    ports:                      #Only TCP can be used to access port 6379.
-    - protocol: TCP
-      port: 6379
-  <span style="color:#FF0000;">egress</span>:                       # Egress rule
-  - to:
-    - podSelector:              # Only pods with the <strong id="cce_01_0059__en-us_topic_0249851123_b153994603718">role=web</strong> label can be accessed.
-        matchLabels:
-          role: web</pre>
-<p id="cce_01_0059__en-us_topic_0249851123_p17239137193116">Diagram:</p>
-<div class="fignone" id="cce_01_0059__en-us_topic_0249851123_fig14112102353618"><span class="figcap"><b>Figure 4 </b>Using both ingress and egress</span><br><span><img id="cce_01_0059__en-us_topic_0249851123_image103563915919" src="en-us_image_0000001287883210.png"></span></div>
-</div>
-<div class="section" id="cce_01_0059__section19894131402011"><h4 class="sectiontitle">Adding a Network Policy on the Console</h4><ol id="cce_01_0059__ol10753729162012"><li id="cce_01_0059__li275310297205"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0059__b421145174214">Resource Management</strong> &gt; <strong id="cce_01_0059__b22161515425">Network</strong>. On the <span class="uicontrol" id="cce_01_0059__uicontrol101294213314"><b>Network Policies</b></span> tab page, click <span class="uicontrol" id="cce_01_0059__uicontrol10746191814214"><b>Create Network Policy</b></span>.</span><p><ul id="cce_01_0059__ul1275420367216"><li id="cce_01_0059__li207540368218"><strong id="cce_01_0059__b5858127617589">Network Policy Name</strong>: Specify a network policy name.</li><li id="cce_01_0059__li52933481216"><strong id="cce_01_0059__b192514115319">Cluster Name</strong>: Select a cluster to which the network policy belongs.</li><li id="cce_01_0059__li86551950162110"><strong id="cce_01_0059__b2485142065319">Namespace</strong>: Select a namespace in which the network policy is applied.</li><li id="cce_01_0059__li20288331248"><strong id="cce_01_0059__b10683847183411">Workload</strong><p id="cce_01_0059__p76694331241">Click <strong id="cce_01_0059__b1553353435310">Select Workload</strong>. In the dialog box displayed, select a workload for which the network policy is to be created, for example, <strong id="cce_01_0059__b75331434115312">workload-1</strong>. Then, click <strong id="cce_01_0059__b75338348537">OK</strong>.</p>
-</li><li id="cce_01_0059__li1288375862114"><strong id="cce_01_0059__b10835449155319">Rules</strong>: Click <strong id="cce_01_0059__b083584917534">Add Rule</strong>, set the parameters listed in <a href="#cce_01_0059__table26919378234">Table 1</a>, and click <span class="uicontrol" id="cce_01_0059__uicontrol1753825844116"><b>OK</b></span>.
-<div class="tablenoborder"><a name="cce_01_0059__table26919378234"></a><a name="table26919378234"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0059__table26919378234" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for adding a rule</caption><thead align="left"><tr id="cce_01_0059__row117013742315"><th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.8.2.1.2.1.5.5.2.3.1.1"><p id="cce_01_0059__p10701937122312">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="85%" id="mcps1.3.8.2.1.2.1.5.5.2.3.1.2"><p id="cce_01_0059__p1970937162314">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0059__row17073752310"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.1 "><p id="cce_01_0059__p1770337122315">Direction</p>
-</td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.2 "><p id="cce_01_0059__p19701374230">Only <strong id="cce_01_0059__b33045118549">Inbound</strong> is supported, indicating that the whitelisted workloads access the current workload (<strong id="cce_01_0059__b5304112541">workload-1</strong> in this example).</p>
-</td>
-</tr>
-<tr id="cce_01_0059__row0706372237"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.1 "><p id="cce_01_0059__p1871103711232">Protocol</p>
-</td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.2 "><p id="cce_01_0059__p77123712230">Select a protocol. Currently, the TCP and UDP protocols are supported. The ICMP protocol is not supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0059__row141931728132819"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.1 "><p id="cce_01_0059__p18193102819285">Destination Container Port</p>
-</td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.2 "><p id="cce_01_0059__p219311287289">Specify a port on which the workload in the container image listens. The Nginx application listens on port 80.</p>
-<p id="cce_01_0059__p37005549297">If no container port is specified, all ports can be accessed by default.</p>
-</td>
-</tr>
-<tr id="cce_01_0059__row10711637182318"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.1 "><p id="cce_01_0059__p107120375238">Whitelisted Workloads</p>
-</td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.1.2.1.5.5.2.3.1.2 "><p id="cce_01_0059__p157183711231">Select other workloads that can access the current workload. These workloads will access the current workload at the destination container port.</p>
-<ul id="cce_01_0059__ul28102117259"><li id="cce_01_0059__li38142162517"><strong id="cce_01_0059__b20221455143919">Namespace</strong>: All workloads in the selected namespace(s) are added to the whitelist. That is, all workloads in the namespace(s) can access <strong id="cce_01_0059__b20793175216377">workload-1</strong>.</li><li id="cce_01_0059__li98271827102612"><strong id="cce_01_0059__b6341557153910">Workload</strong>: The selected workloads can access <strong id="cce_01_0059__b171110581385">workload-1</strong>. Only other workloads in the same namespace as <strong id="cce_01_0059__b141191520183919">workload-1</strong> can be selected.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-</p></li><li id="cce_01_0059__li1513793212118"><span>Click <span class="uicontrol" id="cce_01_0059__uicontrol1498744718284"><b>Create</b></span>.</span></li><li id="cce_01_0059__li16454161681715"><span>Repeat the preceding steps to add more network policies for the current workload when other ports need to be accessed by some workloads.</span><p><p id="cce_01_0059__p5684154717120">After the network policies are created, only the specified workloads or workloads in the specified namespaces can access the current workload.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0020.html">Networking</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0063.html b/docs/cce/umn/cce_01_0063.html
deleted file mode 100644
index 46fcb364..00000000
--- a/docs/cce/umn/cce_01_0063.html
+++ /dev/null
@@ -1,25 +0,0 @@
-<a name="cce_01_0063"></a><a name="cce_01_0063"></a>
-
-<h1 class="topictitle1">Managing Node Scaling Policies</h1>
-<div id="body8662426"><div class="section" id="cce_01_0063__section127666327248"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0063__p192873216229">After a node scaling policy is created, you can delete, edit, disable, enable, or clone the policy.</p>
-</div>
-<div class="section" id="cce_01_0063__section102878407207"><h4 class="sectiontitle">Viewing a Node Scaling Policy</h4><p id="cce_01_0063__p713741135215">You can view the associated node pool, rules, and scaling history of a node scaling policy and rectify faults according to the error information displayed.</p>
-<ol id="cce_01_0063__ol17409123885219"><li id="cce_01_0063__li4409153817525"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0063__b111931432181510">Auto Scaling</strong>. On the <strong id="cce_01_0063__b5194832101513">Node Scaling</strong> tab page, click <span><img id="cce_01_0063__image1569143785619" src="en-us_image_0254986677.png"></span> in front of the policy to be viewed.</span></li><li id="cce_01_0063__li641003813527"><span>In the expanded area, the <span class="uicontrol" id="cce_01_0063__uicontrol864413924614"><b>Associated Node Pool</b></span>, <span class="uicontrol" id="cce_01_0063__uicontrol1164419910465"><b>Execution Rules</b></span>, and <span class="uicontrol" id="cce_01_0063__uicontrol1964516974613"><b>Scaling Records</b></span> tab pages are displayed. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_01_0063__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0063__p2404132612336">You can also enable or disable auto scaling in <strong id="cce_01_0063__b1448235514169">Node Pools</strong>. Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0063__b1736151512172">Resource Management</strong> &gt; <strong id="cce_01_0063__b144212018141718">Node Pools</strong>, and click <strong id="cce_01_0063__b55801823151717">Edit</strong> in the upper right corner of the node pool to be operated. In the <strong id="cce_01_0063__b69381433101711">Edit Node Pool</strong> dialog box displayed, you can enable <strong id="cce_01_0063__b1349019406176">Autoscaler</strong> and set the limits of the number of nodes.</p>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0063__section128584032017"><h4 class="sectiontitle">Deleting a Node Scaling Policy</h4><ol id="cce_01_0063__ol14644105712488"><li id="cce_01_0063__li2619151017014"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0063__b10225172110213">Auto Scaling</strong>. On the <strong id="cce_01_0063__b1949982762116">Node Scaling</strong> tab page, click <strong id="cce_01_0063__b134234323212">Delete</strong> in the <strong id="cce_01_0063__b47420381219">Operation</strong> column of the policy to be deleted.</span></li><li id="cce_01_0063__li19809141991015"><span>In the <span class="wintitle" id="cce_01_0063__wintitle1627710616488"><b>Delete Node Policy</b></span> dialog box displayed, confirm whether to delete the policy.</span></li><li id="cce_01_0063__li71817016278"><span>Enter <strong id="cce_01_0063__b291658184817">DELETE</strong> in the text box.</span></li><li id="cce_01_0063__li1340513385528"><span>Click <span class="uicontrol" id="cce_01_0063__uicontrol11111121018481"><b>OK</b></span> to delete the policy.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0063__section5652756162214"><h4 class="sectiontitle">Editing a Node Scaling Policy</h4><ol id="cce_01_0063__ol067875612225"><li id="cce_01_0063__li1678156182213"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0063__b1117410505211">Auto Scaling</strong>. On the <strong id="cce_01_0063__b111759508210">Node Scaling</strong> tab page, click <strong id="cce_01_0063__b1217617503218">Edit</strong> in the <strong id="cce_01_0063__b20177450112112">Operation</strong> column of the policy.</span></li><li id="cce_01_0063__li56781856152211"><span>On the <span class="uicontrol" id="cce_01_0063__uicontrol7933134119486"><b>Edit Node Scaling Policy</b></span> page displayed, modify policy parameter values listed in <a href="cce_01_0209.html#cce_01_0209__table18763092201">Table 1</a>.</span></li><li id="cce_01_0063__li86781756112220"><span>After the configuration is complete, click <span class="uicontrol" id="cce_01_0063__uicontrol07463587480"><b>OK</b></span>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0063__section367810565223"><h4 class="sectiontitle">Cloning a Node Scaling Policy</h4><ol id="cce_01_0063__ol1283103252519"><li id="cce_01_0063__li1383103210258"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0063__b173376254223">Auto Scaling</strong>. On the <strong id="cce_01_0063__b7337112518226">Node Scaling</strong> tab page, click <strong id="cce_01_0063__b39590354227">More</strong> &gt; <strong id="cce_01_0063__b93371825192217">Clone</strong> in the <strong id="cce_01_0063__b3338132519222">Operation</strong> column of the policy.</span></li><li id="cce_01_0063__li128363212514"><span>On the <span class="uicontrol" id="cce_01_0063__uicontrol162071440144911"><b>Create Node Scaling Policy</b></span> page displayed, certain parameters have been cloned. Add or modify other policy parameters based on service requirements.</span></li><li id="cce_01_0063__li383732172512"><span>Click <span class="uicontrol" id="cce_01_0063__uicontrol1449685524914"><b>Create Now</b></span> to clone the policy. The cloned policy is displayed in the policy list on the <span class="uicontrol" id="cce_01_0063__uicontrol15497195512498"><b>Node Scaling</b></span> tab page.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0063__section4771832152513"><h4 class="sectiontitle">Enabling or Disabling a Node Scaling Policy</h4><ol id="cce_01_0063__ol0843321258"><li id="cce_01_0063__li38373213252"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0063__b6609121017289">Auto Scaling</strong>. On the <strong id="cce_01_0063__b1295315159281">Node Scaling</strong> tab page, click <strong id="cce_01_0063__b139831120132810">More</strong> &gt; <strong id="cce_01_0063__b4864102812818">Disable</strong> or <strong id="cce_01_0063__b5842183217284">Enable</strong> in the <strong id="cce_01_0063__b181171538202812">Operation</strong> column of the policy.</span></li><li id="cce_01_0063__li78473252510"><span>In the dialog box displayed, confirm whether to disable or enable the node policy.</span></li><li id="cce_01_0063__li1384163216254"><span>Click <span class="uicontrol" id="cce_01_0063__uicontrol204341433135011"><b>Yes</b></span>. The policy status is displayed in the node scaling list.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0291.html">Scaling a Cluster/Node</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0064.html b/docs/cce/umn/cce_01_0064.html
deleted file mode 100644
index 42705e9c..00000000
--- a/docs/cce/umn/cce_01_0064.html
+++ /dev/null
@@ -1,23 +0,0 @@
-<a name="cce_01_0064"></a><a name="cce_01_0064"></a>
-
-<h1 class="topictitle1">Add-ons</h1>
-<div id="body1529577481025"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0277.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0129.html">coredns (System Resource Add-on, Mandatory)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0127.html">storage-driver (System Resource Add-on, Mandatory)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0066.html">everest (System Resource Add-on, Mandatory)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0154.html">autoscaler</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0205.html">metrics-server</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0141.html">gpu-beta</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0066.html b/docs/cce/umn/cce_01_0066.html
deleted file mode 100644
index 752fedd9..00000000
--- a/docs/cce/umn/cce_01_0066.html
+++ /dev/null
@@ -1,25 +0,0 @@
-<a name="cce_01_0066"></a><a name="cce_01_0066"></a>
-
-<h1 class="topictitle1">everest (System Resource Add-on, Mandatory)</h1>
-<div id="body1529577481025"><div class="section" id="cce_01_0066__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_01_0066__p728554610430">Everest is a cloud-native container storage system. Based on Container Storage Interface (CSI), clusters of Kubernetes v1.15 or later can interconnect with cloud storage services such as EVS, OBS, SFS, and SFS Turbo.</p>
-<p id="cce_01_0066__p17820349194112"><strong id="cce_01_0066__b14107173616557">everest is a system resource add-on. It is installed by default when a cluster of Kubernetes v1.15 or later is created.</strong></p>
-</div>
-<div class="section" id="cce_01_0066__section202191122814"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0066__ul39998883313"><li id="cce_01_0066__li1347222711015">If your cluster is upgraded from v1.13 to v1.15, <a href="cce_01_0127.html">storage-driver</a> is replaced by everest (v1.1.6 or later) for container storage. The takeover does not affect the original storage functions. For details about CSI and FlexVolume, see <a href="cce_01_0306.html#cce_01_0306__section86752053123513">Differences Between CSI and FlexVolume Plug-ins</a>.</li><li id="cce_01_0066__li3787162513612">In version 1.2.0 of the everest add-on, <strong id="cce_01_0066__b51541345758">key authentication</strong> is optimized when OBS is used. After the everest add-on is upgraded from a version earlier than 1.2.0, you need to restart all workloads that use OBS in the cluster. Otherwise, workloads may not be able to use OBS.</li><li id="cce_01_0066__li139991585338">By default, this add-on is installed in <strong id="cce_01_0066__b3236525404">clusters of v1.15 and later</strong>. For clusters of v1.13 and earlier, the <a href="cce_01_0127.html">storage-driver</a> add-on is installed by default.</li></ul>
-</div>
-<div class="section" id="cce_01_0066__section168341157155317"><h4 class="sectiontitle">Installing the Add-on</h4><p id="cce_01_0066__p11695354471">This add-on has been installed by default. If it is uninstalled due to some reasons, you can reinstall it by performing the following steps:</p>
-<ol id="cce_01_0066__ol9183433182510"><li id="cce_01_0066__li13183153352515"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0066__b131161714104112">Add-ons</strong>. On the <strong id="cce_01_0066__b161241014184112">Add-on Marketplace</strong> tab page, click <strong id="cce_01_0066__b1812616142410">Install Add-on</strong> under <strong id="cce_01_0066__b112741411416">everest</strong>.</span></li><li id="cce_01_0066__li65653111558"><span>On the <strong id="cce_01_0066__b1580216443408">Install Add-on</strong> page, select the cluster and the add-on version, and click <strong id="cce_01_0066__b08021644114014">Next: Configuration</strong>.</span></li><li id="cce_01_0066__li9455819152615"><span>Select <strong id="cce_01_0066__b32409326315">Single</strong> or <strong id="cce_01_0066__b102425321531">HA</strong> for <strong id="cce_01_0066__b724314322310">Add-on Specifications</strong>, and click <strong id="cce_01_0066__b172441032535">Install</strong>.</span><p><p id="cce_01_0066__p187721502282">After the add-on is installed, click <strong id="cce_01_0066__b1065713118572">Go Back to Previous Page</strong>. On the <strong id="cce_01_0066__b18657911125715">Add-on Instance</strong> tab page, select the corresponding cluster to view the running instance. This indicates that the add-on has been installed on each node in the cluster.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0066__section414918421496"><h4 class="sectiontitle">Upgrading the Add-on</h4><ol id="cce_01_0066__ol255316335402"><li id="cce_01_0066__li818142512414"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0066__b1314382919416">Add-ons</strong>. On the <strong id="cce_01_0066__b8149102984113">Add-on Instance</strong> tab page, click <strong id="cce_01_0066__b1814962964118">Upgrade</strong> under <strong id="cce_01_0066__b18150112916410">everest</strong>.</span><p><div class="note" id="cce_01_0066__note1625210332283"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0066__ul163002418296"><li id="cce_01_0066__li33006482916">If the <strong id="cce_01_0066__b412131285913">Upgrade</strong> button is unavailable, the current add-on is already up-to-date and no upgrade is required.</li><li id="cce_01_0066__li53016432920">When the upgrade is complete, the original everest version on cluster nodes will be replaced by the latest version.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0066__li11556163354015"><span>On the <strong id="cce_01_0066__b111255134617">Basic Information</strong> page, select the add-on version and click <strong id="cce_01_0066__b622165574615">Next</strong>.</span></li><li id="cce_01_0066__li132321726191110"><span>Select <strong id="cce_01_0066__b141941316548">Single</strong> or <strong id="cce_01_0066__b16194916741">HA</strong> for <strong id="cce_01_0066__b0194216643">Add-on Specifications</strong>, and click <strong id="cce_01_0066__b819471615415">Upgrade</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0066__section610455514114"><h4 class="sectiontitle">Uninstalling the Add-on</h4><ol id="cce_01_0066__ol29784442018"><li id="cce_01_0066__li997812446010"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0066__b11223193611416">Add-ons</strong>. On the <strong id="cce_01_0066__b52291836174114">Add-on Instance</strong> tab page, click <strong id="cce_01_0066__b523083616419">Uninstall</strong> under <strong id="cce_01_0066__b13230193674110">everest</strong>.</span></li><li id="cce_01_0066__li20637152311120"><span>In the dialog box displayed, click <strong id="cce_01_0066__b183013316514">Yes</strong> to uninstall the add-on.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0064.html">Add-ons</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0068.html b/docs/cce/umn/cce_01_0068.html
deleted file mode 100644
index 58318d38..00000000
--- a/docs/cce/umn/cce_01_0068.html
+++ /dev/null
@@ -1,68 +0,0 @@
-<a name="cce_01_0068"></a><a name="cce_01_0068"></a>
-
-<h1 class="topictitle1">CCE Kubernetes Release Notes</h1>
-<div id="body1597718832332"><p id="cce_01_0068__p1684939205015">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. To enable interoperability from one Kubernetes installation to the next, you must upgrade your Kubernetes clusters before the maintenance period ends.</p>
-<p id="cce_01_0068__p8592859164810">After the latest Kubernetes version is released, CCE will provide you the changes in this version. For details, see <a href="#cce_01_0068__table826812711586">Table 1</a>.</p>
-
-<div class="tablenoborder"><a name="cce_01_0068__table826812711586"></a><a name="table826812711586"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0068__table826812711586" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster version differences</caption><thead align="left"><tr id="cce_01_0068__row182714712580"><th align="left" class="cellrowborder" valign="top" width="13.86%" id="mcps1.3.3.2.4.1.1"><p id="cce_01_0068__p9349145865810">Source Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="15.079999999999998%" id="mcps1.3.3.2.4.1.2"><p id="cce_01_0068__p1727217165814">Target Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="71.06%" id="mcps1.3.3.2.4.1.3"><p id="cce_01_0068__p0273577581">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0068__row290616094011"><td class="cellrowborder" valign="top" width="13.86%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_01_0068__p139075011403">v1.19</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_01_0068__p18907120144015">v1.21</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.06%" headers="mcps1.3.3.2.4.1.3 "><ul id="cce_01_0068__ul10641513184013"><li id="cce_01_0068__li2641111311405">Changelog from v1.19 to v1.21<p id="cce_01_0068__p1641151318401"><a name="cce_01_0068__li2641111311405"></a><a name="li2641111311405"></a>Changelog from v1.20 to v1.21:</p>
-<p id="cce_01_0068__p13641191313401"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md</a></p>
-<p id="cce_01_0068__p0641131304015">Changelog from v1.19 to v1.20:</p>
-<p id="cce_01_0068__p56411813114017"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md</a></p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0068__row172031813811"><td class="cellrowborder" valign="top" width="13.86%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_01_0068__p11204619817">v1.17</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_01_0068__p19204617812">v1.19</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.06%" headers="mcps1.3.3.2.4.1.3 "><ul id="cce_01_0068__ul23941211161919"><li id="cce_01_0068__li73941211161914">Changelog from v1.17 to v1.19<p id="cce_01_0068__p1639413113193"><a name="cce_01_0068__li73941211161914"></a><a name="li73941211161914"></a>Changelog from v1.18 to v1.19:</p>
-<p id="cce_01_0068__p939419114190"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.19.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.19.md</a></p>
-<p id="cce_01_0068__p1239441131919">Changelog from v1.17 to v1.18:</p>
-<p id="cce_01_0068__p03947111198"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md</a></p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0068__row697493244012"><td class="cellrowborder" valign="top" width="13.86%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_01_0068__p1997553274012">v1.15</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_01_0068__p179759321403">v1.17</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.06%" headers="mcps1.3.3.2.4.1.3 "><ul id="cce_01_0068__ul1758010404114"><li id="cce_01_0068__li229675174117">Changelog from v1.15 to v1.17<p id="cce_01_0068__p92964512419"><a name="cce_01_0068__li229675174117"></a><a name="li229675174117"></a>Changelog from v1.16 to v1.17:</p>
-<p id="cce_01_0068__p029614534112"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.17.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.17.md</a></p>
-<p id="cce_01_0068__p192967574110">Changelog from v1.15 to v1.16:</p>
-<p id="cce_01_0068__p32965518419"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.16.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.16.md</a></p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0068__row12962942134718"><td class="cellrowborder" valign="top" width="13.86%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_01_0068__p496215422475">v1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_01_0068__p12962164212472">v1.15</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.06%" headers="mcps1.3.3.2.4.1.3 "><ul id="cce_01_0068__ul2574330163719"><li id="cce_01_0068__li2574113023720">Changelog from v1.13 to v1.15<p id="cce_01_0068__p18574133017378"><a name="cce_01_0068__li2574113023720"></a><a name="li2574113023720"></a>Changelog from v1.14 to v1.15:</p>
-<p id="cce_01_0068__p1257423013717"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.15.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.15.md</a></p>
-<p id="cce_01_0068__p1057473015371">Changelog from v1.13 to v1.14:</p>
-<p id="cce_01_0068__p857413013712"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.14.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.14.md</a></p>
-</li><li id="cce_01_0068__li1121011122093">After a cluster is upgraded from v1.13 to v1.15, the FlexVolume plug-in (storage-driver) is taken over by the CSI plug-in (everest v1.1.6 or later) for container storage. This takeover brings in no function changes, however, you are advised not to create FlexVolume storage resources any more, which will not work in the cluster.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0215.html">Upgrading a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0081.html b/docs/cce/umn/cce_01_0081.html
deleted file mode 100644
index 5387f3ce..00000000
--- a/docs/cce/umn/cce_01_0081.html
+++ /dev/null
@@ -1,144 +0,0 @@
-<a name="cce_01_0081"></a><a name="cce_01_0081"></a>
-
-<h1 class="topictitle1">Node Pool Overview</h1>
-<div id="body1508466102634"><div class="section" id="cce_01_0081__section11993204511284"><h4 class="sectiontitle">Introduction</h4><p id="cce_01_0081__p2093113017548">CCE introduces node pools to help you better manage nodes in Kubernetes clusters. A node pool contains one node or a group of nodes with identical configuration in a cluster.</p>
-<p id="cce_01_0081__p65145218311">You can create custom node pools on the CCE console. With node pools, you can quickly create, manage, and destroy nodes without affecting the cluster. All nodes in a custom node pool have identical parameters and node type. You cannot configure a single node in a node pool; any configuration changes affect all nodes in the node pool.</p>
-<p id="cce_01_0081__p991420571436">You can also use node pools for auto scaling.</p>
-<ul id="cce_01_0081__ul145866101445"><li id="cce_01_0081__li1158619101146">When a pod in a cluster cannot be scheduled due to insufficient resources, scale-out can be automatically triggered.</li><li id="cce_01_0081__li1558617108417">When there is an idle node or a monitoring metric threshold is met, scale-in can be automatically triggered.</li></ul>
-<p id="cce_01_0081__p19802113820588">This section describes how node pools work in CCE and how to create and manage node pools.</p>
-</div>
-<div class="section" id="cce_01_0081__section1486732122217"><h4 class="sectiontitle">Node Pool Architecture</h4><div class="fignone" id="cce_01_0081__fig10621426152210"><span class="figcap"><b>Figure 1 </b>Overall architecture of a node pool</span><br><span><img id="cce_01_0081__image16860010172217" src="en-us_image_0269288708.png"></span></div>
-<p id="cce_01_0081__p2480134412214">Generally, all nodes in a node pool have the following same attributes:</p>
-<ul id="cce_01_0081__ul134808449226"><li id="cce_01_0081__li1848004422220">Node OS</li><li id="cce_01_0081__li20480184419225">Startup parameters of Kubernetes components on a node</li><li id="cce_01_0081__li17480104411227">User-defined startup script of a node</li><li id="cce_01_0081__li84806446229"><strong id="cce_01_0081__b156321822191410">K8S Labels</strong> and <strong id="cce_01_0081__b037992416144">Taints</strong></li></ul>
-<p id="cce_01_0081__p1048019444223">CCE provides the following extended attributes for node pools:</p>
-<ul id="cce_01_0081__ul84801544162219"><li id="cce_01_0081__li1480184410229">Node pool OS</li><li id="cce_01_0081__li114801944112213">Maximum number of pods on each node in a node pool</li></ul>
-</div>
-<div class="section" id="cce_01_0081__section16928123042115"><h4 class="sectiontitle">Description of DefaultPool</h4><p id="cce_01_0081__p5444184415215">DefaultPool is not a real node pool. It only <strong id="cce_01_0081__b186624665612">classifies</strong> nodes that are not in any node pool. These nodes are directly created on the console or by calling APIs. DefaultPool does not support any node pool functions, including scaling and parameter configuration. DefaultPool cannot be edited, deleted, expanded, or auto scaled, and nodes in it cannot be migrated.</p>
-</div>
-<div class="section" id="cce_01_0081__section32131316256"><h4 class="sectiontitle">Applicable Scenarios</h4><p id="cce_01_0081__p1945803011253">When a large-scale cluster is required, you are advised to use node pools to manage nodes.</p>
-<p id="cce_01_0081__p1491578182512">The following table describes multiple scenarios of large-scale cluster management and the functions of node pools in each scenario.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0081__table1736317479258" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Using node pools for different management scenarios</caption><thead align="left"><tr id="cce_01_0081__row336414719256"><th align="left" class="cellrowborder" valign="top" width="39.32%" id="mcps1.3.4.4.2.3.1.1"><p id="cce_01_0081__p5364134792518">Scenario</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="60.68%" id="mcps1.3.4.4.2.3.1.2"><p id="cce_01_0081__p19364174712511">Function</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0081__row736464715258"><td class="cellrowborder" valign="top" width="39.32%" headers="mcps1.3.4.4.2.3.1.1 "><p id="cce_01_0081__p5560152172517">Multiple heterogeneous nodes (with different models and configurations) in the cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="60.68%" headers="mcps1.3.4.4.2.3.1.2 "><p id="cce_01_0081__p556055292512">Nodes can be grouped into different pools for management.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row1136494714252"><td class="cellrowborder" valign="top" width="39.32%" headers="mcps1.3.4.4.2.3.1.1 "><p id="cce_01_0081__p1856095212258">Frequent node scaling required in a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="60.68%" headers="mcps1.3.4.4.2.3.1.2 "><p id="cce_01_0081__p1956035211257">Node pools support auto scaling to dynamically add or reduce nodes.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row1936417470257"><td class="cellrowborder" valign="top" width="39.32%" headers="mcps1.3.4.4.2.3.1.1 "><p id="cce_01_0081__p1756045232510">Complex application scheduling rules in a cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="60.68%" headers="mcps1.3.4.4.2.3.1.2 "><p id="cce_01_0081__p25602524254">Node pool tags can be used to quickly specify service scheduling rules.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0081__section0234145518267"><h4 class="sectiontitle">Functions and Precautions</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0081__table0843131752720" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0081__row15843151716271"><th align="left" class="cellrowborder" valign="top" width="21.942194219421943%" id="mcps1.3.5.2.1.4.1.1"><p id="cce_01_0081__p38431175276">Function</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="39.603960396039604%" id="mcps1.3.5.2.1.4.1.2"><p id="cce_01_0081__p14843191752714">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="38.453845384538454%" id="mcps1.3.5.2.1.4.1.3"><p id="cce_01_0081__p48430171279">Notes</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0081__row68431917172718"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p0579122852710">Creating a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p65790289272">Add a node pool.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p105791528112711">It is recommended that a cluster contain no more than 100 node pools.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row1084351717279"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p105796289273">Deleting a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p1916410397318">Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p75791828182711">If pods in the node pool have a specific node selector and none of the other nodes in the cluster satisfies the node selector, the pods will become unschedulable.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row118434173271"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p65790288276">Enabling auto scaling for a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p11579152892711">After auto scaling is enabled, nodes will be automatically created or deleted in the node pool based on the cluster loads.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p105796284275">You are advised not to store important data on nodes in a node pool because after auto scaling, data cannot be restored as nodes may be deleted.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row5843131718272"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p18579132802720">Enabling auto scaling for a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p75791228192718">After auto scaling is disabled, the number of nodes in a node pool will not automatically change with the cluster loads.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p17590142818271">/</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row98435171275"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p18579928102713">Adjusting the size of a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p145794286275">The number of nodes in a node pool can be directly adjusted. If the number of nodes is reduced, nodes are randomly removed from the current node pool.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p25795288273">After auto scaling is enabled, you are not advised to manually adjust the node pool size.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row18431117142713"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p1657922832717">Changing node pool configurations</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p3579182816279">You can modify the node pool name, node quantity, Kubernetes labels, taints, and resource tags.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p857917281274">The modified Kubernetes labels and taints will apply to all nodes in the node pool, which may cause pod re-scheduling. Therefore, exercise caution when performing this operation.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row170102513272"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p1757922892720">Adding an existing node to a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p557942817276">Nodes that do not belong to the cluster can be added to a node pool. The following requirements must be met:</p>
-<ul id="cce_01_0081__ul55791728192710"><li id="cce_01_0081__li1657917287274">The node to be added and the CCE cluster are in the same VPC and subnet.</li><li id="cce_01_0081__li9579182820276">The node is not used by other clusters and has the same configurations (such as specifications and billing mode) as the node pool.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p2058042816277">Unless required, you are not advised to add existing nodes. You are advised to create a node pool.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row1209255271"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p1558082819279">Removing a node from a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p1158014287278">Nodes in a node pool can be migrated to the default node pool of the same cluster.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p8580132811270">Nodes in the default node pool cannot be migrated to other node pools, and nodes in a user-created node pool cannot be migrated to other user-created node pools.</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row425414163469"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p7254616174618">Cloning a node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p1025414163462">You can copy the configuration of an existing node pool to create a new node pool.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_01_0081__p1425461620464">/</p>
-</td>
-</tr>
-<tr id="cce_01_0081__row1238761814711"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_01_0081__p20387141844717">Setting Kubernetes parameters</p>
-</td>
-<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_01_0081__p5387151854714">You can configure core components with fine granularity.</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><ul id="cce_01_0081__ul131631956486"><li id="cce_01_0081__li16163105164816">This function is supported only for clusters of v1.15 and later. It is not displayed for versions earlier than v1.15</li><li id="cce_01_0081__li191638515487">The default node pool DefaultPool does not support this type of configuration.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0081__section12603142443319"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0081__keyword134411635193118">Deploying a Workload in a Specified Node Pool</span></h4><p id="cce_01_0081__p153911712353">When creating a workload, you can constrain pods to run in a specified node pool.</p>
-<p id="cce_01_0081__p554031713358">For example, on the CCE console, you can set the affinity between the workload and the node on the <strong id="cce_01_0081__b4608123218447">Scheduling Policies</strong> tab page on the workload details page to forcibly deploy the workload to a specific node pool. In this way, the workload runs only on nodes in the node pool. If you need to better control where the workload is to be scheduled, you can use affinity or anti-affinity policies between workloads and nodes described in <a href="cce_01_0051.html">Scheduling Policy Overview</a>.</p>
-<p id="cce_01_0081__p614655184910">For example, you can use container's resource request as a nodeSelector so that workloads will run only on the nodes that meet the resource request.</p>
-<p id="cce_01_0081__p1854041717353">If the workload definition file defines a container that requires four CPUs, the scheduler will not choose the nodes with two CPUs to run workloads.</p>
-</div>
-<div class="section" id="cce_01_0081__section17716744163316"><h4 class="sectiontitle">Related Operations</h4><p id="cce_01_0081__p12284195854916">You can log in to the CCE console and refer to the following sections to perform operations on node pools:</p>
-<ul id="cce_01_0081__ul713912219920"><li id="cce_01_0081__li168801331326"><a href="cce_01_0012.html">Creating a Node Pool</a></li><li id="cce_01_0081__li1688010311326"><a href="cce_01_0222.html">Managing a Node Pool</a></li><li id="cce_01_0081__li1720114577918"><a href="cce_01_0047.html">Creating a Deployment</a></li><li id="cce_01_0081__li1849316127104"><a href="cce_01_0225.html">Workload-Node Affinity</a></li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0035.html">Node Pools</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0083.html b/docs/cce/umn/cce_01_0083.html
deleted file mode 100644
index 8e8ce9a2..00000000
--- a/docs/cce/umn/cce_01_0083.html
+++ /dev/null
@@ -1,107 +0,0 @@
-<a name="cce_01_0083"></a><a name="cce_01_0083"></a>
-
-<h1 class="topictitle1">Managing Workload Scaling Policies</h1>
-<div id="body1508729244098"><div class="section" id="cce_01_0083__section11873141710246"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0083__p799618243249">After an HPA policy is created, you can update, clone, edit, and delete the policy, as well as edit the YAML file.</p>
-</div>
-<div class="section" id="cce_01_0083__section14993443181414"><h4 class="sectiontitle">Checking an HPA Policy</h4><p id="cce_01_0083__p713741135215">You can view the rules, status, and events of an HPA policy and handle exceptions based on the error information displayed.</p>
-<ol id="cce_01_0083__ol17409123885219"><li id="cce_01_0083__li4409153817525"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0083__b14999521259">Auto Scaling</strong>. On the <strong id="cce_01_0083__b9052217513">Workload Scaling</strong> tab page, click <span><img id="cce_01_0083__image1569143785619" src="en-us_image_0254985211.png"></span> in front of the target policy.</span></li><li id="cce_01_0083__li641003813527"><span>In the expanded area, you can view the <span class="uicontrol" id="cce_01_0083__uicontrol783043616"><b>Rules</b></span>, <span class="uicontrol" id="cce_01_0083__uicontrol79110193616"><b>Status</b></span>, and <span class="uicontrol" id="cce_01_0083__uicontrol897073610"><b>Events</b></span> tab pages. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_01_0083__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0083__p2404132612336">You can also view the created HPA policy on the workload details page. Log in to the CCE console, choose <strong id="cce_01_0083__b145811512592">Workloads &gt; Deployments</strong> or <strong id="cce_01_0083__b9588214591">Workloads &gt; StatefulSets</strong> in the navigation pane, and choose <strong id="cce_01_0083__b1588131165916">More</strong> &gt; <strong id="cce_01_0083__b35896118595">Scaling</strong> in the <strong id="cce_01_0083__b158916195910">Operation</strong> column. On the workload details page, click the <strong id="cce_01_0083__b25897105910">Scaling</strong> tab. You can see the <strong id="cce_01_0083__b15590171195912">Auto Scaling-HPA</strong> pane, as well as the HPA policy you have configured on the <strong id="cce_01_0083__b175909114596">Auto Scaling</strong> page.</p>
-</div></div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0083__table56931825193212" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Event types and names</caption><thead align="left"><tr id="cce_01_0083__row269117254324"><th align="left" class="cellrowborder" valign="top" width="17.531753175317533%" id="mcps1.3.2.3.2.2.2.2.4.1.1"><p id="cce_01_0083__p176911125153211">Event Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="40.94409440944094%" id="mcps1.3.2.3.2.2.2.2.4.1.2"><p id="cce_01_0083__p76911525153218">Event Name</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="41.52415241524153%" id="mcps1.3.2.3.2.2.2.2.4.1.3"><p id="cce_01_0083__p156911325133211">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0083__row2692325123216"><td class="cellrowborder" valign="top" width="17.531753175317533%" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p1769152583210">Normal</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.94409440944094%" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p4692725173214">SuccessfulRescale</p>
-</td>
-<td class="cellrowborder" valign="top" width="41.52415241524153%" headers="mcps1.3.2.3.2.2.2.2.4.1.3 "><p id="cce_01_0083__p1969242553220">The scaling is performed successfully.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row15692192511329"><td class="cellrowborder" rowspan="12" valign="top" width="17.531753175317533%" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p86921225133210">Abnormal</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.94409440944094%" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p14692125103210">InvalidTargetRange</p>
-</td>
-<td class="cellrowborder" valign="top" width="41.52415241524153%" headers="mcps1.3.2.3.2.2.2.2.4.1.3 "><p id="cce_01_0083__p11692172514329">Invalid target range.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row1669211256324"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p10692225173214">InvalidSelector</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p66929256329">Invalid selector.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row36921525173217"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p12692182515326">FailedGetObjectMetric</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p36921725193219">Objects fail to be obtained.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row769216258320"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p1369272512320">FailedGetPodsMetric</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p9692325113214">Pods fail to be obtained.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row17692925143210"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p196920258323">FailedGetResourceMetric</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p1369216257321">Resources fail to be obtained.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row669216253320"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p176922251321">FailedGetExternalMetric</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p1269242511325">External metrics fail to be obtained.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row869212503211"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p369212583219">InvalidMetricSourceType</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p15692152519329">Invalid metric source type.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row11692142513324"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p469262553220">FailedConvertHPA</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p19692725123218">HPA conversion failed.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row1469282513323"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p1369216256328">FailedGetScale</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p1369212563217">The scale fails to be obtained.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row186921525183211"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p1769211256328">FailedComputeMetricsReplicas</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p7692192503219">Failed to calculate metric-defined replicas.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row176931225143214"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p106921025173215">FailedGetScaleWindow</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p14693142523215">Failed to obtain ScaleWindow.</p>
-</td>
-</tr>
-<tr id="cce_01_0083__row19693132523211"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.1 "><p id="cce_01_0083__p3693102520327">FailedRescale</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.2.2.2.4.1.2 "><p id="cce_01_0083__p46931255327">Failed to scale the service.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0083__section119901143111420"><h4 class="sectiontitle">Updating an HPA Policy</h4><p id="cce_01_0083__p18160164715245">An HPA policy is used as an example.</p>
-<ol id="cce_01_0083__ol14644105712488"><li id="cce_01_0083__li2619151017014"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0083__b829119557818">Auto Scaling</strong>. On the <strong id="cce_01_0083__b22923558811">Workload Scaling</strong> tab page, click <strong id="cce_01_0083__b2293255985">Update</strong> in the <strong id="cce_01_0083__b5294555489">Operation</strong> column of the policy to be updated.</span></li><li id="cce_01_0083__li19809141991015"><span>On the <span class="uicontrol" id="cce_01_0083__uicontrol630212429422"><b>Update HPA Policy</b></span> page displayed, set the policy parameters listed in <a href="cce_01_0208.html#cce_01_0208__table8638121213265">Table 1</a>.</span></li><li id="cce_01_0083__li1340513385528"><span>Click <strong id="cce_01_0083__b084931111349">Update</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0083__section6849014101719"><h4 class="sectiontitle">Cloning an HPA Policy</h4><ol id="cce_01_0083__ol5893151421718"><li id="cce_01_0083__li168920145179"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0083__b164908191995">Auto Scaling</strong>. On the <strong id="cce_01_0083__b649114191094">Workload Scaling</strong> tab page, click <strong id="cce_01_0083__b1149218191797">Clone</strong> in the <strong id="cce_01_0083__b1649311191099">Operation</strong> column of the target policy.</span></li><li id="cce_01_0083__li98921314141710"><span>For example, for an HPA policy, on the <span class="uicontrol" id="cce_01_0083__uicontrol122991219164317"><b>Create HPA Policy</b></span> page, you can view that parameters such as <span class="parmname" id="cce_01_0083__parmname130441964312"><b>Pod Range</b></span>, <span class="parmname" id="cce_01_0083__parmname15305019154317"><b>Cooldown Period</b></span>, and <span class="parmname" id="cce_01_0083__parmname123055194430"><b>Rules</b></span> have been cloned. Add or modify other policy parameters as needed.</span></li><li id="cce_01_0083__li1289312143171"><span>Click <strong id="cce_01_0083__b11535152418346">Create</strong> to complete policy cloning. On the <strong id="cce_01_0083__b7791203013347">Workload Scaling</strong> tab page, you can view the cloned policy in the policy list.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0083__section14894314131710"><h4 class="sectiontitle">Editing the YAML File (HPA Policy)</h4><ol id="cce_01_0083__ol836024781710"><li id="cce_01_0083__li173601647131714"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0083__b108016465100">Auto Scaling</strong>. On the <strong id="cce_01_0083__b3811134691011">Workload Scaling</strong> tab page, choose <strong id="cce_01_0083__b138118466109">More</strong> &gt; <strong id="cce_01_0083__b198123468108">Edit YAML</strong> in the <strong id="cce_01_0083__b6812144620108">Operation</strong> column of the target policy.</span></li><li id="cce_01_0083__li3360104719175"><span>In the <span class="uicontrol" id="cce_01_0083__uicontrol19625193112511"><b>Edit YAML</b></span> dialog box displayed, edit or download the YAML file.</span></li><li id="cce_01_0083__li1236014711712"><span>Click the close button in the upper right corner.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0083__section13361947161717"><h4 class="sectiontitle">Deleting an HPA Policy</h4><ol id="cce_01_0083__ol86853731815"><li id="cce_01_0083__li6683379181"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0083__b101651223191118">Auto Scaling</strong>. On the <strong id="cce_01_0083__b117713234114">Workload Scaling</strong> tab page, choose <strong id="cce_01_0083__b717762381118">More</strong> &gt; <strong id="cce_01_0083__b9178123111120">Delete</strong> in the <strong id="cce_01_0083__b1017812361112">Operation</strong> column of the target policy.</span></li><li id="cce_01_0083__li96803718182"><span>In the <span class="uicontrol" id="cce_01_0083__uicontrol212514152544"><b>Delete HPA Policy</b></span> dialog box displayed, confirm whether to delete the HPA policy.</span></li><li id="cce_01_0083__li2686371183"><span>Click <span class="uicontrol" id="cce_01_0083__uicontrol18921171815543"><b>Yes</b></span> to delete the policy.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0293.html">Scaling a Workload</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0085.html b/docs/cce/umn/cce_01_0085.html
deleted file mode 100644
index 984889cb..00000000
--- a/docs/cce/umn/cce_01_0085.html
+++ /dev/null
@@ -1,49 +0,0 @@
-<a name="cce_01_0085"></a><a name="cce_01_0085"></a>
-
-<h1 class="topictitle1">Controlling Cluster Permissions</h1>
-<div id="body1532060076739"><div class="section" id="cce_01_0085__section183951620327"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0085__p04292733219">This section describes how to control permissions on resources in a cluster, for example, allow user A to read and write application data in a namespace, and user B to only read resource data in a cluster.</p>
-</div>
-<div class="section" id="cce_01_0085__section12024043015"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0085__ol7212589179"><li id="cce_01_0085__li17672131923813"><span>If you need to perform permission control on the cluster, select <strong id="cce_01_0085__b126223145816">Enhanced authentication</strong> for <strong id="cce_01_0085__b96161139115810">Authentication Mode</strong> during cluster creation, upload your own <strong id="cce_01_0085__b1588515591578">CA certificate</strong>, <strong id="cce_01_0085__b7885155917577">client certificate</strong>, and <strong id="cce_01_0085__b788516594574">client certificate private key</strong> (for details about how to create a certificate, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/certificates/" target="_blank" rel="noopener noreferrer">Certificates</a>), and select <strong id="cce_01_0085__b19886759175710">I have confirmed that the uploaded certificates are valid</strong>. For details, see <a href="cce_01_0028.html#cce_01_0028__table8638121213265">Table 1</a>.</span><p><div class="caution" id="cce_01_0085__note173064357597"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_01_0085__ul63601125729"><li id="cce_01_0085__li16243349611">Upload a file <strong id="cce_01_0085__b2013902455712">smaller than 1 MB</strong>. The CA certificate and client certificate can be in <strong id="cce_01_0085__b151521824195714">.crt</strong> or <strong id="cce_01_0085__b7152192418579">.cer</strong> format. The private key of the client certificate can only be uploaded <strong id="cce_01_0085__b915202410571">unencrypted</strong>.</li><li id="cce_01_0085__li2030917431258">The validity period of the client certificate must be longer than five years.</li><li id="cce_01_0085__li082643315619">The uploaded CA certificate is used for both the authentication proxy and the kube-apiserver aggregation layer configuration. <strong id="cce_01_0085__b1630482613570">If the certificate is invalid, the cluster cannot be created</strong>.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0085__li176675220325"><span>Create a role using kubectl.</span><p><div class="p" id="cce_01_0085__p2067061013303">The following example shows how to create a <strong id="cce_01_0085__b842352706105835">role</strong> and allow the role to read all pods in the default namespace. For details about the parameters, see the <a href="https://kubernetes.io/docs/reference/" target="_blank" rel="noopener noreferrer">official Kubernetes documentation</a>.<pre class="screen" id="cce_01_0085__screen88861958154417">kind: Role
-apiVersion: rbac.authorization.k8s.io/v1
-metadata:
-  namespace: default
-  name: pod-reader
-rules:
-- apiGroups: [""]
-  resources: ["pods"]
-  verbs: ["get", "watch", "list"]</pre>
-</div>
-</p></li><li id="cce_01_0085__li93082449442"><span>Bind the role to a user by using kubectl.</span><p><div class="p" id="cce_01_0085__p186706105302">In the following example, the <strong id="cce_01_0085__b84235270610591">RoleBinding</strong> assigns the role of <strong id="cce_01_0085__b842352706105926">pod-reader</strong> in the default namespace to user <strong id="cce_01_0085__b842352706105945">jane</strong>. This policy allows user <strong id="cce_01_0085__b842352706105953">jane</strong> to read all pods in the default namespace. For details about the parameters, see the <a href="https://kubernetes.io/docs/reference/" target="_blank" rel="noopener noreferrer">official Kubernetes documentation</a>.<pre class="screen" id="cce_01_0085__screen577125963212">kind: RoleBinding
-apiVersion: rbac.authorization.k8s.io/v1
-metadata:
-  name: read-pods
-  namespace: default
-subjects:
-- kind: User
-  name: jane   #User name
-  apiGroup: rbac.authorization.k8s.io
-roleRef:
-  kind: Role
-  name: pod-reader    #Name of the role that is created
-  apiGroup: rbac.authorization.k8s.io</pre>
-</div>
-</p></li><li id="cce_01_0085__li1310204916362"><span>After a role is created and bound to a user, call a Kubernetes API by initiating an API request message where headers carry user information and the certificate uploaded during cluster creation. For example, to call the pod query API, run the following command:</span><p><p id="cce_01_0085__p1562143141813"><strong id="cce_01_0085__b1421452712577">curl -k -H "X-Remote-User: <em id="cce_01_0085__i121422718571">jane</em>" --cacert /root/tls-ca.crt --key /root/tls.key --cert /root/tls.crt https://</strong><em id="cce_01_0085__i279218283574">192.168.23.5:5443</em><strong id="cce_01_0085__b16229142710572">/api/v1/namespaces/default/pods</strong></p>
-<p id="cce_01_0085__p1640919457189">If <strong id="cce_01_0085__b84235270611758">200</strong> is returned, user <strong id="cce_01_0085__b1435861221319">jane</strong> is authorized to read pods in the cluster's default namespace. If <strong id="cce_01_0085__b8423527061183">403</strong> is returned, user <strong id="cce_01_0085__b175651715181314">jane</strong> is not authorized to read pods in the cluster's default namespace.</p>
-<div class="note" id="cce_01_0085__note27661232194015"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0085__p16318194716407">To prevent the command execution failure, upload the certificate to the <strong id="cce_01_0085__b84235270611815">/root</strong> directory in advance.</p>
-</div></div>
-<p id="cce_01_0085__p9615195293417">The parameter descriptions are as follows:</p>
-<ul id="cce_01_0085__ul1233451123514"><li id="cce_01_0085__li1933415103513"><strong id="cce_01_0085__b8423527061194">X-Remote-User: <em id="cce_01_0085__i84235269711852">jane</em></strong>: The request header is fixed at <strong id="cce_01_0085__b84235270611922">X-Remote-User</strong>, and <strong id="cce_01_0085__b84235270611934">jane</strong> is the username.</li><li id="cce_01_0085__li157711127123514"><strong id="cce_01_0085__b307734649111116"><em id="cce_01_0085__i223083934111116">tls-ca.crt</em></strong>: CA root certificate uploaded during cluster creation.</li><li id="cce_01_0085__li955721462919"><strong id="cce_01_0085__b84235270611133">tls.crt</strong>: client certificate that matches the CA root certificate uploaded during cluster creation.</li><li id="cce_01_0085__li101513210292"><strong id="cce_01_0085__b842352706111152">tls.key</strong>: client key corresponding to the CA root certificate uploaded during cluster creation.</li><li id="cce_01_0085__li12807123010577"><strong id="cce_01_0085__b842352706111158">192.168.23.5:5443</strong>: address for connecting to the cluster. To obtain the address, perform the following steps:<p id="cce_01_0085__p19544346153023">Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0085__b749082681318">Resource Management &gt; Clusters</strong>. Click the name of the cluster to be connected and obtain the IP address and port number from <strong id="cce_01_0085__b131811181157">Internal API Server Address</strong> on the cluster details page.</p>
-<div class="fignone" id="cce_01_0085__fig743763911913"><span class="figcap"><b>Figure 1 </b>Obtaining the access address</span><br><span><img id="cce_01_0085__image15123189152917" src="en-us_image_0000001144208440.png"></span></div>
-</li></ul>
-<p id="cce_01_0085__p128742427296">In addition, the <strong id="cce_01_0085__b84235270611175">X-Remote-Group</strong> header field, that is, the user group name, is supported. During role binding, a role can be bound to a group and carry user group information when you access the cluster.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0105.html b/docs/cce/umn/cce_01_0105.html
deleted file mode 100644
index b702311d..00000000
--- a/docs/cce/umn/cce_01_0105.html
+++ /dev/null
@@ -1,209 +0,0 @@
-<a name="cce_01_0105"></a><a name="cce_01_0105"></a>
-
-<h1 class="topictitle1">Setting Container Lifecycle Parameters</h1>
-<div id="body1511833542433"><div class="section" id="cce_01_0105__section196471258364"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0105__p182561527714">CCE provides callback functions for the lifecycle management of containerized applications. For example, if you want a container to perform a certain operation before stopping, you can register a hook function. </p>
-<p id="cce_01_0105__p152208151978">CCE provides the following lifecycle callback functions:</p>
-<ul id="cce_01_0105__ul922021513717"><li id="cce_01_0105__li16220815773"><strong id="cce_01_0105__b8812154352715"><span class="keyword" id="cce_01_0105__keyword209119171317258">Start Command</span></strong>: executed to start a container. For details, see <a href="cce_01_0008.html">Setting Container Startup Commands</a>.</li><li id="cce_01_0105__li14220201518713"><strong id="cce_01_0105__b150302499794538"><span class="keyword" id="cce_01_0105__keyword29571762817312">Post-Start</span></strong>: executed immediately after a container is started. For details, see <a href="#cce_01_0105__section15243544163715">Post-Start Processing</a>.</li><li id="cce_01_0105__li32206153712"><strong id="cce_01_0105__b162512053994533"><span class="keyword" id="cce_01_0105__keyword26075130317328">Pre-Stop</span></strong>: executed before a container is stopped. The pre-stop processing function helps you ensure that the services running on the pods can be completed in advance in the case of pod upgrade or deletion. For details, see <a href="#cce_01_0105__section2334114473712">Pre-Stop Processing</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0105__section913591582414"><h4 class="sectiontitle">Commands and Parameters Used to Run a Container</h4><p id="cce_01_0105__p5170150172516">A Docker image has metadata that stores image information. If lifecycle commands and arguments are not set, CCE runs the default commands and arguments, that is, Docker instructions <strong id="cce_01_0105__b8266230114311">ENTRYPOINT</strong> and <strong id="cce_01_0105__b827118303436">CMD</strong>, provided during image creation. </p>
-<p id="cce_01_0105__p1617110012512">If the commands and arguments used to run a container are set during application creation, the default commands <strong id="cce_01_0105__b1918017171441">ENTRYPOINT</strong> and <strong id="cce_01_0105__b10185101718449">CMD</strong> are overwritten during image build. The rules are as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0105__table4833929202611" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Commands and parameters used to run a container</caption><thead align="left"><tr id="cce_01_0105__row1683442952610"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.1"><p id="cce_01_0105__p17834192919269">Image Entrypoint</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.2"><p id="cce_01_0105__p168345294268">Image CMD</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.3"><p id="cce_01_0105__p283416297265">Command to Run a Container</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.4"><p id="cce_01_0105__p583412914264">Parameters to Run a Container</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.2.6.1.5"><p id="cce_01_0105__p198341629182620">Command Executed</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0105__row283622962618"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0105__p583642920263">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0105__p128361129162616">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0105__p15836162952619">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0105__p18836529172618">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0105__p1836132922617">[touch /root/test]</p>
-</td>
-</tr>
-<tr id="cce_01_0105__row283662932612"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0105__p3836229172615">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0105__p18836142932613">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0105__p1183602917269">[mkdir]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0105__p983642982611">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0105__p1183612293269">[mkdir]</p>
-</td>
-</tr>
-<tr id="cce_01_0105__row9836152912618"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0105__p167981050113418">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0105__p17837142972617">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0105__p168379292269">Not set</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0105__p1583702911260">[/opt/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0105__p58371729182613">[touch /opt/test]</p>
-</td>
-</tr>
-<tr id="cce_01_0105__row16837172972617"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.1 "><p id="cce_01_0105__p138691301355">[touch]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.2 "><p id="cce_01_0105__p208371129182610">[/root/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.3 "><p id="cce_01_0105__p1283715298267">[mkdir]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.4 "><p id="cce_01_0105__p544733220362">[/opt/test]</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.2.6.1.5 "><p id="cce_01_0105__p20837112917262">[mkdir /opt/test]</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0105__section54912655316"><h4 class="sectiontitle">Startup Commands</h4><p id="cce_01_0105__p198271342105918">By default, the default command during image start. To run a specific command or rewrite the default image value, you must perform specific settings: For details, see <a href="cce_01_0008.html">Setting Container Startup Commands</a>.</p>
-</div>
-<div class="section" id="cce_01_0105__section15243544163715"><a name="cce_01_0105__section15243544163715"></a><a name="section15243544163715"></a><h4 class="sectiontitle">Post-Start Processing</h4><ol id="cce_01_0105__ol11752171183813"><li id="cce_01_0105__li137531411153811"><span>Log in to the CCE console. Expand <strong id="cce_01_0105__b88581317182717">Lifecycle</strong> when adding a container during workload creation.</span></li><li id="cce_01_0105__li1275610116383"><span>Set the post-start processing parameters, as listed in <a href="#cce_01_0105__table823614643810">Table 2</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0105__table823614643810"></a><a name="table823614643810"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0105__table823614643810" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Post-start processing parameters</caption><thead align="left"><tr id="cce_01_0105__row182422468384"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0105__p122437460382">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0105__p1924524616384">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0105__row102472046183820"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0105__p1248204618385"><span class="keyword" id="cce_01_0105__keyword20279474821744">CLI</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0105__p8249134611380">Set commands to be executed in the container for post-start processing. The command format is <strong id="cce_01_0105__b842352706152442">Command Args[1] Args[2]...</strong>. <strong id="cce_01_0105__b84235270615253">Command</strong> is a system command or a user-defined executable program. If no path is specified, an executable program in the default path will be selected. If multiple commands need to be executed, write the commands into a script for execution. <strong id="cce_01_0105__b1355712591569">Commands that are executed in the background or asynchronously are not supported.</strong></p>
-<p id="cce_01_0105__p32497468380">Example command:</p>
-<pre class="screen" id="cce_01_0105__screen15250164673811">exec: 
-  command: 
-  - /install.sh 
-  - install_agent</pre>
-<p id="cce_01_0105__p92541146123820">Enter <strong id="cce_01_0105__b842352706152826">/install install_agent</strong> in the script. This command indicates that <strong id="cce_01_0105__b11811112419471">install.sh</strong> will be executed after the container is created successfully.</p>
-</td>
-</tr>
-<tr id="cce_01_0105__row925519462389"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0105__p1261104603816">HTTP request</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0105__p162625461389">Send an HTTP request for post-start processing. The related parameters are described as follows:</p>
-<ul id="cce_01_0105__ul426364613385"><li id="cce_01_0105__li1126311461385"><strong id="cce_01_0105__b8207132175211">Path</strong>: (optional) request URL.</li><li id="cce_01_0105__li12641946173820"><strong id="cce_01_0105__b1099715385217">Port</strong>: (mandatory) request port.</li><li id="cce_01_0105__li726644612387"><strong id="cce_01_0105__b97156610528">Host Address</strong>: (optional) IP address of the request. The default value is the IP address of the node where the container resides.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0105__section2334114473712"><a name="cce_01_0105__section2334114473712"></a><a name="section2334114473712"></a><h4 class="sectiontitle">Pre-Stop Processing</h4><ol id="cce_01_0105__ol4798215404"><li id="cce_01_0105__li1780013164015"><span>When creating a workload and adding a container, expand <strong id="cce_01_0105__b5272185202910">Lifecycle</strong>.</span></li><li id="cce_01_0105__li128087114016"><span>Set <strong id="cce_01_0105__b19552520202918">pre-stop</strong> parameters, as shown in <a href="#cce_01_0105__table823614643810">Table 2</a>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0105__table1541840142714" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Pre-stop parameters</caption><thead align="left"><tr id="cce_01_0105__row18419601274"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.5.2.2.2.1.2.3.1.1"><p id="cce_01_0105__p12419130182714">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.5.2.2.2.1.2.3.1.2"><p id="cce_01_0105__p1441913013274">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0105__row04201302279"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0105__p6420110192718"><span class="keyword" id="cce_01_0105__keyword534207448">CLI</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0105__p94204010271">Set commands to be executed in the container for pre-stop processing. The command format is <strong id="cce_01_0105__b2139209700">Command Args[1] Args[2]...</strong>. <strong id="cce_01_0105__b2060363152">Command</strong> is a system command or a user-defined executable program. If no path is specified, an executable program in the default path will be selected. If multiple commands need to be executed, write the commands into a script for execution.</p>
-<p id="cce_01_0105__p94203082712">Example command:</p>
-<pre class="screen" id="cce_01_0105__screen6420190132712">exec: 
-  command: 
-  - /uninstall.sh 
-  - uninstall_agent</pre>
-<p id="cce_01_0105__p742120182716">Enter <strong id="cce_01_0105__b103722545816">/uninstall uninstall_agent</strong> in the script. This command indicates that the <strong id="cce_01_0105__b19674026155910">uninstall.sh</strong> script will be executed before the container completes its execution and stops running.</p>
-</td>
-</tr>
-<tr id="cce_01_0105__row4421190152715"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0105__p154216032719">HTTP request</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0105__p15421160122715">Send an HTTP request for pre-stop processing. The related parameters are described as follows:</p>
-<ul id="cce_01_0105__ul204215052713"><li id="cce_01_0105__li124214052715"><strong id="cce_01_0105__b198341981321">Path</strong>: (optional) request URL.</li><li id="cce_01_0105__li104211303275"><strong id="cce_01_0105__b684213101329">Port</strong>: (mandatory) request port.</li><li id="cce_01_0105__li164227011277"><strong id="cce_01_0105__b1681213521">Host Address</strong>: (optional) IP address of the request. The default value is the IP address of the node where the container resides.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0105__section55383294287"><h4 class="sectiontitle">Container Restart Policy</h4><p id="cce_01_0105__p1266010547318">The <strong id="cce_01_0105__b8868427164414">restartPolicy</strong> field is used to specify the pod restart policy. The restart policy type can be <strong id="cce_01_0105__b1587310277443">Always</strong>, <strong id="cce_01_0105__b1887315276446">OnFailure</strong>, or <strong id="cce_01_0105__b1287382774420">Never</strong>. The default value is <strong id="cce_01_0105__b987417274449">Always</strong>.</p>
-<p id="cce_01_0105__p1660105473111">When <strong id="cce_01_0105__b228924364418">restartPolicy</strong> is used, containers are restarted only through kubelet on the same node.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0105__table235015810328" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0105__row235188133211"><th align="left" class="cellrowborder" valign="top" width="25.6%" id="mcps1.3.6.4.1.3.1.1"><p id="cce_01_0105__p93511786323">Restart Policy</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74.4%" id="mcps1.3.6.4.1.3.1.2"><p id="cce_01_0105__p10351284322">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0105__row103518814321"><td class="cellrowborder" valign="top" width="25.6%" headers="mcps1.3.6.4.1.3.1.1 "><p id="cce_01_0105__p935118113213">Always</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.4%" headers="mcps1.3.6.4.1.3.1.2 "><p id="cce_01_0105__p193517816328">When a container fails, kubelet automatically restarts the container.</p>
-</td>
-</tr>
-<tr id="cce_01_0105__row153511483321"><td class="cellrowborder" valign="top" width="25.6%" headers="mcps1.3.6.4.1.3.1.1 "><p id="cce_01_0105__p173519810321">OnFailure</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.4%" headers="mcps1.3.6.4.1.3.1.2 "><p id="cce_01_0105__p7351138153216">When the container stops running and the exit code is not 0, kubelet automatically restarts the container.</p>
-</td>
-</tr>
-<tr id="cce_01_0105__row335168153218"><td class="cellrowborder" valign="top" width="25.6%" headers="mcps1.3.6.4.1.3.1.1 "><p id="cce_01_0105__p53511687321">Never</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.4%" headers="mcps1.3.6.4.1.3.1.2 "><p id="cce_01_0105__p143515815321">kubelet does not restart the container regardless of the container running status.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0105__note19921120153312"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0105__p96606547314">Controllers that can manage pods include ReplicaSet Controllers, jobs, DaemonSets, and kubelet (static pod).</p>
-<ul id="cce_01_0105__ul9179114103319"><li id="cce_01_0105__li31791648339">ReplicaSet Controller and DaemonSet: The policy must be set to <strong id="cce_01_0105__b114809179512">Always</strong> to ensure that containers run continuously.</li><li id="cce_01_0105__li2017919483313">Job: The policy can be set to <strong id="cce_01_0105__b899521816510">OnFailure</strong> or <strong id="cce_01_0105__b16995418952">Never</strong> to ensure that containers are not restarted after being executed.</li><li id="cce_01_0105__li20179164103314">kubelet will restart a pod whenever it fails, regardless of the value of <strong id="cce_01_0105__b89085191359">restartPolicy</strong>. In addition, no health check is performed on the pod.</li></ul>
-</div></div>
-</div>
-<div class="section" id="cce_01_0105__section151181981167"><a name="cce_01_0105__section151181981167"></a><a name="section151181981167"></a><h4 class="sectiontitle">Example YAML for Setting the Container Lifecycle</h4><p id="cce_01_0105__p13147194016468">This section uses Nginx as an example to describe how to set the container lifecycle.</p>
-<ol id="cce_01_0105__ol89402131174"><li id="cce_01_0105__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0105__li1020013819415"><span>Create and edit the <strong id="cce_01_0105__b27748113122">nginx-deployment.yaml</strong> file. <strong id="cce_01_0105__b80041143318">nginx-deployment.yaml</strong> is an example file name, and you can change it as required.</span><p><p id="cce_01_0105__p7581950184318"><strong id="cce_01_0105__b111191541172515">vi nginx-deployment.yaml</strong></p>
-<p id="cce_01_0105__p15279185820">In the following configuration file, the <strong id="cce_01_0105__b964310018294">postStart</strong> command is defined to run the <strong id="cce_01_0105__b9643602292">install.sh</strong> command in the <strong id="cce_01_0105__b18643180192920">/bin/bash</strong> directory. <strong id="cce_01_0105__b1464330152911">preStop</strong> is defined to run the <strong id="cce_01_0105__b46435072919">uninstall.sh</strong> command.</p>
-<pre class="screen" id="cce_01_0105__screen8529181815811">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      <strong id="cce_01_0105__b1291717202058">restartPolicy: Always               #Restart policy</strong>
-      containers:
-      - image: nginx 
-<strong style="color:#FF0000;" id="cce_01_0105__b2557141820811">        command:</strong>
-<strong id="cce_01_0105__b602760589517">        - sleep 3600</strong>                       <strong id="cce_01_0105__b557238559517"> #Startup command</strong>
-        imagePullPolicy: Always
-        lifecycle:
-<strong style="color:#FF0000;" id="cce_01_0105__b356919181282">          postStart:</strong>
-<strong id="cce_01_0105__b05719181388"><span style="color:#FF0000;">            exec:</span></strong>
-<strong id="cce_01_0105__b657619181180"><span style="color:#FF0000;">              command:</span></strong>
-<strong id="cce_01_0105__b157817184810"><span style="color:#FF0000;">              - /bin/bash</span></strong>
-<strong id="cce_01_0105__b5984012195132">              - install.sh</strong>                 <strong id="cce_01_0105__b737670595132"> #Post-start command</strong>
-<strong style="color:#FF0000;" id="cce_01_0105__b175988181287">          preStop:</strong>
-<strong id="cce_01_0105__b360111181288"><span style="color:#FF0000;">            exec:</span></strong>
-<strong id="cce_01_0105__b360516183814"><span style="color:#FF0000;">              command:</span></strong>
-<strong id="cce_01_0105__b14607718384"><span style="color:#FF0000;">              - /bin/bash</span></strong>
-<strong id="cce_01_0105__b110644295144">              - uninstall.sh</strong>            <strong id="cce_01_0105__b556114495144">     #<strong id="cce_01_0105__b815245295144">Pre-stop command</strong></strong>
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret</pre>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0130.html">Configuring a Container</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0107.html b/docs/cce/umn/cce_01_0107.html
deleted file mode 100644
index 13076760..00000000
--- a/docs/cce/umn/cce_01_0107.html
+++ /dev/null
@@ -1,39 +0,0 @@
-<a name="cce_01_0107"></a><a name="cce_01_0107"></a>
-
-<h1 class="topictitle1">Connecting to a Cluster Using kubectl</h1>
-<div id="body1512462600292"><div class="section" id="cce_01_0107__section14234115144"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0107__p133539491408">This section uses a CCE cluster as an example to describe how to connect to a CCE cluster using kubectl.</p>
-</div>
-<div class="section" id="cce_01_0107__section17352373317"><h4 class="sectiontitle">Permission Description</h4><p id="cce_01_0107__p51211251156">When you access a cluster using kubectl, CCE uses the<strong id="cce_01_0107__b10486036194010"> kubeconfig.json</strong> file generated on the cluster for authentication. This file contains user information, based on which CCE determines which Kubernetes resources can be accessed by kubectl. The permissions recorded in a <strong id="cce_01_0107__b16295666413">kubeconfig.json</strong> file vary from user to user.</p>
-<p id="cce_01_0107__p142391810113">For details about user permissions, see <a href="cce_01_0187.html#cce_01_0187__section1464135853519">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
-</div>
-<div class="section" id="cce_01_0107__section37321625113110"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0107__p1059125311547"><strong id="cce_01_0107__b394518331235">Background</strong></p>
-<p id="cce_01_0107__p7805114919351">To connect a client to a Kubernetes cluster, you can use kubectl. For details, see <a href="https://kubernetes.io/docs/tasks/tools/" target="_blank" rel="noopener noreferrer">Install Tools</a>.</p>
-<p id="cce_01_0107__p1774017615515"><strong id="cce_01_0107__b1046619156404">Prerequisites</strong></p>
-<div class="p" id="cce_01_0107__p13607162405518">CCE allows you to access a cluster through a <strong id="cce_01_0107__b668616652912">VPC network</strong> or a <strong id="cce_01_0107__b411181110295">public network</strong>.<ul id="cce_01_0107__ul126071124175518"><li id="cce_01_0107__li144192116548">VPC internal access: Clusters in the same VPC can access each other.</li><li id="cce_01_0107__li1460752419555"><span class="keyword" id="cce_01_0107__keyword1880824447101539">Public network access</span>: You need to prepare an ECS that can connect to a public network.</li></ul>
-</div>
-<div class="notice" id="cce_01_0107__note2967194410365"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0107__p19671244103610">If public network access is used, the kube-apiserver of the cluster will be exposed to the public network and may be attacked. You are advised to configure Advanced Anti-DDoS for the EIP of the node where the kube-apiserver is located.</p>
-</div></div>
-<p id="cce_01_0107__p1815853784114"><strong id="cce_01_0107__b191882384018">Downloading kubectl</strong></p>
-<p id="cce_01_0107__p681416394409">You need to download kubectl and configuration file, copy the file to your client, and configure kubectl. After the configuration is complete, you can use kubectl to access your Kubernetes clusters.</p>
-<p id="cce_01_0107__p1616802216811">On the <a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/README.md" target="_blank" rel="noopener noreferrer">Kubernetes release</a> page, click the corresponding link based on the cluster version, click <strong id="cce_01_0107__b175559455257">Client Binaries</strong>, and download the corresponding platform software package.</p>
-<div class="fignone" id="cce_01_0107__fig978018401170"><span class="figcap"><b>Figure 1 </b>Downloading kubectl</span><br><span><img id="cce_01_0107__image17910133212172" src="en-us_image_0000001283755568.png"></span></div>
-<p id="cce_01_0107__p2589215105519"><strong id="cce_01_0107__b1897857154210">Installing and configuring kubectl</strong></p>
-<ol id="cce_01_0107__ol11839133213313"><li id="cce_01_0107__li8777174217117"><span>Log in to the CCE console, click <strong id="cce_01_0107__b12575820104612">Resource Management</strong> &gt; <strong id="cce_01_0107__b10581182011469">Clusters</strong>, and choose <strong id="cce_01_0107__b558111203466">Command Line Tool</strong> &gt; <strong id="cce_01_0107__b8582132015465">Kubectl</strong> under the cluster to be connected.</span></li><li id="cce_01_0107__li18450192584312"><span>On the <span class="uicontrol" id="cce_01_0107__uicontrol1146118348434"><b>Kubectl</b></span> tab page of the cluster details page, connect to the cluster as prompted.</span><p><div class="note" id="cce_01_0107__note191638104210"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0107__ul795610485546"><li id="cce_01_0107__li495634817549">You can download the kubectl configuration file (<strong id="cce_01_0107__b91542151256">kubeconfig.json</strong>) on the <strong id="cce_01_0107__b18413151719257">kubectl</strong> tab page. This file is used for user cluster authentication. If the file is leaked, your clusters may be attacked.</li><li id="cce_01_0107__li127691420488">If two-way authentication is enabled for the current cluster and an EIP has been bound to the cluster, when the authentication fails (x509: certificate is valid), you need to bind the EIP and download the <strong id="cce_01_0107__b11941101920234">kubeconfig.json</strong> file again.</li><li id="cce_01_0107__li62692399615">By default, two-way authentication is disabled for domain names in the current cluster. You can run the <strong id="cce_01_0107__b208811223195">kubectl config use-context externalTLSVerify</strong> command to enable two-way authentication. For details, see <a href="#cce_01_0107__section1559919152711">Two-Way Authentication for Domain Names</a>. For a cluster that has been bound to an EIP, if the authentication fails (x509: certificate is valid) when two-way authentication is used, you need to bind the EIP again and download <strong id="cce_01_0107__b18517305915">kubeconfig.json</strong> again.</li><li id="cce_01_0107__li16956194817544">The Kubernetes permissions assigned by the configuration file downloaded by IAM users are the same as those assigned to the IAM users on the CCE console.</li><li id="cce_01_0107__li1537643019239">If the KUBECONFIG environment variable is configured in the Linux OS, kubectl preferentially loads the KUBECONFIG environment variable instead of <strong id="cce_01_0107__b1017204911811">$home/.kube/config</strong>.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0107__section1559919152711"><a name="cce_01_0107__section1559919152711"></a><a name="section1559919152711"></a><h4 class="sectiontitle">Two-Way Authentication for Domain Names</h4><p id="cce_01_0107__p138948491274">Currently, CCE supports two-way authentication for domain names.</p>
-<ul id="cce_01_0107__ul88981331482"><li id="cce_01_0107__li1705116151915">Two-way authentication is disabled for domain names by default. You can run the <strong id="cce_01_0107__b138607331913">kubectl config use-context externalTLSVerify</strong> command to switch to the externalTLSVerify context to enable it.</li><li id="cce_01_0107__li1807459174818">When an EIP is bound to or unbound from a cluster, or a custom domain name is configured or updated, the cluster server certificate will be added the latest cluster access address (including the EIP bound to the cluster and all custom domain names configured for the cluster).</li><li id="cce_01_0107__li17898153310483">Asynchronous cluster synchronization takes about 5 to 10 minutes.</li><li id="cce_01_0107__li614337712">For a cluster that has been bound to an EIP, if the authentication fails (x509: certificate is valid) when two-way authentication is used, you need to bind the EIP again and download <strong id="cce_01_0107__b92571231093">kubeconfig.json</strong> again.</li><li id="cce_01_0107__li5950658165414">If the domain name two-way authentication is not supported, <strong id="cce_01_0107__b1226538997">kubeconfig.json</strong> contains the <strong id="cce_01_0107__b13262381592">"insecure-skip-tls-verify": true</strong> field, as shown in <a href="#cce_01_0107__fig1941342411">Figure 2</a>. To use two-way authentication, you can download the <strong id="cce_01_0107__b10265401917">kubeconfig.json</strong> file again and enable two-way authentication for the domain names.<div class="fignone" id="cce_01_0107__fig1941342411"><a name="cce_01_0107__fig1941342411"></a><a name="fig1941342411"></a><span class="figcap"><b>Figure 2 </b>Two-way authentication disabled for domain names</span><br><span><img id="cce_01_0107__image3414621613" src="en-us_image_0000001243407853.png"></span></div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0107__section1628510591883"><h4 class="sectiontitle">Common Issue (Error from server Forbidden)</h4><p id="cce_01_0107__p75241832114916">When you use kubectl to create or query Kubernetes resources, the following output is returned:</p>
-<p id="cce_01_0107__p581934618458"># kubectl get deploy Error from server (Forbidden): deployments.apps is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "deployments" in API group "apps" in the namespace "default"</p>
-<p id="cce_01_0107__p1418636115119">The cause is that the user does not have the permissions to operate the Kubernetes resources. For details about how to assign permissions, see <a href="cce_01_0189.html">Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0140.html">Using kubectl to Run a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0110.html b/docs/cce/umn/cce_01_0110.html
deleted file mode 100644
index 704f4b5d..00000000
--- a/docs/cce/umn/cce_01_0110.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<a name="cce_01_0110"></a><a name="cce_01_0110"></a>
-
-<h1 class="topictitle1">Monitoring and Logs</h1>
-<div id="body0000001219165543"><p id="cce_01_0110__p8060118"></p>
-</div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0182.html">Monitoring Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0018.html">Container Logs</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0111.html b/docs/cce/umn/cce_01_0111.html
deleted file mode 100644
index c0f06569..00000000
--- a/docs/cce/umn/cce_01_0111.html
+++ /dev/null
@@ -1,23 +0,0 @@
-<a name="cce_01_0111"></a><a name="cce_01_0111"></a>
-
-
-  <h1 class="topictitle1">SFS Volumes</h1>
-
-  <div id="body0000001416079141"><p id="cce_01_0111__p8060118"></p>
-</div>
-
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0259.html">Using SFS Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0263.html">Creating a Deployment Mounted with an SFS Volume</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0262.html">Creating a StatefulSet Mounted with an SFS Volume</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0393.html">Deployment Examples</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0112.html b/docs/cce/umn/cce_01_0112.html
deleted file mode 100644
index 6469710c..00000000
--- a/docs/cce/umn/cce_01_0112.html
+++ /dev/null
@@ -1,50 +0,0 @@
-<a name="cce_01_0112"></a><a name="cce_01_0112"></a>
-
-<h1 class="topictitle1">Setting Health Check for a Container</h1>
-<div id="body1512535109871"><div class="section" id="cce_01_0112__section1731112174912"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0112__p8242924192"><span class="keyword" id="cce_01_0112__keyword22817116429">Health check</span> regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect service exceptions or automatically restart the service to restore it. This will result in a situation where the pod status is normal but the service in the pod is abnormal.</p>
-<p id="cce_01_0112__a77e71e69afde4757ab0ef6087b2e30de">CCE provides the following health check probes:</p>
-<ul id="cce_01_0112__ul1867812287915"><li id="cce_01_0112__li574951765020"><strong id="cce_01_0112__b1209722181417">Liveness probe</strong>: checks whether a container is still alive. It is similar to the <strong id="cce_01_0112__b1821422218147">ps</strong> command that checks whether a process exists. If the liveness check of a container fails, the cluster restarts the container. If the liveness check is successful, no operation is executed.</li><li id="cce_01_0112__li36781028792"><strong id="cce_01_0112__b1729242134220">Readiness probe</strong>: checks whether a container is ready to process user requests. Upon that the container is detected unready, service traffic will not be directed to the container. It may take a long time for some applications to start up before they can provide services. This is because that they need to load disk data or rely on startup of an external module. In this case, the application process is running, but the application cannot provide services. To address this issue, this health check probe is used. If the container readiness check fails, the cluster masks all requests sent to the container. If the container readiness check is successful, the container can be accessed. </li></ul>
-</div>
-<div class="section" id="cce_01_0112__section476025319384"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0112__keyword94514523010">Health Check Methods</span></h4><ul id="cce_01_0112__ul2492162133910"><li id="cce_01_0112__li19505918465"><strong id="cce_01_0112__b84235270695216"><span class="keyword" id="cce_01_0112__keyword122935940517318">HTTP request</span></strong><p id="cce_01_0112__p17738122617398">This health check mode is applicable to containers that provide HTTP/HTTPS services. The cluster periodically initiates an HTTP/HTTPS GET request to such containers. If the return code of the HTTP/HTTPS response is within 200–399, the probe is successful. Otherwise, the probe fails. In this health check mode, you must specify a container listening port and an HTTP/HTTPS request path.</p>
-<p id="cce_01_0112__p051511331505">For example, for a container that provides HTTP services, the HTTP check path is <strong id="cce_01_0112__b2043313277265">/health-check</strong>, the port is 80, and the host address is optional (which defaults to the container IP address). Here, 172.16.0.186 is used as an example, and we can get such a request: GET http://172.16.0.186:80/health-check. The cluster periodically initiates this request to the container.</p>
-</li><li id="cce_01_0112__li92491637166"><strong id="cce_01_0112__b84235270695641"><span class="keyword" id="cce_01_0112__keyword84450853173134">TCP port</span></strong><p id="cce_01_0112__p14198132922215">For a container that provides TCP communication services, the cluster periodically establishes a TCP connection to the container. If the connection is successful, the probe is successful. Otherwise, the probe fails. In this health check mode, you must specify a container listening port.</p>
-<p id="cce_01_0112__p1525113371164">For example, if you have a Nginx container with service port 80, after you specify TCP port 80 for container listening, the cluster will periodically initiate a TCP connection to port 80 of the container. If the connection is successful, the probe is successful. Otherwise, the probe fails.</p>
-</li><li id="cce_01_0112__li104061647154310"><strong id="cce_01_0112__b84235270695818"><span class="keyword" id="cce_01_0112__keyword1395397266173145">CLI</span></strong><p id="cce_01_0112__p105811510164113">CLI is an efficient tool for health check. When using the CLI, you must specify an executable command in a container. The cluster periodically runs the command in the container. If the command output is 0, the health check is successful. Otherwise, the health check fails.</p>
-<p id="cce_01_0112__p1658131014413">The CLI mode can be used to replace the HTTP request-based and TCP port-based health check.</p>
-<ul id="cce_01_0112__ul16409174744313"><li id="cce_01_0112__li7852728174119">For a TCP port, you can write a program script to connect to a container port. If the connection is successful, the script returns <strong id="cce_01_0112__b11599347141615">0</strong>. Otherwise, the script returns <strong id="cce_01_0112__b11599443121612">–1</strong>.</li><li id="cce_01_0112__li241104715431">For an HTTP request, you can write a program script to run the <strong id="cce_01_0112__b1767410318172">wget</strong> command for a container.<p id="cce_01_0112__p16488203413413"><strong id="cce_01_0112__b422541134110">wget http://127.0.0.1:80/health-check</strong></p>
-<p id="cce_01_0112__p13488133464119">Check the return code of the response. If the return code is within 200–399, the script returns <strong id="cce_01_0112__b14498132912217">0</strong>. Otherwise, the script returns <strong id="cce_01_0112__b427293111227">–1</strong>.</p>
-<div class="notice" id="cce_01_0112__note124141947164311"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0112__ul7414047164318"><li id="cce_01_0112__li81561727181416">Put the program to be executed in the container image so that the program can be executed. </li><li id="cce_01_0112__li204153475437">If the command to be executed is a shell script, do not directly specify the script as the command, but add a script parser. For example, if the script is <strong id="cce_01_0112__b842352706102616">/data/scripts/health_check.sh</strong>, you must specify <strong id="cce_01_0112__b842352706102629">sh/data/scripts/health_check.sh</strong> for command execution. The reason is that the cluster is not in the terminal environment when executing programs in a container. </li></ul>
-</div></div>
-</li></ul>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0112__section2050653544516"><h4 class="sectiontitle">Common Parameter Description</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0112__t045a8ee10cb946eaa4c01da4319b7206" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Common parameter description</caption><thead align="left"><tr id="cce_01_0112__re3891f83a0b242b1bf3f178042398166"><th align="left" class="cellrowborder" valign="top" width="27%" id="mcps1.3.3.2.2.3.1.1"><p id="cce_01_0112__afec93a787dcb46788032cfc70a14a22e">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73%" id="mcps1.3.3.2.2.3.1.2"><p id="cce_01_0112__en-us_topic_0052519475_p74835383351">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0112__r82f45c7641534b8d80da858ce9ce9be7"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_01_0112__p183641821163711">Initial Delay (s)</p>
-</td>
-<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_01_0112__p173941610161614">Check delay time in seconds. Set this parameter according to the normal startup time of services.</p>
-<p id="cce_01_0112__en-us_topic_0052519475_p05855219373">For example, if this parameter is set to 30, the health check will be started 30 seconds after the container is started. The time is reserved for containerized services to start.</p>
-</td>
-</tr>
-<tr id="cce_01_0112__rf8dd0b9b29af4b96bcf3efaecb0c4bb2"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_01_0112__p36325348374">Timeout (s)</p>
-</td>
-<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_01_0112__p052822120161">Timeout duration. Unit: second. </p>
-<p id="cce_01_0112__a376926047bc64e0a9304d6c9828fc5a2">For example, if this parameter is set to <strong id="cce_01_0112__b84235270617502">10</strong>, the timeout wait time for performing a health check is 10s. If the wait time elapses, the health check is regarded as a failure. If the parameter is left blank or set to <strong id="cce_01_0112__b84235270617523">0</strong>, the default timeout time is 1s. </p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0130.html">Configuring a Container</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0113.html b/docs/cce/umn/cce_01_0113.html
deleted file mode 100644
index d557e687..00000000
--- a/docs/cce/umn/cce_01_0113.html
+++ /dev/null
@@ -1,28 +0,0 @@
-<a name="cce_01_0113"></a><a name="cce_01_0113"></a>
-
-<h1 class="topictitle1">Setting an Environment Variable</h1>
-<div id="body1526008508696"><div class="section" id="cce_01_0113__section91908379912"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0113__p1566654220910">An environment variable is a variable whose value can affect the way a running container will behave. You can modify environment variables even after workloads are deployed, increasing flexibility in workload configuration.</p>
-<p id="cce_01_0113__p33421347172917">The function of setting environment variables on CCE is the same as that of specifying <span class="parmname" id="cce_01_0113__parmname1630339175319"><b>ENV</b></span> in a Dockerfile.</p>
-<p id="cce_01_0113__p07191047182312">CCE provides three ways to add environment variables: <span class="keyword" id="cce_01_0113__keyword1098371835173621">Manually add environment variables</span>, <span class="keyword" id="cce_01_0113__keyword1695226303173623">import environment variables from a secret</span>, and <span class="keyword" id="cce_01_0113__keyword1601489715173626">import environment variables from a configMap</span>.</p>
-<div class="notice" id="cce_01_0113__note1262611218201"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0113__p103084565278">After a container is started, do not modify configurations in the container. If configurations in the container are modified (for example, passwords, certificates, and environment variables of a containerized application are added to the container), the configurations will be lost after the container restarts and container services will become abnormal. An example scenario of container restart is pod rescheduling due to node anomalies.</p>
-<p id="cce_01_0113__p26271321192016">Configurations must be imported to a container as arguments. Otherwise, configurations will be lost after the container restarts.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0113__section183878514214"><h4 class="sectiontitle">Manually Adding Environment Variables</h4><ol id="cce_01_0113__ol6492181018212"><li id="cce_01_0113__li13492151011219"><span>When creating a workload, add a container image. Then, expand <strong id="cce_01_0113__b842352706173730">Environment Variables</strong> and click <strong id="cce_01_0113__b842352706174025">Add Environment Variables</strong>.</span></li><li id="cce_01_0113__li14691543171417"><span>Configure the following parameters as required:</span><p><ul id="cce_01_0113__ul179521411181617"><li id="cce_01_0113__li1895119118166"><strong id="cce_01_0113__b16536195815312">Type</strong>: Set this to <strong id="cce_01_0113__b7806035153216">Added manually</strong>.</li><li id="cce_01_0113__li189516119162"><strong id="cce_01_0113__b84235270691951">Variable Name</strong>: Enter a variable name, for example, demo.</li><li id="cce_01_0113__li19521911171613"><strong id="cce_01_0113__b114861352133217">Variable Value/Reference</strong>: Enter a variable value, for example, value.</li></ul>
-<div class="fignone" id="cce_01_0113__fig85421122131611"><span class="figcap"><b>Figure 1 </b>Manually adding environment variables</span><br><span><img id="cce_01_0113__image654216221168" src="en-us_image_0000001190302095.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0113__section132188247237"><h4 class="sectiontitle">Importing Environment Variables from a Secret</h4><ol id="cce_01_0113__ol6698640614356"><li id="cce_01_0113__li4391292814356"><span>You need to create a key first. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</span></li><li id="cce_01_0113__li8677904506"><span>When creating a workload, add a container image. Then, expand <strong id="cce_01_0113__b143401128194010">Environment Variables</strong> and click <strong id="cce_01_0113__b12341152818400">Add Environment Variables</strong>.</span></li><li id="cce_01_0113__li610446041452"><span>Configure the following parameters as required:</span><p><ul id="cce_01_0113__ul140417119178"><li id="cce_01_0113__li144040151713"><strong id="cce_01_0113__b84235270691942">Type</strong>: Set this to <strong id="cce_01_0113__b84235270691926">Added from Secret</strong>.</li><li id="cce_01_0113__li13404515176"><strong id="cce_01_0113__b2026024479">Variable Name</strong>: Enter a variable name.</li><li id="cce_01_0113__li1740416161719"><strong id="cce_01_0113__b84235270692017">Variable Value/Reference</strong>: Select the corresponding secret name and key.</li></ul>
-<div class="fignone" id="cce_01_0113__fig19252614265"><span class="figcap"><b>Figure 2 </b>Importing environment variables from a secret</span><br><span><img id="cce_01_0113__image126369263" src="en-us_image_0000001190302097.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0113__section147322221248"><h4 class="sectiontitle">Importing Environment Variables from a ConfigMap</h4><ol id="cce_01_0113__ol58522937141235"><li id="cce_01_0113__li18469362141235"><span>Create a ConfigMap first. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.</span></li><li id="cce_01_0113__li1573718135505"><span>When creating a workload, add a container image. Then, expand <strong id="cce_01_0113__b2143440104011">Environment Variables</strong> and click <strong id="cce_01_0113__b7145124010409">Add Environment Variables</strong>.</span></li><li id="cce_01_0113__li8397965142948"><span>Configure the following parameters as required:</span><p><ul id="cce_01_0113__ul91816312175"><li id="cce_01_0113__li8181133161717"><strong id="cce_01_0113__b84235270692239">Type</strong>: Set this to <strong id="cce_01_0113__b84235270692243">Added from ConfigMap</strong>.</li><li id="cce_01_0113__li151812031151711"><strong id="cce_01_0113__b84235270692251">Variable Name</strong>: Enter a variable name.</li><li id="cce_01_0113__li1181113161711"><strong id="cce_01_0113__b1402785379">Variable Value/Reference</strong>: Select the corresponding ConfigMap name and key.</li></ul>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0130.html">Configuring a Container</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0114.html b/docs/cce/umn/cce_01_0114.html
deleted file mode 100644
index 4658db94..00000000
--- a/docs/cce/umn/cce_01_0114.html
+++ /dev/null
@@ -1,91 +0,0 @@
-<a name="cce_01_0114"></a><a name="cce_01_0114"></a>
-
-<h1 class="topictitle1">ENI LoadBalancer</h1>
-<div id="body0000001125983075"><div class="section" id="cce_01_0114__section025118182286"><a name="cce_01_0114__section025118182286"></a><a name="section025118182286"></a><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0114__p7769154915346">An ENI LoadBalancer Service directs traffic from a load balancer at backend pods, reducing the latency and avoiding performance loss for containerized applications.</p>
-<p id="cce_01_0114__p655815372328">External access requests are directly forwarded from a load balancer to pods. Internal access requests can be forwarded to a pod through a Service.</p>
-<p id="cce_01_0114__p2068913614327"><span><img id="cce_01_0114__image5485375324" src="en-us_image_0000001152953258.png"></span></p>
-</div>
-<div class="section" id="cce_01_0114__section121316392287"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0114__ul56361610193315"><li id="cce_01_0114__li998117308204">ENI LoadBalancer is available only in certain regions.</li><li id="cce_01_0114__li4885511715">Only dedicated load balancers are supported, and they must support layer-4 networking (TCP/UDP).</li><li id="cce_01_0114__li1863651003313">After a load balancer is created, its flavor cannot be changed. Therefore, in CCE, after you create a Service, you cannot connect the automatically created load balancer to other objects. If no load balancer is automatically created, you can connect any existing one to the Service.</li><li id="cce_01_0114__li02201816154816">The cluster version must be 1.17 or later.</li><li id="cce_01_0114__li235712438173">ENI LoadBalancer Services can be created only for workloads (containers) bound with elastic network interfaces (ENIs).</li></ul>
-</div>
-<div class="section" id="cce_01_0114__section17753911588"><a name="cce_01_0114__section17753911588"></a><a name="section17753911588"></a><h4 class="sectiontitle">Adding a Service When Creating a Workload</h4><p id="cce_01_0114__p10881143321716">You can set the Service when creating a workload on the CCE console. An Nginx workload is used as an example.</p>
-<ol id="cce_01_0114__ol361813335611"><li id="cce_01_0114__li4618033165"><span>In the <strong id="cce_01_0114__b46811238113714">Set Application Access</strong> step of <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0216.html">Creating a DaemonSet</a>, click <strong id="cce_01_0114__b16682638163710">Add Service</strong> and set the following parameters:</span><p><ul id="cce_01_0114__ul4309141961920"><li id="cce_01_0114__li11721165313480"><strong id="cce_01_0114__b35878457390">Access Type</strong>: Select <strong id="cce_01_0114__b145964973916">ENI LoadBalancer (ELB)</strong>. This option is available only if you have selected <strong id="cce_01_0114__b347513919410">Attach ENI to Pod</strong> when specifying basic workload information during workload creation.</li><li id="cce_01_0114__li1530917191197"><strong id="cce_01_0114__b3209115612438">Service Name</strong>: Specify a Service name, which can be the same as the workload name.</li></ul>
-<p id="cce_01_0114__p1496525517449"><strong id="cce_01_0114__b595815568488">ELB Configuration</strong></p>
-<ul id="cce_01_0114__ul15989355204410"><li id="cce_01_0114__li615114472205"><strong id="cce_01_0114__b8374622164919">Elastic Load Balancer</strong>: Only dedicated load balancers are supported.<p id="cce_01_0114__p94361128195712"><strong id="cce_01_0114__b4641429114915">Dedicated</strong>: Resources are shared among load balancers, and the performance of a load balancer is not affected by other load balancers. IPv6 is supported.</p>
-<p id="cce_01_0114__p2015294716205">You can create <strong id="cce_01_0114__b18377142719508">public network</strong> or <strong id="cce_01_0114__b337819277500">private network</strong> load balancers.</p>
-<ul id="cce_01_0114__ul18152184720205"><li id="cce_01_0114__li14152124712011"><strong id="cce_01_0114__b1880142918503">Public network</strong>: You can select an existing public network load balancer or have the system automatically create a new one.</li><li id="cce_01_0114__li21521447192013"><strong id="cce_01_0114__b776623719509">Private network</strong>: You can select an existing private network load balancer or have the system automatically create a new one.</li></ul>
-<div class="p" id="cce_01_0114__p2015224719208">The selected or created load balancer must be in the same VPC as the current cluster, and it must match the load balancer type (private or public network).<ul id="cce_01_0114__ul1515254715203"><li id="cce_01_0114__li1152174717201"><strong id="cce_01_0114__b822818195513">Enterprise Project</strong>: Select an enterprise project in which the load balancer is created.</li><li id="cce_01_0114__li3152847202016"><strong id="cce_01_0114__b6567173795118">Specifications</strong>: This field is displayed only when you select <strong id="cce_01_0114__b2107114565120">Public network</strong> and <strong id="cce_01_0114__b196434491518">Automatically created</strong> for <strong id="cce_01_0114__b9658155516511">Elastic Load Balancer</strong>. You can click <span><img id="cce_01_0114__image01521647192018" src="en-us_image_0000001126243447.png"></span> to modify the name, specifications, billing mode, and bandwidth of the load balancer.</li><li id="cce_01_0114__li487212217584">Configure Dedicated Load Balancer<ul id="cce_01_0114__ul111518477205"><li id="cce_01_0114__li1015116471202"><strong id="cce_01_0114__b5195112320562">AZ</strong>: Dedicated load balancers can be deployed across AZs to provide higher reliability.</li><li id="cce_01_0114__li61521147132020"><strong id="cce_01_0114__b3657928105611">Subnet</strong>: subnet where the backend server of the load balancer is located.<p id="cce_01_0114__p13152147152010">Load balancers occupy different number of subnet IP addresses based on their specifications. Therefore, you are not advised to use the subnet CIDR blocks of other resources (such as clusters and nodes) as the load balancer CIDR block.</p>
-</li><li id="cce_01_0114__li015244762017"><strong id="cce_01_0114__b6706457574">Specifications</strong>: Specifications determine the types of listeners that can be added to a load balancer. Select specifications that best fit your needs. For details, see <a href="https://docs.otc.t-systems.com/usermanual/elb/en-us_topic_0287737145.html" target="_blank" rel="noopener noreferrer">Specifications of Dedicated Load Balancers</a>.</li></ul>
-</li><li id="cce_01_0114__li615284732011"><strong id="cce_01_0114__b145446565575">Algorithm Type</strong>: You can select <strong id="cce_01_0114__b134407165814">Weighted round robin</strong>, <strong id="cce_01_0114__b563011715818">Weighted least connections</strong>, or <strong id="cce_01_0114__b616601417589">Source IP hash</strong>. The weight is dynamically adjusted based on the number of pods of the workload associated with the Service on each node.<div class="note" id="cce_01_0114__note4152144792011"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0114__ul171525479200"><li id="cce_01_0114__li17152647162010"><strong id="cce_01_0114__b20864136125813">Weighted round robin</strong>: Requests are forwarded to different servers based on their weights, which indicate server processing performance. Backend servers with higher weights receive proportionately more requests, whereas equal-weighted servers receive the same number of requests. This algorithm is often used for short connections, such as HTTP services.</li><li id="cce_01_0114__li1015217471202"><strong id="cce_01_0114__b13381912008">Weighted least connections</strong>: In addition to the weight assigned to each server, the number of connections processed by each backend server is also considered. Requests are forwarded to the server with the lowest connections-to-weight ratio. Building on <strong id="cce_01_0114__b1198811257019">least connections</strong>, the <strong id="cce_01_0114__b498919251205">weighted least connections</strong> algorithm assigns a weight to each server based on their processing performance. This algorithm is often used for persistent connections, such as database connections.</li><li id="cce_01_0114__li16152147102013"><strong id="cce_01_0114__b44481311416">Source IP hash</strong>: The source IP address of each request is calculated using the hash algorithm to obtain a unique hash key, and all backend servers are numbered. The generated key allocates the client to a particular server. This allows requests from different clients to be routed based on source IP addresses and ensures that a client is directed to the same server as always. This algorithm applies to TCP connections without cookies.</li></ul>
-</div></div>
-</li><li id="cce_01_0114__li415324792019"><strong id="cce_01_0114__b12237419519">Sticky Session</strong>: This function is disabled by default. You can select <strong id="cce_01_0114__b10235414515">Based on source IP address</strong>. Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</li><li id="cce_01_0114__li715374762012"><strong id="cce_01_0114__b15881347957">Health Check</strong>: This function is enabled by default. Enabling it will perform health checks on your load balancer. For details about how to configure the ELB health check parameters, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/elb/en-us_topic_0162227063.html" target="_blank" rel="noopener noreferrer">Configuring a Health Check</a>.</li></ul>
-</div>
-</li><li id="cce_01_0114__li29894558447"><strong id="cce_01_0114__b136812541556">Port Settings</strong><ul id="cce_01_0114__ul498917554444"><li id="cce_01_0114__li1398819558443"><strong id="cce_01_0114__b369012211610">Protocol</strong>: protocol used by the Service.</li><li id="cce_01_0114__li18989195594412"><strong id="cce_01_0114__b131009715610">Container Port</strong>: port defined in the container image and on which the workload listens. The Nginx application listens on port 80.</li><li id="cce_01_0114__li498916551441"><strong id="cce_01_0114__b126616162614">Access Port</strong>: port mapped to the container port at the load balancer's IP address. The workload can be accessed at &lt;<em id="cce_01_0114__i15661141613616">Load balancer's IP address</em>&gt;:&lt;<em id="cce_01_0114__i196618164610">Access port</em>&gt;. The port number range is 1–65535.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0114__li196461348133512"><span>After the configuration is complete, click <strong id="cce_01_0114__b1827718531373">OK</strong>.</span></li><li id="cce_01_0114__li1228622253914"><span>On the workload creation page, click <strong id="cce_01_0114__b760195910714">Next: Configure Advanced Settings</strong>. On the page displayed, click <strong id="cce_01_0114__b860117591073">Create</strong>.</span></li><li id="cce_01_0114__li12600154835615"><span>After the workload is successfully created, choose <strong id="cce_01_0114__b1676821120815">Workloads</strong> &gt; <strong id="cce_01_0114__b577420111887">Deployments</strong> or <strong id="cce_01_0114__b7774311784">Workloads</strong> &gt; <strong id="cce_01_0114__b13774181117812">StatefulSets</strong> on the CCE console. Click the name of the workload to view its details. On the workload details page, click the <strong id="cce_01_0114__b27752115812">Services</strong> tab and obtain the access address.</span></li><li id="cce_01_0114__li1687011439510"><span>Click the access address.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0114__section157831895585"><h4 class="sectiontitle">Adding a Service After Creating a Workload</h4><p id="cce_01_0114__p10179127141512">You can set the Service after creating a workload. This has no impact on the workload status and takes effect immediately. The procedure is as follows:</p>
-<ol id="cce_01_0114__ol476105625618"><li id="cce_01_0114__li187625625617"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0114__b063713420111">Resource Management</strong> &gt; <strong id="cce_01_0114__b18637541812">Network</strong>.</span></li><li id="cce_01_0114__li137645685618"><span>On the <strong id="cce_01_0114__b337117106119">Services</strong> tab page, click <strong id="cce_01_0114__b1737110101412">Create Service</strong>.</span><p><p id="cce_01_0114__p69141858115613">The parameters are the same as those in <a href="#cce_01_0114__section17753911588">Adding a Service When Creating a Workload</a>.</p>
-</p></li><li id="cce_01_0114__li167695610564"><span>Click <strong id="cce_01_0114__b188251011191011">Create</strong>. An ENI LoadBalancer Service will be added for the workload.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0114__section132363317202"><h4 class="sectiontitle">Using kubectl to Create a Service (Automatically Creating a Load Balancer)</h4><p id="cce_01_0114__p986135310205">An ENI LoadBalancer Service supports only dedicated ELBs. You do not need to specify NodePort when creating a Service.</p>
-<pre class="screen" id="cce_01_0114__screen10888224202316">apiVersion: v1
-kind: Service
-metadata:
-    name: example
-    annotations:
-        <span style="color:#FF0000;">kubernetes.io/elb.class: performance</span>
-        kubernetes.io/elb.autocreate: 
-          '
-          {
-              "type": "public",
-              "bandwidth_name": "cce-bandwidth-1630813564682",
-              "bandwidth_chargemode": "traffic",
-              "bandwidth_size": 5,
-              "bandwidth_sharetype": "PER",
-              "eip_type": "5_bgp",
-              "available_zone": [
-                  "<span id="cce_01_0114__text106391359594">eu-de-01</span>"
-              ],
-              "l7_flavor_name": "L7_flavor.elb.s2.medium",
-              "l4_flavor_name": "L4_flavor.elb.s1.small"
-          }
-          '
-spec:
-    selector:
-        app: example
-    ports:
-        -   name: cce-service-0
-            targetPort: 80
-            port: 8082
-            protocol: TCP
-    <span style="color:#FF0000;">type: LoadBalancer</span></pre>
-<p id="cce_01_0114__p159253430238">For details about the parameters, see <a href="cce_01_0014.html#cce_01_0014__table133089105019">Table 4</a>.</p>
-</div>
-<div class="section" id="cce_01_0114__section740235552010"><h4 class="sectiontitle">Using kubectl to Create a Service (Using an Existing Load Balancer)</h4><p id="cce_01_0114__p138191410142110">When creating a Service using an existing load balancer, you only need to specify the ID of the load balancer.</p>
-<pre class="screen" id="cce_01_0114__screen9334161362117">apiVersion: v1
-kind: Service
-metadata:
-    name: example
-    annotations:
-        <span style="color:#FF0000;">kubernetes.io/elb.id</span>: bcc44e84-d0b5-4192-8bec-b2ca55ce5025     # ID of the load balancer. Replace it with the actual value.
-spec:
-    selector:
-        app: example
-    ports:
-        -   name: cce-service-0
-            targetPort: 80
-            port: 8082
-            protocol: TCP
-    <span style="color:#FF0000;">type: LoadBalancer</span></pre>
-</div>
-<div class="section" id="cce_01_0114__section1959173710195"><h4 class="sectiontitle">ELB Forwarding</h4><p id="cce_01_0114__p13446534168">After an ENI LoadBalancer Service is created, you can view the listener forwarding rules of the load balancer on the ELB console.</p>
-<div class="fignone" id="cce_01_0114__fig18321515105911"><span class="figcap"><b>Figure 1 </b>ELB forwarding</span><br><span><img id="cce_01_0114__image141031841141912" src="en-us_image_0000001204449561.png"></span></div>
-<p id="cce_01_0114__p191813281715">You can find that a listener is created for the load balancer. The backend server address is the IP address of the pod, and the service port is the container port. This is because the pod uses an ENI or sub-ENI. When traffic passes through the load balancer, it directly forwards the traffic to the pod. This is the same as that described in <a href="#cce_01_0114__section025118182286">Scenario</a>.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0247.html">Services</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0120.html b/docs/cce/umn/cce_01_0120.html
deleted file mode 100644
index 6070c05b..00000000
--- a/docs/cce/umn/cce_01_0120.html
+++ /dev/null
@@ -1,62 +0,0 @@
-<a name="cce_01_0120"></a><a name="cce_01_0120"></a>
-
-<h1 class="topictitle1">Performing Replace/Rolling Upgrade (v1.13 and Earlier)</h1>
-<div id="body1513685389866"><div class="section" id="cce_01_0120__section10924122311617"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0120__p19245829101612">You can upgrade your clusters to a newer Kubernetes version on the CCE console.</p>
-<p id="cce_01_0120__p10143161620134">Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what ways, and the upgrade impacts. For details, see <a href="cce_01_0197.html">Overview</a> and <a href="cce_01_0302.html">Before You Start</a>.</p>
-</div>
-<div class="section" id="cce_01_0120__section241218201016"><h4 class="sectiontitle">Precautions</h4><ul id="cce_01_0120__ul10508151218313"><li id="cce_01_0120__li14600171372318">If the coredns add-on needs to be upgraded during the cluster upgrade, ensure that the number of nodes is greater than or equal to the number of coredns instances and all coredns instances are running. Otherwise, the upgrade will fail. Before upgrading a cluster of v1.11 or v1.13, you need to upgrade the coredns add-on to the latest version available for the cluster.</li><li id="cce_01_0120__li168619317234">When a cluster of v1.11 or earlier is upgraded to v1.13, the impacts on the cluster are as follows:<ul id="cce_01_0120__ul018516414243"><li id="cce_01_0120__li0366146297">All cluster nodes will be restarted as their OSs are upgraded, which affects application running.</li><li id="cce_01_0120__li829140102313">The cluster signing certificate mechanism is changed. As a result, the original cluster certificate becomes invalid. You need to obtain the certificate or kubeconfig file again after the cluster is upgraded.</li></ul>
-</li><li id="cce_01_0120__li547115384244">During the upgrade from one release of v1.13 to a later release of v1.13, applications in the cluster are interrupted for a short period of time only during the upgrade of network components.</li><li id="cce_01_0120__li73661849294">During the upgrade from Kubernetes 1.9 to 1.11, the kube-dns of the cluster will be uninstalled and replaced with CoreDNS, which may cause loss of the cascading DNS configuration in the kube-dns or temporary interruption of the DNS service. Back up the DNS address configured in the kube-dns so you can configure the domain name in the CoreDNS again when domain name resolution is abnormal.</li></ul>
-</div>
-<div class="section" id="cce_01_0120__section9456205813519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0120__ol226615082711"><li id="cce_01_0120__li3676163391418"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0120__b4884182751814">Resource Management</strong> &gt; <strong id="cce_01_0120__b158846278186">Clusters</strong>. In the cluster list, check the cluster version.</span></li><li id="cce_01_0120__li13509123212283"><span>Click <strong id="cce_01_0120__b84235270610024">More</strong> for the cluster you want to upgrade, and select <strong id="cce_01_0120__b842352706152420">Upgrade</strong> from the drop-down menu.</span><p><div class="note" id="cce_01_0120__note1723614376153"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0120__ul567619811233"><li id="cce_01_0120__li1676483230">If your cluster version is up-to-date, the <strong id="cce_01_0120__b175611294181">Upgrade</strong> button is grayed out.</li><li id="cce_01_0120__li26764811233">If the cluster status is <strong id="cce_01_0120__b115884531816">Unavailable</strong>, the upgrade flag in the upper right corner of the cluster card view will be grayed out. Check the cluster status by referring to <a href="cce_01_0302.html">Before You Start</a>.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0120__li76391913300"><span>In the displayed <strong id="cce_01_0120__b1611516438484">Pre-upgrade Check</strong> dialog box, click <strong id="cce_01_0120__b212074310481">Check Now</strong>.</span></li><li id="cce_01_0120__li984983714109"><span>The pre-upgrade check starts. While the pre-upgrade check is in progress, the cluster status will change to <strong id="cce_01_0120__b19460102313491">Pre-checking</strong> and new nodes/applications will not be able to be deployed on the cluster. However, existing nodes and applications will not be affected. It takes 3 to 5 minutes to complete the pre-upgrade check.</span></li><li id="cce_01_0120__li10560105618205"><span>When the status of the pre-upgrade check is <strong id="cce_01_0120__b1793221214236">Completed</strong>, click <strong id="cce_01_0120__b1197716132418">Upgrade</strong>.</span></li><li id="cce_01_0120__li716763219239"><span>On the cluster upgrade page, review or configure basic information by referring to <a href="#cce_01_0120__table924319911495">Table 1</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0120__table924319911495"></a><a name="table924319911495"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0120__table924319911495" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic information</caption><thead align="left"><tr id="cce_01_0120__row42442974913"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.3.2.6.2.1.2.3.1.1"><p id="cce_01_0120__p17244793496">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.3.2.6.2.1.2.3.1.2"><p id="cce_01_0120__p42441596495">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0120__row1137014404511"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_01_0120__p11370134095120">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_01_0120__p937064085113">Review the name of the cluster to be upgraded.</p>
-</td>
-</tr>
-<tr id="cce_01_0120__row83701240105118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_01_0120__p3370040165116">Current Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_01_0120__p93701640145120">Review the version of the cluster to be upgraded.</p>
-</td>
-</tr>
-<tr id="cce_01_0120__row4370840165119"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_01_0120__p937054045117">Target Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_01_0120__p1268812588913">Review the target version after the upgrade.</p>
-</td>
-</tr>
-<tr id="cce_01_0120__row524420346511"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_01_0120__p112449344512">Node Upgrade Policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_01_0120__p17476164421118"><strong id="cce_01_0120__b844444914214">Replace</strong> (replace upgrade): Worker nodes will be reset. Their OSs will be reinstalled, and data on the system and data disks will be cleared. Exercise caution when performing this operation.</p>
-<div class="note" id="cce_01_0120__note121926482167"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0120__ul149475619164"><li id="cce_01_0120__li189475641614">The lifecycle management function of the nodes and workloads in the cluster is unavailable.</li><li id="cce_01_0120__li179515613168">APIs cannot be called temporarily.</li><li id="cce_01_0120__li13952056191617">Running workloads will be interrupted because nodes are reset during the upgrade.</li><li id="cce_01_0120__li11951256131619">Data in the system and data disks on the worker nodes will be cleared. Back up important data before resetting the nodes.</li><li id="cce_01_0120__li895185621613">Data disks without LVM mounted to worker nodes need to be mounted again after the upgrade, and data on the disks will not be lost during the upgrade.</li><li id="cce_01_0120__li49525614162">The EVS disk quota must be greater than 0.</li><li id="cce_01_0120__li2951056101618">The container IP addresses change, but the communication between containers is not affected.</li><li id="cce_01_0120__li199515631617">Custom labels on the worker nodes will be cleared.</li><li id="cce_01_0120__li1195155617169">It takes about 20 minutes to upgrade a master node and about 30 to 120 minutes to upgrade worker nodes (about 3 minutes for each worker node), depending on the number of worker nodes and upgrade batches.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0120__row1624493410514"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_01_0120__p824503418518">Login Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><div class="p" id="cce_01_0120__p10185117111414"><ul id="cce_01_0120__ul10227542183218"><li id="cce_01_0120__li922784273210"><strong id="cce_01_0120__b14956713564">Key pair</strong>: Select the key pair used to log in to the node. You can select a shared key.<p id="cce_01_0120__p102267427326">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0120__b15209182295615">Create a key pair</strong>.</p>
-</li></ul>
-</div>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0120__li121681222574"><span>Click <strong id="cce_01_0120__b154483580568">Next</strong>. In the dialog box displayed, click <strong id="cce_01_0120__b12725113105720">OK</strong>.</span></li><li id="cce_01_0120__li1758082152914"><span>Upgrade add-ons. If an add-on needs to be upgraded, a red dot is displayed. Click the <strong id="cce_01_0120__b018871624">Upgrade</strong> button in the lower left corner of the add-on card view. After the upgrade is complete, click <strong id="cce_01_0120__b1931721810219">Upgrade</strong> in the lower right corner of the page.</span><p><div class="note" id="cce_01_0120__note662415131915"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0120__ul1165114818193"><li id="cce_01_0120__li116515821915">Master nodes will be upgraded first, and then the worker nodes will be upgraded concurrently. If there are a large number of worker nodes, they will be upgraded in different batches.</li><li id="cce_01_0120__li865198111919">Select a proper time window for the upgrade to reduce impacts on services.</li><li id="cce_01_0120__li1865111819192">Clicking <strong id="cce_01_0120__b568312341417">OK</strong> will start the upgrade immediately, and the upgrade cannot be canceled. Do not shut down or restart nodes during the upgrade.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0120__li19688320183320"><span>In the displayed <strong id="cce_01_0120__b11520154811510">Upgrade</strong> dialog box, read the information and click <strong id="cce_01_0120__b175691157161512">OK</strong>. Note that the cluster cannot be rolled back after the upgrade.</span></li><li id="cce_01_0120__li2078332142814"><span>Back to the cluster list, you can see that the cluster status is <strong id="cce_01_0120__b5938181785219">Upgrading</strong>. Wait until the upgrade is completed.</span><p><p id="cce_01_0120__p511014181242">After the upgrade is successful, you can view the cluster status and version on the cluster list or cluster details page.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0215.html">Upgrading a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0125.html b/docs/cce/umn/cce_01_0125.html
deleted file mode 100644
index 34d1cf91..00000000
--- a/docs/cce/umn/cce_01_0125.html
+++ /dev/null
@@ -1,23 +0,0 @@
-<a name="cce_01_0125"></a><a name="cce_01_0125"></a>
-
-
-  <h1 class="topictitle1">SFS Turbo Volumes</h1>
-
-  <div id="body0000001365757772"><p id="cce_01_0125__p8060118"></p>
-</div>
-
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0271.html">Using SFS Turbo Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0274.html">Creating a Deployment Mounted with an SFS Turbo Volume</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0273.html">Creating a StatefulSet Mounted with an SFS Turbo Volume</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0393.html">Deployment Examples</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0127.html b/docs/cce/umn/cce_01_0127.html
deleted file mode 100644
index af45efbc..00000000
--- a/docs/cce/umn/cce_01_0127.html
+++ /dev/null
@@ -1,28 +0,0 @@
-<a name="cce_01_0127"></a><a name="cce_01_0127"></a>
-
-<h1 class="topictitle1">storage-driver (System Resource Add-on, Mandatory)</h1>
-<div id="body1541037494110"><div class="section" id="cce_01_0127__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_01_0127__p1574910495496">storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use IaaS storage resources. By installing and upgrading storage-driver, you can quickly install and update cloud storage capabilities.</p>
-<p id="cce_01_0127__p5414123111414"><strong id="cce_01_0127__b2471165511315">storage-driver is a system resource add-on. It is installed by default when a cluster of Kubernetes v1.13 or earlier is created.</strong></p>
-</div>
-<div class="section" id="cce_01_0127__section3993231122718"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0127__ul113072911510"><li id="cce_01_0127__li10330171552010">For clusters created in CCE, Kubernetes v1.15.11 is a transitional version in which the FlexVolume plug-in (storage-driver) is compatible with the CSI plug-in (<a href="cce_01_0066.html">everest</a>). Clusters of v1.17 and later versions do not support FlexVolume any more. You need to use the everest add-on. For details about CSI and FlexVolume, see <a href="cce_01_0306.html#cce_01_0306__section86752053123513">Differences Between CSI and FlexVolume Plug-ins</a>.</li><li id="cce_01_0127__li25582642815">The FlexVolume plug-in will be maintained by Kubernetes developers, but new functionality will only be added to CSI. You are advised not to create storage that connects to the FlexVolume plug-in (storage-driver) in CCE any more. Otherwise, the storage resources may not function normally.</li><li id="cce_01_0127__li51302291158">This add-on can be installed only in <strong id="cce_01_0127__b363773505113">clusters of v1.13 or earlier</strong>. By default, the <a href="cce_01_0066.html">everest</a> add-on is installed when clusters of v1.15 or later are created.<div class="note" id="cce_01_0127__note1531776113"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0127__p8532474112"><strong id="cce_01_0127__b411425325110">In a cluster of v1.13 or earlier</strong>, when an upgrade or bug fix is available for storage functionalities, you only need to install or upgrade the storage-driver add-on. Upgrading the cluster or creating a cluster is not required.</p>
-</div></div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0127__section776571919194"><h4 class="sectiontitle">Installing the Add-on</h4><p id="cce_01_0127__p11975102684817">This add-on has been installed by default. If it is uninstalled due to some reasons, you can reinstall it by performing the following steps:</p>
-<p id="cce_01_0127__p21112429503">If storage-driver is not installed in a cluster, perform the following steps to install it:</p>
-<ol id="cce_01_0127__ol9183433182510"><li id="cce_01_0127__li13183153352515"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0127__b15777412525">Add-ons</strong>. On the <strong id="cce_01_0127__b1583104135219">Add-on Marketplace</strong> tab page, click <strong id="cce_01_0127__b198411465219">Install Add-on</strong> under <strong id="cce_01_0127__b48414145211">storage-driver</strong>.</span></li><li id="cce_01_0127__li1617653171818"><span>On the <strong id="cce_01_0127__b18897412185514">Install Add-on</strong> page, select the cluster and the add-on version, and click <strong id="cce_01_0127__b14897181210558">Next: Configuration</strong>.</span></li><li id="cce_01_0127__li9455819152615"><span>Click <strong id="cce_01_0127__b227242216554">Install</strong> to install the add-on. Note that the storage-driver has no configurable parameters and can be directly installed.</span><p><p id="cce_01_0127__p187721502282">After the add-on is installed, click <strong id="cce_01_0127__b11201517152815">Go Back to Previous Page</strong>. On the <strong id="cce_01_0127__b18125917192814">Add-on Instance</strong> tab page, select the corresponding cluster to view the running instance. This indicates that the add-on has been installed on each node in the cluster.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0127__section455343310401"><h4 class="sectiontitle">Upgrading the Add-on</h4><ol id="cce_01_0127__ol255316335402"><li id="cce_01_0127__li818142512414"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0127__b9350162975214">Add-ons</strong>. On the <strong id="cce_01_0127__b173579299528">Add-on Instance</strong> tab page, select the target cluster and click <strong id="cce_01_0127__b153571329145211">Upgrade</strong> under <strong id="cce_01_0127__b03588294524">storage-driver</strong>.</span><p><div class="note" id="cce_01_0127__note1625210332283"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0127__ul163002418296"><li id="cce_01_0127__li33006482916">If the <strong id="cce_01_0127__b412131285913">Upgrade</strong> button is unavailable, the current add-on is already up-to-date and no upgrade is required.</li><li id="cce_01_0127__li53016432920">When the upgrade is complete, the original storage-driver version on cluster nodes will be replaced by the latest version.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0127__li11556163354015"><span>On the <strong id="cce_01_0127__b111255134617">Basic Information</strong> page, select the add-on version and click <strong id="cce_01_0127__b622165574615">Next</strong>.</span></li><li id="cce_01_0127__li132321726191110"><span>Click <strong id="cce_01_0127__b8164444195319">Upgrade</strong> to upgrade the storage-driver add-on. Note that the storage-driver has no configurable parameters and can be directly upgraded.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0127__section20765191931911"><h4 class="sectiontitle">Uninstalling the Add-on</h4><ol id="cce_01_0127__ol29784442018"><li id="cce_01_0127__li1066711541542"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0127__b17369212538">Add-ons</strong>. On the <strong id="cce_01_0127__b4743152135311">Add-on Instance</strong> tab page, select the target cluster and click <strong id="cce_01_0127__b174312215534">Uninstall</strong> under <strong id="cce_01_0127__b37449235314">storage-driver</strong>.</span></li><li id="cce_01_0127__li20637152311120"><span>In the dialog box displayed, click <strong id="cce_01_0127__b1337516144518">Yes</strong> to uninstall the add-on.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0064.html">Add-ons</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0129.html b/docs/cce/umn/cce_01_0129.html
deleted file mode 100644
index 96a904ff..00000000
--- a/docs/cce/umn/cce_01_0129.html
+++ /dev/null
@@ -1,173 +0,0 @@
-<a name="cce_01_0129"></a><a name="cce_01_0129"></a>
-
-<h1 class="topictitle1">coredns (System Resource Add-on, Mandatory)</h1>
-<div id="body1541044564596"><div class="section" id="cce_01_0129__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_01_0129__p02839134271">The <span class="keyword" id="cce_01_0129__keyword22531813175019">coredns add-on</span> is a <span class="keyword" id="cce_01_0129__keyword13421152583010">DNS server</span> that provides <span class="keyword" id="cce_01_0129__keyword6729193816287">domain name resolution services</span> for <span class="keyword" id="cce_01_0129__keyword1746722115501">Kubernetes</span> clusters. coredns chains plug-ins to provide additional features.</p>
-<p id="cce_01_0129__p8277141265310">coredns is an open-source software and has been a part of CNCF. It provides a means for cloud services to discover each other in cloud-native deployments. Each of the plug-ins chained by coredns provides a particular DNS function. You can integrate coredns with only the plug-ins you need to make it fast, efficient, and flexible. When used in a Kubernetes cluster, coredns can automatically discover services in the cluster and provide domain name resolution for these services. By working with a cloud DNS server, coredns can resolve external domain names for workloads in a cluster.</p>
-<p id="cce_01_0129__p297442816531"><strong id="cce_01_0129__b57074513194">coredns is a system resource add-on. It is installed by default when a cluster of Kubernetes v1.11 or later is created.</strong></p>
-<p id="cce_01_0129__p1574910495496">Kubernetes v1.11 and later back CoreDNS as the official default DNS for all clusters going forward.</p>
-<p id="cce_01_0129__p1228518291395">CoreDNS official website: <a href="https://coredns.io/" target="_blank" rel="noopener noreferrer">https://coredns.io/</a></p>
-<p id="cce_01_0129__p195944210105">Open source community: <a href="https://github.com/coredns/coredns" target="_blank" rel="noopener noreferrer">https://github.com/coredns/coredns</a></p>
-</div>
-<div class="section" id="cce_01_0129__section10849134521812"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0129__p8300121945414">When CoreDNS is running properly or being upgraded, ensure that the number of available nodes is greater than or equal to the number of CoreDNS instances and all CoreDNS instances are running. Otherwise, the upgrade will fail.</p>
-</div>
-<div class="section" id="cce_01_0129__section776571919194"><h4 class="sectiontitle">Installing the Add-on</h4><p id="cce_01_0129__p42241311193">This add-on has been installed by default. If it is uninstalled due to some reasons, you can reinstall it by performing the following steps:</p>
-<ol id="cce_01_0129__ol9183433182510"><li id="cce_01_0129__li13183153352515"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0129__b187635542448">Add-ons</strong>. On the <strong id="cce_01_0129__b123652018456">Add-on Marketplace</strong> tab page, click <strong id="cce_01_0129__b1322933510456">Install Add-on</strong> under <strong id="cce_01_0129__b179006318445">coredns</strong>.</span></li><li id="cce_01_0129__li1617653171818"><span>On the <strong id="cce_01_0129__b4870223218">Install Add-on</strong> page, select the cluster and the add-on version, and click <strong id="cce_01_0129__b3881127324">Next: Configuration</strong>.</span></li><li id="cce_01_0129__li19499325105417"><span>In the <span class="uicontrol" id="cce_01_0129__uicontrol1650142535418"><b>Configuration</b></span> step, set the following parameters:</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0129__table924319911495" frame="border" border="1" rules="all"><caption><b>Table 1 </b>coredns add-on parameters</caption><thead align="left"><tr id="cce_01_0129__row42442974913"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.3.3.3.2.1.2.3.1.1"><p id="cce_01_0129__p17244793496">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.3.3.3.2.1.2.3.1.2"><p id="cce_01_0129__p42441596495">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0129__row1137014404511"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.3.2.1.2.3.1.1 "><p id="cce_01_0129__p11370134095120">Add-on Specifications</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.3.2.1.2.3.1.2 "><p id="cce_01_0129__p937064085113">Concurrent domain name resolution ability. Select add-on specifications that best fit your needs.</p>
-</td>
-</tr>
-<tr id="cce_01_0129__row83701240105118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.3.2.1.2.3.1.1 "><p id="cce_01_0129__p3370040165116">Instances</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.3.2.1.2.3.1.2 "><p id="cce_01_0129__p93701640145120">Number of pods that will be created to match the selected add-on specifications. The number cannot be modified.</p>
-</td>
-</tr>
-<tr id="cce_01_0129__row4370840165119"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.3.2.1.2.3.1.1 "><p id="cce_01_0129__p937054045117">Container</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.3.2.1.2.3.1.2 "><p id="cce_01_0129__p1437014065110">CPU and memory quotas of the container allowed for the selected add-on specifications. The quotas cannot be modified.</p>
-</td>
-</tr>
-<tr id="cce_01_0129__row12370940175116"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.3.2.1.2.3.1.1 "><p id="cce_01_0129__p237044095117">Notes</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.3.2.1.2.3.1.2 "><p id="cce_01_0129__p1493852310547">Add-on precautions. Read the precautions before you proceed with the step.</p>
-</td>
-</tr>
-<tr id="cce_01_0129__row53701440125116"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.3.2.1.2.3.1.1 "><p id="cce_01_0129__p8370124035118">stub domain</p>
-</td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.3.2.1.2.3.1.2 "><p id="cce_01_0129__p1837104015118">A domain name server for a user-defined domain name. The format is a key-value pair. The key is a suffix of DNS domain name, and the value is one or more DNS IP addresses. For example, <strong id="cce_01_0129__b1715325674614">acme.local -- 1.2.3.4,6.7.8.9</strong> means that DNS requests with the <strong id="cce_01_0129__b1115419566461">.acme.local</strong> suffix are forwarded to a DNS listening at 1.2.3.4,6.7.8.9.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0129__li9455819152615"><span>After the preceding configurations are complete, click <strong id="cce_01_0129__b165814819135">Install</strong>.</span><p><p id="cce_01_0129__p187721502282">After the add-on is installed, click <strong id="cce_01_0129__b464202212272">Go Back to Previous Page</strong>. On the <strong id="cce_01_0129__b3691222142715">Add-on Instance</strong> tab page, select the corresponding cluster to view the running instance. This indicates that the add-on has been installed on each node in the cluster.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0129__section5202157467"><h4 class="sectiontitle">Configuring the Stub Domain for CoreDNS</h4><p id="cce_01_0129__p133703571615">Cluster administrators can modify the ConfigMap for the CoreDNS Corefile to change how service discovery works. They can configure stub domains for CoreDNS using the proxy plug-in.</p>
-<p id="cce_01_0129__p158773611266">Assume that a cluster administrator has a Consul DNS server located at 10.150.0.1 and all Consul domain names have the suffix <strong id="cce_01_0129__b151521746">.consul.local</strong>.</p>
-<p id="cce_01_0129__p114653462249">To configure this Consul DNS server in CoreDNS, run the following command to edit the CoreDNS ConfigMap:</p>
-<p id="cce_01_0129__p02841427182418"><strong id="cce_01_0129__b6832153732410">kubectl edit configmap coredns -n kube-system</strong></p>
-<p id="cce_01_0129__p765651215309">Example configuration:</p>
-<pre class="screen" id="cce_01_0129__screen688515376568">consul.local:5353 {
-        errors
-        cache 30
-        proxy . 10.150.0.1
-    }</pre>
-<p id="cce_01_0129__p16948826184020"><strong id="cce_01_0129__b72813239268">In clusters of v1.15.11 and later, the modified ConfigMap is as follows:</strong></p>
-<pre class="screen" id="cce_01_0129__screen9948142615401">apiVersion: v1
-metadata:
-  name: coredns
-  namespace: kube-system
-  selfLink: /api/v1/namespaces/kube-system/configmaps/coredns
-  uid: 00cb8f29-62d7-4df8-a769-0a16237903c1
-  resourceVersion: '2074614'
-  creationTimestamp: '2021-04-07T03:52:42Z'
-  labels:
-    app: coredns
-    k8s-app: coredns
-    kubernetes.io/cluster-service: 'true'
-    kubernetes.io/name: CoreDNS
-    release: cceaddon-coredns
-data:
-  Corefile: |-
-    .:5353 {
-        bind {$POD_IP}
-        cache 30
-        errors
-        health {$POD_IP}:8080
-        kubernetes cluster.local in-addr.arpa ip6.arpa {
-          pods insecure
-          upstream /etc/resolv.conf
-          fallthrough in-addr.arpa ip6.arpa
-        }
-        loadbalance round_robin
-        prometheus {$POD_IP}:9153
-        forward . /etc/resolv.conf
-        reload
-    }
-
-    consul.local:5353 {
-        errors
-        cache 30
-        proxy . 10.150.0.1
-    }</pre>
-<p id="cce_01_0129__p1910413255561"><strong id="cce_01_0129__b2035392912618">In clusters earlier than v1.15.11, the modified ConfigMap is as follows:</strong></p>
-<pre class="screen" id="cce_01_0129__screen4683135511018">apiVersion: v1
-data:
-  Corefile: |-
-    .:5353 {
-        cache 30
-        errors
-        health
-        kubernetes cluster.local in-addr.arpa ip6.arpa {
-          pods insecure
-          upstream /etc/resolv.conf
-          fallthrough in-addr.arpa ip6.arpa
-        }
-        loadbalance round_robin
-        prometheus 0.0.0.0:9153
-        proxy . /etc/resolv.conf
-        reload
-    }
-
-    consul.local:5353 {
-        errors
-        cache 30
-        proxy . 10.150.0.1
-    }
-kind: ConfigMap
-metadata:
-  name: coredns
-  namespace: kube-system</pre>
-</div>
-<div class="section" id="cce_01_0129__section1860523212152"><h4 class="sectiontitle">How Does Domain Name Resolution Work in Kubernetes?</h4><p id="cce_01_0129__p8551434178">DNS policies can be set on a per-pod basis. Currently, Kubernetes supports four types of DNS policies: <strong id="cce_01_0129__b86789592281">Default</strong>, <strong id="cce_01_0129__b063911217298">ClusterFirst</strong>, <strong id="cce_01_0129__b492911612910">ClusterFirstWithHostNet</strong>, and <strong id="cce_01_0129__b1295919142919">None</strong>. For details, see <a href="https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/" target="_blank" rel="noopener noreferrer">https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/</a>. These policies are specified in the <strong id="cce_01_0129__b156913285346">dnsPolicy</strong> field in the pod-specific.</p>
-</div>
-<ul id="cce_01_0129__ul159572423318"><li id="cce_01_0129__li69559412332"><strong id="cce_01_0129__b62424271154">Default</strong>: Pods inherit the name resolution configuration from the node that the pods run on. The custom upstream DNS server and the stub domain cannot be used together with this policy.</li><li id="cce_01_0129__li495519443310"><strong id="cce_01_0129__b920116394185">ClusterFirst</strong>: Any DNS query that does not match the configured cluster domain suffix, such as <strong id="cce_01_0129__b1785725121913">www.kubernetes.io</strong>, is forwarded to the upstream name server inherited from the node. Cluster administrators may have extra stub domains and upstream DNS servers configured. </li><li id="cce_01_0129__li169559473312"><strong id="cce_01_0129__b1037017549202">ClusterFirstWithHostNet</strong>: For pods running with hostNetwork, set its DNS policy <strong id="cce_01_0129__b177435476210">ClusterFirstWithHostNet</strong>.</li><li id="cce_01_0129__li13956114153310"><strong id="cce_01_0129__b3312165315212">None</strong>: It allows a pod to ignore DNS settings from the Kubernetes environment. All DNS settings are supposed to be provided using the <strong id="cce_01_0129__b1017820612515">dnsPolicy</strong> field in the pod-specific.</li></ul>
-<div class="note" id="cce_01_0129__note166278527169"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0129__ul13587554172315"><li id="cce_01_0129__li45871554152320">Clusters of Kubernetes v1.10 and later support <strong id="cce_01_0129__b190071982920">Default</strong>, <strong id="cce_01_0129__b1680312222910">ClusterFirst</strong>, <strong id="cce_01_0129__b3744102512915">ClusterFirstWithHostNet</strong>, and <strong id="cce_01_0129__b9229102832917">None</strong>. Clusters earlier than Kubernetes v1.10 support only <strong id="cce_01_0129__b1190633062913">Default</strong>, <strong id="cce_01_0129__b3640833132917">ClusterFirst</strong>, and <strong id="cce_01_0129__b128651236162919">ClusterFirstWithHostNet</strong>.</li><li id="cce_01_0129__li16587185414234"><strong id="cce_01_0129__b1720173842715">Default</strong> is not the default DNS policy. If <strong id="cce_01_0129__b1264763115285">dnsPolicy</strong> is not explicitly specified, <strong id="cce_01_0129__b1039142303616">ClusterFirst</strong> is used.</li></ul>
-</div></div>
-<p id="cce_01_0129__p117035171517"><strong id="cce_01_0129__b16962142918308">Routing</strong></p>
-<p id="cce_01_0129__p12957184123313"><strong id="cce_01_0129__b1514664741810">Without stub domain configurations</strong>: Any query that does not match the configured cluster domain suffix, such as <strong id="cce_01_0129__b2235102863213">www.kubernetes.io</strong>, is forwarded to the upstream DNS server inherited from the node.</p>
-<p id="cce_01_0129__p1795744153315"><strong id="cce_01_0129__b167882921910">With stub domain configurations</strong>: If stub domains and upstream DNS servers are configured, DNS queries are routed according to the following flow:</p>
-<ol id="cce_01_0129__ol1895815493314"><li id="cce_01_0129__li29576413330">The query is first sent to the DNS caching layer in coredns.</li><li id="cce_01_0129__li79589463318">From the caching layer, the suffix of the request is examined and then the request is forwarded to the corresponding DNS:<ul id="cce_01_0129__ul29582417338"><li id="cce_01_0129__li495814453313">Names with the cluster suffix, for example, <strong id="cce_01_0129__b11610940133413">.cluster.local</strong>: The request is sent to coredns.</li></ul>
-<ul id="cce_01_0129__ul189581349330"><li id="cce_01_0129__li169582413313">Names with the stub domain suffix, for example, <strong id="cce_01_0129__b208218633511">.acme.local</strong>: The request is sent to the configured custom DNS resolver that listens, for example, on 1.2.3.4.</li><li id="cce_01_0129__li195815453320">Names that do not match the suffix (for example, <strong id="cce_01_0129__b13519452133513">widget.com</strong>): The request is forwarded to the upstream DNS.</li></ul>
-</li></ol>
-<div class="fignone" id="cce_01_0129__fig7582181514118"><span class="figcap"><b>Figure 1 </b>Routing</span><br><span><img id="cce_01_0129__image23305161015" src="en-us_image_0186273271.png"></span></div>
-<div class="section" id="cce_01_0129__section19566181513486"><h4 class="sectiontitle">Upgrading the Add-on</h4><ol id="cce_01_0129__ol3566915194814"><li id="cce_01_0129__li45666152485"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0129__b18861122614">Add-ons</strong>. On the <strong id="cce_01_0129__b1686821461">Add-on Instance</strong> tab page, click <strong id="cce_01_0129__b17871021469">Upgrade</strong> under <strong id="cce_01_0129__b11871521619">coredns</strong>.</span><p><div class="note" id="cce_01_0129__note1625210332283"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0129__ul163002418296"><li id="cce_01_0129__li33006482916">If the <strong id="cce_01_0129__b161261918194010">Upgrade</strong> button is unavailable, the current add-on is already up-to-date and no upgrade is required.</li><li id="cce_01_0129__li7121028131316">During the upgrade, the previous configurations are lost and need to be specified again.</li><li id="cce_01_0129__li168301854183418">When the upgrade is complete, the original coredns version on cluster nodes will be replaced by the latest version. If an exception occurs during the upgrade, uninstall the add-on and then re-install it.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0129__li6582171513481"><span>On the <strong id="cce_01_0129__b112562013133813">Basic Information</strong> page, select the add-on version and click <strong id="cce_01_0129__b1979181110399">Next</strong>.</span></li><li id="cce_01_0129__li1084852202216"><span>Configure the parameters listed in <a href="#cce_01_0129__table1410658238">Table 2</a>. After the configuration is complete, click <strong id="cce_01_0129__b149262511405">Upgrade</strong> to upgrade the coredns add-on.</span><p>
-<div class="tablenoborder"><a name="cce_01_0129__table1410658238"></a><a name="table1410658238"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0129__table1410658238" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters for installing coredns</caption><thead align="left"><tr id="cce_01_0129__row10111254234"><th align="left" class="cellrowborder" valign="top" width="21.240000000000002%" id="mcps1.3.13.2.3.2.1.2.3.1.1"><p id="cce_01_0129__p1711053236">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="78.75999999999999%" id="mcps1.3.13.2.3.2.1.2.3.1.2"><p id="cce_01_0129__p10119522319">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0129__row1611957237"><td class="cellrowborder" valign="top" width="21.240000000000002%" headers="mcps1.3.13.2.3.2.1.2.3.1.1 "><p id="cce_01_0129__p16111158235">Add-on Specifications</p>
-</td>
-<td class="cellrowborder" valign="top" width="78.75999999999999%" headers="mcps1.3.13.2.3.2.1.2.3.1.2 "><p id="cce_01_0129__p71111552319">Concurrent domain name resolution ability. Select add-on specifications that best fit your needs.</p>
-</td>
-</tr>
-<tr id="cce_01_0129__row15111555233"><td class="cellrowborder" valign="top" width="21.240000000000002%" headers="mcps1.3.13.2.3.2.1.2.3.1.1 "><p id="cce_01_0129__p121114510237">stub domain</p>
-</td>
-<td class="cellrowborder" valign="top" width="78.75999999999999%" headers="mcps1.3.13.2.3.2.1.2.3.1.2 "><p id="cce_01_0129__p2111453233">A domain name server for a user-defined domain name. The format is a key-value pair. The key is a suffix of DNS domain name, and the value is one or more DNS IP addresses. For example, <strong id="cce_01_0129__b06297122457">acme.local -- 1.2.3.4,6.7.8.9</strong> means that DNS requests with the <strong id="cce_01_0129__b1576053012450">.acme.local</strong> suffix are forwarded to a DNS listening at 1.2.3.4,6.7.8.9.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0129__section7582615184814"><h4 class="sectiontitle">Uninstalling the Add-on</h4><ol id="cce_01_0129__ol19582315174814"><li id="cce_01_0129__li49399356020"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0129__b16120112416128">Add-ons</strong>. On the <strong id="cce_01_0129__b6120142417129">Add-on Instance</strong> tab page, click <strong id="cce_01_0129__b161211924101211">Uninstall</strong> under <strong id="cce_01_0129__b8121132451214">coredns</strong>.</span></li><li id="cce_01_0129__li6582201516480"><span>In the dialog box displayed, click <strong id="cce_01_0129__b18645114444820">Yes</strong> to uninstall the add-on.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0064.html">Add-ons</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0130.html b/docs/cce/umn/cce_01_0130.html
deleted file mode 100644
index adf3daba..00000000
--- a/docs/cce/umn/cce_01_0130.html
+++ /dev/null
@@ -1,25 +0,0 @@
-<a name="cce_01_0130"></a><a name="cce_01_0130"></a>
-
-<h1 class="topictitle1">Configuring a Container</h1>
-<div id="body1542098364711"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0009.html">Using a Third-Party Image</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0163.html">Setting Container Specifications</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0008.html">Setting Container Startup Commands</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0112.html">Setting Health Check for a Container</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0113.html">Setting an Environment Variable</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0139.html b/docs/cce/umn/cce_01_0139.html
deleted file mode 100644
index 2b3031a0..00000000
--- a/docs/cce/umn/cce_01_0139.html
+++ /dev/null
@@ -1,186 +0,0 @@
-<a name="cce_01_0139"></a><a name="cce_01_0139"></a>
-
-<h1 class="topictitle1">Common kubectl Commands</h1>
-<div id="body1552027417625"><div class="section" id="cce_01_0139__section18967103615461"><h4 class="sectiontitle">Getting Started</h4><p id="cce_01_0139__p234234894513"><strong id="cce_01_0139__b4920142213474">get</strong></p>
-<p id="cce_01_0139__p1417173415531">The <strong id="cce_01_0139__b13159131612144">get</strong> command displays one or many resources of a cluster.</p>
-<p id="cce_01_0139__p8350153344717">This command prints a table of the most important information about all resources, including cluster nodes, running pods, Deployments, and Services.</p>
-<div class="notice" id="cce_01_0139__note4905104145412"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0139__p79051048548">A cluster can have multiple namespaces. If no namespace is specified, this command will run with the <strong id="cce_01_0139__b1293616186202">--namespace=default</strong> flag.</p>
-</div></div>
-<p id="cce_01_0139__p73421485450">Examples:</p>
-<p id="cce_01_0139__p61671910164218">To list all pods with detailed information:</p>
-<pre class="screen" id="cce_01_0139__screen4797119124219">kubectl get po -o wide</pre>
-<p id="cce_01_0139__p1134218489455">To display pods in all namespaces:</p>
-<pre class="screen" id="cce_01_0139__screen642116494314">kubectl get po --all-namespaces</pre>
-<p id="cce_01_0139__p17342154864517">To list labels of pods in all namespaces:</p>
-<pre class="screen" id="cce_01_0139__screen1886971116454">kubectl get po --show-labels</pre>
-<p id="cce_01_0139__p1634284817459">To list all namespaces of the node:</p>
-<pre class="screen" id="cce_01_0139__screen856410531454">kubectl get namespace</pre>
-<div class="note" id="cce_01_0139__note5507103919465"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0139__p185091239104613">To list information of other nodes, run this command with the <strong id="cce_01_0139__b1612312459283">-s</strong> flag. To list a specified type of resources, add the resource type to this command, for example, <strong id="cce_01_0139__b124202003018">kubectl get svc</strong>, <strong id="cce_01_0139__b616822423018">kubectl get nodes</strong>, and <strong id="cce_01_0139__b29391932173013">kubectl get deploy</strong>.</p>
-</div></div>
-<p id="cce_01_0139__p4333012194712">To list a pod with a specified name in YAML output format:</p>
-<pre class="screen" id="cce_01_0139__screen730522111472">kubectl get po &lt;podname&gt; -o yaml</pre>
-<p id="cce_01_0139__p17342124894512">To list a pod with a specified name in JSON output format:</p>
-<pre class="screen" id="cce_01_0139__screen1559164744718">kubectl get po &lt;podname&gt; -o json</pre>
-<pre class="screen" id="cce_01_0139__screen17387134694914">kubectl get po rc-nginx-2-btv4j -o=custom-columns=LABELS:.metadata.labels.app</pre>
-<div class="note" id="cce_01_0139__note179211514125014"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0139__p1892113149504"><strong id="cce_01_0139__b5668195312438">LABELS</strong> indicates a comma separated list of user-defined column titles. <strong id="cce_01_0139__b1424170104416">metadata.labels.app</strong> indicates the data to be listed in either YAML or JSON output format.</p>
-</div></div>
-<p id="cce_01_0139__p6342184816454"><strong id="cce_01_0139__b785515551475">create</strong></p>
-<p id="cce_01_0139__p17544143418194">The <strong id="cce_01_0139__b121812430517">create</strong> command creates a cluster resource from a file or input.</p>
-<p id="cce_01_0139__p1634254894516">If there is already a resource descriptor (a YAML or JSON file), you can create the resource from the file by running the following command:</p>
-<pre class="screen" id="cce_01_0139__screen54431428171912">kubectl create -f filename</pre>
-<p id="cce_01_0139__p1834315485451"><strong id="cce_01_0139__b4654104214526">expose</strong></p>
-<p id="cce_01_0139__p11343164816458">The <strong id="cce_01_0139__b399163675417">expose</strong> command exposes a resource as a new Kubernetes service. Possible resources include a pod, Service, and Deployment.</p>
-<pre class="screen" id="cce_01_0139__screen49422910211">kubectl expose deployment deployname --port=81 --type=NodePort --target-port=80 --name=service-name</pre>
-<div class="note" id="cce_01_0139__note32671136192117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0139__p1926803619216">The example command creates a service of NodePort type for the deployment with the name specified in <strong id="cce_01_0139__b151826141902">deployname</strong>. The service will serve on port 81 specified in <strong id="cce_01_0139__b185759568113">-port</strong> and connect to the containers on port 80 specified in <strong id="cce_01_0139__b0225112420213">-target-port</strong>. More specifically, the service is reachable at &lt;cluster-internal IP address&gt;:&lt;port&gt;, and containers are reachable at &lt;node IP address&gt;:&lt;target-port&gt;.</p>
-</div></div>
-<p id="cce_01_0139__p13343154884513"><strong id="cce_01_0139__b126866100229">run</strong></p>
-<p id="cce_01_0139__p071835112149">Examples:</p>
-<p id="cce_01_0139__p183439487453">To run a particular image in the cluster:</p>
-<pre class="screen" id="cce_01_0139__screen5556163593512">kubectl run deployname --image=nginx:latest</pre>
-<p id="cce_01_0139__p562896193511">To run a particular image using a specified command:</p>
-<pre class="screen" id="cce_01_0139__screen18941445143515">kubectl run deployname -image=busybox --command -- ping baidu.com</pre>
-<p id="cce_01_0139__p1934364894514"><strong id="cce_01_0139__b6845152102311">set</strong></p>
-<p id="cce_01_0139__p1334319487456">The <strong id="cce_01_0139__b186928225148">set</strong> command configures object resources.</p>
-<p id="cce_01_0139__p67851636154">Example:</p>
-<p id="cce_01_0139__p235871516428">To change the image of a deployment with the name specified in <strong id="cce_01_0139__b35591012191610">deployname</strong> to image 1.0:</p>
-<pre class="screen" id="cce_01_0139__screen13721730124219">kubectl set image deploy deployname containername=containername:1.0</pre>
-<p id="cce_01_0139__p234344814458"><strong id="cce_01_0139__b1552281312236">edit</strong></p>
-<p id="cce_01_0139__p1436113379421">The <strong id="cce_01_0139__b5618185191710">edit</strong> command edits a resource from the default editor.</p>
-<p id="cce_01_0139__p123378169159">Examples:</p>
-<p id="cce_01_0139__p1234354884512">To update a pod:</p>
-<pre class="screen" id="cce_01_0139__screen557954114217">kubectl edit po po-nginx-btv4j</pre>
-<p id="cce_01_0139__p163435488457">The example command yields the same effect as the following command:</p>
-<pre class="screen" id="cce_01_0139__screen25481248134214">kubectl get po po-nginx-btv4j -o yaml &gt;&gt; /tmp/nginx-tmp.yaml
-vim /tmp/nginx-tmp.yaml
-/*do some changes here */
-kubectl replace -f /tmp/nginx-tmp.yaml</pre>
-<p id="cce_01_0139__p18343114814450"><strong id="cce_01_0139__b787881362412">explain</strong></p>
-<p id="cce_01_0139__p034310481457">The <strong id="cce_01_0139__b16311520457">explain</strong> command views documents or reference documents.</p>
-<p id="cce_01_0139__p183961925201517">Example:</p>
-<p id="cce_01_0139__p624411471407">To get documentation of pods:</p>
-<pre class="screen" id="cce_01_0139__screen71035591015">kubectl explain pod</pre>
-<p id="cce_01_0139__p33431448114512"><strong id="cce_01_0139__b3104192172619">delete</strong></p>
-<p id="cce_01_0139__p1734364817455">The <strong id="cce_01_0139__b1053663610251">delete</strong> command deletes resources by resource name or label.</p>
-<p id="cce_01_0139__p1526494214158">Example:</p>
-<p id="cce_01_0139__p1930815151118">To delete a pod with minimal delay:</p>
-<pre class="screen" id="cce_01_0139__screen744785619512">kubectl delete po podname --now </pre>
-<pre class="screen" id="cce_01_0139__screen399415119611">kubectl delete -f nginx.yaml
-kubectl delete deployment deployname</pre>
-</div>
-<div class="section" id="cce_01_0139__section122665712261"><h4 class="sectiontitle">Deployment Commands</h4><p id="cce_01_0139__p3344144814513"><strong id="cce_01_0139__b118683716272">rolling-update*</strong></p>
-<p id="cce_01_0139__p16013360715"><strong id="cce_01_0139__b19274102215295">rolling-update</strong> is a very important command. It updates a running service with zero downtime. Pods are incrementally replaced by new ones. One pod is updated at a time. The old pod is deleted only after the new pod is up. New pods must be distinct from old pods by name, version, and label. Otherwise, an error message will be reported.</p>
-<pre class="screen" id="cce_01_0139__screen1547213531274">kubectl rolling-update poname -f newfilename
-kubectl rolling-update poname -image=image:v2</pre>
-<p id="cce_01_0139__p1434414489459">If any problem occurs during the rolling update, run the command with the <strong id="cce_01_0139__b9985111995014">-rollback</strong> flag to abort the rolling update and revert to the previous pod.</p>
-<pre class="screen" id="cce_01_0139__screen18916143211820">kubectl rolling-update poname -rollback</pre>
-<p id="cce_01_0139__p13441848104511"><strong id="cce_01_0139__b17955442162714">rollout</strong></p>
-<p id="cce_01_0139__p23441448174519">The <strong id="cce_01_0139__b166811806523">rollout</strong> command manages the rollout of a resource.</p>
-<p id="cce_01_0139__p814683231615">Examples:</p>
-<p id="cce_01_0139__p144748382917">To check the rollout status of a particular deployment:</p>
-<pre class="screen" id="cce_01_0139__screen1295993131120">kubectl rollout status deployment/deployname</pre>
-<p id="cce_01_0139__p8652814201119">To view the rollout history of a particular deployment:</p>
-<pre class="screen" id="cce_01_0139__screen173422771114">kubectl rollout history deployment/deployname</pre>
-<p id="cce_01_0139__p1214316582121">To roll back to the previous deployment: (by default, a resource is rolled back to the previous version)</p>
-<pre class="screen" id="cce_01_0139__screen16261198191315">kubectl rollout undo deployment/test-nginx</pre>
-<p id="cce_01_0139__p1434414818458"><strong id="cce_01_0139__b11413855102710">scale</strong></p>
-<p id="cce_01_0139__p1534414486454">The <strong id="cce_01_0139__b16978914135514">scale</strong> command sets a new size for a resource by adjusting the number of resource replicas.</p>
-<pre class="screen" id="cce_01_0139__screen1934716172138">kubectl scale deployment deployname --replicas=newnumber</pre>
-<p id="cce_01_0139__p17344248154511"><strong id="cce_01_0139__b199411058152713">autoscale</strong></p>
-<p id="cce_01_0139__p1734413487452">The <strong id="cce_01_0139__b18906183515615">autoscale</strong> command automatically chooses and sets the number of pods. This command specifies the range for the number of pod replicas maintained by a replication controller. If there are too many pods, the replication controller terminates the extra pods. If there is too few, the replication controller starts more pods.</p>
-<pre class="screen" id="cce_01_0139__screen116796244133">kubectl autoscale deployment deployname --min=minnumber --max=maxnumber</pre>
-</div>
-<div class="section" id="cce_01_0139__section286451412289"><h4 class="sectiontitle">Cluster Management Commands</h4><p id="cce_01_0139__p11344184817455"><strong id="cce_01_0139__b54239395281">cordon, drain, uncordon*</strong></p>
-<p id="cce_01_0139__p43441048164511">If a node to be upgraded is running many pods or is already down, perform the following steps to prepare the node for maintenance:</p>
-<ol id="cce_01_0139__ol3117639161319"><li id="cce_01_0139__li8117439141311"><span>Run the <strong id="cce_01_0139__b1355111207111">cordon</strong> command to mark a node as unschedulable. This means that new pods will not be scheduled onto the node.</span><p><pre class="screen" id="cce_01_0139__screen7656150121420">kubectl cordon nodename</pre>
-<p id="cce_01_0139__p8609160115119">Note: In CCE, <strong id="cce_01_0139__b168667167394">nodename</strong> indicates the private network IP address of a node.</p>
-</p></li><li id="cce_01_0139__li1269134914131"><span>Run the <strong id="cce_01_0139__b3582706132">drain</strong> command to smoothly migrate the running pods from the node to another node.</span><p><pre class="screen" id="cce_01_0139__screen12837101818151">kubectl drain nodename --ignore-daemonsets --ignore-emptydir</pre>
-<p id="cce_01_0139__p24325274514"><strong id="cce_01_0139__b15160152232816">ignore-emptydir</strong> ignores the pods that use emptyDirs.</p>
-</p></li><li id="cce_01_0139__li12974797153"><span>Perform maintenance operations on the node, such as upgrading the kernel and upgrading Docker.</span></li><li id="cce_01_0139__li662181315152"><span>After node maintenance is completed, run the <strong id="cce_01_0139__b1012917165140">uncordon</strong> command to mark the node as schedulable.</span><p><pre class="screen" id="cce_01_0139__screen17103172314158">kubectl uncordon nodename</pre>
-</p></li></ol>
-<p id="cce_01_0139__p1345174824516"><strong id="cce_01_0139__b254919535280">cluster-info</strong></p>
-<p id="cce_01_0139__p143453481455">To display the add-ons running in the cluster:</p>
-<pre class="screen" id="cce_01_0139__screen17857174361513">kubectl cluster-info</pre>
-<p id="cce_01_0139__p1212245371512">To dump current cluster information to stdout:</p>
-<pre class="screen" id="cce_01_0139__screen179428116161">kubectl cluster-info dump</pre>
-<p id="cce_01_0139__p934517488459"><strong id="cce_01_0139__b150610162914">top*</strong></p>
-<p id="cce_01_0139__p23451648144514">The <strong id="cce_01_0139__b04351555209">top</strong> command displays resource (CPU/memory/storage) usage. This command requires Heapster to be correctly configured and working on the server.</p>
-<p id="cce_01_0139__p53452481451"><strong id="cce_01_0139__b53591447299">taint*</strong></p>
-<p id="cce_01_0139__p6346144864512">The <strong id="cce_01_0139__b2420223016">taint</strong> command updates the taints on one or more nodes.</p>
-<p id="cce_01_0139__p1234644834518"><strong id="cce_01_0139__b8675144294">certificate*</strong></p>
-<p id="cce_01_0139__p83461048174518">The <strong id="cce_01_0139__b106839271401">certificate</strong> command modifies the certificate resources.</p>
-</div>
-<div class="section" id="cce_01_0139__section2283324202914"><h4 class="sectiontitle">Fault Diagnosis and Debugging Commands</h4><p id="cce_01_0139__p234664874513"><strong id="cce_01_0139__b8357150162917">describe</strong></p>
-<p id="cce_01_0139__p534684819457">The <strong id="cce_01_0139__b144033331416">describe</strong> command is similar to the <strong id="cce_01_0139__b139254431110">get</strong> command. The difference is that the <strong id="cce_01_0139__b26831211522">describe</strong> command shows details of a specific resource or group of resources, whereas the <strong id="cce_01_0139__b465825917120">get</strong> command lists one or more resources in a cluster. The <strong id="cce_01_0139__b579384314410">describe</strong> command does not support the <strong id="cce_01_0139__b68735511416">-o</strong> flag. For resources of the same type, resource details are printed out in the same format.</p>
-<div class="note" id="cce_01_0139__note111601920122211"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0139__p1216122011221">If the information about a resource is queried, you can use the get command to obtain more detailed information. If you want to check the status of a specific resource, for example, to check if a pod is in the running state, run the <strong id="cce_01_0139__b497301210912">describe</strong> command to show more detailed status information.</p>
-<pre class="screen" id="cce_01_0139__screen16869135102217">kubectl describe po &lt;podname&gt;</pre>
-</div></div>
-<p id="cce_01_0139__p4346144834517"><strong id="cce_01_0139__b128511567292">logs</strong></p>
-<p id="cce_01_0139__p11346194814517">The <strong id="cce_01_0139__b7474205516107">logs</strong> command prints logs for a container in a pod or specified resource to stdout. To display logs in the <strong id="cce_01_0139__b142047175111">tail -f</strong> mode, run this command with the <strong id="cce_01_0139__b965701416142">-f</strong> flag.</p>
-<pre class="screen" id="cce_01_0139__screen15341952102212">kubectl logs -f podname</pre>
-<p id="cce_01_0139__p33467483453"><strong id="cce_01_0139__b2028510316301">exec</strong></p>
-<p id="cce_01_0139__p1134664817451">The kubectl <strong id="cce_01_0139__b11500659141913">exec</strong> command is similar to the Docker <strong id="cce_01_0139__b1614215538204">exec</strong> command and executes a command in a container. If there are multiple containers in a pod, use the <strong id="cce_01_0139__b2069942510211">-c</strong> flag to choose a container.</p>
-<pre class="screen" id="cce_01_0139__screen15587165810223">kubectl exec -it podname bash
-kubectl exec -it podname -c containername bash</pre>
-<p id="cce_01_0139__p4347194854514"><strong id="cce_01_0139__b16126181243011">port-forward*</strong></p>
-<p id="cce_01_0139__p183471548154513">The <strong id="cce_01_0139__b931432813149">port-forward</strong> command forwards one or more local ports to a pod.</p>
-<p id="cce_01_0139__p36371838131716">Example:</p>
-<p id="cce_01_0139__p86434115234">To listen on ports 5000 and 6000 locally, forwarding data to/from ports 5000 and 6000 in the pod:</p>
-<pre class="screen" id="cce_01_0139__screen285822318234">kubectl port -forward podname 5000:6000</pre>
-<p id="cce_01_0139__p12347194813457"><strong id="cce_01_0139__b20240101913301">proxy*</strong></p>
-<p id="cce_01_0139__p1034734854518">The <strong id="cce_01_0139__b76391831171616">proxy</strong> command creates a proxy server between localhost and the Kubernetes API server.</p>
-<p id="cce_01_0139__p7970235189">Example:</p>
-<p id="cce_01_0139__p116474263214">To enable the HTTP REST APIs on the master node:</p>
-<pre class="screen" id="cce_01_0139__screen189111563327">kubectl proxy -accept-hosts= '.*' -port=8001 -address= '0.0.0.0'</pre>
-<p id="cce_01_0139__p1834724810454"><strong id="cce_01_0139__b1297332103020">cp</strong></p>
-<p id="cce_01_0139__p11347154884513">The <strong id="cce_01_0139__b476513116225">cp</strong> command copies files and directories to and from containers.</p>
-<pre class="screen" id="cce_01_0139__screen15511838113316">cp filename newfilename</pre>
-<p id="cce_01_0139__p1534754814453"><strong id="cce_01_0139__b995522316302">auth*</strong></p>
-<p id="cce_01_0139__p1234754814452">The <strong id="cce_01_0139__b876982682315">auth</strong> command inspects authorization.</p>
-<p id="cce_01_0139__p123471748194518"><strong id="cce_01_0139__b17722226103016">attach*</strong></p>
-<p id="cce_01_0139__p334844813455">The <strong id="cce_01_0139__b88861447172416">attach</strong> command is similar to the <strong id="cce_01_0139__b17455145615244">logs -f</strong> command and attaches to a process that is already running inside an existing container. To exit, run the <strong id="cce_01_0139__b2011412652516">ctrl-c</strong> command. If a pod contains multiple containers, to view the output of a specific container, use the <strong id="cce_01_0139__b91321356194617">-c</strong> flag and <em id="cce_01_0139__i171381456184614">containername</em> following <em id="cce_01_0139__i13140556114617">podname</em> to specify a container.</p>
-<pre class="screen" id="cce_01_0139__screen42001347183320">kubectl attach podname -c containername</pre>
-</div>
-<div class="section" id="cce_01_0139__section1870143812302"><h4 class="sectiontitle">Advanced Commands</h4><p id="cce_01_0139__p1634824894515"><strong id="cce_01_0139__b8307106183119">replace</strong></p>
-<p id="cce_01_0139__p9348104874513">The <strong id="cce_01_0139__b173321727192712">replace</strong> command updates or replaces an existing resource by attributes including the number of replicas, labels, image versions, and ports. You can directly modify the original YAML file and then run the <strong id="cce_01_0139__b169312551295">replace</strong> command.</p>
-<pre class="screen" id="cce_01_0139__screen819993333510">kubectl replace -f filename</pre>
-<div class="notice" id="cce_01_0139__note10339910193519"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0139__p133911104351">Resource names cannot be updated.</p>
-</div></div>
-<p id="cce_01_0139__p17348134894517"><strong id="cce_01_0139__b1687517815316">apply*</strong></p>
-<p id="cce_01_0139__p19348174824514">The <strong id="cce_01_0139__b1921172612543">apply</strong> command provides a more strict control on resource updating than <strong id="cce_01_0139__b12982204475517">patch</strong> and <strong id="cce_01_0139__b16365194710554">edit</strong> commands. The <strong id="cce_01_0139__b165890325617">apply</strong> command applies a configuration to a resource and maintains a set of configuration files in source control. Whenever there is an update, the configuration file is pushed to the server, and then the kubectl <strong id="cce_01_0139__b3271623145917">apply</strong> command applies the latest configuration to the resource. The Kubernetes compares the new configuration file with the original one and updates only the changed configuration instead of the whole file. The configuration that is not contained in the <strong id="cce_01_0139__b20182121210106">-f</strong> flag will remain unchanged. Unlike the <strong id="cce_01_0139__b1230317108526">replace</strong> command which deletes the resource and creates a new one, the <strong id="cce_01_0139__b133041210175212">apply</strong> command directly updates the original resource. Similar to the git operation, the <strong id="cce_01_0139__b1586387101315">apply</strong> command adds an annotation to the resource to mark the current apply.</p>
-<pre class="screen" id="cce_01_0139__screen2875112953610">kubectl apply -f</pre>
-<p id="cce_01_0139__p23488489456"><strong id="cce_01_0139__b1122801693111">patch</strong></p>
-<p id="cce_01_0139__p1234884824518">If you want to modify attributes of a running container without first deleting the container or using the <strong id="cce_01_0139__b116294617221">replace</strong> command, the <strong id="cce_01_0139__b11555328102214">patch</strong> command is to the rescue. The <strong id="cce_01_0139__b9307161152315">patch</strong> command updates field(s) of a resource using strategic merge patch, a JSON merge patch, or a JSON patch. For example, to change a pod label from <strong id="cce_01_0139__b1895214246257">app=nginx1</strong> to <strong id="cce_01_0139__b8964637172517">app=nginx2</strong> while the pod is running, use the following command:</p>
-<pre class="screen" id="cce_01_0139__screen1221510164217">kubectl patch pod podname -p '{"metadata":{"labels":{"app":"nginx2"}}}'</pre>
-<p id="cce_01_0139__p63481348194515"><strong id="cce_01_0139__b9909151863112">convent*</strong></p>
-<p id="cce_01_0139__p113487480453">The <strong id="cce_01_0139__b177275156276">convert</strong> command converts configuration files between different API versions.</p>
-</div>
-<div class="section" id="cce_01_0139__section20145838123111"><h4 class="sectiontitle">Configuration Commands</h4><p id="cce_01_0139__p1134815487451"><strong id="cce_01_0139__b64131342143114">label</strong></p>
-<p id="cce_01_0139__p9348174815456">The <strong id="cce_01_0139__b767811819289">label</strong> command update labels on a resource.</p>
-<pre class="screen" id="cce_01_0139__screen9251184104217">kubectl label pods my-pod new-label=newlabel</pre>
-<p id="cce_01_0139__p1034824818456"><strong id="cce_01_0139__b1958618447312">annotate</strong></p>
-<p id="cce_01_0139__p1434834813452">The <strong id="cce_01_0139__b1474717235284">annotate</strong> command update annotations on a resource.</p>
-<pre class="screen" id="cce_01_0139__screen174421149124210">kubectl annotate pods my-pod icon-url=http://......</pre>
-<p id="cce_01_0139__p1034824894517"><strong id="cce_01_0139__b1977013463319">completion</strong></p>
-<p id="cce_01_0139__p934834814519">The <strong id="cce_01_0139__b1645035412920">completion</strong> command provides autocompletion for shell.</p>
-</div>
-<div class="section" id="cce_01_0139__section44619483210"><h4 class="sectiontitle">Other Commands</h4><p id="cce_01_0139__p1934818489454"><strong id="cce_01_0139__b98942073326">api-versions</strong></p>
-<p id="cce_01_0139__p16349348204511">The <strong id="cce_01_0139__b18303168362">api-versions</strong> command prints the supported API versions.</p>
-<pre class="screen" id="cce_01_0139__screen2098869104315">kubectl api-versions</pre>
-<p id="cce_01_0139__p173498489451"><strong id="cce_01_0139__b733991603218">api-resources</strong></p>
-<p id="cce_01_0139__p20349164804514">The <strong id="cce_01_0139__b1575004113617">api-resources</strong> command prints the supported API resources.</p>
-<pre class="screen" id="cce_01_0139__screen1235610198435">kubectl api-resources</pre>
-<p id="cce_01_0139__p17349174884518"><strong id="cce_01_0139__b1212102419329">config*</strong></p>
-<p id="cce_01_0139__p1534924814458">The <strong id="cce_01_0139__b1562123913534">config</strong> command modifies kubeconfig files. An example use case of this command is to configure authentication information in API calls.</p>
-<p id="cce_01_0139__p53491548134510"><strong id="cce_01_0139__b18618126113215">help</strong></p>
-<p id="cce_01_0139__p16349144812453">The <strong id="cce_01_0139__b282961194014">help</strong> command gets all command references.</p>
-<p id="cce_01_0139__p33491748124516"><strong id="cce_01_0139__b926911347327">version</strong></p>
-<p id="cce_01_0139__p18349104815452">The <strong id="cce_01_0139__b1116612487406">version</strong> command prints the client and server version information for the current context.</p>
-<pre class="screen" id="cce_01_0139__screen2658133912434">kubectl version</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0140.html">Using kubectl to Run a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0141.html b/docs/cce/umn/cce_01_0141.html
deleted file mode 100644
index 8ee6eb75..00000000
--- a/docs/cce/umn/cce_01_0141.html
+++ /dev/null
@@ -1,37 +0,0 @@
-<a name="cce_01_0141"></a><a name="cce_01_0141"></a>
-
-<h1 class="topictitle1">gpu-beta</h1>
-<div id="body1552976392137"><div class="section" id="cce_01_0141__section26181722164712"><h4 class="sectiontitle">Introduction</h4><p id="cce_01_0141__p12273103844718">gpu-beta is a device management add-on that supports GPUs in containers. It supports only NVIDIA Tesla drivers.</p>
-</div>
-<div class="section" id="cce_01_0141__section3200193614201"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0141__ul1815672612156"><li id="cce_01_0141__li459584913435">This add-on is available only in certain regions.</li><li id="cce_01_0141__li3655105617213">This add-on can be installed only in CCE clusters of v1.11 or later.</li><li id="cce_01_0141__li0156192610158">If GPU nodes are used in the cluster, the gpu-beta add-on must be installed.</li><li id="cce_01_0141__li1715622613151">The driver to be downloaded must be a <span class="uicontrol" id="cce_01_0141__uicontrol113611965581"><b>.run</b></span> file.</li><li id="cce_01_0141__li8619191610138">Only Tesla drivers are supported, not GRID drivers.</li></ul>
-<div class="notice" id="cce_01_0141__note220133618206"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0141__ul1920193611205"><li id="cce_01_0141__li220119364209">If the download link is a public network address, for example, <strong id="cce_01_0141__b77556127147">https://us.download.nvidia.com/tesla/396.37/NVIDIA-Linux-x86_64-396.37.run</strong>, bind an EIP to each GPU node. For details about how to obtain the driver link, see <a href="#cce_01_0141__section95451728192112">Obtaining the Driver Link from Public Network</a>.</li><li id="cce_01_0141__li22018369202">If the download link is an OBS URL, you do not need to bind an EIP to GPU nodes. </li><li id="cce_01_0141__li14201161518519">Ensure that the NVIDIA driver version matches the GPU node.</li><li id="cce_01_0141__li939516541710">After the driver version is changed, restart the node for the change to take effect.</li></ul>
-</div></div>
-</div>
-<div class="section" id="cce_01_0141__section14115341020"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_01_0141__ol2011434603"><li id="cce_01_0141__li6116341702"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0141__b84235270694236">Add-ons</strong>. On the <strong id="cce_01_0141__b572212432193">Add-on Marketplace</strong> tab page, click <strong id="cce_01_0141__b147319406197">Install Add-on</strong> under <strong id="cce_01_0141__b062763761916">gpu-beta</strong>.</span></li><li id="cce_01_0141__li4114344017"><span>On the <strong id="cce_01_0141__b522141019351">Install Add-on</strong> page, select the cluster and the add-on version, and click <strong id="cce_01_0141__b132232102355">Next: Configuration</strong>.</span></li><li id="cce_01_0141__li106052232247"><span>In the <strong id="cce_01_0141__b534563115813">Configuration</strong> step, enter the link to download the NVIDIA driver.</span></li><li id="cce_01_0141__li151113411011"><span>Click <strong id="cce_01_0141__b1543017210355">Install</strong>.</span><p><p id="cce_01_0141__p19115341101">After the add-on is installed, click <strong id="cce_01_0141__b1975712493454">Go Back to Previous Page</strong>. On the <strong id="cce_01_0141__b4758949204510">Add-on Instance</strong> tab page, select the corresponding cluster to view the running instance. This indicates that the add-on has been installed on each GPU node in the cluster.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0141__section15453625161119"><h4 class="sectiontitle">Verifying the Add-on</h4><p id="cce_01_0141__en-us_topic_0000001199501152_p11651969198">After the add-on is installed, run the <strong id="cce_01_0141__en-us_topic_0000001199501152_b15607172112119">nvidia-smi</strong> command on the GPU node and the container that schedules GPU resources to verify the availability of the GPU device and driver.</p>
-<div class="p" id="cce_01_0141__en-us_topic_0000001199501152_p278259161219">GPU node:<pre class="screen" id="cce_01_0141__en-us_topic_0000001199501152_screen186511167197">cd /opt/cloud/cce/nvidia/bin &amp;&amp; ./nvidia-smi</pre>
-</div>
-<p id="cce_01_0141__en-us_topic_0000001199501152_p1428853218123">Container:</p>
-<pre class="screen" id="cce_01_0141__en-us_topic_0000001199501152_screen11900202601214">cd /usr/local/nvidia/bin &amp;&amp; ./nvidia-smi</pre>
-<p id="cce_01_0141__en-us_topic_0000001199501152_p7254950101912">If GPU information is returned, the device is available and the add-on is successfully installed.</p>
-<p id="cce_01_0141__en-us_topic_0000001199501152_p78452015208"><span><img id="cce_01_0141__en-us_topic_0000001199501152_image5372171217135" src="en-us_image_0000001238225460.png"></span></p>
-</div>
-<div class="section" id="cce_01_0141__section95451728192112"><a name="cce_01_0141__section95451728192112"></a><a name="section95451728192112"></a><h4 class="sectiontitle">Obtaining the Driver Link from Public Network</h4><ol id="cce_01_0141__ol1138125974915"><li id="cce_01_0141__li19138125912498"><span>Log in to the CCE console.</span></li><li id="cce_01_0141__li111387599493"><span>Click <strong id="cce_01_0141__b78831824063">Create Node</strong> and select the GPU node to be created in the <strong id="cce_01_0141__b34151217012">Specifications</strong> area. The GPU card model of the node is displayed in the lower part of the page.</span></li></ol><ol start="3" id="cce_01_0141__ol195031456154814"><li id="cce_01_0141__li165032056184815"><span>Visit <em id="cce_01_0141__i2070996145418"><a href="https://www.nvidia.com/Download/Find.aspx?lang=en" target="_blank" rel="noopener noreferrer">https://www.nvidia.com/Download/Find.aspx?lang=en</a></em>.</span></li><li id="cce_01_0141__li16232124410505"><span>Select the driver information on the <span class="uicontrol" id="cce_01_0141__uicontrol1291212498541"><b>NVIDIA Driver Downloads</b></span> page, as shown in <a href="#cce_01_0141__fig11696366517">Figure 1</a>. <span class="uicontrol" id="cce_01_0141__uicontrol1650164444518"><b>Operating System</b></span> must be <strong id="cce_01_0141__b10981947121910">Linux 64-bit</strong>.</span><p><div class="fignone" id="cce_01_0141__fig11696366517"><a name="cce_01_0141__fig11696366517"></a><a name="fig11696366517"></a><span class="figcap"><b>Figure 1 </b>Setting parameters</span><br><span><img id="cce_01_0141__image1825218197117" src="en-us_image_0000001280466745.png"></span></div>
-</p></li><li id="cce_01_0141__li1682301014493"><span>After confirming the driver information, click <span class="uicontrol" id="cce_01_0141__uicontrol1411775314551"><b>SEARCH</b></span>. A page is displayed, showing the driver information, as shown in <a href="#cce_01_0141__fig7873421145213">Figure 2</a>. Click <span class="uicontrol" id="cce_01_0141__uicontrol163131533185618"><b>DOWNLOAD</b></span>.</span><p><div class="fignone" id="cce_01_0141__fig7873421145213"><a name="cce_01_0141__fig7873421145213"></a><a name="fig7873421145213"></a><span class="figcap"><b>Figure 2 </b>Driver information</span><br><span><img id="cce_01_0141__image136971142068" src="en-us_image_0181616313.png"></span></div>
-</p></li><li id="cce_01_0141__li624514474513"><span>Obtain the driver link in either of the following ways:</span><p><ul id="cce_01_0141__ul18225815213"><li id="cce_01_0141__li68351817115313">Method 1: As shown in <a href="#cce_01_0141__fig5901194614534">Figure 3</a>, find <em id="cce_01_0141__i964302410817">url=/tesla/396.37/NVIDIA-Linux-x86_64-396.37.run</em> in the browser address box. Then, supplement it to obtain the driver link <a href="https://us.download.nvidia.com/tesla/396.37/NVIDIA-Linux-x86_64-396.37.run" target="_blank" rel="noopener noreferrer">https://us.download.nvidia.com/tesla/396.37/NVIDIA-Linux-x86_64-396.37.run</a>. By using this method, you must bind an EIP to each GPU node.</li><li id="cce_01_0141__li193423205231">Method 2: As shown in <a href="#cce_01_0141__fig5901194614534">Figure 3</a>, click <span class="uicontrol" id="cce_01_0141__uicontrol1435254915542"><b>AGREE &amp; DOWNLOAD</b></span> to download the driver. Then, upload the driver to OBS and record the OBS URL. By using this method, you do not need to bind an EIP to GPU nodes.<div class="fignone" id="cce_01_0141__fig5901194614534"><a name="cce_01_0141__fig5901194614534"></a><a name="fig5901194614534"></a><span class="figcap"><b>Figure 3 </b>Obtaining the link</span><br><span><img id="cce_01_0141__image18667163912910" src="en-us_image_0181616314.png"></span></div>
-</li></ul>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0141__section5548228142111"><h4 class="sectiontitle">Uninstalling the Add-on</h4><ol id="cce_01_0141__ol4226878410"><li id="cce_01_0141__li132261171546"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0141__b12766173312253">Add-ons</strong>. On the <strong id="cce_01_0141__b921375513251">Add-on Instance</strong> tab page, select the cluster and click <strong id="cce_01_0141__b1300141524114">Uninstall</strong> under <strong id="cce_01_0141__b19179719124117">gpu-beta</strong>.</span></li><li id="cce_01_0141__li1929114338417"><span>In the dialog box displayed, click <strong id="cce_01_0141__b1227714261323">Yes</strong> to uninstall the add-on.</span><p><div class="note" id="cce_01_0141__note4647453595"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0141__p206472525915">The driver will not be uninstalled during gpu-beta add-on uninstall. If the driver is reinstalled, you must restart all GPU nodes.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0064.html">Add-ons</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0142.html b/docs/cce/umn/cce_01_0142.html
deleted file mode 100644
index fcc48061..00000000
--- a/docs/cce/umn/cce_01_0142.html
+++ /dev/null
@@ -1,151 +0,0 @@
-<a name="cce_01_0142"></a><a name="cce_01_0142"></a>
-
-<h1 class="topictitle1">NodePort</h1>
-<div id="body1553224785332"><div class="section" id="cce_01_0142__section13654155944916"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0142__p028915126124">A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By requesting &lt;NodeIP&gt;:&lt;NodePort&gt;, you can access a NodePort Service from outside the cluster.</p>
-<div class="fignone" id="cce_01_0142__fig6819133414131"><span class="figcap"><b>Figure 1 </b>NodePort access</span><br><span><img id="cce_01_0142__image10510139711" src="en-us_image_0000001163847995.png"></span></div>
-</div>
-<div class="section" id="cce_01_0142__section8501151104219"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0142__ul1685519569431"><li id="cce_01_0142__li1585575616436">By default, a NodePort Service is accessed within a VPC. If you need to use an EIP to access a NodePort Service through public networks, bind an EIP to the node in the cluster in advance.</li><li id="cce_01_0142__li128551156114310">After a Service is created, if the <a href="#cce_01_0142__li195904442002">affinity setting</a> is switched from the cluster level to the node level, the connection tracing table will not be cleared. You are advised not to modify the Service affinity setting after the Service is created. If you need to modify it, create a Service again.</li><li id="cce_01_0142__li18957120183511">The service port of a NodePort Service created on the CCE console is the same as the configured container port. </li><li id="cce_01_0142__li62831358182017">CCE Turbo clusters support only cluster-level service affinity.</li></ul>
-</div>
-<div class="section" id="cce_01_0142__section8124108325"><h4 class="sectiontitle">Adding a Service When Creating a Workload</h4><p id="cce_01_0142__p17198172816499">You can set the access type when creating a <span class="keyword" id="cce_01_0142__keyword4941141511912">workload</span> on the CCE console. An Nginx workload is used as an example.</p>
-<ol id="cce_01_0142__ol361813335611"><li id="cce_01_0142__li4618033165"><span>In the <strong id="cce_01_0142__b178921361284">Set Application Access</strong> step of <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0216.html">Creating a DaemonSet</a>, click <strong id="cce_01_0142__b4893964289">Add Service</strong> and set the following parameters:</span><p><ul id="cce_01_0142__ul4309141961920"><li id="cce_01_0142__li539284914410"><strong id="cce_01_0142__b192920211848">Access Type</strong>: Select <span class="uicontrol" id="cce_01_0142__uicontrol17642174616583"><b>NodePort</b></span>.<div class="note" id="cce_01_0142__note636472415330"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0142__p736582413336">If you want to use an EIP to access a NodePort Service through public networks, bind an EIP to the node in the cluster in advance.</p>
-</div></div>
-</li><li id="cce_01_0142__li1530917191197"><strong id="cce_01_0142__b961152612177">Service Name</strong>: Specify a Service name, which can be the same as the workload name.</li><li id="cce_01_0142__li195904442002"><a name="cce_01_0142__li195904442002"></a><a name="li195904442002"></a><strong id="cce_01_0142__b17364209372">Service Affinity</strong>: For details, see <a href="#cce_01_0142__section18134208069">externalTrafficPolicy (Service Affinity)</a>.<ul id="cce_01_0142__ul10852651217"><li id="cce_01_0142__li17623100818">Cluster level: The IP addresses and access ports of all nodes in a cluster can access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_01_0142__li54538251119">Node level: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
-</li><li id="cce_01_0142__li114654154513"><strong id="cce_01_0142__b451552415715">Port Settings</strong><ul id="cce_01_0142__ul813134164616"><li id="cce_01_0142__li25671638123413"><strong id="cce_01_0142__b786775717113">Protocol</strong>: protocol used by the Service.</li><li id="cce_01_0142__li142471635131918"><strong id="cce_01_0142__b825972919345">Container Port</strong>: port on which the workload in the container image listens. The value ranges from 1 to 65535.</li><li id="cce_01_0142__li71207152616"><strong id="cce_01_0142__b458649161618">Access Port</strong>: node port (with a private IP address) to which the container port will be mapped. You are advised to select <span class="uicontrol" id="cce_01_0142__uicontrol51741240125215"><b>Automatically generated</b></span>.<ul id="cce_01_0142__ul96578457532"><li id="cce_01_0142__li16657114512534"><strong id="cce_01_0142__b718356800154053">Automatically generated</strong>: The system automatically assigns a port number.</li><li id="cce_01_0142__li066574535311"><strong id="cce_01_0142__b1198329623154057">Specified port</strong>: You have to manually specify a fixed node port number in the range of 30000–32767. Ensure that the port is unique in a cluster.</li></ul>
-</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0142__li8417559410"><span>After the configuration is complete, click <strong id="cce_01_0142__b048919033016">OK</strong>.</span></li><li id="cce_01_0142__li196461348133512"><span>Click <strong id="cce_01_0142__b566215414249">Next: Configure Advanced Settings</strong>. On the page displayed, click <strong id="cce_01_0142__b1766215412418">Create</strong>.</span></li><li id="cce_01_0142__li13702330143312"><span>Click <strong id="cce_01_0142__b207933389515845">View Deployment Details</strong> or <strong id="cce_01_0142__b3400117104915">View StatefulSet Details</strong>. On the <strong id="cce_01_0142__b3754141114464">Services</strong> tab page, obtain the access address, for example, 192.168.0.160:30358.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0142__section41290043210"><h4 class="sectiontitle">Adding a Service After Creating a Workload</h4><p id="cce_01_0142__p137175242248">You can set the Service after creating a workload. This has no impact on the workload status and takes effect immediately. The procedure is as follows:</p>
-<ol id="cce_01_0142__ol1321170617144"><li id="cce_01_0142__li836916478329"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0142__b556213884711">Workloads</strong> &gt; <strong id="cce_01_0142__b5568193874714">Deployments</strong>. On the workload list, click the name of the workload for which you will create a Service.</span><p><div class="note" id="cce_01_0142__note10173183584417"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0142__p1417483519445">If the Service is associated with an ingress, the ingress is unavailable after the port information of the Service is updated. In this case, you need to delete and recreate the Service.</p>
-</div></div>
-</p></li><li id="cce_01_0142__li1098418404391"><span>On the <strong id="cce_01_0142__b16681317144016">Services</strong> tab page, click <strong id="cce_01_0142__b167421724012">Add Service</strong>.</span></li><li id="cce_01_0142__li3476651017144"><span>On the <span class="uicontrol" id="cce_01_0142__uicontrol9909154910"><b>Create Service</b></span> page, select <span class="uicontrol" id="cce_01_0142__uicontrol191469184918"><b>NodePort</b></span> from the <strong id="cce_01_0142__b111789194912">Access Type</strong> drop-down list.</span><p><div class="note" id="cce_01_0142__note77091538123416"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0142__p15709238143415">If you want to use an EIP to access a NodePort Service through public networks, bind an EIP to the node in the cluster in advance.</p>
-</div></div>
-</p></li><li id="cce_01_0142__li7483133154912"><span>Set node access parameters.</span><p><ul id="cce_01_0142__ul148318317494"><li id="cce_01_0142__li154821035494"><strong id="cce_01_0142__b1994016209334">Service Name</strong>: Service name, which can be the same as the workload name.</li><li id="cce_01_0142__li04821137496"><strong id="cce_01_0142__b46545118508">Cluster Name</strong>: name of the cluster where the workload runs. The value is inherited from the workload creation page and cannot be changed.</li><li id="cce_01_0142__li54828354916"><strong id="cce_01_0142__b17381182917507">Namespace</strong>: namespace where the workload is located. The value is inherited from the workload creation page and cannot be changed.</li><li id="cce_01_0142__li74827318497"><strong id="cce_01_0142__b128892347503">Workload</strong>: workload for which you want to add a Service. The value is inherited from the workload creation page and cannot be changed.</li><li id="cce_01_0142__li648212344912"><strong id="cce_01_0142__b03683382502">Service Affinity</strong><ul id="cce_01_0142__ul17482333495"><li id="cce_01_0142__li173371655105315">Cluster level: The IP addresses and access ports of all nodes in a cluster can access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_01_0142__li17337255175313">Node level: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
-</li><li id="cce_01_0142__li648316374916"><strong id="cce_01_0142__b442613840">Port Settings</strong><ul id="cce_01_0142__ul18483153154910"><li id="cce_01_0142__li448213310494"><strong id="cce_01_0142__b4572173932912">Protocol</strong>: protocol used by the Service.</li><li id="cce_01_0142__li184821636497"><strong id="cce_01_0142__b827497039152537">Container Port</strong>: port on which the workload in the container image listens. The Nginx workload listens on port 80.</li><li id="cce_01_0142__li13483133134913"><strong id="cce_01_0142__b14613161015519">Access Port</strong>: node port (with a private IP address) to which the container port will be mapped. You are advised to select <span class="uicontrol" id="cce_01_0142__uicontrol661861014518"><b>Automatically generated</b></span>.<ul id="cce_01_0142__ul64831130494"><li id="cce_01_0142__li5483123124918"><strong id="cce_01_0142__b577630403">Automatically generated</strong>: The system automatically assigns a port number.</li><li id="cce_01_0142__li04832316498"><strong id="cce_01_0142__b1572924395">Specified port</strong>: You have to manually specify a fixed node port number in the range of 30000–32767. Ensure that the port is unique in a cluster.</li></ul>
-</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0142__li5563226917144"><span>Click <strong id="cce_01_0142__b2118465420154318">Create</strong>. A NodePort Service will be added for the workload.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0142__section7114174773118"><a name="cce_01_0142__section7114174773118"></a><a name="section7114174773118"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0142__p1626583075113">You can run kubectl commands to set the access type. This section uses a Nginx workload as an example to describe how to set a NodePort Service using kubectl.</p>
-<ol id="cce_01_0142__ol19191171513118"><li id="cce_01_0142__li0425142612486"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0142__li1020013819415"><span>Create and edit the <strong id="cce_01_0142__b57121716129">nginx-deployment.yaml</strong> and <strong id="cce_01_0142__b671681616219">nginx-nodeport-svc.yaml</strong> files.</span><p><p id="cce_01_0142__p1855995413716">The file names are user-defined. <strong id="cce_01_0142__b5196112404214">nginx-deployment.yaml</strong> and <strong id="cce_01_0142__b22022813429">nginx-nodeport-svc.yaml</strong> are merely example file names.</p>
-<p id="cce_01_0142__p78476491679"><strong id="cce_01_0142__b084794920720">vi nginx-deployment.yaml</strong></p>
-<pre class="screen" id="cce_01_0142__screen5849104920720">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx:latest
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret</pre>
-<p id="cce_01_0142__p1084964910717"><strong id="cce_01_0142__b1849104912717">vi nginx-nodeport-svc.yaml</strong></p>
-<pre class="screen" id="cce_01_0142__screen1685020491272">apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app: nginx
-  name: nginx-nodeport
-spec:
-  ports:
-  - name: service
-    <span style="color:#FF0000;">nodePort</span>: 30000     # Node port. The value ranges from 30000 to 32767.
-    port: 8080          # Port for accessing a Service.
-    protocol: TCP       # Protocol used for accessing a Service. The value can be <strong id="cce_01_0142__b1792433432416">TCP</strong> or <strong id="cce_01_0142__b592514344249">UDP</strong>.
-    targetPort: 80      # Port used by a Service to access the target container. This port is closely related to the applications running in a container. In this example, the Nginx image uses port 80 by default.
-  selector:             # Label selector. A Service selects a pod based on the label and forwards the requests for accessing the Service to the pod. In this example, select the pod with the <strong id="cce_01_0142__b14236113762619">app:nginx</strong> label.
-    app: nginx
-  <span style="color:#FF0000;">type: NodePort        </span># Service type. <strong id="cce_01_0142__b10872172713288">NodePort</strong> indicates that the Service is accessed through a node port.</pre>
-</p></li><li id="cce_01_0142__li12194551184412"><span>Create a workload.</span><p><p id="cce_01_0142__p175719718459"><strong id="cce_01_0142__b692820516453">kubectl create -f nginx-deployment.yaml</strong></p>
-<p id="cce_01_0142__p15348127103514">If information similar to the following is displayed, the workload has been created.</p>
-<pre class="screen" id="cce_01_0142__screen1478417422342">deployment "nginx" created</pre>
-<p id="cce_01_0142__p10542111017457"><strong id="cce_01_0142__b8874010124511">kubectl get po</strong></p>
-<p id="cce_01_0142__p1528873633514">If information similar to the following is displayed, the workload is running.</p>
-<pre class="screen" id="cce_01_0142__screen184796131354">NAME                     READY     STATUS             RESTARTS   AGE
-<strong id="cce_01_0142__b128512503516">nginx-2601814895-qhxqv   1/1       Running            0          9s</strong></pre>
-</p></li><li id="cce_01_0142__li72314917413"><span>Create a Service.</span><p><p id="cce_01_0142__p410057205911"><strong id="cce_01_0142__b16534131413598">kubectl create -f nginx-nodeport-svc.yaml</strong></p>
-<p id="cce_01_0142__p82261925113913">If information similar to the following is displayed, the Service is being created.</p>
-<pre class="screen" id="cce_01_0142__screen206204581359">service "nginx-nodeport" created</pre>
-<p id="cce_01_0142__p1025119113593"><strong id="cce_01_0142__b1253721413598">kubectl get svc</strong></p>
-<p id="cce_01_0142__p16843163318393">If information similar to the following is displayed, the Service has been created.</p>
-<pre class="screen" id="cce_01_0142__screen250841013612"># kubectl get svc
-NAME             TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)          AGE
-kubernetes       ClusterIP   10.247.0.1     &lt;none&gt;        443/TCP          4d8h
-<span style="color:#FF0000;">nginx-nodeport   NodePort    10.247.30.40   </span><span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">none</span><span style="color:#FF0000;">&gt;</span><span style="color:#FF0000;">        8080:30000/TCP   18s</span></pre>
-</p></li><li id="cce_01_0142__li167017242"><span>Access the Service.</span><p><p id="cce_01_0142__p73871952103610">By default, a NodePort Service can be accessed by using <em id="cce_01_0142__i10803143503815">Any node IP address:Node port</em>.</p>
-<p id="cce_01_0142__p24297181193">The Service can be accessed from a node in another cluster in the same VPC or in another pod in the cluster. If a public IP address is bound to the node, you can also use the public IP address to access the Service. Create a container in the cluster and access the container by using <em id="cce_01_0142__i16687134818416">Node IP address:Node port</em>.</p>
-<pre class="screen" id="cce_01_0142__screen9180123572318"># kubectl get node -owide
-NAME           STATUS   ROLES    AGE    INTERNAL-IP    EXTERNAL-IP   OS-IMAGE                KERNEL-VERSION                CONTAINER-RUNTIME
-10.100.0.136   Ready    &lt;none&gt;   152m   <span style="color:#FF0000;">10.100.0.136</span>   &lt;none&gt;        CentOS Linux 7 (Core)   3.10.0-1160.25.1.el7.x86_64   docker://18.9.0
-10.100.0.5     Ready    &lt;none&gt;   152m   10.100.0.5     &lt;none&gt;        CentOS Linux 7 (Core)   3.10.0-1160.25.1.el7.x86_64   docker://18.9.0
-# kubectl run -i --tty --image nginx:alpine test --rm /bin/sh
-If you don't see a command prompt, try pressing enter.
-/ # <span style="color:#FF0000;">curl 10.100.0.136:30000</span>
-&lt;!DOCTYPE html&gt;
-&lt;html&gt;
-&lt;head&gt;
-&lt;title&gt;Welcome to nginx!&lt;/title&gt;
-&lt;style&gt;
-    body {
-        width: 35em;
-        margin: 0 auto;
-        font-family: Tahoma, Verdana, Arial, sans-serif;
-    }
-&lt;/style&gt;
-&lt;/head&gt;
-&lt;body&gt;
-&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
-&lt;p&gt;If you see this page, the nginx web server is successfully installed and
-working. Further configuration is required.&lt;/p&gt;
-
-&lt;p&gt;For online documentation and support please refer to
-&lt;a href="http://nginx.org/"&gt;nginx.org&lt;/a&gt;.&lt;br/&gt;
-Commercial support is available at
-&lt;a href="http://nginx.com/"&gt;nginx.com&lt;/a&gt;.&lt;/p&gt;
-
-&lt;p&gt;&lt;em&gt;Thank you for using nginx.&lt;/em&gt;&lt;/p&gt;
-&lt;/body&gt;
-&lt;/html&gt;
-/ # </pre>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0142__section18134208069"><a name="cce_01_0142__section18134208069"></a><a name="section18134208069"></a><h4 class="sectiontitle">externalTrafficPolicy (Service Affinity)</h4><p id="cce_01_0142__p18946934131010">For a NodePort Service, requests are first sent to the node port, then the Service, and finally the pod backing the Service. The backing pod may be not located in the node receiving the requests. By default, the backend workload can be accessed from any node IP address and service port. If the pod is not on the node that receives the request, the request will be redirected to the node where the pod is located, which may cause performance loss.</p>
-<p id="cce_01_0142__p2386121717715"><strong id="cce_01_0142__b186731558153819">externalTrafficPolicy</strong> is a configuration parameter of the Service.</p>
-<pre class="screen" id="cce_01_0142__screen65363425115">apiVersion: v1
-kind: Service
-metadata:
-  name: nginx-nodeport
-spec:
-  <span style="color:#FF0000;">externalTrafficPolicy: local</span>
-  ports:
-  - name: service
-    nodePort: 30000
-    port: 80
-    protocol: TCP
-    targetPort: 80
-  selector:
-    app: nginx
-  type: NodePort</pre>
-<p id="cce_01_0142__p2615113719446">If the value of <strong id="cce_01_0142__b79921018193916">externalTrafficPolicy</strong> is <strong id="cce_01_0142__b27741621173917">local</strong>, requests sent from <em id="cce_01_0142__i112585554614">Node IP address:Service port</em> will be forwarded only to the pod on the local node. If the node does not have a pod, the requests are suspended.</p>
-<p id="cce_01_0142__p11580142394711">The other value of <strong id="cce_01_0142__b181831519134511">externalTrafficPolicy</strong> is <strong id="cce_01_0142__b73116288451">cluster</strong> (default value), which indicates that requests are forwarded in a cluster.</p>
-<p id="cce_01_0142__p01553492491">You can set this parameter when creating a Service of the NodePort type on the CCE console.</p>
-<p id="cce_01_0142__p115951829125012"></p>
-<p id="cce_01_0142__p7531333185012">The values of <strong id="cce_01_0142__b3705640124010">externalTrafficPolicy</strong> are as follows:</p>
-<ul id="cce_01_0142__ul1768416591016"><li id="cce_01_0142__li1068419591905"><strong id="cce_01_0142__b14758175415401">cluster</strong>: The IP addresses and access ports of all nodes in a cluster can access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_01_0142__li126841959604"><strong id="cce_01_0142__b315119551434">local</strong>: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0247.html">Services</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0143.html b/docs/cce/umn/cce_01_0143.html
deleted file mode 100644
index 2fc7af47..00000000
--- a/docs/cce/umn/cce_01_0143.html
+++ /dev/null
@@ -1,21 +0,0 @@
-<a name="cce_01_0143"></a><a name="cce_01_0143"></a>
-
-<h1 class="topictitle1">My Charts</h1>
-<div id="body8662426"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0191.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0144.html">Preparing a Chart</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0145.html">Uploading a Chart</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0146.html">Creating a Workload from a Chart</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0019.html">Charts (Helm)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0144.html b/docs/cce/umn/cce_01_0144.html
deleted file mode 100644
index 509a9a85..00000000
--- a/docs/cce/umn/cce_01_0144.html
+++ /dev/null
@@ -1,81 +0,0 @@
-<a name="cce_01_0144"></a><a name="cce_01_0144"></a>
-
-<h1 class="topictitle1">Preparing a Chart</h1>
-<div id="body8662426"><p id="cce_01_0144__a8bd23b9ac7e840a2a0ce999d685c67f0">You can prepare a chart using one of the following methods:</p>
-<ul id="cce_01_0144__u635d2027fa194420877c615d19278852"><li id="cce_01_0144__lc8d809068b42405d87e41e706ad17705"><a href="#cce_01_0144__s84a75de063eb4fb29387e64d133b0da6">Customizing a Chart</a></li><li id="cce_01_0144__ld3317655799c4e72b50da8b323f1c90e"><a href="#cce_01_0144__s5f9699b10586401d81cfebd947cf416f">Using a Kubernetes Official Chart</a></li></ul>
-<div class="section" id="cce_01_0144__s84a75de063eb4fb29387e64d133b0da6"><a name="cce_01_0144__s84a75de063eb4fb29387e64d133b0da6"></a><a name="s84a75de063eb4fb29387e64d133b0da6"></a><h4 class="sectiontitle">Customizing a Chart</h4><ol id="cce_01_0144__od792512c57564a04985fa828dba56a0c"><li id="cce_01_0144__en-us_topic_0093297947_li18266200136"><span>Customize the content of a chart as required.</span><p><p id="cce_01_0144__a11bf11945cd7408e847699537bc8080b">For details about how to create a chart, see <a href="https://helm.sh/docs/chart_template_guide/getting_started/" target="_blank" rel="noopener noreferrer">https://helm.sh/docs/chart_template_guide/getting_started/</a>.</p>
-</p></li><li id="cce_01_0144__l4619a689746544638cb70576f66a1368"><span>Set the chart directory structure and name the chart based on the requirements defined in <a href="#cce_01_0144__s8af9336c49a44399865c7a0f3149d789">Chart Specifications</a>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0144__s5f9699b10586401d81cfebd947cf416f"><a name="cce_01_0144__s5f9699b10586401d81cfebd947cf416f"></a><a name="s5f9699b10586401d81cfebd947cf416f"></a><h4 class="sectiontitle">Using a <span class="keyword" id="cce_01_0144__keyword174342664113345">Kubernetes</span> <span class="keyword" id="cce_01_0144__keyword1817563782113348">Official Chart</span></h4><ol id="cce_01_0144__oc93ec2d0908d4105bcb7f498c7559e99"><li id="cce_01_0144__l6d35ccf85da74660b802f524cc9e3095"><a name="cce_01_0144__l6d35ccf85da74660b802f524cc9e3095"></a><a name="l6d35ccf85da74660b802f524cc9e3095"></a><span>Visit <a href="https://artifacthub.io/" target="_blank" rel="noopener noreferrer">https://artifacthub.io/</a> to obtain the required chart.</span></li><li id="cce_01_0144__l5710e09b690f4125b28096b0335b9103"><span>Log in to a Linux host.</span></li><li id="cce_01_0144__l3e88e98a0cdc485da68bcee09483ba7f"><span>Upload the chart obtained in <a href="#cce_01_0144__l6d35ccf85da74660b802f524cc9e3095">1</a>.</span></li><li id="cce_01_0144__l2c6951e953c24f4aa628d4f1995ea5b4"><span>Run the following command to compress the chart.</span><p><ul id="cce_01_0144__u4d80de97160841e0b379dee17107b611"><li id="cce_01_0144__l8b914f5b360b40ca93999bad66571231">If the Helm client is not installed on the <span class="keyword" id="cce_01_0144__keyword422913927113542">Linux</span> host, run the following command:<p id="cce_01_0144__a9a8c8baeef5d44d098713c6ddc8a6f04"><strong id="cce_01_0144__a8604a9420979441f9834497519cef8ce">tar pzcf {name}-{version}.tgz {name}/</strong></p>
-<p id="cce_01_0144__ab505f478771b4331888f8c0f4c2fdf8a">In the preceding command,</p>
-<p id="cce_01_0144__a9cac685265c6494cbb2b5b58bf006a43"><strong id="cce_01_0144__b842352706141011">{name}</strong> indicates the actual chart name.</p>
-<p id="cce_01_0144__a320585535efd407da0c0e1d9ab88c766"><strong id="cce_01_0144__b842352706141017">{version}</strong> indicates the actual chart version.</p>
-<div class="notice" id="cce_01_0144__note1568816717504"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0144__p26883775013">The values of {name} and {version} must be the same as the values of name and version in the <strong id="cce_01_0144__b43211047163213">Chart.yaml</strong> file in the chart.</p>
-</div></div>
-</li><li id="cce_01_0144__l13b4d82c56f74468a0bcf95d39281d02">If the Helm client is installed on the Linux host, run the following command:<p id="cce_01_0144__a909da0a49f0b465d975c7bd73a5334a8"><a name="cce_01_0144__l13b4d82c56f74468a0bcf95d39281d02"></a><a name="l13b4d82c56f74468a0bcf95d39281d02"></a><strong id="cce_01_0144__ac1b19441a89b494c9ec9226d9b6209c0">helm package {name}/</strong></p>
-<p id="cce_01_0144__a9f5f0d1e295144f98f8ca8fe5ac6adbe">In the preceding command, replace <strong id="cce_01_0144__b842352706141036">{name}</strong> with the actual chart name.</p>
-</li></ul>
-</p></li><li id="cce_01_0144__l76b2edaa56c8462e8f147ecd8c3d0901"><span>Set the chart directory structure and name the chart based on the requirements defined in <a href="#cce_01_0144__s8af9336c49a44399865c7a0f3149d789">Chart Specifications</a>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0144__s8af9336c49a44399865c7a0f3149d789"><a name="cce_01_0144__s8af9336c49a44399865c7a0f3149d789"></a><a name="s8af9336c49a44399865c7a0f3149d789"></a><h4 class="sectiontitle">Chart Specifications</h4><p id="cce_01_0144__ae35cf1371c384372a53831ad9a5867bc">This section uses the <span class="keyword" id="cce_01_0144__keyword193391675172953">redis</span> chart as an example to illustrate the chart specifications.</p>
-<ul id="cce_01_0144__u61613ff6acba4771b85a173e65d22d08"><li id="cce_01_0144__l2febdbc681f54657b510471ac521cb4b"><strong id="cce_01_0144__b1587326680113735">Naming Requirement</strong><p id="cce_01_0144__af4e74a182c6d4ee4a50adab03b548d89">A chart package is named in the format of <strong id="cce_01_0144__b113888518207">{name}-{version}</strong>.tgz, where <strong id="cce_01_0144__b427254102018">{version}</strong> indicates the version number in the format of <em id="cce_01_0144__i23122052215">Major version number</em>.<em id="cce_01_0144__i1169910113211">Minor version number</em>.<em id="cce_01_0144__i133621917182118">Revision number</em>, for example, <strong id="cce_01_0144__b318152372117">redis-0.4.2.tgz</strong>.</p>
-<div class="note" id="cce_01_0144__n2ee80d8590f7448582258578c77e6df7"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0144__p1745515402147">The chart name {name} can contain a maximum of 64 characters.</p>
-<p id="cce_01_0144__p1334123720425">The version number must comply with the <a href="https://semver.org/" target="_blank" rel="noopener noreferrer">semantic versioning</a> rules.</p>
-<ul id="cce_01_0144__u571d2aae91734921b260cd8464d5fe2a"><li id="cce_01_0144__l11bd9e6834214a2488c8720e943729c0">The main and minor version numbers are mandatory, and the revision number is optional.</li><li id="cce_01_0144__lffc8a18eaf564eb0a7e887d5c799dec1">The major and minor version numbers and revision number must be integers, greater than or equal to 0, and less than or equal to 99.</li></ul>
-</div></div>
-</li><li id="cce_01_0144__l3aa29b15cb4343c190873a90dac87df8"><strong id="cce_01_0144__b783995333114316">Directory Structure</strong><p id="cce_01_0144__a1388d65dfdb8499284c69806efa878c1">The directory structure of a chart is as follows:</p>
-<pre class="screen" id="cce_01_0144__s91732e9e769d478886cbff255a7a0d0b">redis/
-  templates/
-  values.yaml
-  README.md
-  Chart.yaml
-  .helmignore</pre>
-<div class="p" id="cce_01_0144__p10352172519482">As listed in <a href="#cce_01_0144__tb7d789a3467e4fe9b4385a51f3460321">Table 1</a>, the parameters marked with * are mandatory.
-<div class="tablenoborder"><a name="cce_01_0144__tb7d789a3467e4fe9b4385a51f3460321"></a><a name="tb7d789a3467e4fe9b4385a51f3460321"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0144__tb7d789a3467e4fe9b4385a51f3460321" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters in the directory structure of a chart</caption><thead align="left"><tr id="cce_01_0144__row6784152135012"><th align="left" class="cellrowborder" valign="top" width="22%" id="mcps1.3.5.3.2.4.2.2.3.1.1"><p id="cce_01_0144__p278413212502">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="78%" id="mcps1.3.5.3.2.4.2.2.3.1.2"><p id="cce_01_0144__p20784621115018">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0144__row37842210500"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.5.3.2.4.2.2.3.1.1 "><p id="cce_01_0144__p1278432119504">* templates</p>
-</td>
-<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.5.3.2.4.2.2.3.1.2 "><p id="cce_01_0144__p478412213502">Stores all templates.</p>
-</td>
-</tr>
-<tr id="cce_01_0144__row147841721185017"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.5.3.2.4.2.2.3.1.1 "><p id="cce_01_0144__p14784172119501">* values.yaml</p>
-</td>
-<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.5.3.2.4.2.2.3.1.2 "><p id="cce_01_0144__p1678472115013">Describes configuration parameters required by templates.</p>
-<div class="notice" id="cce_01_0144__note11415171194911"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0144__p394216481648">Make sure that the image address set in the <strong id="cce_01_0144__b84245074610">values.yaml</strong> file is the same as the image address in the container image repository. Otherwise, an exception occurs when you create a workload, and the system displays a message indicating that the image fails to be pulled.</p>
-<p id="cce_01_0144__p04177113498">To obtain the image address, perform the following operations: Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0144__b459163535519">Image Repository</strong> to access the SWR console. Choose <strong id="cce_01_0144__b6154105316323">My Images</strong> &gt; <strong id="cce_01_0144__b179395587325">Private Images</strong> and click the name of the uploaded image. On the <strong id="cce_01_0144__b1560311405335">Image Tags</strong> tab page, obtain the image address from the pull command. You can click <span><img id="cce_01_0144__image292113414153" src="en-us_image_0249778542.png"></span> to copy the command in the <strong id="cce_01_0144__b1638192114350">Image Pull Command</strong> column.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0144__row1078472120505"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.5.3.2.4.2.2.3.1.1 "><p id="cce_01_0144__p1278411218502">README.md</p>
-</td>
-<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.5.3.2.4.2.2.3.1.2 "><p id="cce_01_0144__p10784102115505">A markdown file, including:</p>
-<ul id="cce_01_0144__ul778411210502"><li id="cce_01_0144__li10784172113502">The workload or services provided by the chart.</li><li id="cce_01_0144__li1078612216508">Prerequisites for running the chart.</li><li id="cce_01_0144__li678622155017">Configurations in the <strong id="cce_01_0144__b1630612311263">values.yaml</strong> file.</li><li id="cce_01_0144__li178682165010">Information about chart installation and configuration.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0144__row1678672116506"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.5.3.2.4.2.2.3.1.1 "><p id="cce_01_0144__p6786162113504">* Chart.yaml</p>
-</td>
-<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.5.3.2.4.2.2.3.1.2 "><p id="cce_01_0144__p278615212501">Basic information about the chart.</p>
-</td>
-</tr>
-<tr id="cce_01_0144__row97861621175015"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.5.3.2.4.2.2.3.1.1 "><p id="cce_01_0144__p6786921165010">.helmignore</p>
-</td>
-<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.5.3.2.4.2.2.3.1.2 "><p id="cce_01_0144__p07861721145013">Files or data that does not need to read templates during workload installation.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0143.html">My Charts</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0145.html b/docs/cce/umn/cce_01_0145.html
deleted file mode 100644
index 942cc1d3..00000000
--- a/docs/cce/umn/cce_01_0145.html
+++ /dev/null
@@ -1,49 +0,0 @@
-<a name="cce_01_0145"></a><a name="cce_01_0145"></a>
-
-<h1 class="topictitle1">Uploading a Chart</h1>
-<div id="body8662426"><div class="section" id="cce_01_0145__section1762211281952"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0145__en-us_topic_0093301014_p8060118">Upload a chart to <strong id="cce_01_0145__b84235270611383">Charts</strong> &gt; <strong id="cce_01_0145__b842352706113812">Uploaded Charts</strong> for subsequent workload creation.</p>
-</div>
-<div class="section" id="cce_01_0145__sc9d50e685619493ab88cda81ab8cb87d"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0145__o0ec219910b544b1a8ea6cd99545eb9c9"><li id="cce_01_0145__li6330203615298"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0145__b5163185555516">Charts </strong>&gt; <strong id="cce_01_0145__b11173185565511">Uploaded Charts</strong> and click <strong id="cce_01_0145__b181731255115515">Upload Chart</strong>.</span></li><li id="cce_01_0145__l7d71632d3d0d46778da8db6da0c2d8be"><span>Click <strong id="cce_01_0145__b16443132420218">Select File</strong>, select the chart to be uploaded, and click <strong id="cce_01_0145__b77251048172318">Upload</strong>.</span><p><div class="note" id="cce_01_0145__note1332512361214"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0145__p1132510366215">When you upload a chart, the naming rule of the OBS bucket is changed from cce-charts-{<em id="cce_01_0145__i155816219339">region</em>}-{<strong id="cce_01_0145__b18262633133313">domain_name</strong>} to cce-charts-{<em id="cce_01_0145__i58541139103316">region</em>}-{<strong id="cce_01_0145__b1212884313310">domain_id</strong>}. In the old naming rule, the system converts the <strong id="cce_01_0145__b1041134815334">domain_name</strong> value into a Base64 string and uses the first 63 characters. If you cannot find the chart in the OBS bucket with the new name, search for the bucket with the old name.</p>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0145__s8d328765721f42c8871de65dd6622b24"><h4 class="sectiontitle">Related Operations</h4><p id="cce_01_0145__a56385555a8d347e6bb599e708f44e6fc">After a chart is created, you can perform operations listed in <a href="#cce_01_0145__t84ae87674877489b975382f30a71dfab">Table 1</a> on the <strong id="cce_01_0145__b84235270611541">Uploaded Charts</strong> page.</p>
-
-<div class="tablenoborder"><a name="cce_01_0145__t84ae87674877489b975382f30a71dfab"></a><a name="t84ae87674877489b975382f30a71dfab"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0145__t84ae87674877489b975382f30a71dfab" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Related operations</caption><thead align="left"><tr id="cce_01_0145__re7230b135a27440f92e734bbebfc070e"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.3.3.2.3.1.1"><p id="cce_01_0145__a2990c38912584826bcde80a616c68505">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="80%" id="mcps1.3.3.3.2.3.1.2"><p id="cce_01_0145__a57ff8c7230884d70ab179db52576101e">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0145__rb2b3046a94794a319604f737388bf9eb"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0145__af61aeea5c6bc4bbdbf961299ca2b8aa8"><span class="keyword" id="cce_01_0145__keyword200261973911411">Installing a chart</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0145__en-us_topic_0093301014_p878302316119">Click <strong id="cce_01_0145__b842352706115421">Install Chart</strong> to install the chart for creating workloads. For details, see <a href="cce_01_0146.html">Creating a Workload from a Chart</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0145__reda028ddd5b54babbbbc3902f75a740c"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0145__acc457286985e458c8a0914b64c9d041c"><span class="keyword" id="cce_01_0145__keyword2111232330114134">Updating a chart</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0145__a400846c9cf444ae28b942d2154fb8dad">The chart content will be updated while the chart version remains unchanged. The procedure is similar to that of uploading a chart.</p>
-</td>
-</tr>
-<tr id="cce_01_0145__r5d095daf352f47d0ac61babe6f4ea614"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0145__acf4cc2dbfac843de924a6f82983f7059"><span class="keyword" id="cce_01_0145__keyword1661460155114136">Downloading a chart</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0145__a8ce7d19ed8bc4297a73cb97079712302">Click <strong id="cce_01_0145__b164751217184">More</strong> &gt; <strong id="cce_01_0145__b84235270612156">Download</strong> to download the chart to the local host.</p>
-</td>
-</tr>
-<tr id="cce_01_0145__r1d5ed8dcc6384b248fe80b74c38b7b7c"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0145__acc2cae6c878f47b2b35364883fca7007"><span class="keyword" id="cce_01_0145__keyword454032254114139">Deleting a chart</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0145__p270030144514">Click <strong id="cce_01_0145__b9712183614189">More</strong> &gt; <strong id="cce_01_0145__b9942739141811">Delete</strong> to delete the installed chart.</p>
-<p id="cce_01_0145__p13991313104515">Deleted charts cannot be restored. Exercise caution when performing this operation.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0143.html">My Charts</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0146.html b/docs/cce/umn/cce_01_0146.html
deleted file mode 100644
index b8577983..00000000
--- a/docs/cce/umn/cce_01_0146.html
+++ /dev/null
@@ -1,58 +0,0 @@
-<a name="cce_01_0146"></a><a name="cce_01_0146"></a>
-
-<h1 class="topictitle1">Creating a Workload from a Chart</h1>
-<div id="body8662426"><div class="section" id="cce_01_0146__s94388d41fe234fba81844802bc682fb8"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0146__keyword972811100114321">Creating a Chart-based Workload</span></h4><ol id="cce_01_0146__o20585630b6dd4d15a7973999bed51640"><li id="cce_01_0146__li135815513542"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0146__b101101646125611">Charts</strong> &gt; <strong id="cce_01_0146__b1511114616567">Uploaded Chart</strong>.</span></li><li id="cce_01_0146__li1164182203613"><span>In the list of uploaded charts, click <strong id="cce_01_0146__b108751812132418">Install</strong>.</span></li><li id="cce_01_0146__l90a823bbc7b647b998ce344161a168f4"><span>Set the installation parameters listed in <a href="#cce_01_0146__t26bc1c499f114b5185e5edcf61e44d95">Table 1</a>. The parameters marked with an asterisk (*) are mandatory.</span><p>
-<div class="tablenoborder"><a name="cce_01_0146__t26bc1c499f114b5185e5edcf61e44d95"></a><a name="t26bc1c499f114b5185e5edcf61e44d95"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0146__t26bc1c499f114b5185e5edcf61e44d95" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Installation parameters</caption><thead align="left"><tr id="cce_01_0146__rbf609a3fcf2445d2b6d59cbcca7f75b3"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.1.2.3.2.1.2.3.1.1"><p id="cce_01_0146__a24b59ed54e3e49a7abefd7528912fb26">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.1.2.3.2.1.2.3.1.2"><p id="cce_01_0146__a48e24994d5e7491782edce936fd59c1a">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0146__r4199465b1b1a4b31b17eac511ff9c594"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.1.2.3.2.1.2.3.1.1 "><p id="cce_01_0146__a010899bea1f349bdad1eef099e4fa486">* Release Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.1.2.3.2.1.2.3.1.2 "><p id="cce_01_0146__a0153652b843848a3b6bdad99e3c3b39f">Unique name of the chart release.</p>
-</td>
-</tr>
-<tr id="cce_01_0146__re1bc8a3557e9484baa79c65dc200a4b1"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.1.2.3.2.1.2.3.1.1 "><p id="cce_01_0146__a634af1e2910741f1912518b3bfec7389">* Chart Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.1.2.3.2.1.2.3.1.2 "><p id="cce_01_0146__ac38c5df873f6444b981b35885f8eef62">Chart version by default.</p>
-</td>
-</tr>
-<tr id="cce_01_0146__rbe9ab58d5e67480aa6e422ef627d53a3"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.1.2.3.2.1.2.3.1.1 "><p id="cce_01_0146__a951eab31ec67431facfacf0c7a30e58b">* Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.1.2.3.2.1.2.3.1.2 "><p id="cce_01_0146__a7d5ca4f0299b4ff59ab86cbca0c02d38"><span class="keyword" id="cce_01_0146__keyword53828804114919">Cluster</span> where the workload will be deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0146__rbd79869126dd476ba89ebd3a3103af0c"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.1.2.3.2.1.2.3.1.1 "><p id="cce_01_0146__en-us_topic_0093297948_p441405163731">* Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.1.2.3.2.1.2.3.1.2 "><p id="cce_01_0146__a29df703802f0429a96ce7e488e7b6376">Namespace to which the workload will be deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0146__r70f26452e7574784b0bcc4fa28655e23"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.1.2.3.2.1.2.3.1.1 "><p id="cce_01_0146__ae76aa7c5d99b4e378bf694b82b9e5dc5">Advanced Settings</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.1.2.3.2.1.2.3.1.2 "><p id="cce_01_0146__a303f5e86580c4fa29c238785c98ea8ce">You can import and replace the <strong id="cce_01_0146__b842352706155915">values.yaml</strong> file or directly edit the chart parameters online.</p>
-<div class="note" id="cce_01_0146__na1d8e395109d472699025c5118ef563d"><span class="notetitle"> NOTE: </span><div class="notebody"><p class="textintable" id="cce_01_0146__a428d67dfa7aa45e99ea2cc24c467e433">An imported <strong id="cce_01_0146__b842352706155923">values.yaml</strong> file must comply with YAML specifications, that is, KEY:VALUE format. The fields in the file are not restricted.</p>
-<p id="cce_01_0146__p112003015566">The key value of the imported values.yaml must be the same as that of the selected chart package. Otherwise, the values.yaml does not take effect. That is, the key cannot be changed.</p>
-</div></div>
-<ol type="a" id="cce_01_0146__o62d8e522faae46b79e270230405ddf10"><li id="cce_01_0146__l04812ba05aae47a2a42d651d2df293c3">Click <strong id="cce_01_0146__b842352706121548">Import Configuration File</strong>.</li><li id="cce_01_0146__l9f476de3d2d243a7b8dcd5ea3fc06ed7">Select the corresponding <strong id="cce_01_0146__b84235270616012">values.yaml</strong> file and click <strong id="cce_01_0146__b842352706121623">Open</strong>.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0146__le625c1f421df4758b99f9184828926a9"><span>After the configuration is complete, click <strong id="cce_01_0146__b16577313181425">Next</strong>.</span></li><li id="cce_01_0146__l4e4a71af7d2846feafa026435cec7a73"><span>Confirm the configuration and click <strong id="cce_01_0146__b842352706121840">Submit</strong>.</span></li><li id="cce_01_0146__lf1ae731b09d04a78995d69ac0f029740"><span>Click <strong id="cce_01_0146__b842352706115223">Back to Release List</strong> to view the running status of the chart-based workload (also called release), or click <strong id="cce_01_0146__b842352706115247">View Release Details</strong> to view details about the release.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0146__section5324101171010"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0146__keyword213572136411532">Upgrading a Chart-based Workload</span></h4><ol id="cce_01_0146__ol1541655017447"><li id="cce_01_0146__li6473123410553"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0146__b1493157175610">Charts</strong> &gt; <strong id="cce_01_0146__b12494155718561">Uploaded Charts</strong>. Click the <strong id="cce_01_0146__b1949435795616">Template Instances</strong> tab.</span></li><li id="cce_01_0146__li9260155614447"><span>Click <strong id="cce_01_0146__b624761044718">Upgrade</strong> in the row where the desired workload resides and set the parameters for the workload.</span></li><li id="cce_01_0146__li1126255674414"><span>Select a chart version for <strong id="cce_01_0146__b420264371153445">Chart Version</strong>.</span></li><li id="cce_01_0146__li1126615644417"><span>Follow the prompts to modify the chart parameters. Click <strong id="cce_01_0146__b1224624192812">Upgrade</strong>, and then click <strong id="cce_01_0146__b2090164210284">Submit</strong>.</span></li><li id="cce_01_0146__li1327935644412"><span>Click <strong id="cce_01_0146__b824513662153516">Back to Release List</strong>. If the chart status changes to <strong id="cce_01_0146__b15735371333">Upgrade successful</strong>, the workload is successfully upgraded.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0146__section13251511191012"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0146__keyword29360165115338">Rolling Back a Chart-based Workload</span></h4><ol id="cce_01_0146__ol675012341451"><li id="cce_01_0146__li1921605518552"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0146__b161134895717">Charts</strong> &gt; <strong id="cce_01_0146__b15610486576">Uploaded Charts</strong>. Click the <strong id="cce_01_0146__b196164885714">Template Instances</strong> tab.</span></li><li id="cce_01_0146__li15170194294515"><span>Click <strong id="cce_01_0146__b42851336162919">More</strong> &gt; <strong id="cce_01_0146__b528583611291">Roll Back</strong> for the workload to be rolled back, select the workload version, and click <strong id="cce_01_0146__b14293173618298">Roll back</strong> <strong id="cce_01_0146__b4293436172920">to this version</strong>.</span><p><p id="cce_01_0146__p1917254212454">In the workload list, if the status is <strong id="cce_01_0146__b250435233917">Rollback successful</strong>, the workload is rolled back successfully.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0146__section15325151161011"><h4 class="sectiontitle"><span class="keyword" id="cce_01_0146__keyword2115701475115423">Uninstalling a Chart-based Workload</span></h4><ol id="cce_01_0146__ol14516921124612"><li id="cce_01_0146__li758871175611"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0146__b187219487573">Charts</strong> &gt; <strong id="cce_01_0146__b972134825712">Uploaded Charts</strong>. Click the <strong id="cce_01_0146__b1572144855715">Template Instances</strong> tab.</span></li><li id="cce_01_0146__li33382293172417"><span>Click <strong id="cce_01_0146__b842352706172523">More</strong> &gt; <strong id="cce_01_0146__b842352706172527">Uninstall</strong> next to the release to be uninstalled, and click <strong id="cce_01_0146__b842352706172547">Yes</strong>. Exercise caution when performing this operation because releases cannot be restored after being uninstalled.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0143.html">My Charts</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0149.html b/docs/cce/umn/cce_01_0149.html
deleted file mode 100644
index 99035f48..00000000
--- a/docs/cce/umn/cce_01_0149.html
+++ /dev/null
@@ -1,15 +0,0 @@
-<a name="cce_01_0149"></a><a name="cce_01_0149"></a>
-
-<h1 class="topictitle1">Affinity and Anti-Affinity Scheduling</h1>
-<div id="body1522736584192"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0051.html">Scheduling Policy Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0231.html">Custom Scheduling Policies</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0230.html">Simple Scheduling Policies</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0150.html b/docs/cce/umn/cce_01_0150.html
deleted file mode 100644
index 8de85033..00000000
--- a/docs/cce/umn/cce_01_0150.html
+++ /dev/null
@@ -1,236 +0,0 @@
-<a name="cce_01_0150"></a><a name="cce_01_0150"></a>
-
-<h1 class="topictitle1">Creating a Job</h1>
-<div id="body8662426"><div class="section" id="cce_01_0150__section142417128434"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0150__p1415612018436">Jobs are short-lived and run for a certain time to completion. They can be executed immediately after being deployed. It is completed after it exits normally (exit 0).</p>
-<p id="cce_01_0150__p1357013465433">A job is a resource object that is used to control batch tasks. It is different from a long-term servo workload (such as Deployment and StatefulSet).</p>
-<p id="cce_01_0150__p1288053218436">A job is started and terminated at specific times, while a long-term servo workload runs unceasingly unless being terminated. The pods managed by a job automatically exit after successfully completing the job based on user configurations. The success flag varies according to the spec.completions policy.</p>
-<ul id="cce_01_0150__ul7156424164320"><li id="cce_01_0150__li3337152674010">One-off jobs: A single pod runs once until successful termination.</li><li id="cce_01_0150__li6338026104015">Jobs with a fixed success count: N pods run until successful termination.</li><li id="cce_01_0150__li191568244438">A queue job is considered completed based on the global success confirmed by the application.</li></ul>
-</div>
-<div class="section" id="cce_01_0150__s50bf087555b1437aa249c1259138706c"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0150__p1695632510556">Resources have been created. For details, see <a href="cce_01_0033.html">Creating a Node</a>. If clusters and nodes are available, you need not create them again.</p>
-
-</div>
-<div class="section" id="cce_01_0150__sb8a02965b2624dbbabab320046ca4973"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0150__of7feb9217bd24fb891d04cb448e2ca20"><li id="cce_01_0150__l236c0af0fcff4beea7e6560797b0db4b"><span>(Optional) If you use a <span class="keyword" id="cce_01_0150__keyword588525535103810">private container image</span> to create your job, upload the container image to the image repository.</span><p><p id="cce_01_0150__a56211af27c574ff082b978de64f4c232"></p>
-</p></li><li id="cce_01_0150__en-us_topic_0093532761_li73111020503"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0150__b4202814151213">Workloads</strong> &gt; <strong id="cce_01_0150__b62081514171215">Jobs</strong>. Click <strong id="cce_01_0150__b1420861451219">Create Job</strong>.</span></li><li id="cce_01_0150__en-us_topic_0093532761_li16312920106"><span>Configure the basic job information listed in <a href="#cce_01_0150__t70ce3a99637a44ce8f7274857fb245b1">Table 1</a>. The parameters marked with an asterisk (*) are mandatory.</span><p>
-<div class="tablenoborder"><a name="cce_01_0150__t70ce3a99637a44ce8f7274857fb245b1"></a><a name="t70ce3a99637a44ce8f7274857fb245b1"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0150__t70ce3a99637a44ce8f7274857fb245b1" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic job information</caption><thead align="left"><tr id="cce_01_0150__r1a0b6bbef01240158b8e679b6165cf76"><th align="left" class="cellrowborder" valign="top" width="19.77%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_01_0150__a51b64f77c7d04e0f9025ed260d38faa3">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="80.23%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_01_0150__a639151b15ff74221a51e0b671a591976">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0150__r92a0394079de48da83876059957c2b78"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0150__a989ec542e71a4040a82cbf2931695364">* Job Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0150__a55e0ddd0f9c24b239315111b39913395">Name of a new job. The name must be unique.</p>
-<p id="cce_01_0150__p142031631123">Enter 4 to 63 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__r80610bcddd944c02a6e928130b1bc574"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0150__a75643f9a614b4180b6b9404f503c5dfd">* Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0150__a760cf36b9e3b4d168c5ea807b62896d2">Cluster to which a new job belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__row43713551547"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0150__p1381455125415">* Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0150__p18383552541">Namespace to which the new job belongs. By default, this parameter is set to <strong id="cce_01_0150__b842352706164344">default</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__row0507119121413"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0150__p19507591149">*Instances</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0150__p1042648123717">Number of pods in this job. A job can have one or more pods. You can specify the number of pods. The default value is <strong id="cce_01_0150__b842352706104552">1</strong>.</p>
-<p id="cce_01_0150__p17713926910">Each job pod consists of the same containers. Configuring multiple job pods can ensure high availability. The job can continue to run even if one of the pods is faulty.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__en-us_topic_0093532761_row2314820103"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0150__ab9807e25b58e4d3e88a5fe580e46e093">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0150__a8f8f3f458f7c416eb54e58701713294d">Description of a job.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0150__l5b9864524def46429c77908067c1f5c3"><span>Click <strong id="cce_01_0150__b6334411265">Next: Add Container</strong> to add a container and an image.</span><p><ol type="a" id="cce_01_0150__oaaaecb5f4f6844718f6845029ba11dcb"><li id="cce_01_0150__lcb258c16e28942e4bc46568b7621ca80">Click <strong id="cce_01_0150__b34801715315">Select Container Image</strong> to select the image to be deployed.<ul id="cce_01_0150__u109561a677b44d59828cb44d34594bcc"><li id="cce_01_0150__lc3b0f678775b475ba18f896a4915afd1"><strong id="cce_01_0150__b3115193016617"><span class="keyword" id="cce_01_0150__keyword1201392401104658">My Images</span></strong>: displays all image repositories you created.</li><li id="cce_01_0150__li1551645019344"><strong id="cce_01_0150__b35458515182">Third-Party Images</strong>: Create a job using an image from any third-party image repository. When you create a job using a third-party image, ensure that the node where the job is running can access public networks. For details about how to use a third-party image, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.<ul id="cce_01_0150__ul132968453466"><li id="cce_01_0150__li1293204318469">If your image repository does not require authentication, set <strong id="cce_01_0150__b151723321585">Secret Authentication</strong> to <strong id="cce_01_0150__b1817217321386">No</strong>, enter an image address in <strong id="cce_01_0150__b1217318323815">Image Address</strong>, and then click <strong id="cce_01_0150__b141732328811">OK</strong>.</li><li id="cce_01_0150__li670713173471">If your image repository must be <span class="keyword" id="cce_01_0150__keyword908191923104756">authenticated</span> (account and password), you need to create a secret and then use a third-party image. For details, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.</li></ul>
-</li><li id="cce_01_0150__li13376113571519"><strong id="cce_01_0150__b842352706165837"><span class="keyword" id="cce_01_0150__keyword1409138970104814">Shared Images</span></strong>: The images shared by other tenants using the SWR service are displayed here. You can create workloads based on the shared images.</li></ul>
-</li><li id="cce_01_0150__ldecc3145446b4e24a62c07feb371523e">Set image parameters.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0150__t2fdf8c3943d948f6873da4b75b46d3f5" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Image parameters</caption><thead align="left"><tr id="cce_01_0150__cce_01_0047_row0282348486"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.2.4.2.1.2.1.2.3.1.1"><p id="cce_01_0150__cce_01_0047_p3282147483">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.2.4.2.1.2.1.2.3.1.2"><p id="cce_01_0150__cce_01_0047_p1828244144819">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0150__cce_01_0047_row1844916557597"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.1 "><p id="cce_01_0150__cce_01_0047_p182837474815">Image</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.2 "><p id="cce_01_0150__cce_01_0047_p3283134134820">Name of the image. You can click <strong id="cce_01_0150__b84235270617012">Change Image</strong> to update it.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__cce_01_0047_row338117362515"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.1 "><p id="cce_01_0150__cce_01_0047_p1038143616517">*Image Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.2 "><p id="cce_01_0150__cce_01_0047_p1338110368519">Select the image tag to be deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__cce_01_0047_row32839494813"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.1 "><p id="cce_01_0150__cce_01_0047_p122831140486">*Container Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.2 "><p id="cce_01_0150__cce_01_0047_p528314415486">Name of the container. You can modify it.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__cce_01_0047_row152831345485"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.1 "><p id="cce_01_0150__cce_01_0047_p875325925918">Container Resources</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.2.1.2.3.1.2 "><p id="cce_01_0150__p5379182494610"><strong id="cce_01_0150__b182987113290">CPU</strong></p>
-<ul id="cce_01_0150__ul67283495467"><li id="cce_01_0150__li9729124917467"><strong id="cce_01_0150__b1168381832917">Request</strong>: minimum number of CPU cores required by a container. The default value is 0.25 cores.</li><li id="cce_01_0150__li07291449124616"><strong id="cce_01_0150__b1481172415295">Limit</strong>: maximum number of CPU cores available for a container. Do not leave <strong id="cce_01_0150__b78731262291">Limit</strong> unspecified. Otherwise, intensive use of container resources will occur and your workload may exhibit unexpected behavior.</li></ul>
-<p id="cce_01_0150__p633394210502"><strong id="cce_01_0150__b12170193415291">Memory</strong></p>
-<ul id="cce_01_0150__ul14326165915010"><li id="cce_01_0150__li15327155915017"><strong id="cce_01_0150__b461223522918">Request</strong>: minimum amount of memory required by a container. The default value is 0.5 GiB.</li><li id="cce_01_0150__li0327259195017"><strong id="cce_01_0150__b08001337142920">Limit</strong>: maximum amount of memory available for a container. When memory usage exceeds the specified memory limit, the container will be terminated.</li></ul>
-<p id="cce_01_0150__p1825119142351">For more information about <strong id="cce_01_0150__b11437155014296">Request</strong> and <strong id="cce_01_0150__b74427507296">Limit</strong>, see <a href="cce_01_0163.html">Setting Container Specifications</a>.</p>
-<p id="cce_01_0150__p38521896343"><strong id="cce_01_0150__b11527140163012">GPU</strong>: configurable only when the cluster contains GPU nodes.</p>
-<p id="cce_01_0150__p15403132914341">It indicates the percentage of GPU resources reserved for a container. Select <span class="uicontrol" id="cce_01_0150__uicontrol10487582312"><b>Use</b></span> and set the percentage. For example, if this parameter is set to 10%, the container is allowed to use 10% of GPU resources. If you do not select <span class="uicontrol" id="cce_01_0150__uicontrol1958321514312"><b>Use</b></span> or set this parameter to <span class="parmvalue" id="cce_01_0150__parmvalue1458416151311"><b>0</b></span>, no GPU resources can be used.</p>
-<p id="cce_01_0150__p9626154413340"><strong id="cce_01_0150__b0255320203115">GPU/Graphics Card</strong>: The workload's pods will be scheduled to the node with the specified GPU.</p>
-<p id="cce_01_0150__p15765438173416">If <strong id="cce_01_0150__b1785772812314">Any GPU type</strong> is selected, the container uses a random GPU in the node. If you select a specific GPU, the container uses that GPU accordingly.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0150__lf81932f590d94d13b1984c240651cf9b">(Optional) Configure advanced settings.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0150__tf56c7b65fd00476dbf686d494609ec01" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Advanced settings</caption><thead align="left"><tr id="cce_01_0150__rd70607f9bfa74a83a6e424e8abda265c"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.2.4.2.1.3.1.2.3.1.1"><p id="cce_01_0150__a85705044d3104d34957e244b20e98de2">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.2.4.2.1.3.1.2.3.1.2"><p id="cce_01_0150__ab80a0aae28b54ab1afe9009e2466b2e6">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0150__r616e69d5a2004b079888d8a4a2a83762"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.1 "><p id="cce_01_0150__ae1906e2a0f4e48c8a290d2ffdc9e83bf">Lifecycle</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.2 "><div class="p" id="cce_01_0150__a72815832aa2c4ad6953cec368b824346">Lifecycle scripts define the actions taken for container-related jobs when a lifecycle event occurs.<ul id="cce_01_0150__u86a34d59537a4e5ebbcd8d62f0fb6fc7"><li id="cce_01_0150__le7afef6a89924360aa7bef401a1b0e14"><strong id="cce_01_0150__b29500299334">Start Command</strong>: You can set the command to be executed immediately after the container is started. For details, see <a href="cce_01_0130.html">Configuring a Container</a>.</li><li id="cce_01_0150__l6dc3a201f2704f31a0ad5757f5a250dd"><strong id="cce_01_0150__b3115218417">Post-Start</strong>: The command is triggered after a job starts. For details, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_01_0150__l4115a4db45fd4392a56b9ee9b3822992"><strong id="cce_01_0150__b461243251510">Pre-Stop</strong>: The command is triggered before a job is stopped. For details, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li></ul>
-</div>
-</td>
-</tr>
-<tr id="cce_01_0150__r159688429d2c4ad5b55d2b63b5bc6a46"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.1 "><p id="cce_01_0150__acab0841bbf1548e08722d5ec9fb378e9">Environment Variables</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.2 "><div class="p" id="cce_01_0150__p1033073311186">Environment variables can be added to a container. In general, environment variables are used to set parameters. On the <strong id="cce_01_0150__b14284216151619">Environment Variables</strong> tab page, click <strong id="cce_01_0150__b1928451611610">Add Environment Variable</strong>. Currently, environment variables can be added using any of the following methods:<ul id="cce_01_0150__ul145379401817"><li id="cce_01_0150__li15830173714820"><strong id="cce_01_0150__b284992934420">Added manually</strong>: Set <strong id="cce_01_0150__b88501129194417">Variable Name</strong> and <strong id="cce_01_0150__b6850162964413">Variable Value/Reference</strong>.</li><li id="cce_01_0150__li1783319551288"><strong id="cce_01_0150__b19672134174410">Added from Secret</strong>: Set <strong id="cce_01_0150__b146731634184410">Variable Name</strong> and select the desired secret name and data. A secret must be created in advance. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</li><li id="cce_01_0150__li017611411199"><strong id="cce_01_0150__b134493251387">Added from ConfigMap</strong>: Set <strong id="cce_01_0150__b194491225153819">Variable Name</strong> and select the desired ConfigMap name and data. A ConfigMap must be created in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.</li></ul>
-</div>
-</td>
-</tr>
-<tr id="cce_01_0150__r23157569d21e4f1eaca7fddbb384abd8"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.1 "><p id="cce_01_0150__a8540d286ec904152a0ae2a7706f81b13">Data Storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.2 "><p id="cce_01_0150__a8b0122d13c334988999081ca36bcd194">The local disk or cloud storage can be mounted to a container to implement persistent data file storage.</p>
-<p id="cce_01_0150__a15513eb91b5c4c3daf720ca0b6365c60">For details, see <a href="cce_01_0042.html">Storage (CSI)</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__r547f9887aa95447fae37c69bf28e8d09"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.1 "><p id="cce_01_0150__a4a93ff2a806b494c8d80b89595802cbe">Log Policies</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.4.2.1.3.1.2.3.1.2 "><p id="cce_01_0150__ac6fc6fa08da64fdc9d6366f5f9834e11">Set a log policy and log path for collecting workload logs and preventing logs from being over-sized. For details, see <a href="cce_01_0018.html">Container Logs</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0150__lc23a9500080046c59c1fbc7fd34455d5">(Optional) One job pod contains one or more related containers. If your job contains multiple containers, click <strong id="cce_01_0150__b047112313528">Add Container</strong> to add containers.</li></ol>
-</p></li><li id="cce_01_0150__en-us_topic_0093532761_li37885192038"><span>Click <strong id="cce_01_0150__b12021928164818">Create</strong>.</span><p><p id="cce_01_0150__a5759eff2927140b791121e97d6b6e2ad">If the status of the job is <span class="uicontrol" id="cce_01_0150__uicontrol11963103718132"><b>Executing</b></span>, the job has been created successfully.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0150__section450152719412"><a name="cce_01_0150__section450152719412"></a><a name="section450152719412"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0150__p1140861905814">A job has the following configuration parameters:</p>
-<ul id="cce_01_0150__ul766372616571"><li id="cce_01_0150__li1566422695710"><strong id="cce_01_0150__b33511321133418">spec.template</strong>: has the same schema as a pod.</li><li id="cce_01_0150__li1966442695712"><strong id="cce_01_0150__b7351182123416">RestartPolicy</strong>: can only be set to <strong id="cce_01_0150__b93511521203410">Never</strong> or <strong id="cce_01_0150__b193511215345">OnFailure</strong>.</li><li id="cce_01_0150__li56645269570">For a single-pod job, the job ends after the pod runs successfully by default.</li><li id="cce_01_0150__li866492619578"><strong id="cce_01_0150__b1835112119342">.spec.completions</strong>: indicates the number of pods that need to run successfully to end a job. The default value is <strong id="cce_01_0150__b16237613639413">1</strong>.</li><li id="cce_01_0150__li46641826185717"><strong id="cce_01_0150__b6141630789418">.spec.parallelism</strong>: indicates the number of pods that run concurrently. The default value is <strong id="cce_01_0150__b1735118212340">1</strong>.</li><li id="cce_01_0150__li466422645712"><strong id="cce_01_0150__b1235162111349">spec.backoffLimit</strong>: indicates the maximum number of retries performed if a pod fails. When the limit is reached, the pod will not try again.</li><li id="cce_01_0150__li11493654161013"><strong id="cce_01_0150__b235118216348">.spec.activeDeadlineSeconds</strong>: indicates the running time of pods. Once the time is reached, all pods of the job are terminated. The priority of .spec.activeDeadlineSeconds is higher than that of .spec.backoffLimit. That is, if a job reaches the .spec.activeDeadlineSeconds, the spec.backoffLimit is ignored.</li></ul>
-<p id="cce_01_0150__p115685662310">Based on the <strong id="cce_01_0150__b1635142120341">.spec.completions</strong> and <strong id="cce_01_0150__b20351621103410">.spec.Parallelism</strong> settings, jobs are classified into the following types.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0150__table19214202022111" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Job types</caption><thead align="left"><tr id="cce_01_0150__row221419208210"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.4.5.2.4.1.1"><p id="cce_01_0150__p192146200219">Job Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="39%" id="mcps1.3.4.5.2.4.1.2"><p id="cce_01_0150__p0214720122118">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="40%" id="mcps1.3.4.5.2.4.1.3"><p id="cce_01_0150__p62149208219">Example</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0150__row82141620152119"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_01_0150__p2050935122113">One-off jobs</p>
-</td>
-<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_01_0150__p124101856162110">A single pod runs once until successful termination.</p>
-</td>
-<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_01_0150__p58403110224">Database migration</p>
-</td>
-</tr>
-<tr id="cce_01_0150__row1221432052118"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_01_0150__p14512351132120">Jobs with a fixed completion count</p>
-</td>
-<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_01_0150__p741405662112">One pod runs until reaching the specified <strong id="cce_01_0150__b1815413565343">completions</strong> count.</p>
-</td>
-<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_01_0150__p1284481192220">Work queue processing pod</p>
-</td>
-</tr>
-<tr id="cce_01_0150__row1321432013217"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_01_0150__p195159512216">Parallel jobs with a fixed completion count</p>
-</td>
-<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_01_0150__p134205562218">Multiple pods run until reaching the specified <strong id="cce_01_0150__b1215465693419">completions</strong> count.</p>
-</td>
-<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_01_0150__p3847512224">Multiple pods for processing work queues concurrently</p>
-</td>
-</tr>
-<tr id="cce_01_0150__row8214192020217"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_01_0150__p115209514218">Parallel jobs</p>
-</td>
-<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_01_0150__p12424856142114">One or more pods run until successful termination.</p>
-</td>
-<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_01_0150__p285251142217">Multiple pods for processing work queues concurrently</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0150__p5670244185719">The following is an example job, which calculates π till the 2000<sup id="cce_01_0150__sup8388161018318">th</sup> digit and prints the output.</p>
-<pre class="screen" id="cce_01_0150__screen188897367304">apiVersion: batch/v1
-kind: Job
-metadata:
-  name: myjob
-spec:
-  completions: 50        # 50 pods need to be run to finish a job. In this example, π is printed for 50 times.
-  parallelism: 5        # 5 pods are run in parallel.
-  backoffLimit: 5        # The maximum number of retry times is 5.
-  template:
-    spec:
-      containers:
-      - name: pi
-        image: perl
-        command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
-      restartPolicy: Never</pre>
-<p id="cce_01_0150__p95981983618"><strong id="cce_01_0150__b11576111113314">Description</strong></p>
-<ul id="cce_01_0150__ul1156211387"><li id="cce_01_0150__li615122103818"><strong id="cce_01_0150__b956317121139">apiVersion: batch/v1</strong> indicates the version of the current job.</li><li id="cce_01_0150__li315162173813"><strong id="cce_01_0150__b245711518310">kind: Job</strong> indicates that the current resource is a job.</li><li id="cce_01_0150__li1161821389"><strong id="cce_01_0150__b1345218191538">restartPolicy: Never</strong> indicates the current restart policy. For jobs, this parameter can only be set to <strong id="cce_01_0150__b44679204319">Never</strong> or <strong id="cce_01_0150__b7467020631">OnFailure</strong>. For other controllers (for example, Deployments), you can set this parameter to <strong id="cce_01_0150__b3558557114013">Always</strong>.</li></ul>
-<p id="cce_01_0150__p19657641185210"><strong id="cce_01_0150__b101994271342">Run the job.</strong></p>
-<ol id="cce_01_0150__ol796922611468"><li id="cce_01_0150__li199694261468"><span>Start the job.</span><p><pre class="screen" id="cce_01_0150__screen258244611465">[root@k8s-master k8s]# kubectl apply -f myjob.yaml
-job.batch/myjob created</pre>
-</p></li><li id="cce_01_0150__li934514297467"><span>View the job details.</span><p><p id="cce_01_0150__p111707814818"><strong id="cce_01_0150__b36121041164817">kubectl get job</strong></p>
-<pre class="screen" id="cce_01_0150__screen17592173210483">[root@k8s-master k8s]# kubectl get job
-NAME    COMPLETIONS   DURATION   AGE
-myjob   50/50         23s        3m45s</pre>
-<p id="cce_01_0150__p13967121984918">If the value of <strong id="cce_01_0150__b1353915301244">COMPLETIONS</strong> is <strong id="cce_01_0150__b7544330641">50/50</strong>, the job is successfully executed.</p>
-</p></li><li id="cce_01_0150__li174526554816"><span>Query the pod status.</span><p><p id="cce_01_0150__p12487204616499"><strong id="cce_01_0150__b187621528155013">kubectl get pod</strong></p>
-<pre class="screen" id="cce_01_0150__screen3259111195013">[root@k8s-master k8s]# kubectl get pod
-NAME          READY   STATUS      RESTARTS   AGE
-myjob-29qlw   0/1     Completed   0          4m5s
-...</pre>
-<p id="cce_01_0150__p1493240155016">If the status is <strong id="cce_01_0150__b87899363419">Completed</strong>, the job is complete.</p>
-</p></li><li id="cce_01_0150__li31584441491"><span>View the pod logs.</span><p><p id="cce_01_0150__p131821814115110"><strong id="cce_01_0150__b17171154917510">kubectl  logs</strong></p>
-<pre class="screen" id="cce_01_0150__screen1181615335512"># kubectl logs myjob-29qlw
-3.1415926535897932384626433832795028841971693993751058209749445923078164062862089986280348253421170679821480865132823066470938446095505822317253594081284811174502841027019385211055596446229489549303819644288109756659334461284756482337867831652712019091456485669234603486104543266482133936072602491412737245870066063155881748815209209628292540917153643678925903600113305305488204665213841469519415116094330572703657595919530921861173819326117931051185480744623799627495673518857527248912279381830119491298336733624406566430860213949463952247371907021798609437027705392171762931767523846748184676694051320005681271452635608277857713427577896091736371787214684409012249534301465495853710507922796892589235420199561121290219608640344181598136297747713099605187072113499999983729780499510597317328160963185950244594553469083026425223082533446850352619311881710100031378387528865875332083814206171776691473035982534904287554687311595628638823537875937519577818577805321712268066130019278766111959092164201989380952572010654858632788659361533818279682303019520353018529689957736225994138912497217752834791315155748572424541506959508295331168617278558890750983817546374649393192550604009277016711390098488240128583616035637076601047101819429555961989467678374494482553797747268471040475346462080466842590694912933136770289891521047521620569660240580381501935112533824300355876402474964732639141992726042699227967823547816360093417216412199245863150302861829745557067498385054945885869269956909272107975093029553211653449872027559602364806654991198818347977535663698074265425278625518184175746728909777727938000816470600161452491921732172147723501414419735685481613611573525521334757418494684385233239073941433345477624168625189835694855620992192221842725502542568876717904946016534668049886272327917860857843838279679766814541009538837863609506800642251252051173929848960841284886269456042419652850222106611863067442786220391949450471237137869609563643719172874677646575739624138908658326459958133904780275901</pre>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0150__s9bef0428158a4935b466ea150ccae961"><h4 class="sectiontitle">Related Operations</h4><p id="cce_01_0150__ad9af09fde5934e8095af1d02ba2948c8">After a one-off job is created, you can perform operations listed in <a href="#cce_01_0150__t84075653e7544394939d13740fad0c20">Table 5</a>.</p>
-
-<div class="tablenoborder"><a name="cce_01_0150__t84075653e7544394939d13740fad0c20"></a><a name="t84075653e7544394939d13740fad0c20"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0150__t84075653e7544394939d13740fad0c20" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Other operations</caption><thead align="left"><tr id="cce_01_0150__r83819c2bd882441798d949cbee32fa6a"><th align="left" class="cellrowborder" valign="top" width="28.999999999999996%" id="mcps1.3.5.3.2.3.1.1"><p id="cce_01_0150__en-us_topic_0093532761_p92150167611">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="71%" id="mcps1.3.5.3.2.3.1.2"><p id="cce_01_0150__a6b27fdd2dcc340f3baa6024edb5b3ae9">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0150__row17717577287"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0150__p147711757162810">Viewing a YAML</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0150__p15771257142816">Click <strong id="cce_01_0150__b84235270611425">View YAML</strong> next to the job name to view the YAML file corresponding to the current job.</p>
-</td>
-</tr>
-<tr id="cce_01_0150__r27a8f438ed1d4cbba2ad07f7a08acb06"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0150__a1f9f2bb06252439c82b01c1d4bbb9ab0">Deleting a one-off job</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><ol id="cce_01_0150__od5720c015360452491819af825ce5845"><li id="cce_01_0150__en-us_topic_0093532761_li52166161612">Select the job to be deleted and click <span class="uicontrol" id="cce_01_0150__uicontrol4855557669443"><b>Delete</b></span> in the <strong id="cce_01_0150__b1339219281075">Operation</strong> column.</li><li id="cce_01_0150__l010b4ac7da7845e1ab0848d356edab71">Click <strong id="cce_01_0150__a14b4819ca5b74b27beebaa7cc918e410">OK</strong>.<p id="cce_01_0150__aad27c67674e84e898611af0725bfe1cf">Deleted jobs cannot be restored. Exercise caution when deleting a job.</p>
-</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0151.html b/docs/cce/umn/cce_01_0151.html
deleted file mode 100644
index 27a7ac29..00000000
--- a/docs/cce/umn/cce_01_0151.html
+++ /dev/null
@@ -1,215 +0,0 @@
-<a name="cce_01_0151"></a><a name="cce_01_0151"></a>
-
-<h1 class="topictitle1">Creating a Cron Job</h1>
-<div id="body8662426"><div class="section" id="cce_01_0151__section6515233144317"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0151__p131204403437">A cron job runs on a repeating schedule. You can perform <span class="keyword" id="cce_01_0151__keyword10633987911153">time synchronization</span> for all active nodes at a fixed time point.</p>
-<div class="p" id="cce_01_0151__p116657445446">A cron job runs periodically at the specified time. It is similar with Linux crontab. A cron job has the following characteristics:<ul id="cce_01_0151__ul158911624204312"><li id="cce_01_0151__li162075212431">Runs only once at the specified time.</li><li id="cce_01_0151__li13638113214317">Runs periodically at the specified time.</li></ul>
-</div>
-<p id="cce_01_0151__p2381153704313">The typical usage of a cron job is as follows:</p>
-<ul id="cce_01_0151__ul1552714684317"><li id="cce_01_0151__li557144612431">Schedules jobs at the specified time.</li><li id="cce_01_0151__li652813464432">Creates jobs to run periodically, for example, database backup and email sending.</li></ul>
-</div>
-<div class="section" id="cce_01_0151__s50bf087555b1437aa249c1259138706c"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0151__p777418357559">Resources have been created. For details, see <a href="cce_01_0033.html">Creating a Node</a>. If clusters and nodes are available, you need not create them again.</p>
-</div>
-<div class="section" id="cce_01_0151__s631f9f0386834b23ae6d1e4d19d53382"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0151__o9b2482d671994247931086dbd5615d7b"><li id="cce_01_0151__en-us_topic_0093532762_li107216396"><span>(Optional) If you use a <span class="keyword" id="cce_01_0151__keyword20547144158">private container image</span> to create your cron job, upload the container image to the image repository.</span><p><p id="cce_01_0151__a56211af27c574ff082b978de64f4c232"></p>
-</p></li><li id="cce_01_0151__en-us_topic_0093532761_li73111020503"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0151__b51121983139">Workloads</strong> &gt; <strong id="cce_01_0151__b1285512100139">Cron Jobs</strong>. Then, click <strong id="cce_01_0151__b117271757201218">Create Cron Job</strong>.</span></li><li id="cce_01_0151__lcffc8ea6e99248cc981ea27b47c105ba"><span>Configure the basic cron job information listed in <a href="#cce_01_0151__tfadd3a11520b424d9063fe347c9c8c46">Table 1</a>. The parameters marked with an asterisk (*) are mandatory.</span><p>
-<div class="tablenoborder"><a name="cce_01_0151__tfadd3a11520b424d9063fe347c9c8c46"></a><a name="tfadd3a11520b424d9063fe347c9c8c46"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0151__tfadd3a11520b424d9063fe347c9c8c46" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic cron job information</caption><thead align="left"><tr id="cce_01_0151__r18c18c1a53de41548275e3d1a693371d"><th align="left" class="cellrowborder" valign="top" width="19.77%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_01_0151__a88b4790b6aa74bfc9eb95386662ddebd">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="80.23%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_01_0151__a958597fbe1df427a8adb7f8cd27f7ae3">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0151__r56788b8cc82f49d290f64df3cc1dc0f3"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0151__a7ce6034eee6a45c4a2025b16a465af01">* Job Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0151__a0c8ce3cf0d1348f9a9671b5175534afd">Name of a new cron job. The name must be unique.</p>
-<p id="cce_01_0151__p14468184014213">Enter 4 to 52 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__row15341125115344"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0151__a75643f9a614b4180b6b9404f503c5dfd">* Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0151__a760cf36b9e3b4d168c5ea807b62896d2">Cluster to which a new cron job belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__row1259861015571"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0151__p125066193578">* Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0151__p2050991925711">Namespace to which a cron job belongs. If you do not specify this parameter, the value <strong id="cce_01_0151__b28378323103254">default</strong> is used by default.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__rdc1b35b8ff3c4072a49b1da4db8f71e5"><td class="cellrowborder" valign="top" width="19.77%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0151__a26499db509ff4ab7a1ac006ca3a8746d">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="80.23%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0151__a49218e0435a24eb7bdfce65248bef274">Description of a cron job.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0151__lb6b772baa296497aaddf9b93c1c5e16a"><span>Click <strong id="cce_01_0151__b84235270610449">Next: Configure Timing Rule</strong>.</span></li><li id="cce_01_0151__l219d45925440459fa2666d0e41c32f4e"><span>Set the timing rule.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0151__t3c443d636816401eb8c228607c440faf" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Timing rule parameters</caption><thead align="left"><tr id="cce_01_0151__rb7c79e2ffbb74c248bcef71ba9477eca"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.3.2.5.2.1.2.3.1.1"><p id="cce_01_0151__en-us_topic_0093532762_p72699752917">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="80%" id="mcps1.3.3.2.5.2.1.2.3.1.2"><p id="cce_01_0151__en-us_topic_0093532762_p9269379294">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0151__r6305be1a630244bf81ac437522f31cf0"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.3.2.5.2.1.2.3.1.1 "><p id="cce_01_0151__en-us_topic_0093532762_p162871332056">* <span class="keyword" id="cce_01_0151__keyword66956724811736">Concurrency Policy</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.3.2.5.2.1.2.3.1.2 "><p id="cce_01_0151__a1238035c6c934a228d56a1884594bf19">The following policies are supported:</p>
-<ul id="cce_01_0151__u8a387ed341d640999663e82cfc513fb5"><li id="cce_01_0151__li2912647721453"><span class="keyword" id="cce_01_0151__keyword86904001311738">Forbid</span>: A new job cannot be created before the previous job is complete.</li><li id="cce_01_0151__lfc8cfd84e63a44079adb566ff68f1a0b"><span class="keyword" id="cce_01_0151__keyword11529101520448">Allow</span>: The cron job allows concurrently running jobs, which preempt cluster resources.</li><li id="cce_01_0151__l345ee898ac8841268d5279074b1d88d5"><span class="keyword" id="cce_01_0151__keyword1432863011744">Replace</span>: A new job replaces the previous job when it is time to create the job but the previous job is not complete.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0151__en-us_topic_0093532762_row8270974297"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.3.2.5.2.1.2.3.1.1 "><p id="cce_01_0151__a86a31e64aad144e19e5df3d4e25158b9">* <span class="keyword" id="cce_01_0151__keyword89073930811746">Schedule</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.3.2.5.2.1.2.3.1.2 "><p id="cce_01_0151__aca0cc43e08524e1d86ab0896157991c5">Time when a new cron job is executed.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__row57993169"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.3.2.5.2.1.2.3.1.1 "><p id="cce_01_0151__p5369911316108">Job Records</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.3.2.5.2.1.2.3.1.2 "><p id="cce_01_0151__p5466090716108">You can set the number of jobs that are successfully executed or fail to be executed. Setting a limit to <strong id="cce_01_0151__b109021640174614">0</strong> corresponds to keeping none of the jobs after they finish.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0151__l15f32a27e2b047489ac353d78d0a7ccd"><span>Click <strong id="cce_01_0151__b10406625103818">Next: Add Container</strong> to add a container.</span><p><ol type="a" id="cce_01_0151__of77b4d3ffbd84cc497fe9e4bc56a901a"><li id="cce_01_0151__l57dbb839ca264038be7014d7dcf00b08">Click <strong id="cce_01_0151__cce_01_0150_b34801715315">Select Container Image</strong> to select the image to be deployed.<ul id="cce_01_0151__cce_01_0150_u109561a677b44d59828cb44d34594bcc"><li id="cce_01_0151__cce_01_0150_lc3b0f678775b475ba18f896a4915afd1"><strong id="cce_01_0151__cce_01_0150_b3115193016617"><span class="keyword" id="cce_01_0151__cce_01_0150_keyword1201392401104658">My Images</span></strong>: displays all image repositories you created.</li><li id="cce_01_0151__cce_01_0150_li1551645019344"><strong id="cce_01_0151__cce_01_0150_b35458515182">Third-Party Images</strong>: Create a job using an image from any third-party image repository. When you create a job using a third-party image, ensure that the node where the job is running can access public networks. For details about how to use a third-party image, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.<ul id="cce_01_0151__cce_01_0150_ul132968453466"><li id="cce_01_0151__cce_01_0150_li1293204318469">If your image repository does not require authentication, set <strong id="cce_01_0151__cce_01_0150_b151723321585">Secret Authentication</strong> to <strong id="cce_01_0151__cce_01_0150_b1817217321386">No</strong>, enter an image address in <strong id="cce_01_0151__cce_01_0150_b1217318323815">Image Address</strong>, and then click <strong id="cce_01_0151__cce_01_0150_b141732328811">OK</strong>.</li><li id="cce_01_0151__cce_01_0150_li670713173471">If your image repository must be <span class="keyword" id="cce_01_0151__cce_01_0150_keyword908191923104756">authenticated</span> (account and password), you need to create a secret and then use a third-party image. For details, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.</li></ul>
-</li><li id="cce_01_0151__cce_01_0150_li13376113571519"><strong id="cce_01_0151__cce_01_0150_b842352706165837"><span class="keyword" id="cce_01_0151__cce_01_0150_keyword1409138970104814">Shared Images</span></strong>: The images shared by other tenants using the SWR service are displayed here. You can create workloads based on the shared images.</li></ul>
-</li><li id="cce_01_0151__l5172941d6c264a23a45b9c0bc00484a6">Set image parameters.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0151__t7eeb89498d8449aaaf341f1d6441a1e6" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Image parameters</caption><thead align="left"><tr id="cce_01_0151__cce_01_0150_cce_01_0047_row0282348486"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.2.6.2.1.2.1.2.3.1.1"><p id="cce_01_0151__cce_01_0150_cce_01_0047_p3282147483">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.2.6.2.1.2.1.2.3.1.2"><p id="cce_01_0151__cce_01_0150_cce_01_0047_p1828244144819">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0151__cce_01_0150_cce_01_0047_row1844916557597"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.1 "><p id="cce_01_0151__cce_01_0150_cce_01_0047_p182837474815">Image</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.2 "><p id="cce_01_0151__cce_01_0150_cce_01_0047_p3283134134820">Name of the image. You can click <strong id="cce_01_0151__cce_01_0150_b84235270617012">Change Image</strong> to update it.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__cce_01_0150_cce_01_0047_row338117362515"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.1 "><p id="cce_01_0151__cce_01_0150_cce_01_0047_p1038143616517">*Image Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.2 "><p id="cce_01_0151__cce_01_0150_cce_01_0047_p1338110368519">Select the image tag to be deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__cce_01_0150_cce_01_0047_row32839494813"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.1 "><p id="cce_01_0151__cce_01_0150_cce_01_0047_p122831140486">*Container Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.2 "><p id="cce_01_0151__cce_01_0150_cce_01_0047_p528314415486">Name of the container. You can modify it.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__cce_01_0150_cce_01_0047_row152831345485"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.1 "><p id="cce_01_0151__cce_01_0150_cce_01_0047_p875325925918">Container Resources</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.6.2.1.2.1.2.3.1.2 "><p id="cce_01_0151__cce_01_0150_p5379182494610"><strong id="cce_01_0151__cce_01_0150_b182987113290">CPU</strong></p>
-<ul id="cce_01_0151__cce_01_0150_ul67283495467"><li id="cce_01_0151__cce_01_0150_li9729124917467"><strong id="cce_01_0151__cce_01_0150_b1168381832917">Request</strong>: minimum number of CPU cores required by a container. The default value is 0.25 cores.</li><li id="cce_01_0151__cce_01_0150_li07291449124616"><strong id="cce_01_0151__cce_01_0150_b1481172415295">Limit</strong>: maximum number of CPU cores available for a container. Do not leave <strong id="cce_01_0151__cce_01_0150_b78731262291">Limit</strong> unspecified. Otherwise, intensive use of container resources will occur and your workload may exhibit unexpected behavior.</li></ul>
-<p id="cce_01_0151__cce_01_0150_p633394210502"><strong id="cce_01_0151__cce_01_0150_b12170193415291">Memory</strong></p>
-<ul id="cce_01_0151__cce_01_0150_ul14326165915010"><li id="cce_01_0151__cce_01_0150_li15327155915017"><strong id="cce_01_0151__cce_01_0150_b461223522918">Request</strong>: minimum amount of memory required by a container. The default value is 0.5 GiB.</li><li id="cce_01_0151__cce_01_0150_li0327259195017"><strong id="cce_01_0151__cce_01_0150_b08001337142920">Limit</strong>: maximum amount of memory available for a container. When memory usage exceeds the specified memory limit, the container will be terminated.</li></ul>
-<p id="cce_01_0151__cce_01_0150_p1825119142351">For more information about <strong id="cce_01_0151__cce_01_0150_b11437155014296">Request</strong> and <strong id="cce_01_0151__cce_01_0150_b74427507296">Limit</strong>, see <a href="cce_01_0163.html">Setting Container Specifications</a>.</p>
-<p id="cce_01_0151__cce_01_0150_p38521896343"><strong id="cce_01_0151__cce_01_0150_b11527140163012">GPU</strong>: configurable only when the cluster contains GPU nodes.</p>
-<p id="cce_01_0151__cce_01_0150_p15403132914341">It indicates the percentage of GPU resources reserved for a container. Select <span class="uicontrol" id="cce_01_0151__cce_01_0150_uicontrol10487582312"><b>Use</b></span> and set the percentage. For example, if this parameter is set to 10%, the container is allowed to use 10% of GPU resources. If you do not select <span class="uicontrol" id="cce_01_0151__cce_01_0150_uicontrol1958321514312"><b>Use</b></span> or set this parameter to <span class="parmvalue" id="cce_01_0151__cce_01_0150_parmvalue1458416151311"><b>0</b></span>, no GPU resources can be used.</p>
-<p id="cce_01_0151__cce_01_0150_p9626154413340"><strong id="cce_01_0151__cce_01_0150_b0255320203115">GPU/Graphics Card</strong>: The workload's pods will be scheduled to the node with the specified GPU.</p>
-<p id="cce_01_0151__cce_01_0150_p15765438173416">If <strong id="cce_01_0151__cce_01_0150_b1785772812314">Any GPU type</strong> is selected, the container uses a random GPU in the node. If you select a specific GPU, the container uses that GPU accordingly.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0151__l37431dc4687245dcad553daf226aa1cb">(Optional) Configure advanced settings.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0151__tf56c7b65fd00476dbf686d494609ec01" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Advanced settings</caption><thead align="left"><tr id="cce_01_0151__rd70607f9bfa74a83a6e424e8abda265c"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.2.6.2.1.3.1.2.3.1.1"><p id="cce_01_0151__a85705044d3104d34957e244b20e98de2">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.2.6.2.1.3.1.2.3.1.2"><p id="cce_01_0151__ab80a0aae28b54ab1afe9009e2466b2e6">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0151__r616e69d5a2004b079888d8a4a2a83762"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.6.2.1.3.1.2.3.1.1 "><p id="cce_01_0151__ae1906e2a0f4e48c8a290d2ffdc9e83bf">Lifecycle</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.6.2.1.3.1.2.3.1.2 "><div class="p" id="cce_01_0151__p35489275239">Actions defined in the lifecycle script definition are taken for the lifecycle events of container tasks.<ul id="cce_01_0151__u86a34d59537a4e5ebbcd8d62f0fb6fc7"><li id="cce_01_0151__le7afef6a89924360aa7bef401a1b0e14"><strong id="cce_01_0151__b6616188113917">Start Command</strong>: You can set the command to be executed immediately after the container is started. For details, see <a href="cce_01_0130.html">Configuring a Container</a>.</li><li id="cce_01_0151__l6dc3a201f2704f31a0ad5757f5a250dd"><strong id="cce_01_0151__b797546874101115">Post-Start</strong>: The command is triggered after a job starts. For details, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_01_0151__l4115a4db45fd4392a56b9ee9b3822992"><strong id="cce_01_0151__b715570416101125">Pre-Stop</strong>: The command is triggered before a job is stopped. For details, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li></ul>
-</div>
-</td>
-</tr>
-<tr id="cce_01_0151__r159688429d2c4ad5b55d2b63b5bc6a46"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.6.2.1.3.1.2.3.1.1 "><p id="cce_01_0151__acab0841bbf1548e08722d5ec9fb378e9">Environment Variables</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.6.2.1.3.1.2.3.1.2 "><div class="p" id="cce_01_0151__p19408181613184">Environment variables can be added to a container. In general, environment variables are used to set parameters. On the <strong id="cce_01_0151__b14284216151619">Environment Variables</strong> tab page, click <strong id="cce_01_0151__b1928451611610">Add Environment Variable</strong>. Currently, environment variables can be added using any of the following methods:<ul id="cce_01_0151__ul145379401817"><li id="cce_01_0151__li15830173714820"><strong id="cce_01_0151__b12179330103614">Added manually</strong>: Set <strong id="cce_01_0151__b0180130183613">Variable Name</strong> and <strong id="cce_01_0151__b101802304364">Variable Value/Reference</strong>.</li><li id="cce_01_0151__li1783319551288"><strong id="cce_01_0151__b15300113623617">Added from Secret</strong>: Set <strong id="cce_01_0151__b33008369363">Variable Name</strong> and select the desired secret name and data. A secret must be created in advance. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</li><li id="cce_01_0151__li017611411199"><strong id="cce_01_0151__b3936102673913">Added from ConfigMap</strong>: Set <strong id="cce_01_0151__b629881611615">Variable Name</strong> and select the desired ConfigMap name and data. A ConfigMap must be created in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.</li></ul>
-</div>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0151__l9824dcb9455c423bb8d9cd8ce6fb2732">(Optional) One job pod contains one or more related containers. If your cron job contains multiple containers, click <strong id="cce_01_0151__b78748185419">Add Container</strong> to add containers.</li></ol>
-</p></li><li id="cce_01_0151__l0db9a310cf9c49af84a19e69990ff07e"><span>Click <span class="uicontrol" id="cce_01_0151__uicontrol06561921183612"><b>Create</b></span>.</span><p><p id="cce_01_0151__en-us_topic_0093532762_p438617371294">If the status is <span class="uicontrol" id="cce_01_0151__uicontrol115561412616"><b>Started</b></span>, the cron job has been created successfully.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0151__section13519162224919"><a name="cce_01_0151__section13519162224919"></a><a name="section13519162224919"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0151__p7146184834918">A cron job has the following configuration parameters:</p>
-<ul id="cce_01_0151__ul63571722115317"><li id="cce_01_0151__li9355152217535"><strong id="cce_01_0151__b1748712289369">.spec.schedule</strong>: takes a <a href="https://en.wikipedia.org/wiki/Cron" target="_blank" rel="noopener noreferrer">Cron</a> format string, for example, <strong id="cce_01_0151__b9791386362">0 * * * *</strong> or <strong id="cce_01_0151__b8791638123616">@hourly</strong>, as schedule time of jobs to be created and executed.</li><li id="cce_01_0151__li135519220532"><strong id="cce_01_0151__b1489461364613">.spec.jobTemplate</strong>: specifies jobs to be run, and has the same schema as when you are <a href="cce_01_0150.html#cce_01_0150__section450152719412">Creating a Job Using kubectl</a>.</li><li id="cce_01_0151__li1335722215531"><strong id="cce_01_0151__b10267121944614">.spec.startingDeadlineSeconds</strong>: specifies the deadline for starting a job.</li><li id="cce_01_0151__li103572226538"><strong id="cce_01_0151__b6933279102235">.spec.concurrencyPolicy</strong>: specifies how to treat concurrent executions of a job created by the Cron job. The following options are supported:<ul id="cce_01_0151__ul1147444212589"><li id="cce_01_0151__li310154725818"><strong id="cce_01_0151__b3705638610156">Allow</strong> (default value): allows concurrently running jobs.</li><li id="cce_01_0151__li1321544995817"><strong id="cce_01_0151__b1466056099101656">Forbid</strong>: forbids concurrent runs, skipping next run if previous has not finished yet.</li><li id="cce_01_0151__li4148173915581"><strong id="cce_01_0151__b135017237610172">Replace</strong>: cancels the currently running job and replaces it with a new one.</li></ul>
-</li></ul>
-<p id="cce_01_0151__p18401553125719">The following is an example cron job, which is saved in the <strong id="cce_01_0151__b134131003410178">cronjob.yaml</strong> file.</p>
-<pre class="screen" id="cce_01_0151__screen6614193916212">apiVersion: batch/v1beta1
-kind: CronJob
-metadata:
-  name: hello
-spec:
-  schedule: "*/1 * * * *"
-  jobTemplate:
-    spec:
-      template:
-        spec:
-          containers:
-          - name: hello
-            image: busybox
-            args:
-            - /bin/sh
-            - -c
-            - date; echo Hello from the Kubernetes cluster
-          restartPolicy: OnFailure</pre>
-<p id="cce_01_0151__p530151312530"><strong id="cce_01_0151__b13360545548">Run the job.</strong></p>
-<ol id="cce_01_0151__ol11256193711913"><li id="cce_01_0151__li625663710915"><span>Create a cron job.</span><p><p id="cce_01_0151__p151762477916"><strong id="cce_01_0151__b133271754996">kubectl create -f cronjob.yaml</strong></p>
-<p id="cce_01_0151__p439315553919">Information similar to the following is displayed:</p>
-<pre class="screen" id="cce_01_0151__screen11035461293">cronjob.batch/hello created</pre>
-</p></li><li id="cce_01_0151__li1110312465918"><span>Query the running status of the cron job:</span><p><p id="cce_01_0151__p835017369103"><strong id="cce_01_0151__b15084271010">kubectl get cronjob</strong></p>
-<pre class="screen" id="cce_01_0151__screen192598284111">NAME      SCHEDULE      SUSPEND   ACTIVE    LAST SCHEDULE   AGE
-hello     */1 * * * *   False     0         &lt;none&gt;          9s</pre>
-<p id="cce_01_0151__p124931143141117"><strong id="cce_01_0151__b39991613171312">kubectl get jobs</strong></p>
-<pre class="screen" id="cce_01_0151__screen5109116125">NAME               COMPLETIONS   DURATION   AGE
-hello-1597387980   1/1           27s        45s</pre>
-<p id="cce_01_0151__p1714120241541"><strong id="cce_01_0151__b1762310283551">kubectl get pod</strong></p>
-<pre class="screen" id="cce_01_0151__screen937910225556">NAME                           READY     STATUS      RESTARTS   AGE
-hello-1597387980-tjv8f         0/1       Completed   0          114s
-hello-1597388040-lckg9         0/1       Completed   0          39s</pre>
-<p id="cce_01_0151__p7123191511217"><strong id="cce_01_0151__b7149111111133">kubectl logs </strong><strong id="cce_01_0151__b1569305865618">hello-1597387980-tjv8f</strong></p>
-<pre class="screen" id="cce_01_0151__screen783814275124">Fri Aug 14 06:56:31 UTC 2020
-Hello from the Kubernetes cluster</pre>
-<p id="cce_01_0151__p1819778137"><strong id="cce_01_0151__b414112317137">kubectl delete cronjob hello</strong></p>
-<pre class="screen" id="cce_01_0151__screen12247183714913">cronjob.batch "hello" deleted</pre>
-<div class="notice" id="cce_01_0151__note238719161861"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0151__p10387151619618">When a cron job is deleted, the related jobs and pods are deleted too.</p>
-</div></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0151__s28175da725cf46d49a4cfca59155a5d2"><h4 class="sectiontitle">Related Operations</h4><p id="cce_01_0151__a0d7cb99053db4addbcf7b1a73b1e7bab">After a cron job is created, you can perform operations listed in <a href="#cce_01_0151__t6d520710097a4ee098eae42bcb508608">Table 5</a>.</p>
-
-<div class="tablenoborder"><a name="cce_01_0151__t6d520710097a4ee098eae42bcb508608"></a><a name="t6d520710097a4ee098eae42bcb508608"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0151__t6d520710097a4ee098eae42bcb508608" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Other operations</caption><thead align="left"><tr id="cce_01_0151__r8d59bf3aa5394e84ae626a36c585013d"><th align="left" class="cellrowborder" valign="top" width="28.999999999999996%" id="mcps1.3.5.3.2.3.1.1"><p id="cce_01_0151__a8245dffabcbf4810a7333d8ce9a67789">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="71%" id="mcps1.3.5.3.2.3.1.2"><p id="cce_01_0151__en-us_topic_0093532762_p685713442569">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0151__row82414466296"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0151__p147711757162810">Editing a YAML file</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0151__p15771257142816">Click <strong id="cce_01_0151__b84235270611943">More</strong> &gt; <strong id="cce_01_0151__b84235270611958">View YAML</strong> next to the cron job name to view the YAML file of the current job.</p>
-</td>
-</tr>
-<tr id="cce_01_0151__r25f2ff5451494127b1af5ab34b807936"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0151__a6abaef816404455581dc7dbaddf656ee">Stopping a cron job</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><ol id="cce_01_0151__obe7516d58ade42a389e52e27f663e03d"><li id="cce_01_0151__en-us_topic_0093532762_li75111466565">Select the job to be stopped and click <strong id="cce_01_0151__b842352706102439">Stop</strong> in the <strong id="cce_01_0151__b12271357184317">Operation</strong> column.</li><li id="cce_01_0151__l92db89730e1b41af9d9908567258633e">Click <strong id="cce_01_0151__a14b4819ca5b74b27beebaa7cc918e410">OK</strong>.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0151__r9fec8c34ebbb44e3888c677862a174e0"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0151__en-us_topic_0093532762_p685874410564">Deleting a cron job</p>
-</td>
-<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><ol id="cce_01_0151__o9409a54b32c14e4799c05e5f0a643633"><li id="cce_01_0151__l448139d196dc4757ac668bc81939c1d3">Select the cron job to be deleted and click <strong id="cce_01_0151__b842352706111124">More</strong> &gt; <strong id="cce_01_0151__b842352706111132">Delete</strong> in the <strong id="cce_01_0151__b842352706111135">Operation</strong> column.</li><li id="cce_01_0151__le39ab2b73bb944948ce5daf793fa72fa">Click <strong id="cce_01_0151__a14b4819ca5b74b27beebaa7cc918e410_1">OK</strong>.<p id="cce_01_0151__a3be1d4db3fa4464dbc950b89a31d57aa">Deleted jobs cannot be restored. Therefore, exercise caution when deleting a job.</p>
-</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0152.html b/docs/cce/umn/cce_01_0152.html
deleted file mode 100644
index 16644290..00000000
--- a/docs/cce/umn/cce_01_0152.html
+++ /dev/null
@@ -1,123 +0,0 @@
-<a name="cce_01_0152"></a><a name="cce_01_0152"></a>
-
-<h1 class="topictitle1">Creating a ConfigMap</h1>
-<div id="body1517812850360"><div class="section" id="cce_01_0152__section36448505316"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0152__p9901115812312">A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. After creating ConfigMaps, you can use them as files or environment variables in a containerized workload.</p>
-<p id="cce_01_0152__p1713281845610">ConfigMaps allow you to decouple configuration files from <span class="keyword" id="cce_01_0152__keyword1826022936111212">container images</span> to enhance the portability of containerized workloads.</p>
-<p id="cce_01_0152__p310975192519">Benefits of ConfigMaps:</p>
-<ul id="cce_01_0152__ul198841451945"><li id="cce_01_0152__li1729651412510">Manage configurations of different environments and services.</li><li id="cce_01_0152__li1029613148252">Deploy workloads in different environments. Multiple versions are supported for configuration files so that you can update and roll back workloads easily.</li><li id="cce_01_0152__li5885853411">Quickly import configurations in the form of files to containers.</li></ul>
-</div>
-<div class="section" id="cce_01_0152__section19209149103913"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0152__p1646512226013"><span class="keyword" id="cce_01_0152__keyword711810624111239">Cluster</span> and <span class="keyword" id="cce_01_0152__keyword1470540912111241">node</span> resources have been created. For more information, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>. If you have available clusters and node resources, skip this operation.</p>
-</div>
-<div class="section" id="cce_01_0152__section18512531861"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0152__ol18179910114616"><li id="cce_01_0152__li20395342103020"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0152__b3525636509">Configuration Center</strong> &gt; <strong id="cce_01_0152__b1753423155020">ConfigMaps</strong>. Click <strong id="cce_01_0152__b1553515319508">Create ConfigMap</strong>.</span></li><li id="cce_01_0152__li178715713140"><span>You can create a ConfigMap directly or based on YAML. If you create a ConfigMap based on YAML, go to <a href="#cce_01_0152__li2731182712159">4</a>.</span></li><li id="cce_01_0152__li6634857171419"><span>Method 1: Create a ConfigMap directly.</span><p><div class="p" id="cce_01_0152__p0105141951511">Set the parameters by referring to <a href="#cce_01_0152__table16321825732">Table 1</a>.
-<div class="tablenoborder"><a name="cce_01_0152__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0152__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a ConfigMap</caption><thead align="left"><tr id="cce_01_0152__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.1.2.2.3.1.1"><p id="cce_01_0152__p43211725338">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.1.2.2.3.1.2"><p id="cce_01_0152__p0322102516320">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0152__row163229255313"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0152__p1232219251339">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0152__p173227259312">Name of a ConfigMap, which must be unique in a namespace.</p>
-</td>
-</tr>
-<tr id="cce_01_0152__row6334727910"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0152__p233592498">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0152__p2020234461913">Cluster that will use the ConfigMap you create.</p>
-</td>
-</tr>
-<tr id="cce_01_0152__row111551253912"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0152__p51551451293">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0152__p216414418190">Namespace to which the ConfigMap belongs. If you do not specify this parameter, the value <strong id="cce_01_0152__b28378323103254">default</strong> is used by default.</p>
-</td>
-</tr>
-<tr id="cce_01_0152__row1535723154615"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0152__p83591731124620">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0152__p1736012314462">Description of the ConfigMap.</p>
-</td>
-</tr>
-<tr id="cce_01_0152__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0152__p23228259314">Data</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0152__p133223251335">The workload configuration data can be used in a <span class="keyword" id="cce_01_0152__keyword1376453106113514">container</span> or used to store the configuration data. <strong id="cce_01_0152__b24207722105458">Key</strong> indicates a file name. <strong id="cce_01_0152__b16542913105458">Value</strong> indicates the content in the file.</p>
-<ol type="a" id="cce_01_0152__ol10322425232"><li id="cce_01_0152__li133221025036">Click <strong id="cce_01_0152__b946239950103318">Add Data</strong>.</li><li id="cce_01_0152__li1032316255311">Set <strong id="cce_01_0152__b1714902967103320">Key</strong> and <strong id="cce_01_0152__b1769765316103320">Value</strong>.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0152__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0152__p17322225134"><span class="keyword" id="cce_01_0152__keyword43477389113537">Labels</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0152__p1932211253312">Labels are attached to objects such as workloads, nodes, and Services in key-value pairs. </p>
-<p id="cce_01_0152__p1932220252316">Labels define the identifiable attributes of these objects and are used to manage and select the objects.</p>
-<ol type="a" id="cce_01_0152__ol11394016509"><li id="cce_01_0152__li20395101205012">Click <strong id="cce_01_0152__b811138571103421">Add Label</strong>.</li><li id="cce_01_0152__li1139761155014">Set <strong id="cce_01_0152__b4941748105458">Key</strong> and <strong id="cce_01_0152__b44475740105458">Value</strong>.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_01_0152__li2731182712159"><a name="cce_01_0152__li2731182712159"></a><a name="li2731182712159"></a><span>Method 2: Create a ConfigMap based on YAML.</span><p><div class="note" id="cce_01_0152__note176631439613"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0152__p1266333920117">To create ConfigMaps by uploading a file, ensure that the resource description file has been created. CCE supports files in YAML format. For more information, see <a href="#cce_01_0152__section66903416102">ConfigMap Requirements</a>.</p>
-</div></div>
-<div class="p" id="cce_01_0152__p798813816424">Click <span class="uicontrol" id="cce_01_0152__uicontrol574152823113"><b>Create YAML</b></span> on the right of the page.<ul id="cce_01_0152__ul2405201511011"><li id="cce_01_0152__li42801229171013">Method 1: Import the orchestration file.<p id="cce_01_0152__p19421130171018"><a name="cce_01_0152__li42801229171013"></a><a name="li42801229171013"></a>Click <strong id="cce_01_0152__b842352706114014">Add File</strong> to import the file in YAML format. The orchestration content can be directly displayed.</p>
-</li><li id="cce_01_0152__li9405201520101">Method 2: Directly orchestrate the content.<p id="cce_01_0152__p42388321117"><a name="cce_01_0152__li9405201520101"></a><a name="li9405201520101"></a>In the orchestration content area, enter the content of the YAML file.</p>
-</li></ul>
-</div>
-</p></li><li id="cce_01_0152__li11187141015461"><span>After the configuration is complete, click <span class="uicontrol" id="cce_01_0152__uicontrol424264973103651"><b>Create</b></span>.</span><p><p id="cce_01_0152__p018781015461">The new ConfigMap is displayed in the ConfigMap list.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0152__section66903416102"><a name="cce_01_0152__section66903416102"></a><a name="section66903416102"></a><h4 class="sectiontitle">ConfigMap Requirements</h4><p id="cce_01_0152__p44144616106">A ConfigMap resource file must be in YAML format, and the file size cannot exceed 2 MB.</p>
-<div class="p" id="cce_01_0152__p615908129">The file name is <strong id="cce_01_0152__b206395112113">configmap.yaml</strong> and the following shows a configuration example.<pre class="screen" id="cce_01_0152__screen156291559131119">apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: test-configmap
-data:
-  data-1: value-1
-  data-2: value-2</pre>
-</div>
-</div>
-<div class="section" id="cce_01_0152__section639712716372"><a name="cce_01_0152__section639712716372"></a><a name="section639712716372"></a><h4 class="sectiontitle">Creating a ConfigMap Using kubectl</h4><ol id="cce_01_0152__ol4681114115209"><li id="cce_01_0152__li1681024195710"><span>Configure the <strong id="cce_01_0152__b107571340111220">kubectl</strong> command to connect an ECS to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0152__li1020013819415"><span>Create and edit the <strong id="cce_01_0152__b4906313131317">cce-configmap.yaml</strong> file.</span><p><p id="cce_01_0152__p106999147413"><strong id="cce_01_0152__b6469155655719">vi cce-configmap.yaml</strong></p>
-<pre class="screen" id="cce_01_0152__screen1245419316221">apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: cce-configmap
-data:
-  SPECIAL_LEVEL: Hello
-  SPECIAL_TYPE: CCE</pre>
-</p></li><li id="cce_01_0152__li788331518303"><span>Run the following commands to create a ConfigMap.</span><p><p id="cce_01_0152__p3315182011255"><strong id="cce_01_0152__b56467233250">kubectl create -f cce-configmap.yaml</strong></p>
-<p id="cce_01_0152__p11761214251"><strong id="cce_01_0152__b96501723152519">kubectl get cm</strong></p>
-<pre class="screen" id="cce_01_0152__screen47118476349">NAME               DATA            AGE
-cce-configmap      3               3h
-cce-configmap1     3               7m</pre>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0152__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0152__p98641861268">After creating a configuration item, you can update or delete it as described in <a href="#cce_01_0152__table1619535674020">Table 2</a>.
-<div class="tablenoborder"><a name="cce_01_0152__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0152__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Related operations</caption><thead align="left"><tr id="cce_01_0152__row16740630125918"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.6.2.2.2.3.1.1"><p id="cce_01_0152__p17740730115914">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.6.2.2.2.3.1.2"><p id="cce_01_0152__p1574018303592">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0152__row133318512019"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.2.2.3.1.1 "><p id="cce_01_0152__p163331851201">Viewing a YAML file</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.2.2.3.1.2 "><p id="cce_01_0152__p1633314512016">Click <strong id="cce_01_0152__b84235270611425">View YAML</strong> next to the ConfigMap name to view the YAML file corresponding to the current ConfigMap.</p>
-</td>
-</tr>
-<tr id="cce_01_0152__row12740103016592"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.2.2.3.1.1 "><p id="cce_01_0152__p4740153012590">Updating a ConfigMap</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.2.2.3.1.2 "><ol id="cce_01_0152__ol187401330145919"><li id="cce_01_0152__li57402030165918">Select the name of the ConfigMap to be updated and click <strong id="cce_01_0152__b842352706114220">Update</strong>.</li><li id="cce_01_0152__li20740730145912">Modify the secret data. For more information, see <a href="#cce_01_0152__table16321825732">Table 1</a>.</li><li id="cce_01_0152__li15740930135911">Click <strong id="cce_01_0152__b84235270613114">Update</strong>.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0152__row874013304597"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.2.2.3.1.1 "><p id="cce_01_0152__p17740330175915">Deleting a ConfigMap</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.2.2.3.1.2 "><p id="cce_01_0152__p13740630165914">Select the configuration you want to delete and click <strong id="cce_01_0152__b84235270613133">Delete</strong>.</p>
-<p id="cce_01_0152__p1574020307590">Follow the prompts to delete the ConfigMap.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0045.html">Configuration Center</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0153.html b/docs/cce/umn/cce_01_0153.html
deleted file mode 100644
index c9e1b4e0..00000000
--- a/docs/cce/umn/cce_01_0153.html
+++ /dev/null
@@ -1,145 +0,0 @@
-<a name="cce_01_0153"></a><a name="cce_01_0153"></a>
-
-<h1 class="topictitle1">Creating a Secret</h1>
-<div id="body1517812850363"><div class="section" id="cce_01_0153__section86141233649"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0153__p134369401414">A secret is a type of resource that holds sensitive data, such as authentication and key information. Its content is user-defined. After creating secrets, you can use them as files or environment variables in a containerized workload.</p>
-</div>
-<div class="section" id="cce_01_0153__section19209149103913"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0153__p1646512226013">Cluster and node resources have been created. For more information, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>. If you have available clusters and node resources, skip this operation.</p>
-</div>
-<div class="section" id="cce_01_0153__section18512531861"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0153__ol18179910114616"><li id="cce_01_0153__li20395342103020"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0153__b195542202503">Configuration Center</strong> &gt; <strong id="cce_01_0153__b355572045016">Secrets</strong>. Click <strong id="cce_01_0153__b45559207504">Create Secret</strong>.</span></li><li id="cce_01_0153__li8159952191711"><span>You can create a secret directly or based on YAML. If you want to create a secret based on YAML, go to <a href="#cce_01_0153__li69121840101813">4</a>.</span></li><li id="cce_01_0153__li1931813575710"><span>Method 1: Create a secret directly.</span><p><div class="p" id="cce_01_0153__p198643545718">Set the basic information by referring to <a href="#cce_01_0153__table16321825732">Table 1</a>.
-<div class="tablenoborder"><a name="cce_01_0153__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0153__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a secret</caption><thead align="left"><tr id="cce_01_0153__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.1.2.2.3.1.1"><p id="cce_01_0153__p43211725338">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.1.2.2.3.1.2"><p id="cce_01_0153__p0322102516320">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0153__row1752613417216"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0153__p360313397217">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0153__p1161911390211">Name of the secret you create, which must be unique.</p>
-</td>
-</tr>
-<tr id="cce_01_0153__row6334727910"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0153__p233592498">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0153__p2020234461913"><span class="keyword" id="cce_01_0153__keyword2023595853141921">Cluster</span> that will use the secret you create.</p>
-</td>
-</tr>
-<tr id="cce_01_0153__row11291645181017"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0153__p16293114519103">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0153__p129384511101">Namespace to which the secret belongs. If you do not specify this parameter, the value <strong id="cce_01_0153__b48091053154018">default</strong> is used by default.</p>
-</td>
-</tr>
-<tr id="cce_01_0153__row1984015472115"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0153__p815351112212">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0153__p5153121142219">Description of a secret.</p>
-</td>
-</tr>
-<tr id="cce_01_0153__row1541115718414"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0153__p14412774420">Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0153__p1441319714414">Type of the secret you create.</p>
-<ul id="cce_01_0153__ul4570185817249"><li id="cce_01_0153__li15570185816249"><span class="keyword" id="cce_01_0153__keyword30498699141939">Opaque</span>: common secret.</li><li id="cce_01_0153__li10947145315265"><span class="keyword" id="cce_01_0153__keyword980727399141941">kubernetes.io/dockerconfigjson</span>: a secret that stores the authentication information required for pulling images from a private repository.</li><li id="cce_01_0153__li14121828172716"><span class="keyword" id="cce_01_0153__keyword580479947141945">IngressTLS</span>: a secret that stores the certificate required by ingresses (layer-7 load balancing Services).</li><li id="cce_01_0153__li119892492817">Other: another type of secret, which is specified manually.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0153__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0153__p23228259314">Secret Data</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0153__p133223251335">Workload secret data can be used in containers.</p>
-<ul id="cce_01_0153__ul180611337469"><li id="cce_01_0153__li108069333468">If the secret is of the Opaque type:<ol type="a" id="cce_01_0153__ol10322425232"><li id="cce_01_0153__li133221025036">Click <strong id="cce_01_0153__b33521139104319">Add Data</strong>.</li><li id="cce_01_0153__li1032316255311">Enter the key and value. The value must be based on the Base64 coding method. For details about the method, see <a href="#cce_01_0153__section175000605919">Base64 Encoding</a>.</li></ol>
-</li><li id="cce_01_0153__li1536053764716">If the secret type is <span class="keyword" id="cce_01_0153__keyword9993330195113">kubernetes.io/</span>dockerconfigjson, enter the account and password of the private image repository.</li><li id="cce_01_0153__li17736104214478">If the secret type is IngressTLS, upload the certificate file and private key file.<div class="note" id="cce_01_0153__note1890215211325"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0153__ul1280017919332"><li id="cce_01_0153__li14977104417334">A certificate is a self-signed or CA-signed credential used for identity authentication.</li><li id="cce_01_0153__li6236332143310">A certificate request is a request for a signature with a private key.</li></ul>
-</div></div>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0153__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_01_0153__p17322225134">Secret Label</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_01_0153__p1932211253312">Labels are attached to objects such as workloads, nodes, and Services in key-value pairs. </p>
-<p id="cce_01_0153__p1932220252316">Labels define the identifiable attributes of these objects and are used to manage and select the objects.</p>
-<ol type="a" id="cce_01_0153__ol11394016509"><li id="cce_01_0153__li20395101205012">Click <strong id="cce_01_0153__b564414540104435">Add Label</strong>.</li><li id="cce_01_0153__li1139761155014">Enter the key and value.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_01_0153__li69121840101813"><a name="cce_01_0153__li69121840101813"></a><a name="li69121840101813"></a><span>Method 2: Create a secret based on the YAML file.</span><p><div class="note" id="cce_01_0153__note176631439613"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0153__p1266333920117">To create a resource by uploading a file, ensure that the resource description file has been created. CCE supports files in JSON or YAML format. For more information, see <a href="#cce_01_0153__section187197531454">Secret Resource File Configuration</a>.</p>
-</div></div>
-<div class="p" id="cce_01_0153__p1279835917411">You can import or directly write the file content in YAML or JSON format.<ul id="cce_01_0153__ul2405201511011"><li id="cce_01_0153__li42801229171013">Method 1: Import the orchestration file.<p id="cce_01_0153__p19421130171018"><a name="cce_01_0153__li42801229171013"></a><a name="li42801229171013"></a>Click <strong id="cce_01_0153__b842352706114014">Add File</strong> to import the file in YAML or JSON format. The orchestration content can be directly displayed.</p>
-</li><li id="cce_01_0153__li9405201520101">Method 2: Directly orchestrate the content.<p id="cce_01_0153__p42388321117"><a name="cce_01_0153__li9405201520101"></a><a name="li9405201520101"></a>In the orchestration content area, enter the content of the YAML or JSON file.</p>
-</li></ul>
-</div>
-</p></li><li id="cce_01_0153__li11187141015461"><span>After the configuration is complete, click <strong id="cce_01_0153__b1887486251104639">Create</strong>.</span><p><p id="cce_01_0153__p018781015461">The new secret is displayed in the key list.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0153__section187197531454"><a name="cce_01_0153__section187197531454"></a><a name="section187197531454"></a><h4 class="sectiontitle">Secret Resource File Configuration</h4><p id="cce_01_0153__p2086031095117">This section describes configuration examples of secret resource description files.</p>
-<p id="cce_01_0153__p34594241969">For example, you can retrieve the username and password for a workload through a secret.</p>
-<ul id="cce_01_0153__ul98374131156"><li id="cce_01_0153__li283771391512">YAML format<p id="cce_01_0153__p104653241962"><a name="cce_01_0153__li283771391512"></a><a name="li283771391512"></a>The <strong id="cce_01_0153__b10887327235">secret.yaml</strong> file is defined as shown below. The value must be based on the Base64 coding method. For details about the method, see <a href="#cce_01_0153__section175000605919">Base64 Encoding</a>.</p>
-<pre class="screen" id="cce_01_0153__screen2846173513513">apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret           #Secret name
-  namespace: default       #Namespace. The default value is <strong id="cce_01_0153__b842352706165921">default</strong>.
-data:
-  username: ******  #The value must be Base64-encoded.
-  password: ******  #The value must be encoded using Base64.
-type: Opaque     #You are advised not to change this parameter value.</pre>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0153__section821112149514"><a name="cce_01_0153__section821112149514"></a><a name="section821112149514"></a><h4 class="sectiontitle">Creating a Secret Using kubectl</h4><ol id="cce_01_0153__ol4681114115209"><li id="cce_01_0153__li1681024195710"><span>According to <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_01_0153__b72241535102516">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_01_0153__li198031614164419"><span>Create and edit the Base64-encoded <strong id="cce_01_0153__b3176599254">cce-secret.yaml</strong> file.</span><p><pre class="screen" id="cce_01_0153__screen1658792012013"># echo -n "<em id="cce_01_0153__i25185217413">content to be encoded</em>" | base64
-******</pre>
-<p id="cce_01_0153__p19354756165916"><strong id="cce_01_0153__b1577616471020">vi cce-secret.yaml</strong></p>
-<pre class="screen" id="cce_01_0153__screen1530717111302">apiVersion: v1
-kind: Secret
-metadata:
-  name: mysecret
-type: Opaque
-data:
-  username: ******
-  password: ******</pre>
-</p></li><li id="cce_01_0153__li788331518303"><span>Create a secret.</span><p><p id="cce_01_0153__p3315182011255"><strong id="cce_01_0153__b56467233250">kubectl create -f cce-secret.yaml</strong></p>
-<p id="cce_01_0153__p2239132312114">You can query the secret after creation.</p>
-<p id="cce_01_0153__p11761214251"><strong id="cce_01_0153__b96501723152519">kubectl get secret</strong></p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0153__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0153__p1010361816508">After creating a secret, you can update or delete it as described in <a href="#cce_01_0153__table555785274319">Table 2</a>.<div class="note" id="cce_01_0153__note1655192725017"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0153__p10656327115010">The secret list contains system secret resources that can be queried only. The system secret resources cannot be updated or deleted.</p>
-</div></div>
-
-<div class="tablenoborder"><a name="cce_01_0153__table555785274319"></a><a name="table555785274319"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0153__table555785274319" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Related Operations</caption><thead align="left"><tr id="cce_01_0153__row19412155014112"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.6.2.3.2.3.1.1"><p id="cce_01_0153__p154122501516">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.6.2.3.2.3.1.2"><p id="cce_01_0153__p94129501313">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0153__row155037195247"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_01_0153__p163331851201">Viewing a YAML file</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><p id="cce_01_0153__p1633314512016">Click <strong id="cce_01_0153__b84235270611425">View YAML</strong> next to the secret name to view the YAML file corresponding to the current secret.</p>
-</td>
-</tr>
-<tr id="cce_01_0153__row8412185010116"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_01_0153__p1541213501611">Updating a secret</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><ol id="cce_01_0153__ol1341225020114"><li id="cce_01_0153__li74121507113">Select the name of the secret to be updated and click <strong id="cce_01_0153__b842352706114220">Update</strong>.</li><li id="cce_01_0153__li104127501214">Modify the secret data. For more information, see <a href="#cce_01_0153__table16321825732">Table 1</a>.</li><li id="cce_01_0153__li184127501617">Click <strong id="cce_01_0153__b8227911204520">Update</strong>.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0153__row1541219508112"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_01_0153__p141245010120">Deleting a secret</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><p id="cce_01_0153__p241218502119">Select the secret you want to delete and click <strong id="cce_01_0153__b84235270613133">Delete</strong>.</p>
-<p id="cce_01_0153__p18412195016114">Follow the prompts to delete the secret.</p>
-</td>
-</tr>
-<tr id="cce_01_0153__row24121750518"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_01_0153__p841215015117">Deleting secrets in batches</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><ol id="cce_01_0153__ol8412145016116"><li id="cce_01_0153__li1441265019117">Select the secrets to be deleted.</li><li id="cce_01_0153__li1841210501111">Click <strong id="cce_01_0153__b786415800104925">Delete</strong> above the secret list.</li><li id="cce_01_0153__li1841245011114">Follow the prompts to delete the secrets.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div class="section" id="cce_01_0153__section175000605919"><a name="cce_01_0153__section175000605919"></a><a name="section175000605919"></a><h4 class="sectiontitle">Base64 Encoding</h4><p id="cce_01_0153__p171051722165915">To encrypt a character string using Base64, run the <strong id="cce_01_0153__b2189133114590">echo -n <em>to-be-encoded content</em> | base64</strong> command. The following is an example.</p>
-<pre class="screen" id="cce_01_0153__screen18124926408">root@ubuntu:~# echo -n "<em id="cce_01_0153__i13559177152">content to be encoded</em>" | base64
-******</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0045.html">Configuration Center</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0154.html b/docs/cce/umn/cce_01_0154.html
deleted file mode 100644
index 26b3e3f6..00000000
--- a/docs/cce/umn/cce_01_0154.html
+++ /dev/null
@@ -1,146 +0,0 @@
-<a name="cce_01_0154"></a><a name="cce_01_0154"></a>
-
-<h1 class="topictitle1">autoscaler</h1>
-<div id="body1532314376260"><div class="section" id="cce_01_0154__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_01_0154__p1516451974919">Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.</p>
-<p id="cce_01_0154__p19176344814">When the CPU or memory usage of a microservice is too high, horizontal pod autoscaling is triggered to add pods to reduce the load. These pods can be automatically reduced when the load is low, allowing the microservice to run as efficiently as possible.</p>
-<p id="cce_01_0154__p10444837184212">CCE simplifies the creation, upgrade, and manual scaling of Kubernetes clusters, in which traffic loads change over time. To balance resource usage and workload performance of nodes, Kubernetes introduces the autoscaler add-on to automatically resize a cluster based on the resource usage required for workloads deployed in the cluster. For details, see <a href="cce_01_0209.html">Creating a Node Scaling Policy</a>.</p>
-<p id="cce_01_0154__p475433874510">Open source community: <a href="https://github.com/kubernetes/autoscaler" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/autoscaler</a></p>
-</div>
-<div class="section" id="cce_01_0154__section11187642115211"><h4 class="sectiontitle">How the Add-on Works</h4><p id="cce_01_0154__p12302642125211">autoscaler controls auto scale-out and scale-in.</p>
-<ul id="cce_01_0154__ul2031215814525"><li id="cce_01_0154__li8303242105213"><strong id="cce_01_0154__b07913431075">Auto scale-out</strong><p id="cce_01_0154__p3544113121811">If pods in a cluster cannot be scheduled due to insufficient worker nodes, cluster scaling is triggered to add nodes. The nodes to be added have the same specification as configured for the node pool to which the nodes belong. For details, see <a href="cce_01_0209.html">Creating a Node Scaling Policy</a>.</p>
-<div class="p" id="cce_01_0154__p1130318428527">The add-on follows the "No Less, No More" policy. For example, if three cores are required for creating a pod and the system supports four-core and eight-core nodes, autoscaler will preferentially create a four-core node.<div class="note" id="cce_01_0154__note1530311429523"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0154__p93031742185211">Auto scale-out will be performed when:</p>
-<ul id="cce_01_0154__ul130316420525"><li id="cce_01_0154__li1130344285219">Node resources are insufficient.</li><li id="cce_01_0154__li1130304245216">No node affinity policy is set in the pod scheduling configuration. That is, if a node has been configured as an affinity node for pods, no node will not be automatically added when pods cannot be scheduled. For details about how to configure the node affinity policy, see <a href="cce_01_0232.html">Node Affinity</a>.</li></ul>
-</div></div>
-</div>
-</li><li id="cce_01_0154__li531345875210"><strong id="cce_01_0154__b107877171297">Auto scale-in</strong><p id="cce_01_0154__p13303184295216">When a cluster node is idle for a period of time (10 minutes by default), cluster scale-in is triggered, and the node is automatically deleted. However, a node cannot be deleted from a cluster if the following pods exist:</p>
-<ul id="cce_01_0154__ul1313558125218"><li id="cce_01_0154__li630394225211">Pods that do not meet specific requirements set in PodDisruptionBudget</li><li id="cce_01_0154__li2303842205217">Pods that cannot be scheduled to other nodes due to constraints such as affinity and anti-affinity policies</li><li id="cce_01_0154__li0303164255210">Pods that have the <strong id="cce_01_0154__b17618643151716">cluster-autoscaler.kubernetes.io/safe-to-evict: 'false'</strong> annotation</li><li id="cce_01_0154__li1303164211527">Pods (except those created by kube-system DaemonSet) that exist in the kube-system namespace on the node</li><li id="cce_01_0154__li431395818527">Pods that are not created by the controller (Deployment/ReplicaSet/job/StatefulSet)</li></ul>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0154__section202191122814"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0154__ul12636102212222"><li id="cce_01_0154__li17741192811716">Only clusters of v1.9.10-r2 and later support autoscaler.</li><li id="cce_01_0154__li1538416591311">Ensure that there are sufficient resources for installing the add-on.</li></ul>
-</div>
-<div class="section" id="cce_01_0154__section15573161754711"><a name="cce_01_0154__section15573161754711"></a><a name="section15573161754711"></a><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_01_0154__ol9183433182510"><li id="cce_01_0154__li13183153352515"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0154__b17117933135311">Add-ons</strong>. On the <strong id="cce_01_0154__b15123143319535">Add-on Marketplace</strong> tab page, click <strong id="cce_01_0154__b191241433155311">Install Add-on</strong> under <strong id="cce_01_0154__b16124113314536">autoscaler</strong>.</span></li><li id="cce_01_0154__li9455819152615"><span>On the <strong id="cce_01_0154__b154911842208">Install Add-on</strong> page, select the cluster and the add-on version, and click <strong id="cce_01_0154__b144911542806">Next: Configuration</strong>.</span></li><li id="cce_01_0154__li16821154504212"><span>Configure add-on installation parameters listed in <a href="#cce_01_0154__table1582194517429">Table 1</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0154__table1582194517429"></a><a name="table1582194517429"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0154__table1582194517429" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic settings</caption><thead align="left"><tr id="cce_01_0154__row178187453428"><th align="left" class="cellrowborder" valign="top" width="18.33%" id="mcps1.3.4.2.3.2.1.2.4.1.1"><p id="cce_01_0154__p14818104534219">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="19.919999999999998%" id="mcps1.3.4.2.3.2.1.2.4.1.2"><p id="cce_01_0154__p102901135192211">Add-on Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="61.75000000000001%" id="mcps1.3.4.2.3.2.1.2.4.1.3"><p id="cce_01_0154__p181814453425">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0154__row178631475226"><td class="cellrowborder" valign="top" width="18.33%" headers="mcps1.3.4.2.3.2.1.2.4.1.1 "><p id="cce_01_0154__p386464792210">Add-on Specifications</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.919999999999998%" headers="mcps1.3.4.2.3.2.1.2.4.1.2 "><p id="cce_01_0154__p111958230594">Available in all versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75000000000001%" headers="mcps1.3.4.2.3.2.1.2.4.1.3 "><p id="cce_01_0154__p1861133733913">The add-on can be deployed in the following specifications:</p>
-<ul id="cce_01_0154__ul1634319358233"><li id="cce_01_0154__li2343135152319"><strong id="cce_01_0154__b15151353408">Single</strong>: The add-on is deployed with only one pod.</li><li id="cce_01_0154__li33431235192311"><strong id="cce_01_0154__b4574123141513">HA50</strong>: The add-on is deployed with two pods, serving a cluster with 50 nodes and ensuring high availability.</li><li id="cce_01_0154__li482912427514"><strong id="cce_01_0154__b1411151181815">HA200</strong>: The add-on is deployed with two pods, serving a cluster with 50 nodes and ensuring high availability. Each pod uses more resources than those of the <strong id="cce_01_0154__b2191221161916">HA50</strong> specification.</li><li id="cce_01_0154__li7281273523"><strong id="cce_01_0154__b42561826161918">Custom</strong>: You can customize the number of pods and specifications as required.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0154__row921611101579"><td class="cellrowborder" valign="top" width="18.33%" headers="mcps1.3.4.2.3.2.1.2.4.1.1 "><p id="cce_01_0154__p13217111055715">Instances</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.919999999999998%" headers="mcps1.3.4.2.3.2.1.2.4.1.2 "><p id="cce_01_0154__p2264124945914">Available in all versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75000000000001%" headers="mcps1.3.4.2.3.2.1.2.4.1.3 "><p id="cce_01_0154__p93701640145120">Number of pods that will be created to match the selected add-on specifications. The number cannot be modified.</p>
-</td>
-</tr>
-<tr id="cce_01_0154__row087474432717"><td class="cellrowborder" valign="top" width="18.33%" headers="mcps1.3.4.2.3.2.1.2.4.1.1 "><p id="cce_01_0154__p17875104414275">Container</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.919999999999998%" headers="mcps1.3.4.2.3.2.1.2.4.1.2 "><p id="cce_01_0154__p179441523596">Available in all versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75000000000001%" headers="mcps1.3.4.2.3.2.1.2.4.1.3 "><p id="cce_01_0154__p1437014065110">CPU and memory quotas of the container allowed for the selected add-on specifications. The quotas cannot be modified.</p>
-</td>
-</tr>
-<tr id="cce_01_0154__row1166495115206"><td class="cellrowborder" valign="top" width="18.33%" headers="mcps1.3.4.2.3.2.1.2.4.1.1 "><p id="cce_01_0154__p146651551122019">Login Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.919999999999998%" headers="mcps1.3.4.2.3.2.1.2.4.1.2 "><p id="cce_01_0154__p17242135513412">Available only in certain versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75000000000001%" headers="mcps1.3.4.2.3.2.1.2.4.1.3 "><p id="cce_01_0154__p1011412155524">Select a login mode for the worker nodes to be added during auto scale-up.</p>
-<p id="cce_01_0154__p1973095275113">If you select <strong id="cce_01_0154__b1461892610153">Key pair</strong>:</p>
-<p id="cce_01_0154__p9299140193120"><strong id="cce_01_0154__b93630564539">Key pair</strong>: Select an existing key pair or create a new one for identity authentication during remote login to the added nodes.</p>
-</td>
-</tr>
-<tr id="cce_01_0154__row7820124544210"><td class="cellrowborder" valign="top" width="18.33%" headers="mcps1.3.4.2.3.2.1.2.4.1.1 "><p id="cce_01_0154__p7820184519425"><span class="keyword" id="cce_01_0154__keyword100872799152224">Auto Scale-In</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="19.919999999999998%" headers="mcps1.3.4.2.3.2.1.2.4.1.2 "><p id="cce_01_0154__p4606103215012">Available in all versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75000000000001%" headers="mcps1.3.4.2.3.2.1.2.4.1.3 "><p id="cce_01_0154__p15974173353612"><strong id="cce_01_0154__b71141930125416">Off</strong>: Auto scale-down is not allowed. Only auto scale-up is allowed.</p>
-<p id="cce_01_0154__p597311174372"><strong id="cce_01_0154__b018162918534">On</strong>: Enable auto scale-in. The scale-in policy is valid for node pools in the cluster with auto scaling enabled.</p>
-<ul id="cce_01_0154__ul20302135243"><li id="cce_01_0154__li183031451045"><strong id="cce_01_0154__b17363726987">Idle Time (min)</strong>: Time for which a node should be unneeded before it is eligible for scale-down. Default value: 10 minutes.</li><li id="cce_01_0154__li6871153513418"><strong id="cce_01_0154__b8909114211199">Resource Usage</strong>: If the percentage of both CPU and memory usage on a node is below this threshold, auto scale-down will be triggered to delete the node from the cluster. The default value is 0.5, which means 50%.</li><li id="cce_01_0154__li713713713155"><strong id="cce_01_0154__b202941912112817">Scale-in Cooldown After Scale-out</strong>: The time after scale-up that the scale-down evaluation will resume. Default value: 10 minutes.<div class="note" id="cce_01_0154__note11141447375"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0154__p1445674518371">If both auto scale-out and scale-in exist in a cluster, you are advised to set <strong id="cce_01_0154__b115711948193312">Scale-in Cooldown After Scale-out</strong> to 0 minutes. This can prevent the node scale-in from being blocked due to continuous scale-out of some node pools or retries upon a scale-out failure, resulting in unexpected waste of node resources.</p>
-</div></div>
-</li><li id="cce_01_0154__li3275125214162"><strong id="cce_01_0154__b1231414234318">Scale-in Cooldown After Node Deletion</strong>: The time after node deletion that the scale-down evaluation will resume. Default value: 10 minutes.</li><li id="cce_01_0154__li1854244017174"><strong id="cce_01_0154__b1833570143215">Scale-in Cooldown After Failure</strong>: The time after a scale-down failure that the scale-down evaluation will resume. Default value: 3 minutes. For details about the impact and relationship between the scale-in cooling intervals configured in the node pool and autoscaler, see <a href="cce_01_0012.html#cce_01_0012__li16733114525110">Scale-in Cooling Interval</a>.</li><li id="cce_01_0154__li149365424184"><strong id="cce_01_0154__b3786135619320">Max empty bulk delete</strong>: The maximum number of empty nodes that can be deleted at the same time. Default value: 10.</li><li id="cce_01_0154__li3365933199"><strong id="cce_01_0154__b138444433363">Node Recheck Timeout</strong>: The timeout before autoscaler checks again the node that could not be previously removed. Default value: 5 minutes.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0154__row10588111641417"><td class="cellrowborder" valign="top" width="18.33%" headers="mcps1.3.4.2.3.2.1.2.4.1.1 "><p id="cce_01_0154__p20580042144816">Node Pool Configuration</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.919999999999998%" headers="mcps1.3.4.2.3.2.1.2.4.1.2 "><p id="cce_01_0154__p369616371304">Available only in certain versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75000000000001%" headers="mcps1.3.4.2.3.2.1.2.4.1.3 "><p id="cce_01_0154__p106311133304">Configuration of the default node pool. A node pool is a group of compute nodes with the same node type (VM or BMS), specifications, and labels. When a cluster needs to be scaled up, autoscaler will automatically add nodes from node pools to the cluster. If no custom node pool is available, autoscaler will use the default node pool.</p>
-<p id="cce_01_0154__p2087715518406">Click <strong id="cce_01_0154__b16709165713368">Add Node Pool Configuration</strong> and set the following parameters:</p>
-<ul id="cce_01_0154__ul378119275614"><li id="cce_01_0154__li627419551817"><strong id="cce_01_0154__b1869716517332">AZ</strong>: A physical region where resources use independent power supplies and networks. AZs are physically isolated but interconnected through the internal network.</li><li id="cce_01_0154__li152744551982"><strong id="cce_01_0154__b8584599566">OS</strong>: OS of the nodes to be created.</li><li id="cce_01_0154__li552312812152"><strong id="cce_01_0154__b713584464116">Taints</strong>: No taints are added by default.<div class="p" id="cce_01_0154__p7853111720153">Taints allow nodes to repel a set of pods. You can add a maximum of 10 taints for each node pool. Each taint contains the following parameters:<ul id="cce_01_0154__ul17274222121015"><li id="cce_01_0154__li227482216106"><strong id="cce_01_0154__b6921811213">Key</strong>: A key must contain 1 to 63 characters starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_01_0154__li7274112241020"><strong id="cce_01_0154__b17301821282">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_01_0154__li2274182211010"><strong id="cce_01_0154__b838411376810">Effect</strong>: Available options are <strong id="cce_01_0154__b10854184131219">NoSchedule</strong>, <strong id="cce_01_0154__b15432119161211">PreferNoSchedule</strong>, and <strong id="cce_01_0154__b73476124120">NoExecute</strong>.</li></ul>
-<div class="notice" id="cce_01_0154__note77443231113"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_01_0154__ul104271158181515"><li id="cce_01_0154__li042725811158">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-up may fail or pods cannot be scheduled onto the added nodes.</li><li id="cce_01_0154__li642712581152">Taints cannot be modified after configuration. Incorrect taints may cause a scale-up failure or prevent pods from being scheduled onto the added nodes.</li></ul>
-</div></div>
-</div>
-</li><li id="cce_01_0154__li1248702121617"><strong id="cce_01_0154__b76081141194516">Resource Tags</strong>: Resource tags can be added to classify resources.<div class="note" id="cce_01_0154__note1873655813232"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0154__p75776214816">You can create <strong id="cce_01_0154__b82261136135413">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency.</p>
-</div></div>
-</li><li id="cce_01_0154__li152747550817"><strong id="cce_01_0154__b651061314582">Specifications</strong>: CPU and memory of the added nodes.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0154__p0306645193413">To configure more add-on parameters, click <strong id="cce_01_0154__b496114225015">Advanced Settings</strong> at the bottom of this page.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0154__table9850103573510" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Advanced settings</caption><thead align="left"><tr id="cce_01_0154__row4607144693512"><th align="left" class="cellrowborder" valign="top" width="18.528147185281473%" id="mcps1.3.4.2.3.2.3.2.4.1.1"><p id="cce_01_0154__p39151855123517">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="19.71802819718028%" id="mcps1.3.4.2.3.2.3.2.4.1.2"><p id="cce_01_0154__p1412212191402">Add-on Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="61.75382461753826%" id="mcps1.3.4.2.3.2.3.2.4.1.3"><p id="cce_01_0154__p18915195517356">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0154__row385043515351"><td class="cellrowborder" valign="top" width="18.528147185281473%" headers="mcps1.3.4.2.3.2.3.2.4.1.1 "><p id="cce_01_0154__p129911124203017">Total Nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.71802819718028%" headers="mcps1.3.4.2.3.2.3.2.4.1.2 "><p id="cce_01_0154__p436632542">Available in all versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75382461753826%" headers="mcps1.3.4.2.3.2.3.2.4.1.3 "><p id="cce_01_0154__p1253551412214">Maximum number of nodes that can be managed by the cluster, within which cluster scale-out is performed.</p>
-</td>
-</tr>
-<tr id="cce_01_0154__row1785163517352"><td class="cellrowborder" valign="top" width="18.528147185281473%" headers="mcps1.3.4.2.3.2.3.2.4.1.1 "><p id="cce_01_0154__p09919249305">Total Cores</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.71802819718028%" headers="mcps1.3.4.2.3.2.3.2.4.1.2 "><p id="cce_01_0154__p16496194815118">Available in all versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75382461753826%" headers="mcps1.3.4.2.3.2.3.2.4.1.3 "><p id="cce_01_0154__p136391289161">Maximum sum of CPU cores of all nodes in a cluster, within which cluster scale-out is performed.</p>
-</td>
-</tr>
-<tr id="cce_01_0154__row208511335113518"><td class="cellrowborder" valign="top" width="18.528147185281473%" headers="mcps1.3.4.2.3.2.3.2.4.1.1 "><p id="cce_01_0154__p7991152414302">Total Memory (GB)</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.71802819718028%" headers="mcps1.3.4.2.3.2.3.2.4.1.2 "><p id="cce_01_0154__p5197195215113">Available in all versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75382461753826%" headers="mcps1.3.4.2.3.2.3.2.4.1.3 "><p id="cce_01_0154__p135351014162119">Maximum sum of memory of all nodes in a cluster, within which cluster scale-out is performed.</p>
-</td>
-</tr>
-<tr id="cce_01_0154__row12626156103612"><td class="cellrowborder" valign="top" width="18.528147185281473%" headers="mcps1.3.4.2.3.2.3.2.4.1.1 "><p id="cce_01_0154__p1627256173617">Auto Scale-Out</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.71802819718028%" headers="mcps1.3.4.2.3.2.3.2.4.1.2 "><p id="cce_01_0154__p5194172018453">Available only in certain versions</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.75382461753826%" headers="mcps1.3.4.2.3.2.3.2.4.1.3 "><p id="cce_01_0154__p96272569366"><strong id="cce_01_0154__b340112810534">Triggered when there are pods unscheduled</strong>: Selected by default.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0154__li855215375213"><span>When the configuration is complete, click <strong id="cce_01_0154__b842352706153736">Install</strong>.</span><p><p id="cce_01_0154__p4919161213524">After the add-on is installed, click <strong id="cce_01_0154__b1316843411186">Go Back to Previous Page</strong>. On the <strong id="cce_01_0154__b161739343180">Add-on Instance</strong> tab page, select the corresponding cluster to view the running instance. This indicates that the add-on has been installed on each node in the cluster.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0154__section3578191413712"><h4 class="sectiontitle">Upgrading the Add-on</h4><ol id="cce_01_0154__ol255316335402"><li id="cce_01_0154__li95532332404"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0154__b12701836115515">Add-ons</strong>. On the <strong id="cce_01_0154__b7707143665513">Add-on Instance</strong> tab page, click <strong id="cce_01_0154__b1870873617559">Upgrade</strong> under <strong id="cce_01_0154__b770983605517">autoscaler</strong>.</span><p><div class="note" id="cce_01_0154__note1625210332283"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0154__ul163002418296"><li id="cce_01_0154__li33006482916">If the <strong id="cce_01_0154__b18218397509">Upgrade</strong> button is unavailable, the current add-on is already up-to-date and no upgrade is required.</li><li id="cce_01_0154__li930017402915">If the <strong id="cce_01_0154__b46141341162420">Upgrade</strong> button is available, click <strong id="cce_01_0154__b2061974192418">Upgrade</strong> to upgrade the add-on.</li><li id="cce_01_0154__li53016432920">During the upgrade, the coredns add-on of the original version on cluster nodes will be discarded, and the add-on of the target version will be installed.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0154__li11556163354015"><span>In the dialog box displayed, set parameters and upgrade the add-on. For details about the parameters, see the parameter description in <a href="#cce_01_0154__section15573161754711">Installing the Add-on</a>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0154__section610455514114"><h4 class="sectiontitle">Uninstalling the Add-on</h4><ol id="cce_01_0154__ol29784442018"><li id="cce_01_0154__li390219316816"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0154__b7398350125512">Add-ons</strong>. On the <strong id="cce_01_0154__b1640575015554">Add-on Instance</strong> tab page, select the target cluster and click <strong id="cce_01_0154__b140517504557">Uninstall</strong> under <strong id="cce_01_0154__b114069502556">autoscaler</strong>.</span></li><li id="cce_01_0154__li20637152311120"><span>In the dialog box displayed, click <strong id="cce_01_0154__b10234181718589">Yes</strong> to uninstall the add-on.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0064.html">Add-ons</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0157.html b/docs/cce/umn/cce_01_0157.html
deleted file mode 100644
index d246e191..00000000
--- a/docs/cce/umn/cce_01_0157.html
+++ /dev/null
@@ -1,135 +0,0 @@
-<a name="cce_01_0157"></a><a name="cce_01_0157"></a>
-
-<h1 class="topictitle1">Setting Cluster Auto Scaling</h1>
-<div id="body1517888511059"><div class="section" id="cce_01_0157__section10273801511"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0157__p10952743161516">The Cluster Auto Scaling feature allows CCE to automatically <span class="keyword" id="cce_01_0157__keyword1240031011191">scale out</span> a cluster (adding worker nodes to a cluster) according to custom policies when workloads cannot be scheduled into the cluster due to insufficient cluster resources.</p>
-</div>
-<div class="section" id="cce_01_0157__section20483173513555"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0157__ul48352151384"><li id="cce_01_0157__li167921522104513">Currently, master nodes cannot be automatically added to or removed from clusters.</li><li id="cce_01_0157__li1683561563813">If both auto scale-in and auto scale-out are required, use the autoscaler add-on. For details, see <a href="cce_01_0154.html">autoscaler</a>.</li><li id="cce_01_0157__li151411559163510">Clusters of v1.17 do not support auto scaling using AOM. You can use node pools for auto scaling. For details, see <a href="cce_01_0081.html">Node Pool Overview</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0157__section203712516160"><h4 class="sectiontitle">Automatic Cluster Scale-out</h4><ol id="cce_01_0157__ol2179428516222"><li id="cce_01_0157__li6193083916222"><span>Log in to the CCE console. Choose <strong id="cce_01_0157__b155561411105113">Resource Management</strong> &gt; <strong id="cce_01_0157__b1555791125116">Clusters</strong> in the navigation pane. In the card view of the cluster to be scaled, choose <strong id="cce_01_0157__b16557111125111">More</strong> &gt; <strong id="cce_01_0157__b45571911135117">Auto Scaling</strong>.</span></li><li id="cce_01_0157__li5794403816222"><span>Click the <span class="uicontrol" id="cce_01_0157__uicontrol5173429616222"><b><span id="cce_01_0157__text1679411360011"><span id="cce_01_0157__text1747232152918">Scale-out</span></span> Settings</b></span> tab and then <strong id="cce_01_0157__b842352706113834">Edit</strong>. Set the maximum number of nodes, minimum number of nodes, cooldown period, and node configuration.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0157__table6133357316271" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Scale-out settings</caption><thead align="left"><tr id="cce_01_0157__row6495428016271"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.2.2.1.2.3.1.1"><p id="cce_01_0157__p3992130816271">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.2.2.1.2.3.1.2"><p id="cce_01_0157__p1240055416271">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0157__row264735262215"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0157__p9762105862216"><span class="keyword" id="cce_01_0157__keyword166813866311444">Cooldown Period</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0157__p1776217589220">Interval between consecutive scale-out operations, in the unit of second. The cooldown period ensures that a scale-out operation is initiated only when previous scaling operation is finished and the system is running stably.</p>
-<p id="cce_01_0157__p157621158192219">The value ranges from 60 to 3600, in seconds. The default value is 900. If the cooling interval is less than 900 seconds (15 minutes), the auto scaling may not work well, because creating a node may take 2 to 10 minutes.</p>
-</td>
-</tr>
-<tr id="cce_01_0157__row559783816271"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0157__p5077174216271">Maximum Nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0157__p12732340142311">Maximum number of nodes to which the cluster can scale out.</p>
-<p id="cce_01_0157__p2079863914242">1 ≤ Maximum Nodes &lt; cluster node quota</p>
-<div class="note" id="cce_01_0157__note93741436192516"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0157__p183751136192514">The cluster node quota depends on the cluster size (maximum number of nodes that can be managed by a cluster) and the node quota of the account. The cluster node quota used here is the smaller of the two.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0157__row3382856916271"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0157__p5575960016271">Node Configuration</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0157__p36381708171221">If scale-out is required after the scale-out policy is executed, the system creates a node.</p>
-<ol type="a" id="cce_01_0157__ol62317823171235"><li id="cce_01_0157__li24082412171235">Click <strong id="cce_01_0157__b842352706101636">Set</strong> and set the node parameters. For details about how to set the node parameters, see <a href="cce_01_0033.html">Creating a Node</a>. </li><li id="cce_01_0157__li57324029171238">After the parameters are configured, click <strong id="cce_01_0157__b18841151311479">Submit</strong>.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0157__li64936837172649"><span>After confirming the scale-out configuration and node parameters, click <strong id="cce_01_0157__b84235270611570">OK</strong>.</span></li><li id="cce_01_0157__li12230797191554"><span>Set the scale-out policy for the cluster. Click the <strong id="cce_01_0157__b84235270614228">Scale-out Policies</strong> tab and click <strong id="cce_01_0157__b8423527061437">Add Policy</strong>.</span><p><ul id="cce_01_0157__ul9764145445114"><li id="cce_01_0157__li7764165415115"><span class="parmname" id="cce_01_0157__parmname879916257373"><b>Policy Name</b></span>: Enter a policy name, for example, <strong id="cce_01_0157__b84235270610245">policy01</strong>.</li><li id="cce_01_0157__li469804819163"><span class="parmname" id="cce_01_0157__parmname5079491719164"><b>Policy Type</b></span>: Currently, the following types of auto scale-out policies are supported:<ul id="cce_01_0157__ul7212209191540"><li id="cce_01_0157__li64909882191540"><a href="#cce_01_0157__table23209107191540"><span class="keyword" id="cce_01_0157__keyword29536534516">Metric-based policy</span></a>: Scale-out is performed based on the CPU or memory settings.
-<div class="tablenoborder"><a name="cce_01_0157__table23209107191540"></a><a name="table23209107191540"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0157__table23209107191540" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters for adding a metric-based policy</caption><thead align="left"><tr id="cce_01_0157__row64542335191540"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.1"><p id="cce_01_0157__p60546633191540">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.2"><p id="cce_01_0157__p5330260191540">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0157__row29097928191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.1 "><p id="cce_01_0157__p8121931191540">*Metric</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.2 "><p id="cce_01_0157__p53896712191540">Select <strong id="cce_01_0157__b842352706105845">Allocated CPU</strong> or <strong id="cce_01_0157__b842352706105849">Allocated Memory</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0157__row32017871191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.1 "><p id="cce_01_0157__p43310752191540">*Trigger Condition</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.2 "><p id="cce_01_0157__p18509989191540">Set a condition for triggering a scale-out policy, that is, when the average CPU or memory allocation value is greater than or less than a specified percentage. </p>
-</td>
-</tr>
-<tr id="cce_01_0157__row32372174191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.1 "><p id="cce_01_0157__p4900477191540">*Monitoring Window</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.2 "><p id="cce_01_0157__p61394389191540">Size of the data aggregation window. Select a value from the drop-down list.</p>
-<p id="cce_01_0157__p15678591191540">If you select <strong id="cce_01_0157__b8423527061147">15min</strong>, the selected metric is measured every 15 minutes.</p>
-</td>
-</tr>
-<tr id="cce_01_0157__row6889597191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.1 "><p id="cce_01_0157__p21186461191540">*Threshold Crossings</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.2 "><p id="cce_01_0157__p38381790191540">Number of consecutive times that the threshold is reached within the monitoring window. The calculation cycle is fixed at one minute. If you set this parameter to <strong id="cce_01_0157__b142018454519">3</strong>, the configured action will be triggered when the metrics meet the specified threshold for three consecutive times.</p>
-</td>
-</tr>
-<tr id="cce_01_0157__row9891794191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.1 "><p id="cce_01_0157__p63037863191540">*Action</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.1.2.2.3.1.2 "><p id="cce_01_0157__p5793264191540">Action executed after a policy is triggered. </p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0157__li52139380191540"><a href="#cce_01_0157__table62540231191540"><span class="keyword" id="cce_01_0157__keyword248500855141111">Scheduled policy</span></a>: Scale-out is performed at a specified time.
-<div class="tablenoborder"><a name="cce_01_0157__table62540231191540"></a><a name="table62540231191540"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0157__table62540231191540" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Parameters for adding a scheduled policy</caption><thead align="left"><tr id="cce_01_0157__row39885138191540"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.1"><p id="cce_01_0157__p9470775191540">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.2"><p id="cce_01_0157__p28935333191540">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0157__row3287219191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.1 "><p id="cce_01_0157__p64938190191540">*Policy Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.2 "><p id="cce_01_0157__p25502013191540">Set this parameter to <strong id="cce_01_0157__b842352706171841">Scheduled policy</strong>. </p>
-</td>
-</tr>
-<tr id="cce_01_0157__row28191528191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.1 "><p id="cce_01_0157__p1812401191540">*Trigger Time</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.2 "><p id="cce_01_0157__p12586754191540">Time at which the policy is triggered. </p>
-</td>
-</tr>
-<tr id="cce_01_0157__row46171925191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.1 "><p id="cce_01_0157__p48938470191540">*Action</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.2.2.2.3.1.2 "><p id="cce_01_0157__p4593172191540">Action executed after a policy is triggered. </p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0157__li41338553191540"><a href="#cce_01_0157__table60088509191540"><span class="keyword" id="cce_01_0157__keyword322522655141058">Periodic policy</span></a>: Scale-out can be performed by day, week, or month.
-<div class="tablenoborder"><a name="cce_01_0157__table60088509191540"></a><a name="table60088509191540"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0157__table60088509191540" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Parameters for adding a periodic policy</caption><thead align="left"><tr id="cce_01_0157__row12838474191540"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.1"><p id="cce_01_0157__p33283455191540">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.2"><p id="cce_01_0157__p11605349191540">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0157__row4159900191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.1 "><p id="cce_01_0157__p1407635191540">*Policy Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.2 "><p id="cce_01_0157__p46909639191540">Set the parameter to <strong id="cce_01_0157__b1788560206172133">Periodic policy</strong>. </p>
-</td>
-</tr>
-<tr id="cce_01_0157__row19533571191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.1 "><p id="cce_01_0157__p38715420191540">*Time Range</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.2 "><p id="cce_01_0157__p48941350191540">Specify the time for triggering the policy. </p>
-</td>
-</tr>
-<tr id="cce_01_0157__row37818973191540"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.1 "><p id="cce_01_0157__p43437971191540">*Action</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.4.2.1.2.2.3.2.2.3.1.2 "><p id="cce_01_0157__p28814733191540">Action executed after a policy is triggered. </p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0157__li3476261191635"><span>Click <strong id="cce_01_0157__b84235270614139">OK</strong>.</span><p><p id="cce_01_0157__p148661127174717">After the auto scale-out is completed, choose <span class="menucascade" id="cce_01_0157__menucascade2227176134911"><b><span class="uicontrol" id="cce_01_0157__uicontrol92271644914">Resource Management</span></b> &gt; <b><span class="uicontrol" id="cce_01_0157__uicontrol1365681014917">Nodes</span></b></span> in the navigation pane. On the node list, you can view the worker nodes added during cluster auto scaling.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0160.html b/docs/cce/umn/cce_01_0160.html
deleted file mode 100644
index 9909a5f2..00000000
--- a/docs/cce/umn/cce_01_0160.html
+++ /dev/null
@@ -1,23 +0,0 @@
-<a name="cce_01_0160"></a><a name="cce_01_0160"></a>
-
-
-  <h1 class="topictitle1">OBS Volumes</h1>
-
-  <div id="body0000001416477729"><p id="cce_01_0160__p8060118"></p>
-</div>
-
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0265.html">Using OBS Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0269.html">Creating a Deployment Mounted with an OBS Volume</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0268.html">Creating a StatefulSet Mounted with an OBS Volume</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0393.html">Deployment Examples</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0163.html b/docs/cce/umn/cce_01_0163.html
deleted file mode 100644
index 3d7aa871..00000000
--- a/docs/cce/umn/cce_01_0163.html
+++ /dev/null
@@ -1,74 +0,0 @@
-<a name="cce_01_0163"></a><a name="cce_01_0163"></a>
-
-<h1 class="topictitle1">Setting Container Specifications</h1>
-<div id="body1523953038446"><div class="section" id="cce_01_0163__section1642219227611"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0163__p179892274615">CCE allows you to set resource limits for added containers during workload creation. You can request and limit the CPU and memory quotas used by each pod in the workload.</p>
-</div>
-<div class="section" id="cce_01_0163__section13440617205217"><h4 class="sectiontitle">Meanings</h4><div class="p" id="cce_01_0163__p121528405515">For <strong id="cce_01_0163__b121101859195012">CPU</strong> and <strong id="cce_01_0163__b121791010175117">Memory</strong>, the meanings of <strong id="cce_01_0163__b1786325155119">Request</strong> and <strong id="cce_01_0163__b612616286514">Limit</strong> are as follows:<ul id="cce_01_0163__ul98184925015"><li id="cce_01_0163__li12682639175017">If <span class="parmname" id="cce_01_0163__parmname1799510547162256"><b>Request</b></span> is selected, the system schedules the pod to the node that meets the requirements for workload deployment based on the request value.</li><li id="cce_01_0163__li274174185019">If <span class="parmname" id="cce_01_0163__parmname129799283533"><b>Request</b></span> is deselected, the system schedules the pod to a random node for workload deployment.</li><li id="cce_01_0163__li123709447505">If <strong id="cce_01_0163__b1550082319548">Limit</strong> is selected, the system limits the resources used by the workload based on the preset value.</li><li id="cce_01_0163__li5510144775912">If <span class="parmname" id="cce_01_0163__parmname28931690717"><b>Limit</b></span> is deselected, the system does not limit the resources used by the pod. If the memory resources used by the pod exceed the memory allocated to the node, the workload or node may be unavailable.</li></ul>
-</div>
-<div class="note" id="cce_01_0163__note44961356161012"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0163__p176193114221">When creating a workload, you are advised to set the upper and lower limits of CPU and memory resources. If the upper and lower resource limits are not set for a workload, a resource leak of this workload will make resources unavailable for other workloads deployed on the same node. In addition, workloads that do not have upper and lower resource limits cannot be accurately monitored.</p>
-</div></div>
-</div>
-<p id="cce_01_0163__p12275165255313">For <strong id="cce_01_0163__b1867253114501">GPU</strong> quotas, the meanings of <strong id="cce_01_0163__b8554143395214">Use</strong> and <strong id="cce_01_0163__b13554163315218">Any GPU type</strong> are as follows:</p>
-<ul id="cce_01_0163__ul1845213582163"><li id="cce_01_0163__li64521058161613">If <strong id="cce_01_0163__b123814719531">Use</strong> is selected, the system schedules the pod to a node that meets the requirements for workload deployment based on the configured value.</li><li id="cce_01_0163__li164521658161610"><strong id="cce_01_0163__b62731133544">Any GPU type</strong> is selected by default and cannot be deselected. This option indicates that the resources used by pods are not limited.</li></ul>
-<div class="section" id="cce_01_0163__section1550317594522"><h4 class="sectiontitle">Configuration Description</h4><ul id="cce_01_0163__ul14091057191617"><li id="cce_01_0163__li1540915578163">CPU quotas:
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0163__table362417589103" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Description of CPU quotas</caption><thead align="left"><tr id="cce_01_0163__row186251758111012"><th align="left" class="cellrowborder" valign="top" width="17%" id="mcps1.3.5.2.1.1.2.3.1.1"><p id="cce_01_0163__p762595815102">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="83%" id="mcps1.3.5.2.1.1.2.3.1.2"><p id="cce_01_0163__p8625105813106">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0163__row162511587103"><td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.5.2.1.1.2.3.1.1 "><p id="cce_01_0163__p2625135851014">CPU request</p>
-</td>
-<td class="cellrowborder" valign="top" width="83%" headers="mcps1.3.5.2.1.1.2.3.1.2 "><p id="cce_01_0163__p262515818104">Minimum number of CPU cores required by a container. Resources are scheduled for the container based on this value. The container can be scheduled to this node only when the total available CPU on the node is greater than or equal to the number of containerized CPU applications.</p>
-</td>
-</tr>
-<tr id="cce_01_0163__row172431422171112"><td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.5.2.1.1.2.3.1.1 "><p id="cce_01_0163__p1424472219115">CPU limit</p>
-</td>
-<td class="cellrowborder" valign="top" width="83%" headers="mcps1.3.5.2.1.1.2.3.1.2 "><p id="cce_01_0163__p524412223119">Maximum number of CPU cores available for a container.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0163__p4169184362110"><strong id="cce_01_0163__b636117273596">Recommended configuration</strong></p>
-<p id="cce_01_0163__p19191030192017">Actual available CPU of a node ≥ Sum of CPU limits of all containers on the current node ≥ Sum of CPU requests of all containers on the current node. You can view the actual available CPUs of a node on the CCE console (<strong id="cce_01_0163__b932844405164038">Resource Management</strong> &gt; <strong id="cce_01_0163__b2028946788164038">Nodes</strong> &gt; <strong id="cce_01_0163__b842352706163417">Allocatable</strong>).</p>
-</li></ul>
-<ul id="cce_01_0163__ul3512117135316"><li id="cce_01_0163__li115125173539">Memory quotas:
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0163__table164121625191912" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Description of memory quotas</caption><thead align="left"><tr id="cce_01_0163__row64131325111910"><th align="left" class="cellrowborder" valign="top" width="18%" id="mcps1.3.5.3.1.1.2.3.1.1"><p id="cce_01_0163__p154131025111914">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="82%" id="mcps1.3.5.3.1.1.2.3.1.2"><p id="cce_01_0163__p16413325111912">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0163__row1241310258194"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.5.3.1.1.2.3.1.1 "><p id="cce_01_0163__p15413225131915">Memory request</p>
-</td>
-<td class="cellrowborder" valign="top" width="82%" headers="mcps1.3.5.3.1.1.2.3.1.2 "><p id="cce_01_0163__p541362541919">Minimum amount of memory required by a container. Resources are scheduled for the container based on this value. The container can be scheduled to this node only when the total available memory on the node is greater than or equal to the number of containerized memory applications.</p>
-</td>
-</tr>
-<tr id="cce_01_0163__row1413325101918"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.5.3.1.1.2.3.1.1 "><p id="cce_01_0163__p241312517195">Memory Limit</p>
-</td>
-<td class="cellrowborder" valign="top" width="82%" headers="mcps1.3.5.3.1.1.2.3.1.2 "><p id="cce_01_0163__p1241352520199">Maximum amount of memory available for a container. When the memory usage exceeds the configured memory limit, the instance may be restarted, which affects the normal use of the workload.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0163__p19399171422017"><strong id="cce_01_0163__b71614421416">Recommended configuration</strong></p>
-<p id="cce_01_0163__p151281711539">Actual available memory of a node ≥ Sum of memory limits of all containers on the current node ≥ Sum of memory requests of all containers on the current node. You can view the actual available memory of a node on the CCE console (<strong id="cce_01_0163__b1563488693">Resource Management</strong> &gt; <strong id="cce_01_0163__b1487718792">Nodes</strong> &gt; <strong id="cce_01_0163__b838872092">Allocatable</strong>).</p>
-</li></ul>
-<div class="note" id="cce_01_0163__note96535331218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0163__p73492457214">The allocatable resources are calculated based on the resource request value (<strong id="cce_01_0163__b921033217215">Request</strong>), which indicates the upper limit of resources that can be requested by pods on this node, but does not indicate the actual available resources of the node. The calculation formula is as follows:</p>
-<ul id="cce_01_0163__ul259653921"><li id="cce_01_0163__li1259253828">Allocatable CPU = Total CPU – Requested CPU of all pods – Reserved CPU for other resources</li><li id="cce_01_0163__li15913539216">Allocatable memory = Total memory – Requested memory of all pods – Reserved memory for other resources</li></ul>
-</div></div>
-</div>
-<div class="section" id="cce_01_0163__section17887209103612"><h4 class="sectiontitle">Example</h4><p id="cce_01_0163__p526873310363">Assume that a cluster contains a node with 4 cores and 8 GB. A workload containing two pods has been deployed on the cluster. The resources of the two pods (pods 1 and 2) are as follows: {CPU request, CPU limit, memory request, memory limit} = {1 core, 2 cores, 2 GB, 2 GB}.</p>
-<p id="cce_01_0163__p13764132011525">The CPU and memory usage of the node is as follows:</p>
-<ul id="cce_01_0163__ul137361942132916"><li id="cce_01_0163__li0736342162910">Allocatable CPU = 4 cores - (1 core requested by pod 1 + 1 core requested by pod 2) = 2 cores</li><li id="cce_01_0163__li6737194215295">Allocatable memory = 8 GB - (2 GB requested by pod 1 + 2 GB requested by pod 2) = 4 GB</li></ul>
-<p id="cce_01_0163__p54416407291">Therefore, the remaining 2 cores and 4 GB can be used by the next new pod.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0130.html">Configuring a Container</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0164.html b/docs/cce/umn/cce_01_0164.html
deleted file mode 100644
index b427f78f..00000000
--- a/docs/cce/umn/cce_01_0164.html
+++ /dev/null
@@ -1,17 +0,0 @@
-<a name="cce_01_0164"></a><a name="cce_01_0164"></a>
-
-<h1 class="topictitle1">Permissions Management</h1>
-<div id="body1556099896058"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0187.html">Permissions Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0188.html">Cluster Permissions (IAM-based)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0189.html">Namespace Permissions (Kubernetes RBAC-based)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0275.html">Pod Security Policies</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0175.html b/docs/cce/umn/cce_01_0175.html
deleted file mode 100644
index f9fc9165..00000000
--- a/docs/cce/umn/cce_01_0175.html
+++ /dev/null
@@ -1,17 +0,0 @@
-<a name="cce_01_0175"></a><a name="cce_01_0175"></a>
-
-<h1 class="topictitle1">Obtaining a Cluster Certificate</h1>
-<div id="body1556615866530"><div class="section" id="cce_01_0175__section160213214302"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0175__p1840111417517">Before accessing cluster resources through open-source Kubernetes APIs, obtain the cluster's certificate.</p>
-</div>
-<div class="section" id="cce_01_0175__section1590914113306"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0175__ol898314521505"><li id="cce_01_0175__li179831852301"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0175__b022844018111">Resource Management</strong> &gt; <strong id="cce_01_0175__b112341840171114">Clusters</strong>.</span></li><li id="cce_01_0175__li169841352902"><span>In the card view of the target cluster, choose <span class="menucascade" id="cce_01_0175__menucascade93567507610"><b><span class="uicontrol" id="cce_01_0175__uicontrol11356150667">More</span></b> &gt; <b><span class="uicontrol" id="cce_01_0175__uicontrol1938511571865">Download X.509 Certificate</span></b></span>.</span></li><li id="cce_01_0175__li1979910715109"><span>In the <span class="uicontrol" id="cce_01_0175__uicontrol13516511412"><b>Download X.509 Certificate</b></span> dialog box displayed, select the certificate expiration time and download the X.509 certificate of the cluster as prompted.</span><p><div class="fignone" id="cce_01_0175__fig873583013712"><span class="figcap"><b>Figure 1 </b>Downloading a certificate</span><br><span><img id="cce_01_0175__image282017212710" src="en-us_image_0000001190859184.png"></span></div>
-<div class="notice" id="cce_01_0175__note21816913343"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0175__ul45041635102414"><li id="cce_01_0175__li050403542411">The downloaded certificate contains three files: <strong id="cce_01_0175__b1790092752911">client.key</strong>, <strong id="cce_01_0175__b990002710298">client.crt</strong>, and <strong id="cce_01_0175__b690015272292">ca.crt</strong>. Keep these files secure.</li><li id="cce_01_0175__li150414359248">Certificates are not required for mutual access between containers in a cluster.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0178.html b/docs/cce/umn/cce_01_0178.html
deleted file mode 100644
index 0438c9ba..00000000
--- a/docs/cce/umn/cce_01_0178.html
+++ /dev/null
@@ -1,129 +0,0 @@
-<a name="cce_01_0178"></a><a name="cce_01_0178"></a>
-
-<h1 class="topictitle1">Formula for Calculating the Reserved Resources of a Node</h1>
-<div id="body1524713564673"><p id="cce_01_0178__p591031155413">Some of the resources on the <span class="keyword">node</span> need to run some necessary <span class="keyword">Kubernetes</span> system components and resources to make the node as part of your cluster. Therefore, the total number of node resources and the number of assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, Kubernetes needs to reserve more resources.</p>
-<p id="cce_01_0178__p9278143105716">To ensure node stability, a certain amount of CCE node resources will be reserved for Kubernetes components (such as kubelet, kube-proxy, and docker) based on the node specifications.</p>
-<p id="cce_01_0178__p169111185415">CCE calculates the resources that can be allocated to user nodes as follows:</p>
-<p id="cce_01_0178__p15911151155419"><strong id="cce_01_0178__b1713634541010">Allocatable resources = Total amount - Reserved amount - Eviction threshold</strong></p>
-<p id="cce_01_0178__p16231944205019"> </p>
-<div class="section" id="cce_01_0178__section16856143934620"><h4 class="sectiontitle">Rules for Reserving Node Memory</h4><p id="cce_01_0178__p671312452573">You can use the following formula calculate how much memory you should reserve for running containers on a node:</p>
-<p id="cce_01_0178__p1695774420316">Total reserved amount = Reserved memory for system components + Reserved memory for kubelet to manage pods</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0178__table19962121035915" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Reservation rules for system components</caption><thead align="left"><tr id="cce_01_0178__row15963910105914"><th align="left" class="cellrowborder" valign="top" width="34.61%" id="mcps1.3.6.4.2.3.1.1"><p id="cce_01_0178__p1696331012593">Total Memory (TM)</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="65.39%" id="mcps1.3.6.4.2.3.1.2"><p id="cce_01_0178__p396381013598">Reserved Memory for System Components</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0178__row496381016596"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.6.4.2.3.1.1 "><p id="cce_01_0178__p9426281054">TM ≤ 8 GB</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.6.4.2.3.1.2 "><p id="cce_01_0178__p7963161019593">0 MB</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row596315106595"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.6.4.2.3.1.1 "><p id="cce_01_0178__p1963161014599">8 GB &lt; TM ≤ 16 GB</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.6.4.2.3.1.2 "><p id="cce_01_0178__p10963510135919">[(TM – 8 GB) x 1024 x 10%] MB</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row17963410125919"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.6.4.2.3.1.1 "><p id="cce_01_0178__p0963111055917">16 GB &lt; TM ≤ 128 GB</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.6.4.2.3.1.2 "><p id="cce_01_0178__p1896314102596">[8 GB x 1024 x 10% + (TM – 16 GB) x 1024 x 6%] MB</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row189631910175912"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.6.4.2.3.1.1 "><p id="cce_01_0178__p8963710135918">TM &gt; 128 GB</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.6.4.2.3.1.2 "><p id="cce_01_0178__p10963510105914">(8 GB x 1024 x 10% + 112 GB x 1024 x 6% + (TM – 128 GB) x 1024 x 2%) MB</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0178__table124614211528" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Reservation rules for kubelet</caption><thead align="left"><tr id="cce_01_0178__row446112112218"><th align="left" class="cellrowborder" valign="top" width="23.122312231223123%" id="mcps1.3.6.5.2.4.1.1"><p id="cce_01_0178__p4461521121">Total Memory (TM)</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="32.023202320232016%" id="mcps1.3.6.5.2.4.1.2"><p id="cce_01_0178__p1461142111216">Number of Pods</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="44.85448544854486%" id="mcps1.3.6.5.2.4.1.3"><p id="cce_01_0178__p1746117210214">Reserved Memory for kubelet</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0178__row1246132112212"><td class="cellrowborder" valign="top" width="23.122312231223123%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_01_0178__p84615211023">TM ≤ 2 GB</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.023202320232016%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_01_0178__p7461321028">-</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.85448544854486%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_01_0178__p1046152115213">TM x 25%</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row1346142120210"><td class="cellrowborder" rowspan="5" valign="top" width="23.122312231223123%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_01_0178__p1846192112212">TM &gt; 2 GB</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.023202320232016%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_01_0178__p74611219215">0 &lt; Max. pods on a node ≤ 16</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.85448544854486%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_01_0178__p84617211218">700 MB</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row1461152112217"><td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_01_0178__p94619211127">16 &lt; Max. pods on a node ≤ 32</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_01_0178__p146132117210">[700 + (Max. pods on a node – 16) x 18.75] MB</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row154613212210"><td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_01_0178__p4461192117218">32 &lt; Max. pods on a node ≤ 64</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_01_0178__p346182112217">[1024 + (Max. pods on a node – 32) x 6.25] MB</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row2461102112217"><td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_01_0178__p124615212021">64 &lt; Max. pods on a node ≤ 128</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_01_0178__p114611121626">[1230 + (Max. pods on a node – 64) x 7.80] MB</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row64617211826"><td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_01_0178__p846218211324">Max. pods on a node &gt; 128</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_01_0178__p1462162111214">[1740 + (Max. pods on a node – 128) x 11.20] MB</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="notice" id="cce_01_0178__note56413123206"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0178__p264101215209">For a small-capacity node, adjust the maximum number of instances based on the site requirements. Alternatively, when creating a node on the CCE console, you can adjust the maximum number of instances for the node based on the node specifications.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0178__section65041914716"><h4 class="sectiontitle">Rules for Reserving Node CPU</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0178__table17922413344" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Node CPU reservation rules</caption><thead align="left"><tr id="cce_01_0178__row1895248347"><th align="left" class="cellrowborder" valign="top" width="34.61%" id="mcps1.3.7.2.2.3.1.1"><p id="cce_01_0178__p49162463410">Total CPU Cores (Total)</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="65.39%" id="mcps1.3.7.2.2.3.1.2"><p id="cce_01_0178__p1291246343">Reserved CPU Cores</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0178__row199142416347"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_01_0178__p1382311613512">Total ≤ 1 core</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_01_0178__p6822196203510">Total x 6%</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row19914246341"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_01_0178__p108221962357">1 core &lt; Total ≤ 2 cores</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_01_0178__p138211164358">1 core x 6% + (Total – 1 core) x 1%</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row591247342"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_01_0178__p198209653519">2 cores &lt; Total ≤ 4 cores</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_01_0178__p182096173516">1 core x 6% + 1 core x 1% + (Total – 2 cores) x 0.5%</p>
-</td>
-</tr>
-<tr id="cce_01_0178__row1795245346"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_01_0178__p10819663350">Total &gt; 4 cores</p>
-</td>
-<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_01_0178__p68181765353">1 core x 6% + 1 core x 1% + 2 cores x 0.5% + (Total – 4 cores) x 0.25%</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="notice" id="cce_01_0178__note37851016113716"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0178__p678581673710">CCE reserves an extra 100 MiB for kubelet eviction.</p>
-</div></div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0180.html b/docs/cce/umn/cce_01_0180.html
deleted file mode 100644
index 72bc1ec6..00000000
--- a/docs/cce/umn/cce_01_0180.html
+++ /dev/null
@@ -1,284 +0,0 @@
-<a name="cce_01_0180"></a><a name="cce_01_0180"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body1556588320638"><div class="section" id="cce_01_0180__section192318418302"><h4 class="sectiontitle">Introduction</h4><p id="cce_01_0180__p8909587309">A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (PM), depending on your service requirements. The components on a node include kubelet, container runtime, and kube-proxy.</p>
-<div class="note" id="cce_01_0180__note62802132513"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0180__p17287216259">A Kubernetes cluster consists of master nodes and node nodes. The nodes described in this section refer to <strong id="cce_01_0180__b1948131025511">worker nodes</strong>, the computing nodes of a cluster that run containerized applications.</p>
-</div></div>
-<p id="cce_01_0180__p7224034124116">CCE uses high-performance Elastic Cloud Servers (ECSs) as nodes to build highly available Kubernetes clusters.</p>
-</div>
-<div class="section" id="cce_01_0180__section69889262234"><h4 class="sectiontitle">Notes</h4><ul id="cce_01_0180__ul534861042415"><li id="cce_01_0180__li6993142614234">To ensure node stability, a certain amount of CCE node resources will be reserved for Kubernetes components (such as kubelet, kube-proxy, and docker) based on the node specifications. Therefore, the total number of node resources and the amount of allocatable node resources for your cluster are different. The larger the node specifications, the more the containers deployed on the node. Therefore, more node resources need to be reserved to run Kubernetes components.</li><li id="cce_01_0180__li12993326152313">The node networking (such as the VM networking and container networking) is taken over by CCE. You are not allowed to add NICs or change routes. If you modify the networking configuration, the availability of CCE may be affected.</li></ul>
-</div>
-<div class="section" id="cce_01_0180__section10178149152811"><h4 class="sectiontitle">Node Lifecycle</h4><p id="cce_01_0180__p747083694014">A lifecycle indicates the node statuses recorded from the time when the node is created through the time when the node is deleted or released.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0180__table17402472296" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node statuses</caption><thead align="left"><tr id="cce_01_0180__row3772182292915"><th align="left" class="cellrowborder" valign="top" width="19.09%" id="mcps1.3.3.3.2.4.1.1"><p id="cce_01_0180__p87731822192912">Status</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="18.96%" id="mcps1.3.3.3.2.4.1.2"><p id="cce_01_0180__p10181992388">Status Attribute</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="61.95%" id="mcps1.3.3.3.2.4.1.3"><p id="cce_01_0180__p19773322162916">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0180__row127851396358"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.3.3.2.4.1.1 "><p id="cce_01_0180__p87851239123513">Available</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.3.3.2.4.1.2 "><p id="cce_01_0180__p29178413612">Stable state</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.3.3.2.4.1.3 "><p id="cce_01_0180__p49172415361">The node is running properly and is connected to the cluster.</p>
-<p id="cce_01_0180__p834918431444">Nodes in this state can provide services.</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row10449165023519"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.3.3.2.4.1.1 "><p id="cce_01_0180__p16449155053517">Unavailable</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.3.3.2.4.1.2 "><p id="cce_01_0180__p338181615362">Stable state</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.3.3.2.4.1.3 "><p id="cce_01_0180__p438161693614">The node is not running properly.</p>
-<p id="cce_01_0180__p1316964110457">Instances in this state no longer provide services. In this case, perform the operations in <a href="cce_01_0003.html">Resetting a Node</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row4425127202910"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.3.3.2.4.1.1 "><p id="cce_01_0180__p114251477299">Creating</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.3.3.2.4.1.2 "><p id="cce_01_0180__p1318179103815">Intermediate state</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.3.3.2.4.1.3 "><p id="cce_01_0180__p24251375295">The node has been created but is not running.</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row1385572713368"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.3.3.2.4.1.1 "><p id="cce_01_0180__p1485532773615">Installing</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.3.3.2.4.1.2 "><p id="cce_01_0180__p19300340173617">Intermediate state</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.3.3.2.4.1.3 "><p id="cce_01_0180__p1385562783619">The Kubernetes software is being installed on the node.</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row6474103113718"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.3.3.2.4.1.1 "><p id="cce_01_0180__p0474133153710">Deleting</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.3.3.2.4.1.2 "><p id="cce_01_0180__p1347493163711">Intermediate state</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.3.3.2.4.1.3 "><p id="cce_01_0180__p6470184874013">The node is being deleted.</p>
-<p id="cce_01_0180__p1247423163713">If this state stays for a long time, an exception occurs.</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row1342567172914"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.3.3.2.4.1.1 "><p id="cce_01_0180__p17425177172911">Stopped</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.3.3.2.4.1.2 "><p id="cce_01_0180__p51811919382">Stable state</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.3.3.2.4.1.3 "><p id="cce_01_0180__p63872919417">The node is stopped properly.</p>
-<p id="cce_01_0180__p147702274411">A node in this state cannot provide services. You can start the node on the ECS console.</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row107389391356"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.3.3.2.4.1.1 "><p id="cce_01_0180__p673813963511">Error</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.3.3.2.4.1.2 "><p id="cce_01_0180__p61811496382">Stable state</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.3.3.2.4.1.3 "><p id="cce_01_0180__p9930111744220">The node is abnormal.</p>
-<p id="cce_01_0180__p1573815398352">Instances in this state no longer provide services. In this case, perform the operations in <a href="cce_01_0003.html">Resetting a Node</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0180__section159298451879"><h4 class="sectiontitle">Mapping between Node OSs and Container Engines</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0180__table2291621581" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Node OSs and container engines in CCE clusters</caption><thead align="left"><tr id="cce_01_0180__row910219215812"><th align="left" class="cellrowborder" valign="top" width="23.369999999999997%" id="mcps1.3.4.2.2.6.1.1"><p id="cce_01_0180__p148202181680">OS</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="11.84%" id="mcps1.3.4.2.2.6.1.2"><p id="cce_01_0180__p131891727584">Kernel Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.4.2.2.6.1.3"><p id="cce_01_0180__p2102621818">Container Engine</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="34.47%" id="mcps1.3.4.2.2.6.1.4"><p id="cce_01_0180__p141021721812">Container Storage Rootfs</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="15.32%" id="mcps1.3.4.2.2.6.1.5"><p id="cce_01_0180__p4214133511514">Container Runtime</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0180__row810262382"><td class="cellrowborder" valign="top" width="23.369999999999997%" headers="mcps1.3.4.2.2.6.1.1 "><p id="cce_01_0180__p88201018885">CentOS 7.x</p>
-</td>
-<td class="cellrowborder" rowspan="3" valign="top" width="11.84%" headers="mcps1.3.4.2.2.6.1.2 "><p id="cce_01_0180__p14189192717815">3.x</p>
-</td>
-<td class="cellrowborder" rowspan="5" valign="top" width="15%" headers="mcps1.3.4.2.2.6.1.3 "><p id="cce_01_0180__p16102102783">Docker</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.47%" headers="mcps1.3.4.2.2.6.1.4 "><p id="cce_01_0180__p1510213216814">Clusters of v1.19 and earlier use Device Mapper.</p>
-<p id="cce_01_0180__p1251655494914">Clusters of v1.21 and later use OverlayFS.</p>
-</td>
-<td class="cellrowborder" rowspan="5" valign="top" width="15.32%" headers="mcps1.3.4.2.2.6.1.5 "><p id="cce_01_0180__p41351846105112">runC</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row1410214218819"><td class="cellrowborder" valign="top" headers="mcps1.3.4.2.2.6.1.1 "><p id="cce_01_0180__p0820121812819">EulerOS 2.5</p>
-</td>
-<td class="cellrowborder" rowspan="2" valign="top" headers="mcps1.3.4.2.2.6.1.2 "><p id="cce_01_0180__p14374192215015">Device Mapper</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0180__table138541215675" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Node OSs and container engines in CCE Turbo clusters</caption><thead align="left"><tr id="cce_01_0180__row28547159714"><th align="left" class="cellrowborder" valign="top" width="16.16%" id="mcps1.3.4.3.2.7.1.1"><p id="cce_01_0180__p7854161514717">Node Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="19.68%" id="mcps1.3.4.3.2.7.1.2"><p id="cce_01_0180__p2085420159718">OS</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="14.399999999999999%" id="mcps1.3.4.3.2.7.1.3"><p id="cce_01_0180__p128555151972">Kernel Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="15.24%" id="mcps1.3.4.3.2.7.1.4"><p id="cce_01_0180__p158557151674">Container Engine</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="19.32%" id="mcps1.3.4.3.2.7.1.5"><p id="cce_01_0180__p12855915470">Container Storage Rootfs</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="15.2%" id="mcps1.3.4.3.2.7.1.6"><p id="cce_01_0180__p18855101511717">Container Runtime</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0180__row385510159718"><td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.4.3.2.7.1.1 "><p id="cce_01_0180__p138551215976">VM</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.68%" headers="mcps1.3.4.3.2.7.1.2 "><p id="cce_01_0180__p78552151270">centos 7.x</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.399999999999999%" headers="mcps1.3.4.3.2.7.1.3 "><p id="cce_01_0180__p17855131519719">3.x</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.24%" headers="mcps1.3.4.3.2.7.1.4 "><p id="cce_01_0180__p6855315876">Docker</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.32%" headers="mcps1.3.4.3.2.7.1.5 "><p id="cce_01_0180__p13855815471">OverlayFS</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.2%" headers="mcps1.3.4.3.2.7.1.6 "><p id="cce_01_0180__p085514150718">Runc</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row1485531515716"><td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.4.3.2.7.1.1 "><p id="cce_01_0180__p198554151379">BMS in the shared resource pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.68%" headers="mcps1.3.4.3.2.7.1.2 "><p id="cce_01_0180__p1885521519716">EulerOS 2.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.399999999999999%" headers="mcps1.3.4.3.2.7.1.3 "><p id="cce_01_0180__p148551515174">4.x</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.24%" headers="mcps1.3.4.3.2.7.1.4 "><p id="cce_01_0180__p685591513715">containerd</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.32%" headers="mcps1.3.4.3.2.7.1.5 "><p id="cce_01_0180__p1485511151072">Device Mapper</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.2%" headers="mcps1.3.4.3.2.7.1.6 "><p id="cce_01_0180__p485519152719">Kata</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0180__section7201124294111"><a name="cce_01_0180__section7201124294111"></a><a name="section7201124294111"></a><h4 class="sectiontitle">Secure Containers and Common Containers</h4><p id="cce_01_0180__p13611030182615">Secure (Kata) containers are distinguished from common containers in a few aspects.</p>
-<p id="cce_01_0180__p113611930142617">The most significant difference is that each secure container (pod) runs on an independent micro-VM, has an independent OS kernel, and is securely isolated at the virtualization layer. CCE provides container isolation that is more secure than independent private Kubernetes clusters. With isolated OS kernels, computing resources, and networks, pod resources and data will not be preempted and stolen by other pods.</p>
-<p id="cce_01_0180__p119042411320">You can run common or secure containers on a single node in a CCE Turbo cluster. The differences between them are as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0180__table7735928151311" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0180__row1978816285135"><th align="left" class="cellrowborder" valign="top" width="19%" id="mcps1.3.5.5.1.5.1.1"><p id="cce_01_0180__p7788142811132"><strong id="cce_01_0180__b5238725131415">Category</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="29.93%" id="mcps1.3.5.5.1.5.1.2"><p id="cce_01_0180__p17788112811134"><strong id="cce_01_0180__b11941124111142">Secure Container (Kata)</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="26.13%" id="mcps1.3.5.5.1.5.1.3"><p id="cce_01_0180__p2078842881319"><strong id="cce_01_0180__b1443671491719">Common Container (Docker)</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="24.94%" id="mcps1.3.5.5.1.5.1.4"><p id="cce_01_0180__p12832194118518"><strong id="cce_01_0180__b15443125413143">Common Container (containerd)</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0180__row185153106411"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p152517212098">Node type used to run containers</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p75254214913">Bare-metal server (BMS)</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p7525021599">VM</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p1483212415513">VM</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row953462111916"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p65258219915">Container engine</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p8525821797">containerd</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p115259211298">Docker</p>
-<p id="cce_01_0180__p1619185285519">Default value for common containers created on the console.</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p5832341145114">containerd</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row68981259143316"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p1989855911335">Container runtime</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p12898185920339">Kata</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p1889814594334">runC</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p4832541155111">runC</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row125346216916"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p1052519218916">Container kernel</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p75252211696">Exclusive kernel</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p1752510211993">Sharing the kernel with the host</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p1583274111515">Sharing the kernel with the host</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row453414211995"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p552562119914">Container isolation</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p252514211797">Lightweight VMs</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p185251921799">cgroups and namespaces</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p0832341145115">cgroups and namespaces</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row145341921791"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p35256211999">Container engine storage driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p752582113913">Device Mapper</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p752542119911">OverlayFS2</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p1983218411510">OverlayFS</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row1753372115912"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p11525321495"><a href="https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/" target="_blank" rel="noopener noreferrer">Pod overhead</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p69621414132319">Memory: 50 MiB</p>
-<p id="cce_01_0180__p1213422142320">CPU: 0.1 cores</p>
-<p id="cce_01_0180__p1325184142613">Pod overhead is a feature for accounting for the resources consumed by the pod infrastructure on top of the container requests and limits. For example, if <strong id="cce_01_0180__b949716437342">limits.cpu</strong> is set to 0.5 cores and <strong id="cce_01_0180__b7921383351">limits.memory</strong> to 256 MiB for a pod, the pod will request 0.6-core CPUs and 306 MiB of memory.</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p1452510214911">None</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p1083218417512">None</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row114111106308"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p54113033015">Minimal specifications</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p104113013304">Memory: 256 MiB</p>
-<p id="cce_01_0180__p540452918310">CPU: 0.25 cores</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p34112093012">None</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p583220414513">None</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row68812038164219"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p1878862812136">Container engine CLI</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p478819289134">crictl</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p578815286134">docker</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p1983214185118">crictl</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row55101249388"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p145100242386">Pod computing resources</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p77887281138">The request and limit values must be the same for both CPU and memory.</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p127886286135">The request and limit values can be different for both CPU and memory.</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p1832941155112">The request and limit values can be different for both CPU and memory.</p>
-</td>
-</tr>
-<tr id="cce_01_0180__row141611128378"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.5.5.1.5.1.1 "><p id="cce_01_0180__p31681214377">Host network</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.5.5.1.5.1.2 "><p id="cce_01_0180__p46341018133713">Not supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.5.5.1.5.1.3 "><p id="cce_01_0180__p13634118193715">Supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.5.5.1.5.1.4 "><p id="cce_01_0180__p14832164116515">Supported</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0182.html b/docs/cce/umn/cce_01_0182.html
deleted file mode 100644
index 9950a338..00000000
--- a/docs/cce/umn/cce_01_0182.html
+++ /dev/null
@@ -1,100 +0,0 @@
-<a name="cce_01_0182"></a><a name="cce_01_0182"></a>
-
-<h1 class="topictitle1">Monitoring Overview</h1>
-<div id="body0000001175422840"><p id="cce_01_0182__p11459541508">CCE works with AOM to comprehensively monitor clusters. When a node is created, the ICAgent (the DaemonSet named <strong id="cce_01_0182__b271195119386">icagent</strong> in the kube-system namespace of the cluster) of AOM is installed by default. The ICAgent collects monitoring data of underlying resources and workloads running on the cluster. It also collects monitoring data of custom metrics of the workload.</p>
-<ul id="cce_01_0182__ul92271168588"><li id="cce_01_0182__li139411131122317">Resource metrics<p id="cce_01_0182__p1522153372310"><a name="cce_01_0182__li139411131122317"></a><a name="li139411131122317"></a>Basic resource monitoring includes CPU, memory, and disk monitoring. For details, see <a href="#cce_01_0182__section205486212251">Resource Metrics</a>. You can view these metrics of clusters, nodes, and workloads on the CCE or AOM console.</p>
-</li></ul>
-<div class="notice" id="cce_01_0182__note11309151132014"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0182__p830981132011">AOM is available only in certain regions.</p>
-</div></div>
-<div class="section" id="cce_01_0182__section205486212251"><a name="cce_01_0182__section205486212251"></a><a name="section205486212251"></a><h4 class="sectiontitle">Resource Metrics</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0182__table1486013138225" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Resource metrics</caption><thead align="left"><tr id="cce_01_0182__row15860113172219"><th align="left" class="cellrowborder" valign="top" width="32.910000000000004%" id="mcps1.3.4.2.2.3.1.1"><p id="cce_01_0182__p1860111318225">Metric</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="67.09%" id="mcps1.3.4.2.2.3.1.2"><p id="cce_01_0182__p1886081302214">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0182__row1165317863215"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p1365315883216">CPU Allocation Rate</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p1865311813219">Indicates the percentage of CPUs allocated to workloads.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row174421766321"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p44423619323">Memory Allocation Rate</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p1669119116176">Indicates the percentage of memory allocated to workloads.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row286081319224"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p1586001317227">CPU Usage</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p1986015137228">Indicates the CPU usage.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row13860161342214"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p11860413152216">Memory Usage</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p19860161318221">Indicates the memory usage.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row86911734143211"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p18601213112211">Disk Usage</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p58785716159">Indicates the disk usage.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row3860113172218"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p822722541616">Down</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p204478236166">Indicates the speed at which data is downloaded to a node. The unit is KB/s.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row148151597255"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p62262025161611">Up</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p68883217294">Indicates the speed at which data is uploaded from a node. The unit is KB/s.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row109361229181319"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p16936182931312">Disk Read Rate</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p2936729171312">Indicates the data volume read from a disk per second. The unit is KB/s.</p>
-</td>
-</tr>
-<tr id="cce_01_0182__row1857594171313"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_01_0182__p19575741161319">Disk Write Rate</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_01_0182__p10575144131317">Indicates the data volume written to a disk per second. The unit is KB/s.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0182__section1932383618498"><h4 class="sectiontitle">Viewing Cluster Monitoring Data</h4><p id="cce_01_0182__p1085718497494">In the navigation pane of the CCE console, choose <strong id="cce_01_0182__b1986117261556">Resource Management</strong> &gt; <strong id="cce_01_0182__b026414291559">Clusters</strong>. Click <span><img id="cce_01_0182__image11780146114810" src="en-us_image_0000001222591781.png"></span> on the cluster card to access the cluster monitoring page.</p>
-<p id="cce_01_0182__p10111123335311"><span><img id="cce_01_0182__image38221833205311" src="en-us_image_0000001221007635.png"></span></p>
-<p id="cce_01_0182__p20863186125411">The cluster monitoring page displays the monitoring status of cluster resources, CPU, memory, and disk usage of all nodes in a cluster, and CPU and memory allocation rates.</p>
-<p id="cce_01_0182__p10871125916522"><strong id="cce_01_0182__b1479102319569">Explanation of monitoring metrics:</strong></p>
-<ul id="cce_01_0182__en-us_topic_0251753945_ul7529114713325"><li id="cce_01_0182__en-us_topic_0251753945_li13529164719327">CPU allocation rate = Sum of CPU quotas requested by pods in the cluster/Sum of CPU quotas that can be allocated of all nodes (excluding master nodes) in the cluster</li><li id="cce_01_0182__en-us_topic_0251753945_li14529124723217">Memory allocation rate = Sum of memory quotas requested by pods in the cluster/Sum of memory quotas that can be allocated of all nodes (excluding master nodes) in the cluster</li><li id="cce_01_0182__li415205135014">CPU usage: Average CPU usage of all nodes (excluding master nodes) in a cluster</li><li id="cce_01_0182__li943517375113">Memory usage: Average memory usage of all nodes (excluding master nodes) in a cluster</li></ul>
-<div class="note" id="cce_01_0182__note1479463954111"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0182__p16231944205019">Allocatable node resources (CPU or memory) = Total amount – Reserved amount – Eviction thresholds. For details, see <a href="cce_01_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
-</div></div>
-<p id="cce_01_0182__p149921951488">On the cluster monitoring page, you can also view monitoring data of nodes, workloads, and pods. You can click <span><img id="cce_01_0182__image15448184419122" src="en-us_image_0000001221376671.png"></span> to view the detailed data.</p>
-<p id="cce_01_0182__p1510920571298"><span><img id="cce_01_0182__image20871858295" src="en-us_image_0000001176255102.png"></span></p>
-</div>
-<div class="section" id="cce_01_0182__section6879951768"><h4 class="sectiontitle">Viewing Monitoring Data of Master Nodes</h4><p id="cce_01_0182__p67407610719">CCE allows you to view monitoring data of master nodes. You can view the monitoring data of a master node in the upper right corner of the cluster details page. Clicking <strong id="cce_01_0182__b530614419185">More</strong> will direct you to the AOM console.</p>
-<p id="cce_01_0182__p41096451899"></p>
-</div>
-<div class="section" id="cce_01_0182__section965517431154"><h4 class="sectiontitle">Viewing Monitoring Data of Worker Nodes</h4><p id="cce_01_0182__p2146145231519">In addition to the cluster monitoring page, you can also view node monitoring data on the node console by clicking <strong id="cce_01_0182__b1678741191918">Monitoring</strong> in the row where the node resides.</p>
-<p id="cce_01_0182__p254116478161"></p>
-<p id="cce_01_0182__p136520891916">The node list page also displays the data about the allocable resources of the node. <strong id="cce_01_0182__b590254533619">Allocatable resources</strong> indicate the upper limit of resources that can be requested by pods on a node, and are calculated based on the requests. Allocatable resources do not indicate the actual available resources of the node.</p>
-<p id="cce_01_0182__p1686984516571">The calculation formulas are as follows:</p>
-<ul id="cce_01_0182__ul290610277202"><li id="cce_01_0182__li96925384594">Allocatable CPU = Total CPU – Requested CPU of all pods – Reserved CPU for other resources</li><li id="cce_01_0182__li13692103845916">Allocatable memory = Total memory – Requested memory of all pods – Reserved memory for other resources</li></ul>
-<p id="cce_01_0182__p1517113519507"></p>
-</div>
-<div class="section" id="cce_01_0182__section2221948202013"><h4 class="sectiontitle">Viewing Workload Monitoring Data</h4><p id="cce_01_0182__p650765613203">You can view monitoring data of a workload on the <strong id="cce_01_0182__b17723423473">Monitoring</strong> tab page of the workload details page.</p>
-<p id="cce_01_0182__p12478113514230"></p>
-<p id="cce_01_0182__p20527162152414">You can also click <strong id="cce_01_0182__b157951412509">AOM</strong> to go to the AOM console to view monitoring data of the workload.</p>
-<p id="cce_01_0182__p74594550251"></p>
-<p id="cce_01_0182__p15552132882616"></p>
-</div>
-<div class="section" id="cce_01_0182__section1799803015267"><h4 class="sectiontitle">Viewing Pod Monitoring Data</h4><p id="cce_01_0182__p153175811268">You can view monitoring data of a pod on the <strong id="cce_01_0182__b11594124345212">Pods</strong> tab page of the workload details page.</p>
-<p id="cce_01_0182__p15487152722711"></p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0110.html">Monitoring and Logs</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0183.html b/docs/cce/umn/cce_01_0183.html
deleted file mode 100644
index 281f03a3..00000000
--- a/docs/cce/umn/cce_01_0183.html
+++ /dev/null
@@ -1,41 +0,0 @@
-<a name="cce_01_0183"></a><a name="cce_01_0183"></a>
-
-<h1 class="topictitle1">Nodes</h1>
-<div id="body1559012940171"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0180.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0033.html">Creating a Node</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0363.html">Creating a Node in a CCE Turbo Cluster</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0338.html">Removing a Node</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0185.html">Logging In to a Node</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0004.html">Managing Node Labels</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0184.html">Synchronizing Node Data</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0352.html">Configuring Node Scheduling (Tainting)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0003.html">Resetting a Node</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0186.html">Deleting a Node</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0036.html">Stopping a Node</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0276.html">Performing Rolling Upgrade for Nodes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0178.html">Formula for Calculating the Reserved Resources of a Node</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0200.html">Creating a Linux LVM Disk Partition for Docker</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0341.html">Data Disk Space Allocation</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0344.html">Adding a Second Data Disk to a Node in a CCE Cluster</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0184.html b/docs/cce/umn/cce_01_0184.html
deleted file mode 100644
index 882614b4..00000000
--- a/docs/cce/umn/cce_01_0184.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="cce_01_0184"></a><a name="cce_01_0184"></a>
-
-<h1 class="topictitle1">Synchronizing Node Data</h1>
-<div id="body1559203372010"><div class="section" id="cce_01_0184__section2175132617712"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0184__p179715213166">Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.</p>
-<p id="cce_01_0184__p116412521617">Some information about CCE nodes is maintained independently from the ECS console. After you change the name, EIP, billing mode, or specifications of an ECS on the ECS console, you need to <strong id="cce_01_0184__b1504527557">synchronize the ECS information</strong> to the corresponding node on the CCE console. After the synchronization, information on both consoles is consistent.</p>
-</div>
-<div class="section" id="cce_01_0184__section2076543461216"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0184__ol1882502762811"><li id="cce_01_0184__li13907715194011"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0184__b1889827195712">Resource Management</strong> &gt; <strong id="cce_01_0184__b1390517725712">Nodes</strong>.</span></li><li id="cce_01_0184__li1382582719286"><span>In the same row as the node whose data will be synchronized, choose <strong id="cce_01_0184__b1345410223125">More</strong> &gt; <strong id="cce_01_0184__b1681723281218">Sync Node data</strong>.</span><p><div class="note" id="cce_01_0184__note2701133710365"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0184__p7702103743613">Alternatively, click the node name, and click <strong id="cce_01_0184__b1416715210535">Sync Node Data</strong> in the upper right corner of the node details page.</p>
-</div></div>
-<div class="fignone" id="cce_01_0184__fig983933294015"><span class="figcap"><b>Figure 1 </b>Synchronizing node data</span><br><span><img id="cce_01_0184__image3503275220" src="en-us_image_0000001144502022.png"></span></div>
-<p id="cce_01_0184__p17635154314012">After the synchronization is complete, the "Sync success" message is displayed in the upper right corner.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0185.html b/docs/cce/umn/cce_01_0185.html
deleted file mode 100644
index af83d767..00000000
--- a/docs/cce/umn/cce_01_0185.html
+++ /dev/null
@@ -1,52 +0,0 @@
-<a name="cce_01_0185"></a><a name="cce_01_0185"></a>
-
-<h1 class="topictitle1">Logging In to a Node</h1>
-<div id="body1559203372010"><div class="section" id="cce_01_0185__section1492661620507"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0185__ul119041718185518"><li id="cce_01_0185__li490481815515">If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).</li><li id="cce_01_0185__li16904121855510">Only login to a running ECS is allowed.</li><li id="cce_01_0185__li3827103362110">Only the user <span id="cce_01_0185__text12656192763716">linux</span> can log in to a Linux server.</li></ul>
-</div>
-<div class="section" id="cce_01_0185__section1391822316511"><h4 class="sectiontitle">Login Modes</h4><p id="cce_01_0185__p9647194820547">You can log in to an ECS in either of the following modes:</p>
-<ul id="cce_01_0185__ul03289813567"><li id="cce_01_0185__li3821114685618">Management console (VNC)<p id="cce_01_0185__p957217278576"><a name="cce_01_0185__li3821114685618"></a><a name="li3821114685618"></a>If an ECS has no EIP, log in to the ECS console and click <strong id="cce_01_0185__b2647192473610">Remote Login</strong> in the same row as the ECS.</p>
-</li><li id="cce_01_0185__li1893519588571">SSH<p id="cce_01_0185__p14702017584"><a name="cce_01_0185__li1893519588571"></a><a name="li1893519588571"></a>This mode applies only to ECSs running Linux. Usually, you can use a remote login tool, such as PuTTY, Xshell, and SecureCRT, to log in to your ECS. If none of the remote login tools can be used, log in to the ECS console and click <strong id="cce_01_0185__b6609145220365">Remote Login</strong> in the same row as the ECS to view the connection status and running status of the ECS.</p>
-<div class="note" id="cce_01_0185__note207919182211"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0185__ul1678102051"><li id="cce_01_0185__li980235455">When you use the Windows OS to log in to a Linux node, set <strong id="cce_01_0185__b16493233638">Auto-login username</strong> to <span id="cce_01_0185__text37277158556">linux</span>.</li><li id="cce_01_0185__li17802205258">The CCE console does not support node OS upgrade. Do not upgrade the node OS using the <strong id="cce_01_0185__b1291344241719">yum update</strong> command. Otherwise, the container networking components will be unavailable.</li></ul>
-</div></div>
-</li></ul>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0185__table8204165071419" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Linux ECS login modes</caption><thead align="left"><tr id="cce_01_0185__row192061050201414"><th align="left" class="cellrowborder" valign="top" width="18.061806180618063%" id="mcps1.3.3.2.4.1.1"><p id="cce_01_0185__p8206135011143">EIP Binding</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20.312031203120313%" id="mcps1.3.3.2.4.1.2"><p id="cce_01_0185__p15206250101419">On-Premises OS</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="61.626162616261624%" id="mcps1.3.3.2.4.1.3"><p id="cce_01_0185__p112061550171411">Connection Method</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0185__row2206125031417"><td class="cellrowborder" valign="top" width="18.061806180618063%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_01_0185__p738113171515">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="20.312031203120313%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_01_0185__p23827141513">Windows</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.626162616261624%" headers="mcps1.3.3.2.4.1.3 "><p id="cce_01_0185__p338221111510">Use a remote login tool, such as PuTTY or Xshell.</p>
-</td>
-</tr>
-<tr id="cce_01_0185__row320725051416"><td class="cellrowborder" valign="top" width="18.061806180618063%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_01_0185__p1638214118155">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="20.312031203120313%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_01_0185__p1138261181513">Linux</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.626162616261624%" headers="mcps1.3.3.2.4.1.3 "><p id="cce_01_0185__p113834114153">Run commands.</p>
-</td>
-</tr>
-<tr id="cce_01_0185__row0207145014149"><td class="cellrowborder" valign="top" width="18.061806180618063%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_01_0185__p13383131101518">Yes/No</p>
-</td>
-<td class="cellrowborder" valign="top" width="20.312031203120313%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_01_0185__p5383813159">Windows/Linux</p>
-</td>
-<td class="cellrowborder" valign="top" width="61.626162616261624%" headers="mcps1.3.3.2.4.1.3 "><p id="cce_01_0185__p238317110159">Use the remote login function available on the console.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0186.html b/docs/cce/umn/cce_01_0186.html
deleted file mode 100644
index 455684ab..00000000
--- a/docs/cce/umn/cce_01_0186.html
+++ /dev/null
@@ -1,20 +0,0 @@
-<a name="cce_01_0186"></a><a name="cce_01_0186"></a>
-
-<h1 class="topictitle1">Deleting a Node</h1>
-<div id="body1559203372010"><div class="section" id="cce_01_0186__section748912450371"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0186__p19987354135915">When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.</p>
-</div>
-<div class="section" id="cce_01_0186__section1999130951"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0186__ul1687437184518"><li id="cce_01_0186__li450618444619">After a CCE cluster is deleted, the ECS nodes in the cluster are also deleted.</li></ul>
-</div>
-<div class="section" id="cce_01_0186__section83421713122615"><h4 class="sectiontitle">Notes</h4><ul id="cce_01_0186__ul189321612123615"><li id="cce_01_0186__li159325122367">Deleting a node will lead to pod migration, which may affect services. Perform this operation during off-peak hours.</li><li id="cce_01_0186__li29322128366">Unexpected risks may occur during the operation. Back up related data in advance.</li><li id="cce_01_0186__li893261218365">During the operation, the backend will set the node to the unschedulable state.</li><li id="cce_01_0186__li139331412133615">Only worker nodes can be deleted.</li></ul>
-</div>
-<div class="section" id="cce_01_0186__section727210277269"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0186__ol856117271009"><li id="cce_01_0186__li1856111271603"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0186__b1224583725918">Resource Management</strong> &gt; <strong id="cce_01_0186__b122518376591">Nodes</strong>. In the same row as the node you will delete, choose <strong id="cce_01_0186__b16251123712593">More</strong> &gt; <strong id="cce_01_0186__b9251537165910">Delete</strong>.</span></li><li id="cce_01_0186__li18203142544612"><span>In the <strong id="cce_01_0186__b246112113267">Delete Node</strong> dialog box, enter <strong id="cce_01_0186__b647615632615">DELETE</strong> and click <strong id="cce_01_0186__b149444882611">Yes</strong>.</span><p><div class="note" id="cce_01_0186__note69026485013"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0186__ul13737236142214"><li id="cce_01_0186__li5735101919217">After the node is deleted, pods on it are automatically migrated to other available nodes. </li><li id="cce_01_0186__li19644146173519">If the disks and EIPs bound to the node are important resources, unbind them first. Otherwise, they will be deleted with the node.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0187.html b/docs/cce/umn/cce_01_0187.html
deleted file mode 100644
index b8d36291..00000000
--- a/docs/cce/umn/cce_01_0187.html
+++ /dev/null
@@ -1,71 +0,0 @@
-<a name="cce_01_0187"></a><a name="cce_01_0187"></a>
-
-<h1 class="topictitle1">Permissions Overview</h1>
-<div id="body1559273520456"><p id="cce_01_0187__p123631955111810">CCE permissions management allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Management (IAM) and Kubernetes Role-based Access Control (RBAC) authorization to provide a variety of authorization methods, including IAM fine-grained authorization, IAM token authorization, cluster-scoped authorization, and namespace-wide authorization.</p>
-<p id="cce_01_0187__p3327830115513">If you need to perform refined permissions management on CCE clusters and related resources, for example, to control the access of employees in different departments to cloud resources, you can perform multi-dimensional permissions management on CCE.</p>
-<p id="cce_01_0187__p1432753017552">This section describes the CCE permissions management mechanism and related concepts. If your account has met your service requirements, you can skip the configurations in this chapter.</p>
-<div class="section" id="cce_01_0187__section3911182131810"><h4 class="sectiontitle">CCE Permissions Management</h4><div class="p" id="cce_01_0187__p206041921795">CCE permissions are described as follows:<ul id="cce_01_0187__ul1689014153919"><li id="cce_01_0187__li46052152312"><strong id="cce_01_0187__b817117413305"><a href="cce_01_0188.html">Cluster-level permissions</a></strong>: Cluster-level permissions management evolves out of the system policy authorization feature of IAM. IAM users in the same user group have the same permissions. On IAM, you can configure system policies to describe which IAM user groups can perform which operations on cluster resources. For example, you can grant user group A to create and delete cluster X, add a node, or install an add-on, while granting user group B to view information about cluster X. <p id="cce_01_0187__p161401647231">Cluster-level permissions involve CCE non-Kubernetes APIs and support fine-grained IAM policies and enterprise project management capabilities.</p>
-</li><li id="cce_01_0187__li128903151991"><strong id="cce_01_0187__b781410311916"><a href="cce_01_0189.html">Namespace-level permissions</a></strong>: You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. CCE has also been enhanced based on open-source capabilities. It supports RBAC authorization based on IAM user or user group, and RBAC authentication on access to APIs using IAM tokens.<p id="cce_01_0187__p112293116233">Namespace-level permissions involve CCE Kubernetes APIs and are enhanced based on the Kubernetes RBAC capabilities. Namespace-level permissions can be granted to IAM users or user groups for authentication and authorization, but are independent of fine-grained IAM policies.</p>
-<p id="cce_01_0187__p1274831312391">Starting from version 1.11.7-r2, CCE clusters allow you to configure namespace permissions. Clusters earlier than v1.11.7-r2 have all namespace permissions by default.</p>
-</li></ul>
-</div>
-<p id="cce_01_0187__p7261627145419">In general, you configure CCE permissions in two scenarios. The first is creating and managing clusters and related resources, such as nodes. The second is creating and using Kubernetes resources in the cluster, such as workloads and Services.</p>
-<div class="fignone" id="cce_01_0187__fig11818185173613"><span class="figcap"><b>Figure 1 </b>Illustration on CCE permissions</span><br><span><img id="cce_01_0187__image77663013375" src="en-us_image_0000001168537057.png"></span></div>
-<p id="cce_01_0187__p791472435616">These permissions allow you to manage resource users at a finer granularity.</p>
-</div>
-<div class="section" id="cce_01_0187__section1464135853519"><a name="cce_01_0187__section1464135853519"></a><a name="section1464135853519"></a><h4 class="sectiontitle">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_01_0187__p5275251191113">Users with different cluster permissions (assigned using IAM) have different namespace permissions (assigned using Kubernetes RBAC). <a href="#cce_01_0187__table886210176509">Table 1</a> lists the namespace permissions of different users.</p>
-
-<div class="tablenoborder"><a name="cce_01_0187__table886210176509"></a><a name="table886210176509"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0187__table886210176509" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Differences in namespace permissions</caption><thead align="left"><tr id="cce_01_0187__row14863201719502"><th align="left" class="cellrowborder" valign="top" width="31.660758112898822%" id="mcps1.3.5.3.2.4.1.1"><p id="cce_01_0187__p14863111718502">User</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.169893646032175%" id="mcps1.3.5.3.2.4.1.2"><p id="cce_01_0187__p18636175506">Clusters Earlier Than v1.11.7-r2</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="37.169348241068995%" id="mcps1.3.5.3.2.4.1.3"><p id="cce_01_0187__p98631617175014">Clusters of v1.11.7-r2</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0187__row138631617185012"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_01_0187__p1787744075015">User with the Tenant Administrator permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_01_0187__p14863717165019">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.5.3.2.4.1.3 "><ul id="cce_01_0187__ul988783620518"><li id="cce_01_0187__li1188733616519">Has all namespace permissions when using CCE on the console.</li><li id="cce_01_0187__li51996399513">Requires Kubernetes RBAC authorization when using CCE via <a href="cce_01_0140.html">kubectl</a>.</li></ul>
-<div class="note" id="cce_01_0187__note123863251168"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0187__p9386172515164">When such a user accesses the CCE console, an administrator group is added. Therefore, the user has all namespace permissions.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0187__row138631317205019"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_01_0187__p3878104075018">IAM user with the CCE Administrator role</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_01_0187__p270032114512">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.5.3.2.4.1.3 "><ul id="cce_01_0187__ul172151105617"><li id="cce_01_0187__li12215171012610">Has all namespace permissions when using CCE on the console.</li><li id="cce_01_0187__li321518101262">Requires Kubernetes RBAC authorization when using CCE via <a href="cce_01_0140.html">kubectl</a>.</li></ul>
-<div class="note" id="cce_01_0187__note9368141513435"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0187__p14368515204319">When such a user accesses the CCE console, an administrator group is added. Therefore, the user has all namespace permissions.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0187__row1386412176506"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_01_0187__p915314055017">IAM user with the CCE Viewer role</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_01_0187__p12703172316516">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_01_0187__p2033852118610">Requires Kubernetes RBAC authorization.</p>
-</td>
-</tr>
-<tr id="cce_01_0187__row28641117145019"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_01_0187__p11879440195014">IAM user with the Tenant Guest role</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_01_0187__p1490645915120">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_01_0187__p14337621561">Requires Kubernetes RBAC authorization.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0187__section118521730124516"><h4 class="sectiontitle">kubectl Permissions</h4><p id="cce_01_0187__p17298223112610">You can use <a href="cce_01_0107.html">kubectl</a> to access Kubernetes resources in a cluster.</p>
-<p id="cce_01_0187__p142391810113">When you access a cluster using kubectl, CCE uses the kubeconfig.json file generated on the cluster for authentication. This file contains user information, based on which CCE determines which Kubernetes resources can be accessed by kubectl. The permissions recorded in a kubeconfig.json file vary from user to user. The permissions that a user has are listed in <a href="#cce_01_0187__table886210176509">Table 1</a>.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0164.html">Permissions Management</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0188.html b/docs/cce/umn/cce_01_0188.html
deleted file mode 100644
index 8441b6b1..00000000
--- a/docs/cce/umn/cce_01_0188.html
+++ /dev/null
@@ -1,92 +0,0 @@
-<a name="cce_01_0188"></a><a name="cce_01_0188"></a>
-
-<h1 class="topictitle1">Cluster Permissions (IAM-based)</h1>
-<div id="body1556099896059"><p id="cce_01_0188__p1524419446112">CCE cluster permissions are assigned based on IAM <strong id="cce_01_0188__b3844333125820">system policies</strong> and <strong id="cce_01_0188__b113123619586">custom policies</strong>. You can use user groups to assign permissions to IAM users.</p>
-<div class="caution" id="cce_01_0188__note560142111218"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0188__p11831011058"><strong id="cce_01_0188__b105531627103011">Cluster permissions</strong> are configured only for cluster-related resources (such as clusters and nodes). You must also configure <a href="cce_01_0189.html">namespace permissions</a> to operate Kubernetes resources (such as workloads and Services).</p>
-</div></div>
-<div class="section" id="cce_01_0188__section16601203895318"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0188__ul115321234510"><li id="cce_01_0188__li267771813457">A user with the Security Administrator role has all IAM permissions except role switching. Only these users can view user groups and their permissions on the <strong id="cce_01_0188__b367943814436">Permissions Management</strong> page on the CCE console.</li></ul>
-</div>
-<div class="section" id="cce_01_0188__section638994317105"><h4 class="sectiontitle">Configuration</h4><p id="cce_01_0188__p686525014420">On the CCE console, when you choose <strong id="cce_01_0188__b197085371453">Permissions Management</strong> &gt; <strong id="cce_01_0188__b525314581453">Cluster-Level Permissions</strong> to create a user group, you will be directed to the IAM console to complete the process. After the user group is created and its permissions are configured, you can view the information on the <strong id="cce_01_0188__b78091143115016">Cluster-Level Permissions</strong> tab page. This section describes the operations in IAM.</p>
-</div>
-<div class="section" id="cce_01_0188__section1189416161520"><h4 class="sectiontitle">Process Flow</h4><div class="fignone" id="cce_01_0188__fig1351611812271"><span class="figcap"><b>Figure 1 </b>Process of assigning CCE permissions</span><br><span><img id="cce_01_0188__image35161382273" src="en-us_image_0000001120226646.png"></span></div>
-<p id="cce_01_0188__p19791446201511"></p>
-<ol id="cce_01_0188__ol10176191312813"><li id="cce_01_0188__li10176121316284"><a name="cce_01_0188__li10176121316284"></a><a name="li10176121316284"></a>Create a user group and assign permissions to it.<p id="cce_01_0188__p41762137286"><a name="cce_01_0188__li10176121316284"></a><a name="li10176121316284"></a>Create a user group on the IAM console, and assign CCE permissions, for example, the CCE Viewer policy to the group.</p>
-<div class="note" id="cce_01_0188__note967150181611"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0188__p96817061620">CCE is deployed by region. On the IAM console, select <strong id="cce_01_0188__b13472141411382">Region-specific projects</strong> when assigning CCE permissions.</p>
-</div></div>
-</li><li id="cce_01_0188__li181761413162818">Create a user and add it to a user group.<p id="cce_01_0188__p16177613182816"><a name="cce_01_0188__li181761413162818"></a><a name="li181761413162818"></a>Create a user on the IAM console and add the user to the group created in <a href="#cce_01_0188__li10176121316284">1</a>.</p>
-</li><li id="cce_01_0188__li1177513202816">Log in and verify permissions.<p id="cce_01_0188__p1317741312289"><a name="cce_01_0188__li1177513202816"></a><a name="li1177513202816"></a>Log in to the management console as the user you created, and verify that the user has the assigned permissions.</p>
-<ul id="cce_01_0188__ul1692751312242"><li id="cce_01_0188__li205729227246">Log in to the management console and switch to the CCE console. Click <strong id="cce_01_0188__b021019221038"></strong><strong id="cce_01_0188__b121013222313">Create</strong><strong id="cce_01_0188__b6211122832"> Cluster</strong> in the upper right corner. If you fail to do so (assuming that only the CCE Viewer role is assigned), the permission control policy takes effect.</li><li id="cce_01_0188__li1857212212418">Switch to the console of any other service. If a message appears indicating that you do not have the required permissions to access the service, the CCE Viewer policy takes effect.</li></ul>
-</li></ol>
-</div>
-<div class="section" id="cce_01_0188__section1437818291149"><a name="cce_01_0188__section1437818291149"></a><a name="section1437818291149"></a><h4 class="sectiontitle">Custom Policies</h4><p id="cce_01_0188__p1720839699">Custom policies can be created as a supplement to the system-defined policies of CCE. </p>
-<p id="cce_01_0188__p16101321113819">You can create custom policies in either of the following ways:</p>
-<ul id="cce_01_0188__ul9610121193813"><li id="cce_01_0188__li13610921183812">Visual editor: Select cloud services, actions, resources, and request conditions. This does not require knowledge of policy syntax.</li><li id="cce_01_0188__li106102218385">JSON: Edit JSON policies from scratch or based on an existing policy.</li></ul>
-<p id="cce_01_0188__p18299838121515">This section provides examples of common custom CCE policies.</p>
-</div>
-<p id="cce_01_0188__p11568030201410"><strong id="cce_01_0188__b363172105910">Example Custom Policies:</strong></p>
-<ul id="cce_01_0188__ul10965520113910"><li id="cce_01_0188__li14965172093918">Example 1: Creating a cluster named <strong id="cce_01_0188__b10467182715914">test</strong><pre class="screen" id="cce_01_0188__screen985911584456">{
-    "Version": "1.1",
-    "Statement": [
-        {
-            "Effect": "Allow",
-            "Action": [
-                "<span style="color:#3D3F43;">cce:cluster:create</span>"
-            ]
-        }
-    ]
-}</pre>
-</li><li id="cce_01_0188__li13637123173913">Example 2: Denying node deletion<p id="cce_01_0188__p15920134510474"><a name="cce_01_0188__li13637123173913"></a><a name="li13637123173913"></a>A policy with only "Deny" permissions must be used in conjunction with other policies to take effect. If the permissions assigned to a user contain both "Allow" and "Deny", the "Deny" permissions take precedence over the "Allow" permissions.</p>
-<p id="cce_01_0188__p1892011458477">The following method can be used if you need to assign permissions of the <strong id="cce_01_0188__b82591741101112">CCEFullAccess</strong> policy to a user but you want to prevent the user from deleting nodes (<strong id="cce_01_0188__b1264641191110">cce:node:delete</strong>). Create a custom policy for denying node deletion, and attach both policies to the group to which the user belongs. Then, the user can perform all operations on CCE except deleting nodes. The following is an example of a deny policy:</p>
-<pre class="screen" id="cce_01_0188__screen1592111452471">{
-    "Version": "1.1",
-    "Statement": [
-        {
-            "Effect": "Deny",
-            "Action": [
-                "cce:node:delete"
-            ]
-        }
-    ]
-}</pre>
-</li><li id="cce_01_0188__li139252014404">Example 3: Defining permissions for multiple services in a policy<p id="cce_01_0188__p1057233615402"><a name="cce_01_0188__li139252014404"></a><a name="li139252014404"></a>A custom policy can contain the actions of multiple services that are of the global or project-level type. The following is an example policy containing actions of multiple services:</p>
-<pre class="screen" id="cce_01_0188__screen102351094513">{
-    "Version": "1.1",
-    "Statement": [
-        {
-            "Action": [
-                "ecs:cloudServers:resize",
-                "ecs:cloudServers:delete",
-                "ecs:cloudServers:delete",
-                "ims:images:list",
-                "ims:serverImages:create"
-            ],
-            "Effect": "Allow"
-        }
-    ]
-}</pre>
-</li></ul>
-<div class="section" id="cce_01_0188__section2079185434619"><h4 class="sectiontitle">CCE Cluster Permissions and Enterprise Projects</h4><p id="cce_01_0188__p16409145711529">CCE supports resource management and permission allocation by cluster and enterprise project.</p>
-<p id="cce_01_0188__p115751028125317">Note that:</p>
-<ul id="cce_01_0188__ul196481725107"><li id="cce_01_0188__li16648102512013">IAM projects are based on physical isolation of resources, whereas enterprise projects provide global logical groups of resources, which better meet the actual requirements of enterprises. In addition, IAM policies can be managed based on enterprise projects. Therefore, you are advised to use enterprise projects for permissions management. </li><li id="cce_01_0188__li664862510013">When there are both IAM projects and enterprise projects, IAM preferentially matches the IAM project policies.</li><li id="cce_01_0188__li1664814251504">When creating a cluster or node using purchased cloud resources, ensure that IAM users have been granted the required permissions in the enterprise project to use these resources. Otherwise, the cluster or node may fail to be created.</li></ul>
-</div>
-<div class="section" id="cce_01_0188__section8718111816319"><h4 class="sectiontitle">CCE Cluster Permissions and IAM RBAC</h4><p id="cce_01_0188__p226515508116">CCE is compatible with IAM system roles for permissions management. You are advised to use fine-grained policies provided by IAM to simplify permissions management.</p>
-<p id="cce_01_0188__p9265185011110">CCE supports the following roles:</p>
-<ul id="cce_01_0188__ul1428114381443"><li id="cce_01_0188__li6801829426">Basic IAM roles:<ul id="cce_01_0188__ul258815974219"><li id="cce_01_0188__li555011594217">te_admin (Tenant Administrator): Users with this role can call all APIs of all services except IAM.</li><li id="cce_01_0188__li928118385419">readonly (Tenant Guest): Users with this role can call APIs with the read-only permissions of all services except IAM.</li></ul>
-</li><li id="cce_01_0188__li587354415412">Custom CCE administrator role: CCE Administrator</li></ul>
-<div class="note" id="cce_01_0188__note91929387810"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0188__ul179134412118"><li id="cce_01_0188__li1891444171119">Tenant Administrator and Tenant Guest are special IAM system roles. After any system or custom policy is configured, Tenant Administrator and Tenant Guest take effect as system policies to achieve compatibility with IAM RBAC and ABAC scenarios.</li><li id="cce_01_0188__li1542612213442">If a user has the Tenant Administrator or CCE Administrator system role, the user has the cluster-admin permissions in Kubernetes RBAC and the permissions cannot be removed after the cluster is created.<div class="p" id="cce_01_0188__p1865618434419"><a name="cce_01_0188__li1542612213442"></a><a name="li1542612213442"></a>If the user is the cluster creator, the cluster-admin permissions in Kubernetes RBAC are granted to the user by default. The permissions can be manually removed after the cluster is created.<ul id="cce_01_0188__ul756995674218"><li id="cce_01_0188__li13305252174212">Method 1: Choose <strong id="cce_01_0188__b89528258302">Permissions Management</strong> &gt; <strong id="cce_01_0188__b622351309">Namespace-Level Permissions</strong> &gt; <strong id="cce_01_0188__b724315193219">Delete</strong> at the same role as cluster-creator on the CCE console.</li><li id="cce_01_0188__li187621345131113">Method 2: Delete <strong id="cce_01_0188__b1274821117337">ClusterRoleBinding: cluster-creator</strong> through the API or kubectl.</li></ul>
-</div>
-</li></ul>
-</div></div>
-<p id="cce_01_0188__p141675017814">When RBAC and IAM policies co-exist, the backend authentication logic for open APIs or console operations on CCE is as follows:</p>
-<p id="cce_01_0188__p176112191411"><span><img id="cce_01_0188__image8173102012117" src="en-us_image_0000001086743939.png"></span></p>
-<div class="caution" id="cce_01_0188__note72065369315"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0188__p426512507111">Certain CCE APIs involve namespace-level permissions or key operations and therefore, they require special permissions:</p>
-<p id="cce_01_0188__p020616363316">Using clusterCert to obtain the cluster kubeconfig: cceadm/teadmin</p>
-</div></div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0164.html">Permissions Management</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0189.html b/docs/cce/umn/cce_01_0189.html
deleted file mode 100644
index 4577b49d..00000000
--- a/docs/cce/umn/cce_01_0189.html
+++ /dev/null
@@ -1,234 +0,0 @@
-<a name="cce_01_0189"></a><a name="cce_01_0189"></a>
-
-<h1 class="topictitle1">Namespace Permissions (Kubernetes RBAC-based)</h1>
-<div id="body1556099896059"><div class="section" id="cce_01_0189__section54736241399"><h4 class="sectiontitle">Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_01_0189__en-us_topic_0084600596_p293018587113">You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kubernetes objects: Role, ClusterRole, RoleBinding, and ClusterRoleBinding, which are described as follows:</p>
-<ul id="cce_01_0189__en-us_topic_0084600596_ul1051101311020"><li id="cce_01_0189__en-us_topic_0084600596_en-us_topic_0249851132_li1481515491386">Role: defines a set of rules for accessing Kubernetes resources in a namespace.</li><li id="cce_01_0189__en-us_topic_0084600596_en-us_topic_0249851132_li1224120528819">RoleBinding: defines the relationship between users and roles.</li><li id="cce_01_0189__en-us_topic_0084600596_en-us_topic_0249851132_li11770153233818">ClusterRole: defines a set of rules for accessing Kubernetes resources in a cluster (including all namespaces).</li><li id="cce_01_0189__en-us_topic_0084600596_en-us_topic_0249851132_li15813127781">ClusterRoleBinding: defines the relationship between users and cluster roles.</li></ul>
-<p id="cce_01_0189__en-us_topic_0084600596_p13511813111010">Role and ClusterRole specify actions that can be performed on specific resources. RoleBinding and ClusterRoleBinding bind roles to specific users, user groups, or ServiceAccounts. Illustration:</p>
-<div class="fignone" id="cce_01_0189__en-us_topic_0084600596_fig1751131311103"><span class="figcap"><b>Figure 1 </b>Role binding</span><br><span><img id="cce_01_0189__en-us_topic_0084600596_en-us_topic_0249851132_image19499911182110" src="en-us_image_0000001142984374.png"></span></div>
-<p id="cce_01_0189__en-us_topic_0084600596_p18544162681014">On the CCE console, you can assign permissions to a user or user group to access resources in one or multiple namespaces. By default, the CCE console provides the following ClusterRoles:</p>
-<ul id="cce_01_0189__en-us_topic_0084600596_ul12544126191012"><li id="cce_01_0189__en-us_topic_0084600596_li1754413268102">view: read-only permission on most resources in all or selected namespaces.</li><li id="cce_01_0189__en-us_topic_0084600596_li15545182611109">edit: read and write permissions on most resources in all or selected namespaces. If this ClusterRole is configured for all namespaces, its capability is the same as the O&amp;M permission.</li><li id="cce_01_0189__en-us_topic_0084600596_li14545926101013">admin: read and write permissions on most resources in all namespaces, and read-only permission on nodes, storage volumes, namespaces, and quota management.</li><li id="cce_01_0189__en-us_topic_0084600596_li10545926201011">cluster-admin: read and write permissions on all resources in all namespaces.</li></ul>
-</div>
-<div class="section" id="cce_01_0189__section207514572488"><a name="cce_01_0189__section207514572488"></a><a name="section207514572488"></a><h4 class="sectiontitle">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_01_0189__cce_01_0187_p5275251191113">Users with different cluster permissions (assigned using IAM) have different namespace permissions (assigned using Kubernetes RBAC). <a href="#cce_01_0189__cce_01_0187_table886210176509">Table 1</a> lists the namespace permissions of different users.</p>
-
-<div class="tablenoborder"><a name="cce_01_0189__cce_01_0187_table886210176509"></a><a name="cce_01_0187_table886210176509"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0189__cce_01_0187_table886210176509" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Differences in namespace permissions</caption><thead align="left"><tr id="cce_01_0189__cce_01_0187_row14863201719502"><th align="left" class="cellrowborder" valign="top" width="31.660758112898822%" id="mcps1.3.2.3.2.4.1.1"><p id="cce_01_0189__cce_01_0187_p14863111718502">User</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.169893646032175%" id="mcps1.3.2.3.2.4.1.2"><p id="cce_01_0189__cce_01_0187_p18636175506">Clusters Earlier Than v1.11.7-r2</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="37.169348241068995%" id="mcps1.3.2.3.2.4.1.3"><p id="cce_01_0189__cce_01_0187_p98631617175014">Clusters of v1.11.7-r2</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0189__cce_01_0187_row138631617185012"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.2.3.2.4.1.1 "><p id="cce_01_0189__cce_01_0187_p1787744075015">User with the Tenant Administrator permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.2.3.2.4.1.2 "><p id="cce_01_0189__cce_01_0187_p14863717165019">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.2.3.2.4.1.3 "><ul id="cce_01_0189__cce_01_0187_ul988783620518"><li id="cce_01_0189__cce_01_0187_li1188733616519">Has all namespace permissions when using CCE on the console.</li><li id="cce_01_0189__cce_01_0187_li51996399513">Requires Kubernetes RBAC authorization when using CCE via <a href="cce_01_0140.html">kubectl</a>.</li></ul>
-<div class="note" id="cce_01_0189__cce_01_0187_note123863251168"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0189__cce_01_0187_p9386172515164">When such a user accesses the CCE console, an administrator group is added. Therefore, the user has all namespace permissions.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0189__cce_01_0187_row138631317205019"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.2.3.2.4.1.1 "><p id="cce_01_0189__cce_01_0187_p3878104075018">IAM user with the CCE Administrator role</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.2.3.2.4.1.2 "><p id="cce_01_0189__cce_01_0187_p270032114512">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.2.3.2.4.1.3 "><ul id="cce_01_0189__cce_01_0187_ul172151105617"><li id="cce_01_0189__cce_01_0187_li12215171012610">Has all namespace permissions when using CCE on the console.</li><li id="cce_01_0189__cce_01_0187_li321518101262">Requires Kubernetes RBAC authorization when using CCE via <a href="cce_01_0140.html">kubectl</a>.</li></ul>
-<div class="note" id="cce_01_0189__cce_01_0187_note9368141513435"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0189__cce_01_0187_p14368515204319">When such a user accesses the CCE console, an administrator group is added. Therefore, the user has all namespace permissions.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0189__cce_01_0187_row1386412176506"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.2.3.2.4.1.1 "><p id="cce_01_0189__cce_01_0187_p915314055017">IAM user with the CCE Viewer role</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.2.3.2.4.1.2 "><p id="cce_01_0189__cce_01_0187_p12703172316516">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.2.3.2.4.1.3 "><p id="cce_01_0189__cce_01_0187_p2033852118610">Requires Kubernetes RBAC authorization.</p>
-</td>
-</tr>
-<tr id="cce_01_0189__cce_01_0187_row28641117145019"><td class="cellrowborder" valign="top" width="31.660758112898822%" headers="mcps1.3.2.3.2.4.1.1 "><p id="cce_01_0189__cce_01_0187_p11879440195014">IAM user with the Tenant Guest role</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.169893646032175%" headers="mcps1.3.2.3.2.4.1.2 "><p id="cce_01_0189__cce_01_0187_p1490645915120">All namespace permissions</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.169348241068995%" headers="mcps1.3.2.3.2.4.1.3 "><p id="cce_01_0189__cce_01_0187_p14337621561">Requires Kubernetes RBAC authorization.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0189__section320111415506"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0189__ul815212017513"><li id="cce_01_0189__li723216359475">Kubernetes RBAC authorization can be used for clusters of v1.11.7-r2 and later. Ensure that you have deployed a supported cluster version. For details about upgrading a cluster, see <a href="cce_01_0120.html">Performing Replace/Rolling Upgrade (v1.13 and Earlier)</a>.</li><li id="cce_01_0189__li8127185819407">After you create a cluster of v1.11.7-r2 or later, CCE automatically assigns the cluster-admin permission to you, which means you have full control on all resources in all namespaces in the cluster.</li><li id="cce_01_0189__li9232193524714">A user with the Security Administrator role has all IAM permissions except role switching. Only these users can assign permissions on the <strong id="cce_01_0189__b110185312412">Permissions Management</strong> page on the CCE console.</li></ul>
-</div>
-<div class="section" id="cce_01_0189__section14142185815219"><h4 class="sectiontitle">Configuring Namespace Permissions (on the Console)</h4><p id="cce_01_0189__p4776162914454">You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles.</p>
-<ol id="cce_01_0189__ol24786311219"><li id="cce_01_0189__li663920334397"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0189__b71817344257">Permissions Management</strong>.</span></li><li id="cce_01_0189__li4640173311392"><span>On the displayed page, click the <strong id="cce_01_0189__b15936135019257">Namespace-Level Permissions</strong> tab. In the upper right corner of the namespace permissions list, select the cluster that contains the namespace whose access will be managed, and click <strong id="cce_01_0189__b85564482258">Add Permissions</strong>.</span></li><li id="cce_01_0189__li156401033143920"><span>Confirm the cluster name and select the namespace to assign permissions for. For example, select <strong id="cce_01_0189__b6648184013">All namespaces</strong>, the target user or user group, and select the permissions.</span><p><p id="cce_01_0189__p31947112236"></p>
-</p></li><li id="cce_01_0189__li82386110619"><span>Click <strong id="cce_01_0189__b18350124820401">Create</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0189__section1273861718819"><a name="cce_01_0189__section1273861718819"></a><a name="section1273861718819"></a><h4 class="sectiontitle">Using kubectl to Configure Namespace Permissions</h4><div class="note" id="cce_01_0189__note175512112562"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0189__p13538151245610">When you access a cluster using kubectl, CCE uses the kubeconfig.json file generated on the cluster for authentication. This file contains user information, based on which CCE determines which Kubernetes resources can be accessed by kubectl. The permissions recorded in a kubeconfig.json file vary from user to user. The permissions that a user has are listed in <a href="#cce_01_0189__section207514572488">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
-</div></div>
-<p id="cce_01_0189__p201194431987">In addition to cluster-admin, admin, edit, and view, you can define Roles and RoleBindings to configure the permissions to add, delete, modify, and query resources, such as pods, Deployments, and Services, in the namespace.</p>
-<p id="cce_01_0189__p9324202361517">The procedure for creating a Role is very simple. To be specific, specify a namespace and then define rules. The rules in the following example are to allow GET and LIST operations on pods in the default namespace.</p>
-<pre class="screen" id="cce_01_0189__screen197388108173">kind: <span style="color:#FF0000;">Role</span>
-apiVersion: <span style="color:#FF0000;">rbac.authorization.k8s.io/v1</span>
-metadata:
-  namespace: default                          # Namespace
-  name: role-example
-<span style="color:#FF0000;">rules:</span>
-<span style="color:#FF0000;">- apiGroups: [""]</span>
-  resources: ["pods"]                         # The pod can be accessed.
-  verbs: ["get", "list"]                      # The GET and LIST operations can be performed.</pre>
-<ul id="cce_01_0189__ul1451694382618"><li id="cce_01_0189__li11184115310297"><strong id="cce_01_0189__b1488414410451">apiGroups</strong> indicates the API group to which the resource belongs.</li><li id="cce_01_0189__li29394520268"><strong id="cce_01_0189__b13320131874514">resources</strong> indicates the resources that can be operated. Pods, Deployments, ConfigMaps, and other Kubernetes resources are supported.</li><li id="cce_01_0189__li13516643152612"><strong id="cce_01_0189__b81461830184516">verbs</strong> indicates the operations that can be performed. <strong id="cce_01_0189__b12147143015457">get</strong> indicates querying a specific object, and <strong id="cce_01_0189__b61484305450">list</strong> indicates listing all objects of a certain type. Other value options include <strong id="cce_01_0189__b13767192104616">create</strong>, <strong id="cce_01_0189__b13768823466">update</strong>, and <strong id="cce_01_0189__b177692216467">delete</strong>.</li></ul>
-<p id="cce_01_0189__p1094191016295">For details, see <a href="https://kubernetes.io/docs/reference/access-authn-authz/rbac/" target="_blank" rel="noopener noreferrer">Using RBAC Authorization</a>.</p>
-<p id="cce_01_0189__p185689516179">After creating a Role, you can bind the Role to a specific user, which is called RoleBinding. The following is an example.</p>
-<pre class="screen" id="cce_01_0189__screen218714207185">kind: <span style="color:#FF0000;">RoleBinding</span>
-apiVersion: <span style="color:#FF0000;">rbac.authorization.k8s.io/v1</span>
-metadata:
-  name: RoleBinding-example
-  namespace: default
-  <span style="color:#FF0000;">annotations:</span>
-<span style="color:#FF0000;">    CCE.com/IAM: 'true'</span>
-<span style="color:#FF0000;">roleRef</span>:
-  kind: Role
-  name: role-example
-  apiGroup: rbac.authorization.k8s.io
-<span style="color:#FF0000;">subjects</span>:
-- kind: User
-  name: 0c97ac3cb280f4d91fa7c0096739e1f8 # User ID of the user-example
-  apiGroup: rbac.authorization.k8s.io</pre>
-<p id="cce_01_0189__p195507214188">The <strong id="cce_01_0189__b158631241144713">subjects</strong> section binds a Role with an IAM user so that the IAM user can obtain the permissions defined in the Role, as shown in the following figure.</p>
-<div class="fignone" id="cce_01_0189__fig9473195372813"><span class="figcap"><b>Figure 2 </b>A RoleBinding binds the Role to the user.</span><br><span><img id="cce_01_0189__en-us_topic_0249851132_image35211083405" src="en-us_image_0262051194.png"></span></div>
-<p id="cce_01_0189__p430545215225">You can also specify a user group in the <strong id="cce_01_0189__b193732864815">subjects</strong> section. In this case, all users in the user group obtain the permissions defined in the Role.</p>
-<pre class="screen" id="cce_01_0189__screen2269203813232">subjects:
-- kind: <span style="color:#FF0000;">Group</span>
-  name: 0c96fad22880f32a3f84c009862af6f7    # User group ID
-  apiGroup: rbac.authorization.k8s.io</pre>
-<p id="cce_01_0189__p14672183010159">Use the IAM user user-example to connect to the cluster and obtain the pod information. The following is an example of the returned pod information.</p>
-<pre class="screen" id="cce_01_0189__screen6695144212356"># kubectl get pod
-NAME                                   READY   STATUS    RESTARTS   AGE
-deployment-389584-2-6f6bd4c574-2n9rk   1/1     Running   0          4d7h
-deployment-389584-2-6f6bd4c574-7s5qw   1/1     Running   0          4d7h
-deployment-3895841-746b97b455-86g77    1/1     Running   0          4d7h
-deployment-3895841-746b97b455-twvpn    1/1     Running   0          4d7h
-nginx-658dff48ff-7rkph                 1/1     Running   0          4d9h
-nginx-658dff48ff-njdhj                 1/1     Running   0          4d9h
-# kubectl get pod nginx-658dff48ff-7rkph
-NAME                     READY   STATUS    RESTARTS   AGE
-nginx-658dff48ff-7rkph   1/1     Running   0          4d9h</pre>
-<p id="cce_01_0189__p15186132615159">Try querying Deployments and Services in the namespace. The output shows <strong id="cce_01_0189__b2530123312499">user-example</strong> does not have the required permissions. Try querying the pods in namespace kube-system. The output shows <strong id="cce_01_0189__b135321633154916">user-example</strong> does not have the required permissions, neither. This indicates that the IAM user <strong id="cce_01_0189__b17598205644916">user-example</strong> has only the GET and LIST Pod permissions in the default namespace, which is the same as expected.</p>
-<pre class="screen" id="cce_01_0189__screen5891353144711"># kubectl get deploy
-Error from server (Forbidden): deployments.apps is forbidden: User "<span style="color:#252B3A;">0c97ac3cb280f4d91fa7c0096739e1f8</span>" cannot list resource "deployments" in API group "apps" in the namespace "default"
-# kubectl get svc
-Error from server (Forbidden): services is forbidden: User "<span style="color:#252B3A;">0c97ac3cb280f4d91fa7c0096739e1f8</span>" cannot list resource "services" in API group "" in the namespace "default"
-# kubectl get pod --namespace=kube-system
-Error from server (Forbidden): pods is forbidden: User "<span style="color:#252B3A;">0c97ac3cb280f4d91fa7c0096739e1f8</span>" cannot list resource "pods" in API group "" in the namespace "kube-system"</pre>
-</div>
-<div class="section" id="cce_01_0189__section914518255314"><h4 class="sectiontitle">Example: Assigning All Cluster Permissions (cluster-admin)</h4><p id="cce_01_0189__p175654171447">You can use the cluster-admin role to assign all permissions on a cluster. This role contains the permissions for cluster resources (such as PVs and StorageClasses).</p>
-<p id="cce_01_0189__p20492316125718">In the following example kubectl output, a ClusterRoleBinding has been created and binds the cluster-admin role to the user group <strong id="cce_01_0189__b14176131925420">cce-role-group</strong>.</p>
-<pre class="screen" id="cce_01_0189__screen172421424132819"># kubectl get clusterrolebinding
-NAME                                                              ROLE                           AGE
-clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7   ClusterRole/cluster-admin      61s
-
-# kubectl get clusterrolebinding clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7 -oyaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: <span style="color:#FF0000;">ClusterRoleBinding</span>
-metadata:
-  annotations:
-    CCE.com/IAM: "true"
-  creationTimestamp: "2021-06-23T09:15:22Z"
-  name: clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7
-  resourceVersion: "36659058"
-  selfLink: /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7
-  uid: d6cd43e9-b4ca-4b56-bc52-e36346fc1320
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: <span style="color:#FF0000;">cluster-admin</span>
-subjects:
-- apiGroup: rbac.authorization.k8s.io
-  kind: <span style="color:#FF0000;">Group</span>
-  name: 0c96fad22880f32a3f84c009862af6f7</pre>
-<p id="cce_01_0189__p1358517392418">Connect to the cluster as an authorized user. If the PVs and StorageClasses can be queried, the permission configuration takes effect.</p>
-<pre class="screen" id="cce_01_0189__screen17197161285913"># kubectl get pv
-No resources found
-# kubectl get sc
-NAME                PROVISIONER                     RECLAIMPOLICY   VOLUMEBINDINGMODE      ALLOWVOLUMEEXPANSION   AGE
-csi-disk            everest-csi-provisioner         Delete          Immediate              true                   75d
-csi-disk-topology   everest-csi-provisioner         Delete          WaitForFirstConsumer   true                   75d
-csi-nas             everest-csi-provisioner         Delete          Immediate              true                   75d
-csi-obs             everest-csi-provisioner         Delete          Immediate              false                  75d
-csi-sfsturbo        everest-csi-provisioner         Delete          Immediate              true                   75d</pre>
-</div>
-<div class="section" id="cce_01_0189__section6257142116414"><h4 class="sectiontitle">Example: Assigning All Namespace Permissions (admin)</h4><p id="cce_01_0189__p740419334514">The admin role contains all permissions on a namespace. You can assign permissions to users to access one or multiple namespaces.</p>
-<p id="cce_01_0189__p0602429123417">In the following example kubectl output, a RoleBinding has been created, the admin role is bound to the user group <strong id="cce_01_0189__b682111613313">cce-role-group</strong>, and the target namespace is the default namespace.</p>
-<pre class="screen" id="cce_01_0189__screen137917011319"># kubectl get rolebinding
-NAME                                                      ROLE                AGE
-clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7   ClusterRole/admin   18s
-# kubectl get rolebinding clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7 -oyaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: <span style="color:#FF0000;">RoleBinding</span>
-metadata:
-  annotations:
-    CCE.com/IAM: "true"
-  creationTimestamp: "2021-06-24T01:30:08Z"
-  name: clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7
-  <span style="color:#FF0000;">namespace: default</span>
-  resourceVersion: "36963685"
-  selfLink: /apis/rbac.authorization.k8s.io/v1/namespaces/default/rolebindings/clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7
-  uid: 6c6f46a6-8584-47da-83f5-9eef1f7b75d6
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: <span style="color:#FF0000;">admin</span>
-subjects:
-- apiGroup: rbac.authorization.k8s.io
-  kind: <span style="color:#FF0000;">Group</span>
-  name: 0c96fad22880f32a3f84c009862af6f7</pre>
-<p id="cce_01_0189__p955562215477">Connect to a cluster as an authorized user. In this example, you can create and query resources in the default namespace, but cannot query resources in the kube-system namespace or cluster resources.</p>
-<pre class="screen" id="cce_01_0189__screen6555142294711"># kubectl get pod
-NAME                    READY   STATUS    RESTARTS   AGE
-test-568d96f4f8-brdrp   1/1     Running   0          33m
-test-568d96f4f8-cgjqp   1/1     Running   0          33m
-# kubectl get pod -nkube-system
-Error from server (Forbidden): pods is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "pods" in API group "" in the namespace "kube-system"
-# kubectl get pv
-Error from server (Forbidden): persistentvolumes is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "persistentvolumes" in API group "" at the cluster scope</pre>
-</div>
-<div class="section" id="cce_01_0189__section797615691612"><h4 class="sectiontitle">Example: Assigning Read-Only Namespace Permissions (view)</h4><p id="cce_01_0189__p47422167522">The view role has the read-only permissions on a namespace. You can assign permissions to users to view one or multiple namespaces.</p>
-<p id="cce_01_0189__p15928122717374">In the following example kubectl output, a RoleBinding has been created, the view role is bound to the user group <strong id="cce_01_0189__b1120512313">cce-role-group</strong>, and the target namespace is the default namespace.</p>
-<pre class="screen" id="cce_01_0189__screen17936832103718"># kubectl get rolebinding
-NAME                                                     ROLE               AGE
-clusterrole_view_group0c96fad22880f32a3f84c009862af6f7   ClusterRole/view   7s
-
-# kubectl get rolebinding clusterrole_view_group0c96fad22880f32a3f84c009862af6f7 -oyaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: <span style="color:#FF0000;">RoleBinding</span>
-metadata:
-  annotations:
-    CCE.com/IAM: "true"
-  creationTimestamp: "2021-06-24T01:36:53Z"
-  name: clusterrole_view_group0c96fad22880f32a3f84c009862af6f7
-  <span style="color:#FF0000;">namespace: default</span>
-  resourceVersion: "36965800"
-  selfLink: /apis/rbac.authorization.k8s.io/v1/namespaces/default/rolebindings/clusterrole_view_group0c96fad22880f32a3f84c009862af6f7
-  uid: b86e2507-e735-494c-be55-c41a0c4ef0dd
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: <span style="color:#FF0000;">view</span>
-subjects:
-- apiGroup: rbac.authorization.k8s.io
-  kind: <span style="color:#FF0000;">Group</span>
-  name: 0c96fad22880f32a3f84c009862af6f7</pre>
-<p id="cce_01_0189__p183833411529">Connect to the cluster as an authorized user. In this example, you can query resources in the default namespace but cannot create resources.</p>
-<pre class="screen" id="cce_01_0189__screen145951025195112"># kubectl get pod
-NAME                    READY   STATUS    RESTARTS   AGE
-test-568d96f4f8-brdrp   1/1     Running   0          40m
-test-568d96f4f8-cgjqp   1/1     Running   0          40m
-# kubectl run -i --tty --image tutum/dnsutils dnsutils --restart=Never --rm /bin/sh
-Error from server (Forbidden): pods is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot create resource "pods" in API group "" in the namespace "default"</pre>
-</div>
-<div class="section" id="cce_01_0189__section1471852343"><h4 class="sectiontitle">Example: Assigning Permissions for a Specific Kubernetes Resource Object</h4><p id="cce_01_0189__p42285131366">You can assign permissions on a specific Kubernetes resource object, such as pod, Deployment, and Service. For details, see <a href="#cce_01_0189__section1273861718819">Using kubectl to Configure Namespace Permissions</a>.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0164.html">Permissions Management</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0191.html b/docs/cce/umn/cce_01_0191.html
deleted file mode 100644
index f22ae1e0..00000000
--- a/docs/cce/umn/cce_01_0191.html
+++ /dev/null
@@ -1,17 +0,0 @@
-<a name="cce_01_0191"></a><a name="cce_01_0191"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body1561539731188"><p id="cce_01_0191__p52396868"><span class="keyword" id="cce_01_0191__keyword3231561662">CCE uses Helm, a Kubernetes package manager, to simplify deployment and management of packages (also called charts). A chart is a collection of files that describe a related set of Kubernetes resources. The use of charts handles all the complexity in Kubernetes resource installation and management, making it possible to achieve unified resource scheduling and management.</span></p>
-<div class="note" id="cce_01_0191__note171181615101310"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0191__p1543344813107">Helm is a tool for packaging Kubernetes applications. For more information, see <a href="https://helm.sh/" target="_blank" rel="noopener noreferrer">Helm documentation</a>.</p>
-</div></div>
-<p id="cce_01_0191__p29652302059">Custom charts simplify workload deployment.</p>
-<p id="cce_01_0191__p78611642185017">This section describes how to create a workload using a custom chart. You can use multiple methods to create an orchestration chart on the CCE console.</p>
-<div class="section" id="cce_01_0191__section148624339590"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0191__ul16941133619816"><li id="cce_01_0191__li209417366812">The number of charts that can be uploaded by a single user is limited. The value displayed on the console of each region is the allowed quantity.</li><li id="cce_01_0191__li1153724917261">CCE uses Helm v2.12. If you use Helm v3 or later to manage CCE, compatibility problems may occur.</li><li id="cce_01_0191__li8941336583">A chart with multiple versions consumes the same amount of portion of chart quota.</li><li id="cce_01_0191__li570815490504">Users with chart operation permissions can perform multiple operations on clusters. Therefore, exercise caution when assigning users the chart lifecycle management permissions, including uploading charts and creating, deleting, and updating chart releases.</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0143.html">My Charts</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0197.html b/docs/cce/umn/cce_01_0197.html
deleted file mode 100644
index b3ed445e..00000000
--- a/docs/cce/umn/cce_01_0197.html
+++ /dev/null
@@ -1,200 +0,0 @@
-<a name="cce_01_0197"></a><a name="cce_01_0197"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body1561702937747"><p id="cce_01_0197__p1684939205015">To enable interoperability from one Kubernetes installation to the next, you must upgrade your Kubernetes clusters before the maintenance period ends.</p>
-<p id="cce_01_0197__p8592859164810">After the latest Kubernetes version is available in CCE, CCE will describe the changes in this version. </p>
-<p id="cce_01_0197__p734714174211">You can use the CCE console to upgrade the Kubernetes version of a cluster.</p>
-<p id="cce_01_0197__p077764404910">An upgrade flag will be displayed on the cluster card view if there is a new version for the cluster to upgrade.</p>
-<p id="cce_01_0197__p19160184914478"><strong id="cce_01_0197__b1142012715314">How to check:</strong></p>
-<p id="cce_01_0197__p5663154019473">Choose <strong id="cce_01_0197__b13831732173116">Resource Management</strong> &gt; <strong id="cce_01_0197__b1485163233119">Clusters</strong> and check whether there is an upgrade flag in the upper right corner of the cluster card view. If yes, the cluster can be upgraded.</p>
-<div class="fignone" id="cce_01_0197__fig121651550142417"><span class="figcap"><b>Figure 1 </b>Cluster with the upgrade flag</span><br><span><img id="cce_01_0197__image19767169105112" src="en-us_image_0000001190048341.png"></span></div>
-<div class="section" id="cce_01_0197__section19981121648"><h4 class="sectiontitle">Cluster Upgrade</h4><p id="cce_01_0197__p1493653516466">The following table describes the target version to which each cluster version can be upgraded, the supported upgrade modes, and upgrade impacts.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0197__table8890112518476" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster upgrade paths and impacts</caption><thead align="left"><tr id="cce_01_0197__row089172514470"><th align="left" class="cellrowborder" valign="top" width="16.13%" id="mcps1.3.8.3.2.5.1.1"><p id="cce_01_0197__p13891182554711">Source Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="24.32%" id="mcps1.3.8.3.2.5.1.2"><p id="cce_01_0197__p108911425144718">Target Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="11.16%" id="mcps1.3.8.3.2.5.1.3"><p id="cce_01_0197__p489119252474">Upgrade Modes</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="48.39%" id="mcps1.3.8.3.2.5.1.4"><p id="cce_01_0197__p68915253479">Impacts</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0197__row12150181311110"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_01_0197__p1715118131914">v1.21</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_01_0197__p1915118134115">v1.23</p>
-</td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_01_0197__p81518139113">In-place upgrade</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_01_0197__p121512139112">You need to identify the differences between versions.</p>
-</td>
-</tr>
-<tr id="cce_01_0197__row1722213915402"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_01_0197__p51391640174014">v1.19</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_01_0197__p1113984020408">v1.21</p>
-</td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_01_0197__p31391140164014">In-place upgrade</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_01_0197__p8139194012401">You need to identify the differences between versions.</p>
-</td>
-</tr>
-<tr id="cce_01_0197__row241985117714"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_01_0197__p11301919817">v1.17</p>
-<p id="cce_01_0197__p11524173411478">v1.15</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_01_0197__p13301121885">v1.19</p>
-</td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_01_0197__p1330116118818">In-place upgrade</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_01_0197__p103011712816">You need to identify the differences between versions.</p>
-</td>
-</tr>
-<tr id="cce_01_0197__row8891122514474"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_01_0197__p16913174345011">v1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_01_0197__p0911343135016">v1.15</p>
-</td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_01_0197__p147801018192410">Rolling upgrade</p>
-<p id="cce_01_0197__p1091144355018">Replace upgrade</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><ul id="cce_01_0197__ul93384752413"><li id="cce_01_0197__li1433134720247">The <strong id="cce_01_0197__b278431517541">proxy</strong> configuration item in the coredns add-on configuration is not supported and needs to be replaced with <strong id="cce_01_0197__b128171495418">forward</strong>.</li><li id="cce_01_0197__li1033154702417">The storage add-on is changed from storage-driver to everest.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0197__row8891152518474"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_01_0197__p1864518484291">v1.11</p>
-<p id="cce_01_0197__p2996205317291">v1.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_01_0197__p18912254471">1.15</p>
-</td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_01_0197__p1183417324282">Replace upgrade</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><ul id="cce_01_0197__ul131574818291"><li id="cce_01_0197__li715712872918">The cluster signature certificate mechanism is changed. As a result, the original cluster certificate becomes invalid. You need to obtain the certificate or kubeconfig file again after the cluster is upgraded.</li><li id="cce_01_0197__li111571781298">RBAC is enabled for clusters of Kubernetes v1.13 by default. Applications need to adapt to RBAC.</li><li id="cce_01_0197__li615716816297">After the cluster is upgraded from v1.9 to v1.15, kube-dns in the cluster will be replaced with CoreDNS. Before the upgrade, you need to back up the kube-dns configuration. After the upgrade, you need to reconfigure kube-dns in the coredns add-on.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0197__row6891192511473"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_01_0197__p01953423299">v1.9</p>
-<p id="cce_01_0197__p198911325144720">v1.7</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_01_0197__p3891132584717">Latest version that can be created on the console</p>
-</td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_01_0197__p10891425194716">Migration</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_01_0197__p48911125184718">You need to identify the differences between versions.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0197__section18921193519591"><h4 class="sectiontitle">Upgrade Modes</h4><p id="cce_01_0197__p175765218558">CCE provides the following upgrade modes based on the cluster version and deployment site. The upgrade processes are the same for master nodes. The differences between the upgrade modes of worker nodes are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0197__table19092334346" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Differences between upgrade modes and their advantages and disadvantages</caption><thead align="left"><tr id="cce_01_0197__row109098339343"><th align="left" class="cellrowborder" valign="top" width="15.079999999999998%" id="mcps1.3.9.3.2.5.1.1"><p id="cce_01_0197__p209092033123412">Upgrade Mode</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="32.35%" id="mcps1.3.9.3.2.5.1.2"><p id="cce_01_0197__p890913373416">Method</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="26.58%" id="mcps1.3.9.3.2.5.1.3"><p id="cce_01_0197__p290993317341">Advantage</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="25.990000000000002%" id="mcps1.3.9.3.2.5.1.4"><p id="cce_01_0197__p149091833203415">Disadvantage</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0197__row1275331204518"><td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.9.3.2.5.1.1 "><p id="cce_01_0197__p12753201194514"><strong id="cce_01_0197__b1171511161592">In-place upgrade</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="32.35%" headers="mcps1.3.9.3.2.5.1.2 "><p id="cce_01_0197__p19376171164519">Kubernetes components, network components, and CCE management components are upgraded on the node. During the upgrade, service pods and networks are not affected. The <strong id="cce_01_0197__b7379432675">SchedulingDisabled</strong> label will be added to all existing nodes. After the upgrade is complete, you can properly use existing nodes.</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.58%" headers="mcps1.3.9.3.2.5.1.3 "><p id="cce_01_0197__p1330191818456">You do not need to migrate services, ensuring service continuity.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.990000000000002%" headers="mcps1.3.9.3.2.5.1.4 "><p id="cce_01_0197__p2753911455">In-place upgrade does not upgrade the OS of a node. If you want to upgrade the OS, clear the corresponding node after the node upgrade is complete and reset the node to upgrade the OS to a new version.</p>
-</td>
-</tr>
-<tr id="cce_01_0197__row12149149143118"><td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.9.3.2.5.1.1 "><p id="cce_01_0197__p109101833103417"><strong id="cce_01_0197__b179801047195113">Rolling upgrade</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="32.35%" headers="mcps1.3.9.3.2.5.1.2 "><p id="cce_01_0197__p891043317346">Only the Kubernetes components and certain network components are upgraded on the node. The <strong id="cce_01_0197__b104571749155118">SchedulingDisabled</strong> label will be added to all existing nodes to ensure that the running applications are not affected. <strong id="cce_01_0197__b69761036131219">After the upgrade is complete, you need to manually create nodes and gradually release the old nodes</strong>, thereby migrating your applications to the new nodes. In this mode, you can control the upgrade process.</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.58%" headers="mcps1.3.9.3.2.5.1.3 "><p id="cce_01_0197__p19910113393413">Services are not interrupted.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.990000000000002%" headers="mcps1.3.9.3.2.5.1.4 "><p id="cce_01_0197__p94953558316">-</p>
-</td>
-</tr>
-<tr id="cce_01_0197__row391043317349"><td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.9.3.2.5.1.1 "><p id="cce_01_0197__p49104333342"><strong id="cce_01_0197__b1597612242551">Replace upgrade</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="32.35%" headers="mcps1.3.9.3.2.5.1.2 "><p id="cce_01_0197__p1391043353413">The latest worker node image is used to reset the node OS.</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.58%" headers="mcps1.3.9.3.2.5.1.3 "><p id="cce_01_0197__p89109331348">This is the fastest upgrade mode and requires few manual interventions.</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.990000000000002%" headers="mcps1.3.9.3.2.5.1.4 "><p id="cce_01_0197__p2910153333419">Data or configurations on the node will be lost, and services will be interrupted for a period of time.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0197__section16738338445"><a name="cce_01_0197__section16738338445"></a><a name="section16738338445"></a><h4 class="sectiontitle">Cluster Upgrade Between Major Versions</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0197__table2753123294516" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Changelog between minor versions</caption><thead align="left"><tr id="cce_01_0197__row1675420321456"><th align="left" class="cellrowborder" valign="top" width="18.13%" id="mcps1.3.10.2.2.4.1.1"><p id="cce_01_0197__p875433211458">Source Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="26.16%" id="mcps1.3.10.2.2.4.1.2"><p id="cce_01_0197__p1775411321455">Target Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="55.71%" id="mcps1.3.10.2.2.4.1.3"><p id="cce_01_0197__p7754133244518">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0197__row166181448115"><td class="cellrowborder" valign="top" width="18.13%" headers="mcps1.3.10.2.2.4.1.1 "><p id="cce_01_0197__p1361811481111">v1.21</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.16%" headers="mcps1.3.10.2.2.4.1.2 "><p id="cce_01_0197__p106185487119">v1.23</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.71%" headers="mcps1.3.10.2.2.4.1.3 "><ul id="cce_01_0197__ul7198193724"><li id="cce_01_0197__li31982031523">Changelog from v1.21 to v1.23<p id="cce_01_0197__p519811310213"><a name="cce_01_0197__li31982031523"></a><a name="li31982031523"></a><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md</a></p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0197__row1134718511239"><td class="cellrowborder" valign="top" width="18.13%" headers="mcps1.3.10.2.2.4.1.1 "><p id="cce_01_0197__p53471514235">v1.19</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.16%" headers="mcps1.3.10.2.2.4.1.2 "><p id="cce_01_0197__p16347051132312">v1.21</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.71%" headers="mcps1.3.10.2.2.4.1.3 "><ul id="cce_01_0197__ul147551908242"><li id="cce_01_0197__li1675510052418">Changelog from v1.19 to v1.21<p id="cce_01_0197__p127555019247"><a name="cce_01_0197__li1675510052418"></a><a name="li1675510052418"></a><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md</a></p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0197__row12995193751214"><td class="cellrowborder" valign="top" width="18.13%" headers="mcps1.3.10.2.2.4.1.1 "><p id="cce_01_0197__p999513751218">v1.17</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.16%" headers="mcps1.3.10.2.2.4.1.2 "><p id="cce_01_0197__p129951375128">v1.19</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.71%" headers="mcps1.3.10.2.2.4.1.3 "><ul id="cce_01_0197__ul1885013594129"><li id="cce_01_0197__li158501559171212">Changelog from v1.17 to v1.19<p id="cce_01_0197__p188506594125"><a name="cce_01_0197__li158501559171212"></a><a name="li158501559171212"></a><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.19.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.19.md</a></p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0197__row1533655815"><td class="cellrowborder" valign="top" width="18.13%" headers="mcps1.3.10.2.2.4.1.1 "><p id="cce_01_0197__p11341815195212">v1.15</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.16%" headers="mcps1.3.10.2.2.4.1.2 "><p id="cce_01_0197__p20643105715120">v1.17</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.71%" headers="mcps1.3.10.2.2.4.1.3 "><ul id="cce_01_0197__ul159096365595"><li id="cce_01_0197__li990993611598">Changelog from v1.15 to v1.17<p id="cce_01_0197__p5909153665919"><a name="cce_01_0197__li990993611598"></a><a name="li990993611598"></a><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.17.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.17.md</a></p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0197__row8457132818389"><td class="cellrowborder" valign="top" width="18.13%" headers="mcps1.3.10.2.2.4.1.1 "><p id="cce_01_0197__p4457928123816">v1.13</p>
-</td>
-<td class="cellrowborder" rowspan="3" valign="top" width="26.16%" headers="mcps1.3.10.2.2.4.1.2 "><p id="cce_01_0197__p598601815212">v1.15</p>
-</td>
-<td class="cellrowborder" rowspan="3" valign="top" width="55.71%" headers="mcps1.3.10.2.2.4.1.3 "><ul id="cce_01_0197__ul193581945920"><li id="cce_01_0197__li15358145926">Changelog from v1.9 to v1.15<p id="cce_01_0197__p63914594018"><a name="cce_01_0197__li15358145926"></a><a name="li15358145926"></a>Changelog from v1.13 to v1.15:</p>
-<p id="cce_01_0197__p8728239113519"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.15.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.15.md</a></p>
-<p id="cce_01_0197__p123582451029">Changelog from v1.11 to v1.13:</p>
-<p id="cce_01_0197__p835874519213"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.13.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.13.md</a></p>
-<p id="cce_01_0197__p33585451729">Changelog from v1.10 to v1.11:</p>
-<p id="cce_01_0197__p035813451429"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.11.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.11.md</a></p>
-<p id="cce_01_0197__p835815451421">Changelog from v1.9 to v1.10:</p>
-<p id="cce_01_0197__p335804511216"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.10.md" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.10.md</a></p>
-</li><li id="cce_01_0197__li14358345922">Replacement of cluster kube-dns by core-dns</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0197__row695178124915"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.2.4.1.1 "><p id="cce_01_0197__p6135142914255">v1.11</p>
-</td>
-</tr>
-<tr id="cce_01_0197__row89581552124912"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.2.4.1.1 "><p id="cce_01_0197__p2254104920346">v1.9</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0215.html">Upgrading a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0200.html b/docs/cce/umn/cce_01_0200.html
deleted file mode 100644
index 8926fd6b..00000000
--- a/docs/cce/umn/cce_01_0200.html
+++ /dev/null
@@ -1,58 +0,0 @@
-<a name="cce_01_0200"></a><a name="cce_01_0200"></a>
-
-<h1 class="topictitle1">Creating a Linux LVM Disk Partition for Docker</h1>
-<div id="body1521184210283"><div class="section" id="cce_01_0200__section1719177173914"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0200__p18834181353918">This section describes how to check whether there are <strong id="cce_01_0200__b1397511310514">available raw disks</strong> and <strong id="cce_01_0200__b177951043252">Linux LVM disk partitions</strong> and how to create Linux LVM disk partitions.</p>
-</div>
-<div class="section" id="cce_01_0200__section19834182211494"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0200__p12351733104913">To improve the system stability, attach a data disk to Docker and use the <span class="keyword" id="cce_01_0200__keyword305233396104855">direct-lvm</span> mode. </p>
-</div>
-<div class="section" id="cce_01_0200__section18184888105"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0200__ol890101516102"><li id="cce_01_0200__li139011015111020"><a name="cce_01_0200__li139011015111020"></a><a name="li139011015111020"></a><span>Check whether available raw disks exist on the current node.</span><p><ol type="a" id="cce_01_0200__ol1283164371019"><li id="cce_01_0200__li84114211108">Log in to the target node as the <strong id="cce_01_0200__b842352706111155">root</strong> user.</li><li id="cce_01_0200__li59201551151019">Check the <span class="keyword" id="cce_01_0200__keyword738933023111214">raw disk</span> device.<p id="cce_01_0200__p1673172518111"><strong id="cce_01_0200__b1846295661115">lsblk -l | grep disk</strong></p>
-<p id="cce_01_0200__p140622619115">If the following information is displayed, the raw disks named <strong id="cce_01_0200__b842352706111243">xvda</strong> and <strong id="cce_01_0200__b842352706111249">xvdb</strong> exist on the node.</p>
-<pre class="screen" id="cce_01_0200__screen1653315596113">xvda  202:0    0   40G  0 disk
-xvdb  202:16   0  100G  0 disk</pre>
-</li><li id="cce_01_0200__li115751222171211">Check whether the raw disk is in use.<p id="cce_01_0200__p11262104616127"><a name="cce_01_0200__li115751222171211"></a><a name="li115751222171211"></a><strong id="cce_01_0200__b04813651313">lsblk /dev/</strong><em id="cce_01_0200__i14863769139">&lt;devicename&gt;</em></p>
-<p id="cce_01_0200__p791511589128"><em id="cce_01_0200__i842352697111336">devicename</em> indicates the raw disk name, for example, <strong id="cce_01_0200__b842352706111343">xvda</strong> and <strong id="cce_01_0200__b842352706111348">xvdb</strong> in the previous step.</p>
-<p id="cce_01_0200__p1247572915135">Run the <strong id="cce_01_0200__b84235270611148">lsblk /dev/xvda</strong> and <strong id="cce_01_0200__b842352706111414">lsblk /dev/xvdb</strong> commands. If the following information is displayed, <strong id="cce_01_0200__b842352706111421">xvda</strong> has been partitioned and used while <strong id="cce_01_0200__b842352706111434">xvdb</strong> is available. If no raw disk is available, bind an EVS disk to the node. It is advised that the disk space be no less than 80 GB.</p>
-<pre class="screen" id="cce_01_0200__screen17618195120137">NAME    MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
-xvda    202:0    0   40G  0 disk
-├─xvda1 202:1    0  100M  0 part /boot
-└─xvda2 202:2    0 39.9G  0 part /</pre>
-<pre class="screen" id="cce_01_0200__screen077172612157">NAME MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
-xvdb 202:16   0  100G  0 disk</pre>
-</li></ol>
-</p></li><li id="cce_01_0200__li791812370104"><span>Check whether there are partitions available. Currently, only Linux LVM partitions are supported.</span><p><ol type="a" id="cce_01_0200__ol13537132011168"><li id="cce_01_0200__li9248141841613">Log in to the target node as the <strong id="cce_01_0200__b842352706111557">root</strong> user.</li><li id="cce_01_0200__li143227231713">Check the partition whose system type is Linux LVM.<p id="cce_01_0200__p76721524201710"><a name="cce_01_0200__li143227231713"></a><a name="li143227231713"></a><strong id="cce_01_0200__b1448519313181">sfdisk -l 2&gt;&gt;/dev/null| grep "Linux LVM"</strong></p>
-<p id="cce_01_0200__p1247163341718">If the following information is displayed, two Linux LVM partitions, <strong id="cce_01_0200__b842352706111641">/dev/nvme0n1p1</strong> and <strong id="cce_01_0200__b842352706111648">/dev/nvme0n1p2</strong>, exist in the system.</p>
-<pre class="screen" id="cce_01_0200__screen6216138181719">/dev/nvme0n1p1          1  204800  204800  209715200   8e  Linux LVM
-/dev/nvme0n1p2     204801  409600  204800  209715200   8e  Linux LVM</pre>
-</li><li id="cce_01_0200__li1876031431715">Check whether the partition is in use.<p id="cce_01_0200__p14632172613189"><a name="cce_01_0200__li1876031431715"></a><a name="li1876031431715"></a><strong id="cce_01_0200__b91161917249">lsblk </strong><em id="cce_01_0200__i245034015321">&lt;partdevice&gt;</em></p>
-<p id="cce_01_0200__p2012510862216"><em id="cce_01_0200__i112031268011193">&lt;partdevice&gt;</em> is the Linux LVM partition found in the previous step.</p>
-<p id="cce_01_0200__p11907104882217">In this example, run the <strong id="cce_01_0200__b842352706111917">lsblk/dev/nvme0n1p1</strong> and <strong id="cce_01_0200__b842352706111922">lsblk/dev/nvme0n1p2</strong> commands. If the following information is displayed, partition <strong id="cce_01_0200__b842352706111933">nvme0n1p</strong> is in use while <strong id="cce_01_0200__b842352706111937">nvme0n1p2</strong> is available.</p>
-<pre class="screen" id="cce_01_0200__screen9379112114235">NAME                       MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
-<strong id="cce_01_0200__b7183181642614">nvme0n1p1</strong>                   259:3    0  200G  0 part
-└─vgpaas-thinpool_tdata   251:8    0  360G  0 lvm
-  └─vgpaas-thinpool       251:10   0  360G  0 lvm</pre>
-<pre class="screen" id="cce_01_0200__screen634319882314">NAME      MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
-<strong id="cce_01_0200__b8964325162614">nvme0n1p2</strong> 259:1    0  100G  0 part</pre>
-<p id="cce_01_0200__p69847318275">If no AZ is available, perform <a href="#cce_01_0200__li111391316141612">3</a> to create a partition for Docker.</p>
-</li></ol>
-</p></li><li id="cce_01_0200__li111391316141612"><a name="cce_01_0200__li111391316141612"></a><a name="li111391316141612"></a><span>Create a Linux LVM disk partition for Docker.</span><p><ol type="a" id="cce_01_0200__ol898317522272"><li id="cce_01_0200__li45611850102714">Run the following command to create a disk partition. <strong id="cce_01_0200__b842352706112135">devicename</strong> indicates the available raw disk name, for example, <strong id="cce_01_0200__b842352706112145">xvdb</strong> in <a href="#cce_01_0200__li139011015111020">1</a>.<p id="cce_01_0200__p154171413142816"><strong id="cce_01_0200__b8417159133212">fdisk /dev/</strong><em id="cce_01_0200__i94191659203216">devicename</em></p>
-</li><li id="cce_01_0200__li251016174283">Enter <strong id="cce_01_0200__b84235270611225">n</strong> to create a new partition. Enter <strong id="cce_01_0200__b84235270611229">p</strong> to display the primary partition number. Enter <strong id="cce_01_0200__b842352706112212">4</strong> to indicate the fourth primary partition.<div class="fignone" id="cce_01_0200__fig14533113219112"><span class="figcap"><b>Figure 1 </b>Creating a partition</span><br><span><img id="cce_01_0200__image253312326118" src="en-us_image_0144042759.png"></span></div>
-</li><li id="cce_01_0200__li195029455327">Configure the start and last sectors as follows for example:<pre class="screen" id="cce_01_0200__screen153106354350">Start sector (1048578048-4294967295, 1048578048 by default):
-1048578048
-Last sector, +sector or size {K, M, or G} (1048578048-4294967294, 4294967294 by default): +100G</pre>
-<p id="cce_01_0200__p56887580359">This configuration indicates that partition 4 has been set to the Linux type and the size is 100 GiB.</p>
-</li><li id="cce_01_0200__li81231454123714">Enter <strong id="cce_01_0200__b842352706112454">t</strong> to change the partition system type. Enter the hex code <strong id="cce_01_0200__b84235270611260">8e</strong> when prompted to change the system type to Linux LVM.<pre class="screen" id="cce_01_0200__screen558614913811">Command (enter <strong id="cce_01_0200__b842352706112531">m</strong> to obtain help): t
-Partition ID (ranging from 1 to 4, 4 by default): 4
-Hex code (enter <strong id="cce_01_0200__b842352706112611">L</strong> to list all codes): 8e
-This configuration changes the type of the partition Linux to <strong id="cce_01_0200__b842352706112627">Linux LVM</strong>.</pre>
-</li><li id="cce_01_0200__li19669145183813">Enter <strong id="cce_01_0200__b842352706112632">w</strong> to save the modification.<pre class="screen" id="cce_01_0200__screen1126123115384">Command (enter <strong id="cce_01_0200__b842352706112636">m</strong> to obtain help): w
-The partition table has been altered!</pre>
-</li><li id="cce_01_0200__li1440852873818">Run the <strong id="cce_01_0200__b842352706112646">partprobe</strong> command to refresh the disk partition.</li></ol>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0205.html b/docs/cce/umn/cce_01_0205.html
deleted file mode 100644
index 7db26d83..00000000
--- a/docs/cce/umn/cce_01_0205.html
+++ /dev/null
@@ -1,25 +0,0 @@
-<a name="cce_01_0205"></a><a name="cce_01_0205"></a>
-
-<h1 class="topictitle1">metrics-server</h1>
-<div id="body1574828037707"><p id="cce_01_0205__p8803328425">From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly accessed by users (for example, by using the <strong id="cce_01_0205__b5101142911575">kubectl top</strong> command) or used by controllers (for example, Horizontal Pod Autoscaler) in a cluster for decision-making. The specific component is metrics-server, which is used to substitute for heapster for providing the similar functions. heapster has been gradually abandoned since v1.11.</p>
-<p id="cce_01_0205__p183161841122110">metrics-server is an aggregator for monitoring data of core cluster resources. You can quickly install this add-on on the CCE console.</p>
-<p id="cce_01_0205__p136871139141318">After metrics-server is installed, you can create an HPA policy on the <strong id="cce_01_0205__b93481922984">Workload Scaling</strong> tab page of the <strong id="cce_01_0205__b1534812214813">Auto Scaling</strong> page. For details, see <a href="cce_01_0208.html">Creating an HPA Policy for Workload Auto Scaling</a>.</p>
-<p id="cce_01_0205__p185802028346">The official community project and documentation are available at <a href="https://github.com/kubernetes-sigs/metrics-server" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes-sigs/metrics-server</a>.</p>
-<div class="section" id="cce_01_0205__section885073715114"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0205__p43131721211">This add-on can be installed only in CCE clusters of v1.13 or later.</p>
-</div>
-<div class="section" id="cce_01_0205__section1962241123816"><a name="cce_01_0205__section1962241123816"></a><a name="section1962241123816"></a><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_01_0205__ol13949124616422"><li id="cce_01_0205__li13183153352515"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0205__b63293424153">Add-ons</strong>. On the <strong id="cce_01_0205__b1335342101517">Add-on Marketplace</strong> tab page, click <strong id="cce_01_0205__b1333612425153">Install Add-on</strong> under <strong id="cce_01_0205__b193371942171519">metrics-server</strong>.</span></li><li id="cce_01_0205__li3251161812318"><span>On the <strong id="cce_01_0205__b252572413515">Install Add-on</strong> page, select the cluster and the add-on version, and click <strong id="cce_01_0205__b85281124157">Next: Configuration</strong>.</span></li><li id="cce_01_0205__li9455819152615"><span>Select <strong id="cce_01_0205__b14135172111218">Single</strong> or <strong id="cce_01_0205__b19549182318122">HA</strong> for <strong id="cce_01_0205__b14659192661212">Add-on Specifications</strong>, and click <strong id="cce_01_0205__b14102184123">Install</strong>.</span><p><p id="cce_01_0205__p77405421590">After the add-on is installed, click <strong id="cce_01_0205__b99501828131916">Go Back to Previous Page</strong>. On the <strong id="cce_01_0205__b1295662821918">Add-on Instance</strong> tab page, select the corresponding cluster to view the running instance. This indicates that the add-on has been installed on each node in the cluster.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0205__section23441939916"><h4 class="sectiontitle">Upgrading the Add-on</h4><ol id="cce_01_0205__ol255316335402"><li id="cce_01_0205__li187561418135313"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0205__b497417573155">Add-ons</strong>. On the <strong id="cce_01_0205__b139801657161515">Add-on Instance</strong> tab page, click <strong id="cce_01_0205__b99801657131518">Upgrade</strong> under <strong id="cce_01_0205__b179819578153">metrics-server</strong>.</span><p><div class="note" id="cce_01_0205__note1625210332283"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0205__ul163002418296"><li id="cce_01_0205__li33006482916">If the <strong id="cce_01_0205__b8828103105118">Upgrade</strong> button is not available, the current add-on is already up-to-date and no upgrade is required.</li><li id="cce_01_0205__li43641133205311">During the upgrade, the metrics-server add-on of the original version on cluster nodes will be discarded, and the add-on of the target version will be installed.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0205__li11556163354015"><span>On the <strong id="cce_01_0205__b687285815614">Basic Information</strong> page, select the add-on version and click <strong id="cce_01_0205__b28722587569">Next</strong>.</span></li><li id="cce_01_0205__li132321726191110"><span>Set the parameters by referring to the parameter description in <a href="#cce_01_0205__section1962241123816">Installing the Add-on</a> and click <strong id="cce_01_0205__b151812815710">Upgrade</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0205__section1395073191112"><h4 class="sectiontitle">Uninstalling the Add-on</h4><ol id="cce_01_0205__ol29784442018"><li id="cce_01_0205__li997812446010"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0205__b1585419941616">Add-ons</strong>. On the <strong id="cce_01_0205__b2860099167">Add-on Instance</strong> tab page, click <strong id="cce_01_0205__b1886119915163">Uninstall</strong> under <strong id="cce_01_0205__b286113914162">metrics-server</strong>.</span></li><li id="cce_01_0205__li20637152311120"><span>In the dialog box displayed, click <strong id="cce_01_0205__b943913042213">Yes</strong> to uninstall the add-on.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0064.html">Add-ons</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0207.html b/docs/cce/umn/cce_01_0207.html
deleted file mode 100644
index a66fda91..00000000
--- a/docs/cce/umn/cce_01_0207.html
+++ /dev/null
@@ -1,15 +0,0 @@
-<a name="cce_01_0207"></a><a name="cce_01_0207"></a>
-
-<h1 class="topictitle1">Auto Scaling</h1>
-<div id="body1569380890256"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0279.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0293.html">Scaling a Workload</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0291.html">Scaling a Cluster/Node</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0208.html b/docs/cce/umn/cce_01_0208.html
deleted file mode 100644
index fc05f43b..00000000
--- a/docs/cce/umn/cce_01_0208.html
+++ /dev/null
@@ -1,78 +0,0 @@
-<a name="cce_01_0208"></a><a name="cce_01_0208"></a>
-
-<h1 class="topictitle1">Creating an HPA Policy for Workload Auto Scaling</h1>
-<div id="body1569380890256"><p id="cce_01_0208__p1850115535712">Horizontal Pod Autoscaling (HPA) in Kubernetes implements horizontal scaling of pods. In a CCE HPA policy, you can configure different cooldown time windows and scaling thresholds for different applications based on the Kubernetes HPA.</p>
-<div class="section" id="cce_01_0208__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0208__p6480898149">The <a href="cce_01_0205.html">metrics-server</a> add-on has been installed. This add-on collects public metrics of kubelet in Kubernetes clusters, including the CPU usage and memory usage.</p>
-</div>
-<div class="section" id="cce_01_0208__section107429267459"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0208__ul14111945007"><li id="cce_01_0208__li191134512018">HPA policies can be created only for clusters of v1.13 or later.</li><li id="cce_01_0208__li64583432588">Only one policy can be created for each workload. That is, if you have created an HPA policy, you cannot create other HPA policies for the workload. You can delete the created HPA policy and create a new one.</li><li id="cce_01_0208__li92774437495">For clusters earlier than v1.19.10, if an HPA policy is used to scale out a workload with EVS volumes mounted, the existing pods cannot be read or written when a new pod is scheduled to another node.<p id="cce_01_0208__p11921144194914"><a name="cce_01_0208__li92774437495"></a><a name="li92774437495"></a>For clusters of v1.19.10 and later, if an HPA policy is used to scale out a workload with EVS volume mounted, a new pod cannot be started because EVS disks cannot be attached.</p>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0208__section12371183611583"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0208__ol29784442018"><li id="cce_01_0208__li3967519744"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0208__b14551154795311">Auto Scaling</strong>. On the <strong id="cce_01_0208__b205611747145315">Workload Scaling</strong> tab page, click <strong id="cce_01_0208__b1156211473539">Create HPA Policy</strong>.</span></li><li id="cce_01_0208__li1941112018168"><span>In the <strong id="cce_01_0208__b176205356223">Check Add-ons</strong> step:</span><p><ul id="cce_01_0208__ul20376103381618"><li id="cce_01_0208__li143761433171616">If <span><img id="cce_01_0208__image14815183172019" src="en-us_image_0259716601.png"></span> is displayed next to the add-on name, click <strong id="cce_01_0208__b19981165513239">Install</strong>, set add-on parameters as required, and click <strong id="cce_01_0208__b994413423243">Install</strong> to install the add-on.</li><li id="cce_01_0208__li19851104919166">If <span><img id="cce_01_0208__image13211246131716" src="en-us_image_0259714782.png"></span> is displayed next to the add-on name, the add-on has been installed.</li></ul>
-</p></li><li id="cce_01_0208__li997812446010"><span>After the required add-ons have been installed, click <strong id="cce_01_0208__b16305174415717">Next: Policy configuration</strong>.</span><p><div class="note" id="cce_01_0208__note156669317319"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0208__p4666535314">If the add-ons have been installed, after you click <strong id="cce_01_0208__b1860432820274">Create HPA Policy</strong>, you will directly land on the second step to configure the policy. The first step (checking the add-ons) has been completed almost instantly.</p>
-</div></div>
-</p></li><li id="cce_01_0208__li1233834472"><span>Set policy parameters by referring to <a href="#cce_01_0208__table8638121213265">Table 1</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0208__table8638121213265"></a><a name="table8638121213265"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0208__table8638121213265" frame="border" border="1" rules="all"><caption><b>Table 1 </b>HPA policy parameters</caption><thead align="left"><tr id="cce_01_0208__row10638181262612"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.2.4.2.1.2.3.1.1"><p id="cce_01_0208__p1063821214265">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.2.4.2.1.2.3.1.2"><p id="cce_01_0208__p1638181232617">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0208__row1922964644615"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.4.2.1.2.3.1.1 "><p id="cce_01_0208__p9231104613468">Policy Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.4.2.1.2.3.1.2 "><p id="cce_01_0208__p285719544104">Name of the policy to be created. Set this parameter as required.</p>
-</td>
-</tr>
-<tr id="cce_01_0208__row42961494311"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.4.2.1.2.3.1.1 "><p id="cce_01_0208__p2714182116117">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.4.2.1.2.3.1.2 "><p id="cce_01_0208__p161283411302">Cluster to which the workload belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0208__row12321131519262"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.4.2.1.2.3.1.1 "><p id="cce_01_0208__p14322181522614">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.4.2.1.2.3.1.2 "><p id="cce_01_0208__p1950113815188">Namespace to which the workload belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0208__row1063812126263"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.4.2.1.2.3.1.1 "><p id="cce_01_0208__p15639812122620">Associated Workload</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.4.2.1.2.3.1.2 "><p id="cce_01_0208__p1520317181911">Workload with which the HPA policy is associated.</p>
-</td>
-</tr>
-<tr id="cce_01_0208__row6649879161231"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.4.2.1.2.3.1.1 "><p id="cce_01_0208__p1769363161231">Pod Range</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.4.2.1.2.3.1.2 "><p id="cce_01_0208__p833113449476">Minimum and maximum numbers of pods.</p>
-<p id="cce_01_0208__p9100682161231">When a policy is triggered, the workload pods are scaled within this range.</p>
-</td>
-</tr>
-<tr id="cce_01_0208__row22668444436"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.4.2.1.2.3.1.1 "><p id="cce_01_0208__p426616448432">Cooldown Period</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.4.2.1.2.3.1.2 "><p id="cce_01_0208__p1344913426116">Interval between a scale-in and a scale-out. The unit is minute. <strong id="cce_01_0208__b101931311553">The interval cannot be shorter than 1 minute.</strong></p>
-<p id="cce_01_0208__p0735245104710"><strong id="cce_01_0208__b177910614584">This parameter is available only for clusters of v1.15 and later. It is not supported in clusters of v1.13 or earlier.</strong></p>
-<p id="cce_01_0208__p142661744204313">This parameter indicates the interval between consecutive scaling operations. The cooldown period ensures that a scaling operation is initiated only when the previous one is completed and the system is running stably.</p>
-</td>
-</tr>
-<tr id="cce_01_0208__row572593234714"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.4.2.1.2.3.1.1 "><p id="cce_01_0208__p14725432104718">Rules</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.4.2.1.2.3.1.2 "><p id="cce_01_0208__p18192141410482">Policy rules can be based on system metrics.</p>
-<p id="cce_01_0208__p1287715471508"><strong id="cce_01_0208__b1230494084">System metrics</strong></p>
-<ul id="cce_01_0208__ul56611653205511"><li id="cce_01_0208__li1266125355511"><span class="parmname" id="cce_01_0208__parmname1784758141014"><b>Metric</b></span>: You can select <span class="parmvalue" id="cce_01_0208__parmvalue867911081114"><b>CPU usage</b></span> or <span class="parmvalue" id="cce_01_0208__parmvalue3384615201118"><b>Memory usage</b></span>.<div class="note" id="cce_01_0208__note1751133503518"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0208__p12511735183515">Usage = CPUs or memory used by pods/Requested CPUs or memory.</p>
-</div></div>
-</li><li id="cce_01_0208__li9804144917352"><strong id="cce_01_0208__b1863612425345">Expected Value</strong>: Enter the expected average resource usage.<p id="cce_01_0208__p541111525356">This parameter indicates the expected value of the selected metric. The number of new pods required (rounded up) = Current metric value/Expected value x Number of current pods</p>
-</li><li id="cce_01_0208__li2255164019367"><strong id="cce_01_0208__b168718126335">Threshold</strong>: Enter the scaling thresholds.<p id="cce_01_0208__p795694153617">If the metric value is greater than the scale-in threshold and less than the scale-out threshold, no scaling is triggered. <strong id="cce_01_0208__b7834143383">This parameter is supported only in clusters of v1.15 or later.</strong></p>
-</li></ul>
-<p id="cce_01_0208__p162368519564">You can click <span class="uicontrol" id="cce_01_0208__uicontrol59611559592"><b>Add Rule</b></span> again to add more scaling policies. </p>
-<div class="note" id="cce_01_0208__note766672912376"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0208__p4667729193716">When calculating the number of pods to be added or reduced, the HPA policy uses the maximum metrics values in the last 5 minutes.</p>
-</div></div>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0208__li588915953910"><span>After the configuration is complete, click <strong id="cce_01_0208__b1479018359358">Create</strong>. If the system displays a message indicating that the request to create workload policy *** is successfully submitted, click <strong id="cce_01_0208__b274531343911">Back to Workload Scaling</strong>.</span></li><li id="cce_01_0208__li20637152311120"><span>On the <strong id="cce_01_0208__b611534163717">Workload Scaling</strong> tab page, you can view the newly created HPA policy.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0293.html">Scaling a Workload</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0209.html b/docs/cce/umn/cce_01_0209.html
deleted file mode 100644
index d7c4ce4e..00000000
--- a/docs/cce/umn/cce_01_0209.html
+++ /dev/null
@@ -1,207 +0,0 @@
-<a name="cce_01_0209"></a><a name="cce_01_0209"></a>
-
-<h1 class="topictitle1">Creating a Node Scaling Policy</h1>
-<div id="body1569380890256"><p id="cce_01_0209__p582015413249">CCE provides auto scaling through the <a href="cce_01_0154.html">autoscaler</a> add-on. Nodes with different specifications can be automatically added across AZs on demand.</p>
-<p id="cce_01_0209__en-us_topic_0000001137107909_p22999573442">If a node scaling policy and the configuration in the autoscaler add-on take effect at the same time, for example, there are pods that cannot be scheduled and the value of a metric reaches the threshold at the same time, scale-out is performed first for the unschedulable pods.</p>
-<ul id="cce_01_0209__en-us_topic_0000001137107909_ul8955200154519"><li id="cce_01_0209__en-us_topic_0000001137107909_li8405131518335">If the scale-out succeeds for the unschedulable pods, the system skips the metric-based rule logic and enters the next loop.</li><li id="cce_01_0209__en-us_topic_0000001137107909_li7203193203618">If the scale-out fails for the unschedulable pods, the metric-based rule is executed.</li></ul>
-<div class="section" id="cce_01_0209__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0209__p4299242191311">Before using the node scaling function, you must install the <a href="cce_01_0154.html">autoscaler</a> add-on of v1.13.8 or later.</p>
-</div>
-<div class="section" id="cce_01_0209__section4444195220142"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0209__ol29784442018"><li id="cce_01_0209__li3967519744"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0209__b147355113113">Auto Scaling</strong>. On the <strong id="cce_01_0209__b1048417517119">Node Scaling</strong> tab page, click <strong id="cce_01_0209__b0484751121111">Create Node Scaling Policy</strong>.</span></li><li id="cce_01_0209__li118951429174611"><span>In the <strong id="cce_01_0209__b34311436202211">Check Add-ons</strong> step:</span><p><ul id="cce_01_0209__ul2895102913469"><li id="cce_01_0209__li10895529174618">If <span><img id="cce_01_0209__image6999124311225" src="en-us_image_0259814716.png"></span> is displayed next to the add-on name, click <strong id="cce_01_0209__b139991943182210">Install</strong>, set add-on parameters as required, and click <strong id="cce_01_0209__b5020448223">Install</strong> to install the add-on.</li><li id="cce_01_0209__li389532914466">If <span><img id="cce_01_0209__image153276610231" src="en-us_image_0259814717.png"></span> is displayed next to the add-on name, the add-on has been installed.</li></ul>
-</p></li><li id="cce_01_0209__li28951229134613"><span>After the required add-ons have been installed, click <strong id="cce_01_0209__b365310151230">Next: Policy configuration</strong>.</span><p><div class="note" id="cce_01_0209__note178951129194614"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0209__p289511294465">If the add-ons have been installed, after you click <strong id="cce_01_0209__b125451331192315">Create Node Scaling Policy</strong>, you will directly land on the second step to configure the policy. The first step (checking the add-ons) has been completed almost instantly.</p>
-</div></div>
-</p></li><li id="cce_01_0209__li1233834472"><span>On the <strong id="cce_01_0209__b18911141605714">Create Node Scaling Policy</strong> page, set the following policy parameters.</span><p><ul id="cce_01_0209__ul17966105632820"><li id="cce_01_0209__li1396619568287"><strong id="cce_01_0209__b3656118114412">Policy Name</strong>: name of the policy to be created, which can be customized.</li><li id="cce_01_0209__li179668567286"><strong id="cce_01_0209__b2863114114418">Associated Node Pool</strong>: Click <strong id="cce_01_0209__b1932352819395">Add Node Pool</strong> and select the node pool to be associated. You can associate multiple node pools to use the same scaling policy.<div class="note" id="cce_01_0209__note1789113162816"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_p198781922578">Priority is now supported for node pools. CCE will select a node pool for auto scaling based on the following policies:</p>
-<ol type="a" id="cce_01_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_ol133814916283"><li id="cce_01_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li14381899286">CCE uses algorithms to determine whether a node pool meets the conditions to allow scheduling of a pod in pending state, including whether the node resources are greater than requested by the pod, and whether the nodeSelect, nodeAffinity, and taints meet the conditions. In addition, the node pools that fail to be scaled (due to insufficient resources or other reasons) and are still in the 15-minute cool-down interval are filtered.</li><li id="cce_01_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li8388918282">If multiple node pools meet the scaling requirements, the system checks the priority of each node pool and selects the node pool with the highest priority for scaling. The value ranges from 0 to 100 and the default priority is 0. The value 100 indicates the highest priority, and the value 0 indicates the lowest priority.</li><li id="cce_01_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li1338189132818">If multiple node pools have the same priority or no priority is configured for them, the system selects the node pool that will consume the least resources based on the configured VM specification.</li><li id="cce_01_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li0382910282">If the VM specifications of multiple node pools are the same but the node pools are deployed in different AZs, the system randomly selects a node pool to trigger scaling.</li><li id="cce_01_0209__li663914474548">If the resources of the preferred node pool are insufficient, the system automatically selects next node pool based on the priority.</li></ol>
-<p id="cce_01_0209__p07014364305">For details about the node pool priority, see <a href="cce_01_0012.html#cce_01_0012__li153215432027">Autoscaler</a>.</p>
-</div></div>
-</li><li id="cce_01_0209__li39669567288"><strong id="cce_01_0209__b13105141142720">Execution Rules</strong>: Click <strong id="cce_01_0209__b53511037117">Add Rule</strong>. In the dialog box displayed, set the following parameters:<p id="cce_01_0209__p1971102016286"><strong id="cce_01_0209__b46681421144">Name</strong>: Enter a rule name.</p>
-<p id="cce_01_0209__p129711920172811"><strong id="cce_01_0209__b18955153710117">Type</strong>: You can select <strong id="cce_01_0209__b959911421113">Metric-based</strong> or <strong id="cce_01_0209__b17771245817">Periodic</strong>. The differences between the two types are as follows:</p>
-<ul id="cce_01_0209__ul1597352072812"><li id="cce_01_0209__li1397213202289"><strong id="cce_01_0209__b1598011319536">Metric-based</strong>:<ul id="cce_01_0209__ul4972112072815"><li id="cce_01_0209__li1197282032812"><strong id="cce_01_0209__b1268835520117">Condition</strong>: Select <strong id="cce_01_0209__b10461001029">CPU allocation</strong> or <strong id="cce_01_0209__b1947947211">Memory allocation</strong> and enter a value. The value must be greater than the scale-in percentage configured in the autoscaler add-on.<div class="note" id="cce_01_0209__note17972182052813"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0209__ul85014395310"><li id="cce_01_0209__li350103953119">Resource allocation (%) = Resources requested by pods in the node pool/Resources allocatable to pods in the node pool</li><li id="cce_01_0209__li1650118397311"><strong id="cce_01_0209__b15142105410618">If multiple rules meet the conditions, the rules are executed in either of the following modes:</strong><p id="cce_01_0209__p31941933210">If rules based on the <strong id="cce_01_0209__b924072417145">CPU allocation rate</strong> and <strong id="cce_01_0209__b1624015249145">memory allocation rate</strong> are configured and two or more rules meet the scale-out conditions, the rule that will add the most nodes will be executed.</p>
-<p id="cce_01_0209__p8194179193215">If a rule based on the <strong id="cce_01_0209__b1555416281348">CPU allocation rate</strong> and <strong id="cce_01_0209__b456013281845">a periodic rule</strong> are configured and they both meet the scale-out conditions, one of them will be executed randomly. The rule executed first (rule A) changes the node pool to the scaling state. As a result, the other rule (rule B) cannot be executed. After rule A is executed and the node pool status becomes normal, rule B will not be executed.</p>
-</li><li id="cce_01_0209__li9179142215243">If rules based on the <strong id="cce_01_0209__b1981125572019">CPU allocation rate</strong> and <strong id="cce_01_0209__b857045912020">memory allocation rate</strong> are configured, the policy detection period varies with the processing logic of each loop of the autoscaler add-on. Scale-out is triggered once the conditions are met, but it is constrained by other factors such as the cool-down interval and node pool status.</li></ul>
-</div></div>
-</li><li id="cce_01_0209__li1972102014287"><strong id="cce_01_0209__b192691614058">Action</strong>: Set an action to be performed when the trigger condition is met. </li></ul>
-</li><li id="cce_01_0209__li1597332019284"><strong id="cce_01_0209__b113913177298">Periodic</strong>:<ul id="cce_01_0209__ul79739200287"><li id="cce_01_0209__li6972172016282"><strong id="cce_01_0209__b27588483220">Triggered At</strong>: You can select a specific time point every day, every week, every month, or every year. </li><li id="cce_01_0209__li397312205285"><strong id="cce_01_0209__b109591216481">Action</strong>: Set an action to be performed when the <strong id="cce_01_0209__b1196519161288">Triggered At</strong> value is reached. </li></ul>
-</li></ul>
-<p id="cce_01_0209__p199732020162814">You can click <strong id="cce_01_0209__b106807498340">Add Rule</strong> again to add more node scaling policies. You can add a maximum of one CPU usage-based rule and one memory usage-based rule. The total number of rules cannot exceed 10.</p>
-</li></ul>
-</p></li><li id="cce_01_0209__li588915953910"><span>After the configuration is complete, click <strong id="cce_01_0209__b10777173482411">Create</strong>. If the system displays a message indicating that the request to create a node scaling policy is submitted successfully, click <strong id="cce_01_0209__b999692211259">Back to Node Scaling Policy List</strong>.</span></li><li id="cce_01_0209__li5288123893820"><span>On the <strong id="cce_01_0209__b18658110142612">Node Scaling</strong> tab page, you can view the created node scaling policy.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0209__section1713483143810"><h4 class="sectiontitle">Constraints on Scale-in</h4><p id="cce_01_0209__p8965138151415">CCE cannot trigger scale-in by using node scaling policies. You can set a scale-in policy when installing the <a href="cce_01_0154.html">autoscaler add-on</a>.</p>
-<p id="cce_01_0209__p18601639103811">Node scale-in can be triggered only by the resource allocation rate. When CPU and memory allocation rates in a cluster are lower than the specified thresholds (set when the autoscaler add-on is installed or modified), scale-in is triggered for nodes in the node pool (this function can be disabled).</p>
-</div>
-<div class="section" id="cce_01_0209__section3613595209"><h4 class="sectiontitle">Example YAML File</h4><p id="cce_01_0209__p117581998202">The following is a YAML example of a node scaling policy:</p>
-<pre class="screen" id="cce_01_0209__screen2076018942015">apiVersion: autoscaling.cce.io/v1alpha1
-kind: HorizontalNodeAutoscaler
-metadata:
-  creationTimestamp: "2020-02-13T12:47:49Z"
-  generation: 1
-  name: xxxx
-  namespace: kube-system
-  resourceVersion: "11433270"
-  selfLink: /apis/autoscaling.cce.io/v1alpha1/namespaces/kube-system/horizontalnodeautoscalers/xxxx
-  uid: c2bd1e1d-60aa-47b5-938c-6bf3fadbe91f
-spec:
-  disable: false
-  rules:
-  - action:
-      type: ScaleUp
-      unit: Node
-      value: 1
-    cronTrigger:
-      schedule: 47 20 * * *
-    disable: false
-    ruleName: cronrule
-    type: Cron
-  - action:
-      type: ScaleUp
-      unit: Node
-      value: 2
-    disable: false
-    metricTrigger:
-      metricName: Cpu
-      metricOperation: '&gt;'
-      metricValue: "40"
-      unit: Percent
-    ruleName: metricrule
-    type: Metric
-  targetNodepoolIds:
-  - 7d48eca7-3419-11ea-bc29-0255ac1001a8</pre>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0209__table18763092201"></a><a name="table18763092201"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0209__table18763092201" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0209__row12761209132012"><th align="left" class="cellrowborder" valign="top" width="39.43394339433943%" id="mcps1.3.8.2.4.1.1"><p id="cce_01_0209__p10761892207">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.121612161216124%" id="mcps1.3.8.2.4.1.2"><p id="cce_01_0209__p07611972013">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="44.44444444444445%" id="mcps1.3.8.2.4.1.3"><p id="cce_01_0209__p2761179192020">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0209__row876119932015"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p157612932014">spec.disable</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p187611398202">Bool</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p1476115922010">Whether to enable the scaling policy. This parameter takes effect for all rules in the policy.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row18761199152019"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p1076179202019">spec.rules</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p1176199132018">Array</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p4761209152012">All rules in a scaling policy.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row1876119912207"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p976116910202">spec.rules[x].ruleName</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p1576179142015">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p2076179192017">Rule name.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row776129162011"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p976109102012">spec.rules[x].type</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p17761899200">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p97615952019">Rule type. Currently, <strong id="cce_01_0209__b76658599236">Cron</strong> and <strong id="cce_01_0209__b1567561132413">Metric</strong> are supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row1376119102017"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p1976119911207">spec.rules[x].disable</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p107613972014">Bool</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p197611696205">Rule switch. Currently, only <strong id="cce_01_0209__b17507113062518">false</strong> is supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row16761119142014"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p57616910204">spec.rules[x].action.type</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p476129122013">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p1476116972016">Rule action type. Currently, only <strong id="cce_01_0209__b384212424256">ScaleUp</strong> is supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row87621197201"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p17611910205">spec.rules[x].action.unit</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p1476214918204">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p167625982016">Rule action unit. Currently, only <strong id="cce_01_0209__b9689945112519">Node</strong> is supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row1476213962014"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p157625922019">spec.rules[x].action.value</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p0762179122011">Integer</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p187622962018">Rule action value.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row18762793203"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p137624952012">spec.rules[x].cronTrigger</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p67625918202">/</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p11762892207">Optional. This parameter is valid only in periodic rules.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row5762597202"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p5762189122014">spec.rules[x].cronTrigger.schedule</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p15762199112011">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p67621932020">Cron expression of a periodic rule.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row37621496208"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p157621398201">spec.rules[x].metricTrigger</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p17762394209">/</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p3762189152010">Optional. This parameter is valid only in metric-based rules.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row776299102010"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p576289152018">spec.rules[x].metricTrigger.metricName</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p13762139192010">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p1176218992015">Metric of a metric-based rule. Currently, <strong id="cce_01_0209__b10699858276">Cpu</strong> and <strong id="cce_01_0209__b8777673276">Memory</strong> are supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row876217919201"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p187626913202">spec.rules[x].metricTrigger.metricOperation</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p87622098209">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p07621298205">Comparison operator of a metric-based rule. Currently, only <strong id="cce_01_0209__b87451128142718">&gt;</strong> is supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row77631922017"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p1762693205">spec.rules[x].metricTrigger.metricValue</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p776219920206">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p4762159162010">Metric threshold of a metric-based rule. The value can be any integer from 1 to 100 and must be a character string.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row12763169172011"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p57639982014">spec.rules[x].metricTrigger.Unit</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p19763189122011">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p14763298203">Unit of the metric-based rule threshold. Currently, only <strong id="cce_01_0209__b3938412192811">%</strong> is supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row1276313914203"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p157634914202">spec.targetNodepoolIds</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p2076314918202">Array</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p127636972016">All node pools associated with the scaling policy.</p>
-</td>
-</tr>
-<tr id="cce_01_0209__row1776316942015"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.8.2.4.1.1 "><p id="cce_01_0209__p19763199132011">spec.targetNodepoolIds[x]</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.8.2.4.1.2 "><p id="cce_01_0209__p4763390209">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.8.2.4.1.3 "><p id="cce_01_0209__p157631591201">ID of the node pool associated with the scaling policy.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0291.html">Scaling a Cluster/Node</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0210.html b/docs/cce/umn/cce_01_0210.html
deleted file mode 100644
index b5cfa4ec..00000000
--- a/docs/cce/umn/cce_01_0210.html
+++ /dev/null
@@ -1,60 +0,0 @@
-<a name="cce_01_0210"></a><a name="cce_01_0210"></a>
-
-<h1 class="topictitle1">Migrating Services Across Clusters of Different Versions</h1>
-<div id="body1569380890256"><div class="section" id="cce_01_0210__section11817228199"><h4 class="sectiontitle">Application Scenarios</h4><p id="cce_01_0210__p1329694314425">This section describes how to migrate services from a cluster of an earlier version to a cluster of a later version in CCE.</p>
-<p id="cce_01_0210__p570220276196">This operation is applicable when a cross-version cluster upgrade is required (for example, upgrade from v1.7.* or v1.9.* to 1.17.*) and new clusters can be created for service migration.</p>
-</div>
-<div class="section" id="cce_01_0210__section13775155402514"><h4 class="sectiontitle">Prerequisites</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0210__table121362419267" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Checklist before migration</caption><thead align="left"><tr id="cce_01_0210__row1314122482614"><th align="left" class="cellrowborder" valign="top" width="25.369999999999997%" id="mcps1.3.2.2.2.3.1.1"><p id="cce_01_0210__p1214192410265">Category</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74.63%" id="mcps1.3.2.2.2.3.1.2"><p id="cce_01_0210__p8142248263">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0210__row181416245267"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_01_0210__p4141124162618">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_01_0210__p7658172516147">NodeIP-related: Check whether node IP addresses (including EIPs) of the cluster before the migration have been used in other configurations or whitelists.</p>
-</td>
-</tr>
-<tr id="cce_01_0210__row1141424162618"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_01_0210__p111492415264">Workloads</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_01_0210__p614112410264">Record the number of workloads for post-migration check.</p>
-</td>
-</tr>
-<tr id="cce_01_0210__row201410249264"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_01_0210__p1214324152619">Storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><ol id="cce_01_0210__ol161155617140"><li id="cce_01_0210__li8611125641413">Check whether the storage resources in use are provisioned by the cloud or by your organization.</li><li id="cce_01_0210__li1761165612148">Change the automatically created storage to the existing storage in the new cluster.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0210__row1614924172616"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_01_0210__p1114132452616">Network</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><ol id="cce_01_0210__ol1092210163153"><li id="cce_01_0210__li192251619150">Pay special attention to the ELB and ingress.</li><li id="cce_01_0210__li592217167152">Clusters of an earlier version support only the classic load balancer. To migrate services to a new cluster, you need to change load balancer type to shared load balancer. Then, the corresponding ELB service will be re-established.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0210__row6141224192610"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_01_0210__p2141424132616">O&amp;M</p>
-</td>
-<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_01_0210__p1214724102620">Private configuration: Check whether kernel parameters or system data have been configured on nodes in the cluster.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0210__section288595091613"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0210__ol13570119184212"><li id="cce_01_0210__li157018195420"><span><strong id="cce_01_0210__b15758154795510">Create a CCE cluster.</strong></span><p><p id="cce_01_0210__p894183684211">Create a cluster with the same specifications and configurations as the cluster of the earlier version. For details, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</p>
-</p></li><li id="cce_01_0210__li12570131954213"><span><strong id="cce_01_0210__b9369103111564">Add a node.</strong></span><p><p id="cce_01_0210__p185677529428">Add nodes with the same specifications and manual configuration items. For details, see <a href="cce_01_0033.html">Creating a Node</a>.</p>
-</p></li><li id="cce_01_0210__li157014191426"><span><strong id="cce_01_0210__b5922415135810">Create a storage volume in the new cluster.</strong></span><p><p id="cce_01_0210__p1957420106436">Use an existing storage volume to create a PVC in the new cluster. The PVC name remains unchanged. For details, see <a href="cce_01_0378.html">PersistentVolumeClaims (PVCs)</a>.</p>
-<div class="note" id="cce_01_0210__note19988191333"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0210__p398319433">Storage switching supports only OBS buckets, SFS file systems, and shared EVS disks. If a non-shared EVS disk is used, you need to suspend the workloads in the old cluster to switch the storage resources. As a result, services will be interrupted.</p>
-</div></div>
-</p></li><li id="cce_01_0210__li657041917428"><span><strong id="cce_01_0210__b0659205011400">Create a workload in the new cluster.</strong></span><p><p id="cce_01_0210__p3900113884313">The workload name and specifications remain unchanged. For details about how to create a workload, see <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>. For details about how to mount a storage volume to the workload, see <a href="cce_01_0257.html">Creating a Pod Mounted with an EVS Volume</a>.</p>
-</p></li><li id="cce_01_0210__li457071934211"><span><strong id="cce_01_0210__b734354614417">Create a Service in the new cluster.</strong></span><p><p id="cce_01_0210__p7880248447">The Service name and specifications remain unchanged. For details about how to create a Service, see <a href="cce_01_0247.html">Services</a>.</p>
-</p></li><li id="cce_01_0210__li557041911428"><span><strong id="cce_01_0210__b116585573149">Commission services.</strong></span><p><p id="cce_01_0210__p1963052113448">After all resources are created, commission the containerized services. If the commissioning is successful, migrate the services to the new cluster.</p>
-</p></li><li id="cce_01_0210__li35701819174210"><span><strong id="cce_01_0210__b1241035764218">Delete the old cluster.</strong></span><p><p id="cce_01_0210__p5461371819">When all functions of the new cluster are stable, delete the old cluster. For details about how to delete a cluster, see <a href="cce_01_0212.html">Deleting a Cluster</a>.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0215.html">Upgrading a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0211.html b/docs/cce/umn/cce_01_0211.html
deleted file mode 100644
index ea44b5ae..00000000
--- a/docs/cce/umn/cce_01_0211.html
+++ /dev/null
@@ -1,67 +0,0 @@
-<a name="cce_01_0211"></a><a name="cce_01_0211"></a>
-
-<h1 class="topictitle1">Snapshots and Backups</h1>
-<div id="body8662426"><p id="cce_01_0211__en-us_topic_0000001199021196_p64144462419">CCE works with EVS to support snapshots. A snapshot is a complete copy or image of EVS disk data at a certain point of time, which can be used for data DR.</p>
-<p id="cce_01_0211__en-us_topic_0000001199021196_p6499155011342">You can create snapshots to rapidly save the disk data at specified time points. In addition, you can use snapshots to create new disks so that the created disks will contain the snapshot data in the beginning.</p>
-<div class="section" id="cce_01_0211__en-us_topic_0000001199021196_section113181948104715"><h4 class="sectiontitle">Precautions</h4><ul id="cce_01_0211__en-us_topic_0000001199021196_ul1621310918488"><li id="cce_01_0211__en-us_topic_0000001199021196_li617612518534">The snapshot function is available <strong id="cce_01_0211__en-us_topic_0000001199021196_b15228105918598">only for clusters of v1.15 or later</strong> and requires the CSI-based everest add-on.</li><li id="cce_01_0211__en-us_topic_0000001199021196_li199561838153910">The subtype (common I/O, high I/O, or ultra-high I/O), disk mode (SCSI or VBD), data encryption, sharing status, and capacity of an EVS disk created from a snapshot must be the same as those of the disk associated with the snapshot. These attributes cannot be modified after being queried or set.</li><li id="cce_01_0211__en-us_topic_0000001199021196_li1954823042315">Snapshots can be created only for available or in-use CSI disks. During the free trial, you can create up to 7 snapshots per disk.</li><li id="cce_01_0211__en-us_topic_0000001199021196_li17877201852316">Snapshot data of encrypted disks is stored encrypted, and that of non-encrypted disks is stored non-encrypted.</li></ul>
-</div>
-<div class="section" id="cce_01_0211__en-us_topic_0000001199021196_section54641247195218"><h4 class="sectiontitle">Application Scenario</h4><p id="cce_01_0211__en-us_topic_0000001199021196_p1391672917530">The snapshot feature helps address your following needs:</p>
-<ul id="cce_01_0211__en-us_topic_0000001199021196_ul181411130195519"><li id="cce_01_0211__en-us_topic_0000001199021196_li101411830165512"><strong id="cce_01_0211__en-us_topic_0000001199021196_b25400238018">Routine data backup</strong><p id="cce_01_0211__en-us_topic_0000001199021196_p17604103255516">You can create snapshots for EVS disks regularly and use snapshots to recover your data in case that data loss or data inconsistency occurred due to misoperations, viruses, or attacks.</p>
-</li><li id="cce_01_0211__en-us_topic_0000001199021196_li514119304557"><strong id="cce_01_0211__en-us_topic_0000001199021196_b869018251014">Rapid data restoration</strong><p id="cce_01_0211__en-us_topic_0000001199021196_p155811334175514">You can create a snapshot or multiple snapshots before an OS change, application software upgrade, or a service data migration. If an exception occurs during the upgrade or migration, service data can be rapidly restored to the time point when the snapshot was created.</p>
-<div class="p" id="cce_01_0211__en-us_topic_0000001199021196_p12312336205520">For example, a fault occurred on system disk A of ECS A, and therefore ECS A cannot be started. Because system disk A is already faulty, the data on system disk A cannot be restored by rolling back snapshots. In this case, you can use an existing snapshot of system disk A to create EVS disk B and attach it to ECS B that is running properly. Then, ECS B can read data from system disk A using EVS disk B.<div class="note" id="cce_01_0211__en-us_topic_0000001199021196_note514511518541"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0211__en-us_topic_0000001199021196_p1531205917113">The snapshot capability provided by CCE is the same as the CSI snapshot function provided by the Kubernetes community. EVS disks can be created only based on snapshots, and snapshots cannot be rolled back to source EVS disks.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0211__en-us_topic_0000001199021196_li5141230135519"><strong id="cce_01_0211__en-us_topic_0000001199021196_b1465815401401">Rapid deployment of multiple services</strong><p id="cce_01_0211__en-us_topic_0000001199021196_p10343164212559">You can use a snapshot to create multiple EVS disks containing the same initial data, and these disks can be used as data resources for various services, for example, data mining, report query, and development and testing. This method protects the initial data and creates disks rapidly, meeting the diversified service data requirements.</p>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0211__en-us_topic_0000001199021196_section1461332311913"><h4 class="sectiontitle">Creating a Snapshot</h4><p id="cce_01_0211__en-us_topic_0000001199021196_p1281915285197"><strong id="cce_01_0211__en-us_topic_0000001199021196_b18769135623910">Using the CCE Console</strong></p>
-<ol id="cce_01_0211__en-us_topic_0000001199021196_ol152401851181913"><li id="cce_01_0211__en-us_topic_0000001199021196_li1179513219432"><span>Log in to the CCE console.</span></li><li id="cce_01_0211__en-us_topic_0000001199021196_li3574131225117"><span>Go to the cluster details page, choose <strong id="cce_01_0211__en-us_topic_0000001199021196_b1458912512247">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0211__en-us_topic_0000001199021196_b922063714254">Snapshots and Backups</strong> tab.</span></li><li id="cce_01_0211__en-us_topic_0000001199021196_li19331121142020"><span>Click <span class="uicontrol" id="cce_01_0211__en-us_topic_0000001199021196_uicontrol18916952142010"><b>Create Snapshot</b></span> in the upper right corner. In the dialog box displayed, set related parameters.</span><p><ul id="cce_01_0211__en-us_topic_0000001199021196_ul26971012211"><li id="cce_01_0211__en-us_topic_0000001199021196_li13697180112213"><span class="parmname" id="cce_01_0211__en-us_topic_0000001199021196_parmname4328131816"><b>Snapshot Name</b></span>: Enter a snapshot name.</li><li id="cce_01_0211__en-us_topic_0000001199021196_li1473992216"><strong id="cce_01_0211__en-us_topic_0000001199021196_b48971655142815">Storage</strong>: Select the PVC for which you want to create a snapshot.</li></ul>
-</p></li><li id="cce_01_0211__en-us_topic_0000001199021196_li3247144122016"><span>Click <strong id="cce_01_0211__en-us_topic_0000001199021196_b118910197112">Create</strong>.</span></li></ol>
-<p id="cce_01_0211__en-us_topic_0000001199021196_p1091918022416"><strong id="cce_01_0211__en-us_topic_0000001199021196_b5801577115">Using YAML</strong></p>
-<pre class="screen" id="cce_01_0211__en-us_topic_0000001199021196_screen197841222181">kind: VolumeSnapshot
-apiVersion: snapshot.storage.k8s.io/v1beta1
-metadata:
-  finalizers:
-    - snapshot.storage.kubernetes.io/volumesnapshot-as-source-protection
-    - snapshot.storage.kubernetes.io/volumesnapshot-bound-protection
-  name: cce-disksnap-test
-  namespace: default
-spec:
-  source:
-    persistentVolumeClaimName: <span style="color:#FF0000;">pvc-evs-test</span>     # PVC name. Only an EVS PVC can be created.
-  volumeSnapshotClassName: csi-disk-snapclass</pre>
-</div>
-<div class="section" id="cce_01_0211__en-us_topic_0000001199021196_section228816108265"><h4 class="sectiontitle">Using a Snapshot to Creating a PVC</h4><p id="cce_01_0211__en-us_topic_0000001199021196_p614685193310">The disk type, encryption setting, and disk mode of the created EVS PVC are consistent with those of the snapshot's source EVS disk.</p>
-<p id="cce_01_0211__en-us_topic_0000001199021196_p326513510362"><strong id="cce_01_0211__en-us_topic_0000001199021196_b11698411123514">Using the CCE Console</strong></p>
-<ol id="cce_01_0211__en-us_topic_0000001199021196_ol126520513363"><li id="cce_01_0211__en-us_topic_0000001199021196_li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_01_0211__en-us_topic_0000001199021196_li14265165103610"><span>Go to the cluster details page, choose <strong id="cce_01_0211__en-us_topic_0000001199021196_b1637861813352">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0211__en-us_topic_0000001199021196_b14383118113513">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_01_0211__en-us_topic_0000001199021196_li42661759363"><span>Click <strong id="cce_01_0211__en-us_topic_0000001199021196_b16333941183518">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_01_0211__en-us_topic_0000001199021196_ul2026615203615"><li id="cce_01_0211__en-us_topic_0000001199021196_li1426615103615"><strong id="cce_01_0211__en-us_topic_0000001199021196_b8493433113717">Creation Mode</strong>: Select <span class="uicontrol" id="cce_01_0211__en-us_topic_0000001199021196_uicontrol52661453366"><b>Snapshot</b></span>.</li><li id="cce_01_0211__en-us_topic_0000001199021196_li112668515362"><strong id="cce_01_0211__en-us_topic_0000001199021196_b151131350388">PVC Name</strong>: name of a PVC.</li><li id="cce_01_0211__en-us_topic_0000001199021196_li202662051369"><strong id="cce_01_0211__en-us_topic_0000001199021196_b12930234388">Snapshot</strong>: Select the snapshot to be used.</li></ul>
-</p></li><li id="cce_01_0211__en-us_topic_0000001199021196_li10266451367"><span>Click <strong id="cce_01_0211__en-us_topic_0000001199021196_b22763361837">Create</strong>.</span></li></ol>
-<p id="cce_01_0211__en-us_topic_0000001199021196_p7439164710549"><strong id="cce_01_0211__en-us_topic_0000001199021196_b16731134213319">Using YAML</strong></p>
-<pre class="screen" id="cce_01_0211__en-us_topic_0000001199021196_screen12534181311281">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-test
-  namespace: default
-  annotations:
-    everest.io/disk-volume-type: SSD     # EVS disk type, which must be the same as that of the source EVS disk of the snapshot.
-  labels:
-<span style="color:#FF0000;">    failure-domain.beta.kubernetes.io/region</span>: <span id="cce_01_0211__text91798410111">eu-de</span>
-    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone</span>: <span id="cce_01_0211__text1198914513113">eu-de-01</span>
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: '10'
-  storageClassName: csi-disk
-  dataSource:
-    name: <span style="color:#FF0000;">cce-disksnap-test</span>             # Snapshot name
-    kind: VolumeSnapshot
-    apiGroup: snapshot.storage.k8s.io</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0212.html b/docs/cce/umn/cce_01_0212.html
deleted file mode 100644
index 19db47f2..00000000
--- a/docs/cce/umn/cce_01_0212.html
+++ /dev/null
@@ -1,20 +0,0 @@
-<a name="cce_01_0212"></a><a name="cce_01_0212"></a>
-
-<h1 class="topictitle1">Deleting a Cluster</h1>
-<div id="body1569380890256"><div class="section" id="cce_01_0212__section388994920203"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0212__p113681753162017">This section describes how to delete a cluster.</p>
-</div>
-<div class="section" id="cce_01_0212__section14551131145314"><h4 class="sectiontitle">Precautions</h4><ul id="cce_01_0212__ul77224385210"><li id="cce_01_0212__li1150355814214">Deleting a cluster will delete the nodes in the cluster (excluding accepted nodes), data disks attached to the nodes, workloads, and Services. Related services cannot be restored. Before performing this operation, ensure that data has been backed up or migrated. Deleted data cannot be restored.<div class="p" id="cce_01_0212__p8145173813228"><a name="cce_01_0212__li1150355814214"></a><a name="li1150355814214"></a>Resources that are not created in CCE will not be deleted:<ul id="cce_01_0212__ul141181271016"><li id="cce_01_0212__li11118227106">Accepted nodes (only the nodes created in CCE are deleted);</li><li id="cce_01_0212__li189841325162516">ELB load balancers associated with Services and ingresses (only the automatically created load balancers are deleted);</li><li id="cce_01_0212__li170612470466">Manually created cloud storage resources associated with PVs or imported cloud storage resources (only the cloud storage resources automatically created by PVCs are deleted)</li></ul>
-</div>
-</li><li id="cce_01_0212__li4571923155519">A hibernated cluster cannot be deleted. Wake up the cluster and try again.</li><li id="cce_01_0212__li13277132995711">If a cluster whose status is Unavailable is deleted, some storage resources of the cluster may need to be manually deleted.</li></ul>
-</div>
-<div class="section" id="cce_01_0212__section66361189212"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0212__ol186094278570"><li id="cce_01_0212__li36092279576"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0212__b173203819115">Resource Management</strong> &gt; <strong id="cce_01_0212__b573216381716">Clusters</strong>.</span></li><li id="cce_01_0212__li6610192715714"><span>Choose <strong id="cce_01_0212__b1170336982">More</strong> &gt; <strong id="cce_01_0212__b8901387820">Delete</strong>.</span></li><li id="cce_01_0212__li1794418536121"><span>Delete the cluster.</span><p><div class="fignone" id="cce_01_0212__fig28752011924"><span class="figcap"><b>Figure 1 </b>Deleting a cluster</span><br><span><img id="cce_01_0212__image1542117504445" src="en-us_image_0000001190168507.png"></span></div>
-</p></li><li id="cce_01_0212__li206411338151114"><span>Click <span class="uicontrol" id="cce_01_0212__uicontrol105924424253"><b>Yes</b></span> to start deleting the cluster.</span><p><p id="cce_01_0212__p19913735600">The delete operation takes 1 to 3 minutes to complete.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0031.html">Managing a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0213.html b/docs/cce/umn/cce_01_0213.html
deleted file mode 100644
index 90563979..00000000
--- a/docs/cce/umn/cce_01_0213.html
+++ /dev/null
@@ -1,196 +0,0 @@
-<a name="cce_01_0213"></a><a name="cce_01_0213"></a>
-
-<h1 class="topictitle1">Configuring Kubernetes Parameters</h1>
-<div id="body1569380890256"><div class="section" id="cce_01_0213__section1055218393273"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0213__p149661516162511">CCE clusters allow you to manage Kubernetes parameters, through which you can let core components work under your very requirements.</p>
-</div>
-<div class="section" id="cce_01_0213__section12438124825414"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0213__p442175495411">This function is supported only in clusters of <strong id="cce_01_0213__b1963285592415">v1.15 and later</strong>. It is not displayed for versions earlier than v1.15.</p>
-</div>
-<div class="section" id="cce_01_0213__section186921921195519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0213__ol186094278570"><li id="cce_01_0213__li36092279576"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0213__b394115015115">Resource Management</strong> &gt; <strong id="cce_01_0213__b394720021117">Clusters</strong>.</span></li><li id="cce_01_0213__li6610192715714"><span>Choose <span class="uicontrol" id="cce_01_0213__uicontrol19676940121417"><b>More</b></span> &gt; <span class="uicontrol" id="cce_01_0213__uicontrol1713711181297"><b>Configuration</b></span>.</span></li><li id="cce_01_0213__li10118171017510"><span>On the <span class="uicontrol" id="cce_01_0213__uicontrol165520251126"><b>Configuration</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0213__table158253508558" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Kubernetes parameters</caption><thead align="left"><tr id="cce_01_0213__row1782665095518"><th align="left" class="cellrowborder" valign="top" width="18.81811818818118%" id="mcps1.3.3.2.3.2.1.2.5.1.1"><p id="cce_01_0213__p15826450135513">Component</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.22717728227177%" id="mcps1.3.3.2.3.2.1.2.5.1.2"><p id="cce_01_0213__p6826185014554">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="35.83641635836416%" id="mcps1.3.3.2.3.2.1.2.5.1.3"><p id="cce_01_0213__p1982645016556">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="17.11828817118288%" id="mcps1.3.3.2.3.2.1.2.5.1.4"><p id="cce_01_0213__p8826650125517">Value</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0213__row148268502553"><td class="cellrowborder" rowspan="5" valign="top" width="18.81811818818118%" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p13826145018553">kube-apiserver</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.22717728227177%" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p982610505554">default-not-ready-toleration-seconds</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.83641635836416%" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p138261750195514">notReady tolerance time, in seconds. NoExecute that is added by default to every pod that does not already have such a toleration.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.11828817118288%" headers="mcps1.3.3.2.3.2.1.2.5.1.4 "><p id="cce_01_0213__p10826250185513">Default: 300</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row138261050175511"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p19826165095518">default-unreachable-toleration-seconds</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p7826950175515">unreachable tolerance time, in seconds. NoExecute that is added by default to every pod that does not already have such a toleration.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p5826205095520">Default: 300</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row882635035518"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p48271506552">max-mutating-requests-inflight</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p1582725011559">Maximum number of concurrent mutating requests. When the value of this parameter is exceeded, the server rejects requests.</p>
-<p id="cce_01_0213__p13827145095517">The value <strong id="cce_01_0213__b389319593475">0</strong> indicates no limitation.</p>
-<p id="cce_01_0213__p14759105235117">Manual configuration is no longer supported since cluster version 1.21. The value is automatically specified based on the cluster scale.</p>
-<ul id="cce_01_0213__ul8796759145118"><li id="cce_01_0213__li87961159205112"><strong id="cce_01_0213__b209548461298">200</strong> for clusters with 50 or 200 nodes</li><li id="cce_01_0213__li1779610594516"><strong id="cce_01_0213__b12677624181019">500</strong> for clusters with 1000 nodes</li><li id="cce_01_0213__li279605919511"><strong id="cce_01_0213__b4703240141015">1000</strong> for clusters with 2000 nodes</li></ul>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p1882705025510">Default: 1000</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row382765010555"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p9827145075510">max-requests-inflight</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p19827650185512">Maximum number of concurrent non-mutating requests. When the value of this parameter is exceeded, the server rejects requests.</p>
-<p id="cce_01_0213__p5827195019554">The value <strong id="cce_01_0213__b248219175484">0</strong> indicates no limitation.</p>
-<p id="cce_01_0213__p54321382527">Manual configuration is no longer supported since cluster version 1.21. The value is automatically specified based on the cluster scale.</p>
-<ul id="cce_01_0213__ul680312115214"><li id="cce_01_0213__li98017125526"><strong id="cce_01_0213__b560914712107">400</strong> for clusters with 50 or 200 nodes</li><li id="cce_01_0213__li4803127521"><strong id="cce_01_0213__b1733775131015">1000</strong> for clusters with 1000 nodes</li><li id="cce_01_0213__li3801212155212"><strong id="cce_01_0213__b17328175617103">2000</strong> for clusters with 2000 nodes</li></ul>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p19827115095511">Default: 2000</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row16827195055511"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p168270506557">service-node-port-range</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p1082735075518">Range of node port numbers.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p282717507558">Default:</p>
-<p id="cce_01_0213__p6827145015518">30000-32767</p>
-<p id="cce_01_0213__p168271150105518">Options:</p>
-<p id="cce_01_0213__p2082712501553">min&gt;20105</p>
-<p id="cce_01_0213__p1582785018555">max&lt;32768</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row1482775045519"><td class="cellrowborder" rowspan="14" valign="top" width="18.81811818818118%" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p148278505558">kube-controller-manager</p>
-<p id="cce_01_0213__p8596530175617"></p>
-</td>
-<td class="cellrowborder" valign="top" width="28.22717728227177%" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p15827185075515">concurrent-deployment-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.83641635836416%" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p17827145075515">Number of Deployments that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.11828817118288%" headers="mcps1.3.3.2.3.2.1.2.5.1.4 "><p id="cce_01_0213__p178271350115513">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row2827145035517"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p1682765035511">concurrent-endpoint-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p582755085510">Number of endpoints that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p11827125011557">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row1682765015511"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p158271503550">concurrent-gc-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p16828195012550">Number of garbage collector workers that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p17828105015556">Default: 20</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row14463613121220"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p10163516377">concurrent-job-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p1118320103191">Number of jobs that can be synchronized at the same time.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p13726203953714">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row1828550115516"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p5828050125519">concurrent-namespace-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p1082817506553">Number of namespaces that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p12828195095514">Default: 10 </p>
-</td>
-</tr>
-<tr id="cce_01_0213__row882817506555"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p7828650115516">concurrent-replicaset-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p6828950125516">Number of ReplicaSets that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p182816502553">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row082865065514"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p982855075513">concurrent-resource-quota-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p8828195016554">Number of resource quotas that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p782815504554">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row16828175085513"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p2828115045511">concurrent-service-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p1382885010556">Number of Services that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p13828250125515">Default: 10 </p>
-</td>
-</tr>
-<tr id="cce_01_0213__row382813505554"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p2828145014559">concurrent-serviceaccount-token-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p108291450175520">Number of service account tokens that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p882945055516">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row482945095520"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p1382910501553">concurrent-ttl-after-finished-syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p58294506551">Number of TTL-after-finished controller workers that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p4829125035516">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row1282995045516"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p382975075511">concurrent_rc_syncs</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p78291950165519">Number of replication controllers that are allowed to synchronize concurrently.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p1582945011551">Default: 5</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row1284414327123"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p155967301564">horizontal-pod-autoscaler-sync-period</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p55969307566">How often HPA audits metrics in a cluster.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p25961830105617">Default: 15 seconds</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row19829950195515"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p198297505555">kube-api-qps</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p3829145065519">Query per second (QPS) to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p188291950185520">Default: 100</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row16829850105510"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p138293509558">kube-api-burst</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p2829105014558">Burst to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p10829150195516">Default: 100</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row382965010552"><td class="cellrowborder" rowspan="2" valign="top" width="18.81811818818118%" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p1882955010551">kube-scheduler</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.22717728227177%" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p2083045015550">kube-api-qps</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.83641635836416%" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p1683095014559">Query per second (QPS) to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.11828817118288%" headers="mcps1.3.3.2.3.2.1.2.5.1.4 "><p id="cce_01_0213__p1483019502555">Default: 100</p>
-</td>
-</tr>
-<tr id="cce_01_0213__row1783015020558"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.1 "><p id="cce_01_0213__p783015501553">kube-api-burst</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.2 "><p id="cce_01_0213__p5830450185511">Burst to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.3.2.1.2.5.1.3 "><p id="cce_01_0213__p12830950145511">Default: 100</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0213__li206411338151114"><span>Click <strong id="cce_01_0213__b1685222213336">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0213__section185642613239"><h4 class="sectiontitle">References</h4><ul id="cce_01_0213__ul14570193142510"><li id="cce_01_0213__li1997622382510"><a href="https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kube-apiserver/" target="_blank" rel="noopener noreferrer">kube-apiserver</a></li><li id="cce_01_0213__li557010302511"><a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kube-controller-manager/" target="_blank" rel="noopener noreferrer">kube-controller-manager</a></li><li id="cce_01_0213__li145701334252"><a href="https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kube-scheduler/" target="_blank" rel="noopener noreferrer">kube-scheduler</a></li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0031.html">Managing a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0214.html b/docs/cce/umn/cce_01_0214.html
deleted file mode 100644
index fa37a1e8..00000000
--- a/docs/cce/umn/cce_01_0214.html
+++ /dev/null
@@ -1,22 +0,0 @@
-<a name="cce_01_0214"></a><a name="cce_01_0214"></a>
-
-<h1 class="topictitle1">Hibernating and Waking Up a Cluster</h1>
-<div id="body1569380890257"><div class="section" id="cce_01_0214__section4812101752820"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0214__p1661910139529">If you do not need to use a cluster temporarily, you are advised to hibernate the cluster to save cluster management costs.</p>
-<p id="cce_01_0214__p15730959536">After a cluster is hibernated, resources such as workloads cannot be created or managed in the cluster.</p>
-<p id="cce_01_0214__p1693193111284">A hibernated cluster can be quickly woken up and used normally.</p>
-</div>
-<div class="section" id="cce_01_0214__section1033214207131"><h4 class="sectiontitle">Hibernating a Cluster</h4><ol id="cce_01_0214__ol6530151295410"><li id="cce_01_0214__li1253017127545"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0214__b583991815814">Resource Management</strong> &gt; <strong id="cce_01_0214__b1583911181584">Clusters</strong>.</span></li><li id="cce_01_0214__li11530101235412"><span>Choose <strong id="cce_01_0214__b842352706153558">More</strong> &gt; <strong id="cce_01_0214__b842352706153627">Hibernate</strong> for the target cluster.</span></li><li id="cce_01_0214__li65781125195915"><span>In the dialog box displayed, check the precautions and click <strong id="cce_01_0214__b17836812428">Yes</strong>. Wait until the cluster is hibernated.</span><p><div class="notice" id="cce_01_0214__note172383416437"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0214__ul423143414315"><li id="cce_01_0214__li112313494317">After a cluster is hibernated, resources, such as worker nodes (ECSs), bound EIPs, and bandwidth, are still billed based on their own billing modes. To shut down nodes, select <strong id="cce_01_0214__b1717591716451">Stop all nodes in the cluster</strong> in the dialog box or see <a href="cce_01_0036.html">Stopping a Node</a>.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0214__li94121858175914"><span>When the cluster status changes from <span class="uicontrol" id="cce_01_0214__uicontrol4646103015267"><b>Hibernating</b></span> to <span class="uicontrol" id="cce_01_0214__uicontrol3251149182911"><b>Hibernation</b></span>, the cluster is hibernated.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0214__section53339203136"><h4 class="sectiontitle">Waking Up a Cluster</h4><ol id="cce_01_0214__ol3963342135713"><li id="cce_01_0214__li59639423578"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0214__b15504172113812">Resource Management</strong> &gt; <strong id="cce_01_0214__b850417211981">Clusters</strong>.</span></li><li id="cce_01_0214__li9963742175711"><span>Choose <strong id="cce_01_0214__b84235270615385">More</strong> &gt; <strong id="cce_01_0214__b842352706153833">Wake</strong>.</span></li><li id="cce_01_0214__li10471163119413"><span>In the dialog box displayed, click <span class="uicontrol" id="cce_01_0214__uicontrol8310612338"><b>Yes</b></span> and wait until the cluster is woken up.</span></li><li id="cce_01_0214__li112592262039"><span>When the cluster status changes from <span class="uicontrol" id="cce_01_0214__uicontrol19100274369"><b>Waking</b></span> to <span class="uicontrol" id="cce_01_0214__uicontrol9693172073810"><b>Available</b></span>, the cluster is woken up.</span><p><div class="note" id="cce_01_0214__note118758105512"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0214__p10875710751">After the cluster is woken up, billing will be resumed for the resources on the master node.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0031.html">Managing a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0215.html b/docs/cce/umn/cce_01_0215.html
deleted file mode 100644
index b8a84ec8..00000000
--- a/docs/cce/umn/cce_01_0215.html
+++ /dev/null
@@ -1,25 +0,0 @@
-<a name="cce_01_0215"></a><a name="cce_01_0215"></a>
-
-<h1 class="topictitle1">Upgrading a Cluster</h1>
-<div id="body1569380890257"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0197.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0302.html">Before You Start</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0120.html">Performing Replace/Rolling Upgrade (v1.13 and Earlier)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0301.html">Performing In-place Upgrade (v1.15 and Later)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0210.html">Migrating Services Across Clusters of Different Versions</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0068.html">CCE Kubernetes Release Notes</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0216.html b/docs/cce/umn/cce_01_0216.html
deleted file mode 100644
index 4c551437..00000000
--- a/docs/cce/umn/cce_01_0216.html
+++ /dev/null
@@ -1,127 +0,0 @@
-<a name="cce_01_0216"></a><a name="cce_01_0216"></a>
-
-<h1 class="topictitle1">Creating a DaemonSet</h1>
-<div id="body1569752901153"><div class="section" id="cce_01_0216__section1479811467429"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0216__p1934024917445">CCE provides deployment and management capabilities for multiple types of containers and supports features of container workloads, including creation, configuration, monitoring, scaling, upgrade, uninstall, service discovery, and load balancing.</p>
-<p id="cce_01_0216__p8060118">DaemonSet ensures that only one pod runs on all or some nodes. When a node is added to a cluster, a new pod is also added for the node. When a node is removed from a cluster, the pod is also reclaimed. If a DaemonSet is deleted, all pods created by it will be deleted.</p>
-<p id="cce_01_0216__p19232340184414">The typical application scenarios of a DaemonSet are as follows:</p>
-<ul id="cce_01_0216__ul35017102452"><li id="cce_01_0216__li155018101451">Run the cluster storage daemon, such as glusterd or Ceph, on each node.</li><li id="cce_01_0216__li15081013454">Run the log collection daemon, such as Fluentd or Logstash, on each node.</li><li id="cce_01_0216__li135091054518">Run the monitoring daemon, such as Prometheus Node Exporter, collectd, Datadog agent, New Relic agent, or Ganglia (gmond), on each node.</li></ul>
-<p id="cce_01_0216__p1282112555424">You can deploy a DaemonSet for each type of daemons on all nodes, or deploy multiple DaemonSets for the same type of daemons. In the second case, DaemonSets have different flags and different requirements on memory and CPU for different hardware types.</p>
-</div>
-<div class="section" id="cce_01_0216__section7271245481"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0216__p1195519514554">You must have one cluster available before creating a DaemonSet. For details on how to create a cluster, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</p>
-
-</div>
-<div class="section" id="cce_01_0216__section1160483214207"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0216__ol07512570254"><li id="cce_01_0216__li14751157192510"><span>Log in to the CCE console.</span></li><li id="cce_01_0216__li490240103814"><span>In the navigation pane on the left, choose <strong id="cce_01_0216__b155781471226">Workloads</strong> &gt; <strong id="cce_01_0216__b116816501829">DaemonSets</strong>. Click <strong id="cce_01_0216__b154971116320">Create DaemonSet</strong> in the upper right corner of the page. Set basic workload parameters as described in <a href="#cce_01_0216__table18511927357">Table 1</a>. The parameters marked with an asterisk (*) are mandatory.</span><p>
-<div class="tablenoborder"><a name="cce_01_0216__table18511927357"></a><a name="table18511927357"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0216__table18511927357" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic workload parameters</caption><thead align="left"><tr id="cce_01_0216__row165111724358"><th align="left" class="cellrowborder" valign="top" width="23.07%" id="mcps1.3.3.2.2.2.1.2.3.1.1"><p id="cce_01_0216__p151110220357">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.92999999999999%" id="mcps1.3.3.2.2.2.1.2.3.1.2"><p id="cce_01_0216__p151111263510">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0216__row165116293513"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0216__p15111126356">* Workload Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0216__p5511132113518">Name of the containerized workload to be created. The name must be unique.</p>
-<p id="cce_01_0216__p91103247115">Enter 4 to 63 characters starting with a letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0216__row9511529359"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0216__p2511192203512">* Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0216__p1251118203518">Cluster to which the workload belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0216__row551122123512"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0216__p175112263520">* Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0216__p2511628354">In a single cluster, data in different namespaces is isolated from each other. This enables applications to share the services of the same cluster without interfering each other. If no namespace is set, the default namespace is used.</p>
-</td>
-</tr>
-<tr id="cce_01_0216__row15115217354"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0216__p151122103514">Time Zone Synchronization</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0216__p14511926351">If this parameter is enabled, the container and the node use the same time zone.</p>
-<div class="notice" id="cce_01_0216__note25113211350"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0216__p75117233519">After time zone synchronization is enabled, disks of the hostPath type will be automatically added and listed in the <strong id="cce_01_0216__b104682456129">Data Storage</strong> &gt; <strong id="cce_01_0216__b84689455124">Local Volume</strong> area. Do not modify or delete the disks.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0216__row135110233512"><td class="cellrowborder" valign="top" width="23.07%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0216__p135111219354">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.92999999999999%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0216__p1651112143513">Description of the workload.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0216__li1251172153517"><span>Click <strong id="cce_01_0216__cce_01_0047_b15618173485619">Next: Add Container</strong>.</span><p><ol type="a" id="cce_01_0216__cce_01_0047_ol198822305597"><li id="cce_01_0216__cce_01_0047_li1294121810244">Click <strong id="cce_01_0216__cce_01_0047_b842352706164643">Add Container</strong> and select the image to be deployed.<ul id="cce_01_0216__cce_01_0047_ul43691476597"><li id="cce_01_0216__cce_01_0047_l2da4599a06574ef2b0ac10946059a8b3"><strong id="cce_01_0216__cce_01_0047_b15727110141014">My Images</strong>: Create a workload using an image in the image repository you created.</li><li id="cce_01_0216__cce_01_0047_li559823415327"><strong id="cce_01_0216__cce_01_0047_b842352706165735">Third-Party Images</strong>: Create a workload using an image from any third-party image repository. When you create a workload using a third-party image, ensure that the node where the workload is running can access public networks. For details on how to create a workload using a third-party image, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.<ul id="cce_01_0216__cce_01_0047_ul132968453466"><li id="cce_01_0216__cce_01_0047_li1293204318469">If your image repository does not require authentication, set <strong id="cce_01_0216__cce_01_0047_b17571823181115">Secret Authentication</strong> to <strong id="cce_01_0216__cce_01_0047_b05712310114">No</strong>, enter an image pull address, and then click <strong id="cce_01_0216__cce_01_0047_b6571423161120">OK</strong>.</li><li id="cce_01_0216__cce_01_0047_li670713173471">If your image repository must be authenticated (account and password), you need to create a secret and then use a third-party image. For details, see <a href="cce_01_0009.html">Using a Third-Party Image</a>.</li></ul>
-</li><li id="cce_01_0216__cce_01_0047_li762719255234"><strong id="cce_01_0216__cce_01_0047_b842352706165837">Shared Images</strong>: Create a workload using an image shared by another tenant through the SWR service.</li></ul>
-</li><li id="cce_01_0216__cce_01_0047_li72821454814">Configure basic image information.<p id="cce_01_0216__cce_01_0047_p3913954122219"><a name="cce_01_0216__cce_01_0047_li72821454814"></a><a name="cce_01_0047_li72821454814"></a>A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click <strong id="cce_01_0216__cce_01_0047_b37467815579">Add Container</strong> in the upper right corner to add multiple container images and set them separately.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0216__cce_01_0047_table128216444815" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Image parameters</caption><thead align="left"><tr id="cce_01_0216__cce_01_0047_row0282348486"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.2.3.2.1.2.2.2.3.1.1"><p id="cce_01_0216__cce_01_0047_p3282147483">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.2.3.2.1.2.2.2.3.1.2"><p id="cce_01_0216__cce_01_0047_p1828244144819">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0216__cce_01_0047_row1844916557597"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.1 "><p id="cce_01_0216__cce_01_0047_p182837474815">Image Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.2 "><p id="cce_01_0216__cce_01_0047_p3283134134820">Name of the image. You can click <strong id="cce_01_0216__cce_01_0047_b84235270617012">Change Image</strong> to update it.</p>
-</td>
-</tr>
-<tr id="cce_01_0216__cce_01_0047_row338117362515"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.1 "><p id="cce_01_0216__cce_01_0047_p1038143616517">*Image Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.2 "><p id="cce_01_0216__cce_01_0047_p1338110368519">Select the image tag to be deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0216__cce_01_0047_row32839494813"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.1 "><p id="cce_01_0216__cce_01_0047_p122831140486">*Container Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.2 "><p id="cce_01_0216__cce_01_0047_p528314415486">Name of the container. You can modify it.</p>
-</td>
-</tr>
-<tr id="cce_01_0216__cce_01_0047_row1449911299503"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.1 "><p id="cce_01_0216__cce_01_0047_p53374336504">Privileged Container</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.2 "><p id="cce_01_0216__cce_01_0047_p49887211526">Programs in a privileged container have certain privileges.</p>
-<p id="cce_01_0216__cce_01_0047_p65001729105011">If <strong id="cce_01_0216__cce_01_0047_b13252222105114">Privileged Container</strong> is <strong id="cce_01_0216__cce_01_0047_b11849182725112">On</strong>, the container is granted superuser permissions. For example, privileged containers can manipulate network devices on the host machine and modify kernel parameters.</p>
-</td>
-</tr>
-<tr id="cce_01_0216__cce_01_0047_row152831345485"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.1 "><p id="cce_01_0216__cce_01_0047_p875325925918">Container Resources</p>
-</td>
-<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.2.1.2.2.2.3.1.2 "><p id="cce_01_0216__cce_01_0047_p5379182494610"><strong id="cce_01_0216__cce_01_0047_b195545582515">CPU</strong></p>
-<ul id="cce_01_0216__cce_01_0047_ul67283495467"><li id="cce_01_0216__cce_01_0047_li9729124917467"><strong id="cce_01_0216__cce_01_0047_b837912315811">Request</strong>: minimum number of CPU cores required by a container. The default value is 0.25 cores.</li><li id="cce_01_0216__cce_01_0047_li07291449124616"><strong id="cce_01_0216__cce_01_0047_b1728781088">Limit</strong>: maximum number of CPU cores available for a container. Do not leave <strong id="cce_01_0216__cce_01_0047_b71778281894">Limit</strong> unspecified. Otherwise, intensive use of container resources will occur and your workload may exhibit unexpected behavior.</li></ul>
-<p id="cce_01_0216__cce_01_0047_p633394210502"><strong id="cce_01_0216__cce_01_0047_b149312464252">Memory</strong></p>
-<ul id="cce_01_0216__cce_01_0047_ul14326165915010"><li id="cce_01_0216__cce_01_0047_li15327155915017"><strong id="cce_01_0216__cce_01_0047_b2325104041116">Request</strong>: minimum amount of memory required by a container. The default value is 512 MiB.</li><li id="cce_01_0216__cce_01_0047_li0327259195017"><strong id="cce_01_0216__cce_01_0047_b4467144318115">Limit</strong>: maximum amount of memory available for a container. When memory usage exceeds the specified memory limit, the container will be terminated. </li></ul>
-<p id="cce_01_0216__cce_01_0047_p1825119142351">For more information about <strong id="cce_01_0216__cce_01_0047_b1672210449245">Request</strong> and <strong id="cce_01_0216__cce_01_0047_b5722194432420">Limit</strong>, see <a href="cce_01_0163.html">Setting Container Specifications</a>.</p>
-<p id="cce_01_0216__cce_01_0047_p38521896343"><strong id="cce_01_0216__cce_01_0047_b9658159125916">GPU</strong>: configurable only when the cluster contains GPU nodes.</p>
-<p id="cce_01_0216__cce_01_0047_p15403132914341">It indicates the percentage of GPU resources reserved for a container. Select <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol19942102410563"><b>Use</b></span> and set the percentage. For example, if this parameter is set to 10%, the container is allowed to use 10% of GPU resources. If you do not select <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol12950184715612"><b>Use</b></span> or set this parameter to <span class="parmvalue" id="cce_01_0216__cce_01_0047_parmvalue458724301413"><b>0</b></span>, no GPU resources can be used.</p>
-<p id="cce_01_0216__cce_01_0047_p9626154413340"><strong id="cce_01_0216__cce_01_0047_b20489865364">GPU/Graphics Card</strong>: The workload's pods will be scheduled to the node with the specified GPU.</p>
-<p id="cce_01_0216__cce_01_0047_p15765438173416">If <strong id="cce_01_0216__cce_01_0047_b376171219323">Any GPU type</strong> is selected, the container uses a random GPU in the node. If you select a specific GPU, the container uses this GPU accordingly.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0216__cce_01_0047_li32388111392"><strong id="cce_01_0216__cce_01_0047_b1811814372134">Lifecycle</strong>: Commands for starting and running containers can be set.<ul id="cce_01_0216__cce_01_0047_ul124564035015"><li id="cce_01_0216__cce_01_0047_li16519153875013"><strong id="cce_01_0216__cce_01_0047_b16554101991219">Start Command</strong>: executed when the workload is started. For details, see <a href="cce_01_0008.html">Setting Container Startup Commands</a>.</li><li id="cce_01_0216__cce_01_0047_li1782513550502"><strong id="cce_01_0216__cce_01_0047_b151136332127">Post-Start</strong>: executed after the workload runs successfully. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_01_0216__cce_01_0047_li864113426503"><strong id="cce_01_0216__cce_01_0047_b14841164721212">Pre-Stop</strong>: executed to delete logs or temporary files before the workload ends. For more information, see <a href="cce_01_0105.html">Setting Container Lifecycle Parameters</a>.</li></ul>
-</li><li id="cce_01_0216__cce_01_0047_li136942482097"><strong id="cce_01_0216__cce_01_0047_b62611842103018">Health Check</strong>: CCE provides two types of probes: liveness probe and readiness probe. They are used to determine whether containers and user services are running properly. For more information, see <a href="cce_01_0112.html">Setting Health Check for a Container</a>.<ul id="cce_01_0216__cce_01_0047_ul13466311391"><li id="cce_01_0216__cce_01_0047_li2466111392"><strong id="cce_01_0216__cce_01_0047_b56971206226">Liveness Probe</strong>: used to restart the unhealthy container.</li><li id="cce_01_0216__cce_01_0047_li94667111590"><strong id="cce_01_0216__cce_01_0047_b158039254221">Readiness Probe</strong>: used to change the container to the unready state when detecting that the container is unhealthy. In this way, service traffic will not be directed to the container.</li></ul>
-</li><li id="cce_01_0216__cce_01_0047_li557612420114"><strong id="cce_01_0216__cce_01_0047_b201393655011">Environment Variables</strong>: Environment variables can be added to a container. In general, environment variables are used to set parameters. <div class="p" id="cce_01_0216__cce_01_0047_p9697195651817">On the <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol168876396366"><b>Environment Variables</b></span> tab page, click <strong id="cce_01_0216__cce_01_0047_b125520434541">Add Environment Variable</strong>. Currently, three types of environment variables are supported:<ul id="cce_01_0216__cce_01_0047_ul13887039113610"><li id="cce_01_0216__cce_01_0047_li1788713397365"><strong id="cce_01_0216__cce_01_0047_b1323448596142039">Added manually</strong>: Set <strong id="cce_01_0216__cce_01_0047_b376903439142039">Variable Name</strong> and <strong id="cce_01_0216__cce_01_0047_b400931500142039">Variable Value/Reference</strong>.</li><li id="cce_01_0216__cce_01_0047_li388763963612"><strong id="cce_01_0216__cce_01_0047_b1396515598363">Added from Secret</strong>: Set <strong id="cce_01_0216__cce_01_0047_b12965059183612">Variable Name</strong> and select the desired secret name and data. A secret must be created in advance. For details, see <a href="cce_01_0153.html">Creating a Secret</a>.</li><li id="cce_01_0216__cce_01_0047_li288783963612"><strong id="cce_01_0216__cce_01_0047_b2096088672142111">Added from ConfigMap</strong>: Set <strong id="cce_01_0216__cce_01_0047_b634935011142111">Variable Name</strong> and select the desired ConfigMap name and data. A ConfigMap must be created in advance. For details, see <a href="cce_01_0152.html">Creating a ConfigMap</a>.<div class="note" id="cce_01_0216__cce_01_0047_note470614298582"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0216__cce_01_0047_p10707122910587">To edit an environment variable that has been set, click <strong id="cce_01_0216__cce_01_0047_b106004813540">Edit</strong>. To delete an environment variable that has been set, click <strong id="cce_01_0216__cce_01_0047_b19257143125510">Delete</strong>.</p>
-</div></div>
-</li></ul>
-</div>
-</li><li id="cce_01_0216__cce_01_0047_li13746141121120"><strong id="cce_01_0216__cce_01_0047_b1272132725719">Data Storage</strong>: Data storage can be mounted to containers for persistent storage and high disk I/O. Local volume and cloud storage are supported. For details, see <a href="cce_01_0042.html">Storage (CSI)</a>.<div class="note" id="cce_01_0216__cce_01_0047_note1893813337536"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0216__cce_01_0047_p18938173335315">Currently, cloud storage cannot be mounted to secure (Kata) containers in a CCE Turbo cluster.</p>
-</div></div>
-</li><li id="cce_01_0216__cce_01_0047_li7767162152511"><strong id="cce_01_0216__cce_01_0047_b669215095116">Security Context</strong>: Container permissions can be configured to protect CCE and other containers from being affected.<p id="cce_01_0216__cce_01_0047_p202021016182811">Enter the user ID to set container permissions and prevent systems and other containers from being affected.</p>
-</li><li id="cce_01_0216__cce_01_0047_li106381946131117"><strong id="cce_01_0216__cce_01_0047_b112571342517">Log Policies</strong>: Log collection policies and log directory can be configured to collect container logs for unified management and analysis. For details, see <a href="cce_01_0018.html">Container Logs</a>.</li></ol>
-</p></li><li id="cce_01_0216__li157401616183517"><span>Click <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol020714554817"><b>Next: Set Application Access</b></span>. Then, click <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol114612509227"><b>Add Service</b></span> and set the workload access type.</span><p><p id="cce_01_0216__cce_01_0047_p381464813257">If your workload will be reachable to other workloads or public networks, add a Service to define the workload access type.</p>
-<p id="cce_01_0216__cce_01_0047_p33897513516">The workload access type determines the network attributes of the workload. Workloads with different access types can provide different network capabilities. For details, see <a href="cce_01_0010.html">Overview</a>.</p>
-</p></li><li id="cce_01_0216__li107871513174315"><span>Click <span class="uicontrol" id="cce_01_0216__uicontrol12224125832518"><b>Next: Configure Advanced Settings</b></span> to configure advanced policies.</span><p><ul id="cce_01_0216__ul0183172014512"><li id="cce_01_0216__li41827202516"><strong id="cce_01_0216__b195211459195">Upgrade Policy</strong>:<ul id="cce_01_0216__ul31823209517"><li id="cce_01_0216__li36411114195913"><strong id="cce_01_0216__b54867111103">Upgrade Mode</strong>: Only <strong id="cce_01_0216__b1448613141017">Rolling upgrade</strong> is supported. During a rolling upgrade, old pods are gradually replaced with new ones. During the upgrade, service traffic is evenly distributed to both pods to ensure service continuity.</li><li id="cce_01_0216__li19548231333"><strong id="cce_01_0216__b1689518081113">Maximum Number of Unavailable Pods</strong>: Maximum number of unavailable pods allowed in a rolling upgrade. If the number is equal to the total number of pods, services may be interrupted. Minimum number of alive pods = Total pods – Maximum number of unavailable pods</li></ul>
-</li><li id="cce_01_0216__li65721230701"><strong id="cce_01_0216__b1687832015113">Graceful Deletion</strong>:<p id="cce_01_0216__p9570131716114"><strong id="cce_01_0216__b146164431114">Graceful Time Window</strong>: Enter the time. The graceful scale-in policy provides a time window for workload deletion and is reserved for executing commands in the PreStop phase in the lifecycle. If workload processes are not terminated after the time window elapses, the workload will be forcibly deleted.</p>
-</li><li id="cce_01_0216__li9182162015518"><strong id="cce_01_0216__b1912518567212">Scheduling Policies</strong>: You can combine static global scheduling policies or dynamic runtime scheduling policies as required. For details, see <a href="cce_01_0051.html">Scheduling Policy Overview</a>.</li><li id="cce_01_0216__li15127423125217"><strong id="cce_01_0216__cce_01_0047_b19540359588">Advanced Pod Settings</strong><ul id="cce_01_0216__cce_01_0047_ul15756125395212"><li id="cce_01_0216__cce_01_0047_li1671890191212"><strong id="cce_01_0216__cce_01_0047_b1716755611438">Pod Label</strong>: The built-in <strong id="cce_01_0216__cce_01_0047_b9426111018448">app</strong> label is specified when the workload is created. It is used to set affinity and anti-affinity scheduling and cannot be modified. You can click <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol72371624529"><b>Add Label</b></span> to add labels.</li></ul>
-<div class="fignone" id="cce_01_0216__cce_01_0047_fig2225829163110"><span class="figcap"><b>Figure 1 </b>Advanced pod settings</span><br><span><img id="cce_01_0216__cce_01_0047_image1468415371626" src="en-us_image_0220765374.png"></span></div>
-</li><li id="cce_01_0216__li1772285622218"><strong id="cce_01_0216__cce_01_0047_b4950827165">Client DNS Configuration</strong>: A CCE cluster has a built-in DNS add-on (CoreDNS) to provide domain name resolution for workloads in the cluster. <ul id="cce_01_0216__cce_01_0047_ul9218338244"><li id="cce_01_0216__cce_01_0047_li34801125185919"><strong id="cce_01_0216__cce_01_0047_b1659101314456">DNS Policy</strong><ul id="cce_01_0216__cce_01_0047_ul0696537519"><li id="cce_01_0216__cce_01_0047_li5171255504"><strong id="cce_01_0216__cce_01_0047_b457117417818">ClusterFirst</strong>: The default DNS configuration overrides the <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol108011491423"><b>Nameserver</b></span> and <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol578652429"><b>DNS Search Domain</b></span> configurations of the client.</li><li id="cce_01_0216__cce_01_0047_li576964211"><strong id="cce_01_0216__cce_01_0047_b72301146283">None</strong>: Only the <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol7940171812294"><b>Nameserver</b></span> and <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol2940518172915"><b>DNS Search Domain</b></span> configurations are used for domain name resolution.</li><li id="cce_01_0216__cce_01_0047_li1666416213"><strong id="cce_01_0216__cce_01_0047_b36987155115">Default</strong>: The pod inherits the DNS configuration from the node on which the pod runs.</li></ul>
-</li><li id="cce_01_0216__cce_01_0047_li1383931112318"><strong id="cce_01_0216__cce_01_0047_b72651219280">Nameserver</strong>: You can configure a domain name server for a user-defined domain name. The value is one or a group of DNS IP addresses, for example, 1.2.3.4.</li><li id="cce_01_0216__cce_01_0047_li1935891810248"><strong id="cce_01_0216__cce_01_0047_b6637135395713">DNS Search Domain</strong>: a search list for host-name lookup. When a domain name cannot be resolved, DNS queries will be attempted combining the domain name with each domain in the search list in turn until a match is found or all domains in the search list are tried.</li><li id="cce_01_0216__cce_01_0047_li12674742122314"><strong id="cce_01_0216__cce_01_0047_b542711357283">Timeout (s)</strong>: amount of time the resolver will wait for a response from a remote name server before retrying the query on a different name server. Set it based on the site requirements.</li><li id="cce_01_0216__cce_01_0047_li6194537241"><strong id="cce_01_0216__cce_01_0047_b151901444102814">ndots</strong>: threshold for the number of dots that must appear in a domain name before an initial absolute query will be made. If a domain name has <strong id="cce_01_0216__cce_01_0047_b1259384716207">ndots</strong> or more than <strong id="cce_01_0216__cce_01_0047_b1096710298202">ndots</strong> dots, the name is a fully qualified domain name (FQDN) and will be tried first as an absolute name. If a domain name has less than <strong id="cce_01_0216__cce_01_0047_b9376181617208">ndots</strong> dots, the operating system will look up the name in a list of search domain names.</li></ul>
-</li></ul>
-</p></li><li id="cce_01_0216__li16834537114320"><span>After the preceding configurations are complete, click <strong id="cce_01_0216__cce_01_0047_b10992115052917">Create</strong>. On the page displayed, click <strong id="cce_01_0216__cce_01_0047_b5116238183015">Return to Workload List</strong> to view the workload status.</span><p><p id="cce_01_0216__cce_01_0047_p43411647145216">If the workload is in the <span class="uicontrol" id="cce_01_0216__cce_01_0047_uicontrol3808193419321"><b>Running</b></span> state, it has been successfully created.</p>
-<p id="cce_01_0216__cce_01_0047_p1034114755215">Workload status is not updated in real time. Click <span><img id="cce_01_0216__cce_01_0047_image1279225783311" src="en-us_image_0183674977.png"></span> in the upper right corner or press <strong id="cce_01_0216__cce_01_0047_b1341347114214">F5</strong> to refresh the page.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0220.html b/docs/cce/umn/cce_01_0220.html
deleted file mode 100644
index 7c37b420..00000000
--- a/docs/cce/umn/cce_01_0220.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<a name="cce_01_0220"></a><a name="cce_01_0220"></a>
-
-<h1 class="topictitle1">Workload-Workload Affinity</h1>
-<div id="body1571646831342"><div class="section" id="cce_01_0220__section152331930174616"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_01_0220__ol177521016114611"><li id="cce_01_0220__li12752216134611"><span>When <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>, in the <strong id="cce_01_0220__b187617910277">Scheduling Policies</strong> area on the <strong id="cce_01_0220__b157628916273">Configure Advanced Settings</strong> page, choose <strong id="cce_01_0220__b1376217982717">Inter-Pod Affinity and Anti-affinity</strong> &gt; <strong id="cce_01_0220__b880015972714">Affinity with Pods</strong> &gt; <strong id="cce_01_0220__b12801149132714">Add</strong>.</span></li><li id="cce_01_0220__li1881616232215"><span>Select the workloads that will be co-located with the current workload on the same node, and click <strong id="cce_01_0220__b1469530984101515">OK</strong>.</span><p><p id="cce_01_0220__p031924627">The workload to be created will be deployed on the same node as the selected affinity workloads.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0220__section5140193643912"><a name="cce_01_0220__section5140193643912"></a><a name="section5140193643912"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0220__p4621326144517">This section uses Nginx as an example to describe how to create a workload using kubectl.</p>
-<p id="cce_01_0220__p1862510267452"><strong id="cce_01_0220__b1681505715299">Prerequisites</strong></p>
-<p id="cce_01_0220__p663062634515">The ECS where the kubectl client runs has been connected to your cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-<p id="cce_01_0220__p1663692620458"><strong id="cce_01_0220__b852010015308">Procedure</strong></p>
-<p id="cce_01_0220__p764182624519">When <a href="cce_01_0047.html#cce_01_0047__section155246177178">using kubectl to create a Deployment</a> or <a href="cce_01_0048.html#cce_01_0048__section113441881214">using kubectl to create a StatefulSet</a>, configure workload-workload affinity. The following is an example YAML file for workload-workload affinity.</p>
-<pre class="screen" id="cce_01_0220__screen10145113610394">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<strong style="color:#FF0000;" id="cce_01_0220__b1618813613916">      affinity:</strong>
-<strong id="cce_01_0220__b1419243683914"><span style="color:#FF0000;">        podAffinity:</span></strong>
-<strong id="cce_01_0220__b1819643617391"><span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span></strong>
-<strong id="cce_01_0220__b1200173693911"><span style="color:#FF0000;">            nodeSelectorTerms:</span></strong>
-<strong id="cce_01_0220__b19205173618392"><span style="color:#FF0000;">            - matchExpressions:</span></strong>
-<strong id="cce_01_0220__b4209153617393">              - key: app</strong><strong id="cce_01_0220__b40667429144433">          #workload's label key</strong>
-<strong id="cce_01_0220__b10219143618399"><span style="color:#FF0000;">                operator: In</span>        </strong>
-<strong id="cce_01_0220__b0228173623916"><span style="color:#FF0000;">                values:</span></strong>
-<strong id="cce_01_0220__b32474211144437">                - test     #workload's label value</strong></pre>
-</div>
-<div class="section" id="cce_01_0220__section5234830134613"><h4 class="sectiontitle">Setting the Object Type After Creating a Workload</h4><ol id="cce_01_0220__ol4820343717"><li id="cce_01_0220__li58201419713"><span>Log in to the CCE console and choose <strong id="cce_01_0220__b102241729102816">Workloads</strong> &gt; <strong id="cce_01_0220__b222542915283">Deployments</strong> or <strong id="cce_01_0220__b132253293287">Workloads</strong> &gt; <strong id="cce_01_0220__b1722518292284">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0220__li15820241978"><span>Click the name of the workload for which you will add a scheduling policy. On the workload details page, choose <strong id="cce_01_0220__b879819203211">Scheduling Policies</strong> &gt; <strong id="cce_01_0220__b879812173210">Add Simple Scheduling Policy</strong> &gt; <strong id="cce_01_0220__b1879882173218">Add Affinity Object</strong>.</span></li><li id="cce_01_0220__li8555828276"><span>Set <strong id="cce_01_0220__b976511816326">Object Type</strong> to <strong id="cce_01_0220__b1745302163213">Workload</strong> and select the workloads to be deployed on the same node as the created workload. The created workload and the selected workloads will be deployed on the same node.</span><p><div class="note" id="cce_01_0220__note4762323182111"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0220__p127621923192111">This method can be used to add, edit, or delete scheduling policies.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0230.html">Simple Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0222.html b/docs/cce/umn/cce_01_0222.html
deleted file mode 100644
index 37001a83..00000000
--- a/docs/cce/umn/cce_01_0222.html
+++ /dev/null
@@ -1,214 +0,0 @@
-<a name="cce_01_0222"></a><a name="cce_01_0222"></a>
-
-<h1 class="topictitle1">Managing a Node Pool</h1>
-<div id="body1570701009069"><div class="section" id="cce_01_0222__section2858332152410"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0222__p2827196112510">The default node pool DefaultPool does not support the following management operations.</p>
-</div>
-<div class="section" id="cce_01_0222__section34573421435"><h4 class="sectiontitle">Configuring Kubernetes Parameters</h4><p id="cce_01_0222__p143621952143410">CCE allows you to highly customize Kubernetes parameter settings on core components in a cluster. For more information, see <a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/" target="_blank" rel="noopener noreferrer">kubelet</a>.</p>
-<p id="cce_01_0222__p19591154615282">This function is supported only in clusters of <strong id="cce_01_0222__b114111442163">v1.15 and later</strong>. It is not displayed for clusters earlier than v1.15.</p>
-<ol id="cce_01_0222__ol14922951130"><li id="cce_01_0222__li4919551032"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0222__b244071515218">Resource Management</strong> &gt; <strong id="cce_01_0222__b84464159219">Node Pools</strong>.</span></li><li id="cce_01_0222__li20919145534"><span>In the upper right corner of the displayed page, select a cluster to filter node pools by cluster.</span></li><li id="cce_01_0222__li4919175839"><span>Click <strong id="cce_01_0222__b14325144615259">Configuration</strong> next to the node pool name.</span></li><li id="cce_01_0222__li20922452316"><span>On the <span class="uicontrol" id="cce_01_0222__uicontrol6836923125811"><b>Configuration</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0222__table39227516315" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Kubernetes parameters</caption><thead align="left"><tr id="cce_01_0222__row59201451536"><th align="left" class="cellrowborder" valign="top" width="14.38%" id="mcps1.3.2.4.4.2.1.2.6.1.1"><p id="cce_01_0222__p891914515311">Component</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="25.3%" id="mcps1.3.2.4.4.2.1.2.6.1.2"><p id="cce_01_0222__p199191758311">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.97%" id="mcps1.3.2.4.4.2.1.2.6.1.3"><p id="cce_01_0222__p09208511315">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.350000000000001%" id="mcps1.3.2.4.4.2.1.2.6.1.4"><p id="cce_01_0222__p69201514317">Default Value</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.2.4.4.2.1.2.6.1.5"><p id="cce_01_0222__p123651546173612">Remarks</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0222__row9920257311"><td class="cellrowborder" rowspan="5" valign="top" width="14.38%" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p5920125636">docker</p>
-<p id="cce_01_0222__p79804306119"></p>
-</td>
-<td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p1892075739">native-umask</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.97%" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p992018513320">`--exec-opt native.umask</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.350000000000001%" headers="mcps1.3.2.4.4.2.1.2.6.1.4 "><p id="cce_01_0222__p1992013519316">normal</p>
-</td>
-<td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.2.4.4.2.1.2.6.1.5 "><p id="cce_01_0222__p13651469361">Cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row956912270015"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p3920457318">docker-base-size</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p692015438">`--storage-opts dm.basesize</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p1492045331">10G</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.4 "><p id="cce_01_0222__p15365154611361">Cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row20161957308"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p7163572009">insecure-registry</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p1161957203">Address of an insecure image registry</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p181615578012">false</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.4 "><p id="cce_01_0222__p11165572001">Cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row99202051336"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p1777819331709">limitcore</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p777723311018">Limit on the number of cores</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p157771331704">5368709120</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.4 "><p id="cce_01_0222__p197477331804">-</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row29796302118"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p37987121802">default-ulimit-nofile</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p11798101218015">Limit on the number of handles in a container</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p9798141216012">{soft}:{hard}</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.4 "><p id="cce_01_0222__p1516161685618">-</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row179201258310"><td class="cellrowborder" rowspan="2" valign="top" width="14.38%" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p7920851036">kube-proxy</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p149201555311">conntrack-min</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.97%" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p1920951312">sysctl -w net.nf_conntrack_max</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.350000000000001%" headers="mcps1.3.2.4.4.2.1.2.6.1.4 "><p id="cce_01_0222__p139204513313">131072</p>
-</td>
-<td class="cellrowborder" rowspan="2" valign="top" width="15%" headers="mcps1.3.2.4.4.2.1.2.6.1.5 "><p id="cce_01_0222__p1736544616369">The values can be modified during the node pool lifecycle.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row8921258311"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p1292135033">conntrack-tcp-timeout-close-wait</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p199211851134">sysctl -w net.netfilter.nf_conntrack_tcp_timeout_close_wait</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p179211510311">1h0m0s</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row11921251238"><td class="cellrowborder" rowspan="7" valign="top" width="14.38%" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p14921351833">kubelet</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.3%" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p20921756312">cpu-manager-policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.97%" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p17921952039">`--cpu-manager-policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.350000000000001%" headers="mcps1.3.2.4.4.2.1.2.6.1.4 "><p id="cce_01_0222__p992175733">none</p>
-</td>
-<td class="cellrowborder" rowspan="7" valign="top" width="15%" headers="mcps1.3.2.4.4.2.1.2.6.1.5 "><p id="cce_01_0222__p3365646173618">The values can be modified during the node pool lifecycle.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row192120517312"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p1292113519312">kube-api-qps</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p1392155933">Query per second (QPS) to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p192125435">100</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row189211251930"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p179211857313">kube-api-burst</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p14921205536">Burst to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p17921951232">100</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row1992115514319"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p199211558318">max-pods</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p139211750310">Maximum number of pods managed by kubelet.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p792112514314">110</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row1423519271022"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p1424218271326">pod-pids-limit</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p72425271023">PID limit in Kubernetes</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p2024282719213">-1</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row139221751031"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p39211451232">with-local-dns</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p11922155317">Whether to use the local IP address as the ClusterDNS of the node.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p159222510310">false</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row119221051531"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.1 "><p id="cce_01_0222__p392225737">allowed-unsafe-sysctls</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.2 "><p id="cce_01_0222__p292218515312">Insecure system configuration allowed.</p>
-<p id="cce_01_0222__p1255654524218">Starting from <strong id="cce_01_0222__b364452812182">v1.17.17</strong>, CCE enables pod security policies for kube-apiserver. You need to add corresponding configurations to <strong id="cce_01_0222__b1486018719195">allowedUnsafeSysctls</strong> of a pod security policy to make the policy take effect. (This configuration is not required for clusters earlier than v1.17.17.) For details, see <a href="cce_01_0275.html#cce_01_0275__section155111941177">Example of Enabling Unsafe Sysctls in Pod Security Policy</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.6.1.3 "><p id="cce_01_0222__p79221551538">[]</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0222__li1092210513312"><span>Click <strong id="cce_01_0222__b39759371215">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0222__section359343125016"><h4 class="sectiontitle">Editing a Node Pool</h4><ol id="cce_01_0222__ol87116345495"><li id="cce_01_0222__li9170147686"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0222__b1284715170215">Resource Management</strong> &gt; <strong id="cce_01_0222__b7847817722">Node Pools</strong>.</span></li><li id="cce_01_0222__li1154916375497"><span>In the upper right corner of the displayed page, select a cluster to filter node pools by cluster.</span></li><li id="cce_01_0222__li128412475118"><span>Click <strong id="cce_01_0222__b157451843191518">Edit</strong> next to the name of the node pool you will edit. In the <strong id="cce_01_0222__b15577259141511">Edit Node Pool</strong> dialog box, edit the following parameters:</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0222__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Node pool parameters</caption><thead align="left"><tr id="cce_01_0222__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_01_0222__p43211725338">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_01_0222__p0322102516320">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0222__row163229255313"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0222__p1232219251339">Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0222__p129475498531">Name of the node pool.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row6334727910"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0222__p233592498">Nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0222__p149431649155313">Modify the number of nodes based on service requirements.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row111551253912"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0222__p51551451293">Autoscaler</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0222__p20736112217461">By default, autoscaler is disabled.</p>
-<p id="cce_01_0222__p9680175204915">After you enable autoscaler by clicking <span><img id="cce_01_0222__image16680652104914" src="en-us_image_0214003838.png"></span>, nodes in the node pool are automatically created or deleted based on service requirements.</p>
-<ul id="cce_01_0222__ul15733045165119"><li id="cce_01_0222__li773311459517"><strong id="cce_01_0222__b98562832611">Maximum Nodes</strong> and <strong id="cce_01_0222__b4541113102617">Minimum Nodes</strong>: You can set the maximum and minimum number of nodes to ensure that the number of nodes to be scaled is within a proper range.</li><li id="cce_01_0222__li92261150145112"><strong id="cce_01_0222__b731522510111">Priority</strong>: A larger value indicates a higher priority. For example, if this parameter is set to <strong id="cce_01_0222__b1132032551117">1</strong> and <strong id="cce_01_0222__b19321925191115">4</strong> respectively for node pools A and B, B has a higher priority than A, and auto scaling is first triggered for B. If the priorities of multiple node pools are set to the same value, for example, <strong id="cce_01_0222__b10866161371217">2</strong>, the node pools are not prioritized and the system performs scaling based on the minimum resource waste principle.</li></ul>
-<p id="cce_01_0222__p15393133683015">If the <strong id="cce_01_0222__b18191718101819">Autoscaler</strong> field is set to on, install the <a href="cce_01_0154.html">autoscaler add-on</a> to use the autoscaler feature.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row1535723154615"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0222__p1834102910536">Taints</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><ul id="cce_01_0222__ul1414103745816"><li id="cce_01_0222__li552312812152">This field is left blank by default. Taints allow nodes to repel a set of pods. You can add a maximum of 10 taints for each node pool. Each taint contains the following parameters:<ul id="cce_01_0222__ul17274222121015"><li id="cce_01_0222__li227482216106"><strong id="cce_01_0222__b138225358187">Key</strong>: A key must contain 1 to 63 characters starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_01_0222__li7274112241020"><strong id="cce_01_0222__b172009380180">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_01_0222__li2274182211010"><strong id="cce_01_0222__b20244184015182">Effect</strong>: Available options are <strong id="cce_01_0222__b19246154041816">NoSchedule</strong>, <strong id="cce_01_0222__b824764019183">PreferNoSchedule</strong>, and <strong id="cce_01_0222__b624994001818">NoExecute</strong>.</li></ul>
-<div class="notice" id="cce_01_0222__note77443231113"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0222__p67324398583">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-up may fail or pods cannot be scheduled onto the added nodes.</p>
-</div></div>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0222__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0222__p13807203616539">K8S Labels</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0222__p425074311536">K8S labels are key/value pairs that are attached to objects, such as pods. Labels are used to specify identifying attributes of objects that are meaningful and relevant to users, but do not directly imply semantics to the core system. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0222__row85016262545"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0222__p18501122645419">Resource Tags</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0222__p850172695417">It is recommended that you use TMS's <strong id="cce_01_0222__b16383513914">predefined tag</strong> function to add the same tag to different cloud resources.</p>
-<p id="cce_01_0222__p455143018312">Predefined tags are visible to all service resources that support the tagging function. You can use predefined tags to improve tag creation and migration efficiency. </p>
-<p id="cce_01_0222__p1657615015116">Tag changes do not affect the node.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0222__li12598104717491"><span>After the configuration is complete, click <strong id="cce_01_0222__b6784204241917">Save</strong>.</span><p><p id="cce_01_0222__p17311940154315">In the node pool list, the node pool status becomes <strong id="cce_01_0222__b16788571549">Scaling</strong>. After the status changes to <strong id="cce_01_0222__b124741019555">Completed</strong>, the node pool parameters are modified successfully. The modified configuration will be synchronized to all nodes in the node pool.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0222__section135941731115017"><h4 class="sectiontitle">Deleting a Node Pool</h4><p id="cce_01_0222__p63181335329">Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools. If pods in the node pool have a specific node selector and none of the other nodes in the cluster satisfies the node selector, the pods will become unschedulable.</p>
-<ol id="cce_01_0222__ol19318113515214"><li id="cce_01_0222__li753561416815"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0222__b619920261121">Resource Management</strong> &gt; <strong id="cce_01_0222__b71992261725">Node Pools</strong>.</span></li><li id="cce_01_0222__li7571759102510"><span>In the upper right corner of the displayed page, select a cluster to filter node pools by cluster.</span></li><li id="cce_01_0222__li1896716618513"><span>Choose <span class="uicontrol" id="cce_01_0222__uicontrol596810675118"><b>More &gt; Delete</b></span> next to a node pool name to delete the node pool.</span></li><li id="cce_01_0222__li883285012530"><span>Read the precautions in the <span class="uicontrol" id="cce_01_0222__uicontrol783245095319"><b>Delete Node Pool</b></span> dialog box.</span></li><li id="cce_01_0222__li131704612145"><span>Enter <strong id="cce_01_0222__b4770103981814">DELETE</strong> in the text box and click <span class="uicontrol" id="cce_01_0222__uicontrol3404931191915"><b>Yes</b></span> to confirm that you want to continue the deletion.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0222__section550619571556"><h4 class="sectiontitle">Copying a Node Pool</h4><p id="cce_01_0222__p050645718552">You can copy the configuration of an existing node pool to create a new node pool on the CCE console.</p>
-<ol id="cce_01_0222__ol12506185710555"><li id="cce_01_0222__li1350612571551"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0222__b10544330029">Resource Management</strong> &gt; <strong id="cce_01_0222__b65441230324">Node Pools</strong>.</span></li><li id="cce_01_0222__li1550685713555"><span>In the upper right corner of the displayed page, select a cluster to filter node pools by cluster.</span></li><li id="cce_01_0222__li55061457115511"><span>Choose <span class="uicontrol" id="cce_01_0222__uicontrol09861940292"><b>More &gt; Copy</b></span> next to a node pool name to copy the node pool.</span></li><li id="cce_01_0222__li0507185735518"><span>The configuration of the selected node pool is replicated to the <span class="uicontrol" id="cce_01_0222__uicontrol65071757115516"><b>Create Node Pool</b></span> page. You can edit the configuration as required and click <span class="uicontrol" id="cce_01_0222__uicontrol1372065613013"><b>Next: Confirm</b></span>.</span></li><li id="cce_01_0222__li19507165717559"><span>On the <span class="uicontrol" id="cce_01_0222__uicontrol7711117827"><b>Confirm</b></span> page, confirm the node pool configuration and click <span class="uicontrol" id="cce_01_0222__uicontrol39451211116"><b>Create Now</b></span>. Then, a new node pool is created based on the edited configuration.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0222__section8215206283"><h4 class="sectiontitle">Migrating a Node</h4><p id="cce_01_0222__p773035719282">Nodes in a node pool can be migrated. Currently, nodes in a node pool can be migrated only to the default node pool (defaultpool) in the same cluster.</p>
-<ol id="cce_01_0222__ol5730185713281"><li id="cce_01_0222__li1673005710288"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0222__b1715114331829">Resource Management</strong> &gt; <strong id="cce_01_0222__b101511433727">Node Pools</strong>.</span></li><li id="cce_01_0222__li15730185712812"><span>In the upper right corner of the displayed page, select a cluster to filter node pools by cluster.</span></li><li id="cce_01_0222__li7730165772816"><span>Click <span class="uicontrol" id="cce_01_0222__uicontrol731162433718"><b>More</b></span> &gt; <span class="uicontrol" id="cce_01_0222__uicontrol1665972983712"><b>Migrate</b></span> next to the name of the node pool.</span></li><li id="cce_01_0222__li187591229173716"><span>In the dialog box displayed, select the destination node pool and the node to be migrated.</span><p><div class="note" id="cce_01_0222__note182620211405"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0222__p19251111615611">After node migration, original resource tags, Kubernetes labels, and taints will be retained, and new Kubernetes labels and taints from the destination node pool will be added. </p>
-</div></div>
-</p></li><li id="cce_01_0222__li1830711542398"><span>Click <span class="uicontrol" id="cce_01_0222__uicontrol17962043134016"><b>OK</b></span>.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0035.html">Node Pools</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0225.html b/docs/cce/umn/cce_01_0225.html
deleted file mode 100644
index b1ba45e5..00000000
--- a/docs/cce/umn/cce_01_0225.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<a name="cce_01_0225"></a><a name="cce_01_0225"></a>
-
-<h1 class="topictitle1">Workload-Node Affinity</h1>
-<div id="body1571646831342"><div class="section" id="cce_01_0225__section186032460457"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_01_0225__ol162431114145019"><li id="cce_01_0225__li2243614205014"><span>When <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>, in the <strong id="cce_01_0225__b1415466115014">Scheduling Policies</strong> area on the <strong id="cce_01_0225__b1315516611504">Configure Advanced Settings</strong> page, choose <strong id="cce_01_0225__b1715514635020">Workload-Node Affinity and Anti-affinity</strong> &gt; <strong id="cce_01_0225__b1115516612502">Affinity with Nodes</strong> &gt; <strong id="cce_01_0225__b1815646175012">Add</strong>.</span></li><li id="cce_01_0225__li644112844010"><span>Select the node on which you want to deploy the workload, and click <strong id="cce_01_0225__b478310287103">OK</strong>.</span><p><p id="cce_01_0225__p1189713533816">If you select multiple nodes, the system automatically chooses one of them during workload deployment.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0225__section711574271117"><a name="cce_01_0225__section711574271117"></a><a name="section711574271117"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0225__p13147194016468">This section uses an Nginx workload as an example to describe how to create a workload using kubectl.</p>
-<p id="cce_01_0225__p43851327575"><strong id="cce_01_0225__b558114045312">Prerequisites</strong></p>
-<p id="cce_01_0225__p119596591264">The ECS where the kubectl client runs has been connected to your cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-<p id="cce_01_0225__p1735215441272"><strong id="cce_01_0225__b19451714165310">Procedure</strong></p>
-<p id="cce_01_0225__p7763145810338">When <a href="cce_01_0047.html#cce_01_0047__section155246177178">using kubectl to create a Deployment</a> or <a href="cce_01_0048.html#cce_01_0048__section113441881214">using kubectl to create a StatefulSet</a>, configure workload-node affinity. The following is an example YAML file for workload-node affinity.</p>
-<pre class="screen" id="cce_01_0225__screen1657145619119">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<strong style="color:#FF0000;" id="cce_01_0225__b104428162213">      affinity:</strong>
-<strong id="cce_01_0225__b45310832214"><span style="color:#FF0000;">        nodeAffinity:</span></strong>
-<strong id="cce_01_0225__b1154148142210"><span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span></strong>
-<strong id="cce_01_0225__b155519816227"><span style="color:#FF0000;">            nodeSelectorTerms:</span></strong>
-<strong id="cce_01_0225__b1055386221"><span style="color:#FF0000;">            - matchExpressions:</span></strong>
-<strong id="cce_01_0225__b2567815224">              - key: nodeName</strong><strong id="cce_01_0225__b67691043182616">          <strong id="cce_01_0225__b6303171012438">#node's label key</strong></strong>
-<strong style="color:#FF0000;" id="cce_01_0225__b14581585221">                operator: In</strong>
-<strong style="color:#FF0000;" id="cce_01_0225__b1459108172212">                values:</strong>
-<strong id="cce_01_0225__b43555347105131">                - test-node-1</strong><strong id="cce_01_0225__b47368965105131">          <strong id="cce_01_0225__b5451325105131">#<strong id="cce_01_0225__b14773267105131">node's label value</strong></strong></strong></pre>
-</div>
-<div class="section" id="cce_01_0225__section15605646144516"><h4 class="sectiontitle">Setting the Object Type After Creating a Workload</h4><ol id="cce_01_0225__ol04301255221"><li id="cce_01_0225__li194301055622"><span>Log in to the CCE console and choose <strong id="cce_01_0225__b7778141512617">Workloads</strong> &gt; <strong id="cce_01_0225__b15784215202619">Deployments</strong> or <strong id="cce_01_0225__b19784191552616">Workloads</strong> &gt; <strong id="cce_01_0225__b37844159263">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0225__li8430955629"><span>Click the name of the workload for which you will add a scheduling policy. On the workload details page, choose <strong id="cce_01_0225__b24321752151311">Scheduling Policies</strong> &gt; <strong id="cce_01_0225__b134331252171317">Add Simple Scheduling Policy</strong> &gt; <strong id="cce_01_0225__b164332052161316">Add Affinity Object</strong>.</span></li><li id="cce_01_0225__li543016551210"><span>Set <strong id="cce_01_0225__b67591820121417">Object Type</strong> to <strong id="cce_01_0225__b19751123141418">Node</strong> and select the node where the workload is to be deployed. The workload will be deployed on the selected node.</span><p><div class="note" id="cce_01_0225__note15774195374914"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0225__p6774953184913">This method can be used to add, edit, or delete scheduling policies.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0230.html">Simple Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0226.html b/docs/cce/umn/cce_01_0226.html
deleted file mode 100644
index ec597e04..00000000
--- a/docs/cce/umn/cce_01_0226.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<a name="cce_01_0226"></a><a name="cce_01_0226"></a>
-
-<h1 class="topictitle1">Workload-Node Anti-Affinity</h1>
-<div id="body1571646831342"><div class="section" id="cce_01_0226__section122391413184616"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_01_0226__ol15136936103916"><li id="cce_01_0226__li61361736123911"><span>When <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>, in the <strong id="cce_01_0226__b61680496166">Scheduling Policies</strong> area on the <strong id="cce_01_0226__b1169194910167">Configure Advanced Settings</strong> page, choose <strong id="cce_01_0226__b1169144918169">Workload-Node Affinity and Anti-affinity</strong> &gt; <strong id="cce_01_0226__b816954961619">Anti-affinity with Nodes</strong> &gt; <strong id="cce_01_0226__b71701049151610">Add</strong>.</span></li><li id="cce_01_0226__li538653524219"><span>Select the node on which the workload is ineligible to be deployed, and click <strong id="cce_01_0226__b3186110191713">OK</strong>.</span><p><p id="cce_01_0226__p14391173517423">If you select multiple nodes, the workload will not be deployed on these nodes.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0226__section1361482522712"><a name="cce_01_0226__section1361482522712"></a><a name="section1361482522712"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0226__p163641018452">This section uses Nginx as an example to describe how to create a workload using kubectl.</p>
-<p id="cce_01_0226__p9638121084520"><strong id="cce_01_0226__b166170468206">Prerequisites</strong></p>
-<p id="cce_01_0226__p11643121004514">The ECS where the kubectl client runs has been connected to your cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-<p id="cce_01_0226__p116475106454"><strong id="cce_01_0226__b1710045114207">Procedure</strong></p>
-<p id="cce_01_0226__p19652310194510">When <a href="cce_01_0047.html#cce_01_0047__section155246177178">using kubectl to create a Deployment</a> or <a href="cce_01_0048.html#cce_01_0048__section113441881214">using kubectl to create a StatefulSet</a>, configure workload-node affinity. The following is an example YAML file for workload-node anti-affinity.</p>
-<pre class="screen" id="cce_01_0226__screen10617122512279">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<strong style="color:#FF0000;" id="cce_01_0226__b265992516275">      affinity:</strong>
-<strong id="cce_01_0226__b16660112562713"><span style="color:#FF0000;">        nodeAffinity:</span></strong>
-<strong id="cce_01_0226__b1466411257278"><span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span></strong>
-<strong id="cce_01_0226__b166762519271"><span style="color:#FF0000;">            nodeSelectorTerms:</span></strong>
-<strong id="cce_01_0226__b967352532715"><span style="color:#FF0000;">            - matchExpressions:</span></strong>
-<strong id="cce_01_0226__b161871548222">              - key: nodeName</strong><strong id="cce_01_0226__b17188204192211">          <strong id="cce_01_0226__b21882442215">#node's label key</strong></strong>
-<strong id="cce_01_0226__b47780666105046">                operator: NotIn</strong>        <strong id="cce_01_0226__b48016308105046">#</strong><strong id="cce_01_0226__b15696688105046">Indicates that the workload will not be deployed on the node.</strong>
-<strong style="color:#FF0000;" id="cce_01_0226__b26868251271">                values:</strong>
-<strong id="cce_01_0226__b182643714222">                - test-node-1</strong><strong id="cce_01_0226__b126617122211">          <strong id="cce_01_0226__b1426516762216">#<strong id="cce_01_0226__b62653717228">node's label value</strong></strong></strong></pre>
-</div>
-<div class="section" id="cce_01_0226__section02391513134618"><h4 class="sectiontitle">Setting the Object Type After Creating a Workload</h4><ol id="cce_01_0226__ol181584215620"><li id="cce_01_0226__li9158221262"><span>Log in to the CCE console and choose <strong id="cce_01_0226__b142511735288">Workloads</strong> &gt; <strong id="cce_01_0226__b92576313282">Deployments</strong> or <strong id="cce_01_0226__b12581315287">Workloads</strong> &gt; <strong id="cce_01_0226__b62591738289">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0226__li121581821562"><span>Click the name of the workload for which you will add a scheduling policy. On the workload details page, choose <strong id="cce_01_0226__b8659111402314">Scheduling Policies</strong> &gt; <strong id="cce_01_0226__b866010144230">Add Simple Scheduling Policy</strong> &gt; <strong id="cce_01_0226__b166607148231">Add Anti-affinity Object</strong>.</span></li><li id="cce_01_0226__li9476161819619"><span>Set <strong id="cce_01_0226__b1550610274235">Object Type</strong> to <strong id="cce_01_0226__b150782713237">Node</strong> and select the node on which the workload is ineligible to be deployed. The workload will be constrained from being deployed on the selected node.</span><p><div class="note" id="cce_01_0226__note10817643195319"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0226__p881711437539">This method can be used to add, edit, or delete scheduling policies.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0230.html">Simple Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0227.html b/docs/cce/umn/cce_01_0227.html
deleted file mode 100644
index 47e3e3ef..00000000
--- a/docs/cce/umn/cce_01_0227.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<a name="cce_01_0227"></a><a name="cce_01_0227"></a>
-
-<h1 class="topictitle1">Workload-Workload Anti-Affinity</h1>
-<div id="body1571647183887"><div class="section" id="cce_01_0227__section189731748476"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_01_0227__ol205653571226"><li id="cce_01_0227__li1456717570212"><span>When <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>, in the <strong id="cce_01_0227__b15799105663419">Scheduling Policies</strong> area on the <strong id="cce_01_0227__b17800125643410">Configure Advanced Settings</strong> page, choose <strong id="cce_01_0227__b980015614344">Inter-Pod Affinity and Anti-affinity</strong> &gt; <strong id="cce_01_0227__b680055618343">Anti-affinity with Pods</strong> &gt; <strong id="cce_01_0227__b15801195614347">Add</strong>.</span></li><li id="cce_01_0227__li75792571729"><span>Select the workloads to which you want to deploy the target workload on a different node, and click <strong id="cce_01_0227__b725417341288">OK</strong>.</span><p><p id="cce_01_0227__p358245713212">The workload to be created and the selected workloads will be deployed on different nodes.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0227__section1894310152317"><a name="cce_01_0227__section1894310152317"></a><a name="section1894310152317"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0227__p15931841104512">This section uses Nginx as an example to describe how to create a workload using kubectl.</p>
-<p id="cce_01_0227__p10971415455"><strong id="cce_01_0227__b25241648133620">Prerequisites</strong></p>
-<p id="cce_01_0227__p610474117451">The ECS where the kubectl client runs has been connected to your cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-<p id="cce_01_0227__p1511094124511"><strong id="cce_01_0227__b1245613563368">Procedure</strong></p>
-<p id="cce_01_0227__p1311664116454">When <a href="cce_01_0047.html#cce_01_0047__section155246177178">using kubectl to create a Deployment</a> or <a href="cce_01_0048.html#cce_01_0048__section113441881214">using kubectl to create a StatefulSet</a>, configure workload-workload anti-affinity. The following is an example YAML file for workload-workload anti-affinity.</p>
-<pre class="screen" id="cce_01_0227__screen694610156319">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<strong style="color:#FF0000;" id="cce_01_0227__b6988515193117">      affinity:</strong>
-<strong id="cce_01_0227__b19992151518317"><span style="color:#FF0000;">        podAffinity:</span></strong>
-<strong id="cce_01_0227__b11996015143112"><span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span></strong>
-<strong id="cce_01_0227__b20061663114"><span style="color:#FF0000;">            nodeSelectorTerms:</span></strong>
-<strong id="cce_01_0227__b13618165312"><span style="color:#FF0000;">            - matchExpressions:</span></strong>
-<strong id="cce_01_0227__b498219172388">              - key: app</strong><strong id="cce_01_0227__b39836178383">          #workload's label key</strong>
-<strong id="cce_01_0227__b542811146398"><span style="color:#FF0000;">                operator: NotIn</span>        </strong>
-<strong id="cce_01_0227__b7430214113918"><span style="color:#FF0000;">                values:</span></strong>
-<strong id="cce_01_0227__b1117802411387">                - test     #workload's label value</strong></pre>
-</div>
-<div class="section" id="cce_01_0227__section097418414472"><h4 class="sectiontitle">Setting the Object Type After Creating a Workload</h4><ol id="cce_01_0227__ol35710140819"><li id="cce_01_0227__li1857110148811"><span>Log in to the CCE console and choose <strong id="cce_01_0227__b79845217287">Workloads</strong> &gt; <strong id="cce_01_0227__b59835214281">Deployments</strong> or <strong id="cce_01_0227__b1599125222815">Workloads</strong> &gt; <strong id="cce_01_0227__b129985212815">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0227__li1857131411814"><span>Click the name of the workload for which you will add a scheduling policy. On the workload details page, choose <strong id="cce_01_0227__b131129339389">Scheduling Policies</strong> &gt; <strong id="cce_01_0227__b15113033153815">Add Simple Scheduling Policy</strong> &gt; <strong id="cce_01_0227__b4113133193812">Add Anti-affinity Object</strong>.</span></li><li id="cce_01_0227__li196561058175011"><span>Set <strong id="cce_01_0227__b7527184113388">Object Type</strong> to <strong id="cce_01_0227__b75291341173818">Workload</strong> and select the workloads to be deployed on a different node from the created workload. The created workload and the selected workloads will be deployed on different nodes.</span><p><div class="note" id="cce_01_0227__note3892141962411"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0227__p17892219152418">This method can be used to add, edit, or delete scheduling policies.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0230.html">Simple Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0228.html b/docs/cce/umn/cce_01_0228.html
deleted file mode 100644
index 4a855538..00000000
--- a/docs/cce/umn/cce_01_0228.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<a name="cce_01_0228"></a><a name="cce_01_0228"></a>
-
-<h1 class="topictitle1">Workload-AZ Affinity</h1>
-<div id="body1571647183887"><div class="section" id="cce_01_0228__section1243114616439"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_01_0228__ol104501341553"><li id="cce_01_0228__li16168340610"><span>When <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>, in the <strong id="cce_01_0228__b16967135514511">Scheduling Policies</strong> area on the <strong id="cce_01_0228__b5968115513519">Configure Advanced Settings</strong> page, click <span><img id="cce_01_0228__image1856413111087" src="en-us_image_0198873490.png"></span> next to <strong id="cce_01_0228__b296855518513">Workload-AZ Affinity and Anti-affinity</strong> &gt; <strong id="cce_01_0228__b209691255753">Affinity with AZs</strong>.</span></li><li id="cce_01_0228__li34659341259"><span>Select the AZ in which you want to deploy the workload.</span><p><p id="cce_01_0228__p9470183417517">The created workload will be deployed in the selected AZ.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0228__section4201420133117"><a name="cce_01_0228__section4201420133117"></a><a name="section4201420133117"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0228__p798410526454">This section uses an Nginx workload as an example to describe how to create a workload using kubectl.</p>
-<p id="cce_01_0228__p16985105217452"><strong id="cce_01_0228__b193857271172">Prerequisites</strong></p>
-<p id="cce_01_0228__p179919526454">The ECS where the kubectl client runs has been connected to your cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-<p id="cce_01_0228__p3994105220459"><strong id="cce_01_0228__b912418525268">Procedure</strong></p>
-<p id="cce_01_0228__p1426536450">When <a href="cce_01_0047.html#cce_01_0047__section155246177178">using kubectl to create a Deployment</a> or <a href="cce_01_0048.html#cce_01_0048__section113441881214">using kubectl to create a StatefulSet</a>, configure workload-AZ affinity. The following is an example YAML file for workload-AZ affinity.</p>
-<pre class="screen" id="cce_01_0228__screen32514206314">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: az-in-deployment
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: az-in-deployment
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: az-in-deployment
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<strong style="color:#FF0000;" id="cce_01_0228__b1664162012318">      affinity:</strong>
-<strong id="cce_01_0228__b10670201312"><span style="color:#FF0000;">        nodeAffinity:</span></strong>
-<strong id="cce_01_0228__b5741220183112"><span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span></strong>
-<strong id="cce_01_0228__b978112013116"><span style="color:#FF0000;">            nodeSelectorTerms:</span></strong>
-<strong id="cce_01_0228__b188313206313"><span style="color:#FF0000;">            - matchExpressions:</span></strong>
-<strong id="cce_01_0228__b158892012317">              - key: failure-domain.beta.kubernetes.io/zone</strong><strong id="cce_01_0228__b1992120183111"> </strong><strong id="cce_01_0228__b109541153193916">#node's label key</strong>
-<strong style="color:#FF0000;" id="cce_01_0228__b159642063113">                operator: In</strong>        
-<strong style="color:#FF0000;" id="cce_01_0228__b19103182018314">                values:</strong>
-<strong id="cce_01_0228__b15108120193112">                - az1</strong><strong id="cce_01_0228__b211052053110">          </strong>                    <strong id="cce_01_0228__b12234345420">#node's key</strong> <strong id="cce_01_0228__b1285815227428">value</strong></pre>
-</div>
-<div class="section" id="cce_01_0228__section19244104614316"><h4 class="sectiontitle">Setting the Object Type After Creating a Workload</h4><ol id="cce_01_0228__ol19840181519198"><li id="cce_01_0228__li128419153199"><span>Log in to the CCE console and choose <strong id="cce_01_0228__b1592151692516">Workloads</strong> &gt; <strong id="cce_01_0228__b179213161259">Deployments</strong> or <strong id="cce_01_0228__b4922111618250">Workloads</strong> &gt; <strong id="cce_01_0228__b1922116182515">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0228__li201891619141917"><span>Click the name of the workload for which you will add a scheduling policy. On the workload details page, choose <strong id="cce_01_0228__b9346634151816">Scheduling Policies</strong> &gt; <strong id="cce_01_0228__b152331011192">Add Simple Scheduling Policy</strong> &gt; <strong id="cce_01_0228__b448401110191">Add Affinity Object</strong>.</span></li><li id="cce_01_0228__li05352590215"><span>Set <strong id="cce_01_0228__b7451138131920">Object Type</strong> to <strong id="cce_01_0228__b1687784317195">Availability Zone</strong>, and select the AZ in which the workload is eligible to be deployed. The workload will be deployed in the selected AZ.</span><p><div class="note" id="cce_01_0228__note1770348105417"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0228__p177041686546">This method can be used to add, edit, or delete scheduling policies.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0230.html">Simple Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0229.html b/docs/cce/umn/cce_01_0229.html
deleted file mode 100644
index 139c19d9..00000000
--- a/docs/cce/umn/cce_01_0229.html
+++ /dev/null
@@ -1,54 +0,0 @@
-<a name="cce_01_0229"></a><a name="cce_01_0229"></a>
-
-<h1 class="topictitle1">Workload-AZ Anti-Affinity</h1>
-<div id="body1571647183887"><div class="section" id="cce_01_0229__section13854613443"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_01_0229__ol176141034101018"><li id="cce_01_0229__li1761415347103"><span>When <a href="cce_01_0047.html">Creating a Deployment</a> or <a href="cce_01_0048.html">Creating a StatefulSet</a>, in the <strong id="cce_01_0229__b194462147372">Scheduling Policies</strong> area on the <strong id="cce_01_0229__b154471214173710">Configure Advanced Settings</strong> page, click <span><img id="cce_01_0229__image1447714143714" src="en-us_image_0198876479.png"></span> next to <strong id="cce_01_0229__b1744861463712">Workload-AZ Affinity and Anti-affinity</strong> &gt; <strong id="cce_01_0229__b044871411371">Anti-affinity with AZs</strong>.</span></li><li id="cce_01_0229__li146341734141015"><span>Select an AZ in which the workload is ineligible to be deployed.</span><p><p id="cce_01_0229__p5636133451010">The created workload is not deployed on the selected AZ.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0229__section102822029173111"><a name="cce_01_0229__section102822029173111"></a><a name="section102822029173111"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0229__p128531046464">This section uses Nginx as an example to describe how to create a workload using kubectl.</p>
-<p id="cce_01_0229__p4857164194611"><strong id="cce_01_0229__b1764123012417">Prerequisites</strong></p>
-<p id="cce_01_0229__p08622424610">The ECS where the kubectl client runs has been connected to your cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-<p id="cce_01_0229__p1186713494613"><strong id="cce_01_0229__b20486104444113">Procedure</strong></p>
-<p id="cce_01_0229__p168724434619">When <a href="cce_01_0047.html#cce_01_0047__section155246177178">using kubectl to create a Deployment</a> or <a href="cce_01_0048.html#cce_01_0048__section113441881214">using kubectl to create a StatefulSet</a>, configure workload-AZ anti-affinity. The following is an example YAML file for workload-AZ anti-affinity.</p>
-<pre class="screen" id="cce_01_0229__screen1285829123120">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: nginx
-  strategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<strong style="color:#FF0000;" id="cce_01_0229__b9329162953110">      affinity:</strong>
-<strong id="cce_01_0229__b333232910319"><span style="color:#FF0000;">        nodeAffinity:</span></strong>
-<strong id="cce_01_0229__b13391229153111"><span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span></strong>
-<strong id="cce_01_0229__b8344142953111"><span style="color:#FF0000;">            nodeSelectorTerms:</span></strong>
-<strong id="cce_01_0229__b635115296314"><span style="color:#FF0000;">            - matchExpressions:</span></strong>
-<strong id="cce_01_0229__b1356172963113">              - key: failure-domain.beta.kubernetes.io/zone</strong><strong id="cce_01_0229__b936192923117">       <strong id="cce_01_0229__b1148917299429">#node's label key</strong>   </strong>
-<strong style="color:#FF0000;" id="cce_01_0229__b1336611295313">                operator: NotIn</strong>        
-<strong style="color:#FF0000;" id="cce_01_0229__b83729298319">                values:</strong>
-<strong id="cce_01_0229__b19377192918311">                - az1</strong><strong id="cce_01_0229__b19379929183114">     </strong><strong id="cce_01_0229__b448513564214">                              #node's key</strong> <strong id="cce_01_0229__b24881135144210">value</strong></pre>
-</div>
-<div class="section" id="cce_01_0229__section1914684415"><h4 class="sectiontitle">Setting the Object Type After Creating a Workload</h4><ol id="cce_01_0229__ol797339202610"><li id="cce_01_0229__li89731094262"><span>Log in to the CCE console and choose <strong id="cce_01_0229__b16977162912518">Workloads</strong> &gt; <strong id="cce_01_0229__b1097742918256">Deployments</strong> or <strong id="cce_01_0229__b997819291253">Workloads</strong> &gt; <strong id="cce_01_0229__b19978529132510">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0229__li597319992612"><span>Click the name of the workload for which you will add a scheduling policy. On the workload details page, choose <strong id="cce_01_0229__b1684275584514">Scheduling Policies</strong> &gt; <strong id="cce_01_0229__b198421455104512">Add Simple Scheduling Policy</strong> &gt; <strong id="cce_01_0229__b684355564519">Add Anti-affinity Object</strong>.</span></li><li id="cce_01_0229__li149731592267"><span>Set <strong id="cce_01_0229__b119868337162">Object Type</strong> to <strong id="cce_01_0229__b098719332164">Availability Zone</strong> and select the AZ in which the workload is ineligible to be deployed. The workload will be constrained from being deployed in the selected AZ.</span><p><div class="note" id="cce_01_0229__note1736819302567"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0229__p1736814300563">This method can be used to add, edit, or delete scheduling policies.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0230.html">Simple Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0230.html b/docs/cce/umn/cce_01_0230.html
deleted file mode 100644
index 859c94f5..00000000
--- a/docs/cce/umn/cce_01_0230.html
+++ /dev/null
@@ -1,25 +0,0 @@
-<a name="cce_01_0230"></a><a name="cce_01_0230"></a>
-
-<h1 class="topictitle1">Simple Scheduling Policies</h1>
-<div id="body1571648302093"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0228.html">Workload-AZ Affinity</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0229.html">Workload-AZ Anti-Affinity</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0225.html">Workload-Node Affinity</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0226.html">Workload-Node Anti-Affinity</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0220.html">Workload-Workload Affinity</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0227.html">Workload-Workload Anti-Affinity</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0149.html">Affinity and Anti-Affinity Scheduling</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0231.html b/docs/cce/umn/cce_01_0231.html
deleted file mode 100644
index 81fe1dbf..00000000
--- a/docs/cce/umn/cce_01_0231.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="cce_01_0231"></a><a name="cce_01_0231"></a>
-
-<h1 class="topictitle1">Custom Scheduling Policies</h1>
-<div id="body1571648302093"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0232.html">Node Affinity</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0233.html">Workload Affinity</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0234.html">Workload Anti-Affinity</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0149.html">Affinity and Anti-Affinity Scheduling</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0232.html b/docs/cce/umn/cce_01_0232.html
deleted file mode 100644
index d6ce9c4e..00000000
--- a/docs/cce/umn/cce_01_0232.html
+++ /dev/null
@@ -1,111 +0,0 @@
-<a name="cce_01_0232"></a><a name="cce_01_0232"></a>
-
-<h1 class="topictitle1">Node Affinity</h1>
-<div id="body1571648302093"><div class="section" id="cce_01_0232__section14975195565810"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_01_0232__ol228103011185"><li id="cce_01_0232__li3604125131815"><span>Log in to the CCE console and choose <strong id="cce_01_0232__b9967214119">Workloads</strong> &gt; <strong id="cce_01_0232__b1110313221113">Deployments</strong> or <strong id="cce_01_0232__b1410312251113">Workloads</strong> &gt; <strong id="cce_01_0232__b11104728113">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0232__li15893101912183"><span>Click a workload name in the Deployment or StatefulSet list. On the displayed workload details page, click the <strong id="cce_01_0232__b074475813716">Scheduling Policies</strong> tab and then click <strong id="cce_01_0232__b139415411384">Add Custom Scheduling Policy</strong>.</span></li><li id="cce_01_0232__li16674144981810"><span>In the <strong id="cce_01_0232__b10677175991618">Node Affinity</strong> area, you can specify node labels to meet required or preferred rules in scheduling.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0232__table202751247311" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node affinity settings</caption><thead align="left"><tr id="cce_01_0232__row6275154232"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.1.2.3.2.1.2.3.1.1"><p id="cce_01_0232__p11274641534">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.1.2.3.2.1.2.3.1.2"><p id="cce_01_0232__p12747418317">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0232__row1327511413311"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.3.2.1.2.3.1.1 "><p id="cce_01_0232__p1827516415318">Required</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.3.2.1.2.3.1.2 "><p id="cce_01_0232__p1427512410317">It specifies a rule that must be met in scheduling. It corresponds to <strong id="cce_01_0232__b33451805425">requiredDuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. You can click <strong id="cce_01_0232__b62280269439">Add Rule</strong> to add multiple required rules. A pod will be scheduled on a node that meets any of the rules configured.</p>
-</td>
-</tr>
-<tr id="cce_01_0232__row112751441939"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.3.2.1.2.3.1.1 "><p id="cce_01_0232__p172751442316">Preferred</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.3.2.1.2.3.1.2 "><p id="cce_01_0232__p12275164932">It specifies a preference in scheduling. It corresponds to <strong id="cce_01_0232__b195301525472">preferredDuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. You can click <strong id="cce_01_0232__b10664193516532">Add Rule</strong> to add multiple preferred rules. The scheduler will try to enforce the rules but will not guarantee. If the scheduler cannot satisfy any one of the rules, the pod will still be scheduled.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0232__li442203101314"><span>Set a rule according to the following table. You can click <strong id="cce_01_0232__b889024014199">Add Selector</strong> to configure multiple selectors for a rule.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0232__table3820121171412" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Selector settings</caption><thead align="left"><tr id="cce_01_0232__row118208114146"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.1.2.4.2.1.2.3.1.1"><p id="cce_01_0232__p8820141131410">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.1.2.4.2.1.2.3.1.2"><p id="cce_01_0232__p7820141131415">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0232__row15200152610330"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.4.2.1.2.3.1.1 "><p id="cce_01_0232__p131524913015">Weight</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.4.2.1.2.3.1.2 "><ul id="cce_01_0232__ul4338261346"><li id="cce_01_0232__li1833818613345">This parameter is unavailable for a required rule.</li><li id="cce_01_0232__li133816613411">Set the weight of a preferred rule. A higher weight indicates a higher priority.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0232__row2082010171412"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.4.2.1.2.3.1.1 "><p id="cce_01_0232__p168202112145">Label</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.4.2.1.2.3.1.2 "><p id="cce_01_0232__p982013151417">Node label. You can use the default label or customize a label.</p>
-</td>
-</tr>
-<tr id="cce_01_0232__row782019181410"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.4.2.1.2.3.1.1 "><p id="cce_01_0232__p198241835201413">Operator</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.4.2.1.2.3.1.2 "><p id="cce_01_0232__p882119117140">The following relations are supported: <strong id="cce_01_0232__b169191614122213">In</strong>, <strong id="cce_01_0232__b164771016162210">NotIn</strong>, <strong id="cce_01_0232__b898721992219">Exists</strong>, <strong id="cce_01_0232__b669812342212">DoesNotExist</strong>, <strong id="cce_01_0232__b2531194172213">Gt</strong>, and <strong id="cce_01_0232__b1156234342216">Lt</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0232__row14631352121414"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.4.2.1.2.3.1.1 "><p id="cce_01_0232__p9463125251410">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.4.2.1.2.3.1.2 "><p id="cce_01_0232__p16464155219144">Tag value.</p>
-<p id="cce_01_0232__p35182478198">Operators <strong id="cce_01_0232__b1730692872314">In</strong> and <strong id="cce_01_0232__b1920273062313">NotIn</strong> allow one or more label values. Values are separated with colons (;). Operators <strong id="cce_01_0232__b1037019419237">Exists</strong> and <strong id="cce_01_0232__b4196154317235">DoesNotExist</strong> are used to determine whether a label exists, and do not require a label value. If you set the operator to <strong id="cce_01_0232__b7986155118235">Gt</strong> or <strong id="cce_01_0232__b15676205362319">Lt</strong> for a label, the label value must be greater than or less than a certain integer.</p>
-</td>
-</tr>
-<tr id="cce_01_0232__row09151254201410"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.4.2.1.2.3.1.1 "><p id="cce_01_0232__p19915155416141">Operation</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.4.2.1.2.3.1.2 "><p id="cce_01_0232__p2915054201417">You can click <strong id="cce_01_0232__b1774021732413">Delete</strong> to delete a selector.</p>
-</td>
-</tr>
-<tr id="cce_01_0232__row134525715142"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.2.4.2.1.2.3.1.1 "><p id="cce_01_0232__p845155741412">Add Selector</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.2.4.2.1.2.3.1.2 "><p id="cce_01_0232__p1145757121416">A selector corresponds to <strong id="cce_01_0232__b104121572597">matchExpressions</strong> in Kubernetes. You can click <strong id="cce_01_0232__b8496354193610">Add Selector</strong> to add multiple selectors for a scheduling rule. The rule is applied in scheduling only when all its selectors are satisfied.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="fignone" id="cce_01_0232__fig4460835131217"><span class="figcap"><b>Figure 1 </b>Node affinity scheduling policy</span><br><span><img id="cce_01_0232__image144605352123" src="en-us_image_0000001190658439.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0232__section9155952131619"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0232__p1349718175">This section uses Nginx as an example to describe how to configure node affinity.</p>
-<p id="cce_01_0232__p1817353115818"><strong id="cce_01_0232__b19786181434114">Prerequisites</strong></p>
-<p id="cce_01_0232__p1083555717117">A workload that uses the nginx container image has been deployed on a node.</p>
-<p id="cce_01_0232__p180780124"><strong id="cce_01_0232__b1198461674120">Procedure</strong></p>
-<p id="cce_01_0232__p4108594584">Set <strong id="cce_01_0232__b6914174615366">Label</strong> to <strong id="cce_01_0232__b1115985015715">kubernetes.io/hostname</strong>, add affinity nodes, and set the operator to <strong id="cce_01_0232__b25571121105810">In</strong>. Then, click <strong id="cce_01_0232__b1348782765815">OK</strong>.</p>
-<p id="cce_01_0232__p2080813399212">YAML file of the workload with node affinity:</p>
-<pre class="screen" id="cce_01_0232__screen148206375718">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-  namespace: default
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: nginx
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<span style="color:#FF0000;">      affinity:</span>
-<span style="color:#FF0000;">        nodeAffinity:</span>
-<span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span>
-<span style="color:#FF0000;">            nodeSelectorTerms:</span>
-<span style="color:#FF0000;">              - matchExpressions:</span>
-<span style="color:#FF0000;">                  - key: kubernetes.io/hostname</span>
-<span style="color:#FF0000;">                    operator: In</span>
-<span style="color:#FF0000;">                    values:</span>
-<span style="color:#FF0000;">                     - 192.168.6.174</span></pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0231.html">Custom Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0233.html b/docs/cce/umn/cce_01_0233.html
deleted file mode 100644
index 866f8ba1..00000000
--- a/docs/cce/umn/cce_01_0233.html
+++ /dev/null
@@ -1,133 +0,0 @@
-<a name="cce_01_0233"></a><a name="cce_01_0233"></a>
-
-<h1 class="topictitle1">Workload Affinity</h1>
-<div id="body1571648302094"><div class="section" id="cce_01_0233__section085916413596"><h4 class="sectiontitle">Using the CCE Console</h4><p id="cce_01_0233__p84741832193612">Workload affinity determines the pods as which the target workload will be deployed in the same topology domain.</p>
-<ol id="cce_01_0233__ol8446616193718"><li id="cce_01_0233__li12981444154610"><span>Log in to the CCE console and choose <strong id="cce_01_0233__b159503217173">Workloads</strong> &gt; <strong id="cce_01_0233__b39561821131713">Deployments</strong> or <strong id="cce_01_0233__b1895782114171">Workloads</strong> &gt; <strong id="cce_01_0233__b1957421151715">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0233__li198164434611"><span>Click a workload name in the Deployment or StatefulSet list. On the displayed workload details page, click the <strong id="cce_01_0233__b1621552332510">Scheduling Policies</strong> tab and then click <strong id="cce_01_0233__b12215122392517">Add Custom Scheduling Policy</strong>.</span></li><li id="cce_01_0233__li15462181611373"><span>In the <strong id="cce_01_0233__b5132140145319">Pod Affinity</strong> area, set the namespace, topology key, and the label requirements to be met.</span><p><p id="cce_01_0233__p19949392226">There are two types of pod affinity rules: <strong id="cce_01_0233__b19375115144014">Required</strong> (hard rule) and <strong id="cce_01_0233__b82691678404">Preferred</strong> (soft rule). The label operators include <strong id="cce_01_0233__b25311311184013">In</strong>, <strong id="cce_01_0233__b8384161319403">NotIn</strong>, <strong id="cce_01_0233__b196942143405">Exists</strong>, and <strong id="cce_01_0233__b3785121617409">DoesNotExist</strong>.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0233__table202751247311" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Pod affinity settings</caption><thead align="left"><tr id="cce_01_0233__row6275154232"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.1.3.3.2.2.2.3.1.1"><p id="cce_01_0233__p11274641534">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.1.3.3.2.2.2.3.1.2"><p id="cce_01_0233__p12747418317">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0233__row1327511413311"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.3.2.2.2.3.1.1 "><p id="cce_01_0233__p1827516415318">Required</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.3.2.2.2.3.1.2 "><p id="cce_01_0233__p1427512410317">It specifies a rule that must be met in scheduling. It corresponds to <strong id="cce_01_0233__b209102012104210">requiredDuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. You can click <strong id="cce_01_0233__b1910131211421">Add Rule</strong> to add multiple required rules. Ensure that all the labels specified in the rules must be in the same workload. Each rule requires a namespace and topology key.</p>
-</td>
-</tr>
-<tr id="cce_01_0233__row112751441939"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.3.2.2.2.3.1.1 "><p id="cce_01_0233__p172751442316">Preferred</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.3.2.2.2.3.1.2 "><p id="cce_01_0233__p12275164932">It specifies a preference in scheduling. It corresponds to <strong id="cce_01_0233__b1894923249">preferredDuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. You can click <strong id="cce_01_0233__b5895112162418">Add Rule</strong> to add multiple preferred rules. The scheduler will try to enforce the rules but will not guarantee. If the scheduler cannot satisfy any one of the rules, the pod will still be scheduled.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0233__li158021813182620"><span>Set a rule according to the following table. You can click <strong id="cce_01_0233__b101716064519">Add Selector</strong> to configure multiple selectors for a rule.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0233__table3820121171412" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Selector settings</caption><thead align="left"><tr id="cce_01_0233__row118208114146"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.1.3.4.2.1.2.3.1.1"><p id="cce_01_0233__p8820141131410">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.1.3.4.2.1.2.3.1.2"><p id="cce_01_0233__p7820141131415">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0233__row11564913306"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p131524913015">Weight</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><ul id="cce_01_0233__ul114651256173313"><li id="cce_01_0233__li2046555683315">This parameter is unavailable for a required rule.</li><li id="cce_01_0233__li5465756153312">Set the weight of a preferred rule. A higher weight indicates a higher priority.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0233__row11583112162819"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p758331272819">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0233__p10583812112815">By default, the namespace of the current pod is used. You can also use another namespace.</p>
-</td>
-</tr>
-<tr id="cce_01_0233__row710121010284"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p7102181002814">Topology Key</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0233__p151023106286">Key of the worker node label that the system uses to denote a topology domain in which scheduling can be performed. Default and custom node labels can be used.</p>
-</td>
-</tr>
-<tr id="cce_01_0233__row2082010171412"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p168202112145">Label</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0233__p982013151417">Label of the workload. You can customize the label name.</p>
-</td>
-</tr>
-<tr id="cce_01_0233__row782019181410"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p198241835201413">Operator</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0233__p882119117140">The following relations are supported: <strong id="cce_01_0233__b8707853164812">In</strong>, <strong id="cce_01_0233__b47070530481">NotIn</strong>, <strong id="cce_01_0233__b7707175314487">Exists</strong>, and <strong id="cce_01_0233__b1970712534488">DoesNotExist</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0233__row14631352121414"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p9463125251410">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0233__p16464155219144">Tag value.</p>
-<p id="cce_01_0233__p35182478198">Operators <strong id="cce_01_0233__b1050161618492">In</strong> and <strong id="cce_01_0233__b65710160491">NotIn</strong> allow one or more label values. Values are separated with colons (;). Operators <strong id="cce_01_0233__b1157111624912">Exists</strong> and <strong id="cce_01_0233__b16571166494">DoesNotExist</strong> are used to determine whether a label exists, and do not require a label value.</p>
-</td>
-</tr>
-<tr id="cce_01_0233__row09151254201410"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p19915155416141">Operation</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0233__p2915054201417">You can click <strong id="cce_01_0233__b181921320164916">Delete</strong> to delete a selector.</p>
-</td>
-</tr>
-<tr id="cce_01_0233__row134525715142"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0233__p845155741412">Add Selector</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0233__p1145757121416">A selector corresponds to <strong id="cce_01_0233__b11641115462412">matchExpressions</strong> in Kubernetes. You can click <strong id="cce_01_0233__b86471154142418">Add Selector</strong> to add multiple selectors for a scheduling rule. The rule is applied in scheduling only when all its selectors are satisfied.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="fignone" id="cce_01_0233__fig18642839164"><span class="figcap"><b>Figure 1 </b>Pod affinity scheduling policy</span><br><span><img id="cce_01_0233__image964315391618" src="en-us_image_0000001144578756.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0233__section69149192383"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0233__p11654193914383">This section uses Nginx as an example to describe how to configure pod affinity.</p>
-<p id="cce_01_0233__p8657163903812"><strong id="cce_01_0233__b16100135810278">Prerequisites</strong></p>
-<p id="cce_01_0233__p966114396386">A workload that uses the nginx container image has been deployed on a node.</p>
-<p id="cce_01_0233__p14665153933811"><strong id="cce_01_0233__b16749165617289">Procedure</strong></p>
-<p id="cce_01_0233__p1166619398382">Set <strong id="cce_01_0233__b10624188163">Namespace</strong> to <strong id="cce_01_0233__b189449377515">default</strong> and <strong id="cce_01_0233__b123874559610">Topology Key</strong> to the built-in node label <strong id="cce_01_0233__b523915500615">kubernetes.io/hostname</strong>, which means that the scheduling scope is a node. Set labels <strong id="cce_01_0233__b146717148910">app</strong> and <strong id="cce_01_0233__b2015451812914">type</strong> and their value to <strong id="cce_01_0233__b152151132198">redis</strong> and <strong id="cce_01_0233__b1144915371998">database</strong>, respectively. Set <strong id="cce_01_0233__b884775019916">Operator</strong> to <strong id="cce_01_0233__b534410544912">In</strong> and click <strong id="cce_01_0233__b1820511582917">OK</strong>.</p>
-<p id="cce_01_0233__p8673113913382">The YAML of the workload with pod affinity is as follows:</p>
-<pre class="screen" id="cce_01_0233__screen94858224457">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-  namespace: default
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: nginx
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<span style="color:#FF0000;">      affinity:</span>
-<span style="color:#FF0000;">        nodeAffinity: {}</span>
-<span style="color:#FF0000;">        podAffinity:</span>
-<span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span>
-<span style="color:#FF0000;">            - labelSelector:</span>
-<span style="color:#FF0000;">                matchExpressions:</span>
-<span style="color:#FF0000;">                  - key: app</span>
-<span style="color:#FF0000;">                    operator: In</span>
-<span style="color:#FF0000;">                    values:</span>
-<span style="color:#FF0000;">                      - redis</span>
-<span style="color:#FF0000;">                  - key: type</span>
-<span style="color:#FF0000;">                    operator: In</span>
-<span style="color:#FF0000;">                    values:</span>
-<span style="color:#FF0000;">                      - database</span>
-<span style="color:#FF0000;">              namespaces:</span>
-<span style="color:#FF0000;">                - default</span>
-<span style="color:#FF0000;">              topologyKey: kubernetes.io/hostname</span></pre>
-</div>
-<div class="notice" id="cce_01_0233__note3877518155419"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0233__p178772184549">In this example, only when a candidate workload (for example, workload A) with both labels <strong id="cce_01_0233__b1759352919442">app=redis</strong> and <strong id="cce_01_0233__b1640010388444">type=database</strong> is found can the workload Nginx be successfully scheduled to the node of the candidate workload.</p>
-</div></div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0231.html">Custom Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0234.html b/docs/cce/umn/cce_01_0234.html
deleted file mode 100644
index 88593f42..00000000
--- a/docs/cce/umn/cce_01_0234.html
+++ /dev/null
@@ -1,128 +0,0 @@
-<a name="cce_01_0234"></a><a name="cce_01_0234"></a>
-
-<h1 class="topictitle1">Workload Anti-Affinity</h1>
-<div id="body1571648302094"><div class="section" id="cce_01_0234__section984110391216"><h4 class="sectiontitle">Using the CCE Console</h4><p id="cce_01_0234__p17479193293615">Workload anti-affinity determines the pods from which the target workload will be deployed in a different topology domain.</p>
-<ol id="cce_01_0234__ol181655205416"><li id="cce_01_0234__li4723122313220"><span>Log in to the CCE console and choose <strong id="cce_01_0234__b696118379182">Workloads</strong> &gt; <strong id="cce_01_0234__b796223715181">Deployments</strong> or <strong id="cce_01_0234__b5963143771814">Workloads</strong> &gt; <strong id="cce_01_0234__b896473711816">StatefulSets</strong> in the navigation pane.</span></li><li id="cce_01_0234__li772342314218"><span>Click a workload name in the Deployment or StatefulSet list. On the displayed workload details page, click the <strong id="cce_01_0234__b186321726172910">Scheduling Policies</strong> tab and then click <strong id="cce_01_0234__b156321826122915">Add Custom Scheduling Policy</strong>.</span></li><li id="cce_01_0234__li34965214548"><span>In the <strong id="cce_01_0234__b14463183015346">Pod Anti-Affinity</strong> area, set the namespace, topology key, and the label requirements to be met.</span><p><p id="cce_01_0234__p19949392226">There are two types of pod anti-affinity rules: <strong id="cce_01_0234__b18132142525017">Required</strong> (hard rule) and <strong id="cce_01_0234__b1420316275502">Preferred</strong> (soft rule), and the label operators include <strong id="cce_01_0234__b7931330105016">In</strong>, <strong id="cce_01_0234__b1210010325500">NotIn</strong>, <strong id="cce_01_0234__b1574943335020">Exists</strong>, and <strong id="cce_01_0234__b2460235135016">DoesNotExist</strong>.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0234__table202751247311" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Workload anti-affinity settings</caption><thead align="left"><tr id="cce_01_0234__row6275154232"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.1.3.3.2.2.2.3.1.1"><p id="cce_01_0234__p11274641534">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.1.3.3.2.2.2.3.1.2"><p id="cce_01_0234__p12747418317">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0234__row1327511413311"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.3.2.2.2.3.1.1 "><p id="cce_01_0234__p1827516415318">Required</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.3.2.2.2.3.1.2 "><p id="cce_01_0234__p1427512410317">It specifies a rule that must be met in scheduling. It corresponds to <strong id="cce_01_0234__b12415570267">requiredDuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. You can add multiple required rules. Ensure that all the labels specified in the rules must be in the same workload. Each rule requires a namespace and topology key.</p>
-</td>
-</tr>
-<tr id="cce_01_0234__row112751441939"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.3.2.2.2.3.1.1 "><p id="cce_01_0234__p172751442316">Preferred</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.3.2.2.2.3.1.2 "><p id="cce_01_0234__p847410388354">It specifies a preference in scheduling. It corresponds to <strong id="cce_01_0234__b2871932122610">preferredDuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. You can add multiple preferred rules. The scheduler will try to enforce the rules but will not guarantee. If the scheduler cannot satisfy any one of the rules, the pod will still be scheduled.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0234__li46706597355"><span>Set a rule according to the following table. You can click <strong id="cce_01_0234__b13258161905813">Add Selector</strong> to configure multiple selectors for a rule.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0234__table3820121171412" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Selector settings</caption><thead align="left"><tr id="cce_01_0234__row118208114146"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.1.3.4.2.1.2.3.1.1"><p id="cce_01_0234__p8820141131410">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.1.3.4.2.1.2.3.1.2"><p id="cce_01_0234__p7820141131415">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0234__row11564913306"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p131524913015">Weight</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><ul id="cce_01_0234__ul114651256173313"><li id="cce_01_0234__li2046555683315">This parameter is unavailable for a required rule.</li><li id="cce_01_0234__li5465756153312">Set the weight of a preferred rule. A higher weight indicates a higher priority.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0234__row11583112162819"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p758331272819">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0234__p10583812112815">By default, the namespace of the current pod is used. You can also use another namespace.</p>
-</td>
-</tr>
-<tr id="cce_01_0234__row710121010284"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p7102181002814">Topology Key</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0234__p151023106286">Key of the worker node label that the system uses to denote a topology domain in which scheduling can be performed. Default and custom node labels can be used.</p>
-</td>
-</tr>
-<tr id="cce_01_0234__row2082010171412"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p168202112145">Label</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0234__p982013151417">Label of the workload. You can customize the label name.</p>
-</td>
-</tr>
-<tr id="cce_01_0234__row782019181410"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p198241835201413">Operator</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0234__p882119117140">The following relations are supported: <strong id="cce_01_0234__b581534815812">In</strong>, <strong id="cce_01_0234__b1982144817587">NotIn</strong>, <strong id="cce_01_0234__b3821134814585">Exists</strong>, and <strong id="cce_01_0234__b198211148105810">DoesNotExist</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0234__row14631352121414"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p9463125251410">Value</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0234__p16464155219144">Tag value.</p>
-<p id="cce_01_0234__p35182478198">Operators <strong id="cce_01_0234__b460485812586">In</strong> and <strong id="cce_01_0234__b261025885815">NotIn</strong> allow one or more label values. Values are separated with colons (;). Operators <strong id="cce_01_0234__b1561045885810">Exists</strong> and <strong id="cce_01_0234__b6610758135815">DoesNotExist</strong> are used to determine whether a label exists, and do not require a label value.</p>
-</td>
-</tr>
-<tr id="cce_01_0234__row09151254201410"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p19915155416141">Operation</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0234__p2915054201417">You can click <strong id="cce_01_0234__b19517131175918">Delete</strong> to delete a selector.</p>
-</td>
-</tr>
-<tr id="cce_01_0234__row134525715142"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.1.3.4.2.1.2.3.1.1 "><p id="cce_01_0234__p845155741412">Add Selector</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.1.3.4.2.1.2.3.1.2 "><p id="cce_01_0234__p1145757121416">A selector corresponds to <strong id="cce_01_0234__b1499164762612">matchExpressions</strong> in Kubernetes. You can click <strong id="cce_01_0234__b109971647192614">Add Selector</strong> to add multiple selectors for a scheduling rule. The rule is applied in scheduling only when all its selectors are satisfied.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="fignone" id="cce_01_0234__fig107731235101816"><span class="figcap"><b>Figure 1 </b>Pod anti-affinity scheduling policy</span><br><span><img id="cce_01_0234__image1077493519187" src="en-us_image_0000001144738550.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0234__section93428308559"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_01_0234__p174801832113613">This section uses Nginx as an example to describe how to configure pod anti-affinity.</p>
-<p id="cce_01_0234__p1648033263619"><strong id="cce_01_0234__b6261454113013">Prerequisites</strong></p>
-<p id="cce_01_0234__p3480132103619">A workload that uses the nginx container image has been deployed on a node.</p>
-<p id="cce_01_0234__p1148020323362"><strong id="cce_01_0234__b1211155917301">Procedure</strong></p>
-<p id="cce_01_0234__p1048093263613">Set <strong id="cce_01_0234__b165471517502">Namespace</strong> to <strong id="cce_01_0234__b65470175015">default</strong> and <strong id="cce_01_0234__b354721195015">Topology Key</strong> to the built-in node label <strong id="cce_01_0234__b175473135015">kubernetes.io/hostname</strong>, which means that the scheduling scope is a node. Set the label <strong id="cce_01_0234__b2054714195010">app</strong> and its value to <strong id="cce_01_0234__b555421195012">redis</strong>. Set <strong id="cce_01_0234__b884775019916">Operator</strong> to <strong id="cce_01_0234__b534410544912">In</strong> and click <strong id="cce_01_0234__b1820511582917">OK</strong>.</p>
-<p id="cce_01_0234__p2601552135514">The YAML of the workload with pod anti-affinity:</p>
-</div>
-<pre class="screen" id="cce_01_0234__screen1873181110613">apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: nginx
-  namespace: default
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: nginx 
-  template:
-    metadata:
-      labels:
-        app: nginx
-    spec:
-      containers:
-      - image: nginx 
-        imagePullPolicy: Always
-        name: nginx
-      imagePullSecrets:
-      - name: default-secret
-<span style="color:#FF0000;">      affinity:</span>
-<span style="color:#FF0000;">        nodeAffinity: {}</span>
-<span style="color:#FF0000;">        podAffinity: {}</span>
-<span style="color:#FF0000;">        podAntiAffinity:</span>
-<span style="color:#FF0000;">          requiredDuringSchedulingIgnoredDuringExecution:</span>
-<span style="color:#FF0000;">            - labelSelector:</span>
-<span style="color:#FF0000;">                matchExpressions:</span>
-<span style="color:#FF0000;">                  - key: app</span>
-<span style="color:#FF0000;">                    operator: In</span>
-<span style="color:#FF0000;">                    values:</span>
-<span style="color:#FF0000;">                      - redis</span>
-<span style="color:#FF0000;">              namespaces:</span>
-<span style="color:#FF0000;">                - default</span>
-<span style="color:#FF0000;">              topologyKey: kubernetes.io/hostname</span></pre>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0231.html">Custom Scheduling Policies</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0247.html b/docs/cce/umn/cce_01_0247.html
deleted file mode 100644
index 0a04fdcf..00000000
--- a/docs/cce/umn/cce_01_0247.html
+++ /dev/null
@@ -1,27 +0,0 @@
-<a name="cce_01_0247"></a><a name="cce_01_0247"></a>
-
-
-  <h1 class="topictitle1">Services</h1>
-
-  <div id="body1599887621732"><p id="cce_01_0247__p8060118"></p>
-</div>
-
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0249.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0011.html">Intra-Cluster Access (ClusterIP)</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0142.html">NodePort</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0014.html">LoadBalancer</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0114.html">ENI LoadBalancer</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0020.html">Networking</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0248.html b/docs/cce/umn/cce_01_0248.html
deleted file mode 100644
index 7fa196e8..00000000
--- a/docs/cce/umn/cce_01_0248.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="cce_01_0248"></a><a name="cce_01_0248"></a>
-
-<h1 class="topictitle1">Ingress</h1>
-<div id="body0000001204731993"></div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0094.html">Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0251.html">Using ELB Ingresses on the Console</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0252.html">Using kubectl to Create an ELB Ingress</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0020.html">Networking</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0251.html b/docs/cce/umn/cce_01_0251.html
deleted file mode 100644
index 13aa656a..00000000
--- a/docs/cce/umn/cce_01_0251.html
+++ /dev/null
@@ -1,51 +0,0 @@
-<a name="cce_01_0251"></a><a name="cce_01_0251"></a>
-
-<h1 class="topictitle1">Using ELB Ingresses on the Console</h1>
-<div id="body0000001204613437"><div class="section" id="cce_01_0251__section73261751141418"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0251__ul19326175115142"><li id="cce_01_0251__li132635116149">An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a workload by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0216.html">Creating a DaemonSet</a>.</li><li id="cce_01_0251__li33261951161417">A NodePort Service has been configured for the workload. For details about how to configure the Service, see <a href="cce_01_0142.html">NodePort</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0251__section2042610683912"><h4 class="sectiontitle">Precautions</h4><ul id="cce_01_0251__ul7976181182416"><li id="cce_01_0251__li19243652101519">It is recommended that other resources not use the load balancer automatically created by an ingress. Otherwise, the load balancer will be occupied when the ingress is deleted, resulting in residual resources.</li><li id="cce_01_0251__li1524325211159">After an ingress is created, upgrade and maintain the configuration of the selected load balancers on the CCE console. Do not modify the configuration on the ELB console. Otherwise, the ingress service may be abnormal.</li><li id="cce_01_0251__li1824318524159">The URL registered in an ingress forwarding policy must be the same as the URL exposed by the backend Service. Otherwise, a 404 error will be returned.</li></ul>
-</div>
-<div class="section" id="cce_01_0251__section19352112471617"><h4 class="sectiontitle">Adding an ELB Ingress</h4><p id="cce_01_0251__p010013275811">This section uses an Nginx workload as an example to describe how to add an ELB ingress.</p>
-<ol id="cce_01_0251__ol19575164212915"><li id="cce_01_0251__li8689349417"><span>Log in to the CCE console.</span></li><li id="cce_01_0251__li012894520229"><span>In the navigation pane, choose <strong id="cce_01_0251__b178668514216">Resource Management</strong> &gt; <strong id="cce_01_0251__b1637189132120">Network</strong>. On the <strong id="cce_01_0251__b065762211214">Ingresses</strong> tab page, select the corresponding cluster and namespace.</span></li><li id="cce_01_0251__li14953111716915"><span>Click <strong id="cce_01_0251__b20477101034311">Create Ingress</strong> to access the ingress configuration page.</span><p><div class="p" id="cce_01_0251__p14344016116">Set the ingress parameters as required. The key parameters are as follows:<ul id="cce_01_0251__ul14861918192"><li id="cce_01_0251__li1984318098"><strong id="cce_01_0251__b021732913591">Access Type</strong>: Use a load balancer to access Services. Requests can be forwarded only to NodePort Services.</li><li id="cce_01_0251__li4843182918"><strong id="cce_01_0251__b1964781422412">Ingress Name</strong>: Specify a name of an ingress, for example, <strong id="cce_01_0251__b126481414162416">ingress-demo</strong>.</li><li id="cce_01_0251__li9841181291"><strong id="cce_01_0251__b7559181752417">Cluster Name</strong>: Select the cluster to which the ingress is to be added.</li><li id="cce_01_0251__li484218895"><strong id="cce_01_0251__b186321142412">Namespace</strong>: Select the namespace to which the ingress is to be added.</li><li id="cce_01_0251__li3851118694"><strong id="cce_01_0251__b217118246249">ELB Configuration</strong>: Ingress uses the load balancer of the ELB service to provide layer-7 network access. You can select an existing load balancer or have the system automatically create a new one. To manually create a load balancer, click <strong id="cce_01_0251__b2303940826">Create Load Balancer</strong> and then click the refresh button.<div class="notice" id="cce_01_0251__note1784518890"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0251__ul97203379123"><li id="cce_01_0251__li3720123741210">It is recommended that other resources not use the load balancer automatically created by an ingress. Otherwise, the load balancer will be occupied when the ingress is deleted, resulting in residual resources.</li><li id="cce_01_0251__li1672043719120">Dedicated load balancers are supported only when the cluster version is 1.17 or later.</li><li id="cce_01_0251__li7341191122314">To interconnect with an existing dedicated load balancer, ensure that HTTP is supported and the network type supports private networks.</li></ul>
-</div></div>
-<p id="cce_01_0251__p3841181999"><strong id="cce_01_0251__b278431242519">Elastic Load Balancer</strong>: The selected or created load balancer must be in the same VPC as the current cluster, and it must match the load balancer type (private or public network).</p>
-<p id="cce_01_0251__p8841518891">You can create <strong id="cce_01_0251__b673621192610">public network</strong> or <strong id="cce_01_0251__b874318111266">private network</strong> load balancers. The default value is <strong id="cce_01_0251__b191786455262">Public network</strong>.</p>
-<ul id="cce_01_0251__ul14855181694"><li id="cce_01_0251__li18461818912"><strong id="cce_01_0251__b1365813260312">Public network</strong>: After you attach an EIP to a load balancer, the load balancer can distribute requests from the Internet to backend servers.<ul id="cce_01_0251__ul198418185912"><li id="cce_01_0251__li1984218194"><strong id="cce_01_0251__b14367583260">Enterprise Project</strong>: Select an enterprise project in which the load balancer is created.</li><li id="cce_01_0251__li48417189918"><strong id="cce_01_0251__b1467018072717">Change Configuration</strong>: When selecting <strong id="cce_01_0251__b2670120162711">Public network</strong> &gt; <strong id="cce_01_0251__b196711802275">Automatically created</strong>, you can click <strong id="cce_01_0251__b9671150102719">Change Configuration</strong> to modify the name, specifications, billing mode, and bandwidth of the ELB instance to be created.</li></ul>
-</li><li id="cce_01_0251__li1485618593"><strong id="cce_01_0251__b998819376417">Private network</strong>: After you attach a private IP address to a load balancer, the load balancer can distribute requests from the clients in the same VPC to backends.<ul id="cce_01_0251__ul138413184920"><li id="cce_01_0251__li484151811920"><strong id="cce_01_0251__b14233171355">Enterprise Project</strong>: Select an enterprise project in which the load balancer is created.</li></ul>
-</li></ul>
-</li><li id="cce_01_0251__li6851318392"><strong id="cce_01_0251__b29552108271">Listener Configuration</strong>: Ingress configures a listener for the load balancer, which listens to requests from the load balancer and distributes traffic. After the configuration is complete, a listener is created on the load balancer. The default listener name is <em id="cce_01_0251__i12144307313">k8s__&lt;Protocol type&gt;_&lt;Port number&gt;</em>, for example, <em id="cce_01_0251__i1453831916301">k8s_HTTP_80</em>.<ul id="cce_01_0251__ul98515181097"><li id="cce_01_0251__li128514181093"><strong id="cce_01_0251__b121551828142814">Front-End Protocol</strong>: <strong id="cce_01_0251__b1016142862813">HTTP</strong> and <strong id="cce_01_0251__b016102822819">HTTPS</strong> are available.</li><li id="cce_01_0251__li128531815910"><strong id="cce_01_0251__b614751917275">External Port</strong>: Port number that is open to the ELB service address. The port number can be specified randomly.</li><li id="cce_01_0251__li17853181895"><strong id="cce_01_0251__b81461344202720">Server Certificate</strong>: When an HTTPS listener is created for a load balancer, you need to bind a certificate to the load balancer to support encrypted authentication for HTTPS data transmission. For details on how to create a secret, see <a href="cce_01_0153.html">Creating a Secret</a>.<div class="note" id="cce_01_0251__note128518182093"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0251__p1931016593215">If there is already an HTTPS ingress for the chosen port on the load balancer, the certificate of the new HTTPS ingress must be the same as the certificate of the existing ingress. This means that a listener has only one certificate. If two certificates, each with a different ingress, are added to the same listener of the same load balancer, only the certificate added earliest takes effect on the load balancer.</p>
-</div></div>
-</li><li id="cce_01_0251__li7651155094013"><strong id="cce_01_0251__b1334831052818">SNI</strong>: Click <span><img id="cce_01_0251__image14827155694017" src="en-us_image_0000001238163131.png"></span> to enable the Server Name Indication (SNI) function. SNI is an extended protocol of TLS. It allows multiple TLS-based access domain names to be provided for external systems using the same IP address and port number. Different domain names can use different security certificates. After SNI is enabled, the client is allowed to submit the requested domain name when initiating a TLS handshake request. After receiving the TLS request, the load balancer searches for the certificate based on the domain name in the request. If the certificate corresponding to the domain name is found, the load balancer returns the certificate for authorization. Otherwise, the default certificate (server certificate) is returned for authorization.<div class="note" id="cce_01_0251__note59161057134120"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0251__ul341785816517"><li id="cce_01_0251__li1541715805115">The <strong id="cce_01_0251__b17512414311">SNI</strong> option is available only when <strong id="cce_01_0251__b77525411312">HTTPS</strong> is selected.</li></ul>
-<ul id="cce_01_0251__ul2041716583512"><li id="cce_01_0251__li541725835112">This function is supported only for clusters of v1.15.11 and later.</li><li id="cce_01_0251__li1265688165219">Specify the domain name for the SNI certificate. Only one domain name can be specified for each certificate. Wildcard-domain certificates are supported.</li></ul>
-</div></div>
-</li><li id="cce_01_0251__li58516183919"><strong id="cce_01_0251__b1962254816312">Security Policy</strong>: combinations of different TLS versions and supported cipher suites available to HTTPS listeners.<p id="cce_01_0251__p15856189913">For details about security policies, see ELB User Guide.</p>
-<div class="note" id="cce_01_0251__note885111811917"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0251__ul6851018492"><li id="cce_01_0251__li15851118697"><strong id="cce_01_0251__b145331732163211">Security Policy</strong> is available only when <strong id="cce_01_0251__b7534173216327">HTTPS</strong> is selected.</li><li id="cce_01_0251__li285171815918">This function is supported only for clusters of v1.17.9 and later.</li></ul>
-</div></div>
-</li></ul>
-</li><li id="cce_01_0251__li78601812913"><strong id="cce_01_0251__b186201409327">Forwarding Policies</strong>: When the access address of a request matches the forwarding policy (a forwarding policy consists of a domain name and URL, for example, 10.117.117.117:80/helloworld), the request is forwarded to the corresponding target Service for processing. Click <span class="uicontrol" id="cce_01_0251__uicontrol17947248330"><b>Add Forwarding Policies</b></span> to add multiple forwarding policies.<ul id="cce_01_0251__ul486131819915"><li id="cce_01_0251__li3858186912"><strong id="cce_01_0251__b17856971330">Domain Name</strong>: actual domain name. Ensure that the domain name has been registered and archived. Once a domain name rule is configured, you must use the domain name for access.</li><li id="cce_01_0251__li2086218897">Rule Matching<ul id="cce_01_0251__ul5861518393"><li id="cce_01_0251__li168511815919"><strong id="cce_01_0251__b2029617457339">Prefix match</strong>: If the URL is set to <strong id="cce_01_0251__b1329618455339">/healthz</strong>, the URL that meets the prefix can be accessed. For example, <strong id="cce_01_0251__b16184165019335">/healthz/v1</strong> and <strong id="cce_01_0251__b118495019332">/healthz/v2</strong>.</li><li id="cce_01_0251__li14861818798"><strong id="cce_01_0251__b19144235496">Exact match</strong>: The URL can be accessed only when it is fully matched. For example, if the URL is set to <strong id="cce_01_0251__b18474185653313">/healthz</strong>, only /healthz can be accessed.</li><li id="cce_01_0251__li108612185917"><strong id="cce_01_0251__b365113814616">Regular expression</strong>: The URL is matched based on the regular expression. For example, if the regular expression is <strong id="cce_01_0251__b88616181699">/[A-Za-z0-9_.-]+/test</strong>, all URLs that comply with this rule can be accessed, for example, <strong id="cce_01_0251__b340611323410">/abcA9/test</strong> and <strong id="cce_01_0251__b1940610303419">/v1-Ab/test</strong>. Two regular expression standards are supported: POSIX and Perl.</li></ul>
-</li><li id="cce_01_0251__li188619181495"><strong id="cce_01_0251__b1031418943419">URL</strong>: access path to be registered, for example, <strong id="cce_01_0251__b731413963417">/healthz</strong>.</li><li id="cce_01_0251__li386818791"><strong id="cce_01_0251__b82161111183418">Target Service</strong>: Select an existing Service or create a Service. Services that do not meet search criteria are automatically filtered out.</li><li id="cce_01_0251__li118614181492"><strong id="cce_01_0251__b19846201914349">Service Access Port</strong>: Select the access port of the target Service.</li><li id="cce_01_0251__li1868182913"><strong id="cce_01_0251__b11534202312341">ELB Settings</strong>: If multiple routes use the same Service, they are using the same Service load balancing configuration.<ul id="cce_01_0251__ul317613536555"><li id="cce_01_0251__li217625365513"><strong id="cce_01_0251__b1492872773410">Algorithm Type</strong>: Three algorithms are available: weighted round robin, weighted least connections algorithm, or source IP hash. For details about the allocation policies, see <a href="cce_01_0014.html">LoadBalancer</a>.</li><li id="cce_01_0251__li1176185318553"><strong id="cce_01_0251__b152349462343">Sticky Session</strong>: This function is disabled by default. After this function is enabled, you need to select a sticky session type and set the sticky session duration.<p id="cce_01_0251__p19176105320550"><strong id="cce_01_0251__b1151735293413">ELB cookie</strong>: The load balancer generates a cookie after receiving a request from the client. All subsequent requests with the cookie are routed to the same backend server for processing.</p>
-<p id="cce_01_0251__p817605316559"><strong id="cce_01_0251__b12112165893414">Application cookie</strong>: The application deployed on the backend server generates a cookie after receiving the first request from the client. All subsequent requests that contain the cookie are routed to this backend server. This sticky session type is supported by shared load balancers.</p>
-</li><li id="cce_01_0251__li2176115325511"><strong id="cce_01_0251__b16485772116">Health Check</strong>: This function is disabled by default. To enable this function, set parameters as prompted. For details about the parameters, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/elb/en-us_topic_0162227063.html" target="_blank" rel="noopener noreferrer">Configuring a Health Check</a>.</li></ul>
-</li><li id="cce_01_0251__li18862184917"><strong id="cce_01_0251__b171876474359">Operation</strong>: Click <span class="uicontrol" id="cce_01_0251__uicontrol161881147113516"><b>Delete</b></span> to delete the configuration.</li></ul>
-</li></ul>
-</div>
-</p></li><li id="cce_01_0251__li151183363920"><span>After the configuration is complete, click <span class="uicontrol" id="cce_01_0251__uicontrol81512492353"><b>Create</b></span>. After the ingress is created, it is displayed in the ingress list.</span><p><p id="cce_01_0251__p22726310146">On the ELB console, you can view the ELB automatically created through CCE. The default name is <span class="parmvalue" id="cce_01_0251__parmvalue181813519536"><b>cce-lb-ingress.UID</b></span>. Click the ELB name to access its details page. On the<strong id="cce_01_0251__b16444435134117"> Listeners</strong> tab page, view the route settings of the ingress, including the URL, listener port, and backend server group port.</p>
-<div class="notice" id="cce_01_0251__note1849713206344"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0251__p151493617349">After the ingress is created, upgrade and maintain the selected load balancer on the CCE console. Do not maintain the load balancer on the ELB console. Otherwise, the ingress service may be abnormal.</p>
-</div></div>
-</p></li><li id="cce_01_0251__li9993123518163"><span>Access the /healthz interface of the workload, for example, workload <strong id="cce_01_0251__b16997141953610">defaultbackend</strong>.</span><p><ol type="a" id="cce_01_0251__ol17405113342712"><li id="cce_01_0251__li94051633182711">Obtain the access address of the /healthz interface of the workload. The access address consists of the load balancer IP address, external port, and mapping URL, for example, 10.**.**.**:80/healthz.</li><li id="cce_01_0251__li14181114162720">Enter the URL of the /healthz interface, for example, http://10.**.**.**:80/healthz, in the address box of the browser to access the workload, as shown in <a href="#cce_01_0251__fig17115192714367">Figure 1</a>.<div class="fignone" id="cce_01_0251__fig17115192714367"><a name="cce_01_0251__fig17115192714367"></a><a name="fig17115192714367"></a><span class="figcap"><b>Figure 1 </b>Accessing the /healthz interface of defaultbackend</span><br><span><img id="cce_01_0251__image9587202217261" src="en-us_image_0000001192723194.png"></span></div>
-</li></ol>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0251__section49241995184"><h4 class="sectiontitle">Updating an Ingress</h4><p id="cce_01_0251__p26821071818">After adding an ingress, you can update its port, domain name, and route configuration. The procedure is as follows:</p>
-<div class="note" id="cce_01_0251__note101453337505"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0251__p129061424192410">You can modify the load balancer settings, including algorithm, sticky session, and health check configurations, after you select a Service in <strong id="cce_01_0251__b2191526153419">Forwarding Policies</strong> on the CCE console. Do not modify these configurations on the ELB console.</p>
-</div></div>
-<ol id="cce_01_0251__ol96981071812"><li id="cce_01_0251__li116820104187"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0251__b168171332153412">Resource Management</strong> &gt; <strong id="cce_01_0251__b158171932133415">Network</strong>. On the <strong id="cce_01_0251__b11317113893410">Ingresses</strong> tab page, filter ingresses by cluster and namespace, and click <strong id="cce_01_0251__b123171438203412">Update</strong> for the ingress to be updated.</span></li><li id="cce_01_0251__li6691610181813"><span>On the <strong id="cce_01_0251__b1876154810342">Update Ingress</strong> page, modify the required parameters.</span><p><p id="cce_01_0251__p42681302411">The parameters are the same as those set during creation.</p>
-</p></li><li id="cce_01_0251__li12696104181"><span>Click <strong id="cce_01_0251__b147521644123511">Submit</strong>. The ingress will be updated for the workload.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0248.html">Ingress</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0252.html b/docs/cce/umn/cce_01_0252.html
deleted file mode 100644
index b6e957e3..00000000
--- a/docs/cce/umn/cce_01_0252.html
+++ /dev/null
@@ -1,595 +0,0 @@
-<a name="cce_01_0252"></a><a name="cce_01_0252"></a>
-
-<h1 class="topictitle1">Using kubectl to Create an ELB Ingress</h1>
-<div id="body0000001204453469"><div class="section" id="cce_01_0252__section12681123215510"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0252__p1557481754814">This section uses an <a href="cce_01_0047.html#cce_01_0047__section155246177178">Nginx workload</a> as an example to describe how to create an ELB ingress using kubectl.</p>
-<ul id="cce_01_0252__ul849465471710"><li id="cce_01_0252__li17883121171816">If no load balancer is available in the same VPC, CCE can automatically create a load balancer when creating an ingress. For details, see <a href="#cce_01_0252__section3675115714214">Creating an Ingress - Automatically Creating a Load Balancer</a>.</li><li id="cce_01_0252__li549455416173">If a load balancer is available in the same VPC, perform the operation by referring to <a href="#cce_01_0252__section32300431736">Creating an Ingress - Interconnecting with an Existing Load Balancer</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0252__section16541428173911"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0252__ul314513407396"><li id="cce_01_0252__li1578113511562">An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a sample Nginx workload by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0216.html">Creating a DaemonSet</a>.</li><li id="cce_01_0252__li1069122124913">A NodePort Service has been configured for the workload. For details about how to configure the Service, see <a href="cce_01_0142.html">NodePort</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0252__section3675115714214"><a name="cce_01_0252__section3675115714214"></a><a name="section3675115714214"></a><h4 class="sectiontitle">Creating an Ingress - Automatically Creating a Load Balancer</h4><p id="cce_01_0252__p9677555226">The following describes how to run the kubectl command to automatically create a load balancer when creating an ingress.</p>
-<ol id="cce_01_0252__ol6677955226"><li id="cce_01_0252__li367719515229"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0252__li767713516221"><span>Create a YAML file named <strong id="cce_01_0252__b567711592218">ingress-test.yaml</strong>. The file name can be customized.</span><p><p id="cce_01_0252__p1367718512222"><strong id="cce_01_0252__b2067775112212">vi ingress-test.yaml</strong></p>
-<div class="note" id="cce_01_0252__note067711592220"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0252__ul167775182217"><li id="cce_01_0252__li967719592216">For clusters of v1.15 or later, the value of <span class="parmname" id="cce_01_0252__parmname2054172314420"><b>apiVersion</b></span> is <span class="parmvalue" id="cce_01_0252__parmvalue1522872794220"><b>networking.k8s.io/v1beta1</b></span>.</li><li id="cce_01_0252__li367719522216">For clusters of v1.13 or earlier, the value of <span class="parmname" id="cce_01_0252__parmname55531430134213"><b>apiVersion</b></span> is <span class="parmvalue" id="cce_01_0252__parmvalue1272523394214"><b>extensions/v1beta1</b></span>.</li></ul>
-</div></div>
-<p id="cce_01_0252__p126774520228">You can create a load balancer as required. The YAML files are as follows:</p>
-<div class="p" id="cce_01_0252__p1267715152213"><strong id="cce_01_0252__b597122111466">Example of using a dedicated public network load balancer</strong>:<pre class="screen" id="cce_01_0252__screen2677058229">apiVersion: networking.k8s.io/v1beta1
-kind: Ingress 
-metadata: 
-  name: ingress-test
-  annotations: 
-    <strong id="cce_01_0252__b1677453223"><span style="color:#FF0000;">kubernetes.io/elb.class: union</span></strong>
-<strong id="cce_01_0252__b15677051223"><span style="color:#FF0000;">    kubernetes.io/ingress.class: cce</span></strong>
-    kubernetes.io/elb.port: '80'
-    <strong style="color:#FF0000;" id="cce_01_0252__b126779522220">kubernetes.io/elb.autocreate: </strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b1367717522212">      '{</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b156777519225">          "type":"public",</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b567705142213">          "bandwidth_name":"cce-bandwidth-******",</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b12677155152219">          "bandwidth_chargemode":"traffic",</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b767718532210">          "bandwidth_size":5,</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b167775142217">          "bandwidth_sharetype":"PER",</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b106775542212">          "eip_type":"5_bgp"</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b206786513227">        }'</strong>
-spec:
-  rules: 
-  - host: ''
-    http: 
-      paths: 
-      - path: '/'
-        backend: 
-          serviceName: <strong id="cce_01_0252__b93475533516"><span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">your_service_name</span><span style="color:#FF0000;">&gt;</span></strong>  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
-</div>
-<p id="cce_01_0252__p1868417552215"><strong id="cce_01_0252__b1542065272115">Example of using a dedicated public network load balancer:</strong></p>
-<pre class="screen" id="cce_01_0252__screen8685357221">apiVersion: networking.k8s.io/v1beta1
-kind: Ingress
-metadata:
-  name: ingress-test
-  namespace: default
-  annotations:
-    <strong style="color:#FF0000;" id="cce_01_0252__b66854520225">kubernetes.io/elb.class:</strong> <strong style="color:#FF0000;" id="cce_01_0252__b5685256224">performance</strong>
-<strong id="cce_01_0252__b66852517226"><span style="color:#FF0000;">    kubernetes.io/ingress.class: cce</span></strong>
-    kubernetes.io/elb.port: '80'
-    kubernetes.io/elb.autocreate: 
-      '{
-          "type": "public",
-          "bandwidth_name": "cce-bandwidth-******",
-          "bandwidth_chargemode": "traffic",
-          "bandwidth_size": 5,
-          "bandwidth_sharetype": "PER",
-          "eip_type": "5_bgp",
-          <strong style="color:#FF0000;" id="cce_01_0252__b76854516228">"available_zone": [</strong>
-<strong id="cce_01_0252__b156859510225">              </strong><span style="color:#FF0000;">"</span><span style="color:#FF0000;" id="cce_01_0252__text106391359594">eu-de-01</span><span style="color:#FF0000;">"</span>
-<strong id="cce_01_0252__b56859511226"><span style="color:#FF0000;">          ],</span></strong>
-<strong id="cce_01_0252__b968514518223"><span style="color:#FF0000;">          "l7_flavor_name": "L7_flavor.elb.s1.small"</span></strong>
-       }'
-spec:
-  rules:
-  - host: ''
-    http:
-      paths:
-      - path: '/'
-        backend: 
-          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0252__table7686256226" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0252__row19686145162220"><th align="left" class="cellrowborder" valign="top" width="24.542454245424544%" id="mcps1.3.3.3.2.2.7.2.5.1.1"><p id="cce_01_0252__p56866582212">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="14.331433143314332%" id="mcps1.3.3.3.2.2.7.2.5.1.2"><p id="cce_01_0252__p136861358222">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="17.461746174617463%" id="mcps1.3.3.3.2.2.7.2.5.1.3"><p id="cce_01_0252__p0686154226">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="43.66436643664366%" id="mcps1.3.3.3.2.2.7.2.5.1.4"><p id="cce_01_0252__p768615162214">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0252__row968615513223"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p36867562211">kubernetes.io/elb.class</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p1968618512213">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p12686135112213">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p186865519228">Select a proper load balancer type.</p>
-<p id="cce_01_0252__p18686651226">The value can be:</p>
-<ul id="cce_01_0252__ul2686254223"><li id="cce_01_0252__li7686105142216"><strong id="cce_01_0252__b539143416450">union</strong>: shared load balancer</li><li id="cce_01_0252__li1768615520225"><strong id="cce_01_0252__b12637149171617">performance</strong>: dedicated load balancer..</li></ul>
-<p id="cce_01_0252__p268655142217">The default value is <span class="parmvalue" id="cce_01_0252__parmvalue1898494571611"><b>union</b></span>.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row136862502210"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p668610592216">kubernetes.io/ingress.class</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p14686205122212">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p7686175122215">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p12686115182216"><strong id="cce_01_0252__b05131841162610">cce</strong>: The self-developed ELBIngress is used.</p>
-<p id="cce_01_0252__p168610515220">This parameter is mandatory when an ingress is created by calling the API.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row1868617513229"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p15686185132218">kubernetes.io/elb.port</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p6686115112215">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p196861356223">Integer</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p168611502215">This parameter indicates the external port registered with the address of the LoadBalancer Service.</p>
-<p id="cce_01_0252__p668618516224">Supported range: 1 to 65535</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row106861582218"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p1068618512224">kubernetes.io/elb.subnet-id</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p068615516223">-</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p068612517228">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p568611582215">ID of the subnet where the cluster is located. The value can contain 1 to 100 characters.</p>
-<ul id="cce_01_0252__ul568616517224"><li id="cce_01_0252__li26861653221">Mandatory when a cluster of v1.11.7-r0 or earlier is to be automatically created.</li><li id="cce_01_0252__li1968635152218">Optional for clusters later than v1.11.7-r0. It is left blank by default.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0252__row76869516221"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p166868582215">kubernetes.io/elb.enterpriseID</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p6686059226">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p1868665112217">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p168655192216"><strong id="cce_01_0252__b148285312189">Kubernetes clusters of v1.15 and later versions support this field. In Kubernetes clusters earlier than v1.15, load balancers are created in the default project by default.</strong></p>
-<p id="cce_01_0252__p196864510227">ID of the enterprise project in which the load balancer will be created.</p>
-<p id="cce_01_0252__p206862518224">The value contains 1 to 100 characters.</p>
-<p id="cce_01_0252__p10686205102218"><strong id="cce_01_0252__b10474139181918">How to obtain</strong>:</p>
-<p id="cce_01_0252__p1168611512222">Log in to the management console and choose <strong id="cce_01_0252__b2295137165213">Enterprise</strong> &gt; <strong id="cce_01_0252__b6295127125211">Project Management</strong> on the top menu bar. In the list displayed, click the name of the target enterprise project, and copy the ID on the enterprise project details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row1686115112217"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p146861455229">kubernetes.io/elb.autocreate</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p19686254222">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p96864511228">elb.autocreate object</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p2687254227">Whether to automatically create a load balancer associated with an ingress. For details about the field description, see <a href="#cce_01_0252__table268711532210">Table 2</a>.</p>
-<p id="cce_01_0252__p106872519226"><strong id="cce_01_0252__b92491237198">Example</strong></p>
-<ul id="cce_01_0252__ul166872552218"><li id="cce_01_0252__li1268785112220">If a public network load balancer will be automatically created, set this parameter to the following value:<p id="cce_01_0252__p136872515228"><a name="cce_01_0252__li1268785112220"></a><a name="li1268785112220"></a> '{"type":"public","bandwidth_name":"cce-bandwidth-******","bandwidth_chargemode":"traffic","bandwidth_size":5,"bandwidth_sharetype":"PER","eip_type":"5_bgp","name":"james"}'</p>
-</li><li id="cce_01_0252__li16687255229">If a private network load balancer will be automatically created, set this parameter to the following value:<p id="cce_01_0252__p15687959222"><a name="cce_01_0252__li16687255229"></a><a name="li16687255229"></a>{"type":"inner","name":"A-location-d-test"}</p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0252__row116871853222"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p86876511227">host</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p268785142219">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p1868713582210">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p56876515224">Domain name for accessing the Service. By default, this parameter is left blank, and the domain name needs to be fully matched.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row166871513221"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p26872542219">path</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p56874519227">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p18687175112220">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p86872516225">User-defined route path. All external access requests must match <strong id="cce_01_0252__b9389202274617">host</strong> and <strong id="cce_01_0252__b6627192413464">path</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row568725172212"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p1268711511220">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p568725152210">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p168735122213">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p968725102211">Name of the target Service bound to the ingress.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row12687145162215"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p868715518227">servicePort</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p66871513229">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p268710502212">Integer</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p268725112215">Access port of the target Service.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row56878518222"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.3.3.2.2.7.2.5.1.1 "><p id="cce_01_0252__p1968717516225">ingress.beta.kubernetes.io/url-match-mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.3.3.2.2.7.2.5.1.2 "><p id="cce_01_0252__p06871551221">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.3.3.2.2.7.2.5.1.3 "><p id="cce_01_0252__p368765202212">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.3.3.2.2.7.2.5.1.4 "><p id="cce_01_0252__p17687954227">Route matching policy.</p>
-<p id="cce_01_0252__p2687851225">Default: <strong id="cce_01_0252__b1341931662017">STARTS_WITH</strong> (prefix match)</p>
-<p id="cce_01_0252__p14687135102217">Options:</p>
-<ul id="cce_01_0252__ul1368755172219"><li id="cce_01_0252__li166876520222"><strong id="cce_01_0252__b18728820145814">EQUAL_TO</strong>: exact match</li><li id="cce_01_0252__li136873520227"><strong id="cce_01_0252__b2251723115812">STARTS_WITH</strong>: prefix match</li><li id="cce_01_0252__li19687159229"><strong id="cce_01_0252__b45697255581">REGEX</strong>: regular expression match</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0252__table268711532210"></a><a name="table268711532210"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0252__table268711532210" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data structure of the elb.autocreate field</caption><thead align="left"><tr id="cce_01_0252__row46871051228"><th align="left" class="cellrowborder" valign="top" width="24.612461246124614%" id="mcps1.3.3.3.2.2.8.2.5.1.1"><p id="cce_01_0252__p568718511222">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="14.481448144814483%" id="mcps1.3.3.3.2.2.8.2.5.1.2"><p id="cce_01_0252__p17687145202214">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="15.771577157715772%" id="mcps1.3.3.3.2.2.8.2.5.1.3"><p id="cce_01_0252__p12687259222">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="45.13451345134513%" id="mcps1.3.3.3.2.2.8.2.5.1.4"><p id="cce_01_0252__p136878542215">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0252__row1468810518229"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.3.3.2.2.8.2.5.1.1 "><p id="cce_01_0252__p106881052228">type</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.3.3.2.2.8.2.5.1.2 "><p id="cce_01_0252__p36889532210">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.3.3.2.2.8.2.5.1.3 "><p id="cce_01_0252__p106887522210">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.3.3.2.2.8.2.5.1.4 "><p id="cce_01_0252__p1868815152219">Network type of the load balancer.</p>
-<ul id="cce_01_0252__ul36884518226"><li id="cce_01_0252__li66887511222"><strong id="cce_01_0252__b17276125216587">public</strong>: public network load balancer</li><li id="cce_01_0252__li1068812592213"><strong id="cce_01_0252__b372920248206">inner</strong>: private network load balancer</li></ul>
-<p id="cce_01_0252__p1068817515229">The default value is <span class="parmvalue" id="cce_01_0252__parmvalue153821636102014"><b>inner</b></span>.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row268813515229"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.3.3.2.2.8.2.5.1.1 "><p id="cce_01_0252__p1768817520227">bandwidth_name</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.3.3.2.2.8.2.5.1.2 "><p id="cce_01_0252__p06881952229">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.3.3.2.2.8.2.5.1.3 "><p id="cce_01_0252__p668815522218">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.3.3.2.2.8.2.5.1.4 "><p id="cce_01_0252__p368820520226">Bandwidth name. The default value is <span class="parmvalue" id="cce_01_0252__parmvalue17291164862015"><b>cce-bandwidth-******</b></span>.</p>
-<p id="cce_01_0252__p1468845132213">Value range: a string of 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row2068814552210"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.3.3.2.2.8.2.5.1.1 "><p id="cce_01_0252__p1868835122212">bandwidth_chargemode</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.3.3.2.2.8.2.5.1.2 "><p id="cce_01_0252__p86886512223">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.3.3.2.2.8.2.5.1.3 "><p id="cce_01_0252__p1368817512223">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.3.3.2.2.8.2.5.1.4 "><p id="cce_01_0252__p1868818514222">Bandwidth billing mode.</p>
-<ul id="cce_01_0252__ul5688256222"><li id="cce_01_0252__li368810512223"><strong id="cce_01_0252__b1472965552014">traffic</strong>: billed by traffic</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0252__row116881855228"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.3.3.2.2.8.2.5.1.1 "><p id="cce_01_0252__p206884582219">bandwidth_size</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.3.3.2.2.8.2.5.1.2 "><p id="cce_01_0252__p2068817592216">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.3.3.2.2.8.2.5.1.3 "><p id="cce_01_0252__p568816511224">Integer</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.3.3.2.2.8.2.5.1.4 "><p id="cce_01_0252__p166888522214">Bandwidth size. The value ranges from 1 Mbit/s to 2000 Mbit/s by default. The actual range varies depending on the configuration in each region.</p>
-<ul id="cce_01_0252__ul46883511224"><li id="cce_01_0252__li1168817502213">The minimum increment for bandwidth adjustment varies depending on the bandwidth range. The details are as follows:<ul id="cce_01_0252__ul1468875102216"><li id="cce_01_0252__li10688358224">The minimum increment is 1 Mbit/s if the allowed bandwidth ranges from 0 Mbit/s to 300 Mbit/s (with 300 Mbit/s included).</li><li id="cce_01_0252__li1688852228">The minimum increment is 50 Mbit/s if the allowed bandwidth ranges from 300 Mbit/s to 1000 Mbit/s.</li><li id="cce_01_0252__li10688165172211">The minimum increment is 500 Mbit/s if the allowed bandwidth is greater than 1000 Mbit/s.</li></ul>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0252__row2688257226"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.3.3.2.2.8.2.5.1.1 "><p id="cce_01_0252__p668814542214">bandwidth_sharetype</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.3.3.2.2.8.2.5.1.2 "><p id="cce_01_0252__p868817517227">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.3.3.2.2.8.2.5.1.3 "><p id="cce_01_0252__p66881853227">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.3.3.2.2.8.2.5.1.4 "><p id="cce_01_0252__p46881053226">Bandwidth type.</p>
-<p id="cce_01_0252__p579771319477"><strong id="cce_01_0252__b165303131705">PER</strong>: dedicated bandwidth</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row1668895162218"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.3.3.2.2.8.2.5.1.1 "><p id="cce_01_0252__p36889518224">eip_type</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.3.3.2.2.8.2.5.1.2 "><p id="cce_01_0252__p1368818514228">Yes for public network load balancers</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.3.3.2.2.8.2.5.1.3 "><p id="cce_01_0252__p86891352224">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.3.3.2.2.8.2.5.1.4 "><p id="cce_01_0252__p440013273464">EIP type, which may vary depending on sites. For details, see the type parameter specified when <a href="https://docs.otc.t-systems.com/api/eip/eip_api_0001.html#eip_api_0001__en-us_topic_0201534274_table44471219" target="_blank" rel="noopener noreferrer">creating an EIP</a>.</p>
-<ul id="cce_01_0252__ul18765175214406"><li id="cce_01_0252__li27656521408"><strong id="cce_01_0252__b144771728607">5_bgp</strong>: dynamic BGP</li><li id="cce_01_0252__li18126733269"><strong id="cce_01_0252__b15925240112412">5_gray</strong>: dedicated load balancer</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0252__row3689954226"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.3.3.2.2.8.2.5.1.1 "><p id="cce_01_0252__p9689157227">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.3.3.2.2.8.2.5.1.2 "><p id="cce_01_0252__p146895562212">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.3.3.2.2.8.2.5.1.3 "><p id="cce_01_0252__p146893516226">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.3.3.2.2.8.2.5.1.4 "><p id="cce_01_0252__p26892518226">Name of the automatically created load balancer.</p>
-<p id="cce_01_0252__p126895522211">Value range: a string of 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
-<p id="cce_01_0252__p268916512216">Default value: <span class="parmvalue" id="cce_01_0252__parmvalue92879242213"><b>cce-lb+ingress.UID</b></span></p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0252__li15690155162214"><span>Create an ingress.</span><p><p id="cce_01_0252__p1469065162217"><strong id="cce_01_0252__b116909514225">kubectl create -f ingress-test.yaml</strong></p>
-<p id="cce_01_0252__p10690354229">If information similar to the following is displayed, the ingress has been created.</p>
-<pre class="screen" id="cce_01_0252__screen2690185162210">ingress/ingress-test created</pre>
-<p id="cce_01_0252__p1069015112213"><strong id="cce_01_0252__b1569005182213">kubectl get ingress</strong></p>
-<p id="cce_01_0252__p969015582210">If information similar to the following is displayed, the ingress has been created successfully and the workload is accessible.</p>
-<pre class="screen" id="cce_01_0252__screen66906502216">NAME             HOSTS     ADDRESS          PORTS   AGE
-ingress-test     *         121.**.**.**     80      10s</pre>
-</p></li><li id="cce_01_0252__li176903572218"><span>Enter <strong id="cce_01_0252__b1331192214233">http://<em id="cce_01_0252__i15305132210235">121.**.**.**</em>:80</strong> in the address box of the browser to access the workload (for example, <a href="cce_01_0047.html#cce_01_0047__section155246177178">Nginx workload</a>).</span><p><p id="cce_01_0252__p17690155132219"><strong id="cce_01_0252__b07511130172314"><em id="cce_01_0252__i15750830142320">121.**.**.**</em></strong> indicates the IP address of the unified load balancer.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0252__section32300431736"><a name="cce_01_0252__section32300431736"></a><a name="section32300431736"></a><h4 class="sectiontitle">Creating an Ingress - Interconnecting with an Existing Load Balancer</h4><div class="p" id="cce_01_0252__p1642165110712">CCE allows you to connect to an existing load balancer when creating an ingress.<div class="note" id="cce_01_0252__note1992012366590"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0252__ul1892013362598"><li id="cce_01_0252__li1492043625919">For clusters of v1.15 or later, the value of <span class="parmname" id="cce_01_0252__parmname2409646192512"><b>apiVersion</b></span> is <span class="parmvalue" id="cce_01_0252__parmvalue11416446102514"><b>networking.k8s.io/v1beta1</b></span>.</li><li id="cce_01_0252__li1292017362591">For clusters of v1.13 or earlier, the value of <span class="parmname" id="cce_01_0252__parmname16617155218252"><b>apiVersion</b></span> is <span class="parmvalue" id="cce_01_0252__parmvalue1462325219256"><b>extensions/v1beta1</b></span>.</li><li id="cce_01_0252__li7341191122314">To interconnect with an existing dedicated load balancer, ensure that HTTP is supported and the network type supports private networks.</li></ul>
-</div></div>
-</div>
-<p id="cce_01_0252__p169201236125919"><strong id="cce_01_0252__b10747178102613">If the cluster version is 1.15 or later, the YAML file configuration is as follows:</strong></p>
-<pre class="screen" id="cce_01_0252__screen3921193613592">apiVersion: networking.k8s.io/v1beta1
-kind: Ingress 
-metadata: 
-  name: ingress-test
-  annotations: 
-    kubernetes.io/elb.class: performance                               # Load balancer type
-    kubernetes.io/elb.id: <strong id="cce_01_0252__b209391123532"><span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">your_elb_id</span><span style="color:#FF0000;">&gt;</span><span style="color:#FF0000;">  # Replace it with the ID of your existing load balancer.</span></strong>
-    kubernetes.io/elb.ip: <span style="color:#FF0000;">&lt;</span><strong style="color:#FF0000;" id="cce_01_0252__b31921352182817">your_elb_ip&gt;  # Replace it with your existing load balancer IP.</strong>
-    kubernetes.io/elb.port: '80'
-    <strong id="cce_01_0252__b119811533153419"><span style="color:#FF0000;">kubernetes.io/ingress.class: cce</span></strong>
-spec:
-  rules: 
-  - host: ''
-    http: 
-      paths: 
-      - path: '/'
-        backend: 
-          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0252__table1892373611597" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0252__row16921123616594"><th align="left" class="cellrowborder" valign="top" width="24.772477247724773%" id="mcps1.3.4.5.2.5.1.1"><p id="cce_01_0252__p092111361598">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.691369136913693%" id="mcps1.3.4.5.2.5.1.2"><p id="cce_01_0252__p4921736125920">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.821382138213819%" id="mcps1.3.4.5.2.5.1.3"><p id="cce_01_0252__p992173615594">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="47.714771477147714%" id="mcps1.3.4.5.2.5.1.4"><p id="cce_01_0252__p15921143625917">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0252__row113671738124215"><td class="cellrowborder" valign="top" width="24.772477247724773%" headers="mcps1.3.4.5.2.5.1.1 "><p id="cce_01_0252__p19972123914427">kubernetes.io/elb.class</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.691369136913693%" headers="mcps1.3.4.5.2.5.1.2 "><p id="cce_01_0252__p139721339164218">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.4.5.2.5.1.3 "><p id="cce_01_0252__p49721439164212">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.4.5.2.5.1.4 "><p id="cce_01_0252__p9972193994212">Select a proper load balancer type.</p>
-<p id="cce_01_0252__p1897216395429">The value can be:</p>
-<ul id="cce_01_0252__ul5972339174217"><li id="cce_01_0252__li119721239124212"><strong id="cce_01_0252__b100657043">union</strong>: shared load balancer</li><li id="cce_01_0252__li10972123915427"><strong id="cce_01_0252__b69766886">performance</strong>: dedicated load balancer..</li></ul>
-<p id="cce_01_0252__p197219392427">Defaults to <strong id="cce_01_0252__b352192615394">union</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row892173675917"><td class="cellrowborder" valign="top" width="24.772477247724773%" headers="mcps1.3.4.5.2.5.1.1 "><p id="cce_01_0252__p1292133635910">kubernetes.io/elb.id</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.691369136913693%" headers="mcps1.3.4.5.2.5.1.2 "><p id="cce_01_0252__p8921936145914">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.4.5.2.5.1.3 "><p id="cce_01_0252__p09214367590">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.4.5.2.5.1.4 "><p id="cce_01_0252__p692133675916">This parameter indicates the ID of a load balancer. The value can contain 1 to 100 characters.</p>
-<p id="cce_01_0252__p1892183614596"><strong id="cce_01_0252__b81921054522">How to obtain</strong>:</p>
-<p id="cce_01_0252__p1092183616594">On the management console, click <strong id="cce_01_0252__b53131550230">Service List</strong>, and choose <strong id="cce_01_0252__b113135508315">Networking</strong> &gt; <strong id="cce_01_0252__b113138507316">Elastic Load Balance</strong>. Click the name of the target load balancer. On the <strong id="cce_01_0252__b331312501136">Summary</strong> tab page, find and copy the ID.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row2921183614593"><td class="cellrowborder" valign="top" width="24.772477247724773%" headers="mcps1.3.4.5.2.5.1.1 "><p id="cce_01_0252__p159212365592">kubernetes.io/elb.ip</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.691369136913693%" headers="mcps1.3.4.5.2.5.1.2 "><p id="cce_01_0252__p492116364592">Yes</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.4.5.2.5.1.3 "><p id="cce_01_0252__p79211436195917">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.4.5.2.5.1.4 "><p id="cce_01_0252__p4921183685915">This parameter indicates the service address of a load balancer. The value can be the public IP address of a public network load balancer or the private IP address of a private network load balancer.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0252__section64211114202417"><h4 class="sectiontitle">Configuring HTTPS Certificates</h4><p id="cce_01_0252__p2058012317447">Ingress supports <span class="keyword" id="cce_01_0252__keyword6238179135117">TLS certificate configuration</span> and provides security services in <span class="keyword" id="cce_01_0252__keyword155224405114">HTTPS</span> mode.</p>
-<div class="note" id="cce_01_0252__note84173146243"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0252__ul18417171413244"><li id="cce_01_0252__li7417131417242">If a Service needs to be exposed using HTTPS, you must configure the TLS certificate in the ingress. For details on how to create a secret, see <a href="cce_01_0153.html">Creating a Secret</a>.</li><li id="cce_01_0252__li12417214122413">If HTTPS is used for the same port of the same load balancer of multiple ingresses, you must select the same certificate.</li></ul>
-</div></div>
-<ol id="cce_01_0252__ol184201514102417"><li id="cce_01_0252__li18417114112414"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0252__li134181914132418"><span>Run the following command to create a YAML file named <strong id="cce_01_0252__b20417151418241">ingress-test-secret.yaml</strong> (the file name can be customized):</span><p><p id="cce_01_0252__p3417614182410"><strong id="cce_01_0252__b641751472411">vi ingress-test-secret.yaml</strong></p>
-<div class="p" id="cce_01_0252__p841811422419"><strong id="cce_01_0252__b8121165018283">The YAML file is configured as follows:</strong><pre class="screen" id="cce_01_0252__screen441821472419">apiVersion: v1
-data:
-  tls.crt: <strong id="cce_01_0252__b15418111422418">LS0******tLS0tCg==</strong>
-  tls.key: <strong id="cce_01_0252__b1841811442412">LS0tL******0tLS0K</strong>
-kind: Secret
-metadata:
-  annotations:
-    description: test for ingressTLS secrets
-  name: ingress-test-secret
-  namespace: default
-<strong style="color:#FF0000;" id="cce_01_0252__b19418201417248">type: IngressTLS</strong></pre>
-</div>
-<div class="note" id="cce_01_0252__note134186146243"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0252__p14181514142419">In the preceding information, <strong id="cce_01_0252__b065555418611">tls.crt</strong> and <strong id="cce_01_0252__b165617541264">tls.key</strong> are only examples. Replace them with the actual files. The values of <strong id="cce_01_0252__b124733011292">tls.crt</strong> and <strong id="cce_01_0252__b1647930132920">tls.key</strong> are the content encrypted using Base64.</p>
-</div></div>
-</p></li><li id="cce_01_0252__li104181614202415"><span>Create a secret.</span><p><p id="cce_01_0252__p4418141417245"><strong id="cce_01_0252__b1841817148245">kubectl create -f <strong id="cce_01_0252__b1741816145246">ingress-test-secret.yaml</strong></strong></p>
-<p id="cce_01_0252__p8418161413245">If information similar to the following is displayed, the secret is being created:</p>
-<pre class="screen" id="cce_01_0252__screen19418191417246">secret/ingress-test-secret created</pre>
-<p id="cce_01_0252__p14418914162410">View the created secrets.</p>
-<p id="cce_01_0252__p04185147249"><strong id="cce_01_0252__b14180142247">kubectl get secrets</strong></p>
-<p id="cce_01_0252__p164189149249">If information similar to the following is displayed, the secret has been created successfully:</p>
-<pre class="screen" id="cce_01_0252__screen74181143240">NAME                         TYPE                                  DATA      AGE
-ingress-test-secret          IngressTLS                            2         13s</pre>
-</p></li><li id="cce_01_0252__li741912140243"><span>Create a YAML file named <strong id="cce_01_0252__b1080120811319">ingress-test.yaml</strong>. The file name can be customized.</span><p><p id="cce_01_0252__p17418191410244"><strong id="cce_01_0252__b1418191472416">vi ingress-test.yaml</strong></p>
-<div class="note" id="cce_01_0252__note1841811432415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0252__p641841412416">Security policy (kubernetes.io/elb.tls-ciphers-policy) is supported only in clusters of v1.17.11 or later.</p>
-</div></div>
-<p id="cce_01_0252__p241810146242"><strong id="cce_01_0252__b19560145573912">Example YAML file to associate an existing load balancer:</strong></p>
-<pre class="screen" id="cce_01_0252__screen74180149243">apiVersion: networking.k8s.io/v1beta1
-kind: Ingress 
-metadata: 
-  name: ingress-test
-  annotations: 
-    kubernetes.io/elb.class: performance                               # Load balancer type
-    kubernetes.io/elb.id: &lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.
-    kubernetes.io/elb.ip: &lt;your_elb_ip&gt;  # Replace it with the IP of your existing load balancer.
-    kubernetes.io/ingress.class: cce
-    kubernetes.io/elb.port: <strong id="cce_01_0252__b541811147249"><span style="color:#FF0000;">'443'</span></strong>
-    <strong id="cce_01_0252__b9418201413249"><span style="color:#FF0000;">kubernetes.io/elb.tls-ciphers-policy: tls-1-2</span></strong>
-spec:
-<strong id="cce_01_0252__b241891413246"><span style="color:#FF0000;">  tls: </span></strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b4418181418242">  - secretName: ingress-test-secret</strong>
-  rules: 
-  - host: ''
-    http: 
-      paths: 
-      - path: '/'
-        backend: 
-          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0252__table74191314162416" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0252__row1141881432420"><th align="left" class="cellrowborder" valign="top" width="24.71247124712471%" id="mcps1.3.5.4.4.2.5.2.5.1.1"><p id="cce_01_0252__p24181614182410">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.751375137513753%" id="mcps1.3.5.4.4.2.5.2.5.1.2"><p id="cce_01_0252__p441891432411">Mandatory</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.821382138213819%" id="mcps1.3.5.4.4.2.5.2.5.1.3"><p id="cce_01_0252__p174188147243">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="47.714771477147714%" id="mcps1.3.5.4.4.2.5.2.5.1.4"><p id="cce_01_0252__p84181142246">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0252__row12419614122415"><td class="cellrowborder" valign="top" width="24.71247124712471%" headers="mcps1.3.5.4.4.2.5.2.5.1.1 "><p id="cce_01_0252__p18418131411241">kubernetes.io/elb.tls-ciphers-policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.751375137513753%" headers="mcps1.3.5.4.4.2.5.2.5.1.2 "><p id="cce_01_0252__p1341851472414">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.5.4.4.2.5.2.5.1.3 "><p id="cce_01_0252__p1941810146243">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.5.4.4.2.5.2.5.1.4 "><p id="cce_01_0252__p20418131419249">The default value is <span class="parmvalue" id="cce_01_0252__parmvalue141816146245"><b>tls-1-2</b></span>, which is the security policy used by the listener and takes effect only when the HTTPS protocol is used.</p>
-<p id="cce_01_0252__p9418614122414">Options:</p>
-<ul id="cce_01_0252__ul641916143241"><li id="cce_01_0252__li164193148248">tls-1-0</li><li id="cce_01_0252__li15419171419244">tls-1-1</li><li id="cce_01_0252__li9419161415248">tls-1-2</li><li id="cce_01_0252__li1141901452414">tls-1-2-strict</li></ul>
-<p id="cce_01_0252__p154191114182415">For details of cipher suites for each security policy, see <a href="#cce_01_0252__table9419191416246">Table 5</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row1741941412245"><td class="cellrowborder" valign="top" width="24.71247124712471%" headers="mcps1.3.5.4.4.2.5.2.5.1.1 "><p id="cce_01_0252__p0419111415244">tls</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.751375137513753%" headers="mcps1.3.5.4.4.2.5.2.5.1.2 "><p id="cce_01_0252__p7419171414244">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.5.4.4.2.5.2.5.1.3 "><p id="cce_01_0252__p114191714142413">Array of strings</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.5.4.4.2.5.2.5.1.4 "><p id="cce_01_0252__p5419101492419">This parameter is mandatory if HTTPS is used. Multiple independent domain names and certificates can be added to this parameter. For details, see <a href="#cce_01_0252__section0555194782414">Configuring the Server Name Indication (SNI)</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row5419101462414"><td class="cellrowborder" valign="top" width="24.71247124712471%" headers="mcps1.3.5.4.4.2.5.2.5.1.1 "><p id="cce_01_0252__p2419121482413">secretName</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.751375137513753%" headers="mcps1.3.5.4.4.2.5.2.5.1.2 "><p id="cce_01_0252__p1241991412412">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.5.4.4.2.5.2.5.1.3 "><p id="cce_01_0252__p141917145245">String</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.5.4.4.2.5.2.5.1.4 "><p id="cce_01_0252__p7419714162413">This parameter is mandatory if HTTPS is used. Set this parameter to the name of the created secret.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0252__table9419191416246"></a><a name="table9419191416246"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0252__table9419191416246" frame="border" border="1" rules="all"><caption><b>Table 5 </b>tls_ciphers_policy parameter description</caption><thead align="left"><tr id="cce_01_0252__row2419214132420"><th align="left" class="cellrowborder" valign="top" width="16.37%" id="mcps1.3.5.4.4.2.6.2.4.1.1"><p id="cce_01_0252__p24196145242">Security Policy</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="25.71%" id="mcps1.3.5.4.4.2.6.2.4.1.2"><p id="cce_01_0252__p15419131413249">TLS Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="57.92%" id="mcps1.3.5.4.4.2.6.2.4.1.3"><p id="cce_01_0252__p15419171417249">Cipher Suite</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0252__row18419161432410"><td class="cellrowborder" valign="top" width="16.37%" headers="mcps1.3.5.4.4.2.6.2.4.1.1 "><p id="cce_01_0252__p7419101442419">tls-1-0</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.71%" headers="mcps1.3.5.4.4.2.6.2.4.1.2 "><p id="cce_01_0252__p1141971442418">TLS 1.2</p>
-<p id="cce_01_0252__p04191314152418">TLS 1.1</p>
-<p id="cce_01_0252__p94191414112416">TLS 1.0</p>
-</td>
-<td class="cellrowborder" rowspan="3" valign="top" width="57.92%" headers="mcps1.3.5.4.4.2.6.2.4.1.3 "><p id="cce_01_0252__p174195143248">ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:AES128-SHA256:AES256-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:AES128-SHA:AES256-SHA</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row9419171417241"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.4.2.6.2.4.1.1 "><p id="cce_01_0252__p0419131422419">tls-1-1</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.4.2.6.2.4.1.2 "><p id="cce_01_0252__p114191614142413">TLS 1.2</p>
-<p id="cce_01_0252__p941951432415">TLS 1.1</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row19419181415248"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.4.2.6.2.4.1.1 "><p id="cce_01_0252__p64191814202410">tls-1-2</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.4.2.6.2.4.1.2 "><p id="cce_01_0252__p6419131462417">TLS 1.2</p>
-</td>
-</tr>
-<tr id="cce_01_0252__row20419141412416"><td class="cellrowborder" valign="top" width="16.37%" headers="mcps1.3.5.4.4.2.6.2.4.1.1 "><p id="cce_01_0252__p19419121482413">tls-1-2-strict</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.71%" headers="mcps1.3.5.4.4.2.6.2.4.1.2 "><p id="cce_01_0252__p64198144244">TLS 1.2</p>
-</td>
-<td class="cellrowborder" valign="top" width="57.92%" headers="mcps1.3.5.4.4.2.6.2.4.1.3 "><p id="cce_01_0252__p2041911146244">ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:AES128-SHA256:AES256-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0252__li13420131462418"><span>Create an ingress.</span><p><p id="cce_01_0252__p542021432415"><strong id="cce_01_0252__b13420121418249">kubectl create -f ingress-test.yaml</strong></p>
-<p id="cce_01_0252__p5420131416240">If information similar to the following is displayed, the ingress has been created.</p>
-<pre class="screen" id="cce_01_0252__screen1742018145243">ingress/ingress-test created</pre>
-<p id="cce_01_0252__p1542071422419">View the created ingress.</p>
-<p id="cce_01_0252__p9420141417246"><strong id="cce_01_0252__b17420101482417">kubectl get ingress</strong></p>
-<p id="cce_01_0252__p11420214202415">If information similar to the following is displayed, the ingress has been created successfully and the workload is accessible.</p>
-<pre class="screen" id="cce_01_0252__screen19420914182410">NAME             HOSTS     ADDRESS          PORTS   AGE
-ingress-test     *         121.**.**.**     80      10s</pre>
-</p></li><li id="cce_01_0252__li16420214192410"><span>Enter <strong id="cce_01_0252__b98641129163118">https://<em id="cce_01_0252__i19859629183114">121.**.**.**</em>:443</strong> in the address box of the browser to access the workload (for example, <a href="cce_01_0047.html#cce_01_0047__section155246177178">Nginx workload</a>).</span><p><p id="cce_01_0252__p34202141244"><strong id="cce_01_0252__b17947173112239"><em id="cce_01_0252__i8947163172317">121.**.**.**</em></strong> indicates the IP address of the unified load balancer.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0252__section0555194782414"><a name="cce_01_0252__section0555194782414"></a><a name="section0555194782414"></a><h4 class="sectiontitle">Configuring the Server Name Indication (SNI)</h4><div class="p" id="cce_01_0252__p10554647142415">SNI allows multiple TLS-based access domain names to be provided for external systems using the same IP address and port number. Different domain names can use different security certificates.<div class="note" id="cce_01_0252__note255434732418"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0252__ul2055424732410"><li id="cce_01_0252__li55546476244">Only one domain name can be specified for each SNI certificate. Wildcard-domain certificates are supported.</li><li id="cce_01_0252__li17554347182418">Security policy (kubernetes.io/elb.tls-ciphers-policy) is supported only in clusters of v1.17.11 or later.</li></ul>
-</div></div>
-</div>
-<div class="p" id="cce_01_0252__p5555947202415">You can enable SNI when the preceding conditions are met. The following uses the automatic creation of a load balancer as an example. In this example, <strong id="cce_01_0252__b1358153235418">sni-test-secret-1</strong> and <strong id="cce_01_0252__b335843220544">sni-test-secret-2</strong> are SNI certificates. The domain names specified by the certificates must be the same as those in the certificates.<pre class="screen" id="cce_01_0252__screen0555174710241">apiVersion: networking.k8s.io/v1beta1
-kind: Ingress 
-metadata: 
-  name: ingress-test
-  annotations: 
-    kubernetes.io/elb.class: performance                               # Load balancer type
-    kubernetes.io/elb.id: &lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.
-    kubernetes.io/elb.ip: &lt;your_elb_ip&gt;  # Replace it with the IP of your existing load balancer.
-    kubernetes.io/ingress.class: cce
-    kubernetes.io/elb.port: <strong id="cce_01_0252__b177641954145518"><span style="color:#FF0000;">'443'</span></strong>
-    <strong id="cce_01_0252__b167644542557"><span style="color:#FF0000;">kubernetes.io/elb.tls-ciphers-policy: tls-1-2</span></strong>
-spec:
-<strong id="cce_01_0252__b255434782416">  <span style="color:#FF0000;">tls:</span> </strong>
-<strong id="cce_01_0252__b1455419478246">  - </strong>secretName: ingress-test-secret
-  <strong style="color:#FF0000;" id="cce_01_0252__b16554114722418">- hosts:</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b811722945816">      - example.top</strong><span style="color:#FF0000;">  # Domain name specified a certificate is issued</span>
-<strong style="color:#FF0000;" id="cce_01_0252__b555413476247">    secretName: sni-test-secret-1</strong>  
-<strong style="color:#FF0000;" id="cce_01_0252__b5554247112418">  - hosts:</strong>
-<strong style="color:#FF0000;" id="cce_01_0252__b1811882985816">      - example.com</strong><span style="color:#FF0000;">  # Domain name specified a certificate is issued</span>
-<strong style="color:#FF0000;" id="cce_01_0252__b155541347192413">    secretName: sni-test-secret-2</strong>
-  rules: 
-  - host: ''
-    http: 
-      paths: 
-      - path: '/'
-        backend: 
-          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
-</div>
-</div>
-<div class="section" id="cce_01_0252__section85321156192416"><h4 class="sectiontitle">Accessing Multiple Services</h4><p id="cce_01_0252__p153110565247">Ingresses can route requests to multiple backend Services based on different matching policies. The <b><span class="cmdname" id="cce_01_0252__cmdname653115566246">spec</span></b> field in the YAML file is set as below. You can access <strong id="cce_01_0252__b132205015338">www.example.com/foo</strong>, <strong id="cce_01_0252__b153533337">www.example.com/bar</strong>, and <strong id="cce_01_0252__b105391614330">foo.example.com/</strong> to route to three different backend Services.</p>
-<div class="notice" id="cce_01_0252__note1753155642416"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0252__p12531175662419">The URL registered in an ingress forwarding policy must be the same as the URL exposed by the backend Service. Otherwise, a 404 error will be returned.</p>
-</div></div>
-<pre class="screen" id="cce_01_0252__screen18532145619246">spec:
-  rules: 
-  - <strong style="color:#FF0000;" id="cce_01_0252__b753120568241">host: 'www.example.com'</strong>
-    http: 
-      paths: 
-      <strong style="color:#FF0000;" id="cce_01_0252__b2053111564240">- path: '/foo'</strong>
-        backend: 
-          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
-      <strong style="color:#FF0000;" id="cce_01_0252__b11532205642415">- path: '/bar'</strong>
-        backend:
-          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
-  - <strong style="color:#FF0000;" id="cce_01_0252__b35321956122414">host: 'foo.example.com'</strong>
-    http:
-      paths:
-      - <strong style="color:#FF0000;" id="cce_01_0252__b7532145692414">path: '/'</strong>
-        backend:
-          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
-          servicePort: 80
-        property:
-          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0248.html">Ingress</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0254.html b/docs/cce/umn/cce_01_0254.html
deleted file mode 100644
index b806cd0a..00000000
--- a/docs/cce/umn/cce_01_0254.html
+++ /dev/null
@@ -1,151 +0,0 @@
-<a name="cce_01_0254"></a><a name="cce_01_0254"></a>
-
-<h1 class="topictitle1">Using EVS Volumes</h1>
-<div id="body1599889496879"><div class="section" id="cce_01_0254__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0254__p3254172811916">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0254__section1274816104391"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0254__ul1587034719355"><li id="cce_01_0254__li1442042929">EVS disks cannot be attached across AZs and cannot be used by multiple workloads, multiple pods of the same workload, or multiple jobs.</li><li id="cce_01_0254__li4870174703512">Data in a shared disk cannot be shared between nodes in a CCE cluster. If the same EVS disk is attached to multiple nodes, read and write conflicts and data cache conflicts may occur. When creating a Deployment, you are advised to create only one pod if you want to use EVS disks.</li><li id="cce_01_0254__li829541919564">For clusters earlier than v1.19.10, if an HPA policy is used to scale out a workload with EVS volumes mounted, the existing pods cannot be read or written when a new pod is scheduled to another node.<p id="cce_01_0254__p14296819135619"><a name="cce_01_0254__li829541919564"></a><a name="li829541919564"></a>For clusters of v1.19.10 and later, if an HPA policy is used to scale out a workload with EVS volume mounted, a new pod cannot be started because EVS disks cannot be attached.</p>
-</li><li id="cce_01_0254__li1568933917388">When you create a StatefulSet and add a cloud storage volume, existing EVS volumes cannot be used.</li><li id="cce_01_0254__li1935032917138">EVS disks that have partitions or have non-ext4 file systems cannot be imported.</li><li id="cce_01_0254__li15870447163514">Container storage in CCE clusters of Kubernetes 1.13 or later version supports encryption. Currently, E2E encryption is supported only in certain regions.</li><li id="cce_01_0254__li735145611289">EVS volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li></ul>
-</div>
-<div class="section" id="cce_01_0254__section1727261664619"><h4 class="sectiontitle">Creating an EVS Disk</h4><ol id="cce_01_0254__ol118398397451"><li id="cce_01_0254__li6330203615298"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0254__b241712913211">Resource Management</strong> &gt; <strong id="cce_01_0254__b1742311915324">Storage</strong>. Click <strong id="cce_01_0254__b124841445135416"></strong><strong id="cce_01_0254__b1448474519547"><span id="cce_01_0254__text17960175011502">Create</span></strong><strong id="cce_01_0254__b1848444585413"> EVS Disk</strong>.</span></li><li id="cce_01_0254__li237312562352"><span>Configure basic disk information. <a href="#cce_01_0254__table20328123218464">Table 1</a> describes the parameters.</span><p>
-<div class="tablenoborder"><a name="cce_01_0254__table20328123218464"></a><a name="table20328123218464"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0254__table20328123218464" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuring basic disk information</caption><thead align="left"><tr id="cce_01_0254__row533073264618"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.2.2.1.2.3.1.1"><p id="cce_01_0254__p12330932164617">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.2.2.1.2.3.1.2"><p id="cce_01_0254__p133306326467">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0254__row0330113224615"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p18330232154618">* PVC Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p929111285472"><strong id="cce_01_0254__b653061619303">New PVC Name</strong>: name of the PVC to be created. A storage volume is automatically created when a PVC is created. One PVC corresponds to one storage volume. The storage volume name is automatically generated when the PVC is created.</p>
-</td>
-</tr>
-<tr id="cce_01_0254__row20242958195514"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0254__p1243195835517">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0254__p4243258145517">Cluster where the EVS disk is deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0254__row198351838762"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p4837143820613">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p7837143816615">Select the namespace where the EVS disk is deployed. If you do not need to select a namespace, retain the default value.</p>
-</td>
-</tr>
-<tr id="cce_01_0254__row17020817474"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p421381478">Volume Capacity (GB)</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p4766420114910">Size of the storage to be created. </p>
-</td>
-</tr>
-<tr id="cce_01_0254__row423313555917"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p112371055298">Access Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p3231132814432">Access permissions of user applications on storage resources (PVs).</p>
-<ul id="cce_01_0254__ul17891219153311"><li id="cce_01_0254__li128911199331"><strong id="cce_01_0254__b5235156174614">ReadWriteOnce</strong> (RWO): The volume can be mounted as read-write by a single node, and data reading and writing are supported based on a non-shared EVS volume. EVS volumes in RWO mode are supported since v1.13.10-r1.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0254__row12462640575"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p1246210401871">Primary AZ</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p34621840572">AZ to which the volume belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0254__row8607924123319"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p6330173219461">Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p7488131445018">Type of the new EVS disk.</p>
-<ul id="cce_01_0254__ul161367711350"><li id="cce_01_0254__li313618753510"><strong id="cce_01_0254__b1295631714612">Common I/O</strong>: uses Serial Advanced Technology Attachment (SATA) drives to store data.</li><li id="cce_01_0254__li19136197193514"><strong id="cce_01_0254__b1710991994611">High I/O</strong>: uses serial attached SCSI (SAS) drives to store data.</li><li id="cce_01_0254__li613613717357"><strong id="cce_01_0254__b12994919144619">Ultra-high I/O</strong>: uses solid state disk (SSD) drives to store data.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0254__row18933161923513"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p6934111918355">Storage Format</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p393411198353">The default value is <strong id="cce_01_0254__b19611202274613">CSI</strong> and cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_01_0254__row4690726114316"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p136915265434">Encryption</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p1781204013310"><strong id="cce_01_0254__b922169194713">KMS Encryption</strong> is deselected by default.</p>
-<p id="cce_01_0254__p881264063112">After <strong id="cce_01_0254__b17875193010468">KMS Encryption</strong> is selected, Key Management Service (KMS), an easy-to-use and highly secure cloud service for your keys, will be used for EVS disks. If no agency has been created, click <strong id="cce_01_0254__b107964318465">Create Agency</strong> and set the following parameters:</p>
-<ul id="cce_01_0254__ul32358634612"><li id="cce_01_0254__li215744114619"><strong id="cce_01_0254__b457993254614">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <strong id="cce_01_0254__b862210154810">Create Agency</strong>. The agency name <strong id="cce_01_0254__b192718341468">EVSAccessKMS</strong> indicates that EVS is granted the permission to access KMS. After EVS is authorized successfully, it can obtain KMS keys to encrypt and decrypt EVS systems.</li><li id="cce_01_0254__li15157174184615"><strong id="cce_01_0254__b03171135124610">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0254__li201571144466"><strong id="cce_01_0254__b43584372467">Key ID</strong>: generated by default.</li></ul>
-<p id="cce_01_0254__p133941962720">This function is supported only for clusters of v1.13.10 and later in certain regions.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0254__li2944171214235"><span>Review your order, click <strong id="cce_01_0254__b349633612500">Submit</strong>, and wait until the creation is successful.</span><p><p id="cce_01_0254__p0916144782311">The file system is displayed in the list. When its status becomes <strong id="cce_01_0254__b929212328487">Normal</strong>, the file system is created successfully.</p>
-</p></li><li id="cce_01_0254__li551319378426"><span>Click the volume name to view detailed information about the volume.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0254__section14273141619469"><h4 class="sectiontitle">Adding an EVS Volume</h4><ol id="cce_01_0254__ol12341122513429"><li id="cce_01_0254__li7341122574212"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. During creation, expand <strong id="cce_01_0254__b1212151384713">Data Storage</strong> after adding a container. On the <strong id="cce_01_0254__b17536151519478">Cloud Volume</strong> tab page, click <strong id="cce_01_0254__b0537131519479">Add Cloud Volume</strong>.</span></li><li id="cce_01_0254__li72344418431"><span>Set the storage volume type to <strong id="cce_01_0254__b544961612479">EVS</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0254__table9241341114317" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters required for mounting an EVS volume</caption><thead align="left"><tr id="cce_01_0254__row132473414435"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0254__p1324910414436">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0254__p6252164111435">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0254__row1425217417438"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p18255194124313"><strong id="cce_01_0254__b21711562367">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p9499194511284"><strong id="cce_01_0254__b15902154411255">EVS</strong>: You can use EVS disks the same way you use traditional hard disks on servers. EVS disks deliver higher data reliability and I/O throughput and are easy to use. They can be used for file systems, databases, or other system software and applications that require block storage resources.</p>
-<div class="caution" id="cce_01_0254__note21391101616"><span class="cautiontitle"> CAUTION: </span><div class="cautionbody"><ul id="cce_01_0254__ul112470508397"><li id="cce_01_0254__li3118498504">To attach an EVS disk to a workload, you must set the number of pods to <strong id="cce_01_0254__b0618142994710">1</strong> when creating the workload. If multiple pods are configured, you cannot attach EVS disks.</li><li id="cce_01_0254__li11247185073911">When you create a StatefulSet and add a cloud storage volume, existing EVS volumes cannot be used.</li><li id="cce_01_0254__li1324735013911">EVS disks cannot be attached across AZs and cannot be used by multiple workloads, multiple pods of the same workload, or multiple jobs.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0254__row226284114432"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.4.2.2.2.1.2.3.1.1 mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p1126514412436"><strong id="cce_01_0254__b173681332204719">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0254__row126744194311"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p62691741164312">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p726915413433">Select a created disk. If no disk is available, follow the prompts to create one.</p>
-<p id="cce_01_0254__p10812039171515">For the same cluster and namespace, you can use an existing storage volume when creating a Deployment (with <strong id="cce_01_0254__b18874104215477">Allocation Mode</strong> set to <strong id="cce_01_0254__b1387910429472">Manual</strong>).</p>
-<p id="cce_01_0254__p58231335389">When creating a StatefulSet, you can only use a volume automatically allocated by the system (only <strong id="cce_01_0254__b920524415471">Automatic</strong> is available for <strong id="cce_01_0254__b1620516447474">Allocation Mode</strong>).</p>
-</td>
-</tr>
-<tr id="cce_01_0254__row9299164154310"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p830134116436">Automatic</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0254__p13303124114313">If you select <strong id="cce_01_0254__b111571348124717">Automatic</strong>, you need to configure the following items:</p>
-<ol type="a" id="cce_01_0254__ol1930612417437"><li id="cce_01_0254__li73089411431"><strong id="cce_01_0254__b414013491479">Access Mode</strong>: permissions of user applications on storage resources (PVs).<ul id="cce_01_0254__ul1133151313189"><li id="cce_01_0254__cce_01_0254_li128911199331"><strong id="cce_01_0254__cce_01_0254_b5235156174614">ReadWriteOnce</strong> (RWO): The volume can be mounted as read-write by a single node, and data reading and writing are supported based on a non-shared EVS volume. EVS volumes in RWO mode are supported since v1.13.10-r1.</li></ul>
-</li><li id="cce_01_0254__li5100531181814"><strong id="cce_01_0254__b16710125219471">Availability Zone</strong>: AZ where the storage volume is located. Only the AZ where the node is located can be selected.</li><li id="cce_01_0254__li20310174174313"><strong id="cce_01_0254__b4368205334719">Sub-Type</strong>: Select a storage subtype.<ul id="cce_01_0254__ul14313174113435"><li id="cce_01_0254__cce_01_0254_li313618753510"><strong id="cce_01_0254__cce_01_0254_b1295631714612">Common I/O</strong>: uses Serial Advanced Technology Attachment (SATA) drives to store data.</li><li id="cce_01_0254__cce_01_0254_li19136197193514"><strong id="cce_01_0254__cce_01_0254_b1710991994611">High I/O</strong>: uses serial attached SCSI (SAS) drives to store data.</li><li id="cce_01_0254__cce_01_0254_li613613717357"><strong id="cce_01_0254__cce_01_0254_b12994919144619">Ultra-high I/O</strong>: uses solid state disk (SSD) drives to store data.</li></ul>
-</li><li id="cce_01_0254__li4324194194317"><strong id="cce_01_0254__b39473396585">Storage Capacity</strong>: Enter the storage capacity in the unit of GB. Ensure that the storage capacity quota is not exceeded; otherwise, creation will fail.</li><li id="cce_01_0254__li158365132206"><strong id="cce_01_0254__b159154425815">Storage Format</strong>: The default value is <strong id="cce_01_0254__b910184411581">CSI</strong>.<p id="cce_01_0254__p726054783312">The container storage interface (CSI) is used to establish a set of standard storage management interfaces between Kubernetes and external storage systems to provide storage services for containers.</p>
-</li><li id="cce_01_0254__li182110224719">After you select <strong id="cce_01_0254__b9224132413301">KMS Encryption</strong>, Key Management Service (KMS), an easy-to-use and highly secure service, will be enabled for EVS disks. This function is supported only for clusters of v1.13.10 and later in certain regions. If no agency has been created, click <strong id="cce_01_0254__b1771434655819">Create Agency</strong> and set the following parameters:<ul id="cce_01_0254__ul194004160312"><li id="cce_01_0254__li12399181643113"><strong id="cce_01_0254__b1047004716586">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <span class="uicontrol" id="cce_01_0254__uicontrol18470447135813"><b>Create Agency</b></span>. The agency name <strong id="cce_01_0254__b8206174845810">EVSAccessKMS</strong> indicates that EVS is granted the permission to access KMS. After EVS is authorized successfully, it can obtain KMS keys to encrypt and decrypt EVS systems.</li><li id="cce_01_0254__li58948107360"><strong id="cce_01_0254__b11154049105816">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0254__li144001516203119"><strong id="cce_01_0254__b176884506581">Key ID</strong>: generated by default.</li></ul>
-</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0254__row13325134164316"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0254__p1327194134311">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><ol type="a" id="cce_01_0254__ol153291941194312"><li id="cce_01_0254__li333114116437">Click <strong id="cce_01_0254__b020295535813">Add Container Path</strong>.</li><li id="cce_01_0254__li163331641114314"><strong id="cce_01_0254__b13781002591">Container Path</strong>: Enter the container path to which the data volume is mounted.<div class="notice" id="cce_01_0254__note3336941124310"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_01_0254__ul434084115433"><li id="cce_01_0254__li634114412436">Do not mount a data volume to a system directory such as <strong id="cce_01_0254__b16507181145912">/</strong> or <strong id="cce_01_0254__b1550831185917">/var/run</strong>; this action may cause a container error to occur. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.</li><li id="cce_01_0254__li9345441104313">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</li></ul>
-</div></div>
-</li><li id="cce_01_0254__li9347104174314">Set permissions.<ul id="cce_01_0254__ul193486419432"><li id="cce_01_0254__li7349341174311"><strong id="cce_01_0254__b29567810599">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_01_0254__li935113416438"><strong id="cce_01_0254__b6288151285920">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
-</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0254__li13357941154313"><span>Click <strong id="cce_01_0254__b16851614163212">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0254__section20275716134619"><h4 class="sectiontitle">Importing an EVS Disk</h4><p id="cce_01_0254__p1984423914179">CCE allows you to import existing EVS disks.</p>
-<div class="note" id="cce_01_0254__note1665132142620"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0254__p08631248143018">An EVS disk can be imported into only one namespace. If an EVS disk has been imported into a namespace, it is invisible in other namespaces and cannot be imported again. <strong id="cce_01_0254__b6876634185918">If you want to import an EVS disk that has file system (ext4) formatted, ensure that no partition has been created for the disk. Otherwise, data may be lost.</strong></p>
-</div></div>
-<ol id="cce_01_0254__ol18308444121711"><li id="cce_01_0254__li14308174451719"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0254__b16701162135116">Resource Management </strong>&gt;<strong id="cce_01_0254__b17708132185110"> Storage</strong>. On the <strong id="cce_01_0254__b870911213517">EVS</strong> tab page, click <strong id="cce_01_0254__b14710182135113">Import</strong>.</span></li><li id="cce_01_0254__li13081544201715"><span>Select one or more EVS disks that you want to import. Then, click <strong id="cce_01_0254__b1766365519551">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0254__section0281191618462"><h4 class="sectiontitle">Unbinding an EVS Disk</h4><p id="cce_01_0254__p8292171018571">After an EVS volume is successfully created or imported, the EVS volume is automatically bound to the current cluster and cannot be used by other clusters. When the volume is unbound from the cluster, other clusters can still use the volume.</p>
-<p id="cce_01_0254__p211712186589">If the EVS volume has been mounted to a workload, it cannot be unbound from the cluster.</p>
-<ol id="cce_01_0254__ol9372446185820"><li id="cce_01_0254__li1837264619583"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0254__b118931836195113">Resource Management</strong> &gt; <strong id="cce_01_0254__b18894183655110">Storage</strong>. In the EVS disk list, click <strong id="cce_01_0254__b489517365515">Unbind</strong> next to the target EVS disk.</span></li><li id="cce_01_0254__li104361539807"><span>Confirm the unbinding, and click <strong id="cce_01_0254__b10889545182118">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0254__section1683811402220"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0254__p492184121317">After an EVS volume is created, you can perform operations described in <a href="#cce_01_0254__table1619535674020">Table 3</a>.
-<div class="tablenoborder"><a name="cce_01_0254__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0254__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Other operations</caption><thead align="left"><tr id="cce_01_0254__row17103718171311"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.7.2.2.2.3.1.1"><p id="cce_01_0254__p110320185130">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.7.2.2.2.3.1.2"><p id="cce_01_0254__p51031018141311">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0254__row13103191815135"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.2.2.3.1.1 "><p id="cce_01_0254__p17103171811319">Deleting an EVS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.7.2.2.2.3.1.2 "><ol id="cce_01_0254__ol1810311811318"><li id="cce_01_0254__li8103518201311">Select the EVS volume to be deleted and click <strong id="cce_01_0254__b275313236284">Delete</strong> in the <strong id="cce_01_0254__b1384023413291">Operation</strong> column.</li><li id="cce_01_0254__li5103131871316">Follow the prompts to delete the EVS volume.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0044.html">EVS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0257.html b/docs/cce/umn/cce_01_0257.html
deleted file mode 100644
index e0fa479a..00000000
--- a/docs/cce/umn/cce_01_0257.html
+++ /dev/null
@@ -1,207 +0,0 @@
-<a name="cce_01_0257"></a><a name="cce_01_0257"></a>
-
-<h1 class="topictitle1">Creating a Pod Mounted with an EVS Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0257__en-us_topic_0000001243981075_section1789161805617"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0257__en-us_topic_0000001243981075_p19113471414">After an EVS volume is created or imported to CCE, you can mount it to a workload.</p>
-<div class="notice" id="cce_01_0257__en-us_topic_0000001243981075_note151273161411"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0257__en-us_topic_0000001243981075_p1812771181417">EVS disks cannot be attached across AZs. Before mounting a volume, you can run the <strong id="cce_01_0257__en-us_topic_0000001243981075_b1476484310226">kubectl get pvc</strong> command to query the available PVCs in the AZ where the current cluster is located.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0257__en-us_topic_0000001243981075_section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0257__en-us_topic_0000001243981075_p832165917321">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0257__en-us_topic_0000001243981075_section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0257__en-us_topic_0000001243981075_p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
-</div>
-<div class="section" id="cce_01_0257__en-us_topic_0000001243981075_section421772310564"><h4 class="sectiontitle">Using EVS Volumes for Deployments</h4><ol id="cce_01_0257__en-us_topic_0000001243981075_ol49241352137"><li id="cce_01_0257__en-us_topic_0000001243981075_li9489154713219"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0257__en-us_topic_0000001243981075_li109251156137"><span>Run the following commands to configure the <strong id="cce_01_0257__en-us_topic_0000001243981075_b32905155237">evs-deployment-example.yaml</strong> file, which is used to create a Deployment.</span><p><p id="cce_01_0257__en-us_topic_0000001243981075_p5929195141316"><strong id="cce_01_0257__en-us_topic_0000001243981075_b193391624515">touch evs-deployment-example.yaml</strong></p>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p17933254133"><strong id="cce_01_0257__en-us_topic_0000001243981075_b1595201624516">vi evs-deployment-example.yaml</strong></p>
-<div class="p" id="cce_01_0257__en-us_topic_0000001243981075_p72162011219">Example of mounting an EVS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen1913618543140">apiVersion: apps/v1 
-kind: Deployment 
-metadata: 
-  name: evs-deployment-example 
-  namespace: default 
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      app: evs-deployment-example 
-  template: 
-    metadata: 
-      labels: 
-        app: evs-deployment-example 
-    spec: 
-      containers: 
-      - image: nginx
-        name: container-0 
-        volumeMounts: 
-        - <span style="color:#FF0001;">mountPath: /tmp</span> 
-          name: pvc-evs-example 
-      imagePullSecrets:
-        - name: default-secret
-      restartPolicy: Always 
-      volumes: 
-      - name: pvc-evs-example 
-        persistentVolumeClaim: 
-          claimName: <span style="color:#FF0000;">pvc-evs-auto-example</span></pre>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0257__en-us_topic_0000001243981075_table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0257__en-us_topic_0000001243981075_row1519121663519"><th align="left" class="cellrowborder" valign="top" width="32.73%" id="mcps1.3.4.2.2.2.4.2.4.1.1"><p id="cce_01_0257__en-us_topic_0000001243981075_p525814169813">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="18.15%" id="mcps1.3.4.2.2.2.4.2.4.1.2"><p id="cce_01_0257__en-us_topic_0000001243981075_p18191161619356">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49.120000000000005%" id="mcps1.3.4.2.2.2.4.2.4.1.3"><p id="cce_01_0257__en-us_topic_0000001243981075_p1919116161353">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0257__en-us_topic_0000001243981075_row7430236123515"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p92591716583">spec.template.spec.containers.volumeMounts</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p116341334126">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p1927814583433">Name of the volume mounted to the container.</p>
-</td>
-</tr>
-<tr id="cce_01_0257__en-us_topic_0000001243981075_row10639194016187"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p54664413187">spec.template.spec.containers.volumeMounts</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p1946674110189">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p546684111182">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_01_0257__en-us_topic_0000001243981075_b25451154103210">/tmp</strong> directory.</p>
-</td>
-</tr>
-<tr id="cce_01_0257__en-us_topic_0000001243981075_row6232511129"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p72592169811">spec.template.spec.volumes</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p192525131213">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p132182510120">Name of the volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0257__en-us_topic_0000001243981075_row163191830121220"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p425991613812">spec.template.spec.volumes.persistentVolumeClaim</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p14319143031212">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p18319530131211">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0257__en-us_topic_0000001243981075_note7669545104415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0257__en-us_topic_0000001243981075_p116692457448"><strong id="cce_01_0257__en-us_topic_0000001243981075_b7675160145016">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0257__en-us_topic_0000001243981075_b116821902508">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0257__en-us_topic_0000001243981075_li63176161314"><span>Run the following command to create the workload:</span><p><p id="cce_01_0257__en-us_topic_0000001243981075_p55865136"><strong id="cce_01_0257__en-us_topic_0000001243981075_b752416561695">kubectl create -f evs-deployment-example.yaml</strong></p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0257__en-us_topic_0000001243981075_section1104163720107"><h4 class="sectiontitle">Using EVS Volumes for StatefulSets</h4><ol id="cce_01_0257__en-us_topic_0000001243981075_ol1479413921116"><li id="cce_01_0257__en-us_topic_0000001243981075_li1979418919118"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0257__en-us_topic_0000001243981075_li079449141117"><span>Run the following commands to configure the <span class="uicontrol" id="cce_01_0257__en-us_topic_0000001243981075_uicontrol1279459171113"><b>evs-statefulset-example.yaml</b></span> file, which is used to create a Deployment.</span><p><p id="cce_01_0257__en-us_topic_0000001243981075_p129541126126"><strong id="cce_01_0257__en-us_topic_0000001243981075_b19541231210">touch </strong><strong id="cce_01_0257__en-us_topic_0000001243981075_b9943161191219">evs-statefulset-example</strong><strong id="cce_01_0257__en-us_topic_0000001243981075_b79531216123">.yaml</strong></p>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p35391851151111"><strong id="cce_01_0257__en-us_topic_0000001243981075_b115381514113">vi </strong><strong id="cce_01_0257__en-us_topic_0000001243981075_b149455116128">evs-statefulset-example</strong><strong id="cce_01_0257__en-us_topic_0000001243981075_b153865131115">.yaml</strong></p>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p1479513913116">Mounting an EVS volume to a StatefulSet (PVC template-based, non-shared volume):</p>
-<div class="p" id="cce_01_0257__en-us_topic_0000001243981075_p14795493113"><strong id="cce_01_0257__en-us_topic_0000001243981075_b1350313576311">Example YAML:</strong><pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen1879599131118">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: evs-statefulset-example
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: evs-statefulset-example
-  template:
-    metadata:
-      labels:
-        app: evs-statefulset-example
-    spec:
-      containers:
-        - name: container-0
-          image: 'nginx:latest'
-          volumeMounts:
-            - name: pvc-evs-auto-example
-              mountPath: /tmp
-      restartPolicy: Always
-      imagePullSecrets:
-        - name: default-secret
-  <span style="color:#FF0000;">volumeClaimTemplates:</span>
-    - metadata:
-        name: pvc-evs-auto-example
-        namespace: default
-        labels:
-          failure-domain.beta.kubernetes.io/region: <span id="cce_01_0257__text1418516491558">eu-de</span>
-          failure-domain.beta.kubernetes.io/zone: <span id="cce_01_0257__text61870559512">eu-de-01</span>
-        annotations:
-          everest.io/disk-volume-type: SAS
-      spec:
-        accessModes:
-          - ReadWriteOnce
-        resources:
-          requests:
-            storage: 10Gi
-        storageClassName: csi-disk   
-  serviceName: evs-statefulset-example-headless
-  updateStrategy:
-    type: RollingUpdate</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0257__en-us_topic_0000001243981075_table37966951119" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0257__en-us_topic_0000001243981075_row17796159151117"><th align="left" class="cellrowborder" valign="top" width="30.570000000000004%" id="mcps1.3.5.2.2.2.4.3.2.4.1.1"><p id="cce_01_0257__en-us_topic_0000001243981075_p779629181113">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.150000000000002%" id="mcps1.3.5.2.2.2.4.3.2.4.1.2"><p id="cce_01_0257__en-us_topic_0000001243981075_p079615917118">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="53.28000000000001%" id="mcps1.3.5.2.2.2.4.3.2.4.1.3"><p id="cce_01_0257__en-us_topic_0000001243981075_p1179619111112">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0257__en-us_topic_0000001243981075_row079615921119"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p20796691110">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p179617921112">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p1979620951115">Name of the created workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0257__en-us_topic_0000001243981075_row177961797115"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p4796119161110">spec.template.spec.containers</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p879699101113">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p979689131114">Image of the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0257__en-us_topic_0000001243981075_row179617915117"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p13796189161112">spec.template.spec.containers.volumeMount</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p157966913118">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p1796189101112">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_01_0257__en-us_topic_0000001243981075_b1610008746104918">/tmp</strong> directory.</p>
-</td>
-</tr>
-<tr id="cce_01_0257__en-us_topic_0000001243981075_row197963921111"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_01_0257__en-us_topic_0000001243981075_p379618918119">spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_01_0257__en-us_topic_0000001243981075_p579610915115">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_01_0257__en-us_topic_0000001243981075_p079610971112">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0257__en-us_topic_0000001243981075_note187971961117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0257__en-us_topic_0000001243981075_p6797992111"><strong id="cce_01_0257__en-us_topic_0000001243981075_b111763820508">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0257__en-us_topic_0000001243981075_b51733895016">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</div>
-</p></li><li id="cce_01_0257__en-us_topic_0000001243981075_li1779769121117"><span>Run the following command to create the workload:</span><p><p id="cce_01_0257__en-us_topic_0000001243981075_p3624185871316"><strong id="cce_01_0257__en-us_topic_0000001243981075_b116247588131">kubectl create -f evs-</strong><strong id="cce_01_0257__en-us_topic_0000001243981075_b3651810141418">statefulset</strong><strong id="cce_01_0257__en-us_topic_0000001243981075_b1062345811310">-example.yaml</strong></p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0257__en-us_topic_0000001243981075_section1347793033917"><h4 class="sectiontitle">Verifying Persistent Storage of an EVS Volume</h4><ol id="cce_01_0257__en-us_topic_0000001243981075_ol4999113815404"><li id="cce_01_0257__en-us_topic_0000001243981075_li19999203814405"><span>Query the pod and EVS files of the deployed workload (for example, <strong id="cce_01_0257__en-us_topic_0000001243981075_b136596553352">evs-statefulset-example</strong>).</span><p><ol type="a" id="cce_01_0257__en-us_topic_0000001243981075_ol8584452175015"><li id="cce_01_0257__en-us_topic_0000001243981075_li5584252125015">Run the following command to query the pod name of the workload:<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen1477515615319">kubectl get po | grep evs-statefulset-example</pre>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p3677113718527">Expected outputs:</p>
-<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen1659915915210">evs-statefulset-example-0   1/1     Running   0          22h</pre>
-</li><li id="cce_01_0257__en-us_topic_0000001243981075_li172361712165217">Run the following command to check whether an EVS volume is mounted to the <strong id="cce_01_0257__en-us_topic_0000001243981075_b362762613619">/tmp</strong> directory:<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen14110110115418">kubectl exec evs-statefulset-example-0 -- df tmp</pre>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p1596671205518">Expected outputs:</p>
-<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen1792141555414">/dev/sda        10255636 36888  10202364   1% /tmp</pre>
-</li></ol>
-</p></li><li id="cce_01_0257__en-us_topic_0000001243981075_li15750205312556"><span>Run the following command to create a file named <strong id="cce_01_0257__en-us_topic_0000001243981075_b14164105319361">test</strong> in the <strong id="cce_01_0257__en-us_topic_0000001243981075_b1773115723612">/tmp</strong> directory:</span><p><pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen07801324205418">kubectl exec evs-statefulset-example-0 -- touch /tmp/test</pre>
-</p></li><li id="cce_01_0257__en-us_topic_0000001243981075_li343411174573"><span>Run the following command to view the file in the <strong id="cce_01_0257__en-us_topic_0000001243981075_b873761010371">/tmp</strong> directory:</span><p><pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen4181133113541">kubectl exec evs-statefulset-example-0 -- ls -l /tmp</pre>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p4581437125810">Expected outputs:</p>
-<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen690563919548">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
-</p></li><li id="cce_01_0257__en-us_topic_0000001243981075_li1840945513582"><span>Run the following command to delete the pod named <strong id="cce_01_0257__en-us_topic_0000001243981075_b13113551183712">evs-statefulset-example-0</strong>:</span><p><pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen0451134319548">kubectl delete po evs-statefulset-example-0</pre>
-</p></li><li id="cce_01_0257__en-us_topic_0000001243981075_li188315111203"><span>Check whether the file still exists after the pod is rebuilt.</span><p><ol type="a" id="cce_01_0257__en-us_topic_0000001243981075_ol192831981117"><li id="cce_01_0257__en-us_topic_0000001243981075_li12838819115">Run the following command to query the name of the rebuilt pod:<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen1768311482542">kubectl get po</pre>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p3901203422">Expected outputs:</p>
-<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen11176952145414">evs-statefulset-example-0   1/1     Running   0          2m</pre>
-</li><li id="cce_01_0257__en-us_topic_0000001243981075_li220813138214">Run the following command to view the file in the <strong id="cce_01_0257__en-us_topic_0000001243981075_b3466122318387">/tmp</strong> directory:<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen584835585420">kubectl exec evs-statefulset-example-0 -- ls -l /tmp</pre>
-<p id="cce_01_0257__en-us_topic_0000001243981075_p1742016385220">Expected outputs:</p>
-<pre class="screen" id="cce_01_0257__en-us_topic_0000001243981075_screen132285019134">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
-</li><li id="cce_01_0257__en-us_topic_0000001243981075_li141791742105312">The <strong id="cce_01_0257__en-us_topic_0000001243981075_b14318124911386">test</strong> file still exists after the pod is rebuilt, indicating that the data in the EVS volume can be persistently stored.</li></ol>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0044.html">EVS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0259.html b/docs/cce/umn/cce_01_0259.html
deleted file mode 100644
index 214b986b..00000000
--- a/docs/cce/umn/cce_01_0259.html
+++ /dev/null
@@ -1,141 +0,0 @@
-<a name="cce_01_0259"></a><a name="cce_01_0259"></a>
-
-<h1 class="topictitle1">Using SFS Volumes</h1>
-<div id="body1599890253477"><div class="section" id="cce_01_0259__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0259__p3254172811916">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0259__section5807185714121"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0259__ul484713108404"><li id="cce_01_0259__li2081717523167">SFS volumes are available only in certain regions.</li><li id="cce_01_0259__li15870447163514">Container storage in CCE clusters of Kubernetes 1.13 or later version supports encryption. Currently, E2E encryption is supported only in certain regions.</li><li id="cce_01_0259__li12223010153511">Volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li></ul>
-</div>
-<div class="section" id="cce_01_0259__section1191025105819"><a name="cce_01_0259__section1191025105819"></a><a name="section1191025105819"></a><h4 class="sectiontitle">Creating an SFS Volume</h4><ol id="cce_01_0259__ol118398397451"><li id="cce_01_0259__li1272293210174"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0259__b11820545122517">Resource Management</strong> &gt; <strong id="cce_01_0259__b1382117452251">Storage</strong>.</span></li><li id="cce_01_0259__li192420116348"><span>On the <strong id="cce_01_0259__b1506193545519">SFS</strong> tab, click <span class="uicontrol" id="cce_01_0259__uicontrol1050613353556"><b>Create SFS File System</b></span>.</span></li><li id="cce_01_0259__li237312562352"><span>Configure basic information, as shown in <a href="#cce_01_0259__table20328123218464">Table 1</a>. </span><p>
-<div class="tablenoborder"><a name="cce_01_0259__table20328123218464"></a><a name="table20328123218464"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0259__table20328123218464" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating an SFS volume</caption><thead align="left"><tr id="cce_01_0259__row533073264618"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_01_0259__p12330932164617">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_01_0259__p133306326467">Parameter Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0259__row0330113224615"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0259__p18330232154618">* PVC Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0259__p376419205498">Name of the new PVC, which is different from the volume name. The actual volume name is automatically generated when the PV is created by the PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0259__row20242958195514"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0259__p1243195835517">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0259__p4243258145517">Cluster to which the file system volume belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0259__row632053011411"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0259__p1332113301649">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0259__p13321133018413">Namespace in which the volume is created.</p>
-</td>
-</tr>
-<tr id="cce_01_0259__row17020817474"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0259__p421381478">Total Capacity</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0259__p4766420114910">The total capacity is the capacity of a single volume. Fees are charged by actual usage.</p>
-</td>
-</tr>
-<tr id="cce_01_0259__row722105713116"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0259__p112371055298">Access Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0259__p3231132814432">Access permissions of user applications on storage resources (PVs).</p>
-<ul id="cce_01_0259__ul9888144214446"><li id="cce_01_0259__li138886427446"><strong id="cce_01_0259__b163514451330">ReadWriteMany</strong> (RWX): The SFS volume can be mounted as read-write by multiple nodes.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0259__row1106184220389"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0259__p6934111918355">Storage Format</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0259__p393411198353">The default value is <strong id="cce_01_0259__b665914818314">CSI</strong> and cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_01_0259__row136563921516"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0259__p136915265434">Encryption</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0259__p6322115373319"><span class="uicontrol" id="cce_01_0259__uicontrol10125215314"><b>KMS Encryption</b></span> is deselected by default.</p>
-<p id="cce_01_0259__p1984920438435">After <strong id="cce_01_0259__b144919536312">KMS Encryption</strong> is selected, Key Management Service (KMS), an easy-to-use and highly secure key service, will be used for SFS file systems. If no agency has been created, click <strong id="cce_01_0259__b159929531332">Create Agency</strong> and set the following parameters:</p>
-<ul id="cce_01_0259__ul32358634612"><li id="cce_01_0259__li215744114619"><strong id="cce_01_0259__b7130455939">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <span class="uicontrol" id="cce_01_0259__uicontrol713010551137"><b>Create Agency</b></span>. The agency name <strong id="cce_01_0259__b1453785614312">SFSAccessKMS</strong> indicates that SFS is granted the permission to access KMS. After SFS is authorized successfully, it can obtain KMS keys to encrypt and decrypt file systems.</li><li id="cce_01_0259__li13540103523515"><strong id="cce_01_0259__b16232932879">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0259__li201571144466"><strong id="cce_01_0259__b138441835979">Key ID</strong>: generated by default.</li></ul>
-<p id="cce_01_0259__p1293911274286">This function is supported only for clusters of v1.13.10 and later in certain regions.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0259__li1984465131513"><span>Click <strong id="cce_01_0259__b157315361370">Create</strong>. </span><p><p id="cce_01_0259__p0916144782311">The volume is displayed in the list. When <span class="parmname" id="cce_01_0259__parmname6876123718710"><b>PVS Status</b></span> becomes <span class="uicontrol" id="cce_01_0259__uicontrol158761437674"><b>Bound</b></span>, the volume is created successfully.</p>
-</p></li><li id="cce_01_0259__li4845125141519"><span>Click the volume name to view detailed information about the volume.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0259__section15913851125818"><h4 class="sectiontitle">Adding an SFS Volume</h4><ol id="cce_01_0259__ol147961048145416"><li id="cce_01_0259__li53652056152818"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, <a href="cce_01_0216.html">Creating a DaemonSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. During creation, expand <strong id="cce_01_0259__b1633621691">Data Storage</strong> after adding a container. On the <strong id="cce_01_0259__b18691828694">Cloud Volume</strong> tab page, click <strong id="cce_01_0259__b28696288910">Add Cloud Volume</strong>.</span></li><li id="cce_01_0259__li174061024145712"><span>Set the storage class to <strong id="cce_01_0259__b866942112913">SFS</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0259__table6514150195315" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters for mounting an SFS volume</caption><thead align="left"><tr id="cce_01_0259__row1250916010532"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0259__p1550914012531">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0259__p850913012539">Parameter Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0259__row15510806536"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0259__p851018010531"><strong id="cce_01_0259__b118392458115">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0259__p2874185810616"><strong id="cce_01_0259__b085094601120">File Storage (NFS)</strong>: This type applies to a wide range of scenarios, including media processing, content management, big data, and application analysis.</p>
-</td>
-</tr>
-<tr id="cce_01_0259__row1851090115317"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.4.2.2.2.1.2.3.1.1 mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0259__p1251017085312"><strong id="cce_01_0259__b1288965451117">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0259__row145119035310"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0259__p8510130125311">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><ul id="cce_01_0259__ul1884819547561"><li id="cce_01_0259__li484912546561"><strong id="cce_01_0259__b137830576111">Name</strong>: Select a created file system. You need to create a file system in advance. For details about how to create a file system, see <a href="#cce_01_0259__section1191025105819">Creating an SFS Volume</a>. </li><li id="cce_01_0259__li12848854195620"><strong id="cce_01_0259__b9454732111220">Sub-Type</strong>: subtype of the created file storage.</li><li id="cce_01_0259__li17848195485616"><strong id="cce_01_0259__b16608153201310">Storage Capacity</strong>: This field is one of the PVC attributes. If the storage capacity has been expanded on the IaaS side, it is normal that the capacity values are inconsistent. The PVC capacity is the same as the storage entity capacity only after end-to-end container storage capacity expansion is supported for CCE clusters of v1.13.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0259__row105123014531"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0259__p155113095317">Automatic</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0259__p195111307532">An SFS volume is created automatically. You need to enter the storage capacity.</p>
-<ul id="cce_01_0259__ul9563124315919"><li id="cce_01_0259__li1556394365917"><strong id="cce_01_0259__b413714819137">Sub-Type</strong>: Select <strong id="cce_01_0259__b1314219812133">NFS</strong>.</li><li id="cce_01_0259__li1356318430593"><strong id="cce_01_0259__b1517719931317">Storage Capacity</strong>: Specify the total storage capacity, in GB. Ensure that the storage capacity quota is not exceeded; otherwise, creation will fail.</li><li id="cce_01_0259__li158365132206"><strong id="cce_01_0259__b9852171011317">Storage Format</strong>: The default value is <strong id="cce_01_0259__b14852810101312">CSI</strong>.<p id="cce_01_0259__p726054783312">The container storage interface (CSI) is used to establish a set of standard storage management interfaces between Kubernetes and external storage systems to provide storage services for containers.</p>
-</li><li id="cce_01_0259__li1956310438599">After you select <strong id="cce_01_0259__b1921517193020">KMS Encryption</strong>, Key Management Service (KMS), an easy-to-use and highly secure service, will be enabled for file systems. This function is supported only for clusters of v1.13.10 and later in certain regions. If no agency has been created, click <strong id="cce_01_0259__b14727141315133">Create Agency</strong> and set the following parameters:<ul id="cce_01_0259__ul1738911481971"><li id="cce_01_0259__li14389148176"><strong id="cce_01_0259__b126081114111317">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <span class="uicontrol" id="cce_01_0259__uicontrol56088147131"><b>Create Agency</b></span>. The agency name <strong id="cce_01_0259__b55581615191317">SFSAccessKMS</strong> indicates that SFS is granted the permission to access KMS. After SFS is authorized successfully, it can obtain KMS keys to encrypt and decrypt file systems.</li><li id="cce_01_0259__li15157174184615"><strong id="cce_01_0259__b125951416101311">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0259__li1738917486712"><strong id="cce_01_0259__b294491801316">Key ID</strong>: generated by default.</li></ul>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0259__row18514401530"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0259__p451280115318">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0259__p4174161519591">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0259__ol14514160165311"><li id="cce_01_0259__li132235644313"><strong id="cce_01_0259__b9396025101316">subPath</strong>: Enter the subpath of the file storage, for example, <strong id="cce_01_0259__b134011525181310">/tmp</strong>.<p id="cce_01_0259__p1623933918316">If this parameter is not specified, the root path of the data volume is used by default. Currently, only file storage is supported. The value must be a relative path and cannot start with a slash (/) or ../.</p>
-</li><li id="cce_01_0259__li051415055316"><span class="parmname" id="cce_01_0259__parmname3283154481311"><b>Container Path</b></span>: Enter the path of the container, for example, <strong id="cce_01_0259__b1428384415136">/tmp</strong>.<div class="p" id="cce_01_0259__p45501641058">The container path must not be a system directory, such as <strong id="cce_01_0259__b54068455138">/</strong> and <strong id="cce_01_0259__b440610453137">/var/run</strong>. Otherwise, an exception occurs. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0259__note8564354147"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0259__p85554241956">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0259__li651460145315">Set permissions.<ul id="cce_01_0259__ul1651480165315"><li id="cce_01_0259__li65147025319"><strong id="cce_01_0259__b10860125010134">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_01_0259__li195143016539"><strong id="cce_01_0259__b149251151121316">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0259__p165839491213">Click <span class="uicontrol" id="cce_01_0259__uicontrol2997175371314"><b>Add Container Path</b></span> to add multiple settings. Then, click <span class="uicontrol" id="cce_01_0259__uicontrol1799825311134"><b>OK</b></span>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0259__li75121125181418"><span>Click <strong id="cce_01_0259__b2122634103217">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0259__section20914115115812"><h4 class="sectiontitle">Importing an SFS Volume</h4><p id="cce_01_0259__p9288112193">CCE allows you to import existing SFS volumes.</p>
-<ol id="cce_01_0259__ol19171581916"><li id="cce_01_0259__li21714517193"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0259__b3330613102718">Resource Management </strong>&gt;<strong id="cce_01_0259__b1634071302715"> Storage</strong>. On the <strong id="cce_01_0259__b1234161319271">SFS</strong> tab page, click <strong id="cce_01_0259__b5341151382712">Import</strong>.</span></li><li id="cce_01_0259__li181745101913"><span>Select one or more SFS volumes that you want to attach.</span></li><li id="cce_01_0259__li61765121914"><span>Select the target cluster and namespace. Then, click <span class="uicontrol" id="cce_01_0259__uicontrol17404634171418"><b>OK</b></span>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0259__section1591505155817"><h4 class="sectiontitle">Unbinding an SFS Volume</h4><p id="cce_01_0259__p8292171018571">When an SFS volume is successfully created or imported, the volume is automatically bound to the current cluster. Other clusters can also use the volume. When the SFS volume is unbound from the cluster, other clusters can still import and use the volume.</p>
-<p id="cce_01_0259__p211712186589">If the SFS volume has been attached to a workload, the volume cannot be unbound from the cluster.</p>
-<ol id="cce_01_0259__ol9372446185820"><li id="cce_01_0259__li1837264619583"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0259__b132781207278">Resource Management</strong> &gt; <strong id="cce_01_0259__b2287620142712">Storage</strong>. In the SFS volume list, click <strong id="cce_01_0259__b4288620192718">Unbind</strong> next to the target volume.</span></li><li id="cce_01_0259__li104361539807"><span>Confirm the unbinding, and click <strong id="cce_01_0259__b18241833151520">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0259__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0259__p135366513116">After an SFS volume is created, you can perform the operation described in <a href="#cce_01_0259__table1619535674020">Table 3</a>.
-<div class="tablenoborder"><a name="cce_01_0259__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0259__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Other operations</caption><thead align="left"><tr id="cce_01_0259__row111622425139"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.7.2.2.2.3.1.1"><p id="cce_01_0259__p81621742171318">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.7.2.2.2.3.1.2"><p id="cce_01_0259__p121621842131310">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0259__row141621942121312"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.2.2.3.1.1 "><p id="cce_01_0259__p4162174281310">Deleting an SFS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.7.2.2.2.3.1.2 "><ol id="cce_01_0259__ol1216224219134"><li id="cce_01_0259__li1216294215130">Select the SFS volume to be deleted and click <strong id="cce_01_0259__b145340111514">Delete</strong> in the <strong id="cce_01_0259__b12111840141519">Operation</strong> column.</li><li id="cce_01_0259__li2016215423135">Follow the prompts to delete the EVS disk.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0259__row131623427133"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.2.2.3.1.1 "><p id="cce_01_0259__p1316212422136">Importing an SFS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.7.2.2.2.3.1.2 "><p id="cce_01_0259__p4162104220134">CCE allows you to import existing SFS volumes.</p>
-<ol id="cce_01_0259__ol7162042181313"><li id="cce_01_0259__li116264261313">On the <strong id="cce_01_0259__b1404114561518">SFS</strong> tab page, click <strong id="cce_01_0259__b1441015452152">Import</strong>.</li><li id="cce_01_0259__li5162144215139">Select one or more SFS volumes that you want to attach.</li><li id="cce_01_0259__li5162164216133">Select the target cluster and namespace.</li><li id="cce_01_0259__li9162144214139">Click <span class="uicontrol" id="cce_01_0259__uicontrol20455144818155"><b>Yes</b></span>.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0111.html">SFS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0262.html b/docs/cce/umn/cce_01_0262.html
deleted file mode 100644
index 8b44b14b..00000000
--- a/docs/cce/umn/cce_01_0262.html
+++ /dev/null
@@ -1,149 +0,0 @@
-<a name="cce_01_0262"></a><a name="cce_01_0262"></a>
-
-<h1 class="topictitle1">Creating a StatefulSet Mounted with an SFS Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0262__en-us_topic_0000001244260987_section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0262__en-us_topic_0000001244260987_p11734132718149">CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).</p>
-</div>
-<div class="section" id="cce_01_0262__en-us_topic_0000001244260987_section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0262__en-us_topic_0000001244260987_p457511329362">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0262__en-us_topic_0000001244260987_section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0262__en-us_topic_0000001244260987_p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
-</div>
-<div class="section" id="cce_01_0262__en-us_topic_0000001244260987_section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0262__en-us_topic_0000001244260987_ol1350515318149"><li id="cce_01_0262__en-us_topic_0000001244260987_li85058532149"><span>Create an SFS volume by referring to <a href="cce_01_0378.html">PersistentVolumeClaims (PVCs)</a> and record the volume name.</span></li><li id="cce_01_0262__en-us_topic_0000001244260987_li106135421364"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0262__en-us_topic_0000001244260987_li8612171441813"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_01_0262__en-us_topic_0000001244260987_b1844313112362">sfs-statefulset-example</strong>.<strong id="cce_01_0262__en-us_topic_0000001244260987_b545091633610">yaml</strong>.</span><p><p id="cce_01_0262__en-us_topic_0000001244260987_p13379173818187"><strong id="cce_01_0262__en-us_topic_0000001244260987_b18379538171814">touch sfs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0262__en-us_topic_0000001244260987_p3379203871816"><strong id="cce_01_0262__en-us_topic_0000001244260987_b2037953881811">vi sfs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0262__en-us_topic_0000001244260987_p9985153518198">Configuration example:</p>
-<pre class="screen" id="cce_01_0262__en-us_topic_0000001244260987_screen1085510415199">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: sfs-statefulset-example
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: sfs-statefulset-example
-  template:
-    metadata:
-      labels:
-        app: sfs-statefulset-example
-    spec:
-      volumes: 
-      - name: pvc-sfs-example 
-        persistentVolumeClaim:
-          claimName: pvc-sfs-example     
-      containers:
-      - name: container-0
-        image: 'nginx:latest'
-        volumeMounts:
-          - name: pvc-sfs-example
-            mountPath: /tmp
-      restartPolicy: Always
-      imagePullSecrets:
-      - name: default-secret 
-  serviceName: sfs-statefulset-example-headless
-  updateStrategy:
-    type: RollingUpdate</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0262__en-us_topic_0000001244260987_table397913279106" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0262__en-us_topic_0000001244260987_row119803273101"><th align="left" class="cellrowborder" valign="top" width="35.61%" id="mcps1.3.4.2.3.2.5.2.4.1.1"><p id="cce_01_0262__en-us_topic_0000001244260987_p711172811283">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="19.139999999999997%" id="mcps1.3.4.2.3.2.5.2.4.1.2"><p id="cce_01_0262__en-us_topic_0000001244260987_p12980132717103">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="45.25%" id="mcps1.3.4.2.3.2.5.2.4.1.3"><p id="cce_01_0262__en-us_topic_0000001244260987_p7981172710104">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0262__en-us_topic_0000001244260987_row99818271102"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0262__en-us_topic_0000001244260987_p5111428152813">spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0262__en-us_topic_0000001244260987_p345291413122">replicas</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0262__en-us_topic_0000001244260987_p119811427161017">Number of pods.</p>
-</td>
-</tr>
-<tr id="cce_01_0262__en-us_topic_0000001244260987_row14981102761010"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0262__en-us_topic_0000001244260987_p01172810283">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0262__en-us_topic_0000001244260987_p1258410114111">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0262__en-us_topic_0000001244260987_p14983152711100">Name of the new workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0262__en-us_topic_0000001244260987_row15983132715104"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0262__en-us_topic_0000001244260987_p111110287288">spec.template.spec.containers</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0262__en-us_topic_0000001244260987_p18404174281219">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0262__en-us_topic_0000001244260987_p2098372713107">Image used by the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0262__en-us_topic_0000001244260987_row17983427181013"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0262__en-us_topic_0000001244260987_p211182811286">spec.template.spec.containers.volumeMounts</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0262__en-us_topic_0000001244260987_p383919212135">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0262__en-us_topic_0000001244260987_p3983142712105">Mount path of a container.</p>
-</td>
-</tr>
-<tr id="cce_01_0262__en-us_topic_0000001244260987_row17159179171318"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0262__en-us_topic_0000001244260987_p1011102862812">spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0262__en-us_topic_0000001244260987_p6104899138">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0262__en-us_topic_0000001244260987_p1210449101314">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0262__en-us_topic_0000001244260987_row51546961311"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0262__en-us_topic_0000001244260987_p711728102820">spec.template.spec.volumes.persistentVolumeClaim</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0262__en-us_topic_0000001244260987_p246811218141">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0262__en-us_topic_0000001244260987_p14105139131316">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0262__en-us_topic_0000001244260987_p86373162018">Example of mounting an SFS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
-<div class="p" id="cce_01_0262__en-us_topic_0000001244260987_p2635163415593"><strong id="cce_01_0262__en-us_topic_0000001244260987_b11182143310526">Example YAML file:</strong><pre class="screen" id="cce_01_0262__en-us_topic_0000001244260987_screen059214341626">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: sfs-statefulset-example
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: sfs-statefulset-example
-  template:
-    metadata:
-      labels:
-        app: sfs-statefulset-example
-    spec:
-      containers:
-        - name: container-0
-          image: 'nginx:latest'
-          volumeMounts:
-            - name: pvc-sfs-auto-example
-              mountPath: /tmp
-      restartPolicy: Always
-      imagePullSecrets:
-        - name: default-secret
-  volumeClaimTemplates:
-    - metadata:
-        name: pvc-sfs-auto-example
-        namespace: default
-      spec:
-        accessModes:
-          - ReadWriteMany
-        resources:
-          requests:
-            storage: 10Gi
-        storageClassName: csi-nas
-  serviceName: sfs-statefulset-example-headless
-  updateStrategy:
-    type: RollingUpdate</pre>
-</div>
-<div class="note" id="cce_01_0262__en-us_topic_0000001244260987_note125211056181112"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0262__en-us_topic_0000001244260987_p75234567113"><strong id="cce_01_0262__en-us_topic_0000001244260987_b1690632519513">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0262__en-us_topic_0000001244260987_b99141325750">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0262__en-us_topic_0000001244260987_li623417282317"><span>Create a StatefulSet.</span><p><p id="cce_01_0262__en-us_topic_0000001244260987_p423410219232"><strong id="cce_01_0262__en-us_topic_0000001244260987_b18234142162314">kubectl create -f  sfs-statefulset-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0111.html">SFS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0263.html b/docs/cce/umn/cce_01_0263.html
deleted file mode 100644
index 9899c4ac..00000000
--- a/docs/cce/umn/cce_01_0263.html
+++ /dev/null
@@ -1,52 +0,0 @@
-<a name="cce_01_0263"></a><a name="cce_01_0263"></a>
-
-<h1 class="topictitle1">Creating a Deployment Mounted with an SFS Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0263__en-us_topic_0000001199021178_section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0263__en-us_topic_0000001199021178_p0780175013561">After an SFS volume is created or imported to CCE, you can mount the volume to a workload.</p>
-</div>
-<div class="section" id="cce_01_0263__en-us_topic_0000001199021178_section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0263__en-us_topic_0000001199021178_p1023472118366">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0263__en-us_topic_0000001199021178_section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0263__en-us_topic_0000001199021178_p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
-</div>
-<div class="section" id="cce_01_0263__en-us_topic_0000001199021178_section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0263__en-us_topic_0000001199021178_ol05361840142120"><li id="cce_01_0263__en-us_topic_0000001199021178_li735122614363"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0263__en-us_topic_0000001199021178_li3590240112114"><span>Run the following commands to configure the <strong id="cce_01_0263__en-us_topic_0000001199021178_b1923181242912">sfs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_01_0263__en-us_topic_0000001199021178_p459116406215"><strong id="cce_01_0263__en-us_topic_0000001199021178_b18593740162114">touch sfs-deployment-example.yaml</strong></p>
-<p id="cce_01_0263__en-us_topic_0000001199021178_p859584012117"><strong id="cce_01_0263__en-us_topic_0000001199021178_b14595540112113">vi sfs-deployment-example.yaml</strong></p>
-<div class="p" id="cce_01_0263__en-us_topic_0000001199021178_p1312737638">Example of mounting an SFS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_01_0263__en-us_topic_0000001199021178_screen11598540132112">apiVersion: apps/v1 
-kind: Deployment 
-metadata: 
-  <span style="color:#FF0001;">name: sfs-deployment-example</span>                                # Workload name
-  namespace: default 
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      app: sfs-deployment-example 
-  template: 
-    metadata: 
-      labels: 
-        app: sfs-deployment-example 
-    spec: 
-      containers: 
-      - image: nginx 
-        name: container-0 
-        volumeMounts: 
-        - <span style="color:#FF0001;">mountPath: /tmp</span>                                # Mount path 
-          name: pvc-sfs-example 
-      imagePullSecrets:
-        - name: default-secret
-      restartPolicy: Always 
-      volumes: 
-      - name: pvc-sfs-example 
-        persistentVolumeClaim: 
-          claimName: <span style="color:#FF0000;">pvc-sfs-auto-example</span>                # PVC name</pre>
-</div>
-<div class="note" id="cce_01_0263__en-us_topic_0000001199021178_note12103218191612"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0263__en-us_topic_0000001199021178_p21046188168"><strong id="cce_01_0263__en-us_topic_0000001199021178_b3571462612">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0263__en-us_topic_0000001199021178_b9571561610">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0263__en-us_topic_0000001199021178_li26411440172111"><span>Run the following command to create the workload:</span><p><p id="cce_01_0263__en-us_topic_0000001199021178_p1948187803"><strong id="cce_01_0263__en-us_topic_0000001199021178_b174317371310">kubectl create -f sfs-deployment-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0111.html">SFS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0265.html b/docs/cce/umn/cce_01_0265.html
deleted file mode 100644
index 3c53fe2b..00000000
--- a/docs/cce/umn/cce_01_0265.html
+++ /dev/null
@@ -1,158 +0,0 @@
-<a name="cce_01_0265"></a><a name="cce_01_0265"></a>
-
-<h1 class="topictitle1">Using OBS Volumes</h1>
-<div id="body1599890911520"><div class="section" id="cce_01_0265__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0265__p3254172811916">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0265__section5807185714121"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0265__ul117135591912"><li id="cce_01_0265__li671312521915">CCE clusters of v1.7.3-r8 and earlier do not support OBS volumes. You need to upgrade these clusters or create clusters of a later version that supports OBS.</li><li id="cce_01_0265__li147138531910">Volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li></ul>
-</div>
-<div class="section" id="cce_01_0265__section14271608324"><h4 class="sectiontitle">Preparations</h4><p id="cce_01_0265__p1766967193214">To mount reliable and stable OBS buckets as volumes, you must create AK/SK before you create OBS buckets.</p>
-<p id="cce_01_0265__p1600185183819">The procedure for configuring the AK/SK is as follows:</p>
-<ol id="cce_01_0265__ol12736055133713"><li id="cce_01_0265__li1773685573712">Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0265__b1415653954720">Resource Management</strong> &gt; <strong id="cce_01_0265__b15157183919473">Storage</strong>.</li><li id="cce_01_0265__li1173711554370">On the <strong id="cce_01_0265__b202174375528">OBS</strong> tab page, click <strong id="cce_01_0265__b20225637155214">AK/SK</strong> in the notice.<div class="fignone" id="cce_01_0265__fig1616314111256"><span class="figcap"><b>Figure 1 </b>Configuring the AK/SK</span><br><span><img id="cce_01_0265__image183618192418" src="en-us_image_0000001190538605.png"></span></div>
-</li><li id="cce_01_0265__li153291758104919">Click <span><img id="cce_01_0265__image717411811356" src="en-us_image_0000001088110417.png"></span>, select a key file, and click <strong id="cce_01_0265__b5178161814358">Upload</strong> to upload the key file.</li><li id="cce_01_0265__li193181124535">Select the corresponding workload and click <strong id="cce_01_0265__b17516587910">Restart</strong>.</li></ol>
-<div class="notice" id="cce_01_0265__note1853562913389"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0265__p6698115821115">When creating an OBS volume, you must use the AK/SK. If the key file is not uploaded, the pod will fail to be started or OBS data access will be abnormal due to the volume mounting failure.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0265__section172788131291"><h4 class="sectiontitle">Creating an OBS Volume</h4><ol id="cce_01_0265__ol118398397451"><li id="cce_01_0265__li1272293210174"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0265__b18397914507">Resource Management</strong> &gt; <strong id="cce_01_0265__b1839811141011">Storage</strong>.</span></li><li id="cce_01_0265__li192420116348"><span>Click the <strong id="cce_01_0265__b730017381760">OBS</strong> tab and click <strong id="cce_01_0265__b178451017710">Create OBS Bucket</strong>.</span></li><li id="cce_01_0265__li237312562352"><span>Configure basic information, as shown in <a href="#cce_01_0265__table20328123218464">Table 1</a>. </span><p>
-<div class="tablenoborder"><a name="cce_01_0265__table20328123218464"></a><a name="table20328123218464"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0265__table20328123218464" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating an OBS volume</caption><thead align="left"><tr id="cce_01_0265__row533073264618"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.4.2.3.2.1.2.3.1.1"><p id="cce_01_0265__p12330932164617">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.4.2.3.2.1.2.3.1.2"><p id="cce_01_0265__p133306326467">Parameter Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0265__row0330113224615"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0265__p18330232154618">* PVC Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0265__p376419205498">Name of the new PVC, which is different from the volume name. The actual volume name is automatically generated when the PV is created by the PVC.</p>
-<p id="cce_01_0265__p1963791814146">The name contains 3 to 55 characters (excluding the prefix). It must contain lowercase letters, digits, and hyphens (-), and cannot start or end with a hyphen (-).</p>
-</td>
-</tr>
-<tr id="cce_01_0265__row1679320313206"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0265__p20794143102020">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0265__p18795532202">Cluster to which the OBS volume belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0265__row1831531302018"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0265__p9315313132012">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0265__p103151213162015">Namespace to which the volume belongs. The default value is <strong id="cce_01_0265__b14904756173413">default</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0265__row062985115140"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0265__p26291351111418">Instance Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0265__p2630135117141">Type of the storage instance created on OBS.</p>
-<ul id="cce_01_0265__ul6442121841620"><li id="cce_01_0265__li1215112402199"><strong id="cce_01_0265__b743152112920">Parallel file system</strong>: <strong id="cce_01_0265__b19431122192916">If the cluster version is v1.15 or later and the everest add-on version is 1.0.2 or later</strong>, parallel file systems that can be mounted by obsfs can be created. </li><li id="cce_01_0265__li2443121811612"><strong id="cce_01_0265__b1381682962913">Object bucket</strong>: A bucket is a container for storing objects in OBS. OBS provides flat storage in the form of buckets and objects. Unlike the conventional multi-layer directory structure of file systems, all objects in a bucket are stored at the same logical layer. </li></ul>
-<div class="note" id="cce_01_0265__note8883716545"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0265__p11891477546">Parallel file systems are optimized OBS objects. You are advised to <strong id="cce_01_0265__b5319133119319">use parallel file systems</strong> instead of object buckets to mount OBS volumes to containers.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0265__row20242958195514"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0265__p20635941181513">Storage Class</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0265__p1031415221614">This parameter is displayed when you select <strong id="cce_01_0265__b2936155322918">Object bucket</strong> for <strong id="cce_01_0265__b16936165314293">Instance Type</strong>.</p>
-<p style="color:#3F3F3F;" id="cce_01_0265__p30952037173155">This parameter indicates the storage classes supported by OBS.</p>
-<ul id="cce_01_0265__ul43583460173158"><li id="cce_01_0265__li55534600173158"><strong style="color:#3F3F3F;" id="cce_01_0265__b12183181173012">Standard</strong><span style="color:#3F3F3F;">: applicable to scenarios where a large number of hotspot files or small-sized files need to be accessed frequently (multiple times per month on average) and require fast access response.</span></li><li id="cce_01_0265__li4115988717327"><strong id="cce_01_0265__b1250116723011">Infrequent access</strong>: applicable to scenarios where data is not frequently accessed (less than 12 times per year on average) but requires fast access response.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0265__row1233003234610"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0265__p833073234615">Storage Policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0265__p20906622172911">Object storage has the following policies:</p>
-<p id="cce_01_0265__p5264032173524"><strong id="cce_01_0265__b842352706102734">Private</strong>: Only the bucket owner has full control over the bucket. Unauthorized users do not have permissions to access the bucket.</p>
-</td>
-</tr>
-<tr id="cce_01_0265__row11501316111314"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0265__p112371055298">Access Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0265__p3231132814432">Access permissions of user applications on storage resources (PVs).</p>
-<ul id="cce_01_0265__ul9888144214446"><li id="cce_01_0265__li138886427446"><strong id="cce_01_0265__b19764144611352">ReadWriteMany</strong> (RWX): The volume is mounted as read-write by multiple nodes.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0265__row14260114719331"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0265__p10260747193315">Storage Format</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0265__p411413436364">The default type is <strong id="cce_01_0265__b4444205010357">CSI</strong>.</p>
-<p id="cce_01_0265__p726054783312">The container storage interface (CSI) is used to establish a set of standard storage management interfaces between Kubernetes and external storage systems to provide storage services for containers.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0265__li2944171214235"><span>Click <strong id="cce_01_0265__b173013577353">Create</strong>. </span><p><p id="cce_01_0265__p1365755165519">After the OBS volume is successfully created, it is displayed in the OBS volume list. Click the PVC name to view detailed information about the OBS volume.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0265__section152804130911"><h4 class="sectiontitle">Adding an OBS Volume</h4><ol id="cce_01_0265__ol147961048145416"><li id="cce_01_0265__li53652056152818"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, <a href="cce_01_0216.html">Creating a DaemonSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. After you have added a container, choose <strong id="cce_01_0265__b122221050164418">Data Storage</strong> &gt; <strong id="cce_01_0265__b132221950104414">Cloud Volume</strong>, and then click <strong id="cce_01_0265__b22221650174411">Add Cloud Volume</strong>.</span></li><li id="cce_01_0265__li174061024145712"><span>Set <strong id="cce_01_0265__b1619475111444">Type</strong> to <strong id="cce_01_0265__b141944514442">OBS</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0265__table92361828184111" frame="border" border="1" rules="all"><caption><b>Table 2 </b>OBS volume parameters</caption><thead align="left"><tr id="cce_01_0265__row1123032804112"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.5.2.2.2.1.2.3.1.1"><p id="cce_01_0265__p172302282414">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79%" id="mcps1.3.5.2.2.2.1.2.3.1.2"><p id="cce_01_0265__p3230828194110">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0265__row5231428164112"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0265__p1823022810419"><strong id="cce_01_0265__b10145185794412">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0265__p74221416164218">Select <strong id="cce_01_0265__b3335182844516">OBS</strong>.</p>
-<p id="cce_01_0265__p7613837185517"><strong id="cce_01_0265__b365214194219">OBS</strong>: Standard and Infrequent Access OBS buckets are supported. OBS buckets are commonly used for big data analytics, cloud native applications, static website hosting, and backup/active archiving.</p>
-</td>
-</tr>
-<tr id="cce_01_0265__row123122810414"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.5.2.2.2.1.2.3.1.1 mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0265__p11231112813414"><strong id="cce_01_0265__b420193174517">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0265__row02321728174113"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0265__p11231528124119">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0265__p323192813419"><strong id="cce_01_0265__b1232153716452">Name</strong>: Select a created OBS volume.</p>
-<p id="cce_01_0265__p1985188124412"><strong id="cce_01_0265__b668020394452">Sub-Type</strong>: class of the selected volume. The value can be <strong id="cce_01_0265__b10681153912454">Standard</strong> or <strong id="cce_01_0265__b96817397456">Infrequent access</strong>, and you do not need to set this parameter. </p>
-</td>
-</tr>
-<tr id="cce_01_0265__row1383163416508"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0265__p17832113415502">Automatic</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0265__p7183151125111">Type of the storage instance created on OBS.</p>
-<ul id="cce_01_0265__ul1518310119519"><li id="cce_01_0265__li3183411195113"><strong id="cce_01_0265__b14180104418453">Parallel file system</strong>: <strong id="cce_01_0265__b151801744144515">If the cluster version is v1.15 or later and the everest add-on version is 1.0.2 or later</strong>, parallel file systems that can be mounted by obsfs can be created. <p id="cce_01_0265__p1728374713519"><strong id="cce_01_0265__b187921646124511">Storage Format</strong>: The default value is <strong id="cce_01_0265__b187931946124514">CSI</strong>.</p>
-</li><li id="cce_01_0265__li8184611125111"><strong id="cce_01_0265__b175006505452">Object bucket</strong>: A bucket is a container for storing objects in OBS. <p id="cce_01_0265__p18709722614"><strong id="cce_01_0265__b20717141919463">Sub-Type</strong>: Select <strong id="cce_01_0265__b14718201912464">Standard</strong> or <strong id="cce_01_0265__b471881934619">Infrequent access</strong>.</p>
-<p id="cce_01_0265__p1430741012613"><strong id="cce_01_0265__b79817216461">Storage Format</strong>: The default value is <strong id="cce_01_0265__b69813216462">CSI</strong>.</p>
-</li></ul>
-<div class="note" id="cce_01_0265__note1912233415533"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0265__p20122113445319">Parallel file systems are optimized OBS objects. You are advised to <strong id="cce_01_0265__b351616437">use parallel file systems</strong> instead of object buckets to mount OBS volumes to containers.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0265__row102359282414"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0265__p823452811412">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0265__p4174161519591">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0265__ol1295716261782"><li id="cce_01_0265__li051415055316"><strong id="cce_01_0265__b845333212915">Container Path</strong>: Enter the mount path in the container, for example, <strong id="cce_01_0265__b12459632393">/tmp</strong>.<div class="p" id="cce_01_0265__p45501641058">The mount path must not be a system directory, such as <strong id="cce_01_0265__b1385314361912">/</strong> and <strong id="cce_01_0265__b138537362090">/var/run</strong>. Otherwise, an exception occurs. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0265__note8564354147"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0265__p85554241956">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0265__li651460145315">Set permissions.<ul id="cce_01_0265__ul1651480165315"><li id="cce_01_0265__li65147025319"><strong id="cce_01_0265__b1834915489918">Read-only</strong>: You can only read the data in the mounted volumes.</li><li id="cce_01_0265__li195143016539"><strong id="cce_01_0265__b871713558912">Read/Write</strong>: You can modify the data in the mounted volumes. Newly written data is not migrated if the container is migrated, which causes a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0265__p165839491213">Click <strong id="cce_01_0265__b1263735916917">Add Container Path</strong> to add multiple settings. Then, click <strong id="cce_01_0265__b5637105920914">OK</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0265__li5223133901318"><span>Click <strong id="cce_01_0265__b5539184153319">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0265__section1528121319910"><h4 class="sectiontitle">Importing an OBS Volume</h4><p id="cce_01_0265__p1695173122017">CCE allows you to import existing OBS volumes.</p>
-<ol id="cce_01_0265__ol259913992018"><li id="cce_01_0265__li1559818982015"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0265__b295912261811">Resource Management</strong> &gt; <strong id="cce_01_0265__b18959626814">Storage</strong>. On the <strong id="cce_01_0265__b09604261117">OBS</strong> tab page, click <strong id="cce_01_0265__b189600261517">Import</strong>.</span></li><li id="cce_01_0265__li35981999201"><span>Select one or more OBS volumes that you want to import.</span><p><div class="note" id="cce_01_0265__note676961710554"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0265__p4769161715558">Parallel file systems are optimized OBS objects. You are advised to <strong id="cce_01_0265__b1774164083110">use parallel file systems</strong> instead of object buckets to mount OBS volumes to containers.</p>
-</div></div>
-</p></li><li id="cce_01_0265__li18598997209"><span>Select the target cluster and namespace.</span></li><li id="cce_01_0265__li145991796207"><span>Click <strong id="cce_01_0265__b062164615108">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0265__section0281121315919"><h4 class="sectiontitle">Unbinding an OBS Volume</h4><p id="cce_01_0265__p11951344655">When an OBS volume is successfully created, the OBS volume is automatically bound to the current cluster. Other clusters can also use the OBS volume. When the volume is unbound from the cluster, other clusters can still use the volume.</p>
-<p id="cce_01_0265__p148310441455">If the volume has been mounted to a workload, the volume cannot be unbound from the cluster.</p>
-<ol id="cce_01_0265__ol158694417511"><li id="cce_01_0265__li5888441852"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0265__b48509411412">Resource Management</strong> &gt; <strong id="cce_01_0265__b1086094119119">Storage</strong>. In the OBS volume list, click <strong id="cce_01_0265__b286113414115">Unbind</strong> next to the target OBS volume.</span></li><li id="cce_01_0265__li149034413520"><span>In the dialog box displayed, click <strong id="cce_01_0265__b234104814816">Yes</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0265__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0265__p373851811418">After an OBS volume is created, you can perform the operation described in <a href="#cce_01_0265__table1619535674020">Table 3</a>.
-<div class="tablenoborder"><a name="cce_01_0265__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0265__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Other Operations</caption><thead align="left"><tr id="cce_01_0265__row172352321036"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.8.2.2.2.3.1.1"><p id="cce_01_0265__p1423523214310">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.8.2.2.2.3.1.2"><p id="cce_01_0265__p20235132536">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0265__row182356329317"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.8.2.2.2.3.1.1 "><p id="cce_01_0265__p723583214310">Deleting an OBS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.8.2.2.2.3.1.2 "><ol id="cce_01_0265__ol15235932439"><li id="cce_01_0265__li122351932038">Select the OBS volume to be deleted and click <strong id="cce_01_0265__b4435135434810">Delete</strong> in the <strong id="cce_01_0265__b24369549481">Operation</strong> column.</li><li id="cce_01_0265__li16235123212315">Follow the prompts to delete the volume.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0160.html">OBS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0268.html b/docs/cce/umn/cce_01_0268.html
deleted file mode 100644
index 2dc8d80c..00000000
--- a/docs/cce/umn/cce_01_0268.html
+++ /dev/null
@@ -1,152 +0,0 @@
-<a name="cce_01_0268"></a><a name="cce_01_0268"></a>
-
-<h1 class="topictitle1">Creating a StatefulSet Mounted with an OBS Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0268__en-us_topic_0000001244261029_section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0268__en-us_topic_0000001244261029_p417532394118">CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.</p>
-</div>
-<div class="section" id="cce_01_0268__en-us_topic_0000001244261029_section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0268__en-us_topic_0000001244261029_p159115509349">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0268__en-us_topic_0000001244261029_section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0268__en-us_topic_0000001244261029_p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
-</div>
-<div class="section" id="cce_01_0268__en-us_topic_0000001244261029_section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0268__en-us_topic_0000001244261029_ol15239131281911"><li id="cce_01_0268__en-us_topic_0000001244261029_li823912124195"><span>Create an OBS volume by referring to <a href="cce_01_0378.html">PersistentVolumeClaims (PVCs)</a> and obtain the PVC name.</span></li><li id="cce_01_0268__en-us_topic_0000001244261029_li023913138296"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0268__en-us_topic_0000001244261029_li17489105723120"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_01_0268__en-us_topic_0000001244261029_b111971432151016">obs-statefulset-example.yaml</strong>.</span><p><p id="cce_01_0268__en-us_topic_0000001244261029_p3653181443819"><strong id="cce_01_0268__en-us_topic_0000001244261029_b166535149387">touch obs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p16534140382"><strong id="cce_01_0268__en-us_topic_0000001244261029_b765381423813">vi obs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p5766151773814">Configuration example:</p>
-<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen598644117388">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: obs-statefulset-example
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: obs-statefulset-example
-  template:
-    metadata:
-      labels:
-        app: obs-statefulset-example
-    spec:
-      volumes: 
-      - name: pvc-obs-example 
-        persistentVolumeClaim:
-          claimName: <span style="color:#FF0000;">pvc-obs-example     </span>
-      containers:
-      - name: container-0
-        image: 'nginx:latest'
-        volumeMounts:
-          - name: <span style="color:#FF0000;">pvc-obs-example</span>
-            mountPath: /tmp
-      restartPolicy: Always
-      imagePullSecrets:
-      - name: default-secret 
-  serviceName: obs-statefulset-example-headless    # Name of the headless Service</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0268__en-us_topic_0000001244261029_table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0268__en-us_topic_0000001244261029_row1425005815020"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.5.2.3.1.1"><p id="cce_01_0268__en-us_topic_0000001244261029_p1525045817501">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.5.2.3.1.2"><p id="cce_01_0268__en-us_topic_0000001244261029_p162501858165014">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0268__en-us_topic_0000001244261029_row725065865014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0268__en-us_topic_0000001244261029_p152504582506">replicas</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0268__en-us_topic_0000001244261029_p1425185812509">Number of pods.</p>
-</td>
-</tr>
-<tr id="cce_01_0268__en-us_topic_0000001244261029_row1025175814505"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0268__en-us_topic_0000001244261029_p1825125813505">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0268__en-us_topic_0000001244261029_p1178914555417">Name of the new workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0268__en-us_topic_0000001244261029_row17251115805017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0268__en-us_topic_0000001244261029_p2025185817509">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0268__en-us_topic_0000001244261029_p9251125875017">Image used by the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0268__en-us_topic_0000001244261029_row8251165845018"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0268__en-us_topic_0000001244261029_p22521858135013">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0268__en-us_topic_0000001244261029_p1525285819508">Mount path of a container.</p>
-</td>
-</tr>
-<tr id="cce_01_0268__en-us_topic_0000001244261029_row848562355515"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0268__en-us_topic_0000001244261029_p144666233557">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0268__en-us_topic_0000001244261029_p1090712121565">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0268__en-us_topic_0000001244261029_row8483182315551"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0268__en-us_topic_0000001244261029_p846772375512">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0268__en-us_topic_0000001244261029_p346792375514">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p136955819379">Example of mounting an OBS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p13386194363812"><strong id="cce_01_0268__en-us_topic_0000001244261029_b11233152013288">Example YAML:</strong></p>
-<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen544010214389">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: obs-statefulset-example
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: obs-statefulset-example
-  template:
-    metadata:
-      labels:
-        app: obs-statefulset-example
-    spec:
-      containers:
-        - name: container-0
-          image: 'nginx:latest'
-          volumeMounts:
-            - name: pvc-obs-auto-example
-              mountPath: /tmp
-      restartPolicy: Always
-      imagePullSecrets:
-        - name: default-secret
-  volumeClaimTemplates:
-    - metadata:
-        name: pvc-obs-auto-example
-        namespace: default
-        annotations:
-          everest.io/obs-volume-type: STANDARD
-      spec:
-        accessModes:
-          - ReadWriteMany
-        resources:
-          requests:
-            storage: 1Gi
-        storageClassName: csi-obs  
-  serviceName: obs-statefulset-example-headless</pre>
-</p></li><li id="cce_01_0268__en-us_topic_0000001244261029_li156013162401"><span>Create a StatefulSet.</span><p><p id="cce_01_0268__en-us_topic_0000001244261029_p46091124144014"><strong id="cce_01_0268__en-us_topic_0000001244261029_b16609152417405">kubectl create -f obs-statefulset-example.yaml</strong></p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0268__en-us_topic_0000001244261029_section179416310352"><h4 class="sectiontitle">Verifying Persistent Storage of an OBS Volume</h4><ol id="cce_01_0268__en-us_topic_0000001244261029_ol4999113815404"><li id="cce_01_0268__en-us_topic_0000001244261029_li19999203814405"><span>Query the pod and OBS volume of the deployed workload (for example, <strong id="cce_01_0268__en-us_topic_0000001244261029_b1041524782819">obs-statefulset-example</strong>).</span><p><ol type="a" id="cce_01_0268__en-us_topic_0000001244261029_ol8584452175015"><li id="cce_01_0268__en-us_topic_0000001244261029_li5584252125015">Run the following command to query the pod name of the workload:<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen1477515615319">kubectl get po | grep obs-statefulset-example</pre>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p3677113718527">Expected outputs:</p>
-<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen1659915915210">obs-statefulset-example-0   1/1     Running   0          2m5s</pre>
-</li><li id="cce_01_0268__en-us_topic_0000001244261029_li172361712165217">Run the following command to check whether an OBS volume is mounted to the <strong id="cce_01_0268__en-us_topic_0000001244261029_b6179191710298">/tmp</strong> directory:<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen14110110115418">kubectl exec obs-statefulset-example-0 -- mount|grep /tmp</pre>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p1596671205518">Expected outputs:</p>
-<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen1792141555414">s3fs on /tmp type fuse.s3fs (rw,nosuid,nodev,relatime,user_id=0,group_id=0,allow_other)</pre>
-</li></ol>
-</p></li><li id="cce_01_0268__en-us_topic_0000001244261029_li15750205312556"><span>Run the following command to create a file named <strong id="cce_01_0268__en-us_topic_0000001244261029_b5751830132919">test</strong> in the <strong id="cce_01_0268__en-us_topic_0000001244261029_b10799304293">/tmp</strong> directory:</span><p><pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen07801324205418">kubectl exec obs-statefulset-example-0 -- touch /tmp/test</pre>
-</p></li><li id="cce_01_0268__en-us_topic_0000001244261029_li343411174573"><span>Run the following command to view the file in the <strong id="cce_01_0268__en-us_topic_0000001244261029_b04651237152918">/tmp</strong> directory:</span><p><pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen4181133113541">kubectl exec obs-statefulset-example-0 -- ls -l /tmp</pre>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p4581437125810">Expected outputs:</p>
-<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen690563919548">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
-</p></li><li id="cce_01_0268__en-us_topic_0000001244261029_li1840945513582"><span>Run the following command to delete the pod named <strong id="cce_01_0268__en-us_topic_0000001244261029_b18213847182919">obs-statefulset-example-0</strong>:</span><p><pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen0451134319548">kubectl delete po obs-statefulset-example-0</pre>
-</p></li><li id="cce_01_0268__en-us_topic_0000001244261029_li188315111203"><span>Check whether the file still exists after the pod is rebuilt.</span><p><ol type="a" id="cce_01_0268__en-us_topic_0000001244261029_ol192831981117"><li id="cce_01_0268__en-us_topic_0000001244261029_li12838819115">Run the following command to query the name of the rebuilt pod:<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen1768311482542">kubectl get po</pre>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p3901203422">Expected outputs:</p>
-<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen11176952145414">obs-statefulset-example-0   1/1     Running   0          2m</pre>
-</li><li id="cce_01_0268__en-us_topic_0000001244261029_li220813138214">Run the following command to view the file in the <strong id="cce_01_0268__en-us_topic_0000001244261029_b1356123143019">/tmp</strong> directory:<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen584835585420">kubectl exec obs-statefulset-example-0 -- ls -l /tmp</pre>
-<p id="cce_01_0268__en-us_topic_0000001244261029_p1742016385220">Expected outputs:</p>
-<pre class="screen" id="cce_01_0268__en-us_topic_0000001244261029_screen132285019134">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
-</li><li id="cce_01_0268__en-us_topic_0000001244261029_li141791742105312">The <strong id="cce_01_0268__en-us_topic_0000001244261029_b175601911143012">test</strong> file still exists after the pod is rebuilt, indicating that the data in the OBS volume can be persistently stored.</li></ol>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0160.html">OBS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0269.html b/docs/cce/umn/cce_01_0269.html
deleted file mode 100644
index 51b68e11..00000000
--- a/docs/cce/umn/cce_01_0269.html
+++ /dev/null
@@ -1,52 +0,0 @@
-<a name="cce_01_0269"></a><a name="cce_01_0269"></a>
-
-<h1 class="topictitle1">Creating a Deployment Mounted with an OBS Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0269__en-us_topic_0000001199021220_section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0269__en-us_topic_0000001199021220_p13415181285914">After an OBS volume is created or imported to CCE, you can mount the volume to a workload.</p>
-</div>
-<div class="section" id="cce_01_0269__en-us_topic_0000001199021220_section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0269__en-us_topic_0000001199021220_p1860619396347">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0269__en-us_topic_0000001199021220_section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0269__en-us_topic_0000001199021220_p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
-</div>
-<div class="section" id="cce_01_0269__en-us_topic_0000001199021220_section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0269__en-us_topic_0000001199021220_ol1367331010214"><li id="cce_01_0269__en-us_topic_0000001199021220_li1742454347"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0269__en-us_topic_0000001199021220_li13722131012216"><span>Run the following commands to configure the <strong id="cce_01_0269__en-us_topic_0000001199021220_b142371018131716">obs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_01_0269__en-us_topic_0000001199021220_p9724141011211"><strong id="cce_01_0269__en-us_topic_0000001199021220_b929318132249">touch obs-deployment-example.yaml</strong></p>
-<p id="cce_01_0269__en-us_topic_0000001199021220_p19726151015213"><strong id="cce_01_0269__en-us_topic_0000001199021220_b258010211243">vi obs-deployment-example.yaml</strong></p>
-<div class="p" id="cce_01_0269__en-us_topic_0000001199021220_p17621182320411">Example of mounting an OBS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_01_0269__en-us_topic_0000001199021220_screen117301810128">apiVersion: apps/v1 
-kind: Deployment 
-metadata: 
- <span style="color:#FF0001;"> name: obs-deployment-example</span>                        # Workload name
-  namespace: default 
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      <span style="color:#FF0001;">app: obs-deployment-example</span> 
-  template: 
-    metadata: 
-      labels: 
-        app: obs-deployment-example 
-    spec: 
-      containers: 
-      - image: nginx
-        name: container-0 
-        volumeMounts: 
-        - <span style="color:#FF0001;">mountPath: /tmp</span>                       # Mount path
-          name: pvc-obs-example 
-      restartPolicy: Always
-      imagePullSecrets:
-        - name: default-secret
-      volumes: 
-      - name: pvc-obs-example  
-        persistentVolumeClaim: 
-          claimName: <span style="color:#FF0000;">pvc-obs-auto-example</span>       # PVC name</pre>
-</div>
-<div class="note" id="cce_01_0269__en-us_topic_0000001199021220_note115140415814"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0269__en-us_topic_0000001199021220_p189467332584"><strong id="cce_01_0269__en-us_topic_0000001199021220_b136669314204">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0269__en-us_topic_0000001199021220_b106731331182015">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0269__en-us_topic_0000001199021220_li877711108215"><span>Run the following command to create the workload:</span><p><p id="cce_01_0269__en-us_topic_0000001199021220_p7381182911811"><strong id="cce_01_0269__en-us_topic_0000001199021220_b998214461244">kubectl create -f obs-deployment-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0160.html">OBS Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0271.html b/docs/cce/umn/cce_01_0271.html
deleted file mode 100644
index 8d473d86..00000000
--- a/docs/cce/umn/cce_01_0271.html
+++ /dev/null
@@ -1,58 +0,0 @@
-<a name="cce_01_0271"></a><a name="cce_01_0271"></a>
-
-<h1 class="topictitle1">Using SFS Turbo Volumes</h1>
-<div id="body1599891402755"><div class="section" id="cce_01_0271__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0271__p3254172811916">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0271__section121371740152514"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0271__ul018317330917"><li id="cce_01_0271__li175816225157">SFS Turbo volumes are available only in certain regions.</li><li id="cce_01_0271__li1218393318910">Currently, SFS Turbo file systems cannot be directly created on CCE.</li><li id="cce_01_0271__li996717342093">Only an SFS Turbo file system in the same VPC as the cluster and in the same subnet as the node can be imported.</li><li id="cce_01_0271__li118871350151018">Inbound ports (111, 445, 2049, 2051, and 20048) must be enabled for the security group to which the SFS Turbo file system belongs.</li></ul>
-</div>
-<div class="section" id="cce_01_0271__section57261325121712"><a name="cce_01_0271__section57261325121712"></a><a name="section57261325121712"></a><h4 class="sectiontitle">Importing an SFS Turbo Volume</h4><p id="cce_01_0271__p41927149342">CCE allows you to import existing SFS Turbo volumes. </p>
-<ol id="cce_01_0271__ol1119281443411"><li id="cce_01_0271__li1919217142349"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0271__b1618615139440">Resource Management </strong>&gt;<strong id="cce_01_0271__b1118721364413"> Storage</strong>. On the <strong id="cce_01_0271__b12187313124416">SFS Turbo</strong> tab page, click <strong id="cce_01_0271__b14188141312446">Import</strong>.</span></li><li id="cce_01_0271__li1219231414345"><span>Select one or more SFS Turbo volumes that you want to import.</span></li><li id="cce_01_0271__li13193161453412"><span>Select the cluster and namespace to which you want to import the volumes.</span></li><li id="cce_01_0271__li16193141412346"><span>Click <strong id="cce_01_0271__b1199014510319">Next</strong>. The volumes are displayed in the list. When <strong id="cce_01_0271__b941753981819">PVC Status</strong> becomes <strong id="cce_01_0271__b164233399183">Bound</strong>, the volumes are imported successfully.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0271__section1972814252174"><h4 class="sectiontitle">Adding an SFS Turbo Volume</h4><ol id="cce_01_0271__ol1255194616306"><li id="cce_01_0271__li42563461305"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, <a href="cce_01_0216.html">Creating a DaemonSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. After you have added a container, choose <strong id="cce_01_0271__b46374531316">Data Storage</strong> &gt; <strong id="cce_01_0271__b1763819531310">Cloud Volume</strong>, and then click <strong id="cce_01_0271__b1463845311317">Add Cloud Volume</strong>.</span></li><li id="cce_01_0271__li72561346183013"><span>Set the storage volume type to <strong id="cce_01_0271__b142755418310">SFS Turbo</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0271__table106329214305" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for configuring an SFS Turbo volume</caption><thead align="left"><tr id="cce_01_0271__row563314217308"><th align="left" class="cellrowborder" valign="top" width="21.22%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0271__p6980173063015">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="78.78%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0271__p159919308305">Parameter Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0271__row1163319233013"><td class="cellrowborder" valign="top" width="21.22%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0271__p115143193013"><strong id="cce_01_0271__b24751059136">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="78.78%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0271__p121516314309"><strong id="cce_01_0271__b18327201544">SFS Turbo</strong>: applicable to DevOps, containerized microservices, and enterprise office applications.</p>
-</td>
-</tr>
-<tr id="cce_01_0271__row66347223017"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.4.2.2.2.1.2.3.1.1 mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0271__p16500411311"><strong id="cce_01_0271__b9709114418">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0271__row176349219305"><td class="cellrowborder" valign="top" width="21.22%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0271__p76314443112">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="78.78%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0271__p106916420316">Select an existing SFS Turbo volume. You need to import SFS Turbo volumes in advance. For details, see <a href="#cce_01_0271__section57261325121712">Importing an SFS Turbo Volume</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0271__row96341218301"><td class="cellrowborder" valign="top" width="21.22%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0271__p27719473117">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="78.78%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0271__p4174161519591">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0271__ol14514160165311"><li id="cce_01_0271__li132235644313"><strong id="cce_01_0271__b382149444">subPath</strong>: Enter the subpath of the file storage, for example, <strong id="cce_01_0271__b38215491043">/tmp</strong>.<p id="cce_01_0271__p1623933918316">This parameter specifies a subpath inside the referenced volume instead of its root. If this parameter is not specified, the root path is used. Currently, only file storage is supported. The value must be a relative path and cannot start with a slash (/) or ../.</p>
-</li><li id="cce_01_0271__li051415055316"><strong id="cce_01_0271__b191641327142811">Container Path</strong>: Enter the mount path in the container, for example, <strong id="cce_01_0271__b10170927152811">/tmp</strong>.<div class="p" id="cce_01_0271__p45501641058">The mount path must not be a system directory, such as <strong id="cce_01_0271__b19761731172819">/</strong> and <strong id="cce_01_0271__b17683172813">/var/run</strong>. Otherwise, an exception occurs. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0271__note8564354147"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0271__p85554241956">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0271__li651460145315">Set permissions.<ul id="cce_01_0271__ul1651480165315"><li id="cce_01_0271__li65147025319"><strong id="cce_01_0271__b5636184322817">Read-only</strong>: You can only read the data in the mounted volumes.</li><li id="cce_01_0271__li195143016539"><strong id="cce_01_0271__b9397194715284">Read/Write</strong>: You can modify the data in the mounted volumes. Newly written data is not migrated if the container is migrated, which causes a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0271__p165839491213">Click <strong id="cce_01_0271__b112585415285">Add Container Path</strong> to add multiple settings. Then, click <strong id="cce_01_0271__b8132155416283">OK</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0271__li9259144618306"><span>Click <strong id="cce_01_0271__b2243121310344">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0271__section11728182512178"><h4 class="sectiontitle">Unbinding an SFS Turbo Volume</h4><p id="cce_01_0271__p168427114020">When an SFS Turbo volume is successfully imported to a cluster, the volume is bound to the cluster. The volume can also be imported to other clusters. When the volume is unbound from the cluster, other clusters can still import and use the volume.</p>
-<p id="cce_01_0271__p138112764012">If the SFS Turbo volume has been mounted to a workload, the volume cannot be unbound from the cluster.</p>
-<ol id="cce_01_0271__ol198127114020"><li id="cce_01_0271__li17842719401"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0271__b1824971813445">Resource Management</strong> &gt; <strong id="cce_01_0271__b18249218144413">Storage</strong>. In the SFS Turbo volume list, click <strong id="cce_01_0271__b625091814412">Unbind</strong> next to the target volume.</span></li><li id="cce_01_0271__li28172712407"><span>In the dialog box displayed, click <strong id="cce_01_0271__b1595191011291">OK</strong>.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0125.html">SFS Turbo Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0273.html b/docs/cce/umn/cce_01_0273.html
deleted file mode 100644
index 9b64e95b..00000000
--- a/docs/cce/umn/cce_01_0273.html
+++ /dev/null
@@ -1,117 +0,0 @@
-<a name="cce_01_0273"></a><a name="cce_01_0273"></a>
-
-<h1 class="topictitle1">Creating a StatefulSet Mounted with an SFS Turbo Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0273__en-us_topic_0000001199501158_section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0273__en-us_topic_0000001199501158_p8619171413523">CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.</p>
-</div>
-<div class="section" id="cce_01_0273__en-us_topic_0000001199501158_section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0273__en-us_topic_0000001199501158_p157254120330">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0273__en-us_topic_0000001199501158_section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0273__en-us_topic_0000001199501158_p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
-</div>
-<div class="section" id="cce_01_0273__en-us_topic_0000001199501158_section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0273__en-us_topic_0000001199501158_ol661917142523"><li id="cce_01_0273__en-us_topic_0000001199501158_li176191814195219"><span>Create an SFS Turbo volume and record the volume name.</span></li><li id="cce_01_0273__en-us_topic_0000001199501158_li761941413521"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0273__en-us_topic_0000001199501158_li061981475210"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_01_0273__en-us_topic_0000001199501158_b207829123511">sfsturbo-statefulset-example.yaml</strong>.</span><p><p id="cce_01_0273__en-us_topic_0000001199501158_p2619014165213"><strong id="cce_01_0273__en-us_topic_0000001199501158_b16619314205216">touch sfsturbo-statefulset-example.yaml</strong></p>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p9619151414527"><strong id="cce_01_0273__en-us_topic_0000001199501158_b146196149526">vi sfsturbo-statefulset-example.yaml</strong></p>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p136191214155210">Configuration example:</p>
-<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen45402186537">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: sfsturbo-statefulset-example
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: sfsturbo-statefulset-example
-  template:
-    metadata:
-      labels:
-        app: sfsturbo-statefulset-example
-    spec:
-      volumes: 
-      - name: pvc-sfsturbo-example 
-        persistentVolumeClaim:
-          claimName: pvc-sfsturbo-example     
-      containers:
-      - name: container-0
-        image: 'nginx:latest'
-        volumeMounts:
-          - name: pvc-sfsturbo-example
-            mountPath: /tmp
-      restartPolicy: Always
-      imagePullSecrets:
-      - name: default-secret 
-  serviceName: sfsturbo-statefulset-example-headless
-  updateStrategy:
-    type: RollingUpdate</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0273__en-us_topic_0000001199501158_table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0273__en-us_topic_0000001199501158_row439135512158"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.5.2.3.1.1"><p id="cce_01_0273__en-us_topic_0000001199501158_p11391105571516">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.5.2.3.1.2"><p id="cce_01_0273__en-us_topic_0000001199501158_p439255513157">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0273__en-us_topic_0000001199501158_row739215556154"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0273__en-us_topic_0000001199501158_p10106112010189">replicas</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0273__en-us_topic_0000001199501158_p23923555150">Number of pods.</p>
-</td>
-</tr>
-<tr id="cce_01_0273__en-us_topic_0000001199501158_row18143134041612"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0273__en-us_topic_0000001199501158_p11431840161611">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0273__en-us_topic_0000001199501158_p714434016164">Name of the new workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0273__en-us_topic_0000001199501158_row1339295514152"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0273__en-us_topic_0000001199501158_p83921559156">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0273__en-us_topic_0000001199501158_p1839395518152">Image used by the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0273__en-us_topic_0000001199501158_row1339365571519"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0273__en-us_topic_0000001199501158_p239365513155">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0273__en-us_topic_0000001199501158_p10393455131513">Mount path of a container.</p>
-</td>
-</tr>
-<tr id="cce_01_0273__en-us_topic_0000001199501158_row19843742102014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0273__en-us_topic_0000001199501158_p131115042015">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0273__en-us_topic_0000001199501158_p15831142152010">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0273__en-us_topic_0000001199501158_row12841184262014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0273__en-us_topic_0000001199501158_p15151719152119">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0273__en-us_topic_0000001199501158_p2831114232019">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0273__en-us_topic_0000001199501158_note346353313213"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0273__en-us_topic_0000001199501158_p1746423312217"><strong id="cce_01_0273__en-us_topic_0000001199501158_b1987121519302">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0273__en-us_topic_0000001199501158_b10942015163013">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0273__en-us_topic_0000001199501158_li9890133865410"><span>Create the StatefulSet.</span><p><p id="cce_01_0273__en-us_topic_0000001199501158_p9890138175415"><strong id="cce_01_0273__en-us_topic_0000001199501158_b208901538115416">kubectl create -f  sfsturbo-statefulset-example.yaml</strong></p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0273__en-us_topic_0000001199501158_section179416310352"><h4 class="sectiontitle">Verifying Persistent Storage of an SFS Turbo Volume</h4><ol id="cce_01_0273__en-us_topic_0000001199501158_ol4999113815404"><li id="cce_01_0273__en-us_topic_0000001199501158_li19999203814405"><span>Query the pod and SFS Turbo volume of the deployed workload (for example, <strong id="cce_01_0273__en-us_topic_0000001199501158_b19708176135020">sfsturbo-statefulset-example</strong>).</span><p><ol type="a" id="cce_01_0273__en-us_topic_0000001199501158_ol8584452175015"><li id="cce_01_0273__en-us_topic_0000001199501158_li5584252125015">Run the following command to query the pod name of the workload:<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen1477515615319">kubectl get po | grep sfsturbo-statefulset-example</pre>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p3677113718527">Expected outputs:</p>
-<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen1659915915210">sfsturbo-statefulset-example-0   1/1     Running   0          2m5s</pre>
-</li><li id="cce_01_0273__en-us_topic_0000001199501158_li172361712165217">Run the following command to check whether an SFS Turbo volume is mounted to the <strong id="cce_01_0273__en-us_topic_0000001199501158_b071423825216">/tmp</strong> directory:<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen14110110115418">kubectl exec sfsturbo-statefulset-example-0 -- mount|grep /tmp</pre>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p1596671205518">Expected outputs:</p>
-<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen1792141555414">192.168.0.108:/ on /tmp type nfs (rw,relatime,vers=3,rsize=1048576,wsize=1048576,namlen=255,hard,nolock,noresvport,proto=tcp,timeo=600,retrans=2,sec=sys,mountaddr=192.168.0.108,mountvers=3,mountport=20048,mountproto=tcp,local_lock=all,addr=192.168.0.108)</pre>
-</li></ol>
-</p></li><li id="cce_01_0273__en-us_topic_0000001199501158_li15750205312556"><span>Run the following command to create a file named <strong id="cce_01_0273__en-us_topic_0000001199501158_b0802114716520">test</strong> in the <strong id="cce_01_0273__en-us_topic_0000001199501158_b380284710528">/tmp</strong> directory:</span><p><pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen07801324205418">kubectl exec sfsturbo-statefulset-example-0 -- touch /tmp/test</pre>
-</p></li><li id="cce_01_0273__en-us_topic_0000001199501158_li343411174573"><span>Run the following command to view the file in the <strong id="cce_01_0273__en-us_topic_0000001199501158_b9996105219524">/tmp</strong> directory:</span><p><pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen4181133113541">kubectl exec sfsturbo-statefulset-example-0 -- ls -l /tmp</pre>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p4581437125810">Expected outputs:</p>
-<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen690563919548">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
-</p></li><li id="cce_01_0273__en-us_topic_0000001199501158_li1840945513582"><span>Run the following command to delete the pod named <strong id="cce_01_0273__en-us_topic_0000001199501158_b155418587526">sfsturbo-statefulset-example-0</strong>:</span><p><pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen0451134319548">kubectl delete po sfsturbo-statefulset-example-0</pre>
-</p></li><li id="cce_01_0273__en-us_topic_0000001199501158_li188315111203"><span>Check whether the file still exists after the pod is rebuilt.</span><p><ol type="a" id="cce_01_0273__en-us_topic_0000001199501158_ol192831981117"><li id="cce_01_0273__en-us_topic_0000001199501158_li12838819115">Run the following command to query the name of the rebuilt pod:<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen1768311482542">kubectl get po</pre>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p3901203422">Expected outputs:</p>
-<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen11176952145414">sfsturbo-statefulset-example-0   1/1     Running   0          2m</pre>
-</li><li id="cce_01_0273__en-us_topic_0000001199501158_li220813138214">Run the following command to view the file in the <strong id="cce_01_0273__en-us_topic_0000001199501158_b166271353145219">/tmp</strong> directory:<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen584835585420">kubectl exec sfsturbo-statefulset-example-0 -- ls -l /tmp</pre>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p1742016385220">Expected outputs:</p>
-<pre class="screen" id="cce_01_0273__en-us_topic_0000001199501158_screen132285019134">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
-<p id="cce_01_0273__en-us_topic_0000001199501158_p297772514718">The <strong id="cce_01_0273__en-us_topic_0000001199501158_b16214182216541">test</strong> file still exists after the pod is rebuilt, indicating that the data in the SFS Turbo volume can be persistently stored.</p>
-</li></ol>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0125.html">SFS Turbo Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0274.html b/docs/cce/umn/cce_01_0274.html
deleted file mode 100644
index 2cd8428e..00000000
--- a/docs/cce/umn/cce_01_0274.html
+++ /dev/null
@@ -1,77 +0,0 @@
-<a name="cce_01_0274"></a><a name="cce_01_0274"></a>
-
-<h1 class="topictitle1">Creating a Deployment Mounted with an SFS Turbo Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0274__en-us_topic_0000001244261001_section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0274__en-us_topic_0000001244261001_p13415181285914">After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.</p>
-</div>
-<div class="section" id="cce_01_0274__en-us_topic_0000001244261001_section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0274__en-us_topic_0000001244261001_p736123393318">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_01_0066.html">everest</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0274__en-us_topic_0000001244261001_section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0274__en-us_topic_0000001244261001_p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
-</div>
-<div class="section" id="cce_01_0274__en-us_topic_0000001244261001_section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0274__en-us_topic_0000001244261001_ol8551750135510"><li id="cce_01_0274__en-us_topic_0000001244261001_li166120310338"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0274__en-us_topic_0000001244261001_li1355135045513"><span>Run the following commands to configure the <strong id="cce_01_0274__en-us_topic_0000001244261001_b51368292436">sfsturbo-deployment-example.yaml</strong> file, which is used to create a Deployment:</span><p><p id="cce_01_0274__en-us_topic_0000001244261001_p20551165012555"><strong id="cce_01_0274__en-us_topic_0000001244261001_b45511650175517">touch sfsturbo-deployment-example.yaml</strong></p>
-<p id="cce_01_0274__en-us_topic_0000001244261001_p185516509554"><strong id="cce_01_0274__en-us_topic_0000001244261001_b19551450125514">vi sfsturbo-deployment-example.yaml</strong></p>
-<p id="cce_01_0274__en-us_topic_0000001244261001_p95138587551">Example of mounting an SFS Turbo volume to a Deployment (PVC-based, shared volume):</p>
-<pre class="screen" id="cce_01_0274__en-us_topic_0000001244261001_screen1083444825613">apiVersion: apps/v1  
-kind: Deployment  
-metadata:  
-  name: sfsturbo-deployment-example                                # Workload name
-  namespace: default  
-spec:  
-  replicas: 1  
-  selector:  
-    matchLabels:  
-      app: sfsturbo-deployment-example  
-  template:  
-    metadata:  
-      labels:  
-        app: sfsturbo-deployment-example  
-    spec:  
-      containers:  
-      - image: nginx  
-        name: container-0  
-        volumeMounts:  
-        - mountPath: /tmp                                # Mount path
-          name: pvc-sfsturbo-example  
-      restartPolicy: Always
-      imagePullSecrets:
-        - name: default-secret
-      volumes:  
-      - name: pvc-sfsturbo-example  
-        persistentVolumeClaim:  
-          claimName: pvc-sfsturbo-example                # PVC name</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0274__en-us_topic_0000001244261001_table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0274__en-us_topic_0000001244261001_row439135512158"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.2.2.5.2.3.1.1"><p id="cce_01_0274__en-us_topic_0000001244261001_p11391105571516">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.2.2.5.2.3.1.2"><p id="cce_01_0274__en-us_topic_0000001244261001_p439255513157">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0274__en-us_topic_0000001244261001_row18143134041612"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0274__en-us_topic_0000001244261001_p11431840161611">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0274__en-us_topic_0000001244261001_p714434016164">Name of the created Deployment.</p>
-</td>
-</tr>
-<tr id="cce_01_0274__en-us_topic_0000001244261001_row1339295514152"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0274__en-us_topic_0000001244261001_p83921559156">app</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0274__en-us_topic_0000001244261001_p1839395518152">Name of the Deployment.</p>
-</td>
-</tr>
-<tr id="cce_01_0274__en-us_topic_0000001244261001_row1339365571519"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0274__en-us_topic_0000001244261001_p239365513155">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0274__en-us_topic_0000001244261001_p98841828192311">Mount path of the container. In this example, the mount path is <strong id="cce_01_0274__en-us_topic_0000001244261001_b10377133473112">/tmp</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0274__en-us_topic_0000001244261001_note114240335225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0274__en-us_topic_0000001244261001_p134241233122219"><strong id="cce_01_0274__en-us_topic_0000001244261001_b66771243183113">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0274__en-us_topic_0000001244261001_b0678343163118">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0274__en-us_topic_0000001244261001_li151061326125817"><span>Run the following command to create the workload:</span><p><p id="cce_01_0274__en-us_topic_0000001244261001_p1310692612582"><strong id="cce_01_0274__en-us_topic_0000001244261001_b11106202625812">kubectl create -f sfsturbo-deployment-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0125.html">SFS Turbo Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0276.html b/docs/cce/umn/cce_01_0276.html
deleted file mode 100644
index 2712ee4a..00000000
--- a/docs/cce/umn/cce_01_0276.html
+++ /dev/null
@@ -1,51 +0,0 @@
-<a name="cce_01_0276"></a><a name="cce_01_0276"></a>
-
-<h1 class="topictitle1">Performing Rolling Upgrade for Nodes</h1>
-<div id="body1606373496987"><div class="section" id="cce_01_0276__section7545132016522"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0276__p3561320115214">In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. <a href="#cce_01_0276__fig1689610598118">Figure 1</a> shows the migration process.</p>
-<div class="fignone" id="cce_01_0276__fig1689610598118"><a name="cce_01_0276__fig1689610598118"></a><a name="fig1689610598118"></a><span class="figcap"><b>Figure 1 </b>Workload migration</span><br><span><img id="cce_01_0276__image16106881602" src="en-us_image_0295359661.png"></span></div>
-</div>
-<div class="section" id="cce_01_0276__section668916271621"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0276__ul27507271222"><li id="cce_01_0276__li147502271326">The original node and the target node to which the workload is to be migrated must be in the same cluster.</li><li id="cce_01_0276__li1750227021">The cluster must be of v1.13.10 or later.</li><li id="cce_01_0276__li7750152710218">The default node pool DefaultPool does not support this configuration.</li></ul>
-</div>
-<div class="section" id="cce_01_0276__section17701027023"><h4 class="sectiontitle">Scenario 1: The Original Node Is in DefaultPool</h4><ol id="cce_01_0276__ol1675012271225"><li id="cce_01_0276__li375022715214"><a name="cce_01_0276__li375022715214"></a><a name="li375022715214"></a><span>Create a node.</span><p><ol type="a" id="cce_01_0276__ol57501127323"><li id="cce_01_0276__li77504271227">Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0276__b1142197681">Resource Management</strong> &gt; <strong id="cce_01_0276__b3471575812">Node Pools</strong>.</li><li id="cce_01_0276__li107507271211">Select the cluster to which the original node belongs.</li><li id="cce_01_0276__li10135371482">Click <strong id="cce_01_0276__b084119471118">Create Node Pool</strong>, set the following parameters, and modify other parameters as required. For details about the parameters, see <a href="cce_01_0012.html">Creating a Node Pool</a>.<ol class="substepthirdol" id="cce_01_0276__ol775912885"><li id="cce_01_0276__li207515122816"><strong id="cce_01_0276__b11426191721113">Name</strong>: Enter the name of the new node pool, for example, <strong id="cce_01_0276__b17874812111217">nodepool-demo</strong>.</li><li id="cce_01_0276__li429915721014"><strong id="cce_01_0276__b2528192622211">Nodes</strong>: In this example, add one node.</li><li id="cce_01_0276__li15297122219106"><strong id="cce_01_0276__b1045752120537">Specifications</strong>: Select node specifications that best suit your needs.</li><li id="cce_01_0276__li156952092113"><strong id="cce_01_0276__b260741255714">OS</strong>: Select the operating system (OS) of the nodes to be created.</li><li id="cce_01_0276__li1624613562619"><strong id="cce_01_0276__b12724315145714">Login Mode</strong>: <ul id="cce_01_0276__ul88131413615"><li id="cce_01_0276__li19813131318118">If the login mode is <span class="uicontrol" id="cce_01_0276__uicontrol16582174713586"><b>Key pair</b></span>, select a key pair for logging in to the node and select the check box to acknowledge that you have obtained the key file and that without this file you will not be able to log in to the node.<p id="cce_01_0276__p28141213612">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0276__b10994717732">Create a key pair</strong>.</p>
-</li></ul>
-</li></ol>
-</li><li id="cce_01_0276__li1346311386141">Click <strong id="cce_01_0276__b75823102594">Next: Confirm</strong>. Confirm the node pool configuration and click <strong id="cce_01_0276__b5881114115913">Submit</strong>.<p id="cce_01_0276__p1748123991414">Go back to the node pool list. In the node list, you can view that the new node pool has been created and is in the Normal state.</p>
-</li></ol>
-</p></li><li id="cce_01_0276__li7403304157"><span>Click the name of the node pool. The IP address of the new node is displayed in the node list.</span></li></ol><ol start="3" id="cce_01_0276__ol1246498212"><li id="cce_01_0276__li041492213"><span>Install and configure kubectl.</span><p><ol type="a" id="cce_01_0276__ol58501055169"><li id="cce_01_0276__li9790182514160">In the navigation pane of the CCE console, choose <strong id="cce_01_0276__b1953182012016">Resource Management</strong> &gt; <strong id="cce_01_0276__b1953615201608">Clusters</strong>, and click <strong id="cce_01_0276__b1853619201000">Command Line Tool</strong> &gt; <strong id="cce_01_0276__b5537620203">Kubectl</strong> under the cluster where the original node is located.</li><li id="cce_01_0276__li198501255169">On the <span class="uicontrol" id="cce_01_0276__uicontrol27243432012"><b>Kubectl</b></span> tab page of the cluster details page, connect to the cluster as prompted.</li></ol>
-</p></li></ol><ol start="4" id="cce_01_0276__ol1041549521"><li id="cce_01_0276__li1841495211"><span>Migrate the workload.</span><p><ol type="a" id="cce_01_0276__ol11494911216"><li id="cce_01_0276__li347498217">Add a taint to the node where the workload needs to be migrated out.<p id="cce_01_0276__p164124916217"><a name="cce_01_0276__li347498217"></a><a name="li347498217"></a><strong id="cce_01_0276__b1941049824">kubectl taint node</strong><em id="cce_01_0276__i144449522"> [node] </em><strong id="cce_01_0276__b1344491120">key=value:</strong><em id="cce_01_0276__i1410499213">[effect]</em></p>
-<p id="cce_01_0276__p13414494219">In the preceding command, <em id="cce_01_0276__i18332155411015">[node]</em> indicates the IP address of the node where the workload to be migrated is located. The value of <em id="cce_01_0276__i1633719541011">[effect]</em> can be <strong id="cce_01_0276__b3337654606">NoSchedule</strong>, <strong id="cce_01_0276__b11337154108">PreferNoSchedule</strong>, or <strong id="cce_01_0276__b7338145419012">NoExecute</strong>. In this example, set this parameter to <strong id="cce_01_0276__b433816542016">NoSchedule</strong>.</p>
-<ul id="cce_01_0276__ul12404916211"><li id="cce_01_0276__li1419497212"><strong id="cce_01_0276__b88821052018">NoSchedule</strong>: Pods that do not tolerate this taint are not scheduled on the node; existing pods are not evicted from the node.</li><li id="cce_01_0276__li164144910214"><strong id="cce_01_0276__b133283121512">PreferNoSchedule</strong>: Kubernetes tries to avoid scheduling pods that do not tolerate this taint onto the node.</li><li id="cce_01_0276__li2417491321"><strong id="cce_01_0276__b9627142018111">NoExecute</strong>: A pod is evicted from the node if it is already running on the node, and is not scheduled onto the node if it is not yet running on the node.</li></ul>
-<div class="note" id="cce_01_0276__note47341481227"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0276__p194749728">To reset a taint, run the <strong id="cce_01_0276__b1252910222017">kubectl taint node <em id="cce_01_0276__i45281322313">[node]</em> key:<em id="cce_01_0276__i125298221019">[effect]</em>- command</strong> to remove the taint.</p>
-</div></div>
-</li><li id="cce_01_0276__li194149323">Safely evicts the workload on the node.<p id="cce_01_0276__p174164920215"><a name="cce_01_0276__li194149323"></a><a name="li194149323"></a><strong id="cce_01_0276__b2052490212">kubectl drain </strong><em id="cce_01_0276__i259491620">[node]</em></p>
-<p id="cce_01_0276__p1056491528">In the preceding command, <em id="cce_01_0276__i9175132911116">[node]</em> indicates the IP address of the node where the workload to be migrated is located.</p>
-</li><li id="cce_01_0276__li456491211">In the navigation pane of the CCE console, choose <strong id="cce_01_0276__b174261936818">Workloads</strong> &gt; <strong id="cce_01_0276__b4431936717">Deployments</strong>. In the workload list, the status of the workload to be migrated changes from <strong id="cce_01_0276__b48314391911">Running</strong> to <strong id="cce_01_0276__b1383163913117">Unready</strong>. If the workload status changes to <strong id="cce_01_0276__b33297452117">Running</strong> again, the migration is successful.</li></ol>
-<div class="note" id="cce_01_0276__note374211481421"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0276__p4518491724">During workload migration, if node affinity is configured for the workload, the workload keeps displaying a message indicating that the workload is not ready. In this case, click the workload name to go to the workload details page. On the <strong id="cce_01_0276__b1263118581617">Scheduling Policies</strong> tab page, delete the affinity configuration of the original node and click <strong id="cce_01_0276__b18632185819118">Add Simple Scheduling Policy</strong> to configure the affinity and anti-affinity policies of the new node. For details, see <a href="cce_01_0230.html">Simple Scheduling Policies</a>.</p>
-</div></div>
-<p id="cce_01_0276__p1650491629">After the workload is successfully migrated, you can view that the workload is migrated to the node created in <a href="#cce_01_0276__li375022715214">1</a> on the <strong id="cce_01_0276__b29617115219">Pods</strong> tab page of the workload details page.</p>
-</p></li></ol><ol start="5" id="cce_01_0276__ol16514499211"><li id="cce_01_0276__li4513497213"><span>Delete the original node.</span><p><p id="cce_01_0276__p15104916211">After the workload is successfully migrated and is running properly, choose <strong id="cce_01_0276__b346514511721">Resource Management</strong> &gt; <strong id="cce_01_0276__b1147005118211">Nodes</strong> to delete the original node.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0276__section7773102119320"><h4 class="sectiontitle">Scenario 2: The Original Node Is Not in DefaultPool</h4><ol id="cce_01_0276__ol892652113314"><li id="cce_01_0276__li1992616214312"><a name="cce_01_0276__li1992616214312"></a><a name="li1992616214312"></a><span>Copy the node pool and add nodes to it.</span><p><ol type="a" id="cce_01_0276__ol7926122113317"><li id="cce_01_0276__li19261821537">Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0276__b133271353313">Resource Management</strong> &gt; <strong id="cce_01_0276__b163311651936">Node Pools</strong>.</li><li id="cce_01_0276__li6926142117315">Select the cluster to which the original node belongs.<p id="cce_01_0276__p1992692114315"><a name="cce_01_0276__li6926142117315"></a><a name="li6926142117315"></a>In the node pool list, locate the node pool to which the original node belongs.</p>
-</li><li id="cce_01_0276__li192616211238">Click <strong id="cce_01_0276__b57611025530">More</strong> &gt; <strong id="cce_01_0276__b1776617257312">Copy</strong> next to the node pool name. On the <strong id="cce_01_0276__b67663251138">Create Node Pool</strong> page, set the following parameters and modify other parameters as required. For details about the parameters, see <a href="cce_01_0012.html">Creating a Node Pool</a>.<ul id="cce_01_0276__ul1592618211336"><li id="cce_01_0276__li16926162114317"><strong id="cce_01_0276__b5660344432">Name</strong>: Enter the name of the new node pool, for example, <strong id="cce_01_0276__b1866020448316">nodepool-demo</strong>.</li><li id="cce_01_0276__li67291417172814"><strong id="cce_01_0276__b1616910472320">Nodes</strong>: In this example, add one node.</li><li id="cce_01_0276__li4729317132819"><strong id="cce_01_0276__b1528354812314">Specifications</strong>: Select node specifications that best suit your needs.</li><li id="cce_01_0276__li12742190291"><strong id="cce_01_0276__b8997348633">OS</strong>: Select the operating system (OS) of the nodes to be created.</li><li id="cce_01_0276__li5571146142819"><strong id="cce_01_0276__b079442916319">Login Mode</strong>: <ul id="cce_01_0276__ul1272981742816"><li id="cce_01_0276__li12729617122814">If the login mode is <span class="uicontrol" id="cce_01_0276__uicontrol389810511731"><b>Key pair</b></span>, select a key pair for logging in to the node and select the check box to acknowledge that you have obtained the key file and that without this file you will not be able to log in to the node.<p id="cce_01_0276__p107291017162813">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0276__b1168393510312">Create a key pair</strong>.</p>
-</li></ul>
-</li></ul>
-</li><li id="cce_01_0276__li1517103572919">Click <strong id="cce_01_0276__b1356116544313">Next: Confirm</strong>. Confirm the node pool configuration and click <strong id="cce_01_0276__b74181101347">Submit</strong>.<p id="cce_01_0276__p71711035142915">Go back to the node pool list. In the node list, you can view that the new node pool has been created and is in the Normal state.</p>
-</li></ol>
-</p></li><li id="cce_01_0276__li6330155162917"><span>Click the name of the node pool. The IP address of the new node is displayed in the node list.</span></li></ol><ol start="3" id="cce_01_0276__ol1592715215317"><li id="cce_01_0276__li79274211437"><span>Migrate the workload.</span><p><ol type="a" id="cce_01_0276__ol492714214310"><li id="cce_01_0276__li8927321039">Click <strong id="cce_01_0276__b31451941418">Edit</strong> on the right of nodepool-demo and set <strong id="cce_01_0276__b13146141942">Taints</strong>.</li><li id="cce_01_0276__li292713211031">Click <strong id="cce_01_0276__b11459171010415">Add Taint</strong>, set <strong id="cce_01_0276__b16463141011419">Key</strong> and <strong id="cce_01_0276__b164639103418">Value</strong>, and set <strong id="cce_01_0276__b164640101146">Effect</strong> to <strong id="cce_01_0276__b646410109418">NoExecute</strong>. The value options of <strong id="cce_01_0276__b1646418103410">Effect</strong> include <strong id="cce_01_0276__b1946418100410">NoSchedule</strong>, <strong id="cce_01_0276__b1464910049">PreferNoSchedule</strong>, or <strong id="cce_01_0276__b1465151018410">NoExecute</strong>.<ul id="cce_01_0276__ul69271221137"><li id="cce_01_0276__li14927102119319"><strong id="cce_01_0276__b7392301549">NoSchedule</strong>: Pods that do not tolerate this taint are not scheduled on the node; existing pods are not evicted from the node.</li><li id="cce_01_0276__li99271321938"><strong id="cce_01_0276__b20801632747">PreferNoSchedule</strong>: Kubernetes tries to avoid scheduling pods that do not tolerate this taint onto the node.</li><li id="cce_01_0276__li292712111319"><strong id="cce_01_0276__b24305329413">NoExecute</strong>: A pod is evicted from the node if it is already running on the node, and is not scheduled onto the node if it is not yet running on the node.</li></ul>
-<div class="note" id="cce_01_0276__note37771921331"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0276__p592762114314">If you need to reset the taint, enter the new values or click <strong id="cce_01_0276__b255331748">Delete</strong>.</p>
-</div></div>
-</li><li id="cce_01_0276__li492712115318">Click <strong id="cce_01_0276__b1979373718411">Save</strong>.</li><li id="cce_01_0276__li76429518311">In the navigation pane of the CCE console, choose <strong id="cce_01_0276__b194859381949">Workloads</strong> &gt; <strong id="cce_01_0276__b64856381146">Deployments</strong>. In the workload list, the status of the workload to be migrated changes from <strong id="cce_01_0276__b1962913393414">Running</strong> to <strong id="cce_01_0276__b16292391411">Unready</strong>. If the workload status changes to <strong id="cce_01_0276__b92370401741">Running</strong> again, the migration is successful.</li></ol>
-<div class="note" id="cce_01_0276__note167971521239"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0276__p1392711212311">During workload migration, if node affinity is configured for the workload, the workload keeps displaying a message indicating that the workload is not ready. In this case, click the workload name to go to the workload details page. On the <strong id="cce_01_0276__b36834441420">Scheduling Policies</strong> tab page, delete the affinity configuration of the original node and click <strong id="cce_01_0276__b3684164413413">Add Simple Scheduling Policy</strong> to configure the affinity and anti-affinity policies of the new node. For details, see <a href="cce_01_0230.html">Simple Scheduling Policies</a>.</p>
-</div></div>
-<p id="cce_01_0276__p29271211137">After the workload is successfully migrated, you can view that the workload is migrated to the node created in <a href="#cce_01_0276__li1992616214312">1</a> on the <strong id="cce_01_0276__b68718466411">Pods</strong> tab page of the workload details page.</p>
-</p></li></ol><ol start="4" id="cce_01_0276__ol69271721532"><li id="cce_01_0276__li792714211234"><span>Delete the original node.</span><p><p id="cce_01_0276__p59270211931">After the workload is successfully migrated and is running properly, choose <strong id="cce_01_0276__b0620165813416">Resource Management</strong> &gt; <strong id="cce_01_0276__b156211758346">Node Pools</strong> to delete the original node.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0277.html b/docs/cce/umn/cce_01_0277.html
deleted file mode 100644
index 9ab00308..00000000
--- a/docs/cce/umn/cce_01_0277.html
+++ /dev/null
@@ -1,51 +0,0 @@
-<a name="cce_01_0277"></a><a name="cce_01_0277"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body1606958290664"><p id="cce_01_0277__p8060118">CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0277__table1129717261200" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Add-on list</caption><thead align="left"><tr id="cce_01_0277__row11298112612016"><th align="left" class="cellrowborder" valign="top" width="23.34%" id="mcps1.3.2.2.3.1.1"><p id="cce_01_0277__p12986266201">Add-on Name</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.66%" id="mcps1.3.2.2.3.1.2"><p id="cce_01_0277__p42981926122014">Introduction</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0277__row729811268202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_01_0277__p329812632011"><a href="cce_01_0129.html">coredns</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_01_0277__p12981726192017">The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.</p>
-</td>
-</tr>
-<tr id="cce_01_0277__row1729822612200"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_01_0277__p929842682017"><a href="cce_01_0127.html">storage-driver</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_01_0277__p0298122602020">storage-driver is a FlexVolume driver used to support IaaS storage services such as EVS, SFS, and OBS.</p>
-</td>
-</tr>
-<tr id="cce_01_0277__row1129818265202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_01_0277__p172981226192012"><a href="cce_01_0066.html">everest</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_01_0277__p17298172618205">Everest is a cloud native container storage system. Based on CSI, clusters of Kubernetes v1.15.6 and later can connect to storage services such as EVS, OBS, SFS, and SFS Turbo.</p>
-</td>
-</tr>
-<tr id="cce_01_0277__row517991010214"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_01_0277__p818051013218"><a href="cce_01_0154.html">autoscaler</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_01_0277__p33062213567">The autoscaler add-on resizes a cluster based on pod scheduling status and resource usage.</p>
-</td>
-</tr>
-<tr id="cce_01_0277__row718031012117"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_01_0277__p1718012101214"><a href="cce_01_0205.html">metrics-server</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_01_0277__p8803328425">metrics-server is an aggregator for monitoring data of core cluster resources.</p>
-</td>
-</tr>
-<tr id="cce_01_0277__row2256219162517"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_01_0277__p182565193254"><a href="cce_01_0141.html">gpu-beta</a></p>
-</td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_01_0277__p12273103844718">gpu-beta is a device management add-on that supports GPUs in containers. It supports only NVIDIA drivers.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0064.html">Add-ons</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0278.html b/docs/cce/umn/cce_01_0278.html
deleted file mode 100644
index 0001142d..00000000
--- a/docs/cce/umn/cce_01_0278.html
+++ /dev/null
@@ -1,66 +0,0 @@
-<a name="cce_01_0278"></a><a name="cce_01_0278"></a>
-
-<h1 class="topictitle1">Creating a Namespace</h1>
-<div id="body0000001071342821"><div class="section" id="cce_01_0278__section798858182710"><h4 class="sectiontitle">When to Use Namespaces</h4><p id="cce_01_0278__p198142512811">A namespace is a collection of resources and objects. Multiple namespaces can be created inside a cluster and isolated from each other. This enables namespaces to share the same cluster Services without affecting each other.</p>
-<p id="cce_01_0278__p477375172817">For example, you can deploy workloads in a development environment into one namespace, and deploy workloads in a testing environment into another namespace.</p>
-</div>
-<div class="section" id="cce_01_0278__section812825881312"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0278__p785816071412">At least one cluster has been created. For details, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</p>
-</div>
-<div class="section" id="cce_01_0278__section21791218165310"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0278__p532716213531">A maximum of 6,000 Services can be created in each namespace. The Services mentioned here indicate the Kubernetes Service resources added for workloads.</p>
-</div>
-<div class="section" id="cce_01_0278__section15162183815147"><h4 class="sectiontitle">Namespace Types</h4><p id="cce_01_0278__p1237620473146">Namespaces can be created in either of the following ways:</p>
-<ul id="cce_01_0278__ul4439165316154"><li id="cce_01_0278__li9439753111517">Created automatically: When a cluster is up, the <strong id="cce_01_0278__b16148131151316">default</strong>, <strong id="cce_01_0278__b171532314131">kube-public</strong>, <strong id="cce_01_0278__b13153131151318">kube-system</strong>, and <strong id="cce_01_0278__b1315393141314">kube-node-lease</strong> namespaces are created by default.<ul id="cce_01_0278__ul3843184219198"><li id="cce_01_0278__li194371638161919"><strong id="cce_01_0278__b243639161419">default</strong>: All objects for which no namespace is specified are allocated to this namespace.</li><li id="cce_01_0278__li135219534199"><strong id="cce_01_0278__b1456102411143">kube-public</strong>: Resources in this namespace can be accessed by all users (including unauthenticated users), such as public add-ons and container charts.</li><li id="cce_01_0278__li186001011182310"><strong id="cce_01_0278__b11725123319149">kube-system</strong>: All resources created by Kubernetes are in this namespace.</li><li id="cce_01_0278__li113941035141819"><strong id="cce_01_0278__b64231517121610">kube-node-lease</strong>: Each node has an associated Lease object in this namespace. The object is periodically updated by the node. Both NodeStatus and NodeLease are considered as heartbeats from a node. In versions earlier than v1.13, only NodeStatus is available. The NodeLease feature is introduced in v1.13. NodeLease is more lightweight than NodeStatus. This feature significantly improves the cluster scalability and performance.</li></ul>
-</li><li id="cce_01_0278__li1755671871616">Created manually: You can create namespaces to serve separate purposes. For example, you can create three namespaces, one for a development environment, one for joint debugging environment, and one for test environment. You can also create one namespace for login services and one for game services.</li></ul>
-</div>
-<div class="section" id="cce_01_0278__section1089753617465"><h4 class="sectiontitle">Creating a Namespace</h4><ol id="cce_01_0278__ol125221816185720"><li id="cce_01_0278__li15523916125711"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0278__b75231501420">Resource Management</strong> &gt; <strong id="cce_01_0278__b45231950184213">Namespaces</strong>. Click <strong id="cce_01_0278__b10271620104318">Create Namespace</strong>.</span></li><li id="cce_01_0278__li952361619571"><span>Set the parameters listed in <a href="#cce_01_0278__table5523151617575">Table 1</a>. The parameters marked with an asterisk (*) are mandatory.</span><p>
-<div class="tablenoborder"><a name="cce_01_0278__table5523151617575"></a><a name="table5523151617575"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0278__table5523151617575" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a namespace</caption><thead align="left"><tr id="cce_01_0278__row145240162572"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.5.2.2.2.1.2.3.1.1"><p id="cce_01_0278__p105244162578">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.5.2.2.2.1.2.3.1.2"><p id="cce_01_0278__p14525016155719">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0278__row835519426223"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0278__p1964374702211">* Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0278__p14644047132219">Unique name of the created namespace.</p>
-</td>
-</tr>
-<tr id="cce_01_0278__row20525816195710"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0278__p1252581665718">* Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0278__p152571695714">Cluster to which the namespace belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0278__row16199155910240"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0278__p320005972414">Node Affinity</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0278__p9200105914249">If this parameter is set to on, workloads in this namespace will be scheduled only to nodes with specified labels. To add labels to a node, choose <strong id="cce_01_0278__b1175914611485">Resource Management</strong> &gt; <strong id="cce_01_0278__b6764136104810">Nodes</strong> &gt; <strong id="cce_01_0278__b1776419624816">Manage Labels</strong>.</p>
-<p id="cce_01_0278__p18886183710257">This parameter is displayed only for clusters of v1.13.10-r0 and later.</p>
-</td>
-</tr>
-<tr id="cce_01_0278__row75251516185711"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0278__p19525016125713">Description</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0278__p1452519163573">Description about the namespace.</p>
-</td>
-</tr>
-<tr id="cce_01_0278__row18506114684111"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0278__p7506164613417">Set Resource Quotas</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0278__p10506204644111">Resource quotas can limit the amount of resources available in namespaces, achieving resource allocation by namespace.</p>
-<div class="notice" id="cce_01_0278__note9166152113399"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0278__p34209545238"><strong id="cce_01_0278__b1317934165919">You are advised to set resource quotas in the namespace as required to prevent cluster or node exceptions caused by resource overload.</strong></p>
-<p id="cce_01_0278__p2167521123914">For example, the default number of pods that can be created on each node in a cluster is 110. If you create a cluster with 50 nodes, you can create a maximum of 5,500 pods. Therefore, you can set a resource quota to ensure that the total number of pods in all namespaces does not exceed 5,500.</p>
-</div></div>
-<p id="cce_01_0278__p1771582811344">Quotas can be configured for the following resources:</p>
-<ul id="cce_01_0278__ul317025883515"><li id="cce_01_0278__li2170105813517">CPU (cores)</li><li id="cce_01_0278__li1917085863511">Memory (MiB)</li><li id="cce_01_0278__li19170205823514">StatefulSet</li><li id="cce_01_0278__li1117095893512">Deployment</li><li id="cce_01_0278__li71701158113515">Job</li><li id="cce_01_0278__li817085883518">Cron job</li><li id="cce_01_0278__li141703588353">Pod</li><li id="cce_01_0278__li11170105811355">Service</li></ul>
-<p id="cce_01_0278__p1736061143918">Enter an integer. If the quota of a resource is set to <strong id="cce_01_0278__b46781411413">0</strong>, no limit is posed on the resource.</p>
-<p id="cce_01_0278__p7221053123614">If you want to limit the CPU or memory quota, you must specify the CPU or memory request value when creating a workload.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0278__li155253162572"><span>When the configuration is complete, click <strong id="cce_01_0278__b1062541315314">OK</strong>.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0030.html">Namespaces</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0281.html b/docs/cce/umn/cce_01_0281.html
deleted file mode 100644
index f606b2a9..00000000
--- a/docs/cce/umn/cce_01_0281.html
+++ /dev/null
@@ -1,105 +0,0 @@
-<a name="cce_01_0281"></a><a name="cce_01_0281"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body0000001116232773"><p id="cce_01_0281__en-us_topic_0146398798_p17435959114810">The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:</p>
-<ul id="cce_01_0281__ul37951512175314"><li id="cce_01_0281__li87958124539">Container tunnel network</li><li id="cce_01_0281__li16698131917531">VPC network</li><li id="cce_01_0281__li51085248531">Cloud Native Network 2.0</li></ul>
-<div class="section" id="cce_01_0281__section15922428693"><h4 class="sectiontitle">Network Model Comparison</h4><p id="cce_01_0281__en-us_topic_0146398798_p1057652712256"><a href="#cce_01_0281__en-us_topic_0146398798_table715802210336">Table 1</a> describes the differences of network models supported by CCE.</p>
-<div class="caution" id="cce_01_0281__note15146173219330"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0281__p8146183233312">After a cluster is created, the network model cannot be changed.</p>
-</div></div>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0281__en-us_topic_0146398798_table715802210336"></a><a name="en-us_topic_0146398798_table715802210336"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0281__en-us_topic_0146398798_table715802210336" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Network model comparison</caption><thead align="left"><tr id="cce_01_0281__en-us_topic_0146398798_row015822213316"><th align="left" class="cellrowborder" valign="top" width="15.951595159515952%" id="mcps1.3.4.2.5.1.1"><p id="cce_01_0281__en-us_topic_0146398798_p1715813225335"><strong id="cce_01_0281__b41731716123514">Dimension</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="26.082608260826078%" id="mcps1.3.4.2.5.1.2"><p id="cce_01_0281__en-us_topic_0146398798_p1015919220339"><strong id="cce_01_0281__b1193717182352">Tunnel Network</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="29.022902290229023%" id="mcps1.3.4.2.5.1.3"><p id="cce_01_0281__en-us_topic_0146398798_p5158192253312"><strong id="cce_01_0281__b16166921123511">VPC Network</strong></p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.942894289428946%" id="mcps1.3.4.2.5.1.4"><p id="cce_01_0281__en-us_topic_0146398798_p13620427132519"><strong id="cce_01_0281__b176271955101910">Cloud Native Network 2.0</strong></p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0281__en-us_topic_0146398798_row3364165414382"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__en-us_topic_0146398798_p7365105418387">Core technology</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_01_0281__en-us_topic_0146398798_p205912419393">OVS</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_01_0281__en-us_topic_0146398798_p1759117483919">IPvlan and VPC route</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_01_0281__en-us_topic_0146398798_p962082712256">VPC ENI/sub-ENI</p>
-</td>
-</tr>
-<tr id="cce_01_0281__en-us_topic_0146398798_row9184022123919"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__en-us_topic_0146398798_p939214336391">Applicable clusters</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_01_0281__en-us_topic_0146398798_p183921533143919">CCE cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_01_0281__en-us_topic_0146398798_p139214338397">CCE cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_01_0281__en-us_topic_0146398798_p7914115121510">CCE Turbo cluster</p>
-</td>
-</tr>
-<tr id="cce_01_0281__en-us_topic_0146398798_row18748936104718"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__en-us_topic_0146398798_p104711451154714">Network isolation</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_01_0281__en-us_topic_0146398798_p20471351124715">Yes. For details, see <a href="cce_01_0059.html">Network Policies</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_01_0281__en-us_topic_0146398798_p1047145111471">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_01_0281__en-us_topic_0146398798_p3620162742516">Yes. For details, see <a href="cce_01_0288.html">SecurityGroups</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0281__row18486205482917"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__p148617549296">Passthrough networking</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_01_0281__p154861548296">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_01_0281__p548615422910">No</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_01_0281__p9486354162919">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0281__en-us_topic_0146398798_row96181615010"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__en-us_topic_0146398798_p1726882465017">IP address management</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><ul id="cce_01_0281__ul17644143754410"><li id="cce_01_0281__li1764418377447">The container CIDR block is allocated separately.</li><li id="cce_01_0281__li11644133720443">CIDR blocks are divided by node and can be dynamically allocated (CIDR blocks can be dynamically added after being allocated.)</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><ul id="cce_01_0281__en-us_topic_0146398798_ul1259224495118"><li id="cce_01_0281__en-us_topic_0146398798_li759254425111">The container CIDR block is allocated separately.</li><li id="cce_01_0281__en-us_topic_0146398798_li19592134405120">CIDR blocks are divided by node and statically allocated (the CIDR block cannot be changed after a node is created).</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_01_0281__p8694554174616">The container CIDR block is divided from the VPC subnet and does not need to be allocated separately.</p>
-</td>
-</tr>
-<tr id="cce_01_0281__en-us_topic_0146398798_row1661816105018"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__en-us_topic_0146398798_p10269102415509">Network performance</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_01_0281__en-us_topic_0146398798_p526982419507">Performance loss due to VXLAN encapsulation</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_01_0281__p435133734112">No tunnel encapsulation. Cross-node packets are forwarded through VPC routers, delivering performance equivalent to that of the host network.</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_01_0281__p12150124903913">The container network is integrated with the VPC network, eliminating performance loss.</p>
-</td>
-</tr>
-<tr id="cce_01_0281__en-us_topic_0146398798_row262191685013"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__en-us_topic_0146398798_p142691524115014">Networking scale</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_01_0281__p46113017549">A maximum of 2,000 nodes are supported.</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_01_0281__p325918116114">By default, 200 nodes are supported.</p>
-<p id="cce_01_0281__p16950177175711">Each time a node is added to the cluster, a route is added to the VPC routing table. Therefore, the cluster scale is limited by the VPC route table. </p>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_01_0281__p107101541132219">A maximum of 2,000 nodes are supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0281__en-us_topic_0146398798_row14400144693816"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_01_0281__en-us_topic_0146398798_p1926972465013">Application scenarios</p>
-</td>
-<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><ul id="cce_01_0281__en-us_topic_0146398798_ul619513457509"><li id="cce_01_0281__en-us_topic_0146398798_li21951445205019">Common container service scenarios</li><li id="cce_01_0281__en-us_topic_0146398798_li5195194517504">Scenarios that do not have high requirements on network latency and bandwidth</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.4.2.5.1.3 "><ul id="cce_01_0281__en-us_topic_0146398798_ul1659212532511"><li id="cce_01_0281__en-us_topic_0146398798_li175924538516">Scenarios that have high requirements on network latency and bandwidth</li><li id="cce_01_0281__en-us_topic_0146398798_li1559215532511">Containers can communicate with VMs using a microservice registration framework, such as Dubbo and CSE.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.4.2.5.1.4 "><ul id="cce_01_0281__en-us_topic_0146398798_ul10867019880"><li id="cce_01_0281__en-us_topic_0146398798_li95475237814">Scenarios that have high requirements on network latency, bandwidth, and performance</li><li id="cce_01_0281__en-us_topic_0146398798_li198291117173716">Containers can communicate with VMs using a microservice registration framework, such as Dubbo and CSE.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="notice" id="cce_01_0281__en-us_topic_0146398798_note514622713155"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ol id="cce_01_0281__en-us_topic_0146398798_ol4704115561518"><li id="cce_01_0281__en-us_topic_0146398798_li97047554152">The scale of a cluster that uses the VPC network model is limited by the custom routes of the VPC. Therefore, you need to estimate the number of required nodes before creating a cluster.</li><li id="cce_01_0281__li12128141818386">The scale of a cluster that uses the Cloud Native Network 2.0 model depends on the size of the VPC subnet CIDR block selected for the network attachment definition. Before creating a cluster, evaluate the scale of your cluster.</li><li id="cce_01_0281__en-us_topic_0146398798_li18704355101514">By default, VPC routing network supports direct communication between containers and hosts in the same VPC. If a peering connection policy is configured between the VPC and another VPC, the containers can directly communicate with hosts on the peer VPC. In addition, in hybrid networking scenarios such as Direct Connect and VPN, communication between containers and hosts on the peer end can also be achieved with proper planning.</li></ol>
-</div></div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0280.html">Container Network Models</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0284.html b/docs/cce/umn/cce_01_0284.html
deleted file mode 100644
index 30b11480..00000000
--- a/docs/cce/umn/cce_01_0284.html
+++ /dev/null
@@ -1,79 +0,0 @@
-<a name="cce_01_0284"></a><a name="cce_01_0284"></a>
-
-<h1 class="topictitle1">Cloud Native Network 2.0</h1>
-<div id="body0000001116514283"><div class="section" id="cce_01_0284__section18112145311217"><h4 class="sectiontitle">Model Definition</h4><p id="cce_01_0284__p12850493413">Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and elastic IPs (EIPs) are bound to deliver high performance.</p>
-<div class="fignone" id="cce_01_0284__en-us_topic_0146398798_fig117435555917"><span class="figcap"><b>Figure 1 </b>Cloud Native Network 2.0</span><br><span><img id="cce_01_0284__image46261543153113" src="en-us_image_0000001231949185.png"></span></div>
-<p id="cce_01_0284__p1239017542469"><strong id="cce_01_0284__b6980183903918">Pod-to-pod communication</strong></p>
-<ul id="cce_01_0284__ul123731243121119"><li id="cce_01_0284__li8373134371116">On the same node: Packets are forwarded through the VPC ENI or sub-ENI.</li><li id="cce_01_0284__li837364311113">Across nodes: Packets are forwarded through the VPC ENI or sub-ENI.</li></ul>
-</div>
-<div class="section" id="cce_01_0284__section2548184716433"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0284__p1145521010256">This network model is available only to CCE Turbo clusters.</p>
-</div>
-<div class="section" id="cce_01_0284__section884011382223"><h4 class="sectiontitle">Advantages and Disadvantages</h4><p id="cce_01_0284__p557884352219"><strong id="cce_01_0284__b468035917247">Advantages</strong></p>
-<ul id="cce_01_0284__ul1336176142316"><li id="cce_01_0284__li3361069234">As the container network directly uses VPC, it is easy to locate network problems and provide the highest performance.</li><li id="cce_01_0284__li113611612237">External networks in a VPC can be directly connected to container IP addresses.</li><li id="cce_01_0284__li1136062233">The load balancing, security group, and EIP capabilities provided by VPC can be used directly.</li></ul>
-<p id="cce_01_0284__p12578743142211"><strong id="cce_01_0284__b517755110167">Disadvantages</strong></p>
-<p id="cce_01_0284__p2578943132213">The container network directly uses VPC, which occupies the VPC address space. Therefore, you must properly plan the container CIDR block before creating a cluster.</p>
-</div>
-<div class="section" id="cce_01_0284__section3723244144011"><h4 class="sectiontitle">Application Scenarios</h4><ul id="cce_01_0284__ul10867019880"><li id="cce_01_0284__li115296288146">High performance requirements and use of other VPC network capabilities: Cloud Native Network 2.0 directly uses VPC, which delivers almost the same performance as the VPC network. Therefore, it is applicable to scenarios that have high requirements on bandwidth and latency, such as online live broadcast and e-commerce seckill.</li><li id="cce_01_0284__li552912289145">Large-scale networking: Cloud Native Network 2.0 supports a maximum of 2000 ECS nodes and 100,000 containers.</li></ul>
-</div>
-<div class="section" id="cce_01_0284__section45181754101115"><h4 class="sectiontitle">Container IP Address Management</h4><p id="cce_01_0284__p6435939666">In the Cloud Native Network 2.0 model, BMS nodes use ENIs and ECS nodes use sub-ENIs. The following figure shows how IP addresses are managed on these nodes.</p>
-<div class="fignone" id="cce_01_0284__fig187842468716"><span class="figcap"><b>Figure 2 </b>IP address management in Cloud Native Network 2.0</span><br><span><img id="cce_01_0284__image1078419461373" src="en-us_image_0000001172076961.png"></span></div>
-<ul id="cce_01_0284__ul72171850121018"><li id="cce_01_0284__li821716502102">Pod IP addresses are allocated from <strong id="cce_01_0284__b1926312496205">Pod Subnet</strong> you configure from the VPC.</li><li id="cce_01_0284__li13481412297">ENIs and sub-ENIs bound to an ECS node = Number of ENIs used to bear sub-ENIs + Number of sub-ENIs currently used by pods + Number of sub-ENIs to be bound</li><li id="cce_01_0284__li10460141164218">ENIs bound to a BMS node = Number of ENIs currently used by pods + Number of pre-bound ENIs</li><li id="cce_01_0284__li10882816193813">Pre-binding policy: The system periodically (every 2 minutes by default) checks whether the total number of ENIs on the node. If the low threshold is not reached, the system pre-binds ENIs. If the high threshold is exceeded, the system releases ENIs.</li><li id="cce_01_0284__li17794202318347">On an ECS node, when the number of pre-bound sub-ENIs plus the number of sub-ENIs currently used by the pods is <strong id="cce_01_0284__b117751855166">smaller than</strong> the number of sub-ENIs at the low threshold (sub-ENI quota on the node x low threshold), the system <strong id="cce_01_0284__b79446552818">pre-binds</strong> sub-ENIs to make the numbers equal.</li><li id="cce_01_0284__li1747124616319">On an ECS node, when the number of pre-bound sub-ENIs plus the number of sub-ENIs currently used by the pods is <strong id="cce_01_0284__b1140215315914">larger than</strong> the number of sub-ENIs at the high threshold (sub-ENI quota on the node x high threshold), the system <strong id="cce_01_0284__b17405831392">releases</strong> sub-ENIs to make the numbers equal.</li><li id="cce_01_0284__li1312111418362">On a BMS node, when the number of pre-bound ENIs plus the number of ENIs currently used by the pods is <strong id="cce_01_0284__b191791140590">smaller than</strong> the number of ENIs at the low threshold (ENI quota on the node x low threshold), the system <strong id="cce_01_0284__b418113401794">pre-binds</strong> ENIs to make the numbers equal.</li><li id="cce_01_0284__li91361413615">On a BMS node, when the number of pre-bound ENIs plus the number of ENIs currently used by the pods is <strong id="cce_01_0284__b025755514112">larger than</strong> the number of ENIs at the high threshold (ENI quota on the node x high threshold), the system <strong id="cce_01_0284__b12257455121112">releases</strong> ENIs to make the numbers equal.</li></ul>
-</div>
-<div class="section" id="cce_01_0284__section08181419115517"><h4 class="sectiontitle">Recommendation for CIDR Block Planning</h4><p id="cce_01_0284__p17616122461918">As described in <a href="cce_01_0010.html#cce_01_0010__section1131733719195">Cluster Network Structure</a>, network addresses in a cluster can be divided into three parts: node network, container network, and service network. When planning network addresses, consider the following aspects:</p>
-<ul id="cce_01_0284__ul136482211289"><li id="cce_01_0284__li1764102219287">The three CIDR blocks cannot overlap. Otherwise, a conflict occurs. All subnets (including those created from the secondary CIDR block) in the VPC where the cluster resides cannot conflict with the container and Service CIDR blocks.</li><li id="cce_01_0284__li1691864214309">Ensure that each CIDR block has sufficient IP addresses.<ul id="cce_01_0284__ul168401136103520"><li id="cce_01_0284__li44145434282">The IP addresses in the node CIDR block must match the cluster scale. Otherwise, nodes cannot be created due to insufficient IP addresses.</li><li id="cce_01_0284__li951716382357">The IP addresses in the container CIDR block must match the service scale. Otherwise, pods cannot be created due to insufficient IP addresses.</li></ul>
-</li></ul>
-<p id="cce_01_0284__p61461628194919">In the Cloud Native Network 2.0 model, the container CIDR block and node CIDR block share the network addresses in a VPC. It is recommended that the container subnet and node subnet not use the same subnet. Otherwise, containers or nodes may fail to be created due to insufficient IP resources.</p>
-<p id="cce_01_0284__p176491216405">In addition, a subnet can be added to the container CIDR block after a cluster is created to increase the number of available IP addresses. In this case, ensure that the added subnet does not conflict with other subnets in the container CIDR block.</p>
-<div class="fignone" id="cce_01_0284__fig1793613585217"><span class="figcap"><b>Figure 3 </b>Configuring CIDR blocks</span><br><span><img id="cce_01_0284__image105281151192111" src="en-us_image_0000001159831938.png"></span></div>
-</div>
-<div class="section" id="cce_01_0284__section161713314914"><h4 class="sectiontitle">Example of Cloud Native Network 2.0 Access </h4><p id="cce_01_0284__p251120493913">Create a CCE Turbo cluster, which contains three ECS nodes.</p>
-<div class="fignone" id="cce_01_0284__fig34706594193"><span class="figcap"><b>Figure 4 </b>Cluster network</span><br><span><img id="cce_01_0284__image78281924161011" src="en-us_image_0000001198867835.png"></span></div>
-<p id="cce_01_0284__p13854155435315">Access the details page of one node. You can see that the node has one primary NIC and one extended NIC, and both of them are ENIs. The extended NIC belongs to the container CIDR block and is used to mount a sub-ENI to the pod.</p>
-<p id="cce_01_0284__p16521185019547">Create a Deployment on the cluster.</p>
-<pre class="screen" id="cce_01_0284__screen453053319576">kind: Deployment
-apiVersion: apps/v1
-metadata:
-  name: example
-  namespace: default
-spec:
-  replicas: 6
-  selector:
-    matchLabels:
-      app: example
-  template:
-    metadata:
-      labels:
-        app: example
-    spec:
-      containers:
-        - name: container-0
-          image: 'nginx:perl'
-          resources:
-            limits:
-              cpu: 250m
-              memory: 512Mi
-            requests:
-              cpu: 250m
-              memory: 512Mi
-      imagePullSecrets:
-        - name: default-secret</pre>
-<p id="cce_01_0284__p17198145211512">View the created pod.</p>
-<pre class="screen" id="cce_01_0284__screen4162626620">$ kubectl get pod -owide
-NAME                       READY   STATUS    RESTARTS   AGE   IP            NODE         NOMINATED NODE   READINESS GATES
-example-5bdc5699b7-54v7g   1/1     Running   0          7s    10.1.18.2     10.1.0.167   &lt;none&gt;           &lt;none&gt;
-example-5bdc5699b7-6dzx5   1/1     Running   0          7s    10.1.18.216   10.1.0.186   &lt;none&gt;           &lt;none&gt;
-example-5bdc5699b7-gq7xs   1/1     Running   0          7s    10.1.16.63    10.1.0.144   &lt;none&gt;           &lt;none&gt;
-example-5bdc5699b7-h9rvb   1/1     Running   0          7s    10.1.16.125   10.1.0.167   &lt;none&gt;           &lt;none&gt;
-example-5bdc5699b7-s9fts   1/1     Running   0          7s    10.1.16.89    10.1.0.144   &lt;none&gt;           &lt;none&gt;
-example-5bdc5699b7-swq6q   1/1     Running   0          7s    10.1.17.111   10.1.0.167   &lt;none&gt;           &lt;none&gt;</pre>
-<p id="cce_01_0284__p15779154769">The IP addresses of all pods are sub-ENIs, which are mounted to the ENI (extended NIC) of the node.</p>
-<p id="cce_01_0284__p1860322513716">For example, the extended NIC of node 10.1.0.167 is 10.1.17.172. On the <strong id="cce_01_0284__b9460221936">Network Interfaces</strong> page of the Network Console, you can see that three sub-ENIs are mounted to the extended NIC 10.1.17.172, which is the IP address of the pod.</p>
-<p id="cce_01_0284__p84879819214">In the VPC, the IP address of the pod can be successfully accessed.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0280.html">Container Network Models</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0285.html b/docs/cce/umn/cce_01_0285.html
deleted file mode 100644
index 58f52f6f..00000000
--- a/docs/cce/umn/cce_01_0285.html
+++ /dev/null
@@ -1,26 +0,0 @@
-<a name="cce_01_0285"></a><a name="cce_01_0285"></a>
-
-<h1 class="topictitle1">Managing Namespaces</h1>
-<div id="body0000001094996335"><div class="section" id="cce_01_0285__section177341536194814"><h4 class="sectiontitle">Selecting a Namespace</h4><ul id="cce_01_0285__ul1710151012307"><li id="cce_01_0285__li2101410173019">When creating a workload, you can select a namespace to isolate resources or users.</li><li id="cce_01_0285__li1110171053010">When querying workloads, you can select a namespace to view all workloads in the namespace.</li></ul>
-</div>
-<div class="section" id="cce_01_0285__section10225104442820"><h4 class="sectiontitle">Isolating Namespaces</h4><ul id="cce_01_0285__ul0456115642812"><li id="cce_01_0285__li15456756172812"><strong id="cce_01_0285__b374520311867">Isolating namespaces by environment</strong><p id="cce_01_0285__p531615167290">An application generally goes through the development, joint debugging, and testing stages before it is launched. In this process, the workloads deployed in each environment (stage) are the same, but are logically defined. There are two ways to define them:</p>
-<ul id="cce_01_0285__ul16449133320528"><li id="cce_01_0285__li73965319525">Group them in different clusters for different environments.<p id="cce_01_0285__p481677539"><a name="cce_01_0285__li73965319525"></a><a name="li73965319525"></a>Resources cannot be shared among different clusters. In addition, services in different environments can access each other only through load balancing.</p>
-</li><li id="cce_01_0285__li17416104210525">Group them in different namespaces for different environments.<p id="cce_01_0285__p1741564245215"><a name="cce_01_0285__li17416104210525"></a><a name="li17416104210525"></a>Workloads in the same namespace can be mutually accessed by using the Service name. Cross-namespace access can be implemented by using the Service name or namespace name.</p>
-<p id="cce_01_0285__p12415124285217">The following figure shows namespaces created for the development, joint debugging, and testing environments, respectively.</p>
-<div class="fignone" id="cce_01_0285__fig741584216524"><span class="figcap"><b>Figure 1 </b>One namespace for one environment</span><br><span><img id="cce_01_0285__image992612283400" src="en-us_image_0000001098645539.png"></span></div>
-</li></ul>
-</li><li id="cce_01_0285__li0262174297"><strong id="cce_01_0285__b181141219121411">Isolating namespaces by application</strong><p id="cce_01_0285__p1065383143011">You are advised to use this method if a large number of workloads are deployed in the same environment. For example, in the following figure, different namespaces (APP1 and APP2) are created to logically manage workloads as different groups. Workloads in the same namespace access each other using the Service name, and workloads in different namespaces access each other using the Service name or namespace name.</p>
-<div class="fignone" id="cce_01_0285__fig11187114614422"><span class="figcap"><b>Figure 2 </b>Grouping workloads into different namespaces</span><br><span><img id="cce_01_0285__image0620749113912" src="en-us_image_0000001098403383.png"></span></div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0285__section149711133124913"><h4 class="sectiontitle">Deleting a Namespace</h4><p id="cce_01_0285__p3802082534">If a namespace is deleted, all resources (such as workloads, jobs, and ConfigMaps) in this namespace will also be deleted. Exercise caution when deleting a namespace. </p>
-<ol id="cce_01_0285__ol14525181615577"><li id="cce_01_0285__li11526316175712"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0285__b9204182612432">Resource Management</strong> &gt; <strong id="cce_01_0285__b152123263435">Namespaces</strong>.</span></li><li id="cce_01_0285__li19526716135710"><span>Select the cluster to which the namespace belongs from the <strong id="cce_01_0285__b15311162472013">Clusters</strong> drop-down list.</span></li><li id="cce_01_0285__li0526181655711"><span>Select the namespace to be deleted and click <strong id="cce_01_0285__en-us_topic_0181279617_b197563544019">Delete</strong>.</span><p><p id="cce_01_0285__p25272016115714">Follow the prompts to delete the namespace. The default namespaces cannot be deleted.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0030.html">Namespaces</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0286.html b/docs/cce/umn/cce_01_0286.html
deleted file mode 100644
index 1a1f9de3..00000000
--- a/docs/cce/umn/cce_01_0286.html
+++ /dev/null
@@ -1,34 +0,0 @@
-<a name="cce_01_0286"></a><a name="cce_01_0286"></a>
-
-<h1 class="topictitle1">Configuring a Namespace-level Network Policy</h1>
-<div id="body0000001095076587"><p id="cce_01_0286__cce_01_0059_p18324632110">You can configure a namespace-level network policy after enabling network isolation.</p>
-<p id="cce_01_0286__cce_01_0059_p154051319221">By default, <strong id="cce_01_0286__b16619916192214">Network Isolation</strong> is disabled for namespaces. For example, if network isolation is off for namespace <strong id="cce_01_0286__b196251162228">default</strong>, <strong id="cce_01_0286__b63111616235">all workloads in the current cluster</strong> can access the workloads in namespace <strong id="cce_01_0286__b156273164227">default</strong>.</p>
-<p id="cce_01_0286__cce_01_0059_p1870292642519">To prevent other workloads from accessing the workloads in namespace <strong id="cce_01_0286__b165830366238">default</strong>, perform the following steps:</p>
-<div class="notice" id="cce_01_0286__cce_01_0059_note74195935519"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0286__cce_01_0059_p442099105518">Only clusters that use the tunnel network model support network isolation.</p>
-</div></div>
-<div class="section" id="cce_01_0286__section1974410198410"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0286__ul53491052743"><li id="cce_01_0286__li2349252943">You have created a Kubernetes cluster. For details, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_01_0286__li1734955212415">You have created a namespace. For details, see <a href="cce_01_0278.html">Creating a Namespace</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0286__section42227541910"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0286__cce_01_0059_ol2084531142611"><li id="cce_01_0286__cce_01_0059_li118452115260"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0286__b591362919489">Resource Management</strong> &gt; <strong id="cce_01_0286__b1391362919483">Namespaces</strong>.</span></li><li id="cce_01_0286__li1224181915319"><span>Select the cluster to which the namespace belongs from the <strong id="cce_01_0286__b1122243716113">Clusters</strong> drop-down list.</span></li><li id="cce_01_0286__cce_01_0059_li7507318182612"><span>At the row of a namespace (for example, <strong id="cce_01_0286__b16672144191118">default</strong>), switch on <strong id="cce_01_0286__b16137120161311">Network Isolation</strong>.</span><p><p id="cce_01_0286__cce_01_0059_p20395125672714">After network isolation is enabled, workloads in namespace <strong id="cce_01_0286__b1483322417137">default</strong> can access each other but they cannot be accessed by workloads in other namespaces.</p>
-<div class="fignone" id="cce_01_0286__cce_01_0059_fig13427151918417"><span class="figcap"><b>Figure 1 </b>Namespace-level network policy</span><br><span><img id="cce_01_0286__image29645342386" src="en-us_image_0000001144779784.png"></span></div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0286__section375095417515"><h4 class="sectiontitle">Network Isolation Description</h4><p id="cce_01_0286__p541214214525">Enabling network isolation is to create a network policy in a namespace. The network policy selects all pods in the namespace and prevents pods in other namespaces from accessing.</p>
-<pre class="screen" id="cce_01_0286__screen193810320529">kind: NetworkPolicy
-apiVersion: networking.k8s.io/v1
-metadata:
-    name: deny-default
-    namespace: default
-spec:
-    ingress:
-        - from:
-          - podSelector: {}
-    podSelector: {}                     # {} indicates that all pods are selected.</pre>
-<p id="cce_01_0286__p57861544849">You can also customize a network policy. For details, see <a href="cce_01_0059.html">Network Policies</a>.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0030.html">Namespaces</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0287.html b/docs/cce/umn/cce_01_0287.html
deleted file mode 100644
index 92504987..00000000
--- a/docs/cce/umn/cce_01_0287.html
+++ /dev/null
@@ -1,127 +0,0 @@
-<a name="cce_01_0287"></a><a name="cce_01_0287"></a>
-
-<h1 class="topictitle1">Setting a Resource Quota</h1>
-<div id="body0000001094879931"><p id="cce_01_0287__p7450182412459">Namespace-level resource quotas limit the amount of resources available to teams or users when these teams or users use the same cluster. The quotas include the total number of a type of objects and the total amount of compute resources (CPU and memory) consumed by the objects.</p>
-<div class="note" id="cce_01_0287__note13339131855019"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0287__p134041885020">Quotas can be set only in clusters of v1.9 or later.</p>
-</div></div>
-<div class="section" id="cce_01_0287__section1974410198410"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0287__ul53491052743"><li id="cce_01_0287__li2349252943">You have created a Kubernetes cluster. For details, see <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_01_0287__li1734955212415">You have created a namespace. For details, see <a href="cce_01_0278.html">Creating a Namespace</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0287__section161820104912"><h4 class="sectiontitle">Usage</h4><p id="cce_01_0287__p122111189918">By default, running pods can use the CPUs and memory of a node without restrictions. This means the pods in a namespace may exhaust all resources of the cluster.</p>
-<p id="cce_01_0287__p721115181698">Kubernetes provides namespaces for you to group workloads in a cluster. By setting resource quotas for each namespace, you can prevent resource exhaustion and ensure cluster reliability.</p>
-<p id="cce_01_0287__p6211818896">You can configure quotas for resources such as CPU, memory, and the number of pods in a namespace. For more information, see <a href="https://kubernetes.io/docs/concepts/policy/resource-quotas/?spm=a2c4g.11186623.2.8.d882712bd1i8ae" target="_blank" rel="noopener noreferrer">Resource Quotas</a>.</p>
-<p id="cce_01_0287__p1641135683113">The following table recommends how many pods you can configure for your clusters of different sizes.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0287__table76941619287" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0287__row207441417281"><th align="left" class="cellrowborder" valign="top" width="47.81%" id="mcps1.3.4.6.1.3.1.1"><p id="cce_01_0287__p18744812287">Cluster Scale</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="52.190000000000005%" id="mcps1.3.4.6.1.3.1.2"><p id="cce_01_0287__p4744717288">Recommended Number of Pods</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0287__row1974421112811"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.4.6.1.3.1.1 "><p id="cce_01_0287__p1174471132818">50 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.4.6.1.3.1.2 "><p id="cce_01_0287__p574411111288">2,500 pods</p>
-</td>
-</tr>
-<tr id="cce_01_0287__row16744171192814"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.4.6.1.3.1.1 "><p id="cce_01_0287__p974412110289">200 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.4.6.1.3.1.2 "><p id="cce_01_0287__p4744414285">10,000 pods</p>
-</td>
-</tr>
-<tr id="cce_01_0287__row1744611281"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.4.6.1.3.1.1 "><p id="cce_01_0287__p07444111282">1,000 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.4.6.1.3.1.2 "><p id="cce_01_0287__p3744141152816">30,000 pods</p>
-</td>
-</tr>
-<tr id="cce_01_0287__row174413132813"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.4.6.1.3.1.1 "><p id="cce_01_0287__p1974413118283">2,000 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.4.6.1.3.1.2 "><p id="cce_01_0287__p57441117288">50,000 pods</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0287__p23884611431">Starting from clusters of v1.21 and later, the default <a href="https://kubernetes.io/docs/concepts/policy/resource-quotas/?spm=a2c4g.11186623.2.8.d882712bd1i8ae" target="_blank" rel="noopener noreferrer">Resource Quotas</a> are created when a namespace is created. <a href="#cce_01_0287__table371165714613">Table 1</a> lists the resource quotas based on cluster specifications. You can modify them according to your service requirements.</p>
-
-<div class="tablenoborder"><a name="cce_01_0287__table371165714613"></a><a name="table371165714613"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0287__table371165714613" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Default resource quotas</caption><thead align="left"><tr id="cce_01_0287__row371135714462"><th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.4.8.2.7.1.1"><p id="cce_01_0287__p2741101516471">Cluster Scale</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.4.8.2.7.1.2"><p id="cce_01_0287__p672155774618">Pod</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.4.8.2.7.1.3"><p id="cce_01_0287__p20721357144613">Deployment</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.4.8.2.7.1.4"><p id="cce_01_0287__p7728578461">Secret</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.4.8.2.7.1.5"><p id="cce_01_0287__p117215714466">ConfigMap</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.4.8.2.7.1.6"><p id="cce_01_0287__p672357104616">Service</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0287__row1172157114611"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.1 "><p id="cce_01_0287__p97411115144712">50 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.2 "><p id="cce_01_0287__p8722057154614">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.3 "><p id="cce_01_0287__p272145764613">1000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.4 "><p id="cce_01_0287__p107235744611">1000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.5 "><p id="cce_01_0287__p772457184613">1000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.6 "><p id="cce_01_0287__p1072457174618">1000</p>
-</td>
-</tr>
-<tr id="cce_01_0287__row1972115711468"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.1 "><p id="cce_01_0287__p874131544718">200 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.2 "><p id="cce_01_0287__p457244374812">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.3 "><p id="cce_01_0287__p7572124315489">1000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.4 "><p id="cce_01_0287__p8572164310486">1000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.5 "><p id="cce_01_0287__p2057254384819">1000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.6 "><p id="cce_01_0287__p2572154315484">1000</p>
-</td>
-</tr>
-<tr id="cce_01_0287__row1075851118472"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.1 "><p id="cce_01_0287__p8741171517472">1,000 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.2 "><p id="cce_01_0287__p87582011134719">5000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.3 "><p id="cce_01_0287__p1875811116478">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.4 "><p id="cce_01_0287__p1275891120471">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.5 "><p id="cce_01_0287__p875811124719">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.6 "><p id="cce_01_0287__p57581011134710">2000</p>
-</td>
-</tr>
-<tr id="cce_01_0287__row372857174613"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.1 "><p id="cce_01_0287__p1374191554715">2,000 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.2 "><p id="cce_01_0287__p1747717560487">5000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.3 "><p id="cce_01_0287__p247765611483">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.4 "><p id="cce_01_0287__p1047715624814">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.5 "><p id="cce_01_0287__p1147765616485">2000</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.4.8.2.7.1.6 "><p id="cce_01_0287__p3477185610481">2000</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0287__section612004131015"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0287__ol721554611493"><li id="cce_01_0287__li121519469499"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0287__b14555461499">Resource Management</strong> &gt; <strong id="cce_01_0287__b1656346134910">Namespaces</strong>.</span></li><li id="cce_01_0287__li615161473110"><span>Select the cluster to which the namespace belongs from the <strong id="cce_01_0287__b1940210231045">Clusters</strong> drop-down list.</span></li><li id="cce_01_0287__li156041115011"><span>In the <strong id="cce_01_0287__b103851119113518">Operation</strong> column of a namespace, click <strong id="cce_01_0287__b117417377573">Manage Quota</strong>.</span><p><p id="cce_01_0287__p918714404511">This operation cannot be performed on system namespaces <strong id="cce_01_0287__b11884943747">kube-system</strong> and <strong id="cce_01_0287__b12889204310414">kube-public</strong>.</p>
-</p></li><li id="cce_01_0287__li1824223825116"><span>Set the resource quotas and click <strong id="cce_01_0287__b158391315113814">OK</strong>.</span><p><ul id="cce_01_0287__ul208882231510"><li id="cce_01_0287__li98882231959"><strong id="cce_01_0287__b5514443463">CPU (cores)</strong>: maximum number of CPU cores that can be allocated to workload pods in the namespace.</li><li id="cce_01_0287__li3888523859"><strong id="cce_01_0287__b1272105818610">Memory (MiB)</strong>: maximum amount of memory that can be allocated to workload pods in the namespace.</li><li id="cce_01_0287__li1888816239517"><strong id="cce_01_0287__b15473114975">StatefulSet</strong>: maximum number of StatefulSets that can be created in the namespace.</li><li id="cce_01_0287__li688814231558"><strong id="cce_01_0287__b560510612720">Deployment</strong>: maximum number of Deployments that can be created in the namespace.</li><li id="cce_01_0287__li198882231655"><strong id="cce_01_0287__b1238120911717">Job</strong>: maximum number of one-off jobs that can be created in the namespace.</li><li id="cce_01_0287__li148881723158"><strong id="cce_01_0287__b1521420141076">Cron Job</strong>: maximum number of cron jobs that can be created in the namespace.</li><li id="cce_01_0287__li18888023451"><strong id="cce_01_0287__b20261717672">Pod</strong>: maximum number of pods that can be created in the namespace.</li><li id="cce_01_0287__li58889231450"><strong id="cce_01_0287__b152881321376">Service</strong>: maximum number of Services that can be created in the namespace.</li></ul>
-<div class="notice" id="cce_01_0287__note149764191267"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_01_0287__ul126101287117"><li id="cce_01_0287__li061019286110">After setting CPU and memory quotas for a namespace, you must specify the request and limit values of CPU and memory resources when creating a workload. Otherwise, the workload cannot be created. If the quota of a resource is set to <strong id="cce_01_0287__b1957618541713">0</strong>, the resource usage is not limited.</li><li id="cce_01_0287__li116102281011">Accumulated quota usage includes the resources used by CCE to create default components, such as the Kubernetes Services (which can be viewed using kubectl) created under the <strong id="cce_01_0287__b11277131016814">default</strong> namespace. Therefore, you are advised to set a resource quota greater than expected to reserve resource for creating default components.</li></ul>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0030.html">Namespaces</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0288.html b/docs/cce/umn/cce_01_0288.html
deleted file mode 100644
index 047271c2..00000000
--- a/docs/cce/umn/cce_01_0288.html
+++ /dev/null
@@ -1,196 +0,0 @@
-<a name="cce_01_0288"></a><a name="cce_01_0288"></a>
-
-<h1 class="topictitle1">SecurityGroups</h1>
-<div id="body0000001126369307"><p id="cce_01_0288__p1974703154112">When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a custom resource object named <strong id="cce_01_0288__b165092192527">SecurityGroup</strong> for you to associate security groups with pods in CCE. You can customize workloads with specific security isolation requirements using SecurityGroups.</p>
-<div class="section" id="cce_01_0288__section21791218165310"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0288__ul9783173112364"><li id="cce_01_0288__li8783931193610">This function is supported for CCE Turbo clusters of v1.19 and later. Upgrade your CCE Turbo clusters if their versions are earlier than v1.19.</li><li id="cce_01_0288__li4993194416484">A workload can be bound to a maximum of five security groups.</li></ul>
-</div>
-<div class="section" id="cce_01_0288__section11870154492516"><h4 class="sectiontitle">Using the Console</h4><ol id="cce_01_0288__ol1361481610515"><li id="cce_01_0288__li3587928516103"><span>In the navigation pane of the CCE console, choose <strong id="cce_01_0288__b1329761320582">Resource Management</strong> &gt; <strong id="cce_01_0288__b15303101310588">Network</strong>.</span></li><li id="cce_01_0288__li010483562510"><span>On the <strong id="cce_01_0288__b299442813588">SecurityGroup</strong> tab page, select the target cluster in the upper right corner and click <strong id="cce_01_0288__b92451538115813">Create</strong>.</span></li><li id="cce_01_0288__li9243164415720"><span>Set the parameters as described in <a href="#cce_01_0288__table572616321913">Table 1</a>.</span><p>
-<div class="tablenoborder"><a name="cce_01_0288__table572616321913"></a><a name="table572616321913"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0288__table572616321913" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_01_0288__row207274322093"><th align="left" class="cellrowborder" valign="top" width="27.49274927492749%" id="mcps1.3.3.2.3.2.1.2.4.1.1"><p id="cce_01_0288__p77276326911">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="38.943894389438945%" id="mcps1.3.3.2.3.2.1.2.4.1.2"><p id="cce_01_0288__p0728113212917">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="33.563356335633564%" id="mcps1.3.3.2.3.2.1.2.4.1.3"><p id="cce_01_0288__p1372820323916">Example Value</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0288__row1772883218911"><td class="cellrowborder" valign="top" width="27.49274927492749%" headers="mcps1.3.3.2.3.2.1.2.4.1.1 "><p id="cce_01_0288__p1972843218919">SecurityGroup Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.3.2.1.2.4.1.2 "><p id="cce_01_0288__p1272819324915">Enter a SecurityGroup name.</p>
-<p id="cce_01_0288__p4881951142411">Enter 4 to 63 characters. The value must start with a lowercase letter and cannot end with a hyphen (-). Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.3.2.1.2.4.1.3 "><p id="cce_01_0288__p972814326910">security-group</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row872812321194"><td class="cellrowborder" valign="top" width="27.49274927492749%" headers="mcps1.3.3.2.3.2.1.2.4.1.1 "><p id="cce_01_0288__p14728133219910">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.3.2.1.2.4.1.2 "><p id="cce_01_0288__p372814324915">Select a cluster.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.3.2.1.2.4.1.3 "><p id="cce_01_0288__p2728832094">cce-turbo</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row1573293217917"><td class="cellrowborder" valign="top" width="27.49274927492749%" headers="mcps1.3.3.2.3.2.1.2.4.1.1 "><p id="cce_01_0288__p5732203215913">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.3.2.1.2.4.1.2 "><p id="cce_01_0288__p8732632390">Select a namespace. If the namespace is not created, click <strong id="cce_01_0288__b1854785651818">Create Namespace</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.3.2.1.2.4.1.3 "><p id="cce_01_0288__p573211323919">default</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row873219323913"><td class="cellrowborder" valign="top" width="27.49274927492749%" headers="mcps1.3.3.2.3.2.1.2.4.1.1 "><p id="cce_01_0288__p27320321598">Workload</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.3.2.1.2.4.1.2 "><p id="cce_01_0288__p1173273219910">Select a workload.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.3.2.1.2.4.1.3 "><p id="cce_01_0288__p715010280425">nginx</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row18733153211911"><td class="cellrowborder" valign="top" width="27.49274927492749%" headers="mcps1.3.3.2.3.2.1.2.4.1.1 "><p id="cce_01_0288__p187338321199">Security Group</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.3.2.1.2.4.1.2 "><p id="cce_01_0288__p1328632118575">The selected security group will be bound to the ENI or supplementary ENI of the selected workload. A maximum of five security groups can be selected from the drop-down list. You must select one or multiple security groups to create a SecurityGroup.</p>
-<p id="cce_01_0288__p147335320917">If no security group has not been created, click <strong id="cce_01_0288__b14281251122811">Create Security Group</strong>. After the security group is created, click the refresh button.</p>
-<div class="notice" id="cce_01_0288__note1159255716127"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_01_0288__ul1543718137385"><li id="cce_01_0288__li2437913113810">A maximum of 5 security groups can be selected.</li><li id="cce_01_0288__li141331916103820">Hover the cursor on the security group name, and you can view details about the security group.</li></ul>
-</div></div>
-</td>
-<td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.3.2.1.2.4.1.3 "><p id="cce_01_0288__p62971643205712">64566556-bd6f-48fb-b2c6-df8f44617953</p>
-<p id="cce_01_0288__p109894523576">5451f1b0-bd6f-48fb-b2c6-df8f44617953</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0288__li2313183112187"><span>After setting the parameters, click <strong id="cce_01_0288__b74311932192917">Create</strong>.</span><p><p id="cce_01_0288__p578411327180">After the SecurityGroup is created, the system automatically returns to the SecurityGroup list page. You can see that the newly added SecurityGroup is in the list.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0288__section16951511152313"><h4 class="sectiontitle">Using kubectl</h4><ol id="cce_01_0288__ol18112923132013"><li id="cce_01_0288__li1493862716528"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0288__li6661728195511"><span>Create a description file named <strong id="cce_01_0288__b410911248308">securitygroup-demo.yaml</strong>.</span><p><p id="cce_01_0288__p1681093315519"><strong id="cce_01_0288__b812025733818">vi securitygroup-demo.yaml</strong></p>
-<p id="cce_01_0288__p20295144971919">For example, create the following SecurityGroup to bind all nginx workloads with two security groups 64566556-bd6f-48fb-b2c6-df8f44617953 and 5451f1b0-bd6f-48fb-b2c6-df8f44617953 that have been created in advance. An example is as follows:</p>
-<pre class="screen" id="cce_01_0288__screen112085783811">apiVersion: crd.yangtse.cni/v1
-kind: SecurityGroup
-metadata:
-  name: demo
-  namespace: default
-spec:
-  podSelector:
-    matchLabels:
-      app: nginx    
-  <span style="color:#FF0000;">securityGroups:</span>
-<span style="color:#FF0000;">  - id: 64566556-bd6f-48fb-b2c6-df8f44617953</span>
-<span style="color:#FF0000;">  - id: 5451f1b0-bd6f-48fb-b2c6-df8f44617953</span></pre>
-<div class="p" id="cce_01_0288__p1654213181418"><a href="#cce_01_0288__table132326831016">Table 2</a> describes the parameters in the YAML file.
-<div class="tablenoborder"><a name="cce_01_0288__table132326831016"></a><a name="table132326831016"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0288__table132326831016" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Description</caption><thead align="left"><tr id="cce_01_0288__row523318817104"><th align="left" class="cellrowborder" valign="top" width="36.75%" id="mcps1.3.4.2.2.2.4.2.2.4.1.1"><p id="cce_01_0288__p162344817100">Field</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="47.25%" id="mcps1.3.4.2.2.2.4.2.2.4.1.2"><p id="cce_01_0288__p16234138161012">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16%" id="mcps1.3.4.2.2.2.4.2.2.4.1.3"><p id="cce_01_0288__p102881159151016">Mandatory</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0288__row112346841018"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p182345811107">apiVersion</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p2023458141014">API version. The value is <strong id="cce_01_0288__b123224464324">crd.yangtse.cni/v1</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p6234158101019">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row202347814100"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p172342815109">kind</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p142346871019">Type of the object to be created.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p2023416841019">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row1459172931315"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p1659232941311">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p165932298137">Metadata definition of the resource object.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p16593112941310">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row33638545115"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p036575412114">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p1036510541116">Name of the SecurityGroup.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p1936585415110">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row126231712194217"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p1692614369427">namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p7625512194216">Name of the namespace.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p142617117439">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row52341382109"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p2234188171017">Spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p1023414811012">Detailed description of the SecurityGroup.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p92341186101">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row29372135139"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p1493821315132">podselector</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p10938171341312">Used to define the workload to be associated with security groups in the SecurityGroup.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p5939181320135">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0288__row69398139139"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_01_0288__p14452947144819">SecurityGroups</p>
-</td>
-<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_01_0288__p10939121391317">Security group ID.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_01_0288__p4939161321314">Yes</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_01_0288__li37491511203115"><span>Run the following command to create the SecurityGroup:</span><p><p id="cce_01_0288__p10535028163215"><strong id="cce_01_0288__b141611743103317">kubectl create -f securitygroup-demo.yaml</strong></p>
-<p id="cce_01_0288__p19952164320410">If the following information is displayed, the SecurityGroup is being created.</p>
-<pre class="screen" id="cce_01_0288__screen1443217161515">securitygroup.crd.yangtse.cni/demo created</pre>
-</p></li><li id="cce_01_0288__li1922643918310"><span>Run the following command to view the SecurityGroup:</span><p><p id="cce_01_0288__p18793297337"><strong id="cce_01_0288__b196997348336">kubectl get sg</strong></p>
-<p id="cce_01_0288__p1570010192345">If the name of the created SecurityGroup is <strong id="cce_01_0288__b6605202415574">demo</strong> in the command output, the SecurityGroup is created successfully.</p>
-<pre class="screen" id="cce_01_0288__screen1921213422610">NAME                       POD-SELECTOR                      AGE
-all-no                     map[matchLabels:map[app:nginx]]   4h1m
-s001test                   map[matchLabels:map[app:nginx]]   19m
-demo                       map[matchLabels:map[app:nginx]]   2m9s</pre>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0288__section682403717222"><h4 class="sectiontitle">Other Operations</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0288__table394616495249" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Other operations</caption><thead align="left"><tr id="cce_01_0288__row49471249162418"><th align="left" class="cellrowborder" valign="top" width="24.5%" id="mcps1.3.5.2.2.3.1.1"><p id="cce_01_0288__p189471749182410">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="75.5%" id="mcps1.3.5.2.2.3.1.2"><p id="cce_01_0288__p16947114913245">Procedure</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0288__row6139155142516"><td class="cellrowborder" valign="top" width="24.5%" headers="mcps1.3.5.2.2.3.1.1 "><p id="cce_01_0288__p5140451132520">Deletion</p>
-</td>
-<td class="cellrowborder" valign="top" width="75.5%" headers="mcps1.3.5.2.2.3.1.2 "><ol id="cce_01_0288__ol1639531782718"><li id="cce_01_0288__li1239515175279">In the navigation pane of the CCE console, choose <strong id="cce_01_0288__b17901820135819">Resource Management</strong> &gt; <strong id="cce_01_0288__b15902202085816">Network</strong>.</li><li id="cce_01_0288__li16395317122719">On the <strong id="cce_01_0288__b15481519105913">SecurityGroup</strong> tab page, select the target SecurityGroup.</li><li id="cce_01_0288__li0637115632714">Click SecurityGroup to delete the SecurityGroup.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0288__row694712493245"><td class="cellrowborder" valign="top" width="24.5%" headers="mcps1.3.5.2.2.3.1.1 "><p id="cce_01_0288__p89473498241">Update</p>
-</td>
-<td class="cellrowborder" valign="top" width="75.5%" headers="mcps1.3.5.2.2.3.1.2 "><ol id="cce_01_0288__ol5931555183617"><li id="cce_01_0288__li193116550365">In the navigation pane of the CCE console, choose <strong id="cce_01_0288__b090872065817">Resource Management</strong> &gt; <strong id="cce_01_0288__b3908142075818">Network</strong>.</li><li id="cce_01_0288__li593175517364">On the <strong id="cce_01_0288__b1965316423594">SecurityGroup</strong> tab page, click <strong id="cce_01_0288__b189571844105912">Update</strong> at the same row as the SecurityGroup.<p id="cce_01_0288__p399219043815">You can update the SecurityGroup ID and associated workload.</p>
-</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0288__row7947349202412"><td class="cellrowborder" valign="top" width="24.5%" headers="mcps1.3.5.2.2.3.1.1 "><p id="cce_01_0288__p1594713497241">Viewing the YAML file</p>
-</td>
-<td class="cellrowborder" valign="top" width="75.5%" headers="mcps1.3.5.2.2.3.1.2 "><ol id="cce_01_0288__ol184959289353"><li id="cce_01_0288__li194961128143513">In the navigation pane of the CCE console, choose <strong id="cce_01_0288__b8913920165815">Resource Management</strong> &gt; <strong id="cce_01_0288__b1891319205583">Network</strong>.</li><li id="cce_01_0288__li1749610283353">On the <strong id="cce_01_0288__b587912222136">SecurityGroup</strong> tab page, click <strong id="cce_01_0288__b138806229136">View YAML</strong> at the same row as the SecurityGroup.<p id="cce_01_0288__p367182203813">You can view, copy, and download the YAML file.</p>
-</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0288__row884419237424"><td class="cellrowborder" valign="top" width="24.5%" headers="mcps1.3.5.2.2.3.1.1 "><p id="cce_01_0288__p784482354213">Viewing events</p>
-</td>
-<td class="cellrowborder" valign="top" width="75.5%" headers="mcps1.3.5.2.2.3.1.2 "><ol id="cce_01_0288__ol2341203144310"><li id="cce_01_0288__li13341163112436">In the navigation pane of the CCE console, choose <strong id="cce_01_0288__b391815209583">Resource Management</strong> &gt; <strong id="cce_01_0288__b69191520195811">Network</strong>.</li><li id="cce_01_0288__li11341531114317">On the <strong id="cce_01_0288__b57891849141">SecurityGroup</strong> tab page, click <strong id="cce_01_0288__b179510420146">View Event</strong>.<p id="cce_01_0288__p16341103113432">You can query the event information. </p>
-</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0020.html">Networking</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0291.html b/docs/cce/umn/cce_01_0291.html
deleted file mode 100644
index e26e81aa..00000000
--- a/docs/cce/umn/cce_01_0291.html
+++ /dev/null
@@ -1,20 +0,0 @@
-<a name="cce_01_0291"></a><a name="cce_01_0291"></a>
-
-<h1 class="topictitle1">Scaling a Cluster/Node</h1>
-<div id="body0000001089955022"><p id="cce_01_0291__p8060118"></p>
-</div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0296.html">Node Scaling Mechanisms</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0209.html">Creating a Node Scaling Policy</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0063.html">Managing Node Scaling Policies</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0207.html">Auto Scaling</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0293.html b/docs/cce/umn/cce_01_0293.html
deleted file mode 100644
index 08e78262..00000000
--- a/docs/cce/umn/cce_01_0293.html
+++ /dev/null
@@ -1,22 +0,0 @@
-<a name="cce_01_0293"></a><a name="cce_01_0293"></a>
-
-<h1 class="topictitle1">Scaling a Workload</h1>
-<div id="body0000001136331593"><p id="cce_01_0293__p8060118"></p>
-</div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0290.html">Workload Scaling Mechanisms</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0208.html">Creating an HPA Policy for Workload Auto Scaling</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0083.html">Managing Workload Scaling Policies</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0395.html">Switching from AOM to HPA for Auto Scaling</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0207.html">Auto Scaling</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0296.html b/docs/cce/umn/cce_01_0296.html
deleted file mode 100644
index a148d81d..00000000
--- a/docs/cce/umn/cce_01_0296.html
+++ /dev/null
@@ -1,27 +0,0 @@
-<a name="cce_01_0296"></a><a name="cce_01_0296"></a>
-
-<h1 class="topictitle1">Node Scaling Mechanisms</h1>
-<div id="body0000001136332525"><p id="cce_01_0296__p1320251924213">Kubernetes HPA is designed for pods. However, if the cluster resources are insufficient, you can only add nodes. Scaling of cluster nodes could be laborious. Now with clouds, you can add or delete nodes by simply calling APIs.</p>
-<p id="cce_01_0296__p986943512272"><a href="https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler" target="_blank" rel="noopener noreferrer">autoscaler</a> is a component provided by Kubernetes for auto scaling of cluster nodes based on the pod scheduling status and resource usage.</p>
-<div class="section" id="cce_01_0296__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0296__p4299242191311">Before using the node scaling function, you must install the <a href="cce_01_0154.html">autoscaler</a> add-on of v1.13.8 or later.</p>
-</div>
-<div class="section" id="cce_01_0296__section15550647155618"><h4 class="sectiontitle">How autoscaler Works</h4><p id="cce_01_0296__en-us_topic_0000001134985539_p108861830195320">The cluster autoscaler (CA) goes through two processes.</p>
-<ul id="cce_01_0296__en-us_topic_0000001134985539_ul1225194595312"><li id="cce_01_0296__en-us_topic_0000001134985539_li12229204575311">Scale-out: The CA checks all unschedulable pods every 10 seconds and selects a node group that meets the requirements for scale-out based on the policy you set.</li><li id="cce_01_0296__en-us_topic_0000001134985539_li1722954585310">Scale-in: The CA scans all nodes every 10 seconds. If the number of pod requests on a node is less than the user-defined percentage for scale-in, the CA simulates whether the pods on the node can be migrated to other nodes. If yes, the node will be removed after an idle time window.</li></ul>
-<p id="cce_01_0296__p5564125663811">As described above, if a cluster node is idle for a period of time (10 minutes by default), scale-in is triggered, and the idle node is removed.</p>
-<p id="cce_01_0296__p10927740113817">However, a node cannot be removed from a cluster if the following pods exist:</p>
-<ol id="cce_01_0296__ol19081274511"><li id="cce_01_0296__li193436816395">Pods that do not meet specific requirements set in PodDisruptionBudget</li><li id="cce_01_0296__li93432819399">Pods that cannot be scheduled to other nodes due to constraints such as affinity and anti-affinity policies</li><li id="cce_01_0296__li19343168153916">Pods that have the <strong id="cce_01_0296__b13761122434">"cluster-autoscaler.kubernetes.io/safe-to-evict": "false"</strong> annotation</li><li id="cce_01_0296__li5343187394">Pods (except those created by kube-system DaemonSet) that exist in the kube-system namespace on the node</li><li id="cce_01_0296__li91151244512">Pods that are not created by the controller (Deployment/ReplicaSet/job/StatefulSet)</li></ol>
-</div>
-<div class="section" id="cce_01_0296__section1937355015712"><h4 class="sectiontitle">autoscaler Architecture</h4><p id="cce_01_0296__p19483175016574"><a href="#cce_01_0296__fig114831750115719">Figure 1</a> shows the autoscaler architecture and its core modules:</p>
-<div class="fignone" id="cce_01_0296__fig114831750115719"><a name="cce_01_0296__fig114831750115719"></a><a name="fig114831750115719"></a><span class="figcap"><b>Figure 1 </b>autoscaler architecture</span><br><span><img id="cce_01_0296__image1311110330342" src="en-us_image_0000001199848585.png"></span></div>
-<p id="cce_01_0296__p848317504572"><strong id="cce_01_0296__b124012214506">Description</strong></p>
-<ul id="cce_01_0296__ul848495025713"><li id="cce_01_0296__li184831850135719"><strong id="cce_01_0296__b2014431111413">Estimator</strong>: Evaluates the number of nodes to be added to each node pool to host unschedulable pods.</li><li id="cce_01_0296__li164832501576"><strong id="cce_01_0296__b182541915201411">Simulator</strong>: Finds the nodes that meet the scale-in conditions in the scale-in scenario.</li><li id="cce_01_0296__li12484150145717"><strong id="cce_01_0296__b96391717101419">Expander</strong>: Selects an optimal node from the node pool picked out by the Estimator based on the user-defined policy in the scale-out scenario. Currently, the Expander has the following policies:<ul id="cce_01_0296__ul15484145025716"><li id="cce_01_0296__li1848355055712"><strong id="cce_01_0296__b149572010145">Random</strong>: Selects a node pool randomly. If you have not specified a policy, <strong id="cce_01_0296__b10695175815301">Random</strong> is set by default.</li><li id="cce_01_0296__li1948395085715"><strong id="cce_01_0296__b0886923181418">most-Pods</strong>: Selects the node pool that can host the largest number of unschedulable pods after the scale-out. If multiple node pools meet the requirement, a random node pool will be selected.</li><li id="cce_01_0296__li1948315013576"><strong id="cce_01_0296__b5768228131412">least-waste</strong>: Selects the node pool that has the least CPU or memory resource waste after scale-out.</li><li id="cce_01_0296__li16484125075714"><strong id="cce_01_0296__b13641631171413">price</strong>: Selects the node pool in which the to-be-added nodes cost least for scale-out.</li><li id="cce_01_0296__li16484135065716"><strong id="cce_01_0296__b172453361411">priority</strong>: Selects the node pool with the highest weight. The weights are user-defined.</li></ul>
-</li></ul>
-<p id="cce_01_0296__p870819095816">Currently, CCE supports all policies except <strong id="cce_01_0296__b18779115815130">price</strong>. By default, CCE add-ons use the <strong id="cce_01_0296__b32070381414">least-waste</strong> policy.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0291.html">Scaling a Cluster/Node</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0298.html b/docs/cce/umn/cce_01_0298.html
deleted file mode 100644
index b9862b21..00000000
--- a/docs/cce/umn/cce_01_0298.html
+++ /dev/null
@@ -1,170 +0,0 @@
-<a name="cce_01_0298"></a><a name="cce_01_0298"></a>
-
-<h1 class="topictitle1">Creating a CCE Turbo Cluster</h1>
-<div id="body0000001138502763"><p id="cce_01_0298__p1734813518288">CCE Turbo clusters run on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and intelligent scheduling.</p>
-<p id="cce_01_0298__p115071022112020">CCE Turbo clusters are paired with the Cloud Native Network 2.0 model for large-scale, high-performance container deployment. Containers are assigned IP addresses from the VPC CIDR block. Containers and nodes can belong to different subnets. Access requests from external networks in a VPC can be directly routed to container IP addresses, which greatly improves networking performance. <strong id="cce_01_0298__b83411556181619">It is recommended</strong> that you go through <a href="cce_01_0284.html">Cloud Native Network 2.0</a> to understand the features and network planning of each CIDR block of Cloud Native Network 2.0.</p>
-<div class="section" id="cce_01_0298__section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0298__ul129132199018"><li id="cce_01_0298__li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_01_0298__li138561244112310">You can create a maximum of 50 clusters in a single region.</li><li id="cce_01_0298__li137951846406">CCE Turbo clusters support only Cloud Native Network 2.0. For details about this network model, see <a href="cce_01_0284.html">Cloud Native Network 2.0</a>.</li><li id="cce_01_0298__li098921654613">Nodes in a CCE Turbo cluster must be the models developed on the QingTian architecture that features software-hardware synergy.</li><li id="cce_01_0298__li1651975510201">CCE Turbo clusters are available only in certain regions.</li></ul>
-</div>
-<div class="section" id="cce_01_0298__section10209182314553"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0298__ol363781272614"><li id="cce_01_0298__li136571149356"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0298__b17299174510251">Resource Management</strong> &gt; <strong id="cce_01_0298__b192991645142513">Clusters</strong>. Click <strong id="cce_01_0298__b895116197308">Create</strong> next to <strong id="cce_01_0298__b929974511255">CCE Turbo Cluster</strong>.</span><p><div class="fignone" id="cce_01_0298__fig119331740184918"><span class="figcap"><b>Figure 1 </b>Creating a CCE Turbo cluster</span><br><span><img id="cce_01_0298__image1854743019496" src="en-us_image_0000001150420952.png"></span></div>
-</p></li><li id="cce_01_0298__li16388123263"><span>On the page displayed, set the following parameters:</span><p><p id="cce_01_0298__p3728115716271"><strong id="cce_01_0298__b921461595811">Basic configuration</strong></p>
-<div class="p" id="cce_01_0298__p3897182314364">Specify the basic cluster configuration.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0298__table775910549271" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic parameters for creating a cluster</caption><thead align="left"><tr id="cce_01_0298__row157523542279"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.2.2.2.2.1.2.3.1.1"><p id="cce_01_0298__p167521454102714">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.2.2.2.2.1.2.3.1.2"><p id="cce_01_0298__p775275462718">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0298__row3752125482710"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.2.1.2.3.1.1 "><p id="cce_01_0298__p157521054102715">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.2.1.2.3.1.2 "><p id="cce_01_0298__p675285410274">Name of the cluster to be created. The cluster name must be unique under the same account and cannot be changed after the cluster is created.</p>
-<p id="cce_01_0298__p77521954182719">A cluster name contains 4 to 128 characters, starting with a letter and not ending with a hyphen (-). Only lowercase letters, digits, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0298__row875345462719"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.2.1.2.3.1.1 "><p id="cce_01_0298__p127531542272">Version</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.2.1.2.3.1.2 "><p id="cce_01_0298__p13753155412716">Version of Kubernetes to use for the cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0298__row1175325415272"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.2.1.2.3.1.1 "><p id="cce_01_0298__p37535546272">Management Scale</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.2.1.2.3.1.2 "><p id="cce_01_0298__p375395414274">Maximum number of worker nodes that can be managed by the master nodes of the cluster. You can select 200 nodes, 1,000 nodes, or 2,000 nodes for your cluster. </p>
-<p id="cce_01_0298__p775395402712">Master node specifications change with the cluster management scale you choose, and you will be charged accordingly.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<p id="cce_01_0298__p1319517593288"><strong id="cce_01_0298__b229185101912">Networking configuration</strong></p>
-<div class="p" id="cce_01_0298__p8249828374">Select the CIDR blocks used by nodes and containers in the cluster. If IP resources in the CIDR blocks are insufficient, nodes and containers cannot be created.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0298__table1719575917289" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Networking parameters</caption><thead align="left"><tr id="cce_01_0298__row81961759182810"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.2.2.2.4.1.2.3.1.1"><p id="cce_01_0298__p181961559132819">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.2.2.2.4.1.2.3.1.2"><p id="cce_01_0298__p15196165912281">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0298__row20197165992816"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.1 "><p id="cce_01_0298__p11197195922815">Network Model</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.2 "><p id="cce_01_0298__p1319775917283"><strong id="cce_01_0298__b3177418558">Cloud Native Network 2.0</strong>: This network model deeply integrates the native elastic network interfaces (ENIs) of VPC, uses the VPC CIDR block to allocate container addresses, and supports direct traffic distribution to containers through a load balancer to deliver high performance.</p>
-</td>
-</tr>
-<tr id="cce_01_0298__row1319717598282"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.1 "><p id="cce_01_0298__p519725914288">VPC</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.2 "><p id="cce_01_0298__p20558173114298">Select the VPC used by nodes and containers in the cluster. The VPC cannot be changed after the cluster is created.</p>
-<p id="cce_01_0298__p116393128265">A VPC provides a secure and logically isolated network environment.</p>
-<p id="cce_01_0298__p1063941211266">If no VPC is available, create one on the <span class="uicontrol" id="cce_01_0298__uicontrol89112416553"><b>VPC console</b></span>. After the VPC is created, click the refresh icon. </p>
-</td>
-</tr>
-<tr id="cce_01_0298__row9961959174010"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.1 "><p id="cce_01_0298__p36391812172618">Node Subnet</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.2 "><p id="cce_01_0298__p143697334237">This parameter is available after you select a VPC.</p>
-<p id="cce_01_0298__p572616338520">The subnet you select is used by nodes in the cluster and determines the maximum number of nodes in the cluster. This subnet will be the default subnet where your nodes are created. When creating a node, you can select other subnets in the same VPC.</p>
-<p id="cce_01_0298__p594513252114">A node subnet provides dedicated network resources that are logically isolated from other networks for higher security.</p>
-<p id="cce_01_0298__p1108371202">If no node subnet is available, click <strong id="cce_01_0298__b1286132012287">Create Subnet</strong> to create a subnet. After the subnet is created, click the refresh icon. For details about the relationship between VPCs, subnets, and clusters, see <a href="cce_01_0002.html">Cluster Overview</a>.</p>
-<p id="cce_01_0298__p1369519572172">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</p>
-<p id="cce_01_0298__p9619101653511"><strong id="cce_01_0298__b169563119300">The selected subnet cannot be changed after the cluster is created.</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0298__row19944514416"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.1 "><p id="cce_01_0298__p2042307171234">Pod Subnet</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.4.1.2.3.1.2 "><p id="cce_01_0298__p2046855174516">This parameter is available after you select a VPC.</p>
-<p id="cce_01_0298__p156731551122820">The subnet you select is used by pods in the cluster and determines the maximum number of pods in the cluster. The subnet cannot be changed after the cluster is created.</p>
-<p id="cce_01_0298__p31209167171234">IP addresses used by pods will be allocated from this subnet.</p>
-<div class="note" id="cce_01_0298__note1052111161767"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0298__p9522716564">If the pod subnet is the same as the node subnet, pods and nodes share the remaining IP addresses in the subnet. As a result, pods or nodes may fail to be created due to insufficient IP addresses.</p>
-</div></div>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<p id="cce_01_0298__p19912926133014"><strong id="cce_01_0298__b16562574187">Advanced Settings</strong></p>
-<div class="p" id="cce_01_0298__p44553261377">Configure enhanced capabilities for your CCE Turbo cluster.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0298__table891216262306" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Networking parameters</caption><thead align="left"><tr id="cce_01_0298__row1913122610307"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.2.2.2.6.1.2.3.1.1"><p id="cce_01_0298__p17913526143020">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.2.2.2.6.1.2.3.1.2"><p id="cce_01_0298__p6913192610308">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0298__row13913122623018"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.6.1.2.3.1.1 "><p id="cce_01_0298__p139133267303">Service Network Segment</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.6.1.2.3.1.2 "><p id="cce_01_0298__p209134265308">An IP range from which IP addresses are allocated to Kubernetes Services. After the cluster is created, the CIDR block cannot be changed. The Service CIDR block cannot conflict with the created routes. If they conflict, select another CIDR block.</p>
-<p id="cce_01_0298__p8287115855510">The default value is <strong id="cce_01_0298__b193429586427">10.247.0.0/16</strong>. You can change the CIDR block and mask according to your service requirements. The mask determines the maximum number of Service IP addresses available in the cluster.</p>
-<p id="cce_01_0298__p8398153875620">After you set the mask, the console will provide an estimated maximum number of Services you can create in this CIDR block. </p>
-</td>
-</tr>
-<tr id="cce_01_0298__row9381745114114"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.6.1.2.3.1.1 "><p id="cce_01_0298__p138224519412">kube-proxy Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.6.1.2.3.1.2 "><p id="cce_01_0298__p16382124517417">Load balancing between Services and their backend pods. The value cannot be changed after the cluster is created.</p>
-<ul id="cce_01_0298__ul171711948164219"><li id="cce_01_0298__li3171648114213"><strong id="cce_01_0298__b141501451137">IPVS</strong>: optimized kube-proxy mode to achieve higher throughput and faster speed, ideal for large-sized clusters. This mode supports incremental updates and can keep connections uninterrupted during Service updates.<p id="cce_01_0298__p6171104810422">In this mode, when the ingress and Service use the same ELB instance, the ingress cannot be accessed from the nodes and containers in the cluster.</p>
-</li><li id="cce_01_0298__li1817111484422"><strong id="cce_01_0298__b225074810196">iptables</strong>: Use iptables rules to implement Service load balancing. In this mode, too many iptables rules will be generated when many Services are deployed. In addition, non-incremental updates will cause a latency and even tangible performance issues in the case of service traffic spikes.</li></ul>
-<div class="note" id="cce_01_0298__note1417164874212"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_01_0298__ul1617174814217"><li id="cce_01_0298__li717164810428">IPVS provides better scalability and performance for large clusters.</li><li id="cce_01_0298__li17171134894216">Compared with iptables, IPVS supports more complex load balancing algorithms such as least load first (LLF) and weighted least connections (WLC).</li><li id="cce_01_0298__li6171848184217">IPVS supports server health check and connection retries.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0298__row12310175135716"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.2.2.6.1.2.3.1.1 "><p id="cce_01_0298__p131017575713">CPU Policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.2.2.6.1.2.3.1.2 "><ul id="cce_01_0298__ul14813182993518"><li id="cce_01_0298__li14813182973520"><strong id="cce_01_0298__b15963659114116">On</strong>: Exclusive CPU cores can be allocated to workload pods. Select <strong id="cce_01_0298__b18963185919416">On</strong> if your workload is sensitive to latency in CPU cache and scheduling.</li><li id="cce_01_0298__li381392910357"><strong id="cce_01_0298__b03006411426">Off</strong>: Exclusive CPU cores will not be allocated to workload pods. Select <strong id="cce_01_0298__b33014464215">Off</strong> if you want a large pool of shareable CPU cores.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_01_0298__li118628713"><span>Click <strong id="cce_01_0298__b1929216443118">Next: Confirm</strong> to review the configurations and change them if required.</span></li><li id="cce_01_0298__li6422192516566"><span>Click <strong id="cce_01_0298__b124069289378">Submit</strong>.</span><p><p id="cce_01_0298__p15857172212315">It takes about 6 to 10 minutes to create a cluster. You can click <strong id="cce_01_0298__b759435219376">Back to Cluster List</strong> to perform other operations on the cluster or click <strong id="cce_01_0298__b1667185973718">Go to Cluster Events</strong> to view the cluster details.</p>
-</p></li><li id="cce_01_0298__li9747172618311"><span>If the cluster status is <strong id="cce_01_0298__b10486164054111">Available</strong>, the CCE Turbo cluster is successfully created, and <strong id="cce_01_0298__b113595213412">Turbo</strong> is displayed next to the cluster name.</span><p><p id="cce_01_0298__p9457217324"></p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0298__section473818525817"><h4 class="sectiontitle">Related Operations</h4><ul id="cce_01_0298__cce_01_0028_ul912451119262"><li id="cce_01_0298__cce_01_0028_li1030825181117">Using kubectl to connect to the cluster: <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a></li><li id="cce_01_0298__cce_01_0028_li71881616124815">Logging in to the node: <a href="cce_01_0185.html">Logging In to a Node</a></li></ul>
-<ul id="cce_01_0298__cce_01_0028_ul146511412161316"><li id="cce_01_0298__cce_01_0028_li19707944113713">Creating a namespace: You can create multiple namespaces in a cluster and organize resources in the cluster into different namespaces. These namespaces serve as logical groups and can be managed separately. For details about how to create a namespace for a cluster, see <a href="cce_01_0030.html">Namespaces</a>.</li><li id="cce_01_0298__cce_01_0028_li13260557114311">Creating a workload: Once the cluster is created, you can use an image to create an application that can be accessed from public networks. For details, see <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0216.html">Creating a DaemonSet</a>.</li><li id="cce_01_0298__cce_01_0028_li59102435313">Viewing cluster details: Click the cluster name to view cluster details.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0298__cce_01_0028_table1642185503514" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Details about the created cluster</caption><thead align="left"><tr id="cce_01_0298__cce_01_0028_row1264365516359"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.5.3.3.1.2.3.1.1"><p id="cce_01_0298__cce_01_0028_p76431955153512">Tab</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="80%" id="mcps1.3.5.3.3.1.2.3.1.2"><p id="cce_01_0298__cce_01_0028_p176431155163517">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0298__cce_01_0028_row5975069716956"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0298__cce_01_0028_p796825616956">Basic Information</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0298__cce_01_0028_p4144902016956">You can view the details and running status of the cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0298__cce_01_0028_row106431055133510"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0298__cce_01_0028_p1364315552359">Monitoring</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0298__cce_01_0028_p5583863516649">You can view the CPU and memory allocation rates of all nodes in the cluster (that is, the maximum allocated amount), as well as the CPU usage, memory usage, and specifications of the master node(s).</p>
-</td>
-</tr>
-<tr id="cce_01_0298__cce_01_0028_row1464335593515"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0298__cce_01_0028_p1264365518351">Events</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><ul id="cce_01_0298__cce_01_0028_ul42186174161243"><li id="cce_01_0298__cce_01_0028_li37414170161243">View cluster events.</li><li id="cce_01_0298__cce_01_0028_li2102868161329">Set search criteria, such as the event name or the time segment during which an event is generated, to filter events.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0298__cce_01_0028_row506129238"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0298__cce_01_0028_p160812132312">Auto Scaling</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0298__cce_01_0028_p90512182317">You can configure auto scaling to add or reduce worker nodes in a cluster to meet service requirements. For details, see <a href="cce_01_0157.html">Setting Cluster Auto Scaling</a>.</p>
-<p id="cce_01_0298__p866618443354">Clusters of v1.17 do not support auto scaling using AOM. You can use node pools for auto scaling. For details, see <a href="cce_01_0081.html">Node Pool Overview</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0298__cce_01_0028_row651036112414"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0298__cce_01_0028_p1251015692419">kubectl</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0298__cce_01_0028_p35101368242">To access a Kubernetes cluster from a PC, you need to use the Kubernetes command line tool <a href="https://kubernetes.io/docs/user-guide/kubectl/" target="_blank" rel="noopener noreferrer">kubectl</a>. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0298__row1562810082313"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.5.3.3.1.2.3.1.1 "><p id="cce_01_0298__p96289022317">Resource Tags</p>
-</td>
-<td class="cellrowborder" valign="top" width="80%" headers="mcps1.3.5.3.3.1.2.3.1.2 "><p id="cce_01_0298__p11774125042315">Resource tags can be added to classify resources.</p>
-<p id="cce_01_0298__p177435013232">You can create <strong id="cce_01_0298__b3105324195610">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use predefined tags to improve tag creation and resource migration efficiency. </p>
-<p id="cce_01_0298__p15775125014232">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_01_0298__i86816444561">Node ID</em>" tag. A maximum of 5 tags can be added.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0300.html b/docs/cce/umn/cce_01_0300.html
index c81c8574..a1798429 100644
--- a/docs/cce/umn/cce_01_0300.html
+++ b/docs/cce/umn/cce_01_0300.html
@@ -8,14 +8,29 @@
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_01_0300__row1722210871314"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p32228891316">2022-08-27</p>
+<tbody><tr id="cce_01_0300__row181091826101811"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p1510922618183">2023-02-10</p>
+</td>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul262319241116"><li id="cce_01_0300__li192921356122114">Supported the creation of clusters of v1.25.</li><li id="cce_01_0300__li12638261224">Added <a href="cce_10_0466.html">Configuring Pod Security Admission</a>.</li><li id="cce_01_0300__li1238583891617">Added <a href="cce_bulletin_0011.html">Vulnerability Fixing Policies</a>.</li><li id="cce_01_0300__li1132183918530">Updated <a href="cce_10_0252.html">Using kubectl to Create an ELB Ingress</a>.</li></ul>
+</td>
+</tr>
+<tr id="cce_01_0300__row318811491127"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p1188749921">2022-12-20</p>
+</td>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul3243191617515"><li id="cce_01_0300__li62969232067">Updated <a href="cce_bulletin_0301.html">OS Patch Notes for Cluster Nodes</a>.</li><li id="cce_01_0300__li202435167515">Added <a href="cce_10_0193.html">volcano</a>.</li><li id="cce_01_0300__li3694101821210">Added <a href="cce_10_0477.html">Service Account Token Security Improvement</a>.</li><li id="cce_01_0300__li13145192612434">Definition of new permission management roles: CCE ReadOnlyAccess, CCE Administrator, CCE FullAccess.</li></ul>
+</td>
+</tr>
+<tr id="cce_01_0300__row4557205544117"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p555719556417">2022-11-21</p>
+</td>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p185571655114118">Added <a href="cce_bestpractice.html">Best Practice</a>.</p>
+</td>
+</tr>
+<tr id="cce_01_0300__row1722210871314"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p32228891316">2022-08-27</p>
 </td>
 <td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p02221989131">EulerOS 2.9 is supported. For details, see <a href="cce_bulletin_0301.html">OS Patch Notes for Cluster Nodes</a>.</p>
 </td>
 </tr>
 <tr id="cce_01_0300__row830935719612"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p153091857867">2022-07-13</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p133094573610">Supported egress rules. For details, see <a href="cce_01_0059.html">Network Policies</a>.</p>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p133094573610">Supported egress rules. For details, see <a href="cce_10_0059.html">Network Policies</a>.</p>
 </td>
 </tr>
 <tr id="cce_01_0300__row17808497350"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p10808496352">2022-05-24</p>
@@ -30,33 +45,33 @@
 </tr>
 <tr id="cce_01_0300__row1112142253113"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p612192283114">2022-04-14</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p3484184216310">Allowed cluster upgrade from v1.19 to v1.21. For details, see <a href="cce_01_0301.html">Performing In-place Upgrade</a>.</p>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p3484184216310">Allowed cluster upgrade from v1.19 to v1.21. For details, see <a href="cce_10_0301.html">Performing In-place Upgrade</a>.</p>
 </td>
 </tr>
 <tr id="cce_01_0300__row37762558124"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p777625517122">2022-03-24</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul139181525181918"><li id="cce_01_0300__li1291922517197">Supported the creation of clusters of v1.21.</li><li id="cce_01_0300__li1476682711199">Two-way authentication is supported for domain name access. For details, see <a href="cce_01_0107.html#cce_01_0107__section1559919152711">Two-Way Authentication for Domain Names</a>.</li><li id="cce_01_0300__li14354567017">The Docker storage mode of nodes running CentOS 7 in CCE clusters is changed from Device Mapper to OverlayFS. For details, see <a href="cce_01_0180.html">Node Overview</a>.</li></ul>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul139181525181918"><li id="cce_01_0300__li1291922517197">Supported the creation of clusters of v1.21.</li><li id="cce_01_0300__li1476682711199">Two-way authentication is supported for domain name access. For details, see <a href="cce_10_0107.html#cce_10_0107__section1559919152711">Two-Way Authentication for Domain Names</a>.</li><li id="cce_01_0300__li14354567017">The Docker storage mode of nodes running CentOS 7 in CCE clusters is changed from Device Mapper to OverlayFS. For details, see <a href="cce_10_0180.html">Node Overview</a>.</li></ul>
 </td>
 </tr>
 <tr id="cce_01_0300__row106468415813"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p724585214516">2022-02-17</p>
 </td>
 <td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p2105322181014">Supported the creation of CCE Turbo Cluster.</p>
-<ul id="cce_01_0300__ul13666201814815"><li id="cce_01_0300__li9424175920913">Added <a href="cce_01_0342.html">CCE Turbo Clusters and CCE Clusters</a>.</li><li id="cce_01_0300__li18104317111">Added <a href="cce_01_0298.html">Creating a CCE Turbo Cluster</a>.</li><li id="cce_01_0300__li19860211141114">Added <a href="cce_01_0363.html">Creating a Node in a CCE Turbo Cluster</a>.</li><li id="cce_01_0300__li6662201784015">Added <a href="cce_01_0114.html">ENI LoadBalancer</a>.</li><li id="cce_01_0300__li31521133141014">Added <a href="cce_01_0288.html">SecurityGroups</a>.</li></ul>
+<ul id="cce_01_0300__ul13666201814815"><li id="cce_01_0300__li9424175920913">Added <a href="cce_10_0342.html">CCE Turbo Clusters and CCE Clusters</a>.</li><li id="cce_01_0300__li18104317111">Added <a href="cce_10_0298.html">Creating a CCE Turbo Cluster</a>.</li><li id="cce_01_0300__li19860211141114">Added <a href="cce_10_0363.html">Creating a Node in a CCE Turbo Cluster</a>.</li><li id="cce_01_0300__li6662201784015">Added ENI LoadBalancer.</li><li id="cce_01_0300__li31521133141014">Added <a href="cce_10_0288.html">SecurityGroups</a>.</li></ul>
 </td>
 </tr>
 <tr id="cce_01_0300__row10471547124411"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p44718475445">2021-12-14</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p11472047144418">The validity period of the certificate of cluster can be configured. For details, see <a href="cce_01_0175.html">Obtaining a Cluster Certificate</a>.</p>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p11472047144418">The validity period of the certificate of cluster can be configured. For details, see <a href="cce_10_0175.html">Obtaining a Cluster Certificate</a>.</p>
 </td>
 </tr>
 <tr id="cce_01_0300__row4019594420"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p1101057447">2021-11-30</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul1631105542311"><li id="cce_01_0300__li1531125502319">Added <a href="cce_01_0338.html">Removing a Node</a>.</li><li id="cce_01_0300__li44631756152310">Added <a href="cce_01_0352.html">Configuring Node Scheduling (Tainting)</a>.</li></ul>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul1631105542311"><li id="cce_01_0300__li1531125502319">Added <a href="cce_10_0338.html">Removing a Node</a>.</li><li id="cce_01_0300__li44631756152310">Added <a href="cce_10_0352.html">Configuring Node Scheduling (Tainting)</a>.</li></ul>
 </td>
 </tr>
 <tr id="cce_01_0300__row1918611203315"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p141871016339">2021-11-15</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul18439812408"><li id="cce_01_0300__li1084348144012">Supported the creation of clusters of v1.19.10.</li><li id="cce_01_0300__li1450854681714"><span style="color:#172B4D;">SFS and OBS mount options can be configured</span>. For details, see <a href="cce_01_0337.html">Setting Mount Options</a>.</li><li id="cce_01_0300__li9868847162212"><span style="color:#172B4D;">Custom keys are supported for OBS</span>. For details, see <a href="cce_01_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</li></ul>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul18439812408"><li id="cce_01_0300__li1084348144012">Supported the creation of clusters of v1.19.10.</li><li id="cce_01_0300__li1450854681714">SFS and OBS mount options can be configured. For details, see <a href="cce_10_0337.html">Setting Mount Options</a>.</li><li id="cce_01_0300__li9868847162212">Custom keys are supported for OBS. For details, see <a href="cce_10_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</li></ul>
 </td>
 </tr>
 <tr id="cce_01_0300__row4427547789"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p7427204714813">2021-06-23</p>
@@ -72,7 +87,7 @@
 </tr>
 <tr id="cce_01_0300__row098655013552"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p1098745018551">2021-01-30</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul25763513335"><li id="cce_01_0300__li155761551173310">Updated <a href="cce_01_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_01_0300__li55761519338">Updated <a href="cce_01_0215.html">Upgrading a Cluster</a>.</li><li id="cce_01_0300__li557685110339">Updated <a href="cce_01_0222.html">Managing a Node Pool</a>.</li><li id="cce_01_0300__li7576551153310">Updated <a href="cce_01_0248.html">Ingress</a>.</li></ul>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul25763513335"><li id="cce_01_0300__li155761551173310">Updated <a href="cce_10_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_01_0300__li55761519338">Updated <a href="cce_10_0215.html">Upgrading a Cluster</a>.</li><li id="cce_01_0300__li557685110339">Updated <a href="cce_10_0222.html">Managing a Node Pool</a>.</li><li id="cce_01_0300__li7576551153310">Updated <a href="cce_10_0248.html">Ingress</a>.</li></ul>
 </td>
 </tr>
 <tr id="cce_01_0300__row69421443152710"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p99431443102719">2020-11-02</p>
@@ -97,7 +112,7 @@
 </tr>
 <tr id="cce_01_0300__row14791350755"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p0480175013517">2020-02-21</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p2481125514913">Updated <a href="cce_01_0030.html">Namespaces</a>.</p>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><p id="cce_01_0300__p2481125514913">Updated <a href="cce_10_0030.html">Namespaces</a>.</p>
 </td>
 </tr>
 <tr id="cce_01_0300__row84201045162113"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p204201945192113">2019-10-30</p>
@@ -122,7 +137,7 @@
 </tr>
 <tr id="cce_01_0300__row816345593114"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p31641155103118">2019-07-30</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul7504814173210"><li id="cce_01_0300__li205155194211">Allows users to modify Maximum Number of Unavailable Pods after creating an application.</li><li id="cce_01_0300__li6633940183316">Allows users to add pod scheduling policies after creating an application. For details, see <a href="cce_01_0149.html">Affinity and Anti-Affinity Scheduling</a>.</li></ul>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul7504814173210"><li id="cce_01_0300__li205155194211">Allows users to modify Maximum Number of Unavailable Pods after creating an application.</li><li id="cce_01_0300__li6633940183316">Allows users to add pod scheduling policies after creating an application. For details, see <a href="cce_10_0232.html">Affinity and Anti-Affinity Scheduling</a>.</li></ul>
 </td>
 </tr>
 <tr id="cce_01_0300__row7529114017519"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p05301040558">2019-07-29</p>
@@ -237,7 +252,7 @@
 </tr>
 <tr id="cce_01_0300__row076213315134"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p15763143161315">2018-09-15</p>
 </td>
-<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul322182114149"><li id="cce_01_0300__li12384175374211">Added a step to the procedure of adding a node to a BMS cluster. For details, see 3.4-Adding Existing Nodes to a BMS Cluster.</li><li id="cce_01_0300__li5452135618424">Deleted the EVS and ELB related constraints. For details, see 3.4-Constraints.</li><li id="cce_01_0300__li823416475422">Added the description of DeH in 3.7-Table Parameters for creating a node.</li></ul>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul322182114149"><li id="cce_01_0300__li12384175374211">Added a step to the procedure of adding a node to a BMS cluster. For details, see 3.4-Adding Existing Nodes to a BMS Cluster.</li><li id="cce_01_0300__li5452135618424">Deleted the EVS and ELB related constraints. For details, see 3.4-Constraints.</li></ul>
 </td>
 </tr>
 <tr id="cce_01_0300__row33701652333"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p2037211516336">2018-09-05</p>
diff --git a/docs/cce/umn/cce_01_0301.html b/docs/cce/umn/cce_01_0301.html
deleted file mode 100644
index 11d41108..00000000
--- a/docs/cce/umn/cce_01_0301.html
+++ /dev/null
@@ -1,39 +0,0 @@
-<a name="cce_01_0301"></a><a name="cce_01_0301"></a>
-
-<h1 class="topictitle1">Performing In-place Upgrade (v1.15 and Later)</h1>
-<div id="body0000001110681922"><div class="section" id="cce_01_0301__section10924122311617"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0301__p19245829101612">On the CCE console, You can perform an in-place cluster upgrade to use new cluster features.</p>
-<p id="cce_01_0301__p10143161620134">Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what ways, and the upgrade impacts. For details, see <a href="cce_01_0197.html">Overview</a> and <a href="cce_01_0302.html">Before You Start</a>.</p>
-</div>
-<div class="section" id="cce_01_0301__section2070072554817"><h4 class="sectiontitle">Description</h4><ul id="cce_01_0301__ul3828175415018"><li id="cce_01_0301__li982819549505">An in-place upgrade updates the Kubernetes components on cluster nodes, without changing their OS version. </li><li id="cce_01_0301__li12829175411509">Data plane nodes are upgraded in batches. By default, they are prioritized based on their CPU, memory, and <a href="https://kubernetes.io/docs/tasks/run-application/configure-pdb/" target="_blank" rel="noopener noreferrer">PodDisruptionBudgets (PDBs)</a>. You can also set the priorities according to your service requirements.</li></ul>
-</div>
-<div class="section" id="cce_01_0301__section1919918391549"><h4 class="sectiontitle">Precautions</h4><ul id="cce_01_0301__ul19491118352"><li id="cce_01_0301__li194914183512">During the cluster upgrade, the system will automatically upgrade add-ons to a version compatible with the target cluster version. Do not uninstall or reinstall add-ons during the cluster upgrade.</li><li id="cce_01_0301__li449141819517">Before the upgrade, ensure that all add-ons are running. If an add-on fails to be upgraded, rectify the fault and try again.</li><li id="cce_01_0301__li754953003010">During the upgrade, CCE checks the add-on running status. Some add-ons (such as coredns) require at least two nodes to run normally. In this case, at least two nodes must be available for the upgrade.</li></ul>
-<p id="cce_01_0301__p12755105115414">For more information, see <a href="cce_01_0302.html">Before You Start</a>.</p>
-</div>
-<div class="section" id="cce_01_0301__section1687417142026"><h4 class="sectiontitle">Procedure</h4><p id="cce_01_0301__p1371062222518">This section describes how to upgrade a CCE cluster of v1.15 or later. For other versions, see <a href="cce_01_0120.html">Performing Replace/Rolling Upgrade (v1.13 and Earlier)</a>.</p>
-<ol id="cce_01_0301__ol226615082711"><li id="cce_01_0301__li3676163391418"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0301__b4916135062218">Resource Management</strong> &gt; <strong id="cce_01_0301__b1391619501225">Clusters</strong>. In the cluster list, view the cluster version.</span></li><li id="cce_01_0301__li13509123212283"><span>Click <strong id="cce_01_0301__b1963423520566">More</strong> for the cluster you want to upgrade, and select <strong id="cce_01_0301__b2635535105611">Upgrade</strong> from the drop-down menu.</span><p><div class="fignone" id="cce_01_0301__fig6186172418572"><span class="figcap"><b>Figure 1 </b>Upgrading a cluster</span><br><span><img id="cce_01_0301__image1183011165719" src="en-us_image_0000001229793402.png"></span></div>
-<div class="note" id="cce_01_0301__note1723614376153"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0301__ul567619811233"><li id="cce_01_0301__li1676483230">If your cluster version is up-to-date, the <strong id="cce_01_0301__b12748184595816">Upgrade</strong> button is grayed out.</li><li id="cce_01_0301__li26764811233">If the cluster status is <strong id="cce_01_0301__b172040487583">Unavailable</strong>, the upgrade flag in the upper right corner of the cluster card view will be grayed out. Check the cluster status by referring to <a href="cce_01_0302.html">Before You Start</a>.</li></ul>
-</div></div>
-</p></li><li id="cce_01_0301__li9685181916516"><span>(Optional) On the cluster upgrade confirmation page, click <strong id="cce_01_0301__b234561884015">Backup</strong> to back up the entire master node. This backup mode is recommended.</span><p><p id="cce_01_0301__p68865120532">A manual confirmation is required for backing up the entire master node. The backup process uses the Cloud Backup and Recovery (CBR) service and takes about 20 minutes. If there are many cloud backup tasks at the current site, the backup time may be prolonged. You are advised to back up the master node.</p>
-<div class="fignone" id="cce_01_0301__fig1028973315127"><span class="figcap"><b>Figure 2 </b>Determining whether to back up the entire master node</span><br><span><img id="cce_01_0301__image1113515263120" src="en-us_image_0000001280171657.png"></span></div>
-</p></li><li id="cce_01_0301__li76391913300"><span>Check the version information, last update/upgrade time, available upgrade version, and upgrade history of the current cluster.</span><p><p id="cce_01_0301__p1442416917563">The cluster upgrade goes through pre-upgrade check, add-on upgrade/uninstallation, master node upgrade, worker node upgrade, and post-upgrade processing.</p>
-<div class="fignone" id="cce_01_0301__fig325911356592"><span class="figcap"><b>Figure 3 </b>Cluster upgrade page</span><br><span><img id="cce_01_0301__image1432631691015" src="en-us_image_0000001274316069.png"></span></div>
-</p></li><li id="cce_01_0301__li984983714109"><span>Click <strong id="cce_01_0301__b1381054994819">Upgrade</strong> on the right. Set the upgrade parameters.</span><p><ul id="cce_01_0301__ul178452043143016"><li id="cce_01_0301__li78451143153020"><strong id="cce_01_0301__b12119145820111">Available Versions</strong>: Select v1.19 in this example.</li><li id="cce_01_0301__li539234119114"><strong id="cce_01_0301__b149371549317">Cluster Backup</strong>: A manual confirmation is required for backing up the entire master node. The backup process uses the Cloud Backup and Recovery (CBR) service and takes about 20 minutes. If there are many cloud backup tasks at the current site, the backup time may be prolonged.</li><li id="cce_01_0301__li7676104618303"><strong id="cce_01_0301__b127845449212">Add-on Upgrade Configuration</strong>: Add-ons that have been installed in your cluster are listed. During the cluster upgrade, the system automatically upgrades the add-ons to be compatible with the target cluster version. You can click <strong id="cce_01_0301__b12141811531">Set</strong> to re-define the add-on parameters.<div class="note" id="cce_01_0301__note1131413214018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0301__p969682654414">If a red dot <span><img id="cce_01_0301__image202911371135" src="en-us_image_0000001159118361.png"></span> is displayed on the right of an add-on, the add-on is incompatible with the target cluster version. During the upgrade, the add-on will be uninstalled and then re-installed. Ensure that the add-on parameters are correctly configured.</p>
-</div></div>
-</li><li id="cce_01_0301__li1915055743018"><strong id="cce_01_0301__b1295375252">Node Upgrade Configuration</strong>: Before setting the node upgrade priority, you need to select a node pool. Nodes and node pools will be upgraded according to the priorities you specify. You can set the maximum number of nodes to be upgraded in batch, or set priorities for nodes to be upgraded. If you do not set this parameter, the system will determine the nodes to upgrade in batches based on specific conditions.<ul id="cce_01_0301__ul48277236304"><li id="cce_01_0301__li1014817517255"><strong id="cce_01_0301__b956717611">Add Upgrade Priority</strong>: Add upgrade priorities for node pools.</li><li id="cce_01_0301__li1357212559289"><strong id="cce_01_0301__b1293814317714">Add Node Priority</strong>: After adding a node pool priority, you can set the upgrade sequence of nodes in the node pool. The system upgrades nodes in the sequence you specify. If you skip this setting, the system upgrades nodes based on the default policy.</li></ul>
-</li></ul>
-<div class="fignone" id="cce_01_0301__fig83466322319"><span class="figcap"><b>Figure 4 </b>Configuring upgrade parameters</span><br><span><img id="cce_01_0301__image1472214221317" src="en-us_image_0000001229794946.png"></span></div>
-</p></li><li id="cce_01_0301__li10560105618205"><span>Read the upgrade instructions carefully, and select <strong id="cce_01_0301__b4514321155318">I have read the upgrade instructions</strong>. Click <strong id="cce_01_0301__b191816471994">Upgrade</strong>.</span><p><div class="fignone" id="cce_01_0301__fig254792915355"><span class="figcap"><b>Figure 5 </b>Final step before upgrade</span><br><span><img id="cce_01_0301__image1399111619352" src="en-us_image_0000001280421317.png"></span></div>
-</p></li><li id="cce_01_0301__li716763219239"><span>After you click <strong id="cce_01_0301__b16125132413119">Upgrade</strong>, the cluster upgrade starts. You can view the upgrade process in the lower part of the page.</span><p><p id="cce_01_0301__p17419642610">During the upgrade, you can click <strong id="cce_01_0301__b1726946131116">Suspend</strong> on the right to suspend the cluster upgrade. To continue the upgrade, click <strong id="cce_01_0301__b82644641119">Continue</strong>.</p>
-<p id="cce_01_0301__p5985504584"></p>
-<div class="fignone" id="cce_01_0301__fig3681172713717"><span class="figcap"><b>Figure 6 </b>Cluster upgrade in process</span><br><span><img id="cce_01_0301__image84131599373" src="en-us_image_0000001280181541.png"></span></div>
-</p></li><li id="cce_01_0301__li365851731914"><span>When the upgrade progress reaches 100%, the cluster is upgraded. The version information will be properly displayed, and no upgrade is required.</span><p><div class="fignone" id="cce_01_0301__fig06025426437"><span class="figcap"><b>Figure 7 </b>Upgrade completed</span><br><span><img id="cce_01_0301__image911933584316" src="en-us_image_0000001236582394.png"></span></div>
-</p></li><li id="cce_01_0301__li24618207291"><span>After the upgrade is complete, verify the cluster Kubernetes version on the <strong id="cce_01_0301__b18871244162219">Clusters</strong> page.</span><p><div class="fignone" id="cce_01_0301__fig10770102194412"><span class="figcap"><b>Figure 8 </b>Verifying the upgrade success</span><br><span><img id="cce_01_0301__image1930714145440" src="en-us_image_0000001236263298.png"></span></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0215.html">Upgrading a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0302.html b/docs/cce/umn/cce_01_0302.html
deleted file mode 100644
index cbbc3e0c..00000000
--- a/docs/cce/umn/cce_01_0302.html
+++ /dev/null
@@ -1,191 +0,0 @@
-<a name="cce_01_0302"></a><a name="cce_01_0302"></a>
-
-<h1 class="topictitle1">Before You Start</h1>
-<div id="body0000001157002327"><p id="cce_01_0302__p34419457476">Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see <a href="cce_01_0197.html">Overview</a>.</p>
-<div class="section" id="cce_01_0302__section16520163082115"><h4 class="sectiontitle">Precautions</h4><ul id="cce_01_0302__ul10508151218313"><li id="cce_01_0302__li132762210555"><strong id="cce_01_0302__b3961612125514">Upgraded clusters cannot be rolled back. Therefore, perform the upgrade during off-peak hours to minimize the impact on your services.</strong></li><li id="cce_01_0302__li189442024405">Do not shut down or restart nodes during cluster upgrade. Otherwise, the upgrade fails.</li><li id="cce_01_0302__li108483591008">Before upgrading a cluster, disable auto scaling policies to prevent node scaling during the upgrade. Otherwise, the upgrade fails.</li><li id="cce_01_0302__li103137272012">If you locally modify the configuration of a cluster node, the cluster upgrade may fail or the configuration may be lost after the upgrade. Therefore, modify the configurations on the CCE console (cluster or node pool list page) so that they will be automatically inherited during the upgrade.</li><li id="cce_01_0302__li172416189312">During the cluster upgrade, the running workload services will not be interrupted, but access to the API server will be temporarily interrupted.</li><li id="cce_01_0302__li750198619">Before upgrading the cluster, check whether the cluster is healthy. </li><li id="cce_01_0302__li97621713480">To ensure data security, you are advised to back up data before upgrading the cluster. During the upgrade, you are not advised to perform any operations on the cluster.</li><li id="cce_01_0302__li4994831141815">CCE 1.17 and later versions do not support workload scaling using the AOM service. Before and after the upgrade, switch scaling policies by referring to <a href="cce_01_0395.html">Switching from AOM to HPA for Auto Scaling</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0302__section28396102210"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0302__ul197771983210"><li id="cce_01_0302__li77774983217">Currently, only CCE clusters consisting of VM nodes can be upgraded.</li><li id="cce_01_0302__li11907171333211">If initContainer or Istio is used in the in-place upgrade of a cluster of v1.15, pay attention to the following restrictions:<p id="cce_01_0302__p429993018385"><a name="cce_01_0302__li11907171333211"></a><a name="li11907171333211"></a>In kubelet 1.16 and later versions, <a href="https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/" target="_blank" rel="noopener noreferrer">QoS classes</a> are different from those in earlier versions. In kubelet 1.15 and earlier versions, only containers in <strong id="cce_01_0302__b132555619306">spec.containers</strong> are counted. In kubelet 1.16 and later versions, containers in both <strong id="cce_01_0302__b1635316653118">spec.containers</strong> and <strong id="cce_01_0302__b636919893112">spec.initContainers</strong> are counted. The QoS class of a pod will change after the upgrade. As a result, the container in the pod restarts. You are advised to modify the QoS class of the service container before the upgrade to avoid this problem. For details, see <a href="#cce_01_0302__table10713231143911">Table 1</a>.</p>
-
-<div class="tablenoborder"><a name="cce_01_0302__table10713231143911"></a><a name="table10713231143911"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0302__table10713231143911" frame="border" border="1" rules="all"><caption><b>Table 1 </b>QoS class changes before and after the upgrade</caption><thead align="left"><tr id="cce_01_0302__row15872113111394"><th align="left" class="cellrowborder" valign="top" width="21.029999999999998%" id="mcps1.3.3.2.2.2.2.5.1.1"><p id="cce_01_0302__p1187243114398">Init Container (Calculated Based on spec.initContainers)</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="32.029999999999994%" id="mcps1.3.3.2.2.2.2.5.1.2"><p id="cce_01_0302__p2872103117391">Service Container (Calculated Based on spec.containers)</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="25.77%" id="mcps1.3.3.2.2.2.2.5.1.3"><p id="cce_01_0302__p1872103123910">Pod (Calculated Based on spec.containers and spec.initContainers)</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="21.17%" id="mcps1.3.3.2.2.2.2.5.1.4"><p id="cce_01_0302__p15662458395">Impacted or Not</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0302__row8873163113399"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p1487312310395">Guaranteed</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p1887343143917">Besteffort</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p12873123123916">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p1566134512392">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row187318311393"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p1873133113918">Guaranteed</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p9873143117395">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p11873123119398">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p15661145143916">No</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row98731931173919"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p198731231103911">Guaranteed</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p1587363111395">Guaranteed</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p19873193193910">Guaranteed</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p16153160406">No</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row38731931163912"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p1873731173913">Besteffort</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p14873173163917">Besteffort</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p178735312393">Besteffort</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p16211416114014">No</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row13873103103915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p13873133114399">Besteffort</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p4873123173916">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p1787315314391">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p52715163404">No</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row138731031183915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p187393113399">Besteffort</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p887383163919">Guaranteed</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p88732031133915">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p7954610164017">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row19873153163914"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p287313311399">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p17873153183912">Besteffort</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p1612015308455">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p5357101016408">Yes</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row087316312398"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p1587383119390">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p2873131163913">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p013073012452">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p277154516391">No</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row087311312391"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.2.2.2.5.1.1 "><p id="cce_01_0302__p1087313153916">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.2.2.2.5.1.2 "><p id="cce_01_0302__p12873103193912">Guaranteed</p>
-</td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.2.2.2.5.1.3 "><p id="cce_01_0302__p121379308456">Burstable</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.2.2.2.5.1.4 "><p id="cce_01_0302__p360315910408">Yes</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0302__section6491955144318"><h4 class="sectiontitle">Performing Pre-upgrade Check</h4><p id="cce_01_0302__p442016975617">Before upgrading a cluster, check the health status of the cluster and nodes and ensure that they are available.</p>
-<p id="cce_01_0302__p566717351336"><strong id="cce_01_0302__b9454171011326">Method 1: Use the console.</strong></p>
-<p id="cce_01_0302__p91412412420">On the CCE console, click <strong id="cce_01_0302__b1027041863216">Resource Management</strong> in the navigation pane, and click <strong id="cce_01_0302__b15271118123217">Clusters</strong> and <strong id="cce_01_0302__b6271131853211">Nodes</strong> separately to check whether the cluster and nodes are normal.</p>
-<p id="cce_01_0302__p07901943415"><strong id="cce_01_0302__b16823132614321">Method 2: Run kubectl commands.</strong></p>
-<ol id="cce_01_0302__ol175371154185717"><li id="cce_01_0302__li195372543577"><span>Run the following command to verify that all cluster modules are in the Healthy state:</span><p><p id="cce_01_0302__p08177491939"><strong id="cce_01_0302__b11149955839">kubectl get cs</strong></p>
-<div class="p" id="cce_01_0302__p112021556031">Information similar to the following is displayed:<pre class="screen" id="cce_01_0302__screen266615491837"> NAME                 STATUS    MESSAGE              ERROR
- scheduler            Healthy   ok
- controller-manager   Healthy   ok
- etcd-0               Healthy   {"health": "true"}
- etcd-1               Healthy   {"health": "true"}
- etcd-2               Healthy   {"health": "true"}</pre>
-</div>
-<div class="note" id="cce_01_0302__note6125130563"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0302__p712583013617">In the command output, the value of <strong id="cce_01_0302__b2300163063311">STATUS</strong> must be <strong id="cce_01_0302__b1890711211330">Healthy</strong> for all items.</p>
-</div></div>
-</p></li><li id="cce_01_0302__li553710548574"><span>Run the following command to verify that all nodes are in the Ready state:</span><p><div class="p" id="cce_01_0302__p1192761318411"><strong id="cce_01_0302__b187709210413">kubectl get nodes</strong><div class="note" id="cce_01_0302__note37558134411"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0302__p12755161314412">All nodes must be in the <strong id="cce_01_0302__b1628154203415">Ready</strong> state.</p>
-</div></div>
-<pre class="screen" id="cce_01_0302__screen137570131141"> NAME                   STATUS    ROLES     AGE       VERSION
- xxx.xxx.xx.xx   Ready     &lt;none&gt;    38d       v1.9.7-r1
- xxx.xxx.xx.xx   Ready     &lt;none&gt;    38d       v1.9.7-r1
- xxx.xxx.xx.xx   Ready     &lt;none&gt;    38d       v1.9.7-r1</pre>
-</div>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0302__section14190181819293"><h4 class="sectiontitle">Pre-upgrade Checklist</h4><p id="cce_01_0302__p1248284016298">Before upgrading a cluster, follow the pre-upgrade checklist to identify risks and problems in advance.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0302__table1238111218323" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Cluster upgrade check items</caption><thead align="left"><tr id="cce_01_0302__row132391129329"><th align="left" class="cellrowborder" valign="top" width="16.91%" id="mcps1.3.5.3.2.3.1.1"><p id="cce_01_0302__p1423913122324">Module</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="83.09%" id="mcps1.3.5.3.2.3.1.2"><p id="cce_01_0302__p18239161220325">Item</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0302__row424018124321"><td class="cellrowborder" rowspan="2" valign="top" width="16.91%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p1524071220320">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="83.09%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0302__p1324061214324">Check whether the node IP addresses (including EIPs) of the current cluster are used in other configurations or whitelists.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row824016123329"><td class="cellrowborder" valign="top" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p20240812143219">Perform the pre-upgrade check.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row924013120321"><td class="cellrowborder" rowspan="2" valign="top" width="16.91%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p1724021216325">Workload</p>
-</td>
-<td class="cellrowborder" valign="top" width="83.09%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0302__p1424041263216">Record the number and status of workloads for comparison after the upgrade.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row1296933813911"><td class="cellrowborder" valign="top" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p59693385919">For the databases you use (such as Direct Connect, Redis, and MongoDB), you need to consider the changes in their whitelists, routes, or security group policies in advance.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row15579521103820"><td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p12579172163813">Storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="83.09%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0302__p257992123818">Record the storage status to check whether storage resources are lost after the upgrade.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row1740471712383"><td class="cellrowborder" rowspan="2" valign="top" width="16.91%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p640513174387">Networking</p>
-</td>
-<td class="cellrowborder" valign="top" width="83.09%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0302__p340521718381">Check and back up the load balancing services and ingresses.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row1178610472077"><td class="cellrowborder" valign="top" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p1478694720715">If Direct Connect is used, check whether the upgrade causes changes in the IP addresses of nodes or pods where services are deployed. To handle changes, you need to enable routes on Direct Connect in advance.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row146320432505"><td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p7631443125015">Add-on</p>
-</td>
-<td class="cellrowborder" valign="top" width="83.09%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0302__p106364317505">When Kubernetes 1.9 is upgraded to 1.11, the kube-dns of the cluster is uninstalled and replaced with CoreDNS. Back up the DNS address configured in kube-dns so that you can use it in CoreDNS when the domain name resolution is abnormal.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row96853135389"><td class="cellrowborder" rowspan="2" valign="top" width="16.91%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p46861813153810">O&amp;M</p>
-</td>
-<td class="cellrowborder" valign="top" width="83.09%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_01_0302__p868691311386">Private configurations: Check whether data plane passwords, certificates, and environment variables are configured for nodes or containers in the cluster before the upgrade. If a container is restarted (for example, the node is abnormal and the pod is re-scheduled), the configurations will be lost and your service will be abnormal.</p>
-</td>
-</tr>
-<tr id="cce_01_0302__row202401212143211"><td class="cellrowborder" valign="top" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_01_0302__p142408126323">Check and back up kernel parameters or system configurations.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0302__section194915244494"><h4 class="sectiontitle">Upgrade Backup</h4><p id="cce_01_0302__p9276123084912">Currently, there are two backup modes for cluster upgrade:</p>
-<ul id="cce_01_0302__ul1536333744916"><li id="cce_01_0302__li636317377497">etcd database backup: CCE automatically backs up the etcd database during the cluster upgrade.</li><li id="cce_01_0302__li17363203764919">Master node backup (recommended, <strong id="cce_01_0302__b11125720336">manual confirmation required</strong>): On the upgrade confirmation page, click <strong id="cce_01_0302__b135891324103513">Backup</strong> to back up the entire master node of the cluster. The backup process uses the Cloud Backup and Recovery (CBR) service and takes about 20 minutes. If there are many cloud backup tasks at the current site, the backup time may be prolonged.</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0215.html">Upgrading a Cluster</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0305.html b/docs/cce/umn/cce_01_0305.html
deleted file mode 100644
index cdbdbd86..00000000
--- a/docs/cce/umn/cce_01_0305.html
+++ /dev/null
@@ -1,22 +0,0 @@
-<a name="cce_01_0305"></a><a name="cce_01_0305"></a>
-
-<h1 class="topictitle1">Storage (FlexVolume)</h1>
-<div id="body0000001113882212"><p id="cce_01_0305__p8060118"></p>
-</div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0306.html">FlexVolume Overview</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0343.html">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0309.html">Using EVS Disks as Storage Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0322.html">Using OBS Buckets as Storage Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0315.html">Using SFS File Systems as Storage Volumes</a></strong><br>
-</li>
-</ul>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0306.html b/docs/cce/umn/cce_01_0306.html
deleted file mode 100644
index 9fb116a9..00000000
--- a/docs/cce/umn/cce_01_0306.html
+++ /dev/null
@@ -1,60 +0,0 @@
-<a name="cce_01_0306"></a><a name="cce_01_0306"></a>
-
-<h1 class="topictitle1">FlexVolume Overview</h1>
-<div id="body0000001113722316"><p id="cce_01_0306__p1346316211126">In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.</p>
-<p id="cce_01_0306__p1825118142">In CCE, container storage is backed both by Kubernetes-native objects, such as emptyDir/hostPath volumes, secrets, and ConfigMaps, and by storage services.</p>
-<p id="cce_01_0306__p20981541203916">CCE clusters of <strong id="cce_01_0306__b183621044175216">1.13 and earlier versions</strong> use the <a href="cce_01_0127.html">storage-driver</a> add-on to connect to storage services to support Kubernetes FlexVolume driver for container storage. The FlexVolume driver has been deprecated in favor of the Container Storage Interface (CSI). <strong id="cce_01_0306__b1636884475216">The everest add-on for CSI is installed in CCE clusters of 1.15 and later versions by default.</strong> For details, see <a href="cce_01_0307.html">Overview</a>.</p>
-<div class="note" id="cce_01_0306__note138694249268"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0306__ul1771212583295"><li id="cce_01_0306__li177121458152913">In CCE clusters earlier than Kubernetes 1.13, end-to-end capacity expansion of container storage is not supported, and the PVC capacity is inconsistent with the storage capacity.</li><li id="cce_01_0306__li771285892914"><strong id="cce_01_0306__b1685617101355">In a cluster of v1.13 or earlier</strong>, when an upgrade or bug fix is available for storage functionalities, you only need to install or upgrade the storage-driver add-on. Upgrading the cluster or creating a cluster is not required.</li></ul>
-</div></div>
-<div class="section" id="cce_01_0306__section3993231122718"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0306__ul113072911510"><li id="cce_01_0306__li10330171552010">For clusters created in CCE, Kubernetes v1.15.11 is a transitional version in which the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) is compatible with the CSI plug-in (<a href="cce_01_0066.html">everest</a>). Clusters of v1.17 and later versions do not support FlexVolume any more. You need to use the everest add-on. For details about CSI and FlexVolume, see <a href="#cce_01_0306__section86752053123513">Differences Between CSI and FlexVolume Plug-ins</a>.</li><li id="cce_01_0306__li25582642815">The FlexVolume plug-in will be maintained by Kubernetes developers, but new functionality will only be added to CSI. You are advised not to create storage that connects to the FlexVolume plug-in (storage-driver) in CCE any more. Otherwise, the storage resources may not function normally.</li></ul>
-</div>
-<div class="section" id="cce_01_0306__section86752053123513"><a name="cce_01_0306__section86752053123513"></a><a name="section86752053123513"></a><h4 class="sectiontitle">Differences Between CSI and FlexVolume Plug-ins</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0306__en-us_topic_0107283763_table9704165418310" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CSI and FlexVolume</caption><thead align="left"><tr id="cce_01_0306__en-us_topic_0107283763_row1757135413114"><th align="left" class="cellrowborder" valign="top" width="16.520000000000003%" id="mcps1.3.6.2.2.5.1.1"><p id="cce_01_0306__en-us_topic_0107283763_p177571954173119">Kubernetes Solution</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.450000000000001%" id="mcps1.3.6.2.2.5.1.2"><p id="cce_01_0306__en-us_topic_0107283763_p105501460334">CCE Add-on</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="38.57%" id="mcps1.3.6.2.2.5.1.3"><p id="cce_01_0306__en-us_topic_0107283763_p575715443110">Feature</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.46%" id="mcps1.3.6.2.2.5.1.4"><p id="cce_01_0306__en-us_topic_0107283763_p97571054183119">Usage</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0306__en-us_topic_0107283763_row5119842113215"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.6.2.2.5.1.1 "><p id="cce_01_0306__en-us_topic_0107283763_p97574546316"><span style="color:#1D1D1A;">CSI</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.6.2.2.5.1.2 "><p id="cce_01_0306__en-us_topic_0107283763_p0550106143311">everest</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.6.2.2.5.1.3 "><p id="cce_01_0306__en-us_topic_0107283763_p137578549318">CSI was developed as a standard for exposing arbitrary block and file storage storage systems to containerized workloads. Using CSI, third-party storage providers can deploy plugins exposing new storage systems in Kubernetes without having to touch the core Kubernetes code. In CCE, the everest add-on is installed by default in clusters of Kubernetes v1.15 and later to connect to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
-<p id="cce_01_0306__en-us_topic_0107283763_p11757754123115">The everest add-on consists of two parts:</p>
-<ul id="cce_01_0306__en-us_topic_0107283763_ul6619114334611"><li id="cce_01_0306__en-us_topic_0107283763_li1961910436465"><strong id="cce_01_0306__en-us_topic_0107283763_b16130124285117">everest-csi-controller</strong> for storage volume creation, deletion, capacity expansion, and cloud disk snapshots</li><li id="cce_01_0306__en-us_topic_0107283763_li7619154310461"><strong id="cce_01_0306__en-us_topic_0107283763_b98214275526">everest-csi-driver</strong> for mounting, unmounting, and formatting storage volumes on nodes</li></ul>
-<p id="cce_01_0306__en-us_topic_0107283763_p1387091118582">For details, see <a href="cce_01_0066.html">everest</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.6.2.2.5.1.4 "><p id="cce_01_0306__en-us_topic_0107283763_p516783510588">The <a href="cce_01_0066.html">everest</a> add-on is installed by default in clusters of <strong id="cce_01_0306__en-us_topic_0107283763_b836954165310">v1.15 and later</strong>. CCE will mirror the Kubernetes community by providing continuous support for updated CSI capabilities.</p>
-</td>
-</tr>
-<tr id="cce_01_0306__en-us_topic_0107283763_row4757195473110"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.6.2.2.5.1.1 "><p id="cce_01_0306__en-us_topic_0107283763_p1175710548316">FlexVolume</p>
-</td>
-<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.6.2.2.5.1.2 "><p id="cce_01_0306__en-us_topic_0107283763_p45508612335">storage-driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.6.2.2.5.1.3 "><p id="cce_01_0306__en-us_topic_0107283763_p19757145483115">FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes since version 1.2 (before CSI). CCE provided FlexVolume volumes through the storage-driver add-on installed in clusters of Kubernetes v1.13 and earlier versions. This add-on connects clusters to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
-<p id="cce_01_0306__en-us_topic_0107283763_p16757654153113">For details, see <a href="cce_01_0127.html">storage-driver</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.6.2.2.5.1.4 "><p id="cce_01_0306__en-us_topic_0107283763_p18569134265811">For clusters of v1.13 or earlier that have been created, the installed FlexVolume plug-in (the storage-driver add-on in CCE) can still be used. CCE stops providing update support for this add-on, and you are advised to <a href="cce_01_0120.html">upgrade these clusters</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0306__en-us_topic_0107283763_note838817912503"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0306__en-us_topic_0107283763_ul1596014104509"><li id="cce_01_0306__en-us_topic_0107283763_li1796017103508">A cluster can use only one type of storage plug-ins.</li><li id="cce_01_0306__en-us_topic_0107283763_li10960910135015">The FlexVolume plug-in cannot be replaced by the CSI plug-in in clusters of v1.13 or earlier. You can only upgrade these clusters. For details, see <a href="cce_01_0197.html#cce_01_0197__section16738338445">Cluster Upgrade Between Major Versions</a>.</li></ul>
-</div></div>
-</div>
-<div class="section" id="cce_01_0306__section8895112716599"><h4 class="sectiontitle">Notice on Using Add-ons</h4><ul id="cce_01_0306__en-us_topic_0107283763_ul133818422615"><li id="cce_01_0306__en-us_topic_0107283763_li3381949261">To use the CSI plug-in (the <a href="cce_01_0066.html">everest</a> add-on in CCE), your cluster must be using <strong id="cce_01_0306__en-us_topic_0107283763_b7681141653012">Kubernetes 1.15 or later</strong>. This add-on is installed by default when you create a cluster of v1.15 or later. The FlexVolume plug-in (the <a href="cce_01_0127.html">storage-driver</a> add-on in CCE) is installed by default when you create a cluster of v1.13 or earlier.</li><li id="cce_01_0306__en-us_topic_0107283763_li1347222711015">If your cluster is upgraded from v1.13 to v1.15, <a href="cce_01_0127.html">storage-driver</a> is replaced by everest (v1.1.6 or later) for container storage. The takeover does not affect the original storage functions.</li><li id="cce_01_0306__en-us_topic_0107283763_li3787162513612">In version 1.2.0 of the everest add-on, <strong id="cce_01_0306__en-us_topic_0107283763_b1802124016552">key authentication</strong> is optimized when OBS is used. After the everest add-on is upgraded from a version earlier than 1.2.0, you need to restart all workloads that use OBS in the cluster. Otherwise, workloads may not be able to use OBS.</li></ul>
-</div>
-<div class="section" id="cce_01_0306__section366174392017"><h4 class="sectiontitle">Checking Storage Add-ons</h4><ol id="cce_01_0306__ol235517511467"><li id="cce_01_0306__li183555515614"><span>Log in to the CCE console.</span></li><li id="cce_01_0306__li1333875311614"><span>In the navigation tree on the left, click <strong id="cce_01_0306__b179577122116">Add-ons</strong>.</span></li><li id="cce_01_0306__li12239545772"><span>Click the <strong id="cce_01_0306__b2392191441118">Add-on Instance</strong> tab.</span></li><li id="cce_01_0306__li86216391082"><span>Select a cluster in the upper right corner. The default storage add-on installed during cluster creation is displayed.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0305.html">Storage (FlexVolume)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0307.html b/docs/cce/umn/cce_01_0307.html
deleted file mode 100644
index 55f4274d..00000000
--- a/docs/cce/umn/cce_01_0307.html
+++ /dev/null
@@ -1,235 +0,0 @@
-<a name="cce_01_0307"></a><a name="cce_01_0307"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body8662426"><div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section5296105719142"><h4 class="sectiontitle">Volume</h4><p id="cce_01_0307__en-us_topic_0000001199181198_p1388234820249">On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The Kubernetes volume abstraction solves both of these problems. Volumes cannot be independently created, but defined in the pod spec.</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p8713518175">All containers in a pod can access its volumes, but the volumes must have been mounted. Volumes can be mounted to any directory in a container.</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p1271419187710">The following figure shows how a storage volume is used between containers in a pod.</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p9405145214716"><span><img id="cce_01_0307__en-us_topic_0000001199181198_image1835215316361" src="en-us_image_0000001409860177.png"></span></p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p1371417181574">A volume will no longer exist if the pod to which it is mounted does not exist. However, files in the volume may outlive the volume, depending on the volume type.</p>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section16559121287"><a name="cce_01_0307__en-us_topic_0000001199181198_section16559121287"></a><a name="en-us_topic_0000001199181198_section16559121287"></a><h4 class="sectiontitle">Volume Types</h4><p id="cce_01_0307__en-us_topic_0000001199181198_p171441813712">Volumes can be classified into local volumes and cloud volumes.</p>
-<ul id="cce_01_0307__en-us_topic_0000001199181198_ul833618212816"><li id="cce_01_0307__en-us_topic_0000001199181198_li93401121469">Local volumes<div class="p" id="cce_01_0307__en-us_topic_0000001199181198_p1633215515112"><a name="cce_01_0307__en-us_topic_0000001199181198_li93401121469"></a><a name="en-us_topic_0000001199181198_li93401121469"></a>CCE supports the following five types of local volumes. For details about how to use them, see <a href="cce_01_0053.html">Using Local Disks as Storage Volumes</a>.<ul id="cce_01_0307__en-us_topic_0000001199181198_ul5861174111116"><li id="cce_01_0307__en-us_topic_0000001199181198_li38611848115">emptyDir: an empty volume used for temporary storage</li><li id="cce_01_0307__en-us_topic_0000001199181198_li586113461117">hostPath: mounts a directory on a host (node) to your container for reading data from the host.</li><li id="cce_01_0307__en-us_topic_0000001199181198_li186117431113">ConfigMap: references the data stored in a ConfigMap for use by containers.</li><li id="cce_01_0307__en-us_topic_0000001199181198_li1786115431115">Secret: references the data stored in a secret for use by containers.</li></ul>
-</div>
-</li><li id="cce_01_0307__en-us_topic_0000001199181198_li1233611211389">Cloud volumes <p id="cce_01_0307__en-us_topic_0000001199181198_p1953724117126"><a name="cce_01_0307__en-us_topic_0000001199181198_li1233611211389"></a><a name="en-us_topic_0000001199181198_li1233611211389"></a>CCE supports the following types of cloud volumes:</p>
-<ul id="cce_01_0307__en-us_topic_0000001199181198_ul1342413161219"><li id="cce_01_0307__en-us_topic_0000001199181198_li169205531117">EVS</li><li id="cce_01_0307__en-us_topic_0000001199181198_li796713710121">SFS Turbo</li><li id="cce_01_0307__en-us_topic_0000001199181198_li472342851217">OBS</li><li id="cce_01_0307__en-us_topic_0000001199181198_li2476232121214">SFS</li></ul>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section187922219447"><h4 class="sectiontitle">CSI</h4><p id="cce_01_0307__en-us_topic_0000001199181198_p6608726201">You can use Kubernetes Container Storage Interface (CSI) to develop plug-ins to support specific storage volumes.</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p2650107194411">CCE developed the storage add-on <a href="cce_01_0066.html">everest</a> for you to use cloud storage services, such as EVS and OBS. You can install this add-on when creating a cluster.</p>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section1181185971610"><h4 class="sectiontitle">PV and PVC</h4><p id="cce_01_0307__en-us_topic_0000001199181198_p188370425547">Kubernetes provides PersistentVolumes (PVs) and PersistentVolumeClaims (PVCs) to abstract details of how storage is provided from how it is consumed. You can request specific size of storage when needed, just like pods can request specific levels of resources (CPU and memory).</p>
-<ul id="cce_01_0307__en-us_topic_0000001199181198_ul167231941316"><li id="cce_01_0307__en-us_topic_0000001199181198_li1672316411914">PV: A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource. </li><li id="cce_01_0307__en-us_topic_0000001199181198_li1872304120111">PVC: A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are dynamically created. When creating a PVC, you need to describe the attributes of the requested persistent storage, such as the size of the volume and the read/write permissions.</li></ul>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p46895594259">You can bind PVCs to PVs in a pod so that the pod can use storage resources. The following figure shows the relationship between PVs and PVCs.</p>
-<div class="fignone" id="cce_01_0307__en-us_topic_0000001199181198_fig149881117222"><span class="figcap"><b>Figure 1 </b>PVC-to-PV binding</span><br><span><img id="cce_01_0307__en-us_topic_0000001199181198_image48944742212" src="en-us_image_0000001409580465.png"></span></div>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p55089134460">PVs describes storage resources in the cluster. PVCs are requests for those resources. The following sections will describe how to use kubectl to connect to storage resources.</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p670213323418">If you do not want to create storage resources or PVs manually, you can use <a href="#cce_01_0307__en-us_topic_0000001199181198_section19926174743310">StorageClasses</a>.</p>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section19926174743310"><a name="cce_01_0307__en-us_topic_0000001199181198_section19926174743310"></a><a name="en-us_topic_0000001199181198_section19926174743310"></a><h4 class="sectiontitle">StorageClass</h4><p id="cce_01_0307__en-us_topic_0000001199181198_p6816345818">StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as csi-disk, csi-nas, and csi-obs by default. When defining a PVC, you can use a StorageClassName to create a PV of the corresponding type and automatically create underlying storage resources.</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p5271142713310">You can run the following command to query the storage classes that CCE supports. You can use the CSI plug-in provided by CCE to customize a storage class, which functions similarly as the default storage classes in CCE.</p>
-<pre class="screen" id="cce_01_0307__en-us_topic_0000001199181198_screen2027110274334"># kubectl get sc
-NAME                PROVISIONER                     AGE
-csi-disk            everest-csi-provisioner         17d          # Storage class for EVS disks
-csi-disk-topology   everest-csi-provisioner         17d          # Storage class for EVS disks with delayed binding
-csi-nas             everest-csi-provisioner         17d          # Storage class for SFS file systems
-csi-obs             everest-csi-provisioner         17d          # Storage class for OBS buckets</pre>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p1348743213278">After a StorageClass is set, PVs can be automatically created and maintained. You only need to specify the StorageClass when creating a PVC, which greatly reduces the workload.</p>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section326216625217"><h4 class="sectiontitle">Cloud Services for Container Storage</h4><p id="cce_01_0307__en-us_topic_0000001199181198_p1633317483117">CCE allows you to mount local and cloud storage volumes listed in <a href="#cce_01_0307__en-us_topic_0000001199181198_section16559121287">Volume Types</a> to your pods. Their features are described below.</p>
-<div class="fignone" id="cce_01_0307__en-us_topic_0000001199181198_fig128444399616"><span class="figcap"><b>Figure 2 </b>Volume types supported by CCE</span><br><span><img id="cce_01_0307__en-us_topic_0000001199181198_image165014415108" src="en-us_image_0000001359820608.png"></span></div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0307__en-us_topic_0000001199181198_table1381911241505" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Detailed description of cloud storage services</caption><thead align="left"><tr id="cce_01_0307__en-us_topic_0000001199181198_row681972410017"><th align="left" class="cellrowborder" valign="top" width="12.2%" id="mcps1.3.6.4.2.6.1.1"><p id="cce_01_0307__en-us_topic_0000001199181198_p1182114718218">Dimension</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.2"><p id="cce_01_0307__en-us_topic_0000001199181198_p8821971729">EVS</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.3"><p id="cce_01_0307__en-us_topic_0000001199181198_p68211275218">SFS</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.4"><p id="cce_01_0307__en-us_topic_0000001199181198_p882187327">OBS</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.5"><p id="cce_01_0307__en-us_topic_0000001199181198_p18211714216">SFS Turbo</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0307__en-us_topic_0000001199181198_row753513520417"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p853513528414">Definition</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p105361652941">EVS offers scalable block storage for cloud servers. With high reliability, high performance, and rich specifications, EVS disks can be used for distributed file systems, dev/test environments, data warehouses, and high-performance computing (HPC) applications.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p15606133319315">Expandable to petabytes, SFS provides fully hosted shared file storage, highly available and stable to handle data- and bandwidth-intensive applications in HPC, media processing, file sharing, content management, and web services.</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p1560663343117"></p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p107261619142811">OBS is a stable, secure, and easy-to-use object storage service that lets you inexpensively store data of any format and size. You can use it in enterprise backup/archiving, video on demand (VoD), video surveillance, and many other scenarios.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p91731911183120">Expandable to 320 TB, SFS Turbo provides a fully hosted shared file storage, highly available and stable to support small files and applications requiring low latency and high IOPS. You can use SFS Turbo in high-traffic websites, log storage, compression/decompression, DevOps, enterprise OA, and containerized applications.</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row107852010714"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1178122018714">Data storage logic</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p187812201879">Stores binary data and cannot directly store files. To store files, you need to format the file system first.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p77852011712">Stores files and sorts and displays data in the hierarchy of files and folders.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p178420475">Stores objects. Files directly stored automatically generate the system metadata, which can also be customized by users.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p107819201277">Stores files and sorts and displays data in the hierarchy of files and folders.</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row285818816813"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p15858186817">Services</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p085813810814">Accessible only after being mounted to ECSs or BMSs and initialized.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p98591186815">Mounted to ECSs or BMSs using network protocols. A network address must be specified or mapped to a local directory for access.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p16859118685">Accessible through the Internet or Direct Connect (DC). You need to specify the bucket address and use transmission protocols such as HTTP and HTTPS.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p2859881785">Supports the Network File System (NFS) protocol (NFSv3 only). You can seamlessly integrate existing applications and tools with SFS Turbo.</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row1762415820302"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p11821177928">Static provisioning</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p19821127024">Supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1782117710220">Supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p4821871721">Supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p158211574216">Supported</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row118192240012"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p16821117228">Dynamic provisioning</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p10821371929">Supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p16821871824">Supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p68213714215">Supported</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1282118711218">Not supported</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row178196241102"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p2821178210">Features</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p58211971024">Non-shared storage. Each volume can be mounted to only one node.</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p128211976217">Shared storage featuring high performance and throughput</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p128210717211">Shared, user-mode file system</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p8821471622">Shared storage featuring high performance and bandwidth</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row20738549306"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1273954916010">Usage</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p17367132813016">HPC, enterprise core cluster applications, enterprise application systems, and dev/test</p>
-<div class="note" id="cce_01_0307__en-us_topic_0000001199181198_note1547152375919"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0307__en-us_topic_0000001199181198_p947172385920">HPC apps here require high-speed and high-IOPS storage, such as industrial design and energy exploration.</p>
-</div></div>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p12791013514">HPC, media processing, content management, web services, big data, and analysis applications</p>
-<div class="note" id="cce_01_0307__en-us_topic_0000001199181198_note1482333019011"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_01_0307__en-us_topic_0000001199181198_p17823530504">HPC apps here require high bandwidth and shared file storage, such as gene sequencing and image rendering.</p>
-</div></div>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p6507161018">Big data analysis, static website hosting, online video on demand (VoD), gene sequencing, intelligent video surveillance, backup and archiving, and enterprise cloud boxes (web disks)</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p11807135612">High-traffic websites, log storage, DevOps, and enterprise OA</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row795117183197"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p295218186195">Capacity</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p19521418111910">TB</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p095211871914">PB</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p179521318161916">EB</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1795201812198">TB</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row2051631112018"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p9516161102020">Latency</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p07991430122212">1-2 ms</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p97991230122210">3-10 ms</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p16799103015229">10ms</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1551631182013">1-2 ms</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row81345119220"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p47361048233">IOPS/TPS</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p14736184122317">33,000 for a single disk</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1373618414230">10,000 for a single file system</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p177368492319">Tens of millions</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p13134181152219">100K</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row16110165119224"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p207361748233">Bandwidth</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p3736124102318">MB/s</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p97361041234">GB/s</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p7736114112319">TB/s</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_01_0307__en-us_topic_0000001199181198_p71101151202212">GB/s</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section4477154754415"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0307__en-us_topic_0000001199181198_p1454285216347">Secure containers do not support OBS volumes.</p>
-<ul id="cce_01_0307__en-us_topic_0000001199181198_ul1375874510508"><li id="cce_01_0307__en-us_topic_0000001199181198_li2052111514545">A single user can create a maximum of 100 OBS buckets on the console. If you have a large number of CCE workloads and you want to mount an OBS bucket to every workload, you may easily run out of buckets. In this scenario, you are advised to use OBS through the OBS API or SDK and do not mount OBS buckets to the workload on the console.</li><li id="cce_01_0307__en-us_topic_0000001199181198_li92774437495">For clusters earlier than v1.19.10, if an HPA policy is used to scale out a workload with EVS volumes mounted, the existing pods cannot be read or written when a new pod is scheduled to another node.<p id="cce_01_0307__en-us_topic_0000001199181198_p11921144194914"><a name="cce_01_0307__en-us_topic_0000001199181198_li92774437495"></a><a name="en-us_topic_0000001199181198_li92774437495"></a>For clusters of v1.19.10 and later, if an HPA policy is used to scale out a workload with EVS volume mounted, a new pod cannot be started because EVS disks cannot be attached.</p>
-</li><li id="cce_01_0307__en-us_topic_0000001199181198_li7641655553">When you uninstall a subpath in a cluster of v1.19 or earlier, all folders in the subpath are traversed. If there are a large number of folders, the traversal takes a long time, so does the volume unmount. You are advised not to create too many folders in the subpath.</li><li id="cce_01_0307__en-us_topic_0000001199181198_li0813245101113">The maximum size of a single file in OBS mounted to a CCE cluster is far smaller than that defined by obsfs.</li></ul>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section059455612532"><h4 class="sectiontitle">Notice on Using Add-ons</h4><ul id="cce_01_0307__en-us_topic_0000001199181198_ul133818422615"><li id="cce_01_0307__en-us_topic_0000001199181198_li3381949261">To use the CSI plug-in (the <a href="cce_01_0066.html">everest</a> add-on in CCE), your cluster must be using <strong id="cce_01_0307__b1497913812217">Kubernetes 1.15 or later</strong>. This add-on is installed by default when you create a cluster of v1.15 or later. The FlexVolume plug-in (the <a href="cce_01_0127.html">storage-driver</a> add-on in CCE) is installed by default when you create a cluster of v1.13 or earlier.</li><li id="cce_01_0307__en-us_topic_0000001199181198_li1347222711015">If your cluster is upgraded from v1.13 to v1.15, <a href="cce_01_0127.html">storage-driver</a> is replaced by everest (v1.1.6 or later) for container storage. The takeover does not affect the original storage functions.</li><li id="cce_01_0307__en-us_topic_0000001199181198_li3787162513612">In version 1.2.0 of the everest add-on, <strong id="cce_01_0307__en-us_topic_0000001199181198_b4207181716474">key authentication</strong> is optimized when OBS is used. After the everest add-on is upgraded from a version earlier than 1.2.0, you need to restart all workloads that use OBS in the cluster. Otherwise, workloads may not be able to use OBS.</li></ul>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section1690993510317"><h4 class="sectiontitle">Differences Between CSI and FlexVolume Plug-ins</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0307__en-us_topic_0000001199181198_table9704165418310" frame="border" border="1" rules="all"><caption><b>Table 2 </b>CSI and FlexVolume</caption><thead align="left"><tr id="cce_01_0307__en-us_topic_0000001199181198_row1757135413114"><th align="left" class="cellrowborder" valign="top" width="16.520000000000003%" id="mcps1.3.9.2.2.5.1.1"><p id="cce_01_0307__en-us_topic_0000001199181198_p177571954173119">Kubernetes Solution</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="13.450000000000001%" id="mcps1.3.9.2.2.5.1.2"><p id="cce_01_0307__en-us_topic_0000001199181198_p105501460334">CCE Add-on</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="38.57%" id="mcps1.3.9.2.2.5.1.3"><p id="cce_01_0307__en-us_topic_0000001199181198_p575715443110">Feature</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.46%" id="mcps1.3.9.2.2.5.1.4"><p id="cce_01_0307__en-us_topic_0000001199181198_p97571054183119">Recommendation</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0307__en-us_topic_0000001199181198_row5119842113215"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.9.2.2.5.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p97574546316"><span style="color:#1D1D1A;">CSI</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.9.2.2.5.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p0550106143311">Everest</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.9.2.2.5.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p137578549318">CSI was developed as a standard for exposing arbitrary block and file storage storage systems to containerized workloads. Using CSI, third-party storage providers can deploy plugins exposing new storage systems in Kubernetes without having to touch the core Kubernetes code. In CCE, the everest add-on is installed by default in clusters of Kubernetes v1.15 and later to connect to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p11757754123115">The everest add-on consists of two parts:</p>
-<ul id="cce_01_0307__en-us_topic_0000001199181198_ul6619114334611"><li id="cce_01_0307__en-us_topic_0000001199181198_li1961910436465"><strong id="cce_01_0307__en-us_topic_0000001199181198_b5589145713475">everest-csi-controller</strong> for storage volume creation, deletion, capacity expansion, and cloud disk snapshots</li><li id="cce_01_0307__en-us_topic_0000001199181198_li7619154310461"><strong id="cce_01_0307__en-us_topic_0000001199181198_b283716015485">everest-csi-driver</strong> for mounting, unmounting, and formatting storage volumes on nodes</li></ul>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p1387091118582">For details, see <a href="cce_01_0066.html">everest</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.9.2.2.5.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p516783510588">The <a href="cce_01_0066.html">everest</a> add-on is installed by default in clusters of <strong id="cce_01_0307__b778410518231">v1.15 and later</strong>. CCE will mirror the Kubernetes community by providing continuous support for updated CSI capabilities.</p>
-</td>
-</tr>
-<tr id="cce_01_0307__en-us_topic_0000001199181198_row4757195473110"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.9.2.2.5.1.1 "><p id="cce_01_0307__en-us_topic_0000001199181198_p1175710548316"><span style="color:#1D1D1A;">Flexvolume</span></p>
-</td>
-<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.9.2.2.5.1.2 "><p id="cce_01_0307__en-us_topic_0000001199181198_p45508612335">storage-driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.9.2.2.5.1.3 "><p id="cce_01_0307__en-us_topic_0000001199181198_p19757145483115">FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes since version 1.2 (before CSI). CCE provided FlexVolume volumes through the storage-driver add-on installed in clusters of Kubernetes v1.13 and earlier versions. This add-on connects clusters to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
-<p id="cce_01_0307__en-us_topic_0000001199181198_p16757654153113">For details, see <a href="cce_01_0127.html">storage-driver</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.9.2.2.5.1.4 "><p id="cce_01_0307__en-us_topic_0000001199181198_p18569134265811">For clusters of v1.13 or earlier that have been created, the installed FlexVolume plug-in (the storage-driver add-on in CCE) can still be used. CCE stops providing update support for this add-on, and you are advised to <a href="cce_01_0197.html">upgrade these clusters</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0307__en-us_topic_0000001199181198_note838817912503"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0307__en-us_topic_0000001199181198_ul1596014104509"><li id="cce_01_0307__en-us_topic_0000001199181198_li1796017103508">A cluster can use only one type of storage plug-ins.</li><li id="cce_01_0307__en-us_topic_0000001199181198_li10960910135015">The FlexVolume plug-in cannot be replaced by the CSI plug-in in clusters of v1.13 or earlier. You can only upgrade these clusters. For details, see <a href="cce_01_0197.html#cce_01_0197__section16738338445">Cluster Upgrade Between Major Versions</a>.</li></ul>
-</div></div>
-</div>
-<div class="section" id="cce_01_0307__en-us_topic_0000001199181198_section155443483414"><h4 class="sectiontitle">Checking Storage Add-ons</h4><ol id="cce_01_0307__en-us_topic_0000001199181198_ol235517511467"><li id="cce_01_0307__en-us_topic_0000001199181198_li183555515614"><span>Log in to the CCE console.</span></li><li id="cce_01_0307__en-us_topic_0000001199181198_li1333875311614"><span>In the navigation tree on the left, click <strong id="cce_01_0307__en-us_topic_0000001199181198_b78742364485">Add-ons</strong>.</span></li><li id="cce_01_0307__en-us_topic_0000001199181198_li12239545772"><span>Click the <strong id="cce_01_0307__en-us_topic_0000001199181198_b97741141114818">Add-on Instance</strong> tab.</span></li><li id="cce_01_0307__en-us_topic_0000001199181198_li86216391082"><span>Select a cluster in the upper right corner. The default storage add-on installed during cluster creation is displayed.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0310.html b/docs/cce/umn/cce_01_0310.html
deleted file mode 100644
index e76e197b..00000000
--- a/docs/cce/umn/cce_01_0310.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<a name="cce_01_0310"></a><a name="cce_01_0310"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body8662426"><p id="cce_01_0310__en-us_topic_0276664172_p52224919455">To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is migrated, the mounted EVS volumes are also migrated. By using EVS volumes, you can mount the remote file directory of storage system into a container so that data in the data volume is permanently preserved even when the container is deleted.</p>
-<div class="fignone" id="cce_01_0310__en-us_topic_0276664172_fig11623870218"><span class="figcap"><b>Figure 1 </b>Mounting EVS volumes to CCE</span><br><span><img id="cce_01_0310__en-us_topic_0276664172_image1162318782111" src="en-us_image_0276664178.png"></span></div>
-<div class="section" id="cce_01_0310__en-us_topic_0276664172_section729922716246"><h4 class="sectiontitle">Description</h4><ul id="cce_01_0310__en-us_topic_0276664172_ul8811135132413"><li id="cce_01_0310__en-us_topic_0276664172_li1231485215191"><strong id="cce_01_0310__en-us_topic_0276664172_b1621414568346">User-friendly</strong>: Similar to formatting disks for on-site servers in traditional layouts, you can format block storage (disks) mounted to cloud servers, and create file systems on them.</li><li id="cce_01_0310__en-us_topic_0276664172_li1469314546190"><strong id="cce_01_0310__en-us_topic_0276664172_b5310124734017">Data isolation</strong>: Each server uses an independent block storage device (disk).</li><li id="cce_01_0310__en-us_topic_0276664172_li14729557151916"><strong id="cce_01_0310__en-us_topic_0276664172_b422439184118">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_01_0310__en-us_topic_0276664172_li12294201200"><strong id="cce_01_0310__en-us_topic_0276664172_b1649517362468">Capacity and performance</strong>: The capacity of a single volume is limited (TB-level), but the performance is excellent (ms-level read/write I/O latency).</li><li id="cce_01_0310__en-us_topic_0276664172_li733884793118"><strong id="cce_01_0310__en-us_topic_0276664172_b18677134312474">Restriction</strong>: EVS disks that have partitions or have non-ext4 file systems cannot be imported.</li><li id="cce_01_0310__en-us_topic_0276664172_li1896911521515"><strong id="cce_01_0310__en-us_topic_0276664172_b156774455114">Applications</strong>: HPC, enterprise core applications running in clusters, enterprise application systems, and development and testing. These volumes are often used by single-pod Deployments and jobs, or exclusively by each pod in a StatefulSet. EVS disks are non-shared storage and cannot be attached to multiple nodes at the same time. If two pods are configured to use the same EVS disk and the two pods are scheduled to different nodes, one pod cannot be started because the EVS disk cannot be attached to it.</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0309.html">Using EVS Disks as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0311.html b/docs/cce/umn/cce_01_0311.html
deleted file mode 100644
index c4f20439..00000000
--- a/docs/cce/umn/cce_01_0311.html
+++ /dev/null
@@ -1,144 +0,0 @@
-<a name="cce_01_0311"></a><a name="cce_01_0311"></a>
-
-<h1 class="topictitle1">Using EVS Volumes</h1>
-<div id="body0000001160442127"><div class="section" id="cce_01_0311__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0311__p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0311__section1274816104391"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0311__ul1587034719355"><li id="cce_01_0311__li1442042929">EVS disks cannot be attached across AZs and cannot be used by multiple workloads, multiple pods of the same workload, or multiple jobs.</li><li id="cce_01_0311__li4870174703512">Data in a shared disk cannot be shared between nodes in a CCE cluster. If the same EVS disk is attached to multiple nodes, read and write conflicts and data cache conflicts may occur. When creating a Deployment, you are advised to create only one pod if you want to use EVS disks.</li><li id="cce_01_0311__li1568933917388">When you create a StatefulSet and add a cloud storage volume, existing EVS volumes cannot be used.</li><li id="cce_01_0311__li1935032917138">EVS disks that have partitions or have non-ext4 file systems cannot be imported.</li><li id="cce_01_0311__li15870447163514">Container storage in CCE clusters of Kubernetes 1.13 or later version supports encryption. Currently, E2E encryption is supported only in certain regions.</li><li id="cce_01_0311__li735145611289">Volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li><li id="cce_01_0311__li10346145545810">The following operations apply to clusters of Kubernetes 1.13 or earlier.</li></ul>
-</div>
-<div class="section" id="cce_01_0311__section1727261664619"><h4 class="sectiontitle">Buying an EVS Disk</h4><ol id="cce_01_0311__ol118398397451"><li id="cce_01_0311__li6330203615298"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0311__b363311131519">Resource Management</strong> &gt; <strong id="cce_01_0311__b1764018131313">Storage</strong>. Click <span class="uicontrol" id="cce_01_0311__uicontrol206431413013"><b><span id="cce_01_0311__text1664221319114">Create</span> EVS Disk</b></span>.</span></li><li id="cce_01_0311__li237312562352"><span>Configure basic disk information. <a href="#cce_01_0311__table20328123218464">Table 1</a> describes the parameters.</span><p>
-<div class="tablenoborder"><a name="cce_01_0311__table20328123218464"></a><a name="table20328123218464"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0311__table20328123218464" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuring basic disk information</caption><thead align="left"><tr id="cce_01_0311__row533073264618"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.2.2.1.2.3.1.1"><p id="cce_01_0311__p12330932164617">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.2.2.1.2.3.1.2"><p id="cce_01_0311__p133306326467">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0311__row0330113224615"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p18330232154618">* PVC Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p929111285472"><strong id="cce_01_0311__b1878614565378">New PVC Name</strong>: name of the PVC to be created. A storage volume is automatically created when a PVC is created. One PVC corresponds to one storage volume. The storage volume name is automatically generated when the PVC is created.</p>
-</td>
-</tr>
-<tr id="cce_01_0311__row20242958195514"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0311__p1243195835517">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0311__p4243258145517">Cluster where the EVS disk is deployed.</p>
-</td>
-</tr>
-<tr id="cce_01_0311__row198351838762"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p4837143820613">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p7837143816615">Namespace where the EVS disk is deployed. You can retain the default value or specify one.</p>
-</td>
-</tr>
-<tr id="cce_01_0311__row17020817474"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p421381478">Volume Capacity (GB)</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p4766420114910">Size of the storage to be created. </p>
-</td>
-</tr>
-<tr id="cce_01_0311__row423313555917"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p112371055298">Access Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p3231132814432">Access permissions of user applications on storage resources (PVs).</p>
-<ul id="cce_01_0311__ul159431708020"><li id="cce_01_0311__cce_01_0254_li128911199331"><strong id="cce_01_0311__cce_01_0254_b5235156174614">ReadWriteOnce</strong> (RWO): The volume can be mounted as read-write by a single node, and data reading and writing are supported based on a non-shared EVS volume. EVS volumes in RWO mode are supported since v1.13.10-r1.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0311__row12462640575"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p1246210401871">AZ</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p34621840572">AZ to which the disk belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0311__row8607924123319"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p6330173219461">Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p7488131445018">Type of the new EVS disk.</p>
-<ul id="cce_01_0311__ul161367711350"><li id="cce_01_0311__cce_01_0254_li313618753510"><strong id="cce_01_0311__cce_01_0254_b1295631714612">Common I/O</strong>: uses Serial Advanced Technology Attachment (SATA) drives to store data.</li><li id="cce_01_0311__cce_01_0254_li19136197193514"><strong id="cce_01_0311__cce_01_0254_b1710991994611">High I/O</strong>: uses serial attached SCSI (SAS) drives to store data.</li><li id="cce_01_0311__cce_01_0254_li613613717357"><strong id="cce_01_0311__cce_01_0254_b12994919144619">Ultra-high I/O</strong>: uses solid state disk (SSD) drives to store data.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0311__row4690726114316"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p136915265434">Encryption</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p1781204013310"><strong id="cce_01_0311__b119141212455">KMS Encryption</strong> is deselected by default.</p>
-<p id="cce_01_0311__p881264063112">After <strong id="cce_01_0311__b282141434511">KMS Encryption</strong> is selected, Key Management Service (KMS), an easy-to-use and highly secure cloud service for your keys, will be used for EVS disks. If no agency has been created, click <strong id="cce_01_0311__b104721515114518">Create Agency</strong> and set the following parameters:</p>
-<ul id="cce_01_0311__ul32358634612"><li id="cce_01_0311__li215744114619"><strong id="cce_01_0311__b1437674264514">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <strong id="cce_01_0311__b3376124254513">Create Agency</strong>. The agency name <strong id="cce_01_0311__b3308749134516">EVSAccessKMS</strong> indicates that EVS is granted the permission to access KMS. After EVS is authorized successfully, it can obtain KMS keys to encrypt and decrypt EVS systems.</li><li id="cce_01_0311__li15157174184615"><strong id="cce_01_0311__b7930350174514">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0311__li201571144466"><strong id="cce_01_0311__b276545124614">Key ID</strong>: generated by default.</li></ul>
-<p id="cce_01_0311__p133941962720">This function is supported only for clusters of v1.13.10 and later in certain regions.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0311__li2944171214235"><span>Review your order, click <strong id="cce_01_0311__b17458719193714">Submit</strong>, and wait until the creation is successful.</span><p><p id="cce_01_0311__p0916144782311">The file system is displayed in the list. When its status becomes <strong id="cce_01_0311__b158421159194819">Normal</strong>, the file system is created successfully.</p>
-</p></li><li id="cce_01_0311__li551319378426"><span>Click the volume name to view detailed information about the volume.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0311__section14273141619469"><h4 class="sectiontitle">Adding an EVS Volume</h4><ol id="cce_01_0311__ol12341122513429"><li id="cce_01_0311__li7341122574212"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. During creation, expand <strong id="cce_01_0311__b8125184065720">Data Storage</strong> after adding a container. On the <strong id="cce_01_0311__b127918473571">Cloud Volume</strong> tab page, click <strong id="cce_01_0311__b1828034712576">Add Cloud Volume</strong>.</span></li><li id="cce_01_0311__li72344418431"><span>Set the storage volume type to <strong id="cce_01_0311__b9566491575">EVS</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0311__table9241341114317" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters required for mounting an EVS volume</caption><thead align="left"><tr id="cce_01_0311__row132473414435"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0311__p1324910414436">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0311__p6252164111435">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0311__row1425217417438"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p18255194124313"><strong id="cce_01_0311__b07721224145812">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p9499194511284"><strong id="cce_01_0311__b3220142715819">EVS</strong>: You can use EVS disks the same way you use traditional hard disks on servers. EVS disks deliver higher data reliability and I/O throughput and are easy to use. They can be used for file systems, databases, or other system software and applications that require block storage resources.</p>
-<div class="caution" id="cce_01_0311__note21391101616"><span class="cautiontitle"> CAUTION: </span><div class="cautionbody"><ul id="cce_01_0311__ul112470508397"><li id="cce_01_0311__li3118498504">To attach an EVS disk to a workload, you must set the number of pods to <strong id="cce_01_0311__b1756912462583">1</strong> when creating the workload. If multiple pods are created, you cannot attach EVS disks.</li><li id="cce_01_0311__li11247185073911">When you create a StatefulSet and add a cloud storage volume, existing EVS volumes cannot be used.</li><li id="cce_01_0311__li1324735013911">EVS disks cannot be attached across AZs and cannot be used by multiple workloads, multiple pods of the same workload, or multiple jobs.</li></ul>
-</div></div>
-</td>
-</tr>
-<tr id="cce_01_0311__row226284114432"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.4.2.2.2.1.2.3.1.1 mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p1126514412436"><strong id="cce_01_0311__b581717250224">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0311__row126744194311"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p62691741164312">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p726915413433">Select a created disk. If no disk is available, follow the prompts to create one.</p>
-<p id="cce_01_0311__p10812039171515">For the same cluster and namespace, you can use an existing storage volume when creating a Deployment (with <strong id="cce_01_0311__b92981433192219">Allocation Mode</strong> set to <strong id="cce_01_0311__b102991233112219">Manual</strong>).</p>
-<p id="cce_01_0311__p58231335389">When creating a StatefulSet, you can only use a volume automatically allocated by the system (only <strong id="cce_01_0311__b277316363227">Automatic</strong> is available for <strong id="cce_01_0311__b207741236152214">Allocation Mode</strong>).</p>
-</td>
-</tr>
-<tr id="cce_01_0311__row9299164154310"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p830134116436">Automatic</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0311__p13303124114313">If you select <strong id="cce_01_0311__b149141441182217">Automatic</strong>, you need to configure the following items:</p>
-<ol type="a" id="cce_01_0311__ol1930612417437"><li id="cce_01_0311__li73089411431"><strong id="cce_01_0311__b4843745112216">Access Mode</strong>: permissions of user applications on storage resources (PVs).<ul id="cce_01_0311__ul1133151313189"><li id="cce_01_0311__li6327125116317"><strong id="cce_01_0311__b12814144911227">ReadWriteOnce</strong> (RWO): A non-shared EVS volume is mounted as read-write to a pod by a single node. EVS volumes in RWO mode are supported since v1.13.10-r1.</li></ul>
-</li><li id="cce_01_0311__li5100531181814"><strong id="cce_01_0311__b1554444133015">Availability Zone</strong>: AZ where the storage volume is located. Only the AZ where the worker node is located can be selected.</li><li id="cce_01_0311__li20310174174313"><strong id="cce_01_0311__b156501555491">Sub-Type</strong>: Select a storage subtype.<ul id="cce_01_0311__ul166685294237"><li id="cce_01_0311__cce_01_0254_li313618753510_1"><strong id="cce_01_0311__cce_01_0254_b1295631714612_1">Common I/O</strong>: uses Serial Advanced Technology Attachment (SATA) drives to store data.</li><li id="cce_01_0311__cce_01_0254_li19136197193514_1"><strong id="cce_01_0311__cce_01_0254_b1710991994611_1">High I/O</strong>: uses serial attached SCSI (SAS) drives to store data.</li><li id="cce_01_0311__cce_01_0254_li613613717357_1"><strong id="cce_01_0311__cce_01_0254_b12994919144619_1">Ultra-high I/O</strong>: uses solid state disk (SSD) drives to store data.</li></ul>
-</li><li id="cce_01_0311__li4324194194317"><strong id="cce_01_0311__b11840770538">Storage Capacity</strong>: Enter the storage capacity in the unit of GB. Ensure that the storage capacity quota is not exceeded; otherwise, creation will fail.</li><li id="cce_01_0311__li182110224719">After you select <strong id="cce_01_0311__cce_01_0254_b9224132413301">KMS Encryption</strong>, Key Management Service (KMS), an easy-to-use and highly secure service, will be enabled for EVS disks. This function is supported only for clusters of v1.13.10 and later in certain regions. If no agency has been created, click <strong id="cce_01_0311__cce_01_0254_b1771434655819">Create Agency</strong> and set the following parameters:<ul id="cce_01_0311__cce_01_0254_ul194004160312"><li id="cce_01_0311__cce_01_0254_li12399181643113"><strong id="cce_01_0311__cce_01_0254_b1047004716586">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <span class="uicontrol" id="cce_01_0311__cce_01_0254_uicontrol18470447135813"><b>Create Agency</b></span>. The agency name <strong id="cce_01_0311__cce_01_0254_b8206174845810">EVSAccessKMS</strong> indicates that EVS is granted the permission to access KMS. After EVS is authorized successfully, it can obtain KMS keys to encrypt and decrypt EVS systems.</li><li id="cce_01_0311__cce_01_0254_li58948107360"><strong id="cce_01_0311__cce_01_0254_b11154049105816">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0311__cce_01_0254_li144001516203119"><strong id="cce_01_0311__cce_01_0254_b176884506581">Key ID</strong>: generated by default.</li></ul>
-</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0311__row13325134164316"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0311__p1327194134311">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><ol type="a" id="cce_01_0311__ol153291941194312"><li id="cce_01_0311__li333114116437">Click <strong id="cce_01_0311__b131501859105317">Add Container Path</strong>.</li><li id="cce_01_0311__li163331641114314"><strong id="cce_01_0311__b1196414017541">Container Path</strong>: Enter the container path to which the volume is mounted.<div class="notice" id="cce_01_0311__note3336941124310"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_01_0311__ul434084115433"><li id="cce_01_0311__li634114412436">Do not mount the volume to a system directory such as <strong id="cce_01_0311__b15881199544">/</strong> or <strong id="cce_01_0311__b128816913545">/var/run</strong>; this action may cause container errors. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.</li><li id="cce_01_0311__li9345441104313">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</li></ul>
-</div></div>
-</li><li id="cce_01_0311__li9347104174314">Set permissions.<ul id="cce_01_0311__ul193486419432"><li id="cce_01_0311__li7349341174311"><strong id="cce_01_0311__b12993121985617">Read-only</strong>: You can only read the data in the mounted volumes.</li><li id="cce_01_0311__li935113416438"><strong id="cce_01_0311__b1752919439563">Read/Write</strong>: You can modify the data in the mounted volumes. Newly written data is not migrated if the container is migrated, which causes a data loss.</li></ul>
-</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0311__li13357941154313"><span>Click <strong id="cce_01_0311__b4136346185713">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0311__section20275716134619"><h4 class="sectiontitle">Importing an EVS Disk</h4><p id="cce_01_0311__cce_01_0254_p1984423914179">CCE allows you to import existing EVS disks.</p>
-<div class="note" id="cce_01_0311__cce_01_0254_note1665132142620"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0311__cce_01_0254_p08631248143018">An EVS disk can be imported into only one namespace. If an EVS disk has been imported into a namespace, it is invisible in other namespaces and cannot be imported again. <strong id="cce_01_0311__cce_01_0254_b6876634185918">If you want to import an EVS disk that has file system (ext4) formatted, ensure that no partition has been created for the disk. Otherwise, data may be lost.</strong></p>
-</div></div>
-<ol id="cce_01_0311__cce_01_0254_ol18308444121711"><li id="cce_01_0311__cce_01_0254_li14308174451719"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0311__cce_01_0254_b16701162135116">Resource Management </strong>&gt;<strong id="cce_01_0311__cce_01_0254_b17708132185110"> Storage</strong>. On the <strong id="cce_01_0311__cce_01_0254_b870911213517">EVS</strong> tab page, click <strong id="cce_01_0311__cce_01_0254_b14710182135113">Import</strong>.</span></li><li id="cce_01_0311__cce_01_0254_li13081544201715"><span>Select one or more EVS disks that you want to import. Then, click <strong id="cce_01_0311__cce_01_0254_b1766365519551">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0311__section0281191618462"><h4 class="sectiontitle">Unbinding an EVS Disk</h4><p id="cce_01_0311__cce_01_0254_p8292171018571">After an EVS volume is successfully created or imported, the EVS volume is automatically bound to the current cluster and cannot be used by other clusters. When the volume is unbound from the cluster, other clusters can still use the volume.</p>
-<p id="cce_01_0311__cce_01_0254_p211712186589">If the EVS volume has been mounted to a workload, it cannot be unbound from the cluster.</p>
-<ol id="cce_01_0311__cce_01_0254_ol9372446185820"><li id="cce_01_0311__cce_01_0254_li1837264619583"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0311__cce_01_0254_b118931836195113">Resource Management</strong> &gt; <strong id="cce_01_0311__cce_01_0254_b18894183655110">Storage</strong>. In the EVS disk list, click <strong id="cce_01_0311__cce_01_0254_b489517365515">Unbind</strong> next to the target EVS disk.</span></li><li id="cce_01_0311__cce_01_0254_li104361539807"><span>Confirm the unbinding, and click <strong id="cce_01_0311__cce_01_0254_b10889545182118">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0311__section1683811402220"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0311__cce_01_0254_p492184121317">After an EVS volume is created, you can perform operations described in <a href="#cce_01_0311__cce_01_0254_table1619535674020">Table 3</a>.
-<div class="tablenoborder"><a name="cce_01_0311__cce_01_0254_table1619535674020"></a><a name="cce_01_0254_table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0311__cce_01_0254_table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Other operations</caption><thead align="left"><tr id="cce_01_0311__cce_01_0254_row17103718171311"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.7.2.2.2.3.1.1"><p id="cce_01_0311__cce_01_0254_p110320185130">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.7.2.2.2.3.1.2"><p id="cce_01_0311__cce_01_0254_p51031018141311">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0311__cce_01_0254_row13103191815135"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.2.2.3.1.1 "><p id="cce_01_0311__cce_01_0254_p17103171811319">Deleting an EVS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.7.2.2.2.3.1.2 "><ol id="cce_01_0311__cce_01_0254_ol1810311811318"><li id="cce_01_0311__cce_01_0254_li8103518201311">Select the EVS volume to be deleted and click <strong id="cce_01_0311__cce_01_0254_b275313236284">Delete</strong> in the <strong id="cce_01_0311__cce_01_0254_b1384023413291">Operation</strong> column.</li><li id="cce_01_0311__cce_01_0254_li5103131871316">Follow the prompts to delete the EVS volume.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0309.html">Using EVS Disks as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0312.html b/docs/cce/umn/cce_01_0312.html
deleted file mode 100644
index 36d6b457..00000000
--- a/docs/cce/umn/cce_01_0312.html
+++ /dev/null
@@ -1,78 +0,0 @@
-<a name="cce_01_0312"></a><a name="cce_01_0312"></a>
-
-<h1 class="topictitle1">(kubectl) Automatically Creating an EVS Disk</h1>
-<div id="body0000001160562117"><div class="section" id="cce_01_0312__section16500136145518"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0312__en-us_topic_0276664174_p8648172081919">CCE supports creating EVS volumes through PersistentVolumeClaims (PVCs).</p>
-</div>
-<div class="section" id="cce_01_0312__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0312__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0312__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0312__p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0312__section15671218115516"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0312__ol119461810195916"><li id="cce_01_0312__li1681024195710"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0312__li19947131075915"><span>Run the following commands to configure the <strong id="cce_01_0312__b195951121227">pvc-evs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_01_0312__p494741020593"><b><span class="cmdname" id="cce_01_0312__cmdname34351642121517">touch pvc-evs-auto-example.yaml</span></b></p>
-<p id="cce_01_0312__p1894721016594"><b><span class="cmdname" id="cce_01_0312__cmdname13437542171519">vi pvc-evs-auto-example.yaml</span></b></p>
-<div class="p" id="cce_01_0312__p03261726173411"><strong id="cce_01_0312__b1341514124">Example YAML file for clusters of v1.9, v1.11, and v1.13:</strong><pre class="screen" id="cce_01_0312__screen20715184017393">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-evs-auto-example
-  namespace: default
-  annotations:
-    volume.beta.kubernetes.io/storage-class: <span style="color:#FF0000;">sas</span>
-  labels:
-    failure-domain.beta.kubernetes.io/region: <span id="cce_01_0312__text797052902515">eu-de</span>
-    failure-domain.beta.kubernetes.io/zone: <span id="cce_01_0312__text833353619258">eu-de-01</span>
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0312__table86161748194217" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0312__row761604815426"><th align="left" class="cellrowborder" valign="top" width="45.540000000000006%" id="mcps1.3.4.2.2.2.3.3.2.3.1.1"><p id="cce_01_0312__p8617104844215">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="54.459999999999994%" id="mcps1.3.4.2.2.2.3.3.2.3.1.2"><p id="cce_01_0312__p5617548174214">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0312__row1261764813422"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0312__p86174487428">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0312__p661712486425">EVS disk type. The value is in lowercase.</p>
-<p id="cce_01_0312__p4617124844212">Supported values: <span id="cce_01_0312__en-us_topic_0276664174_text112910427219">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span></p>
-</td>
-</tr>
-<tr id="cce_01_0312__row26171848134218"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0312__p8617174874217">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0312__p35531117164317">Region where the cluster is located.</p>
-<p id="cce_01_0312__p5617448154216">For details about the value of <strong id="cce_01_0312__en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0312__row13617348184211"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0312__p561774810425">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0312__p41813230438">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0312__p13617114815424">For details about the value of <strong id="cce_01_0312__en-us_topic_0276664174_b5466125018115">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0312__row861774844217"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0312__p461754834215">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0312__p186179486429">Storage capacity in the unit of Gi.</p>
-</td>
-</tr>
-<tr id="cce_01_0312__row761774811423"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0312__p12617448124215">accessModes</p>
-</td>
-<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0312__p76171248174211">Read/write mode of the volume.</p>
-<p id="cce_01_0312__p2617348184218">You can set this parameter to <strong id="cce_01_0312__b183551738158">ReadWriteMany</strong> (shared volume) and <strong id="cce_01_0312__b235583815512">ReadWriteOnce</strong> (non-shared volume).</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_01_0312__li1894851020597"><span>Run the following command to create a PVC.</span><p><p id="cce_01_0312__p158913151442"><b><span class="cmdname" id="cce_01_0312__cmdname1593110225415">kubectl create -f pvc-evs-auto-example.yaml</span></b></p>
-<p id="cce_01_0312__p1269713341497">After the command is executed, an EVS disk is created in the partition where the cluster is located. Choose <strong id="cce_01_0312__b976702018367">Storage</strong> &gt; <strong id="cce_01_0312__b877382023617">EVS</strong> to view the EVS disk. Alternatively, you can view the EVS disk based on the volume name on the EVS console.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0309.html">Using EVS Disks as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0313.html b/docs/cce/umn/cce_01_0313.html
deleted file mode 100644
index 76e4d343..00000000
--- a/docs/cce/umn/cce_01_0313.html
+++ /dev/null
@@ -1,555 +0,0 @@
-<a name="cce_01_0313"></a><a name="cce_01_0313"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a PV from an Existing EVS Disk</h1>
-<div id="body0000001113882218"><div class="section" id="cce_01_0313__section1934656185510"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0313__en-us_topic_0276664175_p209393354282">CCE allows you to create a PersistentVolume (PV) using an existing EVS disk. After the PV is created, you can create a PersistentVolumeClaim (PVC) and bind it to the PV.</p>
-</div>
-<div class="section" id="cce_01_0313__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0313__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0313__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0313__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0313__section265070105619"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0313__ol168961948163115"><li id="cce_01_0313__li147842268487"><span>Log in to the EVS console, create an EVS disk, and record the volume ID, capacity, and disk type of the EVS disk.</span></li><li id="cce_01_0313__li2705143583215"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0313__li149938217378"><span>Create two YAML files for creating the PersistentVolume (PV) and PersistentVolumeClaim (PVC). Assume that the file names are <strong id="cce_01_0313__b10731184951014">pv-evs-example.yaml</strong> and <strong id="cce_01_0313__b197322495106">pvc-evs-example.yaml</strong>.</span><p><p id="cce_01_0313__p291112919387"><strong id="cce_01_0313__b169111499381">touch pv-evs-example.yaml</strong> <strong id="cce_01_0313__b757265317402">pvc-evs-example.yaml</strong></p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table184303411324" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0313__row104311415322"><th align="left" class="cellrowborder" valign="top" width="33.2033203320332%" id="mcps1.3.4.2.3.2.2.1.4.1.1"><p id="cce_01_0313__p443118443220">Kubernetes Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="35.34353435343534%" id="mcps1.3.4.2.3.2.2.1.4.1.2"><p id="cce_01_0313__p1431154113212">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.453145314531454%" id="mcps1.3.4.2.3.2.2.1.4.1.3"><p id="cce_01_0313__p14311346322">YAML Example</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row543118415321"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.4.2.3.2.2.1.4.1.1 "><p id="cce_01_0313__p1743111463216">1.11.7 ≤ K8s version ≤ 1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.4.2.3.2.2.1.4.1.2 "><p id="cce_01_0313__p743119413320">Clusters from v1.11.7 to v1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.4.2.3.2.2.1.4.1.3 "><p id="cce_01_0313__p13431246327"><a href="#cce_01_0313__li0648350102513">Example YAML</a></p>
-</td>
-</tr>
-<tr id="cce_01_0313__row132483424343"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.4.2.3.2.2.1.4.1.1 "><p id="cce_01_0313__p102481242133410">1.11 ≤ K8s version &lt; 1.11.7</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.4.2.3.2.2.1.4.1.2 "><p id="cce_01_0313__p1524819427346">Clusters from v1.11 to v1.11.7</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.4.2.3.2.2.1.4.1.3 "><p id="cce_01_0313__p16248134217345"><a href="#cce_01_0313__li19211184720504">Example YAML</a></p>
-</td>
-</tr>
-<tr id="cce_01_0313__row72981940163417"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.4.2.3.2.2.1.4.1.1 "><p id="cce_01_0313__p9298154043420">K8s version = 1.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.4.2.3.2.2.1.4.1.2 "><p id="cce_01_0313__p1729814407349">Clusters of v1.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.4.2.3.2.2.1.4.1.3 "><p id="cce_01_0313__p529834014349"><a href="#cce_01_0313__li813222310297">Example YAML</a></p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0313__p1280785102120"><strong id="cce_01_0313__b134821143171119">Clusters from v1.11.7 to v1.13</strong></p>
-<ul id="cce_01_0313__ul66471550162511"><li id="cce_01_0313__li0648350102513"><a name="cce_01_0313__li0648350102513"></a><a name="li0648350102513"></a><strong id="cce_01_0313__b15131155121114">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0313__screen12963134145017">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  labels: 
-    failure-domain.beta.kubernetes.io/region: <span id="cce_01_0313__text9215191820368">eu-de</span>
-    failure-domain.beta.kubernetes.io/zone:  <span id="cce_01_0313__text11224923173612">eu-de-01</span>
-  annotations:
-    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxivol
-  name: pv-evs-example 
-spec: 
-  accessModes: 
-  - ReadWriteOnce 
-  capacity: 
-    storage: 10Gi 
-  claimRef:
-    apiVersion: v1
-    kind: PersistentVolumeClaim
-    name: pvc-evs-example
-    namespace: default
-  flexVolume: 
-    driver: huawei.com/fuxivol 
-    fsType: ext4 
-    options:
-      disk-mode: SCSI
-      fsType: ext4 
-      volumeID: <span style="color:#FF0000;">0992dbda-6340-470e-a74e-4f0db288ed82 </span>
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: sas</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table17385444165213" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0313__row173855445526"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.4.2.3.2.4.1.3.2.3.1.1"><p id="cce_01_0313__p8385144195210">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.4.2.3.2.4.1.3.2.3.1.2"><p id="cce_01_0313__p8385114425213">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row1385154425213"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p15385544135217">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p173851644195213">Region where the cluster is located.</p>
-<p id="cce_01_0313__p9385544205217">For details about the value of <strong id="cce_01_0313__en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row143851443521"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p238512444527">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p1338544455214">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0313__p638534414525">For details about the value of <strong id="cce_01_0313__en-us_topic_0276664174_b5466125018115">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1938594405211"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p183851744105213">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p0385124417521">EVS volume capacity in the unit of Gi.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row4385104475215"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p1038534425215">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p1438612448526">EVS disk type. Supported values: <span id="cce_01_0313__text1523372214318">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span></p>
-</td>
-</tr>
-<tr id="cce_01_0313__row193861444175213"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p133861440521">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p123869449527">Storage driver.</p>
-<p id="cce_01_0313__p438684475216">For EVS disks, set this parameter to <strong id="cce_01_0313__b17392125231419">huawei.com/fuxivol</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1386164445220"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p237316125619">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p9724131810569">Volume ID of the EVS disk.</p>
-<p id="cce_01_0313__p10651585616">To obtain the volume ID, log in to the CCE console, choose <strong id="cce_01_0313__b5280100111511">Resource Management</strong> &gt; <strong id="cce_01_0313__b1328018010159">Storage</strong>, click the PVC name in the <strong id="cce_01_0313__b1728020014154">EVS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1038684415211"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p1438618441525">disk-mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p9649653145619">Device type of the EVS disk. The value is <strong id="cce_01_0313__b330531341516">VBD</strong> or <strong id="cce_01_0313__b8311613171516">SCSI</strong>.</p>
-<p id="cce_01_0313__p1798412565565">For CCE clusters earlier than v1.11.7, you do not need to set this field. The value defaults to <strong id="cce_01_0313__b1693618214158">VBD</strong>.</p>
-<p id="cce_01_0313__p338644415527">This field is mandatory for CCE clusters from v1.11.7 to v1.13 that use Linux x86. As the EVS volumes dynamically provisioned by a PVC are created from SCSI EVS disks, you are advised to choose <strong id="cce_01_0313__b1228373501514">SCSI</strong> when manually creating volumes (static PVs). Volumes in the VBD mode can still be used after cluster upgrades.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1320925404611"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p1120905414467">spec.claimRef.apiVersion</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p220911541464">The value is fixed at <strong id="cce_01_0313__b139958212014">v1</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row52872572460"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p62871457164620">spec.claimRef.kind</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p13287195716468">The value is fixed at <strong id="cce_01_0313__b53413632012">PersistentVolumeClaim</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row151672034719"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p1616714019477">spec.claimRef.name</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p616717016473">PVC name. The value is the same as the name of the PVC created in the next step.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row19505236477"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0313__p1505173104717">spec.claimRef.namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0313__p95056374715">Namespace of the PVC. The value is the same as the namespace of the PVC created in the next step.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0313__li16865124414264"><strong id="cce_01_0313__b0693201713205">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0313__screen134271258185312">apiVersion: v1  
-kind: PersistentVolumeClaim  
-metadata:  
-  annotations:  
-    volume.beta.kubernetes.io/storage-class: sas
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxivol 
-  labels: 
-    failure-domain.beta.kubernetes.io/region: <span id="cce_01_0313__text1992619114466">eu-de</span>
-    failure-domain.beta.kubernetes.io/zone: <span id="cce_01_0313__text12883151854617">eu-de-01</span>     
-  name: pvc-evs-example 
-  namespace: default  
-spec:  
-  accessModes:  
-  - ReadWriteOnce  
-  resources:  
-    requests:  
-      storage: 10Gi
-  volumeName: pv-evs-example</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table88201244114010" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0313__row17820204417402"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.4.2.3.2.4.2.3.2.3.1.1"><p id="cce_01_0313__p782054464019">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.4.2.3.2.4.2.3.2.3.1.2"><p id="cce_01_0313__p1882054424015">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row796915557409"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0313__p1896955524012">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0313__p0970205513401">Storage class, which must be the same as that of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row234119218414"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0313__p93414212410">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0313__p834182174112">The field must be set to <strong id="cce_01_0313__b144514617216">flexvolume-huawei.com/fuxivol</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row98212044164016"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0313__p128211144144011">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0313__p882184494011">Region where the cluster is located.</p>
-<p id="cce_01_0313__p14821544194016">For details about the value of <strong id="cce_01_0313__cce_01_0312_en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row158211544174010"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0313__p148216449402">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0313__p168211744174016">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0313__p78217449407">For details about the value of <strong id="cce_01_0313__cce_01_0312_en-us_topic_0276664174_b5466125018115">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row78211944124017"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0313__p16821744174020">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0313__p98216441409">Requested capacity in the PVC, in Gi.</p>
-<p id="cce_01_0313__p6821344144012">The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row15822104404015"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0313__p15822644124014">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0313__p882284415406">Name of the PV.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-<p id="cce_01_0313__p37560197274"><strong id="cce_01_0313__b875005017218">Clusters from v1.11 to v1.11.7</strong></p>
-<ul id="cce_01_0313__ul1889073016186"><li id="cce_01_0313__li19211184720504"><a name="cce_01_0313__li19211184720504"></a><a name="li19211184720504"></a><strong id="cce_01_0313__b335285213116">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0313__screen15211147185014">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  labels: 
-    failure-domain.beta.kubernetes.io/region: <span id="cce_01_0313__text11161621102216">eu-de</span>
-    failure-domain.beta.kubernetes.io/zone:  
-  name: pv-evs-example 
-spec: 
-  accessModes: 
-  - ReadWriteOnce
-  capacity: 
-    storage: 10Gi 
-  flexVolume: 
-    driver: huawei.com/fuxivol 
-    fsType: ext4 
-    options:
-      fsType: ext4 
-      volumeID: <span style="color:#FF0000;">0992dbda-6340-470e-a74e-4f0db288ed82</span> 
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: sas</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table17899165410571" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0313__row4899195455718"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.4.2.3.2.6.1.3.2.3.1.1"><p id="cce_01_0313__p1899115465719">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.4.2.3.2.6.1.3.2.3.1.2"><p id="cce_01_0313__p889975465712">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row18899854185719"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0313__p17899195445720">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0313__p48997549579">Region where the cluster is located.</p>
-<p id="cce_01_0313__p9899135419579">For details about the value of <strong id="cce_01_0313__cce_01_0313_en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1589905411574"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0313__p78991554125716">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0313__p1989935485713">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0313__p98993546579">For details about the value of <strong id="cce_01_0313__cce_01_0312_en-us_topic_0276664174_b5466125018115_1">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1690018544578"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0313__p79001054165713">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0313__p6900135415719">EVS volume capacity in the unit of Gi.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row5900205455714"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0313__p2900105485718">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0313__p14900354135717">EVS disk type. Supported values: <span id="cce_01_0313__cce_01_0313_text1523372214318">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span></p>
-</td>
-</tr>
-<tr id="cce_01_0313__row11900354155717"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0313__p14900175410578">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0313__p119001954185713">Storage driver.</p>
-<p id="cce_01_0313__p16900354165710">For EVS disks, set this parameter to <strong id="cce_01_0313__b13725185481411">huawei.com/fuxivol</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row10900354175715"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0313__p1900554165719">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0313__p9900154195715">Volume ID of the EVS disk.</p>
-<p id="cce_01_0313__p890085485716">To obtain the volume ID, log in to the CCE console, choose <strong id="cce_01_0313__b14559416366">Resource Management</strong> &gt; <strong id="cce_01_0313__b1245574120369">Storage</strong>, click the PVC name in the <strong id="cce_01_0313__b2045512413365">EVS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row179008547577"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0313__p1690065485718">disk-mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0313__p11211547011">Device type of the EVS disk. The value is <strong id="cce_01_0313__b1886110202152">VBD</strong> or <strong id="cce_01_0313__b1386182019150">SCSI</strong>.</p>
-<p id="cce_01_0313__p850713616012">For CCE clusters earlier than v1.11.7, you do not need to set this field. The default value is <strong id="cce_01_0313__b163384336155">VBD</strong>.</p>
-<p id="cce_01_0313__p1590145411577">This field is mandatory for CCE clusters from v1.11.7 to v1.13 that use Linux x86. As the EVS volumes dynamically provisioned by a PVC are created from SCSI EVS disks, you are advised to choose <strong id="cce_01_0313__b19974155915191">SCSI</strong> when manually creating volumes (static PVs). Volumes in the VBD mode can still be used after cluster upgrades.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0313__li3398185342814"><strong id="cce_01_0313__b12978172015204">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0313__screen339812538284">apiVersion: v1  
-kind: PersistentVolumeClaim  
-metadata:  
-  annotations:  
-    volume.beta.kubernetes.io/storage-class: sas
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxivol 
-  labels: 
-    failure-domain.beta.kubernetes.io/region: <span id="cce_01_0313__text42461713131320">eu-de</span>
-    failure-domain.beta.kubernetes.io/zone: <span id="cce_01_0313__text57436205137">eu-de-01</span>     
-  name: pvc-evs-example 
-  namespace: default  
-spec:  
-  accessModes:  
-  - ReadWriteOnce
-  resources:  
-    requests:  
-      storage: 10Gi
-  volumeName: pv-evs-example</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table63991353162816" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0313__row183991653132813"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.4.2.3.2.6.2.3.2.3.1.1"><p id="cce_01_0313__p239975362811">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.4.2.3.2.6.2.3.2.3.1.2"><p id="cce_01_0313__p1739905312815">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row1439955382818"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0313__p14399145392817">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0313__p103996535282">Storage class. The value can be <strong id="cce_01_0313__b328585722015">sas</strong> or <strong id="cce_01_0313__b52857570203">ssd</strong>. The value must be the same as that of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row539935332820"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0313__p15399175319282">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0313__p140011531282">The field must be set to <strong id="cce_01_0313__b186539154214">flexvolume-huawei.com/fuxivol</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row04001553102811"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0313__p140019537288">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0313__p740035352815">Region where the cluster is located.</p>
-<p id="cce_01_0313__p15400115312814">For details about the value of <strong id="cce_01_0313__en-us_topic_0276664223_en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row11400353192818"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0313__p1440045382816">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0313__p11400155372817">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0313__p174003538284">For details about the value of <strong id="cce_01_0313__cce_01_0312_en-us_topic_0276664174_b5466125018115_2">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row6400125332818"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0313__p1340025342816">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0313__p8400125317289">Requested capacity in the PVC, in Gi.</p>
-<p id="cce_01_0313__p0400853162811">The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row34001453152819"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0313__p1840045317289">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0313__p15401205310282">Name of the PV.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-<p id="cce_01_0313__p124308228298"><strong id="cce_01_0313__b14957320172212">Clusters of v1.9</strong></p>
-<ul id="cce_01_0313__ul19134102372918"><li id="cce_01_0313__li813222310297"><a name="cce_01_0313__li813222310297"></a><a name="li813222310297"></a><strong id="cce_01_0313__b2355105212112">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0313__screen013052392918">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  labels: 
-    failure-domain.beta.kubernetes.io/region: <span id="cce_01_0313__text45805792210">eu-de</span>
-    failure-domain.beta.kubernetes.io/zone:  
-  name: pv-evs-example 
-  namespace: default 
-spec: 
-  accessModes: 
-  - ReadWriteOnce
-  capacity: 
-    storage: 10Gi 
-  flexVolume: 
-    driver: huawei.com/fuxivol 
-    fsType: ext4 
-    options: 
-      fsType: ext4 
-      kubernetes.io/namespace: default 
-      volumeID: <span style="color:#FF0000;">0992dbda-6340-470e-a74e-4f0db288ed82</span> 
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: sas</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table31321323122915" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0313__row9131172332912"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.4.2.3.2.8.1.3.2.3.1.1"><p id="cce_01_0313__p12130162311290">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.4.2.3.2.8.1.3.2.3.1.2"><p id="cce_01_0313__p113112322916">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row713132312920"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.1 "><p id="cce_01_0313__p161311123152916">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.2 "><p id="cce_01_0313__p15131823132915">Region where the cluster is located.</p>
-<p id="cce_01_0313__p1713117232292">For details about the value of <strong id="cce_01_0313__cce_01_0312_en-us_topic_0276664174_b696918577012_1">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row20131142312293"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.1 "><p id="cce_01_0313__p213152392918">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.2 "><p id="cce_01_0313__p101311823152918">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0313__p2013182302917">For details about the value of <strong id="cce_01_0313__cce_01_0312_en-us_topic_0276664174_b5466125018115_3">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row11131823122915"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.1 "><p id="cce_01_0313__p913110239294">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.2 "><p id="cce_01_0313__p1813115238297">EVS volume capacity in the unit of Gi.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row913114238296"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.1 "><p id="cce_01_0313__p51311223182911">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.2 "><p id="cce_01_0313__p1213192316299">EVS disk type. Supported values: <span id="cce_01_0313__cce_01_0313_text1523372214318_1">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)High I/O (SAS) and Ultra-high I/O (SSD)</span></p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1813272362913"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.1 "><p id="cce_01_0313__p71311323132913">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.2 "><p id="cce_01_0313__p1313114232293">Storage driver.</p>
-<p id="cce_01_0313__p513122317297">For EVS disks, set this parameter to <strong id="cce_01_0313__b372785451417">huawei.com/fuxivol</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row10132102312916"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.1 "><p id="cce_01_0313__p213202332919">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.2 "><p id="cce_01_0313__p0132132317299">Volume ID of the EVS disk.</p>
-<p id="cce_01_0313__p11327234297">To obtain the volume ID, log in to the CCE console, choose <strong id="cce_01_0313__b122444511366">Resource Management</strong> &gt; <strong id="cce_01_0313__b1222454593612">Storage</strong>, click the PVC name in the <strong id="cce_01_0313__b1922511450364">EVS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row91329238294"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.1 "><p id="cce_01_0313__p1713242322911">disk-mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.1.3.2.3.1.2 "><p id="cce_01_0313__p7132142322920">Device type of the EVS disk. The value is <strong id="cce_01_0313__b168661720161518">VBD</strong> or <strong id="cce_01_0313__b1886618201151">SCSI</strong>.</p>
-<p id="cce_01_0313__p213212237296">For CCE clusters earlier than v1.11.7, you do not need to set this field. The default value is <strong id="cce_01_0313__b10345123311515">VBD</strong>.</p>
-<p id="cce_01_0313__p161329233297">This field is mandatory for CCE clusters from v1.11.7 to v1.13 that use Linux x86. As the EVS volumes dynamically provisioned by a PVC are created from SCSI EVS disks, you are advised to choose <strong id="cce_01_0313__b62615072015">SCSI</strong> when manually creating volumes (static PVs). Volumes in the VBD mode can still be used after cluster upgrades.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0313__li1134152342914"><strong id="cce_01_0313__b1998016203203">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0313__screen7133623102911">apiVersion: v1  
-kind: PersistentVolumeClaim  
-metadata:  
-  annotations:  
-    volume.beta.kubernetes.io/storage-class: sas
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxivol 
-  labels: 
-    failure-domain.beta.kubernetes.io/region: <span id="cce_01_0313__text162861534182619">eu-de</span>
-    failure-domain.beta.kubernetes.io/zone: 
-  name: pvc-evs-example 
-  namespace: default  
-spec:  
-  accessModes:  
-  - ReadWriteOnce 
-  resources:  
-    requests:  
-      storage: 10Gi
-  volumeName: pv-evs-example
-  volumeNamespace: default</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table9134323142911" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0313__row171331223112910"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.4.2.3.2.8.2.3.2.3.1.1"><p id="cce_01_0313__p613319236291">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.4.2.3.2.8.2.3.2.3.1.2"><p id="cce_01_0313__p413312315294">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row15133142312918"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.1 "><p id="cce_01_0313__p21331523182914">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.2 "><p id="cce_01_0313__p4133723152915">Storage class, which must be the same as that of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row12133123202916"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.1 "><p id="cce_01_0313__p81331523122911">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.2 "><p id="cce_01_0313__p1913342319298">The field must be set to <strong id="cce_01_0313__b18656101532114">flexvolume-huawei.com/fuxivol</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row151339233297"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.1 "><p id="cce_01_0313__p1313362332910">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.2 "><p id="cce_01_0313__p61331923142916">Region where the cluster is located.</p>
-<p id="cce_01_0313__p161332023162913">For details about the value of <strong id="cce_01_0313__en-us_topic_0276664174_b696918577012_1">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row13134423102910"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.1 "><p id="cce_01_0313__p713322382917">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.2 "><p id="cce_01_0313__p2134623192912">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0313__p10134202342911">For details about the value of <strong id="cce_01_0313__en-us_topic_0276664174_b5466125018115_1">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row14134162352918"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.1 "><p id="cce_01_0313__p20134112362914">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.2 "><p id="cce_01_0313__p121341623132917">Requested capacity in the PVC, in Gi.</p>
-<p id="cce_01_0313__p1134162310298">The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row17134142342912"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.1 "><p id="cce_01_0313__p2013492372910">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.4.2.3.2.8.2.3.2.3.1.2 "><p id="cce_01_0313__p131342239291">Name of the PV.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-</p></li><li id="cce_01_0313__li8685924173017"><span>Create the PV.</span><p><p id="cce_01_0313__p12144346143012"><strong id="cce_01_0313__b14144184673015">kubectl create -f pv-evs-example.yaml</strong></p>
-</p></li><li id="cce_01_0313__li48622058154813"><span>Create the PVC.</span><p><p id="cce_01_0313__p12347144535113"><strong id="cce_01_0313__b163478456519">kubectl create -f pvc-evs-example.yaml</strong></p>
-<p id="cce_01_0313__p133471345205113">After the operation is successful, choose <strong id="cce_01_0313__b556053502219">Resource Management</strong> &gt; <strong id="cce_01_0313__b2561103522218">Storage</strong> to view the created PVC. You can also view the EVS disk by name on the EVS console.</p>
-</p></li><li id="cce_01_0313__li13991152352"><span>(Optional) Add the metadata associated with the cluster to ensure that the EVS disk associated with the mounted static PV is not deleted when the node or cluster is deleted.</span><p><div class="caution" id="cce_01_0313__note1447544543912"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0313__p67924923911">If you skip this step in this example or when creating a static PV or PVC, ensure that the EVS disk associated with the static PV has been unbound from the node before you delete the node.</p>
-</div></div>
-<ol type="a" id="cce_01_0313__ol78918263419"><li id="cce_01_0313__li6891526204113"><a name="cce_01_0313__li6891526204113"></a><a name="li6891526204113"></a>Obtain the tenant token. For details, see <a href="https://docs.otc.t-systems.com/en-us/api/apiug/apig-en-api-180328003.html" target="_blank" rel="noopener noreferrer">Obtaining a User Token</a>.</li><li id="cce_01_0313__li17017349418"><a name="cce_01_0313__li17017349418"></a><a name="li17017349418"></a>Obtain the EVS access address <strong id="cce_01_0313__en-us_topic_0276664175_b5739177155917">EVS_ENDPOINT</strong>. For details, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.<p id="cce_01_0313__en-us_topic_0276664175_p7282286480"></p>
-</li><li id="cce_01_0313__li195528509494">Add the metadata associated with the cluster to the EVS disk backing the static PV.<pre class="screen" id="cce_01_0313__screen1019252755013">curl -X POST ${EVS_ENDPOINT}/v2/${project_id}/volumes/${volume_id}/metadata --insecure \
-    -d '{"metadata":{"cluster_id": "${cluster_id}", "namespace": "${pvc_namespace}"}}' \
-    -H 'Accept:application/json' -H 'Content-Type:application/json;charset=utf8' \
-    -H 'X-Auth-Token:${TOKEN}'</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0313__table13625113414315" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0313__row96261634739"><th align="left" class="cellrowborder" valign="top" width="28.74%" id="mcps1.3.4.2.6.2.2.3.2.2.3.1.1"><p id="cce_01_0313__p1062614347317">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="71.26%" id="mcps1.3.4.2.6.2.2.3.2.2.3.1.2"><p id="cce_01_0313__p1762633415311">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0313__row862653414312"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.1 "><p id="cce_01_0313__p46261934435">EVS_ENDPOINT</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.2 "><p id="cce_01_0313__p462616341032">EVS access address. Set this parameter to the value obtained in <a href="#cce_01_0313__li17017349418">6.b</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row166266343319"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.1 "><p id="cce_01_0313__p176262343312">project_id</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.2 "><p id="cce_01_0313__p662613342312">Project ID. You can click the login user in the upper right corner of the console page, select <strong id="cce_01_0313__en-us_topic_0276664175_b057782524114">My Credentials</strong> from the drop-down list, and view the project ID on the <strong id="cce_01_0313__en-us_topic_0276664175_b2944115412426">Projects</strong> tab page.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row18626183419312"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.1 "><p id="cce_01_0313__p36261341232">volume_id</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.2 "><p id="cce_01_0313__p862733416319">ID of the associated EVS disk. Set this parameter to <strong id="cce_01_0313__b149251352103919">volume_id</strong> of the static PV to be created. You can also log in to the EVS console, click the name of the EVS disk to be imported, and obtain the ID from <strong id="cce_01_0313__b0927175283913">Summary</strong> on the disk details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row113384713615"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.1 "><p id="cce_01_0313__p234147769">cluster_id</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.2 "><p id="cce_01_0313__p173418474610">ID of the cluster where the EVS PV is to be created. On the CCE console, choose <strong id="cce_01_0313__b107974973611">Resource Management</strong> &gt; <strong id="cce_01_0313__b15856490364">Clusters</strong>. Click the name of the cluster to be associated. On the cluster details page, obtain the cluster ID.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row1873715191073"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.1 "><p id="cce_01_0313__p0737181912714">pvc_namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.2 "><p id="cce_01_0313__p273721910713">Namespace where the PVC is to be bound.</p>
-</td>
-</tr>
-<tr id="cce_01_0313__row188050161716"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.1 "><p id="cce_01_0313__p108053160715">TOKEN</p>
-</td>
-<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.4.2.6.2.2.3.2.2.3.1.2 "><p id="cce_01_0313__p680515161572">User token. Set this parameter to the value obtained in <a href="#cce_01_0313__li6891526204113">6.a</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0313__p1622175025012">For example, run the following commands:</p>
-<pre class="screen" id="cce_01_0313__screen1211533025114">curl -X POST https://evs.<span id="cce_01_0313__text1874044911281">eu-de.otc.t-systems.com</span>:443/v2/060576866680d5762f52c0150e726aa7/volumes/69c9619d-174c-4c41-837e-31b892604e14/metadata --insecure \
-    -d '{"metadata":{"cluster_id": "71e8277e-80c7-11ea-925c-0255ac100442", "namespace": "default"}}' \
-    -H 'Accept:application/json' -H 'Content-Type:application/json;charset=utf8' \
-    -H 'X-Auth-Token:MIIPe******IsIm1ldG</pre>
-<p id="cce_01_0313__p1578432745115">After the request is executed, run the following commands to check whether the EVS disk has been associated with the metadata of the cluster:</p>
-<pre class="screen" id="cce_01_0313__screen117491601217">curl -X GET ${EVS_ENDPOINT}/v2/${project_id}/volumes/${volume_id}/metadata --insecure \
-    -H 'X-Auth-Token:${TOKEN}'</pre>
-<p id="cce_01_0313__p752819115615">For example, run the following commands:</p>
-<pre class="screen" id="cce_01_0313__screen5706917145810">curl -X GET https://evs.<span id="cce_01_0313__text1974718714295">eu-de.otc.t-systems.com</span>/v2/060576866680d5762f52c0150e726aa7/volumes/69c9619d-174c-4c41-837e-31b892604e14/metadata --insecure \
-    -H 'X-Auth-Token:MIIPeAYJ***9t1c31ASaQ=='</pre>
-<p id="cce_01_0313__p134231261516">The command output displays the current metadata of the EVS disk.</p>
-<pre class="screen" id="cce_01_0313__screen119522077569">{
-    "metadata": {
-        "namespace": "default",
-        "cluster_id": "71e8277e-80c7-11ea-925c-0255ac100442",
-       <strong id="cce_01_0313__b5322161714342"> "hw:passthrough": "true"</strong>
-    }
-}</pre>
-</li></ol>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0309.html">Using EVS Disks as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0314.html b/docs/cce/umn/cce_01_0314.html
deleted file mode 100644
index ba971b3a..00000000
--- a/docs/cce/umn/cce_01_0314.html
+++ /dev/null
@@ -1,176 +0,0 @@
-<a name="cce_01_0314"></a><a name="cce_01_0314"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a Pod Mounted with an EVS Volume</h1>
-<div id="body0000001113722322"><div class="section" id="cce_01_0314__section1789161805617"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0314__en-us_topic_0276664176_p19113471414">After an EVS volume is created or imported to CCE, you can mount it to a workload.</p>
-<div class="notice" id="cce_01_0314__en-us_topic_0276664176_note151273161411"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0314__en-us_topic_0276664176_p1812771181417">EVS disks cannot be attached across AZs. Before mounting a volume, you can run the <strong id="cce_01_0314__en-us_topic_0276664176_b1476484310226">kubectl get pvc</strong> command to query the available PVCs in the AZ where the current cluster is located.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0314__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0314__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0314__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0314__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0314__section421772310564"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0314__ol49241352137"><li id="cce_01_0314__li251694784112"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0314__li109251156137"><span>Run the following commands to configure the <strong id="cce_01_0314__b194574162918">evs-deployment-example.yaml</strong> file, which is used to create a Deployment.</span><p><p id="cce_01_0314__p5929195141316"><strong id="cce_01_0314__b193391624515">touch evs-deployment-example.yaml</strong></p>
-<p id="cce_01_0314__p17933254133"><strong id="cce_01_0314__b1595201624516">vi evs-deployment-example.yaml</strong></p>
-<div class="p" id="cce_01_0314__p72162011219">Example of mounting an EVS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_01_0314__screen1913618543140">apiVersion: apps/v1 
-kind: Deployment 
-metadata: 
-  name: evs-deployment-example 
-  namespace: default 
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      app: evs-deployment-example 
-  template: 
-    metadata: 
-      labels: 
-        app: evs-deployment-example 
-    spec: 
-      containers: 
-      - image: nginx
-        name: container-0 
-        volumeMounts: 
-        - <span style="color:#FF0001;">mountPath: /tmp</span> 
-          name: pvc-evs-example 
-      imagePullSecrets:
-        - name: default-secret
-      restartPolicy: Always 
-      volumes: 
-      - name: pvc-evs-example 
-        persistentVolumeClaim: 
-          claimName: <span style="color:#FF0000;">pvc-evs-auto-example</span></pre>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0314__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0314__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="32.73%" id="mcps1.3.4.2.2.2.4.2.4.1.1"><p id="cce_01_0314__p525814169813">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="18.15%" id="mcps1.3.4.2.2.2.4.2.4.1.2"><p id="cce_01_0314__p18191161619356">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="49.120000000000005%" id="mcps1.3.4.2.2.2.4.2.4.1.3"><p id="cce_01_0314__p1919116161353">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0314__row7430236123515"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0314__p92591716583">spec.template.spec.containers.volumeMounts</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0314__p116341334126">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0314__p1927814583433">Name of the volume mounted to the container.</p>
-</td>
-</tr>
-<tr id="cce_01_0314__row10639194016187"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0314__p54664413187">spec.template.spec.containers.volumeMounts</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0314__p1946674110189">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0314__p546684111182">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_01_0314__b20599124116917">/tmp</strong> directory.</p>
-</td>
-</tr>
-<tr id="cce_01_0314__row6232511129"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0314__p72592169811">spec.template.spec.volumes</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0314__p192525131213">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0314__p132182510120">Name of the volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0314__row163191830121220"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0314__p425991613812">spec.template.spec.volumes.persistentVolumeClaim</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0314__p14319143031212">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0314__p18319530131211">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0314__note7669545104415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0314__p116692457448"><strong id="cce_01_0314__b144495415911">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0314__b1344519542914">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-<p id="cce_01_0314__p17131103118237">Mounting an EVS volume to a StatefulSet (PVC template-based, non-shared volume):</p>
-<div class="p" id="cce_01_0314__p511017130419"><strong id="cce_01_0314__b104096441119">Example YAML:</strong><pre class="screen" id="cce_01_0314__screen966014561919">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  <span style="color:#FF0000;">name: deploy-evs-sas-in</span>
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: deploy-evs-sata-in
-  template:
-    metadata:
-      labels:
-        app: deploy-evs-sata-in
-        failure-domain.beta.kubernetes.io/region: <span id="cce_01_0314__text102951211204118">eu-de</span>
-        failure-domain.beta.kubernetes.io/zone: <span id="cce_01_0314__text17322317174115">eu-de-01</span>
-    spec:
-      containers:
-        - name: container-0
-          <span style="color:#FF0000;">image: 'nginx:1.12-alpine-perl'</span>
-          volumeMounts:
-            - name: bs-sas-mountoptionpvc
-              <span style="color:#FF0000;">mountPath: /tmp</span>
-      imagePullSecrets:
-        - name: default-secret
-  volumeClaimTemplates:
-    - metadata:
-        name: bs-sas-mountoptionpvc
-        annotations:
-          volume.beta.kubernetes.io/storage-class: <span style="color:#FF0000;">sas</span>
-          volume.beta.kubernetes.io/storage-provisioner: <span style="color:#FF0000;">flexvolume-huawei.com/fuxivol</span>
-      spec:
-        accessModes:
-          - ReadWriteOnce
-        resources:
-          requests:
-            storage: 10Gi
-  <span style="color:#FF0000;">serviceName: wwww</span></pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0314__table628368131916" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0314__row122837851917"><th align="left" class="cellrowborder" valign="top" width="27.01%" id="mcps1.3.4.2.2.2.7.3.2.4.1.1"><p id="cce_01_0314__p24390324267">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="17.59%" id="mcps1.3.4.2.2.2.7.3.2.4.1.2"><p id="cce_01_0314__p42830816196">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="55.400000000000006%" id="mcps1.3.4.2.2.2.7.3.2.4.1.3"><p id="cce_01_0314__p16284108101912">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0314__row1428438101916"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.1 "><p id="cce_01_0314__p143914327264">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.2 "><p id="cce_01_0314__p142843811197">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.3 "><p id="cce_01_0314__p14367283124">Name of the created workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0314__row428458201916"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.1 "><p id="cce_01_0314__p104391325267">spec.template.spec.containers</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.2 "><p id="cce_01_0314__p202841483196">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.3 "><p id="cce_01_0314__p11284585196">Image of the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0314__row192841589190"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.1 "><p id="cce_01_0314__p243920327269">spec.template.spec.containers.volumeMount</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.2 "><p id="cce_01_0314__p32847817196">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.3 "><p id="cce_01_0314__p112851818196">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_01_0314__b74607461094">/tmp</strong> directory.</p>
-</td>
-</tr>
-<tr id="cce_01_0314__row6285158191916"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.1 "><p id="cce_01_0314__p2043914322263">spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.2 "><p id="cce_01_0314__p1828558101912">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.4.2.2.2.7.3.2.4.1.3 "><p id="cce_01_0314__p415683820207">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0314__note10161347172016"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0314__p1917194752016"><strong id="cce_01_0314__b1733463820124">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0314__b5335123861212">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</div>
-</p></li><li id="cce_01_0314__li63176161314"><span>Run the following command to create the pod:</span><p><p id="cce_01_0314__p55865136"><strong id="cce_01_0314__b432393411104">kubectl create -f evs-deployment-example.yaml</strong></p>
-<p id="cce_01_0314__p186512010161311">After the creation is complete, log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0314__b146262811135">Resource Management</strong> &gt; <strong id="cce_01_0314__b96718281131">Storage</strong> &gt; <strong id="cce_01_0314__b1268928201313">EVS</strong>. Then, click the PVC name. On the PVC details page, you can view the binding relationship between the EVS volume and the PVC.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0309.html">Using EVS Disks as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0316.html b/docs/cce/umn/cce_01_0316.html
deleted file mode 100644
index d86bfefa..00000000
--- a/docs/cce/umn/cce_01_0316.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<a name="cce_01_0316"></a><a name="cce_01_0316"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body8662426"><p id="cce_01_0316__en-us_topic_0276664534_p4264101318317">CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWriteMany scenarios, such as media processing, content management, big data analysis, and workload process analysis.</p>
-<div class="fignone" id="cce_01_0316__en-us_topic_0276664534_fig1743195012373"><span class="figcap"><b>Figure 1 </b>Mounting SFS volumes to CCE</span><br><span><img id="cce_01_0316__en-us_topic_0276664534_image114311750193716" src="en-us_image_0276664213.png"></span></div>
-<div class="section" id="cce_01_0316__en-us_topic_0276664534_section313719276380"><h4 class="sectiontitle">Description</h4><ul id="cce_01_0316__en-us_topic_0276664534_ul10598125623816"><li id="cce_01_0316__en-us_topic_0276664534_li3598556163813"><strong id="cce_01_0316__en-us_topic_0276664534_b8472174211615">Standard file protocols</strong>: You can mount file systems as volumes to servers, the same as using local directories.</li><li id="cce_01_0316__en-us_topic_0276664534_li45981656153819"><strong id="cce_01_0316__en-us_topic_0276664534_b14430648762">Data sharing</strong>: The same file system can be mounted to multiple servers, so that data can be shared.</li><li id="cce_01_0316__en-us_topic_0276664534_li1859895616386"><strong id="cce_01_0316__en-us_topic_0276664534_b391211521667">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_01_0316__en-us_topic_0276664534_li1359865617380"><strong id="cce_01_0316__en-us_topic_0276664534_b10709601472">Capacity and performance</strong>: The capacity of a single file system is high (PB level) and the performance is excellent (ms-level read/write I/O latency).</li><li id="cce_01_0316__en-us_topic_0276664534_li953501813619"><strong id="cce_01_0316__en-us_topic_0276664534_b12109155410712">Use cases</strong>: Deployments/StatefulSets in the ReadWriteMany mode and jobs created for high-performance computing (HPC), media processing, content management, web services, big data analysis, and workload process analysis</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0315.html">Using SFS File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0317.html b/docs/cce/umn/cce_01_0317.html
deleted file mode 100644
index 0340e06d..00000000
--- a/docs/cce/umn/cce_01_0317.html
+++ /dev/null
@@ -1,135 +0,0 @@
-<a name="cce_01_0317"></a><a name="cce_01_0317"></a>
-
-<h1 class="topictitle1">Using SFS Volumes</h1>
-<div id="body8662426"><div class="section" id="cce_01_0317__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0317__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0317__cce_01_0259_section5807185714121"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0317__cce_01_0259_ul484713108404"><li id="cce_01_0317__li2081717523167">SFS volumes are available only in certain regions.</li><li id="cce_01_0317__cce_01_0259_li15870447163514">Container storage in CCE clusters of Kubernetes 1.13 or later version supports encryption. Currently, E2E encryption is supported only in certain regions.</li><li id="cce_01_0317__cce_01_0259_li12223010153511">Volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li></ul>
-</div>
-<div class="section" id="cce_01_0317__cce_01_0259_section1191025105819"><a name="cce_01_0317__cce_01_0259_section1191025105819"></a><a name="cce_01_0259_section1191025105819"></a><h4 class="sectiontitle">Creating an SFS Volume</h4><ol id="cce_01_0317__cce_01_0259_ol118398397451"><li id="cce_01_0317__cce_01_0259_li1272293210174"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0317__b853521865610">Resource Management</strong> &gt; <strong id="cce_01_0317__b17541191855619">Storage</strong>.</span></li><li id="cce_01_0317__cce_01_0259_li192420116348"><span>On the <strong id="cce_01_0317__cce_01_0259_b1506193545519">SFS</strong> tab, click <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol1050613353556"><b>Create SFS File System</b></span>.</span></li><li id="cce_01_0317__cce_01_0259_li237312562352"><span>Configure basic information, as shown in <a href="#cce_01_0317__cce_01_0259_table20328123218464">Table 1</a>. </span><p>
-<div class="tablenoborder"><a name="cce_01_0317__cce_01_0259_table20328123218464"></a><a name="cce_01_0259_table20328123218464"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0317__cce_01_0259_table20328123218464" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for Creating a File System Volume</caption><thead align="left"><tr id="cce_01_0317__cce_01_0259_row533073264618"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_01_0317__cce_01_0259_p12330932164617">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_01_0317__cce_01_0259_p133306326467">Parameter Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0317__cce_01_0259_row0330113224615"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p18330232154618">* PVC Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p376419205498">Name of the new PVC, which is different from the volume name. The actual volume name is automatically generated when the PV is created by the PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row20242958195514"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0317__cce_01_0259_p1243195835517">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0317__cce_01_0259_p4243258145517">Cluster to which the file system volume belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row632053011411"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p1332113301649">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p13321133018413">Namespace with which the snapshot is associated.</p>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row17020817474"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p421381478">Total Capacity</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p4766420114910">The total capacity is the capacity of a single volume. Fees are charged by actual usage.</p>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row722105713116"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p112371055298">Access Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p3231132814432">Access permissions of user applications on storage resources (PVs).</p>
-<ul id="cce_01_0317__cce_01_0259_ul9888144214446"><li id="cce_01_0317__cce_01_0259_li138886427446"><strong id="cce_01_0317__cce_01_0259_b163514451330">ReadWriteMany</strong> (RWX): The SFS volume can be mounted as read-write by multiple nodes.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row136563921516"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p136915265434">Encryption</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p6322115373319"><span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol10125215314"><b>KMS Encryption</b></span> is deselected by default.</p>
-<p id="cce_01_0317__cce_01_0259_p1984920438435">After <strong id="cce_01_0317__cce_01_0259_b144919536312">KMS Encryption</strong> is selected, Key Management Service (KMS), an easy-to-use and highly secure key service, will be used for SFS file systems. If no agency has been created, click <strong id="cce_01_0317__cce_01_0259_b159929531332">Create Agency</strong> and set the following parameters:</p>
-<ul id="cce_01_0317__cce_01_0259_ul32358634612"><li id="cce_01_0317__cce_01_0259_li215744114619"><strong id="cce_01_0317__cce_01_0259_b7130455939">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol713010551137"><b>Create Agency</b></span>. The agency name <strong id="cce_01_0317__cce_01_0259_b1453785614312">SFSAccessKMS</strong> indicates that SFS is granted the permission to access KMS. After SFS is authorized successfully, it can obtain KMS keys to encrypt and decrypt file systems.</li><li id="cce_01_0317__cce_01_0259_li13540103523515"><strong id="cce_01_0317__cce_01_0259_b16232932879">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0317__cce_01_0259_li201571144466"><strong id="cce_01_0317__cce_01_0259_b138441835979">Key ID</strong>: generated by default.</li></ul>
-<p id="cce_01_0317__cce_01_0259_p1293911274286">This function is supported only for clusters of v1.13.10 and later in certain regions.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0317__cce_01_0259_li1984465131513"><span>Click <strong id="cce_01_0317__cce_01_0259_b157315361370">Create</strong>. </span><p><p id="cce_01_0317__cce_01_0259_p0916144782311">The volume is displayed in the list. When <span class="parmname" id="cce_01_0317__cce_01_0259_parmname6876123718710"><b>PVS Status</b></span> becomes <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol158761437674"><b>Bound</b></span>, the volume is created successfully.</p>
-</p></li><li id="cce_01_0317__cce_01_0259_li4845125141519"><span>Click the volume name to view detailed information about the volume.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0317__cce_01_0259_section15913851125818"><h4 class="sectiontitle">Adding an SFS Volume</h4><ol id="cce_01_0317__cce_01_0259_ol147961048145416"><li id="cce_01_0317__cce_01_0259_li53652056152818"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, <a href="cce_01_0216.html">Creating a DaemonSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. During creation, expand <strong id="cce_01_0317__cce_01_0259_b1633621691">Data Storage</strong> after adding a container. On the <strong id="cce_01_0317__cce_01_0259_b18691828694">Cloud Volume</strong> tab page, click <strong id="cce_01_0317__cce_01_0259_b28696288910">Add Cloud Volume</strong>.</span></li><li id="cce_01_0317__cce_01_0259_li174061024145712"><span>Set the storage class to <strong id="cce_01_0317__cce_01_0259_b866942112913">SFS</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0317__cce_01_0259_table6514150195315" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameters for mounting a file system</caption><thead align="left"><tr id="cce_01_0317__cce_01_0259_row1250916010532"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0317__cce_01_0259_p1550914012531">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0317__cce_01_0259_p850913012539">Parameter Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0317__cce_01_0259_row15510806536"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p851018010531"><strong id="cce_01_0317__cce_01_0259_b118392458115">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p2874185810616"><strong id="cce_01_0317__cce_01_0259_b085094601120">File Storage (NFS)</strong>: This type applies to a wide range of scenarios, including media processing, content management, big data, and application analysis.</p>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row1851090115317"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.4.2.2.2.1.2.3.1.1 mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p1251017085312"><strong id="cce_01_0317__cce_01_0259_b1288965451117">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row145119035310"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p8510130125311">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><ul id="cce_01_0317__cce_01_0259_ul1884819547561"><li id="cce_01_0317__cce_01_0259_li484912546561"><strong id="cce_01_0317__cce_01_0259_b137830576111">Name</strong>: Select a created file system. You need to create a file system in advance. For details about how to create a file system, see <a href="#cce_01_0317__cce_01_0259_section1191025105819">Creating an SFS Volume</a>. </li><li id="cce_01_0317__cce_01_0259_li12848854195620"><strong id="cce_01_0317__cce_01_0259_b9454732111220">Sub-Type</strong>: subtype of the created file storage.</li><li id="cce_01_0317__cce_01_0259_li17848195485616"><strong id="cce_01_0317__cce_01_0259_b16608153201310">Storage Capacity</strong>: This field is one of the PVC attributes. If the storage capacity has been expanded on the IaaS side, it is normal that the capacity values are inconsistent. The PVC capacity is the same as the storage entity capacity only after end-to-end container storage capacity expansion is supported for CCE clusters of v1.13.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row105123014531"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p155113095317">Automatic</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p195111307532">An SFS volume is created automatically. You need to enter the storage capacity.</p>
-<ul id="cce_01_0317__cce_01_0259_ul9563124315919"><li id="cce_01_0317__cce_01_0259_li1556394365917"><strong id="cce_01_0317__cce_01_0259_b413714819137">Sub-Type</strong>: Select <strong id="cce_01_0317__cce_01_0259_b1314219812133">NFS</strong>.</li><li id="cce_01_0317__cce_01_0259_li1356318430593"><strong id="cce_01_0317__cce_01_0259_b1517719931317">Storage Capacity</strong>: Specify the total storage capacity, in GB. Ensure that the storage capacity quota is not exceeded; otherwise, creation will fail.</li><li id="cce_01_0317__cce_01_0259_li1956310438599">After you select <strong id="cce_01_0317__cce_01_0259_b1921517193020">KMS Encryption</strong>, Key Management Service (KMS), an easy-to-use and highly secure service, will be enabled for file systems. This function is supported only for clusters of v1.13.10 and later in certain regions. If no agency has been created, click <strong id="cce_01_0317__cce_01_0259_b14727141315133">Create Agency</strong> and set the following parameters:<ul id="cce_01_0317__cce_01_0259_ul1738911481971"><li id="cce_01_0317__cce_01_0259_li14389148176"><strong id="cce_01_0317__cce_01_0259_b126081114111317">Agency Name</strong>: Agencies can be used to assign permissions to trusted accounts or cloud services for a specific period of time. If no agency is created, click <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol56088147131"><b>Create Agency</b></span>. The agency name <strong id="cce_01_0317__cce_01_0259_b55581615191317">SFSAccessKMS</strong> indicates that SFS is granted the permission to access KMS. After SFS is authorized successfully, it can obtain KMS keys to encrypt and decrypt file systems.</li><li id="cce_01_0317__cce_01_0259_li15157174184615"><strong id="cce_01_0317__cce_01_0259_b125951416101311">Key Name</strong>: After a key is created, it can be loaded and used in containerized applications. </li><li id="cce_01_0317__cce_01_0259_li1738917486712"><strong id="cce_01_0317__cce_01_0259_b294491801316">Key ID</strong>: generated by default.</li></ul>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row18514401530"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p451280115318">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p4174161519591">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0317__cce_01_0259_ol14514160165311"><li id="cce_01_0317__cce_01_0259_li132235644313"><strong id="cce_01_0317__cce_01_0259_b9396025101316">subPath</strong>: Enter the subpath of the file storage, for example, <strong id="cce_01_0317__cce_01_0259_b134011525181310">/tmp</strong>.<p id="cce_01_0317__cce_01_0259_p1623933918316">If this parameter is not specified, the root path of the data volume is used by default. Currently, only file storage is supported. The value must be a relative path and cannot start with a slash (/) or ../.</p>
-</li><li id="cce_01_0317__cce_01_0259_li051415055316"><span class="parmname" id="cce_01_0317__cce_01_0259_parmname3283154481311"><b>Container Path</b></span>: Enter the path of the container, for example, <strong id="cce_01_0317__cce_01_0259_b1428384415136">/tmp</strong>.<div class="p" id="cce_01_0317__cce_01_0259_p45501641058">The container path must not be a system directory, such as <strong id="cce_01_0317__cce_01_0259_b54068455138">/</strong> and <strong id="cce_01_0317__cce_01_0259_b440610453137">/var/run</strong>. Otherwise, an exception occurs. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0317__cce_01_0259_note8564354147"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0317__cce_01_0259_p85554241956">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0317__cce_01_0259_li651460145315">Set permissions.<ul id="cce_01_0317__cce_01_0259_ul1651480165315"><li id="cce_01_0317__cce_01_0259_li65147025319"><strong id="cce_01_0317__cce_01_0259_b10860125010134">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_01_0317__cce_01_0259_li195143016539"><strong id="cce_01_0317__cce_01_0259_b149251151121316">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0317__cce_01_0259_p165839491213">Click <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol2997175371314"><b>Add Container Path</b></span> to add multiple settings. Then, click <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol1799825311134"><b>OK</b></span>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0317__cce_01_0259_li75121125181418"><span>Click <strong id="cce_01_0317__cce_01_0259_b2122634103217">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0317__cce_01_0259_section20914115115812"><h4 class="sectiontitle">Importing an SFS Volume</h4><p id="cce_01_0317__cce_01_0259_p9288112193">CCE allows you to import existing SFS volumes.</p>
-<ol id="cce_01_0317__cce_01_0259_ol19171581916"><li id="cce_01_0317__cce_01_0259_li21714517193"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0317__b3999164155612">Resource Management </strong>&gt;<strong id="cce_01_0317__b1099934113568"> Storage</strong>. On the <strong id="cce_01_0317__b1999194195618">SFS</strong> tab page, click <strong id="cce_01_0317__b30144210561">Import</strong>.</span></li><li id="cce_01_0317__cce_01_0259_li181745101913"><span>Select one or more SFS volumes that you want to attach.</span></li><li id="cce_01_0317__cce_01_0259_li61765121914"><span>Select the target cluster and namespace. Then, click <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol17404634171418"><b>OK</b></span>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0317__cce_01_0259_section1591505155817"><h4 class="sectiontitle">Unbinding an SFS Volume</h4><p id="cce_01_0317__cce_01_0259_p8292171018571">When an SFS volume is successfully created or imported, the volume is automatically bound to the current cluster. Other clusters can also use the volume. When the SFS volume is unbound from the cluster, other clusters can still import and use the volume.</p>
-<p id="cce_01_0317__cce_01_0259_p211712186589">If the SFS volume has been attached to a workload, the volume cannot be unbound from the cluster.</p>
-<ol id="cce_01_0317__cce_01_0259_ol9372446185820"><li id="cce_01_0317__cce_01_0259_li1837264619583"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0317__b108233475569">Resource Management</strong> &gt; <strong id="cce_01_0317__b68281947175612">Storage</strong>. In the SFS volume list, click <strong id="cce_01_0317__b282911473561">Unbind</strong> next to the target volume.</span></li><li id="cce_01_0317__cce_01_0259_li104361539807"><span>Confirm the unbinding, and click <strong id="cce_01_0317__cce_01_0259_b18241833151520">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0317__cce_01_0259_section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0317__cce_01_0259_p135366513116">After an SFS volume is created, you can perform the operation described in <a href="#cce_01_0317__cce_01_0259_table1619535674020">Table 3</a>.
-<div class="tablenoborder"><a name="cce_01_0317__cce_01_0259_table1619535674020"></a><a name="cce_01_0259_table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0317__cce_01_0259_table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Other operations</caption><thead align="left"><tr id="cce_01_0317__cce_01_0259_row111622425139"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.7.2.2.2.3.1.1"><p id="cce_01_0317__cce_01_0259_p81621742171318">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.7.2.2.2.3.1.2"><p id="cce_01_0317__cce_01_0259_p121621842131310">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0317__cce_01_0259_row141621942121312"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.2.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p4162174281310">Deleting an SFS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.7.2.2.2.3.1.2 "><ol id="cce_01_0317__cce_01_0259_ol1216224219134"><li id="cce_01_0317__cce_01_0259_li1216294215130">Select the SFS volume to be deleted and click <strong id="cce_01_0317__cce_01_0259_b145340111514">Delete</strong> in the <strong id="cce_01_0317__cce_01_0259_b12111840141519">Operation</strong> column.</li><li id="cce_01_0317__cce_01_0259_li2016215423135">Follow the prompts to delete the EVS disk.</li></ol>
-</td>
-</tr>
-<tr id="cce_01_0317__cce_01_0259_row131623427133"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.2.2.3.1.1 "><p id="cce_01_0317__cce_01_0259_p1316212422136">Importing an SFS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.7.2.2.2.3.1.2 "><p id="cce_01_0317__cce_01_0259_p4162104220134">CCE allows you to import existing SFS volumes.</p>
-<ol id="cce_01_0317__cce_01_0259_ol7162042181313"><li id="cce_01_0317__cce_01_0259_li116264261313">On the <strong id="cce_01_0317__cce_01_0259_b1404114561518">SFS</strong> tab page, click <strong id="cce_01_0317__cce_01_0259_b1441015452152">Import</strong>.</li><li id="cce_01_0317__cce_01_0259_li5162144215139">Select one or more SFS volumes that you want to attach.</li><li id="cce_01_0317__cce_01_0259_li5162164216133">Select the target cluster and namespace.</li><li id="cce_01_0317__cce_01_0259_li9162144214139">Click <span class="uicontrol" id="cce_01_0317__cce_01_0259_uicontrol20455144818155"><b>Yes</b></span>.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0315.html">Using SFS File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0318.html b/docs/cce/umn/cce_01_0318.html
deleted file mode 100644
index 8bcd3db1..00000000
--- a/docs/cce/umn/cce_01_0318.html
+++ /dev/null
@@ -1,66 +0,0 @@
-<a name="cce_01_0318"></a><a name="cce_01_0318"></a>
-
-<h1 class="topictitle1">(kubectl) Automatically Creating an SFS Volume</h1>
-<div id="body0000001113722324"><div class="section" id="cce_01_0318__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0318__en-us_topic_0276664536_p112131232226">CCE supports creating SFS volumes through PersistentVolumeClaims (PVCs).</p>
-</div>
-<div class="section" id="cce_01_0318__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0318__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0318__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0318__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0318__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0318__ol1685919529594"><li id="cce_01_0318__li158591052155914"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0318__li138592521596"><span>Run the following commands to configure the <strong id="cce_01_0318__b18317185754417">pvc-sfs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_01_0318__p12859155220599"><b><span class="cmdname" id="cce_01_0318__cmdname836284582311">touch pvc-sfs-auto-example.yaml</span></b></p>
-<p id="cce_01_0318__p1585925265913"><b><span class="cmdname" id="cce_01_0318__cmdname5363345162311">vi pvc-sfs-auto-example.yaml</span></b></p>
-<div class="p" id="cce_01_0318__p3957141815421"><strong id="cce_01_0318__b312114510455">Example YAML file:</strong><pre class="screen" id="cce_01_0318__screen158591652105911">apiVersion: v1 
-kind: PersistentVolumeClaim 
-metadata: 
-  annotations: 
-    volume.beta.kubernetes.io/storage-class: <span style="color:#FF0000;">nfs-rw</span>
-  <span style="color:#FF0001;">name: pvc-sfs-auto-example</span> 
-  namespace: default 
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  resources: 
-    requests: 
-      <span style="color:#FF0001;">storage: 10Gi</span></pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0318__table71355385813" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0318__row141351434587"><th align="left" class="cellrowborder" valign="top" width="35.91%" id="mcps1.3.4.2.2.2.3.3.2.3.1.1"><p id="cce_01_0318__p151358385810">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="64.09%" id="mcps1.3.4.2.2.2.3.3.2.3.1.2"><p id="cce_01_0318__p7135331587">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0318__row11351935589"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0318__p12135334586">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0318__p813603165815">File storage class. Currently, the standard file protocol type (nfs-rw) is supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0318__row1413614317585"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0318__p1313610315580">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0318__p121368345813">Name of the PVC to be created.</p>
-</td>
-</tr>
-<tr id="cce_01_0318__row1713683175810"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0318__p20136133145811">accessModes</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0318__p8136235589">Only <strong id="cce_01_0318__b5978113110455">ReadWriteMany</strong> is supported. <strong id="cce_01_0318__b1897813314453">ReadWriteOnly</strong> is not supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0318__row1513614311583"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.1 "><p id="cce_01_0318__p81361634589">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.4.2.2.2.3.3.2.3.1.2 "><p id="cce_01_0318__p21361134586">Storage capacity in the unit of Gi.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_01_0318__li20860105211598"><span>Run the following command to create the PVC.</span><p><p id="cce_01_0318__p20799163073714"><b><span class="cmdname" id="cce_01_0318__cmdname1460105112371">kubectl create -f pvc-sfs-auto-example.yaml</span></b></p>
-<p id="cce_01_0318__p15332455387">After the command is executed, a file system is created in the VPC to which the cluster belongs. Choose <strong id="cce_01_0318__b8400143914514">Storage</strong> &gt; <strong id="cce_01_0318__b1040133919456">SFS</strong> on the CCE console or log in to the SFS console to view the file system.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0315.html">Using SFS File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0319.html b/docs/cce/umn/cce_01_0319.html
deleted file mode 100644
index 2c484bff..00000000
--- a/docs/cce/umn/cce_01_0319.html
+++ /dev/null
@@ -1,283 +0,0 @@
-<a name="cce_01_0319"></a><a name="cce_01_0319"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a PV from an Existing SFS File System</h1>
-<div id="body0000001160442133"><div class="section" id="cce_01_0319__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0319__en-us_topic_0276664537_p22148524614">CCE allows you to use an existing file system to create a PersistentVolume (PV). After the creation is successful, create the corresponding PersistentVolumeClaim (PVC) and bind it to the PV.</p>
-</div>
-<div class="section" id="cce_01_0319__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0319__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0319__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0319__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0319__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0319__ol17848656773"><li id="cce_01_0319__li12896194833111"><span>Log in to the SFS console, create a file system, and record the file system ID, shared path, and capacity.</span></li><li id="cce_01_0319__li2705143583215"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0319__li149938217378"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_01_0319__b11861877583">pv-sfs-example.yaml</strong> and <strong id="cce_01_0319__b1586137165813">pvc-sfs-example.yaml</strong>.</span><p><p id="cce_01_0319__p13633619911"><strong id="cce_01_0319__b1267361291">touch pv-sfs-example.yaml</strong> <strong id="cce_01_0319__b10457202293811">pvc-sfs-example.yaml</strong></p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0319__table184303411324" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0319__row104311415322"><th align="left" class="cellrowborder" valign="top" width="33.2033203320332%" id="mcps1.3.4.2.3.2.2.1.4.1.1"><p id="cce_01_0319__p443118443220">Kubernetes Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="35.34353435343534%" id="mcps1.3.4.2.3.2.2.1.4.1.2"><p id="cce_01_0319__p1431154113212">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.453145314531454%" id="mcps1.3.4.2.3.2.2.1.4.1.3"><p id="cce_01_0319__p14311346322">YAML Example</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0319__row132483424343"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.4.2.3.2.2.1.4.1.1 "><p id="cce_01_0319__p102481242133410">1.11 ≤ K8s version ≤ 1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.4.2.3.2.2.1.4.1.2 "><p id="cce_01_0319__p1524819427346">Clusters from v1.11 to v1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.4.2.3.2.2.1.4.1.3 "><p id="cce_01_0319__p16248134217345"><a href="#cce_01_0319__li1252510101515">Example YAML</a></p>
-</td>
-</tr>
-<tr id="cce_01_0319__row72981940163417"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.4.2.3.2.2.1.4.1.1 "><p id="cce_01_0319__p9298154043420">K8s version = 1.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.4.2.3.2.2.1.4.1.2 "><p id="cce_01_0319__p1729814407349">Clusters of v1.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.4.2.3.2.2.1.4.1.3 "><p id="cce_01_0319__p529834014349"><a href="#cce_01_0319__li10858156164514">Example YAML</a></p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0319__p5758169144413"><strong id="cce_01_0319__b13245508218">Clusters from v1.11 to v1.13</strong></p>
-<ul id="cce_01_0319__ul158929465413"><li id="cce_01_0319__li1252510101515"><a name="cce_01_0319__li1252510101515"></a><a name="li1252510101515"></a><strong id="cce_01_0319__b1246614511623">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0319__screen7525410818">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  name: pv-sfs-example 
-  annotations:
-    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxinfs
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  capacity: 
-    storage: 10Gi 
-  claimRef:
-    apiVersion: v1
-    kind: PersistentVolumeClaim
-    name: pvc-sfs-example
-    namespace: default
-  flexVolume: 
-    driver: huawei.com/fuxinfs 
-    fsType: nfs 
-    options: 
-      deviceMountPath: &lt;your_deviceMountPath&gt;  # Shared storage path of your file.
-      fsType: nfs 
-      volumeID: <span style="color:#FF0000;">f6976f9e-2493-419b-97ca-d7816008d91c</span> 
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: nfs-rw</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0319__table3934731234" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0319__row149341731534"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.4.1.3.2.3.1.1"><p id="cce_01_0319__p149358311835">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.4.1.3.2.3.1.2"><p id="cce_01_0319__p7935631739">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0319__row793512311034"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p29357311432">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p49351131131">Storage driver used to mount the volume. Set the driver to <strong id="cce_01_0319__b13193202333">huawei.com/fuxinfs</strong> for the file system.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row1093563112316"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p993515311335">deviceMountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p16935231434">Shared path of the file system.</p>
-<p id="cce_01_0319__p157371234845">On the management console, choose <strong id="cce_01_0319__b18569730104214">Service List</strong> &gt; <strong id="cce_01_0319__b45702030174218">Storage</strong> &gt; <strong id="cce_01_0319__b10570730114215">Scalable File Service</strong>. You can obtain the shared path of the file system from the <strong id="cce_01_0319__b135711530124219">Mount Address</strong> column.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row993610311039"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p5936531137">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p2936133118317">File system ID.</p>
-<p id="cce_01_0319__p093612311432">To obtain the ID, log in to the CCE console, choose <strong id="cce_01_0319__b825618305318">Resource Management</strong> &gt; <strong id="cce_01_0319__b1025633010311">Storage</strong>, click the PVC name in the <strong id="cce_01_0319__b725714301133">SFS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row093613116318"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p6936131332">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p893615311319">File system size.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row1193611312034"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p129361313317">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p59361631933">Read/write mode supported by the file system. Currently, <strong id="cce_01_0319__b183281944836">nfs-rw</strong> and <strong id="cce_01_0319__b6334744032">nfs-ro</strong> are supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row1513119244513"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p11313212457">spec.claimRef.apiVersion</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p111311922456">The value is fixed at <strong id="cce_01_0319__b481214810318">v1</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row3844449452"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p28454434512">spec.claimRef.kind</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p188452042450">The value is fixed at <strong id="cce_01_0319__b793714503315">PersistentVolumeClaim</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row1629208104518"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p112928815457">spec.claimRef.name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p9292178174514">The value is the same as the name of the PVC created in the next step.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row15213155919448"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0319__p42131059134414">spec.claimRef.namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0319__p102136598446">Namespace of the PVC. The value is the same as the namespace of the PVC created in the next step.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0319__li34711310140"><strong id="cce_01_0319__b135218151147">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0319__screen147113101543">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-    volume.beta.kubernetes.io/storage-class: nfs-rw
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxinfs
-  name: pvc-sfs-example
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 10Gi
-  volumeName: pv-sfs-example</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0319__table10792183512813" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0319__row1879416351085"><th align="left" class="cellrowborder" valign="top" width="40.01%" id="mcps1.3.4.2.3.2.4.2.3.2.3.1.1"><p id="cce_01_0319__p1179416355820">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="59.99%" id="mcps1.3.4.2.3.2.4.2.3.2.3.1.2"><p id="cce_01_0319__p6794635582">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0319__row8357105211816"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0319__p173577528812">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0319__p491810248911">Read/write mode supported by the file system. <strong id="cce_01_0319__b13018231045">nfs-rw</strong> and <strong id="cce_01_0319__b531152314416">nfs-ro</strong> are supported. The value must be the same as that of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row1269015485818"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0319__p1169111486814">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0319__p116929481812">Must be set to <strong id="cce_01_0319__b1762512281420">flexvolume-huawei.com/fuxinfs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row37957351088"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0319__p15795735487">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0319__p19795153519813">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row147951835388"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0319__p279512351189">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0319__p1179511352811">Name of the PV.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-<p id="cce_01_0319__p18519756134520"><strong id="cce_01_0319__b121215461546">Clusters of v1.9</strong></p>
-<ul id="cce_01_0319__ul885875612452"><li id="cce_01_0319__li10858156164514"><a name="cce_01_0319__li10858156164514"></a><a name="li10858156164514"></a><strong id="cce_01_0319__b69741951722">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0319__screen9855195694515">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  name: pv-sfs-example 
-  namespace: default 
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  capacity: 
-    storage: 10Gi 
-  flexVolume: 
-    driver: huawei.com/fuxinfs 
-    fsType: nfs 
-    options: 
-      deviceMountPath: &lt;your_deviceMountPath&gt;  # Shared storage path of your file.
-      fsType: nfs 
-      kubernetes.io/namespace: default 
-      volumeID: <span style="color:#FF0000;">f6976f9e-2493-419b-97ca-d7816008d91c</span> 
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: nfs-rw</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0319__table28568561454" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0319__row78551956154510"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.6.1.3.2.3.1.1"><p id="cce_01_0319__p185565634512">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.6.1.3.2.3.1.2"><p id="cce_01_0319__p1885512569451">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0319__row17855656204514"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0319__p685565614519">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0319__p78551356174510">Storage driver used to mount the volume. Set the driver to <strong id="cce_01_0319__b179661622033">huawei.com/fuxinfs</strong> for the file system.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row1856195610455"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0319__p14855205674516">deviceMountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0319__p1685555619456">Shared path of the file system.</p>
-<p id="cce_01_0319__p4856155611458">On the management console, choose <strong id="cce_01_0319__b382723919423">Service List</strong> &gt; <strong id="cce_01_0319__b108281339164219">Storage</strong> &gt; <strong id="cce_01_0319__b1829839164219">Scalable File Service</strong>. You can obtain the shared path of the file system from the <strong id="cce_01_0319__b1682916397426">Mount Address</strong> column.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row2856165619453"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0319__p1985610564458">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0319__p12856155616454">File system ID.</p>
-<p id="cce_01_0319__p108561156184519">To obtain the ID, log in to the CCE console, choose <strong id="cce_01_0319__b19270183619319">Resource Management</strong> &gt; <strong id="cce_01_0319__b727011368313">Storage</strong>, click the PVC name in the <strong id="cce_01_0319__b427023614318">SFS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row1785665684516"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0319__p1856856174516">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0319__p78566564458">File system size.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row13856165614457"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0319__p14856756134516">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0319__p19856356124520">Read/write mode supported by the file system. Currently, <strong id="cce_01_0319__b136311472310">nfs-rw</strong> and <strong id="cce_01_0319__b136311947031">nfs-ro</strong> are supported.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0319__li12198164264618"><strong id="cce_01_0319__b20734161417">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0319__screen10857105664513">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-    volume.beta.kubernetes.io/storage-class: nfs-rw
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxinfs
-  name: pvc-sfs-example
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 10Gi
-  volumeName: pv-sfs-example
-  volumeNamespace: default</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0319__table585755619458" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0319__row1585714564459"><th align="left" class="cellrowborder" valign="top" width="41.67%" id="mcps1.3.4.2.3.2.6.2.3.2.3.1.1"><p id="cce_01_0319__p18857175610459">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="58.330000000000005%" id="mcps1.3.4.2.3.2.6.2.3.2.3.1.2"><p id="cce_01_0319__p13857156104514">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0319__row785735644514"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0319__p1785745654517">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0319__p4857056104511">Read/write mode supported by the file system. <strong id="cce_01_0319__b132713246419">nfs-rw</strong> and <strong id="cce_01_0319__b732716247417">nfs-ro</strong> are supported. The value must be the same as that of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row16857125615456"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0319__p1785715624516">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0319__p7857056174514">The field must be set to <strong id="cce_01_0319__b17463122915413">flexvolume-huawei.com/fuxinfs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row18857195644515"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0319__p1085711566457">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0319__p58571756174515">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0319__row98571856184519"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0319__p685720560459">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0319__p118572568450">Name of the PV.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-<div class="note" id="cce_01_0319__note136361326161114"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0319__p86381726181119">The VPC to which the file system belongs must be the same as the VPC of the ECS VM to which the workload is planned.</p>
-</div></div>
-</p></li><li id="cce_01_0319__li1343431619108"><span>Create the PV.</span><p><p id="cce_01_0319__p125241281212"><strong id="cce_01_0319__b1425218123122">kubectl create -f pv-sfs-example.yaml</strong></p>
-</p></li><li id="cce_01_0319__li10145930121319"><span>Create the PVC.</span><p><p id="cce_01_0319__p16145330191319"><strong id="cce_01_0319__b768912391133">kubectl create -f pvc-sfs-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0315.html">Using SFS File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0320.html b/docs/cce/umn/cce_01_0320.html
deleted file mode 100644
index fb2affab..00000000
--- a/docs/cce/umn/cce_01_0320.html
+++ /dev/null
@@ -1,168 +0,0 @@
-<a name="cce_01_0320"></a><a name="cce_01_0320"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an SFS Volume</h1>
-<div id="body0000001160562123"><div class="section" id="cce_01_0320__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0320__p0780175013561">After an SFS volume is created or imported to CCE, you can mount the volume to a workload.</p>
-</div>
-<div class="section" id="cce_01_0320__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0320__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0320__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0320__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0320__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0320__ol05361840142120"><li id="cce_01_0320__li1210641545116"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0320__li3590240112114"><span>Run the following commands to configure the <strong id="cce_01_0320__b14221145814352">sfs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_01_0320__p459116406215"><strong id="cce_01_0320__b18593740162114"><em id="cce_01_0320__i18593440172118">touch sfs-deployment-example.yaml</em></strong></p>
-<p id="cce_01_0320__p859584012117"><strong id="cce_01_0320__b14595540112113"><em id="cce_01_0320__i10597104012120">vi sfs-deployment-example.yaml</em></strong></p>
-<div class="p" id="cce_01_0320__p1312737638">Example of mounting an SFS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_01_0320__screen11598540132112">apiVersion: apps/v1 
-kind: Deployment 
-metadata: 
-  <span style="color:#FF0001;">name: sfs-deployment-example</span>                                # Workload name
-  namespace: default 
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      app: sfs-deployment-example 
-  template: 
-    metadata: 
-      labels: 
-        app: sfs-deployment-example 
-    spec: 
-      containers: 
-      - image: nginx 
-        name: container-0 
-        volumeMounts: 
-        - <span style="color:#FF0001;">mountPath: /tmp</span>                                # Mount path 
-          name: pvc-sfs-example 
-      imagePullSecrets:
-        - name: default-secret
-      restartPolicy: Always 
-      volumes: 
-      - name: pvc-sfs-example 
-        persistentVolumeClaim: 
-          claimName: <span style="color:#FF0000;">pvc-sfs-auto-example</span>                # PVC name</pre>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0320__table397913279106" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0320__row119803273101"><th align="left" class="cellrowborder" valign="top" width="38.24%" id="mcps1.3.4.2.2.2.4.2.4.1.1"><p id="cce_01_0320__p1615192114317">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.91%" id="mcps1.3.4.2.2.2.4.2.4.1.2"><p id="cce_01_0320__p12980132717103">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="44.85%" id="mcps1.3.4.2.2.2.4.2.4.1.3"><p id="cce_01_0320__p7981172710104">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0320__row99818271102"><td class="cellrowborder" valign="top" width="38.24%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0320__p2151921153117">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0320__p345291413122">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.85%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0320__p119811427161017">Name of the pod to be created.</p>
-</td>
-</tr>
-<tr id="cce_01_0320__row15983132715104"><td class="cellrowborder" valign="top" width="38.24%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0320__p8151102118311">spec.template.spec.containers.volumeMounts</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0320__p18404174281219">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.85%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0320__p2098372713107">Mount path in the container. In this example, the mount path is <strong id="cce_01_0320__b182281037193614">/tmp</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0320__row188911550183213"><td class="cellrowborder" valign="top" width="38.24%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_01_0320__p425991613812">spec.template.spec.volumes.persistentVolumeClaim</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_01_0320__p14319143031212">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.85%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_01_0320__p18319530131211">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0320__note12103218191612"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0320__p21046188168"><strong id="cce_01_0320__b914564712363">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0320__b9146124718366">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-<p id="cce_01_0320__p86373162018">Example of mounting an SFS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
-<div class="p" id="cce_01_0320__p143661739115910"><strong id="cce_01_0320__b1860119615373">Example YAML:</strong><pre class="screen" id="cce_01_0320__screen558619452187">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  <span style="color:#FF0000;">name: deploy-sfs-nfs-rw-in</span>
-  namespace: default
-  labels:
-    appgroup: ''
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: deploy-sfs-nfs-rw-in
-  template:
-    metadata:
-      labels:
-        app: deploy-sfs-nfs-rw-in
-    spec:
-      containers:
-        - name: container-0
-          <span style="color:#FF0000;">image: 'nginx:1.12-alpine-perl'</span>
-          volumeMounts:
-            - name: bs-nfs-rw-mountoptionpvc
-              <span style="color:#FF0000;">mountPath: /aaa</span>
-      imagePullSecrets:
-        - name: default-secret
-  volumeClaimTemplates:
-    - metadata:
-        name: bs-nfs-rw-mountoptionpvc
-        annotations:
-          volume.beta.kubernetes.io/storage-class: nfs-rw
-          volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxinfs
-      spec:
-        accessModes:
-          - ReadWriteMany
-        resources:
-          requests:
-            storage: 1Gi
-<span style="color:#FF0000;">  serviceName: wwww</span></pre>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0320__table14312339123018" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0320__row8312153953015"><th align="left" class="cellrowborder" valign="top" width="30.45%" id="mcps1.3.4.2.2.2.8.2.4.1.1"><p id="cce_01_0320__p1237415107350">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="18.04%" id="mcps1.3.4.2.2.2.8.2.4.1.2"><p id="cce_01_0320__p11312143923015">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="51.51%" id="mcps1.3.4.2.2.2.8.2.4.1.3"><p id="cce_01_0320__p13313153914304">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0320__row1031311395306"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.4.2.2.2.8.2.4.1.1 "><p id="cce_01_0320__p137431017353">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.4.2.2.2.8.2.4.1.2 "><p id="cce_01_0320__p10313203914303">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.4.2.2.2.8.2.4.1.3 "><p id="cce_01_0320__p2313133916301">Name of the created workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0320__row731393993011"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.4.2.2.2.8.2.4.1.1 "><p id="cce_01_0320__p237441033513">spec.template.spec.containers</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.4.2.2.2.8.2.4.1.2 "><p id="cce_01_0320__p143141539123014">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.4.2.2.2.8.2.4.1.3 "><p id="cce_01_0320__p1231423983016">Image of the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0320__row33147398308"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.4.2.2.2.8.2.4.1.1 "><p id="cce_01_0320__p1237431018356">spec.template.spec.containers.volumeMount</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.4.2.2.2.8.2.4.1.2 "><p id="cce_01_0320__p18314439163011">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.4.2.2.2.8.2.4.1.3 "><p id="cce_01_0320__p20314183973011">Mount path in the container. In this example, the mount path is <strong id="cce_01_0320__b2560144213620">/tmp</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0320__row931415398304"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.4.2.2.2.8.2.4.1.1 "><p id="cce_01_0320__p13374111053511">spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.4.2.2.2.8.2.4.1.2 "><p id="cce_01_0320__p1731415391302">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.4.2.2.2.8.2.4.1.3 "><p id="cce_01_0320__p163146397302">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0320__note8995165343018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0320__p13997953163015"><strong id="cce_01_0320__b1946819260378">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0320__b12468112619373">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0320__li26411440172111"><span>Run the following command to create the pod:</span><p><p id="cce_01_0320__p1948187803"><strong id="cce_01_0320__b106417253131">kubectl create -f sfs-deployment-example.yaml</strong></p>
-<p id="cce_01_0320__p1466112111010">After the creation is complete, log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0320__b492353511371">Resource Management</strong> &gt; <strong id="cce_01_0320__b11929163533714">Storage</strong> &gt; <strong id="cce_01_0320__b193073512379">SFS</strong>. Click the PVC name. On the PVC details page, you can view the binding relationship between SFS and PVC.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0315.html">Using SFS File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0321.html b/docs/cce/umn/cce_01_0321.html
deleted file mode 100644
index f2dfa354..00000000
--- a/docs/cce/umn/cce_01_0321.html
+++ /dev/null
@@ -1,110 +0,0 @@
-<a name="cce_01_0321"></a><a name="cce_01_0321"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an SFS Volume</h1>
-<div id="body0000001113882224"><div class="section" id="cce_01_0321__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0321__p11734132718149">CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).</p>
-</div>
-<div class="section" id="cce_01_0321__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0321__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0321__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0321__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0321__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0321__ol1350515318149"><li id="cce_01_0321__li85058532149"><span>Create an SFS volume by referring to <a href="cce_01_0317.html#cce_01_0317__cce_01_0259_section1191025105819">Creating an SFS Volume</a> and record the volume name.</span></li><li id="cce_01_0321__li7504151211813"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0321__li8612171441813"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_01_0321__b825271183913">sfs-statefulset-example</strong>.<strong id="cce_01_0321__b11253121133914">yaml</strong>.</span><p><p id="cce_01_0321__p13379173818187"><strong id="cce_01_0321__b18379538171814">touch sfs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0321__p3379203871816"><strong id="cce_01_0321__b2037953881811">vi sfs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0321__p9985153518198"><strong id="cce_01_0321__b3857171353913">Example YAML:</strong></p>
-<pre class="screen" id="cce_01_0321__screen1085510415199">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: sfs-statefulset-example
-  namespace: default
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: sfs-statefulset-example
-  serviceName: qwqq
-  template:
-    metadata:
-      annotations:
-        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
-        pod.alpha.kubernetes.io/initialized: "true"
-      labels:
-        app: sfs-statefulset-example
-    spec:
-      affinity: {}
-      containers:
-      - image: nginx:latest
-        name: container-0
-        volumeMounts:
-        - mountPath: /tmp
-          name: pvc-sfs-example
-      imagePullSecrets:
-      - name: default-secret
-      volumes:
-        - name: pvc-sfs-example
-          persistentVolumeClaim:
-            claimName: cce-sfs-demo</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0321__table397913279106" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0321__row119803273101"><th align="left" class="cellrowborder" valign="top" width="35.61%" id="mcps1.3.4.2.3.2.5.2.4.1.1"><p id="cce_01_0321__p711172811283">Parent Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="19.139999999999997%" id="mcps1.3.4.2.3.2.5.2.4.1.2"><p id="cce_01_0321__p12980132717103">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="45.25%" id="mcps1.3.4.2.3.2.5.2.4.1.3"><p id="cce_01_0321__p7981172710104">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0321__row99818271102"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0321__p5111428152813">spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0321__p345291413122">replicas</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0321__p119811427161017">Number of pods.</p>
-</td>
-</tr>
-<tr id="cce_01_0321__row14981102761010"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0321__p01172810283">metadata</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0321__p1258410114111">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0321__p14983152711100">Name of the created workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0321__row15983132715104"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0321__p111110287288">spec.template.spec.containers</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0321__p18404174281219">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0321__p2098372713107">Image used by the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0321__row17983427181013"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0321__p211182811286">spec.template.spec.containers.volumeMounts</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0321__p383919212135">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0321__p3983142712105">Mount path in the container.</p>
-</td>
-</tr>
-<tr id="cce_01_0321__row17159179171318"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0321__p1011102862812">spec</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0321__p6104899138">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0321__p1210449101314">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0321__row51546961311"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_01_0321__p711728102820">spec.template.spec.volumes.persistentVolumeClaim</p>
-</td>
-<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_01_0321__p246811218141">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_01_0321__p14105139131316">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0321__note125211056181112"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0321__p75234567113"><strong id="cce_01_0321__b49091443103918">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0321__b0910164314394">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0321__li623417282317"><span>Create the StatefulSet.</span><p><p id="cce_01_0321__p423410219232"><strong id="cce_01_0321__b18234142162314">kubectl create -f  sfs-statefulset-example .yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0315.html">Using SFS File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0323.html b/docs/cce/umn/cce_01_0323.html
deleted file mode 100644
index 43903118..00000000
--- a/docs/cce/umn/cce_01_0323.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="cce_01_0323"></a><a name="cce_01_0323"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body8662426"><p id="cce_01_0323__en-us_topic_0276664220_p178793583820">CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud workloads, data analysis, content analysis, and hotspot objects.</p>
-<div class="fignone" id="cce_01_0323__en-us_topic_0276664220_fig93521319153910"><span class="figcap"><b>Figure 1 </b>Mounting OBS volumes to CCE</span><br><span><img id="cce_01_0323__en-us_topic_0276664220_image3353111953912" src="en-us_image_0276664570.png"></span></div>
-<div class="section" id="cce_01_0323__en-us_topic_0276664220_section1432613347151"><h4 class="sectiontitle">Storage Class</h4><p id="cce_01_0323__en-us_topic_0276664220_p855403534318">Object storage offers three storage classes, Standard, Infrequent Access, and Archive, to satisfy different requirements for storage performance and costs.</p>
-<ul id="cce_01_0323__en-us_topic_0276664220_ul473211719441"><li id="cce_01_0323__en-us_topic_0276664220_li117324720445">The Standard storage class features low access latency and high throughput. It is therefore applicable to storing a large number of hot files (frequently accessed every month) or small files (less than 1 MB). The application scenarios include big data analytics, mobile apps, hot videos, and picture processing on social media.</li><li id="cce_01_0323__en-us_topic_0276664220_li4732372445">The Infrequent Access storage class is ideal for storing data that is semi-frequently accessed (less than 12 times a year), with requirements for quick response. The application scenarios include file synchronization or sharing, and enterprise-level backup. It provides the same durability, access latency, and throughput as the Standard storage class but at a lower cost. However, the Infrequent Access storage class has lower availability than the Standard storage class.</li><li id="cce_01_0323__en-us_topic_0276664220_li473213711447">The Archive storage class is suitable for archiving data that is rarely-accessed (averagely once a year). The application scenarios include data archiving and long-term data backup. The Archive storage class is secure and durable at an affordable low cost, which can be used to replace tape libraries. However, it may take hours to restore data from the Archive storage class.</li></ul>
-</div>
-<div class="section" id="cce_01_0323__en-us_topic_0276664220_section85026235402"><h4 class="sectiontitle">Description</h4><ul id="cce_01_0323__en-us_topic_0276664220_ul697743174018"><li id="cce_01_0323__en-us_topic_0276664220_li99713432401"><strong id="cce_01_0323__en-us_topic_0276664220_b11419132141019">Standard APIs</strong>: With HTTP RESTful APIs, OBS allows you to use client tools or third-party tools to access object storage.</li><li id="cce_01_0323__en-us_topic_0276664220_li49718432400"><strong id="cce_01_0323__en-us_topic_0276664220_b752713419104">Data sharing</strong>: Servers, embedded devices, and IoT devices can use the same path to access shared object data in OBS.</li><li id="cce_01_0323__en-us_topic_0276664220_li8975439402"><strong id="cce_01_0323__en-us_topic_0276664220_b12721146101015">Public/Private networks</strong>: OBS allows data to be accessed from public networks to meet Internet application requirements.</li><li id="cce_01_0323__en-us_topic_0276664220_li169784314401"><strong id="cce_01_0323__en-us_topic_0276664220_b732916100119">Capacity and performance</strong>: No capacity limit; high performance (read/write I/O latency within 10 ms).</li><li id="cce_01_0323__en-us_topic_0276664220_li1897134317406"><strong id="cce_01_0323__en-us_topic_0276664220_b163313219165">Use cases</strong>: Deployments/StatefulSets in the ReadOnlyMany mode and jobs created for big data analysis, static website hosting, online video on demand (VoD), gene sequencing, intelligent video surveillance, backup and archiving, and enterprise cloud boxes (web disks). You can create object storage by using the OBS console, tools, and SDKs.</li></ul>
-</div>
-<div class="section" id="cce_01_0323__en-us_topic_0276664220_section79144061410"><h4 class="sectiontitle">Reference</h4><p id="cce_01_0323__en-us_topic_0276664220_p16231018183117">CCE clusters can also be mounted with OBS buckets of third-party tenants, including OBS parallel file systems (preferred) and OBS object buckets.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0322.html">Using OBS Buckets as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0324.html b/docs/cce/umn/cce_01_0324.html
deleted file mode 100644
index 03ad5eec..00000000
--- a/docs/cce/umn/cce_01_0324.html
+++ /dev/null
@@ -1,144 +0,0 @@
-<a name="cce_01_0324"></a><a name="cce_01_0324"></a>
-
-<h1 class="topictitle1">Using OBS Volumes</h1>
-<div id="body0000001160562125"><div class="section" id="cce_01_0324__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0324__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0324__section5807185714121"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0324__ul117135591912"><li id="cce_01_0324__li671312521915">CCE clusters of v1.7.3-r8 and earlier do not support OBS volumes. You need to upgrade these clusters or create clusters of a later version that supports OBS.</li><li id="cce_01_0324__li147138531910">Volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li><li id="cce_01_0324__li10941827185918">The following operations apply to clusters of Kubernetes 1.13 or earlier.</li></ul>
-</div>
-<div class="section" id="cce_01_0324__section14271608324"><a name="cce_01_0324__section14271608324"></a><a name="section14271608324"></a><h4 class="sectiontitle">Preparations</h4><p id="cce_01_0324__cce_01_0265_p1766967193214">To mount reliable and stable OBS buckets as volumes, you must create AK/SK before you create OBS buckets.</p>
-<p id="cce_01_0324__cce_01_0265_p1600185183819">The procedure for configuring the AK/SK is as follows:</p>
-<ol id="cce_01_0324__cce_01_0265_ol12736055133713"><li id="cce_01_0324__cce_01_0265_li1773685573712">Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0324__cce_01_0265_b1415653954720">Resource Management</strong> &gt; <strong id="cce_01_0324__cce_01_0265_b15157183919473">Storage</strong>.</li><li id="cce_01_0324__cce_01_0265_li1173711554370">On the <strong id="cce_01_0324__cce_01_0265_b202174375528">OBS</strong> tab page, click <strong id="cce_01_0324__cce_01_0265_b20225637155214">AK/SK</strong> in the notice.<div class="fignone" id="cce_01_0324__cce_01_0265_fig1616314111256"><span class="figcap"><b>Figure 1 </b>Configuring the AK/SK</span><br><span><img id="cce_01_0324__cce_01_0265_image183618192418" src="en-us_image_0000001190538605.png"></span></div>
-</li><li id="cce_01_0324__cce_01_0265_li153291758104919">Click <span><img id="cce_01_0324__cce_01_0265_image717411811356" src="en-us_image_0000001088110417.png"></span>, select a key file, and click <strong id="cce_01_0324__cce_01_0265_b5178161814358">Upload</strong> to upload the key file.</li><li id="cce_01_0324__cce_01_0265_li193181124535">Select the corresponding workload and click <strong id="cce_01_0324__cce_01_0265_b17516587910">Restart</strong>.</li></ol>
-<div class="notice" id="cce_01_0324__cce_01_0265_note1853562913389"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0324__cce_01_0265_p6698115821115">When creating an OBS volume, you must use the AK/SK. If the key file is not uploaded, the pod will fail to be started or OBS data access will be abnormal due to the volume mounting failure.</p>
-</div></div>
-</div>
-<div class="section" id="cce_01_0324__section172788131291"><a name="cce_01_0324__section172788131291"></a><a name="section172788131291"></a><h4 class="sectiontitle">Creating an OBS Volume</h4><ol id="cce_01_0324__ol118398397451"><li id="cce_01_0324__li1272293210174"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0324__b43481842124011">Resource Management</strong> &gt; <strong id="cce_01_0324__b143481342144011">Storage</strong>.</span></li><li id="cce_01_0324__li192420116348"><span>Click the <strong id="cce_01_0324__b1074314271101">OBS</strong> tab and click <strong id="cce_01_0324__b167441427402">Create OBS Bucket</strong>.</span></li><li id="cce_01_0324__li237312562352"><span>Configure basic information, as shown in <a href="#cce_01_0324__table20328123218464">Table 1</a>. </span><p>
-<div class="tablenoborder"><a name="cce_01_0324__table20328123218464"></a><a name="table20328123218464"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0324__table20328123218464" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating an OBS volume</caption><thead align="left"><tr id="cce_01_0324__row533073264618"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.4.2.3.2.1.2.3.1.1"><p id="cce_01_0324__p12330932164617">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.4.2.3.2.1.2.3.1.2"><p id="cce_01_0324__p133306326467">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0324__row0330113224615"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0324__p18330232154618">* PVC Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0324__p376419205498">Name of the new PVC, which is different from the volume name. The actual volume name is automatically generated when the PV is created by the PVC.</p>
-<p id="cce_01_0324__p1963791814146">The name contains 3 to 55 characters (excluding the prefix). It must contain lowercase letters, digits, and hyphens (-), and cannot start or end with a hyphen (-).</p>
-</td>
-</tr>
-<tr id="cce_01_0324__row1679320313206"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0324__p20794143102020">Cluster Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0324__p18795532202">Cluster to which the OBS volume belongs.</p>
-</td>
-</tr>
-<tr id="cce_01_0324__row1831531302018"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0324__p9315313132012">Namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0324__p103151213162015">Namespace to which the volume belongs. The default value is <strong id="cce_01_0324__b10626175717332">default</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0324__row062985115140"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0324__p26291351111418">Instance Type</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0324__p2630135117141">Type of the storage instance created on OBS.</p>
-<ul id="cce_01_0324__ul6442121841620"><li id="cce_01_0324__li1215112402199"><strong id="cce_01_0324__b2019415884710">Parallel file system</strong>: supported when the cluster version is 1.15 or later and the everest add-on version is 1.0.2 or later. </li><li id="cce_01_0324__li2443121811612"><strong id="cce_01_0324__b1079318215370">Object bucket</strong>: A bucket is a container for storing objects in OBS. OBS provides flat storage in the form of buckets and objects. Unlike the conventional multi-layer directory structure of file systems, all objects in a bucket are stored at the same logical layer. </li></ul>
-</td>
-</tr>
-<tr id="cce_01_0324__row20242958195514"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0324__p20635941181513">Storage Class</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0324__p1031415221614">This parameter is displayed when you select <strong id="cce_01_0324__b20274329193716">Object bucket</strong> for <strong id="cce_01_0324__b0274729113715">Instance Type</strong>.</p>
-<p style="color:#3F3F3F;" id="cce_01_0324__p30952037173155">This parameter indicates the storage classes supported by OBS.</p>
-<ul id="cce_01_0324__ul43583460173158"><li id="cce_01_0324__li55534600173158"><strong style="color:#3F3F3F;" id="cce_01_0324__b13861048123715">Standard</strong><span style="color:#3F3F3F;">: applicable to scenarios where a large number of hotspot files or small-sized files need to be accessed frequently (multiple times per month on average) and require fast access response.</span></li><li id="cce_01_0324__li4115988717327"><strong id="cce_01_0324__b191775043719">Infrequent access</strong>: applicable to scenarios where data is not frequently accessed (less than 12 times per year on average) but requires fast access response.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0324__row1233003234610"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p style="color:#3F3F3F;" id="cce_01_0324__p833073234615">Storage Policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p style="color:#3F3F3F;" id="cce_01_0324__p20906622172911">Object storage has the following policies:</p>
-<p id="cce_01_0324__p5264032173524"><strong id="cce_01_0324__b12667103619388">Private</strong>: Only the bucket owner has full control over the bucket. Unauthorized users do not have permissions to access the bucket.</p>
-</td>
-</tr>
-<tr id="cce_01_0324__row11501316111314"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_01_0324__p112371055298">Access Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_01_0324__p3231132814432">Access permissions of user applications on storage resources (PVs).</p>
-<ul id="cce_01_0324__ul9888144214446"><li id="cce_01_0324__cce_01_0265_li138886427446"><strong id="cce_01_0324__cce_01_0265_b19764144611352">ReadWriteMany</strong> (RWX): The volume is mounted as read-write by multiple nodes.</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0324__li2944171214235"><span>Click <strong id="cce_01_0324__b471185110397">Create</strong>. </span><p><p id="cce_01_0324__p1365755165519">After the OBS volume is successfully created, it is displayed in the OBS volume list. Click the PVC name to view detailed information about the OBS volume.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0324__section152804130911"><h4 class="sectiontitle">Adding an OBS Volume</h4><ol id="cce_01_0324__ol147961048145416"><li id="cce_01_0324__li53652056152818"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, <a href="cce_01_0216.html">Creating a DaemonSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. After you have added a container, choose <strong id="cce_01_0324__b84267155406">Data Storage</strong> &gt; <strong id="cce_01_0324__b13426131524020">Cloud Volume</strong>, and then click <strong id="cce_01_0324__b11427141520407">Add Cloud Volume</strong>.</span></li><li id="cce_01_0324__li174061024145712"><span>Set <strong id="cce_01_0324__b967552134018">Type</strong> to <strong id="cce_01_0324__b467514217400">OBS</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0324__table92361828184111" frame="border" border="1" rules="all"><caption><b>Table 2 </b>OBS volume parameters</caption><thead align="left"><tr id="cce_01_0324__row1123032804112"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.5.2.2.2.1.2.3.1.1"><p id="cce_01_0324__p172302282414">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79%" id="mcps1.3.5.2.2.2.1.2.3.1.2"><p id="cce_01_0324__p3230828194110">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0324__row5231428164112"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0324__p1823022810419"><strong id="cce_01_0324__b59961346194020">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0324__p74221416164218">Select <strong id="cce_01_0324__b54673481403">OBS</strong>.</p>
-<p id="cce_01_0324__p7613837185517"><strong id="cce_01_0324__b1286013507403">OBS</strong>: Standard and Infrequent Access OBS buckets are supported. OBS buckets are commonly used for big data analytics, cloud native applications, static website hosting, and backup/active archiving.</p>
-</td>
-</tr>
-<tr id="cce_01_0324__row123122810414"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.5.2.2.2.1.2.3.1.1 mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0324__p11231112813414"><strong id="cce_01_0324__b15424194512411">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0324__row02321728174113"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0324__p11231528124119">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0324__p323192813419"><strong id="cce_01_0324__b1637622313432">Name</strong>: Select a created OBS volume.</p>
-<p id="cce_01_0324__p1985188124412"><strong id="cce_01_0324__b1037202724310">Sub-Type</strong>: class of the selected volume. The value can be <strong id="cce_01_0324__b193762764317">Standard</strong> or <strong id="cce_01_0324__b103782774319">Infrequent access</strong>, and you do not need to set this parameter. </p>
-</td>
-</tr>
-<tr id="cce_01_0324__row1383163416508"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0324__p17832113415502">Automatic</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0324__p7183151125111">Type of the storage instance created on OBS.</p>
-<ul id="cce_01_0324__ul1518310119519"><li id="cce_01_0324__li3183411195113"><strong id="cce_01_0324__b14307583363">Parallel file system</strong>: supported when the cluster version is 1.15 or later and the everest add-on version is 1.0.2 or later. </li><li id="cce_01_0324__li8184611125111"><strong id="cce_01_0324__b15481654377">Object bucket</strong>: A bucket is a container for storing objects in OBS. <p id="cce_01_0324__p18709722614"><strong id="cce_01_0324__b151001594410">Sub-Type</strong>: Select <strong id="cce_01_0324__b171001459441">Standard</strong> or <strong id="cce_01_0324__b171014510445">Infrequent access</strong>.</p>
-</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0324__row102359282414"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.5.2.2.2.1.2.3.1.1 "><p id="cce_01_0324__p823452811412">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="79%" headers="mcps1.3.5.2.2.2.1.2.3.1.2 "><p id="cce_01_0324__p4174161519591">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0324__ol1295716261782"><li id="cce_01_0324__li051415055316"><strong id="cce_01_0324__b24567115447">Container Path</strong>: Enter the mount path in the container, for example, <strong id="cce_01_0324__b1845610115440">/tmp</strong>.<div class="p" id="cce_01_0324__p45501641058">The mount path must not be a system directory, such as <strong id="cce_01_0324__b37151113174415">/</strong> and <strong id="cce_01_0324__b471519139444">/var/run</strong>. Otherwise, an exception occurs. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0324__note8564354147"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0324__p85554241956">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0324__li651460145315">Set permissions.<ul id="cce_01_0324__ul1651480165315"><li id="cce_01_0324__li65147025319"><strong id="cce_01_0324__b12379424204417">Read-only</strong>: You can only read the data in the mounted volumes.</li><li id="cce_01_0324__li195143016539"><strong id="cce_01_0324__b1564022515449">Read/Write</strong>: You can modify the data in the mounted volumes. Newly written data is not migrated if the container is migrated, which causes a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0324__p165839491213">Click <strong id="cce_01_0324__b18949926144413">Add Container Path</strong> to add multiple settings. Then, click <strong id="cce_01_0324__b10950102684412">OK</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0324__li5223133901318"><span>Click <strong id="cce_01_0324__b853811293443">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0324__section1528121319910"><h4 class="sectiontitle">Importing an OBS Volume</h4><p id="cce_01_0324__p1695173122017">CCE allows you to import existing OBS volumes.</p>
-<ol id="cce_01_0324__ol259913992018"><li id="cce_01_0324__li1559818982015"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0324__b12984562421">Resource Management</strong> &gt; <strong id="cce_01_0324__b2985146104216">Storage</strong>. On the <strong id="cce_01_0324__b14985467425">OBS</strong> tab page, click <strong id="cce_01_0324__b69869611421">Import</strong>.</span></li><li id="cce_01_0324__li35981999201"><span>Select one or more OBS volumes that you want to import.</span></li><li id="cce_01_0324__li18598997209"><span>Select the target cluster and namespace.</span></li><li id="cce_01_0324__li145991796207"><span>Click <strong id="cce_01_0324__b14974172984420">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0324__section0281121315919"><h4 class="sectiontitle">Unbinding an OBS Volume</h4><p id="cce_01_0324__p11951344655">When an OBS volume is successfully created, the OBS volume is automatically bound to the current cluster. Other clusters can also use the OBS volume. When the volume is unbound from the cluster, other clusters can still use the volume.</p>
-<p id="cce_01_0324__p148310441455">If the volume has been mounted to a workload, the volume cannot be unbound from the cluster.</p>
-<ol id="cce_01_0324__ol158694417511"><li id="cce_01_0324__li5888441852"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0324__b1779921374212">Resource Management</strong> &gt; <strong id="cce_01_0324__b8809111314423">Storage</strong>. In the OBS volume list, click <strong id="cce_01_0324__b380917138423">Unbind</strong> next to the target OBS volume.</span></li><li id="cce_01_0324__li149034413520"><span>In the dialog box displayed, click <strong id="cce_01_0324__b161551919458">Yes</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0324__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_01_0324__p373851811418">After an OBS volume is created, you can perform the operation described in <a href="#cce_01_0324__table1619535674020">Table 3</a>.
-<div class="tablenoborder"><a name="cce_01_0324__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0324__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Other operations</caption><thead align="left"><tr id="cce_01_0324__row172352321036"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.8.2.2.2.3.1.1"><p id="cce_01_0324__p1423523214310">Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.8.2.2.2.3.1.2"><p id="cce_01_0324__p20235132536">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0324__row182356329317"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.8.2.2.2.3.1.1 "><p id="cce_01_0324__p723583214310">Deleting an OBS volume</p>
-</td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.8.2.2.2.3.1.2 "><ol id="cce_01_0324__ol15235932439"><li id="cce_01_0324__li122351932038">Select the OBS volume to be deleted and click <strong id="cce_01_0324__b152366452468">Delete</strong> in the <strong id="cce_01_0324__b1123613457468">Operation</strong> column. </li><li id="cce_01_0324__li16235123212315">Follow the prompts to delete the volume.</li></ol>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0322.html">Using OBS Buckets as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0325.html b/docs/cce/umn/cce_01_0325.html
deleted file mode 100644
index d3b48fa4..00000000
--- a/docs/cce/umn/cce_01_0325.html
+++ /dev/null
@@ -1,66 +0,0 @@
-<a name="cce_01_0325"></a><a name="cce_01_0325"></a>
-
-<h1 class="topictitle1">(kubectl) Automatically Creating an OBS Volume</h1>
-<div id="body0000001113882226"><div class="section" id="cce_01_0325__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0325__p144041821719">During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, which correspond to <strong id="cce_01_0325__b11119257183915">obs-standard</strong> and <strong id="cce_01_0325__b811985718395">obs-standard-ia</strong>, respectively.</p>
-</div>
-<div class="section" id="cce_01_0325__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0325__ul196121354147"><li id="cce_01_0325__li156127541248">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</li><li id="cce_01_0325__li8435203861318">The AK/SK has been uploaded. For details, see <a href="cce_01_0324.html#cce_01_0324__section14271608324">Preparations</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0325__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0325__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0325__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0325__ol141112211118"><li id="cce_01_0325__li128662616503"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0325__li840720210114"><span>Run the following commands to configure the <strong id="cce_01_0325__b10123151994019">pvc-obs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_01_0325__p1040552117118"><strong id="cce_01_0325__b1140517211618">touch pvc-obs-auto-example.yaml</strong></p>
-<p id="cce_01_0325__p1640515212119"><strong id="cce_01_0325__b184051421619">vi pvc-obs-auto-example.yaml</strong></p>
-<p id="cce_01_0325__p18405102120120"><strong id="cce_01_0325__b6797112716402">Example YAML:</strong></p>
-<pre class="screen" id="cce_01_0325__screen164061219112">apiVersion: v1 
-kind: PersistentVolumeClaim 
-metadata: 
-  annotations: 
-    volume.beta.kubernetes.io/storage-class: <span style="color:#FF0001;">obs-standard</span>  # OBS bucket type. The value can be <strong id="cce_01_0325__b81602031194015">obs-standard</strong> (standard) or <strong id="cce_01_0325__b916610314403">obs-standard-ia</strong> (infrequent access).
-  <span style="color:#FF0001;">name: pvc-obs-auto-example</span>  # PVC name
-  namespace: default 
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  resources: 
-    requests: 
-      <span style="color:#FF0001;">storage: 1Gi</span>   # Storage capacity in the unit of Gi. For OBS buckets, this parameter is used only for verification (fixed to 1, cannot be empty or 0). Any value you set does not take effect for OBS buckets.</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0325__table1897325023619" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0325__row2973195019365"><th align="left" class="cellrowborder" valign="top" width="35.809999999999995%" id="mcps1.3.4.2.2.2.5.2.3.1.1"><p id="cce_01_0325__p1973155063611">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="64.19%" id="mcps1.3.4.2.2.2.5.2.3.1.2"><p id="cce_01_0325__p139741150123614">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0325__row3974350153618"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0325__p2974155083619">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0325__p1497425012362">Bucket type. Currently, <strong id="cce_01_0325__b13573114910441">obs-standard</strong> and <strong id="cce_01_0325__b201555314448">obs-standard-ia</strong> are supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0325__row2974950133612"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0325__p1497565093618">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0325__p1975145003618">Name of the PVC to be created.</p>
-</td>
-</tr>
-<tr id="cce_01_0325__row12975850123614"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0325__p17975150193613">accessModes</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0325__p10975150173615">Only <strong id="cce_01_0325__b156114844517">ReadWriteMany</strong> is supported. <strong id="cce_01_0325__b18561108174513">ReadWriteOnly</strong> is not supported.</p>
-</td>
-</tr>
-<tr id="cce_01_0325__row169751506362"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0325__p109751750123619">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0325__p119761450113614">Storage capacity in the unit of Gi. For OBS buckets, this field is used only for verification (cannot be empty or 0). Its value is fixed at <strong id="cce_01_0325__b2093561284510">1</strong>, and any value you set does not take effect for OBS buckets. </p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0325__li540817214118"><span>Run the following command to create the PVC.</span><p><p id="cce_01_0325__p6992011944"><b><span class="cmdname" id="cce_01_0325__cmdname11735142416412">kubectl create -f pvc-obs-auto-example.yaml</span></b></p>
-<p id="cce_01_0325__p184723116418">After the command is executed, an OBS bucket is created in the VPC to which the cluster belongs. You can click the bucket name in <strong id="cce_01_0325__b22255119375">Storage</strong> &gt; <strong id="cce_01_0325__b19231131193711">OBS</strong> to view the bucket or view it on the OBS console.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0322.html">Using OBS Buckets as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0326.html b/docs/cce/umn/cce_01_0326.html
deleted file mode 100644
index 57f78493..00000000
--- a/docs/cce/umn/cce_01_0326.html
+++ /dev/null
@@ -1,291 +0,0 @@
-<a name="cce_01_0326"></a><a name="cce_01_0326"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a PV from an Existing OBS Bucket</h1>
-<div id="body0000001113722330"><div class="section" id="cce_01_0326__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0326__p0191112112620">CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.</p>
-</div>
-<div class="section" id="cce_01_0326__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0326__cce_01_0325_ul196121354147"><li id="cce_01_0326__cce_01_0325_li156127541248">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</li><li id="cce_01_0326__cce_01_0325_li8435203861318">The AK/SK has been uploaded. For details, see <a href="cce_01_0324.html#cce_01_0324__section14271608324">Preparations</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0326__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0326__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0326__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0326__ol195789327269"><li id="cce_01_0326__li1757810328267"><span>Log in to the OBS console, create an OBS bucket, and record the bucket name and storage class.</span></li><li id="cce_01_0326__li1225213417279"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0326__li147207192281"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_01_0326__b1272522465">pv-obs-example.yaml</strong> and <strong id="cce_01_0326__b13719529462">pvc-obs-example.yaml</strong>.</span><p><p id="cce_01_0326__p171322115295"><strong id="cce_01_0326__b213211152911">touch pv-obs-example.yaml</strong> <strong id="cce_01_0326__b15874182919519">pvc-obs-example.yaml</strong></p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0326__table184303411324" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0326__row104311415322"><th align="left" class="cellrowborder" valign="top" width="33.2033203320332%" id="mcps1.3.4.2.3.2.2.1.4.1.1"><p id="cce_01_0326__p443118443220">Kubernetes Version</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="35.34353435343534%" id="mcps1.3.4.2.3.2.2.1.4.1.2"><p id="cce_01_0326__p1431154113212">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="31.453145314531454%" id="mcps1.3.4.2.3.2.2.1.4.1.3"><p id="cce_01_0326__p14311346322">YAML Example</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0326__row543118415321"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.4.2.3.2.2.1.4.1.1 "><p id="cce_01_0326__p1743111463216">1.11 ≤ K8s version ≤ 1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.4.2.3.2.2.1.4.1.2 "><p id="cce_01_0326__p743119413320">Clusters from v1.11 to v1.13</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.4.2.3.2.2.1.4.1.3 "><p id="cce_01_0326__p13431246327"><a href="#cce_01_0326__li45671840132016">Example YAML</a></p>
-</td>
-</tr>
-<tr id="cce_01_0326__row72981940163417"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.4.2.3.2.2.1.4.1.1 "><p id="cce_01_0326__p9298154043420">K8s version = 1.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.4.2.3.2.2.1.4.1.2 "><p id="cce_01_0326__p1729814407349">Clusters of v1.9</p>
-</td>
-<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.4.2.3.2.2.1.4.1.3 "><p id="cce_01_0326__p529834014349"><a href="#cce_01_0326__li154036581589">Example YAML</a></p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0326__p10842183795616"><strong id="cce_01_0326__b11124618144718">Clusters from v1.11 to v1.13</strong></p>
-<ul id="cce_01_0326__ul64775085512"><li id="cce_01_0326__li45671840132016"><a name="cce_01_0326__li45671840132016"></a><a name="li45671840132016"></a><strong id="cce_01_0326__b362732044717">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0326__screen16987121761917">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  name: pv-obs-example 
-  annotations:
-    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxiobs
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  capacity: 
-    storage: 1Gi 
-  claimRef:
-    apiVersion: v1
-    kind: PersistentVolumeClaim
-    name: pvc-obs-example
-    namespace: default
-  flexVolume: 
-    driver: huawei.com/fuxiobs 
-    fsType: obs 
-    options: 
-      fsType: obs 
-      region: <span id="cce_01_0326__text286811385519">eu-de</span>
-      storage_class: STANDARD 
-      volumeID: <span style="color:#FF0000;">test-obs</span> 
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: obs-standard</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0326__table832713405430" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0326__row53276406434"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.4.1.3.2.3.1.1"><p id="cce_01_0326__p15327134014433">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.4.1.3.2.3.1.2"><p id="cce_01_0326__p133274408432">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0326__row432714020436"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p13328540134319">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p1032814074320">Storage driver used to mount the volume. Set the driver to <strong id="cce_01_0326__b078094144718">huawei.com/fuxiobs</strong> for the OBS volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row132834014431"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p13979181319442">storage_class</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p83281740134319">Storage class, including <strong id="cce_01_0326__b19261114104814">STANDARD</strong> (standard bucket) and <strong id="cce_01_0326__b1326215444816">STANDARD_IA</strong> (infrequent access bucket).</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row1332819409437"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p997612588441">region</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p1328940164315">For details about the value of <strong id="cce_01_0326__en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row5328440194311"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p143286409433">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p1676410385454">OBS bucket name.</p>
-<p id="cce_01_0326__p35271835134519">To obtain the name, log in to the CCE console, choose <strong id="cce_01_0326__b17418352143715">Resource Management</strong> &gt; <strong id="cce_01_0326__b642419529378">Storage</strong>, click the PVC name in the <strong id="cce_01_0326__b9425135211379">OBS</strong> tab page, and copy the PV name on the <strong id="cce_01_0326__b5425115233712">PV Details</strong> tab page.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row203291940144319"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p4330114084310">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p183313401430">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_01_0326__b974818517487">1Gi</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row833154011434"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p8331174074312">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p1733111407435">Storage class supported by OBS, including <strong id="cce_01_0326__b1727512412492">obs-standard</strong> (standard bucket) and <strong id="cce_01_0326__b728162416490">obs-standard-ia</strong> (infrequent access bucket).</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row211494345516"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p20114194315517">spec.claimRef.apiVersion</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p1211412438557">The value is fixed at <strong id="cce_01_0326__b11576184112499">v1</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row16358204720552"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p123581247115512">spec.claimRef.kind</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p3358647155515">The value is fixed at <strong id="cce_01_0326__b105031148114919">PersistentVolumeClaim</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row149212505557"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p13921250125513">spec.claimRef.name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p13921195013554">The value is the same as the name of the PVC created in the next step.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row38145495515"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.1 "><p id="cce_01_0326__p168205418552">spec.claimRef.namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.4.1.3.2.3.1.2 "><p id="cce_01_0326__p1821854205512">The value is the same as the namespace of the PVC created in the next step.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0326__li1617832212268"><strong id="cce_01_0326__b5590172135011">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0326__screen12104142412269">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-    volume.beta.kubernetes.io/storage-class: obs-standard
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiobs
-  name: pvc-obs-example
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 1Gi
-  volumeName: pv-obs-example</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0326__table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0326__row1425005815020"><th align="left" class="cellrowborder" valign="top" width="37.36%" id="mcps1.3.4.2.3.2.4.2.3.2.3.1.1"><p id="cce_01_0326__p1525045817501">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="62.63999999999999%" id="mcps1.3.4.2.3.2.4.2.3.2.3.1.2"><p id="cce_01_0326__p162501858165014">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0326__row725065865014"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0326__p152504582506">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0326__p1425185812509">Storage class supported by OBS, including <strong id="cce_01_0326__b7441011175015">obs-standard</strong> and <strong id="cce_01_0326__b9441111185010">obs-standard-ia</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row1025175814505"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0326__p1825125813505">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0326__p1825195895012">Must be set to <strong id="cce_01_0326__b10378181712501">flexvolume-huawei.com/fuxiobs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row17251115805017"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0326__p2025185817509">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0326__p9251125875017">Name of the PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row8251165845018"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.1 "><p id="cce_01_0326__p22521858135013">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.4.2.3.2.4.2.3.2.3.1.2 "><p id="cce_01_0326__p1525285819508">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_01_0326__b36562112491">1Gi</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-<p id="cce_01_0326__p1303587582"><strong id="cce_01_0326__b1578620448503">Clusters of v1.9</strong></p>
-<ul id="cce_01_0326__ul194031589581"><li id="cce_01_0326__li154036581589"><a name="cce_01_0326__li154036581589"></a><a name="li154036581589"></a><strong id="cce_01_0326__b53202222477">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0326__screen54001458115811">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  name: pv-obs-example 
-  namespace: default  
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  capacity: 
-    storage: 1Gi 
-  flexVolume: 
-    driver: huawei.com/fuxiobs 
-    fsType: obs 
-    options: 
-      fsType: obs 
-      kubernetes.io/namespace: default 
-      region: <span id="cce_01_0326__text9721123875614">eu-de</span>
-      storage_class: STANDARD 
-      volumeID: <span style="color:#FF0000;">test-obs</span> 
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: obs-standard</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0326__table1940115586588" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0326__row10400145816580"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.6.1.3.2.3.1.1"><p id="cce_01_0326__p1840065885817">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.6.1.3.2.3.1.2"><p id="cce_01_0326__p64001058145818">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0326__row164002584588"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0326__p44009581587">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0326__p740075825813">Storage driver used to mount the volume. Set the driver to <strong id="cce_01_0326__b1751791114819">huawei.com/fuxiobs</strong> for the OBS volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row6400165875813"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0326__p1340075815814">storage_class</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0326__p1840015819589">Storage class, including <strong id="cce_01_0326__b5281171817485">STANDARD</strong> (standard bucket) and <strong id="cce_01_0326__b13281201834811">STANDARD_IA</strong> (infrequent access bucket).</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row7400175895815"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0326__p74008588581">region</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0326__p16400165817587">For details about the value of <strong id="cce_01_0326__cce_01_0326_en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row10401758105816"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0326__p124003586586">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0326__p1401165813584">OBS bucket name.</p>
-<p id="cce_01_0326__p8401155845819">To obtain the name, log in to the CCE console, choose <strong id="cce_01_0326__b73281297384">Resource Management</strong> &gt; <strong id="cce_01_0326__b2334994385">Storage</strong>, click the PVC name in the <strong id="cce_01_0326__b033511914382">OBS</strong> tab page, and copy the PV name on the <strong id="cce_01_0326__b1533517913384">PV Details</strong> tab page.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row1240112584582"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0326__p9401105845814">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0326__p14401145814587">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_01_0326__b48122194911">1Gi</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row5401175812585"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.1 "><p id="cce_01_0326__p1401195816581">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.6.1.3.2.3.1.2 "><p id="cce_01_0326__p164013584586">Storage class supported by OBS, including <strong id="cce_01_0326__b16169193984915">obs-standard</strong> (standard bucket) and <strong id="cce_01_0326__b6170839204911">obs-standard-ia</strong> (infrequent access bucket).</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0326__li947793419597"><strong id="cce_01_0326__b113769425017">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0326__screen740265818588">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-    volume.beta.kubernetes.io/storage-class: obs-standard
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiobs
-  name: pvc-obs-example
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 1Gi
-  volumeName: pv-obs-example
-  volumeNamespace: default</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0326__table19403105818582" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0326__row1140216585581"><th align="left" class="cellrowborder" valign="top" width="36.74%" id="mcps1.3.4.2.3.2.6.2.3.2.3.1.1"><p id="cce_01_0326__p1402658115814">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="63.260000000000005%" id="mcps1.3.4.2.3.2.6.2.3.2.3.1.2"><p id="cce_01_0326__p240210586584">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0326__row040235815582"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0326__p1640212587584">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0326__p240285855820">Storage class supported by OBS, including <strong id="cce_01_0326__b679614136504">obs-standard</strong> and <strong id="cce_01_0326__b157961413145013">obs-standard-ia</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row1040216587588"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0326__p4402125810586">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0326__p440245815818">Must be set to <strong id="cce_01_0326__b1235163645017">flexvolume-huawei.com/fuxiobs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row1640245845818"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0326__p10402175816583">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0326__p14402125817583">Name of the PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0326__row24021658155817"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.1 "><p id="cce_01_0326__p2402125819582">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.4.2.3.2.6.2.3.2.3.1.2 "><p id="cce_01_0326__p44022582583">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_01_0326__b197521114919">1Gi</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-</p></li><li id="cce_01_0326__li06040310295"><span>Create the PV.</span><p><p id="cce_01_0326__p1835711346313"><strong id="cce_01_0326__b15781343031">kubectl create -f pv-obs-example.yaml</strong></p>
-</p></li><li id="cce_01_0326__li186032314517"><span>Create the PVC.</span><p><p id="cce_01_0326__p56019239516"><strong id="cce_01_0326__b57561726455">kubectl create -f pvc-obs-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0322.html">Using OBS Buckets as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0327.html b/docs/cce/umn/cce_01_0327.html
deleted file mode 100644
index 9a4136ac..00000000
--- a/docs/cce/umn/cce_01_0327.html
+++ /dev/null
@@ -1,175 +0,0 @@
-<a name="cce_01_0327"></a><a name="cce_01_0327"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an OBS Volume</h1>
-<div id="body0000001160442137"><div class="section" id="cce_01_0327__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0327__p13415181285914">After an OBS volume is created or imported to CCE, you can mount the volume to a workload.</p>
-</div>
-<div class="section" id="cce_01_0327__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0327__cce_01_0325_ul196121354147"><li id="cce_01_0327__cce_01_0325_li156127541248">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</li><li id="cce_01_0327__cce_01_0325_li8435203861318">The AK/SK has been uploaded. For details, see <a href="cce_01_0324.html#cce_01_0324__section14271608324">Preparations</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0327__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0327__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0327__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0327__ol1367331010214"><li id="cce_01_0327__li19130164216502"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0327__li13722131012216"><span>Run the following commands to configure the <strong id="cce_01_0327__b126172437519">obs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_01_0327__p9724141011211"><strong id="cce_01_0327__b64921215152512">touch obs-deployment-example.yaml</strong></p>
-<p id="cce_01_0327__p19726151015213"><strong id="cce_01_0327__b1762182312513">vi obs-deployment-example.yaml</strong></p>
-<div class="p" id="cce_01_0327__p17621182320411">Example of mounting an OBS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_01_0327__screen117301810128">apiVersion: apps/v1 
-kind: Deployment 
-metadata: 
-  <span style="color:#FF0001;"> name: obs-deployment-example</span>                       # Workload name
-  namespace: default 
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      <span style="color:#FF0001;">app: obs-deployment-example</span> 
-  template: 
-    metadata: 
-      labels: 
-        app: obs-deployment-example 
-    spec: 
-      containers: 
-      - image: nginx 
-        name: container-0 
-        volumeMounts: 
-        - <span style="color:#FF0001;">mountPath: /tmp</span>                       # Mount path
-          name: pvc-obs-example 
-      restartPolicy: Always
-      imagePullSecrets:
-        - name: default-secret
-      volumes: 
-      - name: pvc-obs-example  
-        persistentVolumeClaim: 
-          claimName: <span style="color:#FF0000;">pvc-obs-auto-example</span>       # PVC name</pre>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0327__table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0327__row1425005815020"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.2.2.4.2.3.1.1"><p id="cce_01_0327__p1525045817501">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.2.2.4.2.3.1.2"><p id="cce_01_0327__p162501858165014">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0327__row1025175814505"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.4.2.3.1.1 "><p id="cce_01_0327__p1825125813505">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.4.2.3.1.2 "><p id="cce_01_0327__p1134463635714">Name of the pod to be created.</p>
-</td>
-</tr>
-<tr id="cce_01_0327__row17251115805017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.4.2.3.1.1 "><p id="cce_01_0327__p2025185817509">app</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.4.2.3.1.2 "><p id="cce_01_0327__p9251125875017">Name of the application running in the pod.</p>
-</td>
-</tr>
-<tr id="cce_01_0327__row8251165845018"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.4.2.3.1.1 "><p id="cce_01_0327__p22521858135013">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.4.2.3.1.2 "><p id="cce_01_0327__p1525285819508">Mount path in the container.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0327__note115140415814"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0327__p189467332584"><strong id="cce_01_0327__b84011947182220">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0327__b154021747152216">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-<p id="cce_01_0327__p498895716713">Example of mounting an OBS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
-<div class="p" id="cce_01_0327__p13082281942"><strong id="cce_01_0327__b092173182414">Example YAML:</strong><pre class="screen" id="cce_01_0327__screen1081785719214">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  <span style="color:#FF0000;">name: deploy-obs-standard-in</span>
-  namespace: default
-  generation: 1
-  labels:
-    appgroup: ''
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: deploy-obs-standard-in
-  template:
-    metadata:
-      labels:
-        app: deploy-obs-standard-in
-      annotations:
-        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
-        pod.alpha.kubernetes.io/initialized: 'true'
-    spec:
-      containers:
-        - name: container-0
-          <span style="color:#FF0000;">image: 'nginx:1.12-alpine-perl'</span>
-          env:
-            - name: PAAS_APP_NAME
-              value: deploy-obs-standard-in
-            - name: PAAS_NAMESPACE
-              value: default
-            - name: PAAS_PROJECT_ID
-              value: a2cd8e998dca42e98a41f596c636dbda
-          resources: {}
-          volumeMounts:
-            - name: obs-bs-standard-mountoptionpvc
-              <span style="color:#FF0000;">mountPath: /tmp</span>
-          terminationMessagePath: /dev/termination-log
-          terminationMessagePolicy: File
-          imagePullPolicy: IfNotPresent
-      restartPolicy: Always
-      terminationGracePeriodSeconds: 30
-      dnsPolicy: ClusterFirst
-      securityContext: {}
-      imagePullSecrets:
-        - name: default-secret
-      affinity: {}
-      schedulerName: default-scheduler
-  volumeClaimTemplates:
-    - metadata:
-        name: obs-bs-standard-mountoptionpvc
-        annotations:
-          volume.beta.kubernetes.io/storage-class: obs-standard
-          volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiobs
-      spec:
-        accessModes:
-          - ReadWriteMany
-        resources:
-          requests:
-            storage: 1Gi
-  <span style="color:#FF0000;">serviceName: wwww</span>
-  podManagementPolicy: OrderedReady
-  updateStrategy:
-    type: RollingUpdate
-  revisionHistoryLimit: 10</pre>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0327__table953204119" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0327__row1666206115"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.2.2.8.2.3.1.1"><p id="cce_01_0327__p1662017116">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.2.2.8.2.3.1.2"><p id="cce_01_0327__p56820513">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0327__row1061620713"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.8.2.3.1.1 "><p id="cce_01_0327__p56120115">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.8.2.3.1.2 "><p id="cce_01_0327__p911192017111">Name of the created workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0327__row6115201810"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.8.2.3.1.1 "><p id="cce_01_0327__p1911172013115">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.8.2.3.1.2 "><p id="cce_01_0327__p1812132017111">Image of the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0327__row181217201317"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.8.2.3.1.1 "><p id="cce_01_0327__p2127205115">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.8.2.3.1.2 "><p id="cce_01_0327__p151216208112">Mount path in the container. In this example, the volume is mounted to the <strong id="cce_01_0327__b13813181212517">/tmp</strong> directory.</p>
-</td>
-</tr>
-<tr id="cce_01_0327__row101220201616"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.2.2.8.2.3.1.1 "><p id="cce_01_0327__p4121201717">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.2.2.8.2.3.1.2 "><p id="cce_01_0327__p8126203112">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0327__note9401441116"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0327__p174184413113"><strong id="cce_01_0327__b0273927112510">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0327__b1227342718253">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0327__li877711108215"><span>Run the following command to create the pod:</span><p><p id="cce_01_0327__p7381182911811"><strong id="cce_01_0327__b449410082611">kubectl create -f obs-deployment-example.yaml</strong></p>
-<p id="cce_01_0327__p1479419281286">After the creation is complete, choose <strong id="cce_01_0327__b191017406252">Storage</strong> &gt; <strong id="cce_01_0327__b2161400255">OBS</strong> on the CCE console and click the PVC name. On the PVC details page, you can view the binding relationship between the OBS service and the PVC.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0322.html">Using OBS Buckets as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0328.html b/docs/cce/umn/cce_01_0328.html
deleted file mode 100644
index bba3314d..00000000
--- a/docs/cce/umn/cce_01_0328.html
+++ /dev/null
@@ -1,96 +0,0 @@
-<a name="cce_01_0328"></a><a name="cce_01_0328"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an OBS Volume</h1>
-<div id="body0000001160562129"><div class="section" id="cce_01_0328__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0328__p417532394118">CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).</p>
-</div>
-<div class="section" id="cce_01_0328__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0328__cce_01_0325_ul196121354147"><li id="cce_01_0328__cce_01_0325_li156127541248">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</li><li id="cce_01_0328__cce_01_0325_li8435203861318">The AK/SK has been uploaded. For details, see <a href="cce_01_0324.html#cce_01_0324__section14271608324">Preparations</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0328__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0328__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0328__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0328__ol15239131281911"><li id="cce_01_0328__li823912124195"><span>Create an OBS volume by referring to <a href="cce_01_0324.html#cce_01_0324__section172788131291">Creating an OBS Volume</a> and obtain the PVC name.</span></li><li id="cce_01_0328__li169971354185015"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0328__li17489105723120"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_01_0328__b14643102042813">obs-statefulset-example.yaml</strong>.</span><p><p id="cce_01_0328__p3653181443819"><strong id="cce_01_0328__b166535149387">touch obs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0328__p16534140382"><strong id="cce_01_0328__b765381423813">vi obs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0328__p5766151773814"><strong id="cce_01_0328__b10273202362810">Example YAML:</strong></p>
-<pre class="screen" id="cce_01_0328__screen598644117388">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: obs-statefulset-example
-  namespace: default
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: obs-statefulset-example
-  serviceName: qwqq
-  template:
-    metadata:
-      annotations:
-        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
-        pod.alpha.kubernetes.io/initialized: "true"
-      creationTimestamp: null
-      labels:
-        app: obs-statefulset-example
-    spec:
-      affinity: {}
-      containers:	
-        image: nginx:latest
-        imagePullPolicy: Always
-        name: container-0
-        volumeMounts:
-        - mountPath: /tmp
-          name: pvc-obs-example
-      imagePullSecrets:
-      - name: default-secret
-      volumes:
-        - name: pvc-obs-example
-          persistentVolumeClaim:
-            claimName: cce-obs-demo</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0328__table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0328__row1425005815020"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.5.2.3.1.1"><p id="cce_01_0328__p1525045817501">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.5.2.3.1.2"><p id="cce_01_0328__p162501858165014">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0328__row725065865014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0328__p152504582506">replicas</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0328__p1425185812509">Number of pods.</p>
-</td>
-</tr>
-<tr id="cce_01_0328__row1025175814505"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0328__p1825125813505">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0328__p1178914555417">Name of the created workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0328__row17251115805017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0328__p2025185817509">image</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0328__p9251125875017">Image used by the workload.</p>
-</td>
-</tr>
-<tr id="cce_01_0328__row8251165845018"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0328__p22521858135013">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0328__p1525285819508">Mount path in the container.</p>
-</td>
-</tr>
-<tr id="cce_01_0328__row848562355515"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0328__p144666233557">serviceName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0328__p1090712121565">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0328__row8483182315551"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0328__p846772375512">claimName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0328__p346792375514">Name of an existing PVC.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0328__li156013162401"><span>Create the StatefulSet.</span><p><p id="cce_01_0328__p46091124144014"><strong id="cce_01_0328__b16609152417405">kubectl create -f obs-statefulset-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0322.html">Using OBS Buckets as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0330.html b/docs/cce/umn/cce_01_0330.html
deleted file mode 100644
index aa21cdb6..00000000
--- a/docs/cce/umn/cce_01_0330.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<a name="cce_01_0330"></a><a name="cce_01_0330"></a>
-
-<h1 class="topictitle1">Overview</h1>
-<div id="body8662426"><p id="cce_01_0330__en-us_topic_0276664616_p398114244394">CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable for DevOps, container microservices, and enterprise OA scenarios.</p>
-<div class="fignone" id="cce_01_0330__en-us_topic_0276664616_fig1837231912417"><span class="figcap"><b>Figure 1 </b>Mounting SFS Turbo volumes to CCE</span><br><span><img id="cce_01_0330__en-us_topic_0276664616_image8372161911411" src="en-us_image_0276664792.png"></span></div>
-<div class="section" id="cce_01_0330__en-us_topic_0276664616_section16125104115411"><h4 class="sectiontitle">Description</h4><ul id="cce_01_0330__en-us_topic_0276664616_ul222119314424"><li id="cce_01_0330__en-us_topic_0276664616_li82215317429"><strong id="cce_01_0330__en-us_topic_0276664616_b62803516222">Standard file protocols</strong>: You can mount file systems as volumes to servers, the same as using local directories.</li><li id="cce_01_0330__en-us_topic_0276664616_li522115314210"><strong id="cce_01_0330__en-us_topic_0276664616_b13263155815232">Data sharing</strong>: The same file system can be mounted to multiple servers, so that data can be shared.</li><li id="cce_01_0330__en-us_topic_0276664616_li422120318427"><strong id="cce_01_0330__en-us_topic_0276664616_b183071519112418">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_01_0330__en-us_topic_0276664616_li202212036421"><strong id="cce_01_0330__en-us_topic_0276664616_b1443654292420">Data isolation</strong>: The on-cloud storage service provides exclusive cloud file storage, which delivers data isolation and ensures IOPS performance.</li><li id="cce_01_0330__en-us_topic_0276664616_li122283134215"><strong id="cce_01_0330__en-us_topic_0276664616_b1641217962810">Use cases</strong>: Deployments/StatefulSets in the ReadWriteMany mode, DaemonSets, and jobs created for high-traffic websites, log storage, DevOps, and enterprise OA applications</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0331.html b/docs/cce/umn/cce_01_0331.html
deleted file mode 100644
index b74d2295..00000000
--- a/docs/cce/umn/cce_01_0331.html
+++ /dev/null
@@ -1,58 +0,0 @@
-<a name="cce_01_0331"></a><a name="cce_01_0331"></a>
-
-<h1 class="topictitle1">Using SFS Turbo Volumes</h1>
-<div id="body0000001160442141"><div class="section" id="cce_01_0331__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0331__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0331__section121371740152514"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0331__ul10887141614015"><li id="cce_01_0331__li175816225157">SFS Turbo volumes are available only in certain regions.</li><li id="cce_01_0331__li088714161409">Currently, SFS Turbo file systems cannot be directly created on CCE.</li><li id="cce_01_0331__li178875169013">The following operations apply to clusters of Kubernetes 1.13 or earlier.</li></ul>
-</div>
-<div class="section" id="cce_01_0331__section57261325121712"><a name="cce_01_0331__section57261325121712"></a><a name="section57261325121712"></a><h4 class="sectiontitle">Importing an SFS Turbo Volume</h4><p id="cce_01_0331__p41927149342">CCE allows you to import existing SFS Turbo volumes. </p>
-<ol id="cce_01_0331__ol1119281443411"><li id="cce_01_0331__li1919217142349"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0331__b1789071214013">Resource Management</strong> &gt; <strong id="cce_01_0331__b389214124403">Storage</strong>. On the <strong id="cce_01_0331__b1489314122400">SFS Turbo</strong> tab page, click <strong id="cce_01_0331__b1389431220401">Import</strong>.</span></li><li id="cce_01_0331__li1219231414345"><span>Select one or more SFS Turbo volumes that you want to import.</span></li><li id="cce_01_0331__li13193161453412"><span>Select the cluster and namespace to which you want to import the volumes.</span></li><li id="cce_01_0331__li16193141412346"><span>Click <strong id="cce_01_0331__b02037621716">OK</strong>. The volumes are displayed in the list. When <strong id="cce_01_0331__b3608458191816">PVS Status</strong> becomes <strong id="cce_01_0331__b1961413582180">Bound</strong>, the volumes are imported successfully.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0331__section1972814252174"><h4 class="sectiontitle">Adding an SFS Turbo Volume</h4><ol id="cce_01_0331__ol1255194616306"><li id="cce_01_0331__li42563461305"><span>Create a workload or job by referring to <a href="cce_01_0047.html">Creating a Deployment</a>, <a href="cce_01_0048.html">Creating a StatefulSet</a>, <a href="cce_01_0216.html">Creating a DaemonSet</a>, or <a href="cce_01_0150.html">Creating a Job</a>. After you have added a container, choose <strong id="cce_01_0331__b11240162181914">Data Storage</strong> &gt; <strong id="cce_01_0331__b202416261918">Cloud Volume</strong>, and then click <strong id="cce_01_0331__b52414251918">Add Cloud Volume</strong>.</span></li><li id="cce_01_0331__li72561346183013"><span>Set the storage volume type to <strong id="cce_01_0331__b15989149194">SFS Turbo</strong>.</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0331__table106329214305" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for configuring an SFS Turbo volume</caption><thead align="left"><tr id="cce_01_0331__row563314217308"><th align="left" class="cellrowborder" valign="top" width="21.22%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_01_0331__p6980173063015">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="78.78%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_01_0331__p159919308305">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0331__row1163319233013"><td class="cellrowborder" valign="top" width="21.22%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0331__p115143193013"><strong id="cce_01_0331__b2062041091916">Type</strong></p>
-</td>
-<td class="cellrowborder" valign="top" width="78.78%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0331__p121516314309"><strong id="cce_01_0331__b146351012191913">SFS Turbo</strong>: applicable to DevOps, containerized microservices, and enterprise OA applications.</p>
-</td>
-</tr>
-<tr id="cce_01_0331__row66347223017"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.4.2.2.2.1.2.3.1.1 mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0331__p16500411311"><strong id="cce_01_0331__b215222111199">Allocation Mode</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0331__row176349219305"><td class="cellrowborder" valign="top" width="21.22%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0331__p76314443112">Manual</p>
-</td>
-<td class="cellrowborder" valign="top" width="78.78%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0331__p106916420316">Select an existing SFS Turbo volume. You need to import SFS Turbo volumes in advance. For details, see <a href="#cce_01_0331__section57261325121712">Importing an SFS Turbo Volume</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0331__row96341218301"><td class="cellrowborder" valign="top" width="21.22%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_01_0331__p27719473117">Add Container Path</p>
-</td>
-<td class="cellrowborder" valign="top" width="78.78%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_01_0331__p4174161519591">Configure the following parameters:</p>
-<ol type="a" id="cce_01_0331__ol14514160165311"><li id="cce_01_0331__li132235644313"><strong id="cce_01_0331__b1360533119200">subPath</strong>: Enter the subpath of the file storage, for example, <strong id="cce_01_0331__b18606163162010">/tmp</strong>.<p id="cce_01_0331__p1623933918316">This parameter specifies a subpath inside the referenced volume instead of its root. If this parameter is not specified, the root path is used. Currently, only file storage is supported. The value must be a relative path and cannot start with a slash (/) or ../.</p>
-</li><li id="cce_01_0331__li051415055316"><strong id="cce_01_0331__b9404173922415">Container Path</strong>: Enter the mount path in the container, for example, <strong id="cce_01_0331__b139180311244">/tmp</strong>.<div class="p" id="cce_01_0331__p45501641058">The mount path must not be a system directory, such as <strong id="cce_01_0331__b118008414245">/</strong> and <strong id="cce_01_0331__b138011541122415">/var/run</strong>. Otherwise, an exception occurs. You are advised to mount the volume to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_01_0331__note8564354147"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_01_0331__p85554241956">If the volume is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
-</div></div>
-</div>
-</li><li id="cce_01_0331__li651460145315">Set permissions.<ul id="cce_01_0331__ul1651480165315"><li id="cce_01_0331__li65147025319"><strong id="cce_01_0331__b18323213152518">Read-only</strong>: You can only read the data in the mounted volumes.</li><li id="cce_01_0331__li195143016539"><strong id="cce_01_0331__b1420421612511">Read/Write</strong>: You can modify the data in the mounted volumes. Newly written data is not migrated if the container is migrated, which causes a data loss.</li></ul>
-</li></ol>
-<p id="cce_01_0331__p165839491213">Click <strong id="cce_01_0331__b1711616342256">Add Container Path</strong> to add multiple settings. Then, click <strong id="cce_01_0331__b411717343257">OK</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0331__li9259144618306"><span>Click <strong id="cce_01_0331__b311941211715">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_01_0331__section11728182512178"><h4 class="sectiontitle">Unbinding an SFS Turbo Volume</h4><p id="cce_01_0331__p168427114020">When an SFS Turbo volume is successfully imported to a cluster, the volume is bound to the cluster. The volume can also be imported to other clusters. When the volume is unbound from the cluster, other clusters can still import and use the volume.</p>
-<p id="cce_01_0331__p138112764012">If the SFS Turbo volume has been mounted to a workload, the volume cannot be unbound from the cluster.</p>
-<ol id="cce_01_0331__ol198127114020"><li id="cce_01_0331__li17842719401"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0331__b177410302405">Resource Management</strong> &gt; <strong id="cce_01_0331__b384103011405">Storage</strong>. In the SFS Turbo volume list, click <strong id="cce_01_0331__b18533014405">Unbind</strong> next to the target volume.</span></li><li id="cce_01_0331__li28172712407"><span>In the dialog box displayed, click <strong id="cce_01_0331__b373517461277">OK</strong>.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0332.html b/docs/cce/umn/cce_01_0332.html
deleted file mode 100644
index 4fa2cec8..00000000
--- a/docs/cce/umn/cce_01_0332.html
+++ /dev/null
@@ -1,150 +0,0 @@
-<a name="cce_01_0332"></a><a name="cce_01_0332"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a PV from an Existing SFS Turbo File System</h1>
-<div id="body0000001160562131"><div class="section" id="cce_01_0332__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0332__p1738118119414">CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) and bind it to the PV.</p>
-</div>
-<div class="section" id="cce_01_0332__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0332__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0332__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0332__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0332__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0332__ol6381151110418"><li id="cce_01_0332__li7381101104115"><span>Log in to the SFS console, create a file system, and record the file system ID, shared path, and capacity.</span></li><li id="cce_01_0332__li14405185119498"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0332__li33811611154115"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_01_0332__b15773888301">pv-efs-example.yaml</strong> and <strong id="cce_01_0332__b677310843013">pvc-efs-example.yaml</strong>.</span><p><p id="cce_01_0332__p1638141111418"><strong id="cce_01_0332__b19381101114115">touch pv-efs-example.yaml</strong> <strong id="cce_01_0332__b1084211115106">pvc-efs-example.yaml</strong></p>
-<ul id="cce_01_0332__ul1957616471105"><li id="cce_01_0332__li17576947171010"><strong id="cce_01_0332__b886431003017">Example YAML file for the PV:</strong><pre class="screen" id="cce_01_0332__screen85741747141015">apiVersion: v1 
-kind: PersistentVolume 
-metadata: 
-  name: pv-efs-example 
-  annotations:
-    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxiefs
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  capacity: 
-    storage: 100Gi 
-  claimRef:
-    apiVersion: v1
-    kind: PersistentVolumeClaim
-    name: pvc-efs-example
-    namespace: default
-  flexVolume: 
-    driver: huawei.com/fuxiefs 
-    fsType: efs 
-    options: 
-      deviceMountPath: <span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">your_deviceMountPath</span><span style="color:#FF0000;">&gt;</span>  # Shared storage path of your SFS Turbo file.
-      fsType: efs 
-      volumeID: <span style="color:#FF0000;">8962a2a2-a583-4b7f-bb74-fe76712d8414 </span>
-  persistentVolumeReclaimPolicy: Delete 
-  storageClassName: efs-standard</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0332__table1857613471103" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0332__row65751147161014"><th align="left" class="cellrowborder" valign="top" width="32.32%" id="mcps1.3.4.2.3.2.2.1.3.2.3.1.1"><p id="cce_01_0332__p10575114719102">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="67.67999999999999%" id="mcps1.3.4.2.3.2.2.1.3.2.3.1.2"><p id="cce_01_0332__p1357534717101">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0332__row15756477108"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p1557564718103">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p2575114791013">Storage driver used to mount the volume. Set it to <strong id="cce_01_0332__b17534131903012">huawei.com/fuxiefs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row5575134713108"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p8575164721010">deviceMountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p8575124761010">Shared path of the SFS Turbo volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row957514731018"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p115758475102">volumeID</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p205751747141012">SFS Turbo volume ID.</p>
-<p id="cce_01_0332__p14575124751019">To obtain the ID, log in to the CCE console, choose <strong id="cce_01_0332__b374315533618">Resource Management</strong> &gt; <strong id="cce_01_0332__b1774912558361">Storage</strong>, click the PVC name in the <strong id="cce_01_0332__b12749355173619">SFS Turbo</strong> tab page, and copy the PVC ID on the PVC details page.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row75761347101016"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p18575147131016">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p115751479106">File system size.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row2057617470102"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p557614715108">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p45761947201014">Volume type supported by SFS Turbo. The value can be <strong id="cce_01_0332__b17642153123012">efs-standard</strong> and <strong id="cce_01_0332__b46481653163014">efs-performance</strong>. Currently, SFS Turbo does not support dynamic creation; therefore, this parameter is not used for now.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row17100922145816"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p31001822145820">spec.claimRef.apiVersion</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p21000227587">The value is fixed at <strong id="cce_01_0332__b029272463110">v1</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row19278192545812"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p122788253581">spec.claimRef.kind</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p20278325145819">The value is fixed at <strong id="cce_01_0332__b1641052610314">PersistentVolumeClaim</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row275172845812"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p13753281589">spec.claimRef.name</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p1175172855817">The value is the same as the name of the PVC created in the next step.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row9112631195811"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.1 "><p id="cce_01_0332__p101121531185818">spec.claimRef.namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.4.2.3.2.2.1.3.2.3.1.2 "><p id="cce_01_0332__p10112531115815">The value is the same as the namespace of the PVC created in the next step.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li><li id="cce_01_0332__li127651143182518"><strong id="cce_01_0332__b101995341319">Example YAML file for the PVC:</strong><pre class="screen" id="cce_01_0332__screen5779193011506">apiVersion: v1 
-kind: PersistentVolumeClaim 
-metadata: 
-  annotations: 
-    volume.beta.kubernetes.io/storage-class: efs-standard 
-    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiefs 
-  name: pvc-efs-example 
-  namespace: default 
-spec: 
-  accessModes: 
-  - ReadWriteMany 
-  resources: 
-    requests: 
-      storage: 100Gi 
-  volumeName: pv-efs-example</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0332__table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0332__row439135512158"><th align="left" class="cellrowborder" valign="top" width="39.46%" id="mcps1.3.4.2.3.2.2.2.3.2.3.1.1"><p id="cce_01_0332__p11391105571516">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="60.540000000000006%" id="mcps1.3.4.2.3.2.2.2.3.2.3.1.2"><p id="cce_01_0332__p439255513157">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0332__row739215556154"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.1 "><p id="cce_01_0332__p3131325191618">volume.beta.kubernetes.io/storage-class</p>
-</td>
-<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.2 "><p id="cce_01_0332__p23923555150">Read/write mode supported by SFS Turbo. The value can be <strong id="cce_01_0332__b10641942133111">efs-standard</strong> or <strong id="cce_01_0332__b464942163117">efs-performance</strong>. The value must be the same as that of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row18143134041612"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.1 "><p id="cce_01_0332__p11431840161611">volume.beta.kubernetes.io/storage-provisioner</p>
-</td>
-<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.2 "><p id="cce_01_0332__p714434016164">The field must be set to <strong id="cce_01_0332__b1672513543219">flexvolume-huawei.com/fuxiefs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row1339295514152"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.1 "><p id="cce_01_0332__p83921559156">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.2 "><p id="cce_01_0332__p1839395518152">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0332__row1339365571519"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.1 "><p id="cce_01_0332__p239365513155">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.4.2.3.2.2.2.3.2.3.1.2 "><p id="cce_01_0332__p10393455131513">Name of the PV.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</li></ul>
-<div class="note" id="cce_01_0332__note896816108461"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0332__p207541015124619">The VPC to which the SFS Turbo file system belongs must be the same as the VPC of the ECS VM planned for the workload. Ports 111, 445, 2049, 2051, and 20048 must be enabled in the security groups.</p>
-</div></div>
-</p></li><li id="cce_01_0332__li1491415314505"><span>Create the PV.</span><p><p id="cce_01_0332__p1491413115016"><strong id="cce_01_0332__b29145318500">kubectl create -f pv-efs-example.yaml</strong></p>
-</p></li><li id="cce_01_0332__li1672453512517"><span>Create the PVC.</span><p><p id="cce_01_0332__p12724113515513"><strong id="cce_01_0332__b10724935145112">kubectl create -f pvc-efs-example.yaml</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0333.html b/docs/cce/umn/cce_01_0333.html
deleted file mode 100644
index b398c4cf..00000000
--- a/docs/cce/umn/cce_01_0333.html
+++ /dev/null
@@ -1,78 +0,0 @@
-<a name="cce_01_0333"></a><a name="cce_01_0333"></a>
-
-<h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume</h1>
-<div id="body0000001113882232"><div class="section" id="cce_01_0333__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0333__p13415181285914">After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.</p>
-</div>
-<div class="section" id="cce_01_0333__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0333__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
-</div>
-<div class="section" id="cce_01_0333__section1349262916461"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0333__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0333__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0333__ol8551750135510"><li id="cce_01_0333__li18480358134919"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0333__li1355135045513"><span>Run the following commands to configure the <strong id="cce_01_0333__b1436216344">efs-deployment-example.yaml</strong> file, which is used to create a Deployment:</span><p><p id="cce_01_0333__p20551165012555"><strong id="cce_01_0333__b45511650175517"><em id="cce_01_0333__i1555135045514">touch efs-deployment-example.yaml</em></strong></p>
-<p id="cce_01_0333__p185516509554"><strong id="cce_01_0333__b19551450125514"><em id="cce_01_0333__i7551250175516">vi efs-deployment-example.yaml</em></strong></p>
-<p id="cce_01_0333__p95138587551">Example of mounting an SFS Turbo volume to a Deployment (PVC-based, shared volume):</p>
-<pre class="screen" id="cce_01_0333__screen1083444825613">apiVersion: apps/v1  
-kind: Deployment  
-metadata:  
-  name: efs-deployment-example                                # Workload name
-  namespace: default  
-spec:  
-  replicas: 1  
-  selector:  
-    matchLabels:  
-      app: efs-deployment-example  
-  template:  
-    metadata:  
-      labels:  
-        app: efs-deployment-example  
-    spec:  
-      containers:  
-      - image: nginx  
-        name: container-0  
-        volumeMounts:  
-        - mountPath: /tmp                                # Mount path
-          name: pvc-efs-example  
-      restartPolicy: Always
-      imagePullSecrets:
-        - name: default-secret
-      volumes:  
-      - name: pvc-efs-example  
-        persistentVolumeClaim:  
-          claimName: pvc-sfs-auto-example                # PVC name</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0333__table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0333__row439135512158"><th align="left" class="cellrowborder" valign="top" width="26.42980935875217%" id="mcps1.3.4.2.2.2.5.2.3.1.1"><p id="cce_01_0333__p11391105571516">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57019064124783%" id="mcps1.3.4.2.2.2.5.2.3.1.2"><p id="cce_01_0333__p439255513157">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0333__row18143134041612"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0333__p11431840161611">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0333__p714434016164">Name of the created Deployment.</p>
-</td>
-</tr>
-<tr id="cce_01_0333__row1339295514152"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0333__p83921559156">app</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0333__p1839395518152">Name of the application running in the Deployment.</p>
-</td>
-</tr>
-<tr id="cce_01_0333__row1339365571519"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.2.2.5.2.3.1.1 "><p id="cce_01_0333__p239365513155">mountPath</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.2.2.5.2.3.1.2 "><p id="cce_01_0333__p98841828192311">Mount path in the container. In this example, the mount path is <strong id="cce_01_0333__b15650109407">/tmp</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<div class="note" id="cce_01_0333__note114240335225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0333__p134241233122219"><strong id="cce_01_0333__b18475202020403">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0333__b447592013401">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
-</div></div>
-</p></li><li id="cce_01_0333__li151061326125817"><span>Run the following command to create the pod:</span><p><p id="cce_01_0333__p1310692612582"><strong id="cce_01_0333__b11106202625812">kubectl create -f efs-deployment-example.yaml</strong></p>
-<p id="cce_01_0333__p710632610581">After the creation is complete, choose <strong id="cce_01_0333__b187321926194012">Storage</strong> &gt; <strong id="cce_01_0333__b17382268408">SFS Turbo</strong> on the CCE console and click the PVC name. On the PVC details page, you can view the binding relationship between SFS Turbo and PVC.</p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0336.html b/docs/cce/umn/cce_01_0336.html
deleted file mode 100644
index 6cf954f5..00000000
--- a/docs/cce/umn/cce_01_0336.html
+++ /dev/null
@@ -1,242 +0,0 @@
-<a name="cce_01_0336"></a><a name="cce_01_0336"></a>
-
-<h1 class="topictitle1">Using a Custom AK/SK to Mount an OBS Volume</h1>
-<div id="body8662426"><div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section69149541619"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0336__en-us_topic_0000001244260989_p195616516813">You can solve this issue by using Everest 1.2.8 and later versions to use custom access keys for different IAM users.</p>
-</div>
-<div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section1356645410223"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0336__en-us_topic_0000001244260989_ul169942513238"><li id="cce_01_0336__en-us_topic_0000001244260989_li1799112511235">The everest add-on version must be 1.2.8 or later. </li><li id="cce_01_0336__en-us_topic_0000001244260989_li599172552311">The cluster version must be 1.15.11 or later.</li></ul>
-</div>
-<div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section19922155718332"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0336__en-us_topic_0000001244260989_p1529019213346">Custom access keys cannot be configured for secure containers.</p>
-</div>
-<div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section1045502219184"><h4 class="sectiontitle">Disabling Auto Key Mounting</h4><p id="cce_01_0336__en-us_topic_0000001244260989_p1419516122419">The key you uploaded is used by default when mounting an OBS volume. That is, all IAM users under your account will use the same key to mount OBS buckets, and they have the same permissions on buckets. This setting does not allow you to configure differentiated permissions for different IAM users.</p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p3972105715910">If you have uploaded the AK/SK, you are advised to disable the automatic mounting of access keys by enabling the <strong id="cce_01_0336__en-us_topic_0000001244260989_b97941059445">disable_auto_mount_secret</strong> parameter in the everest add-on to prevent IAM users from performing unauthorized operations. In this way, the access keys uploaded on the console will not be used when creating OBS volumes.</p>
-<div class="note" id="cce_01_0336__en-us_topic_0000001244260989_note06431619183416"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0336__en-us_topic_0000001244260989_ul1215320963516"><li id="cce_01_0336__en-us_topic_0000001244260989_li115389133519">When enabling <strong id="cce_01_0336__en-us_topic_0000001244260989_b1296478123519">disable-auto-mount-secret</strong>, ensure that no OBS volume exists in the cluster. A workload mounted with an OBS volume, when scaled or restarted, will fail to remount the OBS volume because it needs to specify the access key but is prohibited by <strong id="cce_01_0336__en-us_topic_0000001244260989_b1638220201436">disable-auto-mount-secret</strong>.</li><li id="cce_01_0336__en-us_topic_0000001244260989_li16153139153517">If <strong id="cce_01_0336__en-us_topic_0000001244260989_b173114045014">disable-auto-mount-secret</strong> is set to <strong id="cce_01_0336__en-us_topic_0000001244260989_b1857414195018">true</strong>, an access key must be specified when a PV or PVC is created. Otherwise, the OBS volume fails to be mounted.</li></ul>
-</div></div>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p6511171951913"><strong id="cce_01_0336__en-us_topic_0000001244260989_b1479092017563">kubectl edit ds everest-csi-driver -nkube-system</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p33191134303">Search for <strong id="cce_01_0336__en-us_topic_0000001244260989_b1434271975315">disable-auto-mount-secret</strong> and set it to <strong id="cce_01_0336__en-us_topic_0000001244260989_b18853123105311">true</strong>.</p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p4978205865511"><span><img id="cce_01_0336__en-us_topic_0000001244260989_image397885885519" src="en-us_image_0000001409700093.png"></span></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p6152891328">Run <strong id="cce_01_0336__en-us_topic_0000001244260989_b1368954213536">:wq</strong> to save the settings and exit. Wait until the pod is restarted.</p>
-</div>
-<div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section12416824164618"><h4 class="sectiontitle">Creating a Secret Using an Access Key</h4><ol id="cce_01_0336__en-us_topic_0000001244260989_ol2051283471018"><li id="cce_01_0336__en-us_topic_0000001244260989_li45111634121014"><span>Obtain an access key.</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_p17511193419108">For details, see <a href="https://docs.otc.t-systems.com/usermanual/obs/obs_03_0405.html " target="_blank" rel="noopener noreferrer">Creating Access Keys (AK and SK)</a>.</p>
-</p></li><li id="cce_01_0336__en-us_topic_0000001244260989_li751113431018"><span>Encode the keys using Base64. (Assume that the AK is xxx and the SK is yyy.)</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_p1851103412100"><strong id="cce_01_0336__en-us_topic_0000001244260989_b13798260171">echo -n xxx|base64</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p65114348105"><strong id="cce_01_0336__en-us_topic_0000001244260989_b118017261171">echo -n yyy|base64</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p95111934171018">Record the encoded AK and SK.</p>
-</p></li><li id="cce_01_0336__en-us_topic_0000001244260989_li155129343104"><span>Create a YAML file for the secret, for example, <strong id="cce_01_0336__en-us_topic_0000001244260989_b8910163895518">test-user.yaml</strong>.</span><p><pre class="screen" id="cce_01_0336__en-us_topic_0000001244260989_screen2051217347105">apiVersion: v1
-data:
-  <span style="color:#FF0000;">access.key: WE5WWVhVNU*****</span>
-<span style="color:#FF0000;">  secret.key: Nnk4emJyZ0*****</span>
-kind: Secret
-metadata:
-  name: test-user
-  namespace: default
-  labels:
-    secret.kubernetes.io/used-by: csi
-<span style="color:#FF0000;">type: cfe/secure-opaque</span></pre>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p10512934101016">Specifically:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0336__en-us_topic_0000001244260989_table551243410100" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0336__en-us_topic_0000001244260989_row951223481012"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.5.2.3.2.3.1.3.1.1"><p id="cce_01_0336__en-us_topic_0000001244260989_p55121341100">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.5.2.3.2.3.1.3.1.2"><p id="cce_01_0336__en-us_topic_0000001244260989_p451233461016">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0336__en-us_topic_0000001244260989_row551203451016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p13512734101015">access.key</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p451213342102">Base64-encoded AK.</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row5512123420106"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p6512143431020">secret.key</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p115121434121020">Base64-encoded SK.</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row7512834131017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p25121534181016">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p251233441019">Secret name.</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row95121534191014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p16512834121016">namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p551243461015">Namespace of the secret.</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row16799198182814"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p0245182232816">secret.kubernetes.io/used-by: csi</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p380018122814">You need to add this label in the YAML file if you want to make it available on the CCE console when you create an OBS PV/PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row1451283421016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p25121234161018">type</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p851212346102">Secret type. The value must be <strong id="cce_01_0336__en-us_topic_0000001244260989_b815416175542">cfe/secure-opaque</strong>.</p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p4512334141012">When this type is used, the data entered by users is automatically encrypted.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0336__en-us_topic_0000001244260989_li16512193412108"><span>Create the secret.</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_p551216340107"><strong id="cce_01_0336__en-us_topic_0000001244260989_b1569505372">kubectl create -f test-user.yaml</strong></p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section14417324114618"><h4 class="sectiontitle">Mounting a Secret When Statically Creating an OBS Volume</h4><p id="cce_01_0336__en-us_topic_0000001244260989_p93554114272">After a secret is created using the AK/SK, you can associate the secret with the PV to be created and then use the AK/SK in the secret to mount an OBS volume.</p>
-<ol id="cce_01_0336__en-us_topic_0000001244260989_ol697018298268"><li id="cce_01_0336__en-us_topic_0000001244260989_li4106132410256"><span>Log in to the OBS console, create an OBS bucket, and record the bucket name and storage class. The parallel file system is used as an example.</span></li><li id="cce_01_0336__en-us_topic_0000001244260989_li597052912264"><span>Create a YAML file for the PV, for example, <strong id="cce_01_0336__en-us_topic_0000001244260989_b147571030162110">pv-example.yaml</strong>.</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_p885014454142"></p>
-<pre class="screen" id="cce_01_0336__en-us_topic_0000001244260989_screen653473412187">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: pv-obs-example
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-spec:
-  accessModes:
-  - ReadWriteMany
-  capacity:
-    storage: 1Gi
-  csi:
-<span style="color:#FF0000;">    nodePublishSecretRef:</span>
-<span style="color:#FF0000;">      name: test-user</span>
-<span style="color:#FF0000;">      namespace: default</span>
-    driver: obs.csi.everest.io
-    fsType: <span style="color:#FF0000;">obsfs</span>
-    volumeAttributes:
-      everest.io/obs-volume-type: STANDARD
-      everest.io/region: <span id="cce_01_0336__text1285137642">eu-de</span>
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    volumeHandle: <span style="color:#FF0000;">obs-normal-static-pv</span>
-  persistentVolumeReclaimPolicy: Delete
-  storageClassName: csi-obs</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0336__en-us_topic_0000001244260989_table6615161819296" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0336__en-us_topic_0000001244260989_row1361531813296"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.6.3.2.2.3.1.3.1.1"><p id="cce_01_0336__en-us_topic_0000001244260989_p5615151822915">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.6.3.2.2.3.1.3.1.2"><p id="cce_01_0336__en-us_topic_0000001244260989_p461519185298">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0336__en-us_topic_0000001244260989_row12615101802919"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p96441230162919">nodePublishSecretRef</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p26152189295">Secret specified during the mounting.</p>
-<ul id="cce_01_0336__en-us_topic_0000001244260989_ul1061862010115"><li id="cce_01_0336__en-us_topic_0000001244260989_li186183201911"><strong id="cce_01_0336__en-us_topic_0000001244260989_b32593613239">name</strong>: name of the secret</li><li id="cce_01_0336__en-us_topic_0000001244260989_li1261818209118"><strong id="cce_01_0336__en-us_topic_0000001244260989_b086871616235">namespace</strong>: namespace of the secret</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row17768552185616"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p98321261573">fsType</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p168323610576">File type. The value can be <strong id="cce_01_0336__en-us_topic_0000001244260989_b10357101624410">obsfs</strong> or <strong id="cce_01_0336__en-us_topic_0000001244260989_b1935821619441">s3fs</strong>. If the value is <strong id="cce_01_0336__en-us_topic_0000001244260989_b1935819166444">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_01_0336__en-us_topic_0000001244260989_b1360116104410">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. You are advised to set this field to <strong id="cce_01_0336__en-us_topic_0000001244260989_b1236016168442">obsfs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row78891119135511"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p17889141914554">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p12890141918554">OBS bucket name.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0336__en-us_topic_0000001244260989_li1613414199588"><span>Create the PV.</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_p4771103319589"><strong id="cce_01_0336__en-us_topic_0000001244260989_b29446711252">kubectl create -f pv-example.yaml</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p1994220111813">After a PV is created, you can create a PVC and associate it with the PV.</p>
-</p></li><li id="cce_01_0336__en-us_topic_0000001244260989_li1623335911249"><span>Create a YAML file for the PVC, for example, <strong id="cce_01_0336__en-us_topic_0000001244260989_b718710283446">pvc-example.yaml</strong>.</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_li147777204119p0"><strong id="cce_01_0336__en-us_topic_0000001244260989_b136881832174419">Example YAML file for the PVC:</strong></p>
-<pre class="screen" id="cce_01_0336__en-us_topic_0000001244260989_screen29933615125">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-<span style="color:#FF0000;">    csi.storage.k8s.io/node-publish-secret-name: test-user</span>
-<span style="color:#FF0000;">    csi.storage.k8s.io/node-publish-secret-namespace: default</span>
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-    everest.io/obs-volume-type: STANDARD
-    csi.storage.k8s.io/fstype: obsfs
-  name: obs-secret
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 1Gi
-  storageClassName: csi-obs
-  volumeName: <span style="color:#FF0000;">pv-obs-example</span></pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0336__en-us_topic_0000001244260989_table36670218280" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0336__en-us_topic_0000001244260989_row166713212813"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.6.3.4.2.3.1.3.1.1"><p id="cce_01_0336__en-us_topic_0000001244260989_p16675202812">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.6.3.4.2.3.1.3.1.2"><p id="cce_01_0336__en-us_topic_0000001244260989_p156674217284">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0336__en-us_topic_0000001244260989_row866717219285"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.6.3.4.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p196674219287">csi.storage.k8s.io/node-publish-secret-name</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.6.3.4.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p1466715214280">Name of the secret</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row1966762142811"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.6.3.4.2.3.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p866718272816">csi.storage.k8s.io/node-publish-secret-namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.6.3.4.2.3.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p11667142182814">Namespace of the secret</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0336__en-us_topic_0000001244260989_li5978123641714"><span>Create the PVC.</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_p1197814366172"><strong id="cce_01_0336__en-us_topic_0000001244260989_b497823641720">kubectl create -f pvc-example.yaml</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p1897815365173">After the PVC is created, you can create a workload and associate it with the PVC to create volumes.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section204171024144619"><h4 class="sectiontitle">Mounting a Secret When Dynamically Creating an OBS Volume</h4><p id="cce_01_0336__en-us_topic_0000001244260989_p103621416379">When dynamically creating an OBS volume, you can use the following method to specify a secret:</p>
-<ol id="cce_01_0336__en-us_topic_0000001244260989_ol55461938716"><li id="cce_01_0336__en-us_topic_0000001244260989_li16546183175"><span>Create a YAML file for the PVC, for example, <strong id="cce_01_0336__en-us_topic_0000001244260989_b218119472516">pvc-example.yaml</strong>.</span><p><pre class="screen" id="cce_01_0336__en-us_topic_0000001244260989_screen181936371482">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-<span style="color:#FF0000;">    csi.storage.k8s.io/node-publish-secret-name: test-user</span>
-<span style="color:#FF0000;">    csi.storage.k8s.io/node-publish-secret-namespace: default</span>
-    everest.io/obs-volume-type: STANDARD
-    csi.storage.k8s.io/fstype: obsfs
-  name: obs-secret
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 1Gi
-  storageClassName: csi-obs</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0336__en-us_topic_0000001244260989_table1911916210118" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0336__en-us_topic_0000001244260989_row711972201120"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.7.3.1.2.2.1.3.1.1"><p id="cce_01_0336__en-us_topic_0000001244260989_p15120821110">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.7.3.1.2.2.1.3.1.2"><p id="cce_01_0336__en-us_topic_0000001244260989_p71209271119">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0336__en-us_topic_0000001244260989_row1112012271110"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.1.2.2.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p61203218111">csi.storage.k8s.io/node-publish-secret-name</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.1.2.2.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p2120122121114">Name of the secret</p>
-</td>
-</tr>
-<tr id="cce_01_0336__en-us_topic_0000001244260989_row266117185118"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.1.2.2.1.3.1.1 "><p id="cce_01_0336__en-us_topic_0000001244260989_p1662151891115">csi.storage.k8s.io/node-publish-secret-namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.1.2.2.1.3.1.2 "><p id="cce_01_0336__en-us_topic_0000001244260989_p12662131811118">Namespace of the secret</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0336__en-us_topic_0000001244260989_li11614552151116"><span>Create the PVC.</span><p><p id="cce_01_0336__en-us_topic_0000001244260989_p2321154151210"><strong id="cce_01_0336__en-us_topic_0000001244260989_b9231232163816">kubectl create -f pvc-example.yaml</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p4255338215">After the PVC is created, you can create a workload and associate it with the PVC to create volumes.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0336__en-us_topic_0000001244260989_section1698122173919"><h4 class="sectiontitle">Verification</h4><div class="p" id="cce_01_0336__en-us_topic_0000001244260989_p11504721521">You can use a secret of an IAM user to mount an OBS volume. Assume that a workload named <strong id="cce_01_0336__en-us_topic_0000001244260989_b0143114517314">obs-secret</strong> is created, the mount path in the container is <strong id="cce_01_0336__en-us_topic_0000001244260989_b3806513123217">/temp</strong>, and the IAM user has the CCE <strong id="cce_01_0336__en-us_topic_0000001244260989_b14155556183219">ReadOnlyAccess</strong> and <strong id="cce_01_0336__en-us_topic_0000001244260989_b742055918322">Tenant Guest</strong> permissions.<ol id="cce_01_0336__en-us_topic_0000001244260989_ol656171774216"><li id="cce_01_0336__en-us_topic_0000001244260989_li2561170423">Query the name of the workload pod.<p id="cce_01_0336__en-us_topic_0000001244260989_p1117620592457"><a name="cce_01_0336__en-us_topic_0000001244260989_li2561170423"></a><a name="en-us_topic_0000001244260989_li2561170423"></a><strong id="cce_01_0336__en-us_topic_0000001244260989_b204787557393">kubectl get po | grep obs-secret</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p1654921194617">Expected outputs:</p>
-<pre class="screen" id="cce_01_0336__en-us_topic_0000001244260989_screen175211232114611">obs-secret-5cd558f76f-vxslv          1/1     Running   0          3m22s</pre>
-</li><li id="cce_01_0336__en-us_topic_0000001244260989_li239217408467">Query the objects in the mount path. In this example, the query is successful.<p id="cce_01_0336__en-us_topic_0000001244260989_p19266121194717"><a name="cce_01_0336__en-us_topic_0000001244260989_li239217408467"></a><a name="en-us_topic_0000001244260989_li239217408467"></a><strong id="cce_01_0336__en-us_topic_0000001244260989_b162581019401">kubectl exec obs-secret-5cd558f76f-vxslv -- ls -l /temp/</strong></p>
-</li><li id="cce_01_0336__en-us_topic_0000001244260989_li97510533467">Write data into the mount path. In this example, the write operation fails.<p id="cce_01_0336__en-us_topic_0000001244260989_p13257203514812"><a name="cce_01_0336__en-us_topic_0000001244260989_li97510533467"></a><a name="en-us_topic_0000001244260989_li97510533467"></a><strong id="cce_01_0336__en-us_topic_0000001244260989_b7995511402">kubectl exec obs-secret-5cd558f76f-vxslv -- touch /temp/test</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p667716518493">Expected outputs:</p>
-<pre class="screen" id="cce_01_0336__en-us_topic_0000001244260989_screen14869155884916">touch: setting times of '/temp/test': No such file or directory
-command terminated with exit code 1</pre>
-</li><li id="cce_01_0336__en-us_topic_0000001244260989_li1375318184504">Set the read/write permissions for the IAM user who mounted the OBS volume by referring to the bucket policy configuration.<p id="cce_01_0336__en-us_topic_0000001244260989_p7818145635018"><a name="cce_01_0336__en-us_topic_0000001244260989_li1375318184504"></a><a name="en-us_topic_0000001244260989_li1375318184504"></a></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p163431053616"><span><img id="cce_01_0336__en-us_topic_0000001244260989_image17701961669" src="en-us_image_0000001360140132.png"></span></p>
-</li><li id="cce_01_0336__en-us_topic_0000001244260989_li3633175615112">Write data into the mouth path again. In this example, the write operation succeeded.<p id="cce_01_0336__en-us_topic_0000001244260989_p147671620145213"><a name="cce_01_0336__en-us_topic_0000001244260989_li3633175615112"></a><a name="en-us_topic_0000001244260989_li3633175615112"></a><strong id="cce_01_0336__en-us_topic_0000001244260989_b16269111110403">kubectl exec obs-secret-5cd558f76f-vxslv -- touch /temp/test</strong></p>
-</li><li id="cce_01_0336__en-us_topic_0000001244260989_li185365479522">Check the mount path in the container to see whether the data is successfully written.<p id="cce_01_0336__en-us_topic_0000001244260989_p879715312525"><a name="cce_01_0336__en-us_topic_0000001244260989_li185365479522"></a><a name="en-us_topic_0000001244260989_li185365479522"></a><strong id="cce_01_0336__en-us_topic_0000001244260989_b695501514018">kubectl exec obs-secret-5cd558f76f-vxslv -- ls -l /temp/</strong></p>
-<p id="cce_01_0336__en-us_topic_0000001244260989_p1123745195313">Expected outputs:</p>
-<pre class="screen" id="cce_01_0336__en-us_topic_0000001244260989_screen18702181485316">-rwxrwxrwx 1 root root 0 Jun  7 01:52 test</pre>
-</li></ol>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0337.html b/docs/cce/umn/cce_01_0337.html
deleted file mode 100644
index b6bb6888..00000000
--- a/docs/cce/umn/cce_01_0337.html
+++ /dev/null
@@ -1,184 +0,0 @@
-<a name="cce_01_0337"></a><a name="cce_01_0337"></a>
-
-<h1 class="topictitle1">Setting Mount Options</h1>
-<div id="body8662426"><div class="section" id="cce_01_0337__en-us_topic_0000001199021188_section1291115518717"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0337__en-us_topic_0000001199021188_p3495910717">You can mount cloud storage volumes to your containers and use these volumes as local directories.</p>
-<p id="cce_01_0337__en-us_topic_0000001199021188_p154255419914">This section describes how to set mount options when mounting SFS and OBS volumes. You can set mount options in a PV and bind the PV to a PVC. Alternatively, set mount options in a StorageClass and use the StorageClass to create a PVC. In this way, PVs can be dynamically created and inherit mount options configured in the StorageClass by default.</p>
-</div>
-<div class="section" id="cce_01_0337__en-us_topic_0000001199021188_section14888047833"><a name="cce_01_0337__en-us_topic_0000001199021188_section14888047833"></a><a name="en-us_topic_0000001199021188_section14888047833"></a><h4 class="sectiontitle">SFS Volume Mount Options</h4><p id="cce_01_0337__en-us_topic_0000001199021188_p1373413010222">The everest add-on in CCE presets the options described in <a href="#cce_01_0337__en-us_topic_0000001199021188_table128754351546">Table 1</a> for mounting SFS volumes. You can set other mount options if needed. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/sfs/en-us_topic_0034428728.html" target="_blank" rel="noopener noreferrer">Mounting an NFS File System to ECSs (Linux)</a>.</p>
-
-<div class="tablenoborder"><a name="cce_01_0337__en-us_topic_0000001199021188_table128754351546"></a><a name="en-us_topic_0000001199021188_table128754351546"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0337__en-us_topic_0000001199021188_table128754351546" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Preset mount options for SFS volumes</caption><thead align="left"><tr id="cce_01_0337__en-us_topic_0000001199021188_row17875103517418"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.2.3.2.3.1.1"><p id="cce_01_0337__en-us_topic_0000001199021188_p108751735648">Option</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.2.3.2.3.1.2"><p id="cce_01_0337__en-us_topic_0000001199021188_p16876143516416">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0337__en-us_topic_0000001199021188_row178769351417"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p148769351045">vers=3</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p1787653510419">File system version. Currently, only NFSv3 is supported, Value: <strong id="cce_01_0337__en-us_topic_0000001199021188_b1713610346441">3</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row1287615351943"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p138762357410">nolock</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p14876143516411">Whether to lock files on the server using the NLM protocol. If <strong id="cce_01_0337__en-us_topic_0000001199021188_b13294115274417">nolock</strong> is selected, the lock is valid for applications on one host. For applications on another host, the lock is invalid.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row287619355416"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p7876173515414">timeo=600</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p3876535248">Waiting time before the NFS client retransmits a request. The unit is 0.1 seconds. Recommended value: <strong id="cce_01_0337__en-us_topic_0000001199021188_b08209119461">600</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row13763631151614"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p14763631101610">hard/soft</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p5754011192615">Mounting mode.</p>
-<ul id="cce_01_0337__en-us_topic_0000001199021188_ul776915118268"><li id="cce_01_0337__en-us_topic_0000001199021188_li167692116262"><strong id="cce_01_0337__en-us_topic_0000001199021188_b173071823206">hard</strong>: If the NFS request times out, the client keeps resending the request until the request is successful.</li><li id="cce_01_0337__en-us_topic_0000001199021188_li147697112266"><strong id="cce_01_0337__en-us_topic_0000001199021188_b976815531708">soft</strong>: If the NFS request times out, the client returns an error to the invoking program.</li></ul>
-<p id="cce_01_0337__en-us_topic_0000001199021188_p26201257171610">The default value is <strong id="cce_01_0337__en-us_topic_0000001199021188_b11493651411">hard</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0337__en-us_topic_0000001199021188_section1254912109811"><a name="cce_01_0337__en-us_topic_0000001199021188_section1254912109811"></a><a name="en-us_topic_0000001199021188_section1254912109811"></a><h4 class="sectiontitle">OBS Volume Mount Options</h4><p id="cce_01_0337__en-us_topic_0000001199021188_p12416958949">When mounting file storage, the everest add-on presets the options described in <a href="#cce_01_0337__en-us_topic_0000001199021188_table1688593020213">Table 2</a> and <a href="#cce_01_0337__en-us_topic_0000001199021188_table9886123010217">Table 3</a> by default. The options in <a href="#cce_01_0337__en-us_topic_0000001199021188_table1688593020213">Table 2</a> are mandatory. </p>
-
-<div class="tablenoborder"><a name="cce_01_0337__en-us_topic_0000001199021188_table1688593020213"></a><a name="en-us_topic_0000001199021188_table1688593020213"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0337__en-us_topic_0000001199021188_table1688593020213" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Mandatory mount options configured by default</caption><thead align="left"><tr id="cce_01_0337__en-us_topic_0000001199021188_row148854300216"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.3.2.3.1.1"><p id="cce_01_0337__en-us_topic_0000001199021188_p1188553019213">Option</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.3.2.3.1.2"><p id="cce_01_0337__en-us_topic_0000001199021188_p12885183018212">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0337__en-us_topic_0000001199021188_row788593020214"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p178859301223">use_ino</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p1088511301822">If enabled, obsfs allocates the <strong id="cce_01_0337__en-us_topic_0000001199021188_b2091210301903">inode</strong> number. Enabled by default in read/write mode.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row1088515301022"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p0885330824">big_writes</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p788523015219">If configured, the maximum size of the cache can be modified.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row15885430427"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p888510301229">nonempty</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p588514301920">Allows non-empty mount paths.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row10885203010215"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p10885153013219">allow_other</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p1788519301222">Allows other users to access the parallel file system.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row4885230826"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p688503013211">no_check_certificate</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p14885193020215">Disables server certificate verification.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row198861530026"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p17886123011213">enable_noobj_cache</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p18861830125">Enables cache entries for objects that do not exist, which can improve performance. Enabled by default in object bucket read/write mode.</p>
-<p id="cce_01_0337__en-us_topic_0000001199021188_p5685144374318"><strong id="cce_01_0337__en-us_topic_0000001199021188_b9430193052819">This option is no longer set by default since everest 1.2.40.</strong></p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row5886133014212"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p98862301524">sigv2</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p688613012211">Specifies the signature version. Used by default in object buckets.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="cce_01_0337__en-us_topic_0000001199021188_table9886123010217"></a><a name="en-us_topic_0000001199021188_table9886123010217"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0337__en-us_topic_0000001199021188_table9886123010217" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Optional mount options configured by default</caption><thead align="left"><tr id="cce_01_0337__en-us_topic_0000001199021188_row188863307212"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.4.2.3.1.1"><p id="cce_01_0337__en-us_topic_0000001199021188_p1788614305216">Option</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.4.2.3.1.2"><p id="cce_01_0337__en-us_topic_0000001199021188_p1988613014217">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0337__en-us_topic_0000001199021188_row3886230427"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p98861530227">max_write=131072</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p78861330527">If specified, obsfs allocates the <strong id="cce_01_0337__en-us_topic_0000001199021188_b128358102112">inode</strong> number. Enabled by default in read/write mode.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row4886163018211"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p988613301225">ssl_verify_hostname=0</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p988619301422">Disables verifying the SSL certificate based on the host name.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row8886630228"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p4886203011213">max_background=100</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p48862301720">Allows setting the maximum number of waiting requests in the background. Used by default in parallel file systems.</p>
-</td>
-</tr>
-<tr id="cce_01_0337__en-us_topic_0000001199021188_row48861230521"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_01_0337__en-us_topic_0000001199021188_p1588643011212">public_bucket=1</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_01_0337__en-us_topic_0000001199021188_p988614301928">If set to <strong id="cce_01_0337__en-us_topic_0000001199021188_b3500851788">1</strong>, public buckets are mounted anonymously. Enabled by default in object bucket read/write mode.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0337__en-us_topic_0000001199021188_p831913817451">You can log in to the node to which the pod is scheduled and view all mount options used for mounting the OBS volume in the process details.</p>
-<ul id="cce_01_0337__en-us_topic_0000001199021188_ul1031913854513"><li id="cce_01_0337__en-us_topic_0000001199021188_li1231993844517">Object bucket: ps -ef | grep s3fs<pre class="screen" id="cce_01_0337__en-us_topic_0000001199021188_screen231963814510">root     22142     1  0 Jun03 ?        00:00:00 /usr/bin/s3fs pvc-82fe2cbe-3838-43a2-8afb-f994e402fb9d /mnt/paas/kubernetes/kubelet/pods/0b13ff68-4c8e-4a1c-b15c-724fd4d64389/volumes/kubernetes.io~csi/pvc-82fe2cbe-3838-43a2-8afb-f994e402fb9d/mount -o url=https://{{endpoint}}:443 -o endpoint=xxxxxx -o passwd_file=/opt/everest-host-connector/1622707954357702943_obstmpcred/pvc-82fe2cbe-3838-43a2-8afb-f994e402fb9d -o nonempty -o big_writes -o enable_noobj_cache -o sigv2 -o allow_other -o no_check_certificate -o ssl_verify_hostname=0 -o max_write=131072 -o multipart_size=20 -o umask=0</pre>
-</li><li id="cce_01_0337__en-us_topic_0000001199021188_li6320153894510">Parallel file system: ps -ef | grep obsfs<pre class="screen" id="cce_01_0337__en-us_topic_0000001199021188_screen13202388456">root      1355     1  0 Jun03 ?        00:03:16 /usr/bin/obsfs pvc-86720bb9-5aa8-4cde-9231-5253994f8468 /mnt/paas/kubernetes/kubelet/pods/c959a91d-eced-4b41-91c6-96cbd65324f9/volumes/kubernetes.io~csi/pvc-86720bb9-5aa8-4cde-9231-5253994f8468/mount -o url=https://{{endpoint}}:443 -o endpoint=xxxxxx -o passwd_file=/opt/everest-host-connector/1622714415305160399_obstmpcred/pvc-86720bb9-5aa8-4cde-9231-5253994f8468 -o allow_other -o nonempty -o big_writes -o use_ino -o no_check_certificate -o ssl_verify_hostname=0 -o umask=0027 -o max_write=131072 -o max_background=100 -o uid=10000 -o gid=10000</pre>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0337__en-us_topic_0000001199021188_section1940515714420"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0337__en-us_topic_0000001199021188_ul1364364214526"><li id="cce_01_0337__en-us_topic_0000001199021188_li13643442135219">The everest add-on version must be <strong id="cce_01_0337__en-us_topic_0000001199021188_b181871855195813">1.2.8 or later</strong>.</li><li id="cce_01_0337__en-us_topic_0000001199021188_li2028012204545">The add-on identifies the mount options and transfers them to the underlying storage resources, which determine whether the specified options are valid.</li></ul>
-</div>
-<div class="section" id="cce_01_0337__en-us_topic_0000001199021188_section6456132219344"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0337__en-us_topic_0000001199021188_p1869352683414">Mount options cannot be configured for secure containers.</p>
-</div>
-<div class="section" id="cce_01_0337__en-us_topic_0000001199021188_section846811715589"><h4 class="sectiontitle">Setting Mount Options in a PV</h4><p id="cce_01_0337__en-us_topic_0000001199021188_p1070219443123">You can use the <strong id="cce_01_0337__en-us_topic_0000001199021188_b1768712683112">mountOptions</strong> field to set mount options in a PV. The options you can configure in <strong id="cce_01_0337__en-us_topic_0000001199021188_b10717142133513">mountOptions</strong> are listed in <a href="#cce_01_0337__en-us_topic_0000001199021188_section14888047833">SFS Volume Mount Options</a> and <a href="#cce_01_0337__en-us_topic_0000001199021188_section1254912109811">OBS Volume Mount Options</a>.</p>
-<pre class="screen" id="cce_01_0337__en-us_topic_0000001199021188_screen1647520711160">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: pv-obs-example
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-spec:
-<span style="color:#FF0000;">  mountOptions:</span>
-<span style="color:#FF0000;">  - umask=0027</span>
-<span style="color:#FF0000;">  - uid=10000</span>
-<span style="color:#FF0000;">  - gid=10000</span>
-  accessModes:
-  - ReadWriteMany
-  capacity:
-    storage: 1Gi
- <span style="color:#FF0000;"> claimRef:</span>
-<span style="color:#FF0000;">    apiVersion: v1</span>
-<span style="color:#FF0000;">    kind: PersistentVolumeClaim</span>
-<span style="color:#FF0000;">    name: pvc-obs-example</span>
-<span style="color:#FF0000;">    namespace: default</span>
-  csi:
-    driver: obs.csi.everest.io
-    fsType: obsfs
-    volumeAttributes:
-      everest.io/obs-volume-type: STANDARD
-      everest.io/region: <span id="cce_01_0337__text116281890518">eu-de</span>
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    volumeHandle: obs-normal-static-pv
-  persistentVolumeReclaimPolicy: Delete
-  <span style="color:#FF0000;">storageClassName: csi-obs</span></pre>
-<p id="cce_01_0337__en-us_topic_0000001199021188_p58371937174114">After a PV is created, you can create a PVC and bind it to the PV, and then mount the PV to the container in the workload.</p>
-</div>
-<div class="section" id="cce_01_0337__en-us_topic_0000001199021188_section14845171205813"><h4 class="sectiontitle">Setting Mount Options in a StorageClass</h4><p id="cce_01_0337__en-us_topic_0000001199021188_p09111331124418">You can use the <strong id="cce_01_0337__en-us_topic_0000001199021188_b1035845733512">mountOptions</strong> field to set mount options in a StorageClass. The options you can configure in <strong id="cce_01_0337__en-us_topic_0000001199021188_b2365757163511">mountOptions</strong> are listed in <a href="#cce_01_0337__en-us_topic_0000001199021188_section14888047833">SFS Volume Mount Options</a> and <a href="#cce_01_0337__en-us_topic_0000001199021188_section1254912109811">OBS Volume Mount Options</a>.</p>
-<pre class="screen" id="cce_01_0337__en-us_topic_0000001199021188_screen164701419172012">apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  name: csi-obs-mount-option
-<span style="color:#FF0000;">mountOptions:</span>
-<span style="color:#FF0000;">- umask=0027</span>
-<span style="color:#FF0000;">- uid=10000</span>
-<span style="color:#FF0000;">- gid=10000</span>
-parameters:
-  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
-  csi.storage.k8s.io/fstype: s3fs
-  everest.io/obs-volume-type: STANDARD
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate</pre>
-<p id="cce_01_0337__en-us_topic_0000001199021188_p1048738182818">After the StorageClass is configured, you can use it to create a PVC. By default, the dynamically created PVs inherit the mount options set in the StorageClass.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0338.html b/docs/cce/umn/cce_01_0338.html
deleted file mode 100644
index 47f62342..00000000
--- a/docs/cce/umn/cce_01_0338.html
+++ /dev/null
@@ -1,45 +0,0 @@
-<a name="cce_01_0338"></a><a name="cce_01_0338"></a>
-
-<h1 class="topictitle1">Removing a Node</h1>
-<div id="body0000001117989308"><div class="section" id="cce_01_0338__section1730974915433"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0338__p171654316363">Removing a node from a cluster in CCE will re-install the node OS and clear CCE components on the node.</p>
-<p id="cce_01_0338__p5236101374415">Removing a node will not delete the server (ECS) corresponding to the node. You are advised to remove nodes at off-peak hours to avoid impacts on your services.</p>
-<p id="cce_01_0338__p437505052619">After a node is removed from the cluster, the node is still running and incurs fees.</p>
-</div>
-<div class="section" id="cce_01_0338__section3145212449"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0338__ul1825317203447"><li id="cce_01_0338__li1325312012442">Nodes can be removed only when the cluster is in the Available or Unavailable state.</li><li id="cce_01_0338__li72534202445">A CCE node can be removed only when it is in the Active, Abnormal, or Error state.</li><li id="cce_01_0338__li172536201445">A CCE node in the Active state can have its OS re-installed and CCE components cleared after it is removed.</li><li id="cce_01_0338__li13253132013448">If the OS fails to be re-installed after the node is removed, manually re-install the OS. After the re-installation, log in to the node and run the clearance script to clear CCE components. For details, see <a href="#cce_01_0338__section149069481111">Handling Failed OS Reinstallation</a>.</li></ul>
-</div>
-<div class="section" id="cce_01_0338__section152591751204415"><h4 class="sectiontitle">Precautions</h4><ul id="cce_01_0338__ul1431712593445"><li id="cce_01_0338__li131795974416">Removing a node will lead to pod migration, which may affect services. Perform this operation during off-peak hours.</li><li id="cce_01_0338__li53171759104415">Unexpected risks may occur during the operation. Back up data in advance.</li><li id="cce_01_0338__li9317195994418">While the node is being deleted, the backend will set the node to the unschedulable state.</li><li id="cce_01_0338__li103171259174415">After you remove the node and re-install the OS, the original LVM partitions will be cleared and the data managed by LVM will be cleared. Therefore, back up data in advance.</li></ul>
-</div>
-<div class="section" id="cce_01_0338__section1313874144519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0338__ol1066931784513"><li id="cce_01_0338__li666951774517"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_01_0338__b587614514210">Resource Management</strong> &gt; <strong id="cce_01_0338__b1587775182111">Nodes</strong>. In the same row as the target node, choose <strong id="cce_01_0338__b18770517211">More</strong> &gt; <strong id="cce_01_0338__b168775582112">Remove</strong>.</span></li><li id="cce_01_0338__li1522012619456"><span>In the dialog box displayed, enter <strong id="cce_01_0338__b1964054412313">REMOVE</strong>, configure the login information required for re-installing the OS, and click <strong id="cce_01_0338__b1595991122413">Yes</strong>. Wait until the node is removed.</span><p><p id="cce_01_0338__p4223557125913">After the node is removed, workload pods on the node are automatically migrated to other available nodes.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_01_0338__section149069481111"><a name="cce_01_0338__section149069481111"></a><a name="section149069481111"></a><h4 class="sectiontitle">Handling Failed OS Reinstallation</h4><p id="cce_01_0338__p12145161315526">You can perform the following steps to re-install the OS and clear the CCE components on the node if previous attempts fail:</p>
-<ol id="cce_01_0338__ol1953743913419"><li id="cce_01_0338__li16537739184113"><span>Log in to the management console of the server and re-install the OS.</span></li><li id="cce_01_0338__li653713398417"><span>Log in to the server and run the following commands to clear the CCE components and LVM data:</span><p><p id="cce_01_0338__p1988674794217">Write the following scripts to the <strong id="cce_01_0338__b7273114316">clean.sh</strong> file:</p>
-<pre class="screen" id="cce_01_0338__screen195892818439">lsblk
-vgs --noheadings | awk '{print $1}' | xargs vgremove -f
-pvs --noheadings | awk '{print $1}' | xargs pvremove -f
-lvs --noheadings | awk '{print $1}' | xargs -i lvremove -f --select {}
-function init_data_disk() {
-    all_devices=$(lsblk -o KNAME,TYPE | grep disk | grep -v nvme | awk '{print $1}' | awk '{ print "/dev/"$1}')
-    for device in ${all_devices[@]}; do
-        isRootDisk=$(lsblk -o KNAME,MOUNTPOINT $device 2&gt;/dev/null| grep -E '[[:space:]]/$' | wc -l )
-        if [[ ${isRootDisk} != 0 ]]; then
-            continue
-        fi
-        dd if=/dev/urandom of=${device} bs=512 count=64
-        return
-    done
-    exit 1
-}
-init_data_disk
-lsblk</pre>
-<p id="cce_01_0338__p171947604410">Run the following command:</p>
-<p id="cce_01_0338__p18878191412442"><strong id="cce_01_0338__b1393417245448">bash clean.sh</strong></p>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0341.html b/docs/cce/umn/cce_01_0341.html
deleted file mode 100644
index 062c0931..00000000
--- a/docs/cce/umn/cce_01_0341.html
+++ /dev/null
@@ -1,45 +0,0 @@
-<a name="cce_01_0341"></a><a name="cce_01_0341"></a>
-
-<h1 class="topictitle1">Data Disk Space Allocation</h1>
-<div id="body0000001172371807"><p id="cce_01_0341__p8060118">When creating a node, you need to configure data disks for the node.</p>
-<p id="cce_01_0341__p2030944219363"></p>
-<p id="cce_01_0341__p2053461914375">The data disk is divided into Kubernetes space and user space. The user space defines the space that is not allocated to Kubernetes in the local disk. The Kubernetes space consists of the following two parts:</p>
-<ul id="cce_01_0341__ul569711153914"><li id="cce_01_0341__li369761103910">Docker space (90% by default): stores Docker working directories, Docker image data, and image metadata.</li><li id="cce_01_0341__li12697111123915">kubelet space (10% by default): stores pod configuration files, secrets, and mounted storage such as emptyDir volumes.</li></ul>
-<p id="cce_01_0341__p12279151419394">The Docker space size affects image download and container startup and running. This section describes how the Docker space is used so that you can configure the Docker space accordingly.</p>
-<div class="section" id="cce_01_0341__section10653143445411"><h4 class="sectiontitle">Docker Space Description</h4><p id="cce_01_0341__p1980613586544">By default, a data disk, 100 GB for example, is divided as follows (depending on the container storage Rootfs):</p>
-<ul id="cce_01_0341__ul20369135562510"><li id="cce_01_0341__li7709101613457">Rootfs (Device Mapper)<ul id="cce_01_0341__ul145651344459"><li id="cce_01_0341__li2045315320459">The <strong id="cce_01_0341__b693184810535">/var/lib/docker</strong> directory is used as the Docker working directory and occupies 20% of the Docker space by default. (Space size of the <strong id="cce_01_0341__b1835519286545">/var/lib/docker</strong> directory = Data disk space x 90% x 20%)</li><li id="cce_01_0341__li5454432114512">The thin pool is used to store Docker image data, image metadata, and container data, and occupies 80% of the Docker space by default. (Thin pool space = Data disk space x 90% x 80%)<p id="cce_01_0341__p0888144285815"><a name="cce_01_0341__li5454432114512"></a><a name="li5454432114512"></a>The thin pool is dynamically mounted. You can view it by running the <strong id="cce_01_0341__b16273758244">lsblk</strong> command on a node, but not the <strong id="cce_01_0341__b13637955182316">df -h</strong> command.</p>
-</li></ul>
-<p id="cce_01_0341__p1409385455"><span><img id="cce_01_0341__image187589441557" src="en-us_image_0000001180446397.png"></span></p>
-</li></ul>
-<ul id="cce_01_0341__ul20849165711250"><li id="cce_01_0341__li11849125772513">Rootfs (OverlayFS): No separate thinpool. The entire Docker space is in the <strong id="cce_01_0341__b199871054165719">/var/lib/docker</strong> directory.<p id="cce_01_0341__p78987371501"><span><img id="cce_01_0341__image154991612555" src="en-us_image_0000001134406294.png"></span></p>
-</li></ul>
-<p id="cce_01_0341__p16515912192615">Using rootfs for container storage in CCE</p>
-<ul id="cce_01_0341__ul197101852142618"><li id="cce_01_0341__li1271015220265">CCE cluster: EulerOS 2.9 nodes use OverlayFS, and EulerOS 2.5 nodes use Device Mapper. CentOS 7.6 nodes in clusters earlier than v1.21 use Device Mapper, and use OverlayFS in clusters of v.1.21 and later.</li></ul>
-<p id="cce_01_0341__p1469162212151">You can log in to the node and run the <strong id="cce_01_0341__b182955169314">docker info</strong> command to view the storage engine type.</p>
-<pre class="screen" id="cce_01_0341__screen655819587155"># docker info
-Containers: 20
- Running: 17
- Paused: 0
- Stopped: 3
-Images: 16
-Server Version: 18.09.0
-<span style="color:#FF0000;">Storage Driver: devicemapper</span></pre>
-</div>
-<div class="section" id="cce_01_0341__section12119191161518"><h4 class="sectiontitle">Docker Space and Containers</h4><p id="cce_01_0341__p14092029191414">The number of pods and the space configured for each container determine whether the Docker space of a node is sufficient.</p>
-<p id="cce_01_0341__p5888135001914"></p>
-<p id="cce_01_0341__p114546315158">The Docker space should be greater than the total disk space used by containers. Formula: <strong id="cce_01_0341__b132964178218">Docker space</strong> &gt; <strong id="cce_01_0341__b290232611214">Number of containers</strong> x <strong id="cce_01_0341__b195801829102114">Available data space for a single container (basesize)</strong></p>
-<p id="cce_01_0341__p552122284915"><strong id="cce_01_0341__b14909155012414">When device mapper is used</strong>, although you can limit the size of the <strong id="cce_01_0341__b14451113615217">/home</strong> directory of a single container (to 10 GB by default), all containers on the node still share the thin pool of the node for storage. They are not completely isolated. When the sum of the thin pool space used by certain containers reaches the upper limit, other containers cannot run properly.</p>
-<p id="cce_01_0341__p8521222154918">In addition, after a file is deleted in the <strong id="cce_01_0341__b84841451241">/home</strong> directory of the container, the thin pool space occupied by the file is not released immediately. Therefore, even if <strong id="cce_01_0341__b114845454243">basesize</strong> is set to 10 GB, the thin pool space occupied by files keeps increasing until 10 GB when files are created in the container. The space released after file deletion will be reused but after a while. If <strong id="cce_01_0341__b722334192516">the number of containers on the node multiplied by basesize</strong> is greater than the thin pool space size of the node, there is a possibility that the thin pool space has been used up.</p>
-</div>
-<div class="section" id="cce_01_0341__section1926415516193"><h4 class="sectiontitle">Garbage Collection Policies for Container Images</h4><p id="cce_01_0341__p972681822011">When the Docker space is insufficient, image garbage collection is triggered.</p>
-<p id="cce_01_0341__p116561726135115">The policy for garbage collecting images takes two factors into consideration: <strong id="cce_01_0341__b16515235351">HighThresholdPercent</strong> and <strong id="cce_01_0341__b1455317361951">LowThresholdPercent</strong>. Disk usage above the high threshold (default: 85%) will trigger garbage collection. The garbage collection will delete least recently used images until the low threshold (default: 80%) has been met.</p>
-</div>
-<div class="section" id="cce_01_0341__section41701981545"><h4 class="sectiontitle">Docker Space Configuration Suggestions</h4><ul id="cce_01_0341__ul65481047181516"><li id="cce_01_0341__li154817478159">The Docker space should be greater than the total disk space used by containers. Formula: <strong id="cce_01_0341__b2066417434131">Docker space</strong> &gt; <strong id="cce_01_0341__b206659431133">Number of containers</strong> x <strong id="cce_01_0341__b666594351310">Available data space for a single container (basesize)</strong></li><li id="cce_01_0341__li2845145154411">You are advised to create and delete files of containerized services in local storage volumes (such as emptyDir and hostPath volumes) or cloud storage directories mounted to the containers. In this way, the thin pool space is not occupied. emptyDir volumes occupy the kubelet space. Therefore, properly plan the size of the kubelet space.</li><li id="cce_01_0341__li3257185416717">Docker uses the OverlayFS storage mode. This mode is used in Ubuntu 18.04 nodes in CCE clusters by default. You can deploy services on these nodes to prevent that the disk space occupied by files created or deleted in containers is not released immediately.</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0342.html b/docs/cce/umn/cce_01_0342.html
deleted file mode 100644
index 5f86ea80..00000000
--- a/docs/cce/umn/cce_01_0342.html
+++ /dev/null
@@ -1,79 +0,0 @@
-<a name="cce_01_0342"></a><a name="cce_01_0342"></a>
-
-<h1 class="topictitle1">CCE Turbo Clusters and CCE Clusters</h1>
-<div id="body0000001176699695"><div class="section" id="cce_01_0342__section67171919115114"><h4 class="sectiontitle">Comparison Between CCE Turbo Clusters and CCE Clusters</h4><p id="cce_01_0342__en-us_topic_0000001151389047_p2050821394419">The following table lists the differences between CCE Turbo clusters and CCE clusters:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0342__en-us_topic_0000001151389047_table8289045224" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster types</caption><thead align="left"><tr id="cce_01_0342__en-us_topic_0000001151389047_row19289164182216"><th align="left" class="cellrowborder" valign="top" width="9.699030096990302%" id="mcps1.3.1.3.2.5.1.1"><p id="cce_01_0342__en-us_topic_0000001151389047_p1628917416228">Dimensions</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="12.218778122187782%" id="mcps1.3.1.3.2.5.1.2"><p id="cce_01_0342__en-us_topic_0000001151389047_p17232141414127">Sub-dimension</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="40.965903409659035%" id="mcps1.3.1.3.2.5.1.3"><p id="cce_01_0342__en-us_topic_0000001151389047_p101992815291">CCE Turbo Cluster</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="37.11628837116288%" id="mcps1.3.1.3.2.5.1.4"><p id="cce_01_0342__en-us_topic_0000001151389047_p4289544222">CCE Cluster</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0342__en-us_topic_0000001151389047_row0378353192912"><td class="cellrowborder" rowspan="2" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_01_0342__en-us_topic_0000001151389047_p243905112307">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_01_0342__en-us_topic_0000001151389047_p4966548153013">Positioning</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_01_0342__en-us_topic_0000001151389047_p123785538299">Next-generation container cluster for Cloud Native 2.0 with accelerated computing, networking, and scheduling</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_01_0342__en-us_topic_0000001151389047_p153781053122917">Standard cluster for common commercial use</p>
-</td>
-</tr>
-<tr id="cce_01_0342__en-us_topic_0000001151389047_row132892412218"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_01_0342__en-us_topic_0000001151389047_p136288022711">Node type</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_01_0342__en-us_topic_0000001151389047_p11199184296">Hybrid deployment of VMs and bare-metal servers</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_01_0342__en-us_topic_0000001151389047_p11340151510272">Hybrid deployment of VMs</p>
-</td>
-</tr>
-<tr id="cce_01_0342__en-us_topic_0000001151389047_row19562502266"><td class="cellrowborder" rowspan="3" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_01_0342__en-us_topic_0000001151389047_p1356550102618">Network</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_01_0342__en-us_topic_0000001151389047_p76288082716">Network model</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_01_0342__en-us_topic_0000001151389047_p101999842920"><strong id="cce_01_0342__b1220763175318">Cloud Native Network 2.0</strong>: applies to large-scale and high-performance scenarios.</p>
-<p id="cce_01_0342__en-us_topic_0000001151389047_p74677316335">Networking scale: 2000 nodes</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_01_0342__en-us_topic_0000001151389047_p1734061519273"><strong id="cce_01_0342__b109101441316">Cloud-native network 1.0</strong> for scenarios that do not require high performance or involve large-scale deployment.</p>
-<ul id="cce_01_0342__en-us_topic_0000001151389047_ul2055005123618"><li id="cce_01_0342__en-us_topic_0000001151389047_li10550155114368">Tunnel network model</li><li id="cce_01_0342__en-us_topic_0000001151389047_li9550551123616">VPC network model</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0342__en-us_topic_0000001151389047_row133581631175511"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_01_0342__en-us_topic_0000001151389047_p2800173617559">Network performance</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_01_0342__en-us_topic_0000001151389047_p219913817299">The VPC network and container network are flattened into one, achieving zero performance loss.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_01_0342__en-us_topic_0000001151389047_p58001736135520">The VPC network is overlaid with the container network, causing certain performance loss.</p>
-</td>
-</tr>
-<tr id="cce_01_0342__en-us_topic_0000001151389047_row1328914432215"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_01_0342__en-us_topic_0000001151389047_p1362811017275">Container network isolation</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_01_0342__en-us_topic_0000001151389047_p519910842911">Pods can be directly associated with security groups to configure isolation policies for resources inside and outside a cluster.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_01_0342__en-us_topic_0000001151389047_ul29571941173617"><li id="cce_01_0342__en-us_topic_0000001151389047_li1595716411365">Tunnel network model: Network isolation policies are supported for intra-cluster communication (by configuring network policies).</li><li id="cce_01_0342__en-us_topic_0000001151389047_li16957541123611">VPC network model: Isolation is not supported.</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0342__en-us_topic_0000001151389047_row17290144506"><td class="cellrowborder" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_01_0342__en-us_topic_0000001151389047_p85985184509">Security</p>
-</td>
-<td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_01_0342__en-us_topic_0000001151389047_p959891855012">Isolation</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_01_0342__en-us_topic_0000001151389047_ul125981418125012"><li id="cce_01_0342__en-us_topic_0000001151389047_li159814182503">Bare-metal server: You can select secure containers for VM-level isolation.</li><li id="cce_01_0342__en-us_topic_0000001151389047_li1759813188506">VM: Common containers are deployed.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_01_0342__en-us_topic_0000001151389047_p16598131835011">Common containers are deployed and isolated by Cgroups.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0342__section67481620183113"><h4 class="sectiontitle">QingTian Architecture</h4><p id="cce_01_0342__p3849111653112"><span><img id="cce_01_0342__image148501216123112" src="en-us_image_0000001212924318.png"></span></p>
-<p id="cce_01_0342__p1185011160316">The QingTian architecture consists of data plane (software-hardware synergy) and management plane (Alkaid Smart Cloud Brain). The data plane innovates in five dimensions: simplified data center, diversified computing power, QingTian cards, ultra-fast engines, and simplified virtualization, to fully offload and accelerate compute, storage, networking, and security components. VMs, bare metal servers, and containers can run together. As a distributed operating system, the Alkaid Smart Cloud Brain focuses on the cloud, AI, and 5G, and provide all-domain scheduling to achieve cloud-edge-device collaboration and governance.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0343.html b/docs/cce/umn/cce_01_0343.html
deleted file mode 100644
index c2ebe74b..00000000
--- a/docs/cce/umn/cce_01_0343.html
+++ /dev/null
@@ -1,645 +0,0 @@
-<a name="cce_01_0343"></a><a name="cce_01_0343"></a>
-
-<h1 class="topictitle1">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</h1>
-<div id="body8662426"><p id="cce_01_0343__en-us_topic_0285037038_p148301338132712">In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. You are advised to use CSI Everest.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p1556618195217">To migrate your storage volumes, create a static PV to associate with the original underlying storage, and then create a PVC to associate with this static PV. When you upgrade your application, mount the new PVC to the original mounting path to migrate the storage volumes.</p>
-<div class="warning" id="cce_01_0343__en-us_topic_0285037038_note589874414375"><span class="warningtitle"><img src="public_sys-resources/warning_3.0-en-us.png"> </span><div class="warningbody"><p id="cce_01_0343__en-us_topic_0285037038_p1189834410374">Services will be interrupted during the migration. Therefore, properly plan the migration and back up data.</p>
-</div></div>
-<div class="section" id="cce_01_0343__en-us_topic_0285037038_section1914417445277"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0343__en-us_topic_0285037038_ol1119842011254"><li id="cce_01_0343__en-us_topic_0285037038_li39059101273"><span>(Optional) Back up data to prevent data loss in case of exceptions.</span></li><li id="cce_01_0343__en-us_topic_0285037038_li1219802032512"><a name="cce_01_0343__en-us_topic_0285037038_li1219802032512"></a><a name="en-us_topic_0285037038_li1219802032512"></a><span>Configure a YAML file of the PV in the CSI format according to the PV in the FlexVolume format and associate the PV with the existing storage.</span><p><p id="cce_01_0343__en-us_topic_0285037038_p10956144914562">To be specific, run the following commands to configure the pv-example.yaml file, which is used to create a PV. </p>
-<p id="cce_01_0343__en-us_topic_0285037038_p16647121665720"><strong id="cce_01_0343__en-us_topic_0285037038_b20159165101615">touch pv-example.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p166474161573"><strong id="cce_01_0343__en-us_topic_0285037038_b520305161611">vi pv-example.yaml</strong></p>
-<div class="p" id="cce_01_0343__en-us_topic_0285037038_p10409104995614">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b13988223541">a PV for an EVS volume</strong>:<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen124093496566">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  labels:
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b12131375441">failure-domain.beta.kubernetes.io/region: </strong><span id="cce_01_0343__en-us_topic_0285037038_text6728433172218">eu-de</span>
-<strong id="cce_01_0343__en-us_topic_0285037038_b16216133724416">    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone: </span><span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">zone name</span><span style="color:#FF0000;">&gt;</span></strong>
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-  <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b050631184419">name: </strong><strong id="cce_01_0343__en-us_topic_0285037038_b105123134415"><span style="color:#FF0000;">pv-evs-example</span></strong>
-spec:
-  accessModes:
-  - ReadWriteOnce
-  capacity:
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b1916712269445">storage: </strong><strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b15172162617446">10Gi</strong>
-  csi:
-    driver: disk.csi.everest.io
-    fsType: ext4
-    volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b771412711482">everest.io/disk-mode: </strong><strong id="cce_01_0343__en-us_topic_0285037038_b3715107184817"><span style="color:#FF0000;">SCSI</span></strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b57196714812">      <span style="color:#FF0000;">everest.io/disk-volume-type: </span><span style="color:#FF0000;">SAS</span></strong>
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b915010138486">volumeHandle: </strong><strong id="cce_01_0343__en-us_topic_0285037038_b5151201318488"><span style="color:#FF0000;">0992dbda-6340-470e-a74e-4f0db288ed82</span></strong>
-  persistentVolumeReclaimPolicy: Delete
-  storageClassName: csi-disk</pre>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p19607165215128"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p54091549175616">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>EVS volume configuration parameters</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.7.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p18191161619356">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.7.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p1919116161353">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row2318123021219"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p1995180962">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1861300612">Region where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row163191830121220"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p168517016619">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p12892459355">AZ where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row9653154613512"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p166542461356">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p126541746357">Name of the PV, which must be unique in the cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row36542464516"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p2065516461655">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1065544610519">EVS volume capacity in the unit of Gi. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b1144121364514">spec.capacity.storage</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row95681351352"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p115681951655">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p556912511555">Storage driver used to attach the volume. Set the driver to <strong id="cce_01_0343__en-us_topic_0285037038_b673716182452">disk.csi.everest.io</strong> for the EVS volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row856925110517"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p1756925110517">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p11569175120514">Volume ID of the EVS disk. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b221553434517">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row19351157557"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p183510571550">everest.io/disk-mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p163511571556">EVS disk mode. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b381519478459">spec.flexVolume.options.disk-mode</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row15352571556"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p3357571053">everest.io/disk-volume-type</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1936105718517">EVS disk type. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b2528131316506">kubernetes.io/volumetype</strong> in the storage class corresponding to <strong id="cce_01_0343__en-us_topic_0285037038_b1953411395020">spec.storageClassName</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row153610571511"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p03614576517">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b25261158105018">csi-disk</strong> for EVS disks.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p040913499563">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b9465137161213">a PV for an SFS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen16410149155610">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  <strong id="cce_01_0343__en-us_topic_0285037038_b20655104515487"><span style="color:#FF0000;">name: </span><span style="color:#FF0000;">pv-sfs-example</span></strong>
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-spec:
-  accessModes:
-  - ReadWriteMany
-  capacity:
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b10446115017484">storage: </strong><strong id="cce_01_0343__en-us_topic_0285037038_b11448135010480"><span style="color:#FF0000;">10Gi</span></strong>
-  csi:
-    driver: nas.csi.everest.io
-    fsType: nfs
-    volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b1986810568485">everest.io/share-export-location:  # Shared path of the file storage</strong>
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong id="cce_01_0343__en-us_topic_0285037038_b5516219497"><span style="color:#FF0000;">volumeHandle: 682f00bb-ace0-41d8-9b3e-913c9aa6b695</span></strong>
-  persistentVolumeReclaimPolicy: Delete
-  storageClassName: csi-nas</pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p104042044181220"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p6410144945614">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table10859183316916" frame="border" border="1" rules="all"><caption><b>Table 2 </b>SFS volume configuration parameters</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row38591633994"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.12.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p1385913337917">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.12.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p3859733090">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row88591233395"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p108591533693">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p148592335912">Name of the PV, which must be unique in the cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row158595338918"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p785919331096">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p186003319918">File storage size in the unit of Gi. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b4964104616563">spec.capacity.storage</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row48607331494"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p1686014331913">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p3860173312917">Storage driver used to attach the volume. Set the driver to <strong id="cce_01_0343__en-us_topic_0285037038_b67607155715">nas.csi.everest.io</strong> for the file system.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row6808112520114"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p17809172511117">everest.io/share-export-location</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p780919259115">Shared path of the file system. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b562915119">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row78601833094"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p18601933393">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p148602331397">File system ID. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b77331625326">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row5860143317914"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p178608331994">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b1398782915210">csi-nas</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p94101749105619">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b957014161416">a PV for an OBS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen341064915612">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b19697272497">name: pv-obs-example</strong>
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-spec:
-  accessModes:
-  - ReadWriteMany
-  capacity:
-    storage: 1Gi
-  csi:
-    driver: obs.csi.everest.io
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b64651633194911">fsType: s3fs</strong>
-    volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b18061377497">everest.io/obs-volume-type: STANDARD</strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b5807153794916">      <span style="color:#FF0000;">everest.io/region: </span><span style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_text13180166132919">eu-de</span></strong>
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b16316154315491">volumeHandle: obs-normal-static-pv</strong>
-  persistentVolumeReclaimPolicy: Delete
-  storageClassName: csi-obs</pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p1541064918566"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p1763835121210">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table147634352126" frame="border" border="1" rules="all"><caption><b>Table 3 </b>OBS volume configuration parameters</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row1376383591219"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.17.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p187631357122">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.17.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p147631357126">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row20763935101212"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p10763335141218">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1876313352123">Name of the PV, which must be unique in the cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row2763183511126"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p12763143541213">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p10763143561217">Storage capacity, in the unit of Gi. Set this parameter to the fixed value <strong id="cce_01_0343__en-us_topic_0285037038_b69303913316">1Gi</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row17763635161217"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p12763143516123">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p476403511217">Storage driver used to attach the volume. Set the driver to <strong id="cce_01_0343__en-us_topic_0285037038_b1892865020316">obs.csi.everest.io</strong> for the OBS volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row87641035151214"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p2764133531218">fsType</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1764163514127">File type. Value options are <strong id="cce_01_0343__en-us_topic_0285037038_b4774501048">obsfs</strong> or <strong id="cce_01_0343__en-us_topic_0285037038_b77751001416">s3fs</strong>. If the value is <strong id="cce_01_0343__en-us_topic_0285037038_b3775701249">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_01_0343__en-us_topic_0285037038_b0775140745">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. Set this parameter according to the value of <strong id="cce_01_0343__en-us_topic_0285037038_b182806128410">spec.flexVolume.options.posix</strong> of the FlexVolume PV. If the value of <strong id="cce_01_0343__en-us_topic_0285037038_b132852121947">spec.flexVolume.options.posix</strong> is <strong id="cce_01_0343__en-us_topic_0285037038_b42852121541">true</strong>, set this parameter to <strong id="cce_01_0343__en-us_topic_0285037038_b112862121945">obsfs</strong>. If the value is <strong id="cce_01_0343__en-us_topic_0285037038_b14286151215418">false</strong>, set this parameter to <strong id="cce_01_0343__en-us_topic_0285037038_b928615121417">s3fs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row671295211146"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p671313522145">everest.io/obs-volume-type</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p9713452161412">Storage class, including <strong id="cce_01_0343__en-us_topic_0285037038_b04090199415">STANDARD</strong> (standard bucket) and <strong id="cce_01_0343__en-us_topic_0285037038_b441491915417">WARM</strong> (infrequent access bucket). Set this parameter according to the value of <strong id="cce_01_0343__en-us_topic_0285037038_b11614133019416">spec.flexVolume.options.storage_class</strong> of the FlexVolume PV. If the value of <strong id="cce_01_0343__en-us_topic_0285037038_b261913012414">spec.flexVolume.options.storage_class</strong> is <strong id="cce_01_0343__en-us_topic_0285037038_b1461913300413">standard</strong>, set this parameter to <strong id="cce_01_0343__en-us_topic_0285037038_b362010301446">STANDARD</strong>. If the value is <strong id="cce_01_0343__en-us_topic_0285037038_b962023017412">standard_ia</strong>, set this parameter to <strong id="cce_01_0343__en-us_topic_0285037038_b1162018301843">WARM</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row1929744911413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p7298164941418">everest.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1429844971411">Region where the OBS bucket is located. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b9813625987">spec.flexVolume.options.region</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row19764935181217"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p476416354129">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1476433581210">OBS bucket name. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b19199334192">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row197641935171213"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p576413351125">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b184161337594">csi-obs</strong>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p204119497566">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b47395156165">a PV for an SFS Turbo volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen4411164920568">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b151901852174911">name: pv-efs-example</strong>
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-spec:
-  accessModes:
-  - ReadWriteMany
-  capacity:
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b872211561497">storage: 10Gi</strong>
-  csi:
-    driver: sfsturbo.csi.everest.io
-    fsType: nfs
-    volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b17915122125015">everest.io/share-export-location: 192.168.0.169:/</strong>
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b16810197175014">volumeHandle: 8962a2a2-a583-4b7f-bb74-fe76712d8414</strong>
-  persistentVolumeReclaimPolicy: Delete
-  storageClassName: csi-sfsturbo</pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p8391138132018"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p85884120207">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table7581741152015" frame="border" border="1" rules="all"><caption><b>Table 4 </b>SFS Turbo volume configuration parameters</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row2058124162013"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.22.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p13591241202019">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.22.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p1859204152010">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row185944110206"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p185919415209">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1259144113208">Name of the PV, which must be unique in the cluster.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row1459141112011"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p13592417202">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p2059174162015">File system size. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b7973528131212">spec.capacity.storage</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row8597411207"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p9591841152015">driver</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p16595418201">Storage driver used to attach the volume. Set it to <strong id="cce_01_0343__en-us_topic_0285037038_b028711355126">sfsturbo.csi.everest.io</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row1601741132014"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p10883193912218">everest.io/share-export-location</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p4882153911226">Shared path of the SFS Turbo volume. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b256734911217">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row176012417202"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p11881839112219">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p288013962213">SFS Turbo volume ID. Use the value of <strong id="cce_01_0343__en-us_topic_0285037038_b1819716572124">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row12603415203"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p11879153915225">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b92392161313">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0343__en-us_topic_0285037038_li1710710385418"><a name="cce_01_0343__en-us_topic_0285037038_li1710710385418"></a><a name="en-us_topic_0285037038_li1710710385418"></a><span>Configure a YAML file of the PVC in the CSI format according to the PVC in the FlexVolume format and associate the PVC with the PV created in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a>.</span><p><p id="cce_01_0343__en-us_topic_0285037038_p11528815195819">To be specific, run the following commands to configure the pvc-example.yaml file, which is used to create a PVC. </p>
-<p id="cce_01_0343__en-us_topic_0285037038_p652841585811"><strong id="cce_01_0343__en-us_topic_0285037038_b136125221717">touch pvc-example.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p185281515155810"><strong id="cce_01_0343__en-us_topic_0285037038_b6957522175">vi pvc-example.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p474941465817">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b125522619204">a PVC for an EVS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen874991414586">apiVersion: v1  
-kind: PersistentVolumeClaim
-metadata:
-  labels:
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b3970622105017">failure-domain.beta.kubernetes.io/region: <span id="cce_01_0343__en-us_topic_0285037038_text20432543122320">eu-de</span></strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b209722222507">    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone: </span><span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">zone name</span><span style="color:#FF0000;">&gt;</span></strong>
-  annotations:
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b37912037155015">everest.io/disk-volume-type: SAS</strong>
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-  <strong id="cce_01_0343__en-us_topic_0285037038_b161731742165015"><span style="color:#FF0000;">name: pvc-evs-example</span></strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b61761842205015">  <span style="color:#FF0000;">namespace: default</span></strong>
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b1345115474504">storage: 10Gi</strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b645811477500">  <span style="color:#FF0000;">volumeName:  pv-evs-example</span></strong>
-  storageClassName: csi-disk</pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p9518267242"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p3812172815241">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table16812928132411" frame="border" border="1" rules="all"><caption><b>Table 5 </b>PVC configuration parameters for an EVS volume</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row4813122818245"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.8.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p16813112818246">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.8.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p198131028112415">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row081318282243"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p1732144516242">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1431974514243">Region where the cluster is located. Use the same value as that of the FlexVolume PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row1581342816246"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p1631844572420">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p18317184513249">AZ where the EVS disk is deployed. Use the same value as that of the FlexVolume PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row181462811245"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p133168454241">everest.io/disk-volume-type</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p0315114552411">Storage class of the EVS disk. The value can be <strong id="cce_01_0343__en-us_topic_0285037038_b139414107543">SAS</strong> or <strong id="cce_01_0343__en-us_topic_0285037038_b540051016549">SSD</strong>. Set this parameter to the same value as that of the PV created in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row681442812241"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p123141645112413">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p531364572411">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row14814112802420"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p12312104542415">namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p23111645172416">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row29461842142512"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p17946114232518">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p139473427251">Requested capacity of the PVC, which must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row49479423257"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p18947342152514">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p3947184232520">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row18815102892413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p8310164517245">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b595416107185">csi-disk</strong> for EVS disks.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p274981413584">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b89401733192715">a PVC for an SFS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen374911425816">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-  <strong id="cce_01_0343__en-us_topic_0285037038_b133131858205020"><span style="color:#FF0000;">name: pvc-sfs-example</span></strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b143149582501">  <span style="color:#FF0000;">namespace: default</span></strong>
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b951138515">storage: 10Gi</strong>
-  storageClassName: csi-nas
-  <strong id="cce_01_0343__en-us_topic_0285037038_b31661107515"><span style="color:#FF0000;">volumeName: pv-sfs-example</span></strong></pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p153871736162614"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p12224173311267">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table422493310266" frame="border" border="1" rules="all"><caption><b>Table 6 </b>PVC configuration parameters for an SFS volume</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row1922563392612"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.13.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p22251033152613">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.13.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p8225933132618">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row2225333122619"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p8945032152711">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p10943203272712">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row12258330265"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p199433322276">namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1794193282720">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row4226193317265"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p3941123222711">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1937163220275">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row122267331266"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p693723214276">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p12935432172717">Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b2098319548357">csi-nas</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row16226173312266"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p13935113202710">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1789783262714">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p10749101435811">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b1319323912287">a PVC for an OBS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen6750191415816">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b148192314516">everest.io/obs-volume-type: STANDARD</strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b115042311518">    <span style="color:#FF0000;">csi.storage.k8s.io/fstype: s3fs</span></strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b65119231516">  <span style="color:#FF0000;">name: pvc-obs-example</span></strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b155282318512">  <span style="color:#FF0000;">namespace: default</span></strong>
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 1Gi
-  storageClassName: csi-obs
-  <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b1338563395110">volumeName: pv-obs-example</strong></pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p383704032816"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p47721342102816">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table17773144214281" frame="border" border="1" rules="all"><caption><b>Table 7 </b>PVC configuration parameters for an OBS volume</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row177312429288"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.18.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p1577319428281">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.18.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p18773114202812">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row577312423281"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p193015559284">everest.io/obs-volume-type</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p992585519282">OBS volume type, which can be <strong id="cce_01_0343__en-us_topic_0285037038_b2444626143612">STANDARD</strong> (standard bucket) and <strong id="cce_01_0343__en-us_topic_0285037038_b844912623617">WARM</strong> (infrequent access bucket). Set this parameter to the same value as that of the PV created in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row19773144211282"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p5923855162815">csi.storage.k8s.io/fstype</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p39171555102815">File type, which can be <strong id="cce_01_0343__en-us_topic_0285037038_b13289932153612">obsfs</strong> or <strong id="cce_01_0343__en-us_topic_0285037038_b1290113233617">s3fs</strong>. The value must be the same as that of <strong id="cce_01_0343__en-us_topic_0285037038_b14178841123611">fsType</strong> of the static OBS volume PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row477319428280"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p1291685572817">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p109121355172817">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row1774942132812"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p1991165552819">namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p5906185532810">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row45426588296"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p18543135842910">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p5543125816296">Storage capacity, in the unit of Gi. Set this parameter to the fixed value <strong id="cce_01_0343__en-us_topic_0285037038_b539314634520">1Gi</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row19543858172911"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p185431558192914">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b55964491456">csi-obs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row1577494282811"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p169043554284">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p14898135517281">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p1675061455816">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b17354554153016">a PVC for an SFS Turbo volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen3750214135816">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  annotations:
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-  <strong id="cce_01_0343__en-us_topic_0285037038_b244135135117"><span style="color:#FF0000;">name: pvc-efs-example</span></strong>
-<strong id="cce_01_0343__en-us_topic_0285037038_b1745135175111">  <span style="color:#FF0000;">namespace: default</span></strong>
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b19227115545111">storage: 10Gi</strong>
-  storageClassName: csi-sfsturbo
-  <strong style="color:#FF0000;" id="cce_01_0343__en-us_topic_0285037038_b189426581511">volumeName: pv-efs-example</strong></pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p86568093119"></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p1171114213318">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0343__en-us_topic_0285037038_table671111213311" frame="border" border="1" rules="all"><caption><b>Table 8 </b>PVC configuration parameters for an SFS Turbo volume</caption><thead align="left"><tr id="cce_01_0343__en-us_topic_0285037038_row1471215263113"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.23.2.3.1.1"><p id="cce_01_0343__en-us_topic_0285037038_p67121726317">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.23.2.3.1.2"><p id="cce_01_0343__en-us_topic_0285037038_p1271218216314">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0343__en-us_topic_0285037038_row57121926319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p0943764313">name</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p199421860316">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row57124233111"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p494114615316">namespace</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p49399611316">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row10712132133110"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p193419653113">storageClassName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_01_0343__en-us_topic_0285037038_b205679596525">csi-sfsturbo</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row97131621319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p11933106203116">storage</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p179324633110">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
-</td>
-</tr>
-<tr id="cce_01_0343__en-us_topic_0285037038_row17131626319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_01_0343__en-us_topic_0285037038_p39311762316">volumeName</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_01_0343__en-us_topic_0285037038_p1393016623115">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_01_0343__en-us_topic_0285037038_li487255772614"><a name="cce_01_0343__en-us_topic_0285037038_li487255772614"></a><a name="en-us_topic_0285037038_li487255772614"></a><span>Upgrade the workload to use a new PVC.</span><p><div class="p" id="cce_01_0343__en-us_topic_0285037038_p49135415327"><strong id="cce_01_0343__en-us_topic_0285037038_b4921045529">For Deployments</strong><ol type="a" id="cce_01_0343__en-us_topic_0285037038_ol13702185293210"><li id="cce_01_0343__en-us_topic_0285037038_li89201610376">Run the <strong id="cce_01_0343__en-us_topic_0285037038_b37767425521">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_01_0343__en-us_topic_0285037038_p14051775518"><strong style="color:#252B3A;" id="cce_01_0343__en-us_topic_0285037038_b634944319535">kubectl create -f pv-example.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p3931117155519"><strong id="cce_01_0343__en-us_topic_0285037038_b12351174335316"><span style="color:#252B3A;">kubectl create -f pvc-example.yaml</span></strong></p>
-<div class="note" id="cce_01_0343__en-us_topic_0285037038_note29456108015"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0343__en-us_topic_0285037038_p15945410903">Replace the example file name <strong id="cce_01_0343__en-us_topic_0285037038_b488083619534">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a> and <a href="#cce_01_0343__en-us_topic_0285037038_li1710710385418">3</a>.</p>
-</div></div>
-</li><li id="cce_01_0343__en-us_topic_0285037038_li9702175212324">Go to the CCE console. On the workload upgrade page, click <strong id="cce_01_0343__en-us_topic_0285037038_b112026811519">Upgrade</strong> &gt; <strong id="cce_01_0343__en-us_topic_0285037038_b1293016109517">Advanced Settings</strong> &gt; <strong id="cce_01_0343__en-us_topic_0285037038_b2033618182518">Data Storage</strong> &gt; <strong id="cce_01_0343__en-us_topic_0285037038_b3464204813510">Cloud Storage</strong>.<p id="cce_01_0343__en-us_topic_0285037038_p86798198185"></p>
-</li><li id="cce_01_0343__en-us_topic_0285037038_li1570218527326">Uninstall the old storage and add the PVC in the CSI format. Retain the original mounting path in the container.</li><li id="cce_01_0343__en-us_topic_0285037038_li770285210328">Click <strong id="cce_01_0343__en-us_topic_0285037038_b8264527157">Submit</strong>.</li><li id="cce_01_0343__en-us_topic_0285037038_li9702125211325">Wait until the pods are running.</li></ol>
-</div>
-<p id="cce_01_0343__en-us_topic_0285037038_p2046531913410"><strong id="cce_01_0343__en-us_topic_0285037038_b1218415319183">For StatefulSets that use existing storage</strong></p>
-<ol type="a" id="cce_01_0343__en-us_topic_0285037038_ol391017653810"><li id="cce_01_0343__en-us_topic_0285037038_li1991019610384">Run the <strong id="cce_01_0343__en-us_topic_0285037038_b5635143217182">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_01_0343__en-us_topic_0285037038_p719614467583"><strong style="color:#252B3A;" id="cce_01_0343__en-us_topic_0285037038_b16814314529">kubectl create -f pv-example.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p2019634635813"><strong id="cce_01_0343__en-us_topic_0285037038_b368303175216"><span style="color:#252B3A;">kubectl create -f pvc-example.yaml</span></strong></p>
-<div class="note" id="cce_01_0343__en-us_topic_0285037038_note1366820421907"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0343__en-us_topic_0285037038_p1766874218020">Replace the example file name <strong id="cce_01_0343__en-us_topic_0285037038_b2077273716181">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a> and <a href="#cce_01_0343__en-us_topic_0285037038_li1710710385418">3</a>.</p>
-</div></div>
-</li><li id="cce_01_0343__en-us_topic_0285037038_li467218817397">Run the <strong id="cce_01_0343__en-us_topic_0285037038_b591655819185">kubectl edit</strong> command to edit the StatefulSet and use the newly created PVC.<p id="cce_01_0343__en-us_topic_0285037038_p3883848805"><strong id="cce_01_0343__en-us_topic_0285037038_b8480926155211">kubectl edit sts sts-example -n</strong> xxx</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p1047514291298"><span><img id="cce_01_0343__en-us_topic_0285037038_image1089813263010" src="en-us_image_0000001097062729.png"></span></p>
-<div class="note" id="cce_01_0343__en-us_topic_0285037038_note1646111820116"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0343__en-us_topic_0285037038_p74619186120">Replace <strong id="cce_01_0343__en-us_topic_0285037038_b137451618206">sts-example</strong> in the preceding command with the actual name of the StatefulSet to upgrade. <strong id="cce_01_0343__en-us_topic_0285037038_b11603328217">xxx</strong> indicates the namespace to which the StatefulSet belongs.</p>
-</div></div>
-</li><li id="cce_01_0343__en-us_topic_0285037038_li182243184017">Wait until the pods are running.</li></ol>
-<div class="note" id="cce_01_0343__en-us_topic_0285037038_note14106440104810"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0343__en-us_topic_0285037038_p1010634011480">The current console does not support the operation of adding new cloud storage for StatefulSets. Use the kubectl commands to replace the storage with the newly created PVC.</p>
-</div></div>
-<p id="cce_01_0343__en-us_topic_0285037038_p6139112124010"><strong id="cce_01_0343__en-us_topic_0285037038_b169082072316">For StatefulSets that use dynamically allocated storage</strong></p>
-<ol type="a" id="cce_01_0343__en-us_topic_0285037038_ol8394103754010"><li id="cce_01_0343__en-us_topic_0285037038_li839453710408">Back up the PV and PVC in the flexVolume format used by the StatefulSet.<p id="cce_01_0343__en-us_topic_0285037038_p860733613433"><a name="cce_01_0343__en-us_topic_0285037038_li839453710408"></a><a name="en-us_topic_0285037038_li839453710408"></a><strong id="cce_01_0343__en-us_topic_0285037038_b15772239165214">kubectl get pvc xxx -n {namespaces} -oyaml &gt; pvc-backup.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p1946244224319"><strong id="cce_01_0343__en-us_topic_0285037038_b11773153914525">kubectl get pv xxx -n {namespaces} -oyaml &gt; pv-backup.yaml</strong></p>
-</li><li id="cce_01_0343__en-us_topic_0285037038_li3752132274116">Change the number of pods to <strong id="cce_01_0343__en-us_topic_0285037038_b842715611241">0</strong>.</li><li id="cce_01_0343__en-us_topic_0285037038_li8594347124116">On the storage page, disassociate the flexVolume PVC used by the StatefulSet.</li><li id="cce_01_0343__en-us_topic_0285037038_li1516912289428">Run the <strong id="cce_01_0343__en-us_topic_0285037038_b4130171813255">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_01_0343__en-us_topic_0285037038_p8843649624"><strong style="color:#252B3A;" id="cce_01_0343__en-us_topic_0285037038_b6321104512522">kubectl create -f pv-example.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p108433491626"><strong id="cce_01_0343__en-us_topic_0285037038_b732314519529"><span style="color:#252B3A;">kubectl create -f pvc-example.yaml</span></strong></p>
-<div class="note" id="cce_01_0343__en-us_topic_0285037038_note1984317491325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0343__en-us_topic_0285037038_p884394916216">Replace the example file name <strong id="cce_01_0343__en-us_topic_0285037038_b63634327258">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_01_0343__en-us_topic_0285037038_li1219802032512">2</a> and <a href="#cce_01_0343__en-us_topic_0285037038_li1710710385418">3</a>.</p>
-</div></div>
-</li><li id="cce_01_0343__en-us_topic_0285037038_li416917424">Change the number of pods back to the original value and wait until the pods are running.</li></ol>
-<div class="note" id="cce_01_0343__en-us_topic_0285037038_note16369154924218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0343__en-us_topic_0285037038_p193690499421">The dynamic allocation of storage for StatefulSets is achieved by using <strong id="cce_01_0343__en-us_topic_0285037038_b718174012716">volumeClaimTemplates</strong>. This field cannot be modified by Kubernetes. Therefore, data cannot be migrated by using a new PVC.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p191911444124512">The PVC naming rule of the <strong id="cce_01_0343__en-us_topic_0285037038_b586438122911">volumeClaimTemplates</strong> is fixed. When a PVC that meets the naming rule exists, this PVC is used.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p226010117479">Therefore, disassociate the original PVC first, and then create a PVC with the same name in the CSI format.</p>
-</div></div>
-<p id="cce_01_0343__en-us_topic_0285037038_p101114953715">6. (Optional) Recreate the stateful application to ensure that a CSI PVC is used when the application is scaled out. Otherwise, FlexVolume PVCs are used in scaling out.</p>
-<ul id="cce_01_0343__en-us_topic_0285037038_ul6565455173114"><li id="cce_01_0343__en-us_topic_0285037038_li85652555315">Run the following command to obtain the YAML file of the StatefulSet:</li></ul>
-<p id="cce_01_0343__en-us_topic_0285037038_p8106135815424"><strong id="cce_01_0343__en-us_topic_0285037038_b142839015531">kubectl get sts xxx -n {namespaces} -oyaml &gt; sts.yaml</strong></p>
-<ul id="cce_01_0343__en-us_topic_0285037038_ul1702757163116"><li id="cce_01_0343__en-us_topic_0285037038_li1870215715312">Run the following command to back up the YAML file of the StatefulSet:</li></ul>
-<p id="cce_01_0343__en-us_topic_0285037038_p16392162024511"><strong id="cce_01_0343__en-us_topic_0285037038_b885919419538">cp sts.yaml sts-backup.yaml</strong></p>
-<ul id="cce_01_0343__en-us_topic_0285037038_ul147311659183119"><li id="cce_01_0343__en-us_topic_0285037038_li9731259123116">Modify the definition of <strong id="cce_01_0343__en-us_topic_0285037038_b181291215342">volumeClaimTemplates</strong> in the YAML file of the StatefulSet.</li></ul>
-<p id="cce_01_0343__en-us_topic_0285037038_p1503720144718"><strong id="cce_01_0343__en-us_topic_0285037038_b61168985318">vi sts.yaml</strong></p>
-<p id="cce_01_0343__en-us_topic_0285037038_p1327113457466">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b187711213386">volumeClaimTemplates for an EVS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen8273843134614">  volumeClaimTemplates:
-    - metadata:
-        name: pvc-161070049798261342
-        namespace: default
-        creationTimestamp: null
-        annotations:
-          everest.io/disk-volume-type: SAS
-      spec:
-        accessModes:
-          - ReadWriteOnce
-        resources:
-          requests:
-            storage: 10Gi
-        storageClassName: csi-disk</pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p16173075017">The parameter value must be the same as the PVC of the EVS volume created in <a href="#cce_01_0343__en-us_topic_0285037038_li1710710385418">3</a>.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p496972015420">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b38819408388">volumeClaimTemplates for an SFS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen2111101275510">  volumeClaimTemplates:
-    - metadata:
-        name: pvc-161063441560279697
-        namespace: default
-        creationTimestamp: null
-      spec:
-        accessModes:
-          - ReadWriteMany
-        resources:
-          requests:
-            storage: 10Gi
-        storageClassName: csi-nas</pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p18964174325419">The parameter value must be the same as the PVC of the SFS volume created in <a href="#cce_01_0343__en-us_topic_0285037038_li1710710385418">3</a>.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p2028514411542">Configuration example of <strong id="cce_01_0343__en-us_topic_0285037038_b32081043916">volumeClaimTemplates for an OBS volume</strong>:</p>
-<pre class="screen" id="cce_01_0343__en-us_topic_0285037038_screen3803192217565">  volumeClaimTemplates:
-    - metadata:
-        name: pvc-161070100417416148
-        namespace: default
-        creationTimestamp: null
-        annotations:
-          csi.storage.k8s.io/fstype: s3fs
-          everest.io/obs-volume-type: STANDARD
-      spec:
-        accessModes:
-          - ReadWriteMany
-        resources:
-          requests:
-            storage: 1Gi
-        storageClassName: csi-obs</pre>
-<p id="cce_01_0343__en-us_topic_0285037038_p7452134435416">The parameter value must be the same as the PVC of the OBS volume created in <a href="#cce_01_0343__en-us_topic_0285037038_li1710710385418">3</a>.</p>
-<ul id="cce_01_0343__en-us_topic_0285037038_ul4451106123212"><li id="cce_01_0343__en-us_topic_0285037038_li1445110623213">Delete the StatefulSet.</li></ul>
-<p id="cce_01_0343__en-us_topic_0285037038_p9484135210583"><strong id="cce_01_0343__en-us_topic_0285037038_b10187161615531">kubectl delete sts xxx -n</strong> {namespaces}</p>
-<ul id="cce_01_0343__en-us_topic_0285037038_ul23331682326"><li id="cce_01_0343__en-us_topic_0285037038_li183333819328">Create the StatefulSet.</li></ul>
-<p id="cce_01_0343__en-us_topic_0285037038_p15201716115912"><strong id="cce_01_0343__en-us_topic_0285037038_b364112118534">kubectl create -f sts.yaml</strong></p>
-</p></li><li id="cce_01_0343__en-us_topic_0285037038_li613114241611"><span>Check service functions.</span><p><ol type="a" id="cce_01_0343__en-us_topic_0285037038_ol11922155141617"><li id="cce_01_0343__en-us_topic_0285037038_li39225559164">Check whether the application is running properly.</li><li id="cce_01_0343__en-us_topic_0285037038_li14372105921616">Checking whether the data storage is normal.</li></ol>
-<div class="note" id="cce_01_0343__en-us_topic_0285037038_note175615519171"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0343__en-us_topic_0285037038_p25611851151710">If a rollback is required, perform <a href="#cce_01_0343__en-us_topic_0285037038_li487255772614">4</a>. Select the PVC in FlexVolume format and upgrade the application.</p>
-</div></div>
-</p></li><li id="cce_01_0343__en-us_topic_0285037038_li11514201412713"><span>Uninstall the PVC in the FlexVolume format.</span><p><p id="cce_01_0343__en-us_topic_0285037038_p1096845811912">If the application functions normally, unbind the PVC in the FlexVolume format on the storage management page.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p106251635193615">You can also run the kubectl command to delete the PVC and PV of the FlexVolume format.</p>
-<div class="caution" id="cce_01_0343__en-us_topic_0285037038_note7619735143613"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_01_0343__en-us_topic_0285037038_p14619163573619">Before deleting a PV, change the persistentVolumeReclaimPolicy of the PV to <strong id="cce_01_0343__en-us_topic_0285037038_b057412249379">Retain</strong>. Otherwise, the underlying storage will be reclaimed after the PV is deleted.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p597819349482">If the cluster has been upgraded before the storage migration, PVs may fail to be deleted. You can remove the PV protection field <strong id="cce_01_0343__en-us_topic_0285037038_b16941325115918">finalizers</strong> to delete PVs.</p>
-<p id="cce_01_0343__en-us_topic_0285037038_p69375506527">kubectl patch pv {pv_name} -p '{"metadata":{"finalizers":null}}'</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0305.html">Storage (FlexVolume)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0344.html b/docs/cce/umn/cce_01_0344.html
deleted file mode 100644
index 2866f65c..00000000
--- a/docs/cce/umn/cce_01_0344.html
+++ /dev/null
@@ -1,88 +0,0 @@
-<a name="cce_01_0344"></a><a name="cce_01_0344"></a>
-
-<h1 class="topictitle1">Adding a Second Data Disk to a Node in a CCE Cluster</h1>
-<div id="body8662426"><p id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_p288973420553">You can use the pre-installation script feature to configure CCE cluster nodes (ECSs). </p>
-<div class="note" id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_note187118299010"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_ul148441643567"><li id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_li78443455617">When creating a node in a cluster of v1.13.10 or later, if a data disk is not managed by LVM, follow instructions in this section to format the data disk before adding the disk. Otherwise, the data disk will still be managed by LVM.</li><li id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_li284412417565">When creating a node in a cluster earlier than v1.13.10, you must format the data disks that are not managed by LVM. Otherwise, either these data disks or the first data disk will be managed by LVM.</li></ul>
-</div></div>
-<p id="cce_01_0344__en-us_topic_0261817664_p1015225014282">Before using this feature, write a script that can format data disks and save it to your OBS bucket. This script must be executed by user <strong id="cce_01_0344__b12368487253">root</strong>.</p>
-<p id="cce_01_0344__en-us_topic_0261817664_p14797151002918"><strong id="cce_01_0344__b8735151412269">Input Parameters</strong></p>
-<ol id="cce_01_0344__en-us_topic_0261817664_ol2479194612293"><li id="cce_01_0344__en-us_topic_0261817664_li1184816446266">Set the script name to <strong id="cce_01_0344__b11895918132610">formatdisk.sh</strong>, save the script to your OBS bucket, and obtain the address of the script in OBS.</li><li id="cce_01_0344__en-us_topic_0261817664_li4843193873011">You need to specify the size of the Docker data disk (the data disk managed by LVM is called the Docker data disk). The size of the Docker disk must be different from that of the second disk. For example, the Docker data disk is 100 GB and the new disk is 110 GB.</li><li id="cce_01_0344__en-us_topic_0261817664_li414717519311">Set the mount path of the second data disk, for example, <strong id="cce_01_0344__b161641838172615">/data/code</strong>.</li></ol>
-<p id="cce_01_0344__en-us_topic_0261817664_p1055181511314">Run the following command in the pre-installation script to format the disk:</p>
-<pre class="screen" id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_screen758171514537">cd /tmp;curl -k -X GET <strong id="cce_01_0344__b1875314503263"><em id="cce_01_0344__i67471850122614">OBS bucket address</em></strong> /formatdisk.sh -1 -O;fdisk -l;sleep 30;bash -x formatdisk.sh <strong id="cce_01_0344__b37531350142614">100</strong> <strong id="cce_01_0344__b197531450132610">/data/code</strong>;fdisk -l</pre>
-<p id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_p44543285525">Example script (<strong id="cce_01_0344__b1719855415266">formatdisk.sh</strong>):</p>
-<pre class="screen" id="cce_01_0344__en-us_topic_0261817664_en-us_topic_0176300808_screen669716413522">dockerdisksize=$1
-mountdir=$2
-systemdisksize=40
-i=0
-while [ 20 -gt $i ]; do 
-    echo $i; 
-    if [ $(lsblk -o KNAME,TYPE | grep disk | grep -v nvme | awk '{print $1}' | awk '{ print "/dev/"$1}' |wc -l) -ge 3 ]; then 
-        break 
-    else 
-        sleep 5 
-    fi; 
-    i=$[i+1] 
-done 
-all_devices=$(lsblk -o KNAME,TYPE | grep disk | grep -v nvme | awk '{print $1}' | awk '{ print "/dev/"$1}')
-for device in ${all_devices[@]}; do
-    isRawDisk=$(lsblk -n $device 2&gt;/dev/null | grep disk | wc -l)
-    if [[ ${isRawDisk} &gt; 0 ]]; then
-        # is it partitioned ?
-        match=$(lsblk -n $device 2&gt;/dev/null | grep -v disk | wc -l)
-        if [[ ${match} &gt; 0 ]]; then
-            # already partited
-            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Raw disk ${device} has been partition, will skip this device"
-            continue
-        fi
-    else
-        isPart=$(lsblk -n $device 2&gt;/dev/null | grep part | wc -l)
-        if [[ ${isPart} -ne 1 ]]; then
-            # not parted
-            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} has not been partition, will skip this device"
-            continue
-        fi
-        # is used ?
-        match=$(lsblk -n $device 2&gt;/dev/null | grep -v part | wc -l)
-        if [[ ${match} &gt; 0 ]]; then
-            # already used
-            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} has been used, will skip this device"
-            continue
-        fi
-        isMount=$(lsblk -n -o MOUNTPOINT $device 2&gt;/dev/null)
-        if [[ -n ${isMount} ]]; then
-            # already used
-            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} has been used, will skip this device"
-            continue
-        fi
-        isLvm=$(sfdisk -lqL 2&gt;&gt;/dev/null | grep $device | grep "8e.*Linux LVM")
-        if [[ ! -n ${isLvm} ]]; then
-            # part system type is not Linux LVM
-            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} system type is not Linux LVM, will skip this device"
-            continue
-        fi
-    fi
-    block_devices_size=$(lsblk -n -o SIZE $device 2&gt;/dev/null | awk '{ print $1}')
-    if [[ ${block_devices_size}"x" != "${dockerdisksize}Gx" ]] &amp;&amp; [[ ${block_devices_size}"x" != "${systemdisksize}Gx" ]]; then
-echo "n
-p
-1
-
-
-w
-" | fdisk $device
-        mkfs -t ext4 ${device}1
-        mkdir -p $mountdir
-	uuid=$(blkid ${device}1 |awk '{print $2}')
-	echo "${uuid}  $mountdir ext4  noatime  0 0" | tee -a /etc/fstab &gt;/dev/null
-        mount $mountdir
-    fi
-done</pre>
-<div class="note" id="cce_01_0344__en-us_topic_0261817664_note129708364117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0344__en-us_topic_0261817664_p1897163671118">If the preceding example cannot be executed, use the dos2unix tool to convert the format.</p>
-</div></div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0347.html b/docs/cce/umn/cce_01_0347.html
deleted file mode 100644
index 8e37b697..00000000
--- a/docs/cce/umn/cce_01_0347.html
+++ /dev/null
@@ -1,19 +0,0 @@
-<a name="cce_01_0347"></a><a name="cce_01_0347"></a>
-
-
-  <h1 class="topictitle1">Cluster Parameters</h1>
-
-  <div id="body0000001148804374"><p id="cce_01_0347__p8060118"></p>
-</div>
-
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0348.html">Maximum Number of Pods That Can Be Created on a Node</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0348.html b/docs/cce/umn/cce_01_0348.html
deleted file mode 100644
index f8f25cb3..00000000
--- a/docs/cce/umn/cce_01_0348.html
+++ /dev/null
@@ -1,27 +0,0 @@
-<a name="cce_01_0348"></a><a name="cce_01_0348"></a>
-
-<h1 class="topictitle1">Maximum Number of Pods That Can Be Created on a Node</h1>
-<div id="body0000001194883959"><p id="cce_01_0348__p4301132315368">The maximum number of pods that can be created on a node is determined by the following parameters:</p>
-<ul id="cce_01_0348__ul182866594369"><li id="cce_01_0348__li10119934104016">Number of container IP addresses that can be allocated on a node (alpha.cce/fixPoolMask): Set this parameter when creating a CCE cluster. This parameter is available only when <strong id="cce_01_0348__b2275134162911">Network Model</strong> is <span class="uicontrol" id="cce_01_0348__uicontrol9275153416295"><b>VPC network</b></span>.</li><li id="cce_01_0348__li125231619113110">Maximum number of pods of a node (maxPods): Set this parameter when creating a node. It is a configuration item of kubelet.</li><li id="cce_01_0348__li5286959123611">Number of ENIs of a CCE Turbo cluster node: In a CCE Turbo cluster, ECS nodes use sub-ENIs and BMS nodes use ENIs. The maximum number of pods that can be created on a node depends on the number of ENIs that can be used by the node.</li></ul>
-<p id="cce_01_0348__p18604173662514">The maximum number of pods that can be created on a node depends on the minimum value of these parameters.</p>
-<ul id="cce_01_0348__ul1792348152514"><li id="cce_01_0348__li1179213481256">For a cluster using the container tunnel network model, the value depends only on <a href="#cce_01_0348__section16296174054019">the maximum number of pods on a node</a>.</li><li id="cce_01_0348__li67512318260">For a cluster using the VPC network model, the value depends on the minimum value between <a href="#cce_01_0348__section16296174054019">the maximum number of pods on a node</a> and <a href="#cce_01_0348__section10770192193714">the number of container IP addresses that can be allocated to a node</a>, that is, min(maximum number of pods on a node, number of container IP addresses that can be allocated to a node).</li><li id="cce_01_0348__li1484192016275">For a cluster (CCE Turbo cluster) using the Cloud Native Network 2.0 model, the value depends on <a href="#cce_01_0348__section16296174054019">the maximum number of pods on a node</a> and <a href="#cce_01_0348__section491514414286">the number of NICs on a CCE Turbo cluster node</a>.</li></ul>
-<div class="section" id="cce_01_0348__section12428143711548"><h4 class="sectiontitle">Container Network vs. Host Network</h4><p id="cce_01_0348__p94989483544">When creating a pod, you can select the container network or host network for the pod.</p>
-<ul id="cce_01_0348__ul373982665917"><li id="cce_01_0348__li13739132619599">Container network (default): <strong id="cce_01_0348__b433319515920">Each pod is assigned an IP address by the cluster networking add-ons, which occupies the IP addresses of the container network</strong>.</li><li id="cce_01_0348__li13752132911597">Host network: The pod uses the host network (<strong id="cce_01_0348__b4625914564">hostNetwork: true</strong> needs to be configured for the pod) and occupies the host port. The pod IP address is the host IP address. The pod does not occupy the IP addresses of the container network. To use the host network, you must confirm whether the container ports conflict with the host ports. Do not use the host network unless you know exactly which host port is used by which container.</li></ul>
-</div>
-<div class="section" id="cce_01_0348__section10770192193714"><a name="cce_01_0348__section10770192193714"></a><a name="section10770192193714"></a><h4 class="sectiontitle">Number of Container IP Addresses That Can Be Allocated on a Node</h4><p id="cce_01_0348__p8060118">If you select <span class="uicontrol" id="cce_01_0348__uicontrol214931162912"><b>VPC network</b></span> for <strong id="cce_01_0348__b1878943932511">Network Model</strong> when creating a CCE cluster, you also need to set the number of container IP addresses that can be allocated to each node, as shown in the following figure.</p>
-<p id="cce_01_0348__p36341919183012">This parameter affects the maximum number of pods that can be created on a node. Each pod occupies an IP address (when the container network is used). If the number of available IP addresses is insufficient, pods cannot be created.</p>
-<p id="cce_01_0348__p1931471918459"><span><img id="cce_01_0348__image9571192163015" src="en-us_image_0000001195057213.png"></span></p>
-<p id="cce_01_0348__p18181516161419">By default, a node occupies three container IP addresses (network address, gateway address, and broadcast address). Therefore, the number of container IP addresses that can be allocated to a node equals the number of selected container IP addresses minus 3. For example, in the preceding figure, <strong id="cce_01_0348__b880185251115">the number of container IP addresses that can be allocated to a node is 125 (128 – 3)</strong>.</p>
-</div>
-<div class="section" id="cce_01_0348__section16296174054019"><a name="cce_01_0348__section16296174054019"></a><a name="section16296174054019"></a><h4 class="sectiontitle">Maximum Number of Pods on a Node</h4><p id="cce_01_0348__p982012382456">When creating a node, you can configure the maximum number of pods that can be created on the node. This parameter is a configuration item of kubelet and determines the maximum number of pods that can be created by kubelet.</p>
-<p id="cce_01_0348__p4727980360"><span><img id="cce_01_0348__image17897114414444" src="en-us_image_0000001148989534.png"></span></p>
-</div>
-<div class="section" id="cce_01_0348__section491514414286"><a name="cce_01_0348__section491514414286"></a><a name="section491514414286"></a><h4 class="sectiontitle">Number of NICs on a CCE Turbo Cluster Node</h4><p id="cce_01_0348__p174596782911">For details about the number of NICs on a CCE Turbo cluster node, see <a href="cce_01_0284.html">Cloud Native Network 2.0</a>.</p>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0347.html">Cluster Parameters</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0352.html b/docs/cce/umn/cce_01_0352.html
deleted file mode 100644
index 87d1c14f..00000000
--- a/docs/cce/umn/cce_01_0352.html
+++ /dev/null
@@ -1,82 +0,0 @@
-<a name="cce_01_0352"></a><a name="cce_01_0352"></a>
-
-<h1 class="topictitle1">Configuring Node Scheduling (Tainting)</h1>
-<div id="body0000001149077264"><p id="cce_01_0352__p8060118">Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.</p>
-<div class="section" id="cce_01_0352__section1660016436407"><h4 class="sectiontitle">Taints</h4><p id="cce_01_0352__p1521494954012">A taint is a key-value pair associated with an effect. The following effects are available:</p>
-<ul id="cce_01_0352__ul021424964018"><li id="cce_01_0352__li421494912402">NoSchedule: No pod will be able to schedule onto the node unless it has a matching toleration. Existing pods will not be evicted from the node.</li><li id="cce_01_0352__li92155499408">PreferNoSchedule: Kubernetes prevents pods that cannot tolerate this taint from being scheduled onto the node.</li><li id="cce_01_0352__li15215114914011">NoExecute: If the pod has been running on a node, the pod will be evicted from the node. If the pod has not been running on a node, the pod will not be scheduled onto the node.</li></ul>
-<p id="cce_01_0352__p565812645816">To add a taint to a node, run the <strong id="cce_01_0352__b164121637377">kubectl taint</strong> <strong id="cce_01_0352__b12107133144919">node </strong><em id="cce_01_0352__i15653203574919">nodename</em> command as follows:</p>
-<pre class="screen" id="cce_01_0352__screen1977910515016">$ kubectl get node
-NAME             STATUS   ROLES    AGE    VERSION
-192.168.10.170   Ready    &lt;none&gt;   73d    v1.19.8-r1-CCE21.4.1.B003
-192.168.10.240   Ready    &lt;none&gt;   4h8m   v1.19.8-r1-CCE21.6.1.2.B001
-$ <span style="color:#FF0000;">kubectl taint node 192.168.10.240 key1=value1:NoSchedule</span>
-node/192.168.10.240 tainted</pre>
-<p id="cce_01_0352__p15744175401">To view the taint configuration, run the <strong id="cce_01_0352__b1673424184510">describe</strong> and <strong id="cce_01_0352__b18923820124511">get</strong> commands as follows:</p>
-<pre class="screen" id="cce_01_0352__screen1676853310019">$ kubectl describe node 192.168.10.240
-Name:               192.168.10.240
-...
-<span style="color:#FF0000;">Taints:             key1=value1:NoSchedule</span>
-...
-$ kubectl get node 192.168.10.240 -oyaml
-apiVersion: v1
-...
-spec:
-  providerID: 06a5ea3a-0482-11ec-8e1a-0255ac101dc2
-<span style="color:#FF0000;">  taints:</span>
-<span style="color:#FF0000;">  - effect: NoSchedule</span>
-<span style="color:#FF0000;">    key: key1</span>
-<span style="color:#FF0000;">    value: value1</span>
-...</pre>
-<p id="cce_01_0352__p797914269376">To remove a taint, run the following command with a hyphen (-) added after <strong id="cce_01_0352__b16265155024615">NoSchedule</strong>:</p>
-<pre class="screen" id="cce_01_0352__screen19650205723714">$ kubectl taint node 192.168.10.240 key1=value1:NoSchedule<span style="color:#FF0000;">-</span>
-node/192.168.10.240 untainted
-$ kubectl describe node 192.168.10.240
-Name:               192.168.10.240
-...
-<span style="color:#FF0000;">Taints:             </span><span style="color:#FF0000;">&lt;</span><span style="color:#FF0000;">none</span><span style="color:#FF0000;">&gt;</span>
-...</pre>
-<p id="cce_01_0352__p531912418406">To configure scheduling settings, log in to the CCE console, choose <strong id="cce_01_0352__b7383195811818">Resource Management</strong> &gt; <strong id="cce_01_0352__b087141892">Nodes</strong> in the navigation pane, and choose <strong id="cce_01_0352__b12866201114915">More</strong> &gt; <strong id="cce_01_0352__b2161102012914">Scheduling settings</strong> in the <strong id="cce_01_0352__b06816538914">Operation</strong> column of a node in the node list.</p>
-<p id="cce_01_0352__p16391144984516"></p>
-<p id="cce_01_0352__p16889510179">In the dialog box that is displayed, click <strong id="cce_01_0352__b14313181211117">OK</strong> to set the node to be unschedulable.</p>
-<p id="cce_01_0352__p1047324818514"></p>
-<p id="cce_01_0352__p109591059495">This operation will add a taint to the node. You can use kubectl to view the content of the taint.</p>
-<pre class="screen" id="cce_01_0352__screen6879108038">$ kubectl describe node 192.168.10.240
-...
-<span style="color:#FF0000;">Taints:             node.kubernetes.io/unschedulable:NoSchedule</span>
-...</pre>
-<p id="cce_01_0352__p2015122411">On the CCE console, perform the same operations again to remove the taint and set the node to be schedulable.</p>
-<p id="cce_01_0352__p312417183813"></p>
-</div>
-<div class="section" id="cce_01_0352__section2047442210417"><h4 class="sectiontitle">Tolerations</h4><p id="cce_01_0352__p426753884119">Tolerations are applied to pods, and allow (but do not require) the pods to schedule onto nodes with matching taints.</p>
-<p id="cce_01_0352__p484717171575">Taints and tolerations work together to ensure that pods are not scheduled onto inappropriate nodes. One or more taints are applied to a node. This marks that the node should not accept any pods that do not tolerate the taints.</p>
-<p id="cce_01_0352__p484761720574">Here's an example of a pod that uses tolerations:</p>
-<pre class="screen" id="cce_01_0352__screen029862812212">apiVersion: v1
-kind: Pod
-metadata:
-  name: nginx
-  labels:
-    env: test
-spec:
-  containers:
-  - name: nginx
-    image: nginx
-    imagePullPolicy: IfNotPresent
-  <span style="color:#FF0000;">tolerations:</span>
-<span style="color:#FF0000;">  - key: "key1"</span>
-<span style="color:#FF0000;">    operator: "Equal"</span>
-<span style="color:#FF0000;">    value: "value1"</span>
-<span style="color:#FF0000;">    effect: "NoSchedule"  </span></pre>
-<p id="cce_01_0352__p5728522612">In the preceding example, the toleration label of the pod is key1=value1 and the taint effect is NoSchedule. Therefore, the pod can be scheduled onto the corresponding node.</p>
-<p id="cce_01_0352__p924318395235">You can also configure tolerations similar to the following information, which indicates that the pod can be scheduled onto a node when the node has the taint key1:</p>
-<pre class="screen" id="cce_01_0352__screen28427492254">tolerations:
-<span style="color:#FF0000;">- key: "key1"</span>
-<span style="color:#FF0000;">  operator: "Exists"</span>
-<span style="color:#FF0000;">  effect: "NoSchedule"</span></pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0363.html b/docs/cce/umn/cce_01_0363.html
deleted file mode 100644
index 5ceb035a..00000000
--- a/docs/cce/umn/cce_01_0363.html
+++ /dev/null
@@ -1,169 +0,0 @@
-<a name="cce_01_0363"></a><a name="cce_01_0363"></a>
-
-<h1 class="topictitle1">Creating a Node in a CCE Turbo Cluster</h1>
-<div id="body8662426"><div class="section" id="cce_01_0363__section103205496263"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_01_0363__ul1074615557447"><li id="cce_01_0363__li474645512448">At least one CCE Turbo cluster is available. For details on how to create a cluster, see <a href="cce_01_0298.html">Creating a CCE Turbo Cluster</a>.</li><li id="cce_01_0363__li1919515393327">A key pair has been created for identity authentication upon remote node login.</li></ul>
-</div>
-<div class="section" id="cce_01_0363__cce_01_0298_section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0363__cce_01_0298_ul129132199018"><li id="cce_01_0363__cce_01_0298_li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_01_0363__cce_01_0298_li098921654613">Nodes in a CCE Turbo cluster must be the models developed on the QingTian architecture that features software-hardware synergy.</li><li id="cce_01_0363__li1651975510201">CCE Turbo clusters are available only in certain regions.</li></ul>
-</div>
-<div class="section" id="cce_01_0363__cce_01_0298_section13305183010495"><h4 class="sectiontitle">Procedure for Creating a Node</h4><p id="cce_01_0363__p46648386490">After a CCE Turbo cluster is created, you can create nodes for the cluster.</p>
-<ol id="cce_01_0363__ol778663545319"><li id="cce_01_0363__li178653514531"><span>Click <strong id="cce_01_0363__cce_01_0298_b363734216375">Create</strong><strong id="cce_01_0363__cce_01_0298_b1963710428372"> Node</strong> in the card view of the created CCE Turbo cluster. In the <strong id="cce_01_0363__cce_01_0298_b10314123413017">Node Configuration</strong> step, set node parameters by referring to the following tables.</span><p><p id="cce_01_0363__p1466807105817"><strong id="cce_01_0363__cce_01_0298_b369382154816">Computing configurations:</strong></p>
-<div class="p" id="cce_01_0363__p1666817710586">You can configure the specifications and OS of a cloud server, on which your containerized applications run.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0363__table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_01_0363__row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.3.1.2.2.1.2.3.1.1"><p id="cce_01_0363__p186688710581">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.3.1.2.2.1.2.3.1.2"><p id="cce_01_0363__p16681570588">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0363__row1666817718587"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.1 "><p id="cce_01_0363__p13216122213017">AZ</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.2 "><p id="cce_01_0363__p4383635121713">AZ where the node is located. Nodes in a cluster can be created in different AZs for higher reliability. The value cannot be changed after creation.</p>
-<p id="cce_01_0363__p13307144019185">You are advised to select <strong id="cce_01_0363__cce_01_0298_b280055945418">Random</strong> to deploy your node in a random AZ based on the selected node flavor.</p>
-<p id="cce_01_0363__p4786153575318">An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network. To enhance workload availability, create nodes in different AZs.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row96694785812"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.1 "><p id="cce_01_0363__p7669676587">Container runtime</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.2 "><p id="cce_01_0363__p1166918711589">Container runtime used on the node. Different container runtimes support different node specifications and cannot be changed after the node is created.</p>
-<ul id="cce_01_0363__ul1138261162510"><li id="cce_01_0363__li193831813259"><strong id="cce_01_0363__b157914702911">runc</strong>: The runC runtime is used. By default, Docker is selected as the container engine when you create a container on the console.</li><li id="cce_01_0363__li15383110254">kata: The Kata runtime is used. If you select this type for both nodes and workloads, the workloads run only on the nodes that use the Kata runtime. containerd is used by default.</li></ul>
-<p id="cce_01_0363__p17135151618277">For details about common containers and secure containers, see <a href="cce_01_0180.html#cce_01_0180__section7201124294111">Secure Containers and Common Containers</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.1 "><p id="cce_01_0363__p1669177185817">Specifications</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.2 "><p id="cce_01_0363__p156695715814">Select node specifications that best fit your business needs.</p>
-<p id="cce_01_0363__p16878944713">Nodes in a CCE Turbo cluster must be the models developed on the QingTian architecture that features software-hardware synergy.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.1 "><p id="cce_01_0363__p176690785813">OS</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.2 "><p id="cce_01_0363__p1058345314295"><strong id="cce_01_0363__cce_01_0298_b182401825201815">Public image</strong>: Select an OS for the node.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row209270458578"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.1 "><p id="cce_01_0363__p15928144516578">Node Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.2 "><p id="cce_01_0363__p18111188595">Name of the node, which must be unique. When nodes (ECSs) are created in batches, the value of this parameter is used as the name prefix for each ECS.</p>
-<p id="cce_01_0363__p863771115914">The system generates a default name for you, which can be modified.</p>
-<p id="cce_01_0363__p2017023218586">A node name must start with a lowercase letter and cannot end with a hyphen (-). Only digits, lowercase letters, and hyphens (-) are allowed.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.1 "><p id="cce_01_0363__p1917631063017">Login Mode</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.2.1.2.3.1.2 "><ul id="cce_01_0363__ul72961362303"><li id="cce_01_0363__li3297133653019"><strong id="cce_01_0363__cce_01_0298_b145735113277">Key pair</strong>: Select the key pair used to log in to the node. You can select a shared key.<p id="cce_01_0363__p16297136153013">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_01_0363__cce_01_0298_b1784085011374">Create a key pair</strong>.</p>
-</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<p id="cce_01_0363__p136695718581"><strong id="cce_01_0363__b7857173019519">Storage configuration</strong></p>
-<div class="p" id="cce_01_0363__p866914735818">Configure storage resources on a node for the containers running on it. Set the disk size according to site requirements.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0363__table56691276581" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuration parameters</caption><thead align="left"><tr id="cce_01_0363__row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.3.1.2.4.1.2.3.1.1"><p id="cce_01_0363__p9669576584">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.3.1.2.4.1.2.3.1.2"><p id="cce_01_0363__p366912711589">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0363__row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.4.1.2.3.1.1 "><p id="cce_01_0363__p666916719588">System Disk</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.4.1.2.3.1.2 "><p id="cce_01_0363__p590942616323">System disk used by the node OS. The value ranges from 40 GB to 1,024 GB. The default value is 50 GB.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.4.1.2.3.1.1 "><p id="cce_01_0363__p0669147185817">Data Disk</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.4.1.2.3.1.2 "><p id="cce_01_0363__p246755017336">Data disk used by the container runtime and kubelet on the node. The value ranges from 100 GB to 32,768 GB. The default value is 100 GB. The EVS disk types provided for the data disk are the same as those for the system disk.</p>
-<div class="caution" id="cce_01_0363__note124678507331"><span class="cautiontitle"> CAUTION: </span><div class="cautionbody"><p id="cce_01_0363__p3467185013330">If the data disk is uninstalled or damaged, the Docker service becomes abnormal and the node becomes unavailable. You are advised not to delete the data disk.</p>
-</div></div>
-<p id="cce_01_0363__p3752312011">Click <strong id="cce_01_0363__b869213393116">Expand</strong> to set the following parameters:</p>
-<ul id="cce_01_0363__ul197721145155911"><li id="cce_01_0363__li12110343014"><strong id="cce_01_0363__b15422114714113">Custom space allocation</strong>: Select this option to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata.</li><li id="cce_01_0363__li13480132822014"><strong id="cce_01_0363__b1171005618120">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function.<ul id="cce_01_0363__ul1998753519474"><li id="cce_01_0363__li3162162914479"><strong id="cce_01_0363__b157581607212">Encryption</strong> is not selected by default.</li><li id="cce_01_0363__li169101850184415">After you select <strong id="cce_01_0363__b1181083123">Encryption</strong>, you can select an existing key in the displayed <strong id="cce_01_0363__b1381143122">Encryption Setting</strong> dialog box. If no key is available, click the link next to the drop-down box to create a key. After the key is created, click the refresh icon.</li></ul>
-</li></ul>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<p id="cce_01_0363__p26726745816"><strong id="cce_01_0363__b63761661929">Networking configuration</strong></p>
-<div class="p" id="cce_01_0363__p267212714583">Configure networking resources to allow node and containerized application access.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0363__table267212716587" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Configuration parameters</caption><thead align="left"><tr id="cce_01_0363__row126729712588"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.3.1.2.6.1.2.3.1.1"><p id="cce_01_0363__p667211795816">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.3.1.2.6.1.2.3.1.2"><p id="cce_01_0363__p867210795810">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0363__row1067237145814"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.1.2.6.1.2.3.1.1 "><p id="cce_01_0363__p1367219735815">Node Subnet</p>
-</td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.1.2.6.1.2.3.1.2 "><p id="cce_01_0363__p46731571584">The node subnet selected during cluster creation is used by default. You can choose another subnet instead. The value cannot be changed after creation.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<p id="cce_01_0363__p151517566378"><strong id="cce_01_0363__cce_01_0298_b1479511744511">Advanced Settings</strong></p>
-<div class="p" id="cce_01_0363__p1715175643712">Configure advanced node capabilities such as labels, taints, and startup command.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0363__table101545619373" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_01_0363__row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.3.3.1.2.8.1.2.3.1.1"><p id="cce_01_0363__p2152561377">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.3.3.1.2.8.1.2.3.1.2"><p id="cce_01_0363__p1515195616375">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0363__row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.1 "><p id="cce_01_0363__p1253915513402">Kubernetes Label</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.2 "><p id="cce_01_0363__p11258124419136">Click <strong id="cce_01_0363__cce_01_0298_b134533618313">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 10 labels can be added.</p>
-<p id="cce_01_0363__p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.1 "><p id="cce_01_0363__p25391859406">Resource Tags</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.2 "><p id="cce_01_0363__p14909254174019">You can add resource tags to classify resources.</p>
-<p id="cce_01_0363__p10327184710426">You can create <strong id="cce_01_0363__b37781633820">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
-<p id="cce_01_0363__p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_01_0363__i19542542112415">node id</em>" tag.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.1 "><p id="cce_01_0363__p55391457404">Taints</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.2 "><div class="p" id="cce_01_0363__p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_01_0363__ul17274222121015"><li id="cce_01_0363__li227482216106"><strong id="cce_01_0363__cce_01_0298_b19270155312584">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_01_0363__li7274112241020"><strong id="cce_01_0363__cce_01_0298_b149231210105912">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_01_0363__li2274182211010"><strong id="cce_01_0363__cce_01_0298_b1535002716590">Effect</strong>: Available options are <strong id="cce_01_0363__cce_01_0298_b6356142716595">NoSchedule</strong>, <strong id="cce_01_0363__cce_01_0298_b9356327175910">PreferNoSchedule</strong>, and <strong id="cce_01_0363__cce_01_0298_b935642719599">NoExecute</strong>.</li></ul>
-<div class="notice" id="cce_01_0363__note77443231113"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_01_0363__ul104271158181515"><li id="cce_01_0363__li042725811158">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-out may fail or pods cannot be scheduled onto the added nodes.</li><li id="cce_01_0363__li642712581152">After a node pool is created, you can click <strong id="cce_01_0363__cce_01_0298_b10662145455915">Edit</strong> to modify its configuration. The modification will be synchronized to all nodes in the node pool.</li></ul>
-</div></div>
-</div>
-</td>
-</tr>
-<tr id="cce_01_0363__row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.1 "><p id="cce_01_0363__p054015516406">Max Pods</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.2 "><p id="cce_01_0363__p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
-<p id="cce_01_0363__p272611351429">This limit prevents the node from being overloaded of pods. For details, see <a href="cce_01_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.1 "><p id="cce_01_0363__p534319566391">Pre-installation Script</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.2 "><p id="cce_01_0363__p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
-<p id="cce_01_0363__p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed. The commands are run to format data disks.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.1 "><p id="cce_01_0363__p18677104643916">Post-installation Script</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.2 "><p id="cce_01_0363__p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
-<p id="cce_01_0363__p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation. The commands are run to modify Docker parameters.</p>
-</td>
-</tr>
-<tr id="cce_01_0363__row3366174093118"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.1 "><p id="cce_01_0363__p123672040183119">Agency</p>
-</td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.1.2.8.1.2.3.1.2 "><p id="cce_01_0363__p15869944123119">An agency is created by the account administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources.</p>
-<p id="cce_01_0363__p151464163220">If no agency is available, click <strong id="cce_01_0363__b13240143311254">Create Agency</strong> on the right to create one.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_01_0363__li10191721165313"><span>Click <strong id="cce_01_0363__cce_01_0298_b13041320161111">Next: Confirm</strong> to review the configurations.</span></li><li id="cce_01_0363__li742974974510"><span>Click <strong id="cce_01_0363__cce_01_0298_b19330133916119">Submit</strong>.</span><p><p id="cce_01_0363__p1582601641210">The node list page is displayed. If the node status is <strong id="cce_01_0363__cce_01_0298_b343891612121">Available</strong>, the node is created successfully. It takes about 6 to 10 minutes to create a node.</p>
-</p></li><li id="cce_01_0363__li8393044161317"><span>Click <strong id="cce_01_0363__b1679124911319">Back to Node List</strong>. The node is created successfully if it changes to the <strong id="cce_01_0363__b158544910312">Available</strong> state.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0183.html">Nodes</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0378.html b/docs/cce/umn/cce_01_0378.html
deleted file mode 100644
index 883ed839..00000000
--- a/docs/cce/umn/cce_01_0378.html
+++ /dev/null
@@ -1,284 +0,0 @@
-<a name="cce_01_0378"></a><a name="cce_01_0378"></a>
-
-<h1 class="topictitle1">PersistentVolumeClaims (PVCs)</h1>
-<div id="body8662426"><p id="cce_01_0378__en-us_topic_0000001199501146_p8060118">A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are dynamically created. When creating a PVC, you need to describe the attributes of the requested persistent storage, such as the size of the volume and the read/write permissions.</p>
-<div class="section" id="cce_01_0378__en-us_topic_0000001199501146_section516692464018"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0378__en-us_topic_0000001199501146_p16618172994018">When a PVC is created, the system checks whether there is an available PV with the same configuration in the cluster. If yes, the PVC binds the available PV to the cluster. If no PV meets the matching conditions, the system dynamically creates a storage volume.</p>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0378__en-us_topic_0000001199501146_table3531229104018" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_01_0378__en-us_topic_0000001199501146_row4618142917405"><th align="left" class="cellrowborder" valign="top" width="12.62126212621262%" id="mcps1.3.2.3.1.5.1.1"><p id="cce_01_0378__en-us_topic_0000001199501146_p1961812916400">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="28.002800280028005%" id="mcps1.3.2.3.1.5.1.2"><p id="cce_01_0378__en-us_topic_0000001199501146_p17618529114015">PVC Field</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="34.963496349634966%" id="mcps1.3.2.3.1.5.1.3"><p id="cce_01_0378__en-us_topic_0000001199501146_p661810299404">PV Field</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="24.412441244124413%" id="mcps1.3.2.3.1.5.1.4"><p id="cce_01_0378__en-us_topic_0000001199501146_p1461892915408">Matching Logic</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0378__en-us_topic_0000001199501146_row176183299407"><td class="cellrowborder" valign="top" width="12.62126212621262%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p16181229124014">region</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.002800280028005%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p561862974016">pvc.metadata.labels (failure-domain.beta.kubernetes.io/region or topology.kubernetes.io/region)</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p17618192914013">pv.metadata.labels (failure-domain.beta.kubernetes.io/region or topology.kubernetes.io/region)</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_01_0378__en-us_topic_0000001199501146_p106181296406">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row9618172917407"><td class="cellrowborder" valign="top" width="12.62126212621262%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p11618229124014">zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.002800280028005%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p6618122915409">pvc.metadata.labels (failure-domain.beta.kubernetes.io/zone or topology.kubernetes.io/zone)</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p116181429104018">pv.metadata.labels (failure-domain.beta.kubernetes.io/zone or topology.kubernetes.io/zone)</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_01_0378__en-us_topic_0000001199501146_p196185293400">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row146187298409"><td class="cellrowborder" valign="top" width="12.62126212621262%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p861813298407">EVS disk type</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.002800280028005%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p18618142911400">pvc.metadata.annotations (everest.io/disk-volume-type)</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p561832912407">pv.spec.csi.volumeAttributes (everest.io/disk-volume-type)</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_01_0378__en-us_topic_0000001199501146_p18618192974019">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row136181029104012"><td class="cellrowborder" valign="top" width="12.62126212621262%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p166181229164014">Key ID</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.002800280028005%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p20618229204012">pvc.metadata.annotations (everest.io/crypt-key-id)</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p136181429134010">pv.spec.csi.volumeAttributes (everest.io/crypt-key-id)</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_01_0378__en-us_topic_0000001199501146_p361832918405">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row106182299407"><td class="cellrowborder" valign="top" width="12.62126212621262%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p16618102913400">accessMode</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.002800280028005%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p1461817293407">accessMode</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p06186293402">accessMode</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_01_0378__en-us_topic_0000001199501146_p1361812964011">The settings must be consistent.</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row96181929134020"><td class="cellrowborder" valign="top" width="12.62126212621262%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p1961892918405">Storage class</p>
-</td>
-<td class="cellrowborder" valign="top" width="28.002800280028005%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p1761842954017">storageclass</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p56181629114017">storageclass</p>
-</td>
-<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_01_0378__en-us_topic_0000001199501146_p14618102994011">The settings must be consistent.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0378__en-us_topic_0000001199501146_section43881411172418"><a name="cce_01_0378__en-us_topic_0000001199501146_section43881411172418"></a><a name="en-us_topic_0000001199501146_section43881411172418"></a><h4 class="sectiontitle">Volume Access Modes</h4><p id="cce_01_0378__en-us_topic_0000001199501146_p3855173814011">PVs can be mounted to the host system only in the mode supported by underlying storage resources. For example, a file storage system can be read and written by multiple nodes, but an EVS disk can be read and written by only one node.</p>
-<ul id="cce_01_0378__en-us_topic_0000001199501146_ul15491194720247"><li id="cce_01_0378__en-us_topic_0000001199501146_li649112478240">ReadWriteOnce: A volume can be mounted as read-write by a single node. This access mode is supported by EVS.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li8491447162410">ReadWriteMany: A volume can be mounted as read-write by multiple nodes. This access mode is supported by SFS, SFS Turbo, and OBS.</li></ul>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0378__en-us_topic_0000001199501146_table773195654210" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Supported access modes</caption><thead align="left"><tr id="cce_01_0378__en-us_topic_0000001199501146_row773135617420"><th align="left" class="cellrowborder" valign="top" width="23.352335233523352%" id="mcps1.3.3.4.2.4.1.1"><p id="cce_01_0378__en-us_topic_0000001199501146_p10731155674211">Storage Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="36.023602360236026%" id="mcps1.3.3.4.2.4.1.2"><p id="cce_01_0378__en-us_topic_0000001199501146_p12731115614425">ReadWriteOnce</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="40.624062406240625%" id="mcps1.3.3.4.2.4.1.3"><p id="cce_01_0378__en-us_topic_0000001199501146_p3731556114214">ReadWriteMany</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0378__en-us_topic_0000001199501146_row773165604217"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p12731185618427">EVS</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p87311956124218">√</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p27311556164218">×</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row17731956134214"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p873115610428">SFS</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p15731856104219">×</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p1675417266441">√</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row1873105654216"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p12731125644217">OBS</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p47311556184213">×</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p12369172711443">√</p>
-</td>
-</tr>
-<tr id="cce_01_0378__en-us_topic_0000001199501146_row757122118433"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0378__en-us_topic_0000001199501146_p135713211435">SFS Turbo</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0378__en-us_topic_0000001199501146_p155713210434">×</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0378__en-us_topic_0000001199501146_p7960162715446">√</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0378__en-us_topic_0000001199501146_section155911631134310"><h4 class="sectiontitle">Using a Storage Class to Create a PVC</h4><p id="cce_01_0378__en-us_topic_0000001199501146_p9806175313430">StorageClass describes the storage class used in the cluster. You need to specify StorageClass to dynamically create PVs and underlying storage resources when creating a PVC.</p>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p1814111468317"><strong id="cce_01_0378__en-us_topic_0000001199501146_b149616359506">Using the CCE Console</strong></p>
-<ol id="cce_01_0378__en-us_topic_0000001199501146_ol1579572174320"><li id="cce_01_0378__en-us_topic_0000001199501146_li1179513219432"><span>Log in to the CCE console.</span></li><li id="cce_01_0378__en-us_topic_0000001199501146_li3574131225117"><span>Go to the cluster details page, choose <strong id="cce_01_0378__en-us_topic_0000001199501146_b7460541049">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0378__en-us_topic_0000001199501146_b13472541549">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_01_0378__en-us_topic_0000001199501146_li84178566546"><span>Click <strong id="cce_01_0378__en-us_topic_0000001199501146_b1614715112515">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_01_0378__en-us_topic_0000001199501146_ul65541240105712"><li id="cce_01_0378__en-us_topic_0000001199501146_li112091399547"><strong id="cce_01_0378__en-us_topic_0000001199501146_b449811143618">Creation Method</strong>: Select <span class="uicontrol" id="cce_01_0378__en-us_topic_0000001199501146_uicontrol84991814369"><b>Storage class</b></span>.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li79551012165515"><strong id="cce_01_0378__en-us_topic_0000001199501146_b119820111173">PVC Name</strong>: Enter a PVC name.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li101354814553"><strong id="cce_01_0378__en-us_topic_0000001199501146_b1710110531270">Storage Class</strong>: Select the required storage class. The following storage resources can be dynamically provisioned:<ul id="cce_01_0378__en-us_topic_0000001199501146_ul756519426562"><li id="cce_01_0378__en-us_topic_0000001199501146_li4796104055617"><strong id="cce_01_0378__en-us_topic_0000001199501146_b188621174917">csi-disk</strong>: EVS disk.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li5481205435613"><strong id="cce_01_0378__en-us_topic_0000001199501146_b16356104221018">csi-obs</strong>: OBS bucket.</li></ul>
-</li><li id="cce_01_0378__en-us_topic_0000001199501146_li19689536844"><strong id="cce_01_0378__en-us_topic_0000001199501146_b1264433419112">AZ</strong> (supported only by EVS): Select the AZ where the EVS disk is located.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li11271134215416"><strong id="cce_01_0378__en-us_topic_0000001199501146_b338152831217">Disk Type</strong>: Select an EVS disk type. EVS disk types vary in different regions.<ul id="cce_01_0378__en-us_topic_0000001199501146_ul161367711350"><li id="cce_01_0378__li1216105512268">Common I/O</li><li id="cce_01_0378__en-us_topic_0000001199501146_li19136197193514">High I/O</li><li id="cce_01_0378__en-us_topic_0000001199501146_li613613717357">Ultra-high I/O</li></ul>
-</li><li id="cce_01_0378__en-us_topic_0000001199501146_li36181046115814"><strong id="cce_01_0378__b18142122411910">Access Mode</strong>: <strong id="cce_01_0378__b14142724181918">ReadWriteOnce</strong> and <strong id="cce_01_0378__b1614202431912">ReadWriteMany</strong> are supported. For details, see <a href="#cce_01_0378__en-us_topic_0000001199501146_section43881411172418">Volume Access Modes</a>.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li73361425175819"><strong id="cce_01_0378__en-us_topic_0000001199501146_b13562541043">Capacity (GiB)</strong> (supported only by EVS and SFS): storage capacity. This parameter is not available for OBS.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li1233257917"><strong id="cce_01_0378__en-us_topic_0000001199501146_b515331016181">Encryption</strong> (supported only for EVS and SFS): Select <strong id="cce_01_0378__en-us_topic_0000001199501146_b14774947205218">Encryption</strong>. After selecting this option, you need to select a key.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li1595213531529"><strong id="cce_01_0378__en-us_topic_0000001199501146_b895518512511">Secret</strong> (supported only for OBS): Select an access key for OBS. For details, see <a href="cce_01_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</li></ul>
-</p></li><li id="cce_01_0378__en-us_topic_0000001199501146_li164393175720"><span>Click <strong id="cce_01_0378__en-us_topic_0000001199501146_b0200411262">Create</strong>.</span></li></ol>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p1591216145220"><strong id="cce_01_0378__en-us_topic_0000001199501146_b135191451068">Using YAML</strong></p>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p22646414138">Example YAML for EVS</p>
-<ul id="cce_01_0378__en-us_topic_0000001199501146_ul07311455181312"><li id="cce_01_0378__en-us_topic_0000001199501146_li5731205521320"><strong id="cce_01_0378__en-us_topic_0000001199501146_b1794815519710">failure-domain.beta.kubernetes.io/region</strong>: region where the cluster is located.<p id="cce_01_0378__en-us_topic_0000001199501146_p92141648132614">For details about the value of <strong id="cce_01_0378__en-us_topic_0000001199501146_b014993315717">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</li><li id="cce_01_0378__en-us_topic_0000001199501146_li11731175541310"><strong id="cce_01_0378__en-us_topic_0000001199501146_b480954810718">failure-domain.beta.kubernetes.io/zone</strong>: AZ where the EVS volume is created. It must be the same as the AZ planned for the workload. <p id="cce_01_0378__en-us_topic_0000001199501146_p11213204892611">For details about the value of <strong id="cce_01_0378__en-us_topic_0000001199501146_b108459511719">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</li></ul>
-<pre class="screen" id="cce_01_0378__en-us_topic_0000001199501146_screen1881364111517">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-evs-auto-example
-  namespace: default
-  annotations:
-    <span style="color:#FF0000;">everest.io/disk-volume-type</span>: SSD    # EVS disk type.
-    <span style="color:#FF0000;">everest.io/crypt-key-id</span>: 0992dbda-6340-470e-a74e-4f0db288ed82  # (Optional) Key ID. The key is used to encrypt EVS disks.
-    
-  labels:
-    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/region</span>: <span id="cce_01_0378__text6263204910595">eu-de</span>
-    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone</span>: <span id="cce_01_0378__text165721061108">eu-de-01</span>
-spec:
-  accessModes:
-  - ReadWriteOnce               # The value must be <strong id="cce_01_0378__en-us_topic_0000001199501146_b1486015141019">ReadWriteOnce</strong> for EVS.
-  resources:
-    requests:
-      storage: <span style="color:#FF0000;">10Gi</span>             # EVS disk capacity, ranging from <strong id="cce_01_0378__en-us_topic_0000001199501146_b5275042113914">1</strong> to <strong id="cce_01_0378__en-us_topic_0000001199501146_b1018034419392">32768</strong>.
-  storageClassName: <span style="color:#FF0000;">csi-disk</span>    # The storage class type is EVS.</pre>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p974417351315">Example YAML for OBS:</p>
-<pre class="screen" id="cce_01_0378__en-us_topic_0000001199501146_screen115819219138">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: obs-warm-provision-pvc
-  namespace: default
-  annotations:
-    <span style="color:#FF0000;">everest.io/obs-volume-type</span>: STANDARD      # OBS bucket type. Currently, standard (STANDARD) and infrequent access (WARM) are supported.
-    <span style="color:#FF0000;">csi.storage.k8s.io/fstype</span>: obsfs          # File type. <strong id="cce_01_0378__en-us_topic_0000001199501146_b1332103301411">obsfs</strong> indicates to create a parallel file system (recommended), and <strong id="cce_01_0378__en-us_topic_0000001199501146_b1975718616169">s3fs</strong> indicates to create an OBS bucket.
-    
-spec:
-  accessModes:
-  - ReadWriteMany             # The value must be <strong id="cce_01_0378__en-us_topic_0000001199501146_b722990515">ReadWriteMany</strong> for OBS.
-  resources:
-    requests:
-      storage: 1Gi                 # This field is valid only for verification (fixed to <strong id="cce_01_0378__en-us_topic_0000001199501146_b1342314529268">1</strong>, cannot be empty or <strong id="cce_01_0378__en-us_topic_0000001199501146_b1561355172616">0</strong>). The value setting does not take effect for OBS buckets.
-  storageClassName: <span style="color:#FF0000;">csi-obs</span>        # The storage class type is OBS.</pre>
-</div>
-<div class="section" id="cce_01_0378__en-us_topic_0000001199501146_section139251655204319"><h4 class="sectiontitle">Using a PV to Create a PVC</h4><p id="cce_01_0378__en-us_topic_0000001199501146_p98558172443">If a PV has been created, you can create a PVC to apply for PV resources.</p>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p326513510362"><strong id="cce_01_0378__en-us_topic_0000001199501146_b930094518414">Using the CCE Console</strong></p>
-<ol id="cce_01_0378__en-us_topic_0000001199501146_ol126520513363"><li id="cce_01_0378__en-us_topic_0000001199501146_li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_01_0378__en-us_topic_0000001199501146_li14265165103610"><span>Go to the cluster details page, choose <strong id="cce_01_0378__en-us_topic_0000001199501146_b510716121074">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0378__en-us_topic_0000001199501146_b13115112272">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_01_0378__en-us_topic_0000001199501146_li42661759363"><span>Click <strong id="cce_01_0378__en-us_topic_0000001199501146_b1932214131761">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_01_0378__en-us_topic_0000001199501146_ul2026615203615"><li id="cce_01_0378__en-us_topic_0000001199501146_li1426615103615"><strong id="cce_01_0378__en-us_topic_0000001199501146_b247117258719">Creation Method</strong>: Select <span class="uicontrol" id="cce_01_0378__en-us_topic_0000001199501146_uicontrol1147220251073"><b>Existing volume</b></span>.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li112668515362"><strong id="cce_01_0378__en-us_topic_0000001199501146_b15350937276">PVC Name</strong>: Enter a PVC name.</li><li id="cce_01_0378__en-us_topic_0000001199501146_li1526618517369"><strong id="cce_01_0378__en-us_topic_0000001199501146_b1155614410811">Volume Type</strong>: Select your required volume type.<ul id="cce_01_0378__en-us_topic_0000001199501146_ul1126618519366"><li id="cce_01_0378__en-us_topic_0000001199501146_li12661152364">EVS</li><li id="cce_01_0378__en-us_topic_0000001199501146_li1266959361">SFS</li><li id="cce_01_0378__en-us_topic_0000001199501146_li18266856366">OBS</li><li id="cce_01_0378__en-us_topic_0000001199501146_li139888122475">SFS Turbo</li></ul>
-</li><li id="cce_01_0378__en-us_topic_0000001199501146_li202662051369"><strong id="cce_01_0378__en-us_topic_0000001199501146_b1342813319920">Associate Volume</strong>: Select the volume to be associated, that is, the PV.</li></ul>
-</p></li><li id="cce_01_0378__en-us_topic_0000001199501146_li10266451367"><span>Click <strong id="cce_01_0378__en-us_topic_0000001199501146_b6143445864">Create</strong>.</span></li></ol>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p7439164710549"><strong id="cce_01_0378__b820348202">Using YAML</strong></p>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p12978164617616">Example YAML for EVS</p>
-<ul id="cce_01_0378__en-us_topic_0000001199501146_ul17488175512616"><li id="cce_01_0378__en-us_topic_0000001199501146_en-us_topic_0000001199501146_li5731205521320"><strong id="cce_01_0378__en-us_topic_0000001199501146_b1794815519710_1">failure-domain.beta.kubernetes.io/region</strong>: region where the cluster is located.<p id="cce_01_0378__en-us_topic_0000001199501146_p92141648132614_1">For details about the value of <strong id="cce_01_0378__en-us_topic_0000001199501146_b014993315717_1">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</li><li id="cce_01_0378__en-us_topic_0000001199501146_en-us_topic_0000001199501146_li11731175541310"><strong id="cce_01_0378__en-us_topic_0000001199501146_b480954810718_1">failure-domain.beta.kubernetes.io/zone</strong>: AZ where the EVS volume is created. It must be the same as the AZ planned for the workload. <p id="cce_01_0378__en-us_topic_0000001199501146_p11213204892611_1">For details about the value of <strong id="cce_01_0378__en-us_topic_0000001199501146_b108459511719_1">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</li></ul>
-<pre class="screen" id="cce_01_0378__en-us_topic_0000001199501146_screen102203545714">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-test
-  namespace: default
-  annotations:
-    <span style="color:#FF0000;">everest.io/disk-volume-type</span>: SAS                                # EVS disk type.
-    <span style="color:#FF0000;">everest.io/crypt-key-id</span>: fe0757de-104c-4b32-99c5-ee832b3bcaa3   # (Optional) Key ID. The key is used to encrypt EVS disks.
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-    
-  labels:
-<span style="color:#FF0000;">    failure-domain.beta.kubernetes.io/region</span>: <span id="cce_01_0378__text91798410111">eu-de</span>
-    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone</span>: <span id="cce_01_0378__text1198914513113">eu-de-01</span>
-spec:
-  accessModes:
-  - ReadWriteOnce               # The value must be <strong id="cce_01_0378__en-us_topic_0000001199501146_b1057835801416">ReadWriteOnce</strong> for EVS.
-  resources:
-    requests:
-      storage: <span style="color:#FF0000;">10Gi</span>              
-  storageClassName: <span style="color:#FF0000;">csi-disk</span>     # Storage class name. The value is <strong id="cce_01_0378__en-us_topic_0000001199501146_b1255014871510">csi-disk</strong> for EVS.
-  volumeName: <span style="color:#FF0000;">cce-evs-test       </span># PV name.</pre>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p19436033307">Example YAML for SFS:</p>
-<pre class="screen" id="cce_01_0378__en-us_topic_0000001199501146_screen19251020183010">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-sfs-test
-  namespace: default
-  annotations:
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-spec:
-  accessModes:
-  - ReadWriteMany              # The value must be <strong id="cce_01_0378__en-us_topic_0000001199501146_b2804933201614">ReadWriteMany</strong> for SFS.
-  resources:
-    requests:
-      storage: <span style="color:#FF0000;">100Gi</span>           # Requested PVC capacity.
-  storageClassName: <span style="color:#FF0000;">csi-nas</span>    # Storage class name. The value is <strong id="cce_01_0378__en-us_topic_0000001199501146_b673311391715">csi-nas</strong> for SFS.
-  volumeName: <span style="color:#FF0000;">cce-sfs-test</span>     # PV name.</pre>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p1345711510305">Example YAML for OBS:</p>
-<pre class="screen" id="cce_01_0378__en-us_topic_0000001199501146_screen51531623153015">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-obs-test
-  namespace: default
-  annotations:
-    everest.io/obs-volume-type: STANDARD                         # OBS bucket type. Currently, standard (STANDARD) and infrequent access (WARM) are supported.
-    csi.storage.k8s.io/fstype: s3fs                              # File type. <strong id="cce_01_0378__en-us_topic_0000001199501146_b1286718336182">obsfs</strong> indicates to create a parallel file system (recommended), and <strong id="cce_01_0378__en-us_topic_0000001199501146_b486812330189">s3fs</strong> indicates to create an OBS bucket.
-    csi.storage.k8s.io/node-publish-secret-name: test-user
-    csi.storage.k8s.io/node-publish-secret-namespace: default
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-    
-spec:
-  accessModes:
-  - ReadWriteMany             # The value must be <strong id="cce_01_0378__en-us_topic_0000001199501146_b4761194710193">ReadWriteMany</strong> for OBS.
-  resources:
-    requests:
-      storage: 1Gi            # Requested PVC capacity. This field is valid only for verification (fixed to <strong id="cce_01_0378__en-us_topic_0000001199501146_b14633439152216">1</strong>, cannot be empty or <strong id="cce_01_0378__en-us_topic_0000001199501146_b551864332219">0</strong>). The value setting does not take effect for OBS buckets.
-  storageClassName: <span style="color:#FF0000;">csi-obs</span>   # Storage class name. The value is <strong id="cce_01_0378__en-us_topic_0000001199501146_b5631153115206">csi-obs</strong> for OBS.
-  volumeName: <span style="color:#FF0000;">cce-obs-test</span>    # PV name.</pre>
-<p id="cce_01_0378__en-us_topic_0000001199501146_p1786519513614">Example YAML for SFS Turbo:</p>
-<pre class="screen" id="cce_01_0378__en-us_topic_0000001199501146_screen34571718203816">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-test
-  namespace: default
-  annotations:
-    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-spec:
-  accessModes:
-    - ReadWriteMany               # The value must be <strong id="cce_01_0378__en-us_topic_0000001199501146_b618511579379">ReadWriteMany</strong> for SFS Turbo.
-  resources:
-    requests:
-      storage: <span style="color:#FF0000;">100Gi </span>             # Requested PVC capacity.
-  storageClassName: <span style="color:#FF0000;">csi-sfsturbo</span>  # Storage class name. The value is <strong id="cce_01_0378__en-us_topic_0000001199501146_b594583113716">csi-sfsturbo</strong> for SFS Turbo.
-  volumeName: <span style="color:#FF0000;">pv-sfsturbo-test</span>         # PV name.</pre>
-</div>
-<div class="section" id="cce_01_0378__en-us_topic_0000001199501146_section181681453141710"><h4 class="sectiontitle">Using a Snapshot to Creating a PVC</h4><p id="cce_01_0378__en-us_topic_0000001199021196_p614685193310">The disk type, encryption setting, and disk mode of the created EVS PVC are consistent with those of the snapshot's source EVS disk.</p>
-<p id="cce_01_0378__en-us_topic_0000001199021196_p326513510362"><strong id="cce_01_0378__en-us_topic_0000001199021196_b11698411123514">Using the CCE Console</strong></p>
-<ol id="cce_01_0378__en-us_topic_0000001199021196_ol126520513363"><li id="cce_01_0378__en-us_topic_0000001199021196_li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_01_0378__en-us_topic_0000001199021196_li14265165103610"><span>Go to the cluster details page, choose <strong id="cce_01_0378__en-us_topic_0000001199021196_b1637861813352">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0378__en-us_topic_0000001199021196_b14383118113513">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_01_0378__en-us_topic_0000001199021196_li42661759363"><span>Click <strong id="cce_01_0378__en-us_topic_0000001199021196_b7460174392013">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_01_0378__en-us_topic_0000001199021196_ul2026615203615"><li id="cce_01_0378__en-us_topic_0000001199021196_li1426615103615"><strong id="cce_01_0378__en-us_topic_0000001199021196_b8493433113717">Creation Mode</strong>: Select <span class="uicontrol" id="cce_01_0378__en-us_topic_0000001199021196_uicontrol52661453366"><b>Snapshot</b></span>.</li><li id="cce_01_0378__en-us_topic_0000001199021196_li112668515362"><strong id="cce_01_0378__en-us_topic_0000001199021196_b151131350388">PVC Name</strong>: name of a PVC.</li><li id="cce_01_0378__en-us_topic_0000001199021196_li202662051369"><strong id="cce_01_0378__en-us_topic_0000001199021196_b12930234388">Snapshot</strong>: Select the snapshot to be used.</li></ul>
-</p></li><li id="cce_01_0378__en-us_topic_0000001199021196_li10266451367"><span>Click <strong id="cce_01_0378__en-us_topic_0000001199021196_b22763361837">Create</strong>.</span></li></ol>
-<p id="cce_01_0378__en-us_topic_0000001199021196_p7439164710549"><strong id="cce_01_0378__en-us_topic_0000001199021196_b16731134213319">Using YAML</strong></p>
-<pre class="screen" id="cce_01_0378__en-us_topic_0000001199021196_screen12534181311281">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-test
-  namespace: default
-  annotations:
-    everest.io/disk-volume-type: SSD     # EVS disk type, which must be the same as that of the source EVS disk of the snapshot.
-  labels:
-<span style="color:#FF0000;">    failure-domain.beta.kubernetes.io/region</span>: <span id="cce_01_0378__en-us_topic_0000001199021196_text52766166259">eu-de</span>
-    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone</span>: 
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: '10'
-  storageClassName: csi-disk
-  dataSource:
-    name: <span style="color:#FF0000;">cce-disksnap-test</span>             # Snapshot name
-    kind: VolumeSnapshot
-    apiGroup: snapshot.storage.k8s.io</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0379.html b/docs/cce/umn/cce_01_0379.html
deleted file mode 100644
index 5725bca6..00000000
--- a/docs/cce/umn/cce_01_0379.html
+++ /dev/null
@@ -1,395 +0,0 @@
-<a name="cce_01_0379"></a><a name="cce_01_0379"></a>
-
-<h1 class="topictitle1">PersistentVolumes (PVs)</h1>
-<div id="body8662426"><p id="cce_01_0379__en-us_topic_0000001244101041_li1672316411914p0">A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource.</p>
-<div class="section" id="cce_01_0379__en-us_topic_0000001244101041_section13324112843915"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_01_0379__en-us_topic_0000001244101041_ul570363215217"><li id="cce_01_0379__en-us_topic_0000001244101041_li157039325522">On the new CCE console (the cluster needs to be <strong id="cce_01_0379__en-us_topic_0000001244101041_b10475191135215">upgraded to v1.19.10 or later</strong> and <strong id="cce_01_0379__en-us_topic_0000001244101041_b34814114520">the everest add-on needs to be upgraded to v1.2.10 or later</strong>), PVs are open to you for management. On the old CCE console, PVs can only be imported or dynamically created. You cannot manage the PV lifecycle on the console.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li14703193211529">Multiple PVs can use the same SFS or SFS Turbo file system with the following restrictions:<ul id="cce_01_0379__en-us_topic_0000001244101041_ul489363612528"><li id="cce_01_0379__en-us_topic_0000001244101041_li1470303295214">An error may occur if multiple PVCs/PVs that use the same underlying SFS or SFS Turbo file system are mounted to the same pod.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li5703832125210">The <strong id="cce_01_0379__en-us_topic_0000001244101041_b1172729111913">persistentVolumeReclaimPolicy</strong> parameter in the PVs must be set to <strong id="cce_01_0379__en-us_topic_0000001244101041_b3179729171920">Retain</strong>. Otherwise, when a PV is deleted, the associated underlying volume may be deleted. In this case, other PVs associated with the underlying volume may be abnormal.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1970311324526">When the underlying volume is repeatedly used, it is recommended that ReadWriteMany be implemented at the application layer to prevent data overwriting and loss.</li></ul>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0379__en-us_topic_0000001244101041_section43881411172418"><h4 class="sectiontitle">Volume Access Modes</h4><p id="cce_01_0379__en-us_topic_0000001244101041_p3855173814011">PVs can be mounted to the host system only in the mode supported by underlying storage resources. For example, a file storage system can be read and written by multiple nodes, but an EVS disk can be read and written by only one node.</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul15491194720247"><li id="cce_01_0379__en-us_topic_0000001244101041_li649112478240">ReadWriteOnce: A volume can be mounted as read-write by a single node. This access mode is supported by EVS.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li8491447162410">ReadWriteMany: A volume can be mounted as read-write by multiple nodes. This access mode is supported by SFS, SFS Turbo, and OBS.</li></ul>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0379__en-us_topic_0000001244101041_table773195654210" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Access modes supported by cloud storage</caption><thead align="left"><tr id="cce_01_0379__en-us_topic_0000001244101041_row773135617420"><th align="left" class="cellrowborder" valign="top" width="23.352335233523352%" id="mcps1.3.3.4.2.4.1.1"><p id="cce_01_0379__en-us_topic_0000001244101041_p10731155674211">Storage Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="36.023602360236026%" id="mcps1.3.3.4.2.4.1.2"><p id="cce_01_0379__en-us_topic_0000001244101041_p12731115614425">ReadWriteOnce</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="40.624062406240625%" id="mcps1.3.3.4.2.4.1.3"><p id="cce_01_0379__en-us_topic_0000001244101041_p3731556114214">ReadWriteMany</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0379__en-us_topic_0000001244101041_row773165604217"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p12731185618427">EVS</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p87311956124218">√</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0379__en-us_topic_0000001244101041_p27311556164218">×</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row17731956134214"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p873115610428">SFS</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p15731856104219">×</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1675417266441">√</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row1873105654216"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p12731125644217">OBS</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p47311556184213">×</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0379__en-us_topic_0000001244101041_p12369172711443">√</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row757122118433"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p135713211435">SFS Turbo</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p155713210434">×</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_01_0379__en-us_topic_0000001244101041_p7960162715446">√</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0379__en-us_topic_0000001244101041_section19999142414413"><a name="cce_01_0379__en-us_topic_0000001244101041_section19999142414413"></a><a name="en-us_topic_0000001244101041_section19999142414413"></a><h4 class="sectiontitle">PV Reclaim Policy</h4><p id="cce_01_0379__en-us_topic_0000001244101041_p10997445184415">A PV reclaim policy is used to delete or reclaim underlying volumes when a PVC is deleted. The value can be <strong id="cce_01_0379__en-us_topic_0000001244101041_b1123512274416">Delete</strong> or <strong id="cce_01_0379__en-us_topic_0000001244101041_b1351430194110">Retain</strong>.</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul269114316456"><li id="cce_01_0379__en-us_topic_0000001244101041_li1469115319456"><strong id="cce_01_0379__en-us_topic_0000001244101041_b156721435302">Delete</strong>: When a PVC is deleted, the PV and underlying storage resources are deleted.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1251938134519"><strong id="cce_01_0379__en-us_topic_0000001244101041_b184784711304">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After a PVC is deleted, the PV resource is in the Released state and cannot be bound to the PVC again.</li></ul>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p349715413273">Everest also allows you to delete a PVC without deleting underlying storage resources. This function can be achieved only by using a YAML file. Set the PV reclaim policy to <strong id="cce_01_0379__en-us_topic_0000001244101041_b172838135325">Delete</strong> and add <strong id="cce_01_0379__en-us_topic_0000001244101041_b13789655114617">annotations"everest.io/reclaim-policy: retain-volume-only"</strong>. In this way, when the PVC is deleted, the PV resource is deleted, but the underlying storage resources are retained.</p>
-</div>
-<div class="section" id="cce_01_0379__en-us_topic_0000001244101041_section12315152464120"><h4 class="sectiontitle">Creating an EVS Volume</h4><div class="note" id="cce_01_0379__en-us_topic_0000001244101041_note4966151612334"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0379__en-us_topic_0000001244101041_p172419355397">The requirements for creating an EVS volume are as follows:</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul10811145813912"><li id="cce_01_0379__en-us_topic_0000001244101041_li188111358183910">System disks, DSS disks, and shared disks cannot be used.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li5811258143917">The EVS disk is one of the supported types (common I/O, high I/O, and ultra-high I/O), and the EVS disk device type is SCSI.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li181125873910">The EVS disk is not frozen or used, and the status is available.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1981115833910">If the EVS disk is encrypted, the key must be available.</li></ul>
-</div></div>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1814111468317"><strong id="cce_01_0379__en-us_topic_0000001244101041_b514795517502">Using the CCE Console</strong></p>
-<ol id="cce_01_0379__en-us_topic_0000001244101041_ol1579572174320"><li id="cce_01_0379__en-us_topic_0000001244101041_li1179513219432"><span>Log in to the CCE console.</span></li><li id="cce_01_0379__en-us_topic_0000001244101041_li3574131225117"><span>Access the cluster details page, choose <strong id="cce_01_0379__en-us_topic_0000001244101041_b35991414523">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0379__en-us_topic_0000001244101041_b659954165217">Volumes</strong> tab.</span></li><li id="cce_01_0379__en-us_topic_0000001244101041_li84178566546"><span>Click <strong id="cce_01_0379__en-us_topic_0000001244101041_b12969112613534">Create Volume</strong> in the upper right corner. In the dialog box displayed, set the volume parameters.</span><p><ul id="cce_01_0379__en-us_topic_0000001244101041_ul65541240105712"><li id="cce_01_0379__en-us_topic_0000001244101041_li6554134018571"><strong id="cce_01_0379__en-us_topic_0000001244101041_b181509125544">Volume Type</strong>: Select <span class="uicontrol" id="cce_01_0379__en-us_topic_0000001244101041_uicontrol730816341816"><b>EVS</b></span>.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1285964185815"><strong id="cce_01_0379__en-us_topic_0000001244101041_b78211565514">EVS</strong>: </li><li id="cce_01_0379__en-us_topic_0000001244101041_li17965152811588"><strong id="cce_01_0379__en-us_topic_0000001244101041_b93920213568">PV Name</strong>: Enter a PV name.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li36181046115814"><strong id="cce_01_0379__en-us_topic_0000001244101041_b32871140195618">Access Mode</strong>: ReadWriteOnce</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1186342512595"><strong id="cce_01_0379__en-us_topic_0000001244101041_b2694111195715">Reclaim Policy</strong>: Select <strong id="cce_01_0379__en-us_topic_0000001244101041_b16521832185716">Delete</strong> or <strong id="cce_01_0379__en-us_topic_0000001244101041_b172961234165711">Retain</strong> as required. For details, see <a href="#cce_01_0379__en-us_topic_0000001244101041_section19999142414413">PV Reclaim Policy</a>.</li></ul>
-</p></li><li id="cce_01_0379__en-us_topic_0000001244101041_li164393175720"><span>Click <strong id="cce_01_0379__en-us_topic_0000001244101041_b1616873910577">Create</strong>.</span></li></ol>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p19425131413016"><strong id="cce_01_0379__en-us_topic_0000001244101041_b367774465719">Using YAML</strong></p>
-<pre class="screen" id="cce_01_0379__en-us_topic_0000001244101041_screen19782225103016">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-    everest.io/reclaim-policy: retain-volume-only         # (Optional) The PV is deleted while the underlying volume is retained.
-  name: cce-evs-test
-  labels:
-    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/region: </span><span id="cce_01_0379__text11837852125618">eu-de</span>
-<span style="color:#FF0000;">    failure-domain.beta.kubernetes.io/zone: </span><span id="cce_01_0379__text15714145718561">eu-de-01</span>
-spec:
-  accessModes:
-    - ReadWriteOnce     # Access mode. The value is fixed to <strong id="cce_01_0379__en-us_topic_0000001244101041_b1130816341218">ReadWriteOnce</strong> for EVS.
-  capacity:
-    <span style="color:#FF0000;">storage: 10Gi</span>       #  EVS disk capacity, in the unit of Gi. The value ranges from <strong id="cce_01_0379__en-us_topic_0000001244101041_b103441922104811">1</strong> to <strong id="cce_01_0379__en-us_topic_0000001244101041_b299912315489">32768</strong>.
-  csi:
-    driver: disk.csi.everest.io     # Dependent storage driver for the mounting.
-    fsType: ext4
-    <span style="color:#FF0000;">volumeHandle: 459581af-e78c-4356-9e78-eaf9cd8525eb   </span># Volume ID of the EVS disk.
-    volumeAttributes:
-      everest.io/disk-mode: SCSI           # Device type of the EVS disk. Only SCSI is supported.
-      <span style="color:#FF0000;">everest.io/disk-volume-type: SAS</span>     # EVS disk type.
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-      everest.io/crypt-key-id: 0992dbda-6340-470e-a74e-4f0db288ed82    # (Optional) Encryption key ID. Mandatory for an encrypted disk.
-  persistentVolumeReclaimPolicy: Delete    # Reclain policy.
-  storageClassName: csi-disk               # Storage class name. The value must be <strong id="cce_01_0379__en-us_topic_0000001244101041_b104188454440">csi-disk</strong>.</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0379__en-us_topic_0000001244101041_table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0379__en-us_topic_0000001244101041_row1519121663519"><th align="left" class="cellrowborder" valign="top" width="43.769999999999996%" id="mcps1.3.5.7.2.3.1.1"><p id="cce_01_0379__en-us_topic_0000001244101041_p18191161619356">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="56.230000000000004%" id="mcps1.3.5.7.2.3.1.2"><p id="cce_01_0379__en-us_topic_0000001244101041_p1919116161353">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0379__en-us_topic_0000001244101041_row1693515261514"><td class="cellrowborder" valign="top" width="43.769999999999996%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p59357261258">everest.io/reclaim-policy: retain-volume-only</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.230000000000004%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p125111321387">This field is optional.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p725113210818">Currently, only <strong id="cce_01_0379__en-us_topic_0000001244101041_b935461044510">retain-volume-only</strong> is supported.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p12251163219812">This field is valid only when the everest version is 1.2.9 or later and the reclaim policy is Delete. If the reclaim policy is Delete and the current value is <strong id="cce_01_0379__en-us_topic_0000001244101041_b11319542538">retain-volume-only</strong>, the associated PV is deleted while the underlying storage volume is retained, when a PVC is deleted.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row6232511129"><td class="cellrowborder" valign="top" width="43.769999999999996%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p857144622619">failure-domain.beta.kubernetes.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.230000000000004%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p991323413456">Region where the cluster is located.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p92141648132614">For details about the value of <strong id="cce_01_0379__en-us_topic_0000001244101041_b1056394212134">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row2318123021219"><td class="cellrowborder" valign="top" width="43.769999999999996%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p957446102612">failure-domain.beta.kubernetes.io/zone</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.230000000000004%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p3378436154620">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p11213204892611">For details about the value of <strong id="cce_01_0379__en-us_topic_0000001244101041_b733775111316">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row8618742488"><td class="cellrowborder" valign="top" width="43.769999999999996%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p12618134114814">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.230000000000004%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p146181448489">Volume ID of the EVS disk.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1069118611491">To obtain the volume ID, log in to the <strong id="cce_01_0379__en-us_topic_0000001244101041_b1542417021417">Cloud Server Console</strong>. In the navigation pane, choose <strong id="cce_01_0379__en-us_topic_0000001244101041_b74242021419">Elastic Volume Service</strong> &gt; <strong id="cce_01_0379__en-us_topic_0000001244101041_b1042470131415">Disks</strong>. Click the name of the target EVS disk to go to its details page. On the <strong id="cce_01_0379__en-us_topic_0000001244101041_b15425200171419">Summary</strong> tab page, click the copy button after <strong id="cce_01_0379__en-us_topic_0000001244101041_b7425120161413">ID</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row6149172219514"><td class="cellrowborder" valign="top" width="43.769999999999996%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p2137102735114">everest.io/disk-volume-type</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.230000000000004%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p191376271512">EVS disk type. All letters are in uppercase.</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul1099913293217"><li id="cce_01_0379__li1945743010167"><strong id="cce_01_0379__b1442914268575">SATA</strong>: common I/O</li><li id="cce_01_0379__en-us_topic_0000001244101041_li11999525321"><strong id="cce_01_0379__b018273311572">SAS</strong>: high I/O</li><li id="cce_01_0379__en-us_topic_0000001244101041_li199991629326"><strong id="cce_01_0379__en-us_topic_0000001244101041_b11803192152611">SSD</strong>: ultra-high I/O</li></ul>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row66049431458"><td class="cellrowborder" valign="top" width="43.769999999999996%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p16604154314513">everest.io/crypt-key-id</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.230000000000004%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p46531143965">Encryption key ID. This field is mandatory when the volume is an encrypted volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row142351542711"><td class="cellrowborder" valign="top" width="43.769999999999996%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1323585418713">persistentVolumeReclaimPolicy</p>
-</td>
-<td class="cellrowborder" valign="top" width="56.230000000000004%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p29951981584">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1995198389">The Delete and Retain policies are supported.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p139951481289"><strong id="cce_01_0379__en-us_topic_0000001244101041_b10742153312475">Delete</strong>:</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul1999516818817"><li id="cce_01_0379__en-us_topic_0000001244101041_li179951481089">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b12454191784810">everest.io/reclaim-policy</strong> is not specified, both the PV and EVS disk are deleted when a PVC is deleted.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1399528980">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b10124152310482">everest.io/reclaim-policy</strong> is set to <strong id="cce_01_0379__en-us_topic_0000001244101041_b1512416231481">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the EVS resources are retained.</li></ul>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1099515819810"><strong id="cce_01_0379__en-us_topic_0000001244101041_b1911716468486">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1849613104811">If high data security is required, you are advised to select <strong id="cce_01_0379__en-us_topic_0000001244101041_b9484012155617">Retain</strong> to prevent data from being deleted by mistake.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0379__en-us_topic_0000001244101041_section1923816719915"><h4 class="sectiontitle">Creating an SFS Volume</h4><div class="note" id="cce_01_0379__en-us_topic_0000001244101041_note1212718518324"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_01_0379__en-us_topic_0000001244101041_ul52412216266"><li id="cce_01_0379__en-us_topic_0000001244101041_li12241421267">The SFS file system and the cluster must be in the same VPC.</li></ul>
-</div></div>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p391519221529"><strong id="cce_01_0379__en-us_topic_0000001244101041_b126616443117">Using YAML</strong></p>
-<pre class="screen" id="cce_01_0379__en-us_topic_0000001244101041_screen49291727135211">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-    everest.io/reclaim-policy: retain-volume-only      # (Optional) The PV is deleted while the underlying volume is retained.
-  name: cce-sfs-test
-spec:
-  accessModes:
-  - ReadWriteMany      # Access mode. The value must be <strong id="cce_01_0379__en-us_topic_0000001244101041_b1319143120306">ReadWriteMany</strong> for SFS.
-  capacity:
-    <span style="color:#FF0000;">storage: 1Gi</span>       # File storage capacity.
-  csi:
-    driver: disk.csi.everest.io   # Mount the dependent storage driver.
-    fsType: nfs
-    <span style="color:#FF0000;">volumeHandle: 30b3d92a-0bc7-4610-b484-534660db81be</span>   # SFS file system ID.
-    volumeAttributes:
-      <span style="color:#FF0000;">everest.io/share-export-location: </span>  # Shared path of the file storage
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-  persistentVolumeReclaimPolicy: Retain    # Reclaim policy.
-  storageClassName: csi-nas                # Storage class name. The value must be <strong id="cce_01_0379__en-us_topic_0000001244101041_b161149532326">csi-nas</strong> for SFS.
-  mountOptions: []                         # Mount options</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0379__en-us_topic_0000001244101041_table71355385813" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0379__en-us_topic_0000001244101041_row141351434587"><th align="left" class="cellrowborder" valign="top" width="32.5%" id="mcps1.3.6.5.2.3.1.1"><p id="cce_01_0379__en-us_topic_0000001244101041_p151358385810">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="67.5%" id="mcps1.3.6.5.2.3.1.2"><p id="cce_01_0379__en-us_topic_0000001244101041_p7135331587">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0379__en-us_topic_0000001244101041_row16418161611148"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.5.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p15990111731412">everest.io/reclaim-policy: retain-volume-only</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.5.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p499071711415">This field is optional.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p16990141718140">Currently, only <strong id="cce_01_0379__en-us_topic_0000001244101041_b188571710144516">retain-volume-only</strong> is supported.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p199011711412">This field is valid only when the everest version is 1.2.9 or later and the reclaim policy is Delete. If the reclaim policy is Delete and the current value is <strong id="cce_01_0379__en-us_topic_0000001244101041_b1465612317343">retain-volume-only</strong>, the associated PV is deleted while the underlying storage volume is retained, when a PVC is deleted.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row1713683175810"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.5.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p20136133145811">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.5.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p557443910014">File system ID.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1182583515019">On the management console, choose <strong id="cce_01_0379__en-us_topic_0000001244101041_b10484115363517">Service List</strong> &gt; <strong id="cce_01_0379__en-us_topic_0000001244101041_b94853534358">Storage</strong> &gt; <strong id="cce_01_0379__en-us_topic_0000001244101041_b4485185315356">Scalable File Service</strong>. In the SFS file system list, click the name of the target file system and copy the content following <strong id="cce_01_0379__en-us_topic_0000001244101041_b13486115393518">ID</strong> on the page displayed.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row12163348416"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.5.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p737873912413">everest.io/share-export-location</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.5.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1737815391842">Shared path of the file system.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p13378143918414">On the management console, choose <strong id="cce_01_0379__en-us_topic_0000001244101041_b94193211363">Service List</strong> &gt; <strong id="cce_01_0379__en-us_topic_0000001244101041_b16513213613">Storage</strong> &gt; <strong id="cce_01_0379__en-us_topic_0000001244101041_b105153273610">Scalable File Service</strong>. You can obtain the shared path of the file system from the <strong id="cce_01_0379__en-us_topic_0000001244101041_b16543213617">Mount Address</strong> column.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row161237179516"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.5.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p201237171151">mountOptions</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.5.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1912313175512">Mount options.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p78621554981">If not specified, the following configurations are used by default. For details, see <a href="cce_01_0337.html#cce_01_0337__en-us_topic_0000001199021188_section14888047833">SFS Volume Mount Options</a>.</p>
-<pre class="screen" id="cce_01_0379__en-us_topic_0000001244101041_screen1779155351116">mountOptions:
-- vers=3
-- timeo=600
-- nolock
-- hard</pre>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row10670145113012"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.5.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p85401647163019">everest.io/crypt-key-id</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.5.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p8540154712305">Encryption key ID. This field is mandatory when the volume is an encrypted volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row10842104516303"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.5.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p7540204719305">persistentVolumeReclaimPolicy</p>
-</td>
-<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.5.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p5540154712308">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1154016478304">The options are as follows:</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p11540124713309"><strong id="cce_01_0379__en-us_topic_0000001244101041_b168481115016">Delete</strong>:</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul35408479304"><li id="cce_01_0379__en-us_topic_0000001244101041_li165401147123011">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b443455145219">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS volume are deleted when a PVC is deleted.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1954054743014">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b328165111520">everest.io/reclaim-policy</strong> is set to <strong id="cce_01_0379__en-us_topic_0000001244101041_b5281512522">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the file storage resources are retained.</li></ul>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p105411447133020"><strong id="cce_01_0379__en-us_topic_0000001244101041_b5414545203415">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p5668154145019">If high data security is required, you are advised to select <strong id="cce_01_0379__en-us_topic_0000001244101041_b15311756143410">Retain</strong> to prevent data from being deleted by mistake.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0379__en-us_topic_0000001244101041_section13401181013912"><h4 class="sectiontitle">Creating an OBS Volume</h4><div class="note" id="cce_01_0379__en-us_topic_0000001244101041_note6469180194217"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0379__en-us_topic_0000001244101041_p1454285216347">Secure containers do not support OBS volumes.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p17931173313573">A single user can create a maximum of 100 OBS buckets on the console. If you have a large number of CCE workloads and you want to mount an OBS bucket to every workload, you may easily run out of buckets. In this scenario, you are advised to use OBS through the OBS API or SDK and do not mount OBS buckets to the workload on the console.</p>
-</div></div>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p737610317714"><strong id="cce_01_0379__en-us_topic_0000001244101041_b12674639155211">Using the CCE Console</strong></p>
-<ol id="cce_01_0379__en-us_topic_0000001244101041_ol4401171012916"><li id="cce_01_0379__en-us_topic_0000001244101041_li18401510597"><span>Log in to the CCE console.</span></li><li id="cce_01_0379__en-us_topic_0000001244101041_li1640171012911"><span>Access the cluster details page, choose <strong id="cce_01_0379__en-us_topic_0000001244101041_b1789262519539">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0379__en-us_topic_0000001244101041_b11892182575313">Volumes</strong> tab.</span></li><li id="cce_01_0379__en-us_topic_0000001244101041_li84017101192"><span>Click <strong id="cce_01_0379__en-us_topic_0000001244101041_b369010955215">Create Volume</strong> in the upper right corner. In the dialog box displayed, set the volume parameters.</span><p><ul id="cce_01_0379__en-us_topic_0000001244101041_ul340216101194"><li id="cce_01_0379__en-us_topic_0000001244101041_li840216105913"><strong id="cce_01_0379__en-us_topic_0000001244101041_b94016111527">Volume Type</strong>: Select <span class="uicontrol" id="cce_01_0379__en-us_topic_0000001244101041_uicontrol11401011155214"><b>OBS</b></span>.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li154021610594">Select OBS resources.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li440214102912"><strong id="cce_01_0379__en-us_topic_0000001244101041_b1198210593017">PV Name</strong>: Enter a PV name.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li18402110994"><strong id="cce_01_0379__en-us_topic_0000001244101041_b1548122415216">Access Mode</strong>: ReadWriteMany</li><li id="cce_01_0379__en-us_topic_0000001244101041_li94020101797"><strong id="cce_01_0379__b3199204117129">Reclaim Policy</strong>: Select <strong id="cce_01_0379__b91996414129">Delete</strong> or <strong id="cce_01_0379__b141991541171215">Retain</strong> as required. For details, see <a href="#cce_01_0379__en-us_topic_0000001244101041_section19999142414413">PV Reclaim Policy</a>.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li136581431111412"><strong id="cce_01_0379__en-us_topic_0000001244101041_b18136233135011">Key</strong>: You can customize the access key (AK/SK) for mounting an OBS volume. You can use the AK/SK to create a secret and mount the secret to the PV. For details, see <a href="cce_01_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li0396131811133"><strong id="cce_01_0379__en-us_topic_0000001244101041_b15561301559">Mount Options</strong>: mount options. For details about the options, see <a href="cce_01_0337.html">Setting Mount Options</a>.</li></ul>
-</p></li><li id="cce_01_0379__en-us_topic_0000001244101041_li134021510390"><span>Click <strong id="cce_01_0379__en-us_topic_0000001244101041_b1293324355715">Create</strong>.</span></li></ol>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1013617396711"><strong id="cce_01_0379__en-us_topic_0000001244101041_b192694442119">Using YAML</strong></p>
-<pre class="screen" id="cce_01_0379__en-us_topic_0000001244101041_screen19407913135120">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-    everest.io/reclaim-policy: retain-volume-only         # (Optional) The PV is deleted while the underlying volume is retained.
-  name: cce-obs-test
-spec:
-  accessModes:
-  - ReadWriteMany                      # Access mode. The value must be <strong id="cce_01_0379__en-us_topic_0000001244101041_b1574233011312">ReadWriteMany</strong> for OBS.
-  capacity:
-    storage: 1Gi      # Storage capacity. This parameter is set only to meet the PV format requirements. It can be set to any value. The actual OBS space size is not limited by this value.
-  csi:
-    driver: obs.csi.everest.io        # Dependent storage driver for the mounting.
-    <span style="color:#FF0000;">fsType: obsfs</span>                      # OBS file type.
-    <span style="color:#FF0000;">volumeHandle: cce-obs-bucket</span>       # OBS bucket name.
-    volumeAttributes:
-      <span style="color:#FF0000;">everest.io/obs-volume-type: STANDARD</span>
-      <span style="color:#FF0000;">everest.io/region: </span><span style="color:#FF0000;" id="cce_01_0379__en-us_topic_0000001244101041_text69961862350">eu-de</span>
-      
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <span style="color:#FF0000;">nodePublishSecretRef:</span>
-<span style="color:#FF0000;">      name: test-user</span>
-<span style="color:#FF0000;">      namespace: default</span>
-  persistentVolumeReclaimPolicy: Retain       # Reclaim policy.
-  storageClassName: csi-obs                   # Storage class name. The value must be <strong id="cce_01_0379__en-us_topic_0000001244101041_b107933401611">csi-obs</strong> for OBS.
-  mountOptions: []                            # Mount options.</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0379__en-us_topic_0000001244101041_table1897325023619" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0379__en-us_topic_0000001244101041_row2973195019365"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.7.7.2.3.1.1"><p id="cce_01_0379__en-us_topic_0000001244101041_p1973155063611">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.7.7.2.3.1.2"><p id="cce_01_0379__en-us_topic_0000001244101041_p139741150123614">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0379__en-us_topic_0000001244101041_row768273923117"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p87921540193114">everest.io/reclaim-policy: retain-volume-only</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p20792184011318">This field is optional.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p2792440143119">Currently, only <strong id="cce_01_0379__en-us_topic_0000001244101041_b686041020458">retain-volume-only</strong> is supported.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p19792164013313">This field is valid only when the everest version is 1.2.9 or later and the reclaim policy is Delete. If the reclaim policy is Delete and the current value is <strong id="cce_01_0379__en-us_topic_0000001244101041_b17571124317358">retain-volume-only</strong>, the associated PV is deleted while the underlying storage volume is retained, when a PVC is deleted.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row79175211559"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p15794144011386">fsType</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p9794134093811">File type. The value can be <strong id="cce_01_0379__en-us_topic_0000001244101041_b96261655191816">obsfs</strong> or <strong id="cce_01_0379__en-us_topic_0000001244101041_b1862610558185">s3fs</strong>. If the value is <strong id="cce_01_0379__en-us_topic_0000001244101041_b1362625513180">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_01_0379__en-us_topic_0000001244101041_b9627205531818">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. You are advised to set this field to <strong id="cce_01_0379__en-us_topic_0000001244101041_b2627125571818">obsfs</strong>.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row3112104155614"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p8846313115612">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p17846013115614">OBS bucket name.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row2974950133612"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1497565093618">everest.io/obs-volume-type</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1975145003618">Storage class, including <strong id="cce_01_0379__en-us_topic_0000001244101041_b13592133261910">STANDARD</strong> (standard bucket) and <strong id="cce_01_0379__en-us_topic_0000001244101041_b1359333251920">WARM</strong> (infrequent access bucket).</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row12975850123614"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p17975150193613">everest.io/region</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p8485153732813">Region where the OBS bucket is deployed.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p10975150173615">For details about the value of <strong id="cce_01_0379__en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row169751506362"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1362313208576">nodePublishSecretRef</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1214194318595">Access key (AK/SK) used for mounting the object storage volume. You can use the AK/SK to create a secret and mount it to the PV. For details, see <a href="cce_01_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row19499851182010"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1549918517204">mountOptions</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p10499051132019">Mount options. For details, see <a href="cce_01_0337.html#cce_01_0337__en-us_topic_0000001199021188_section1254912109811">OBS Volume Mount Options</a>.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row219716449316"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1274655318312">persistentVolumeReclaimPolicy</p>
-</td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1074616532313">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p10746105353119">The Delete and Retain policies are supported.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p147461153173114"><strong id="cce_01_0379__en-us_topic_0000001244101041_b1217715293503">Delete</strong>:</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul14746853183117"><li id="cce_01_0379__en-us_topic_0000001244101041_li6746145317316">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b14482181215481">everest.io/reclaim-policy</strong> is not specified, both the PV and OBS volume are deleted when a PVC is deleted.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1874685393111">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b178031918398">everest.io/reclaim-policy</strong> is set to <strong id="cce_01_0379__en-us_topic_0000001244101041_b10264730133913">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the object storage resources are retained.</li></ul>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p137462053133111"><strong id="cce_01_0379__en-us_topic_0000001244101041_b1818615163618">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p778102518503">If high data security is required, you are advised to select <strong id="cce_01_0379__en-us_topic_0000001244101041_b183971221163613">Retain</strong> to prevent data from being deleted by mistake.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="section" id="cce_01_0379__en-us_topic_0000001244101041_section746701219919"><h4 class="sectiontitle">Creating an SFS Turbo Volume</h4><div class="note" id="cce_01_0379__en-us_topic_0000001244101041_note575671812325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0379__en-us_topic_0000001244101041_p3756111883210">SFS Turbo and the cluster must be in the same VPC.</p>
-</div></div>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p2262659131314"><strong id="cce_01_0379__en-us_topic_0000001244101041_b1467811394524">Using the CCE Console</strong></p>
-<ol id="cce_01_0379__en-us_topic_0000001244101041_ol64671112494"><li id="cce_01_0379__en-us_topic_0000001244101041_li134671121790"><span>Log in to the CCE console.</span></li><li id="cce_01_0379__en-us_topic_0000001244101041_li54677123913"><span>Access the cluster details page, choose <strong id="cce_01_0379__en-us_topic_0000001244101041_b08941725125317">Storage</strong> from the navigation pane, and click the <strong id="cce_01_0379__en-us_topic_0000001244101041_b68949259530">Volumes</strong> tab.</span></li><li id="cce_01_0379__en-us_topic_0000001244101041_li24671612796"><span>Click <strong id="cce_01_0379__en-us_topic_0000001244101041_b94231831122919">Create Volume</strong> in the upper right corner. In the dialog box displayed, set the volume parameters.</span><p><ul id="cce_01_0379__en-us_topic_0000001244101041_ul11467151218919"><li id="cce_01_0379__en-us_topic_0000001244101041_li13467412190"><strong id="cce_01_0379__en-us_topic_0000001244101041_b2321051135112">Volume Type</strong>: Select <span class="uicontrol" id="cce_01_0379__en-us_topic_0000001244101041_uicontrol43211651145117"><b>SFS Turbo</b></span>.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li2467512496"><strong id="cce_01_0379__en-us_topic_0000001244101041_b546811291035">SFS Turbo</strong>: Select SFS Turbo resources.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li204671812497"><strong id="cce_01_0379__en-us_topic_0000001244101041_b617544212294">PV Name</strong>: Enter a PV name.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li64671812598"><strong id="cce_01_0379__en-us_topic_0000001244101041_b131526335521">Access Mode</strong>: ReadWriteMany</li><li id="cce_01_0379__en-us_topic_0000001244101041_li1941612261414"><strong id="cce_01_0379__en-us_topic_0000001244101041_b912111275211">Reclaim Policy</strong>: Select <strong id="cce_01_0379__en-us_topic_0000001244101041_b1512911295214">Retain</strong>. For details, see <a href="#cce_01_0379__en-us_topic_0000001244101041_section19999142414413">PV Reclaim Policy</a>.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li5417422131416"><strong id="cce_01_0379__en-us_topic_0000001244101041_b9820142414526">Mount Options</strong>: mount options. For details about the options, see <a href="cce_01_0337.html">Setting Mount Options</a>.</li></ul>
-</p></li><li id="cce_01_0379__en-us_topic_0000001244101041_li54671212499"><span>Click <strong id="cce_01_0379__en-us_topic_0000001244101041_b13936164314575">Create</strong>.</span></li></ol>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p104025526133"><strong id="cce_01_0379__en-us_topic_0000001244101041_b52733448114">Using YAML</strong></p>
-<pre class="screen" id="cce_01_0379__en-us_topic_0000001244101041_screen201943326121">apiVersion: v1
-kind: PersistentVolume
-metadata:
-  annotations:
-    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-  name: cce-sfsturbo-test
-spec:
-  accessModes:
-    - ReadWriteMany       # Access mode. The value must be <strong id="cce_01_0379__en-us_topic_0000001244101041_b1135143295219">ReadWriteMany</strong> for SFS Turbo.
-  capacity:
-    <span style="color:#FF0000;">storage: 100.00Gi</span>     # SFS Turbo volume capacity.
-  csi:
-    driver: sfsturbo.csi.everest.io    # Dependent storage driver for the mounting.
-    fsType: nfs
-    <span style="color:#FF0000;">volumeHandle: 6674bd0a-d760-49de-bb9e-805c7883f047</span>      # SFS Turbo volume ID.
-    volumeAttributes:
-      <span style="color:#FF0000;">everest.io/share-export-location: 192.168.0.85:/</span>      # Shared path of the SFS Turbo volume.
-      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-  persistentVolumeReclaimPolicy: Retain     # Reclaim policy.
-  storageClassName: csi-sfsturbo            # Storage class name. The value must be <strong id="cce_01_0379__en-us_topic_0000001244101041_b7909144555811">csi-sfsturbo</strong> for SFS Turbo.
-  mountOptions: []                          # Mount options.</pre>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0379__en-us_topic_0000001244101041_table953204119" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0379__en-us_topic_0000001244101041_row1666206115"><th align="left" class="cellrowborder" valign="top" width="35.89%" id="mcps1.3.8.7.2.3.1.1"><p id="cce_01_0379__en-us_topic_0000001244101041_p1662017116">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="64.11%" id="mcps1.3.8.7.2.3.1.2"><p id="cce_01_0379__en-us_topic_0000001244101041_p56820513">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_01_0379__en-us_topic_0000001244101041_row1061620713"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p2127205115">volumeHandle</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p331414324103">SFS Turbo volume ID.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1455172961010">You can obtain the ID on the SFS Turbo storage instance details page on the SFS console.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row6115201810"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1911172013115">everest.io/share-export-location</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p1812132017111">Shared path of the SFS Turbo volume.</p>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row18678549121716"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p18225195111714">mountOptions</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p102261251111713">Mount options.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p16226251151710">If not specified, the following configurations are used by default. For details, see <a href="cce_01_0337.html#cce_01_0337__en-us_topic_0000001199021188_section14888047833">SFS Volume Mount Options</a>.</p>
-<pre class="screen" id="cce_01_0379__en-us_topic_0000001244101041_screen162263516171">mountOptions:
-- vers=3
-- timeo=600
-- nolock
-- hard</pre>
-</td>
-</tr>
-<tr id="cce_01_0379__en-us_topic_0000001244101041_row1761104195212"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_01_0379__en-us_topic_0000001244101041_p166175137524">persistentVolumeReclaimPolicy</p>
-</td>
-<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_01_0379__en-us_topic_0000001244101041_p146171913195219">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1661719131526">The Delete and Retain policies are supported.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p261701305213"><strong id="cce_01_0379__en-us_topic_0000001244101041_b1861731316521">Delete</strong>:</p>
-<ul id="cce_01_0379__en-us_topic_0000001244101041_ul86171313175216"><li id="cce_01_0379__en-us_topic_0000001244101041_li661721310522">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b4216103123615">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS Turbo volume are deleted when a PVC is deleted.</li><li id="cce_01_0379__en-us_topic_0000001244101041_li961781395213">If <strong id="cce_01_0379__en-us_topic_0000001244101041_b1417394393610">everest.io/reclaim-policy</strong> is set to <strong id="cce_01_0379__en-us_topic_0000001244101041_b2173164333616">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the SFF Turbo resources are retained.</li></ul>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p261761313522"><strong id="cce_01_0379__en-us_topic_0000001244101041_b38127815379">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
-<p id="cce_01_0379__en-us_topic_0000001244101041_p1361771316526">If high data security is required, you are advised to select <strong id="cce_01_0379__en-us_topic_0000001244101041_b2849435105615">Retain</strong> to prevent data from being deleted by mistake.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0380.html b/docs/cce/umn/cce_01_0380.html
deleted file mode 100644
index 50546fc5..00000000
--- a/docs/cce/umn/cce_01_0380.html
+++ /dev/null
@@ -1,209 +0,0 @@
-<a name="cce_01_0380"></a><a name="cce_01_0380"></a>
-
-<h1 class="topictitle1">StorageClass</h1>
-<div id="body8662426"><p id="cce_01_0380__en-us_topic_0000001199501172_p6816345818">StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as csi-disk, csi-nas, and csi-obs by default. When defining a PVC, you can use a StorageClassName to automatically create a PV of the corresponding type and automatically create underlying storage resources.</p>
-<p id="cce_01_0380__en-us_topic_0000001199501172_p5271142713310">You can run the following command to query the storage classes that CCE supports. You can use the CSI plug-in provided by CCE to customize a storage class, which functions similarly as the default storage classes in CCE.</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001199501172_screen2027110274334"># kubectl get sc
-NAME                PROVISIONER                     AGE
-csi-disk            everest-csi-provisioner         17d          # Storage class for EVS disks
-csi-nas             everest-csi-provisioner         17d          # Storage class for SFS file systems
-csi-obs             everest-csi-provisioner         17d          # Storage class for OBS buckets</pre>
-<p id="cce_01_0380__en-us_topic_0000001199501172_p1348743213278">After a StorageClass is set, PVs can be automatically created and maintained. You only need to specify the StorageClass when creating a PVC, which greatly reduces the workload.</p>
-<p id="cce_01_0380__en-us_topic_0000001199501172_p17360330819">In addition to the predefined storage classes provided by CCE, you can also customize storage classes. The following sections describe the application status, solutions, and methods of customizing storage classes.</p>
-<div class="section" id="cce_01_0380__en-us_topic_0000001199501172_section18703932139"><h4 class="sectiontitle">Challenges</h4><p id="cce_01_0380__en-us_topic_0000001148435277_p19810642103411">When using storage resources in CCE, the most common method is to specify <strong id="cce_01_0380__en-us_topic_0000001148435277_b1439518042014">storageClassName</strong> to define the type of storage resources to be created when creating a PVC. The following configuration shows how to use a PVC to apply for an SAS (high I/O) EVS disk (block storage).</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen146941631606">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-evs-example
-  namespace: default
-  <span style="color:#FF0000;">annotations:</span>
-    <span style="color:#FF0000;">everest.io/disk-volume-type: SAS</span>
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi
-  <span style="color:#FF0000;">storageClassName: csi-disk</span></pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p10416164023811">If you need to specify the EVS disk type, you can set the <strong id="cce_01_0380__en-us_topic_0000001148435277_b1327345035413">everest.io/disk-volume-type</strong> field. The value <strong id="cce_01_0380__en-us_topic_0000001148435277_b1527965015414">SAS</strong> is used as an example here, indicating the high I/O EVS disk type. Or you can choose <strong id="cce_01_0380__en-us_topic_0000001148435277_b18796143718507">SATA</strong> (common I/O) and <strong id="cce_01_0380__en-us_topic_0000001148435277_b5279250115416">SSD</strong> (ultra-high I/O).</p>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p1992812244296">This configuration method may not work if you want to:</p>
-<ul id="cce_01_0380__en-us_topic_0000001148435277_ul1666681113305"><li id="cce_01_0380__en-us_topic_0000001148435277_li26671211203012">Set <strong id="cce_01_0380__en-us_topic_0000001148435277_b19384122374818">storageClassName</strong> only, which is simpler than specifying the EVS disk type by using <strong id="cce_01_0380__en-us_topic_0000001148435277_b1043282143520">everest.io/disk-volume-type</strong>.</li><li id="cce_01_0380__en-us_topic_0000001148435277_li1430122517314">Avoid modifying YAML files or Helm charts. Some users switch from self-built or other Kubernetes services to CCE and have written YAML files of many applications. In these YAML files, different types of storage resources are specified by different StorageClassNames. When using CCE, they need to modify a large number of YAML files or Helm charts to use storage resources, which is labor-consuming and error-prone.</li><li id="cce_01_0380__en-us_topic_0000001148435277_li6714783711">Set the default <strong id="cce_01_0380__en-us_topic_0000001148435277_b3414714817">storageClassName</strong> for all applications to use the default storage class. In this way, you can create storage resources of the default type without needing to specify <strong id="cce_01_0380__en-us_topic_0000001148435277_b15163103104815">storageClassName</strong> in the YAML file.</li></ul>
-</div>
-<div class="section" id="cce_01_0380__en-us_topic_0000001199501172_section1520511451"><h4 class="sectiontitle">Solution</h4><p id="cce_01_0380__en-us_topic_0000001148435277_p33361127181019">This section describes how to set a custom storage class in CCE and how to set the default storage class. You can specify different types of storage resources by setting <strong id="cce_01_0380__en-us_topic_0000001148435277_b15705152195010">storageClassName</strong>.</p>
-<ul id="cce_01_0380__en-us_topic_0000001148435277_ul1394816541798"><li id="cce_01_0380__en-us_topic_0000001148435277_li1494865412920">For the first scenario, you can define custom storageClassNames for SAS and SSD EVS disks. For example, define a storage class named <strong id="cce_01_0380__en-us_topic_0000001148435277_b11954204618017">csi-disk-sas</strong> for creating SAS disks. The following figure shows the differences before and after you use a custom storage class.<p id="cce_01_0380__en-us_topic_0000001148435277_p1639843625220"><span><img id="cce_01_0380__en-us_topic_0000001148435277_image62065521613" src="en-us_image_0000001102275444.png"></span></p>
-</li><li id="cce_01_0380__en-us_topic_0000001148435277_li112521973108">For the second scenario, you can define a storage class with the same name as that in the existing YAML file without needing to modify <strong id="cce_01_0380__en-us_topic_0000001148435277_b13346387104">storageClassName</strong> in the YAML file.</li><li id="cce_01_0380__en-us_topic_0000001148435277_li595443471215">For the third scenario, you can set the default storage class as described below to create storage resources without specifying <strong id="cce_01_0380__en-us_topic_0000001148435277_b863812014124">storageClassName</strong> in YAML files.<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen22067304183">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-evs-example
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi</pre>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0380__en-us_topic_0000001199501172_section92221021258"><h4 class="sectiontitle">Custom Storage Classes</h4><p id="cce_01_0380__en-us_topic_0000001148435277_p9601335151617">You can customize a high I/O storage class in a YAML file. For example, the name <strong id="cce_01_0380__en-us_topic_0000001148435277_b186185811594">csi-disk-sas</strong> indicates that the disk type is SAS (high I/O).</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen659210819391">apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  name: <span style="color:#FF0000;">csi-disk-sas</span>                          # Name of the high I/O storage class, which can be customized.
-parameters:
-  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
-  csi.storage.k8s.io/fstype: ext4
-  everest.io/disk-volume-type: <span style="color:#FF0000;">SAS</span>            # High I/O EVS disk type, which cannot be customized.
-  everest.io/passthrough: "true"
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate
-<span style="color:#FF0000;">allowVolumeExpansion: true</span>                    # <strong id="cce_01_0380__en-us_topic_0000001148435277_b148711949142017">true</strong> indicates that capacity expansion is allowed.</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p1281618138471">For an ultra-high I/O storage class, you can set the class name to <strong id="cce_01_0380__en-us_topic_0000001148435277_b722754812">csi-disk-ssd</strong> to create SSD EVS disk (ultra-high I/O).</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen199713432478">apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  name: <span style="color:#FF0000;">csi-disk-ssd</span>                       # Name of the ultra-high I/O storage class, which can be customized.
-parameters:
-  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
-  csi.storage.k8s.io/fstype: ext4
-  everest.io/disk-volume-type: <span style="color:#FF0000;">SSD</span>         # Ultra-high I/O EVS disk type, which cannot be customized.
-  everest.io/passthrough: "true"
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate
-allowVolumeExpansion: true</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p146067122106"><strong id="cce_01_0380__en-us_topic_0000001148435277_b69321846286">reclaimPolicy</strong>: indicates the recycling policies of the underlying cloud storage. The value can be <strong id="cce_01_0380__en-us_topic_0000001148435277_b9392322125012">Delete</strong> or <strong id="cce_01_0380__en-us_topic_0000001148435277_b91651126105014">Retain</strong>.</p>
-<ul id="cce_01_0380__en-us_topic_0000001148435277_ul42481619111116"><li id="cce_01_0380__en-us_topic_0000001148435277_li1624871911111"><strong id="cce_01_0380__en-us_topic_0000001148435277_b1313332805014">Delete</strong>: When a PVC is deleted, both the PV and the EVS disk are deleted.</li><li id="cce_01_0380__en-us_topic_0000001148435277_li9248141919118"><strong id="cce_01_0380__en-us_topic_0000001148435277_b26601433105212">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the <strong id="cce_01_0380__en-us_topic_0000001148435277_b1956334045518">Released</strong> state and cannot be bound to the PVC again.</li></ul>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p778102518503">If high data security is required, you are advised to select <strong id="cce_01_0380__en-us_topic_0000001148435277_b1478374995218">Retain</strong> to prevent data from being deleted by mistake.</p>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p824713561207">After the definition is complete, run the <strong id="cce_01_0380__en-us_topic_0000001148435277_b14281158232">kubectl create</strong> commands to create storage resources.</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen164494218115"># kubectl create -f sas.yaml
-storageclass.storage.k8s.io/csi-disk-sas created
-# kubectl create -f ssd.yaml
-storageclass.storage.k8s.io/csi-disk-ssd created</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p1412183715488">Query the storage class again. Two more types of storage classes are displayed in the command output, as shown below.</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen13784148495"># kubectl get sc
-NAME                PROVISIONER                     AGE
-csi-disk            everest-csi-provisioner         17d
-<span style="color:#FF0000;">csi-disk-sas        everest-csi-provisioner         2m28s</span>
-<span style="color:#FF0000;">csi-disk-ssd        everest-csi-provisioner         16s</span>
-csi-disk-topology   everest-csi-provisioner         17d
-csi-nas             everest-csi-provisioner         17d
-csi-obs             everest-csi-provisioner         17d
-csi-sfsturbo        everest-csi-provisioner         17d</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p05291082227">Other types of storage resources can be defined in the similar way. You can use kubectl to obtain the YAML file and modify it as required.</p>
-<ul id="cce_01_0380__en-us_topic_0000001148435277_ul38311130152115"><li id="cce_01_0380__en-us_topic_0000001148435277_li18831113072113">File storage<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen181646213295"># kubectl get sc csi-nas -oyaml
-kind: StorageClass
-apiVersion: storage.k8s.io/v1
-metadata:
-  name: csi-nas
-provisioner: everest-csi-provisioner
-parameters:
-  csi.storage.k8s.io/csi-driver-name: nas.csi.everest.io
-  csi.storage.k8s.io/fstype: nfs
-  everest.io/share-access-level: rw
-  everest.io/share-access-to: 5e3864c6-e78d-4d00-b6fd-de09d432c632   # ID of the VPC to which the cluster belongs
-  everest.io/share-is-public: 'false'
-  everest.io/zone: xxxxx          # AZ
-reclaimPolicy: Delete
-allowVolumeExpansion: true
-volumeBindingMode: Immediate</pre>
-</li><li id="cce_01_0380__en-us_topic_0000001148435277_li4390135712118">Object storage<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen1745353552911"># kubectl get sc csi-obs -oyaml
-kind: StorageClass
-apiVersion: storage.k8s.io/v1
-metadata:
-  name: csi-obs
-provisioner: everest-csi-provisioner
-parameters:
-  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
-  csi.storage.k8s.io/fstype: s3fs           # Object storage type. <strong id="cce_01_0380__en-us_topic_0000001148435277_b581916217422">s3fs</strong> indicates an object bucket, and <strong id="cce_01_0380__en-us_topic_0000001148435277_b19130111019424">obsfs</strong> indicates a parallel file system.
-  everest.io/obs-volume-type: STANDARD      # Storage class of the OBS bucket
-reclaimPolicy: Delete
-volumeBindingMode: Immediate</pre>
-</li></ul>
-</div>
-<div class="section" id="cce_01_0380__en-us_topic_0000001199501172_section9720192252"><h4 class="sectiontitle">Setting a Default Storage Class</h4><p id="cce_01_0380__en-us_topic_0000001148435277_p163571329132111">You can specify a storage class as the default class. In this way, if you do not specify <strong id="cce_01_0380__en-us_topic_0000001148435277_b133883591469">storageClassName</strong> when creating a PVC, the PVC is created using the default storage class.</p>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p1435710291217">For example, to specify <strong id="cce_01_0380__en-us_topic_0000001148435277_b1964515812715">csi-disk-ssd</strong> as the default storage class, edit your YAML file as follows:</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen5357429172112">apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  name: csi-disk-ssd
-  <span style="color:#FF0000;">annotations:</span>
-<span style="color:#FF0000;">    storageclass.kubernetes.io/is-default-class: "true" </span>  # Specifies the default storage class in a cluster. A cluster can have only one default storage class.
-parameters:
-  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
-  csi.storage.k8s.io/fstype: ext4
-  everest.io/disk-volume-type: SSD
-  everest.io/passthrough: "true"
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate
-allowVolumeExpansion: true</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p1135711298213">Delete the created csi-disk-ssd disk, run the <strong id="cce_01_0380__en-us_topic_0000001148435277_b152561717817">kubectl create</strong> command to create a csi-disk-ssd disk again, and then query the storage class. The following information is displayed.</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen135872982120"># kubectl delete sc csi-disk-ssd
-storageclass.storage.k8s.io "csi-disk-ssd" deleted
-# kubectl create -f ssd.yaml
-storageclass.storage.k8s.io/csi-disk-ssd created
-# kubectl get sc
-NAME                     PROVISIONER                     AGE
-csi-disk                 everest-csi-provisioner         17d
-csi-disk-sas             everest-csi-provisioner         114m
-<span style="color:#FF0000;">csi-disk-ssd (default)   everest-csi-provisioner         9s</span>
-csi-disk-topology        everest-csi-provisioner         17d
-csi-nas                  everest-csi-provisioner         17d
-csi-obs                  everest-csi-provisioner         17d
-csi-sfsturbo             everest-csi-provisioner         17d</pre>
-</div>
-<div class="section" id="cce_01_0380__en-us_topic_0000001199501172_section147641081060"><h4 class="sectiontitle">Verification</h4><ul id="cce_01_0380__en-us_topic_0000001148435277_ul326513332433"><li id="cce_01_0380__en-us_topic_0000001148435277_li1426593312439">Use <strong id="cce_01_0380__en-us_topic_0000001148435277_b72318715919">csi-disk-sas</strong> to create a PVC.<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen164121655153014">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name:  sas-disk
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi
-  storageClassName: <span style="color:#FF0000;">csi-disk-sas</span></pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p1331523183215">Create a storage class and view its details. As shown below, the object can be created and the value of <strong id="cce_01_0380__en-us_topic_0000001148435277_b2841103141010">STORAGECLASS</strong> is <strong id="cce_01_0380__en-us_topic_0000001148435277_b1290115143103">csi-disk-sas</strong>.</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen3819181515400"># kubectl create -f sas-disk.yaml 
-persistentvolumeclaim/sas-disk created
-# kubectl get pvc
-NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   <span style="color:#FF0000;">STORAGECLASS</span>   AGE
-sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            <span style="color:#FF0000;">csi-disk-sas</span>   24s
-# kubectl get pv
-NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     <span style="color:#FF0000;">STORAGECLASS</span>   REASON   AGE
-pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          <span style="color:#FF0000;">csi-disk-sas</span>            30s</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p296654417436">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is high I/O.</p>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p1365215405213"></p>
-</li><li id="cce_01_0380__en-us_topic_0000001148435277_li16722125154315">If <strong id="cce_01_0380__en-us_topic_0000001148435277_b53910164176">storageClassName</strong> is not specified, the default configuration is used, as shown below.<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen623034510524">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name:  ssd-disk
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p14101131875619">Create and view the storage resource. You can see that the storage class of PVC ssd-disk is csi-disk-ssd, indicating that csi-disk-ssd is used by default.</p>
-<pre class="screen" id="cce_01_0380__en-us_topic_0000001148435277_screen133543256569"># kubectl create -f ssd-disk.yaml 
-persistentvolumeclaim/ssd-disk created
-# kubectl get pvc
-NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
-sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   16m
-<span style="color:#FF0000;">ssd-disk</span>   Bound    pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            <span style="color:#FF0000;">csi-disk-ssd</span>   10s
-# kubectl get pv
-NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
-pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            Delete           Bound       default/ssd-disk          csi-disk-ssd            15s
-pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            17m</pre>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p14639104411583">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is ultra-high I/O.</p>
-<p id="cce_01_0380__en-us_topic_0000001148435277_p76651917155918"></p>
-</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0388.html b/docs/cce/umn/cce_01_0388.html
deleted file mode 100644
index 905fd44d..00000000
--- a/docs/cce/umn/cce_01_0388.html
+++ /dev/null
@@ -1,64 +0,0 @@
-<a name="cce_01_0388"></a><a name="cce_01_0388"></a>
-
-<h1 class="topictitle1">Cluster Secrets</h1>
-<div id="body0000001227449187"><p id="cce_01_0388__p8060118">By default, CCE creates the following secrets in each namespace:</p>
-<ul id="cce_01_0388__ul11133437164415"><li id="cce_01_0388__li2013314377449">default-secret</li><li id="cce_01_0388__li1579120032910">paas.elb</li><li id="cce_01_0388__li2057534620443">default-token-<em id="cce_01_0388__i106994569422">xxxxx</em> (<em id="cce_01_0388__i13316853104213">xxxxx</em> is a random number.)</li></ul>
-<p id="cce_01_0388__p115364274114"><span><img id="cce_01_0388__image11322243134119" src="en-us_image_0000001227977765.png"></span></p>
-<p id="cce_01_0388__p1461725310415">The functions of these secrets are described as follows.</p>
-<div class="section" id="cce_01_0388__section11760122012591"><h4 class="sectiontitle">default-secret</h4><p id="cce_01_0388__p1297205225915">The type of <strong id="cce_01_0388__b5795112964411">default-secret</strong> is <strong id="cce_01_0388__b1988233219444">kubernetes.io/dockerconfigjson</strong>. The data is the credential for logging in to the SWR image repository and is used to pull images from SWR. If you need to pull an image from SWR when creating a workload on CCE, set <strong id="cce_01_0388__b1165772811456">imagePullSecrets</strong> to <strong id="cce_01_0388__b8729429144513">default-secret</strong>.</p>
-<pre class="screen" id="cce_01_0388__screen1412134515516">apiVersion: v1                      
-kind: Pod                          
-metadata:
-  name: nginx                      
-spec:                            
-  containers:
-  - image: nginx:alpine            
-    name: container-0               
-    resources:                      
-      limits:
-        cpu: 100m
-        memory: 200Mi
-      requests:
-        cpu: 100m
-        memory: 200Mi
-  imagePullSecrets:
-  - name: <span style="color:#FF0000;">default-secret</span></pre>
-<p id="cce_01_0388__p10387553316">The data of <strong id="cce_01_0388__b202852431455">default-secret</strong> is updated periodically, and the current data will expire after a certain period of time. You can run the <strong id="cce_01_0388__b922520015461">describe</strong> command to view the expiration time in of default-secret.</p>
-<div class="notice" id="cce_01_0388__note94616032115"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0388__p13461200122114">Use default-secret directly instead of copying the secret content to create a new one. The credential in the copied secret will expire and the image cannot be pulled.</p>
-</div></div>
-<pre class="screen" id="cce_01_0388__screen28241756204212">$ kubectl describe secret default-secret
-Name:         default-secret
-Namespace:    default
-Labels:       secret-generated-by=cce
-Annotations:  <span style="color:#FF0000;">temporary-ak-sk-expires-at: 2021-11-26 20:55:31.380909 +0000 UTC</span>
-
-Type:  kubernetes.io/dockerconfigjson
-
-Data
-====
-.dockerconfigjson:  347 bytes</pre>
-</div>
-<div class="section" id="cce_01_0388__section773741319418"><h4 class="sectiontitle">paas.elb</h4><p id="cce_01_0388__p116412118419">The data of <strong id="cce_01_0388__b78751819184819">paas.elb</strong> is the temporary AK/SK data, which is used to create ELB load balancers during Service and ingress creation. The data of paas.elb is periodically updated and expires after a certain period of time.</p>
-<p id="cce_01_0388__p20102433102518">In practice, you will not directly use paas.elb. However, do not delete it. Otherwise, ELB load balancers will fail to be created.</p>
-</div>
-<div class="section" id="cce_01_0388__section15110823415"><h4 class="sectiontitle">default-token-xxxxx</h4><p id="cce_01_0388__p6438131143414">By default, Kubernetes creates a service account named <strong id="cce_01_0388__b15722111135016">default</strong> for each namespace. <strong id="cce_01_0388__b137381826135010">default-token-<em id="cce_01_0388__i1311819344503">xxxxx</em></strong> is the key of the service account, and <strong id="cce_01_0388__b898052985020"><em id="cce_01_0388__i7154338105016">xxxxx</em></strong> is a random number.</p>
-<pre class="screen" id="cce_01_0388__screen12251202113620">$ kubectl get sa
-NAME     SECRETS   AGE
-default  1         30d
-$ kubectl describe sa default
-Name:                default
-Namespace:           default
-Labels:              &lt;none&gt;
-Annotations:         &lt;none&gt;
-Image pull secrets:  &lt;none&gt;
-Mountable secrets:   default-token-vssmw
-<span style="color:#FF0000;">Tokens:              default-token-vssmw</span>
-Events:              &lt;none&gt;</pre>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0045.html">Configuration Center</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0393.html b/docs/cce/umn/cce_01_0393.html
deleted file mode 100644
index 4b713370..00000000
--- a/docs/cce/umn/cce_01_0393.html
+++ /dev/null
@@ -1,22 +0,0 @@
-<a name="cce_01_0393"></a><a name="cce_01_0393"></a>
-
-<h1 class="topictitle1">Deployment Examples</h1>
-<div id="body8662426"><p id="cce_01_0393__en-us_topic_0000001249022071_p8060118"></p>
-</div>
-<div>
-<ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0044.html">EVS Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0125.html">SFS Turbo Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0160.html">OBS Volumes</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0111.html">SFS Volumes</a></strong><br>
-</li>
-</ul>
-
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0042.html">Storage (CSI)</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_0395.html b/docs/cce/umn/cce_01_0395.html
deleted file mode 100644
index 4799eddc..00000000
--- a/docs/cce/umn/cce_01_0395.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<a name="cce_01_0395"></a><a name="cce_01_0395"></a>
-
-<h1 class="topictitle1">Switching from AOM to HPA for Auto Scaling</h1>
-<div id="body0000001211416952"><p id="cce_01_0395__p880765441013">CCE clusters of v1.15 or earlier support workload scaling based on AOM monitoring data. This function is no longer supported in CCE clusters of v1.17 or later.</p>
-<p id="cce_01_0395__p1764522601210">If you have configured auto scaling based on AOM, you can switch to <a href="cce_01_0208.html">HPA</a> policies after your cluster is upgraded to v1.17. Note the following differences during the switchover:</p>
-<ul id="cce_01_0395__ul27013211150"><li id="cce_01_0395__li8701226153">In AOM-based auto scaling, resource usage rate is calculated based on the limit of a workload, from 0% to 100%.</li></ul>
-<p id="cce_01_0395__p581319518152">For example, if the memory request of a workload is 2 GB and the memory limit is 16 GB, a scale-out is triggered as long as the memory utilization reaches 50% of the limit (8 GB) in AOM-based auto scaling. In HPA-based scaling, you need to set the memory usage rate to 400% (16 x 50%/2) to trigger the same scaling.</p>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0293.html">Scaling a Workload</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_10_0002.html b/docs/cce/umn/cce_10_0002.html
new file mode 100644
index 00000000..c0d8561b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0002.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0002"></a><a name="cce_10_0002"></a>
+
+<h1 class="topictitle1">Cluster Overview</h1>
+<div id="body1522665832344"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0430.html">Basic Cluster Information</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0342.html">CCE Turbo Clusters and CCE Clusters</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0349.html">Comparing iptables and IPVS</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0068.html">Release Notes</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0003.html b/docs/cce/umn/cce_10_0003.html
new file mode 100644
index 00000000..665f5868
--- /dev/null
+++ b/docs/cce/umn/cce_10_0003.html
@@ -0,0 +1,131 @@
+<a name="cce_10_0003"></a><a name="cce_10_0003"></a>
+
+<h1 class="topictitle1">Resetting a Node</h1>
+<div id="body1522736306717"><div class="section" id="cce_10_0003__section87051629113714"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0003__p13461109175017">You can reset a node to modify the node configuration, such as the node OS and login mode.</p>
+<p id="cce_10_0003__p341155285120">Resetting a node will reinstall the node OS and the Kubernetes software on the node. If a node is unavailable because you modify the node configuration, you can reset the node to rectify the fault.</p>
+</div>
+<div class="section" id="cce_10_0003__section0339185914138"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0003__ul975585510397"><li id="cce_10_0003__li15755125513910">For CCE clusters and CCE Turbo clusters, the version must be v1.13 or later to support node resetting.</li></ul>
+</div>
+<div class="section" id="cce_10_0003__section83421713122615"><h4 class="sectiontitle">Notes</h4><ul id="cce_10_0003__ul189321612123615"><li id="cce_10_0003__li139331412133615">Only worker nodes can be reset. If the node is still unavailable after the resetting, delete the node and create a new one.</li><li id="cce_10_0003__li133748101461"><strong id="cce_10_0003__b1724353045920">Resetting a node will reinstall the node OS and interrupt workload services running on the node. Therefore, perform this operation during off-peak hours.</strong></li><li id="cce_10_0003__li11336171744612"><strong id="cce_10_0003__b1654931913492">Data in the system disk and Docker data disks will be cleared. Back up important data before resetting the node.</strong></li><li id="cce_10_0003__li159325122367"><strong id="cce_10_0003__b18976436631">When an extra data disk is mounted to a node, data in this disk will be cleared if the disk has not been unmounted before the node reset. To prevent data loss, back up data in advance and mount the data disk again after the node reset is complete.</strong></li><li id="cce_10_0003__li18904821103817">The IP addresses of the workload pods on the node will change, but the container network access is not affected.</li><li id="cce_10_0003__li33901348389">There is remaining EVS disk quota.</li><li id="cce_10_0003__li893261218365">While the node is being deleted, the backend will set the node to the unschedulable state.</li></ul>
+</div>
+<div class="section" id="cce_10_0003__section13505122310576"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0003__p354415259593">The new console allows you to reset nodes in batches. You can also use private images to reset nodes in batches.</p>
+<ol id="cce_10_0003__ol19107956331"><li id="cce_10_0003__li12107195613316"><span>Log in to the CCE console.</span></li><li id="cce_10_0003__li36690501449"><span>Click the cluster name and access the cluster details page, choose <strong id="cce_10_0003__b117901137112117">Nodes</strong> in the navigation pane, and select one or multiple nodes to be reset in the list on the right. Choose <strong id="cce_10_0003__b4783174114217">More</strong> &gt; <strong id="cce_10_0003__b127830419214">Reset</strong>.</span></li><li id="cce_10_0003__li2062015811615"><span>In the displayed dialog box, click <strong id="cce_10_0003__b101006211646">Yes</strong>.</span><p><ul id="cce_10_0003__ul582555595914"><li id="cce_10_0003__li1582611556598">For nodes in the DefaultPool node pool, the parameter setting page is displayed. Set the parameters by referring to <a href="#cce_10_0003__li1646785611239">4</a>.</li><li id="cce_10_0003__li8826115511593">For a node you create in a node pool, resetting the node does not support parameter configuration. You can directly use the configuration image of the node pool to reset the node.</li></ul>
+</p></li><li id="cce_10_0003__li1646785611239"><a name="cce_10_0003__li1646785611239"></a><a name="li1646785611239"></a><span>Specify node parameters.</span><p><div class="p" id="cce_10_0003__cce_10_0198_p67901445163816"><strong id="cce_10_0003__b31796610207">Compute Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__cce_10_0198_table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0003__cce_10_0198_row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.3.4.2.1.2.2.3.1.1"><p id="cce_10_0003__cce_10_0198_p186688710581">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.3.4.2.1.2.2.3.1.2"><p id="cce_10_0003__cce_10_0198_p16681570588">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0003__cce_10_0198_row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p1669177185817">Specification</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1995811631516">Node specifications cannot be modified when you reset a node.</p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row20701239458"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p66685314111">Container Engine</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1015871915468">CCE clusters support Docker. </p>
+<p id="cce_10_0003__cce_10_0198_p13666533417">For a CCE Turbo cluster, both <strong id="cce_10_0003__b1631655112116">Docker</strong> and <strong id="cce_10_0003__b1032145582120">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>. </p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p176690785813">OS</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1058345314295"><strong id="cce_10_0003__b192781812223">Public image</strong>: Select an OS for the node.</p>
+<p id="cce_10_0003__cce_10_0198_p89866115220"><strong id="cce_10_0003__b46501920162212">Private image</strong>: You can use private images.</p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p1917631063017">Login Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><ul id="cce_10_0003__ul721024291810"><li id="cce_10_0003__cce_10_0363_li1857913131710"><strong id="cce_10_0003__cce_10_0363_b9138131116117">Key Pair</strong><p id="cce_10_0003__cce_10_0363_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0003__cce_10_0363_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0003__cce_10_0363_cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0003__cce_10_0198_p15555174812382"><strong id="cce_10_0003__b4911180152918">Storage Settings</strong></p>
+<div class="p" id="cce_10_0003__cce_10_0198_p866914735818">Configure storage resources on a node for the containers running on it.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__cce_10_0198_table56691276581" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0003__cce_10_0198_row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.3.4.2.3.1.2.3.1.1"><p id="cce_10_0003__cce_10_0198_p9669576584">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.3.4.2.3.1.2.3.1.2"><p id="cce_10_0003__cce_10_0198_p366912711589">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0003__cce_10_0198_row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p666916719588">System Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p590942616323">Directly use the system disk of the cloud server.</p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p0669147185817">Data Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p17207615113820"><strong id="cce_10_0003__cce_10_0198_b034255085317">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0003__cce_10_0198_b1034825011538">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<p id="cce_10_0003__cce_10_0198_p3752312011">Click <strong id="cce_10_0003__cce_10_0198_b291501816313">Expand</strong> and select <strong id="cce_10_0003__cce_10_0198_b325193733516">Allocate Disk Space</strong> to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</p>
+<p id="cce_10_0003__cce_10_0198_p1391618153118">For other data disks, a raw disk is created without any processing by default. You can also click <strong id="cce_10_0003__cce_10_0198_b16127101911540">Expand</strong> and select <strong id="cce_10_0003__cce_10_0198_b21351519135417">Mount Disk</strong> to mount the data disk to a specified directory. </p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="p" id="cce_10_0003__cce_10_0198_p44821251133819"><strong id="cce_10_0003__b197939372910">Advanced Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__cce_10_0198_table101545619373" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0003__cce_10_0198_row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.4.3.4.2.4.2.2.3.1.1"><p id="cce_10_0003__cce_10_0198_p2152561377">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.4.3.4.2.4.2.2.3.1.2"><p id="cce_10_0003__cce_10_0198_p1515195616375">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0003__cce_10_0198_row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p1253915513402">Kubernetes Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p11258124419136">Click <strong id="cce_10_0003__cce_10_0198_b1386891911119">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0003__cce_10_0198_p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p25391859406">Resource Tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p14909254174019">You can add resource tags to classify resources.</p>
+<p id="cce_10_0003__cce_10_0198_p10327184710426">You can create <strong id="cce_10_0003__cce_10_0198_b1229534941117">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0003__cce_10_0198_p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0003__cce_10_0198_i111451122126">node id</em>" tag.</p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p55391457404">Taint</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><div class="p" id="cce_10_0003__cce_10_0198_p2875141354415">This field is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0003__cce_10_0198_ul17274222121015"><li id="cce_10_0003__cce_10_0198_li227482216106"><strong id="cce_10_0003__cce_10_0198_b315322791211">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0003__cce_10_0198_li7274112241020"><strong id="cce_10_0003__cce_10_0198_b959462991212">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0003__cce_10_0198_li2274182211010"><strong id="cce_10_0003__cce_10_0198_b1842253117126">Effect</strong>: Available options are <strong id="cce_10_0003__cce_10_0198_b18422153171218">NoSchedule</strong>, <strong id="cce_10_0003__cce_10_0198_b2042312311128">PreferNoSchedule</strong>, and <strong id="cce_10_0003__cce_10_0198_b1042343111212">NoExecute</strong>.</li></ul>
+<div class="notice" id="cce_10_0003__cce_10_0198_note77443231113"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0003__cce_10_0198_ul104271158181515"><li id="cce_10_0003__cce_10_0198_li042725811158">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-up may fail or pods cannot be scheduled onto the added nodes.</li><li id="cce_10_0003__cce_10_0198_li642712581152">After a node pool is created, you can click <strong id="cce_10_0003__cce_10_0198_b15911477124">Edit</strong> to modify its configuration. The modification will be synchronized to all nodes in the node pool.</li></ul>
+</div></div>
+</div>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p054015516406">Max. Pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
+<p id="cce_10_0003__cce_10_0198_p272611351429">This limit prevents the node from being overloaded with pods.</p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p534319566391">Pre-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0003__cce_10_0198_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
+</td>
+</tr>
+<tr id="cce_10_0003__cce_10_0198_row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p18677104643916">Post-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0003__cce_10_0198_p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0003__li36051030165413"><span>Click <span class="uicontrol" id="cce_10_0003__uicontrol12958173510556"><b>Next: Confirm</b></span>.</span></li><li id="cce_10_0003__li957713521647"><span>Click <strong id="cce_10_0003__b1774443619195">Submit</strong>.</span></li></ol>
+<p id="cce_10_0003__p18604141718598"></p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0004.html b/docs/cce/umn/cce_10_0004.html
new file mode 100644
index 00000000..bbe9012a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0004.html
@@ -0,0 +1,105 @@
+<a name="cce_10_0004"></a><a name="cce_10_0004"></a>
+
+<h1 class="topictitle1">Managing Node Labels</h1>
+<div id="body1523168310157"><div class="section" id="cce_10_0004__section825504204814"><h4 class="sectiontitle">Node Label Usage Scenario</h4><p id="cce_10_0004__p780125519482">Node labels are mainly used in the following scenarios:</p>
+<ul id="cce_10_0004__ul1269074720287"><li id="cce_10_0004__li1269054722816">Node management: Node labels are used to classify nodes.</li><li id="cce_10_0004__li13690184719287">Affinity and anti-affinity between a workload and node:<ul id="cce_10_0004__ul1329315507281"><li id="cce_10_0004__li17292050192815">Different workloads have different resource requirements such as CPU, memory, and I/O. If a workload consumes too many resources in a cluster, other workloads in the same cluster may fail to run properly. In this case, you are advised to add different labels to nodes. When deploying a workload, you can select nodes with specified labels for affinity deployment to ensure the normal operation of the system. Otherwise, node anti-affinity deployment can be used.</li><li id="cce_10_0004__li1229255012816">A system can be divided into multiple modules. Each module consists of multiple microservices. To ensure efficient O&amp;M, you can add a module label to each node so that each module can be deployed on the corresponding node. In this way, modules do not interfere with each other and microservices can be easily maintained on their nodes.</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0004__section74111324152813"><h4 class="sectiontitle"><span class="keyword" id="cce_10_0004__keyword544709935144944">Inherent Label of a Node</span></h4><p id="cce_10_0004__p096179164111">After a node is created, some fixed labels exist and cannot be deleted. For details about these labels, see <a href="#cce_10_0004__table83962234533">Table 1</a>.</p>
+
+<div class="tablenoborder"><a name="cce_10_0004__table83962234533"></a><a name="table83962234533"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0004__table83962234533" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Inherent label of a node</caption><thead align="left"><tr id="cce_10_0004__row941112314533"><th align="left" class="cellrowborder" valign="top" width="34%" id="mcps1.4.2.3.2.3.1.1"><p id="cce_10_0004__p1541113238536">Key</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="66%" id="mcps1.4.2.3.2.3.1.2"><p id="cce_10_0004__p1741119232538">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0004__row846191265011"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p107369065316">New: topology.kubernetes.io/region</p>
+<p id="cce_10_0004__p841172365311">Old: failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p38743391437">Region where the node is located</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row11957143818577"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p67558441573">New: topology.kubernetes.io/zone</p>
+<p id="cce_10_0004__p27551644185718">Old: failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p5141948155717">AZ where the node is located</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row186452248235"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p935922465512">New: node.kubernetes.io/baremetal</p>
+<p id="cce_10_0004__p1664611247230">Old: failure-domain.beta.kubernetes.io/is-baremetal</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p10646132416235">Whether the node is a bare metal node</p>
+<p id="cce_10_0004__p878819218284"><strong id="cce_10_0004__b137781937201815">false</strong> indicates that the node is not a bare metal node.</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row5551359185318"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p126155014549">node.kubernetes.io/instance-type</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p11552159195316">Node specifications</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row11411923145318"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p89228418575">kubernetes.io/arch</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p3103855811">Node processor architecture</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row18812913105819"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p981281335818">kubernetes.io/hostname</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p1981261314582">Node name</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row15479121185815"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p1931642055818">kubernetes.io/os</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p7479101125812">OS type</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row85011821447"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p950218211147">node.kubernetes.io/subnetid</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p950282110419">ID of the subnet where the node is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row15411523165312"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p2411192310532">os.architecture</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p1741162315319">Node processor architecture</p>
+<p id="cce_10_0004__p11218831135415">For example, <strong id="cce_10_0004__b842352706145330">amd64</strong> indicates a AMD64-bit processor.</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row17411162365318"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p8411102345311">os.name</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p7411112315537">Node OS name</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row1041115238531"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p2411323135319">os.version</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p641192311530">Node OS kernel version</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row23484510537"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p1534935185313">node.kubernetes.io/container-engine</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p452411147537">Container engine used by the node.</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row157991762533"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p1159194516538">accelerator</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p13799136175313">GPU node labels.</p>
+</td>
+</tr>
+<tr id="cce_10_0004__row43521213544"><td class="cellrowborder" valign="top" width="34%" headers="mcps1.4.2.3.2.3.1.1 "><p id="cce_10_0004__p1859767185417">cce.cloud.com/cce-nodepool</p>
+</td>
+<td class="cellrowborder" valign="top" width="66%" headers="mcps1.4.2.3.2.3.1.2 "><p id="cce_10_0004__p8447111011543">The dedicated label of a node in a node pool.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0004__section33951611481"><h4 class="sectiontitle">Adding or Deleting a Node Label</h4><ol id="cce_10_0004__ol4618636938"><li id="cce_10_0004__li12107195613316"><span>Log in to the CCE console.</span></li><li id="cce_10_0004__li36690501449"><span>Click the cluster name, access the cluster details page, and choose <strong id="cce_10_0004__b176624312390">Nodes</strong> in the navigation pane. On the page displayed, select a node and click <strong id="cce_10_0004__b136582017154112">Manage Labels and Taints</strong>.</span></li><li id="cce_10_0004__li2568164932420"><span>In the displayed dialog box, click <span class="uicontrol" id="cce_10_0004__uicontrol5570349182414"><b>Add batch operations</b></span> under <span class="uicontrol" id="cce_10_0004__uicontrol123171251123713"><b>Batch Operation</b></span>, and then choose <span class="uicontrol" id="cce_10_0004__uicontrol1969811458359"><b>Add/Update</b></span> or <span class="uicontrol" id="cce_10_0004__uicontrol1429348173510"><b>Delete</b></span>.</span><p><p id="cce_10_0004__p59891449182418">Enter the key and value of the label to be added or deleted, and click <strong id="cce_10_0004__b10531103420434">OK</strong>.</p>
+<p id="cce_10_0004__p12647141114247">For example, the key is <strong id="cce_10_0004__b842352706145648">deploy_qa</strong> and the value is <strong id="cce_10_0004__b842352706145652">true</strong>, indicating that the node is used to deploy the QA (test) environment.</p>
+</p></li><li id="cce_10_0004__li68199221571"><span>After the label is added, check the added label in node data.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0006.html b/docs/cce/umn/cce_10_0006.html
similarity index 63%
rename from docs/cce/umn/cce_01_0006.html
rename to docs/cce/umn/cce_10_0006.html
index 5f5e19e3..3e407221 100644
--- a/docs/cce/umn/cce_01_0006.html
+++ b/docs/cce/umn/cce_10_0006.html
@@ -1,79 +1,79 @@
-<a name="cce_01_0006"></a><a name="cce_01_0006"></a>
+<a name="cce_10_0006"></a><a name="cce_10_0006"></a>
 
 <h1 class="topictitle1">Overview</h1>
-<div id="body1522665832344"><p id="cce_01_0006__p11116113204610">CCE provides Kubernetes-native container deployment and management and supports lifecycle management of container workloads, including creation, configuration, monitoring, auto scaling, upgrade, uninstall, service discovery, and load balancing.</p>
-<div class="section" id="cce_01_0006__section9645114684816"><h4 class="sectiontitle">Pod</h4><p id="cce_01_0006__en-us_topic_0254767870_p356108173515">A pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. A pod encapsulates one or more containers, storage volumes, a unique network IP address, and options that govern how the containers should run.</p>
-<p id="cce_01_0006__en-us_topic_0254767870_p4629172611480">Pods can be used in either of the following ways:</p>
-<ul id="cce_01_0006__en-us_topic_0254767870_ul062982617481"><li id="cce_01_0006__en-us_topic_0254767870_li1629172611482">A container is running in a pod. This is the most common usage of pods in Kubernetes. You can view the pod as a single encapsulated container, but Kubernetes directly manages pods instead of containers.</li><li id="cce_01_0006__en-us_topic_0254767870_li1962932615480">Multiple containers that need to be coupled and share resources run in a pod. In this scenario, an application contains a main container and several sidecar containers, as shown in <a href="#cce_01_0006__en-us_topic_0254767870_fig347141918551">Figure 1</a>. For example, the main container is a web server that provides file services from a fixed directory, and a sidecar container periodically downloads files to the directory.<div class="fignone" id="cce_01_0006__en-us_topic_0254767870_fig347141918551"><a name="cce_01_0006__en-us_topic_0254767870_fig347141918551"></a><a name="en-us_topic_0254767870_fig347141918551"></a><span class="figcap"><b>Figure 1 </b>Pod</span><br><span><img id="cce_01_0006__en-us_topic_0254767870_image1835215316361" src="en-us_image_0258392378.png"></span></div>
+<div id="body1522665832344"><p id="cce_10_0006__p11116113204610">CCE provides Kubernetes-native container deployment and management and supports lifecycle management of container workloads, including creation, configuration, monitoring, auto scaling, upgrade, uninstall, service discovery, and load balancing.</p>
+<div class="section" id="cce_10_0006__section9645114684816"><h4 class="sectiontitle">Pod</h4><p id="cce_10_0006__en-us_topic_0254767870_p356108173515">A pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. A pod encapsulates one or more containers, storage volumes, a unique network IP address, and options that govern how the containers should run.</p>
+<p id="cce_10_0006__en-us_topic_0254767870_p4629172611480">Pods can be used in either of the following ways:</p>
+<ul id="cce_10_0006__en-us_topic_0254767870_ul062982617481"><li id="cce_10_0006__en-us_topic_0254767870_li1629172611482">A container is running in a pod. This is the most common usage of pods in Kubernetes. You can view the pod as a single encapsulated container, but Kubernetes directly manages pods instead of containers.</li><li id="cce_10_0006__en-us_topic_0254767870_li1962932615480">Multiple containers that need to be coupled and share resources run in a pod. In this scenario, an application contains a main container and several sidecar containers, as shown in <a href="#cce_10_0006__en-us_topic_0254767870_fig347141918551">Figure 1</a>. For example, the main container is a web server that provides file services from a fixed directory, and a sidecar container periodically downloads files to the directory.<div class="fignone" id="cce_10_0006__en-us_topic_0254767870_fig347141918551"><a name="cce_10_0006__en-us_topic_0254767870_fig347141918551"></a><a name="en-us_topic_0254767870_fig347141918551"></a><span class="figcap"><b>Figure 1 </b>Pod</span><br><span><img id="cce_10_0006__en-us_topic_0254767870_image1835215316361" src="en-us_image_0258392378.png"></span></div>
 </li></ul>
-<p id="cce_01_0006__en-us_topic_0254767870_p9163143619182">In Kubernetes, pods are rarely created directly. Instead, controllers such as Deployments and jobs, are used to manage pods. Controllers can create and manage multiple pods, and provide replica management, rolling upgrade, and self-healing capabilities. A controller generally uses a pod template to create corresponding pods.</p>
+<p id="cce_10_0006__en-us_topic_0254767870_p9163143619182">In Kubernetes, pods are rarely created directly. Instead, controllers such as Deployments and jobs, are used to manage pods. Controllers can create and manage multiple pods, and provide replica management, rolling upgrade, and self-healing capabilities. A controller generally uses a pod template to create corresponding pods.</p>
 </div>
-<div class="section" id="cce_01_0006__section1972719357496"><h4 class="sectiontitle">Deployment</h4><p id="cce_01_0006__en-us_topic_0249851113_p13243347131615">A pod is the smallest and simplest unit that you create or deploy in Kubernetes. It is designed to be an ephemeral, one-off entity. A pod can be evicted when node resources are insufficient and disappears along with a cluster node failure. Kubernetes provides controllers to manage pods. Controllers can create and manage pods, and provide replica management, rolling upgrade, and self-healing capabilities. The most commonly used controller is Deployment.</p>
-<div class="fignone" id="cce_01_0006__en-us_topic_0249851113_fig12546173933714"><span class="figcap"><b>Figure 2 </b>Relationship between a Deployment and pods</span><br><span><img id="cce_01_0006__en-us_topic_0249851113_image5671529113711" src="en-us_image_0258095884.png"></span></div>
-<p id="cce_01_0006__en-us_topic_0249851113_p35371248184511">A Deployment can contain one or more pods. These pods have the same role. Therefore, the system automatically distributes requests to multiple pods of a Deployment.</p>
-<p id="cce_01_0006__en-us_topic_0249851113_p11715188281">A Deployment integrates a lot of functions, including online deployment, rolling upgrade, replica creation, and restoration of online jobs. To some extent, Deployments can be used to realize unattended rollout, which greatly reduces difficulties and operation risks in the rollout process.</p>
+<div class="section" id="cce_10_0006__section1972719357496"><h4 class="sectiontitle">Deployment</h4><p id="cce_10_0006__en-us_topic_0249851113_p13243347131615">A pod is the smallest and simplest unit that you create or deploy in Kubernetes. It is designed to be an ephemeral, one-off entity. A pod can be evicted when node resources are insufficient and disappears along with a cluster node failure. Kubernetes provides controllers to manage pods. Controllers can create and manage pods, and provide replica management, rolling upgrade, and self-healing capabilities. The most commonly used controller is Deployment.</p>
+<div class="fignone" id="cce_10_0006__en-us_topic_0249851113_fig12546173933714"><span class="figcap"><b>Figure 2 </b>Relationship between a Deployment and pods</span><br><span><img id="cce_10_0006__en-us_topic_0249851113_image5671529113711" src="en-us_image_0258095884.png"></span></div>
+<p id="cce_10_0006__en-us_topic_0249851113_p35371248184511">A Deployment can contain one or more pods. These pods have the same role. Therefore, the system automatically distributes requests to multiple pods of a Deployment.</p>
+<p id="cce_10_0006__en-us_topic_0249851113_p11715188281">A Deployment integrates a lot of functions, including online deployment, rolling upgrade, replica creation, and restoration of online jobs. To some extent, Deployments can be used to realize unattended rollout, which greatly reduces difficulties and operation risks in the rollout process.</p>
 </div>
-<div class="section" id="cce_01_0006__section14888155424918"><h4 class="sectiontitle">StatefulSet</h4><p id="cce_01_0006__en-us_topic_0249896621_p12502102192418">All pods under a Deployment have the same characteristics except for the name and IP address. If required, a Deployment can use the pod template to create a new pod. If not required, the Deployment can delete any one of the pods.</p>
-<p id="cce_01_0006__en-us_topic_0249896621_p2669143675415">However, Deployments cannot meet the requirements in some distributed scenarios when each pod requires its own status or in a distributed database where each pod requires independent storage.</p>
-<p id="cce_01_0006__en-us_topic_0249896621_p97277467269">With detailed analysis, it is found that each part of distributed stateful applications plays a different role. For example, the database nodes are deployed in active/standby mode, and pods are dependent on each other. In this case, you need to meet the following requirements for the pods:</p>
-<ul id="cce_01_0006__en-us_topic_0249896621_ul1181724132317"><li id="cce_01_0006__en-us_topic_0249896621_li10181102419231">A pod can be recognized by other pods. Therefore, a pod must have a fixed identifier.</li><li id="cce_01_0006__en-us_topic_0249896621_li81819249237">Each pod has an independent storage device. After a pod is deleted and then restored, the data read from the pod must be the same as the previous one. Otherwise, the pod status is inconsistent.</li></ul>
-<p id="cce_01_0006__en-us_topic_0249896621_p929315724313">To address the preceding requirements, Kubernetes provides StatefulSets.</p>
-<ol id="cce_01_0006__en-us_topic_0249896621_ol117020203559"><li id="cce_01_0006__en-us_topic_0249896621_li183871501692">A StatefulSet provides a fixed name for each pod following a fixed number ranging from 0 to N. After a pod is rescheduled, the pod name and the host name remain unchanged.</li><li id="cce_01_0006__en-us_topic_0249896621_li1789810518913">A StatefulSet provides a fixed access domain name for each pod through the headless Service (described in following sections).</li><li id="cce_01_0006__en-us_topic_0249896621_li43183204569">The StatefulSet creates PersistentVolumeClaims (PVCs) with fixed identifiers to ensure that pods can access the same persistent data after being rescheduled.<p id="cce_01_0006__en-us_topic_0249896621_p8536185392116"><a name="cce_01_0006__en-us_topic_0249896621_li43183204569"></a><a name="en-us_topic_0249896621_li43183204569"></a><span><img id="cce_01_0006__en-us_topic_0249896621_image9125145402111" src="en-us_image_0258203193.png"></span></p>
+<div class="section" id="cce_10_0006__section14888155424918"><h4 class="sectiontitle">StatefulSet</h4><p id="cce_10_0006__en-us_topic_0249896621_p12502102192418">All pods under a Deployment have the same characteristics except for the name and IP address. If required, a Deployment can use the pod template to create a new pod. If not required, the Deployment can delete any one of the pods.</p>
+<p id="cce_10_0006__en-us_topic_0249896621_p2669143675415">However, Deployments cannot meet the requirements in some distributed scenarios when each pod requires its own status or in a distributed database where each pod requires independent storage.</p>
+<p id="cce_10_0006__en-us_topic_0249896621_p97277467269">With detailed analysis, it is found that each part of distributed stateful applications plays a different role. For example, the database nodes are deployed in active/standby mode, and pods are dependent on each other. In this case, you need to meet the following requirements for the pods:</p>
+<ul id="cce_10_0006__en-us_topic_0249896621_ul1181724132317"><li id="cce_10_0006__en-us_topic_0249896621_li10181102419231">A pod can be recognized by other pods. Therefore, a pod must have a fixed identifier.</li><li id="cce_10_0006__en-us_topic_0249896621_li81819249237">Each pod has an independent storage device. After a pod is deleted and then restored, the data read from the pod must be the same as the previous one. Otherwise, the pod status is inconsistent.</li></ul>
+<p id="cce_10_0006__en-us_topic_0249896621_p929315724313">To address the preceding requirements, Kubernetes provides StatefulSets.</p>
+<ol id="cce_10_0006__en-us_topic_0249896621_ol117020203559"><li id="cce_10_0006__en-us_topic_0249896621_li183871501692">A StatefulSet provides a fixed name for each pod following a fixed number ranging from 0 to N. After a pod is rescheduled, the pod name and the host name remain unchanged.</li><li id="cce_10_0006__en-us_topic_0249896621_li1789810518913">A StatefulSet provides a fixed access domain name for each pod through the headless Service (described in following sections).</li><li id="cce_10_0006__en-us_topic_0249896621_li43183204569">The StatefulSet creates PersistentVolumeClaims (PVCs) with fixed identifiers to ensure that pods can access the same persistent data after being rescheduled.<p id="cce_10_0006__en-us_topic_0249896621_p8536185392116"><a name="cce_10_0006__en-us_topic_0249896621_li43183204569"></a><a name="en-us_topic_0249896621_li43183204569"></a><span><img id="cce_10_0006__en-us_topic_0249896621_image9125145402111" src="en-us_image_0258203193.png"></span></p>
 </li></ol>
 </div>
-<div class="section" id="cce_01_0006__section7846281504"><h4 class="sectiontitle">DaemonSet</h4><p id="cce_01_0006__en-us_topic_0249851114_p441104813815">A DaemonSet runs a pod on each node in a cluster and ensures that there is only one pod. This works well for certain system-level applications, such as log collection and resource monitoring, since they must run on each node and need only a few pods. A good example is kube-proxy.</p>
-<p id="cce_01_0006__en-us_topic_0249851114_p5986375820">DaemonSets are closely related to nodes. If a node becomes faulty, the DaemonSet will not create the same pods on other nodes.</p>
-<div class="fignone" id="cce_01_0006__en-us_topic_0249851114_fig27588261914"><span class="figcap"><b>Figure 3 </b>DaemonSet</span><br><span><img id="cce_01_0006__en-us_topic_0249851114_image13336133243518" src="en-us_image_0258871213.png"></span></div>
+<div class="section" id="cce_10_0006__section7846281504"><h4 class="sectiontitle">DaemonSet</h4><p id="cce_10_0006__en-us_topic_0249851114_p441104813815">A DaemonSet runs a pod on each node in a cluster and ensures that there is only one pod. This works well for certain system-level applications, such as log collection and resource monitoring, since they must run on each node and need only a few pods. A good example is kube-proxy.</p>
+<p id="cce_10_0006__en-us_topic_0249851114_p5986375820">DaemonSets are closely related to nodes. If a node becomes faulty, the DaemonSet will not create the same pods on other nodes.</p>
+<div class="fignone" id="cce_10_0006__en-us_topic_0249851114_fig27588261914"><span class="figcap"><b>Figure 3 </b>DaemonSet</span><br><span><img id="cce_10_0006__en-us_topic_0249851114_image13336133243518" src="en-us_image_0258871213.png"></span></div>
 </div>
-<div class="section" id="cce_01_0006__section153173319578"><h4 class="sectiontitle">Job and Cron Job</h4><p id="cce_01_0006__en-us_topic_0249851115_p10889736123218">Jobs and cron jobs allow you to run short lived, one-off tasks in batch. They ensure the task pods run to completion.</p>
-<ul id="cce_01_0006__en-us_topic_0249851115_ul197714911354"><li id="cce_01_0006__en-us_topic_0249851115_li47711097352">A job is a resource object used by Kubernetes to control batch tasks. Jobs are different from long-term servo tasks (such as Deployments and StatefulSets). The former is started and terminated at specific times, while the latter runs unceasingly unless being terminated. The pods managed by a job will be automatically removed after successfully completing tasks based on user configurations.</li><li id="cce_01_0006__en-us_topic_0249851115_li249061111353">A cron job runs a job periodically on a specified schedule. A cron job object is similar to a line of a crontab file in Linux.</li></ul>
-<p id="cce_01_0006__en-us_topic_0249851115_p166171774387">This run-to-completion feature of jobs is especially suitable for one-off tasks, such as continuous integration (CI).</p>
+<div class="section" id="cce_10_0006__section153173319578"><h4 class="sectiontitle">Job and Cron Job</h4><p id="cce_10_0006__en-us_topic_0249851115_p10889736123218">Jobs and cron jobs allow you to run short lived, one-off tasks in batch. They ensure the task pods run to completion.</p>
+<ul id="cce_10_0006__en-us_topic_0249851115_ul197714911354"><li id="cce_10_0006__en-us_topic_0249851115_li47711097352">A job is a resource object used by Kubernetes to control batch tasks. Jobs are different from long-term servo tasks (such as Deployments and StatefulSets). The former is started and terminated at specific times, while the latter runs unceasingly unless being terminated. The pods managed by a job will be automatically removed after successfully completing tasks based on user configurations.</li><li id="cce_10_0006__en-us_topic_0249851115_li249061111353">A cron job runs a job periodically on a specified schedule. A cron job object is similar to a line of a crontab file in Linux.</li></ul>
+<p id="cce_10_0006__en-us_topic_0249851115_p166171774387">This run-to-completion feature of jobs is especially suitable for one-off tasks, such as continuous integration (CI).</p>
 </div>
-<div class="section" id="cce_01_0006__section3891192610218"><h4 class="sectiontitle">Workload Lifecycle</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0006__table488465253420" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Status description</caption><thead align="left"><tr id="cce_01_0006__row13888105212343"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.4.7.2.2.3.1.1"><p id="cce_01_0006__p1788975203415">Status</p>
+<div class="section" id="cce_10_0006__section3891192610218"><h4 class="sectiontitle">Workload Lifecycle</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0006__table488465253420" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Status description</caption><thead align="left"><tr id="cce_10_0006__row13888105212343"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.4.7.2.2.3.1.1"><p id="cce_10_0006__p1788975203415">Status</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="75%" id="mcps1.4.7.2.2.3.1.2"><p id="cce_01_0006__p788975211347">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="75%" id="mcps1.4.7.2.2.3.1.2"><p id="cce_10_0006__p788975211347">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_01_0006__row14889152173415"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p1788905212343">Running</p>
+<tbody><tr id="cce_10_0006__row14889152173415"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p1788905212343">Running</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p188914522345">All pods are running.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p188914522345">All pods are running.</p>
 </td>
 </tr>
-<tr id="cce_01_0006__row12889195263417"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p1888915253412">Unready</p>
+<tr id="cce_10_0006__row12889195263417"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p1888915253412">Unready</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p12889152113418">A container is abnormal, the number of pods is 0, or the workload is in pending state.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p12889152113418">A container is abnormal, the number of pods is 0, or the workload is in pending state.</p>
 </td>
 </tr>
-<tr id="cce_01_0006__row12889195213419"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p6889135218347">Upgrading/Rolling back</p>
+<tr id="cce_10_0006__row12889195213419"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p6889135218347">Upgrading/Rolling back</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p18889052203414">The workload is being upgraded or rolled back.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p18889052203414">The workload is being upgraded or rolled back.</p>
 </td>
 </tr>
-<tr id="cce_01_0006__row6241718141019"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p132017221115">Available</p>
+<tr id="cce_10_0006__row6241718141019"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p132017221115">Available</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p16202132212113">For a multi-pod Deployment, some pods are abnormal but at least one pod is available.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p16202132212113">For a multi-pod Deployment, some pods are abnormal but at least one pod is available.</p>
 </td>
 </tr>
-<tr id="cce_01_0006__row13688115719"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p196891715814">Completed</p>
+<tr id="cce_10_0006__row13688115719"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p196891715814">Completed</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p19689181515119">The task is successfully executed. This status is available only for common tasks.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p19689181515119">The task is successfully executed. This status is available only for common tasks.</p>
 </td>
 </tr>
-<tr id="cce_01_0006__row2088975211346"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p788915203415">Stopped</p>
+<tr id="cce_10_0006__row2088975211346"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p788915203415">Stopped</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p15889152103417">The workload is stopped and the number of pods changes to 0. This status is available for workloads earlier than v1.13.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p15889152103417">The workload is stopped and the number of pods changes to 0. This status is available for workloads earlier than v1.13.</p>
 </td>
 </tr>
-<tr id="cce_01_0006__row172011222121114"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p198052054104811">Deleting</p>
+<tr id="cce_10_0006__row172011222121114"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p198052054104811">Deleting</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p8805854104812">The workload is being deleted.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p8805854104812">The workload is being deleted.</p>
 </td>
 </tr>
-<tr id="cce_01_0006__row1280465420481"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_01_0006__p19354132811102">Pausing</p>
+<tr id="cce_10_0006__row1280465420481"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.4.7.2.2.3.1.1 "><p id="cce_10_0006__p19354132811102">Pausing</p>
 </td>
-<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_01_0006__p535418282104">The workload is being paused.</p>
+<td class="cellrowborder" valign="top" width="75%" headers="mcps1.4.7.2.2.3.1.2 "><p id="cce_10_0006__p535418282104">The workload is being paused.</p>
 </td>
 </tr>
 </tbody>
@@ -83,7 +83,7 @@
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0046.html">Workloads</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0007.html b/docs/cce/umn/cce_10_0007.html
new file mode 100644
index 00000000..3cc1f063
--- /dev/null
+++ b/docs/cce/umn/cce_10_0007.html
@@ -0,0 +1,129 @@
+<a name="cce_10_0007"></a><a name="cce_10_0007"></a>
+
+<h1 class="topictitle1">Managing Workloads and Jobs</h1>
+<div id="body8662426"><div class="section" id="cce_10_0007__cce_01_0007_section430113764416"><h4 class="sectiontitle">Scenario</h4><div class="p" id="cce_10_0007__cce_01_0007_p723817425449">After a workload is created, you can upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0007__cce_01_0007_table156143911815" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Workload/Job management</caption><thead align="left"><tr id="cce_10_0007__cce_01_0007_row856143916184"><th align="left" class="cellrowborder" valign="top" width="24.610000000000003%" id="mcps1.3.1.2.1.2.3.1.1"><p id="cce_10_0007__cce_01_0007_p1571039111814">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="75.39%" id="mcps1.3.1.2.1.2.3.1.2"><p id="cce_10_0007__cce_01_0007_p175703931816">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0007__row125441054163414"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__p452412553342"><a href="#cce_10_0007__section7200124254011">Monitor</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__p852495515348">You can view the CPU and memory usage of workloads and pods on the CCE console.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row75714395185"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1557739101816"><a href="#cce_10_0007__cce_01_0007_section51511928173817">View Log</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p1457133921816">You can view the logs of workloads.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row657239111818"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p357239201816"><a href="#cce_10_0007__cce_01_0007_section17604174417381">Upgrade</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p45783918183">You can replace images or image tags to quickly upgrade Deployments, StatefulSets, and DaemonSets without interrupting services.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row1657153916181"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1457639131817"><a href="#cce_10_0007__cce_01_0007_section21669213390">Edit YAML</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p11572397189">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row1571539101815"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p105743919187"><a href="#cce_10_0007__cce_01_0007_section13324541124815">Roll Back</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p19575392187">Only Deployments can be rolled back.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row1957163914184"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1457103915188"><a href="#cce_10_0007__section132451237607">Redeploy</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p1457163910187">You can redeploy a workload. After the workload is redeployed, all pods in the workload will be restarted.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row936119475198"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p183611847121911"><a href="#cce_10_0007__cce_01_0007_section12087915401">Enabling/Disabling the Upgrade</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p3361747151920">Only Deployments support this operation.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row133611447101912"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p73613476199"><a href="#cce_10_0007__cce_01_0007_section5931193015488">Manage Label</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p136104716195">Labels are key-value pairs and can be attached to workloads for affinity and anti-affinity scheduling. Jobs and Cron Jobs do not support this operation.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row123611847141914"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p5361154721910"><a href="#cce_10_0007__cce_01_0007_section14423721191418">Delete</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p73612471192">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__cce_01_0007_row62541871218"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1425413732116"><a href="#cce_10_0007__cce_01_0007_section1947616516301">View Events</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p1725437122110">You can view event names, event types, number of occurrences, Kubernetes events, first occurrence time, and last occurrence time.</p>
+</td>
+</tr>
+<tr id="cce_10_0007__row5748521152120"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__p137481217217">Stop/Start</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__p10748192122115">You can only start or stop a cron job.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div class="section" id="cce_10_0007__section7200124254011"><a name="cce_10_0007__section7200124254011"></a><a name="section7200124254011"></a><h4 class="sectiontitle">Monitoring a Workload</h4><p id="cce_10_0007__cce_01_0007_p785625243110">You can view the CPU and memory usage of Deployments and pods on the CCE console to determine the resource specifications you may need. This section uses a Deployment as an example to describe how to monitor a workload.</p>
+<ol id="cce_10_0007__cce_01_0007_ol121998089396"><li id="cce_10_0007__cce_01_0007_li9879311402"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b16451125013714">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li2774856895942"><span>Click the <strong id="cce_10_0007__b7166115916267">Deployments</strong> tab and click <span class="uicontrol" id="cce_10_0007__uicontrol791710184219"><b>Monitor</b></span> of the target workload. On the page that is displayed, you can view CPU usage and memory usage of the workload.</span></li><li id="cce_10_0007__cce_01_0007_li08455571501"><span>Click the workload name. On the <strong id="cce_10_0007__b1288064014552">Pods</strong> tab page, click the <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol594931162312"><b>Monitor</b></span> of the target pod to view its CPU and memory usage.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section51511928173817"><a name="cce_10_0007__cce_01_0007_section51511928173817"></a><a name="cce_01_0007_section51511928173817"></a><h4 class="sectiontitle">Viewing Logs</h4><p id="cce_10_0007__cce_01_0007_p7643185724813">You can view logs of Deployments, StatefulSets, DaemonSets, and jobs. This section uses a Deployment as an example to describe how to view logs.</p>
+<ol id="cce_10_0007__cce_01_0007_ol14644105712488"><li id="cce_10_0007__cce_01_0007_li2619151017014"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b16561443103711">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li1340513385528"><span>Click the <strong id="cce_10_0007__b1288235873716">Deployments</strong> tab and click the <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol124081538105216"><b>View Log</b></span> of the target workload.</span><p><p id="cce_10_0007__cce_01_0007_p17548132715421">On the displayed <strong id="cce_10_0007__b135652223918">View Log</strong> window, you can view logs by time.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section17604174417381"><a name="cce_10_0007__cce_01_0007_section17604174417381"></a><a name="cce_01_0007_section17604174417381"></a><h4 class="sectiontitle">Upgrading a Workload</h4><p id="cce_10_0007__cce_01_0007_p96551832133014">You quickly upgrade Deployments, StatefulSets, and DaemonSets on the CCE console.</p>
+<p id="cce_10_0007__cce_01_0007_p1243174462216">This section uses a Deployment as an example to describe how to upgrade a workload.</p>
+<p id="cce_10_0007__cce_01_0007_p15663124812311">Before replacing an image or image version, upload the new image to the SWR service.</p>
+<ol id="cce_10_0007__cce_01_0007_ol583013911434"><li id="cce_10_0007__li112420494810"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b27119519592">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li148303911437"><span>Click the <strong id="cce_10_0007__b12745715915">Deployments</strong> tab and click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol119161298236"><b>Upgrade</b></span> of the target workload.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note104981317262"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0007__cce_01_0007_ul6585203411317"><li id="cce_10_0007__cce_01_0007_li658513412313">Workloads cannot be upgraded in batches.</li><li id="cce_10_0007__cce_01_0007_li175851834193120">Before performing an in-place StatefulSet upgrade, you must manually delete old pods. Otherwise, the upgrade status is always displayed as <strong id="cce_10_0007__cce_01_0007_b340512519164">Upgrading</strong>.</li></ul>
+</div></div>
+</p></li><li id="cce_10_0007__cce_01_0007_li8831149194314"><span>Upgrade the workload based on service requirements. The method for setting parameter is the same as that for creating a workload.</span></li><li id="cce_10_0007__cce_01_0007_li3833189134315"><span>After the update is complete, click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol8834189154313"><b>Upgrade Workload</b></span>, manually confirm the YAML file, and submit the upgrade.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section21669213390"><a name="cce_10_0007__cce_01_0007_section21669213390"></a><a name="cce_01_0007_section21669213390"></a><h4 class="sectiontitle">Editing a YAML file</h4><p id="cce_10_0007__cce_01_0007_p879119319360">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded. This section uses a Deployment as an example to describe how to edit the YAML file.</p>
+<ol id="cce_10_0007__cce_01_0007_ol1879112311361"><li id="cce_10_0007__li635115103505"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b99711226311">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li1335171017509"><span>Click the <strong id="cce_10_0007__b7271634435">Deployments</strong> tab and choose <strong id="cce_10_0007__b1914134211314">More</strong> &gt; <strong id="cce_10_0007__b114612441131">Edit YAML</strong> in the <strong id="cce_10_0007__b1611811155410">Operation</strong> column of the target workload. In the dialog box that is displayed, modify the YAML file.</span></li><li id="cce_10_0007__cce_01_0007_li97921133367"><span>Click <strong id="cce_10_0007__cce_01_0007_b37471280123">Edit</strong> and then <strong id="cce_10_0007__cce_01_0007_b12759155891220">OK</strong> to save the changes.</span></li><li id="cce_10_0007__cce_01_0007_li87324268415"><span>(Optional) In the <strong id="cce_10_0007__cce_01_0007_b8257102371317">Edit YAML</strong> window, click <strong id="cce_10_0007__cce_01_0007_b13222327121315">Download</strong> to download the YAML file.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section13324541124815"><a name="cce_10_0007__cce_01_0007_section13324541124815"></a><a name="cce_01_0007_section13324541124815"></a><h4 class="sectiontitle">Rolling Back a Workload (Available Only for Deployments)</h4><p id="cce_10_0007__cce_01_0007_p252119142614">CCE records the release history of all Deployments. You can roll back a Deployment to a specified version.</p>
+<ol id="cce_10_0007__cce_01_0007_ol165211495268"><li id="cce_10_0007__cce_01_0007_li0901438403"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b795484911515">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li1254215491914"><span>Click the <strong id="cce_10_0007__b101810579516">Deployments</strong> tab, choose <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol15439491916"><b>More &gt; Roll Back</b></span> in the <strong id="cce_10_0007__b12851052966">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__cce_01_0007_li383212838"><span>Switch to the <strong id="cce_10_0007__b330495017189">Change History</strong> tab page, click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol1583332138"><b>Roll Back to This Version</b></span> of the target version, manually confirm the YAML file, and click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol255289318"><b>OK</b></span>.</span><p><p id="cce_10_0007__p119891725195220"></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0007__section132451237607"><a name="cce_10_0007__section132451237607"></a><a name="section132451237607"></a><h4 class="sectiontitle">Redeploying a Workload</h4><p id="cce_10_0007__p15601819195812">After you redeploy a workload, all pods in the workload will be restarted. This section uses Deployments as an example to illustrate how to redeploy a workload.</p>
+<ol id="cce_10_0007__ol0529114105916"><li id="cce_10_0007__li152911415912"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b354372611238">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li2052917419597"><span>Click the <strong id="cce_10_0007__b29910305233">Deployments</strong> tab and choose <strong id="cce_10_0007__b173340152314">More</strong> &gt; <strong id="cce_10_0007__b20709174214233">Redeploy</strong> in the <strong id="cce_10_0007__b152255482410">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__li052984175917"><span>In the dialog box that is displayed, click <span class="uicontrol" id="cce_10_0007__uicontrol55291047592"><b>Yes</b></span> to redeploy the workload.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section12087915401"><a name="cce_10_0007__cce_01_0007_section12087915401"></a><a name="cce_01_0007_section12087915401"></a><h4 class="sectiontitle">Disabling/Enabling Upgrade (Available Only for Deployments)</h4><p id="cce_10_0007__p209311112155710">Only Deployments support this operation.</p>
+<ul id="cce_10_0007__ul978411517574"><li id="cce_10_0007__li177841115105714">After the upgrade is disabled, the upgrade command can be delivered but will not be applied to the pods.<p id="cce_10_0007__p28775173578"><a name="cce_10_0007__li177841115105714"></a><a name="li177841115105714"></a>If you are performing a rolling upgrade, the rolling upgrade stops after the disabling upgrade command is delivered. In this case, the new and old pods co-exist.</p>
+</li><li id="cce_10_0007__li14784141565720">If a Deployment is being upgraded, it can be upgraded or rolled back. Its pods will inherit the latest updates of the Deployment. If they are inconsistent, the pods are upgraded automatically according to the latest information of the Deployment.</li></ul>
+<div class="notice" id="cce_10_0007__cce_01_0007_note10276839151110"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0007__cce_01_0007_p17277163941114">Deployments in the disable upgrade state cannot be rolled back.</p>
+</div></div>
+<ol id="cce_10_0007__cce_01_0007_ol1188315418332"><li id="cce_10_0007__cce_01_0007_li1388334119335"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b12661165123017">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li1588424111338"><span>Click the <strong id="cce_10_0007__b311310115308">Deployments</strong> tab and choose <strong id="cce_10_0007__b1292342073613">More</strong> &gt; <strong id="cce_10_0007__b4531823163610">Disable/Enable Upgrade</strong> in the <strong id="cce_10_0007__b1629163073616">Operation</strong> column of the workload.</span></li><li id="cce_10_0007__cce_01_0007_li1288404118334"><span>In the dialog box that is displayed, click <strong id="cce_10_0007__b954833253613">Yes</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section5931193015488"><a name="cce_10_0007__cce_01_0007_section5931193015488"></a><a name="cce_01_0007_section5931193015488"></a><h4 class="sectiontitle">Managing Labels</h4><p id="cce_10_0007__cce_01_0007_p13735621112611">Labels are key-value pairs and can be attached to workloads. Workload labels are often used for affinity and anti-affinity scheduling. You can add labels to multiple workloads or a specified workload.</p>
+<p id="cce_10_0007__cce_01_0007_p224810259211">You can manage the labels of Deployments, StatefulSets, and DaemonSets based on service requirements. This section uses Deployments as an example to describe how to manage labels.</p>
+<p id="cce_10_0007__cce_01_0007_a25e981ca77e9418595f87f7400290694">In the following figure, three labels (release, env, and role) are defined for workload APP 1, APP 2, and APP 3. The values of these labels vary with workload.</p>
+<ul id="cce_10_0007__cce_01_0007_ul7510750182517"><li id="cce_10_0007__cce_01_0007_li451085020252">Label of APP 1: [release:alpha;env:development;role:frontend]</li><li id="cce_10_0007__cce_01_0007_li168003418263">Label of APP 2: [release:beta;env:testing;role:frontend]</li><li id="cce_10_0007__cce_01_0007_li28171735122615">Label of APP 3: [release:alpha;env:production;role:backend]</li></ul>
+<p id="cce_10_0007__cce_01_0007_a3ba0363fee1e4f84a725cc485dc75fab">If you set <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol5203060593540"><b>key</b></span> to <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol1036857593540"><b>role</b></span> and <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol5756907293540"><b>value</b></span> to <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol4045549593540"><b>frontend</b></span> when using workload scheduling or another function, APP 1 and APP 2 will be selected.</p>
+<div class="fignone" id="cce_10_0007__cce_01_0007_ff50c8d071f4d462bb116f4e3d67c131c"><span class="figcap"><b>Figure 1 </b>Label example</span><br><span><img class="vsd" id="cce_10_0007__cce_01_0007_image1555172419716" src="en-us_image_0000001408895746.png"></span></div>
+<ol id="cce_10_0007__cce_01_0007_ol6251112511220"><li id="cce_10_0007__cce_01_0007_li53548551606"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b534795220364">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li22871259152611"><span>Click the <strong id="cce_10_0007__b8876856103619">Deployments</strong> tab and choose <strong id="cce_10_0007__b754745914364">More</strong> &gt; <strong id="cce_10_0007__b651528153710">Manage Label</strong> in the <strong id="cce_10_0007__b11780310143710">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__cce_01_0007_li47616189277"><span>Click <strong id="cce_10_0007__b192795402372">Add</strong>, enter a key and a value, and click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol636022132816"><b>OK</b></span>.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note163751811133416"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0007__cce_01_0007_p03751011133411">A key-value pair must contain 1 to 63 characters starting and ending with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed.</p>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section14423721191418"><a name="cce_10_0007__cce_01_0007_section14423721191418"></a><a name="cce_01_0007_section14423721191418"></a><h4 class="sectiontitle">Deleting a Workload/Job</h4><p id="cce_10_0007__cce_01_0007_p44461328132920">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered. Exercise caution when you perform this operation. This section uses a Deployment as an example to describe how to delete a workload.</p>
+<ol id="cce_10_0007__cce_01_0007_ol16301162312555"><li id="cce_10_0007__li1824612582414"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b3899151143811">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li23014231555"><span>In the same row as the workload you will delete, choose <strong id="cce_10_0007__cce_01_0007_b2032918125613">Operation</strong> &gt; <strong id="cce_10_0007__cce_01_0007_b0329141219611">More</strong> &gt; <strong id="cce_10_0007__cce_01_0007_b23291912765">Delete</strong>.</span><p><p id="cce_10_0007__cce_01_0007_p11245223162515">Read the system prompts carefully. A workload cannot be recovered after it is deleted. Exercise caution when performing this operation.</p>
+</p></li><li id="cce_10_0007__cce_01_0007_li1566102365617"><span>Click <strong id="cce_10_0007__cce_01_0007_b2297164413617">Yes</strong>.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note1933510551189"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0007__cce_01_0007_ul204031813191914"><li id="cce_10_0007__cce_01_0007_li7404151371913">If the node where the pod is located is unavailable or shut down and the workload cannot be deleted, you can forcibly delete the pod from the pod list on the workload details page.</li><li id="cce_10_0007__cce_01_0007_li10404113191914">Ensure that the storage volumes to be deleted are not used by other workloads. If these volumes are imported or have snapshots, you can only unbind them.</li></ul>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0007__cce_01_0007_section1947616516301"><a name="cce_10_0007__cce_01_0007_section1947616516301"></a><a name="cce_01_0007_section1947616516301"></a><h4 class="sectiontitle">Viewing Events</h4><p id="cce_10_0007__p16951182315188">This section uses Deployments as an example to illustrate how to view events of a workload. To view the event of a job or cron jon, click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol10969103513352"><b>View Event</b></span> in the <strong id="cce_10_0007__b515302823911">Operation</strong> column of the target workload.</p>
+<ol id="cce_10_0007__ol114609411810"><li id="cce_10_0007__li146044118811"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b126901436393">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li14460104111813"><span>On the <strong id="cce_10_0007__b9574104873918">Deployments</strong> tab page, click the target workload. In the <strong id="cce_10_0007__b9306314174612">Pods</strong> tab page, click the <span class="uicontrol" id="cce_10_0007__uicontrol41791215196"><b>View Events</b></span> to view the event name, event type, number of occurrences, Kubernetes event, first occurrence time, and last occurrence time.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note645916250256"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0007__cce_01_0007_p2459102542512">Event data will be retained for one hour and then automatically deleted.</p>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0009.html b/docs/cce/umn/cce_10_0009.html
new file mode 100644
index 00000000..9772fa48
--- /dev/null
+++ b/docs/cce/umn/cce_10_0009.html
@@ -0,0 +1,37 @@
+<a name="cce_10_0009"></a><a name="cce_10_0009"></a>
+
+<h1 class="topictitle1">Using a Third-Party Image</h1>
+<div id="body1523239642063"><div class="section" id="cce_10_0009__section96721544452"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0009__p106141253452">CCE allows you to create workloads using images pulled from third-party image repositories.</p>
+<p id="cce_10_0009__p1261413531252">Generally, a third-party image repository can be accessed only after authentication (using your account and password). CCE uses the secret-based authentication to pull images. Therefore, you need to create a secret for an image repository before pulling images from the repository.</p>
+</div>
+<div class="section" id="cce_10_0009__section14876601632"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0009__p545510319312">The node where the workload is running is accessible from public networks.</p>
+</div>
+<div class="section" id="cce_10_0009__section0402183334411"><h4 class="sectiontitle">Using the Console</h4><ol id="cce_10_0009__ol1748117409446"><li id="cce_10_0009__li16481144064414"><a name="cce_10_0009__li16481144064414"></a><a name="li16481144064414"></a><span>Create a secret for accessing a third-party image repository.</span><p><p id="cce_10_0009__p75695254516">Click the cluster name and access the cluster console. In the navigation pane, choose <strong id="cce_10_0009__b11184624185410">ConfigMaps and Secrets</strong>. On the <strong id="cce_10_0009__b20186164716540">Secrets</strong> tab page, click <strong id="cce_10_0009__b146515575540">Create Secret</strong> in the upper right corner. Set <strong id="cce_10_0009__b1869041155912">Secret Type</strong> to <strong id="cce_10_0009__b138415925918">kubernetes.io/dockerconfigjson</strong>. For details, see <a href="cce_10_0153.html">Creating a Secret</a>.</p>
+<p id="cce_10_0009__p819111064514">Enter the user name and password used to access the third-party image repository.</p>
+</p></li><li id="cce_10_0009__li13221161713456"><span>When creating a workload, you can enter a private image path in the format of <strong id="cce_10_0009__b2330142033520">domainname/namespace/imagename:tag</strong> in <span class="uicontrol" id="cce_10_0009__uicontrol252303262917"><b>Image Name</b></span> and select the key created in <a href="#cce_10_0009__li16481144064414">1</a>.</span><p><p id="cce_10_0009__p79771915112918"></p>
+</p></li><li id="cce_10_0009__li1682113518595"><span>Set other parameters and click <span class="uicontrol" id="cce_10_0009__uicontrol14664142510020"><b>Create Workload</b></span>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0009__section18217101117197"><h4 class="sectiontitle">Using kubectl</h4><ol id="cce_10_0009__ol84677271516"><li id="cce_10_0009__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0009__li54671627213"><span>Create a secret of the dockercfg type using kubectl.</span><p><pre class="screen" id="cce_10_0009__screen1466527017">kubectl create secret docker-registry <strong id="cce_10_0009__b184651127812">myregistrykey </strong>--docker-server=<strong id="cce_10_0009__b124669278112">DOCKER_REGISTRY_SERVER</strong> --docker-username=<strong id="cce_10_0009__b9466927114">DOCKER_USER</strong> --docker-password=<strong id="cce_10_0009__b1046662715116">DOCKER_PASSWORD</strong> --docker-email=<strong id="cce_10_0009__b54661627119">DOCKER_EMAIL</strong></pre>
+<p id="cce_10_0009__p164665271714">In the preceding commands, <strong id="cce_10_0009__b740124517418">myregistrykey</strong> indicates the secret name, and other parameters are described as follows:</p>
+<ul id="cce_10_0009__ul84670278112"><li id="cce_10_0009__li4467142711112"><strong id="cce_10_0009__b640184594119">DOCKER_REGISTRY_SERVER</strong>: address of a third-party image repository, for example, <strong id="cce_10_0009__b240104584114">www.3rdregistry.com</strong> or <strong id="cce_10_0009__b1440215458415">10.10.10.10:443</strong></li><li id="cce_10_0009__li13467127716"><strong id="cce_10_0009__b164021745114117">DOCKER_USER</strong>: account used for logging in to a third-party image repository</li><li id="cce_10_0009__li746782712110"><strong id="cce_10_0009__b1539245574117">DOCKER</strong><strong id="cce_10_0009__b4392185511418">_PASSWORD</strong>: password used for logging in to a third-party image repository</li><li id="cce_10_0009__li1546712278117"><strong id="cce_10_0009__b10402845154110">DOCKER_EMAIL</strong>: email of a third-party image repository</li></ul>
+</p></li><li id="cce_10_0009__li161523518110"><span>Use a third-party image to create a workload.</span><p><div class="p" id="cce_10_0009__p13583471429">A dockecfg secret is used for authentication when you obtain a private image. The following is an example of using the myregistrykey for authentication.<pre class="screen" id="cce_10_0009__screen0583771125">apiVersion: v1
+kind: Pod
+metadata:
+  name: foo
+  namespace: default
+spec:
+  containers:
+    - name: foo
+      image: www.3rdregistry.com/janedoe/awesomeapp:v1
+  imagePullSecrets:
+    - name: myregistrykey              #Use the created secret.</pre>
+</div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0010.html b/docs/cce/umn/cce_10_0010.html
new file mode 100644
index 00000000..6a672493
--- /dev/null
+++ b/docs/cce/umn/cce_10_0010.html
@@ -0,0 +1,38 @@
+<a name="cce_10_0010"></a><a name="cce_10_0010"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body1522665832344"><p id="cce_10_0010__p13310145119810">You can learn about a cluster network from the following two aspects:</p>
+<ul id="cce_10_0010__ul65247121891"><li id="cce_10_0010__li14524161214917">What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are running on the nodes. Nodes and containers need to communicate with each other. For details about the cluster network types and their functions, see <a href="#cce_10_0010__section1131733719195">Cluster Network Structure</a>.</li><li id="cce_10_0010__li55241612391">How is pod access implemented in a cluster? Accessing a pod or container is a process of accessing services of a user. Kubernetes provides <a href="#cce_10_0010__section1860619221134">Service</a> and <a href="#cce_10_0010__section1248852094313">Ingress</a> to address pod access issues. This section summarizes common network access scenarios. You can select the proper scenario based on site requirements. For details about the network access scenarios, see <a href="#cce_10_0010__section1286493159">Access Scenarios</a>.</li></ul>
+<div class="section" id="cce_10_0010__section1131733719195"><a name="cce_10_0010__section1131733719195"></a><a name="section1131733719195"></a><h4 class="sectiontitle">Cluster Network Structure</h4><p id="cce_10_0010__p3299181794916">All nodes in the cluster are located in a VPC and use the VPC network. The container network is managed by dedicated network add-ons.</p>
+<p id="cce_10_0010__p452843519446"><span><img id="cce_10_0010__image94831936164418" src="en-us_image_0000001199181334.png"></span></p>
+<ul id="cce_10_0010__ul1916179122617"><li id="cce_10_0010__li13455145754315"><strong id="cce_10_0010__b19468105563811">Node Network</strong><p id="cce_10_0010__p17682193014812">A node network assigns IP addresses to hosts (nodes in the figure above) in a cluster. You need to select a VPC subnet as the node network of the CCE cluster. The number of available IP addresses in a subnet determines the maximum number of nodes (including master nodes and worker nodes) that can be created in a cluster. This quantity is also affected by the container network. For details, see the container network model.</p>
+</li><li id="cce_10_0010__li16131141644715"><strong id="cce_10_0010__b1975815172433">Container Network</strong><p id="cce_10_0010__p523322010499">A container network assigns IP addresses to containers in a cluster. CCE inherits the IP-Per-Pod-Per-Network network model of Kubernetes. That is, each pod has an independent IP address on a network plane and all containers in a pod share the same network namespace. All pods in a cluster exist in a directly connected flat network. They can access each other through their IP addresses without using NAT. Kubernetes only provides a network mechanism for pods, but does not directly configure pod networks. The configuration of pod networks is implemented by specific container network add-ons. The container network add-ons are responsible for configuring networks for pods and managing container IP addresses.</p>
+<p id="cce_10_0010__p3753153443514">Currently, CCE supports the following container network models:</p>
+<ul id="cce_10_0010__ul1751111534368"><li id="cce_10_0010__li133611549182410">Container tunnel network: The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet packets into UDP packets and transmits them in tunnels. Open vSwitch serves as the backend virtual switch.</li><li id="cce_10_0010__li285944033514">VPC network: The VPC network uses VPC routing to integrate with the underlying network. This network model is applicable to performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the route quota in a VPC network. Each node is assigned a CIDR block of a fixed size. This networking model is free from tunnel encapsulation overhead and outperforms the container tunnel network model. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in a cluster can be directly accessed from outside the cluster.</li><li id="cce_10_0010__li5395140132618">Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and Sub Network Interfaces (sub-ENIs) of VPC. Container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and elastic IPs (EIPs) are bound to deliver high performance.</li></ul>
+<p id="cce_10_0010__p397482011109">The performance, networking scale, and application scenarios of a container network vary according to the container network model. For details about the functions and features of different container network models, see <a href="cce_10_0281.html">Overview</a>.</p>
+</li><li id="cce_10_0010__li9139522183714"><strong id="cce_10_0010__b1885317214113">Service Network</strong><p id="cce_10_0010__p584703114499">Service is also a Kubernetes object. Each Service has a fixed IP address. When creating a cluster on CCE, you can specify the Service CIDR block. The Service CIDR block cannot overlap with the node or container CIDR block. The Service CIDR block can be used only within a cluster.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0010__section1860619221134"><a name="cce_10_0010__section1860619221134"></a><a name="section1860619221134"></a><h4 class="sectiontitle">Service</h4><p id="cce_10_0010__p314709111318">A Service is used for pod access. With a fixed IP address, a Service forwards access traffic to pods and performs load balancing for these pods.</p>
+<div class="fignone" id="cce_10_0010__en-us_topic_0249851121_fig163156154816"><span class="figcap"><b>Figure 1 </b>Accessing pods through a Service</span><br><span><img id="cce_10_0010__en-us_topic_0249851121_image1926812771312" src="en-us_image_0258889981.png"></span></div>
+<p id="cce_10_0010__p831948183818">You can configure the following types of Services:</p>
+<ul id="cce_10_0010__ul953218444116"><li id="cce_10_0010__li87791418174620">ClusterIP: used to make the Service only reachable from within a cluster.</li><li id="cce_10_0010__li17876227144612">NodePort: used for access from outside a cluster. A NodePort Service is accessed through the port on the node.</li><li id="cce_10_0010__li94953274615">LoadBalancer: used for access from outside a cluster. It is an extension of NodePort, to which a load balancer routes, and external systems only need to access the load balancer.</li></ul>
+<p id="cce_10_0010__p1677717174140">For details about the Service, see <a href="cce_10_0249.html">Service Overview</a>.</p>
+</div>
+<div class="section" id="cce_10_0010__section1248852094313"><a name="cce_10_0010__section1248852094313"></a><a name="section1248852094313"></a><h4 class="sectiontitle">Ingress</h4><p id="cce_10_0010__p96672218193">Services forward requests using layer-4 TCP and UDP protocols. Ingresses forward requests using layer-7 HTTP and HTTPS protocols. Domain names and paths can be used to achieve finer granularities.</p>
+<div class="fignone" id="cce_10_0010__fig816719454212"><span class="figcap"><b>Figure 2 </b>Ingress and Service</span><br><span><img id="cce_10_0010__en-us_topic_0249851122_image8371183511310" src="en-us_image_0258961458.png"></span></div>
+<p id="cce_10_0010__p174691141141410">For details about the ingress, see <a href="cce_10_0094.html">Ingress Overview</a>.</p>
+</div>
+<div class="section" id="cce_10_0010__section1286493159"><a name="cce_10_0010__section1286493159"></a><a name="section1286493159"></a><h4 class="sectiontitle">Access Scenarios</h4><p id="cce_10_0010__p1558001514155">Workload access scenarios can be categorized as follows:</p>
+<ul id="cce_10_0010__ul125010117542"><li id="cce_10_0010__li1466355519018">Intra-cluster access: A ClusterIP Service is used for workloads in the same cluster to access each other.</li><li id="cce_10_0010__li1014011111110">Access from outside a cluster: A Service (NodePort or LoadBalancer type) or an ingress is recommended for a workload outside a cluster to access workloads in the cluster.<ul id="cce_10_0010__ul101426119117"><li id="cce_10_0010__li1014213113116">Access through the internet requires an EIP to be bound the node or load balancer.</li><li id="cce_10_0010__li2501311125411">Access through an intranet uses only the intranet IP address of the node or load balancer. If workloads are located in different VPCs, a peering connection is required to enable communication between different VPCs.</li></ul>
+</li><li id="cce_10_0010__li1066365520014">External access initiated by a workload:<ul id="cce_10_0010__ul17529512239"><li id="cce_10_0010__li26601017165619">Accessing an intranet: The workload accesses the intranet address, but the implementation method varies depending on container network models. Ensure that the peer security group allows the access requests from the container CIDR block. </li><li id="cce_10_0010__li8257105318237">Accessing a public network: You need to assign an EIP to the node where the workload runs (when the VPC network or tunnel network model is used), bind an EIP to the pod IP address (when the Cloud Native Network 2.0 model is used), or configure SNAT rules through the NAT gateway. For details, see <a href="cce_10_0400.html">Accessing Public Networks from a Container</a>.</li></ul>
+</li></ul>
+<div class="fignone" id="cce_10_0010__fig13795829151515"><span class="figcap"><b>Figure 3 </b>Network access diagram</span><br><span><img id="cce_10_0010__image445972519529" src="en-us_image_0000001244261169.png"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0011.html b/docs/cce/umn/cce_10_0011.html
new file mode 100644
index 00000000..1a08ed51
--- /dev/null
+++ b/docs/cce/umn/cce_10_0011.html
@@ -0,0 +1,118 @@
+<a name="cce_10_0011"></a><a name="cce_10_0011"></a>
+
+<h1 class="topictitle1">Intra-Cluster Access (ClusterIP)</h1>
+<div id="body1522736584192"><div class="section" id="cce_10_0011__section13559184110492"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0011__p32401248184910">ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
+<p id="cce_10_0011__p653753053815">The cluster-internal domain name format is <em id="cce_10_0011__i8179113533712">&lt;Service name&gt;</em>.<em id="cce_10_0011__i14179133519374">&lt;Namespace of the workload&gt;</em><strong id="cce_10_0011__b164892813716">.svc.cluster.local:</strong><em id="cce_10_0011__i19337102815712">&lt;Port&gt;</em>, for example, <strong id="cce_10_0011__b8115811381">nginx.default.svc.cluster.local:80</strong>.</p>
+<p id="cce_10_0011__p1778412445517"><a href="#cce_10_0011__fig192245420557">Figure 1</a> shows the mapping relationships between access channels, container ports, and access ports.</p>
+<div class="fignone" id="cce_10_0011__fig192245420557"><a name="cce_10_0011__fig192245420557"></a><a name="fig192245420557"></a><span class="figcap"><b>Figure 1 </b>Intra-cluster access (ClusterIP)</span><br><span><img id="cce_10_0011__image1942163010278" src="en-us_image_0000001243981117.png"></span></div>
+</div>
+<div class="section" id="cce_10_0011__section51925078171335"><h4 class="sectiontitle">Creating a ClusterIP Service</h4><ol id="cce_10_0011__ol1321170617144"><li id="cce_10_0011__li41731123658"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0011__li836916478329"><span>Choose <strong id="cce_10_0011__b85507206148">Networking</strong> in the navigation pane and click <strong id="cce_10_0011__b1938115214148">Create Service</strong> in the upper right corner.</span></li><li id="cce_10_0011__li3476651017144"><span>Set intra-cluster access parameters.</span><p><ul id="cce_10_0011__ul4446314017144"><li id="cce_10_0011__li6462394317144"><strong id="cce_10_0011__b181470402505">Service Name</strong>: Service name, which can be the same as the workload name.</li><li id="cce_10_0011__li89543531070"><strong id="cce_10_0011__b2091115317145">Service Type</strong>: Select <strong id="cce_10_0011__b291265312145">ClusterIP</strong>.</li><li id="cce_10_0011__li4800017144"><strong id="cce_10_0011__b3997151161512">Namespace</strong>: Namespace to which the workload belongs.</li><li id="cce_10_0011__li43200017144"><strong id="cce_10_0011__b16251723161514">Selector</strong>: Add a label and click <strong id="cce_10_0011__b157041550131611">Add</strong>. A Service selects a pod based on the added label. You can also click <strong id="cce_10_0011__b796831114161">Reference Workload Label</strong> to reference the label of an existing workload. In the dialog box that is displayed, select a workload and click <strong id="cce_10_0011__b1117311264160">OK</strong>.</li><li id="cce_10_0011__li388800117144"><strong id="cce_10_0011__b150413392315954">Port Settings</strong><ul id="cce_10_0011__ul13757123384316"><li id="cce_10_0011__li475711338435"><strong id="cce_10_0011__b712192113108">Protocol</strong>: protocol used by the Service.</li><li id="cce_10_0011__li353122153610"><strong id="cce_10_0011__b2766425101013">Service Port</strong>: port used by the Service. The port number ranges from 1 to 65535.</li><li id="cce_10_0011__li177581033194316"><strong id="cce_10_0011__b2045852761014">Container Port</strong>: port on which the workload listens. For example, Nginx uses port 80 by default.</li></ul>
+</li></ul>
+</p></li><li id="cce_10_0011__li5563226917144"><span>Click <strong id="cce_10_0011__b15590122052614">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0011__section9813121512319"><h4 class="sectiontitle">Setting the Access Type Using kubectl</h4><p id="cce_10_0011__p1626583075113">You can run kubectl commands to set the access type (Service). This section uses a Nginx workload as an example to describe how to implement intra-cluster access using kubectl.</p>
+<ol id="cce_10_0011__ol19191171513118"><li id="cce_10_0011__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0011__li1020013819415"><span>Create and edit the <strong id="cce_10_0011__b1451217585494">nginx-deployment.yaml</strong> and <strong id="cce_10_0011__b0512195818499">nginx-clusterip-svc.yaml</strong> files.</span><p><p id="cce_10_0011__p1527690125210">The file names are user-defined. <strong id="cce_10_0011__b1073117514231">nginx-deployment.yaml</strong> and <strong id="cce_10_0011__b1373115162318">nginx-clusterip-svc.yaml</strong> are merely example file names.</p>
+<div class="p" id="cce_10_0011__p7581950184318"><strong id="cce_10_0011__b111191541172515">vi nginx-deployment.yaml</strong><pre class="screen" id="cce_10_0011__screen47713471440">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: nginx:latest
+        name: nginx
+      imagePullSecrets:
+      - name: default-secret</pre>
+</div>
+<div class="p" id="cce_10_0011__p7860118114418"><strong id="cce_10_0011__b14265165062511">vi nginx-clusterip-svc.yaml</strong><pre class="screen" id="cce_10_0011__screen36141743673">apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app: nginx
+  name: nginx-clusterip
+spec:
+  ports:
+  - name: service0
+    port: <i><span class="varname" id="cce_10_0011__varname42827165246">8080</span></i>                # Port for accessing a Service.
+    protocol: <i><span class="varname" id="cce_10_0011__varname1585752142411">TCP</span></i>             # Protocol used for accessing a Service. The value can be <strong id="cce_10_0011__b1514733811263">TCP</strong> or <strong id="cce_10_0011__b155641140172611">UDP</strong>.
+    targetPort: <i><span class="varname" id="cce_10_0011__varname5268182562411">80</span></i>            # Port used by a Service to access the target container. This port is closely related to the applications running in a container. In this example, the Nginx image uses port 80 by default.
+  selector:                   # Label selector. A Service selects a pod based on the label and forwards the requests for accessing the Service to the pod. In this example, select the pod with the <strong id="cce_10_0011__b2209621143016">app:nginx</strong> label.
+    app: nginx
+  type: ClusterIP             # Type of a Service. <strong id="cce_10_0011__b137564817318">ClusterIP</strong> indicates that a Service is only reachable from within the cluster.</pre>
+</div>
+</p></li><li id="cce_10_0011__li12194551184412"><span>Create a workload.</span><p><p id="cce_10_0011__p175719718459"><strong id="cce_10_0011__b692820516453">kubectl create -f nginx-deployment.yaml</strong></p>
+<p id="cce_10_0011__p6944430183115">If information similar to the following is displayed, the workload has been created.</p>
+<pre class="screen" id="cce_10_0011__screen1689415623114">deployment "nginx" created</pre>
+<p id="cce_10_0011__p10542111017457"><strong id="cce_10_0011__b8874010124511">kubectl get po</strong></p>
+<p id="cce_10_0011__p897594218311">If information similar to the following is displayed, the workload is running.</p>
+<pre class="screen" id="cce_10_0011__screen088610169318">NAME                     READY     STATUS             RESTARTS   AGE
+<strong id="cce_10_0011__b859512281317">nginx-2601814895-znhbr   1/1       Running            0          15s</strong></pre>
+</p></li><li id="cce_10_0011__li72314917413"><span>Create a Service.</span><p><p id="cce_10_0011__p652151618484"><strong id="cce_10_0011__b125716411456">kubectl create -f nginx-clusterip-svc.yaml</strong></p>
+<p id="cce_10_0011__p7647437193211">If information similar to the following is displayed, the Service is being created.</p>
+<pre class="screen" id="cce_10_0011__screen21756141325">service "nginx-clusterip" created</pre>
+<p id="cce_10_0011__p94411847104519"><strong id="cce_10_0011__b139414472452">kubectl get svc</strong></p>
+<p id="cce_10_0011__p6551651193219">If information similar to the following is displayed, the Service has been created, and a cluster-internal IP address has been assigned to the Service.</p>
+<pre class="screen" id="cce_10_0011__screen123716238321"># kubectl get svc
+NAME              TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)    AGE
+kubernetes        ClusterIP   10.247.0.1     &lt;none&gt;        443/TCP    4d6h
+nginx-clusterip   ClusterIP   10.247.74.52   &lt;none&gt;        8080/TCP   14m</pre>
+</p></li><li id="cce_10_0011__li1847854017180"><span>Access a Service.</span><p><p id="cce_10_0011__p7601154373418">A Service can be accessed from containers or nodes in a cluster.</p>
+<p id="cce_10_0011__p73315335616">Create a pod, access the pod, and run the <strong id="cce_10_0011__b91231031103314">curl</strong> command to access <em id="cce_10_0011__i34141151351">IP address:Port</em> or the domain name of the Service, as shown in the following figure.</p>
+<p id="cce_10_0011__p1258754194715">The domain name suffix can be omitted. In the same namespace, you can directly use <strong id="cce_10_0011__b12708123293515">nginx-clusterip:8080</strong> for access. In other namespaces, you can use <strong id="cce_10_0011__b1747923918014">nginx-clusterip.default:8080</strong> for access.</p>
+<pre class="screen" id="cce_10_0011__screen3418202633310"># kubectl run -i --tty --image nginx:alpine test --rm /bin/sh
+If you do not see a command prompt, try pressing <strong id="cce_10_0011__b7243103124910">Enter</strong>.
+/ # curl 10.247.74.52:8080
+&lt;!DOCTYPE html&gt;
+&lt;html&gt;
+&lt;head&gt;
+&lt;title&gt;Welcome to nginx!&lt;/title&gt;
+&lt;style&gt;
+    body {
+        width: 35em;
+        margin: 0 auto;
+        font-family: Tahoma, Verdana, Arial, sans-serif;
+    }
+&lt;/style&gt;
+&lt;/head&gt;
+&lt;body&gt;
+&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
+&lt;p&gt;If you see this page, the nginx web server is successfully installed and
+working. Further configuration is required.&lt;/p&gt;
+
+&lt;p&gt;For online documentation and support please refer to
+&lt;a href="http://nginx.org/"&gt;nginx.org&lt;/a&gt;.&lt;br/&gt;
+Commercial support is available at
+&lt;a href="http://nginx.com/"&gt;nginx.com&lt;/a&gt;.&lt;/p&gt;
+
+&lt;p&gt;&lt;em&gt;Thank you for using nginx.&lt;/em&gt;&lt;/p&gt;
+&lt;/body&gt;
+&lt;/html&gt;
+/ # curl nginx-clusterip.default.svc.cluster.local:8080
+...
+&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
+...
+/ # curl nginx-clusterip.default:8080
+...
+&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
+...
+/ # curl nginx-clusterip:8080
+...
+&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
+...</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0247.html">Services</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0012.html b/docs/cce/umn/cce_10_0012.html
new file mode 100644
index 00000000..222dec7e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0012.html
@@ -0,0 +1,236 @@
+<a name="cce_10_0012"></a><a name="cce_10_0012"></a>
+
+<h1 class="topictitle1">Creating a Node Pool</h1>
+<div id="body1564122277019"><div class="section" id="cce_10_0012__section14878105383915"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0012__p8060118">This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see <a href="cce_10_0081.html">Node Pool Overview</a>.</p>
+</div>
+<div class="section" id="cce_10_0012__section4988121734011"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0012__ul194117397405"><li id="cce_10_0012__li9346218204215">The autoscaler add-on needs to be installed for node auto scaling. For details about the add-on installation and parameter configuration, see <a href="cce_10_0154.html">autoscaler</a>.</li></ul>
+</div>
+<div class="section" id="cce_10_0012__section953835110714"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0012__ol20304182312323"><li id="cce_10_0012__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0012__li2075471341"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0012__uicontrol1687204583717"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0012__b1624616332153">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0012__li3387652384"><span>In the upper right corner of the page, click <strong id="cce_10_0012__b11543594158">Create Node Pool</strong>.</span><p><p id="cce_10_0012__p118166389258"><strong id="cce_10_0012__b861915213014">Basic Settings</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table11944089267" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic settings</caption><thead align="left"><tr id="cce_10_0012__row149446811263"><th align="left" class="cellrowborder" valign="top" width="24.55%" id="mcps1.3.3.2.3.2.2.2.3.1.1"><p id="cce_10_0012__p461429192615">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="75.44999999999999%" id="mcps1.3.3.2.3.2.2.2.3.1.2"><p id="cce_10_0012__p1662192915267">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0012__row1994415822611"><td class="cellrowborder" valign="top" width="24.55%" headers="mcps1.3.3.2.3.2.2.2.3.1.1 "><p id="cce_10_0012__p1194498132611">Node Pool Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.44999999999999%" headers="mcps1.3.3.2.3.2.2.2.3.1.2 "><p id="cce_10_0012__p17949173819260">Name of a node pool. By default, the name is in the format of <em id="cce_10_0012__i149877146013">Cluster name</em>-nodepool-<em id="cce_10_0012__i19923141302">Random number</em>. If you do not want to use the default name format, you can customize the name.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row17944198172620"><td class="cellrowborder" valign="top" width="24.55%" headers="mcps1.3.3.2.3.2.2.2.3.1.1 "><p id="cce_10_0012__p189442818264">Nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.44999999999999%" headers="mcps1.3.3.2.3.2.2.2.3.1.2 "><p id="cce_10_0012__p851534252620">Number of nodes to be created in this node pool.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row594420842611"><td class="cellrowborder" valign="top" width="24.55%" headers="mcps1.3.3.2.3.2.2.2.3.1.1 "><p id="cce_10_0012__p169444832611">Auto Scaling</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.44999999999999%" headers="mcps1.3.3.2.3.2.2.2.3.1.2 "><p id="cce_10_0012__p17955125762613">By default, auto scaling is disabled. </p>
+<p id="cce_10_0012__p5342422191811">Install the <a href="cce_10_0154.html">autoscaler add-on</a> to enable auto scaling.</p>
+<p id="cce_10_0012__p18904057162611">After you enable auto scaling by switching on <span><img id="cce_10_0012__image990425719266" src="en-us_image_0000001201381906.png"></span>, nodes in the node pool will be automatically created or deleted based on cluster loads.</p>
+<ul id="cce_10_0012__ul13904195742619"><li id="cce_10_0012__li99041857132619"><strong id="cce_10_0012__b18715718542">Maximum Nodes</strong> and <strong id="cce_10_0012__b107211618543">Minimum Nodes</strong>: You can set the maximum and minimum number of nodes to ensure that the number of nodes to be scaled is within a proper range.</li><li id="cce_10_0012__li29041257192613"><strong id="cce_10_0012__b7125172619">Priority</strong>: Set this parameter based on service requirements. A larger value indicates a higher priority. For example, if this parameter is set to <strong id="cce_10_0012__b175514266">1</strong> and <strong id="cce_10_0012__b47651182618">4</strong> respectively for node pools A and B, B has a higher priority than A. If the priorities of multiple node pools are set to the same value, for example, <strong id="cce_10_0012__b897815614271">2</strong>, the node pools are not prioritized and the system performs scaling based on the minimum resource waste principle.<div class="note" id="cce_10_0012__note14904175718263"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0012__p13904857192611">CCE selects a node pool for auto scaling based on the following policies:</p>
+<ol type="a" id="cce_10_0012__ol1290445752616"><li id="cce_10_0012__li19904105762615">CCE uses algorithms to determine whether a node pool meets the conditions to allow scheduling of a pod in pending state, including whether the node resources are greater than requested by the pod, and whether the nodeSelect, nodeAffinity, and taints meet the conditions. In addition, the node pools that fail to be scaled (due to insufficient resources or other reasons) and are still in the 15-minute cool-down interval are filtered.</li><li id="cce_10_0012__li390415716264">If multiple node pools meet the scaling requirements, the system checks the priority of each node pool and selects the node pool with the highest priority for scaling. The value ranges from 0 to 100 and the default priority is 0. The value 100 indicates the highest priority, and the value 0 indicates the lowest priority.</li><li id="cce_10_0012__li11904155732610">If multiple node pools have the same priority or no priority is configured for them, the system selects the node pool that will consume the least resources based on the configured VM specification.</li><li id="cce_10_0012__li4904195732619">If the VM specifications of multiple node pools are the same but the node pools are deployed in different AZs, the system randomly selects a node pool to trigger scaling.</li></ol>
+</div></div>
+</li><li id="cce_10_0012__li16733114525110"><strong id="cce_10_0012__b9150203913619">Cooldown Period</strong>: Requied. The unit is minute. This field indicates the period during which the nodes added in the current node pool cannot be scaled in.<p id="cce_10_0012__p1121035123318">Scale-in cooling intervals can be configured in the node pool settings and the <a href="cce_10_0154.html">autoscaler add-on</a> settings.</p>
+<p id="cce_10_0012__p96061458103313"><strong id="cce_10_0012__b796516171014">Scale-in cooling interval configured in a node pool</strong></p>
+<p id="cce_10_0012__p11267539347">This interval indicates the period during which nodes added to the current node pool after a scale-out operation cannot be deleted. This interval takes effect at the node pool level.</p>
+<p id="cce_10_0012__p17442197133413"><strong id="cce_10_0012__b2139019131019">Scale-in cooling interval configured in the autoscaler add-on</strong></p>
+<p id="cce_10_0012__p521591313361">The interval after a scale-out indicates the period during which the entire cluster cannot be scaled in after the autoscaler add-on triggers scale-out (due to the unschedulable pods, metrics, and scaling policies). This interval takes effect at the cluster level.</p>
+<p id="cce_10_0012__p3247181715367">The interval after a node is deleted indicates the period during which the cluster cannot be scaled in after the autoscaler add-on triggers scale-in. This interval takes effect at the cluster level.</p>
+<p id="cce_10_0012__p259072620339">The interval after a failed scale-in indicates the period during which the cluster cannot be scaled in after the autoscaler add-on triggers scale-in. This interval takes effect at the cluster level.</p>
+</li></ul>
+<div class="note" id="cce_10_0012__note10904155716268"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0012__p490485712614">You are advised not to store important data on nodes in a node pool because after auto scaling, data cannot be restored as nodes may be deleted.</p>
+</div></div>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0012__p1466807105817"><strong id="cce_10_0012__b153113415417">Compute Settings</strong></p>
+<div class="p" id="cce_10_0012__p1666817710586">You can configure the specifications and OS of a cloud server, on which your containerized applications run.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0012__row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.2.3.2.4.1.2.3.1.1"><p id="cce_10_0012__p186688710581">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.2.3.2.4.1.2.3.1.2"><p id="cce_10_0012__p16681570588">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0012__row1666817718587"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p13216122213017">AZ</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p4383635121713">AZ where the node is located. Nodes in a cluster can be created in different AZs for higher reliability. The value cannot be changed after the node is created.</p>
+<p id="cce_10_0012__p13307144019185">You are advised to select <strong id="cce_10_0012__b99097411068">Random</strong> to deploy your node in a random AZ based on the selected node flavor.</p>
+<p id="cce_10_0012__p4786153575318">An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network. To enhance workload availability, create nodes in different AZs.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row1979195915497"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p18005944914">Node Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p17807592491">For a CCE cluster, <strong id="cce_10_0012__b19627123814106">ECS</strong> and <strong id="cce_10_0012__b5633338171014">BMS</strong> are supported.</p>
+<p id="cce_10_0012__p96493611512">CCE Turbo clusters support ECSs of the VM and physical types.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row1394816562"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p45571547134211">Container Engine</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p1015871915468">CCE clusters support Docker. Starting from CCE 1.23, containerd is supported.</p>
+<p id="cce_10_0012__p55571047184211">For a CCE Turbo cluster, both <strong id="cce_10_0012__b157645618315">Docker</strong> and <strong id="cce_10_0012__b17765176123114">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>. </p>
+</td>
+</tr>
+<tr id="cce_10_0012__row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p1669177185817">Specifications</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p156695715814">Select node specifications that best fit your business needs.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p176690785813">OS</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p872401816306">Select an OS type. Different types of nodes support different OSs. For details, see <a href="cce_10_0461.html#cce_10_0461__section1667513391595">Supported Node Specifications</a>.</p>
+<p id="cce_10_0012__p1058345314295"><strong id="cce_10_0012__b6598155317716">Public image</strong>: Select an OS for the node.</p>
+<p id="cce_10_0012__p89866115220"><strong id="cce_10_0012__b1458092319117">Private image</strong>: You can use private images.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p1917631063017">Login Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><ul id="cce_10_0012__ul15041824161910"><li id="cce_10_0012__cce_10_0363_li1857913131710"><strong id="cce_10_0012__cce_10_0363_b9138131116117">Key Pair</strong><p id="cce_10_0012__cce_10_0363_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0012__cce_10_0363_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0012__p136695718581"><strong id="cce_10_0012__b1636315301685">Storage Settings</strong></p>
+<div class="p" id="cce_10_0012__p866914735818">Configure storage resources on a node for the containers running on it. Set the disk size according to site requirements.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table56691276581" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0012__cce_10_0363_row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.2.3.2.6.1.2.3.1.1"><p id="cce_10_0012__cce_10_0363_p9669576584">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.2.3.2.6.1.2.3.1.2"><p id="cce_10_0012__cce_10_0363_p366912711589">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0012__cce_10_0363_row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p666916719588">System Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p590942616323">System disk used by the node OS. The value ranges from 40 GB to 1,024 GB. The default value is 50 GB.</p>
+<div class="p" id="cce_10_0012__cce_10_0363_cce_01_0028_p196385417139"><strong id="cce_10_0012__cce_10_0363_b136271720418">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0012__cce_10_0363_b11294425727">This function is available only in certain regions.</strong><ul id="cce_10_0012__cce_10_0363_cce_01_0028_ul6195114261211"><li id="cce_10_0012__cce_10_0363_cce_01_0028_li5195194211127"><strong id="cce_10_0012__cce_10_0363_b3414281726">Encryption</strong> is not selected by default.</li><li id="cce_10_0012__cce_10_0363_cce_01_0028_li5195184201217">After you select <strong id="cce_10_0012__cce_10_0363_b1022719341521">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0012__cce_10_0363_b1222793417213">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
+</div>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p0669147185817">Data Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p246755017336">Data disk used by the container runtime and kubelet on the node.  </p>
+<p id="cce_10_0012__cce_10_0363_p17207615113820"><strong id="cce_10_0012__cce_10_0363_b189421213171912">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0012__cce_10_0363_b3766102113197">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<p id="cce_10_0012__cce_10_0363_p3752312011">Click <strong id="cce_10_0012__cce_10_0363_b869213393116">Expand</strong> to set the following parameters:</p>
+<ul id="cce_10_0012__cce_10_0363_ul197721145155911"><li id="cce_10_0012__cce_10_0363_li12110343014"><strong id="cce_10_0012__cce_10_0363_b15422114714113">Allocate Disk Space</strong>: Select this option to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</li><li id="cce_10_0012__cce_10_0363_li1095641711169"><strong id="cce_10_0012__cce_10_0363_b3246163917219">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0012__cce_10_0363_b185315414212">This function is available only in certain regions.</strong><ul id="cce_10_0012__cce_10_0363_ul1924511512168"><li id="cce_10_0012__cce_10_0363_li4245181561611"><strong id="cce_10_0012__cce_10_0363_b166022451425">Encryption</strong> is not selected by default.</li><li id="cce_10_0012__cce_10_0363_li17245415121616">After you select <strong id="cce_10_0012__cce_10_0363_b1910517483216">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0012__cce_10_0363_b181053482219">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
+</li></ul>
+<p id="cce_10_0012__cce_10_0363_p1391618153118"><strong id="cce_10_0012__cce_10_0363_b112491441101918">Adding Multiple Data Disks</strong></p>
+<p id="cce_10_0012__cce_10_0363_p45741654112612">A maximum of four data disks can be added. By default, raw disks are created without any processing. You can also click <strong id="cce_10_0012__cce_10_0363_b1353214375715">Expand</strong> and select any of the following options:</p>
+<ul id="cce_10_0012__cce_10_0363_ul198131191414"><li id="cce_10_0012__cce_10_0363_li1681481912112"><strong id="cce_10_0012__cce_10_0363_b650951155715">Default</strong>: By default, a raw disk is created without any processing.</li><li id="cce_10_0012__cce_10_0363_li108141119311"><strong id="cce_10_0012__cce_10_0363_b1791414137595">Mount Disk</strong>: The data disk is attached to a specified directory.</li></ul>
+<p id="cce_10_0012__cce_10_0363_p198093910435"><strong id="cce_10_0012__cce_10_0363_b61081115114914">Local Disk Description</strong></p>
+<p id="cce_10_0012__cce_10_0363_p1962741518436">If the node flavor is disk-intensive or ultra-high I/O, one data disk can be a local disk.</p>
+<p id="cce_10_0012__cce_10_0363_p99347577438">Local disks may break down and do not ensure data reliability. It is recommended that you store service data in EVS disks, which are more reliable than local disks.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0012__p26726745816"><strong id="cce_10_0012__b1822161971217">Network Settings</strong></p>
+<div class="p" id="cce_10_0012__p267212714583">Configure networking resources to allow node and containerized application access.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table267212716587" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0012__row126729712588"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.2.3.2.8.1.2.3.1.1"><p id="cce_10_0012__p667211795816">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.2.3.2.8.1.2.3.1.2"><p id="cce_10_0012__p867210795810">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0012__row1067237145814"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.8.1.2.3.1.1 "><p id="cce_10_0012__p1367219735815">Node Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.8.1.2.3.1.2 "><p id="cce_10_0012__p46731571584">The node subnet selected during cluster creation is used by default. You can choose another subnet instead.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row14796283595"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.8.1.2.3.1.1 "><p id="cce_10_0012__p97971786590">Node IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.8.1.2.3.1.2 "><p id="cce_10_0012__p1479718819597">Random allocation is supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__row1014605691818"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.8.1.2.3.1.1 "><p id="cce_10_0012__p414635615185">Associate Security Group</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.8.1.2.3.1.2 "><p id="cce_10_0012__p1714618560184">Security group used by the nodes created in the node pool. A maximum of 5 security groups can be selected.</p>
+<p id="cce_10_0012__p227516318263">When a cluster is created, a node security group named <strong id="cce_10_0012__b878895718814">{</strong><strong id="cce_10_0012__b16788135714813"><em id="cce_10_0012__i1625212482089">Cluster name</em></strong><strong id="cce_10_0012__b578815576810">}-cce-node-{</strong><strong id="cce_10_0012__b27887573817"><em id="cce_10_0012__i1446185417812">Random ID</em></strong><strong id="cce_10_0012__b20788257585">}</strong> is created and used by default.</p>
+<p id="cce_10_0012__p124938720207">Traffic needs to pass through certain ports in the node security group to ensure node communications. Ensure that you have enabled these ports if you select another security group.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0012__p151517566378"><strong id="cce_10_0012__b14306151111219">Advanced Settings</strong></p>
+<div class="p" id="cce_10_0012__p1715175643712">Configure advanced node capabilities such as labels, taints, and startup command.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table101545619373" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0012__cce_10_0363_row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.3.2.3.2.10.1.2.3.1.1"><p id="cce_10_0012__cce_10_0363_p2152561377">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.3.2.3.2.10.1.2.3.1.2"><p id="cce_10_0012__cce_10_0363_p1515195616375">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0012__cce_10_0363_row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p1253915513402">Kubernetes Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p11258124419136">Click <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b134533618313">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0012__cce_10_0363_p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p25391859406">Resource Tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p14909254174019">You can add resource tags to classify resources.</p>
+<p id="cce_10_0012__cce_10_0363_p10327184710426">You can create <strong id="cce_10_0012__cce_10_0363_b37781633820">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0012__cce_10_0363_p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0012__cce_10_0363_i19542542112415">node id</em>" tag.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p55391457404">Taint</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><div class="p" id="cce_10_0012__cce_10_0363_p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0012__cce_10_0363_ul17274222121015"><li id="cce_10_0012__cce_10_0363_li227482216106"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b19270155312584">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0012__cce_10_0363_li7274112241020"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b149231210105912">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0012__cce_10_0363_li2274182211010"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b1535002716590">Effect</strong>: Available options are <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b6356142716595">NoSchedule</strong>, <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b9356327175910">PreferNoSchedule</strong>, and <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b935642719599">NoExecute</strong>.</li></ul>
+</div>
+<p id="cce_10_0012__cce_10_0363_p1817835834614">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
+<div class="note" id="cce_10_0012__cce_10_0363_note1344571543714"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0012__cce_10_0363_p544591520372">For a cluster of v1.19 or earlier, the workload may have been scheduled to a node before the taint is added. To avoid such a situation, select a cluster of v1.19 or later.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p054015516406">Max. Pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
+<p id="cce_10_0012__cce_10_0363_p272611351429">This limit prevents the node from being overloaded with pods.</p>
+<p id="cce_10_0012__cce_10_0363_p1462134144713">This number is also decided by other factors. For details, see <a href="cce_10_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row124141558173910"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p154141258193916">ECS Group</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p53431536184014">An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.</p>
+<p id="cce_10_0012__cce_10_0363_p135011254181618"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b181742121446">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</p>
+<p id="cce_10_0012__cce_10_0363_p19871173217401">Select an existing ECS group, or click <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b573830128">Add ECS Group</strong> to create one. After the ECS group is created, click the refresh button.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p534319566391">Pre-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0012__cce_10_0363_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p18677104643916">Post-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0012__cce_10_0363_p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
+</td>
+</tr>
+<tr id="cce_10_0012__cce_10_0363_row3366174093118"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p123672040183119">Agency</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p15869944123119">An agency is created by the account administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources.</p>
+<p id="cce_10_0012__cce_10_0363_p151464163220">If no agency is available, click <strong id="cce_10_0012__cce_10_0363_b13240143311254">Create Agency</strong> on the right to create one.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0012__li36051030165413"><span>Click <span class="uicontrol" id="cce_10_0012__uicontrol12958173510556"><b>Next: Confirm</b></span>.</span></li><li id="cce_10_0012__li957713521647"><span>Click <strong id="cce_10_0012__b15680539645">Submit</strong>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0035.html">Node Pools</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0014.html b/docs/cce/umn/cce_10_0014.html
new file mode 100644
index 00000000..779f5bb1
--- /dev/null
+++ b/docs/cce/umn/cce_10_0014.html
@@ -0,0 +1,788 @@
+<a name="cce_10_0014"></a><a name="cce_10_0014"></a>
+
+<h1 class="topictitle1">LoadBalancer</h1>
+<div id="body1522736584192"><div class="section" id="cce_10_0014__section19854101411508"><a name="cce_10_0014__section19854101411508"></a><a name="section19854101411508"></a><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0014__p1858152125017">A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.</p>
+<p id="cce_10_0014__p18345124185316">The LoadBalancer access address is in the format of &lt;IP address of public network load balancer&gt;:&lt;access port&gt;, for example, <strong id="cce_10_0014__b11546131414542">10.117.117.117:80</strong>.</p>
+<p id="cce_10_0014__p7801158125217">In this access mode, requests are transmitted through an ELB load balancer to a node and then forwarded to the destination pod through the Service.</p>
+<div class="fignone" id="cce_10_0014__fig1454926316508"><span class="figcap"><b>Figure 1 </b>LoadBalancer</span><br><span><img id="cce_10_0014__image846021786" src="en-us_image_0000001244141181.png"></span></div>
+<p id="cce_10_0014__p3662933103112">When <strong id="cce_10_0014__b7582529103312">CCE Turbo clusters and dedicated load balancers</strong> are used, passthrough networking is supported to reduce service latency and ensure zero performance loss.</p>
+<p id="cce_10_0014__p655815372328">External access requests are directly forwarded from a load balancer to pods. Internal access requests can be forwarded to a pod through a Service.</p>
+<div class="fignone" id="cce_10_0014__fig44531612193618"><span class="figcap"><b>Figure 2 </b>Passthrough networking</span><br><span><img id="cce_10_0014__image5485375324" src="en-us_image_0000001249073211.png"></span></div>
+</div>
+<div class="section" id="cce_10_0014__section11642143794611"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0014__ul1801539464"><li id="cce_10_0014__li1529952816473">LoadBalancer Services allow workloads to be accessed from public networks through <strong id="cce_10_0014__b1511118124819">ELB</strong>. This access mode has the following restrictions:<ul id="cce_10_0014__ul1241483374717"><li id="cce_10_0014__li162242024131019">It is recommended that automatically created load balancers not be used by other resources. Otherwise, these load balancers cannot be completely deleted, causing residual resources.</li><li id="cce_10_0014__li1080453124610">Do not change the listener name for the load balancer in clusters of v1.15 and earlier. Otherwise, the load balancer cannot be accessed.</li></ul>
+</li><li id="cce_10_0014__li128551156114310">After a Service is created, if the affinity setting is switched from the cluster level to the node level, the connection tracing table will not be cleared. You are advised not to modify the Service affinity setting after the Service is created. If you need to modify it, create a Service again.</li><li id="cce_10_0014__li1553715571314">If the service affinity is set to the node level (that is, <strong id="cce_10_0014__b16405133417613">externalTrafficPolicy</strong> is set to <strong id="cce_10_0014__b12712364614">Local</strong>), the cluster may fail to access the Service by using the ELB address. For details, see <a href="#cce_10_0014__section52631714117">Why a Cluster Fails to Access Services by Using the ELB Address</a>.</li><li id="cce_10_0014__li62831358182017">CCE Turbo clusters support only cluster-level service affinity.</li><li id="cce_10_0014__li35821536336">Dedicated ELB load balancers can be used only in clusters of v1.17 and later.</li><li id="cce_10_0014__li188391194225">Dedicated load balancers must be the network type (TCP/UDP) supporting private networks (with a private IP). If the Service needs to support HTTP, the specifications of dedicated load balancers must use HTTP/HTTPS (application load balancing) in addition to TCP/UDP (network load balancing).</li><li id="cce_10_0014__li2627549105716">If you create a LoadBalancer Service on the CCE console, a random node port is automatically generated. If you use kubectl to create a LoadBalancer Service, a random node port is generated unless you specify one.</li><li id="cce_10_0014__li93797513138">In a CCE cluster, if the cluster-level affinity is configured for a LoadBalancer Service, requests are distributed to the node ports of each node using SNAT when entering the cluster. The number of node ports cannot exceed the number of available node ports on the node. If the Service affinity is at the node level (local), there is no such constraint. In a CCE Turbo cluster, this constraint applies to shared ELB load balancers, but not dedicated ones. You are advised to use dedicated ELB load balancers in CCE Turbo clusters.</li><li id="cce_10_0014__li1031414582416">When the cluster service forwarding (proxy) mode is IPVS, the node IP cannot be configured as the external IP of the Service. Otherwise, the node is unavailable.</li><li id="cce_10_0014__li202253469362">In a cluster using the IPVS proxy mode, if the ingress and Service use the same ELB load balancer, the ingress cannot be accessed from the nodes and containers in the cluster because kube-proxy mounts the LoadBalancer Service address to the ipvs-0 bridge. This bridge intercepts the traffic of the load balancer connected to the ingress. You are advised to use different ELB load balancers for the ingress and Service.</li></ul>
+</div>
+<div class="section" id="cce_10_0014__section1325012312139"><h4 class="sectiontitle">Creating a LoadBalancer Service</h4><ol id="cce_10_0014__ol751935681319"><li id="cce_10_0014__li41731123658"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0014__li1651955651312"><span>Choose <strong id="cce_10_0014__b20811412124117">Networking</strong> in the navigation pane and click <strong id="cce_10_0014__b4811612104119">Create Service</strong> in the upper right corner.</span></li><li id="cce_10_0014__li185190567138"><span>Set parameters.</span><p><ul id="cce_10_0014__ul4446314017144"><li id="cce_10_0014__li6462394317144"><strong id="cce_10_0014__b186253818421">Service Name</strong>: Specify a Service name, which can be the same as the workload name.</li><li id="cce_10_0014__li89543531070"><strong id="cce_10_0014__b555284112425">Access Type</strong>: Select <strong id="cce_10_0014__b655313416422">LoadBalancer</strong>.</li><li id="cce_10_0014__li4800017144"><strong id="cce_10_0014__b462512137439">Namespace</strong>: Namespace to which the workload belongs.</li><li id="cce_10_0014__li1758110116149"><strong id="cce_10_0014__b325014537434">Service Affinity</strong>: For details, see <a href="cce_10_0142.html#cce_10_0142__section18134208069">externalTrafficPolicy (Service Affinity)</a>.<ul id="cce_10_0014__ul158101161412"><li id="cce_10_0014__li105815113141"><strong id="cce_10_0014__b16659151119444">Cluster level</strong>: The IP addresses and access ports of all nodes in a cluster can be used to access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_10_0014__li185817117145"><strong id="cce_10_0014__b187631494415">Node level</strong>: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
+</li><li id="cce_10_0014__li43200017144"><strong id="cce_10_0014__b964616495410">Selector</strong>: Add a label and click <strong id="cce_10_0014__b1664616492411">Add</strong>. A Service selects a pod based on the added label. You can also click <strong id="cce_10_0014__b13284181916449">Reference Workload Label</strong> to reference the label of an existing workload. In the dialog box that is displayed, select a workload and click <strong id="cce_10_0014__b18284181915445">OK</strong>.</li><li id="cce_10_0014__li14384123818176"><strong id="cce_10_0014__b2310182654418">Load Balancer</strong><p id="cce_10_0014__p4855423189">Select the load balancer to interconnect. Only load balancers in the same VPC as the cluster are supported. If no load balancer is available, click <strong id="cce_10_0014__b1221291200">Create Load Balancer</strong> to create one on the ELB console.</p>
+<p id="cce_10_0014__p17766202114215">You can click <strong id="cce_10_0014__b135601348463">Edit</strong> and configure load balancer parameters in the <strong id="cce_10_0014__b72171221472">Load Balancer</strong> dialog box.</p>
+<ul id="cce_10_0014__ul943963914228"><li id="cce_10_0014__li8170555132211"><strong id="cce_10_0014__b169881428124716">Distribution Policy</strong>: Three algorithms are available: weighted round robin, weighted least connections algorithm, or source IP hash.<div class="note" id="cce_10_0014__note14170205516225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0014__ul1717075520227"><li id="cce_10_0014__li15170955152215"><strong id="cce_10_0014__b8139183255011">Weighted round robin</strong>: Requests are forwarded to different servers based on their weights, which indicate server processing performance. Backend servers with higher weights receive proportionately more requests, whereas equal-weighted servers receive the same number of requests. This algorithm is often used for short connections, such as HTTP services.</li><li id="cce_10_0014__li12170185532213"><strong id="cce_10_0014__b9879547125012">Weighted least connections</strong>: In addition to the weight assigned to each server, the number of connections processed by each backend server is also considered. Requests are forwarded to the server with the lowest connections-to-weight ratio. Building on <strong id="cce_10_0014__b19132751145011">least connections</strong>, the <strong id="cce_10_0014__b71328516505">weighted least connections</strong> algorithm assigns a weight to each server based on their processing capability. This algorithm is often used for persistent connections, such as database connections.</li><li id="cce_10_0014__li0170105502211"><strong id="cce_10_0014__b8109955125015">Source IP hash</strong>: The source IP address of each request is calculated using the hash algorithm to obtain a unique hash key, and all backend servers are numbered. The generated key allocates the client to a particular server. This enables requests from different clients to be distributed in load balancing mode and ensures that requests from the same client are forwarded to the same server. This algorithm applies to TCP connections without cookies.</li></ul>
+</div></div>
+</li><li id="cce_10_0014__li0170115513227"><strong id="cce_10_0014__b43411498117">Type</strong>: This function is disabled by default. You can select <strong id="cce_10_0014__b0394332121213">Source IP address</strong>. Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</li><li id="cce_10_0014__li14170655112210"><strong id="cce_10_0014__b9887155318122">Health Check</strong>: This function is disabled by default. The health check is for the load balancer. When TCP is selected during the <a href="#cce_10_0014__li388800117144">port settings</a>, you can choose either TCP or HTTP. When UDP is selected during the <a href="#cce_10_0014__li388800117144">port settings</a>, only UDP is supported.. By default, the service port (Node Port and container port of the Service) is used for health check. You can also specify another port for health check. After the port is specified, a service port named <strong id="cce_10_0014__b159511449710">cce-healthz</strong> will be added for the Service.</li></ul>
+</li><li id="cce_10_0014__li388800117144"><a name="cce_10_0014__li388800117144"></a><a name="li388800117144"></a><strong id="cce_10_0014__b89301584315175">Port Settings</strong><ul id="cce_10_0014__ul3499201217144"><li id="cce_10_0014__li4649265917144"><strong id="cce_10_0014__b147114610479">Protocol</strong>: protocol used by the Service.</li><li id="cce_10_0014__li353122153610"><strong id="cce_10_0014__b69812211813">Service Port</strong>: port used by the Service. The port number ranges from 1 to 65535.</li><li id="cce_10_0014__li475042104417"><strong id="cce_10_0014__b7688424818">Container Port</strong>: port on which the workload listens. For example, Nginx uses port 80 by default.</li></ul>
+</li><li id="cce_10_0014__li104962251243"><strong id="cce_10_0014__b12052012556">Annotation</strong>: The LoadBalancer Service has some advanced CCE functions, which are implemented by annotations. For details, see <a href="cce_10_0385.html">Service Annotations</a>. When you use kubectl to create a container, annotations will be used. For details, see <a href="#cce_10_0014__section1984211714368">Using kubectl to Create a Service (Using an Existing Load Balancer)</a> and <a href="#cce_10_0014__section12168131904611">Using kubectl to Create a Service (Automatically Creating a Load Balancer)</a>.</li></ul>
+</p></li><li id="cce_10_0014__li552017569135"><span>Click <strong id="cce_10_0014__b911916813568">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0014__section1984211714368"><a name="cce_10_0014__section1984211714368"></a><a name="section1984211714368"></a><h4 class="sectiontitle">Using kubectl to Create a Service (Using an Existing Load Balancer)</h4><p id="cce_10_0014__p1626583075113">You can set the access type when creating a workload using kubectl. This section uses an Nginx workload as an example to describe how to add a LoadBalancer Service using kubectl.</p>
+<ol id="cce_10_0014__ol19191171513118"><li id="cce_10_0014__li713365518486"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0014__li1020013819415"><span>Create and edit the <strong id="cce_10_0014__b17995175442616">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b99952549261">nginx-elb-svc.yaml</strong> files.</span><p><p id="cce_10_0014__p9991172514276">The file names are user-defined. <strong id="cce_10_0014__b1245543612412">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b5316154117419">nginx-elb-svc.yaml</strong> are merely example file names.</p>
+<p id="cce_10_0014__p12826517192713"><strong id="cce_10_0014__b10826161752712">vi nginx-deployment.yaml</strong></p>
+<pre class="screen" id="cce_10_0014__screen108271017192718">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: nginx 
+        name: nginx
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0014__p5699954164214"></p>
+<p id="cce_10_0014__p8828617202712"><strong id="cce_10_0014__b1282718173276">vi nginx-elb-svc.yaml</strong></p>
+<div class="note" id="cce_10_0014__note11622519165956"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0014__p37493813165956">Before enabling sticky session, ensure that the following conditions are met:</p>
+<ul id="cce_10_0014__ul1138349517031"><li id="cce_10_0014__li5546555417031">The workload protocol is TCP.</li><li id="cce_10_0014__li732857617050">Anti-affinity has been configured between pods of the workload. That is, all pods of the workload are deployed on different nodes. For details, see <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li></ul>
+</div></div>
+<pre class="screen" id="cce_10_0014__screen1035116474393">apiVersion: v1 
+kind: Service 
+metadata: 
+  annotations:
+    kubernetes.io/elb.id: 5083f225-9bf8-48fa-9c8b-67bd9693c4c0   # ELB ID. Replace it with the actual value.
+    kubernetes.io/elb.class: union                   # Load balancer type
+  name: nginx 
+spec: 
+  ports: 
+  - name: service0 
+    port: 80     # Port for accessing the Service, which is also the listener port on the load balancer.
+    protocol: TCP 
+    targetPort: 80  # Port used by a Service to access the target container. This port is closely related to the applications running in a container. 
+  selector: 
+    app: nginx 
+  type: LoadBalancer</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0014__table5352104717398" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0014__row83526476396"><th align="left" class="cellrowborder" valign="top" width="24.85%" id="mcps1.3.4.3.2.2.8.2.5.1.1"><p id="cce_10_0014__p10352194713392">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.4.3.2.2.8.2.5.1.2"><p id="cce_10_0014__p157981414511">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.639999999999999%" id="mcps1.3.4.3.2.2.8.2.5.1.3"><p id="cce_10_0014__p173521147153917">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.19%" id="mcps1.3.4.3.2.2.8.2.5.1.4"><p id="cce_10_0014__p1135224717395">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0014__row435284723911"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p1535274714391">kubernetes.io/elb.class</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p584312291278">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p163521247103920">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p193521947123917">Select a proper load balancer type as required.</p>
+<p id="cce_10_0014__p163524473399">The value can be:</p>
+<ul id="cce_10_0014__ul16352114763920"><li id="cce_10_0014__li735384716395"><strong id="cce_10_0014__b3322231123015">union</strong>: shared load balancer</li><li id="cce_10_0014__li1535310477392"><strong id="cce_10_0014__b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row8353174763911"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p6353144783916">kubernetes.io/elb.session-affinity-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p157989412514">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p19353247143915">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p2353847153912">Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</p>
+<ul id="cce_10_0014__ul1135354733913"><li id="cce_10_0014__li1835312476397">Disabling sticky session: Do not set this parameter.</li><li id="cce_10_0014__li173535473393">Enabling sticky session: Set this parameter to <strong id="cce_10_0014__b117783514210">SOURCE_IP</strong>, indicating that the sticky session is based on the source IP address.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row6353194714393"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p235454793914">kubernetes.io/elb.session-affinity-option</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p177981347513">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p435474783911"><a href="#cce_10_0014__table43592047133910">Table 2</a> Object</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p11354154711399">This parameter specifies the sticky session timeout.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row43547471392"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p1735404763915">kubernetes.io/elb.id</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p2798174555">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p10354947203912">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p1435464793910">This parameter indicates the ID of a load balancer. The value can contain 1 to 100 characters.</p>
+<p id="cce_10_0014__p123611341161318">Mandatory when an existing load balancer is to be associated.</p>
+<p id="cce_10_0014__p735464753918"><strong id="cce_10_0014__b92881533114">Obtaining the load balancer ID:</strong></p>
+<p id="cce_10_0014__p1335417476396">On the management console, click <strong id="cce_10_0014__b51491214123112">Service List</strong>, and choose <strong id="cce_10_0014__b21501014163113">Networking</strong> &gt; <strong id="cce_10_0014__b14150171473116">Elastic Load Balance</strong>. Click the name of the target load balancer. On the <strong id="cce_10_0014__b141504140317">Summary</strong> tab page, find and copy the ID.</p>
+<div class="note" id="cce_10_0014__note15831105313919"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0014__p101811542174310">The system preferentially interconnects with the load balancer based on the <strong id="cce_10_0014__b3174450125310">kubernetes.io/elb.id</strong> field. If this field is not specified, the <strong id="cce_10_0014__b15511664545">spec.loadBalancerIP</strong> field is used (optional and available only in 1.23 and earlier versions).</p>
+<p id="cce_10_0014__p16831653153912">Do not use the <strong id="cce_10_0014__b14393182545418">spec.loadBalancerIP</strong> field to connect to the load balancer. This field will be discarded by Kubernetes. For details, see <a href="https://github.com/kubernetes/kubernetes/blob/8f2371bcceff7962ddb4901c36536c6ff659755b/CHANGELOG/CHANGELOG-1.24.md#changes-by-kind-13" target="_blank" rel="noopener noreferrer">Deprecation</a>.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0014__row13354124714392"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p1435534753920">kubernetes.io/elb.subnet-id</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p11798134154">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p16355204793913">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p13355154723918">This parameter indicates the ID of the subnet where the cluster is located. The value can contain 1 to 100 characters.</p>
+<ul id="cce_10_0014__ul93551647173917"><li id="cce_10_0014__li173557475394">Mandatory when a cluster of v1.11.7-r0 or earlier is to be automatically created.</li><li id="cce_10_0014__li13355164733914">Optional for clusters later than v1.11.7-r0.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row136381999318"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p88687101934">kubernetes.io/elb.lb-algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p4869141016313">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p19869210635">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p1486931014317">This parameter indicates the load balancing algorithm of the backend server group. The default value is <strong id="cce_10_0014__b354512211581">ROUND_ROBIN</strong>.</p>
+<p id="cce_10_0014__p486911016317">Options:</p>
+<ul id="cce_10_0014__ul2869210432"><li id="cce_10_0014__li14869110538"><strong id="cce_10_0014__b135818573559">ROUND_ROBIN</strong>: weighted round robin algorithm</li><li id="cce_10_0014__li48694101538"><strong id="cce_10_0014__b584112545610">LEAST_CONNECTIONS</strong>: weighted least connections algorithm</li><li id="cce_10_0014__li586941010316"><strong id="cce_10_0014__b55107885610">SOURCE_IP</strong>: source IP hash algorithm</li></ul>
+<p id="cce_10_0014__p78692010435">When the value is <strong id="cce_10_0014__b7386731105614">SOURCE_IP</strong>, the weights of backend servers in the server group are invalid.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row53581147103917"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p1986921014314">kubernetes.io/elb.health-check-flag</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p886910101038">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p786920109319">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p168696109319">Whether to enable the ELB health check.</p>
+<ul id="cce_10_0014__ul10870710633"><li id="cce_10_0014__li1387013101036">Enabling health check: Leave blank this parameter or set it to <strong id="cce_10_0014__b4744125603">on</strong>.</li><li id="cce_10_0014__li14870161011311">Disabling health check: Set this parameter to <strong id="cce_10_0014__b181956271601">off</strong>.</li></ul>
+<p id="cce_10_0014__p1576051514113">If this parameter is enabled, the <a href="#cce_10_0014__table236017471397">kubernetes.io/elb.health-check-option</a> field must also be specified at the same time.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row3358194712396"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0014__p1287011015315">kubernetes.io/elb.health-check-option</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0014__p48707103318">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0014__p187081019312"><a href="#cce_10_0014__table236017471397">Table 3</a> Object</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0014__p7870111013310">ELB health check configuration items.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0014__table43592047133910"></a><a name="table43592047133910"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0014__table43592047133910" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data structure of the elb.session-affinity-option field</caption><thead align="left"><tr id="cce_10_0014__row23591547163913"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.4.3.2.2.9.2.5.1.1"><p id="cce_10_0014__p6359124763911">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.139999999999999%" id="mcps1.3.4.3.2.2.9.2.5.1.2"><p id="cce_10_0014__p8442205011314">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.69%" id="mcps1.3.4.3.2.2.9.2.5.1.3"><p id="cce_10_0014__p23601947173914">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.220000000000006%" id="mcps1.3.4.3.2.2.9.2.5.1.4"><p id="cce_10_0014__p19360647113911">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0014__row1236084719399"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.4.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p1636019470393">persistence_timeout</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.139999999999999%" headers="mcps1.3.4.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p164427503134">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.69%" headers="mcps1.3.4.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p1236084793919">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.220000000000006%" headers="mcps1.3.4.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p12360147143917">Sticky session timeout, in minutes. This parameter is valid only when <strong id="cce_10_0014__b1651462119461">elb.session-affinity-mode</strong> is set to <strong id="cce_10_0014__b973718232469">SOURCE_IP</strong>.</p>
+<p id="cce_10_0014__p0360204713398">Value range: 1 to 60. Default value: <strong id="cce_10_0014__b83331032104616">60</strong></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0014__table236017471397"></a><a name="table236017471397"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0014__table236017471397" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Data structure description of the <strong id="cce_10_0014__b209486325462">elb.health-check-option</strong> field</caption><thead align="left"><tr id="cce_10_0014__row336018475396"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.4.3.2.2.10.2.5.1.1"><p id="cce_10_0014__p15360184723911">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.4.3.2.2.10.2.5.1.2"><p id="cce_10_0014__p139932420145">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.5%" id="mcps1.3.4.3.2.2.10.2.5.1.3"><p id="cce_10_0014__p1036074715392">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.230000000000004%" id="mcps1.3.4.3.2.2.10.2.5.1.4"><p id="cce_10_0014__p036084733912">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0014__row1136012478397"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.4.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p1736074717393">delay</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p2099132416147">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.4.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p1360144773911">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.4.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p7361154710397">Initial waiting time (in seconds) for starting the health check.</p>
+<p id="cce_10_0014__p17361184715394">Value range: 1 to 50. Default value: <strong id="cce_10_0014__b0772113914818">5</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0014__row163618473395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.4.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p636114763916">timeout</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p69919246147">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.4.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p103611347123914">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.4.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p113611447183912">Health check timeout, in seconds.</p>
+<p id="cce_10_0014__p143612047133913">Value range: 1 to 50. Default value: <strong id="cce_10_0014__b166661875494">10</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0014__row18361154723913"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.4.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p136144716396">max_retries</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p166343581149">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.4.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p17361114717395">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.4.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p14361114712397">Maximum number of health check retries.</p>
+<p id="cce_10_0014__p6361114733910">Value range: 1 to 10. Default value: <strong id="cce_10_0014__b940918204498">3</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0014__row9361104720394"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.4.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p1636111476395">protocol</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p763495881417">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.4.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p14361144716395">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.4.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p15361164723916">Health check protocol.</p>
+<p id="cce_10_0014__p2361204719390">Default value: protocol of the associated Service</p>
+<p id="cce_10_0014__p143617474391">Value options: TCP, UDP, or HTTP</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row036113475395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.4.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p93612047133915">path</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.4.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p159952471418">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.4.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p13361747173915">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.4.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p6361647183913">Health check URL. This parameter needs to be configured when the protocol is HTTP.</p>
+<p id="cce_10_0014__p636184753911">Default value: <strong id="cce_10_0014__b2032803325105021">/</strong></p>
+<p id="cce_10_0014__p8361847153910">The value can contain 1 to 10,000 characters.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0014__li72314917413"><span>Create a workload.</span><p><p id="cce_10_0014__p3315182011255"><strong id="cce_10_0014__b56467233250">kubectl create -f nginx-deployment.yaml</strong></p>
+<p id="cce_10_0014__p19710857162712">If information similar to the following is displayed, the workload has been created.</p>
+<pre class="screen" id="cce_10_0014__screen16991756142716">deployment/nginx created</pre>
+<p id="cce_10_0014__p11761214251"><strong id="cce_10_0014__b96501723152519">kubectl get pod</strong></p>
+<p id="cce_10_0014__p148435115281">If information similar to the following is displayed, the workload is running.</p>
+<pre class="screen" id="cce_10_0014__screen1257212072815">NAME                     READY     STATUS             RESTARTS   AGE
+<strong id="cce_10_0014__b169455915281">nginx-2601814895-c1xhw   1/1       Running            0          6s</strong></pre>
+</p></li><li id="cce_10_0014__li533223116253"><span>Create a Service.</span><p><p id="cce_10_0014__p56441354202519"><strong id="cce_10_0014__b819441152615">kubectl create -f nginx-elb-svc.yaml</strong></p>
+<p id="cce_10_0014__p115908595306">If information similar to the following is displayed, the Service has been created.</p>
+<pre class="screen" id="cce_10_0014__screen63017536304">service/nginx created</pre>
+<p id="cce_10_0014__p123535511259"><strong id="cce_10_0014__b141981712260">kubectl get svc</strong></p>
+<p id="cce_10_0014__p3841216318">If information similar to the following is displayed, the access type has been set successfully, and the workload is accessible.</p>
+<pre class="screen" id="cce_10_0014__screen391817433116">NAME         TYPE           CLUSTER-IP       EXTERNAL-IP   PORT(S)        AGE
+kubernetes   ClusterIP      10.247.0.1       &lt;none&gt;        443/TCP        3d
+<strong id="cce_10_0014__b1214411223310">nginx        LoadBalancer   10.247.130.196   10.78.42.242   80:31540/TCP   51s</strong></pre>
+</p></li><li id="cce_10_0014__li167017242"><span>Enter the URL in the address box of the browser, for example, <strong id="cce_10_0014__b842352706164951">10.78.42.242:80</strong>. <strong id="cce_10_0014__b84235270616505">10.78.42.242</strong> indicates the IP address of the load balancer, and <strong id="cce_10_0014__b842352706165024">80</strong> indicates the access port displayed on the CCE console.</span><p><p id="cce_10_0014__p167058343415">The Nginx is accessible.</p>
+<div class="fignone" id="cce_10_0014__fig1498213713356"><span class="figcap"><b>Figure 3 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_10_0014__image4983479359" src="en-us_image_0000001243981181.png"></span></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0014__section12168131904611"><a name="cce_10_0014__section12168131904611"></a><a name="section12168131904611"></a><h4 class="sectiontitle">Using kubectl to Create a Service (Automatically Creating a Load Balancer)</h4><p id="cce_10_0014__p1036918271467">You can add a Service when creating a workload using kubectl. This section uses an Nginx workload as an example to describe how to add a LoadBalancer Service using kubectl.</p>
+<ol id="cce_10_0014__ol1236962794610"><li id="cce_10_0014__li103401710124914"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0014__li337012724615"><span>Create and edit the <strong id="cce_10_0014__b1160504865">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b748957890">nginx-elb-svc.yaml</strong> files.</span><p><p id="cce_10_0014__p1137014271463">The file names are user-defined. <strong id="cce_10_0014__b1621345180">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b83395749">nginx-elb-svc.yaml</strong> are merely example file names.</p>
+<p id="cce_10_0014__p153702275465"><strong id="cce_10_0014__b13370127184617">vi nginx-deployment.yaml</strong></p>
+<pre class="screen" id="cce_10_0014__screen17370112710466">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: nginx 
+        name: nginx
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0014__p1937115274469"></p>
+<p id="cce_10_0014__p4371142734620"><strong id="cce_10_0014__b1371142717469">vi nginx-elb-svc.yaml</strong></p>
+<div class="note" id="cce_10_0014__note1237142704611"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0014__p1237242714464">Before enabling sticky session, ensure that the following conditions are met:</p>
+<ul id="cce_10_0014__ul1637272764617"><li id="cce_10_0014__li337202718462">The workload protocol is TCP.</li><li id="cce_10_0014__li143721027164615">Anti-affinity has been configured between pods of the workload. That is, all pods of the workload are deployed on different nodes. For details, see <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li></ul>
+</div></div>
+<div class="p" id="cce_10_0014__p188357109471">Example of a Service using a shared, public network load balancer:<pre class="screen" id="cce_10_0014__screen43927275469">apiVersion: v1 
+kind: Service 
+metadata: 
+  annotations:   
+    kubernetes.io/elb.class: union
+    kubernetes.io/elb.autocreate: 
+        '{
+            "type": "public",
+            "bandwidth_name": "cce-bandwidth-1551163379627",
+            "bandwidth_chargemode": "bandwidth",
+            "bandwidth_size": 5,
+            "bandwidth_sharetype": "PER",
+            "eip_type": "5_bgp"
+        }'
+  labels: 
+    app: nginx 
+  name: nginx 
+spec: 
+  ports: 
+  - name: service0 
+    port: 80
+    protocol: TCP 
+    targetPort: 80
+  selector: 
+    app: nginx 
+  type: LoadBalancer</pre>
+</div>
+<div class="p" id="cce_10_0014__p750946894">Example Service using a public network dedicated load balancer (for clusters of v1.17 and later only):<pre class="screen" id="cce_10_0014__screen182962282208">apiVersion: v1
+kind: Service
+metadata:
+  name: nginx
+  labels:
+    app: nginx
+  namespace: default
+  annotations:
+    kubernetes.io/elb.class: performance
+    kubernetes.io/elb.autocreate: 
+        '{
+            "type": "public",
+            "bandwidth_name": "cce-bandwidth-1626694478577",
+            "bandwidth_chargemode": "bandwidth",
+            "bandwidth_size": 5,
+            "bandwidth_sharetype": "PER",
+            "eip_type": "5_bgp",
+            "available_zone": [
+                ""
+            ],
+            "l4_flavor_name": "L4_flavor.elb.s1.small"
+        }'
+spec:
+  selector:
+    app: nginx
+  ports:
+  - name: cce-service-0
+    targetPort: 80
+    nodePort: 0
+    port: 80
+    protocol: TCP
+  type: LoadBalancer</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0014__table133089105019" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0014__row11330199501"><th align="left" class="cellrowborder" valign="top" width="24.85%" id="mcps1.3.5.3.2.2.9.2.5.1.1"><p id="cce_10_0014__p173306915017">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.5.3.2.2.9.2.5.1.2"><p id="cce_10_0014__p173308910507">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.639999999999999%" id="mcps1.3.5.3.2.2.9.2.5.1.3"><p id="cce_10_0014__p233039175014">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.19%" id="mcps1.3.5.3.2.2.9.2.5.1.4"><p id="cce_10_0014__p133301795508">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0014__row433017915509"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p17331159135017">kubernetes.io/elb.class</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p964263012477">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p5331189115017">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p17331169135014">Select a proper load balancer type as required.</p>
+<p id="cce_10_0014__p143311298508">The value can be:</p>
+<ul id="cce_10_0014__ul3415201212612"><li id="cce_10_0014__cce_10_0014_li735384716395"><strong id="cce_10_0014__cce_10_0014_b3322231123015">union</strong>: shared load balancer</li><li id="cce_10_0014__cce_10_0014_li1535310477392"><strong id="cce_10_0014__cce_10_0014_b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row790233013543"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p143324917501">kubernetes.io/elb.subnet-id</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p233212945015">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p133327917509">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p7332119105010">This parameter indicates the ID of the subnet where the cluster is located. The value can contain 1 to 100 characters.</p>
+<ul id="cce_10_0014__ul19332189145019"><li id="cce_10_0014__li14332109185017">Mandatory when a cluster of v1.11.7-r0 or earlier is to be automatically created.</li><li id="cce_10_0014__li203324919509">Optional for clusters later than v1.11.7-r0.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row1133114925015"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p13312912502">kubernetes.io/elb.session-affinity-option</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p2331179195013">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p8331199185014"><a href="#cce_10_0014__table43592047133910">Table 2</a> Object</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p1233116911506">Sticky session timeout.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row8332096503"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p839452715462">kubernetes.io/elb.autocreate</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p143944279464">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p1539432714615"><a href="#cce_10_0014__table939522754617">elb.autocreate</a> object</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p3394827134612">Whether to automatically create a load balancer associated with the Service.</p>
+<p id="cce_10_0014__p113941527154613"><strong id="cce_10_0014__b188439451227">Example:</strong></p>
+<ul id="cce_10_0014__ul17394182711462"><li id="cce_10_0014__li1939492713460">Automatically created public network load balancer:<p id="cce_10_0014__p339413273467"><a name="cce_10_0014__li1939492713460"></a><a name="li1939492713460"></a>{"type":"public","bandwidth_name":"cce-bandwidth-1551163379627","bandwidth_chargemode":"bandwidth","bandwidth_size":5,"bandwidth_sharetype":"PER","eip_type":"5_bgp","name":"james"}</p>
+</li><li id="cce_10_0014__li1939417272469">Automatically created private network load balancer:<p id="cce_10_0014__p14395132717468"><a name="cce_10_0014__li1939417272469"></a><a name="li1939417272469"></a>{"type":"inner","name":"A-location-d-test"}</p>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row1333313918508"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p1133339115016">kubernetes.io/elb.lb-algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p16333139115018">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p933315995019">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p0333699508">This parameter indicates the load balancing algorithm of the backend server group. The default value is <strong id="cce_10_0014__b978088805">ROUND_ROBIN</strong>.</p>
+<p id="cce_10_0014__p6333198503">Options:</p>
+<ul id="cce_10_0014__ul13337919508"><li id="cce_10_0014__li3333893501"><strong id="cce_10_0014__b917257088">ROUND_ROBIN</strong>: weighted round robin algorithm</li><li id="cce_10_0014__li93331191509"><strong id="cce_10_0014__b463671576">LEAST_CONNECTIONS</strong>: weighted least connections algorithm</li><li id="cce_10_0014__li1333379105016"><strong id="cce_10_0014__b1835281429">SOURCE_IP</strong>: source IP hash algorithm</li></ul>
+<p id="cce_10_0014__p833315910507">When the value is <strong id="cce_10_0014__b1391706822">SOURCE_IP</strong>, the weights of backend servers in the server group are invalid.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row1533329185018"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p1533313905015">kubernetes.io/elb.health-check-flag</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p43331394508">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p16333993504">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p1833315910509">Whether to enable the ELB health check.</p>
+<ul id="cce_10_0014__ul19333199205012"><li id="cce_10_0014__li8333109155020">Enabling health check: Leave blank this parameter or set it to <strong id="cce_10_0014__b750650087">on</strong>.</li><li id="cce_10_0014__li103330914504">Disabling health check: Set this parameter to <strong id="cce_10_0014__b2044845713">off</strong>.</li></ul>
+<p id="cce_10_0014__p510323641317">If this parameter is enabled, the <a href="#cce_10_0014__table236017471397">kubernetes.io/elb.health-check-option</a> field must also be specified at the same time.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row14334169195010"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p43341794509">kubernetes.io/elb.health-check-option</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p113349935012">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p113341919507"><a href="#cce_10_0014__table236017471397">Table 3</a> Object</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p933489175020">ELB health check configuration items.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row638444875814"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p9331159155018">kubernetes.io/elb.session-affinity-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p7331179125018">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p43315965016">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p533113915503">Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</p>
+<ul id="cce_10_0014__ul113311191508"><li id="cce_10_0014__li11331189195017">Disabling sticky session: Do not set this parameter.</li><li id="cce_10_0014__li133313914502">Enabling sticky session: Set this parameter to <strong id="cce_10_0014__b1268304995">SOURCE_IP</strong>, indicating that the sticky session is based on the source IP address.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row1421317512156"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p12624252121514">kubernetes.io/elb.session-affinity-option</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p662415526159">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p116241552181515"><a href="#cce_10_0014__table43592047133910">Table 2</a> Object</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p5624145218150">Sticky session timeout.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row619410431615"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p93349995013">kubernetes.io/hws-hostNetwork</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p1433413905019">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p33341990503">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p6334798502">This parameter indicates whether the workload Services use the host network. Setting this parameter to <strong id="cce_10_0014__b86031650134918">true</strong> will enable the ELB load balancer to forward requests to the host network.</p>
+<p id="cce_10_0014__p14334095506">The host network is not used by default. The value can be <strong id="cce_10_0014__b9191147134115">true</strong> or <strong id="cce_10_0014__b1919144764120">false</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row933412905011"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p12334129155012">externalTrafficPolicy</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.3.2.2.9.2.5.1.2 "><p id="cce_10_0014__p113346910501">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p1833499135011">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p1533411945011">If sticky session is enabled, add this parameter so that requests are transferred to a fixed node. If a LoadBalancer Service with this parameter set to <strong id="cce_10_0014__b5207205820419">Local</strong> is created, a client can access the target backend only if the client is installed on the same node as the backend.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0014__table939522754617"></a><a name="table939522754617"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0014__table939522754617" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Data structure of the elb.autocreate field</caption><thead align="left"><tr id="cce_10_0014__row183958279468"><th align="left" class="cellrowborder" valign="top" width="26.96%" id="mcps1.3.5.3.2.2.10.2.5.1.1"><p id="cce_10_0014__p439572712466">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.08%" id="mcps1.3.5.3.2.2.10.2.5.1.2"><p id="cce_10_0014__p5395162716461">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.25%" id="mcps1.3.5.3.2.2.10.2.5.1.3"><p id="cce_10_0014__p1839522764612">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.71%" id="mcps1.3.5.3.2.2.10.2.5.1.4"><p id="cce_10_0014__p13395182713462">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0014__row17395132744615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p239612715462">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p939602714615">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p039672712468">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p1939611278467">Name of the load balancer that is automatically created.</p>
+<p id="cce_10_0014__p1339672794620">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+<p id="cce_10_0014__p1039616277465">Default: <strong id="cce_10_0014__b4743102120314">cce-lb+service.UID</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0014__row153968276468"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p1939617273464">type</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p1739622713461">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p16396102784619">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p14396172764615">Network type of the load balancer.</p>
+<ul id="cce_10_0014__ul23961827154617"><li id="cce_10_0014__li8396127154616"><strong id="cce_10_0014__b1121645643414">public</strong>: public network load balancer</li><li id="cce_10_0014__li73971827184618"><strong id="cce_10_0014__b383111529316">inner</strong>: private network load balancer</li></ul>
+<p id="cce_10_0014__p539752754611">Default: <strong id="cce_10_0014__b64071431273">inner</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0014__row2397927194613"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p12397122718464">bandwidth_name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p1129745332217">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p16397182734610">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p113972278461">Bandwidth name. The default value is <strong id="cce_10_0014__b10901181916366">cce-bandwidth-******</strong>.</p>
+<p id="cce_10_0014__p1439717273462">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row1439722794619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p7397182720466">bandwidth_chargemode</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p71019556225">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p193974278460">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p83981227124616">Bandwidth mode.</p>
+
+</td>
+</tr>
+<tr id="cce_10_0014__row19398122716461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p739892794619">bandwidth_size</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p639862719463">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p439882734619">Integer</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p14398927134615">Bandwidth size. The default value is 1 to 2000 Mbit/s. Set this parameter based on the bandwidth range allowed in your region.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row193991627164615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p15399627174614">bandwidth_sharetype</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p1239962754620">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p4399327124618">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p6399227154620">Bandwidth sharing mode.</p>
+<ul id="cce_10_0014__ul1539932712464"><li id="cce_10_0014__li163992272465"><strong id="cce_10_0014__b1753918428519">PER</strong>: dedicated bandwidth</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row139952712463"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p1139952764611">eip_type</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p266247192314">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p84001027124612">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p440013273464">EIP type.</p>
+<ul id="cce_10_0014__ul18765175214406"><li id="cce_10_0014__li27656521408"><strong id="cce_10_0014__b572720271246">5_bgp</strong>: dynamic BGP</li><li id="cce_10_0014__li676505212409"><strong id="cce_10_0014__b94671311140">5_sbgp</strong>: static BGP</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0014__row20400102713466"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p140015271469">available_zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p15400727164618">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p04001927144618">Array of strings</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p64001827194610">AZ where the load balancer is located.</p>
+<p id="cce_10_0014__p2040082784615">This parameter is available only for dedicated load balancers.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row12400122734616"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p040102718464">l4_flavor_name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p74011327184614">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p4401227124615">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p3911190135911">Flavor name of the layer-4 load balancer.</p>
+<p id="cce_10_0014__p16615412105">This parameter is available only for dedicated load balancers.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row64018274461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p94015275467">l7_flavor_name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p1840182714466">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p5401132754612">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p540115278464">Flavor name of the layer-7 load balancer.</p>
+<p id="cce_10_0014__p439195851013">This parameter is available only for dedicated load balancers.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row17401027104619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.5.3.2.2.10.2.5.1.1 "><p id="cce_10_0014__p2040112275467">elb_virsubnet_ids</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.5.3.2.2.10.2.5.1.2 "><p id="cce_10_0014__p040262754619">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.5.3.2.2.10.2.5.1.3 "><p id="cce_10_0014__p1540222710464">Array of strings</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.5.3.2.2.10.2.5.1.4 "><p id="cce_10_0014__p1840292719463">Subnet where the backend server of the load balancer is located. If this parameter is left blank, the default cluster subnet is used. Load balancers occupy different number of subnet IP addresses based on their specifications. Therefore, you are not advised to use the subnet CIDR blocks of other resources (such as clusters and nodes) as the load balancer CIDR block.</p>
+<p id="cce_10_0014__p3476173161118">This parameter is available only for dedicated load balancers.</p>
+<p id="cce_10_0014__p6628139141015">Example:</p>
+<pre class="screen" id="cce_10_0014__screen18587145018263">"elb_virsubnet_ids": [
+   "14567f27-8ae4-42b8-ae47-9f847a4690dd"
+ ]</pre>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0014__li15402142716465"><span>Create a workload.</span><p><p id="cce_10_0014__p1040212715468"><strong id="cce_10_0014__b940222744618">kubectl create -f nginx-deployment.yaml</strong></p>
+<p id="cce_10_0014__p134024278467">If information similar to the following is displayed, the workload is being created.</p>
+<pre class="screen" id="cce_10_0014__screen54024274462">deployment/nginx created</pre>
+<p id="cce_10_0014__p154021027174617"><strong id="cce_10_0014__b6402112718467">kubectl get po</strong></p>
+<p id="cce_10_0014__p4402142716462">If information similar to the following is displayed, the workload is running.</p>
+<pre class="screen" id="cce_10_0014__screen840252717462">NAME                     READY     STATUS             RESTARTS   AGE
+<strong id="cce_10_0014__b19403727114611">nginx-2601814895-c1xhw   1/1       Running            0          6s</strong></pre>
+</p></li><li id="cce_10_0014__li64031827194611"><span>Create a Service.</span><p><p id="cce_10_0014__p9403127134610"><strong id="cce_10_0014__b1940312714467">kubectl create -f nginx-elb-svc.yaml</strong></p>
+<p id="cce_10_0014__p9403172717465">If information similar to the following is displayed, the Service has been created.</p>
+<pre class="screen" id="cce_10_0014__screen184036279461">service/nginx created</pre>
+<p id="cce_10_0014__p194039277461"><strong id="cce_10_0014__b54038273469">kubectl get svc</strong></p>
+<p id="cce_10_0014__p04031627124616">If information similar to the following is displayed, the access type has been set successfully, and the workload is accessible.</p>
+<pre class="screen" id="cce_10_0014__screen94033273464">NAME         TYPE           CLUSTER-IP       EXTERNAL-IP   PORT(S)        AGE
+kubernetes   ClusterIP      10.247.0.1       &lt;none&gt;        443/TCP        3d
+<strong id="cce_10_0014__b15405527194615">nginx        LoadBalancer   10.247.130.196   10.78.42.242   80:31540/TCP   51s</strong></pre>
+</p></li><li id="cce_10_0014__li1940672734614"><span>Enter the URL in the address box of the browser, for example, <strong id="cce_10_0014__b737105175">10.78.42.242:80</strong>. <strong id="cce_10_0014__b2104019463">10.78.42.242</strong> indicates the IP address of the load balancer, and <strong id="cce_10_0014__b1360465659">80</strong> indicates the access port displayed on the CCE console.</span><p><p id="cce_10_0014__p184066272466">The Nginx is accessible.</p>
+<div class="fignone" id="cce_10_0014__fig2406102717469"><span class="figcap"><b>Figure 4 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_10_0014__image13406827194620" src="en-us_image_0000001199021334.png"></span></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0014__section18120261746"><h4 class="sectiontitle">ELB Forwarding</h4><p id="cce_10_0014__p394033612383">After a Service of the LoadBalancer type is created, you can view the listener forwarding rules of the load balancer on the ELB console.</p>
+<p id="cce_10_0014__p107639441986">You can find that a listener is created for the load balancer. Its backend server is the node where the pod is located, and the backend server port is the NodePort (node port) of the Service. When traffic passes through ELB, it is forwarded to <em id="cce_10_0014__i14379121316571">IP address of the node where the pod is located:Node port</em>. That is, the Service is accessed and then the pod is accessed, which is the same as that described in <a href="#cce_10_0014__section19854101411508">Scenario</a>.</p>
+<p id="cce_10_0014__p1445339103816">In the passthrough networking scenario (CCE Turbo + dedicated load balancer), after a LoadBalancer Service is created, you can view the listener forwarding rules of the load balancer on the ELB console.</p>
+<p id="cce_10_0014__p191813281715">You can see that a listener is created for the load balancer. The backend server address is the IP address of the pod, and the service port is the container port. This is because the pod uses an ENI or sub-ENI. When traffic passes through the load balancer, it directly forwards the traffic to the pod. This is the same as that described in <a href="#cce_10_0014__section19854101411508">Scenario</a>.</p>
+</div>
+<div class="section" id="cce_10_0014__section52631714117"><a name="cce_10_0014__section52631714117"></a><a name="section52631714117"></a><h4 class="sectiontitle">Why a Cluster Fails to Access Services by Using the ELB Address</h4><div class="p" id="cce_10_0014__p4833134814113">If the service affinity of a LoadBalancer Service is set to the node level, that is, the value of <strong id="cce_10_0014__b5987183511139">externalTrafficPolicy</strong> is <strong id="cce_10_0014__b37861837171312">Local</strong>, the ELB address may fail to be accessed from the cluster (specifically, nodes or containers). Information similar to the following is displayed:<pre class="screen" id="cce_10_0014__screen54913814293">upstream connect error or disconnect/reset before headers. reset reason: connection failure</pre>
+</div>
+<p id="cce_10_0014__p19340172031518">This is because when the LoadBalancer Service is created, kube-proxy adds the ELB access address as the external IP to iptables or IPVS. If a client initiates a request to access the ELB address from inside the cluster, the address is considered as the external IP address of the service and is directly forwarded by kube-proxy without passing through the ELB outside the cluster.</p>
+<p id="cce_10_0014__p656516137327">When the value of <strong id="cce_10_0014__b13161129122217">externalTrafficPolicy</strong> is <strong id="cce_10_0014__b16912134192212">Local</strong>, the situation varies according to the container network model and service forwarding mode. The details are as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0014__table198144149333" frame="border" border="1" rules="all"><tbody><tr id="cce_10_0014__row159506147335"><td class="cellrowborder" valign="top" width="18.28817118288171%"><p id="cce_10_0014__p1895081493315">Server</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.768923107689233%"><p id="cce_10_0014__p895021493310">Client</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.608439156084392%"><p id="cce_10_0014__p7950111483311">Tunnel Network Cluster (IPVS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.588241175882413%"><p id="cce_10_0014__p995011423320">VPC Network Cluster (IPVS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.21817818218178%"><p id="cce_10_0014__p18950201416330">Tunnel Network Cluster (iptables)</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.52804719528047%"><p id="cce_10_0014__p1595151433311">VPC Network Cluster (iptables)</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row4951141412339"><td class="cellrowborder" rowspan="4" valign="top" width="18.28817118288171%"><p id="cce_10_0014__p14951171415338">NodePort Service</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.768923107689233%"><p id="cce_10_0014__p495121416339">Same node</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.608439156084392%"><p id="cce_10_0014__p1951514163312">OK. The node where the pod runs is accessible, not any other nodes.</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.588241175882413%"><p id="cce_10_0014__p3951191420338">OK. The node where the pod runs is accessible.</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.21817818218178%"><p id="cce_10_0014__p995151403314">OK. The node where the pod runs is accessible.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.52804719528047%"><p id="cce_10_0014__p20951171418334">OK. The node where the pod runs is accessible.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row1895191413332"><td class="cellrowborder" valign="top"><p id="cce_10_0014__p395131473311">Cross-node</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p9951181413334">OK. The node where the pod runs is accessible, not any other nodes.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p209511614183315">OK. The node where the pod runs is accessible.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p1295101473316">OK. The node where the pod runs is accessible by visiting the node IP + port, not by any other ways.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p69514140334">OK. The node where the pod runs is accessible by visiting the node IP + port, not by any other ways.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row7951201463311"><td class="cellrowborder" valign="top"><p id="cce_10_0014__p395121473312">Containers on the same node</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p16951121419335">OK. The node where the pod runs is accessible, not any other nodes.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p199511114123320">OK. The node where the pod runs is not accessible.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p0951814153320">OK. The node where the pod runs is accessible.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p1895111414334">OK. The node where the pod runs is not accessible.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row12951101413315"><td class="cellrowborder" valign="top"><p id="cce_10_0014__p9951314113314">Containers across nodes</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p395111415331">OK. The node where the pod runs is accessible, not any other nodes.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p495111144330">OK. The node where the pod runs is accessible.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p149513142332">OK. The node where the pod runs is accessible.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p795131413313">OK. The node where the pod runs is accessible.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row139511414173317"><td class="cellrowborder" rowspan="2" valign="top" width="18.28817118288171%"><p id="cce_10_0014__p295141453314">LoadBalancer Service using a dedicated load balancer</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.768923107689233%"><p id="cce_10_0014__p1695151411331">Same node</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.608439156084392%"><p id="cce_10_0014__p15951131419330">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.588241175882413%"><p id="cce_10_0014__p12951714203310">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.21817818218178%"><p id="cce_10_0014__p1295111148335">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.52804719528047%"><p id="cce_10_0014__p0951161493317">Accessible for public networks, not private networks.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row16951131410338"><td class="cellrowborder" valign="top"><p id="cce_10_0014__p29511214113316">Containers on the same node</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p39511214103320">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p159518148334">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p99511114113315">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p10951181433320">Accessible for public networks, not private networks.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row91135211363"><td class="cellrowborder" rowspan="2" valign="top" width="18.28817118288171%"><p id="cce_10_0014__p3201147183714">Local Service of the nginx-ingress add-on using a dedicated load balancer</p>
+</td>
+<td class="cellrowborder" valign="top" width="10.768923107689233%"><p id="cce_10_0014__p466020112376">Same node</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.608439156084392%"><p id="cce_10_0014__p26601113378">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.588241175882413%"><p id="cce_10_0014__p15660816375">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.21817818218178%"><p id="cce_10_0014__p106600193712">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.52804719528047%"><p id="cce_10_0014__p5660201133711">Accessible for public networks, not private networks.</p>
+</td>
+</tr>
+<tr id="cce_10_0014__row38691655153619"><td class="cellrowborder" valign="top"><p id="cce_10_0014__p116611316374">Containers on the same node</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p966110163712">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p1766110110371">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p166161193710">Accessible for public networks, not private networks.</p>
+</td>
+<td class="cellrowborder" valign="top"><p id="cce_10_0014__p26611413372">Accessible for public networks, not private networks.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0014__p493719291203">The following methods can be used to solve this problem:</p>
+<ul id="cce_10_0014__ul141811413314"><li id="cce_10_0014__li34181541335">(<strong id="cce_10_0014__b16141017112014">Recommended</strong>) In the cluster, use the ClusterIP Service or service domain name for access.</li><li id="cce_10_0014__li63557281418">Set <strong id="cce_10_0014__b17519115202011">externalTrafficPolicy</strong> of the Service to <strong id="cce_10_0014__b5662155716204">Cluster</strong>, which means cluster-level service affinity. Note that this affects source address persistence.<pre class="screen" id="cce_10_0014__screen422315222107">apiVersion: v1 
+kind: Service
+metadata: 
+  annotations:   
+    kubernetes.io/elb.class: union
+    kubernetes.io/elb.autocreate: '{"type":"public","bandwidth_name":"cce-bandwidth","bandwidth_chargemode":"bandwidth","bandwidth_size":5,"bandwidth_sharetype":"PER","eip_type":"5_bgp","name":"james"}'
+  labels: 
+    app: nginx 
+  name: nginx 
+spec: 
+  externalTrafficPolicy: Cluster
+  ports: 
+  - name: service0 
+    port: 80
+    protocol: TCP 
+    targetPort: 80
+  selector: 
+    app: nginx 
+  type: LoadBalancer</pre>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0247.html">Services</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0015.html b/docs/cce/umn/cce_10_0015.html
similarity index 51%
rename from docs/cce/umn/cce_01_0015.html
rename to docs/cce/umn/cce_10_0015.html
index d5a0c602..416062e7 100644
--- a/docs/cce/umn/cce_01_0015.html
+++ b/docs/cce/umn/cce_10_0015.html
@@ -1,19 +1,19 @@
-<a name="cce_01_0015"></a><a name="cce_01_0015"></a>
+<a name="cce_10_0015"></a><a name="cce_10_0015"></a>
 
 <h1 class="topictitle1">Using a ConfigMap</h1>
-<div id="body1523236302435"><ul id="cce_01_0015__ul784252913353"><li id="cce_01_0015__li0842229163518"><a href="#cce_01_0015__section1737733192813">Setting Workload Environment Variables</a></li><li id="cce_01_0015__li56474053519"><a href="#cce_01_0015__section17930105710189">Setting Command Line Parameters</a></li><li id="cce_01_0015__li1855144412358"><a href="#cce_01_0015__section1490261161916">Attaching a ConfigMap to the Workload Data Volume</a></li></ul>
-<p id="cce_01_0015__p1119921953413">The following example shows how to use a ConfigMap.</p>
-<pre class="screen" id="cce_01_0015__screen1245419316221">apiVersion: v1
+<div id="body1523236302435"><ul id="cce_10_0015__ul784252913353"><li id="cce_10_0015__li0842229163518"><a href="#cce_10_0015__section1737733192813">Setting Workload Environment Variables</a></li><li id="cce_10_0015__li56474053519"><a href="#cce_10_0015__section17930105710189">Setting Command Line Parameters</a></li><li id="cce_10_0015__li1855144412358"><a href="#cce_10_0015__section1490261161916">Attaching a ConfigMap to the Workload Data Volume</a></li></ul>
+<p id="cce_10_0015__p1119921953413">The following example shows how to use a ConfigMap.</p>
+<pre class="screen" id="cce_10_0015__screen1245419316221">apiVersion: v1
 kind: ConfigMap
 metadata:
   name: cce-configmap
 data:
   SPECIAL_LEVEL: Hello
   SPECIAL_TYPE: CCE</pre>
-<div class="notice" id="cce_01_0015__note674103144418"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_01_0015__p2741939443">When a ConfigMap is used in a pod, the pod and ConfigMap must be in the same cluster and namespace.</p>
+<div class="notice" id="cce_10_0015__note674103144418"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0015__p2741939443">When a ConfigMap is used in a pod, the pod and ConfigMap must be in the same cluster and namespace.</p>
 </div></div>
-<div class="section" id="cce_01_0015__section1737733192813"><a name="cce_01_0015__section1737733192813"></a><a name="section1737733192813"></a><h4 class="sectiontitle">Setting Workload Environment Variables</h4><p id="cce_01_0015__p1626131323616">When creating a workload, you can use a ConfigMap to set environment variables. The <strong id="cce_01_0015__b697053174517">valueFrom</strong> parameter indicates the key-value pair to be referenced.</p>
-<pre class="screen" id="cce_01_0015__screen25322289311">apiVersion: v1
+<div class="section" id="cce_10_0015__section1737733192813"><a name="cce_10_0015__section1737733192813"></a><a name="section1737733192813"></a><h4 class="sectiontitle">Setting Workload Environment Variables</h4><p id="cce_10_0015__p1626131323616">When creating a workload, you can use a ConfigMap to set environment variables. The <strong id="cce_10_0015__b697053174517">valueFrom</strong> parameter indicates the key-value pair to be referenced.</p>
+<pre class="screen" id="cce_10_0015__screen25322289311">apiVersion: v1
 kind: Pod
 metadata:
   name: configmap-pod-1
@@ -29,20 +29,20 @@ spec:
               name: cce-configmap                ## Name of the referenced configuration file.
               key: SPECIAL_LEVEL                 ## Key of the referenced ConfigMap.
   restartPolicy: Never</pre>
-<div class="p" id="cce_01_0015__p928391718127">If you need to define the values of multiple ConfigMaps as the environment variables of the pods, add multiple environment variable parameters to the pods.<pre class="screen" id="cce_01_0015__screen659741215919">env:
+<div class="p" id="cce_10_0015__p928391718127">If you need to define the values of multiple ConfigMaps as the environment variables of the pods, add multiple environment variable parameters to the pods.<pre class="screen" id="cce_10_0015__screen659741215919">env:
 - name: SPECIAL_LEVEL_KEY
   valueFrom:
     configMapKeyRef:
-          name: <span style="color:#FF0000;">cce-configmap</span>
-          key: <span style="color:#FF0000;">SPECIAL_LEVEL</span>
+          name: cce-configmap
+          key: SPECIAL_LEVEL
 - name: SPECIAL_TYPE_KEY
   valueFrom:
     configMapKeyRef:
-          name: <span style="color:#FF0000;">cce-configmap</span>
-          key: <span style="color:#FF0000;">SPECIAL_TYPE</span></pre>
+          name: cce-configmap
+          key: SPECIAL_TYPE</pre>
 </div>
-<p id="cce_01_0015__p71587551910">To add all data in a ConfigMap to environment variables, use the <strong id="cce_01_0015__b65351522276">envFrom</strong> parameter. The keys in the ConfigMap will become names of environment variables in a pod.</p>
-<pre class="screen" id="cce_01_0015__screen104944321312">apiVersion: v1
+<p id="cce_10_0015__p71587551910">To add all data in a ConfigMap to environment variables, use the <strong id="cce_10_0015__b65351522276">envFrom</strong> parameter. The keys in the ConfigMap will become names of environment variables in a pod.</p>
+<pre class="screen" id="cce_10_0015__screen104944321312">apiVersion: v1
 kind: Pod
 metadata:
   name: configmap-pod-2
@@ -53,11 +53,11 @@ spec:
       command: [ "/bin/sh", "-c", "env" ]
       envFrom:
       - configMapRef:
-          name: <span style="color:#FF0000;">cce-configmap</span>
+          name: cce-configmap
   restartPolicy: Never</pre>
 </div>
-<div class="section" id="cce_01_0015__section17930105710189"><a name="cce_01_0015__section17930105710189"></a><a name="section17930105710189"></a><h4 class="sectiontitle">Setting Command Line Parameters</h4><p id="cce_01_0015__p1265811921915">You can use a ConfigMap to set commands or parameter values for a container by using the environment variable substitution syntax $(VAR_NAME). The following shows an example.</p>
-<pre class="screen" id="cce_01_0015__screen4422017182118">apiVersion: v1
+<div class="section" id="cce_10_0015__section17930105710189"><a name="cce_10_0015__section17930105710189"></a><a name="section17930105710189"></a><h4 class="sectiontitle">Setting Command Line Parameters</h4><p id="cce_10_0015__p1265811921915">You can use a ConfigMap to set commands or parameter values for a container by using the environment variable substitution syntax $(VAR_NAME). The following shows an example.</p>
+<pre class="screen" id="cce_10_0015__screen4422017182118">apiVersion: v1
 kind: Pod
 metadata:
   name: configmap-pod-3
@@ -65,24 +65,24 @@ spec:
   containers:
     - name: test-container
       image: busybox
-      command: [ "/bin/sh", "-c", "echo $(<span style="color:#FF0000;">SPECIAL_LEVEL_KEY</span>) $(<span style="color:#FF0000;">SPECIAL_TYPE_KEY</span>)" ]
+      command: [ "/bin/sh", "-c", "echo $(SPECIAL_LEVEL_KEY) $(SPECIAL_TYPE_KEY)" ]
       env:
         - name: SPECIAL_LEVEL_KEY
           valueFrom:
             configMapKeyRef:
-              name: <span style="color:#FF0000;">cce-configmap</span>
-              key: <span style="color:#FF0000;">SPECIAL_LEVEL</span>
+              name: cce-configmap
+              key: SPECIAL_LEVEL
         - name: SPECIAL_TYPE_KEY
           valueFrom:
             configMapKeyRef:
-              name: <span style="color:#FF0000;">cce-configmap</span>
-              key: <span style="color:#FF0000;">SPECIAL_TYPE</span>
+              name: cce-configmap
+              key: SPECIAL_TYPE
   restartPolicy: Never</pre>
-<p id="cce_01_0015__p1515431152312">After the pod runs, the following information is displayed:</p>
-<pre class="screen" id="cce_01_0015__screen2809121752318">Hello CCE</pre>
+<p id="cce_10_0015__p1515431152312">After the pod runs, the following information is displayed:</p>
+<pre class="screen" id="cce_10_0015__screen2809121752318">Hello CCE</pre>
 </div>
-<div class="section" id="cce_01_0015__section1490261161916"><a name="cce_01_0015__section1490261161916"></a><a name="section1490261161916"></a><h4 class="sectiontitle">Attaching a ConfigMap to the Workload Data Volume</h4><p id="cce_01_0015__p1557185117240">A ConfigMap can also be used in the data volume. You only need to attach the ConfigMap to the workload when creating the workload. After the mounting is complete, a configuration file with key as the file name and value as the file content is generated.</p>
-<pre class="screen" id="cce_01_0015__screen11489958268">apiVersion: v1
+<div class="section" id="cce_10_0015__section1490261161916"><a name="cce_10_0015__section1490261161916"></a><a name="section1490261161916"></a><h4 class="sectiontitle">Attaching a ConfigMap to the Workload Data Volume</h4><p id="cce_10_0015__p1557185117240">A ConfigMap can also be used in the data volume. You only need to attach the ConfigMap to the workload when creating the workload. After the mounting is complete, a configuration file with key as the file name and value as the file content is generated.</p>
+<pre class="screen" id="cce_10_0015__screen11489958268">apiVersion: v1
 kind: Pod
 metadata:
   name: configmap-pod-4
@@ -97,17 +97,17 @@ spec:
   volumes:
     - name: config-volume
       configMap:
-        name: <span style="color:#FF0000;">cce-configmap</span>
+        name: cce-configmap
   restartPolicy: Never</pre>
-<p id="cce_01_0015__p1070283082720">After the pod is run, the <strong id="cce_01_0015__b0879024444">SPECIAL_LEVEL</strong> and <strong id="cce_01_0015__b12918271140">SPECIAL_TYPE</strong> files are generated in the <strong id="cce_01_0015__b1668829240">/etc/config</strong> directory. The contents of the files are Hello and CCE, respectively. Also, the following file names will be displayed.</p>
-<pre class="screen" id="cce_01_0015__screen193762594281">SPECIAL_TYPE
+<p id="cce_10_0015__p1070283082720">After the pod is run, the <strong id="cce_10_0015__b0879024444">SPECIAL_LEVEL</strong> and <strong id="cce_10_0015__b12918271140">SPECIAL_TYPE</strong> files are generated in the <strong id="cce_10_0015__b1668829240">/etc/config</strong> directory. The contents of the files are Hello and CCE, respectively. Also, the following file names will be displayed.</p>
+<pre class="screen" id="cce_10_0015__screen193762594281">SPECIAL_TYPE
 SPECIAL_LEVEL</pre>
-<p id="cce_01_0015__p2031118172817">To mount a ConfigMap to a data volume, you can also perform operations on the CCE console. When creating a workload, set advanced settings for the container, choose <strong id="cce_01_0015__b153181646642">Data Storage </strong>&gt;<strong id="cce_01_0015__b183196461343"> Local Volume</strong>, click <strong id="cce_01_0015__b89592043143116">Add Local Volume</strong>, and select <strong id="cce_01_0015__b10959144373116">ConfigMap</strong>. For details, see <a href="cce_01_0053.html#cce_01_0053__en-us_topic_0000001199341206_section18638191594712">ConfigMap</a>.</p>
+<p id="cce_10_0015__p2031118172817">To mount a ConfigMap to a data volume, you can also perform operations on the CCE console. When creating a workload, set advanced settings for the container, choose <strong id="cce_10_0015__b153181646642">Data Storage </strong>&gt;<strong id="cce_10_0015__b183196461343"> Local Volume</strong>, click <strong id="cce_10_0015__b89592043143116">Add Local Volume</strong>, and select <strong id="cce_10_0015__b10959144373116">ConfigMap</strong>. For details, see <a href="cce_10_0377.html#cce_10_0377__section18638191594712">ConfigMap</a>.</p>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0045.html">Configuration Center</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0016.html b/docs/cce/umn/cce_10_0016.html
new file mode 100644
index 00000000..7c5c5744
--- /dev/null
+++ b/docs/cce/umn/cce_10_0016.html
@@ -0,0 +1,86 @@
+<a name="cce_10_0016"></a><a name="cce_10_0016"></a>
+
+<h1 class="topictitle1">Using a Secret</h1>
+<div id="body1523236302435"><div class="notice" id="cce_10_0016__note13556115019429"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0016__p39918120437">The following secrets are used by the CCE system. Do not perform any operations on them.</p>
+<ul id="cce_10_0016__ul13678122414717"><li id="cce_10_0016__li19678132424718">Do not operate secrets under kube-system.</li><li id="cce_10_0016__li206781324204718">Do not operate default-secret and paas.elb in any of the namespaces. The default-secret is used to pull the private image of SWR, and the paas.elb is used to connect the service in the namespace to the ELB service.</li></ul>
+</div></div>
+<ul id="cce_10_0016__ul784252913353"><li id="cce_10_0016__li0842229163518"><a href="#cce_10_0016__section472505211214">Configuring the Data Volume of a Pod</a></li><li id="cce_10_0016__li56474053519"><a href="#cce_10_0016__section207271352141216">Setting Environment Variables of a Pod</a></li></ul>
+<p id="cce_10_0016__p1119921953413">The following example shows how to use a secret.</p>
+<pre class="screen" id="cce_10_0016__screen1032654214366">apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+data:
+  username: ****** #The value must be Base64-encoded.
+  password: ******  #The value must be encoded using Base64.</pre>
+<div class="notice" id="cce_10_0016__note250219438139"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0016__p132702112389">When a secret is used in a pod, the pod and secret must be in the same cluster and namespace.</p>
+</div></div>
+<div class="section" id="cce_10_0016__section472505211214"><a name="cce_10_0016__section472505211214"></a><a name="section472505211214"></a><h4 class="sectiontitle">Configuring the Data Volume of a Pod</h4><div class="p" id="cce_10_0016__p9949138153913">A secret can be used as a file in a pod. As shown in the following example, the username and password of the <strong id="cce_10_0016__b18969914308">mysecret </strong>secret are saved in the <strong id="cce_10_0016__b396199143010">/etc/foo</strong> directory as files.<pre class="screen" id="cce_10_0016__screen1237163595414">apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+      readOnly: true
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret</pre>
+</div>
+<div class="p" id="cce_10_0016__p234055713124">In addition, you can specify the directory and permission to access a secret. The username is stored in the <strong id="cce_10_0016__b5930378811228">/etc/foo/my-group/my-username</strong> directory of the container.<pre class="screen" id="cce_10_0016__screen12711144211311">apiVersion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      items:
+      - key: username
+        path: my-group/my-username
+        mode: 511</pre>
+</div>
+<p id="cce_10_0016__p2031118172817">To mount a secret to a data volume, you can also perform operations on the CCE console. When creating a workload, set advanced settings for the container, choose <strong id="cce_10_0016__b159591743143117">Data Storage &gt; Local Volume</strong>, click <strong id="cce_10_0016__b89592043143116">Add Local Volume</strong>, and select <strong id="cce_10_0016__b10959144373116">Secret</strong>. For details, see <a href="cce_10_0377.html#cce_10_0377__section10197243134710">Secret</a>.</p>
+</div>
+<div class="section" id="cce_10_0016__section207271352141216"><a name="cce_10_0016__section207271352141216"></a><a name="section207271352141216"></a><h4 class="sectiontitle">Setting Environment Variables of a Pod</h4><div class="p" id="cce_10_0016__p765814229403">A secret can be used as an environment variable of a pod. As shown in the following example, the username and password of the <strong id="cce_10_0016__b106728345329">mysecret</strong> secret are defined as an environment variable of the pod.<pre class="screen" id="cce_10_0016__screen67991151399">apiVersion: v1
+kind: Pod
+metadata:
+  name: secret-env-pod
+spec:
+  containers:
+  - name: mycontainer
+    image: redis
+    env:
+      - name: SECRET_USERNAME
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: username
+      - name: SECRET_PASSWORD
+        valueFrom:
+          secretKeyRef:
+            name: mysecret
+            key: password
+  restartPolicy: Never</pre>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0018.html b/docs/cce/umn/cce_10_0018.html
new file mode 100644
index 00000000..84e7a111
--- /dev/null
+++ b/docs/cce/umn/cce_10_0018.html
@@ -0,0 +1,203 @@
+<a name="cce_10_0018"></a><a name="cce_10_0018"></a>
+
+<h1 class="topictitle1">Using ICAgent to Collect Container Logs</h1>
+<div id="body1522667123001"><p id="cce_10_0018__p78381781804">CCE works with AOM to collect workload logs. When creating a node, CCE installs the ICAgent for you (the DaemonSet named <strong id="cce_10_0018__b3710330164314">icagent</strong> in the kube-system namespace of the cluster). After the ICAgent collects workload logs and reports them to AOM, you can view workload logs on the CCE or AOM console.</p>
+<div class="section" id="cce_10_0018__section17884754413"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0018__p23831558355">The ICAgent only collects <strong id="cce_10_0018__b39280572146">*.log</strong>, <strong id="cce_10_0018__b1793513574146">*.trace</strong>, and <strong id="cce_10_0018__b29351157191412">*.out</strong> text log files.</p>
+</div>
+<div class="section" id="cce_10_0018__section1951732710"><h4 class="sectiontitle">Using ICAgent to Collect Logs</h4><ol id="cce_10_0018__ol1253654833013"><li id="cce_10_0018__li19284854163014"><span>When <a href="cce_10_0047.html">creating a workload</a>, set logging for the container.</span></li><li id="cce_10_0018__li2427158104715"><span>Click <span><img id="cce_10_0018__image134281583473" src="en-us_image_0000001206876656.png"></span> to add a log policy.</span><p><div class="p" id="cce_10_0018__p9862125810472">The following uses Nginx as an example. Log policies vary depending on workloads.<div class="fignone" id="cce_10_0018__fig19856172153216"><span class="figcap"><b>Figure 1 </b>Adding a log policy</span><br><span><img id="cce_10_0018__image168953502558" src="en-us_image_0000001199181298.png"></span></div>
+</div>
+</p></li><li id="cce_10_0018__li1479392315150"><span>Set <strong id="cce_10_0018__b5461630195419">Storage Type</strong> to <span class="uicontrol" id="cce_10_0018__uicontrol105212302547"><b>Host Path</b></span> or <span class="uicontrol" id="cce_10_0018__uicontrol1752103095410"><b>Container Path</b></span>.</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0018__table115901715550" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuring log policies</caption><thead align="left"><tr id="cce_10_0018__row45851074554"><th align="left" class="cellrowborder" valign="top" width="22.12%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_10_0018__p115843785517">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="77.88000000000001%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_10_0018__p12584573550">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0018__row1458511725510"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0018__p115855785514">Storage Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><ul id="cce_10_0018__ul76619114518"><li id="cce_10_0018__li136612110459"><strong id="cce_10_0018__b5948115385420">Host Path</strong> (hostPath): A host path is mounted to the specified container path (mount path). In the node host path, you can view the container logs output into the mount path.</li><li id="cce_10_0018__li6661161104511"><strong id="cce_10_0018__b347751165515">Container Path</strong> (emptyDir): A temporary path of the node is mounted to the specified path (mount path). Log data that exists in the temporary path but is not reported by the collector to AOM will disappear after the pod is deleted.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0018__row796372144912"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0018__p161422710493">Host Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0018__p171432774911">Enter a host path, for example, <strong id="cce_10_0018__b17669511375">/var/paas/sys/log/nginx</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0018__row19587147165512"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0018__p1158647155518">Container Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><div class="p" id="cce_10_0018__p358711715554">Container path (for example, <strong id="cce_10_0018__b8656121314711">/tmp</strong>) to which the storage resources will be mounted.<div class="notice" id="cce_10_0018__note155879745516"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0018__ul14587570556"><li id="cce_10_0018__li95877735510">Do not mount storage to a system directory such as <strong id="cce_10_0018__b0630176102713">/</strong> or <strong id="cce_10_0018__b063118642719">/var/run</strong>; this action may cause a container error to occur. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.</li><li id="cce_10_0018__li1258777175519">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</li><li id="cce_10_0018__li1943916477113">AOM collects only the first 20 log files that have been modified recently. It collects files from 2 levels of subdirectories by default.</li><li id="cce_10_0018__li545718441116">AOM only collects <span class="uicontrol" id="cce_10_0018__uicontrol27371025162017"><b>.log</b></span>, <span class="uicontrol" id="cce_10_0018__uicontrol874242592011"><b>.trace</b></span>, and <span class="uicontrol" id="cce_10_0018__uicontrol1974322522012"><b>.out</b></span> text log files in the mount paths.</li><li id="cce_10_0018__li866676185016">For details about how to set permissions for mount points in a container, see <a href="https://kubernetes.io/docs/tasks/configure-pod-container/security-context/" target="_blank" rel="noopener noreferrer">Configure a Security Context for a Pod or Container</a>.</li></ul>
+</div></div>
+</div>
+</td>
+</tr>
+<tr id="cce_10_0018__row6588187135510"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0018__p758720775520">Extended Host Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0018__p10159815204516">This parameter is mandatory only if <strong id="cce_10_0018__b1319582314326">Storage Type</strong> is set to <span class="uicontrol" id="cce_10_0018__uicontrol104741538114511"><b>Host Path</b></span>.</p>
+<p id="cce_10_0018__p15012414486">Extended host paths contain pod IDs or container names to distinguish different containers into which the host path is mounted.</p>
+<p id="cce_10_0018__p158737185514">A level-3 directory is added to the original volume directory/subdirectory. You can easily obtain the files output by a single <span class="keyword" id="cce_10_0018__keyword1142267981799">Pod</span>.</p>
+<ul id="cce_10_0018__ul1358877135514"><li id="cce_10_0018__li115872725517"><strong id="cce_10_0018__b67128281231">None</strong>: No extended path is configured. </li><li id="cce_10_0018__li8587474550"><strong id="cce_10_0018__b37109352310">PodUID</strong>: ID of a pod.</li><li id="cce_10_0018__li14587127185513"><strong id="cce_10_0018__b1246417411639">PodName</strong>: name of a pod.</li><li id="cce_10_0018__li10587117175514"><strong id="cce_10_0018__b1232314820315">PodUID/ContainerName</strong>: ID of a pod or name of a container.</li><li id="cce_10_0018__li758816716559"><strong id="cce_10_0018__b15921753534">PodName/ContainerName</strong>: name of a pod or container.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0018__row85891275552"><td class="cellrowborder" valign="top" width="22.12%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0018__p258847105513">Log Dump</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.88000000000001%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0018__p674918171418">Log dump refers to rotating log files on a local host.</p>
+<ul id="cce_10_0018__ul1493171511410"><li id="cce_10_0018__li129311551416"><strong id="cce_10_0018__b4837638192520">Enabled</strong>: AOM scans log files every minute. When a log file exceeds 50 MB, it is dumped immediately. A new <strong id="cce_10_0018__b98429388254">.zip</strong> file is generated in the directory where the log file locates. For a log file, AOM stores only the latest 20 <strong id="cce_10_0018__b2216332192917">.zip</strong> files. When the number of <strong id="cce_10_0018__b1621653252914">.zip</strong> files exceeds 20, earlier <strong id="cce_10_0018__b1321623212917">.zip</strong> files will be deleted. After the dump is complete, the log file in AOM will be cleared.</li><li id="cce_10_0018__li79301514142"><strong id="cce_10_0018__b1646121113016">Disabled</strong>: AOM does not dump log files.</li></ul>
+<div class="note" id="cce_10_0018__note746743620142"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0018__ul148957434143"><li id="cce_10_0018__li3895243141410">AOM rotates log files using copytruncate. Before enabling log dumping, ensure that log files are written in the append mode. Otherwise, file holes may occur.</li><li id="cce_10_0018__li7895164351412">Currently, mainstream log components such as Log4j and Logback support log file rotation. If you have already set rotation for log files, skip the configuration. Otherwise, conflicts may occur.</li><li id="cce_10_0018__li589554311145">You are advised to configure log file rotation for your own services to flexibly control the size and number of rolled files.</li></ul>
+</div></div>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0018__li192435574452"><span>Click <strong id="cce_10_0018__b842352706171121">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0018__section3676337461"><h4 class="sectiontitle">YAML Example</h4><p id="cce_10_0018__p163745559461">You can set the container log storage path by defining a YAML file.</p>
+<p id="cce_10_0018__p135895194011">As shown in the following figure, an emptyDir volume is mounted a temporary path to <span class="uicontrol" id="cce_10_0018__uicontrol35891193014"><b>/var/log/nginx</b></span>. In this way, the ICAgent collects logs in <span class="uicontrol" id="cce_10_0018__uicontrol8186192791916"><b>/var/log/nginx</b></span>. The <strong id="cce_10_0018__b19884404015">policy</strong> field is customized by CCE and allows the ICAgent to identify and collect logs.</p>
+<pre class="screen" id="cce_10_0018__screen863910461482">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: testlog
+  namespace: default
+spec:
+  selector:
+    matchLabels:
+      app: testlog
+  template:
+    replicas: 1
+    metadata:
+      labels:
+        app: testlog
+    spec:
+      containers:
+        - image: 'nginx:alpine'
+          name: container-0
+          resources:
+            requests:
+              cpu: 250m
+              memory: 512Mi
+            limits:
+              cpu: 250m
+              memory: 512Mi
+          volumeMounts:
+            - name: vol-log
+              mountPath: /var/log/nginx
+              policy:
+                logs:
+                  rotate: ''
+      volumes:
+        - emptyDir: {}
+          name: vol-log
+      imagePullSecrets:
+        - name: default-secret</pre>
+<p id="cce_10_0018__p878213715533">The following shows how to use a hostPath volume. Compared with emptyDir, the type of <strong id="cce_10_0018__b1818572291612">volume</strong><strong id="cce_10_0018__b16186132221614">s</strong> is changed to <strong id="cce_10_0018__b8437327171619">hostPath</strong>, and the path on the host needs to be configured for this hostPath volume. In the following example, <span class="uicontrol" id="cce_10_0018__uicontrol046012383406"><b>/tmp/log</b></span> on the host is mounted to <span class="uicontrol" id="cce_10_0018__uicontrol1546533819400"><b>/var/log/nginx</b></span>. In this way, the ICAgent can collects logs in <strong id="cce_10_0018__b1246512382409">/var/log/nginx</strong>, without deleting the logs from <strong id="cce_10_0018__b64661838144012">/tmp/log</strong>.</p>
+<pre class="screen" id="cce_10_0018__screen1347245314534">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: testlog
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: testlog
+  template:
+    metadata:
+      labels:
+        app: testlog
+    spec:
+      containers:
+        - image: 'nginx:alpine'
+          name: container-0
+          resources:
+            requests:
+              cpu: 250m
+              memory: 512Mi
+            limits:
+              cpu: 250m
+              memory: 512Mi
+          volumeMounts:
+            - name: vol-log
+              mountPath: /var/log/nginx
+              readOnly: false
+              extendPathMode: PodUID
+              policy:
+                logs:
+                  rotate: Hourly
+                  annotations:
+                    
+                    format: ''
+      volumes:
+        - hostPath:
+            path: /tmp/log
+          name: vol-log
+      imagePullSecrets:
+        - name: default-secret</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0018__table1332817095114" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameter description</caption><thead align="left"><tr id="cce_10_0018__row63291603518"><th align="left" class="cellrowborder" valign="top" width="17.06%" id="mcps1.3.4.7.2.4.1.1"><p id="cce_10_0018__p53291009514">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="19.23%" id="mcps1.3.4.7.2.4.1.2"><p id="cce_10_0018__p3329208519">Explanation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="63.71%" id="mcps1.3.4.7.2.4.1.3"><p id="cce_10_0018__p93291706517">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0018__row932940125114"><td class="cellrowborder" valign="top" width="17.06%" headers="mcps1.3.4.7.2.4.1.1 "><p id="cce_10_0018__p173292019514">extendPathMode</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_10_0018__p6329709512">Extended host path</p>
+</td>
+<td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_10_0018__p32881805119">Extended host paths contain pod IDs or container names to distinguish different containers into which the host path is mounted.</p>
+<p id="cce_10_0018__p1728888115112">A level-3 directory is added to the original volume directory/subdirectory. You can easily obtain the files output by a single <span class="keyword" id="cce_10_0018__keyword2000378939">Pod</span>.</p>
+<ul id="cce_10_0018__ul2028828105113"><li id="cce_10_0018__li428815865110"><strong id="cce_10_0018__b379208072">None</strong>: No extended path is configured. </li><li id="cce_10_0018__li62889814517"><strong id="cce_10_0018__b1336006828">PodUID</strong>: ID of a pod.</li><li id="cce_10_0018__li528818135113"><strong id="cce_10_0018__b1360762071">PodName</strong>: name of a pod.</li><li id="cce_10_0018__li62882084517"><strong id="cce_10_0018__b1925991408">PodUID/ContainerName</strong>: ID of a pod or name of a container.</li><li id="cce_10_0018__li528898175110"><strong id="cce_10_0018__b8818125942116">PodName/ContainerName</strong>: name of a pod or container.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0018__row732915085118"><td class="cellrowborder" valign="top" width="17.06%" headers="mcps1.3.4.7.2.4.1.1 "><p id="cce_10_0018__p17329004514">policy.logs.rotate</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_10_0018__p123292055113">Log dump</p>
+</td>
+<td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_10_0018__p1017113396539">Log dump refers to rotating log files on a local host.</p>
+<ul id="cce_10_0018__ul1617120398533"><li id="cce_10_0018__li71711639105316"><strong id="cce_10_0018__b1526956635">Enabled</strong>: AOM scans log files every minute. When a log file exceeds 50 MB, it is dumped immediately. A new <strong id="cce_10_0018__b530318652">.zip</strong> file is generated in the directory where the log file locates. For a log file, AOM stores only the latest 20 <strong id="cce_10_0018__b816695388">.zip</strong> files. When the number of <strong id="cce_10_0018__b589371906">.zip</strong> files exceeds 20, earlier <strong id="cce_10_0018__b54563225">.zip</strong> files will be deleted. After the dump is complete, the log file in AOM will be cleared.</li><li id="cce_10_0018__li817133985315"><strong id="cce_10_0018__b1482156256">Disabled</strong>: AOM does not dump log files.</li></ul>
+<div class="note" id="cce_10_0018__note121711639195319"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0018__ul817183918533"><li id="cce_10_0018__li9171183945310">AOM rotates log files using copytruncate. Before enabling log dumping, ensure that log files are written in the append mode. Otherwise, file holes may occur.</li><li id="cce_10_0018__li1117153914535">Currently, mainstream log components such as Log4j and Logback support log file rotation. If you have set rotation for log files, skip the configuration. Otherwise, conflicts may occur.</li><li id="cce_10_0018__li317113915532">You are advised to configure log file rotation for your own services to flexibly control the size and number of rolled files.</li></ul>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0018__row10264639195415"><td class="cellrowborder" valign="top" width="17.06%" headers="mcps1.3.4.7.2.4.1.1 "><p id="cce_10_0018__p17265103911544">policy.logs.annotations.format</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_10_0018__p17265039125417">Multi-line log matching</p>
+</td>
+<td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_10_0018__p0105153218557">Some program logs (for example, Java program logs) contain a log that occupies multiple lines. By default, the log collection system collects logs by line. If you want to display logs as a single log message in the log collection system, you can enable the multi-line log function and use the log time or regular pattern mode. When a line of log message matches the preset time format or regular expression, it is considered as the start of a log message and the next line starts with this line of log message is considered as the end identifier of the log message.</p>
+<p id="cce_10_0018__p11877353598">The format is as follows:</p>
+<pre class="screen" id="cce_10_0018__screen91091621603">{
+    "multi": {
+        "mode": "time",
+        "value": "YYYY-MM-DD hh:mm:ss"
+    }
+}</pre>
+<p id="cce_10_0018__p16105113225519"><strong id="cce_10_0018__b16734357132419">multi</strong> indicates the multi-line mode.</p>
+<ul id="cce_10_0018__ul4106732185516"><li id="cce_10_0018__li1610616324551"><strong id="cce_10_0018__b148001114259">time</strong>: log time. Enter a time wildcard. For example, if the time in the log is 2017-01-01 23:59:59, the wildcard is YYYY-MM-DD hh:mm:ss.</li><li id="cce_10_0018__li3106193275517"><strong id="cce_10_0018__b174241649102518">regular</strong>: regular pattern. Enter a regular expression.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0018__section25851847232"><h4 class="sectiontitle">Viewing Logs</h4><p id="cce_10_0018__p209669599247">After a log collection path is configured and the workload is created, the ICAgent collects log files from the configured path. The collection takes about 1 minute.</p>
+<p id="cce_10_0018__p242194515304">After the log collection is complete, go to the workload details page and click <strong id="cce_10_0018__b13484541192818">Logs</strong> in the upper right corner to view logs.</p>
+<p id="cce_10_0018__p32989282515">You can also view logs on the AOM console.</p>
+<p id="cce_10_0018__p160613416815">You can also run the <strong id="cce_10_0018__b9741144192912">kubectl logs</strong> command to view the standard output of a container.</p>
+<pre class="screen" id="cce_10_0018__screen1210248152712"># View logs of a specified pod.
+kubectl logs &lt;pod_name&gt;
+kubectl logs -f &lt;pod_name&gt; # Similar to <strong id="cce_10_0018__b34131514579">tail -f</strong>
+
+# View logs of a specified container in a specified pod.
+kubectl logs &lt;pod_name&gt; -c &lt;container_name&gt;
+
+kubectl logs pod_name -c container_name -n namespace (one-off query)
+kubectl logs -f &lt;pod_name&gt; -n namespace (real-time query in tail -f mode)</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0553.html">Logging</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0019.html b/docs/cce/umn/cce_10_0019.html
new file mode 100644
index 00000000..75f21323
--- /dev/null
+++ b/docs/cce/umn/cce_10_0019.html
@@ -0,0 +1,13 @@
+<a name="cce_10_0019"></a><a name="cce_10_0019"></a>
+
+<h1 class="topictitle1">Charts</h1>
+<div id="body1522665832345"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0191.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0146.html">Deploying an Application from a Chart</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0020.html b/docs/cce/umn/cce_10_0020.html
new file mode 100644
index 00000000..688efde1
--- /dev/null
+++ b/docs/cce/umn/cce_10_0020.html
@@ -0,0 +1,27 @@
+<a name="cce_10_0020"></a><a name="cce_10_0020"></a>
+
+<h1 class="topictitle1">Networking</h1>
+<div id="body1506570432072"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0010.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0280.html">Container Network Models</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0247.html">Services</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0248.html">Ingresses</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0359.html">DNS</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0399.html">Configuring Intra-VPC Access</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0400.html">Accessing Public Networks from a Container</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0059.html">Network Policies</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0402.html">Host Network</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0024.html b/docs/cce/umn/cce_10_0024.html
similarity index 54%
rename from docs/cce/umn/cce_01_0024.html
rename to docs/cce/umn/cce_10_0024.html
index 1331d79b..56be0999 100644
--- a/docs/cce/umn/cce_01_0024.html
+++ b/docs/cce/umn/cce_10_0024.html
@@ -1,12 +1,12 @@
-<a name="cce_01_0024"></a><a name="cce_01_0024"></a>
+<a name="cce_10_0024"></a><a name="cce_10_0024"></a>
 
 <h1 class="topictitle1">Cloud Trace Service (CTS)</h1>
 <div id="body1525226397666"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0025.html">CCE Operations Supported by CTS</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0025.html">CCE Operations Supported by CTS</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0026.html">Querying CTS Logs</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0026.html">Querying CTS Logs</a></strong><br>
 </li>
 </ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0025.html b/docs/cce/umn/cce_10_0025.html
new file mode 100644
index 00000000..adbe1614
--- /dev/null
+++ b/docs/cce/umn/cce_10_0025.html
@@ -0,0 +1,596 @@
+<a name="cce_10_0025"></a><a name="cce_10_0025"></a>
+
+<h1 class="topictitle1">CCE Operations Supported by CTS</h1>
+<div id="body1525226397666">
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0025__table10122133613599" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CCE operations supported by CTS</caption><thead align="left"><tr id="cce_10_0025__row1612243618593"><th align="left" class="cellrowborder" valign="top" width="28.37%" id="mcps1.4.1.2.4.1.1"><p id="cce_10_0025__p5122153665915">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.230000000000004%" id="mcps1.4.1.2.4.1.2"><p id="cce_10_0025__p11394135314515">Resource Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="46.400000000000006%" id="mcps1.4.1.2.4.1.3"><p id="cce_10_0025__p13195515620">Event Name</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0025__row384725144914"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p13908102164920">Creating an agency</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p15333419174616">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1993945965019">createUserAgencies</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1284895184910"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p199081221194919">Creating a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p433311984616">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p593905975012">createCluster</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row17848185114913"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1990920218494">Updating the description of a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p147962302015">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p49391596502">updateCluster</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row784805164917"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1090912210492">Upgrading a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p155208351618">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p29392059115015">clusterUpgrade</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row18494524910"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p17909162174912">Deleting a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p752019351819">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p139391059125010">claimCluster/deleteCluster</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row9849205154915"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p12909122174919">Downloading a cluster certificate</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p12520133510112">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p3939105975020">getClusterCertByUID</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row684915513497"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p390972118494">Binding and unbinding an EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1952018351410">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1393995925016">operateMasterEIP</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row2084918564916"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1490922117497">Waking up a cluster and resetting node management (V2)</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p186260487111">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p12939195912508">operateCluster</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row82138711593"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p2909182110497">Hibernating a cluster (V3)</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1462714816114">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p20939105925019">hibernateCluster</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row2213779595"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p6909122124915">Waking up a cluster (V3)</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p16271648711">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1693995916508">awakeCluster</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row18491564913"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p11909152124916">Changing the specifications of a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1062714481712">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p16939205918504">resizeCluster</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row14159124616588"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p8909122117491">Modifying configurations of a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1162245314111">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1393995915502">updateConfiguration</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row108501254498"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p16909112184915">Creating a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p380202410469">Node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p194012597503">createNodePool</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1085013554914"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p15909102144912">Updating a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1780212413468">Node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p49407593507">updateNodePool</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row0114164016599"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p119091621124910">Deleting a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p177971572218">Node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p129404598501">claimNodePool</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row785017564910"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p3909162104914">Migrating a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p9798127421">Node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p15940125912508">migrateNodepool</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row2965135415912"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1790902112496">Modifying node pool configurations</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p13334131994612">Node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p179399594508">updateConfiguration</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row158507514494"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p13909112112490">Creating a node</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p13334219144613">Node</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p8939859205016">createNode</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row128501050492"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1390982110492">Deleting all the nodes from a specified cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1547962610210">Node</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p3940135919502">deleteAllHosts</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row285020515496"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p8909122120498">Deleting a single node</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p15479126929">Node</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p209404590505">deleteOneHost/claimOneHost</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row88504534919"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1690942194917">Updating the description of a node</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1930214311225">Node</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p7940959125011">updateNode</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row785120513499"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p15909142111496">Creating an add-on instance</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p9302931825">Add-on instance</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p6940659195015">createAddonInstance</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row58431159124518"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1390910213499">Deleting an add-on instance</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1990710595494">Add-on instance</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p694012594504">deleteAddonInstance</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row19844559124519"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1990932114918">Uploading a chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p7532155174914">Chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1940135915010">uploadChart</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row48441859124517"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1890972104914">Updating a chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p16532855174914">Chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p179401598508">updateChart</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row884417597459"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p190912119493">Deleting a chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p171112818311">Chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p209401159165020">deleteChart</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row118441759144514"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p4910122114496">Creating a release</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p164601332936">Release</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p12940115916506">createRelease</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row17844195912458"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p0910162118492">Upgrading a release</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1846010326310">Release</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p29401859185012">updateRelease</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row13844175934515"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p3910182164916">Deleting a release</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p135329556494">Release</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p18940125919509">deleteRelease</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row16450535103817"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1351243543918">Creating a ConfigMap</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p14476171817820">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p14794158123914">createConfigmaps</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row107342035123814"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p85121835133911">Creating a DaemonSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1831114214817">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p179458103919">createDaemonsets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row189915354383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p85121535103919">Creating a Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p126142345">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p77941781394">createDeployments</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row11247123618381"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p451213352396">Creating an event</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p152615214410">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p17794188173919">createEvents</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row13528183623818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p251210351397">Creating an Ingress</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p184187315412">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p97948863919">createIngresses</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row138443361388"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p35131235103910">Creating a job</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p9418731347">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p3794883397">createJobs</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row11196173713381"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1051363523919">Creating a namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p12304126246">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p147941873920">createNamespaces</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1547923713817"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p151316356394">Creating a node</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p4304366410">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p47958813910">createNodes</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1806137163818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1151310357393">Creating a PersistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p23046620416">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p16795128113912">createPersistentvolumeclaims</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row15143838133818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1451343543916">Creating a pod</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p19304664419">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1079513812399">createPods</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row14502038193811"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p5513935123919">Creating a replica set</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1330413612410">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p197955843913">createReplicasets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1980053883816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p75138353395">Creating a resource quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p193041261843">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p197958863913">createResourcequotas</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row11151173923816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p10513835193915">Creating a secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p198581310146">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p37958833915">createSecrets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1950073943815"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p4514835193915">Creating a service</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p18859121011410">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1679519813919">createServices</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row118871714163811"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p4514935153910">Creating a StatefulSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p48590101244">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p779514820397">createStatefulsets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row11704159385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p13514133513392">Creating a volume</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p138596101745">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p127951887398">createVolumes</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row6236161516385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p175141335173920">Deleting a ConfigMap</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1485914101947">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p117959818394">deleteConfigmaps</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row64003156383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p45141635123918">Deleting a DaemonSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1785911010413">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p97951280398">deleteDaemonsets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row8588151520383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p45149357396">Deleting a Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p16859191014418">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p47951889391">deleteDeployments</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row976691573816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p145141535183916">Deleting an event</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p5859131013417">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p127951786399">deleteEvents</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1093116152383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p351414356394">Deleting an Ingress</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1885913101146">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p117951580397">deleteIngresses</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row8952162389"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p185141935123913">Deleting a job</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p68590102411">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p77966815390">deleteJobs</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row627551663812"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1151417358393">Deleting a namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1985920103415">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1079648183911">deleteNamespaces</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row24561416203810"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p2051523520395">Deleting a node</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1859111018414">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1579614813394">deleteNodes</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row86221816163818"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p15151135103918">Deleting a Pod</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p166639124418">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1379668193911">deletePods</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1779151617386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1751583512391">Deleting a replica set</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1866361217412">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p20796686397">deleteReplicasets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1995721663817"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p14515143503916">Deleting a resource quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p566421215420">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p107966817394">deleteResourcequotas</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1412191773811"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p251510357397">Deleting a secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p266461212419">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p879638113910">deleteSecrets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row7664121717383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p451543520393">Deleting a service</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p0664151216418">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p13796108103917">deleteServices</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1079231717386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p4515113518397">Deleting a StatefulSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p466415122412">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p107964812397">deleteStatefulsets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row69931317173813"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p135151335143920">Deleting volumes</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p86648121546">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p127963811395">deleteVolumes</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row18139518193810"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1751673511397">Replacing a specified ConfigMap</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p176641312140">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p127961184391">updateConfigmaps</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row20277111853814"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p951693519394">Replacing a specified DaemonSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p126642125411">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p979614863919">updateDaemonsets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row54522018183815"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1051610358398">Replacing a specified Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p56647124411">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1679678103917">updateDeployments</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row360941815385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1551653515395">Replacing a specified event</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1166461210411">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1679616820395">updateEvents</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row16763111843812"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p10516133517390">Replacing a specified ingress</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p17664151210410">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1679648203910">updateIngresses</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1992131833810"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p851683510393">Replacing a specified job</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p9820181413410">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p1379712820396">updateJobs</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1892121915386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p55161635173912">Replacing a specified namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1382017141543">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p2797188397">updateNamespaces</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row12598191387"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1851783510393">Replacing a specified node</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p982018146411">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p10797184398">updateNodes</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row245716197383"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p135174357398">Replacing a specified PersistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p158205149420">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p179748163912">updatePersistentvolumeclaims</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1464391963816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p205179354391">Replacing a specified pod</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p10821141419419">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p5797118153916">updatePods</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row2840101919381"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p451710355392">Replacing a specified replica set</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p88215148413">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p57978893918">updateReplicasets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row644102018385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1751793513395">Replacing a specified resource quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1882118141541">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p57978819395">updateResourcequotas</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1324482019385"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1151716357397">Replacing a specified secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p18214144415">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p77972820393">updateSecrets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1244119202386"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p19517183553910">Replacing a specified service</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p11821171414418">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p167976817394">updateServices</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row564613201384"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p2051713515397">Replacing a specified StatefulSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p082117144418">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p107973820392">updateStatefulsets</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row0883172013813"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p851813523918">Replacing the specified status</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1182110141544">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p9797128143918">updateStatus</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row10923218388"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p8518163593919">Uploading a chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p1582181415417">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p279716816396">uploadChart</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row16310621113819"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p165182350390">Updating a component template</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p83327201445">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p97972853914">updateChart</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row1540921183816"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1751833516394">Deleting a chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p733262011411">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p879712816397">deleteChart</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row912313616599"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1851853518391">Creating a template application</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p153321220948">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p77971980392">createRelease</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row161231136185917"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p15518163523911">Updating a template application</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p733210201411">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p07971889398">updateRelease</p>
+</td>
+</tr>
+<tr id="cce_10_0025__row4919512193916"><td class="cellrowborder" valign="top" width="28.37%" headers="mcps1.4.1.2.4.1.1 "><p id="cce_10_0025__p1051813520394">Deleting a template application</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.230000000000004%" headers="mcps1.4.1.2.4.1.2 "><p id="cce_10_0025__p533222017416">Kubernetes resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="46.400000000000006%" headers="mcps1.4.1.2.4.1.3 "><p id="cce_10_0025__p17919131216393">deleteRelease</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0024.html">Cloud Trace Service (CTS)</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0026.html b/docs/cce/umn/cce_10_0026.html
new file mode 100644
index 00000000..cbb20eaf
--- /dev/null
+++ b/docs/cce/umn/cce_10_0026.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0026"></a><a name="cce_10_0026"></a>
+
+<h1 class="topictitle1">Querying CTS Logs</h1>
+<div id="body1525226397666"><div class="section" id="cce_10_0026__section19908104613460"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0026__p1349415403233">After you enable CTS, the system starts recording operations on CCE resources. Operation records of the last 7 days can be viewed on the CTS management console.</p>
+</div>
+<div class="section" id="cce_10_0026__section208814582456"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0026__ol968681862911"><li id="cce_10_0026__li18356228445"><span>Log in to the management console.</span></li><li id="cce_10_0026__li14905725134512"><span>Click <span><img id="cce_10_0026__image1180502423211" src="en-us_image_0000001244141141.gif"></span> in the upper left corner and select a region.</span></li><li id="cce_10_0026__li56856187296"><span>Choose <strong id="cce_10_0026__b161841334316020">Service List</strong> from the main menu. Choose <strong id="cce_10_0026__b14174101155814">Management &amp; Deployment</strong> &gt; <strong id="cce_10_0026__b1917414113585">Cloud Trace Service</strong>.</span></li><li id="cce_10_0026__li6685018122920"><span>In the navigation pane of the CTS console, choose <strong id="cce_10_0026__b091641316584">Cloud Trace Service</strong> &gt; <strong id="cce_10_0026__b6917813165811">Trace List</strong>.</span></li><li id="cce_10_0026__li0686618152911"><span>On the <strong id="cce_10_0026__b156310494616044">Trace List</strong> page, query operation records based on the search criteria. Currently, the trace list supports trace query based on the combination of the following search criteria:</span><p><ul id="cce_10_0026__ul2686318142919"><li id="cce_10_0026__li9685018132914"><strong id="cce_10_0026__b147767585916113">Trace Source</strong>, <strong id="cce_10_0026__b33843206916113">Resource Type</strong>, and <strong id="cce_10_0026__b104136949616113">Search By</strong><p id="cce_10_0026__p068517181297">Select the search criteria from the drop-down lists. Select <strong id="cce_10_0026__b987393825817">CCE</strong> from the <strong id="cce_10_0026__b1287312387583">Trace Source</strong> drop-down list.</p>
+<p id="cce_10_0026__p26851618102915">If you select <strong id="cce_10_0026__b23175131216221">Trace name</strong> from the <strong id="cce_10_0026__b172899127516221">Search By</strong> drop-down list, specify the trace name.</p>
+<p id="cce_10_0026__p7685191818293">If you select <strong id="cce_10_0026__b33083335616231">Resource ID</strong> from the <strong id="cce_10_0026__b153919820216231">Search By</strong> drop-down list, select or enter a specific resource ID.</p>
+<p id="cce_10_0026__p166851718102917">If you select <strong id="cce_10_0026__b50135831116238">Resource name</strong> from the <strong id="cce_10_0026__b186507588316238">Search By</strong> drop-down list, select or enter a specific resource name.</p>
+</li><li id="cce_10_0026__li1968671815297"><strong id="cce_10_0026__b168444573616245">Operator</strong>: Select a specific operator (at user level rather than account level).</li><li id="cce_10_0026__li368641832910"><strong id="cce_10_0026__b113712261116258">Trace Status</strong>: Set this parameter to any of the following values: <strong id="cce_10_0026__b135890568716258">All trace statuses</strong>, <strong id="cce_10_0026__b192911413716258">normal</strong>, <strong id="cce_10_0026__b59570413316258">warning</strong>, and <strong id="cce_10_0026__b169117565716258">incident</strong>.</li><li id="cce_10_0026__li12686118112916">Time range: You can query traces generated during any time range in the last seven days.</li></ul>
+</p></li><li id="cce_10_0026__li01301836122914"><span>Click <span><img id="cce_10_0026__image07291172331" src="en-us_image_0000001199341250.png"></span> on the left of a trace to expand its details, as shown below.</span><p><div class="fignone" id="cce_10_0026__fig1324117817394"><span class="figcap"><b>Figure 1 </b>Expanding trace details</span><br><span><img id="cce_10_0026__image19242788396" src="en-us_image_0000001243981141.png"></span></div>
+</p></li><li id="cce_10_0026__li186863182294"><span>Click <strong id="cce_10_0026__b25871212163720">View Trace</strong> in the <strong id="cce_10_0026__b1597141217374">Operation</strong> column. The trace details are displayed.</span><p><div class="fignone" id="cce_10_0026__fig365411360512"><span class="figcap"><b>Figure 2 </b>Viewing event details</span><br><span><img id="cce_10_0026__image21436386418" src="en-us_image_0000001244141139.png"></span></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0024.html">Cloud Trace Service (CTS)</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0028.html b/docs/cce/umn/cce_10_0028.html
new file mode 100644
index 00000000..52c3ac5f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0028.html
@@ -0,0 +1,39 @@
+<a name="cce_10_0028"></a><a name="cce_10_0028"></a>
+
+<h1 class="topictitle1">Creating a CCE Cluster</h1>
+<div id="body1505899032898"><p id="cce_10_0028__p126541913151116">On the CCE console, you can easily create Kubernetes clusters. Kubernetes can manage container clusters at scale. A cluster manages a group of node resources.</p>
+<p id="cce_10_0028__p162026117205">In CCE, you can create a CCE cluster to manage VMs. By using high-performance network models, hybrid clusters provide a multi-scenario, secure, and stable runtime environment for containers.</p>
+<div class="section" id="cce_10_0028__section1386743114294"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0028__ul686414167496"><li id="cce_10_0028__li190817135320">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0028__li124606217339">You can create a maximum of 50 clusters in a single region.</li><li id="cce_10_0028__li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_10_0028__ul1386431634910"><li id="cce_10_0028__li6864131614492">Cluster type</li><li id="cce_10_0028__li359558115311">Number of master nodes in the cluster</li><li id="cce_10_0028__li452948112016">AZ of a master node</li><li id="cce_10_0028__li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, and kube-proxy (forwarding) settings</li><li id="cce_10_0028__li1686451618494">Network model. For example, change <strong id="cce_10_0028__b16979154810810">Tunnel network</strong> to <strong id="cce_10_0028__b1297916485820">VPC network</strong>.</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0028__section176228482126"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0028__ol1233331493511"><li id="cce_10_0028__li833491416359"><span>Log in to the CCE console. Choose <strong id="cce_10_0028__b1563535515135">Clusters</strong>. On the displayed page, click <strong id="cce_10_0028__b1861116237141">Create</strong> next to <strong id="cce_10_0028__b1563618552135">CCE cluster</strong>.</span></li><li id="cce_10_0028__li1569162220359"><span>Set cluster parameters.</span><p><div class="p" id="cce_10_0028__p5653205823718"><strong id="cce_10_0028__b14641318112618">Basic Settings</strong><ul id="cce_10_0028__ul5395195853710"><li id="cce_10_0028__li1739455810379"><strong id="cce_10_0028__b15847145841720">Cluster Name</strong></li><li id="cce_10_0028__li163957587379"><strong id="cce_10_0028__b89145218188">Cluster Version</strong>: Select the Kubernetes version used by the cluster.</li><li id="cce_10_0028__li5395358163711"><strong id="cce_10_0028__b01681447141713">Cluster Scale</strong>: maximum number of nodes that can be managed by the cluster. </li><li id="cce_10_0028__li467617271013"><strong id="cce_10_0028__b1538713714413">HA</strong>: distribution mode of master nodes. By default, master nodes are randomly distributed in different AZs to improve DR capabilities.<div class="p" id="cce_10_0028__p15811036101">You can also expand advanced settings and customize the master node distribution mode. The following two modes are supported:<ul id="cce_10_0028__ul729432918812"><li id="cce_10_0028__li1529418293815"><strong id="cce_10_0028__b939210361624">Random</strong>: Master nodes are created in different AZs for DR.</li><li id="cce_10_0028__li103958393117"><strong id="cce_10_0028__b5810610331">Custom</strong>: You can determine the location of each master node.<ul id="cce_10_0028__ul1220719413117"><li id="cce_10_0028__li62941529381"><strong id="cce_10_0028__b292085817517">Host</strong>: Master nodes are created on different hosts in the same AZ.</li><li id="cce_10_0028__li32946293815"><strong id="cce_10_0028__b01923920215">Custom</strong>: You can determine the location of each master node.</li></ul>
+</li></ul>
+</div>
+</li></ul>
+</div>
+<p id="cce_10_0028__p1816113443815"><strong id="cce_10_0028__b156891146112919">Network Settings</strong></p>
+<p id="cce_10_0028__p850019415499">The cluster network settings cover nodes, containers, and Services. For details about the cluster networking and container network models, see <a href="cce_10_0010.html">Overview</a>.</p>
+<ul id="cce_10_0028__ul1923917171387"><li id="cce_10_0028__li12239017103811"><strong id="cce_10_0028__b121761901306">Network Model</strong>: CCE clusters support <strong id="cce_10_0028__b61631519134014">VPC network</strong> and <strong id="cce_10_0028__b1332162318404">tunnel network</strong> models. For details, see <a href="cce_10_0283.html">VPC Network</a> and <a href="cce_10_0282.html">Container Tunnel Network</a>.</li><li id="cce_10_0028__li551715378214"><strong id="cce_10_0028__b112892113017">VPC</strong>: Select the VPC to which the cluster belongs. If no VPC is available, click <strong id="cce_10_0028__b4281322305">Create VPC</strong> to create one. The VPC cannot be changed after creation. </li><li id="cce_10_0028__li270184618382"><strong id="cce_10_0028__b7755955308">Master Node Subnet</strong>: Select the subnet where the master node is deployed. If no subnet is available, click <strong id="cce_10_0028__b15755858308">Create Subnet</strong> to create one. The subnet cannot be changed after creation.</li><li id="cce_10_0028__li2079235711388"><strong id="cce_10_0028__b188791031570">Container CIDR Block</strong>: Set the CIDR block used by containers. </li><li id="cce_10_0028__li411411954713"><strong id="cce_10_0028__b1371915515249">Service CIDR Block</strong>: CIDR block for Services used by containers in the same cluster to access each other. The value determines the maximum number of Services you can create. The value cannot be changed after creation.</li></ul>
+<p id="cce_10_0028__p3866175612467"><strong id="cce_10_0028__b0441658114611">Advanced Settings</strong></p>
+<ul id="cce_10_0028__ul89571727475"><li id="cce_10_0028__li1895772174715"><strong id="cce_10_0028__b18677104202412">Request Forwarding</strong>: The IPVS and iptables modes are supported. For details, see <a href="cce_10_0349.html">Comparing iptables and IPVS</a>.</li><li id="cce_10_0028__li1736133045414"><strong id="cce_10_0028__b187484602716">CPU Manager</strong>: For details, see <a href="cce_10_0351.html">Binding CPU Cores</a>.</li><li id="cce_10_0028__li1045281605310"><strong id="cce_10_0028__b6538204304212">Certificate Authentication</strong>:<ul id="cce_10_0028__ul8453616205317"><li id="cce_10_0028__li104539168533"><strong id="cce_10_0028__b220412510445">Default</strong>: The X509-based authentication mode is enabled by default. X509 is a commonly used certificate format.</li><li id="cce_10_0028__li8453141615535"><strong id="cce_10_0028__b16300163832117">Custom:</strong> The cluster can identify users based on the header in the request body for authentication. <p id="cce_10_0028__p184531416105312">You need to upload your <strong id="cce_10_0028__b845836182415">CA root certificate</strong>, <strong id="cce_10_0028__b164583622416">client certificate</strong>, and <strong id="cce_10_0028__b194581169243">private key</strong> of the client certificate.</p>
+<div class="caution" id="cce_10_0028__note13453101613535"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_10_0028__ul34531816155312"><li id="cce_10_0028__li114531516195313">Upload a file <strong id="cce_10_0028__b199411240122414">smaller than 1 MB</strong>. The CA certificate and client certificate can be in <strong id="cce_10_0028__b1195014407247">.crt</strong> or <strong id="cce_10_0028__b15950140182418">.cer</strong> format. The private key of the client certificate can only be uploaded <strong id="cce_10_0028__b199501540102417">unencrypted</strong>.</li><li id="cce_10_0028__li18453516185319">The validity period of the client certificate must be longer than five years.</li><li id="cce_10_0028__li104531916125318">The uploaded CA certificate is used for both the authentication proxy and the kube-apiserver aggregation layer configuration. <strong id="cce_10_0028__b19737142016505">If the certificate is invalid, the cluster cannot be created</strong>.</li><li id="cce_10_0028__li6694716185918">Starting from v1.25, Kubernetes no longer supports certificate authentication generated using the SHA1WithRSA or ECDSAWithSHA1 algorithm. You are advised to use the SHA256 algorithm.</li></ul>
+</div></div>
+</li></ul>
+</li><li id="cce_10_0028__li8833185203815"><strong id="cce_10_0028__b891711174919">Description</strong>: The value can contain a maximum of 200 English characters.</li></ul>
+</p></li><li id="cce_10_0028__li9641724418"><span>Click <strong id="cce_10_0028__cce_10_0298_b05029251885">Next: Add-on Configuration</strong>.</span><p><p id="cce_10_0028__cce_10_0298_p292215338261">By default, <a href="cce_10_0129.html">cordens</a> and <a href="cce_10_0066.html">everest</a> add-ons are installed.</p>
+<div class="p" id="cce_10_0028__cce_10_0298_p1042341817336"><strong id="cce_10_0028__cce_10_0298_b54341755383">Service log</strong><ul id="cce_10_0028__cce_10_0298_ul1532032363417"><li id="cce_10_0028__cce_10_0298_li078322903611"><strong id="cce_10_0028__cce_10_0298_b111439411113">ICAgent</strong>:<p id="cce_10_0028__cce_10_0298_p5238153093619">A log collector provided by Application Operations Management (AOM), reporting logs to AOM and Log Tank Service (LTS) according to the log collection rules you configured.</p>
+<p id="cce_10_0028__cce_10_0298_p161195033716">You can collect stdout logs as required.</p>
+</li></ul>
+</div>
+</p></li><li id="cce_10_0028__li72711456163617"><span>After the parameters are specified, click <span class="uicontrol" id="cce_10_0028__uicontrol36131794526"><b>Next: Confirm</b></span>. The cluster resource list is displayed. Confirm the information and click <span class="uicontrol" id="cce_10_0028__uicontrol1752232819449"><b>Submit</b></span>.</span><p><p id="cce_10_0028__p1020211168316">It takes about 6 to 10 minutes to create a cluster. You can click <strong id="cce_10_0028__b1712383711547">Back to Cluster List</strong> to perform other operations on the cluster or click <strong id="cce_10_0028__b3123193725416">Go to Cluster Events</strong> to view the cluster details.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0028__section125261255139"><h4 class="sectiontitle">Related Operations</h4><ul id="cce_10_0028__ul912451119262"><li id="cce_10_0028__li1030825181117">After creating a cluster, you can use the Kubernetes command line (CLI) tool kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</li><li id="cce_10_0028__li312413114263">Add nodes to the cluster. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0030.html b/docs/cce/umn/cce_10_0030.html
new file mode 100644
index 00000000..8478731b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0030.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0030"></a><a name="cce_10_0030"></a>
+
+<h1 class="topictitle1">Namespaces</h1>
+<div id="body1505966783221"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0278.html">Creating a Namespace</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0285.html">Managing Namespaces</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0287.html">Setting a Resource Quota</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0031.html b/docs/cce/umn/cce_10_0031.html
new file mode 100644
index 00000000..a61780a4
--- /dev/null
+++ b/docs/cce/umn/cce_10_0031.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0031"></a><a name="cce_10_0031"></a>
+
+<h1 class="topictitle1">Managing a Cluster</h1>
+<div id="body1506157580881"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0213.html">Managing Cluster Components</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0212.html">Deleting a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0214.html">Hibernating and Waking Up a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0602.html">Cluster Overload Control</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0035.html b/docs/cce/umn/cce_10_0035.html
new file mode 100644
index 00000000..1742be9b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0035.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0035"></a><a name="cce_10_0035"></a>
+
+<h1 class="topictitle1">Node Pools</h1>
+<div id="body1564122277019"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0081.html">Node Pool Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0012.html">Creating a Node Pool</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0222.html">Managing a Node Pool</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0036.html b/docs/cce/umn/cce_10_0036.html
new file mode 100644
index 00000000..6c37df45
--- /dev/null
+++ b/docs/cce/umn/cce_10_0036.html
@@ -0,0 +1,17 @@
+<a name="cce_10_0036"></a><a name="cce_10_0036"></a>
+
+<h1 class="topictitle1">Stopping a Node</h1>
+<div id="body1564130562761"><div class="section" id="cce_10_0036__section127213017388"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0036__p866311509249">After a node in the cluster is stopped, services on the node are also stopped. Before stopping a node, ensure that discontinuity of the services on the node will not result in adverse impacts.</p>
+</div>
+<div class="section" id="cce_10_0036__section1489437103610"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0036__ul0917755162415"><li id="cce_10_0036__li1891719552246">Deleting a node will lead to pod migration, which may affect services. Therefore, delete nodes during off-peak hours.</li><li id="cce_10_0036__li791875552416">Unexpected risks may occur during node deletion. Back up related data in advance.</li><li id="cce_10_0036__li15918105582417">While the node is being deleted, the backend will set the node to the unschedulable state.</li><li id="cce_10_0036__li12918145520241">Only worker nodes can be stopped.</li></ul>
+</div>
+<div class="section" id="cce_10_0036__section14341135612442"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0036__ol5687174923613"><li id="cce_10_0036__li133915311359"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0036__li6687049203616"><span>In the navigation pane, choose <strong id="cce_10_0036__b06131727172613">Nodes</strong>. In the right pane, click the name of the node to be stopped.</span></li><li id="cce_10_0036__li117301253183717"><span>In the upper right corner of the ECS details page, click <strong id="cce_10_0036__b1247467161417">Stop</strong> in the instance status area. In the displayed dialog box, click <strong id="cce_10_0036__b12474177131414">Yes</strong>.</span><p><div class="fignone" id="cce_10_0036__fig19269101385311"><span class="figcap"><b>Figure 1 </b>ECS details page</span><br><span><img id="cce_10_0036__image6847636155" src="en-us_image_0000001244261119.png"></span></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0045.html b/docs/cce/umn/cce_10_0045.html
new file mode 100644
index 00000000..6ae35260
--- /dev/null
+++ b/docs/cce/umn/cce_10_0045.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0045"></a><a name="cce_10_0045"></a>
+
+<h1 class="topictitle1">Configuration Center</h1>
+<div id="body1507606688948"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0152.html">Creating a ConfigMap</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0015.html">Using a ConfigMap</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0153.html">Creating a Secret</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0016.html">Using a Secret</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0388.html">Cluster Secrets</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0046.html b/docs/cce/umn/cce_10_0046.html
new file mode 100644
index 00000000..72d826dd
--- /dev/null
+++ b/docs/cce/umn/cce_10_0046.html
@@ -0,0 +1,35 @@
+<a name="cce_10_0046"></a><a name="cce_10_0046"></a>
+
+<h1 class="topictitle1">Workloads</h1>
+<div id="body1508729244098"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0006.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0047.html">Creating a Deployment</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0048.html">Creating a StatefulSet</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0216.html">Creating a DaemonSet</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0150.html">Creating a Job</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0151.html">Creating a Cron Job</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0007.html">Managing Workloads and Jobs</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0130.html">Configuring a Container</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0345.html">GPU Scheduling</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0551.html">CPU Core Binding</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0386.html">Pod Labels and Annotations</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0423.html">Volcano Scheduling</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0288.html">Security Group Policies</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0047.html b/docs/cce/umn/cce_10_0047.html
new file mode 100644
index 00000000..1afbf991
--- /dev/null
+++ b/docs/cce/umn/cce_10_0047.html
@@ -0,0 +1,178 @@
+<a name="cce_10_0047"></a><a name="cce_10_0047"></a>
+
+<h1 class="topictitle1">Creating a Deployment</h1>
+<div id="body1505966783091"><div class="section" id="cce_10_0047__section686591217411"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0047__p1695318124112">Deployments are workloads (for example, Nginx) that do not store any data or status. You can create Deployments on the CCE console or by running kubectl commands.</p>
+</div>
+<div class="section" id="cce_10_0047__section7271245481"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0047__ul12960152618147"><li id="cce_10_0047__li596019263145">Before creating a containerized workload, you must have an available cluster. For details on how to create a cluster, see <a href="cce_10_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_10_0047__li19160540131415">To enable public access to a workload, ensure that an EIP or load balancer has been bound to at least one node in the cluster.<div class="note" id="cce_10_0047__note991371915511"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0047__p7914191915520">If a pod has multiple containers, ensure that the ports used by the containers do not conflict with each other. Otherwise, creating the Deployment will fail.</p>
+</div></div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0047__section1996635141916"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0047__ol2012902601117"><li id="cce_10_0047__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0047__li2075471341"><span>Click the cluster name to access the cluster details page, choose <strong id="cce_10_0047__b177043716583">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0047__b3710187125815">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0047__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0047__p1259466151612"><strong id="cce_10_0047__b1493704971917">Basic Info</strong><ul id="cce_10_0047__ul6954101318184"><li id="cce_10_0047__li11514131617185"><strong id="cce_10_0047__b17688966208">Workload Type</strong>: Select <strong id="cce_10_0047__b19319191110206">Deployment</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0047__li129541213101814"><strong id="cce_10_0047__b112962517203">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0047__li179541813111814"><strong id="cce_10_0047__b15588183732013">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0047__b2393134262015">default</strong>. You can also click <span class="uicontrol" id="cce_10_0047__uicontrol342862818214"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0047__li18955181315189"><strong id="cce_10_0047__b1997313316218">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0047__li11753142112539"><strong id="cce_10_0047__b1236151911112">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0047__li1295571341818"><strong id="cce_10_0047__b197683014275">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
+</div>
+<div class="p" id="cce_10_0047__p206571518181616"><strong id="cce_10_0047__b062716554277">Container Settings</strong><ul id="cce_10_0047__ul42071022103320"><li id="cce_10_0047__li8770480458">Container Information<div class="p" id="cce_10_0047__p10493941854"><a name="cce_10_0047__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0047__uicontrol2024214181967"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0047__ul10714183717111"><li id="cce_10_0047__li1471463741113"><strong id="cce_10_0047__b996714571008">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0047__li127141737191112"><strong id="cce_10_0047__b854817461802">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0047__li9714123711114"><strong id="cce_10_0047__b1428584819018">Health Check</strong>: See <a href="cce_10_0112.html">Setting Health Check for a Container</a>.</li><li id="cce_10_0047__li5714123721119"><strong id="cce_10_0047__b547425013014">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0047__li571418378113"><strong id="cce_10_0047__b187511352406">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0047__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0047__p17126153413513">If the workload contains more than one pod, EVS volumes cannot be mounted.</p>
+</div></div>
+</li><li id="cce_10_0047__li19714437161112"><strong id="cce_10_0047__b12700171213567">Security Context</strong>: Set container permissions to protect the system and other containers from being affected. Enter the user ID to set container permissions and prevent systems and other containers from being affected.</li><li id="cce_10_0047__li1371419375118"><strong id="cce_10_0047__b162375813113">Logging</strong>: See <a href="cce_10_0018.html">Using ICAgent to Collect Container Logs</a>.</li></ul>
+</div>
+</li><li id="cce_10_0047__li1487514116369"><strong id="cce_10_0047__b8718165863312">Image Access Credential</strong>: Select the credential used for accessing the image repository. The default value is <strong id="cce_10_0047__b287711523414">default-secret</strong>. You can use default-secret to access images in SWR. For details about <strong id="cce_10_0047__b172271623193111">default-secret</strong>, see <a href="cce_10_0388.html#cce_10_0388__section11760122012591">default-secret</a>.</li><li id="cce_10_0047__li11649141318194"><strong id="cce_10_0047__b046471520443">GPU graphics card</strong>: <strong id="cce_10_0047__b1716318473332">All</strong> is selected by default. The workload instance will be scheduled to the node with the specified GPU graphics card type.</li></ul>
+</div>
+<p id="cce_10_0047__p1447162741615"><strong id="cce_10_0047__b14466141103517">Service Settings</strong></p>
+<p id="cce_10_0047__p102354303348">A Service is used for pod access. With a fixed IP address, a Service forwards access traffic to pods and performs load balancing for these pods.</p>
+<p id="cce_10_0047__p13343123113612">You can also create a Service after creating a workload. For details about the Service, see <a href="cce_10_0249.html">Service Overview</a>.</p>
+<div class="p" id="cce_10_0047__p310913521612"><strong id="cce_10_0047__b7204102420408">Advanced Settings</strong><ul id="cce_10_0047__ul142811417"><li id="cce_10_0047__li0421513417"><strong id="cce_10_0047__b5206740611">Upgrade</strong>: See <a href="cce_10_0397.html">Configuring the Workload Upgrade Policy</a>.</li><li id="cce_10_0047__li5292111713411"><strong id="cce_10_0047__b43442421718">Scheduling</strong>: See <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li><li id="cce_10_0047__li179714209414"><strong id="cce_10_0047__b4394114514114">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0047__li13285132913414"><strong id="cce_10_0047__b11222531193614">Toleration</strong>: Using both taints and tolerations allows (not forcibly) the pod to be scheduled to a node with the matching taints, and controls the pod eviction policies after the node where the pod is located is tainted. For details, see <a href="cce_10_0352.html#cce_10_0352__section2047442210417">Tolerations</a>.</li><li id="cce_10_0047__li1917237124111"><strong id="cce_10_0047__b204941987211">DNS</strong>: See <a href="cce_10_0365.html">DNS Configuration</a>.</li></ul>
+</div>
+</p></li><li id="cce_10_0047__li01417411620"><span>Click <strong id="cce_10_0047__b654295124112">Create Workload</strong> in the lower right corner.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0047__section155246177178"><a name="cce_10_0047__section155246177178"></a><a name="section155246177178"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_10_0047__p13147194016468">The following procedure uses Nginx as an example to describe how to <span class="keyword" id="cce_10_0047__keyword1613307257114737">create a workload using kubectl</span>.</p>
+<ol id="cce_10_0047__ol1424992320616"><li id="cce_10_0047__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0047__li1020013819415"><span>Create and edit the <strong id="cce_10_0047__b27748113122">nginx-deployment.yaml</strong> file. <strong id="cce_10_0047__b630359246113719">nginx-deployment.yaml</strong> is an example file name. You can rename it as required.</span><p><p id="cce_10_0047__p7581950184318"><strong id="cce_10_0047__b111191541172515">vi nginx-deployment.yaml</strong></p>
+<p id="cce_10_0047__p5292517598">The following is an example YAML file. For more information about Deployments, see <a href="https://kubernetes.io/docs/concepts/workloads/controllers/deployment/" target="_blank" rel="noopener noreferrer">Kubernetes documentation</a>.</p>
+<pre class="screen" id="cce_10_0047__screen47761831782">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  strategy:
+    type: RollingUpdate
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: nginx    # If you use an image in <strong id="cce_10_0047__b1570051615268">My Images</strong>, obtain the image path from SWR.
+        imagePullPolicy: Always
+        name: nginx
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0047__p2848155215917">For details about these parameters, see <a href="#cce_10_0047__table132326831016">Table 1</a>.</p>
+
+<div class="tablenoborder"><a name="cce_10_0047__table132326831016"></a><a name="table132326831016"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0047__table132326831016" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Deployment YAML parameters</caption><thead align="left"><tr id="cce_10_0047__row523318817104"><th align="left" class="cellrowborder" valign="top" width="37%" id="mcps1.3.4.3.2.2.5.2.4.1.1"><p id="cce_10_0047__p162344817100">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47%" id="mcps1.3.4.3.2.2.5.2.4.1.2"><p id="cce_10_0047__p16234138161012">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16%" id="mcps1.3.4.3.2.2.5.2.4.1.3"><p id="cce_10_0047__p102881159151016">Mandatory/Optional</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0047__row112346841018"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p182345811107">apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p2023458141014">API version.</p>
+<div class="note" id="cce_10_0047__note143305521379"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0047__p1819911527102">Set this parameter based on the cluster version.</p>
+<ul id="cce_10_0047__ul1823483313109"><li id="cce_10_0047__li20235163319106">For clusters of v1.17 or later, the apiVersion format of Deployments is <strong id="cce_10_0047__b1946544592610">apps/v1</strong>.</li><li id="cce_10_0047__li19235203331014">For clusters of v1.15 or earlier, the apiVersion format of Deployments is <strong id="cce_10_0047__b73401590270">extensions/v1beta1</strong>. </li></ul>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p6234158101019">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row202347814100"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p172342815109">kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p142346871019">Type of a created object.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p2023416841019">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row1459172931315"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p1659232941311">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p165932298137">Metadata of a resource object.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p16593112941310">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row33638545115"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p036575412114">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p1036510541116">Name of the Deployment.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p1936585415110">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row52341382109"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p2234188171017">Spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p1023414811012">Detailed description of the Deployment.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p92341186101">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row490820516139"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p99089513134">replicas</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p1890815551313">Number of pods.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p1390895141312">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row29372135139"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p1493821315132">selector</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p10938171341312">Determines container pods that can be managed by the Deployment.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p5939181320135">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row393931310133"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p8731714131517">strategy</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p24327545152918">Upgrade mode. Possible values:</p>
+<ul id="cce_10_0047__ul2391401152910"><li id="cce_10_0047__li64771531152920">RollingUpdate</li><li id="cce_10_0047__li22390446152910">ReplaceUpdate</li></ul>
+<p id="cce_10_0047__p43301055163212">By default, rolling update is used.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p169393137138">Optional</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row793916134135"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p14939131391317">template</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p993921331312">Detailed description of a created container pod.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p1193919138132">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row69398139139"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p132126496218">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p10939121391317">Metadata.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p4939161321314">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row1479918372441"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p67994378445">labels</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p1680012377440"><strong id="cce_10_0047__b842352706115258">metadata.labels</strong>: Container labels.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p180033714449">Optional</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row6939151316138"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p793911361316">spec:</p>
+<p id="cce_10_0047__p17330235102212">containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><ul id="cce_10_0047__ul48282256265"><li id="cce_10_0047__li15828142513268"><strong id="cce_10_0047__b021334265015">image</strong> (mandatory): Name of a container image.</li><li id="cce_10_0047__li37363299261"><strong id="cce_10_0047__b17212125217501">imagePullPolicy </strong>(optional): Policy for obtaining an image. The options include <strong id="cce_10_0047__b47004369113256">Always</strong> (attempting to download images each time), <strong id="cce_10_0047__b1385119962113256">Never</strong> (only using local images), and <strong id="cce_10_0047__b1264351417113256">IfNotPresent</strong> (using local images if they are available; downloading images if local images are unavailable). The default value is <strong id="cce_10_0047__b184934519113256">Always</strong>.</li><li id="cce_10_0047__li11743144117263"><strong id="cce_10_0047__b658160590113251">name </strong>(mandatory): Container name.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p1193991381318">Mandatory</p>
+</td>
+</tr>
+<tr id="cce_10_0047__row18939013161315"><td class="cellrowborder" valign="top" width="37%" headers="mcps1.3.4.3.2.2.5.2.4.1.1 "><p id="cce_10_0047__p159394135139">imagePullSecrets</p>
+</td>
+<td class="cellrowborder" valign="top" width="47%" headers="mcps1.3.4.3.2.2.5.2.4.1.2 "><p id="cce_10_0047__p49391813131318">Name of the secret used during image pulling. If a private image is used, this parameter is mandatory.</p>
+<ul id="cce_10_0047__ul125550172614"><li id="cce_10_0047__li1117672142612">To pull an image from the Software Repository for Container (SWR), set this parameter to <strong id="cce_10_0047__b1963523125916">default-secret</strong>.</li><li id="cce_10_0047__li25520122618">To pull an image from a third-party image repository, set this parameter to the name of the created secret.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.3.2.2.5.2.4.1.3 "><p id="cce_10_0047__p1193981391318">Optional</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0047__li12194551184412"><span>Create a Deployment.</span><p><p id="cce_10_0047__p175719718459"><strong id="cce_10_0047__b692820516453">kubectl create -f nginx-deployment.yaml</strong></p>
+<p id="cce_10_0047__p128631411141717">If the following information is displayed, the Deployment is being created.</p>
+<pre class="screen" id="cce_10_0047__screen1028913107179">deployment "nginx" created</pre>
+</p></li><li id="cce_10_0047__li166931817162412"><span>Query the Deployment status.</span><p><p id="cce_10_0047__p1127482013249"><strong id="cce_10_0047__b8874010124511">kubectl get deployment</strong></p>
+<p id="cce_10_0047__p1046019326248">If the following information is displayed, the Deployment is running.</p>
+<pre class="screen" id="cce_10_0047__screen1353922112020">NAME           READY     UP-TO-DATE   AVAILABLE   AGE 
+nginx          1/1       1            1           4m5s</pre>
+<p id="cce_10_0047__p194511348101611"><strong id="cce_10_0047__b1018145319612">Parameter description</strong></p>
+<ul id="cce_10_0047__ul1964317513175"><li id="cce_10_0047__li1264312531719"><strong id="cce_10_0047__b1416157201920">NAME</strong>: Name of the application running in the pod.</li><li id="cce_10_0047__li864317513171"><strong id="cce_10_0047__b32831737266">READY</strong>: indicates the number of available workloads. The value is displayed as "the number of available pods/the number of expected pods".</li><li id="cce_10_0047__li16643955172"><strong id="cce_10_0047__b1478111557298">UP-TO-DATE</strong>: indicates the number of replicas that have been updated.</li><li id="cce_10_0047__li18643558176"><strong id="cce_10_0047__b1754163211">AVAILABLE</strong>: indicates the number of available pods.</li><li id="cce_10_0047__li964310512175"><strong id="cce_10_0047__b12419135418249">AGE</strong>: period the Deployment keeps running</li></ul>
+</p></li><li id="cce_10_0047__li128617541093"><span>If the Deployment will be accessed through a ClusterIP or NodePort Service, add the corresponding Service. For details, see <a href="cce_10_0020.html">Networking</a>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0048.html b/docs/cce/umn/cce_10_0048.html
new file mode 100644
index 00000000..ebe858d0
--- /dev/null
+++ b/docs/cce/umn/cce_10_0048.html
@@ -0,0 +1,126 @@
+<a name="cce_10_0048"></a><a name="cce_10_0048"></a>
+
+<h1 class="topictitle1">Creating a StatefulSet</h1>
+<div id="body1505966783091"><div class="section" id="cce_10_0048__section530452474212"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0048__p475763119422">StatefulSets are a type of workloads whose data or status is stored while they are running. For example, MySQL is a StatefulSet because it needs to store new data.</p>
+<p id="cce_10_0048__p167381126153418">A container can be migrated between different hosts, but data is not stored on the hosts. To store StatefulSet data persistently, attach HA storage volumes provided by CCE to the container.</p>
+</div>
+<div class="section" id="cce_10_0048__section6329175411713"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0048__ul3611113041018"><li id="cce_10_0048__li28151714171212">When you delete or scale a StatefulSet, the system does not delete the storage volumes associated with the StatefulSet to ensure data security.</li><li id="cce_10_0048__li9611230141012">When you delete a StatefulSet, reduce the number of replicas to <strong id="cce_10_0048__b8390828123911">0</strong> before deleting the StatefulSet so that pods in the StatefulSet can be stopped in order.</li><li id="cce_10_0048__li611418311218">When you create a StatefulSet, a headless Service is required for pod access. For details, see <a href="cce_10_0398.html">Headless Service</a>.</li><li id="cce_10_0048__li093214329312">When a node is unavailable, pods become <strong id="cce_10_0048__b1314884816408">Unready</strong>. In this case, you need to manually delete the pods of the StatefulSet so that the pods can be migrated to a normal node.</li></ul>
+</div>
+<div class="section" id="cce_10_0048__section1734962819219"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0048__ul1685719423426"><li id="cce_10_0048__li612018144437">Before creating a workload, you must have an available cluster. For details on how to create a cluster, see <a href="cce_10_0028.html">Creating a CCE Cluster</a>.</li><li id="cce_10_0048__li19160540131415">To enable public access to a workload, ensure that an EIP or load balancer has been bound to at least one node in the cluster.<div class="note" id="cce_10_0048__note991371915511"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0048__p195248425512">If a pod has multiple containers, ensure that the ports used by the containers do not conflict with each other. Otherwise, creating the StatefulSet will fail.</p>
+</div></div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0048__section16385130102112"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0048__ol2012902601117"><li id="cce_10_0048__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0048__li2075471341"><span>Click the cluster name to access the cluster details page, choose <strong id="cce_10_0048__b12863171618585">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0048__b7869116135814">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0048__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0048__p1259466151612"><strong id="cce_10_0048__b64930521915">Basic Info</strong><ul id="cce_10_0048__ul6954101318184"><li id="cce_10_0048__li11514131617185"><strong id="cce_10_0048__b19311135410116">Workload Type</strong>: Select <strong id="cce_10_0048__b0311195410110">StatefulSet</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0048__li129541213101814"><strong id="cce_10_0048__b16758113322">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0048__li179541813111814"><strong id="cce_10_0048__b122601351320">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0048__b0261451528">default</strong>. You can also click <span class="uicontrol" id="cce_10_0048__uicontrol1319579216"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0048__li18955181315189"><strong id="cce_10_0048__b124441488216">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0048__li11753142112539"><strong id="cce_10_0048__b171946101820">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0048__li1295571341818"><strong id="cce_10_0048__b9718913120">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
+</div>
+<div class="p" id="cce_10_0048__p206571518181616"><strong id="cce_10_0048__b163231218124">Container Settings</strong><ul id="cce_10_0048__ul42071022103320"><li id="cce_10_0048__li8770480458">Container Information<div class="p" id="cce_10_0048__p10493941854"><a name="cce_10_0048__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0048__uicontrol75255211621"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0048__ul481018470119"><li id="cce_10_0048__li18101047191117"><strong id="cce_10_0048__b2751850468">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0048__li4810204715113"><strong id="cce_10_0048__b179585713463">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0048__li4810134791115"><strong id="cce_10_0048__b528315118462">Health Check</strong>: See <a href="cce_10_0112.html">Setting Health Check for a Container</a>.</li><li id="cce_10_0048__li1810447181110"><strong id="cce_10_0048__b14754135814516">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0048__li4810124731117"><strong id="cce_10_0048__b125710561453">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0048__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0048__ul26865762616"><li id="cce_10_0048__li4956180135815">StatefulSets support dynamically provisioned EVS volumes.<p id="cce_10_0048__p270761115810"><a name="cce_10_0048__li4956180135815"></a><a name="li4956180135815"></a>Dynamic mounting is achieved by using the <strong id="cce_10_0048__b35631133121417"><a href="https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#volume-claim-templates" target="_blank" rel="noopener noreferrer">volumeClaimTemplates</a></strong> field and depends on the dynamic creation capability of StorageClass. A StatefulSet associates each pod with a unique PVC using the <strong id="cce_10_0048__b1490093413557">volumeClaimTemplates</strong> field, and the PVCs are bound to their corresponding PVs. Therefore, after the pod is rescheduled, the original data can still be mounted thanks to the PVC.</p>
+</li><li id="cce_10_0048__li126861777269">After a workload is created, the storage that is dynamically mounted cannot be updated.</li></ul>
+</div></div>
+</li><li id="cce_10_0048__li1581013477116"><strong id="cce_10_0048__b268225419357">Security Context</strong>: Set container permissions to protect the system and other containers from being affected. Enter the user ID to set container permissions and prevent systems and other containers from being affected.</li><li id="cce_10_0048__li128105471119"><strong id="cce_10_0048__b1658535213455">Logging</strong>: See <a href="cce_10_0018.html">Using ICAgent to Collect Container Logs</a>.</li></ul>
+</div>
+</li><li id="cce_10_0048__li1487514116369"><strong id="cce_10_0048__b1882012683617">Image Access Credential</strong>: Select the credential used for accessing the image repository. The default value is <strong id="cce_10_0048__b20820156133617">default-secret</strong>. You can use default-secret to access images in SWR. For details about <strong id="cce_10_0048__b15273122174315">default-secret</strong>, see <a href="cce_10_0388.html#cce_10_0388__section11760122012591">default-secret</a>.</li><li id="cce_10_0048__li11649141318194"><strong id="cce_10_0048__b127873684415">GPU graphics card</strong>: <strong id="cce_10_0048__b19291416446">All</strong> is selected by default. The workload instance will be scheduled to the node with the specified GPU graphics card type.</li></ul>
+</div>
+<p id="cce_10_0048__p75731743299"><strong id="cce_10_0048__b104641840113614">Headless Service Parameters</strong></p>
+<p id="cce_10_0048__p757424310917">A headless Service is used to solve the problem of mutual access between pods in a StatefulSet. The headless Service provides a fixed access domain name for each pod. For details, see <a href="cce_10_0398.html">Headless Service</a>.</p>
+<p id="cce_10_0048__p1447162741615"><strong id="cce_10_0048__b1520711198318">Service Settings</strong></p>
+<p id="cce_10_0048__p102354303348">A Service is used for pod access. With a fixed IP address, a Service forwards access traffic to pods and performs load balancing for these pods.</p>
+<p id="cce_10_0048__p13343123113612">You can also create a Service after creating a workload. For details about the Service, see <a href="cce_10_0249.html">Service Overview</a>.</p>
+<div class="p" id="cce_10_0048__p310913521612"><strong id="cce_10_0048__b1384716276315">Advanced Settings</strong><ul id="cce_10_0048__ul142811417"><li id="cce_10_0048__li0421513417"><strong id="cce_10_0048__b6900932134716">Upgrade</strong>: See <a href="cce_10_0397.html">Configuring the Workload Upgrade Policy</a>.</li><li id="cce_10_0048__li5292111713411"><strong id="cce_10_0048__b1827703613471">Scheduling</strong>: See <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li><li id="cce_10_0048__li206428507436"><strong id="cce_10_0048__b1840219331836">Instances Management Policies</strong><p id="cce_10_0048__p151323251334">For some distributed systems, the StatefulSet sequence is unnecessary and/or should not occur. These systems require only uniqueness and identifiers.</p>
+<ul id="cce_10_0048__ul758812493316"><li id="cce_10_0048__li258832417338"><strong id="cce_10_0048__b13534251116">OrderedReady</strong>: The StatefulSet will deploy, delete, or scale pods in order and one by one. (The StatefulSet continues only after the previous pod is ready or deleted.) This is the default policy.</li><li id="cce_10_0048__li1558862416338"><strong id="cce_10_0048__b112293521039">Parallel</strong>: The StatefulSet will create pods in parallel to match the desired scale without waiting, and will delete all pods at once.</li></ul>
+</li><li id="cce_10_0048__li13285132913414"><strong id="cce_10_0048__cce_10_0047_b11222531193614">Toleration</strong>: Using both taints and tolerations allows (not forcibly) the pod to be scheduled to a node with the matching taints, and controls the pod eviction policies after the node where the pod is located is tainted. For details, see <a href="cce_10_0352.html#cce_10_0352__section2047442210417">Tolerations</a>.</li><li id="cce_10_0048__li179714209414"><strong id="cce_10_0048__b4641659154115">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0048__li1917237124111"><strong id="cce_10_0048__b18993554214">DNS</strong>: See <a href="cce_10_0365.html">DNS Configuration</a>.</li></ul>
+</div>
+</p></li><li id="cce_10_0048__li01417411620"><span>Click <strong id="cce_10_0048__b2185122912413">Create Workload</strong> in the lower right corner.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0048__section113441881214"><h4 class="sectiontitle"><span class="keyword" id="cce_10_0048__keyword1096424634155120">Using kubectl</span></h4><p id="cce_10_0048__p829311262556">In this example, an nginx workload is used and the EVS volume is dynamically mounted to it using the <strong id="cce_10_0048__b7114122518149">volumeClaimTemplates</strong> field.</p>
+<ol id="cce_10_0048__ol8784163652310"><li id="cce_10_0048__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0048__li786619612249"><span>Create and edit the <strong id="cce_10_0048__b17333192071415">nginx-statefulset.yaml</strong> file.</span><p><p id="cce_10_0048__li1020013819415p0"><strong id="cce_10_0048__b122558194376">nginx-statefulset.yaml</strong> is an example file name, and you can change it as required.</p>
+<p id="cce_10_0048__p1587215618244"><strong id="cce_10_0048__b28744642413">vi nginx-statefulset.yaml</strong></p>
+<p id="cce_10_0048__p211135719251">The following provides an example of the file contents. For more information on StatefulSet, see the <a href="https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/" target="_blank" rel="noopener noreferrer">Kubernetes documentation</a>.</p>
+<pre class="screen" id="cce_10_0048__screen188753615243">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: nginx
+spec:
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+        - name: container-1
+          image: nginx:latest
+          imagePullPolicy: IfNotPresent
+          resources:
+            requests:
+              cpu: 250m
+              memory: 512Mi
+            limits:
+              cpu: 250m
+              memory: 512Mi
+          volumeMounts:
+            - name: test
+              readOnly: false
+              mountPath: /usr/share/nginx/html
+              subPath: ''
+      imagePullSecrets:
+        - name: default-secret
+      dnsPolicy: ClusterFirst
+      volumes: []
+  serviceName: nginx-svc
+  replicas: 2
+volumeClaimTemplates:  # Dynamically mounts the EVS volume to the workload.
+    - apiVersion: v1
+      kind: PersistentVolumeClaim
+      metadata:
+        name: test
+        namespace: default
+        annotations:
+          everest.io/disk-volume-type: SAS  # SAS EVS volume type.
+        labels:
+          failure-domain.beta.kubernetes.io/region: <span id="cce_10_0048__text163921842424">eu-de</span>  # region where the EVS volume is created.
+          failure-domain.beta.kubernetes.io/zone:    # AZ where the EVS volume is created. It must be the same as the AZ of the node.
+      spec:
+        accessModes:
+          - ReadWriteOnce  # The value must be <strong id="cce_10_0048__b1818215814243">ReadWriteOnce</strong> for the EVS volume.
+        resources:
+          requests:
+            storage: 10Gi
+        storageClassName: csi-disk # Storage class name. The value is <strong id="cce_10_0048__b247619618255">csi-disk</strong> for the EVS volume.
+  updateStrategy:
+    type: RollingUpdate</pre>
+<p id="cce_10_0048__p2939196152413"><strong id="cce_10_0048__b1394256172413">vi nginx-headless.yaml</strong></p>
+<pre class="screen" id="cce_10_0048__screen294316112416">apiVersion: v1
+kind: Service
+metadata:
+  name: nginx-svc
+  namespace: default
+  labels:
+    app: nginx
+spec:
+  selector:
+    app: nginx
+    version: v1
+  clusterIP: None
+  ports:
+    - name: nginx
+      targetPort: 80
+      nodePort: 0
+      port: 80
+      protocol: TCP
+  type: ClusterIP</pre>
+</p></li><li id="cce_10_0048__li1998416615246"><span>Create a workload and the corresponding headless service.</span><p><p id="cce_10_0048__p1198813611249"><strong id="cce_10_0048__b15990126112416">kubectl create -f nginx-statefulset.yaml</strong></p>
+<p id="cce_10_0048__p12328163452813">If the following information is displayed, the StatefulSet has been successfully created.</p>
+<pre class="screen" id="cce_10_0048__screen2571141615288">statefulset.apps/nginx created</pre>
+<p id="cce_10_0048__p1990064241"><strong id="cce_10_0048__b599213611242">kubectl create -f <strong id="cce_10_0048__b599417613242">nginx-headless</strong>.yaml</strong></p>
+<p id="cce_10_0048__p16120180172919">If the following information is displayed, the headless service has been successfully created.</p>
+<pre class="screen" id="cce_10_0048__screen78956247288">service/nginx-svc created</pre>
+</p></li><li id="cce_10_0048__li17997169246"><span>If the workload will be accessed through a ClusterIP or NodePort Service, set the corresponding workload access type. For details, see <a href="cce_10_0020.html">Networking</a>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0059.html b/docs/cce/umn/cce_10_0059.html
new file mode 100644
index 00000000..0b1f95a4
--- /dev/null
+++ b/docs/cce/umn/cce_10_0059.html
@@ -0,0 +1,171 @@
+<a name="cce_10_0059"></a><a name="cce_10_0059"></a>
+
+<h1 class="topictitle1">Network Policies</h1>
+<div id="body1526883582577"><p id="cce_10_0059__p8060118">NetworkPolicy is a Kubernetes object used to restrict pod access. In CCE, by setting network policies, you can define ingress rules specifying the addresses to access pods or egress rules specifying the addresses pods can access. This is equivalent to setting up a firewall at the application layer to further ensure network security.</p>
+<p id="cce_10_0059__p114706361099">Network policies depend on the networking add-on of the cluster to which the policies apply.</p>
+<p id="cce_10_0059__p1599485013158">By default, if a namespace does not have any policy, pods in the namespace accept traffic from any source and send traffic to any destination.</p>
+<p id="cce_10_0059__p1463183603211">Network policy rules are classified into the following types:</p>
+<ul id="cce_10_0059__ul13161939133212"><li id="cce_10_0059__li18351124913218"><strong id="cce_10_0059__b6606312280">namespaceSelector</strong>: selects particular namespaces for which all pods should be allowed as ingress sources or egress destinations.</li><li id="cce_10_0059__li5998840163217"><strong id="cce_10_0059__b36551310112810">podSelector</strong>: selects particular pods in the same namespace as the network policy which should be allowed as ingress sources or egress destinations.</li><li id="cce_10_0059__li08641649183212"><strong id="cce_10_0059__b116215248286">ipBlock</strong>: selects particular IP blocks to allow as ingress sources or egress destinations. (Only egress rules support IP blocks.)</li></ul>
+<div class="section" id="cce_10_0059__section332285584912"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0059__ul178821748131512"><li id="cce_10_0059__li1388224818153">Only clusters that use the tunnel network model support network policies.</li><li id="cce_10_0059__li1393141012329">Network isolation is not supported for IPv6 addresses.</li><li id="cce_10_0059__cce_10_0059_li570615420397">Network policies do not support egress rules except for clusters of v1.23 or later.<p id="cce_10_0059__p27292611408"><a name="cce_10_0059__cce_10_0059_li570615420397"></a><a name="cce_10_0059_li570615420397"></a>Egress rules are supported only in the following operating systems:</p>
+<ul id="cce_10_0059__cce_10_0059_ul2065234861112"><li id="cce_10_0059__cce_10_0059_li36461462116">EulerOS 2.9: kernel version 4.18.0-147.5.1.6.h541.eulerosv2r9.x86_64</li><li id="cce_10_0059__cce_10_0059_li136497469119">CentOS 7.7: kernel version 3.10.0-1062.18.1.el7.x86_64</li><li id="cce_10_0059__cce_10_0059_li1665216460111">EulerOS 2.5: kernel version 3.10.0-862.14.1.5.h591.eulerosv2r7.x86_64</li></ul>
+</li><li id="cce_10_0059__li513145015013">If a cluster is upgraded to v1.23 in in-place mode, you cannot use egress rules because the node OS is not upgraded. In this case, reset the node.</li></ul>
+</div>
+<div class="section" id="cce_10_0059__section24857465594"><h4 class="sectiontitle">Using Ingress Rules</h4><ul id="cce_10_0059__en-us_topic_0249851123_ul4805332011"><li id="cce_10_0059__en-us_topic_0249851123_li1981853162018"><strong id="cce_10_0059__en-us_topic_0249851123_b1888635215324">Using podSelector to specify the access scope</strong><pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen5967726154511">apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: test-network-policy
+  namespace: default
+spec:
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b651195916261">role=db</strong> label.
+    matchLabels:
+      role: db
+  ingress:                      #This is an ingress rule.
+  - from:
+    - podSelector:              #Only traffic from the pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b5774142342718">role=frontend</strong> label is allowed.
+        matchLabels:
+          role: frontend
+    ports:                      #Only TCP can be used to access port 6379.
+    - protocol: TCP
+      port: 6379</pre>
+<p id="cce_10_0059__en-us_topic_0249851123_p88888434711">Diagram:</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig139410543444"><span class="figcap"><b>Figure 1 </b>podSelector</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image185021946194414" src="en-us_image_0259557735.png"></span></div>
+</li></ul>
+<ul id="cce_10_0059__en-us_topic_0249851123_ul68309714213"><li id="cce_10_0059__en-us_topic_0249851123_li1283027192120"><strong id="cce_10_0059__en-us_topic_0249851123_b2544223134019">Using namespaceSelector to specify the access scope</strong><pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen18399134874818">apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: test-network-policy
+spec:
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b667880142713">role=db</strong> label.
+    matchLabels:
+      role: db
+  ingress:                      #This is an ingress rule.
+  - from:
+    - namespaceSelector:        # Only traffic from the pods in the namespace with the "project=myproject" label is allowed.
+        matchLabels:
+          project: myproject
+    ports:                      #Only TCP can be used to access port 6379.
+    - protocol: TCP
+      port: 6379</pre>
+<p id="cce_10_0059__en-us_topic_0249851123_p3874718155019"><a href="#cce_10_0059__en-us_topic_0249851123_fig127351855617">Figure 2</a> shows how namespaceSelector selects ingress sources.</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig127351855617"><a name="cce_10_0059__en-us_topic_0249851123_fig127351855617"></a><a name="en-us_topic_0249851123_fig127351855617"></a><span class="figcap"><b>Figure 2 </b>namespaceSelector</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image141441335560" src="en-us_image_0259558489.png"></span></div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0059__section20486817707"><h4 class="sectiontitle">Using Egress Rules</h4><p id="cce_10_0059__en-us_topic_0249851123_p1311606618">Egress supports not only podSelector and namespaceSelector, but also ipBlock.</p>
+<div class="note" id="cce_10_0059__en-us_topic_0249851123_note16478276101"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0059__en-us_topic_0249851123_p1547814741018">Only clusters of version 1.23 or later support egress rules. Currently, only EulerOS 2.5, EulerOS 2.9, and CentOS 7.7 nodes are supported.</p>
+</div></div>
+<pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen14581393131">apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: deny-client-a-via-except-cidr-egress-rule
+  namespace: default
+spec:
+  policyTypes:                  # Must be specified for an egress rule.
+    - Egress
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b26884016271">role=db</strong> label.
+    matchLabels:
+      role: db
+  egress:                       # Egress rule
+  - to:
+    - ipBlock:
+        cidr: 172.16.0.16/16    # Allow access to this CIDR block.
+        except:
+        - 172.16.0.40/32        # This CIDR block cannot be accessed. This value must fall within the range specified by <strong id="cce_10_0059__en-us_topic_0249851123_b9998156103415">cidr</strong>.</pre>
+<p id="cce_10_0059__en-us_topic_0249851123_p3245846202818">Diagram:</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig15678132552812"><span class="figcap"><b>Figure 3 </b>ipBlock</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image6270134419182" src="en-us_image_0000001340138373.png"></span></div>
+<p id="cce_10_0059__en-us_topic_0249851123_p1260313810298">You can define ingress and egress in the same rule.</p>
+<pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen235835922918">apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: test-network-policy
+  namespace: default
+spec:
+  policyTypes:
+  - Ingress
+  - Egress
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b136942042718">role=db</strong> label.
+    matchLabels:
+      role: db
+  ingress:                      # Ingress rule
+  - from:
+    - podSelector:              #Only traffic from the pods with the "role=frontend" label is allowed.
+        matchLabels:
+          role: frontend
+    ports:                      #Only TCP can be used to access port 6379.
+    - protocol: TCP
+      port: 6379
+  egress:                       # Egress rule
+  - to:
+    - podSelector:              # Only pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b153994603718">role=web</strong> label can be accessed.
+        matchLabels:
+          role: web</pre>
+<p id="cce_10_0059__en-us_topic_0249851123_p17239137193116">Diagram:</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig14112102353618"><span class="figcap"><b>Figure 4 </b>Using both ingress and egress</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image103563915919" src="en-us_image_0000001287883210.png"></span></div>
+</div>
+<div class="section" id="cce_10_0059__section349662212313"><h4 class="sectiontitle">Creating a Network Policy on the Console</h4><ol id="cce_10_0059__ol10753729162012"><li id="cce_10_0059__li67621546123813"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0059__li275310297205"><span>Choose <strong id="cce_10_0059__b1684093473514">Networking</strong> in the navigation pane, click the <span class="uicontrol" id="cce_10_0059__uicontrol8840143418354"><b>Network Policies</b></span> tab, and click <strong id="cce_10_0059__b1684043412358">Create Network Policy</strong> in the upper right corner.</span><p><ul id="cce_10_0059__ul1275420367216"><li id="cce_10_0059__li207540368218"><strong id="cce_10_0059__b5858127617589">Policy Name</strong>: Specify a network policy name.</li><li id="cce_10_0059__li86551950162110"><strong id="cce_10_0059__b2485142065319">Namespace</strong>: Select a namespace in which the network policy is applied.</li><li id="cce_10_0059__li1811145118419"><strong id="cce_10_0059__b1082493183618">Selector</strong>: Enter a label, select the pod to be associated, and click <strong id="cce_10_0059__b39962039143613">Add</strong>. You can also click <span class="uicontrol" id="cce_10_0059__uicontrol127315410439"><b>Reference Workload Label</b></span> to reference the label of an existing workload.</li><li id="cce_10_0059__li20288331248"><strong id="cce_10_0059__b288315258371">Inbound Rule</strong>: Click <span><img id="cce_10_0059__image297081312440" src="en-us_image_0000001251716033.png"></span> to add an inbound rule. For details about parameter settings, see <a href="#cce_10_0059__table166419994515">Table 1</a>.<p id="cce_10_0059__p13464141094517"></p>
+<div class="p" id="cce_10_0059__p1251071818275"><span><img id="cce_10_0059__image3789195442716" src="en-us_image_0000001533585325.png"></span>
+<div class="tablenoborder"><a name="cce_10_0059__table166419994515"></a><a name="table166419994515"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0059__table166419994515" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Adding an inbound rule</caption><thead align="left"><tr id="cce_10_0059__row186401397458"><th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1"><p id="cce_10_0059__p163919913452">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="85%" id="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2"><p id="cce_10_0059__p9639394455">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0059__row13640129124519"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p5640395455">Protocol &amp; Port</p>
+</td>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p1864016912457">Select the protocol type and port. Currently, TCP and UDP are supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0059__row1164011917451"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p66400984510">Source Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p164014916457">Select a namespace whose objects can be accessed. If this parameter is not specified, the source object belongs to the same namespace as the current policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0059__row1564115912452"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p8640792450">Source Pod Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p590912241576">Allow access to the pods with this label, if not specified, all pods in the namespace can be accessed.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</li><li id="cce_10_0059__li208969565264"><strong id="cce_10_0059__b13933104315451">Outbound Rule</strong>: Click <span><img id="cce_10_0059__image190375162714" src="en-us_image_0000001533586881.png"></span> to add an outbound rule. For details about parameter settings, see <a href="#cce_10_0059__table166419994515">Table 1</a>.<div class="p" id="cce_10_0059__p475815292283"><span><img id="cce_10_0059__image10587182118298" src="en-us_image_0000001482546084.png"></span>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0059__table940510264284" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Adding an outbound rule</caption><thead align="left"><tr id="cce_10_0059__row15405182632814"><th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1"><p id="cce_10_0059__p34051926152811">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="85%" id="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2"><p id="cce_10_0059__p5405172618286">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0059__row340518261282"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p124050268283">Protocol &amp; Port</p>
+</td>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p7405112611287">Select the protocol type and port. Currently, TCP and UDP are supported. If this parameter is not specified, the protocol type is not limited.</p>
+</td>
+</tr>
+<tr id="cce_10_0059__row246674113303"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p87424719349">Destination CIDR Block</p>
+</td>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p16363814123411">Allows requests to be routed to a specified CIDR block (and not to the exception CIDR blocks). Separate the destination and exception CIDR blocks by vertical bars (|), and separate multiple exception CIDR blocks by commas (,). For example, 172.17.0.0/16|172.17.1.0/24,172.17.2.0/24 indicates that 172.17.0.0/16 is accessible, but not for 172.17.1.0/24 or 172.17.2.0/24.</p>
+</td>
+</tr>
+<tr id="cce_10_0059__row16405162652812"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p14405526192819">Destination Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p14053266284">Select a namespace whose objects can be accessed. If this parameter is not specified, the source object belongs to the same namespace as the current policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0059__row2405102622812"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p84052266289">Destination Pod Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p114051126172816">Allow access to the pods with this label, if not specified, all pods in the namespace can be accessed.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</li></ul>
+</p></li><li id="cce_10_0059__li1513793212118"><span>Click <span class="uicontrol" id="cce_10_0059__uicontrol1498744718284"><b>OK</b></span>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0063.html b/docs/cce/umn/cce_10_0063.html
new file mode 100644
index 00000000..606aaad6
--- /dev/null
+++ b/docs/cce/umn/cce_10_0063.html
@@ -0,0 +1,26 @@
+<a name="cce_10_0063"></a><a name="cce_10_0063"></a>
+
+<h1 class="topictitle1">Managing Node Scaling Policies</h1>
+<div id="body8662426"><div class="section" id="cce_10_0063__section127666327248"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0063__p192873216229">After a node scaling policy is created, you can delete, edit, disable, enable, or clone the policy.</p>
+</div>
+<div class="section" id="cce_10_0063__section102878407207"><h4 class="sectiontitle">Viewing a Node Scaling Policy</h4><p id="cce_10_0063__p713741135215">You can view the associated node pool, rules, and scaling history of a node scaling policy and rectify faults according to the error information displayed.</p>
+<ol id="cce_10_0063__ol17409123885219"><li id="cce_10_0063__li148293318248"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0063__li3967519744"><span>Choose <strong id="cce_10_0063__b75474128512">Node Scaling</strong> in the navigation pane and click <span><img id="cce_10_0063__image1254712122518" src="en-us_image_0000001244261161.png"></span> in front of the policy to be viewed.</span></li><li id="cce_10_0063__li641003813527"><span>In the expanded area, the <span class="uicontrol" id="cce_10_0063__uicontrol864413924614"><b>Associated Node Pools</b></span>, <span class="uicontrol" id="cce_10_0063__uicontrol1164419910465"><b>Rules</b></span>, and <span class="uicontrol" id="cce_10_0063__uicontrol1964516974613"><b>Scaling History</b></span> tab pages are displayed. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_10_0063__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0063__p268214718213">You can also disable or enable auto scaling on the <strong id="cce_10_0063__b57750163232">Node Pools</strong> page.</p>
+<ol type="a" id="cce_10_0063__ol15169162582120"><li id="cce_10_0063__li13169425162117">Log in to the CCE console and access the cluster console.</li><li id="cce_10_0063__li716942518219">In the navigation pane, choose <strong id="cce_10_0063__b189612560310">Nodes</strong> and switch to the <strong id="cce_10_0063__b19818721244">Node Pools</strong> tab page.</li><li id="cce_10_0063__li2016919259214">Click <span class="uicontrol" id="cce_10_0063__uicontrol1689716319372"><b>Edit</b></span> of the node pool to be operated. In the <span class="uicontrol" id="cce_10_0063__uicontrol3989194019311"><b>Edit Node Pool</b></span> dialog box that is displayed, set the limits of the number of nodes.</li></ol>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0063__section128584032017"><h4 class="sectiontitle">Deleting a Node Scaling Policy</h4><ol id="cce_10_0063__ol14644105712488"><li id="cce_10_0063__li41181041153517"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0063__li21181041113517"><span>Choose <strong id="cce_10_0063__b12846115045411">Node Scaling</strong> in the navigation pane and choose <strong id="cce_10_0063__b1011425314546">More</strong> &gt; <strong id="cce_10_0063__b264025517541">Delete</strong> next to the policy to be deleted.</span></li><li id="cce_10_0063__li19809141991015"><span>In the <span class="wintitle" id="cce_10_0063__wintitle195460432178"><b>Delete Node Scaling Policy</b></span> dialog box displayed, confirm whether to delete the policy.</span></li><li id="cce_10_0063__li1340513385528"><span>Click <span class="uicontrol" id="cce_10_0063__uicontrol12723105481711"><b>Yes</b></span> to delete the policy.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0063__section5652756162214"><h4 class="sectiontitle">Editing a Node Scaling Policy</h4><ol id="cce_10_0063__ol067875612225"><li id="cce_10_0063__li1148617913919"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0063__li19486498394"><span>Choose <strong id="cce_10_0063__b154762701819">Node Scaling</strong> in the navigation pane and click <span class="uicontrol" id="cce_10_0063__uicontrol14476675189"><b>Edit</b></span> in the <strong id="cce_10_0063__b647707161811">Operation</strong> column of the policy to be edited.</span></li><li id="cce_10_0063__li56781856152211"><span>On the <span class="uicontrol" id="cce_10_0063__uicontrol7933134119486"><b>Edit Node Scaling Policy</b></span> page displayed, modify policy parameter values listed in <a href="cce_10_0209.html#cce_10_0209__table18763092201">Table 1</a>.</span></li><li id="cce_10_0063__li86781756112220"><span>After the configuration is complete, click <span class="uicontrol" id="cce_10_0063__uicontrol07463587480"><b>OK</b></span>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0063__section367810565223"><h4 class="sectiontitle">Cloning a Node Scaling Policy</h4><ol id="cce_10_0063__ol1283103252519"><li id="cce_10_0063__li20680159143911"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0063__li1068085914390"><span>Choose <strong id="cce_10_0063__b889784805914">Node Scaling</strong> in the navigation pane and choose <strong id="cce_10_0063__b889764816594">More</strong> &gt; <strong id="cce_10_0063__b1589719489596">Clone</strong> next to the policy to be cloned.</span></li><li id="cce_10_0063__li128363212514"><span>On the <span class="uicontrol" id="cce_10_0063__uicontrol162071440144911"><b>Clone Node Scaling Policy</b></span> page displayed, certain parameters have been cloned. Add or modify other policy parameters based on service requirements.</span></li><li id="cce_10_0063__li383732172512"><span>Click <strong id="cce_10_0063__b76092016183">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0063__section4771832152513"><h4 class="sectiontitle">Enabling or Disabling a Node Scaling Policy</h4><ol id="cce_10_0063__ol0843321258"><li id="cce_10_0063__li1221435414019"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0063__li4214105494011"><span>Choose <strong id="cce_10_0063__b13778122416181">Node Scaling</strong> in the navigation pane and click <strong id="cce_10_0063__b0778424161820">Disable</strong> in the <strong id="cce_10_0063__b1977852441812">Operation</strong> column of the policy to be disabled. If the policy is in the disabled state, click <span class="uicontrol" id="cce_10_0063__uicontrol177902431813"><b>Enable</b></span> in the <strong id="cce_10_0063__b47795246181">Operation</strong> column of the policy.</span></li><li id="cce_10_0063__li78473252510"><span>In the dialog box displayed, confirm whether to disable or enable the node policy.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0291.html">Scaling a Node</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0064.html b/docs/cce/umn/cce_10_0064.html
new file mode 100644
index 00000000..4b6a9428
--- /dev/null
+++ b/docs/cce/umn/cce_10_0064.html
@@ -0,0 +1,27 @@
+<a name="cce_10_0064"></a><a name="cce_10_0064"></a>
+
+<h1 class="topictitle1">Add-ons</h1>
+<div id="body1529577481025"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0277.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0129.html">coredns (System Resource Add-On, Mandatory)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0127.html">storage-driver (System Resource Add-On, Discarded)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0066.html">everest (System Resource Add-On, Mandatory)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0132.html">npd</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0154.html">autoscaler</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0205.html">metrics-server</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0141.html">gpu-beta</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0193.html">volcano</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0066.html b/docs/cce/umn/cce_10_0066.html
new file mode 100644
index 00000000..05b49acb
--- /dev/null
+++ b/docs/cce/umn/cce_10_0066.html
@@ -0,0 +1,30 @@
+<a name="cce_10_0066"></a><a name="cce_10_0066"></a>
+
+<h1 class="topictitle1">everest (System Resource Add-On, Mandatory)</h1>
+<div id="body1529577481025"><div class="section" id="cce_10_0066__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0066__p728554610430">Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage services.</p>
+<p id="cce_10_0066__p17820349194112"><strong id="cce_10_0066__b14107173616557">everest is a system resource add-on. It is installed by default when a cluster of Kubernetes v1.15 or later is created.</strong></p>
+</div>
+<div class="section" id="cce_10_0066__section202191122814"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0066__ul39998883313"><li id="cce_10_0066__li1347222711015">If your cluster is upgraded from v1.13 to v1.15, <a href="cce_10_0127.html">storage-driver</a> is replaced by everest (v1.1.6 or later) for container storage. The takeover does not affect the original storage functions.</li><li id="cce_10_0066__li3787162513612">In version 1.2.0 of the everest add-on, <strong id="cce_10_0066__b51541345758">key authentication</strong> is optimized when OBS is used. After the everest add-on is upgraded from a version earlier than 1.2.0, you need to restart all workloads that use OBS in the cluster. Otherwise, workloads may not be able to use OBS.</li><li id="cce_10_0066__li139991585338">By default, this add-on is installed in <strong id="cce_10_0066__b3236525404">clusters of v1.15 and later</strong>. For clusters of v1.13 and earlier, the <a href="cce_10_0127.html">storage-driver</a> add-on is installed by default.</li></ul>
+</div>
+<div class="section" id="cce_10_0066__section168341157155317"><h4 class="sectiontitle">Installing the Add-on</h4><p id="cce_10_0066__p11695354471">This add-on has been installed by default. If it is uninstalled due to some reasons, you can reinstall it by performing the following steps:</p>
+<ol id="cce_10_0066__ol9183433182510"><li id="cce_10_0066__li13183153352515"><span>Log in to the CCE console and access the cluster console. Choose <span class="uicontrol" id="cce_10_0066__uicontrol14118351985"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0066__b14471351981">everest</strong> on the right, and click <strong id="cce_10_0066__b347935980">Install</strong>.</span></li><li id="cce_10_0066__li9455819152615"><span>Select <span class="uicontrol" id="cce_10_0066__uicontrol17566648143816"><b>Standalone</b></span>, <strong id="cce_10_0066__b1477061514396">HA</strong>, or <span class="uicontrol" id="cce_10_0066__uicontrol10572154893815"><b>Custom</b></span> for <strong id="cce_10_0066__b85721487388">Add-on Specifications</strong>.</span><p><div class="p" id="cce_10_0066__p1424052414914">The everest add-on contains the following containers. You can adjust the specifications as required.<ul id="cce_10_0066__ul4119122312916"><li id="cce_10_0066__li191191023095"><strong id="cce_10_0066__b136781438111218">everest-csi-controller</strong>: A Deployment workload. This container is responsible for creating, deleting, snapshotting, expanding, attaching, and detaching volumes. If the cluster version is 1.19 or later and the add-on version is 1.2.<em id="cce_10_0066__i6361115915317">x</em>, the pod of the everest-csi-driver component also has an everest-localvolume-manager container by default. This container manages the creation of LVM storage pools and local PVs on the node.<div class="note" id="cce_10_0066__note0119723299"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><div class="p" id="cce_10_0066__p17119923298">If you select <strong id="cce_10_0066__b1959953918155">Custom</strong>, the recommended <strong id="cce_10_0066__b9172204651912">everest-csi-controller</strong> memory configuration is as follows:<ul id="cce_10_0066__ul1011912319915"><li id="cce_10_0066__li1111962313915">If the number of pods and PVCs is less than 2000, set the memory upper limit to 600 MiB.</li><li id="cce_10_0066__li911914237915">If the number of pods and PVCs is less than 5000, set the memory upper limit to 1 GiB.</li></ul>
+</div>
+</div></div>
+</li><li id="cce_10_0066__li171191231891"><strong id="cce_10_0066__b924819319184">everest-csi-driver</strong>: A DaemonSet workload. This container is responsible for mounting and unmounting PVs and resizing file systems. If the add-on version is 1.2.<em id="cce_10_0066__i1794910351742">x</em> and the region where the cluster is located supports node-attacher, the pod of the everest-csi-driver component also contains an everest-node-attacher container. This container is responsible for distributed EVS attaching. This configuration item is available in some regions.<div class="note" id="cce_10_0066__note9119623098"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0066__p41198237919">If you select <strong id="cce_10_0066__b13421232201910">Custom</strong>, it is recommended that the <strong id="cce_10_0066__b12567104901912">everest-csi-driver</strong> memory limit be greater than or equal to 300 MiB. If the value is too small, the add-on container cannot be started and the add-on is unavailable.</p>
+</div></div>
+</li></ul>
+</div>
+</p></li><li id="cce_10_0066__li1188334214330"><span>Set related parameters.</span><p><div class="p" id="cce_10_0066__p11883194243320">In everest 1.2.26 or later, the performance of attaching a large number of EVS volumes is optimized. The following three parameters are provided:<ul id="cce_10_0066__ul68831142163317"><li id="cce_10_0066__li17883174214333"><strong id="cce_10_0066__b143976403492">csi_attacher_worker_threads</strong>: number of workers that can concurrently mount EVS volumes. The default value is <strong id="cce_10_0066__b1666753135014">60</strong>.</li><li id="cce_10_0066__li9883114223314"><strong id="cce_10_0066__b1573145185014">csi_attacher_detach_worker_threads</strong>: number of workers that can concurrently unmount EVS volumes. The default value is <strong id="cce_10_0066__b11574452507">60</strong>.</li><li id="cce_10_0066__li14883742193315"><strong id="cce_10_0066__b42378570502">volume_attaching_flow_ctrl</strong>: maximum number of EVS volumes that can be mounted by the everest add-on within one minute. The default value is <strong id="cce_10_0066__b111476236513">0</strong>, indicating that the EVS volume mounting performance is determined by the underlying storage resources.</li></ul>
+</div>
+<p id="cce_10_0066__p1088304217337">The preceding three parameters are associated with each other and are constrained by the underlying storage resources in the region where the cluster is located. If you want to mount a large number of volumes (more than 500 EVS volumes per minute), you can contact the customer service personnel and configure the parameters under their guidance to prevent the everest add-on from running abnormally due to improper parameter settings.</p>
+<div class="p" id="cce_10_0066__p817093722315">Other parameters<ul id="cce_10_0066__ul166456499231"><li id="cce_10_0066__li564564911238"><strong id="cce_10_0066__b653013201061">cluster_id</strong>: cluster ID</li><li id="cce_10_0066__li14589165632310"><strong id="cce_10_0066__b7435836460">default_vpc_id</strong>: ID of the VPC to which the data warehouse cluster belongs</li><li id="cce_10_0066__li1054414562410"><strong id="cce_10_0066__b2961959669">disable_auto_mount_secret</strong>: indicates whether the default AK/SK can be used when an object bucket or parallel file system is mounted. The default value is <strong id="cce_10_0066__b612118152714">false</strong>.</li><li id="cce_10_0066__li1549018129243"><strong id="cce_10_0066__b199673524109">enable_node_attacher</strong>: indicates whether to enable the attacher on the agent to process the <a href="https://kubernetes.io/docs/reference/kubernetes-api/config-and-storage-resources/volume-attachment-v1/" target="_blank" rel="noopener noreferrer">VolumeAttachment</a>.</li><li id="cce_10_0066__li7177152114247"><strong id="cce_10_0066__b16627123117194">flow_control</strong>: This parameter is left blank by default.</li><li id="cce_10_0066__li18789327152419"><strong id="cce_10_0066__b20137217208">over_subscription</strong>: overcommitment ratio of the local storage pool (<strong id="cce_10_0066__b4323111592016">local_storage</strong>). The default value is <strong id="cce_10_0066__b315663816205">80</strong>. If the size of the local storage pool is 100 GB, you can overcommit 180 GB.</li><li id="cce_10_0066__li16591036112412"><strong id="cce_10_0066__b16701163352116">project_id</strong>: ID of the project to which the cluster belongs.</li></ul>
+</div>
+</p></li><li id="cce_10_0066__li22191112338"><span>Click <span class="uicontrol" id="cce_10_0066__uicontrol215115115539"><b>Install</b></span>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0068.html b/docs/cce/umn/cce_10_0068.html
new file mode 100644
index 00000000..e893604b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0068.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0068"></a><a name="cce_10_0068"></a>
+
+<h1 class="topictitle1">Release Notes</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0467.html">CCE Kubernetes 1.25 Release Notes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0468.html">CCE Kubernetes 1.23 Release Notes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0469.html">CCE Kubernetes 1.21 Release Notes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0470.html">CCE Kubernetes 1.19 Release Notes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0471.html">CCE Kubernetes 1.17 Release Notes</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0002.html">Cluster Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0081.html b/docs/cce/umn/cce_10_0081.html
new file mode 100644
index 00000000..2fec523e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0081.html
@@ -0,0 +1,135 @@
+<a name="cce_10_0081"></a><a name="cce_10_0081"></a>
+
+<h1 class="topictitle1">Node Pool Overview</h1>
+<div id="body1508466102634"><div class="section" id="cce_10_0081__section11993204511284"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0081__p2093113017548">CCE introduces node pools to help you better manage nodes in Kubernetes clusters. A node pool contains one node or a group of nodes with identical configuration in a cluster.</p>
+<p id="cce_10_0081__p65145218311">You can create custom node pools on the CCE console. With node pools, you can quickly create, manage, and destroy nodes without affecting the cluster. All nodes in a custom node pool have identical parameters and node type. You cannot configure a single node in a node pool; any configuration changes affect all nodes in the node pool.</p>
+<p id="cce_10_0081__p991420571436">You can also use node pools for auto scaling.</p>
+<ul id="cce_10_0081__ul145866101445"><li id="cce_10_0081__li1158619101146">When a pod in a cluster cannot be scheduled due to insufficient resources, scale-out can be automatically triggered.</li><li id="cce_10_0081__li1558617108417">When there is an idle node or a monitoring metric threshold is met, scale-in can be automatically triggered.</li></ul>
+<p id="cce_10_0081__p19802113820588">This section describes how node pools work in CCE and how to create and manage node pools.</p>
+</div>
+<div class="section" id="cce_10_0081__section1486732122217"><h4 class="sectiontitle">Node Pool Architecture</h4><p id="cce_10_0081__p2480134412214">Generally, all nodes in a node pool have the following same attributes:</p>
+<ul id="cce_10_0081__ul134808449226"><li id="cce_10_0081__li1848004422220">Node OS</li><li id="cce_10_0081__li890631614331">Node specifications</li><li id="cce_10_0081__li730814322334">Node login mode.</li><li id="cce_10_0081__li3978937183319">Node runtime.</li><li id="cce_10_0081__li20480184419225">Startup parameters of Kubernetes components on a node</li><li id="cce_10_0081__li17480104411227">User-defined startup script of a node</li><li id="cce_10_0081__li84806446229"><strong id="cce_10_0081__b156321822191410">K8s Labels</strong> and <strong id="cce_10_0081__b037992416144">Taints</strong></li></ul>
+<p id="cce_10_0081__p1048019444223">CCE provides the following extended attributes for node pools:</p>
+<ul id="cce_10_0081__ul84801544162219"><li id="cce_10_0081__li1480184410229">Node pool OS</li><li id="cce_10_0081__li114801944112213">Maximum number of pods on each node in a node pool</li></ul>
+</div>
+<div class="section" id="cce_10_0081__section16928123042115"><a name="cce_10_0081__section16928123042115"></a><a name="section16928123042115"></a><h4 class="sectiontitle">Description of DefaultPool</h4><p id="cce_10_0081__p5444184415215">DefaultPool is not a real node pool. It only <strong id="cce_10_0081__b186624665612">classifies</strong> nodes that are not in the user-created node pools. These nodes are directly created on the console or by calling APIs. DefaultPool does not support any user-created node pool functions, including scaling and parameter configuration. DefaultPool cannot be edited, deleted, expanded, or auto scaled, and nodes in it cannot be migrated.</p>
+</div>
+<div class="section" id="cce_10_0081__section32131316256"><h4 class="sectiontitle">Applicable Scenarios</h4><p id="cce_10_0081__p1945803011253">When a large-scale cluster is required, you are advised to use node pools to manage nodes.</p>
+<p id="cce_10_0081__p1491578182512">The following table describes multiple scenarios of large-scale cluster management and the functions of node pools in each scenario.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0081__table1736317479258" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Using node pools for different management scenarios</caption><thead align="left"><tr id="cce_10_0081__row336414719256"><th align="left" class="cellrowborder" valign="top" width="39.32%" id="mcps1.3.4.4.2.3.1.1"><p id="cce_10_0081__p5364134792518">Scenario</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="60.68%" id="mcps1.3.4.4.2.3.1.2"><p id="cce_10_0081__p19364174712511">Function</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0081__row736464715258"><td class="cellrowborder" valign="top" width="39.32%" headers="mcps1.3.4.4.2.3.1.1 "><p id="cce_10_0081__p5560152172517">Multiple heterogeneous nodes (with different models and configurations) in the cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.68%" headers="mcps1.3.4.4.2.3.1.2 "><p id="cce_10_0081__p556055292512">Nodes can be grouped into different pools for management.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row1136494714252"><td class="cellrowborder" valign="top" width="39.32%" headers="mcps1.3.4.4.2.3.1.1 "><p id="cce_10_0081__p1856095212258">Frequent node scaling required in a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.68%" headers="mcps1.3.4.4.2.3.1.2 "><p id="cce_10_0081__p1956035211257">Node pools support auto scaling to dynamically add or reduce nodes.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row1936417470257"><td class="cellrowborder" valign="top" width="39.32%" headers="mcps1.3.4.4.2.3.1.1 "><p id="cce_10_0081__p1756045232510">Complex application scheduling rules in a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.68%" headers="mcps1.3.4.4.2.3.1.2 "><p id="cce_10_0081__p25602524254">Node pool tags can be used to quickly specify service scheduling rules.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0081__section0234145518267"><h4 class="sectiontitle">Functions and Precautions</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0081__table0843131752720" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0081__row15843151716271"><th align="left" class="cellrowborder" valign="top" width="21.942194219421943%" id="mcps1.3.5.2.1.4.1.1"><p id="cce_10_0081__p38431175276">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="39.603960396039604%" id="mcps1.3.5.2.1.4.1.2"><p id="cce_10_0081__p14843191752714">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.453845384538454%" id="mcps1.3.5.2.1.4.1.3"><p id="cce_10_0081__p48430171279">Notes</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0081__row68431917172718"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p0579122852710">Creating a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p65790289272">Add a node pool.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p105791528112711">It is recommended that a cluster contains no more than 100 node pools.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row1084351717279"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p105796289273">Deleting a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p1916410397318">Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p75791828182711">If pods in the node pool have a specific node selector and none of the other nodes in the cluster satisfies the node selector, the pods will become unschedulable.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row118434173271"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p65790288276">Enabling auto scaling for a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p11579152892711">After auto scaling is enabled, nodes will be automatically created or deleted in the node pool based on the cluster loads.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p105796284275">You are advised not to store important data on nodes in a node pool because after auto scaling, data cannot be restored as nodes may be deleted.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row5843131718272"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p18579132802720">Enabling auto scaling for a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p75791228192718">After auto scaling is disabled, the number of nodes in a node pool will not automatically change with the cluster loads.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p17590142818271">/</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row98435171275"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p18579928102713">Adjusting the size of a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p145794286275">The number of nodes in a node pool can be directly adjusted. If the number of nodes is reduced, nodes are randomly removed from the current node pool.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p25795288273">After auto scaling is enabled, you are not advised to manually adjust the node pool size.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row18431117142713"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p1657922832717">Changing node pool configurations</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p3579182816279">You can modify the node pool name, node quantity, Kubernetes labels (and their quantity), and taints.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p857917281274">The deleted or added Kubernetes labels and taints (as well as their quantity) will apply to all nodes in the node pool, which may cause pod re-scheduling. Therefore, exercise caution when performing this operation.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row1209255271"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p1558082819279">Removing a node from a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p1158014287278">Nodes in a node pool can be migrated to the default node pool of the same cluster.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p8580132811270">Nodes in the default node pool cannot be migrated to other node pools, and nodes in a user-created node pool cannot be migrated to other user-created node pools.</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row425414163469"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p7254616174618">Cloning a node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p1025414163462">You can copy the configuration of an existing node pool to create a new node pool.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><p id="cce_10_0081__p1425461620464">/</p>
+</td>
+</tr>
+<tr id="cce_10_0081__row1238761814711"><td class="cellrowborder" valign="top" width="21.942194219421943%" headers="mcps1.3.5.2.1.4.1.1 "><p id="cce_10_0081__p20387141844717">Setting Kubernetes parameters</p>
+</td>
+<td class="cellrowborder" valign="top" width="39.603960396039604%" headers="mcps1.3.5.2.1.4.1.2 "><p id="cce_10_0081__p5387151854714">You can configure core components with fine granularity.</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.453845384538454%" headers="mcps1.3.5.2.1.4.1.3 "><ul id="cce_10_0081__ul131631956486"><li id="cce_10_0081__li16163105164816">This function is supported only in clusters of v1.15 and later. It is not displayed for versions earlier than v1.15.</li><li id="cce_10_0081__li191638515487">The default node pool DefaultPool does not support this type of configuration.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0081__section12603142443319"><h4 class="sectiontitle"><span class="keyword" id="cce_10_0081__keyword134411635193118">Deploying a Workload in a Specified Node Pool</span></h4><p id="cce_10_0081__p153911712353">When creating a workload, you can constrain pods to run in a specified node pool.</p>
+<p id="cce_10_0081__p554031713358">For example, on the CCE console, you can set the affinity between the workload and the node on the <strong id="cce_10_0081__b65991804713">Scheduling Policies</strong> tab page on the workload details page to forcibly deploy the workload to a specific node pool. In this way, the workload runs only on nodes in the node pool. If you need to better control where the workload is to be scheduled, you can use affinity or anti-affinity policies between workloads and nodes described in <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</p>
+<p id="cce_10_0081__p614655184910">For example, you can use container's resource request as a nodeSelector so that workloads will run only on the nodes that meet the resource request.</p>
+<p id="cce_10_0081__p1854041717353">If the workload definition file defines a container that requires four CPUs, the scheduler will not choose the nodes with two CPUs to run workloads.</p>
+</div>
+<div class="section" id="cce_10_0081__section17716744163316"><h4 class="sectiontitle">Related Operations</h4><p id="cce_10_0081__p12284195854916">You can log in to the CCE console and refer to the following sections to perform operations on node pools:</p>
+<ul id="cce_10_0081__ul713912219920"><li id="cce_10_0081__li168801331326"><a href="cce_10_0012.html">Creating a Node Pool</a></li><li id="cce_10_0081__li1688010311326"><a href="cce_10_0222.html">Managing a Node Pool</a></li><li id="cce_10_0081__li1720114577918"><a href="cce_10_0047.html">Creating a Deployment</a></li><li id="cce_10_0081__li1849316127104"><a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0035.html">Node Pools</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0083.html b/docs/cce/umn/cce_10_0083.html
new file mode 100644
index 00000000..ab9defe2
--- /dev/null
+++ b/docs/cce/umn/cce_10_0083.html
@@ -0,0 +1,106 @@
+<a name="cce_10_0083"></a><a name="cce_10_0083"></a>
+
+<h1 class="topictitle1">Managing Workload Scaling Policies</h1>
+<div id="body1508729244098"><div class="section" id="cce_10_0083__section11873141710246"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0083__p799618243249">After an HPA policy is created, you can update, clone, edit, and delete the policy, as well as edit the YAML file.</p>
+</div>
+<div class="section" id="cce_10_0083__section14993443181414"><h4 class="sectiontitle">Checking an HPA Policy</h4><p id="cce_10_0083__p713741135215">You can view the rules, status, and events of an HPA policy and handle exceptions based on the error information displayed.</p>
+<ol id="cce_10_0083__ol17409123885219"><li id="cce_10_0083__li754610559213"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0083__li4409153817525"><span>In the navigation pane, choose <strong id="cce_10_0083__b9595121512611">Workload Scaling</strong>. On the <span class="uicontrol" id="cce_10_0083__uicontrol124101738135219"><b>HPA Policies</b></span> tab page, click <span><img id="cce_10_0083__image1569143785619" src="en-us_image_0000001244261103.png"></span> next to the target HPA policy.</span></li><li id="cce_10_0083__li641003813527"><span>In the expanded area, you can view the <span class="uicontrol" id="cce_10_0083__uicontrol783043616"><b>Rules</b></span>, <span class="uicontrol" id="cce_10_0083__uicontrol79110193616"><b>Status</b></span>, and <span class="uicontrol" id="cce_10_0083__uicontrol897073610"><b>Events</b></span> tab pages. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_10_0083__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0083__p1793618441931">You can also view the created HPA policy on the workload details page.</p>
+<ol type="a" id="cce_10_0083__ol1691347738"><li id="cce_10_0083__li5468556932">Log in to the CCE console and access the cluster console.</li><li id="cce_10_0083__li87313521749">In the navigation pane, choose <strong id="cce_10_0083__b01748420311">Workloads</strong>. Click the workload name to view its details.</li><li id="cce_10_0083__li1769110474318">On the workload details page, swich to the <strong id="cce_10_0083__b3716156354">Auto Scaling</strong> tab page to view the HPA policies. You can also view the scaling policies you configured in <strong id="cce_10_0083__b81591132105417">Workload Scaling</strong>.</li></ol>
+</div></div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0083__table56931825193212" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Event types and names</caption><thead align="left"><tr id="cce_10_0083__row269117254324"><th align="left" class="cellrowborder" valign="top" width="17.531753175317533%" id="mcps1.3.2.3.3.2.2.2.4.1.1"><p id="cce_10_0083__p176911125153211">Event Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.94409440944094%" id="mcps1.3.2.3.3.2.2.2.4.1.2"><p id="cce_10_0083__p76911525153218">Event Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="41.52415241524153%" id="mcps1.3.2.3.3.2.2.2.4.1.3"><p id="cce_10_0083__p156911325133211">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0083__row2692325123216"><td class="cellrowborder" valign="top" width="17.531753175317533%" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p1769152583210">Normal</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.94409440944094%" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p4692725173214">SuccessfulRescale</p>
+</td>
+<td class="cellrowborder" valign="top" width="41.52415241524153%" headers="mcps1.3.2.3.3.2.2.2.4.1.3 "><p id="cce_10_0083__p1969242553220">The scaling is performed successfully.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row15692192511329"><td class="cellrowborder" rowspan="12" valign="top" width="17.531753175317533%" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p86921225133210">Abnormal</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.94409440944094%" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p14692125103210">InvalidTargetRange</p>
+</td>
+<td class="cellrowborder" valign="top" width="41.52415241524153%" headers="mcps1.3.2.3.3.2.2.2.4.1.3 "><p id="cce_10_0083__p11692172514329">Invalid target range.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row1669211256324"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p10692225173214">InvalidSelector</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p66929256329">Invalid selector.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row36921525173217"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p12692182515326">FailedGetObjectMetric</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p36921725193219">Objects fail to be obtained.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row769216258320"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p1369272512320">FailedGetPodsMetric</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p9692325113214">Pods fail to be obtained.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row17692925143210"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p196920258323">FailedGetResourceMetric</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p1369216257321">Resources fail to be obtained.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row669216253320"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p176922251321">FailedGetExternalMetric</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p1269242511325">External metrics fail to be obtained.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row869212503211"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p369212583219">InvalidMetricSourceType</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p15692152519329">Invalid metric source type.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row11692142513324"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p469262553220">FailedConvertHPA</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p19692725123218">HPA conversion failed.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row1469282513323"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p1369216256328">FailedGetScale</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p1369212563217">The scale fails to be obtained.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row186921525183211"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p1769211256328">FailedComputeMetricsReplicas</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p7692192503219">Failed to calculate metric-defined replicas.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row176931225143214"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p106921025173215">FailedGetScaleWindow</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p14693142523215">Failed to obtain ScaleWindow.</p>
+</td>
+</tr>
+<tr id="cce_10_0083__row19693132523211"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.1 "><p id="cce_10_0083__p3693102520327">FailedRescale</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.3.2.2.2.4.1.2 "><p id="cce_10_0083__p46931255327">Failed to scale the service.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0083__section119901143111420"><h4 class="sectiontitle">Updating an HPA Policy</h4><p id="cce_10_0083__p18160164715245">An HPA policy is used as an example.</p>
+<ol id="cce_10_0083__ol14644105712488"><li id="cce_10_0083__li584173114516"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0083__li2619151017014"><span>In the navigation pane, choose <strong id="cce_10_0083__b147314501477">Workload Scaling</strong>. Click <span class="uicontrol" id="cce_10_0083__uicontrol177214131984"><b>Update</b></span> in the <span class="uicontrol" id="cce_10_0083__uicontrol1275919157101"><b>Operation</b></span> column of the target policy.</span></li><li id="cce_10_0083__li19809141991015"><span>On the <span class="uicontrol" id="cce_10_0083__uicontrol630212429422"><b>Update HPA Policy</b></span> page displayed, set the policy parameters listed in <a href="cce_10_0208.html#cce_10_0208__table8638121213265">Table 1</a>.</span></li><li id="cce_10_0083__li1340513385528"><span>Click <strong id="cce_10_0083__b084931111349">Update</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0083__section14894314131710"><h4 class="sectiontitle">Editing the YAML File (HPA Policy)</h4><ol id="cce_10_0083__ol836024781710"><li id="cce_10_0083__li4747132218612"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0083__li197478221868"><span>In the navigation pane, choose <strong id="cce_10_0083__b158614271186">Workload Scaling</strong>. Click <span class="uicontrol" id="cce_10_0083__uicontrol173601547121714"><b>More &gt; Edit YAML</b></span> in the <span class="uicontrol" id="cce_10_0083__uicontrol15862927288"><b>Operation</b></span> column of the target HPA policy.</span></li><li id="cce_10_0083__li3360104719175"><span>In the <span class="uicontrol" id="cce_10_0083__uicontrol19625193112511"><b>Edit YAML</b></span> dialog box displayed, edit or download the YAML file.</span></li><li id="cce_10_0083__li1236014711712"><span>Click the close button in the upper right corner.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0083__section13361947161717"><h4 class="sectiontitle">Deleting an HPA Policy</h4><ol id="cce_10_0083__ol86853731815"><li id="cce_10_0083__li15254352473"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0083__li1725419521973"><span>In the navigation pane, choose <strong id="cce_10_0083__b26191366917">Workload Scaling</strong>. Click <span class="uicontrol" id="cce_10_0083__uicontrol156193361795"><b>Delete</b></span> in the <span class="uicontrol" id="cce_10_0083__uicontrol1462014361391"><b>Operation</b></span> column of the target policy.</span></li><li id="cce_10_0083__li96803718182"><span>In the dialog box displayed, click <strong id="cce_10_0083__b135291150994">Yes</strong>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0293.html">Scaling a Workload</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0091.html b/docs/cce/umn/cce_10_0091.html
new file mode 100644
index 00000000..2e7c452c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0091.html
@@ -0,0 +1,25 @@
+<a name="cce_10_0091"></a><a name="cce_10_0091"></a>
+
+<h1 class="topictitle1">Clusters</h1>
+<div id="body1505899032898"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0002.html">Cluster Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0298.html">Creating a CCE Turbo Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0028.html">Creating a CCE Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0140.html">Using kubectl to Run a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0215.html">Upgrading a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0031.html">Managing a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0175.html">Obtaining a Cluster Certificate</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0403.html">Changing Cluster Scale</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0094.html b/docs/cce/umn/cce_10_0094.html
similarity index 62%
rename from docs/cce/umn/cce_01_0094.html
rename to docs/cce/umn/cce_10_0094.html
index 5a79eda9..eb548c61 100644
--- a/docs/cce/umn/cce_01_0094.html
+++ b/docs/cce/umn/cce_10_0094.html
@@ -1,21 +1,21 @@
-<a name="cce_01_0094"></a><a name="cce_01_0094"></a>
+<a name="cce_10_0094"></a><a name="cce_10_0094"></a>
 
-<h1 class="topictitle1">Overview</h1>
-<div id="body0000001159453456"><div class="section" id="cce_01_0094__section17868123416122"><h4 class="sectiontitle">Why We Need Ingresses</h4><p id="cce_01_0094__p19813582419">A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a large number of HTTP/HTTPS access requests on the application layer, the Service cannot meet the forwarding requirements. Therefore, the Kubernetes cluster provides an HTTP-based access mode, that is, ingress.</p>
-<p id="cce_01_0094__p168757241679">An ingress is an independent resource in the Kubernetes cluster and defines rules for forwarding external access traffic. As shown in <a href="#cce_01_0094__fig18155819416">Figure 1</a>, you can customize forwarding rules based on domain names and URLs to implement fine-grained distribution of access traffic.</p>
-<div class="fignone" id="cce_01_0094__fig18155819416"><a name="cce_01_0094__fig18155819416"></a><a name="fig18155819416"></a><span class="figcap"><b>Figure 1 </b>Ingress diagram</span><br><span><img class="eddx" id="cce_01_0094__image98185817414" src="en-us_image_0000001238003081.png"></span></div>
-<p id="cce_01_0094__p128258846">The following describes the ingress-related definitions:</p>
-<ul id="cce_01_0094__ul2875811411"><li id="cce_01_0094__li78145815413">Ingress object: a set of access rules that forward requests to specified Services based on domain names or URLs. It can be added, deleted, modified, and queried by calling APIs.</li><li id="cce_01_0094__li148115817417">Ingress Controller: an executor for request forwarding. It monitors the changes of resource objects such as ingresses, Services, endpoints, secrets (mainly TLS certificates and keys), nodes, and ConfigMaps in real time, parses rules defined by ingresses, and forwards requests to the corresponding backend Services.</li></ul>
+<h1 class="topictitle1">Ingress Overview</h1>
+<div id="body0000001159453456"><div class="section" id="cce_10_0094__section17868123416122"><h4 class="sectiontitle">Why We Need Ingresses</h4><p id="cce_10_0094__p19813582419">A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a large number of HTTP/HTTPS access requests on the application layer, the Service cannot meet the forwarding requirements. Therefore, the Kubernetes cluster provides an HTTP-based access mode, that is, ingress.</p>
+<p id="cce_10_0094__p168757241679">An ingress is an independent resource in the Kubernetes cluster and defines rules for forwarding external access traffic. As shown in <a href="#cce_10_0094__fig18155819416">Figure 1</a>, you can customize forwarding rules based on domain names and URLs to implement fine-grained distribution of access traffic.</p>
+<div class="fignone" id="cce_10_0094__fig18155819416"><a name="cce_10_0094__fig18155819416"></a><a name="fig18155819416"></a><span class="figcap"><b>Figure 1 </b>Ingress diagram</span><br><span><img class="eddx" id="cce_10_0094__image98185817414" src="en-us_image_0000001243981115.png"></span></div>
+<p id="cce_10_0094__p128258846">The following describes the ingress-related definitions:</p>
+<ul id="cce_10_0094__ul2875811411"><li id="cce_10_0094__li78145815413">Ingress object: a set of access rules that forward requests to specified Services based on domain names or URLs. It can be added, deleted, modified, and queried by calling APIs.</li><li id="cce_10_0094__li148115817417">Ingress Controller: an executor for request forwarding. It monitors the changes of resource objects such as ingresses, Services, endpoints, secrets (mainly TLS certificates and keys), nodes, and ConfigMaps in real time, parses rules defined by ingresses, and forwards requests to the corresponding backend Services.</li></ul>
 </div>
-<div class="section" id="cce_01_0094__section162271821192312"><h4 class="sectiontitle">Working Principle of ELB Ingress Controller</h4><p id="cce_01_0094__p172542048121220">ELB Ingress Controller developed by CCE implements layer-7 network access for the internet and intranet (in the same VPC) based on ELB and distributes access traffic to the corresponding Services using different URLs.</p>
-<p id="cce_01_0094__p4254124831218">ELB Ingress Controller is deployed on the master node and bound to the load balancer in the VPC where the cluster resides. Different domain names, ports, and forwarding policies can be configured for the same load balancer (with the same IP address). <a href="#cce_01_0094__fig122542486129">Figure 2</a> shows the working principle of ELB Ingress Controller.</p>
-<ol id="cce_01_0094__ol525410483123"><li id="cce_01_0094__li8254184813127">A user creates an ingress object and configures a traffic access rule in the ingress, including the load balancer, URL, SSL, and backend service port.</li><li id="cce_01_0094__li1225474817126">When Ingress Controller detects that the ingress object changes, it reconfigures the listener and backend server route on the ELB side according to the traffic access rule.</li><li id="cce_01_0094__li115615167193">When a user accesses a workload, the traffic is forwarded to the corresponding backend service port based on the forwarding policy configured on ELB, and then forwarded to each associated workload through the Service.</li></ol>
-<div class="fignone" id="cce_01_0094__fig122542486129"><a name="cce_01_0094__fig122542486129"></a><a name="fig122542486129"></a><span class="figcap"><b>Figure 2 </b>Working principle of ELB Ingress Controller</span><br><span><img class="eddx" id="cce_01_0094__image725424815120" src="en-us_image_0000001192723190.png"></span></div>
+<div class="section" id="cce_10_0094__section162271821192312"><h4 class="sectiontitle">Working Principle of ELB Ingress Controller</h4><p id="cce_10_0094__p172542048121220">ELB Ingress Controller developed by CCE implements layer-7 network access for the internet and intranet (in the same VPC) based on ELB and distributes access traffic to the corresponding Services using different URLs.</p>
+<p id="cce_10_0094__p4254124831218">ELB Ingress Controller is deployed on the master node and bound to the load balancer in the VPC where the cluster resides. Different domain names, ports, and forwarding policies can be configured for the same load balancer (with the same IP address). <a href="#cce_10_0094__fig122542486129">Figure 2</a> shows the working principle of ELB Ingress Controller.</p>
+<ol id="cce_10_0094__ol525410483123"><li id="cce_10_0094__li8254184813127">A user creates an ingress object and configures a traffic access rule in the ingress, including the load balancer, URL, SSL, and backend service port.</li><li id="cce_10_0094__li1225474817126">When Ingress Controller detects that the ingress object changes, it reconfigures the listener and backend server route on the ELB side according to the traffic access rule.</li><li id="cce_10_0094__li115615167193">When a user accesses a workload, the traffic is forwarded to the corresponding backend service port based on the forwarding policy configured on ELB, and then forwarded to each associated workload through the Service.</li></ol>
+<div class="fignone" id="cce_10_0094__fig122542486129"><a name="cce_10_0094__fig122542486129"></a><a name="fig122542486129"></a><span class="figcap"><b>Figure 2 </b>Working principle of ELB Ingress Controller</span><br><span><img class="eddx" id="cce_10_0094__image725424815120" src="en-us_image_0000001199501200.png"></span></div>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0248.html">Ingress</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0248.html">Ingresses</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0105.html b/docs/cce/umn/cce_10_0105.html
new file mode 100644
index 00000000..9941eeba
--- /dev/null
+++ b/docs/cce/umn/cce_10_0105.html
@@ -0,0 +1,197 @@
+<a name="cce_10_0105"></a><a name="cce_10_0105"></a>
+
+<h1 class="topictitle1">Setting Container Lifecycle Parameters</h1>
+<div id="body1511833542433"><div class="section" id="cce_10_0105__section196471258364"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0105__p182561527714">CCE provides callback functions for the lifecycle management of containerized applications. For example, if you want a container to perform a certain operation before stopping, you can register a hook function. </p>
+<p id="cce_10_0105__p152208151978">CCE provides the following lifecycle callback functions:</p>
+<ul id="cce_10_0105__ul922021513717"><li id="cce_10_0105__li16220815773"><strong id="cce_10_0105__b8812154352715"><span class="keyword" id="cce_10_0105__keyword209119171317258">Startup Command</span></strong>: executed to start a container. For details, see <a href="#cce_10_0105__section54912655316">Startup Commands</a>.</li><li id="cce_10_0105__li14220201518713"><strong id="cce_10_0105__b150302499794538"><span class="keyword" id="cce_10_0105__keyword29571762817312">Post-Start</span></strong>: executed immediately after a container is started. For details, see <a href="#cce_10_0105__section15243544163715">Post-Start Processing</a>.</li><li id="cce_10_0105__li32206153712"><strong id="cce_10_0105__b162512053994533"><span class="keyword" id="cce_10_0105__keyword26075130317328">Pre-Stop</span></strong>: executed before a container is stopped. The pre-stop processing function helps you ensure that the services running on the pods can be completed in advance in the case of pod upgrade or deletion. For details, see <a href="#cce_10_0105__section2334114473712">Pre-Stop Processing</a>.</li></ul>
+</div>
+<div class="section" id="cce_10_0105__section54912655316"><a name="cce_10_0105__section54912655316"></a><a name="section54912655316"></a><h4 class="sectiontitle">Startup Commands</h4><p id="cce_10_0105__p198271342105918">By default, the default command during image start. To run a specific command or rewrite the default image value, you must perform specific settings:</p>
+<p id="cce_10_0105__p1639559153012">A Docker image has metadata that stores image information. If lifecycle commands and arguments are not set, CCE runs the default commands and arguments, that is, Docker instructions <strong id="cce_10_0105__b18834121511325">ENTRYPOINT</strong> and <strong id="cce_10_0105__b4834215103216">CMD</strong>, provided during image creation. </p>
+<p id="cce_10_0105__p20395798303">If the commands and arguments used to run a container are set during application creation, the default commands <strong id="cce_10_0105__b125702255322">ENTRYPOINT</strong> and <strong id="cce_10_0105__b105781025143210">CMD</strong> are overwritten during image build. The rules are as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0105__table1239514916307" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Commands and arguments used to run a container</caption><thead align="left"><tr id="cce_10_0105__row123961993020"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.5.2.6.1.1"><p id="cce_10_0105__p173964919308">Image ENTRYPOINT</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.5.2.6.1.2"><p id="cce_10_0105__p143962963013">Image CMD</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.5.2.6.1.3"><p id="cce_10_0105__p113961193307">Command to Run a Container</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.5.2.6.1.4"><p id="cce_10_0105__p939611911308">Parameters to Run a Container</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.5.2.6.1.5"><p id="cce_10_0105__p539617913304">Command Executed</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0105__row8396149113019"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.1 "><p id="cce_10_0105__p1239610910302">[touch]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.2 "><p id="cce_10_0105__p6396189193016">[/root/test]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.3 "><p id="cce_10_0105__p153961891301">Not set</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.4 "><p id="cce_10_0105__p0396189143012">Not set</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.5 "><p id="cce_10_0105__p183962919306">[touch /root/test]</p>
+</td>
+</tr>
+<tr id="cce_10_0105__row103966913014"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.1 "><p id="cce_10_0105__p539617910301">[touch]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.2 "><p id="cce_10_0105__p123962973012">[/root/test]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.3 "><p id="cce_10_0105__p839619973012">[mkdir]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.4 "><p id="cce_10_0105__p2396109133019">Not set</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.5 "><p id="cce_10_0105__p239616923012">[mkdir]</p>
+</td>
+</tr>
+<tr id="cce_10_0105__row639679173014"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.1 "><p id="cce_10_0105__p20396795305">[touch]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.2 "><p id="cce_10_0105__p193962943010">[/root/test]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.3 "><p id="cce_10_0105__p7396696301">Not set</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.4 "><p id="cce_10_0105__p1239615943016">[/opt/test]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.5 "><p id="cce_10_0105__p1939639143020">[touch /opt/test]</p>
+</td>
+</tr>
+<tr id="cce_10_0105__row11396159113013"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.1 "><p id="cce_10_0105__p13969914304">[touch]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.2 "><p id="cce_10_0105__p43962097306">[/root/test]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.3 "><p id="cce_10_0105__p15396693306">[mkdir]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.4 "><p id="cce_10_0105__p73963953014">[/opt/test]</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.5.2.6.1.5 "><p id="cce_10_0105__p0396129193013">[mkdir /opt/test]</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<ol id="cce_10_0105__ol4904646935"><li id="cce_10_0105__li190412461831"><span>Log in to the CCE console. When creating a workload, configure container information and select <span class="uicontrol" id="cce_10_0105__uicontrol121895317612"><b>Lifecycle</b></span>.</span></li><li id="cce_10_0105__li1060727152219"><span>Enter a command and arguments on the <span class="uicontrol" id="cce_10_0105__uicontrol1273152913717"><b>Startup Command</b></span> tab page.</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0105__table15533234825" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Container startup command</caption><thead align="left"><tr id="cce_10_0105__row85331634326"><th align="left" class="cellrowborder" valign="top" width="28.999999999999996%" id="mcps1.3.2.6.2.2.1.2.3.1.1"><p id="cce_10_0105__p18442342527">Configuration Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="71%" id="mcps1.3.2.6.2.2.1.2.3.1.2"><p id="cce_10_0105__p1444519421210">Procedure</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0105__row65339348218"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.2.6.2.2.1.2.3.1.1 "><p id="cce_10_0105__p353573415215">Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.2.6.2.2.1.2.3.1.2 "><p id="cce_10_0105__p853515342215">Enter an executable command, for example, <span class="parmvalue" id="cce_10_0105__parmvalue1840810251351"><b>/run/server</b></span>.</p>
+<p id="cce_10_0105__p2595134133217">If there are multiple commands, separate them with spaces. If the command contains a space, you need to add a quotation mark ("").</p>
+<div class="note" id="cce_10_0105__note11952193619513"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0105__p1795213665120">In the case of multiple commands, you are advised to run <strong id="cce_10_0105__b10788153303513">/bin/sh</strong> or other <strong id="cce_10_0105__b67943339350">shell</strong> commands. Other commands are used as parameters.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0105__row85351342022"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.2.6.2.2.1.2.3.1.1 "><p id="cce_10_0105__p165351342212">Args</p>
+</td>
+<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.2.6.2.2.1.2.3.1.2 "><p id="cce_10_0105__p74728683919">Enter the argument that controls the container running command, for example, <strong id="cce_10_0105__b238010399358">--port=8080</strong>.</p>
+<p id="cce_10_0105__p10535163420216">If there are multiple arguments, separate them in different lines.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0105__section15243544163715"><a name="cce_10_0105__section15243544163715"></a><a name="section15243544163715"></a><h4 class="sectiontitle">Post-Start Processing</h4><ol id="cce_10_0105__ol11752171183813"><li id="cce_10_0105__li731810111761"><span>Log in to the CCE console. When creating a workload, configure container information and select <span class="uicontrol" id="cce_10_0105__uicontrol1042219343315"><b>Lifecycle</b></span>.</span></li><li id="cce_10_0105__li1275610116383"><span>Set the post-start processing parameters on the <span class="uicontrol" id="cce_10_0105__uicontrol1897714362"><b>Post-Start</b></span> tab page.</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0105__table823614643810" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Post-start processing parameters</caption><thead align="left"><tr id="cce_10_0105__row182422468384"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.2.2.2.1.2.3.1.1"><p id="cce_10_0105__p122437460382">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.2.2.2.1.2.3.1.2"><p id="cce_10_0105__p1924524616384">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0105__row102472046183820"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0105__p1248204618385">CLI</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0105__p8249134611380">Set commands to be executed in the container for post-start processing. The command format is <strong id="cce_10_0105__b842352706152442">Command Args[1] Args[2]...</strong>. <strong id="cce_10_0105__b84235270615253">Command</strong> is a system command or a user-defined executable program. If no path is specified, an executable program in the default path will be selected. If multiple commands need to be executed, write the commands into a script for execution. <strong id="cce_10_0105__b1074961818610">Commands that are executed in the background or asynchronously are not supported.</strong></p>
+<p id="cce_10_0105__p32497468380">Example command:</p>
+<pre class="screen" id="cce_10_0105__screen15250164673811">exec: 
+  command: 
+  - /install.sh 
+  - install_agent</pre>
+<p id="cce_10_0105__p92541146123820">Enter <strong id="cce_10_0105__b842352706152826">/install install_agent</strong> in the script. This command indicates that <strong id="cce_10_0105__b11811112419471">install.sh</strong> will be executed after the container is created successfully.</p>
+</td>
+</tr>
+<tr id="cce_10_0105__row925519462389"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0105__p1261104603816">HTTP request</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0105__p162625461389">Send an HTTP request for post-start processing. The related parameters are described as follows:</p>
+<ul id="cce_10_0105__ul426364613385"><li id="cce_10_0105__li1126311461385"><strong id="cce_10_0105__b8207132175211">Path</strong>: (optional) request URL.</li><li id="cce_10_0105__li12641946173820"><strong id="cce_10_0105__b1099715385217">Port</strong>: (mandatory) request port.</li><li id="cce_10_0105__li726644612387"><strong id="cce_10_0105__b97156610528">Host</strong>: (optional) IP address of the request. The default value is the IP address of the node where the container resides.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0105__section2334114473712"><a name="cce_10_0105__section2334114473712"></a><a name="section2334114473712"></a><h4 class="sectiontitle">Pre-Stop Processing</h4><ol id="cce_10_0105__ol4798215404"><li id="cce_10_0105__li13981850166"><span>Log in to the CCE console. When creating a workload, configure container information and select <span class="uicontrol" id="cce_10_0105__uicontrol47081411416"><b>Lifecycle</b></span>.</span></li><li id="cce_10_0105__li128087114016"><span>Set the pre-start processing parameters on the <span class="uicontrol" id="cce_10_0105__uicontrol1888454618416"><b>Pre-Stop</b></span> tab page.</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0105__table1541840142714" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Pre-stop processing parameters</caption><thead align="left"><tr id="cce_10_0105__row18419601274"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_10_0105__p12419130182714">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_10_0105__p1441913013274">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0105__row04201302279"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_10_0105__p6420110192718">CLI</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_10_0105__p94204010271">Set commands to be executed in the container for pre-stop processing. The command format is <strong id="cce_10_0105__b1145908843">Command Args[1] Args[2]...</strong>. <strong id="cce_10_0105__b237295393">Command</strong> is a system command or a user-defined executable program. If no path is specified, an executable program in the default path will be selected. If multiple commands need to be executed, write the commands into a script for execution.</p>
+<p id="cce_10_0105__p94203082712">Example command:</p>
+<pre class="screen" id="cce_10_0105__screen6420190132712">exec: 
+  command: 
+  - /uninstall.sh 
+  - uninstall_agent</pre>
+<p id="cce_10_0105__p742120182716">Enter <strong id="cce_10_0105__b103722545816">/uninstall uninstall_agent</strong> in the script. This command indicates that the <strong id="cce_10_0105__b19674026155910">uninstall.sh</strong> script will be executed before the container completes its execution and stops running.</p>
+</td>
+</tr>
+<tr id="cce_10_0105__row4421190152715"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_10_0105__p154216032719">HTTP request</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_10_0105__p15421160122715">Send an HTTP request for pre-stop processing. The related parameters are described as follows:</p>
+<ul id="cce_10_0105__ul204215052713"><li id="cce_10_0105__li124214052715"><strong id="cce_10_0105__b198341981321">Path</strong>: (optional) request URL.</li><li id="cce_10_0105__li104211303275"><strong id="cce_10_0105__b684213101329">Port</strong>: (mandatory) request port.</li><li id="cce_10_0105__li164227011277"><strong id="cce_10_0105__b1681213521">Host</strong>: (optional) IP address of the request. The default value is the IP address of the node where the container resides.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0105__section151181981167"><h4 class="sectiontitle">Example YAML</h4><p id="cce_10_0105__p13147194016468">This section uses Nginx as an example to describe how to set the container lifecycle.</p>
+<p id="cce_10_0105__p15279185820">In the following configuration file, the <strong id="cce_10_0105__b964310018294">postStart</strong> command is defined to run the <strong id="cce_10_0105__b9643602292">install.sh</strong> command in the <strong id="cce_10_0105__b18643180192920">/bin/bash</strong> directory. <strong id="cce_10_0105__b1464330152911">preStop</strong> is defined to run the <strong id="cce_10_0105__b46435072919">uninstall.sh</strong> command.</p>
+<pre class="screen" id="cce_10_0105__screen8529181815811">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: nginx 
+<strong id="cce_10_0105__b2557141820811">        command:</strong>
+<strong id="cce_10_0105__b602760589517">        - sleep 3600</strong>                       <strong id="cce_10_0105__b557238559517"> #Startup command</strong>
+        imagePullPolicy: Always
+        lifecycle:
+<strong id="cce_10_0105__b356919181282">          postStart:</strong>
+<strong id="cce_10_0105__b05719181388">            exec:</strong>
+<strong id="cce_10_0105__b657619181180">              command:</strong>
+<strong id="cce_10_0105__b157817184810">              - /bin/bash</strong>
+<strong id="cce_10_0105__b5984012195132">              - install.sh</strong>                 <strong id="cce_10_0105__b737670595132"> #Post-start command</strong>
+<strong id="cce_10_0105__b175988181287">          preStop:</strong>
+<strong id="cce_10_0105__b360111181288">            exec:</strong>
+<strong id="cce_10_0105__b360516183814">              command:</strong>
+<strong id="cce_10_0105__b14607718384">              - /bin/bash</strong>
+<strong id="cce_10_0105__b110644295144">              - uninstall.sh</strong>            <strong id="cce_10_0105__b556114495144">     #<strong id="cce_10_0105__b815245295144">Pre-stop command</strong></strong>
+        name: nginx
+      imagePullSecrets:
+      - name: default-secret</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0107.html b/docs/cce/umn/cce_10_0107.html
new file mode 100644
index 00000000..c4a99c05
--- /dev/null
+++ b/docs/cce/umn/cce_10_0107.html
@@ -0,0 +1,49 @@
+<a name="cce_10_0107"></a><a name="cce_10_0107"></a>
+
+<h1 class="topictitle1">Connecting to a Cluster Using kubectl</h1>
+<div id="body1512462600292"><div class="section" id="cce_10_0107__section14234115144"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0107__p133539491408">This section uses a CCE cluster as an example to describe how to connect to a CCE cluster using kubectl.</p>
+</div>
+<div class="section" id="cce_10_0107__section17352373317"><h4 class="sectiontitle">Permission Description</h4><p id="cce_10_0107__p51211251156">When you access a cluster using kubectl, CCE uses the<strong id="cce_10_0107__b10486036194010"> kubeconfig.json</strong> file generated on the cluster for authentication. This file contains user information, based on which CCE determines which Kubernetes resources can be accessed by kubectl. The permissions recorded in a <strong id="cce_10_0107__b16295666413">kubeconfig.json</strong> file vary from user to user.</p>
+<p id="cce_10_0107__p142391810113">For details about user permissions, see <a href="cce_10_0187.html#cce_10_0187__section1464135853519">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
+</div>
+<div class="section" id="cce_10_0107__section37321625113110"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_10_0107__p764905418355">To connect to a Kubernetes cluster from a PC, you can use kubectl, a Kubernetes command line tool. You can log in to the CCE console, click the name of the cluster to be connected, and view the access address and kubectl connection procedure on the cluster details page.</p>
+<div class="p" id="cce_10_0107__p7805114919351">CCE allows you to access a cluster through a <strong id="cce_10_0107__b1121513014419">VPC network</strong> or a <strong id="cce_10_0107__b102151530104414">public network</strong>.<ul id="cce_10_0107__ul126071124175518"><li id="cce_10_0107__li144192116548"><strong id="cce_10_0107__b11171195110442">Intra-VPC access</strong>: The client that accesses the cluster must be in the same VPC as the cluster.</li><li id="cce_10_0107__li1460752419555"><strong id="cce_10_0107__b98386924517">Public access</strong>:The client that accesses the cluster must be able to access public networks and the cluster has been bound with a public network IP.<div class="notice" id="cce_10_0107__note2967194410365"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0107__p19671244103610">To bind a public IP (EIP) to the cluster, go to the cluster details page and click <strong id="cce_10_0107__b470443910483">Bind</strong> next to <strong id="cce_10_0107__b972314117489">EIP</strong> in the <strong id="cce_10_0107__b18899104418484">Connection Information</strong> pane. In a cluster with an EIP bound, kube-apiserver will be exposed to public networks and may be attacked. You are advised to configure Advanced Anti-DDoS (AAD) for the EIP of the node where kube-apiserver resides.</p>
+</div></div>
+</li></ul>
+</div>
+<p id="cce_10_0107__p2842139103716">Download kubectl and the configuration file. Copy the file to your client, and configure kubectl. After the configuration is complete, you can access your Kubernetes clusters. Procedure:</p>
+<ol id="cce_10_0107__ol6469105613170"><li id="cce_10_0107__li194691356201712"><a name="cce_10_0107__li194691356201712"></a><a name="li194691356201712"></a><span>Download kubectl.</span><p><div class="p" id="cce_10_0107__p1828181171820">On the <a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/README.md" target="_blank" rel="noopener noreferrer">Kubernetes release</a> page, click the corresponding link based on the cluster version, click <strong id="cce_10_0107__b1450212240525">Client Binaries</strong>, and download the corresponding platform software package. Alternatively, you can install kubectl with curl following the guide in <a href="https://kubernetes.io/docs/tasks/tools/#kubectl" target="_blank" rel="noopener noreferrer">Install Tools</a>.<div class="fignone" id="cce_10_0107__fig978018401170"><span class="figcap"><b>Figure 1 </b>Downloading kubectl</span><br><span><img id="cce_10_0107__image17910133212172" src="en-us_image_0000001336475537.png"></span></div>
+</div>
+</p></li><li id="cce_10_0107__li34691156151712"><a name="cce_10_0107__li34691156151712"></a><a name="li34691156151712"></a><span>Obtain the kubectl configuration file (kubeconfig).</span><p><p id="cce_10_0107__p1295818109256">On the <strong id="cce_10_0107__b450013549611">Connection Information</strong> pane on the cluster details page, click <strong id="cce_10_0107__b136512181078">Learn more</strong> next to <strong id="cce_10_0107__b177317221173">kubectl</strong>. On the window displayed, download the configuration file.</p>
+<div class="note" id="cce_10_0107__note191638104210"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0107__ul795610485546"><li id="cce_10_0107__li495634817549">The kubectl configuration file <strong id="cce_10_0107__b11741123981418">kubeconfig.json</strong> is used for cluster authentication. If the file is leaked, your clusters may be attacked.</li><li id="cce_10_0107__li62692399615">By default, two-way authentication is disabled for domain names in the current cluster. You can run the <strong id="cce_10_0107__b76312129249">kubectl config use-context externalTLSVerify</strong> command to enable two-way authentication. For details, see <a href="#cce_10_0107__section1559919152711">Two-Way Authentication for Domain Names</a>. For a cluster that has been bound to an EIP, if the authentication fails (x509: certificate is valid) when two-way authentication is used, you need to bind the EIP again and download <strong id="cce_10_0107__b940713611819">kubeconfig.json</strong> again.</li><li id="cce_10_0107__li16956194817544">The Kubernetes permissions assigned by the configuration file downloaded by IAM users are the same as those assigned to the IAM users on the CCE console.</li><li id="cce_10_0107__li1537643019239">If the KUBECONFIG environment variable is configured in the Linux OS, kubectl preferentially loads the KUBECONFIG environment variable instead of <strong id="cce_10_0107__b5859154717398">$home/.kube/config</strong>.</li></ul>
+</div></div>
+</p></li><li id="cce_10_0107__li25451059122317"><span>Configure kubectl.</span><p><div class="p" id="cce_10_0107__p109826082413">Install and configure kubectl (A Linux OS is used as an example).<ol type="a" id="cce_10_0107__ol2291154772010"><li id="cce_10_0107__li102911547102012">Copy the kubectl downloaded in <a href="#cce_10_0107__li194691356201712">1</a> and the configuration file downloaded in <a href="#cce_10_0107__li34691156151712">2</a> to the <strong id="cce_10_0107__b1554218410219">/home</strong> directory on your client.</li><li id="cce_10_0107__li1484374852013">Log in to your client and configure kubectl. If you have installed kubectl, skip this step.<pre class="screen" id="cce_10_0107__screen14487191815222">cd /home
+chmod +x kubectl
+mv -f kubectl /usr/local/bin</pre>
+</li><li id="cce_10_0107__li114766383477">Log in to your client and configure the kubeconfig file.<pre class="screen" id="cce_10_0107__screen849155210477">cd /home
+mkdir -p $HOME/.kube
+mv -f kubeconfig.json $HOME/.kube/config</pre>
+</li><li id="cce_10_0107__li1480512253214">Switch the kubectl access mode based on service scenarios.<ul id="cce_10_0107__ul91037595229"><li id="cce_10_0107__li5916145112313">Run this command to enable intra-VPC access:<pre class="screen" id="cce_10_0107__screen279213242247">kubectl config use-context internal</pre>
+</li><li id="cce_10_0107__li113114274233">Run this command to enable public access (EIP required):<pre class="screen" id="cce_10_0107__screen965013316242">kubectl config use-context external</pre>
+</li><li id="cce_10_0107__li104133512481">Run this command to enable public access and two-way authentication (EIP required):<pre class="screen" id="cce_10_0107__screen61712126498">kubectl config use-context externalTLSVerify</pre>
+<p id="cce_10_0107__p211573774917">For details about the cluster two-way authentication, see <a href="#cce_10_0107__section1559919152711">Two-Way Authentication for Domain Names</a>.</p>
+</li></ul>
+</li></ol>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0107__section1559919152711"><a name="cce_10_0107__section1559919152711"></a><a name="section1559919152711"></a><h4 class="sectiontitle">Two-Way Authentication for Domain Names</h4><p id="cce_10_0107__p138948491274">Currently, CCE supports two-way authentication for domain names.</p>
+<ul id="cce_10_0107__ul88981331482"><li id="cce_10_0107__li1705116151915">Two-way authentication is disabled for domain names by default. You can run the <strong id="cce_10_0107__b198732542582">kubectl config use-context externalTLSVerify</strong> command to switch to the externalTLSVerify context to enable it.</li><li id="cce_10_0107__li1807459174818">When an EIP is bound to or unbound from a cluster, or a custom domain name is configured or updated, the cluster server certificate will be added the latest cluster access address (including the EIP bound to the cluster and all custom domain names configured for the cluster).</li><li id="cce_10_0107__li17898153310483">Asynchronous cluster synchronization takes about 5 to 10 minutes. You can view the synchronization result in <strong id="cce_10_0107__b196404619200">Synchronize Certificate</strong> in <strong id="cce_10_0107__b364620682012">Operation Records</strong>.</li><li id="cce_10_0107__li614337712">For a cluster that has been bound to an EIP, if the authentication fails (x509: certificate is valid) when two-way authentication is used, you need to bind the EIP again and download <strong id="cce_10_0107__b121611451417">kubeconfig.json</strong> again.</li><li id="cce_10_0107__li5950658165414">If the domain name two-way authentication is not supported, <strong id="cce_10_0107__b56091346184712">kubeconfig.json</strong> contains the <strong id="cce_10_0107__b1961534614476">"insecure-skip-tls-verify": true</strong> field, as shown in <a href="#cce_10_0107__fig1941342411">Figure 2</a>. To use two-way authentication, you can download the <strong id="cce_10_0107__b549311585216">kubeconfig.json</strong> file again and enable two-way authentication for the domain names.<div class="fignone" id="cce_10_0107__fig1941342411"><a name="cce_10_0107__fig1941342411"></a><a name="fig1941342411"></a><span class="figcap"><b>Figure 2 </b>Two-way authentication disabled for domain names</span><br><span><img id="cce_10_0107__image3414621613" src="en-us_image_0000001199021320.png"></span></div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0107__section1628510591883"><h4 class="sectiontitle">Common Issue (Error from server Forbidden)</h4><p id="cce_10_0107__p75241832114916">When you use kubectl to create or query Kubernetes resources, the following output is returned:</p>
+<p id="cce_10_0107__p581934618458"># kubectl get deploy Error from server (Forbidden): deployments.apps is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "deployments" in API group "apps" in the namespace "default"</p>
+<p id="cce_10_0107__p1418636115119">The cause is that the user does not have the permissions to operate the Kubernetes resources. For details about how to assign permissions, see <a href="cce_10_0189.html">Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0140.html">Using kubectl to Run a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0110.html b/docs/cce/umn/cce_10_0110.html
new file mode 100644
index 00000000..d4afbeb3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0110.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0110"></a><a name="cce_10_0110"></a>
+
+<h1 class="topictitle1">Monitoring and Alarm</h1>
+<div id="body0000001219165543"><p id="cce_10_0110__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0182.html">Monitoring Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0201.html">Custom Monitoring</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0112.html b/docs/cce/umn/cce_10_0112.html
new file mode 100644
index 00000000..3634d501
--- /dev/null
+++ b/docs/cce/umn/cce_10_0112.html
@@ -0,0 +1,108 @@
+<a name="cce_10_0112"></a><a name="cce_10_0112"></a>
+
+<h1 class="topictitle1">Setting Health Check for a Container</h1>
+<div id="body1512535109871"><div class="section" id="cce_10_0112__section1731112174912"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0112__p8242924192"><span class="keyword" id="cce_10_0112__keyword22817116429">Health check</span> regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect application exceptions or automatically restart the application to restore it. This will result in a situation where the pod status is normal but the application in the pod is abnormal.</p>
+<p id="cce_10_0112__a77e71e69afde4757ab0ef6087b2e30de">Kubernetes provides the following health check probes:</p>
+<ul id="cce_10_0112__ul1867812287915"><li id="cce_10_0112__li574951765020"><strong id="cce_10_0112__b1209722181417">Liveness probe</strong> (livenessProbe): checks whether a container is still alive. It is similar to the <strong id="cce_10_0112__b1821422218147">ps</strong> command that checks whether a process exists. If the liveness check of a container fails, the cluster restarts the container. If the liveness check is successful, no operation is executed.</li><li id="cce_10_0112__li36781028792"><strong id="cce_10_0112__b1729242134220">Readiness probe</strong> (readinessProbe): checks whether a container is ready to process user requests. Upon that the container is detected unready, service traffic will not be directed to the container. It may take a long time for some applications to start up before they can provide services. This is because that they need to load disk data or rely on startup of an external module. In this case, the application process is running, but the application cannot provide services. To address this issue, this health check probe is used. If the container readiness check fails, the cluster masks all requests sent to the container. If the container readiness check is successful, the container can be accessed. </li><li id="cce_10_0112__li142001552181016"><strong id="cce_10_0112__b86001053354">Startup probe</strong> (startupProbe): checks when a container application has started. If such a probe is configured, it disables liveness and readiness checks until it succeeds, ensuring that those probes do not interfere with the application startup. This can be used to adopt liveness checks on slow starting containers, avoiding them getting killed by the kubelet before they are started.</li></ul>
+</div>
+<div class="section" id="cce_10_0112__section476025319384"><h4 class="sectiontitle">Check Method</h4><ul id="cce_10_0112__ul2492162133910"><li id="cce_10_0112__li19505918465"><strong id="cce_10_0112__b84235270695216"><span class="keyword" id="cce_10_0112__keyword122935940517318">HTTP request</span></strong><p id="cce_10_0112__p17738122617398">This health check mode is applicable to containers that provide HTTP/HTTPS services. The cluster periodically initiates an HTTP/HTTPS GET request to such containers. If the return code of the HTTP/HTTPS response is within 200–399, the probe is successful. Otherwise, the probe fails. In this health check mode, you must specify a container listening port and an HTTP/HTTPS request path.</p>
+<p id="cce_10_0112__p051511331505">For example, for a container that provides HTTP services, the HTTP check path is <strong id="cce_10_0112__b2043313277265">/health-check</strong>, the port is 80, and the host address is optional (which defaults to the container IP address). Here, 172.16.0.186 is used as an example, and we can get such a request: GET http://172.16.0.186:80/health-check. The cluster periodically initiates this request to the container. You can also add one or more headers to an HTTP request. For example, set the request header name to <strong id="cce_10_0112__b1372104918911">Custom-Header</strong> and the corresponding value to <strong id="cce_10_0112__b9755554916">example</strong>.</p>
+</li><li id="cce_10_0112__li92491637166"><strong id="cce_10_0112__b84235270695641"><span class="keyword" id="cce_10_0112__keyword84450853173134">TCP port</span></strong><p id="cce_10_0112__p14198132922215">For a container that provides TCP communication services, the cluster periodically establishes a TCP connection to the container. If the connection is successful, the probe is successful. Otherwise, the probe fails. In this health check mode, you must specify a container listening port.</p>
+<p id="cce_10_0112__p1525113371164">For example, if you have a Nginx container with service port 80, after you specify TCP port 80 for container listening, the cluster will periodically initiate a TCP connection to port 80 of the container. If the connection is successful, the probe is successful. Otherwise, the probe fails.</p>
+</li><li id="cce_10_0112__li104061647154310"><strong id="cce_10_0112__b84235270695818"><span class="keyword" id="cce_10_0112__keyword1395397266173145">CLI</span></strong><p id="cce_10_0112__p105811510164113">CLI is an efficient tool for health check. When using the CLI, you must specify an executable command in a container. The cluster periodically runs the command in the container. If the command output is 0, the health check is successful. Otherwise, the health check fails.</p>
+<p id="cce_10_0112__p1658131014413">The CLI mode can be used to replace the HTTP request-based and TCP port-based health check.</p>
+<ul id="cce_10_0112__ul16409174744313"><li id="cce_10_0112__li7852728174119">For a TCP port, you can write a program script to connect to a container port. If the connection is successful, the script returns <strong id="cce_10_0112__b11599347141615">0</strong>. Otherwise, the script returns <strong id="cce_10_0112__b11599443121612">–1</strong>.</li><li id="cce_10_0112__li241104715431">For an HTTP request, you can write a program script to run the <strong id="cce_10_0112__b1767410318172">wget</strong> command for a container.<p id="cce_10_0112__p16488203413413"><strong id="cce_10_0112__b422541134110">wget http://127.0.0.1:80/health-check</strong></p>
+<p id="cce_10_0112__p13488133464119">Check the return code of the response. If the return code is within 200–399, the script returns <strong id="cce_10_0112__b14498132912217">0</strong>. Otherwise, the script returns <strong id="cce_10_0112__b427293111227">–1</strong>. </p>
+<div class="notice" id="cce_10_0112__note124141947164311"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0112__ul7414047164318"><li id="cce_10_0112__li81561727181416">Put the program to be executed in the container image so that the program can be executed. </li><li id="cce_10_0112__li204153475437">If the command to be executed is a shell script, do not directly specify the script as the command, but add a script parser. For example, if the script is <strong id="cce_10_0112__b842352706102616">/data/scripts/health_check.sh</strong>, you must specify <strong id="cce_10_0112__b842352706102629">sh/data/scripts/health_check.sh</strong> for command execution. The reason is that the cluster is not in the terminal environment when executing programs in a container. </li></ul>
+</div></div>
+</li></ul>
+</li><li id="cce_10_0112__li198471623132818"><strong id="cce_10_0112__b51081513324">gRPC Check</strong><div class="p" id="cce_10_0112__p489181312320">gRPC checks can configure startup, liveness, and readiness probes for your gRPC application without exposing any HTTP endpoint, nor do you need an executable. Kubernetes can connect to your workload via gRPC and query its status.<div class="notice" id="cce_10_0112__note621111643611"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0112__ul7170123014392"><li id="cce_10_0112__li6171630113911">The gRPC check is supported only in CCE clusters of v1.25 or later.</li><li id="cce_10_0112__li0171193083917">To use gRPC for check, your application must support the <a href="https://github.com/grpc/grpc/blob/master/doc/health-checking.md" target="_blank" rel="noopener noreferrer">gRPC health checking protocol</a>.</li><li id="cce_10_0112__li8171163015392">Similar to HTTP and TCP probes, if the port is incorrect or the application does not support the health checking protocol, the check fails.</li></ul>
+</div></div>
+</div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0112__section2050653544516"><h4 class="sectiontitle">Common Parameters</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0112__t045a8ee10cb946eaa4c01da4319b7206" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Common parameter description</caption><thead align="left"><tr id="cce_10_0112__re3891f83a0b242b1bf3f178042398166"><th align="left" class="cellrowborder" valign="top" width="27%" id="mcps1.3.3.2.2.3.1.1"><p id="cce_10_0112__afec93a787dcb46788032cfc70a14a22e">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73%" id="mcps1.3.3.2.2.3.1.2"><p id="cce_10_0112__en-us_topic_0052519475_p74835383351">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0112__row20530143512017"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_10_0112__p65301359204"><strong id="cce_10_0112__b1180312425104">Period</strong> (periodSeconds)</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_10_0112__p5530935122014">Indicates the probe detection period, in seconds.</p>
+<p id="cce_10_0112__p14542201010239">For example, if this parameter is set to <strong id="cce_10_0112__b113661844155919">30</strong>, the detection is performed every 30 seconds.</p>
+</td>
+</tr>
+<tr id="cce_10_0112__r82f45c7641534b8d80da858ce9ce9be7"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_10_0112__p183641821163711"><strong id="cce_10_0112__b42116252116">Delay</strong> (initialDelaySeconds)</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_10_0112__p173941610161614">Check delay time in seconds. Set this parameter according to the normal startup time of services.</p>
+<p id="cce_10_0112__en-us_topic_0052519475_p05855219373">For example, if this parameter is set to <strong id="cce_10_0112__b58566420014">30</strong>, the health check will be started 30 seconds after the container is started. The time is reserved for containerized services to start.</p>
+</td>
+</tr>
+<tr id="cce_10_0112__rf8dd0b9b29af4b96bcf3efaecb0c4bb2"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_10_0112__p36325348374"><strong id="cce_10_0112__b1575383111118">Timeout</strong> (timeoutSeconds)</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_10_0112__p052822120161">Number of seconds after which the probe times out. Unit: second. </p>
+<p id="cce_10_0112__a376926047bc64e0a9304d6c9828fc5a2">For example, if this parameter is set to <strong id="cce_10_0112__b84235270617502">10</strong>, the timeout wait time for performing a health check is 10s. If the wait time elapses, the health check is regarded as a failure. If the parameter is left blank or set to <strong id="cce_10_0112__b84235270617523">0</strong>, the default timeout time is 1s. </p>
+</td>
+</tr>
+<tr id="cce_10_0112__row122252672114"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_10_0112__p22251962213"><strong id="cce_10_0112__b10473150161116">Success Threshold</strong> (successThreshold)</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_10_0112__p68862519317">Minimum consecutive successes for the probe to be considered successful after having failed. For example, if this parameter is set to <strong id="cce_10_0112__b1156818516814">1</strong>, the workload status is normal only when the health check is successful for one consecutive time after the health check fails.</p>
+<p id="cce_10_0112__p4789856113112">The default value is <strong id="cce_10_0112__b1813915471751">1</strong>, which is also the minimum value.</p>
+<p id="cce_10_0112__p922520614215">The value of this parameter is fixed to <strong id="cce_10_0112__b699525419516">1</strong> in <strong id="cce_10_0112__b599610546519">Liveness Probe</strong> and <strong id="cce_10_0112__b69965541558">Startup Probe</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0112__row104681621102117"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_10_0112__p1468121152113"><strong id="cce_10_0112__b88831329181512">Failure Threshold</strong> (failureThreshold)</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_10_0112__p9644133173213">Number of retry times when the detection fails.</p>
+<p id="cce_10_0112__p111011316163216">Giving up in case of liveness probe means to restart the container. In case of readiness probe the pod will be marked Unready.</p>
+<p id="cce_10_0112__p446822117214">The default value is <strong id="cce_10_0112__b678816599810">3</strong>. The minimum value is <strong id="cce_10_0112__b164221341992">1</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0112__section142959903311"><h4 class="sectiontitle">YAML Example</h4><pre class="screen" id="cce_10_0112__screen17456125515388">apiVersion: v1
+kind: Pod
+metadata:
+  labels:
+    test: liveness
+  name: liveness-http
+spec:
+  containers:
+  - name: liveness
+    image: nginx:alpine
+    args:
+    - /server
+    livenessProbe:
+      httpGet:
+        path: /healthz
+        port: 80
+        httpHeaders:
+        - name: Custom-Header
+          value: Awesome
+      initialDelaySeconds: 3
+      periodSeconds: 3
+    readinessProbe:
+      exec:
+        command:
+          - cat
+          - /tmp/healthy
+      initialDelaySeconds: 5
+      periodSeconds: 5
+    startupProbe:
+      httpGet:
+        path: /healthz
+        port: 80
+      failureThreshold: 30
+      periodSeconds: 10</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0113.html b/docs/cce/umn/cce_10_0113.html
new file mode 100644
index 00000000..c8a6d5fe
--- /dev/null
+++ b/docs/cce/umn/cce_10_0113.html
@@ -0,0 +1,108 @@
+<a name="cce_10_0113"></a><a name="cce_10_0113"></a>
+
+<h1 class="topictitle1">Setting an Environment Variable</h1>
+<div id="body1526008508696"><div class="section" id="cce_10_0113__section91908379912"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0113__p1566654220910">An environment variable is a variable whose value can affect the way a running container will behave. You can modify environment variables even after workloads are deployed, increasing flexibility in workload configuration.</p>
+<p id="cce_10_0113__p33421347172917">The function of setting environment variables on CCE is the same as that of specifying <span class="parmname" id="cce_10_0113__parmname1630339175319"><b>ENV</b></span> in a Dockerfile.</p>
+<div class="notice" id="cce_10_0113__note1262611218201"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0113__p103084565278">After a container is started, do not modify configurations in the container. If configurations in the container are modified (for example, passwords, certificates, and environment variables of a containerized application are added to the container), the configurations will be lost after the container restarts and container services will become abnormal. An example scenario of container restart is pod rescheduling due to node anomalies.</p>
+<p id="cce_10_0113__p26271321192016">Configurations must be imported to a container as arguments. Otherwise, configurations will be lost after the container restarts.</p>
+</div></div>
+<p id="cce_10_0113__p78261119155911">Environment variables can be set in the following modes:</p>
+<ul id="cce_10_0113__ul1669104610598"><li id="cce_10_0113__li266913468594"><strong id="cce_10_0113__b116911771613">Custom</strong></li><li id="cce_10_0113__li13148164912599"><strong id="cce_10_0113__b151552136536">Added from ConfigMap</strong>: Import all keys in a ConfigMap as environment variables.</li><li id="cce_10_0113__li1855315291026"><strong id="cce_10_0113__b5398577535">Added from ConfigMap key</strong>: Import a key in a ConfigMap as the value of an environment variable. For example, if you import <strong id="cce_10_0113__b766612214405">configmap_value</strong> of <strong id="cce_10_0113__b1650503044013">configmap_key</strong> in a ConfigMap as the value of environment variable <strong id="cce_10_0113__b1518565015405">key1</strong>, an environment variable named <strong id="cce_10_0113__b434614560403">key1</strong> with its value <strong id="cce_10_0113__b215043504113">is configmap_value</strong> exists in the container.</li><li id="cce_10_0113__li1727795616592"><strong id="cce_10_0113__b675162614437">Added from secret</strong>: Import all keys in a secret as environment variables.</li><li id="cce_10_0113__li93353201773"><strong id="cce_10_0113__b0483141614480">Added from secret key</strong>: Import the value of a key in a secret as the value of an environment variable. For example, if you import <strong id="cce_10_0113__b20412138105018">secret_value</strong> of <strong id="cce_10_0113__b1248714112506">secret_key</strong> in secret <strong id="cce_10_0113__b2010675411500">secret-example</strong> as the value of environment variable <strong id="cce_10_0113__b1260612005113">key2</strong>, an environment variable named <strong id="cce_10_0113__b2906162410511">key2</strong> with its value <strong id="cce_10_0113__b26293438519">secret_value</strong> exists in the container.</li><li id="cce_10_0113__li1749760535"><strong id="cce_10_0113__b31881558104120">Variable value/reference</strong>: Use the field defined by a pod as the value of the environment variable, for example, the pod name.</li><li id="cce_10_0113__li16129071317"><strong id="cce_10_0113__b11429919184010">Resource Reference</strong>: Use the field defined by a container as the value of the environment variable, for example, the CPU limit of the container.</li></ul>
+</div>
+<div class="section" id="cce_10_0113__section13829152011595"><h4 class="sectiontitle">Adding Environment Variables</h4><ol id="cce_10_0113__ol4904646935"><li id="cce_10_0113__li190412461831"><span>Log in to the CCE console. When creating a workload, select <strong id="cce_10_0113__b23218253516">Environment Variables</strong> under <strong id="cce_10_0113__b1763818524318">Container Settings</strong>.</span></li><li id="cce_10_0113__li468251942720"><span>Set environment variables.</span><p><p id="cce_10_0113__p886115513386"><span><img id="cce_10_0113__image486125516381" src="en-us_image_0000001247802971.png"></span></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0113__section19591158201313"><h4 class="sectiontitle">YAML Example</h4><pre class="screen" id="cce_10_0113__screen1034117614147">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: env-example
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: env-example
+  template:
+    metadata:
+      labels:
+        app: env-example
+    spec:
+      containers:
+        - name: container-1
+          image: nginx:alpine
+          imagePullPolicy: Always
+          resources:
+            requests:
+              cpu: 250m
+              memory: 512Mi
+            limits:
+              cpu: 250m
+              memory: 512Mi
+          env:
+            - name: key                     # Custom
+              value: value
+            - name: key1                    # Added from ConfigMap key
+              valueFrom:
+                configMapKeyRef:
+                  name: configmap-example
+                  key: key1
+            - name: key2                    # Added from secret key
+              valueFrom:
+                secretKeyRef:
+                  name: secret-example
+                  key: key2
+            - name: key3                    # Variable reference, which uses the field defined by a pod as the value of the environment variable.
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: metadata.name
+            - name: key4                    # Resource reference, which uses the field defined by a container as the value of the environment variable.
+              valueFrom:
+                resourceFieldRef:
+                  containerName: container1
+                  resource: limits.cpu
+                  divisor: 1
+          envFrom:
+            - configMapRef:                 # Added from ConfigMap
+                name: configmap-example
+            - secretRef:                    # Added from secret
+                name: secret-example
+      imagePullSecrets:
+        - name: default-secret</pre>
+</div>
+<div class="section" id="cce_10_0113__section74514162911"><h4 class="sectiontitle">Viewing Environment Variables</h4><p id="cce_10_0113__p67543412911">If the contents of <strong id="cce_10_0113__b173111319716">configmap-example</strong> and <strong id="cce_10_0113__b1469452310710">secret-example</strong> are as follows:</p>
+<pre class="screen" id="cce_10_0113__screen11127515162414">$ kubectl get configmap configmap-example -oyaml
+apiVersion: v1
+data:
+  configmap_key: configmap_value
+kind: ConfigMap
+...
+
+$ kubectl get secret secret-example -oyaml
+apiVersion: v1
+data:
+  secret_key: c2VjcmV0X3ZhbHVl              # <strong id="cce_10_0113__b197355321293">c2VjcmV0X3ZhbHVl</strong> is the value of secret_value in Base64 mode.
+kind: Secret
+...</pre>
+<p id="cce_10_0113__p1573082017305">The environment variables in the pod are as follows:</p>
+<pre class="screen" id="cce_10_0113__screen21636141912">$ kubectl get pod
+NAME                           READY   STATUS    RESTARTS   AGE
+env-example-695b759569-lx9jp   1/1     Running   0          17m
+
+$ kubectl exec env-example-695b759569-lx9jp  -- printenv
+/ # env
+key=value                             # Custom environment variable
+ey1=configmap_value                  # Added from ConfigMap key
+key2=secret_value                     # Added from secret key
+key3=env-example-695b759569-lx9jp     # metadata.name defined by the pod
+key4=1                                # limits.cpu defined by container1. The value is rounded up, in unit of cores.
+configmap_key=configmap_value         # Added from ConfigMap. The key value in the original ConfigMap key is directly imported.
+secret_key=secret_value               # Added from key. The key value in the original secret is directly imported.</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0120.html b/docs/cce/umn/cce_10_0120.html
new file mode 100644
index 00000000..6af29399
--- /dev/null
+++ b/docs/cce/umn/cce_10_0120.html
@@ -0,0 +1,62 @@
+<a name="cce_10_0120"></a><a name="cce_10_0120"></a>
+
+<h1 class="topictitle1">Performing Replace/Rolling Upgrade</h1>
+<div id="body1513685389866"><div class="section" id="cce_10_0120__section10924122311617"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0120__p19245829101612">You can upgrade your clusters to a newer Kubernetes version on the CCE console.</p>
+<p id="cce_10_0120__p10143161620134">Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what ways, and the upgrade impacts. For details, see <a href="cce_10_0197.html">Upgrade Overview</a> and <a href="cce_10_0302.html">Before You Start</a>.</p>
+</div>
+<div class="section" id="cce_10_0120__section241218201016"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0120__ul10508151218313"><li id="cce_10_0120__li14600171372318">If the coredns add-on needs to be upgraded during the cluster upgrade, ensure that the number of nodes is greater than or equal to the number of coredns instances and all coredns instances are running. Otherwise, the upgrade will fail. Before upgrading a cluster of v1.13, you need to upgrade the coredns add-on to the latest version available for the cluster.</li><li id="cce_10_0120__li168619317234">When a cluster of v1.11 or earlier is upgraded to v1.13, the impacts on the cluster are as follows:<ul id="cce_10_0120__ul018516414243"><li id="cce_10_0120__li0366146297">All cluster nodes will be restarted as their OSs are upgraded, which affects application running.</li><li id="cce_10_0120__li829140102313">The cluster signature certificate mechanism is changed. As a result, the original cluster certificate becomes invalid. You need to obtain the certificate or kubeconfig file again after the cluster is upgraded.</li></ul>
+</li><li id="cce_10_0120__li547115384244">During the upgrade from one release of v1.13 to a later release of v1.13, applications in the cluster are interrupted for a short period of time only during the upgrade of network components.</li><li id="cce_10_0120__li73661849294">During the upgrade from Kubernetes 1.9 to 1.11, the kube-dns of the cluster will be uninstalled and replaced with CoreDNS, which may cause loss of the cascading DNS configuration in the kube-dns or temporary interruption of the DNS service. Back up the DNS address configured in the kube-dns so you can configure the domain name in the CoreDNS again when domain name resolution is abnormal.</li></ul>
+</div>
+<div class="section" id="cce_10_0120__section9456205813519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0120__ol226615082711"><li id="cce_10_0120__li3676163391418"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0120__li13509123212283"><span>In the navigation pane, choose <strong id="cce_10_0120__b2196644143811">Cluster Upgrade</strong>. You can view the new version available for upgrade on the right. Click <strong id="cce_10_0120__b207550475393">Upgrade</strong>.</span><p><div class="note" id="cce_10_0120__note1723614376153"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0120__ul567619811233"><li id="cce_10_0120__li1676483230">If your cluster version is up-to-date, the <strong id="cce_10_0120__b175611294181">Upgrade</strong> button is grayed out.</li><li id="cce_10_0120__li26764811233">If your cluster status is abnormal or there are abnormal add-ons, the <strong id="cce_10_0120__b0362171213398">Upgrade</strong> button is dimmed. Perform a check by referring to <a href="cce_10_0302.html">Before You Start</a>.</li></ul>
+</div></div>
+</p></li><li id="cce_10_0120__li76391913300"><span>In the displayed <strong id="cce_10_0120__b1611516438484">Pre-upgrade Check</strong> dialog box, click <strong id="cce_10_0120__b212074310481">Check Now</strong>.</span></li><li id="cce_10_0120__li984983714109"><span>The pre-upgrade check starts. While the pre-upgrade check is in progress, the cluster status will change to <strong id="cce_10_0120__b19460102313491">Pre-checking</strong> and new nodes/applications will not be able to be deployed on the cluster. However, existing nodes and applications will not be affected. It takes 3 to 5 minutes to complete the pre-upgrade check.</span></li><li id="cce_10_0120__li10560105618205"><span>When the status of the pre-upgrade check is <strong id="cce_10_0120__b1793221214236">Completed</strong>, click <strong id="cce_10_0120__b1197716132418">Upgrade</strong>.</span></li><li id="cce_10_0120__li716763219239"><span>On the cluster upgrade page, review or configure basic information by referring to <a href="#cce_10_0120__table924319911495">Table 1</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0120__table924319911495"></a><a name="table924319911495"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0120__table924319911495" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic information</caption><thead align="left"><tr id="cce_10_0120__row42442974913"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.3.2.6.2.1.2.3.1.1"><p id="cce_10_0120__p17244793496">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.3.2.6.2.1.2.3.1.2"><p id="cce_10_0120__p42441596495">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0120__row1137014404511"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_10_0120__p11370134095120">Cluster Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_10_0120__p937064085113">Review the name of the cluster to be upgraded.</p>
+</td>
+</tr>
+<tr id="cce_10_0120__row83701240105118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_10_0120__p3370040165116">Current Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_10_0120__p93701640145120">Review the version of the cluster to be upgraded.</p>
+</td>
+</tr>
+<tr id="cce_10_0120__row4370840165119"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_10_0120__p937054045117">Target Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_10_0120__p1268812588913">Review the target version after the upgrade.</p>
+</td>
+</tr>
+<tr id="cce_10_0120__row524420346511"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_10_0120__p112449344512">Node Upgrade Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_10_0120__p17476164421118"><strong id="cce_10_0120__b844444914214">Replace</strong> (replace upgrade): Worker nodes will be reset. Their OSs will be reinstalled, and data on the system and data disks will be cleared. Exercise caution when performing this operation.</p>
+<div class="note" id="cce_10_0120__note121926482167"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0120__ul149475619164"><li id="cce_10_0120__li189475641614">The lifecycle management function of the nodes and workloads in the cluster is unavailable.</li><li id="cce_10_0120__li179515613168">APIs cannot be called temporarily.</li><li id="cce_10_0120__li13952056191617">Running workloads will be interrupted because nodes are reset during the upgrade.</li><li id="cce_10_0120__li11951256131619">Data in the system and data disks on the worker nodes will be cleared. Back up important data before resetting the nodes.</li><li id="cce_10_0120__li895185621613">Data disks without LVM mounted to worker nodes need to be mounted again after the upgrade, and data on the disks will not be lost during the upgrade.</li><li id="cce_10_0120__li49525614162">The EVS disk quota must be greater than 0.</li><li id="cce_10_0120__li2951056101618">The container IP addresses change, but the communication between containers is not affected.</li><li id="cce_10_0120__li199515631617">Custom labels on the worker nodes will be cleared.</li><li id="cce_10_0120__li1195155617169">It takes about 12 minutes to complete the cluster upgrade.</li></ul>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0120__row1624493410514"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.2.6.2.1.2.3.1.1 "><p id="cce_10_0120__p824503418518">Login Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.2.6.2.1.2.3.1.2 "><p id="cce_10_0120__p532595473610"><strong id="cce_10_0120__b33121853121410">Key Pair</strong></p>
+<p id="cce_10_0120__p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0120__p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0120__b15209182295615">Create Key Pair</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0120__li121681222574"><span>Click <strong id="cce_10_0120__b154483580568">Next</strong>. In the dialog box displayed, click <strong id="cce_10_0120__b12725113105720">OK</strong>.</span></li><li id="cce_10_0120__li1758082152914"><span>Upgrade add-ons. If an add-on needs to be upgraded, a red dot is displayed. Click the <strong id="cce_10_0120__b018871624">Upgrade</strong> button in the lower left corner of the add-on card view. After the upgrade is complete, click <strong id="cce_10_0120__b1931721810219">Upgrade</strong> in the lower right corner of the page.</span><p><div class="note" id="cce_10_0120__note662415131915"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0120__ul1165114818193"><li id="cce_10_0120__li116515821915">Master nodes will be upgraded first, and then the worker nodes will be upgraded concurrently. If there are a large number of worker nodes, they will be upgraded in different batches.</li><li id="cce_10_0120__li865198111919">Select a proper time window for the upgrade to reduce impacts on services.</li><li id="cce_10_0120__li1865111819192">Clicking <strong id="cce_10_0120__b568312341417">OK</strong> will start the upgrade immediately, and the upgrade cannot be canceled. Do not shut down or restart nodes during the upgrade.</li></ul>
+</div></div>
+</p></li><li id="cce_10_0120__li19688320183320"><span>In the displayed <strong id="cce_10_0120__b11520154811510">Upgrade</strong> dialog box, read the information and click <strong id="cce_10_0120__b175691157161512">OK</strong>. Note that the cluster cannot be rolled back after the upgrade.</span></li><li id="cce_10_0120__li2078332142814"><span>Back to the cluster list, you can see that the cluster status is <strong id="cce_10_0120__b5938181785219">Upgrading</strong>. Wait until the upgrade is completed.</span><p><p id="cce_10_0120__p511014181242">After the upgrade is successful, you can view the cluster status and version on the cluster list or cluster details page.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0127.html b/docs/cce/umn/cce_10_0127.html
new file mode 100644
index 00000000..aeeace22
--- /dev/null
+++ b/docs/cce/umn/cce_10_0127.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0127"></a><a name="cce_10_0127"></a>
+
+<h1 class="topictitle1">storage-driver (System Resource Add-On, Discarded)</h1>
+<div id="body1541037494110"><div class="section" id="cce_10_0127__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0127__p1574910495496">storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use EVS, SFS, OBS, and SFS Turbo storage resources. By installing and upgrading storage-driver, you can quickly install and update cloud storage capabilities.</p>
+<p id="cce_10_0127__p5414123111414"><strong id="cce_10_0127__b2471165511315">storage-driver is a system resource add-on. It is installed by default when a cluster of Kubernetes v1.13 or earlier is created.</strong></p>
+</div>
+<div class="section" id="cce_10_0127__section3993231122718"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0127__ul113072911510"><li id="cce_10_0127__li10330171552010">For clusters created in CCE, Kubernetes v1.15.11 is a transitional version in which the FlexVolume plug-in (storage-driver) is compatible with the CSI plug-in (<a href="cce_10_0066.html">everest</a>). Clusters of v1.17 and later versions do not support FlexVolume anymore. You need to use the everest add-on.</li><li id="cce_10_0127__li25582642815">The FlexVolume plug-in will be maintained by Kubernetes developers, but new functionality will only be added to CSI. You are advised not to create storage that connects to the FlexVolume plug-in (storage-driver) in CCE anymore. Otherwise, the storage resources may not function normally.</li><li id="cce_10_0127__li51302291158">This add-on can be installed only in <strong id="cce_10_0127__b363773505113">clusters of v1.13 or earlier</strong>. By default, the <a href="cce_10_0066.html">everest</a> add-on is installed when clusters of v1.15 or later are created.<div class="note" id="cce_10_0127__note1531776113"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0127__p8532474112"><strong id="cce_10_0127__b411425325110">In a cluster of v1.13 or earlier</strong>, when an upgrade or bug fix is available for storage functionalities, you only need to install or upgrade the storage-driver add-on. Upgrading the cluster or creating a cluster is not required.</p>
+</div></div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0127__section776571919194"><h4 class="sectiontitle">Installing the Add-on</h4><p id="cce_10_0127__p11975102684817">This add-on has been installed by default. If it is uninstalled due to some reasons, you can reinstall it by performing the following steps:</p>
+<p id="cce_10_0127__p21112429503">If storage-driver is not installed in a cluster, perform the following steps to install it:</p>
+<ol id="cce_10_0127__ol9183433182510"><li id="cce_10_0127__li13183153352515"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <span class="uicontrol" id="cce_10_0127__uicontrol91686151812"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0127__b8174151516816">storage-driver</strong> on the right, and click <strong id="cce_10_0127__b31752151083">Install</strong>.</span></li><li id="cce_10_0127__li9455819152615"><span>Click <strong id="cce_10_0127__b227242216554">Install</strong> to install the add-on. Note that the storage-driver has no configurable parameters and can be directly installed.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0129.html b/docs/cce/umn/cce_10_0129.html
new file mode 100644
index 00000000..5f1cac2e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0129.html
@@ -0,0 +1,188 @@
+<a name="cce_10_0129"></a><a name="cce_10_0129"></a>
+
+<h1 class="topictitle1">coredns (System Resource Add-On, Mandatory)</h1>
+<div id="body1541044564596"><div class="section" id="cce_10_0129__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0129__p02839134271">The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.</p>
+<p id="cce_10_0129__p8277141265310">coredns is an open-source software and has been a part of CNCF. It provides a means for cloud services to discover each other in cloud-native deployments. Each of the plug-ins chained by coredns provides a particular DNS function. You can integrate coredns with only the plug-ins you need to make it fast, efficient, and flexible. When used in a Kubernetes cluster, coredns can automatically discover services in the cluster and provide domain name resolution for these services. By working with DNS server, coredns can resolve external domain names for workloads in a cluster.</p>
+<p id="cce_10_0129__p297442816531"><strong id="cce_10_0129__b57074513194">coredns is a system resource add-on. It is installed by default when a cluster of Kubernetes v1.11 or later is created.</strong></p>
+<p id="cce_10_0129__p1574910495496">Kubernetes v1.11 and later back CoreDNS as the official default DNS for all clusters going forward.</p>
+<p id="cce_10_0129__p1228518291395">CoreDNS official website: <a href="https://coredns.io/" target="_blank" rel="noopener noreferrer">https://coredns.io/</a></p>
+<p id="cce_10_0129__p195944210105">Open source community: <a href="https://github.com/coredns/coredns" target="_blank" rel="noopener noreferrer">https://github.com/coredns/coredns</a></p>
+<div class="note" id="cce_10_0129__note1711316814357"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0129__p18623128153219">For details, see <a href="cce_10_0359.html">DNS</a>.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0129__section10849134521812"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0129__p8300121945414">When coredns is running properly or being upgraded, ensure that the number of available nodes is greater than or equal to the number of coredns instances and all coredns instances are running. Otherwise, the upgrade will fail.</p>
+</div>
+<div class="section" id="cce_10_0129__section776571919194"><h4 class="sectiontitle">Installing the Add-on</h4><p id="cce_10_0129__p42241311193">This add-on has been installed by default. If it is uninstalled due to some reasons, you can reinstall it by performing the following steps:</p>
+<ol id="cce_10_0129__ol9183433182510"><li id="cce_10_0129__li13183153352515"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <span class="uicontrol" id="cce_10_0129__uicontrol115761320381"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0129__b10170837033">coredns</strong> on the right, and click <strong id="cce_10_0129__b269974010311">Install</strong>.</span></li><li id="cce_10_0129__li1617653171818"><span>On the <strong id="cce_10_0129__b48164111422">Install Add-on</strong> page, select the add-on specifications and set related parameters.</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0129__table924319911495" frame="border" border="1" rules="all"><caption><b>Table 1 </b>coredns add-on parameters</caption><thead align="left"><tr id="cce_10_0129__row42442974913"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.3.3.2.2.1.2.3.1.1"><p id="cce_10_0129__p17244793496">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.3.3.2.2.1.2.3.1.2"><p id="cce_10_0129__p42441596495">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0129__row1137014404511"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.2.2.1.2.3.1.1 "><p id="cce_10_0129__p11370134095120">Add-on Specifications</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><p id="cce_10_0129__p937064085113">Concurrent domain name resolution ability. Select add-on specifications that best fit your needs.</p>
+<p id="cce_10_0129__p4537165014612">If you select <strong id="cce_10_0129__b16899141355416">Custom qps</strong>, the domain name resolution QPS provided by CoreDNS is positively correlated with the CPU consumption. Adjust the number of pods and container CPU/memory quotas as required.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row83701240105118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.2.2.1.2.3.1.1 "><p id="cce_10_0129__p3370040165116">Pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><p id="cce_10_0129__p93701640145120">Number of pods that will be created to match the selected add-on specifications.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row4370840165119"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.2.2.1.2.3.1.1 "><p id="cce_10_0129__p937054045117">Containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><p id="cce_10_0129__p1437014065110">CPU and memory quotas of the container allowed for the selected add-on specifications.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row53701440125116"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.2.2.1.2.3.1.1 "><p id="cce_10_0129__p8370124035118">Parameters</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><ul id="cce_10_0129__ul221832131618"><li id="cce_10_0129__li12588227858"><strong id="cce_10_0129__b192571453114019">parameterSyncStrategy</strong>: indicates whether to configure consistency check when an add-on is upgraded.<ul id="cce_10_0129__ul9522414615"><li id="cce_10_0129__li19121561511"><strong id="cce_10_0129__b690911564401">ensureConsistent</strong>: indicates that the configuration consistency check is enabled. If the configuration recorded in the cluster is inconsistent with the actual configuration, the add-on cannot be upgraded.</li><li id="cce_10_0129__li119784364"><strong id="cce_10_0129__b13174144274110">force</strong>: indicates that the configuration consistency check is ignored during an upgrade. Ensure that the current effective configuration is the same as the original configuration. After the add-on is upgraded, restore the value of <strong id="cce_10_0129__b4346786426">parameterSyncStrategy</strong> to <strong id="cce_10_0129__b1024311118426">ensureConsistent</strong> and enable the configuration consistency check again.</li></ul>
+</li><li id="cce_10_0129__li132885218163"><strong id="cce_10_0129__b234014615612">stub_domains</strong>: A domain name server for a user-defined domain name. The format is a key-value pair. The key is a suffix of DNS domain name, and the value is one or more DNS IP addresses.</li><li id="cce_10_0129__li1821862111168"><strong id="cce_10_0129__b2047082195610">upstream_nameservers</strong>: IP address of the upstream DNS server.</li><li id="cce_10_0129__li93661612125"><strong id="cce_10_0129__b14453761447">servers</strong>: The servers configuration is available since coredns 1.23.1. You can customize the servers configuration. For details, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/dns-custom-nameservers/" target="_blank" rel="noopener noreferrer">dns-custom-nameservers</a>. <strong id="cce_10_0129__b1485722511299">plugins</strong> indicates the configuration of each component in coredns (https://coredns.io/manual/plugins/). You are advised to retain the default configurations in common scenarios to prevent CoreDNS from being unavailable due to configuration errors. Each plugin component contains <strong id="cce_10_0129__b18101940181616">name</strong>, <strong id="cce_10_0129__b9211944201611">parameters</strong> (optional), and <strong id="cce_10_0129__b19277104816161">configBlock</strong> (optional). The format of the generated Corefile is as follows:<p id="cce_10_0129__p17731113172317">$name  $parameters {</p>
+<p id="cce_10_0129__p1122616245232">$configBlock</p>
+<p id="cce_10_0129__p2035773019227">}</p>
+<p id="cce_10_0129__p187693475389"><a href="#cce_10_0129__table1420814384015">Table 2</a> describes common plugins.</p>
+</li></ul>
+<p id="cce_10_0129__p13671111141717">Example:</p>
+<pre class="screen" id="cce_10_0129__screen9635912141719">{
+     "servers": [
+		   {
+			"plugins": [
+				{
+					"name": "bind",
+					"parameters": "{$POD_IP}"
+				},
+				{
+					"name": "cache",
+					"parameters": 30
+				},
+				{
+					"name": "errors"
+				},
+				{
+					"name": "health",
+					"parameters": "{$POD_IP}:8080"
+				},
+				{
+					"configBlock": "pods insecure\nfallthrough in-addr.arpa ip6.arpa",
+					"name": "kubernetes",
+					"parameters": "cluster.local in-addr.arpa ip6.arpa"
+				},
+				{
+					"name": "loadbalance",
+					"parameters": "round_robin"
+				},
+				{
+					"name": "prometheus",
+					"parameters": "{$POD_IP}:9153"
+				},
+				{
+					"configBlock": "policy random",
+					"name": "forward",
+					"parameters": ". /etc/resolv.conf"
+				},
+				{
+					"name": "reload"
+				},
+				{
+					"name": "log"
+				}
+			],
+			"port": 5353,
+			"zones": [
+				{
+					"zone": "."
+				}
+			]
+		}
+	],
+	"stub_domains": {
+		"acme.local": [
+			"1.2.3.4",
+			"6.7.8.9"
+		]
+	},
+	"upstream_nameservers": ["8.8.8.8", "8.8.4.4"]
+}</pre>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0129__table1420814384015"></a><a name="table1420814384015"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0129__table1420814384015" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Default plugin configuration of the active zone of coredns</caption><thead align="left"><tr id="cce_10_0129__row122089381904"><th align="left" class="cellrowborder" valign="top" width="24.93%" id="mcps1.3.3.3.2.2.2.2.3.1.1"><p id="cce_10_0129__p42081738709">plugin Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="75.07000000000001%" id="mcps1.3.3.3.2.2.2.2.3.1.2"><p id="cce_10_0129__p02081938205">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0129__row192083386015"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p1020814381709">bind</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p1020813385019">Host IP address listened by coredns. You are advised to retain the default value <strong id="cce_10_0129__b17508433124218">{$POD_IP}</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row72085381200"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p17208738008">cache</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p122081381708">DNS cache is enabled.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row20208338609"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p13208163819018">errors</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p2208838309">Errors are logged to stdout.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row320816381009"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p1420810386014">health</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p19208153819010">Health check configuration. The current listening IP address is {$POD_IP}:8080. Retain the default value. Otherwise, the coredns health check fails and coredns restarts repeatedly.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row320883811017"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p82081381506">kubernetes</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p480645417412">CoreDNS Kubernetes plug-in, which provides the service parsing capability in a cluster.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row420811381012"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p1220893817011">loadbalance</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p4208143817017">Round-robin DNS load balancer that randomizes the order of A, AAAA, and MX records in the answer.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row204781431659"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p04781133513">prometheus</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p10970514661">Port for obtaining coredns metrics. The default zone listening IP address is {$<em id="cce_10_0129__i1654815612443">POD_IP</em>}:9153. Retain the default value. Otherwise, CloudScope cannot collect coredns metrics.</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row4820791651"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p2820899511">forward</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p78211391652">Any queries that are not within the cluster domain of Kubernetes will be forwarded to predefined resolvers (/etc/resolv.conf).</p>
+</td>
+</tr>
+<tr id="cce_10_0129__row6126137245"><td class="cellrowborder" valign="top" width="24.93%" headers="mcps1.3.3.3.2.2.2.2.3.1.1 "><p id="cce_10_0129__p181260314249">reload</p>
+</td>
+<td class="cellrowborder" valign="top" width="75.07000000000001%" headers="mcps1.3.3.3.2.2.2.2.3.1.2 "><p id="cce_10_0129__p1812620312244">The changed Corefile can be automatically reloaded. After editing the ConfigMap, wait for two minutes for the modification to take effect.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0129__li9455819152615"><span>After the preceding configurations are complete, click <strong id="cce_10_0129__b165814819135">Install</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0129__section1860523212152"><h4 class="sectiontitle">How Does Domain Name Resolution Work in Kubernetes?</h4><p id="cce_10_0129__p8551434178">DNS policies can be set on a per-pod basis. Currently, Kubernetes supports four types of DNS policies: <strong id="cce_10_0129__b86789592281">Default</strong>, <strong id="cce_10_0129__b063911217298">ClusterFirst</strong>, <strong id="cce_10_0129__b492911612910">ClusterFirstWithHostNet</strong>, and <strong id="cce_10_0129__b1295919142919">None</strong>. For details, see <a href="https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/" target="_blank" rel="noopener noreferrer">https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/</a>. These policies are specified in the <strong id="cce_10_0129__b156913285346">dnsPolicy</strong> field in the pod-specific.</p>
+</div>
+<ul id="cce_10_0129__ul159572423318"><li id="cce_10_0129__li69559412332"><strong id="cce_10_0129__b62424271154">Default</strong>: Pods inherit the name resolution configuration from the node that the pods run on. The custom upstream DNS server and the stub domain cannot be used together with this policy.</li><li id="cce_10_0129__li495519443310"><strong id="cce_10_0129__b920116394185">ClusterFirst</strong>: Any DNS query that does not match the configured cluster domain suffix, such as <strong id="cce_10_0129__b1785725121913">www.kubernetes.io</strong>, is forwarded to the upstream name server inherited from the node. Cluster administrators may have extra stub domains and upstream DNS servers configured. </li><li id="cce_10_0129__li169559473312"><strong id="cce_10_0129__b1037017549202">ClusterFirstWithHostNet</strong>: For pods running with hostNetwork, set its DNS policy <strong id="cce_10_0129__b177435476210">ClusterFirstWithHostNet</strong>.</li><li id="cce_10_0129__li13956114153310"><strong id="cce_10_0129__b3312165315212">None</strong>: It allows a pod to ignore DNS settings from the Kubernetes environment. All DNS settings are supposed to be provided using the <strong id="cce_10_0129__b1017820612515">dnsPolicy</strong> field in the pod-specific.</li></ul>
+<div class="note" id="cce_10_0129__note166278527169"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0129__ul13587554172315"><li id="cce_10_0129__li45871554152320">Clusters of Kubernetes v1.10 and later support <strong id="cce_10_0129__b190071982920">Default</strong>, <strong id="cce_10_0129__b1680312222910">ClusterFirst</strong>, <strong id="cce_10_0129__b3744102512915">ClusterFirstWithHostNet</strong>, and <strong id="cce_10_0129__b9229102832917">None</strong>. Clusters earlier than Kubernetes v1.10 support only <strong id="cce_10_0129__b1190633062913">Default</strong>, <strong id="cce_10_0129__b3640833132917">ClusterFirst</strong>, and <strong id="cce_10_0129__b128651236162919">ClusterFirstWithHostNet</strong>.</li><li id="cce_10_0129__li16587185414234"><strong id="cce_10_0129__b1720173842715">Default</strong> is not the default DNS policy. If <strong id="cce_10_0129__b1264763115285">dnsPolicy</strong> is not explicitly specified, <strong id="cce_10_0129__b1039142303616">ClusterFirst</strong> is used.</li></ul>
+</div></div>
+<p id="cce_10_0129__p117035171517"><strong id="cce_10_0129__b16962142918308">Routing</strong></p>
+<p id="cce_10_0129__p12957184123313"><strong id="cce_10_0129__b1514664741810">Without stub domain configurations</strong>: Any query that does not match the configured cluster domain suffix, such as <strong id="cce_10_0129__b2235102863213">www.kubernetes.io</strong>, is forwarded to the upstream DNS server inherited from the node.</p>
+<p id="cce_10_0129__p1795744153315"><strong id="cce_10_0129__b167882921910">With stub domain configurations</strong>: If stub domains and upstream DNS servers are configured, DNS queries are routed according to the following flow:</p>
+<ol id="cce_10_0129__ol1895815493314"><li id="cce_10_0129__li29576413330">The query is first sent to the DNS caching layer in coredns.</li><li id="cce_10_0129__li79589463318">From the caching layer, the suffix of the request is examined and then the request is forwarded to the corresponding DNS:<ul id="cce_10_0129__ul29582417338"><li id="cce_10_0129__li495814453313">Names with the cluster suffix, for example, <strong id="cce_10_0129__b11610940133413">.cluster.local</strong>: The request is sent to coredns.</li></ul>
+<ul id="cce_10_0129__ul189581349330"><li id="cce_10_0129__li169582413313">Names with the stub domain suffix, for example, <strong id="cce_10_0129__b208218633511">.acme.local</strong>: The request is sent to the configured custom DNS resolver that listens, for example, on 1.2.3.4.</li><li id="cce_10_0129__li195815453320">Names that do not match the suffix (for example, <strong id="cce_10_0129__b13519452133513">widget.com</strong>): The request is forwarded to the upstream DNS.</li></ul>
+</li></ol>
+<div class="fignone" id="cce_10_0129__fig7582181514118"><span class="figcap"><b>Figure 1 </b>Routing</span><br><span><img id="cce_10_0129__image23305161015" src="en-us_image_0000001199021308.png"></span></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0130.html b/docs/cce/umn/cce_10_0130.html
new file mode 100644
index 00000000..4484e9f5
--- /dev/null
+++ b/docs/cce/umn/cce_10_0130.html
@@ -0,0 +1,33 @@
+<a name="cce_10_0130"></a><a name="cce_10_0130"></a>
+
+<h1 class="topictitle1">Configuring a Container</h1>
+<div id="body1542098364711"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0396.html">Setting Basic Container Information</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0009.html">Using a Third-Party Image</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0163.html">Setting Container Specifications</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0112.html">Setting Health Check for a Container</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0113.html">Setting an Environment Variable</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0353.html">Configuring an Image Pull Policy</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0354.html">Configuring Time Zone Synchronization</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0397.html">Configuring the Workload Upgrade Policy</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0132.html b/docs/cce/umn/cce_10_0132.html
new file mode 100644
index 00000000..6e6ab49e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0132.html
@@ -0,0 +1,525 @@
+<a name="cce_10_0132"></a><a name="cce_10_0132"></a>
+
+<h1 class="topictitle1">npd</h1>
+<div id="body1544406897523"><div class="section" id="cce_10_0132__section173631312185614"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0132__p37354218618">node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon running on each node. It collects node issues from different daemons and reports them to the API server. The npd add-on can run as a DaemonSet or a daemon.</p>
+<p id="cce_10_0132__p152804433415">For more information, see <a href="https://github.com/kubernetes/node-problem-detector" target="_blank" rel="noopener noreferrer">node-problem-detector</a>.</p>
+</div>
+<div class="section" id="cce_10_0132__section119671349192611"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0132__ul55121521141010"><li id="cce_10_0132__li8512142151010">When using this add-on, do not format or partition node disks.</li><li id="cce_10_0132__li151217213101">Each npd process occupies 30 mCPU and 100 MB memory.</li></ul>
+</div>
+<div class="section" id="cce_10_0132__section158021093142"><h4 class="sectiontitle">Permission Description</h4><p id="cce_10_0132__p17541021171417">To monitor kernel logs, the npd add-on needs to read the host <strong id="cce_10_0132__b96321135103716">/dev/kmsg</strong>. Therefore, the privileged mode must be enabled. For details, see <a href="https://kubernetes.io/docs/concepts/policy/pod-security-policy/#privileged" target="_blank" rel="noopener noreferrer">privileged</a>.</p>
+<p id="cce_10_0132__p1992131751419">In addition, CCE mitigates risks according to the least privilege principle. Only the following privileges are available for npd running:</p>
+<ul id="cce_10_0132__ul57753573145"><li id="cce_10_0132__li077514576147">cap_dac_read_search: permission to access <strong id="cce_10_0132__b183144419493">/run/log/journal</strong>.</li><li id="cce_10_0132__li15775205761415">cap_sys_admin: permission to access <strong id="cce_10_0132__b173812584913">/dev/kmsg</strong>.</li></ul>
+</div>
+<div class="section" id="cce_10_0132__section189463341114"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0132__ol13949124616422"><li id="cce_10_0132__li13183153352515"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <span class="uicontrol" id="cce_10_0132__uicontrol18362548121"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0132__b1236844171210">npd</strong> on the right, and click <strong id="cce_10_0132__b23681045129">Install</strong>.</span></li><li id="cce_10_0132__li15556183414307"><span>On the <strong id="cce_10_0132__b12656142319553">Install Add-on</strong> page, select the add-on specifications and set related parameters.</span><p><ul id="cce_10_0132__ul773111493313"><li id="cce_10_0132__li873131443310"><strong id="cce_10_0132__b062121155616">Pods</strong>: Set the number of pods based on service requirements.</li><li id="cce_10_0132__li145013474339"><strong id="cce_10_0132__b51930191576">Containers</strong>: Select a proper container quota based on service requirements.</li></ul>
+</p></li><li id="cce_10_0132__li067573965518"><span>Set the parameters according to the following table and click <strong id="cce_10_0132__b64961027104816">Install</strong>.</span><p><p id="cce_10_0132__p138409149261">Only 1.16.0 and later versions support the configurations.</p>
+<p id="cce_10_0132__p128021213162617"><strong id="cce_10_0132__b1913732412588">npc.enable</strong>: indicates whether to enable <a href="#cce_10_0132__section1471610580474">Node-problem-controller</a>.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0132__section69115153399"><h4 class="sectiontitle">npd Check Items</h4><div class="note" id="cce_10_0132__note173963403394"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__p5396184020391">Check items are supported only in 1.16.0 and later versions.</p>
+</div></div>
+<p id="cce_10_0132__p4958134764017">Check items cover events and statuses.</p>
+<ul id="cce_10_0132__ul1699482505"><li id="cce_10_0132__li20691448115014">Event-related<p id="cce_10_0132__p9338344194514"><a name="cce_10_0132__li20691448115014"></a><a name="li20691448115014"></a>For event-related check items, when a problem occurs, npd reports an event to the API server. The event type can be <strong id="cce_10_0132__b0674907539">Normal</strong> (normal event) or <strong id="cce_10_0132__b264113215531">Warning</strong> (abnormal event).</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table14820155834010" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Event-related check items</caption><thead align="left"><tr id="cce_10_0132__row1287205884012"><th align="left" class="cellrowborder" valign="top" width="22.55%" id="mcps1.3.5.4.1.2.2.4.1.1"><p id="cce_10_0132__p7872185819403">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.88%" id="mcps1.3.5.4.1.2.2.4.1.2"><p id="cce_10_0132__p1887295816407">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.57%" id="mcps1.3.5.4.1.2.2.4.1.3"><p id="cce_10_0132__p1287215814401">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__row19872758194019"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p17872858134019">OOMKilling</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p1987215816404">Check whether OOM events occur and are reported.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p487265818405">Warning event</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row2087225814405"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p1387245820403">TaskHung</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p18872155844013">Check whether taskHung events occur and are reported.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p16872758114011">Warning event</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row3872758184011"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p19872195818404">KernelOops</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p19872165813403">Check kernel nil pointer panic errors.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p087295824013">Warning event</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row18729588401"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p58721558194015">ConntrackFull</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p1687225864011">Check whether the conntrack table is full.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p168721758104010">Warning event</p>
+<p id="cce_10_0132__p12872105854016">Interval: 30 seconds</p>
+<p id="cce_10_0132__p487213584402">Threshold: 80%</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0132__li29881573504">Status-related<p id="cce_10_0132__p2700175815517"><a name="cce_10_0132__li29881573504"></a><a name="li29881573504"></a>For status-related check items, when a problem occurs, npd reports an event to the API server and changes the node status synchronously. This function can be used together with <a href="#cce_10_0132__section1471610580474">Node-problem-controller fault isolation</a> to isolate nodes.</p>
+<p id="cce_10_0132__p123464919476"><strong id="cce_10_0132__b289275011010">If the check period is not specified in the following check items, the default period is 30 seconds.</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table5966193210414" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Application and OS check items</caption><thead align="left"><tr id="cce_10_0132__row1439833124119"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.3.2.4.1.1"><p id="cce_10_0132__p039183318412">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.3.2.4.1.2"><p id="cce_10_0132__p8397332416">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.3.2.4.1.3"><p id="cce_10_0132__p153920338415">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__row133983316414"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p20391433124114">FrequentKubeletRestart</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1939133114115">Check whether kubelet restarts frequently by listening to journald logs.</p>
+</td>
+<td class="cellrowborder" rowspan="3" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul15361156122"><li id="cce_10_0132__li536175121216">Interval: 5 minutes</li><li id="cce_10_0132__li1436115171210">Backtracking: 10 minutes</li><li id="cce_10_0132__li14361515126">Threshold: 10 times<p id="cce_10_0132__p9122024101116"><a name="cce_10_0132__li14361515126"></a><a name="li14361515126"></a>If the system restarts for 10 times within the backtracking period, it indicates that the system restarts frequently and a fault alarm is generated.</p>
+</li><li id="cce_10_0132__li33695151213">Listening object: logs in the <strong id="cce_10_0132__b745058162910">/run/log/journal</strong> directory</li></ul>
+<div class="note" id="cce_10_0132__note755113461253"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__p159646492519">The Ubuntu OS does not support the preceding check items due to incompatible log formats.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0132__row639103354117"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p239433204111">FrequentDockerRestart</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p939933174112">Check whether Docker restarts frequently by listening to journald logs.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row839733124114"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p43993394113">FrequentContainerdRestart</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p139433114116">Check whether containerd restarts frequently by listening to journald logs.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row83953384115"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p18392033174112">CRIProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1839633124112">Check the CRI component status.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p139113344118">Check object: Docker or containerd</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row639123312418"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p14391332415">KUBELETProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1639233134114">Check the kubelet status.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p1239133334118">None</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row183933318415"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p839933124112">NTPProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p183915331414">Check the NTP and Chrony service status.</p>
+<p id="cce_10_0132__p18855192918461">Check whether the node clock offsets.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p133913384112">Threshold of the clock offset: 8000 ms</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row164010332413"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p14043334110">PIDProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p144033304112">Check whether PIDs are sufficient.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul1659995115108"><li id="cce_10_0132__li059975119103">Threshold: 90%</li><li id="cce_10_0132__li195999518108">Usage: nr_threads in /proc/loadavg</li><li id="cce_10_0132__li359916518104">Maximum value: smaller value between <strong id="cce_10_0132__b51811252332">/proc/sys/kernel/pid_max</strong> and <strong id="cce_10_0132__b16653128163312">/proc/sys/kernel/threads-max</strong>.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row6405332419"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p94073320410">FDProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p154063319411">Check whether file handles are sufficient.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul64455521018"><li id="cce_10_0132__li1644655201015">Threshold: 90%</li><li id="cce_10_0132__li244145521010">Usage: the first value in <strong id="cce_10_0132__b19956519133313">/proc/sys/fs/file-nr</strong></li><li id="cce_10_0132__li5442551103">Maximum value: the third value in <strong id="cce_10_0132__b1671227113313">/proc/sys/fs/file-nr</strong></li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row64014332413"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p17401333114117">MemoryProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1640203324119">Check whether the overall node memory is sufficient.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul27222057111018"><li id="cce_10_0132__li572235781012">Threshold: 90%</li><li id="cce_10_0132__li13722185741017">Usage: <strong id="cce_10_0132__b471916287359">MemTotal-MemAvailable</strong> in <strong id="cce_10_0132__b46373110357">/proc/meminfo</strong></li><li id="cce_10_0132__li17723157111015">Maximum value: <strong id="cce_10_0132__b1280119350352">MemTotal</strong> in <strong id="cce_10_0132__b19312153853515">/proc/meminfo</strong></li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row842872572120"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p5429192512117">ResolvConfFileProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p6146106165011">Check whether the ResolvConf file is lost.</p>
+<p id="cce_10_0132__p19339341185711">Check whether the ResolvConf file is normal.</p>
+<p id="cce_10_0132__p89770167317">Exception definition: No upstream domain name resolution server (nameserver) is included.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p12429132511214">Object: <strong id="cce_10_0132__b83131505377">/etc/resolv.conf</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0132__row585811410415"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p5858111411415">ProcessD</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1858414164117">Check whether there is a process D on the node.</p>
+</td>
+<td class="cellrowborder" rowspan="2" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p154096566548">Source:</p>
+<ul id="cce_10_0132__ul1932205835415"><li id="cce_10_0132__li33235885415">/proc/{PID}/stat</li><li id="cce_10_0132__li122716596542">Alternately, you can run <strong id="cce_10_0132__b731118224388">ps aux</strong>.</li></ul>
+<p id="cce_10_0132__p108581214164119">Exception scenario: ProcessD ignores the resident processes (heartbeat and update) that are in the D state that the SDI driver on the BMS node depends on.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row96053367426"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p166051236124213">ProcessZ</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p96052363427">Check whether the node has processes in Z state.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row672417443520"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p1272554412517">ScheduledEvent</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p372514449517">Check whether host plan events exist on the node.</p>
+<p id="cce_10_0132__p185205331978">Typical scenario: The host is faulty, for example, the fan is damaged or the disk has bad sectors. As a result, cold and live migration is triggered for VMs.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p189815212231">Source:</p>
+<ul id="cce_10_0132__ul58642322314"><li id="cce_10_0132__li686419342315">http://169.254.169.254/meta-data/latest/events/scheduled</li></ul>
+<p id="cce_10_0132__p13725114412511">This check item is an Alpha feature and is disabled by default.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table493185102713" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Network connection check items</caption><thead align="left"><tr id="cce_10_0132__row6932155122711"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.4.2.4.1.1"><p id="cce_10_0132__p159321857271">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.4.2.4.1.2"><p id="cce_10_0132__p593216512271">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.4.2.4.1.3"><p id="cce_10_0132__p1293212516270">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__row993310517276"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__p2933145142717">CNIProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__p39331562712">Check whether the CNI component is running properly.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><p id="cce_10_0132__p129331582720">None</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row2093412502714"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__p593413502718">KUBEPROXYProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__p2093412517278">Check whether kube-proxy is running properly.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><p id="cce_10_0132__p39346514277">None</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table24948715278" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Storage check items</caption><thead align="left"><tr id="cce_10_0132__row94951770273"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.5.2.4.1.1"><p id="cce_10_0132__p34951715272">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.5.2.4.1.2"><p id="cce_10_0132__p164953713276">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.5.2.4.1.3"><p id="cce_10_0132__p174955714276">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__row114962070274"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p2496476277">ReadonlyFilesystem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p31281447165616">Check whether the <strong id="cce_10_0132__b17061209018">Remount root filesystem read-only</strong> error occurs in the system kernel by listening to the kernel logs.</p>
+<p id="cce_10_0132__p7141134415613">Typical scenario: A user detaches a data disk from a node by mistake on the ECS, and applications continuously write data to the mount point of the data disk. As a result, an I/O error occurs in the kernel and the disk is reattached as a read-only disk.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__p34961676273">Listening object: <strong id="cce_10_0132__b137891565425">/dev/kmsg</strong></p>
+<p id="cce_10_0132__p14288214850">Matching rule: <strong id="cce_10_0132__b15200817134219">Remounting filesystem read-only</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0132__row34978752711"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p1749707152710">DiskReadonly</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p249713713271">Check whether the system disk, Docker disk, and kubelet disk are read-only.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__p164974742711">Detection paths:</p>
+<ul id="cce_10_0132__ul15871334132818"><li id="cce_10_0132__li19587234112815">/mnt/paas/kubernetes/kubelet/</li><li id="cce_10_0132__li19808033154415">/var/lib/docker/</li><li id="cce_10_0132__li1232314353441">/var/lib/containerd/</li><li id="cce_10_0132__li445844115448">/var/paas/sys/log/cceaddon-npd/</li></ul>
+<p id="cce_10_0132__p925152084514">The temporary file <strong id="cce_10_0132__b6967103431319">npd-disk-write-ping</strong> is generated in the detection path.</p>
+<p id="cce_10_0132__p17833111174618">Currently, additional data disks are not supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row1749757112713"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p114973716277">DiskProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p4497771279">Check the usage of the system disk, Docker disk, and kubelet disk.</p>
+<p id="cce_10_0132__p049717719277"></p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul848018237225"><li id="cce_10_0132__li1748012237221">Threshold: 80%</li><li id="cce_10_0132__li448082318227">Source:<pre class="screen" id="cce_10_0132__screen15718171814229">df -h</pre>
+</li></ul>
+<p id="cce_10_0132__p357833584613">Currently, additional data disks are not supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row652213985816"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p19824134712129">EmptyDirVolumeGroupStatusError</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p45224397584">Check whether the ephemeral volume group on the node is normal.</p>
+<p id="cce_10_0132__p1964614101539">Impact: The pod that depends on the storage pool cannot write data to the temporary volume. The temporary volume is remounted as a read-only file system by the kernel due to an I/O error.</p>
+<p id="cce_10_0132__p1649544615344">Typical scenario: When creating a node, a user configures two data disks as a temporary volume storage pool. The user deletes some data disks by mistake. As a result, the storage pool becomes abnormal.</p>
+</td>
+<td class="cellrowborder" rowspan="2" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul694675316171"><li id="cce_10_0132__li294635331719">Detection period: 60s</li><li id="cce_10_0132__li1194655311712">Source:<pre class="screen" id="cce_10_0132__screen1730112457179">vgs -o vg_name, vg_attr</pre>
+</li><li id="cce_10_0132__li179461853101720">Principle: Check whether the VG (storage pool) is in the P state. If yes, some PVs (data disks) are lost.</li><li id="cce_10_0132__li6946145317178">Joint scheduling: The scheduler can automatically identify an abnormal node and prevent pods that depend on the storage pool from being scheduled to the node.</li><li id="cce_10_0132__li1194619530173">Exception scenario: The npd add-on cannot detect the loss of all PVs (data disks), resulting in the loss of VGs (storage pools). In this case, kubelet automatically isolates the node, detects the loss of VGs (storage pools), and updates the corresponding resources in <strong id="cce_10_0132__b17637957111913">nodestatus.allocatable</strong> to <strong id="cce_10_0132__b1086015931917">0</strong>. This prevents pods that depend on the storage pool from being scheduled to the node. The damage of a single PV cannot be detected. In this case, the ReadonlyFilesystem detection is abnormal.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row102785374911"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p207911347151214">LocalPvVolumeGroupStatusError</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p027916334910">Check the PV group on the node.</p>
+<p id="cce_10_0132__p063762014315">Impact: Pods that depend on the storage pool cannot write data to the persistent volume. The persistent volume is remounted as a read-only file system by the kernel due to an I/O error.</p>
+<p id="cce_10_0132__p5448583352">Typical scenario: When creating a node, a user configures two data disks as a persistent volume storage pool. Some data disks are deleted by mistake.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row846942934417"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p154691829104415">MountPointProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p1747082915445">Check the mount point on the node.</p>
+<p id="cce_10_0132__p1528212414385">Exception definition: You cannot access the mount point by running the <strong id="cce_10_0132__b1364375693213">cd</strong> command.</p>
+<p id="cce_10_0132__p11881753183217">Typical scenario: Network File System (NFS), for example, obsfs and s3fs is mounted to a node. When the connection is abnormal due to network or peer NFS server exceptions, all processes that access the mount point are suspended. For example, during a cluster upgrade, a kubelet is restarted, and all mount points are scanned. If the abnormal mount point is detected, the upgrade fails.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__p141531643143416">Alternatively, you can run the following command:</p>
+<pre class="screen" id="cce_10_0132__screen83631028111316">for dir in `df -h | grep -v "Mounted on" | awk "{print \\$NF}"`;do cd $dir; done &amp;&amp; echo "ok"</pre>
+</td>
+</tr>
+<tr id="cce_10_0132__row12162627450"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p1516219213453">DiskHung</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p1162182184513">Check whether I/O faults occur on the disk of the node.</p>
+<p id="cce_10_0132__p76931555500">Definition of I/O faults: The system does not respond to disk I/O requests, and some processes are in the D state.</p>
+<p id="cce_10_0132__p8166365514">Typical Scenario: Disks cannot respond due to abnormal OS hard disk drivers or severe faults on the underlying network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul44097139534"><li id="cce_10_0132__li178071253283">Check object: all data disks</li><li id="cce_10_0132__li7807165162812">Source:<p id="cce_10_0132__p72111118317"><a name="cce_10_0132__li7807165162812"></a><a name="li7807165162812"></a>/proc/diskstat</p>
+<div class="p" id="cce_10_0132__p15201512173110">Alternatively, you can run the following command:<pre class="screen" id="cce_10_0132__screen59331319172519">iostat -xmt 1</pre>
+</div>
+</li><li id="cce_10_0132__li1880718514285">Threshold:<ul id="cce_10_0132__ul268520417114"><li id="cce_10_0132__li1068554191110">Average usage. The value of ioutil is greater than or equal to 0.99.</li><li id="cce_10_0132__li659354341220">Average I/O queue length. avgqu-sz &gt;=1</li><li id="cce_10_0132__li463526172812">Average I/O transfer volume, iops (w/s) + ioth (wMB/s) &lt; = 1</li></ul>
+<div class="note" id="cce_10_0132__note10906163042814"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__p0853240102816">In some OSs, no data changes during I/O. In this case, calculate the CPU I/O time usage. The value of iowait is greater than 0.8.</p>
+</div></div>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row3985171574511"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p69851115204518">DiskSlow</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p1398571574515">Check whether slow I/O occurs on the disk of the node.</p>
+<p id="cce_10_0132__p691133195212">Definition of slow I/O: The average response time exceeds the threshold.</p>
+<p id="cce_10_0132__p8921802560">Typical scenario: EVS disks have slow I/Os due to network fluctuation.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul6519330155316"><li id="cce_10_0132__li128591254132810">Check object: all data disks</li><li id="cce_10_0132__li1285912549289">Source:<p id="cce_10_0132__p1748722411311"><a name="cce_10_0132__li1285912549289"></a><a name="li1285912549289"></a>/proc/diskstat</p>
+<div class="p" id="cce_10_0132__p1029519252314">Alternatively, you can run the following command:<pre class="screen" id="cce_10_0132__screen168915347212">iostat -xmt 1</pre>
+</div>
+</li><li id="cce_10_0132__li1785935492816">Threshold:<p id="cce_10_0132__p6917738102914"><a name="cce_10_0132__li1785935492816"></a><a name="li1785935492816"></a>Average I/O latency: await &gt; = 5000 ms</p>
+</li></ul>
+<div class="note" id="cce_10_0132__note15410023122915"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__p178314521752">If I/O requests are not responded and the <strong id="cce_10_0132__b230416205719">await</strong> data is not updated. In this case, this check item is invalid.</p>
+</div></div>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0132__p1141153045812">The kubelet component has the following default check items, which have bugs or defects. You can fix them by upgrading the cluster or using npd.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table195521452174319" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Default kubelet check items</caption><thead align="left"><tr id="cce_10_0132__row25985528436"><th align="left" class="cellrowborder" valign="top" width="23.112311231123112%" id="mcps1.3.5.4.2.7.2.4.1.1"><p id="cce_10_0132__p1059895213434">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.49404940494049%" id="mcps1.3.5.4.2.7.2.4.1.2"><p id="cce_10_0132__p659835218435">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.393639363936394%" id="mcps1.3.5.4.2.7.2.4.1.3"><p id="cce_10_0132__p6598135254318">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__row859855216439"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.7.2.4.1.1 "><p id="cce_10_0132__p115986525437">PIDPressure</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.7.2.4.1.2 "><p id="cce_10_0132__p19598185213439">Check whether PIDs are sufficient.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.7.2.4.1.3 "><ul id="cce_10_0132__ul10652201210213"><li id="cce_10_0132__li16652812162116">Interval: 10 seconds</li><li id="cce_10_0132__li146526128212">Threshold: 90%</li><li id="cce_10_0132__li1165261219211">Defect: In community version 1.23.1 and earlier versions, this check item becomes invalid when over 65535 PIDs are used. For details, see <a href="https://github.com/kubernetes/kubernetes/issues/107107" target="_blank" rel="noopener noreferrer">issue 107107</a>. In community version 1.24 and earlier versions, thread-max is not considered in this check item.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row1759895214432"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.7.2.4.1.1 "><p id="cce_10_0132__p159855217436">MemoryPressure</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.7.2.4.1.2 "><p id="cce_10_0132__p18598115210439">Check whether the allocable memory for the containers is sufficient.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.7.2.4.1.3 "><ul id="cce_10_0132__ul182919104218"><li id="cce_10_0132__li16291104219">Interval: 10 seconds</li><li id="cce_10_0132__li1029110182115">Threshold: Max. 100 MiB</li><li id="cce_10_0132__li9291310112110">Allocable = Total memory of a node – Reserved memory of a node</li><li id="cce_10_0132__li12913101213">Defect: This check item checks only the memory consumed by containers, and does not consider that consumed by other elements on the node.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row11598185264317"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.7.2.4.1.1 "><p id="cce_10_0132__p359855212431">DiskPressure</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.7.2.4.1.2 "><p id="cce_10_0132__p25986526438">Check the disk usage and inodes usage of the kubelet and Docker disks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.7.2.4.1.3 "><p id="cce_10_0132__p2598152174319">Interval: 10 seconds</p>
+<p id="cce_10_0132__p1059835264318">Threshold: 90%</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0132__section1471610580474"><a name="cce_10_0132__section1471610580474"></a><a name="section1471610580474"></a><h4 class="sectiontitle">Node-problem-controller Fault Isolation</h4><div class="note" id="cce_10_0132__note57048194567"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__p07047195569">Fault isolation is supported only by add-ons of 1.16.0 and later versions.</p>
+<p id="cce_10_0132__p186734461784">When installing the npd add-on, set <strong id="cce_10_0132__b9462014175915">npc.enable</strong> to <strong id="cce_10_0132__b8471114125910">true</strong> to deploy dual Node-problem-controller (NPC). You can deploy NPC as single-instance but such NPC does not ensure high availability.</p>
+<p id="cce_10_0132__p14519162082">By default, if multiple nodes become faulty, NPC adds taints to only one node. You can set <strong id="cce_10_0132__b12512420324">npc.maxTaintedNode</strong> to increase the threshold. When the fault is rectified, NPC is not running and taints remain. You need to manually clear the taints or start NPC.</p>
+</div></div>
+<p id="cce_10_0132__p321713044916">The open source NPD plug-in provides fault detection but not fault isolation. CCE enhances the node-problem-controller (NPC) based on the open source NPD. This component is implemented based on the Kubernetes <a href="https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/#taint-based-evictions" target="_blank" rel="noopener noreferrer">node controller</a>. For faults reported by NPD, NPC automatically adds taints to nodes for node fault isolation.</p>
+<p id="cce_10_0132__p746334873319">You can modify <strong id="cce_10_0132__b1196310595418">add-onnpc.customConditionToTaint</strong> according to the following table to configure fault isolation rules.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table205378534248" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Parameters</caption><thead align="left"><tr id="cce_10_0132__row6537185313242"><th align="left" class="cellrowborder" valign="top" width="32.690000000000005%" id="mcps1.3.6.5.2.4.1.1"><p id="cce_10_0132__p105372053142420">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="34.300000000000004%" id="mcps1.3.6.5.2.4.1.2"><p id="cce_10_0132__p135371653202410">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.01%" id="mcps1.3.6.5.2.4.1.3"><p id="cce_10_0132__p0537353162412">Default</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__row25375532245"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p05371853192416">npc.enable</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p6537155372414">Whether to enable NPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p1353716531240">true</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row1453705322418"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p853718533245">npc.customCondtionToTaint</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p1453718538242">Fault isolation rules</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p1053885342417">See <a href="#cce_10_0132__table147438134911">Table 7</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row2538115312420"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p8538753112412">npc.customConditionToTaint[i]</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p6538653122419">Fault isolation rule items</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p3538185322412">N/A</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row15538165316247"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p5538653202411">npc.customConditionToTaint[i].</p>
+<p id="cce_10_0132__p1853820539245">condition.status</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p1053825315249">Fault status</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p175381953132412">true</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row1653815536240"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p12538153152412">npc.customConditionToTaint[i].</p>
+<p id="cce_10_0132__p25381153112414">condition.type</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p4538195310249">Fault type</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p17538175316246">N/A</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row185381753102412"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p953865316248">npc.customConditionToTaint[i].</p>
+<p id="cce_10_0132__p125389534245">enable</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p35381853172414">Whether to enable the fault isolation rule.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p15538135310245">false</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row145382531245"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p1553819539249">npc.customConditionToTaint[i].</p>
+<p id="cce_10_0132__p18538195316242">.taint.effect</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p1653814531242">Fault isolation effect</p>
+<p id="cce_10_0132__p953919533245">NoSchedule, PreferNoSchedule, or NoExecute</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p6539115342418">NoSchedule</p>
+<p id="cce_10_0132__p1653955311248">Value options: <strong id="cce_10_0132__b794502819414">NoSchedule</strong>, <strong id="cce_10_0132__b12522309420">PreferNoSchedule</strong>, and <strong id="cce_10_0132__b5405113218416">NoExecute</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0132__row12539185322410"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p053910538244">npc. maxTaintedNode</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p15539105352410">Number of nodes in a cluster that can be tainted by NPC</p>
+<p id="cce_10_0132__p9569114524816">The int format and percentage format are supported.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p653945332418">1</p>
+<p id="cce_10_0132__p7505142243916">Values:</p>
+<ul id="cce_10_0132__ul932916246394"><li id="cce_10_0132__li1360112793913">The value is in int format and ranges from 1 to infinity.</li><li id="cce_10_0132__li5330102473914">The value ranges from 1% to 100%, in percentage. The minimum value of this parameter multiplied by the number of cluster nodes is 1.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__row8539553142410"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p12539145352419">Npc.affinity</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p85394532241">Node affinity of the controller</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p155391653132410">N/A</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0132__table147438134911"></a><a name="table147438134911"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table147438134911" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Fault isolation rule configuration</caption><thead align="left"><tr id="cce_10_0132__row1213216804910"><th align="left" class="cellrowborder" valign="top" width="24.84751524847515%" id="mcps1.3.6.6.2.4.1.1"><p id="cce_10_0132__p1513238104914">Fault</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30.4969503049695%" id="mcps1.3.6.6.2.4.1.2"><p id="cce_10_0132__p213210819494">Fault Details</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.65553444655534%" id="mcps1.3.6.6.2.4.1.3"><p id="cce_10_0132__p1613317854912">Taint</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__row1413388114912"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p1713315810491">DiskReadonly</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p1913348174911">Disk read-only</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p191338820498"><strong id="cce_10_0132__b17304602590">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row81335844916"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p1813317814496">DiskProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p413311874918">The disk space is insufficient, and key logical disks are detached.</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p4133581497"><strong id="cce_10_0132__b69508015916">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row713313824914"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p11133128124913">FrequentKubeletRestart</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p19133086491">kubelet restarts frequently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p413318874919"><strong id="cce_10_0132__b895219013596">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row1213311824920"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p16133118184914">FrequentDockerRestart</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p1413388164914">Docker restarts frequently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p1313315804919"><strong id="cce_10_0132__b1095570115917">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row71336824918"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p4133148114916">FrequentContainerdRestart</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p16133687494">containerd restarts frequently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p14133168134917"><strong id="cce_10_0132__b39572065913">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row19133198164912"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p1013318820496">KUBEPROXYProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p15133198144914">kube-proxy is abnormal.</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p61331989495"><strong id="cce_10_0132__b1195911012592">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row131333804918"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p513308144915">PIDProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p113318824915">Insufficient PIDs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p713314816496"><strong id="cce_10_0132__b1296111016597">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row1913318819495"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p113319834920">FDProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p91331882491">Insufficient file handles</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p151331984493"><strong id="cce_10_0132__b49635018595">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__row3133584499"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p13133148194911">MemoryProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p41341588495">Insufficient node memory</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p6134686499"><strong id="cce_10_0132__b896520105910">NoSchedule</strong>: No new pods allowed.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0132__section1424163811319"><h4 class="sectiontitle">Collecting Prometheus Metrics</h4><p id="cce_10_0132__p1278014271146">The NPD daemon pod exposes Prometheus metric data on port 19901. By default, the NPD pod is added with the annotation <strong id="cce_10_0132__b370543615145">metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"prometheus","path":"/metrics","port":"19901","names":""}]'</strong>. You can build a Prometheus collector to identify and obtain NPD metrics from <strong id="cce_10_0132__b944214591169">http://{{NpdPodIP}}:{{NpdPodPort}}/metrics</strong>.</p>
+<div class="note" id="cce_10_0132__note103331531195320"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__p1733593118531">If the npd add-on version is earlier than 1.16.5, the exposed port of Prometheus metrics is <strong id="cce_10_0132__b176723287178">20257</strong>.</p>
+</div></div>
+<p id="cce_10_0132__p207808271140">Currently, the metric data includes <strong id="cce_10_0132__b129718519273">problem_counter</strong> and <strong id="cce_10_0132__b826910717274">problem_gauge</strong>, as shown below.</p>
+<pre class="screen" id="cce_10_0132__screen1898505318417"># HELP problem_counter Number of times a specific type of problem have occurred.
+# TYPE problem_counter counter
+problem_counter{reason="DockerHung"} 0
+problem_counter{reason="DockerStart"} 0
+problem_counter{reason="EmptyDirVolumeGroupStatusError"} 0
+...
+# HELP problem_gauge Whether a specific type of problem is affecting the node or not.
+# TYPE problem_gauge gauge
+problem_gauge{reason="CNIIsDown",type="CNIProblem"} 0
+problem_gauge{reason="CNIIsUp",type="CNIProblem"} 0
+problem_gauge{reason="CRIIsDown",type="CRIProblem"} 0
+problem_gauge{reason="CRIIsUp",type="CRIProblem"} 0
+..</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0139.html b/docs/cce/umn/cce_10_0139.html
new file mode 100644
index 00000000..cf5ed78e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0139.html
@@ -0,0 +1,186 @@
+<a name="cce_10_0139"></a><a name="cce_10_0139"></a>
+
+<h1 class="topictitle1">Common kubectl Commands</h1>
+<div id="body1552027417625"><div class="section" id="cce_10_0139__section18967103615461"><h4 class="sectiontitle">Getting Started</h4><p id="cce_10_0139__p234234894513"><strong id="cce_10_0139__b4920142213474">get</strong></p>
+<p id="cce_10_0139__p1417173415531">The <strong id="cce_10_0139__b13159131612144">get</strong> command displays one or many resources of a cluster.</p>
+<p id="cce_10_0139__p8350153344717">This command prints a table of the most important information about all resources, including cluster nodes, running pods, Deployments, and Services.</p>
+<div class="notice" id="cce_10_0139__note4905104145412"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0139__p79051048548">A cluster can have multiple namespaces. If no namespace is specified, this command will run with the <strong id="cce_10_0139__b1293616186202">--namespace=default</strong> flag.</p>
+</div></div>
+<p id="cce_10_0139__p73421485450">Examples:</p>
+<p id="cce_10_0139__p61671910164218">To list all pods with detailed information:</p>
+<pre class="screen" id="cce_10_0139__screen4797119124219">kubectl get po -o wide</pre>
+<p id="cce_10_0139__p1134218489455">To display pods in all namespaces:</p>
+<pre class="screen" id="cce_10_0139__screen642116494314">kubectl get po --all-namespaces</pre>
+<p id="cce_10_0139__p17342154864517">To list labels of pods in all namespaces:</p>
+<pre class="screen" id="cce_10_0139__screen1886971116454">kubectl get po --show-labels</pre>
+<p id="cce_10_0139__p1634284817459">To list all namespaces of the node:</p>
+<pre class="screen" id="cce_10_0139__screen856410531454">kubectl get namespace</pre>
+<div class="note" id="cce_10_0139__note5507103919465"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0139__p185091239104613">To list information of other nodes, run this command with the <strong id="cce_10_0139__b1612312459283">-s</strong> flag. To list a specified type of resources, add the resource type to this command, for example, <strong id="cce_10_0139__b124202003018">kubectl get svc</strong>, <strong id="cce_10_0139__b616822423018">kubectl get nodes</strong>, and <strong id="cce_10_0139__b29391932173013">kubectl get deploy</strong>.</p>
+</div></div>
+<p id="cce_10_0139__p4333012194712">To list a pod with a specified name in YAML output format:</p>
+<pre class="screen" id="cce_10_0139__screen730522111472">kubectl get po &lt;podname&gt; -o yaml</pre>
+<p id="cce_10_0139__p17342124894512">To list a pod with a specified name in JSON output format:</p>
+<pre class="screen" id="cce_10_0139__screen1559164744718">kubectl get po &lt;podname&gt; -o json</pre>
+<pre class="screen" id="cce_10_0139__screen17387134694914">kubectl get po rc-nginx-2-btv4j -o=custom-columns=LABELS:.metadata.labels.app</pre>
+<div class="note" id="cce_10_0139__note179211514125014"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0139__p1892113149504"><strong id="cce_10_0139__b5668195312438">LABELS</strong> indicates a comma separated list of user-defined column titles. <strong id="cce_10_0139__b1424170104416">metadata.labels.app</strong> indicates the data to be listed in either YAML or JSON output format.</p>
+</div></div>
+<p id="cce_10_0139__p6342184816454"><strong id="cce_10_0139__b785515551475">create</strong></p>
+<p id="cce_10_0139__p17544143418194">The <strong id="cce_10_0139__b121812430517">create</strong> command creates a cluster resource from a file or input.</p>
+<p id="cce_10_0139__p1634254894516">If there is already a resource descriptor (a YAML or JSON file), you can create the resource from the file by running the following command:</p>
+<pre class="screen" id="cce_10_0139__screen54431428171912">kubectl create -f filename</pre>
+<p id="cce_10_0139__p1834315485451"><strong id="cce_10_0139__b4654104214526">expose</strong></p>
+<p id="cce_10_0139__p11343164816458">The <strong id="cce_10_0139__b399163675417">expose</strong> command exposes a resource as a new Kubernetes service. Possible resources include a pod, Service, and Deployment.</p>
+<pre class="screen" id="cce_10_0139__screen49422910211">kubectl expose deployment deployname --port=81 --type=NodePort --target-port=80 --name=service-name</pre>
+<div class="note" id="cce_10_0139__note32671136192117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0139__p1926803619216">In the preceding command, <strong id="cce_10_0139__b117291128482">--port</strong> indicates the port exposed by the Service, <strong id="cce_10_0139__b167502945312">--type</strong> indicates the Service type, and <strong id="cce_10_0139__b112416352535">--target-port</strong> indicates the port of the pod backing the Service. Visiting <em id="cce_10_0139__i1612017581135">ClusterIP</em>:<em id="cce_10_0139__i193441601048">Port</em> allows you to access the applications in the cluster.</p>
+</div></div>
+<p id="cce_10_0139__p13343154884513"><strong id="cce_10_0139__b126866100229">run</strong></p>
+<p id="cce_10_0139__p071835112149">Examples:</p>
+<p id="cce_10_0139__p183439487453">To run a particular image in the cluster:</p>
+<pre class="screen" id="cce_10_0139__screen5556163593512">kubectl run deployname --image=nginx:latest</pre>
+<p id="cce_10_0139__p562896193511">To run a particular image using a specified command:</p>
+<pre class="screen" id="cce_10_0139__screen18941445143515">kubectl run deployname -image=busybox --command -- ping baidu.com</pre>
+<p id="cce_10_0139__p1934364894514"><strong id="cce_10_0139__b6845152102311">set</strong></p>
+<p id="cce_10_0139__p1334319487456">The <strong id="cce_10_0139__b186928225148">set</strong> command configures object resources.</p>
+<p id="cce_10_0139__p67851636154">Example:</p>
+<p id="cce_10_0139__p235871516428">To change the image of a deployment with the name specified in <strong id="cce_10_0139__b35591012191610">deployname</strong> to image 1.0:</p>
+<pre class="screen" id="cce_10_0139__screen13721730124219">kubectl set image deploy deployname containername=containername:1.0</pre>
+<p id="cce_10_0139__p234344814458"><strong id="cce_10_0139__b1552281312236">edit</strong></p>
+<p id="cce_10_0139__p1436113379421">The <strong id="cce_10_0139__b5618185191710">edit</strong> command edits a resource from the default editor.</p>
+<p id="cce_10_0139__p123378169159">Examples:</p>
+<p id="cce_10_0139__p1234354884512">To update a pod:</p>
+<pre class="screen" id="cce_10_0139__screen557954114217">kubectl edit po po-nginx-btv4j</pre>
+<p id="cce_10_0139__p163435488457">The example command yields the same effect as the following command:</p>
+<pre class="screen" id="cce_10_0139__screen25481248134214">kubectl get po po-nginx-btv4j -o yaml &gt;&gt; /tmp/nginx-tmp.yaml
+vim /tmp/nginx-tmp.yaml
+/*do some changes here */
+kubectl replace -f /tmp/nginx-tmp.yaml</pre>
+<p id="cce_10_0139__p18343114814450"><strong id="cce_10_0139__b787881362412">explain</strong></p>
+<p id="cce_10_0139__p034310481457">The <strong id="cce_10_0139__b16311520457">explain</strong> command views documents or reference documents.</p>
+<p id="cce_10_0139__p183961925201517">Example:</p>
+<p id="cce_10_0139__p624411471407">To get documentation of pods:</p>
+<pre class="screen" id="cce_10_0139__screen71035591015">kubectl explain pod</pre>
+<p id="cce_10_0139__p33431448114512"><strong id="cce_10_0139__b3104192172619">delete</strong></p>
+<p id="cce_10_0139__p1734364817455">The <strong id="cce_10_0139__b1053663610251">delete</strong> command deletes resources by resource name or label.</p>
+<p id="cce_10_0139__p1526494214158">Example:</p>
+<p id="cce_10_0139__p1930815151118">To delete a pod with minimal delay:</p>
+<pre class="screen" id="cce_10_0139__screen744785619512">kubectl delete po podname --now </pre>
+<pre class="screen" id="cce_10_0139__screen399415119611">kubectl delete -f nginx.yaml
+kubectl delete deployment deployname</pre>
+</div>
+<div class="section" id="cce_10_0139__section122665712261"><h4 class="sectiontitle">Deployment Commands</h4><p id="cce_10_0139__p3344144814513"><strong id="cce_10_0139__b118683716272">rolling-update*</strong></p>
+<p id="cce_10_0139__p16013360715"><strong id="cce_10_0139__b19274102215295">rolling-update</strong> is a very important command. It updates a running service with zero downtime. Pods are incrementally replaced by new ones. One pod is updated at a time. The old pod is deleted only after the new pod is up. New pods must be distinct from old pods by name, version, and label. Otherwise, an error message will be reported.</p>
+<pre class="screen" id="cce_10_0139__screen1547213531274">kubectl rolling-update poname -f newfilename
+kubectl rolling-update poname -image=image:v2</pre>
+<p id="cce_10_0139__p1434414489459">If any problem occurs during the rolling update, run the command with the <strong id="cce_10_0139__b9985111995014">-rollback</strong> flag to abort the rolling update and revert to the previous pod.</p>
+<pre class="screen" id="cce_10_0139__screen18916143211820">kubectl rolling-update poname -rollback</pre>
+<p id="cce_10_0139__p13441848104511"><strong id="cce_10_0139__b17955442162714">rollout</strong></p>
+<p id="cce_10_0139__p23441448174519">The <strong id="cce_10_0139__b166811806523">rollout</strong> command manages the rollout of a resource.</p>
+<p id="cce_10_0139__p814683231615">Examples:</p>
+<p id="cce_10_0139__p144748382917">To check the rollout status of a particular deployment:</p>
+<pre class="screen" id="cce_10_0139__screen1295993131120">kubectl rollout status deployment/deployname</pre>
+<p id="cce_10_0139__p8652814201119">To view the rollout history of a particular deployment:</p>
+<pre class="screen" id="cce_10_0139__screen173422771114">kubectl rollout history deployment/deployname</pre>
+<p id="cce_10_0139__p1214316582121">To roll back to the previous deployment: (by default, a resource is rolled back to the previous version)</p>
+<pre class="screen" id="cce_10_0139__screen16261198191315">kubectl rollout undo deployment/test-nginx</pre>
+<p id="cce_10_0139__p1434414818458"><strong id="cce_10_0139__b11413855102710">scale</strong></p>
+<p id="cce_10_0139__p1534414486454">The <strong id="cce_10_0139__b16978914135514">scale</strong> command sets a new size for a resource by adjusting the number of resource replicas.</p>
+<pre class="screen" id="cce_10_0139__screen1934716172138">kubectl scale deployment deployname --replicas=newnumber</pre>
+<p id="cce_10_0139__p17344248154511"><strong id="cce_10_0139__b199411058152713">autoscale</strong></p>
+<p id="cce_10_0139__p1734413487452">The <strong id="cce_10_0139__b18906183515615">autoscale</strong> command automatically chooses and sets the number of pods. This command specifies the range for the number of pod replicas maintained by a replication controller. If there are too many pods, the replication controller terminates the extra pods. If there is too few, the replication controller starts more pods.</p>
+<pre class="screen" id="cce_10_0139__screen116796244133">kubectl autoscale deployment deployname --min=minnumber --max=maxnumber</pre>
+</div>
+<div class="section" id="cce_10_0139__section286451412289"><h4 class="sectiontitle">Cluster Management Commands</h4><p id="cce_10_0139__p11344184817455"><strong id="cce_10_0139__b54239395281">cordon, drain, uncordon*</strong></p>
+<p id="cce_10_0139__p43441048164511">If a node to be upgraded is running many pods or is already down, perform the following steps to prepare the node for maintenance:</p>
+<ol id="cce_10_0139__ol3117639161319"><li id="cce_10_0139__li8117439141311"><span>Run the <strong id="cce_10_0139__b1355111207111">cordon</strong> command to mark a node as unschedulable. This means that new pods will not be scheduled onto the node.</span><p><pre class="screen" id="cce_10_0139__screen7656150121420">kubectl cordon nodename</pre>
+<p id="cce_10_0139__p8609160115119">Note: In CCE, <strong id="cce_10_0139__b168667167394">nodename</strong> indicates the private network IP address of a node.</p>
+</p></li><li id="cce_10_0139__li1269134914131"><span>Run the <strong id="cce_10_0139__b3582706132">drain</strong> command to smoothly migrate the running pods from the node to another node.</span><p><pre class="screen" id="cce_10_0139__screen12837101818151">kubectl drain nodename --ignore-daemonsets --ignore-emptydir</pre>
+<p id="cce_10_0139__p24325274514"><strong id="cce_10_0139__b15160152232816">ignore-emptydir</strong> ignores the pods that use emptyDirs.</p>
+</p></li><li id="cce_10_0139__li12974797153"><span>Perform maintenance operations on the node, such as upgrading the kernel and upgrading Docker.</span></li><li id="cce_10_0139__li662181315152"><span>After node maintenance is completed, run the <strong id="cce_10_0139__b1012917165140">uncordon</strong> command to mark the node as schedulable.</span><p><pre class="screen" id="cce_10_0139__screen17103172314158">kubectl uncordon nodename</pre>
+</p></li></ol>
+<p id="cce_10_0139__p1345174824516"><strong id="cce_10_0139__b254919535280">cluster-info</strong></p>
+<p id="cce_10_0139__p143453481455">To display the add-ons running in the cluster:</p>
+<pre class="screen" id="cce_10_0139__screen17857174361513">kubectl cluster-info</pre>
+<p id="cce_10_0139__p1212245371512">To dump current cluster information to stdout:</p>
+<pre class="screen" id="cce_10_0139__screen179428116161">kubectl cluster-info dump</pre>
+<p id="cce_10_0139__p934517488459"><strong id="cce_10_0139__b150610162914">top*</strong></p>
+<p id="cce_10_0139__p23451648144514">The <strong id="cce_10_0139__b04351555209">top</strong> command displays resource (CPU/memory/storage) usage. This command requires Heapster to be correctly configured and working on the server.</p>
+<p id="cce_10_0139__p53452481451"><strong id="cce_10_0139__b53591447299">taint*</strong></p>
+<p id="cce_10_0139__p6346144864512">The <strong id="cce_10_0139__b2420223016">taint</strong> command updates the taints on one or more nodes.</p>
+<p id="cce_10_0139__p1234644834518"><strong id="cce_10_0139__b8675144294">certificate*</strong></p>
+<p id="cce_10_0139__p83461048174518">The <strong id="cce_10_0139__b106839271401">certificate</strong> command modifies the certificate resources.</p>
+</div>
+<div class="section" id="cce_10_0139__section2283324202914"><h4 class="sectiontitle">Fault Diagnosis and Debugging Commands</h4><p id="cce_10_0139__p234664874513"><strong id="cce_10_0139__b8357150162917">describe</strong></p>
+<p id="cce_10_0139__p534684819457">The <strong id="cce_10_0139__b144033331416">describe</strong> command is similar to the <strong id="cce_10_0139__b139254431110">get</strong> command. The difference is that the <strong id="cce_10_0139__b26831211522">describe</strong> command shows details of a specific resource or group of resources, whereas the <strong id="cce_10_0139__b465825917120">get</strong> command lists one or more resources in a cluster. The <strong id="cce_10_0139__b579384314410">describe</strong> command does not support the <strong id="cce_10_0139__b68735511416">-o</strong> flag. For resources of the same type, resource details are printed out in the same format.</p>
+<div class="note" id="cce_10_0139__note111601920122211"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0139__p1216122011221">If the information about a resource is queried, you can use the get command to obtain more detailed information. If you want to check the status of a specific resource, for example, to check if a pod is in the running state, run the <strong id="cce_10_0139__b497301210912">describe</strong> command to show more detailed status information.</p>
+<pre class="screen" id="cce_10_0139__screen16869135102217">kubectl describe po &lt;podname&gt;</pre>
+</div></div>
+<p id="cce_10_0139__p4346144834517"><strong id="cce_10_0139__b128511567292">logs</strong></p>
+<p id="cce_10_0139__p11346194814517">The <strong id="cce_10_0139__b7474205516107">logs</strong> command prints logs for a container in a pod or specified resource to stdout. To display logs in the <strong id="cce_10_0139__b142047175111">tail -f</strong> mode, run this command with the <strong id="cce_10_0139__b965701416142">-f</strong> flag.</p>
+<pre class="screen" id="cce_10_0139__screen15341952102212">kubectl logs -f podname</pre>
+<p id="cce_10_0139__p33467483453"><strong id="cce_10_0139__b2028510316301">exec</strong></p>
+<p id="cce_10_0139__p1134664817451">The kubectl <strong id="cce_10_0139__b11500659141913">exec</strong> command is similar to the Docker <strong id="cce_10_0139__b1614215538204">exec</strong> command and executes a command in a container. If there are multiple containers in a pod, use the <strong id="cce_10_0139__b2069942510211">-c</strong> flag to choose a container.</p>
+<pre class="screen" id="cce_10_0139__screen15587165810223">kubectl exec -it podname bash
+kubectl exec -it podname -c containername bash</pre>
+<p id="cce_10_0139__p4347194854514"><strong id="cce_10_0139__b16126181243011">port-forward*</strong></p>
+<p id="cce_10_0139__p183471548154513">The <strong id="cce_10_0139__b931432813149">port-forward</strong> command forwards one or more local ports to a pod.</p>
+<p id="cce_10_0139__p36371838131716">Example:</p>
+<p id="cce_10_0139__p86434115234">To listen on ports 5000 and 6000 locally, forwarding data to/from ports 5000 and 6000 in the pod:</p>
+<pre class="screen" id="cce_10_0139__screen285822318234">kubectl port-forward podname 5000:6000</pre>
+<p id="cce_10_0139__p12347194813457"><strong id="cce_10_0139__b20240101913301">proxy*</strong></p>
+<p id="cce_10_0139__p1034734854518">The <strong id="cce_10_0139__b76391831171616">proxy</strong> command creates a proxy server between localhost and the Kubernetes API server.</p>
+<p id="cce_10_0139__p7970235189">Example:</p>
+<p id="cce_10_0139__p116474263214">To enable the HTTP REST APIs on the master node:</p>
+<pre class="screen" id="cce_10_0139__screen189111563327">kubectl proxy -accept-hosts= '.*' -port=8001 -address= '0.0.0.0'</pre>
+<p id="cce_10_0139__p1834724810454"><strong id="cce_10_0139__b1297332103020">cp</strong></p>
+<p id="cce_10_0139__p11347154884513">The <strong id="cce_10_0139__b476513116225">cp</strong> command copies files and directories to and from containers.</p>
+<pre class="screen" id="cce_10_0139__screen15511838113316">cp filename newfilename</pre>
+<p id="cce_10_0139__p1534754814453"><strong id="cce_10_0139__b995522316302">auth*</strong></p>
+<p id="cce_10_0139__p1234754814452">The <strong id="cce_10_0139__b876982682315">auth</strong> command inspects authorization.</p>
+<p id="cce_10_0139__p123471748194518"><strong id="cce_10_0139__b17722226103016">attach*</strong></p>
+<p id="cce_10_0139__p334844813455">The <strong id="cce_10_0139__b88861447172416">attach</strong> command is similar to the <strong id="cce_10_0139__b17455145615244">logs -f</strong> command and attaches to a process that is already running inside an existing container. To exit, run the <strong id="cce_10_0139__b2011412652516">ctrl-c</strong> command. If a pod contains multiple containers, to view the output of a specific container, use the <strong id="cce_10_0139__b91321356194617">-c</strong> flag and <em id="cce_10_0139__i171381456184614">containername</em> following <em id="cce_10_0139__i13140556114617">podname</em> to specify a container.</p>
+<pre class="screen" id="cce_10_0139__screen42001347183320">kubectl attach podname -c containername</pre>
+</div>
+<div class="section" id="cce_10_0139__section1870143812302"><h4 class="sectiontitle">Advanced Commands</h4><p id="cce_10_0139__p1634824894515"><strong id="cce_10_0139__b8307106183119">replace</strong></p>
+<p id="cce_10_0139__p9348104874513">The <strong id="cce_10_0139__b173321727192712">replace</strong> command updates or replaces an existing resource by attributes including the number of replicas, labels, image versions, and ports. You can directly modify the original YAML file and then run the <strong id="cce_10_0139__b169312551295">replace</strong> command.</p>
+<pre class="screen" id="cce_10_0139__screen819993333510">kubectl replace -f filename</pre>
+<div class="notice" id="cce_10_0139__note10339910193519"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0139__p133911104351">Resource names cannot be updated.</p>
+</div></div>
+<p id="cce_10_0139__p17348134894517"><strong id="cce_10_0139__b1687517815316">apply*</strong></p>
+<p id="cce_10_0139__p19348174824514">The <strong id="cce_10_0139__b1921172612543">apply</strong> command provides a more strict control on resource updating than <strong id="cce_10_0139__b12982204475517">patch</strong> and <strong id="cce_10_0139__b16365194710554">edit</strong> commands. The <strong id="cce_10_0139__b165890325617">apply</strong> command applies a configuration to a resource and maintains a set of configuration files in source control. Whenever there is an update, the configuration file is pushed to the server, and then the kubectl <strong id="cce_10_0139__b3271623145917">apply</strong> command applies the latest configuration to the resource. The Kubernetes compares the new configuration file with the original one and updates only the changed configuration instead of the whole file. The configuration that is not contained in the <strong id="cce_10_0139__b20182121210106">-f</strong> flag will remain unchanged. Unlike the <strong id="cce_10_0139__b1230317108526">replace</strong> command which deletes the resource and creates a new one, the <strong id="cce_10_0139__b133041210175212">apply</strong> command directly updates the original resource. Similar to the git operation, the <strong id="cce_10_0139__b1586387101315">apply</strong> command adds an annotation to the resource to mark the current apply.</p>
+<pre class="screen" id="cce_10_0139__screen2875112953610">kubectl apply -f</pre>
+<p id="cce_10_0139__p23488489456"><strong id="cce_10_0139__b1122801693111">patch</strong></p>
+<p id="cce_10_0139__p1234884824518">If you want to modify attributes of a running container without first deleting the container or using the <strong id="cce_10_0139__b116294617221">replace</strong> command, the <strong id="cce_10_0139__b11555328102214">patch</strong> command is to the rescue. The <strong id="cce_10_0139__b9307161152315">patch</strong> command updates field(s) of a resource using strategic merge patch, a JSON merge patch, or a JSON patch. For example, to change a pod label from <strong id="cce_10_0139__b1895214246257">app=nginx1</strong> to <strong id="cce_10_0139__b8964637172517">app=nginx2</strong> while the pod is running, use the following command:</p>
+<pre class="screen" id="cce_10_0139__screen1221510164217">kubectl patch pod podname -p '{"metadata":{"labels":{"app":"nginx2"}}}'</pre>
+<p id="cce_10_0139__p63481348194515"><strong id="cce_10_0139__b9909151863112">convent*</strong></p>
+<p id="cce_10_0139__p113487480453">The <strong id="cce_10_0139__b177275156276">convert</strong> command converts configuration files between different API versions.</p>
+</div>
+<div class="section" id="cce_10_0139__section20145838123111"><h4 class="sectiontitle">Configuration Commands</h4><p id="cce_10_0139__p1134815487451"><strong id="cce_10_0139__b64131342143114">label</strong></p>
+<p id="cce_10_0139__p9348174815456">The <strong id="cce_10_0139__b767811819289">label</strong> command update labels on a resource.</p>
+<pre class="screen" id="cce_10_0139__screen9251184104217">kubectl label pods my-pod new-label=newlabel</pre>
+<p id="cce_10_0139__p1034824818456"><strong id="cce_10_0139__b1958618447312">annotate</strong></p>
+<p id="cce_10_0139__p1434834813452">The <strong id="cce_10_0139__b1474717235284">annotate</strong> command update annotations on a resource.</p>
+<pre class="screen" id="cce_10_0139__screen174421149124210">kubectl annotate pods my-pod icon-url=http://......</pre>
+<p id="cce_10_0139__p1034824894517"><strong id="cce_10_0139__b1977013463319">completion</strong></p>
+<p id="cce_10_0139__p934834814519">The <strong id="cce_10_0139__b1645035412920">completion</strong> command provides autocompletion for shell.</p>
+</div>
+<div class="section" id="cce_10_0139__section44619483210"><h4 class="sectiontitle">Other Commands</h4><p id="cce_10_0139__p1934818489454"><strong id="cce_10_0139__b98942073326">api-versions</strong></p>
+<p id="cce_10_0139__p16349348204511">The <strong id="cce_10_0139__b18303168362">api-versions</strong> command prints the supported API versions.</p>
+<pre class="screen" id="cce_10_0139__screen2098869104315">kubectl api-versions</pre>
+<p id="cce_10_0139__p173498489451"><strong id="cce_10_0139__b733991603218">api-resources</strong></p>
+<p id="cce_10_0139__p20349164804514">The <strong id="cce_10_0139__b1575004113617">api-resources</strong> command prints the supported API resources.</p>
+<pre class="screen" id="cce_10_0139__screen1235610198435">kubectl api-resources</pre>
+<p id="cce_10_0139__p17349174884518"><strong id="cce_10_0139__b1212102419329">config*</strong></p>
+<p id="cce_10_0139__p1534924814458">The <strong id="cce_10_0139__b1562123913534">config</strong> command modifies kubeconfig files. An example use case of this command is to configure authentication information in API calls.</p>
+<p id="cce_10_0139__p53491548134510"><strong id="cce_10_0139__b18618126113215">help</strong></p>
+<p id="cce_10_0139__p16349144812453">The <strong id="cce_10_0139__b282961194014">help</strong> command gets all command references.</p>
+<p id="cce_10_0139__p33491748124516"><strong id="cce_10_0139__b926911347327">version</strong></p>
+<p id="cce_10_0139__p18349104815452">The <strong id="cce_10_0139__b1116612487406">version</strong> command prints the client and server version information for the current context.</p>
+<pre class="screen" id="cce_10_0139__screen2658133912434">kubectl version</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0140.html">Using kubectl to Run a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0140.html b/docs/cce/umn/cce_10_0140.html
similarity index 50%
rename from docs/cce/umn/cce_01_0140.html
rename to docs/cce/umn/cce_10_0140.html
index 40bd22f4..db323a0b 100644
--- a/docs/cce/umn/cce_01_0140.html
+++ b/docs/cce/umn/cce_10_0140.html
@@ -1,19 +1,19 @@
-<a name="cce_01_0140"></a><a name="cce_01_0140"></a>
+<a name="cce_10_0140"></a><a name="cce_10_0140"></a>
 
 <h1 class="topictitle1">Using kubectl to Run a Cluster</h1>
 <div id="body1552894205991"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0139.html">Common kubectl Commands</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0367.html">Customizing a Cluster Certificate SAN</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0023.html">kubectl Usage Guide</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0139.html">Common kubectl Commands</a></strong><br>
 </li>
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0027.html">Clusters</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0141.html b/docs/cce/umn/cce_10_0141.html
new file mode 100644
index 00000000..71492b27
--- /dev/null
+++ b/docs/cce/umn/cce_10_0141.html
@@ -0,0 +1,32 @@
+<a name="cce_10_0141"></a><a name="cce_10_0141"></a>
+
+<h1 class="topictitle1">gpu-beta</h1>
+<div id="body1552976392137"><div class="section" id="cce_10_0141__section26181722164712"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0141__p12273103844718">gpu-beta is a device management add-on that supports GPUs in containers. If GPU nodes are used in the cluster, the gpu-beta add-on must be installed.</p>
+</div>
+<div class="section" id="cce_10_0141__section3200193614201"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0141__ul1815672612156"><li id="cce_10_0141__li1715622613151">The driver to be downloaded must be a <span class="uicontrol" id="cce_10_0141__uicontrol113611965581"><b>.run</b></span> file.</li><li id="cce_10_0141__li8619191610138">Only NVIDIA Tesla drivers are supported, not GRID drivers.</li><li id="cce_10_0141__li94891186187">When installing or reinstalling the add-on, ensure that the driver download address is correct and accessible. CCE does not verify the address validity.</li><li id="cce_10_0141__li1843718111247">The gpu-beta add-on only enables you to download the driver and execute the installation script. The add-on status only indicates that how the add-on is running, not whether the driver is successfully installed.</li></ul>
+</div>
+<div class="section" id="cce_10_0141__section14115341020"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0141__ol2011434603"><li id="cce_10_0141__li6116341702"><span>Log in to the CCE console and access the cluster console. Choose <span class="uicontrol" id="cce_10_0141__uicontrol68453384439"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0141__b484612383438">gpu-beta</strong> on the right, and click <strong id="cce_10_0141__b984633814318">Install</strong>.</span></li><li id="cce_10_0141__li106052232247"><span>Configure the driver link.</span><p><div class="notice" id="cce_10_0141__note16659111785119"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0141__ul1765951765114"><li id="cce_10_0141__li1865921713514">If the download link is a public network address, for example, <strong id="cce_10_0141__b1029892115507">https://us.download.nvidia.com/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run</strong>, bind an EIP to each GPU node. For details about how to obtain the driver link, see <a href="#cce_10_0141__section95451728192112">Obtaining the Driver Link from Public Network</a>.</li><li id="cce_10_0141__li665981712519">If the download link is an OBS URL, you do not need to bind an EIP to GPU nodes. </li><li id="cce_10_0141__li17659317165114">Ensure that the NVIDIA driver version matches the GPU node.</li><li id="cce_10_0141__li76591517175120">After the driver version is changed, restart the node for the change to take effect.</li></ul>
+</div></div>
+</p></li><li id="cce_10_0141__li151113411011"><span>Click <strong id="cce_10_0141__b1543017210355">Install</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0141__section2651166191915"><h4 class="sectiontitle">Verifying the Add-on</h4><p id="cce_10_0141__p11651969198">After the add-on is installed, run the <strong id="cce_10_0141__b15607172112119">nvidia-smi</strong> command on the GPU node and the container that schedules GPU resources to verify the availability of the GPU device and driver.</p>
+<div class="p" id="cce_10_0141__p278259161219">GPU node:<pre class="screen" id="cce_10_0141__screen186511167197">cd /opt/cloud/cce/nvidia/bin &amp;&amp; ./nvidia-smi</pre>
+</div>
+<p id="cce_10_0141__p1428853218123">Container:</p>
+<pre class="screen" id="cce_10_0141__screen11900202601214">cd /usr/local/nvidia/bin &amp;&amp; ./nvidia-smi</pre>
+<p id="cce_10_0141__p7254950101912">If GPU information is returned, the device is available and the add-on is successfully installed.</p>
+<p id="cce_10_0141__p78452015208"><span><img id="cce_10_0141__image5372171217135" src="en-us_image_0000001238225460.png"></span></p>
+</div>
+<div class="section" id="cce_10_0141__section95451728192112"><a name="cce_10_0141__section95451728192112"></a><a name="section95451728192112"></a><h4 class="sectiontitle">Obtaining the Driver Link from Public Network</h4><ol id="cce_10_0141__ol1138125974915"><li id="cce_10_0141__li19138125912498"><span>Log in to the CCE console.</span></li><li id="cce_10_0141__li111387599493"><span>Click <strong id="cce_10_0141__b7473141016405">Create Node</strong> and select the GPU node to be created in the <strong id="cce_10_0141__b13473161014016">Specifications</strong> area. The GPU card model of the node is displayed in the lower part of the page.</span></li></ol><ol start="3" id="cce_10_0141__ol195031456154814"><li id="cce_10_0141__li165032056184815"><span>Visit <em id="cce_10_0141__i2070996145418"><a href="https://www.nvidia.com/Download/Find.aspx?lang=en" target="_blank" rel="noopener noreferrer">https://www.nvidia.com/Download/Find.aspx?lang=en</a></em>.</span></li><li id="cce_10_0141__li16232124410505"><span>Select the driver information on the <span class="uicontrol" id="cce_10_0141__uicontrol1291212498541"><b>NVIDIA Driver Downloads</b></span> page, as shown in <a href="#cce_10_0141__fig11696366517">Figure 1</a>. <span class="uicontrol" id="cce_10_0141__uicontrol1650164444518"><b>Operating System</b></span> must be <strong id="cce_10_0141__b10981947121910">Linux 64-bit</strong>.</span><p><div class="fignone" id="cce_10_0141__fig11696366517"><a name="cce_10_0141__fig11696366517"></a><a name="fig11696366517"></a><span class="figcap"><b>Figure 1 </b>Setting parameters</span><br><span><img id="cce_10_0141__image18514163918398" src="en-us_image_0000001531533921.png"></span></div>
+</p></li><li id="cce_10_0141__li1682301014493"><span>After confirming the driver information, click <span class="uicontrol" id="cce_10_0141__uicontrol1411775314551"><b>SEARCH</b></span>. A page is displayed, showing the driver information, as shown in <a href="#cce_10_0141__fig7873421145213">Figure 2</a>. Click <span class="uicontrol" id="cce_10_0141__uicontrol163131533185618"><b>DOWNLOAD</b></span>.</span><p><div class="fignone" id="cce_10_0141__fig7873421145213"><a name="cce_10_0141__fig7873421145213"></a><a name="fig7873421145213"></a><span class="figcap"><b>Figure 2 </b>Driver information</span><br><span><img id="cce_10_0141__image6928629163818" src="en-us_image_0000001531373685.png"></span></div>
+</p></li><li id="cce_10_0141__li624514474513"><span>Obtain the driver link in either of the following ways:</span><p><ul id="cce_10_0141__ul18225815213"><li id="cce_10_0141__li68351817115313">Method 1: As shown in <a href="#cce_10_0141__fig5901194614534">Figure 3</a>, find <em id="cce_10_0141__i964302410817">url=/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run</em> in the browser address box. Then, supplement it to obtain the driver link <a href="https://us.download.nvidia.com/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run" target="_blank" rel="noopener noreferrer">https://us.download.nvidia.com/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run</a>. By using this method, you must bind an EIP to each GPU node.</li><li id="cce_10_0141__li193423205231">Method 2: As shown in <a href="#cce_10_0141__fig5901194614534">Figure 3</a>, click <span class="uicontrol" id="cce_10_0141__uicontrol1435254915542"><b>AGREE &amp; DOWNLOAD</b></span> to download the driver. Then, upload the driver to OBS and record the OBS URL. By using this method, you do not need to bind an EIP to GPU nodes.<div class="fignone" id="cce_10_0141__fig5901194614534"><a name="cce_10_0141__fig5901194614534"></a><a name="fig5901194614534"></a><span class="figcap"><b>Figure 3 </b>Obtaining the link</span><br><span><img id="cce_10_0141__image293362819366" src="en-us_image_0000001531533045.png"></span></div>
+</li></ul>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0142.html b/docs/cce/umn/cce_10_0142.html
new file mode 100644
index 00000000..988a1f98
--- /dev/null
+++ b/docs/cce/umn/cce_10_0142.html
@@ -0,0 +1,136 @@
+<a name="cce_10_0142"></a><a name="cce_10_0142"></a>
+
+<h1 class="topictitle1">NodePort</h1>
+<div id="body1553224785332"><div class="section" id="cce_10_0142__section13654155944916"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0142__p028915126124">A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By requesting &lt;NodeIP&gt;:&lt;NodePort&gt;, you can access a NodePort Service from outside the cluster.</p>
+<div class="fignone" id="cce_10_0142__fig6819133414131"><span class="figcap"><b>Figure 1 </b>NodePort access</span><br><span><img id="cce_10_0142__image10510139711" src="en-us_image_0000001199501230.png"></span></div>
+</div>
+<div class="section" id="cce_10_0142__section8501151104219"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0142__ul1685519569431"><li id="cce_10_0142__li1585575616436">By default, a NodePort Service is accessed within a VPC. If you need to use an EIP to access a NodePort Service through public networks, bind an EIP to the node in the cluster in advance.</li><li id="cce_10_0142__li128551156114310">After a Service is created, if the affinity setting is switched from the cluster level to the node level, the connection tracing table will not be cleared. You are advised not to modify the Service affinity setting after the Service is created. If you need to modify it, create a Service again.</li><li id="cce_10_0142__li62831358182017">CCE Turbo clusters support only cluster-level service affinity.</li><li id="cce_10_0142__li217783916207">In VPC network mode, when container A is published through a NodePort service and the service affinity is set to the node level (that is, <strong id="cce_10_0142__b6606348122314">externalTrafficPolicy</strong> is set to <strong id="cce_10_0142__b1893585192319">local</strong>), container B deployed on the same node cannot access container A through the node IP address and NodePort service.</li><li id="cce_10_0142__li14613571073">When a NodePort service is created in a cluster of v1.21.7 or later, the port on the node is not displayed using <strong id="cce_10_0142__b9614551172511">netstat</strong> by default. If the cluster forwarding mode is <strong id="cce_10_0142__b1668514182617">iptables</strong>, run the <strong id="cce_10_0142__b17716161211103">iptables -t nat -L</strong> command to view the port. If the cluster forwarding mode is <strong id="cce_10_0142__b1037289122614">ipvs</strong>, run the <strong id="cce_10_0142__b23917223106">ipvsadm -nL</strong> command to view the port.</li></ul>
+</div>
+<div class="section" id="cce_10_0142__section1325012312139"><h4 class="sectiontitle">Creating a NodePort Service</h4><ol id="cce_10_0142__ol751935681319"><li id="cce_10_0142__li41731123658"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0142__li1651955651312"><span>Choose <strong id="cce_10_0142__b59268208277">Networking</strong> in the navigation pane and click <strong id="cce_10_0142__b59321820182716">Create Service</strong> in the upper right corner.</span></li><li id="cce_10_0142__li185190567138"><span>Set intra-cluster access parameters.</span><p><ul id="cce_10_0142__ul4446314017144"><li id="cce_10_0142__li6462394317144"><strong id="cce_10_0142__b845613814287">Service Name</strong>: Specify a Service name, which can be the same as the workload name.</li><li id="cce_10_0142__li89543531070"><strong id="cce_10_0142__b106597277362">Service Type</strong>: Select <span class="uicontrol" id="cce_10_0142__uicontrol5666142710366"><b>NodePort</b></span>.</li><li id="cce_10_0142__li4800017144"><strong id="cce_10_0142__b1263193014367">Namespace</strong>: Namespace to which the workload belongs.</li><li id="cce_10_0142__li1758110116149"><strong id="cce_10_0142__b38118349367">Service Affinity</strong>: For details, see <a href="#cce_10_0142__section18134208069">externalTrafficPolicy (Service Affinity)</a>.<ul id="cce_10_0142__ul158101161412"><li id="cce_10_0142__li105815113141"><strong id="cce_10_0142__b686931916276">Cluster level</strong>: The IP addresses and access ports of all nodes in a cluster can access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_10_0142__li185817117145"><strong id="cce_10_0142__b0126154553611">Node level</strong>: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
+</li><li id="cce_10_0142__li43200017144"><strong id="cce_10_0142__b2600143835813">Selector</strong>: Add a label and click <strong id="cce_10_0142__b260020382582">Add</strong>. A Service selects a pod based on the added label. You can also click <strong id="cce_10_0142__b354965233619">Reference Workload Label</strong> to reference the label of an existing workload. In the dialog box that is displayed, select a workload and click <strong id="cce_10_0142__b16550125293615">OK</strong>.</li><li id="cce_10_0142__li388800117144"><strong id="cce_10_0142__b451552415715">Port Settings</strong><ul id="cce_10_0142__ul3499201217144"><li id="cce_10_0142__li4649265917144"><strong id="cce_10_0142__b28899114374">Protocol</strong>: protocol used by the Service.</li><li id="cce_10_0142__li353122153610"><strong id="cce_10_0142__b1852318551688">Service Port</strong>: port used by the Service. The port number ranges from 1 to 65535.</li><li id="cce_10_0142__li1578074917144"><strong id="cce_10_0142__b19416443712">Container Port</strong>: port on which the workload listens. For example, Nginx uses port 80 by default.</li><li id="cce_10_0142__li780902117144"><strong id="cce_10_0142__b11763931199">Node Port</strong>: You are advised to select <strong id="cce_10_0142__b1198741292">Auto</strong>. You can also specify a port. The default port ranges from 30000 to 32767.</li></ul>
+</li></ul>
+</p></li><li id="cce_10_0142__li552017569135"><span>Click <strong id="cce_10_0142__b1012031216378">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0142__section7114174773118"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_10_0142__p1626583075113">You can run kubectl commands to set the access type. This section uses a Nginx workload as an example to describe how to set a NodePort Service using kubectl.</p>
+<ol id="cce_10_0142__ol19191171513118"><li id="cce_10_0142__li0425142612486"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0142__li1020013819415"><span>Create and edit the <strong id="cce_10_0142__b57121716129">nginx-deployment.yaml</strong> and <strong id="cce_10_0142__b671681616219">nginx-nodeport-svc.yaml</strong> files.</span><p><p id="cce_10_0142__p1855995413716">The file names are user-defined. <strong id="cce_10_0142__b5196112404214">nginx-deployment.yaml</strong> and <strong id="cce_10_0142__b22022813429">nginx-nodeport-svc.yaml</strong> are merely example file names.</p>
+<p id="cce_10_0142__p78476491679"><strong id="cce_10_0142__b084794920720">vi nginx-deployment.yaml</strong></p>
+<pre class="screen" id="cce_10_0142__screen5849104920720">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+      - image: nginx:latest
+        name: nginx
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0142__p1084964910717"><strong id="cce_10_0142__b1849104912717">vi nginx-nodeport-svc.yaml</strong></p>
+<pre class="screen" id="cce_10_0142__screen1685020491272">apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app: nginx
+  name: nginx-nodeport
+spec:
+  ports:
+  - name: service
+    nodePort: 30000     # Node port. The value ranges from 30000 to 32767.
+    port: 8080          # Port for accessing a Service.
+    protocol: TCP       # Protocol used for accessing a Service. The value can be <strong id="cce_10_0142__b1792433432416">TCP</strong> or <strong id="cce_10_0142__b592514344249">UDP</strong>.
+    targetPort: 80      # Port used by a Service to access the target container. This port is closely related to the applications running in a container. In this example, the Nginx image uses port 80 by default.
+  selector:             # Label selector. A Service selects a pod based on the label and forwards the requests for accessing the Service to the pod. In this example, select the pod with the <strong id="cce_10_0142__b14236113762619">app:nginx</strong> label.
+    app: nginx
+  type: NodePort        # Service type. <strong id="cce_10_0142__b10872172713288">NodePort</strong> indicates that the Service is accessed through a node port.</pre>
+</p></li><li id="cce_10_0142__li12194551184412"><span>Create a workload.</span><p><p id="cce_10_0142__p175719718459"><strong id="cce_10_0142__b692820516453">kubectl create -f nginx-deployment.yaml</strong></p>
+<p id="cce_10_0142__p15348127103514">If information similar to the following is displayed, the workload has been created.</p>
+<pre class="screen" id="cce_10_0142__screen1478417422342">deployment "nginx" created</pre>
+<p id="cce_10_0142__p10542111017457"><strong id="cce_10_0142__b8874010124511">kubectl get po</strong></p>
+<p id="cce_10_0142__p1528873633514">If information similar to the following is displayed, the workload is running.</p>
+<pre class="screen" id="cce_10_0142__screen184796131354">NAME                     READY     STATUS             RESTARTS   AGE
+<strong id="cce_10_0142__b128512503516">nginx-2601814895-qhxqv   1/1       Running            0          9s</strong></pre>
+</p></li><li id="cce_10_0142__li72314917413"><span>Create a Service.</span><p><p id="cce_10_0142__p410057205911"><strong id="cce_10_0142__b16534131413598">kubectl create -f nginx-nodeport-svc.yaml</strong></p>
+<p id="cce_10_0142__p82261925113913">If information similar to the following is displayed, the Service is being created.</p>
+<pre class="screen" id="cce_10_0142__screen206204581359">service "nginx-nodeport" created</pre>
+<p id="cce_10_0142__p1025119113593"><strong id="cce_10_0142__b1253721413598">kubectl get svc</strong></p>
+<p id="cce_10_0142__p16843163318393">If information similar to the following is displayed, the Service has been created.</p>
+<pre class="screen" id="cce_10_0142__screen250841013612"># kubectl get svc
+NAME             TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)          AGE
+kubernetes       ClusterIP   10.247.0.1     &lt;none&gt;        443/TCP          4d8h
+nginx-nodeport   NodePort    10.247.30.40   &lt;none&gt;        8080:30000/TCP   18s</pre>
+</p></li><li id="cce_10_0142__li167017242"><span>Access the Service.</span><p><p id="cce_10_0142__p73871952103610">By default, a NodePort Service can be accessed by using <em id="cce_10_0142__i10803143503815">Any node IP address:Node port</em>.</p>
+<p id="cce_10_0142__p24297181193">The Service can be accessed from a node in another cluster in the same VPC or in another pod in the cluster. If a public IP address is bound to the node, you can also use the public IP address to access the Service. Create a container in the cluster and access the container by using <em id="cce_10_0142__i16687134818416">Node IP address:Node port</em>.</p>
+<pre class="screen" id="cce_10_0142__screen9180123572318"># kubectl get node -owide
+NAME           STATUS   ROLES    AGE    INTERNAL-IP    EXTERNAL-IP   OS-IMAGE                KERNEL-VERSION                CONTAINER-RUNTIME
+10.100.0.136   Ready    &lt;none&gt;   152m   10.100.0.136   &lt;none&gt;        CentOS Linux 7 (Core)   3.10.0-1160.25.1.el7.x86_64   docker://18.9.0
+10.100.0.5     Ready    &lt;none&gt;   152m   10.100.0.5     &lt;none&gt;        CentOS Linux 7 (Core)   3.10.0-1160.25.1.el7.x86_64   docker://18.9.0
+# kubectl run -i --tty --image nginx:alpine test --rm /bin/sh
+If you do not see a command prompt, try pressing <strong id="cce_10_0142__b1596117574484">Enter</strong>.
+/ # curl 10.100.0.136:30000
+&lt;!DOCTYPE html&gt;
+&lt;html&gt;
+&lt;head&gt;
+&lt;title&gt;Welcome to nginx!&lt;/title&gt;
+&lt;style&gt;
+    body {
+        width: 35em;
+        margin: 0 auto;
+        font-family: Tahoma, Verdana, Arial, sans-serif;
+    }
+&lt;/style&gt;
+&lt;/head&gt;
+&lt;body&gt;
+&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
+&lt;p&gt;If you see this page, the nginx web server is successfully installed and
+working. Further configuration is required.&lt;/p&gt;
+
+&lt;p&gt;For online documentation and support please refer to
+&lt;a href="http://nginx.org/"&gt;nginx.org&lt;/a&gt;.&lt;br/&gt;
+Commercial support is available at
+&lt;a href="http://nginx.com/"&gt;nginx.com&lt;/a&gt;.&lt;/p&gt;
+
+&lt;p&gt;&lt;em&gt;Thank you for using nginx.&lt;/em&gt;&lt;/p&gt;
+&lt;/body&gt;
+&lt;/html&gt;
+/ # </pre>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0142__section18134208069"><a name="cce_10_0142__section18134208069"></a><a name="section18134208069"></a><h4 class="sectiontitle">externalTrafficPolicy (Service Affinity)</h4><p id="cce_10_0142__p18946934131010">For a NodePort Service, requests are first sent to the node port, then the Service, and finally the pod backing the Service. The backing pod may be not located in the node receiving the requests. By default, the backend workload can be accessed from any node IP address and service port. If the pod is not on the node that receives the request, the request will be redirected to the node where the pod is located, which may cause performance loss.</p>
+<p id="cce_10_0142__p2386121717715"><strong id="cce_10_0142__b186731558153819">externalTrafficPolicy</strong> is a configuration parameter of the Service.</p>
+<pre class="screen" id="cce_10_0142__screen65363425115">apiVersion: v1
+kind: Service
+metadata:
+  name: nginx-nodeport
+spec:
+  externalTrafficPolicy: local
+  ports:
+  - name: service
+    nodePort: 30000
+    port: 80
+    protocol: TCP
+    targetPort: 80
+  selector:
+    app: nginx
+  type: NodePort</pre>
+<p id="cce_10_0142__p2615113719446">If the value of <strong id="cce_10_0142__b79921018193916">externalTrafficPolicy</strong> is <strong id="cce_10_0142__b27741621173917">local</strong>, requests sent from <em id="cce_10_0142__i112585554614">Node IP address:Service port</em> will be forwarded only to the pod on the local node. If the node does not have a pod, the requests are suspended.</p>
+<p id="cce_10_0142__p11580142394711">The other value of <strong id="cce_10_0142__b181831519134511">externalTrafficPolicy</strong> is <strong id="cce_10_0142__b73116288451">cluster</strong> (default value), which indicates that requests are forwarded in a cluster.</p>
+<p id="cce_10_0142__p01553492491">You can set this parameter when creating a Service of the NodePort type on the CCE console.</p>
+<p id="cce_10_0142__p115951829125012"></p>
+<p id="cce_10_0142__p7531333185012">The values of <strong id="cce_10_0142__b3705640124010">externalTrafficPolicy</strong> are as follows:</p>
+<ul id="cce_10_0142__ul1768416591016"><li id="cce_10_0142__li1068419591905"><strong id="cce_10_0142__b14758175415401">cluster</strong>: The IP addresses and access ports of all nodes in a cluster can access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_10_0142__li126841959604"><strong id="cce_10_0142__b315119551434">local</strong>: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0247.html">Services</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0146.html b/docs/cce/umn/cce_10_0146.html
new file mode 100644
index 00000000..e18d05cd
--- /dev/null
+++ b/docs/cce/umn/cce_10_0146.html
@@ -0,0 +1,117 @@
+<a name="cce_10_0146"></a><a name="cce_10_0146"></a>
+
+<h1 class="topictitle1">Deploying an Application from a Chart</h1>
+<div id="body8662426"><p id="cce_10_0146__p11549529520">On the CCE console, you can upload a Helm chart package, deploy it, and manage the deployed pods.</p>
+<div class="section" id="cce_10_0146__section148624339590"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0146__ul16941133619816"><li id="cce_10_0146__li209417366812">The number of charts that can be uploaded by a single user is limited. The value displayed on the console of each region is the allowed quantity.</li><li id="cce_10_0146__li8941336583">A chart with multiple versions consumes the same amount of portion of chart quota.</li><li id="cce_10_0146__li570815490504">Users with chart operation permissions can perform multiple operations on clusters. Therefore, exercise caution when assigning users the chart lifecycle management permissions, including uploading charts and creating, deleting, and updating chart releases.</li></ul>
+</div>
+<div class="section" id="cce_10_0146__s8af9336c49a44399865c7a0f3149d789"><h4 class="sectiontitle">Chart Specifications</h4><p id="cce_10_0146__ae35cf1371c384372a53831ad9a5867bc">The Redis workload is used as an example to illustrate the chart specifications.</p>
+<ul id="cce_10_0146__u61613ff6acba4771b85a173e65d22d08"><li id="cce_10_0146__l2febdbc681f54657b510471ac521cb4b"><strong id="cce_10_0146__b452894423913">Naming Requirement</strong><p id="cce_10_0146__af4e74a182c6d4ee4a50adab03b548d89">A chart package is named in the format of <strong id="cce_10_0146__b1620195043915">{name}-{version}</strong>.tgz, where <strong id="cce_10_0146__b1720785014391">{version}</strong> indicates the version number in the format of <em id="cce_10_0146__i142071650113910">Major version number</em>.<em id="cce_10_0146__i16207150153917">Minor version number</em>.<em id="cce_10_0146__i1420735016395">Revision number</em>, for example, <strong id="cce_10_0146__b320725083916">redis-0.4.2.tgz</strong>.</p>
+<div class="note" id="cce_10_0146__n2ee80d8590f7448582258578c77e6df7"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0146__p1745515402147">The chart name {name} can contain a maximum of 64 characters.</p>
+<p id="cce_10_0146__p1334123720425">The version number must comply with the <a href="https://semver.org/" target="_blank" rel="noopener noreferrer">semantic versioning</a> rules.</p>
+<ul id="cce_10_0146__u571d2aae91734921b260cd8464d5fe2a"><li id="cce_10_0146__l11bd9e6834214a2488c8720e943729c0">The main and minor version numbers are mandatory, and the revision number is optional.</li><li id="cce_10_0146__lffc8a18eaf564eb0a7e887d5c799dec1">The major and minor version numbers and revision number must be integers, greater than or equal to 0, and less than or equal to 99.</li></ul>
+</div></div>
+</li><li id="cce_10_0146__l3aa29b15cb4343c190873a90dac87df8"><strong id="cce_10_0146__b141113437402">Directory Structure</strong><p id="cce_10_0146__a1388d65dfdb8499284c69806efa878c1">The directory structure of a chart is as follows:</p>
+<pre class="screen" id="cce_10_0146__s91732e9e769d478886cbff255a7a0d0b">redis/
+  templates/
+  values.yaml
+  README.md
+  Chart.yaml
+  .helmignore</pre>
+<div class="p" id="cce_10_0146__p10352172519482">As listed in <a href="#cce_10_0146__tb7d789a3467e4fe9b4385a51f3460321">Table 1</a>, the parameters marked with * are mandatory.
+<div class="tablenoborder"><a name="cce_10_0146__tb7d789a3467e4fe9b4385a51f3460321"></a><a name="tb7d789a3467e4fe9b4385a51f3460321"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0146__tb7d789a3467e4fe9b4385a51f3460321" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters in the directory structure of a chart</caption><thead align="left"><tr id="cce_10_0146__row6784152135012"><th align="left" class="cellrowborder" valign="top" width="22%" id="mcps1.3.3.3.2.4.2.2.3.1.1"><p id="cce_10_0146__p278413212502">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="78%" id="mcps1.3.3.3.2.4.2.2.3.1.2"><p id="cce_10_0146__p20784621115018">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0146__row37842210500"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.3.3.2.4.2.2.3.1.1 "><p id="cce_10_0146__p1278432119504">* templates</p>
+</td>
+<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.3.3.2.4.2.2.3.1.2 "><p id="cce_10_0146__p478412213502">Stores all templates.</p>
+</td>
+</tr>
+<tr id="cce_10_0146__row147841721185017"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.3.3.2.4.2.2.3.1.1 "><p id="cce_10_0146__p14784172119501">* values.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.3.3.2.4.2.2.3.1.2 "><p id="cce_10_0146__p1678472115013">Describes configuration parameters required by templates.</p>
+<div class="notice" id="cce_10_0146__note11415171194911"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0146__p394216481648">Make sure that the image address set in the <strong id="cce_10_0146__b169837156417">values.yaml</strong> file is the same as the image address in the container image repository. Otherwise, an exception occurs when you create a workload, and the system displays a message indicating that the image fails to be pulled.</p>
+<p id="cce_10_0146__p04177113498">To obtain the image address, perform the following operations: Log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0146__b860412174116">Image Repository</strong> to access the SWR console. Choose <strong id="cce_10_0146__b10171926114117">My Images</strong> &gt; <strong id="cce_10_0146__b12372684119">Private Images</strong> and click the name of the uploaded image. On the <strong id="cce_10_0146__b223726104111">Image Tags</strong> tab page, obtain the image address from the pull command. You can click <span><img id="cce_10_0146__image292113414153" src="en-us_image_0000001206959574.png"></span> to copy the command in the <strong id="cce_10_0146__b723192619418">Image Pull Command</strong> column.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0146__row1078472120505"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.3.3.2.4.2.2.3.1.1 "><p id="cce_10_0146__p1278411218502">README.md</p>
+</td>
+<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.3.3.2.4.2.2.3.1.2 "><p id="cce_10_0146__p10784102115505">A markdown file, including:</p>
+<ul id="cce_10_0146__ul778411210502"><li id="cce_10_0146__li10784172113502">The workload or services provided by the chart.</li><li id="cce_10_0146__li1078612216508">Prerequisites for running the chart.</li><li id="cce_10_0146__li678622155017">Configurations in the <strong id="cce_10_0146__b33571754124111">values.yaml</strong> file.</li><li id="cce_10_0146__li178682165010">Information about chart installation and configuration.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0146__row1678672116506"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.3.3.2.4.2.2.3.1.1 "><p id="cce_10_0146__p6786162113504">* Chart.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.3.3.2.4.2.2.3.1.2 "><p id="cce_10_0146__p157289283818">Basic information about the chart.</p>
+<p id="cce_10_0146__p278615212501">Note: Helm v3 bumps the apiVersion from v1 to v2.</p>
+</td>
+</tr>
+<tr id="cce_10_0146__row97861621175015"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.3.3.2.4.2.2.3.1.1 "><p id="cce_10_0146__p6786921165010">.helmignore</p>
+</td>
+<td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.3.3.2.4.2.2.3.1.2 "><p id="cce_10_0146__p07861721145013">Files or data that does not need to read templates during workload installation.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0146__section62601733171011"><h4 class="sectiontitle">Uploading a Chart</h4><ol id="cce_10_0146__o0ec219910b544b1a8ea6cd99545eb9c9"><li id="cce_10_0146__li6330203615298"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <strong id="cce_10_0146__b6527132414315">Charts</strong> in the navigation pane and click <strong id="cce_10_0146__b13258134515318">Upload Chart</strong> in the upper right corner.</span></li><li id="cce_10_0146__l7d71632d3d0d46778da8db6da0c2d8be"><span>Click <strong id="cce_10_0146__b18533171414416">Select File</strong>, select the chart to be uploaded, and click <strong id="cce_10_0146__b453910145442">Upload</strong>.</span><p><div class="note" id="cce_10_0146__note1332512361214"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0146__p1132510366215">When you upload a chart, the naming rule of the OBS bucket is changed from cce-charts-{<em id="cce_10_0146__i91991329164411">region</em>}-{<strong id="cce_10_0146__b1220582915443">domain_name</strong>} to cce-charts-{<em id="cce_10_0146__i1520502912441">region</em>}-{<strong id="cce_10_0146__b62052297443">domain_id</strong>}. In the old naming rule, the system converts the <strong id="cce_10_0146__b9205132924411">domain_name</strong> value into a Base64 string and uses the first 63 characters. If you cannot find the chart in the OBS bucket with the new name, search for the bucket with the old name.</p>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0146__s94388d41fe234fba81844802bc682fb8"><h4 class="sectiontitle">Creating a Release</h4><ol id="cce_10_0146__o20585630b6dd4d15a7973999bed51640"><li id="cce_10_0146__li135815513542"><span>Log in to the CCE console, click the cluster name, and access the cluster console. In the navigation pane, choose <strong id="cce_10_0146__b1383735115449">Charts</strong>.</span></li><li id="cce_10_0146__li1164182203613"><span>On the <span class="uicontrol" id="cce_10_0146__uicontrol1821864161814"><b>My Charts</b></span> tab page, click <span class="uicontrol" id="cce_10_0146__uicontrol1577535931912"><b>Install</b></span> of the target chart.</span></li><li id="cce_10_0146__l90a823bbc7b647b998ce344161a168f4"><span>Set workload installation parameters by referring to <a href="#cce_10_0146__t26bc1c499f114b5185e5edcf61e44d95">Table 2</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0146__t26bc1c499f114b5185e5edcf61e44d95"></a><a name="t26bc1c499f114b5185e5edcf61e44d95"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0146__t26bc1c499f114b5185e5edcf61e44d95" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Installation parameters</caption><thead align="left"><tr id="cce_10_0146__rbf609a3fcf2445d2b6d59cbcca7f75b3"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.5.2.3.2.1.2.3.1.1"><p id="cce_10_0146__a24b59ed54e3e49a7abefd7528912fb26">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.5.2.3.2.1.2.3.1.2"><p id="cce_10_0146__a48e24994d5e7491782edce936fd59c1a">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0146__r4199465b1b1a4b31b17eac511ff9c594"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.5.2.3.2.1.2.3.1.1 "><p id="cce_10_0146__a010899bea1f349bdad1eef099e4fa486">Instance</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.5.2.3.2.1.2.3.1.2 "><p id="cce_10_0146__a0153652b843848a3b6bdad99e3c3b39f">Unique name of the chart release.</p>
+</td>
+</tr>
+<tr id="cce_10_0146__rbd79869126dd476ba89ebd3a3103af0c"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.5.2.3.2.1.2.3.1.1 "><p id="cce_10_0146__en-us_topic_0093297948_p441405163731">Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.5.2.3.2.1.2.3.1.2 "><p id="cce_10_0146__a29df703802f0429a96ce7e488e7b6376">Namespace to which the workload will be deployed.</p>
+</td>
+</tr>
+<tr id="cce_10_0146__row546905872315"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.5.2.3.2.1.2.3.1.1 "><p id="cce_10_0146__p1066772202416">Select Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.5.2.3.2.1.2.3.1.2 "><p id="cce_10_0146__p9667192182418">Version of a chart.</p>
+</td>
+</tr>
+<tr id="cce_10_0146__r70f26452e7574784b0bcc4fa28655e23"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.5.2.3.2.1.2.3.1.1 "><p id="cce_10_0146__ae76aa7c5d99b4e378bf694b82b9e5dc5">Configuration File</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.5.2.3.2.1.2.3.1.2 "><p id="cce_10_0146__a303f5e86580c4fa29c238785c98ea8ce">You can import and replace the <strong id="cce_10_0146__b842352706155915">values.yaml</strong> file or directly edit the chart parameters online.</p>
+<div class="note" id="cce_10_0146__na1d8e395109d472699025c5118ef563d"><span class="notetitle"> NOTE: </span><div class="notebody"><p class="textintable" id="cce_10_0146__a428d67dfa7aa45e99ea2cc24c467e433">An imported <strong id="cce_10_0146__b842352706155923">values.yaml</strong> file must comply with YAML specifications, that is, KEY:VALUE format. The fields in the file are not restricted.</p>
+<p id="cce_10_0146__p112003015566">The key value of the imported values.yaml must be the same as that of the selected chart package. Otherwise, the values.yaml does not take effect. That is, the key cannot be changed.</p>
+</div></div>
+<ol type="a" id="cce_10_0146__o62d8e522faae46b79e270230405ddf10"><li id="cce_10_0146__l04812ba05aae47a2a42d651d2df293c3">Click <span class="uicontrol" id="cce_10_0146__uicontrol18345437152617"><b>Select File</b></span>.</li><li id="cce_10_0146__l9f476de3d2d243a7b8dcd5ea3fc06ed7">Select the corresponding <strong id="cce_10_0146__b1132319259465">values.yaml</strong> file and click <strong id="cce_10_0146__b8328725164618">Open</strong>.</li></ol>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0146__le625c1f421df4758b99f9184828926a9"><span>Click <span class="uicontrol" id="cce_10_0146__uicontrol67604016460"><b>Install</b></span>.</span><p><p id="cce_10_0146__p128679414295">On the <strong id="cce_10_0146__b377004011358">Releases</strong> tab page, you can view the installation status of the release.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0146__section5324101171010"><h4 class="sectiontitle">Upgrading a Chart-based Workload</h4><ol id="cce_10_0146__ol1541655017447"><li id="cce_10_0146__li1869015203020"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <strong id="cce_10_0146__b1332619365361">Charts</strong> in the navigation pane and click the <strong id="cce_10_0146__b15333103663618">Releases</strong> tab.</span></li><li id="cce_10_0146__li9260155614447"><span>Click <strong id="cce_10_0146__b624761044718">Upgrade</strong> in the row where the desired workload resides and set the parameters for the workload.</span></li><li id="cce_10_0146__li1126255674414"><span>Select a chart version for <strong id="cce_10_0146__b420264371153445">Chart Version</strong>.</span></li><li id="cce_10_0146__li1126615644417"><span>Follow the prompts to modify the chart parameters. Click <strong id="cce_10_0146__b1224624192812">Upgrade</strong>, and then click <strong id="cce_10_0146__b2090164210284">Submit</strong>.</span></li><li id="cce_10_0146__li1327935644412"><span>Click <strong id="cce_10_0146__b824513662153516">Back to Release List</strong>. If the chart status changes to <strong id="cce_10_0146__b15735371333">Upgrade successful</strong>, the workload is successfully upgraded.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0146__section13251511191012"><h4 class="sectiontitle">Rolling Back a Chart-based Workload</h4><ol id="cce_10_0146__ol675012341451"><li id="cce_10_0146__li855613303328"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <strong id="cce_10_0146__b5287330381">Charts</strong> in the navigation pane and click the <strong id="cce_10_0146__b192885313382">Releases</strong> tab.</span></li><li id="cce_10_0146__li15170194294515"><span>Click <strong id="cce_10_0146__b42851336162919">More</strong> &gt; <strong id="cce_10_0146__b528583611291">Roll Back</strong> for the workload to be rolled back, select the workload version, and click <strong id="cce_10_0146__b14293173618298">Roll back</strong> <strong id="cce_10_0146__b4293436172920">to this version</strong>.</span><p><p id="cce_10_0146__p1917254212454">In the workload list, if the status is <strong id="cce_10_0146__b250435233917">Rollback successful</strong>, the workload is rolled back successfully.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0146__section15325151161011"><h4 class="sectiontitle">Uninstalling a Chart-based Workload</h4><ol id="cce_10_0146__ol14516921124612"><li id="cce_10_0146__li1824033814320"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <strong id="cce_10_0146__b1272811919383">Charts</strong> in the navigation pane and click the <strong id="cce_10_0146__b27281918386">Releases</strong> tab.</span></li><li id="cce_10_0146__li33382293172417"><span>Click <strong id="cce_10_0146__b842352706172523">More</strong> &gt; <strong id="cce_10_0146__b842352706172527">Uninstall</strong> next to the release to be uninstalled, and click <strong id="cce_10_0146__b842352706172547">Yes</strong>. Exercise caution when performing this operation because releases cannot be restored after being uninstalled.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0019.html">Charts</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0150.html b/docs/cce/umn/cce_10_0150.html
new file mode 100644
index 00000000..e9bc8369
--- /dev/null
+++ b/docs/cce/umn/cce_10_0150.html
@@ -0,0 +1,133 @@
+<a name="cce_10_0150"></a><a name="cce_10_0150"></a>
+
+<h1 class="topictitle1">Creating a Job</h1>
+<div id="body8662426"><div class="section" id="cce_10_0150__section142417128434"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0150__p1415612018436">Jobs are short-lived and run for a certain time to completion. They can be executed immediately after being deployed. It is completed after it exits normally (exit 0).</p>
+<p id="cce_10_0150__p1357013465433">A job is a resource object that is used to control batch tasks. It is different from a long-term servo workload (such as Deployment and StatefulSet).</p>
+<p id="cce_10_0150__p1288053218436">A job is started and terminated at specific times, while a long-term servo workload runs unceasingly unless being terminated. The pods managed by a job automatically exit after successfully completing the job based on user configurations. The success flag varies according to the spec.completions policy.</p>
+<ul id="cce_10_0150__ul7156424164320"><li id="cce_10_0150__li3337152674010">One-off jobs: A single pod runs once until successful termination.</li><li id="cce_10_0150__li6338026104015">Jobs with a fixed success count: N pods run until successful termination.</li><li id="cce_10_0150__li191568244438">A queue job is considered completed based on the global success confirmed by the application.</li></ul>
+</div>
+<div class="section" id="cce_10_0150__s50bf087555b1437aa249c1259138706c"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0150__p1695632510556">Resources have been created. For details, see <a href="cce_10_0363.html">Creating a Node</a>. If clusters and nodes are available, you need not create them again.</p>
+</div>
+<div class="section" id="cce_10_0150__sb8a02965b2624dbbabab320046ca4973"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0150__ol2012902601117"><li id="cce_10_0150__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0150__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0150__b94442390613">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0150__b1844413910614">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0150__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0150__p1259466151612"><strong id="cce_10_0150__b784105815422">Basic Info</strong><ul id="cce_10_0150__ul6954101318184"><li id="cce_10_0150__li11514131617185"><strong id="cce_10_0150__b188592071436">Workload Type</strong>: Select <strong id="cce_10_0150__b117010384313">Job</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0150__li129541213101814"><strong id="cce_10_0150__b92691311154315">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0150__li179541813111814"><strong id="cce_10_0150__b187251219436">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0150__b98729126437">default</strong>. You can also click <span class="uicontrol" id="cce_10_0150__uicontrol7512314164311"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0150__li18955181315189"><strong id="cce_10_0150__b1692581513436">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0150__li11753142112539"><strong id="cce_10_0150__b52461818134319">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li></ul>
+</div>
+<div class="p" id="cce_10_0150__p206571518181616"><strong id="cce_10_0150__b855213715437">Container Settings</strong><ul id="cce_10_0150__ul42071022103320"><li id="cce_10_0150__li8770480458">Container Information<div class="p" id="cce_10_0150__p10493941854"><a name="cce_10_0150__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0150__uicontrol1760133894311"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0150__ul3107134161216"><li id="cce_10_0150__li310624131220"><strong id="cce_10_0150__b16677312174910">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0150__li51065491219"><strong id="cce_10_0150__b214013152497">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0150__li9107648124"><strong id="cce_10_0150__b145617174914">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0150__li16107114201215"><strong id="cce_10_0150__b298814182495">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0150__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0150__p17126153413513">If the workload contains more than one pod, EVS volumes cannot be mounted.</p>
+</div></div>
+</li><li id="cce_10_0150__li41077481216"><strong id="cce_10_0150__b4164102154910">Logging</strong>: See <a href="cce_10_0018.html">Using ICAgent to Collect Container Logs</a>.</li></ul>
+</div>
+</li><li id="cce_10_0150__li1487514116369"><strong id="cce_10_0150__b7419144664313">Image Access Credential</strong>: Select the credential used for accessing the image repository. The default value is <strong id="cce_10_0150__b184195463431">default-secret</strong>. You can use default-secret to access images in SWR. For details about <strong id="cce_10_0150__b1519425771413">default-secret</strong>, see <a href="cce_10_0388.html#cce_10_0388__section11760122012591">default-secret</a>.</li><li id="cce_10_0150__li11649141318194"><strong id="cce_10_0150__b74638234154">GPU graphics card</strong>: <strong id="cce_10_0150__b84631223111515">All</strong> is selected by default. The workload instance will be scheduled to the node with the specified GPU graphics card type.</li></ul>
+</div>
+<div class="p" id="cce_10_0150__p310913521612"><strong id="cce_10_0150__b16601051134314">Advanced Settings</strong><ul id="cce_10_0150__ul142811417"><li id="cce_10_0150__li179714209414"><strong id="cce_10_0150__b81243114498">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0150__li1981131361"><strong id="cce_10_0150__b0694101722015">Job Settings</strong>:<ul id="cce_10_0150__ul3224164372"><li id="cce_10_0150__li153401527710"><strong id="cce_10_0150__b1057224310207">Parallel Pods</strong>: Maximum number of pods that can run in parallel during job execution. The value cannot be greater than the total number of pods in the job.</li><li id="cce_10_0150__li10287691771"><strong id="cce_10_0150__b19294171132120">Timeout (s)</strong>: Once a job reaches this time, the job status becomes failed and all pods in this job will be deleted. If you leave this parameter blank, the job will never time out.</li></ul>
+</li></ul>
+</div>
+</p></li><li id="cce_10_0150__li01417411620"><span>Click <strong id="cce_10_0150__b2573105264313">Create Workload</strong> in the lower right corner.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0150__section450152719412"><a name="cce_10_0150__section450152719412"></a><a name="section450152719412"></a><h4 class="sectiontitle">Using kubectl</h4><p id="cce_10_0150__p1140861905814">A job has the following configuration parameters:</p>
+<ul id="cce_10_0150__ul766372616571"><li id="cce_10_0150__li1566422695710"><strong id="cce_10_0150__b33511321133418">spec.template</strong>: has the same schema as a pod.</li><li id="cce_10_0150__li1966442695712"><strong id="cce_10_0150__b7351182123416">RestartPolicy</strong>: can only be set to <strong id="cce_10_0150__b93511521203410">Never</strong> or <strong id="cce_10_0150__b193511215345">OnFailure</strong>.</li><li id="cce_10_0150__li56645269570">For a single-pod job, the job ends after the pod runs successfully by default.</li><li id="cce_10_0150__li866492619578"><strong id="cce_10_0150__b1835112119342">.spec.completions</strong>: indicates the number of pods that need to run successfully to end a job. The default value is <strong id="cce_10_0150__b16237613639413">1</strong>.</li><li id="cce_10_0150__li46641826185717"><strong id="cce_10_0150__b6141630789418">.spec.parallelism</strong>: indicates the number of pods that run concurrently. The default value is <strong id="cce_10_0150__b1735118212340">1</strong>.</li><li id="cce_10_0150__li466422645712"><strong id="cce_10_0150__b1235162111349">spec.backoffLimit</strong>: indicates the maximum number of retries performed if a pod fails. When the limit is reached, the pod will not try again.</li><li id="cce_10_0150__li11493654161013"><strong id="cce_10_0150__b235118216348">.spec.activeDeadlineSeconds</strong>: indicates the running time of pods. Once the time is reached, all pods of the job are terminated. The priority of .spec.activeDeadlineSeconds is higher than that of .spec.backoffLimit. That is, if a job reaches the .spec.activeDeadlineSeconds, the spec.backoffLimit is ignored.</li></ul>
+<p id="cce_10_0150__p115685662310">Based on the <strong id="cce_10_0150__b1635142120341">.spec.completions</strong> and <strong id="cce_10_0150__b20351621103410">.spec.Parallelism</strong> settings, jobs are classified into the following types.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0150__table19214202022111" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Job types</caption><thead align="left"><tr id="cce_10_0150__row221419208210"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.4.5.2.4.1.1"><p id="cce_10_0150__p192146200219">Job Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="39%" id="mcps1.3.4.5.2.4.1.2"><p id="cce_10_0150__p0214720122118">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40%" id="mcps1.3.4.5.2.4.1.3"><p id="cce_10_0150__p62149208219">Example</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0150__row82141620152119"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_10_0150__p2050935122113">One-off jobs</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_10_0150__p124101856162110">A single pod runs once until successful termination.</p>
+</td>
+<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_10_0150__p58403110224">Database migration</p>
+</td>
+</tr>
+<tr id="cce_10_0150__row1221432052118"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_10_0150__p14512351132120">Jobs with a fixed completion count</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_10_0150__p741405662112">One pod runs until reaching the specified <strong id="cce_10_0150__b1815413565343">completions</strong> count.</p>
+</td>
+<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_10_0150__p1284481192220">Work queue processing pod</p>
+</td>
+</tr>
+<tr id="cce_10_0150__row1321432013217"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_10_0150__p195159512216">Parallel jobs with a fixed completion count</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_10_0150__p134205562218">Multiple pods run until reaching the specified <strong id="cce_10_0150__b1215465693419">completions</strong> count.</p>
+</td>
+<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_10_0150__p3847512224">Multiple pods for processing work queues concurrently</p>
+</td>
+</tr>
+<tr id="cce_10_0150__row8214192020217"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.4.5.2.4.1.1 "><p id="cce_10_0150__p115209514218">Parallel jobs</p>
+</td>
+<td class="cellrowborder" valign="top" width="39%" headers="mcps1.3.4.5.2.4.1.2 "><p id="cce_10_0150__p12424856142114">One or more pods run until successful termination.</p>
+</td>
+<td class="cellrowborder" valign="top" width="40%" headers="mcps1.3.4.5.2.4.1.3 "><p id="cce_10_0150__p285251142217">Multiple pods for processing work queues concurrently</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0150__p5670244185719">The following is an example job, which calculates π till the 2000<sup id="cce_10_0150__sup8388161018318">th</sup> digit and prints the output.</p>
+<pre class="screen" id="cce_10_0150__screen188897367304">apiVersion: batch/v1
+kind: Job
+metadata:
+  name: myjob
+spec:
+  completions: 50        # 50 pods need to be run to finish a job. In this example, π is printed for 50 times.
+  parallelism: 5        # 5 pods are run in parallel.
+  backoffLimit: 5        # The maximum number of retry times is 5.
+  template:
+    spec:
+      containers:
+      - name: pi
+        image: perl
+        command: ["perl",  "-Mbignum=bpi", "-wle", "print bpi(2000)"]
+      restartPolicy: Never</pre>
+<p id="cce_10_0150__p95981983618"><strong id="cce_10_0150__b11576111113314">Description</strong></p>
+<ul id="cce_10_0150__ul1156211387"><li id="cce_10_0150__li615122103818"><strong id="cce_10_0150__b956317121139">apiVersion: batch/v1</strong> indicates the version of the current job.</li><li id="cce_10_0150__li315162173813"><strong id="cce_10_0150__b245711518310">kind: Job</strong> indicates that the current resource is a job.</li><li id="cce_10_0150__li1161821389"><strong id="cce_10_0150__b1345218191538">restartPolicy: Never</strong> indicates the current restart policy. For jobs, this parameter can only be set to <strong id="cce_10_0150__b44679204319">Never</strong> or <strong id="cce_10_0150__b7467020631">OnFailure</strong>. For other controllers (for example, Deployments), you can set this parameter to <strong id="cce_10_0150__b3558557114013">Always</strong>.</li></ul>
+<p id="cce_10_0150__p19657641185210"><strong id="cce_10_0150__b101994271342">Run the job.</strong></p>
+<ol id="cce_10_0150__ol796922611468"><li id="cce_10_0150__li199694261468"><span>Start the job.</span><p><pre class="screen" id="cce_10_0150__screen258244611465">[root@k8s-master k8s]# kubectl apply -f myjob.yaml
+job.batch/myjob created</pre>
+</p></li><li id="cce_10_0150__li934514297467"><span>View the job details.</span><p><p id="cce_10_0150__p111707814818"><strong id="cce_10_0150__b36121041164817">kubectl get job</strong></p>
+<pre class="screen" id="cce_10_0150__screen17592173210483">[root@k8s-master k8s]# kubectl get job
+NAME    COMPLETIONS   DURATION   AGE
+myjob   50/50         23s        3m45s</pre>
+<p id="cce_10_0150__p13967121984918">If the value of <strong id="cce_10_0150__b1353915301244">COMPLETIONS</strong> is <strong id="cce_10_0150__b7544330641">50/50</strong>, the job is successfully executed.</p>
+</p></li><li id="cce_10_0150__li174526554816"><span>Query the pod status.</span><p><p id="cce_10_0150__p12487204616499"><strong id="cce_10_0150__b187621528155013">kubectl get pod</strong></p>
+<pre class="screen" id="cce_10_0150__screen3259111195013">[root@k8s-master k8s]# kubectl get pod
+NAME          READY   STATUS      RESTARTS   AGE
+myjob-29qlw   0/1     Completed   0          4m5s
+...</pre>
+<p id="cce_10_0150__p1493240155016">If the status is <strong id="cce_10_0150__b87899363419">Completed</strong>, the job is complete.</p>
+</p></li><li id="cce_10_0150__li31584441491"><span>View the pod logs.</span><p><p id="cce_10_0150__p131821814115110"><strong id="cce_10_0150__b17171154917510">kubectl logs</strong></p>
+<pre class="screen" id="cce_10_0150__screen1181615335512"># kubectl logs myjob-29qlw
+3.1415926535897932384626433832795028841971693993751058209749445923078164062862089986280348253421170679821480865132823066470938446095505822317253594081284811174502841027019385211055596446229489549303819644288109756659334461284756482337867831652712019091456485669234603486104543266482133936072602491412737245870066063155881748815209209628292540917153643678925903600113305305488204665213841469519415116094330572703657595919530921861173819326117931051185480744623799627495673518857527248912279381830119491298336733624406566430860213949463952247371907021798609437027705392171762931767523846748184676694051320005681271452635608277857713427577896091736371787214684409012249534301465495853710507922796892589235420199561121290219608640344181598136297747713099605187072113499999983729780499510597317328160963185950244594553469083026425223082533446850352619311881710100031378387528865875332083814206171776691473035982534904287554687311595628638823537875937519577818577805321712268066130019278766111959092164201989380952572010654858632788659361533818279682303019520353018529689957736225994138912497217752834791315155748572424541506959508295331168617278558890750983817546374649393192550604009277016711390098488240128583616035637076601047101819429555961989467678374494482553797747268471040475346462080466842590694912933136770289891521047521620569660240580381501935112533824300355876402474964732639141992726042699227967823547816360093417216412199245863150302861829745557067498385054945885869269956909272107975093029553211653449872027559602364806654991198818347977535663698074265425278625518184175746728909777727938000816470600161452491921732172147723501414419735685481613611573525521334757418494684385233239073941433345477624168625189835694855620992192221842725502542568876717904946016534668049886272327917860857843838279679766814541009538837863609506800642251252051173929848960841284886269456042419652850222106611863067442786220391949450471237137869609563643719172874677646575739624138908658326459958133904780275901</pre>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0150__s9bef0428158a4935b466ea150ccae961"><h4 class="sectiontitle">Related Operations</h4><p id="cce_10_0150__ad9af09fde5934e8095af1d02ba2948c8">After a one-off job is created, you can perform operations listed in <a href="#cce_10_0150__t84075653e7544394939d13740fad0c20">Table 2</a>.</p>
+
+<div class="tablenoborder"><a name="cce_10_0150__t84075653e7544394939d13740fad0c20"></a><a name="t84075653e7544394939d13740fad0c20"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0150__t84075653e7544394939d13740fad0c20" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Other operations</caption><thead align="left"><tr id="cce_10_0150__r83819c2bd882441798d949cbee32fa6a"><th align="left" class="cellrowborder" valign="top" width="28.999999999999996%" id="mcps1.3.5.3.2.3.1.1"><p id="cce_10_0150__en-us_topic_0093532761_p92150167611">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="71%" id="mcps1.3.5.3.2.3.1.2"><p id="cce_10_0150__a6b27fdd2dcc340f3baa6024edb5b3ae9">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0150__row17717577287"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0150__p147711757162810">Editing a YAML file</p>
+</td>
+<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_10_0150__p15771257142816">Click <strong id="cce_10_0150__b56052111715">More</strong> &gt; <strong id="cce_10_0150__b26252131711">Edit YAML</strong> next to the job name to edit the YAML file corresponding to the current job.</p>
+</td>
+</tr>
+<tr id="cce_10_0150__r27a8f438ed1d4cbba2ad07f7a08acb06"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0150__a1f9f2bb06252439c82b01c1d4bbb9ab0">Deleting a job</p>
+</td>
+<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><ol id="cce_10_0150__od5720c015360452491819af825ce5845"><li id="cce_10_0150__en-us_topic_0093532761_li52166161612">Select the job to be deleted and click <span class="uicontrol" id="cce_10_0150__uicontrol4855557669443"><b>Delete</b></span> in the <strong id="cce_10_0150__b1339219281075">Operation</strong> column.</li><li id="cce_10_0150__l010b4ac7da7845e1ab0848d356edab71">Click <strong id="cce_10_0150__a14b4819ca5b74b27beebaa7cc918e410">Yes</strong>.<p id="cce_10_0150__aad27c67674e84e898611af0725bfe1cf">Deleted jobs cannot be restored. Exercise caution when deleting a job.</p>
+</li></ol>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0151.html b/docs/cce/umn/cce_10_0151.html
new file mode 100644
index 00000000..f599f983
--- /dev/null
+++ b/docs/cce/umn/cce_10_0151.html
@@ -0,0 +1,108 @@
+<a name="cce_10_0151"></a><a name="cce_10_0151"></a>
+
+<h1 class="topictitle1">Creating a Cron Job</h1>
+<div id="body8662426"><div class="section" id="cce_10_0151__section6515233144317"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0151__p131204403437">A cron job runs on a repeating schedule. You can perform <span class="keyword" id="cce_10_0151__keyword10633987911153">time synchronization</span> for all active nodes at a fixed time point.</p>
+<div class="p" id="cce_10_0151__p116657445446">A cron job runs periodically at the specified time. It is similar with Linux crontab. A cron job has the following characteristics:<ul id="cce_10_0151__ul158911624204312"><li id="cce_10_0151__li162075212431">Runs only once at the specified time.</li><li id="cce_10_0151__li13638113214317">Runs periodically at the specified time.</li></ul>
+</div>
+<p id="cce_10_0151__p2381153704313">The typical usage of a cron job is as follows:</p>
+<ul id="cce_10_0151__ul1552714684317"><li id="cce_10_0151__li557144612431">Schedules jobs at the specified time.</li><li id="cce_10_0151__li652813464432">Creates jobs to run periodically, for example, database backup and email sending.</li></ul>
+</div>
+<div class="section" id="cce_10_0151__s50bf087555b1437aa249c1259138706c"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0151__p777418357559">Resources have been created. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</p>
+</div>
+<div class="section" id="cce_10_0151__section345135735520"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0151__ol2012902601117"><li id="cce_10_0151__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0151__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0151__b1885417579613">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0151__b1685418571868">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0151__li67891737151520"><span>Set basic information about the workload.</span><p><div class="p" id="cce_10_0151__p1259466151612"><strong id="cce_10_0151__b12586554174511">Basic Info</strong><ul id="cce_10_0151__ul6954101318184"><li id="cce_10_0151__li11514131617185"><strong id="cce_10_0151__b011355684516">Workload Type</strong>: Select <strong id="cce_10_0151__b8113135614512">Cron Job</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0151__li129541213101814"><strong id="cce_10_0151__b144732064465">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0151__li179541813111814"><strong id="cce_10_0151__b13284275464">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0151__b228411710464">default</strong>. You can also click <span class="uicontrol" id="cce_10_0151__uicontrol2139109154616"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0151__li11753142112539"><strong id="cce_10_0151__b5332810174614">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li></ul>
+</div>
+<div class="p" id="cce_10_0151__p206571518181616"><strong id="cce_10_0151__b101031654614">Container Settings</strong><ul id="cce_10_0151__ul42071022103320"><li id="cce_10_0151__li8770480458">Container Information<div class="p" id="cce_10_0151__p10493941854"><a name="cce_10_0151__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0151__uicontrol127468176466"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0151__ul3659182116126"><li id="cce_10_0151__li106592216120"><strong id="cce_10_0151__b20340145912491">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0151__li1865942191210"><strong id="cce_10_0151__b198848416507">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0151__li365922119124"><strong id="cce_10_0151__b1468148185018">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li></ul>
+</div>
+</li><li id="cce_10_0151__li1487514116369"><strong id="cce_10_0151__b528632313469">Image Access Credential</strong>: Select the credential used for accessing the image repository. The default value is <strong id="cce_10_0151__b12287423184611">default-secret</strong>. You can use default-secret to access images in SWR. For details about <strong id="cce_10_0151__b1796612241469">default-secret</strong>, see <a href="cce_10_0388.html#cce_10_0388__section11760122012591">default-secret</a>.</li><li id="cce_10_0151__li11649141318194"><strong id="cce_10_0151__b161628207199">GPU graphics card</strong>: <strong id="cce_10_0151__b1516272031917">All</strong> is selected by default. The workload instance will be scheduled to the node with the specified GPU graphics card type.</li></ul>
+</div>
+<p id="cce_10_0151__p1447162741615"><strong id="cce_10_0151__b184810401464">Schedule</strong></p>
+<ul id="cce_10_0151__ul91241139101318"><li id="cce_10_0151__li1912413910137"><strong id="cce_10_0151__b19418453184611">Concurrency Policy</strong>: The following three modes are supported:<ul id="cce_10_0151__ul5457195019139"><li id="cce_10_0151__li134571850191311"><strong id="cce_10_0151__b1126813568461">Forbid</strong>: A new job cannot be created before the previous job is completed.</li><li id="cce_10_0151__li10457750141311"><strong id="cce_10_0151__b6633818472">Allow</strong>: The cron job allows concurrently running jobs, which preempt cluster resources.</li><li id="cce_10_0151__li20457165081311"><strong id="cce_10_0151__b1727793719486">Replace</strong>: A new job replaces the previous job when it is time to create a job but the previous job is not completed.</li></ul>
+</li><li id="cce_10_0151__li1812493931313"><strong id="cce_10_0151__b245715268227">Policy Settings</strong>: specifies when a new cron job is executed. Policy settings in YAML are implemented using cron expressions.<ul id="cce_10_0151__ul206116537154"><li id="cce_10_0151__li1961135312154">A cron job is executed at a fixed interval. The unit can be minute, hour, day, or month. For example, if a cron job is executed every 30 minutes, the cron expression is <span class="parmvalue" id="cce_10_0151__parmvalue2564165211228"><b>*/30 * * * *</b></span>, the execution time starts from 0 in the unit range, for example, <strong id="cce_10_0151__b14193756125812">00:00:00</strong>, <strong id="cce_10_0151__b189761955716">00:30:00</strong>, <strong id="cce_10_0151__b10326145719110">01:00:00</strong>, and <strong id="cce_10_0151__b1232614571311">...</strong>.</li><li id="cce_10_0151__li46111553151516">The cron job is executed at a fixed time (by month). For example, if a cron job is executed at 00:00 on the first day of each month, the cron expression is <span class="parmvalue" id="cce_10_0151__parmvalue1041822192120"><b>0 0 1 */1 *</b></span>, and the execution time is <strong id="cce_10_0151__b119321118812">****-01-01 00:00:00</strong>, <strong id="cce_10_0151__b128291927817">****-02-01 00:00:00</strong>, and <strong id="cce_10_0151__b1785412582112">...</strong>.</li><li id="cce_10_0151__li1861165391519">The cron job is executed at a fixed time (by week). For example, if a cron job is executed at 00:00 every Monday, the cron expression is <span class="parmvalue" id="cce_10_0151__parmvalue204822912316"><b>0 0 * * 1</b></span>, and the execution time is <strong id="cce_10_0151__b381418113354">****-**-01 00:00:00 on Monday</strong>, <strong id="cce_10_0151__b9210121723519">****-**-08 00:00:00 on Monday</strong>, and <strong id="cce_10_0151__b186941814212">...</strong>.</li><li id="cce_10_0151__li99294721613">For details about how to use cron expressions, see <a href="https://en.wikipedia.org/wiki/Cron" target="_blank" rel="noopener noreferrer">cron</a>.</li></ul>
+<div class="note" id="cce_10_0151__note159272432146"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0151__ul16927843181414"><li id="cce_10_0151__li155651168448">If a cron job is executed at a fixed time (by month) and the number of days in a month does not exist, the cron job will not be executed in this month. For example, if the number of days is set to 30 but February does not have the 30th day, the cron job skips this month and continues on March 30.</li><li id="cce_10_0151__li14928184371419">Due to the definition of the cron expression, the fixed period is not a strict period. The time unit range is divided from 0 by period. For example, if the unit is minute, the value ranges from 0 to 59. If the value cannot be exactly divided, the last period is reset. Therefore, an accurate period can be represented only when the period can evenly divide its time unit range.<p id="cce_10_0151__p1392834391417"><a name="cce_10_0151__li14928184371419"></a><a name="li14928184371419"></a>For example, the unit of the period is hour. Because <span class="uicontrol" id="cce_10_0151__uicontrol10246621115016"><b>/2, /3, /4, /6, /8, and /12</b></span> can be divided by 24, the accurate period can be represented. If another period is used, the last period will be reset at the beginning of a new day. For example, if the cron expression is <span class="parmvalue" id="cce_10_0151__parmvalue71848132492"><b>* */12 * * *</b></span>, the execution time is <strong id="cce_10_0151__b1481901614492">00:00:00</strong> and <strong id="cce_10_0151__b128091318174919">12:00:00</strong> every day. If the cron expression is <span class="parmvalue" id="cce_10_0151__parmvalue61831751134917"><b>* */13 * * *</b></span>, the execution time is <strong id="cce_10_0151__b6179527135016">00:00:00</strong> and <strong id="cce_10_0151__b1417911274508">13:00:00</strong> every day. At 00:00 on the next day, the execution time is updated even if the period does not reach 13 hours.</p>
+</li></ul>
+</div></div>
+</li><li id="cce_10_0151__li1112523911136"><strong id="cce_10_0151__b06862052175618">Job Records</strong>: You can set the number of jobs that are successfully executed or fail to be executed. Setting a limit to <strong id="cce_10_0151__b26802462489">0</strong> corresponds to keeping none of the jobs after they finish.</li></ul>
+<div class="p" id="cce_10_0151__p310913521612"><strong id="cce_10_0151__b1557715551482">Advanced Settings</strong><ul id="cce_10_0151__ul142811417"><li id="cce_10_0151__li179714209414"><strong id="cce_10_0151__b1083715816571">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li></ul>
+</div>
+</p></li><li id="cce_10_0151__li01417411620"><span>Click <strong id="cce_10_0151__b040712154920">Create Workload</strong> in the lower right corner.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0151__section13519162224919"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_10_0151__p7146184834918">A cron job has the following configuration parameters:</p>
+<ul id="cce_10_0151__ul63571722115317"><li id="cce_10_0151__li9355152217535"><strong id="cce_10_0151__b17472122465617">.spec.schedule</strong>: takes a <a href="https://kubernetes.io/docs/concepts/workloads/controllers/cron-jobs/#cron-schedule-syntax" target="_blank" rel="noopener noreferrer">Cron</a> format string, for example, <strong id="cce_10_0151__b16472624165616">0 * * * * </strong>or <strong id="cce_10_0151__b1947362435616">@hourly</strong>, as schedule time of jobs to be created and executed.</li><li id="cce_10_0151__li135519220532"><strong id="cce_10_0151__b1489461364613">.spec.jobTemplate</strong>: specifies jobs to be run, and has the same schema as when you are <a href="cce_10_0150.html#cce_10_0150__section450152719412">Creating a Job Using kubectl</a>.</li><li id="cce_10_0151__li1335722215531"><strong id="cce_10_0151__b10267121944614">.spec.startingDeadlineSeconds</strong>: specifies the deadline for starting a job.</li><li id="cce_10_0151__li103572226538"><strong id="cce_10_0151__b6933279102235">.spec.concurrencyPolicy</strong>: specifies how to treat concurrent executions of a job created by the Cron job. The following options are supported:<ul id="cce_10_0151__ul1147444212589"><li id="cce_10_0151__li310154725818"><strong id="cce_10_0151__b3705638610156">Allow</strong> (default value): allows concurrently running jobs.</li><li id="cce_10_0151__li1321544995817"><strong id="cce_10_0151__b1466056099101656">Forbid</strong>: forbids concurrent runs, skipping next run if previous has not finished yet.</li><li id="cce_10_0151__li4148173915581"><strong id="cce_10_0151__b135017237610172">Replace</strong>: cancels the currently running job and replaces it with a new one.</li></ul>
+</li></ul>
+<p id="cce_10_0151__p18401553125719">The following is an example cron job, which is saved in the <strong id="cce_10_0151__b134131003410178">cronjob.yaml</strong> file.</p>
+<pre class="screen" id="cce_10_0151__screen6614193916212">apiVersion: batch/v1beta1
+kind: CronJob
+metadata:
+  name: hello
+spec:
+  schedule: "*/1 * * * *"
+  jobTemplate:
+    spec:
+      template:
+        spec:
+          containers:
+          - name: hello
+            image: busybox
+            args:
+            - /bin/sh
+            - -c
+            - date; echo Hello from the Kubernetes cluster
+          restartPolicy: OnFailure</pre>
+<p id="cce_10_0151__p530151312530"><strong id="cce_10_0151__b13360545548">Run the job.</strong></p>
+<ol id="cce_10_0151__ol11256193711913"><li id="cce_10_0151__li625663710915"><span>Create a cron job.</span><p><p id="cce_10_0151__p151762477916"><strong id="cce_10_0151__b133271754996">kubectl create -f cronjob.yaml</strong></p>
+<p id="cce_10_0151__p439315553919">Information similar to the following is displayed:</p>
+<pre class="screen" id="cce_10_0151__screen11035461293">cronjob.batch/hello created</pre>
+</p></li><li id="cce_10_0151__li1110312465918"><span>Query the running status of the cron job:</span><p><p id="cce_10_0151__p835017369103"><strong id="cce_10_0151__b15084271010">kubectl get cronjob</strong></p>
+<pre class="screen" id="cce_10_0151__screen192598284111">NAME      SCHEDULE      SUSPEND   ACTIVE    LAST SCHEDULE   AGE
+hello     */1 * * * *   False     0         &lt;none&gt;          9s</pre>
+<p id="cce_10_0151__p124931143141117"><strong id="cce_10_0151__b39991613171312">kubectl get jobs</strong></p>
+<pre class="screen" id="cce_10_0151__screen5109116125">NAME               COMPLETIONS   DURATION   AGE
+hello-1597387980   1/1           27s        45s</pre>
+<p id="cce_10_0151__p1714120241541"><strong id="cce_10_0151__b1762310283551">kubectl get pod</strong></p>
+<pre class="screen" id="cce_10_0151__screen937910225556">NAME                           READY     STATUS      RESTARTS   AGE
+hello-1597387980-tjv8f         0/1       Completed   0          114s
+hello-1597388040-lckg9         0/1       Completed   0          39s</pre>
+<p id="cce_10_0151__p7123191511217"><strong id="cce_10_0151__b7149111111133">kubectl logs </strong><strong id="cce_10_0151__b1569305865618">hello-1597387980-tjv8f</strong></p>
+<pre class="screen" id="cce_10_0151__screen783814275124">Fri Aug 14 06:56:31 UTC 2020
+Hello from the Kubernetes cluster</pre>
+<p id="cce_10_0151__p1819778137"><strong id="cce_10_0151__b414112317137">kubectl delete cronjob hello</strong></p>
+<pre class="screen" id="cce_10_0151__screen12247183714913">cronjob.batch "hello" deleted</pre>
+<div class="notice" id="cce_10_0151__note238719161861"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0151__p10387151619618">When a cron job is deleted, the related jobs and pods are deleted too.</p>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0151__s28175da725cf46d49a4cfca59155a5d2"><h4 class="sectiontitle">Related Operations</h4><p id="cce_10_0151__a0d7cb99053db4addbcf7b1a73b1e7bab">After a cron job is created, you can perform operations listed in <a href="#cce_10_0151__t6d520710097a4ee098eae42bcb508608">Table 1</a>.</p>
+
+<div class="tablenoborder"><a name="cce_10_0151__t6d520710097a4ee098eae42bcb508608"></a><a name="t6d520710097a4ee098eae42bcb508608"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0151__t6d520710097a4ee098eae42bcb508608" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Other operations</caption><thead align="left"><tr id="cce_10_0151__r8d59bf3aa5394e84ae626a36c585013d"><th align="left" class="cellrowborder" valign="top" width="28.999999999999996%" id="mcps1.3.5.3.2.3.1.1"><p id="cce_10_0151__a8245dffabcbf4810a7333d8ce9a67789">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="71%" id="mcps1.3.5.3.2.3.1.2"><p id="cce_10_0151__en-us_topic_0093532762_p685713442569">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0151__row82414466296"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0151__p147711757162810">Editing a YAML file</p>
+</td>
+<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_10_0151__p15771257142816">Click <strong id="cce_10_0151__b84235270611943">More</strong> &gt; <strong id="cce_10_0151__b84235270611958">Edit YAML</strong> next to the cron job name to edit the YAML file of the current job.</p>
+</td>
+</tr>
+<tr id="cce_10_0151__r25f2ff5451494127b1af5ab34b807936"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0151__a6abaef816404455581dc7dbaddf656ee">Stopping a cron job</p>
+</td>
+<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><ol id="cce_10_0151__obe7516d58ade42a389e52e27f663e03d"><li id="cce_10_0151__en-us_topic_0093532762_li75111466565">Select the job to be stopped and click <strong id="cce_10_0151__b842352706102439">Stop</strong> in the <strong id="cce_10_0151__b12271357184317">Operation</strong> column.</li><li id="cce_10_0151__l92db89730e1b41af9d9908567258633e">Click <strong id="cce_10_0151__a14b4819ca5b74b27beebaa7cc918e410">Yes</strong>.</li></ol>
+</td>
+</tr>
+<tr id="cce_10_0151__r9fec8c34ebbb44e3888c677862a174e0"><td class="cellrowborder" valign="top" width="28.999999999999996%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0151__en-us_topic_0093532762_p685874410564">Deleting a cron job</p>
+</td>
+<td class="cellrowborder" valign="top" width="71%" headers="mcps1.3.5.3.2.3.1.2 "><ol id="cce_10_0151__o9409a54b32c14e4799c05e5f0a643633"><li id="cce_10_0151__l448139d196dc4757ac668bc81939c1d3">Select the cron job to be deleted and click <strong id="cce_10_0151__b842352706111124">More</strong> &gt; <strong id="cce_10_0151__b842352706111132">Delete</strong> in the <strong id="cce_10_0151__b842352706111135">Operation</strong> column.</li><li id="cce_10_0151__le39ab2b73bb944948ce5daf793fa72fa">Click <strong id="cce_10_0151__a14b4819ca5b74b27beebaa7cc918e410_1">Yes</strong>.<p id="cce_10_0151__a3be1d4db3fa4464dbc950b89a31d57aa">Deleted jobs cannot be restored. Therefore, exercise caution when deleting a job.</p>
+</li></ol>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0152.html b/docs/cce/umn/cce_10_0152.html
new file mode 100644
index 00000000..faea51a6
--- /dev/null
+++ b/docs/cce/umn/cce_10_0152.html
@@ -0,0 +1,107 @@
+<a name="cce_10_0152"></a><a name="cce_10_0152"></a>
+
+<h1 class="topictitle1">Creating a ConfigMap</h1>
+<div id="body1517812850360"><div class="section" id="cce_10_0152__section36448505316"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0152__p9901115812312">A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. After creating ConfigMaps, you can use them as files or environment variables in a containerized workload.</p>
+<p id="cce_10_0152__p1713281845610">ConfigMaps allow you to decouple configuration files from container images to enhance the portability of workloads.</p>
+<p id="cce_10_0152__p310975192519">Benefits of ConfigMaps:</p>
+<ul id="cce_10_0152__ul198841451945"><li id="cce_10_0152__li1729651412510">Manage configurations of different environments and services.</li><li id="cce_10_0152__li1029613148252">Deploy workloads in different environments. Multiple versions are supported for configuration files so that you can update and roll back workloads easily.</li><li id="cce_10_0152__li5885853411">Quickly import configurations in the form of files to containers.</li></ul>
+</div>
+<div class="section" id="cce_10_0152__section18512531861"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0152__ol18179910114616"><li id="cce_10_0152__li635713242020"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0152__li20395342103020"><span>Choose <span class="uicontrol" id="cce_10_0152__uicontrol19468432182014"><b>ConfigMaps and Secrets</b></span> in the navigation pane and click <span class="uicontrol" id="cce_10_0152__uicontrol6170157575"><b>Create ConfigMap</b></span> in the upper right corner.</span></li><li id="cce_10_0152__li6634857171419"><span>Set parameters.</span><p>
+<div class="tablenoborder"><a name="cce_10_0152__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0152__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a ConfigMap</caption><thead align="left"><tr id="cce_10_0152__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.3.2.1.2.3.1.1"><p id="cce_10_0152__p43211725338">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.2.2.3.2.1.2.3.1.2"><p id="cce_10_0152__p0322102516320">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0152__row163229255313"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p1232219251339">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p173227259312">Name of a ConfigMap, which must be unique in a namespace.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row111551253912"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p51551451293">Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p216414418190">Namespace to which the ConfigMap belongs. If you do not specify this parameter, the value <strong id="cce_10_0152__b485211104463">default</strong> is used by default.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row1535723154615"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p83591731124620">Description</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p1736012314462">Description of the ConfigMap.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p23228259314">Data</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p085820352295">Data of a ConfigMap, in the key-value pair format.</p>
+<p id="cce_10_0152__p15328144616261">Click <span><img id="cce_10_0152__image12816235293" src="en-us_image_0000001205757902.png"></span> to add data. The value can be in string, JSON, or YAML format.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p17322225134">Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p055041093119">Label of the ConfigMap. Enter a key-value pair and click <strong id="cce_10_0152__b1027145220482">Add</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0152__li11187141015461"><span>After the configuration is complete, click <span class="uicontrol" id="cce_10_0152__uicontrol424264973103651"><b>OK</b></span>.</span><p><p id="cce_10_0152__p018781015461">The new ConfigMap is displayed in the ConfigMap list.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0152__section66903416102"><h4 class="sectiontitle">ConfigMap Requirements</h4><p id="cce_10_0152__p44144616106">A ConfigMap resource file must be in YAML format, and the file size cannot exceed 2 MB.</p>
+<div class="p" id="cce_10_0152__p615908129">The file name is <strong id="cce_10_0152__b206395112113">configmap.yaml</strong> and the following shows a configuration example.<pre class="screen" id="cce_10_0152__screen156291559131119">apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: test-configmap
+data:
+  data-1: value-1
+  data-2: value-2</pre>
+</div>
+</div>
+<div class="section" id="cce_10_0152__section639712716372"><h4 class="sectiontitle">Creating a ConfigMap Using kubectl</h4><ol id="cce_10_0152__ol4681114115209"><li id="cce_10_0152__li1681024195710"><span>Configure the <strong id="cce_10_0152__b107571340111220">kubectl</strong> command to connect an ECS to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0152__li1020013819415"><span>Create and edit the <strong id="cce_10_0152__b4906313131317">cce-configmap.yaml</strong> file.</span><p><p id="cce_10_0152__p106999147413"><strong id="cce_10_0152__b6469155655719">vi cce-configmap.yaml</strong></p>
+<pre class="screen" id="cce_10_0152__screen1245419316221">apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: cce-configmap
+data:
+  SPECIAL_LEVEL: Hello
+  SPECIAL_TYPE: CCE</pre>
+</p></li><li id="cce_10_0152__li788331518303"><span>Run the following commands to create a ConfigMap.</span><p><p id="cce_10_0152__p3315182011255"><strong id="cce_10_0152__b56467233250">kubectl create -f cce-configmap.yaml</strong></p>
+<p id="cce_10_0152__p11761214251"><strong id="cce_10_0152__b96501723152519">kubectl get cm</strong></p>
+<pre class="screen" id="cce_10_0152__screen47118476349">NAME               DATA            AGE
+cce-configmap      3               3h
+cce-configmap1     3               7m</pre>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0152__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_10_0152__p98641861268">After creating a configuration item, you can update or delete it as described in <a href="#cce_10_0152__table1619535674020">Table 2</a>.
+<div class="tablenoborder"><a name="cce_10_0152__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0152__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Related operations</caption><thead align="left"><tr id="cce_10_0152__row16740630125918"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.5.2.2.2.3.1.1"><p id="cce_10_0152__p17740730115914">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.5.2.2.2.3.1.2"><p id="cce_10_0152__p1574018303592">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0152__row133318512019"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.2.2.3.1.1 "><p id="cce_10_0152__p163331851201">Editing a YAML file</p>
+</td>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.2.2.3.1.2 "><p id="cce_10_0152__p1633314512016">Click <strong id="cce_10_0152__b1013319126164">Edit YAML</strong> in the row where the target ConfigMap resides to edit its YAML file.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row12740103016592"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.2.2.3.1.1 "><p id="cce_10_0152__p4740153012590">Updating a ConfigMap</p>
+</td>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.2.2.3.1.2 "><ol id="cce_10_0152__ol187401330145919"><li id="cce_10_0152__li57402030165918">Select the name of the ConfigMap to be updated and click <strong id="cce_10_0152__b842352706114220">Update</strong>.</li><li id="cce_10_0152__li20740730145912">Modify the secret data. For more information, see <a href="#cce_10_0152__table16321825732">Table 1</a>.</li><li id="cce_10_0152__li15740930135911">Click <strong id="cce_10_0152__b15991746667">OK</strong>.</li></ol>
+</td>
+</tr>
+<tr id="cce_10_0152__row874013304597"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.2.2.3.1.1 "><p id="cce_10_0152__p17740330175915">Deleting a ConfigMap</p>
+</td>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.2.2.3.1.2 "><p id="cce_10_0152__p13740630165914">Select the configuration you want to delete and click <strong id="cce_10_0152__b84235270613133">Delete</strong>.</p>
+<p id="cce_10_0152__p1574020307590">Follow the prompts to delete the ConfigMap.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0153.html b/docs/cce/umn/cce_10_0153.html
new file mode 100644
index 00000000..23205a40
--- /dev/null
+++ b/docs/cce/umn/cce_10_0153.html
@@ -0,0 +1,128 @@
+<a name="cce_10_0153"></a><a name="cce_10_0153"></a>
+
+<h1 class="topictitle1">Creating a Secret</h1>
+<div id="body1517812850363"><div class="section" id="cce_10_0153__section86141233649"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0153__p134369401414">A secret is a type of resource that holds sensitive data, such as authentication and key information. Its content is user-defined. After creating secrets, you can use them as files or environment variables in a containerized workload.</p>
+</div>
+<div class="section" id="cce_10_0153__section18512531861"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0153__ol18179910114616"><li id="cce_10_0153__li13839221133416"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0153__li20395342103020"><span>Choose <span class="uicontrol" id="cce_10_0153__uicontrol2866154416546"><b>ConfigMaps and Secrets</b></span> in the navigation pane, click the <span class="uicontrol" id="cce_10_0153__uicontrol1586616444544"><b>Secrets</b></span> tab, and click <span class="uicontrol" id="cce_10_0153__uicontrol14866944125413"><b>Create Secret</b></span> in the upper right corner.</span></li><li id="cce_10_0153__li1931813575710"><span>Set parameters.</span><p>
+<div class="tablenoborder"><a name="cce_10_0153__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0153__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a secret</caption><thead align="left"><tr id="cce_10_0153__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.3.2.1.2.3.1.1"><p id="cce_10_0153__p43211725338">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.2.2.3.2.1.2.3.1.2"><p id="cce_10_0153__p0322102516320">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0153__row1752613417216"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p360313397217">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p1161911390211">Name of the secret you create, which must be unique.</p>
+</td>
+</tr>
+<tr id="cce_10_0153__row11291645181017"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p16293114519103">Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p129384511101">Namespace to which the secret belongs. If you do not specify this parameter, the value <strong id="cce_10_0153__b48091053154018">default</strong> is used by default.</p>
+</td>
+</tr>
+<tr id="cce_10_0153__row1984015472115"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p815351112212">Description</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p5153121142219">Description of a secret.</p>
+</td>
+</tr>
+<tr id="cce_10_0153__row1541115718414"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p14412774420">Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p1441319714414">Type of the secret you create.</p>
+<ul id="cce_10_0153__ul4570185817249"><li id="cce_10_0153__li15570185816249"><span class="keyword" id="cce_10_0153__keyword30498699141939">Opaque</span>: common secret.</li><li id="cce_10_0153__li10947145315265"><span class="keyword" id="cce_10_0153__keyword980727399141941">kubernetes.io/dockerconfigjson</span>: a secret that stores the authentication information required for pulling images from a private repository.</li><li id="cce_10_0153__li14121828172716"><span class="keyword" id="cce_10_0153__keyword580479947141945">IngressTLS</span>: a secret that stores the certificate required by ingresses (layer-7 load balancing Services).</li><li id="cce_10_0153__li119892492817">Other: another type of secret, which is specified manually.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0153__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p23228259314">Secret Data</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p133223251335">Workload secret data can be used in containers.</p>
+<ul id="cce_10_0153__ul180611337469"><li id="cce_10_0153__li108069333468">If <strong id="cce_10_0153__b10282732165415">Secret Type</strong> is <strong id="cce_10_0153__b1449613357547">Opaque</strong>, click <span><img id="cce_10_0153__image12816235293" src="en-us_image_0000001249958645.png"></span>. In the dialog box displayed, enter a key-value pair and select <strong id="cce_10_0153__b31811921195517">Auto Base64 Encoding</strong>.</li><li id="cce_10_0153__li1536053764716">If the secret type is <span class="keyword" id="cce_10_0153__keyword9993330195113">kubernetes.io/</span>dockerconfigjson, enter the account and password of the private image repository.</li><li id="cce_10_0153__li17736104214478">If the secret type is IngressTLS, upload the certificate file and private key file.<div class="note" id="cce_10_0153__note1890215211325"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0153__ul1280017919332"><li id="cce_10_0153__li14977104417334">A certificate is a self-signed or CA-signed credential used for identity authentication.</li><li id="cce_10_0153__li6236332143310">A certificate request is a request for a signature with a private key.</li></ul>
+</div></div>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0153__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p17322225134">Secret Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p055041093119">Label of the secret. Enter a key-value pair and click <strong id="cce_10_0153__b161531566532">Add</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0153__li11187141015461"><span>After the configuration is complete, click <strong id="cce_10_0153__b1887486251104639">OK</strong>.</span><p><p id="cce_10_0153__p018781015461">The new secret is displayed in the key list.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0153__section187197531454"><h4 class="sectiontitle">Secret Resource File Configuration</h4><p id="cce_10_0153__p2086031095117">This section describes configuration examples of secret resource description files.</p>
+<p id="cce_10_0153__p34594241969">For example, you can retrieve the username and password for a workload through a secret.</p>
+<ul id="cce_10_0153__ul98374131156"><li id="cce_10_0153__li283771391512">YAML format<p id="cce_10_0153__p104653241962"><a name="cce_10_0153__li283771391512"></a><a name="li283771391512"></a>The <strong id="cce_10_0153__b10887327235">secret.yaml</strong> file is defined as shown below. The value must be based on the Base64 coding method. For details about the method, see <a href="#cce_10_0153__section175000605919">Base64 Encoding</a>.</p>
+<pre class="screen" id="cce_10_0153__screen2846173513513">apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret           #Secret name
+  namespace: default       #Namespace. The default value is <strong id="cce_10_0153__b842352706165921">default</strong>.
+data:
+  username: ******  #The value must be Base64-encoded.
+  password: ******  #The value must be encoded using Base64.
+type: Opaque     #You are advised not to change this parameter value.</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0153__section821112149514"><h4 class="sectiontitle">Creating a Secret Using kubectl</h4><ol id="cce_10_0153__ol4681114115209"><li id="cce_10_0153__li1681024195710"><span>According to <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_10_0153__b72241535102516">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_10_0153__li198031614164419"><span>Create and edit the Base64-encoded <strong id="cce_10_0153__b3176599254">cce-secret.yaml</strong> file.</span><p><pre class="screen" id="cce_10_0153__screen1658792012013"># echo -n "<em id="cce_10_0153__i25185217413">content to be encoded</em>" | base64
+******</pre>
+<p id="cce_10_0153__p19354756165916"><strong id="cce_10_0153__b1577616471020">vi cce-secret.yaml</strong></p>
+<pre class="screen" id="cce_10_0153__screen1530717111302">apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret
+type: Opaque
+data:
+  username: ******
+  password: ******</pre>
+</p></li><li id="cce_10_0153__li788331518303"><span>Create a secret.</span><p><p id="cce_10_0153__p3315182011255"><strong id="cce_10_0153__b56467233250">kubectl create -f cce-secret.yaml</strong></p>
+<p id="cce_10_0153__p2239132312114">You can query the secret after creation.</p>
+<p id="cce_10_0153__p11761214251"><strong id="cce_10_0153__b96501723152519">kubectl get secret</strong></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0153__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_10_0153__p1010361816508">After creating a secret, you can update or delete it as described in <a href="#cce_10_0153__table555785274319">Table 2</a>.<div class="note" id="cce_10_0153__note1655192725017"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0153__p10656327115010">The secret list contains system secret resources that can be queried only. The system secret resources cannot be updated or deleted.</p>
+</div></div>
+
+<div class="tablenoborder"><a name="cce_10_0153__table555785274319"></a><a name="table555785274319"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0153__table555785274319" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Related Operations</caption><thead align="left"><tr id="cce_10_0153__row19412155014112"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.5.2.3.2.3.1.1"><p id="cce_10_0153__p154122501516">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.5.2.3.2.3.1.2"><p id="cce_10_0153__p94129501313">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0153__row155037195247"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p163331851201">Editing a YAML file</p>
+</td>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><p id="cce_10_0153__p1633314512016">Click <strong id="cce_10_0153__b29872035151519">Edit YAML</strong> in the row where the target secret resides to edit its YAML file.</p>
+</td>
+</tr>
+<tr id="cce_10_0153__row8412185010116"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p1541213501611">Updating a secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><ol id="cce_10_0153__ol1341225020114"><li id="cce_10_0153__li74121507113">Select the name of the secret to be updated and click <strong id="cce_10_0153__b842352706114220">Update</strong>.</li><li id="cce_10_0153__li104127501214">Modify the secret data. For more information, see <a href="#cce_10_0153__table16321825732">Table 1</a>.</li><li id="cce_10_0153__li184127501617">Click <strong id="cce_10_0153__b462312572612">OK</strong>.</li></ol>
+</td>
+</tr>
+<tr id="cce_10_0153__row1541219508112"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p141245010120">Deleting a secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><p id="cce_10_0153__p241218502119">Select the secret you want to delete and click <strong id="cce_10_0153__b84235270613133">Delete</strong>.</p>
+<p id="cce_10_0153__p18412195016114">Follow the prompts to delete the secret.</p>
+</td>
+</tr>
+<tr id="cce_10_0153__row24121750518"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p841215015117">Deleting secrets in batches</p>
+</td>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><ol id="cce_10_0153__ol8412145016116"><li id="cce_10_0153__li1441265019117">Select the secrets to be deleted.</li><li id="cce_10_0153__li1841210501111">Click <strong id="cce_10_0153__b1131863179">Delete</strong> above the secret list.</li><li id="cce_10_0153__li1841245011114">Follow the prompts to delete the secrets.</li></ol>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div class="section" id="cce_10_0153__section175000605919"><a name="cce_10_0153__section175000605919"></a><a name="section175000605919"></a><h4 class="sectiontitle">Base64 Encoding</h4><p id="cce_10_0153__p171051722165915">To Base64-encode a string, run the <strong id="cce_10_0153__b104286141289">echo -n <em id="cce_10_0153__i144224141684">content to be encoded</em> | base64</strong> command. The following is an example:</p>
+<pre class="screen" id="cce_10_0153__screen18124926408">root@ubuntu:~# echo -n "<em id="cce_10_0153__i13559177152">content to be encoded</em>" | base64
+******</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0154.html b/docs/cce/umn/cce_10_0154.html
new file mode 100644
index 00000000..81b1e509
--- /dev/null
+++ b/docs/cce/umn/cce_10_0154.html
@@ -0,0 +1,98 @@
+<a name="cce_10_0154"></a><a name="cce_10_0154"></a>
+
+<h1 class="topictitle1">autoscaler</h1>
+<div id="body1532314376260"><div class="section" id="cce_10_0154__section25311744154917"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0154__p1516451974919">Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.</p>
+<p id="cce_10_0154__p19176344814">When the CPU or memory usage of a microservice is too high, horizontal pod autoscaling is triggered to add pods to reduce the load. These pods can be automatically reduced when the load is low, allowing the microservice to run as efficiently as possible.</p>
+<p id="cce_10_0154__p10444837184212">CCE simplifies the creation, upgrade, and manual scaling of Kubernetes clusters, in which traffic loads change over time. To balance resource usage and workload performance of nodes, Kubernetes introduces the autoscaler add-on to automatically resize a cluster based on the resource usage required for workloads deployed in the cluster. For details, see <a href="cce_10_0209.html">Creating a Node Scaling Policy</a>.</p>
+<p id="cce_10_0154__p475433874510">Open source community: <a href="https://github.com/kubernetes/autoscaler" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/autoscaler</a></p>
+</div>
+<div class="section" id="cce_10_0154__section11187642115211"><h4 class="sectiontitle">How the Add-on Works</h4><p id="cce_10_0154__p12302642125211">autoscaler controls auto scale-out and scale-in.</p>
+<ul id="cce_10_0154__ul2031215814525"><li id="cce_10_0154__li8303242105213"><strong id="cce_10_0154__b07913431075">Auto scale-out</strong><div class="p" id="cce_10_0154__p3830181085618">You can choose either of the following methods:<ul id="cce_10_0154__ul8985898566"><li id="cce_10_0154__li149852095565">If pods in a cluster cannot be scheduled due to insufficient worker nodes, cluster scaling is triggered to add nodes. The nodes to be added have the same specification as configured for the node pool to which the nodes belong.<div class="p" id="cce_10_0154__p630621016584"><a name="cce_10_0154__li149852095565"></a><a name="li149852095565"></a>Auto scale-out will be performed when:<ul id="cce_10_0154__ul194215219578"><li id="cce_10_0154__li139861196561">Node resources are insufficient.</li><li id="cce_10_0154__li159866965613">No node affinity policy is set in the pod scheduling configuration. That is, if a node has been configured as an affinity node for pods, no node will not be automatically added when pods cannot be scheduled. For details about how to configure the node affinity policy, see <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li></ul>
+</div>
+</li><li id="cce_10_0154__li159853955610">When the cluster meets the node scaling policy, cluster scale-out is also triggered. For details, see <a href="cce_10_0209.html">Creating a Node Scaling Policy</a>.</li></ul>
+<div class="note" id="cce_10_0154__note1998613925610"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0154__p42615325585">The add-on follows the "No Less, No More" policy. For example, if three cores are required for creating a pod and the system supports four-core and eight-core nodes, autoscaler will preferentially create a four-core node.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0154__li531345875210"><strong id="cce_10_0154__b107877171297">Auto scale-in</strong><p id="cce_10_0154__p13303184295216">When a cluster node is idle for a period of time (10 minutes by default), cluster scale-in is triggered, and the node is automatically deleted. However, a node cannot be deleted from a cluster if the following pods exist:</p>
+<ul id="cce_10_0154__ul1313558125218"><li id="cce_10_0154__li630394225211">Pods that do not meet specific requirements set in PodDisruptionBudget</li><li id="cce_10_0154__li2303842205217">Pods that cannot be scheduled to other nodes due to constraints such as affinity and anti-affinity policies</li><li id="cce_10_0154__li0303164255210">Pods that have the <strong id="cce_10_0154__b17618643151716">cluster-autoscaler.kubernetes.io/safe-to-evict: 'false'</strong> annotation</li><li id="cce_10_0154__li1303164211527">Pods (except those created by kube-system DaemonSet) that exist in the kube-system namespace on the node</li><li id="cce_10_0154__li431395818527">Pods that are not created by the controller (Deployment/ReplicaSet/job/StatefulSet)</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0154__section202191122814"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0154__ul12636102212222"><li id="cce_10_0154__li17741192811716">Only clusters of v1.9.10-r2 and later support autoscaler.</li><li id="cce_10_0154__li1538416591311">Ensure that there are sufficient resources for installing the add-on.</li><li id="cce_10_0154__li752472822212">The default node pool does not support auto scaling. For details, see <a href="cce_10_0081.html#cce_10_0081__section16928123042115">Description of DefaultPool</a>.</li></ul>
+</div>
+<div class="section" id="cce_10_0154__section15573161754711"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0154__ol9183433182510"><li id="cce_10_0154__li13183153352515"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <span class="uicontrol" id="cce_10_0154__uicontrol19547723183919"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0154__b1654712312394">autoscaler</strong> on the right, and click <strong id="cce_10_0154__b13547623113910">Install</strong>.</span></li><li id="cce_10_0154__li16821154504212"><span>Configure add-on installation parameters.</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0154__table1582194517429" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Specifications configuration</caption><thead align="left"><tr id="cce_10_0154__row178187453428"><th align="left" class="cellrowborder" valign="top" width="22.89%" id="mcps1.3.4.2.2.2.1.2.3.1.1"><p id="cce_10_0154__p14818104534219">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="77.11%" id="mcps1.3.4.2.2.2.1.2.3.1.2"><p id="cce_10_0154__p181814453425">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0154__row178631475226"><td class="cellrowborder" valign="top" width="22.89%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_10_0154__p386464792210">Add-on Specifications</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.11%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><p id="cce_10_0154__p1861133733913">The add-on can be deployed in the following specifications:</p>
+<div class="note" id="cce_10_0154__note317239144516"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0154__p21873918457">When the autoscaler add-on is deployed in HA or customized mode, anti-affinity policies exist between add-on instances and the add-on instances are deployed on different nodes. Therefore, the number of available nodes in the cluster must be greater than or equal to the number of add-on instances to ensure high availability of the add-on.</p>
+</div></div>
+<ul id="cce_10_0154__ul1634319358233"><li id="cce_10_0154__li2343135152319"><strong id="cce_10_0154__b15151353408">Single</strong>: The add-on is deployed with only one pod.</li><li id="cce_10_0154__li33431235192311"><strong id="cce_10_0154__b4574123141513">HA50</strong>: The add-on is deployed with two pods, serving a cluster with 50 nodes and ensuring high availability.</li><li id="cce_10_0154__li482912427514"><strong id="cce_10_0154__b1411151181815">HA200</strong>: The add-on is deployed with two pods, serving a cluster with 50 nodes and ensuring high availability. Each pod uses more resources than those of the <strong id="cce_10_0154__b2191221161916">HA50</strong> specification.</li><li id="cce_10_0154__li7281273523"><strong id="cce_10_0154__b42561826161918">Custom</strong>: You can customize the number of pods and specifications as required.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0154__table0286202110139" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameter configuration</caption><thead align="left"><tr id="cce_10_0154__row3287142131313"><th align="left" class="cellrowborder" valign="top" width="28.64%" id="mcps1.3.4.2.2.2.2.2.3.1.1"><p id="cce_10_0154__p122877214130">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="71.36%" id="mcps1.3.4.2.2.2.2.2.3.1.2"><p id="cce_10_0154__p13287112110132">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0154__row228792161312"><td class="cellrowborder" valign="top" width="28.64%" headers="mcps1.3.4.2.2.2.2.2.3.1.1 "><p id="cce_10_0154__p132872021121315">Scaling</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.36%" headers="mcps1.3.4.2.2.2.2.2.3.1.2 "><p id="cce_10_0154__p7582201961710">You can select the following options as required:</p>
+<ul id="cce_10_0154__ul1871517527163"><li id="cce_10_0154__li157156529161"><strong id="cce_10_0154__b248219103418">Nodes are automatically added (from the node pool) when pods in the cluster cannot be scheduled.</strong><p id="cce_10_0154__p1477772216710">That is, when a pod is in <strong id="cce_10_0154__b13807195213574">Pending</strong> state, automatic scale-out is performed. If a node has been configured as an affinity node for pods, no node will not be automatically added when pods cannot be scheduled. Generally, an HPA policy works with such scaling. For details, see <a href="cce_10_0300.html">Using HPA and CA for Auto Scaling of Workloads and Nodes</a>.</p>
+<p id="cce_10_0154__p18756721694">If this parameter is not selected, scaling can be performed only through <a href="cce_10_0209.html">node scaling policies</a>.</p>
+</li><li id="cce_10_0154__li1981845031810">Auto node scale-in<ul id="cce_10_0154__ul3971951111917"><li id="cce_10_0154__li1011494751912"><strong id="cce_10_0154__b119564417436">Node Idle Time (min)</strong>: Time for which a node should be unneeded before it is eligible for scale-down. Default value: 10 minutes.</li><li id="cce_10_0154__li011524714197"><strong id="cce_10_0154__b713920142441">Scale-in Threshold</strong>: If the percentage of both requested CPU and memory on a node is below this threshold, auto scale-down will be triggered to delete the node from the cluster. The default value is 0.5, which means 50%.</li><li id="cce_10_0154__li17645105213217"><strong id="cce_10_0154__b195235244413">Stabilization Window (s)</strong><p id="cce_10_0154__p08155492115">How long after a scale-out that a scale-in evaluation resumes. Default value: 10 minutes.</p>
+<div class="note" id="cce_10_0154__note11141447375"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0154__p1445674518371">If both auto scale-out and scale-in exist in a cluster, you are advised to set <strong id="cce_10_0154__b62593914456">How long after a scale-out that a scale-in evaluation resumes</strong> to 0 minutes. This can prevent the node scale-in from being blocked due to continuous scale-out of some node pools or retries upon a scale-out failure, resulting in unexpected waste of node resources.</p>
+</div></div>
+<p id="cce_10_0154__p078505512112">How long after the node deletion that a scale-in evaluation resumes. Default value: 10 minutes.</p>
+<p id="cce_10_0154__p18884155610211">How long after a scale-in failure that a scale-in evaluation resumes. Default value: 3 minutes. For details about the impact and relationship between the scale-in cooling intervals configured in the node pool and autoscaler, see <a href="#cce_10_0154__section59676731017">Description of the Scale-In Cool-Down Period</a>.</p>
+</li><li id="cce_10_0154__li1766316913616"><strong id="cce_10_0154__b1279310451249">Max. Nodes for Batch Deletion</strong>: Maximum number of empty nodes that can be deleted at the same time. Default value: 10.<div class="p" id="cce_10_0154__p10129161053611">This feature applies only to idle nodes. Idle nodes can be concurrently scaled in. Nodes that are not idle can only be scaled in one by one.<div class="note" id="cce_10_0154__note4801630340"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0154__p19806301449">During node scale-in, if the pod on the node does not need to be evicted (such as the pods of DaemonSet), the node is idle. Otherwise, the node is not idle.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0154__li12115174714197"><strong id="cce_10_0154__b53174142477">Check Interval</strong>: Interval for checking again a node that could not be removed before. Default value: 5 minutes.</li></ul>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0154__row18287122141315"><td class="cellrowborder" valign="top" width="28.64%" headers="mcps1.3.4.2.2.2.2.2.3.1.1 "><p id="cce_10_0154__p1102571612">Total Nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.36%" headers="mcps1.3.4.2.2.2.2.2.3.1.2 "><p id="cce_10_0154__p1253551412214">Maximum number of nodes that can be managed by the cluster, within which cluster scale-out is performed.</p>
+</td>
+</tr>
+<tr id="cce_10_0154__row11288721191315"><td class="cellrowborder" valign="top" width="28.64%" headers="mcps1.3.4.2.2.2.2.2.3.1.1 "><p id="cce_10_0154__p5182513167">Total CPUs</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.36%" headers="mcps1.3.4.2.2.2.2.2.3.1.2 "><p id="cce_10_0154__p136391289161">Maximum sum of CPU cores of all nodes in a cluster, within which cluster scale-out is performed.</p>
+</td>
+</tr>
+<tr id="cce_10_0154__row158581823181616"><td class="cellrowborder" valign="top" width="28.64%" headers="mcps1.3.4.2.2.2.2.2.3.1.1 "><p id="cce_10_0154__p91162591614">Total Memory (GB)</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.36%" headers="mcps1.3.4.2.2.2.2.2.3.1.2 "><p id="cce_10_0154__p135351014162119">Maximum sum of memory of all nodes in a cluster, within which cluster scale-out is performed.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0154__li855215375213"><span>When the configuration is complete, click <strong id="cce_10_0154__b842352706153736">Install</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0154__section59676731017"><a name="cce_10_0154__section59676731017"></a><a name="section59676731017"></a><h4 class="sectiontitle">Description of the Scale-In Cool-Down Period</h4><p id="cce_10_0154__p1121035123318">Scale-in cooling intervals can be configured in the node pool settings and the autoscaler add-on settings.</p>
+<p id="cce_10_0154__p96061458103313"><strong id="cce_10_0154__b15346152114220">Scale-in cooling interval configured in a node pool</strong></p>
+<p id="cce_10_0154__p11267539347">This interval indicates the period during which nodes added to the current node pool after a scale-out operation cannot be deleted. This interval takes effect at the node pool level.</p>
+<p id="cce_10_0154__p17442197133413"><strong id="cce_10_0154__b1871015331825">Scale-in cooling interval configured in the autoscaler add-on</strong></p>
+<p id="cce_10_0154__p521591313361">The interval after a scale-out indicates the period during which the entire cluster cannot be scaled in after the autoscaler add-on triggers scale-out (due to the unschedulable pods, metrics, and scaling policies). This interval takes effect at the cluster level.</p>
+<p id="cce_10_0154__p3247181715367">The interval after a node is deleted indicates the period during which the cluster cannot be scaled in after the autoscaler add-on triggers scale-in. This interval takes effect at the cluster level.</p>
+<p id="cce_10_0154__p259072620339">The interval after a failed scale-in indicates the period during which the cluster cannot be scaled in after the autoscaler add-on triggers scale-in. This interval takes effect at the cluster level.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0163.html b/docs/cce/umn/cce_10_0163.html
new file mode 100644
index 00000000..2074629d
--- /dev/null
+++ b/docs/cce/umn/cce_10_0163.html
@@ -0,0 +1,73 @@
+<a name="cce_10_0163"></a><a name="cce_10_0163"></a>
+
+<h1 class="topictitle1">Setting Container Specifications</h1>
+<div id="body1523953038446"><div class="section" id="cce_10_0163__section1642219227611"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0163__p179892274615">CCE allows you to set resource limits for added containers during workload creation. You can apply for and limit the CPU and memory quotas used by each pod in a workload.</p>
+</div>
+<div class="section" id="cce_10_0163__section13440617205217"><h4 class="sectiontitle">Meanings</h4><div class="p" id="cce_10_0163__p121528405515">For <strong id="cce_10_0163__b121101859195012">CPU</strong> and <strong id="cce_10_0163__b121791010175117">Memory</strong>, the meanings of <strong id="cce_10_0163__b1786325155119">Request</strong> and <strong id="cce_10_0163__b612616286514">Limit</strong> are as follows:<ul id="cce_10_0163__ul98184925015"><li id="cce_10_0163__li12682639175017"><strong id="cce_10_0163__b16771610124012">Request</strong>: Schedules the pod to the node that meets the requirements for workload deployment.</li><li id="cce_10_0163__li123709447505"><strong id="cce_10_0163__b1369173012404">Limit</strong>: Limits the resources used by the workload.</li></ul>
+</div>
+<div class="note" id="cce_10_0163__note44961356161012"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0163__p176193114221">When creating a workload, you are advised to set the upper and lower limits of CPU and memory resources. If the upper and lower resource limits are not set for a workload, a resource leak of this workload will make resources unavailable for other workloads deployed on the same node. In addition, workloads that do not have upper and lower resource limits cannot be accurately monitored.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0163__section1550317594522"><h4 class="sectiontitle">Configuration Description</h4><p id="cce_10_0163__p6472122243514">In actual production services, the recommended ratio of <strong id="cce_10_0163__b1843342582920">Request</strong> to <strong id="cce_10_0163__b86211028172910">Limit</strong> is about 1:1.5. For some sensitive services, the recommended ratio is 1:1. If the <strong id="cce_10_0163__b57061418305">Request</strong> is too small and the <strong id="cce_10_0163__b299143010306">Limit</strong> is too large, node resources are overcommitted. During service peaks, the memory or CPU of a node may be used up. As a result, the node is unavailable.</p>
+<ul id="cce_10_0163__ul14091057191617"><li id="cce_10_0163__li1540915578163">CPU quotas:
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0163__table362417589103" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Description of CPU quotas</caption><thead align="left"><tr id="cce_10_0163__row186251758111012"><th align="left" class="cellrowborder" valign="top" width="17%" id="mcps1.3.3.3.1.1.2.3.1.1"><p id="cce_10_0163__p762595815102">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="83%" id="mcps1.3.3.3.1.1.2.3.1.2"><p id="cce_10_0163__p8625105813106">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0163__row162511587103"><td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.3.3.1.1.2.3.1.1 "><p id="cce_10_0163__p2625135851014">CPU request</p>
+</td>
+<td class="cellrowborder" valign="top" width="83%" headers="mcps1.3.3.3.1.1.2.3.1.2 "><p id="cce_10_0163__p262515818104">Minimum number of CPU cores required by a container. Resources are scheduled for the container based on this value. The container can be scheduled to this node only when the total available CPU on the node is greater than or equal to the number of containerized CPU applications.</p>
+</td>
+</tr>
+<tr id="cce_10_0163__row172431422171112"><td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.3.3.1.1.2.3.1.1 "><p id="cce_10_0163__p1424472219115">CPU limit</p>
+</td>
+<td class="cellrowborder" valign="top" width="83%" headers="mcps1.3.3.3.1.1.2.3.1.2 "><p id="cce_10_0163__p524412223119">Maximum number of CPU cores available for a container.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0163__p4169184362110"><strong id="cce_10_0163__b636117273596">Recommended configuration</strong></p>
+<p id="cce_10_0163__p19191030192017">Actual available CPU of a node ≥ Sum of CPU limits of all containers on the current node ≥ Sum of CPU requests of all containers on the current node. You can view the actual available CPUs of a node on the CCE console (<strong id="cce_10_0163__b932844405164038">Resource Management</strong> &gt; <strong id="cce_10_0163__b2028946788164038">Nodes</strong> &gt; <strong id="cce_10_0163__b842352706163417">Allocatable</strong>).</p>
+</li></ul>
+<ul id="cce_10_0163__ul3512117135316"><li id="cce_10_0163__li115125173539">Memory quotas:
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0163__table164121625191912" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Description of memory quotas</caption><thead align="left"><tr id="cce_10_0163__row64131325111910"><th align="left" class="cellrowborder" valign="top" width="18%" id="mcps1.3.3.4.1.1.2.3.1.1"><p id="cce_10_0163__p154131025111914">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="82%" id="mcps1.3.3.4.1.1.2.3.1.2"><p id="cce_10_0163__p16413325111912">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0163__row1241310258194"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.3.4.1.1.2.3.1.1 "><p id="cce_10_0163__p15413225131915">Memory request</p>
+</td>
+<td class="cellrowborder" valign="top" width="82%" headers="mcps1.3.3.4.1.1.2.3.1.2 "><p id="cce_10_0163__p541362541919">Minimum amount of memory required by a container. Resources are scheduled for the container based on this value. The container can be scheduled to this node only when the total available memory on the node is greater than or equal to the number of containerized memory applications.</p>
+</td>
+</tr>
+<tr id="cce_10_0163__row1413325101918"><td class="cellrowborder" valign="top" width="18%" headers="mcps1.3.3.4.1.1.2.3.1.1 "><p id="cce_10_0163__p241312517195">Memory Limit</p>
+</td>
+<td class="cellrowborder" valign="top" width="82%" headers="mcps1.3.3.4.1.1.2.3.1.2 "><p id="cce_10_0163__p1241352520199">Maximum amount of memory available for a container. When the memory usage exceeds the configured memory limit, the instance may be restarted, which affects the normal use of the workload.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0163__p19399171422017"><strong id="cce_10_0163__b71614421416">Recommended configuration</strong></p>
+<p id="cce_10_0163__p151281711539">Actual available memory of a node ≥ Sum of memory limits of all containers on the current node ≥ Sum of memory requests of all containers on the current node. You can view the actual available memory of a node on the CCE console (<strong id="cce_10_0163__b2033042947">Resource Management</strong> &gt; <strong id="cce_10_0163__b1419140578">Nodes</strong> &gt; <strong id="cce_10_0163__b555016245">Allocatable</strong>).</p>
+</li></ul>
+<div class="note" id="cce_10_0163__note96535331218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0163__p73492457214">The allocatable resources are calculated based on the resource request value (<strong id="cce_10_0163__b921033217215">Request</strong>), which indicates the upper limit of resources that can be requested by pods on this node, but does not indicate the actual available resources of the node. The calculation formula is as follows:</p>
+<ul id="cce_10_0163__ul259653921"><li id="cce_10_0163__li1259253828">Allocatable CPU = Total CPU – Requested CPU of all pods – Reserved CPU for other resources</li><li id="cce_10_0163__li15913539216">Allocatable memory = Total memory – Requested memory of all pods – Reserved memory for other resources</li></ul>
+</div></div>
+</div>
+<div class="section" id="cce_10_0163__section17887209103612"><h4 class="sectiontitle">Example</h4><p id="cce_10_0163__p526873310363">Assume that a cluster contains a node with 4 cores and 8 GB. A workload containing two pods has been deployed on the cluster. The resources of the two pods (pods 1 and 2) are as follows: {CPU request, CPU limit, memory request, memory limit} = {1 core, 2 cores, 2 GB, 2 GB}.</p>
+<p id="cce_10_0163__p13764132011525">The CPU and memory usage of the node is as follows:</p>
+<ul id="cce_10_0163__ul137361942132916"><li id="cce_10_0163__li0736342162910">Allocatable CPU = 4 cores - (1 core requested by pod 1 + 1 core requested by pod 2) = 2 cores</li><li id="cce_10_0163__li6737194215295">Allocatable memory = 8 GB - (2 GB requested by pod 1 + 2 GB requested by pod 2) = 4 GB</li></ul>
+<p id="cce_10_0163__p54416407291">Therefore, the remaining 2 cores and 4 GB can be used by the next new pod.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0164.html b/docs/cce/umn/cce_10_0164.html
new file mode 100644
index 00000000..de65027f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0164.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0164"></a><a name="cce_10_0164"></a>
+
+<h1 class="topictitle1">Permissions Management</h1>
+<div id="body1556099896058"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0187.html">Permissions Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0188.html">Cluster Permissions (IAM-based)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0189.html">Namespace Permissions (Kubernetes RBAC-based)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0245.html">Example: Designing and Configuring Permissions for Users in a Department</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0190.html">Permission Dependency of the CCE Console</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0465.html">Pod Security</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0477_0.html">Service Account Token Security Improvement</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0175.html b/docs/cce/umn/cce_10_0175.html
new file mode 100644
index 00000000..08b1c73c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0175.html
@@ -0,0 +1,17 @@
+<a name="cce_10_0175"></a><a name="cce_10_0175"></a>
+
+<h1 class="topictitle1">Obtaining a Cluster Certificate</h1>
+<div id="body1556615866530"><div class="section" id="cce_10_0175__section160213214302"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0175__p1840111417517">This section describes how to obtain the cluster certificate from the console and use it to access Kubernetes clusters.</p>
+</div>
+<div class="section" id="cce_10_0175__section1590914113306"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0175__ol898314521505"><li id="cce_10_0175__li4829928181812"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0175__li179831852301"><span>Choose <strong id="cce_10_0175__b1998785317534">Cluster Information</strong> from the navigation pane and click <strong id="cce_10_0175__b18988553105313">Download</strong> next to <strong id="cce_10_0175__b1398875317539">Authentication Mode</strong> in the <strong id="cce_10_0175__b169881453125311">Connection Information</strong> area.</span></li><li id="cce_10_0175__li1979910715109"><span>In the <span class="uicontrol" id="cce_10_0175__uicontrol13516511412"><b>Download X.509 Certificate</b></span> dialog box displayed, select the certificate expiration time and download the X.509 certificate of the cluster as prompted.</span><p><div class="fignone" id="cce_10_0175__fig873583013712"><span class="figcap"><b>Figure 1 </b>Downloading a certificate</span><br><span><img id="cce_10_0175__image282017212710" src="en-us_image_0000001199181228.png"></span></div>
+<div class="notice" id="cce_10_0175__note21816913343"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0175__ul45041635102414"><li id="cce_10_0175__li050403542411">The downloaded certificate contains three files: <strong id="cce_10_0175__b1790092752911">client.key</strong>, <strong id="cce_10_0175__b990002710298">client.crt</strong>, and <strong id="cce_10_0175__b690015272292">ca.crt</strong>. Keep these files secure.</li><li id="cce_10_0175__li150414359248">Certificates are not required for mutual access between containers in a cluster.</li></ul>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0178.html b/docs/cce/umn/cce_10_0178.html
new file mode 100644
index 00000000..b3fda086
--- /dev/null
+++ b/docs/cce/umn/cce_10_0178.html
@@ -0,0 +1,218 @@
+<a name="cce_10_0178"></a><a name="cce_10_0178"></a>
+
+<h1 class="topictitle1">Formula for Calculating the Reserved Resources of a Node</h1>
+<div id="body1524713564673"><p id="cce_10_0178__p591031155413">Some of the resources on the <span class="keyword" id="cce_10_0178__span2167926204817">node</span> need to run some necessary <span class="keyword" id="cce_10_0178__span416772624814">Kubernetes</span> system components and resources to make the node as part of your cluster. Therefore, the total number of node resources and the number of assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, Kubernetes needs to reserve more resources.</p>
+<p id="cce_10_0178__p9278143105716">To ensure node stability, a certain amount of CCE node resources will be reserved for Kubernetes components (such as kubelet, kube-proxy, and docker) based on the node specifications.</p>
+<p id="cce_10_0178__p169111185415">CCE calculates the resources that can be allocated to user nodes as follows:</p>
+<p id="cce_10_0178__p15911151155419"><strong id="cce_10_0178__b1713634541010">Allocatable resources = Total amount - Reserved amount - Eviction threshold</strong></p>
+<p id="cce_10_0178__p16231944205019"> The memory eviction threshold is fixed at 100 MB.</p>
+<p id="cce_10_0178__p20379184215543">When the memory consumed by all pods on a node increases, the following behaviors may occur:</p>
+<ol id="cce_10_0178__ol17831358175420"><li id="cce_10_0178__li20783658135414">If the memory is greater than or equal to the allocatable amount on the node, kubelet is triggered to evict pods.</li><li id="cce_10_0178__li167841588547">When the memory approaches the allocatable amount and eviction threshold (total minus reserved), OS OOM is triggered.</li></ol>
+<div class="section" id="cce_10_0178__section16856143934620"><h4 class="sectiontitle">Rules for Reserving Node Memory </h4><p id="cce_10_0178__p671312452573">You can use the following formula calculate how much memory you should reserve for running containers on a node:</p>
+<p id="cce_10_0178__p1695774420316">Total reserved amount = Reserved memory for system components + Reserved memory for kubelet to manage pods</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0178__table19962121035915" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Reservation rules for system components</caption><thead align="left"><tr id="cce_10_0178__row15963910105914"><th align="left" class="cellrowborder" valign="top" width="34.61%" id="mcps1.3.8.4.2.3.1.1"><p id="cce_10_0178__p1696331012593">Total Memory (TM)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="65.39%" id="mcps1.3.8.4.2.3.1.2"><p id="cce_10_0178__p396381013598">Reserved Memory for System Components</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0178__row496381016596"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.8.4.2.3.1.1 "><p id="cce_10_0178__p9426281054">TM ≤ 8 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.8.4.2.3.1.2 "><p id="cce_10_0178__p7963161019593">0 MB</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row596315106595"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.8.4.2.3.1.1 "><p id="cce_10_0178__p1963161014599">8 GB &lt; TM ≤ 16 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.8.4.2.3.1.2 "><p id="cce_10_0178__p10963510135919">[(TM – 8 GB) x 1024 x 10%] MB</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row17963410125919"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.8.4.2.3.1.1 "><p id="cce_10_0178__p0963111055917">16 GB &lt; TM ≤ 128 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.8.4.2.3.1.2 "><p id="cce_10_0178__p1896314102596">[8 GB x 1024 x 10% + (TM – 16 GB) x 1024 x 6%] MB</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row189631910175912"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.8.4.2.3.1.1 "><p id="cce_10_0178__p8963710135918">TM &gt; 128 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.8.4.2.3.1.2 "><p id="cce_10_0178__p10963510105914">(8 GB x 1024 x 10% + 112 GB x 1024 x 6% + (TM – 128 GB) x 1024 x 2%) MB</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0178__table124614211528" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Reservation rules for kubelet</caption><thead align="left"><tr id="cce_10_0178__row446112112218"><th align="left" class="cellrowborder" valign="top" width="23.122312231223123%" id="mcps1.3.8.5.2.4.1.1"><p id="cce_10_0178__p4461521121">Total Memory (TM)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="32.023202320232016%" id="mcps1.3.8.5.2.4.1.2"><p id="cce_10_0178__p1461142111216">Number of Pods</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.85448544854486%" id="mcps1.3.8.5.2.4.1.3"><p id="cce_10_0178__p1746117210214">Reserved Memory for kubelet</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0178__row1246132112212"><td class="cellrowborder" valign="top" width="23.122312231223123%" headers="mcps1.3.8.5.2.4.1.1 "><p id="cce_10_0178__p84615211023">TM ≤ 2 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.023202320232016%" headers="mcps1.3.8.5.2.4.1.2 "><p id="cce_10_0178__p7461321028">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.85448544854486%" headers="mcps1.3.8.5.2.4.1.3 "><p id="cce_10_0178__p1046152115213">TM x 25%</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row1346142120210"><td class="cellrowborder" rowspan="5" valign="top" width="23.122312231223123%" headers="mcps1.3.8.5.2.4.1.1 "><p id="cce_10_0178__p1846192112212">TM &gt; 2 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.023202320232016%" headers="mcps1.3.8.5.2.4.1.2 "><p id="cce_10_0178__p74611219215">0 &lt; Max. pods on a node ≤ 16</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.85448544854486%" headers="mcps1.3.8.5.2.4.1.3 "><p id="cce_10_0178__p84617211218">700 MB</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row1461152112217"><td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.1 "><p id="cce_10_0178__p94619211127">16 &lt; Max. pods on a node ≤ 32</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.2 "><p id="cce_10_0178__p146132117210">[700 + (Max. pods on a node – 16) x 18.75] MB</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row154613212210"><td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.1 "><p id="cce_10_0178__p4461192117218">32 &lt; Max. pods on a node ≤ 64</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.2 "><p id="cce_10_0178__p346182112217">[1024 + (Max. pods on a node – 32) x 6.25] MB</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row2461102112217"><td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.1 "><p id="cce_10_0178__p124615212021">64 &lt; Max. pods on a node ≤ 128</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.2 "><p id="cce_10_0178__p114611121626">[1230 + (Max. pods on a node – 64) x 7.80] MB</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row64617211826"><td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.1 "><p id="cce_10_0178__p846218211324">Max. pods on a node &gt; 128</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.8.5.2.4.1.2 "><p id="cce_10_0178__p1462162111214">[1740 + (Max. pods on a node – 128) x 11.20] MB</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="notice" id="cce_10_0178__note56413123206"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0178__p374877102611">For a small-capacity node, adjust the maximum number of instances based on the site requirements. Alternatively, when creating a node on the CCE console, you can adjust the maximum number of instances for the node based on the node specifications.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0178__section156741258145010"><h4 class="sectiontitle">Rules for Reserving Node Memory (v2)</h4><p id="cce_10_0178__p102601317175112">For clusters of <strong id="cce_10_0178__b187021515142410">v1.21.4-r0</strong>, <strong id="cce_10_0178__b36851220102413">v1.23.3-r0</strong>, or later, the node memory reservation model is optimized to V2 and can be dynamically adjusted using the node pool parameters <strong id="cce_10_0178__b18407104413241">kube-reserved-mem</strong> and <strong id="cce_10_0178__b1755747192415">system-reserved-mem</strong>. For details, see <a href="cce_10_0222.html">Managing a Node Pool</a>.</p>
+<p id="cce_10_0178__p826011175514">The total reserved node memory of the V2 model is equal to the sum of that reserved for the OS and that reserved for CCE to manage pods.</p>
+<p id="cce_10_0178__p9260217115115">Reserved memory includes basic and floating parts. For the OS, the floating memory depends on the node specifications. For CCE, the floating memory depends on the number of pods on a node.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0178__table1061012595214" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Rules for reserving node memory (v2)</caption><thead align="left"><tr id="cce_10_0178__row186517555218"><th align="left" class="cellrowborder" valign="top" width="16.14838516148385%" id="mcps1.3.9.5.2.5.1.1"><p id="cce_10_0178__p265117518526">Reserved for</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.77742225777422%" id="mcps1.3.9.5.2.5.1.2"><p id="cce_10_0178__p16651125165213">Basic/Floating</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="29.75702429757024%" id="mcps1.3.9.5.2.5.1.3"><p id="cce_10_0178__p8651175175213">Reservation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.317168283171686%" id="mcps1.3.9.5.2.5.1.4"><p id="cce_10_0178__p13651454524">Used by</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0178__row1565111510525"><td class="cellrowborder" rowspan="2" valign="top" width="16.14838516148385%" headers="mcps1.3.9.5.2.5.1.1 "><p id="cce_10_0178__p1065110515527">OS</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77742225777422%" headers="mcps1.3.9.5.2.5.1.2 "><p id="cce_10_0178__p19651155135214">Basic</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.75702429757024%" headers="mcps1.3.9.5.2.5.1.3 "><p id="cce_10_0178__p26511520521">400 MB (fixed)</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.317168283171686%" headers="mcps1.3.9.5.2.5.1.4 "><p id="cce_10_0178__p116511516525">OS service components such as sshd and systemd-journald.</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row86513545216"><td class="cellrowborder" valign="top" headers="mcps1.3.9.5.2.5.1.1 "><p id="cce_10_0178__p765195115213">Floating (depending on the node memory)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.9.5.2.5.1.2 "><p id="cce_10_0178__p86511158527">25MB/GB</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.9.5.2.5.1.3 "><p id="cce_10_0178__p065116515524">Kernel</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row146511511527"><td class="cellrowborder" rowspan="2" valign="top" width="16.14838516148385%" headers="mcps1.3.9.5.2.5.1.1 "><p id="cce_10_0178__p20651354525">CCE</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77742225777422%" headers="mcps1.3.9.5.2.5.1.2 "><p id="cce_10_0178__p565175115213">Basic</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.75702429757024%" headers="mcps1.3.9.5.2.5.1.3 "><p id="cce_10_0178__p86511258527">500 MB (fixed)</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.317168283171686%" headers="mcps1.3.9.5.2.5.1.4 "><p id="cce_10_0178__p1265118517521">Container engine components, such as kubelet and kube-proxy, when the node is unloaded</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row86524555219"><td class="cellrowborder" valign="top" headers="mcps1.3.9.5.2.5.1.1 "><p id="cce_10_0178__p1665215575214">Floating (depending on the number of pods on the node)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.9.5.2.5.1.2 "><p id="cce_10_0178__p13652175135212">Docker: 20 MB/pod</p>
+<p id="cce_10_0178__p146526519529">containerd: 5 MB/pod</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.9.5.2.5.1.3 "><p id="cce_10_0178__p865295185219">Container engine components when the number of pods increases</p>
+<div class="note" id="cce_10_0178__note17651112311713"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0178__p19651423181715">When the v2 model reserves memory for a node by default, the default maximum number of pods is estimated based on the memory. For details, see <a href="#cce_10_0178__section1057416013173">Default Maximum Number of Pods on a Node</a>.</p>
+</div></div>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0178__section65041914716"><h4 class="sectiontitle">Rules for Reserving Node CPU</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0178__table17922413344" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Node CPU reservation rules</caption><thead align="left"><tr id="cce_10_0178__row1895248347"><th align="left" class="cellrowborder" valign="top" width="34.61%" id="mcps1.3.10.2.2.3.1.1"><p id="cce_10_0178__p49162463410">Total CPU Cores (Total)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="65.39%" id="mcps1.3.10.2.2.3.1.2"><p id="cce_10_0178__p1291246343">Reserved CPU Cores</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0178__row199142416347"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.10.2.2.3.1.1 "><p id="cce_10_0178__p1382311613512">Total ≤ 1 core</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.10.2.2.3.1.2 "><p id="cce_10_0178__p6822196203510">Total x 6%</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row19914246341"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.10.2.2.3.1.1 "><p id="cce_10_0178__p108221962357">1 core &lt; Total ≤ 2 cores</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.10.2.2.3.1.2 "><p id="cce_10_0178__p138211164358">1 core x 6% + (Total – 1 core) x 1%</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row591247342"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.10.2.2.3.1.1 "><p id="cce_10_0178__p198209653519">2 cores &lt; Total ≤ 4 cores</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.10.2.2.3.1.2 "><p id="cce_10_0178__p182096173516">1 core x 6% + 1 core x 1% + (Total – 2 cores) x 0.5%</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row1795245346"><td class="cellrowborder" valign="top" width="34.61%" headers="mcps1.3.10.2.2.3.1.1 "><p id="cce_10_0178__p10819663350">Total &gt; 4 cores</p>
+</td>
+<td class="cellrowborder" valign="top" width="65.39%" headers="mcps1.3.10.2.2.3.1.2 "><p id="cce_10_0178__p68181765353">1 core x 6% + 1 core x 1% + 2 cores x 0.5% + (Total – 4 cores) x 0.25%</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0178__section1057416013173"><a name="cce_10_0178__section1057416013173"></a><a name="section1057416013173"></a><h4 class="sectiontitle">Default Maximum Number of Pods on a Node</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0178__table1710310156526" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Default maximum number of pods on a node</caption><thead align="left"><tr id="cce_10_0178__row513581518529"><th align="left" class="cellrowborder" valign="top" width="28.4%" id="mcps1.3.11.2.2.3.1.1"><p id="cce_10_0178__p1135115115220">Memory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="71.6%" id="mcps1.3.11.2.2.3.1.2"><p id="cce_10_0178__p1024214331514">Default Maximum Number of Pods</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0178__row12135815115220"><td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.11.2.2.3.1.1 "><p id="cce_10_0178__p4135815115215">4 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.6%" headers="mcps1.3.11.2.2.3.1.2 "><p id="cce_10_0178__p1113517152524">20</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row91351715165213"><td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.11.2.2.3.1.1 "><p id="cce_10_0178__p4135201585212">8 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.6%" headers="mcps1.3.11.2.2.3.1.2 "><p id="cce_10_0178__p9135171575210">40</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row15135615165214"><td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.11.2.2.3.1.1 "><p id="cce_10_0178__p2135151513528">16 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.6%" headers="mcps1.3.11.2.2.3.1.2 "><p id="cce_10_0178__p1513551575217">60</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row913511535219"><td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.11.2.2.3.1.1 "><p id="cce_10_0178__p1713512156525">32 GB</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.6%" headers="mcps1.3.11.2.2.3.1.2 "><p id="cce_10_0178__p6135515105210">80</p>
+</td>
+</tr>
+<tr id="cce_10_0178__row101359151524"><td class="cellrowborder" valign="top" width="28.4%" headers="mcps1.3.11.2.2.3.1.1 "><p id="cce_10_0178__p10135515195219">64 GB or above</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.6%" headers="mcps1.3.11.2.2.3.1.2 "><p id="cce_10_0178__p1413541505216">110</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0180.html">Node Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0180.html b/docs/cce/umn/cce_10_0180.html
new file mode 100644
index 00000000..4714e058
--- /dev/null
+++ b/docs/cce/umn/cce_10_0180.html
@@ -0,0 +1,25 @@
+<a name="cce_10_0180"></a><a name="cce_10_0180"></a>
+
+<h1 class="topictitle1">Node Overview</h1>
+<div id="body1556588320638"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0461.html">Precautions for Using a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0462.html">Container Engine</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0463.html">Kata Containers and Common Containers</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0348.html">Maximum Number of Pods That Can Be Created on a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0341.html">Data Disk Space Allocation</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0182.html b/docs/cce/umn/cce_10_0182.html
new file mode 100644
index 00000000..a1e81f00
--- /dev/null
+++ b/docs/cce/umn/cce_10_0182.html
@@ -0,0 +1,94 @@
+<a name="cce_10_0182"></a><a name="cce_10_0182"></a>
+
+<h1 class="topictitle1">Monitoring Overview</h1>
+<div id="body0000001175422840"><p id="cce_10_0182__p11459541508">CCE works with AOM to comprehensively monitor clusters. When a node is created, the ICAgent (the DaemonSet named <strong id="cce_10_0182__b271195119386">icagent</strong> in the kube-system namespace of the cluster) of AOM is installed by default. The ICAgent collects monitoring data of underlying resources and workloads running on the cluster. It also collects monitoring data of custom metrics of the workload.</p>
+<ul id="cce_10_0182__ul92271168588"><li id="cce_10_0182__li139411131122317">Resource metrics<p id="cce_10_0182__p1522153372310"><a name="cce_10_0182__li139411131122317"></a><a name="li139411131122317"></a>Basic resource monitoring includes CPU, memory, and disk monitoring. For details, see <a href="#cce_10_0182__section205486212251">Resource Metrics</a>. You can view these metrics of clusters, nodes, and workloads on the CCE or AOM console.</p>
+</li><li id="cce_10_0182__li05411539152316">Custom metrics<p id="cce_10_0182__p73224014238"><a name="cce_10_0182__li05411539152316"></a><a name="li05411539152316"></a>The ICAgent collects custom metrics of applications and uploads them to AOM. For details, see <a href="cce_10_0201.html">Custom Monitoring</a>.</p>
+</li></ul>
+<div class="section" id="cce_10_0182__section205486212251"><a name="cce_10_0182__section205486212251"></a><a name="section205486212251"></a><h4 class="sectiontitle">Resource Metrics</h4><p id="cce_10_0182__p2635126171117">On the CCE console, you can view the following metrics.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0182__table1486013138225" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Resource metrics</caption><thead align="left"><tr id="cce_10_0182__row15860113172219"><th align="left" class="cellrowborder" valign="top" width="32.910000000000004%" id="mcps1.3.3.3.2.3.1.1"><p id="cce_10_0182__p1860111318225">Metric</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="67.09%" id="mcps1.3.3.3.2.3.1.2"><p id="cce_10_0182__p1886081302214">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0182__row1165317863215"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p1365315883216">CPU Allocation Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p1865311813219">Indicates the percentage of CPUs allocated to workloads.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row174421766321"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p44423619323">Memory Allocation Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p1669119116176">Indicates the percentage of memory allocated to workloads.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row286081319224"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p1586001317227">CPU Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p1986015137228">Indicates the CPU usage.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row13860161342214"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p11860413152216">Memory Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p19860161318221">Indicates the memory usage.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row86911734143211"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p18601213112211">Disk Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p58785716159">Indicates the disk usage.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row3860113172218"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p822722541616">Down</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p204478236166">Indicates the speed at which data is downloaded to a node. The unit is KB/s.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row148151597255"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p62262025161611">Up</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p68883217294">Indicates the speed at which data is uploaded from a node. The unit is KB/s.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row109361229181319"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p16936182931312">Disk Read Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p2936729171312">Indicates the data volume read from a disk per second. The unit is KB/s.</p>
+</td>
+</tr>
+<tr id="cce_10_0182__row1857594171313"><td class="cellrowborder" valign="top" width="32.910000000000004%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0182__p19575741161319">Disk Write Rate</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.09%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0182__p10575144131317">Indicates the data volume written to a disk per second. The unit is KB/s.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0182__p17232847154017">On the AOM console, you can view host metrics and container metrics.</p>
+</div>
+<div class="section" id="cce_10_0182__section1932383618498"><h4 class="sectiontitle">Viewing Cluster Monitoring Data</h4><p id="cce_10_0182__p1085718497494">Click the cluster name and access the cluster console. In the navigation pane, choose <strong id="cce_10_0182__b18854151181616">Cluster Information</strong>. In the right pane, you can view the CPU and memory usage of all nodes (excluding master nodes) in the cluster in the last hour.</p>
+<p id="cce_10_0182__p10111123335311"></p>
+<p id="cce_10_0182__p10871125916522"><strong id="cce_10_0182__b1479102319569">Explanation of monitoring metrics:</strong></p>
+<ul id="cce_10_0182__en-us_topic_0251753945_ul7529114713325"><li id="cce_10_0182__en-us_topic_0251753945_li13529164719327">CPU allocation rate = Sum of CPU quotas requested by pods in the cluster/Sum of CPU quotas that can be allocated of all nodes (excluding master nodes) in the cluster</li><li id="cce_10_0182__en-us_topic_0251753945_li14529124723217">Memory allocation rate = Sum of memory quotas requested by pods in the cluster/Sum of memory quotas that can be allocated of all nodes (excluding master nodes) in the cluster</li><li id="cce_10_0182__li415205135014">CPU usage: Average CPU usage of all nodes (excluding master nodes) in a cluster</li><li id="cce_10_0182__li943517375113">Memory usage: Average memory usage of all nodes (excluding master nodes) in a cluster</li></ul>
+<div class="note" id="cce_10_0182__note1479463954111"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0182__p16231944205019">Allocatable node resources (CPU or memory) = Total amount – Reserved amount – Eviction thresholds. For details, see <a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
+</div></div>
+</div>
+<p id="cce_10_0182__p67407610719">CCE provides the status, availability zone (AZ), CPU usage, and memory usage of master nodes.</p>
+<div class="section" id="cce_10_0182__section965517431154"><h4 class="sectiontitle">Viewing Monitoring Data of Worker Nodes</h4><p id="cce_10_0182__p2146145231519">In addition to viewing monitoring data of all nodes, you can also view monitoring data of a single node. Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0182__uicontrol889841811177"><b>Nodes</b></span> in the navigation pane and click <span class="uicontrol" id="cce_10_0182__uicontrol4869102121913"><b>Monitor</b></span> in the <strong id="cce_10_0182__b11931931191810">Operation</strong> column of the target node.</p>
+<p id="cce_10_0182__p584174193610">Monitoring data comes from AOM. You can view the monitoring data of a node, including the CPU, memory, disk, network, and GPU.</p>
+<p id="cce_10_0182__p254116478161"></p>
+</div>
+<div class="section" id="cce_10_0182__section2221948202013"><h4 class="sectiontitle">Viewing Workload Monitoring Data</h4><p id="cce_10_0182__p650765613203">You can view monitoring data of a workload on the <strong id="cce_10_0182__b17723423473">Monitoring</strong> tab page of the workload details page. Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0182__uicontrol12841033191914"><b>Workloads</b></span> in the navigation pane and click <span class="uicontrol" id="cce_10_0182__uicontrol18290143312195"><b>Monitor</b></span> in the <strong id="cce_10_0182__b3290113371913">Operation</strong> column of the target workload.</p>
+<p id="cce_10_0182__p468220584401">Monitoring data comes from AOM. You can view the monitoring data of a workload, including the CPU, memory, network, and GPU, on the AOM console.</p>
+<div class="p" id="cce_10_0182__p20356145694715"><strong id="cce_10_0182__b182823129286">Explanation of monitoring metrics:</strong><ul id="cce_10_0182__ul539910214475"><li id="cce_10_0182__li3451449164714">Workload CPU usage = Maximum CPU usage in each pod of the workload</li><li id="cce_10_0182__li1945149174710">Workload memory usage = Maximum memory usage in each pod of the workload</li></ul>
+</div>
+<p id="cce_10_0182__p20527162152414">You can also click <strong id="cce_10_0182__b157951412509">View More</strong> to go to the AOM console and view monitoring data of the workload.</p>
+</div>
+<div class="section" id="cce_10_0182__section1799803015267"><h4 class="sectiontitle">Viewing Pod Monitoring Data</h4><p id="cce_10_0182__p153175811268">You can view monitoring data of a pod on the <strong id="cce_10_0182__b11594124345212">Pods</strong> tab page of the workload details page.</p>
+<div class="p" id="cce_10_0182__p15694531135916"><strong id="cce_10_0182__b1149945132817">Explanation of monitoring metrics:</strong><ul id="cce_10_0182__ul369403114595"><li id="cce_10_0182__li13694133165911">Pod CPU usage = The used CPU cores/The sum of all CPU limits of the pods (If not specified, all node CPU cores are used.)</li><li id="cce_10_0182__li3694193112599">Pod memory usage = The used physical memory/The sum of all memory limits of pods (If not specified, all node memory is used.)</li></ul>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0110.html">Monitoring and Alarm</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0183.html b/docs/cce/umn/cce_10_0183.html
new file mode 100644
index 00000000..e0875304
--- /dev/null
+++ b/docs/cce/umn/cce_10_0183.html
@@ -0,0 +1,33 @@
+<a name="cce_10_0183"></a><a name="cce_10_0183"></a>
+
+<h1 class="topictitle1">Nodes</h1>
+<div id="body1559012940171"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0180.html">Node Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0363.html">Creating a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0198.html">Adding Nodes for Management</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0338.html">Removing a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0003.html">Resetting a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0185.html">Logging In to a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0004.html">Managing Node Labels</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0352.html">Managing Node Taints</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0184.html">Synchronizing Data with Cloud Servers</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0186.html">Deleting a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0036.html">Stopping a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0276.html">Performing Rolling Upgrade for Nodes</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0184.html b/docs/cce/umn/cce_10_0184.html
new file mode 100644
index 00000000..03f8377b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0184.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0184"></a><a name="cce_10_0184"></a>
+
+<h1 class="topictitle1">Synchronizing Data with Cloud Servers</h1>
+<div id="body1559203372010"><div class="section" id="cce_10_0184__section2175132617712"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0184__p179715213166">Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.</p>
+<p id="cce_10_0184__p116412521617">Some information about CCE nodes is maintained independently from the ECS console. After you change the name, EIP, or specifications of an ECS on the ECS console, you need to <strong id="cce_10_0184__b3374030203114">synchronize the ECS information</strong> to the corresponding node on the CCE console. After the synchronization, information on both consoles is consistent.</p>
+</div>
+<div class="section" id="cce_10_0184__section299918342346"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0184__ul121015107312"><li id="cce_10_0184__li3101810193119">Data, including the VM status, ECS names, number of CPUs, size of memory, ECS specifications, and public IP addresses, can be synchronized.<p id="cce_10_0184__p2901244183112"><a name="cce_10_0184__li3101810193119"></a><a name="li3101810193119"></a>If an ECS name is specified as the Kubernetes node name, the change of the ECS name cannot be synchronized to the CCE console.</p>
+</li><li id="cce_10_0184__li8102110103118">Data, such as the OS and image ID, cannot be synchronized. (Such parameters cannot be modified on the ECS console.)</li></ul>
+</div>
+<div class="section" id="cce_10_0184__section2076543461216"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0184__ol1882502762811"><li id="cce_10_0184__li849281818811"><span>Log in to the CCE console.</span></li><li id="cce_10_0184__li13907715194011"><span>Click the cluster name to access the cluster console. Choose <span class="uicontrol" id="cce_10_0184__uicontrol1346492517398"><b>Nodes</b></span> in the navigation pane.</span></li><li id="cce_10_0184__li1382582719286"><span>Choose <strong id="cce_10_0184__b19930131353810">More</strong> &gt; <strong id="cce_10_0184__b398116376321">Sync Server Data</strong> next to the node.</span><p><div class="fignone" id="cce_10_0184__fig983933294015"><span class="figcap"><b>Figure 1 </b>Synchronizing server data</span><br><span><img id="cce_10_0184__image3503275220" src="en-us_image_0000001243981203.png"></span></div>
+<p id="cce_10_0184__p17635154314012">After the synchronization is complete, the <strong id="cce_10_0184__b64827914309">ECS data synchronization requested</strong> message is displayed in the upper right corner.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0185.html b/docs/cce/umn/cce_10_0185.html
new file mode 100644
index 00000000..8eaf698f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0185.html
@@ -0,0 +1,55 @@
+<a name="cce_10_0185"></a><a name="cce_10_0185"></a>
+
+<h1 class="topictitle1">Logging In to a Node</h1>
+<div id="body1559203372010"><div class="section" id="cce_10_0185__section1492661620507"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0185__ul119041718185518"><li id="cce_10_0185__li490481815515">If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).</li><li id="cce_10_0185__li16904121855510">Only login to a running ECS is allowed.</li><li id="cce_10_0185__li3827103362110">Only the user <span id="cce_10_0185__text12656192763716">linux</span> can log in to a Linux server.</li></ul>
+</div>
+<div class="section" id="cce_10_0185__section1391822316511"><h4 class="sectiontitle">Login Modes</h4><p id="cce_10_0185__p9647194820547">You can log in to an ECS in either of the following modes:</p>
+<ul id="cce_10_0185__ul03289813567"><li id="cce_10_0185__li3821114685618">Management console (VNC)<p id="cce_10_0185__p957217278576"><a name="cce_10_0185__li3821114685618"></a><a name="li3821114685618"></a>If an ECS has no EIP, log in to the ECS console and click <strong id="cce_10_0185__b2647192473610">Remote Login</strong> in the same row as the ECS.</p>
+<p id="cce_10_0185__p14616164455714">For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/ecs/en-us_topic_0093263550.html" target="_blank" rel="noopener noreferrer">Login Using VNC</a>.</p>
+</li><li id="cce_10_0185__li1893519588571">SSH<p id="cce_10_0185__p14702017584"><a name="cce_10_0185__li1893519588571"></a><a name="li1893519588571"></a>This mode applies only to ECSs running Linux. Usually, you can use a remote login tool, such as PuTTY, Xshell, and SecureCRT, to log in to your ECS. If none of the remote login tools can be used, log in to the ECS console and click <strong id="cce_10_0185__b6609145220365">Remote Login</strong> in the same row as the ECS to view the connection status and running status of the ECS.</p>
+<div class="note" id="cce_10_0185__note207919182211"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0185__ul1678102051"><li id="cce_10_0185__li980235455">When you use the Windows OS to log in to a Linux node, set <strong id="cce_10_0185__b16493233638">Auto-login username</strong> to <span id="cce_10_0185__text37277158556">linux</span>.</li><li id="cce_10_0185__li17802205258">The CCE console does not support node OS upgrade. Do not upgrade the node OS using the <strong id="cce_10_0185__b1291344241719">yum update</strong> command. Otherwise, the container networking components will be unavailable. </li></ul>
+</div></div>
+</li></ul>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0185__table8204165071419" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Linux ECS login modes</caption><thead align="left"><tr id="cce_10_0185__row192061050201414"><th align="left" class="cellrowborder" valign="top" width="18.061806180618063%" id="mcps1.3.3.2.4.1.1"><p id="cce_10_0185__p8206135011143">EIP Binding</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20.312031203120313%" id="mcps1.3.3.2.4.1.2"><p id="cce_10_0185__p15206250101419">On-Premises OS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="61.626162616261624%" id="mcps1.3.3.2.4.1.3"><p id="cce_10_0185__p112061550171411">Connection Method</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0185__row2206125031417"><td class="cellrowborder" valign="top" width="18.061806180618063%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_10_0185__p738113171515">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="20.312031203120313%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_10_0185__p23827141513">Windows</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.626162616261624%" headers="mcps1.3.3.2.4.1.3 "><p id="cce_10_0185__p338221111510">Use a remote login tool, such as PuTTY or XShell.</p>
+<ul id="cce_10_0185__ul1838251121515"><li id="cce_10_0185__li2382511159">SSH key authentication: <a href="https://docs.otc.t-systems.com/en-us/usermanual/ecs/en-us_topic_0017955633.html" target="_blank" rel="noopener noreferrer">Login Using an SSH Key</a></li></ul>
+</td>
+</tr>
+<tr id="cce_10_0185__row320725051416"><td class="cellrowborder" valign="top" width="18.061806180618063%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_10_0185__p1638214118155">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="20.312031203120313%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_10_0185__p1138261181513">Linux</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.626162616261624%" headers="mcps1.3.3.2.4.1.3 "><p id="cce_10_0185__p113834114153">Run commands.</p>
+<ul id="cce_10_0185__ul1038319116153"><li id="cce_10_0185__li1138315114157">SSH password authentication: <a href="https://docs.otc.t-systems.com/en-us/usermanual/ecs/en-us_topic_0017955633.html" target="_blank" rel="noopener noreferrer">Login Using an SSH Password</a></li></ul>
+</td>
+</tr>
+<tr id="cce_10_0185__row0207145014149"><td class="cellrowborder" valign="top" width="18.061806180618063%" headers="mcps1.3.3.2.4.1.1 "><p id="cce_10_0185__p13383131101518">Yes/No</p>
+</td>
+<td class="cellrowborder" valign="top" width="20.312031203120313%" headers="mcps1.3.3.2.4.1.2 "><p id="cce_10_0185__p5383813159">Windows/Linux</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.626162616261624%" headers="mcps1.3.3.2.4.1.3 "><p id="cce_10_0185__p238317110159">Remote login using the management console: <a href="https://docs.otc.t-systems.com/en-us/usermanual/ecs/en-us_topic_0093263550.html" target="_blank" rel="noopener noreferrer">Login Using VNC</a></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0186.html b/docs/cce/umn/cce_10_0186.html
new file mode 100644
index 00000000..d7eb7267
--- /dev/null
+++ b/docs/cce/umn/cce_10_0186.html
@@ -0,0 +1,22 @@
+<a name="cce_10_0186"></a><a name="cce_10_0186"></a>
+
+<h1 class="topictitle1">Deleting a Node</h1>
+<div id="body1559203372010"><div class="section" id="cce_10_0186__section748912450371"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0186__p19987354135915">When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.</p>
+</div>
+<div class="section" id="cce_10_0186__section1999130951"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0186__ul1687437184518"><li id="cce_10_0186__li450618444619">After a CCE cluster is deleted, the ECS nodes in the cluster are also deleted.</li><li id="cce_10_0186__li2755131805912"><div class="notice" id="cce_10_0186__note151271315132912"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0186__p1614541592911">For clusters of v1.17.11 or later, after a VM is deleted on the ECS console, the corresponding node in the CCE cluster is automatically deleted.</p>
+</div></div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0186__section83421713122615"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0186__ul189321612123615"><li id="cce_10_0186__li159325122367">Deleting a node will lead to pod migration, which may affect services. Perform this operation during off-peak hours.</li><li id="cce_10_0186__li29322128366">Unexpected risks may occur during the operation. Back up related data in advance.</li><li id="cce_10_0186__li893261218365">During the operation, the backend will set the node to the unschedulable state.</li><li id="cce_10_0186__li139331412133615">Only worker nodes can be deleted.</li></ul>
+</div>
+<div class="section" id="cce_10_0186__section727210277269"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0186__ol856117271009"><li id="cce_10_0186__li1393310814574"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0186__li1856111271603"><span>In the navigation pane, choose <strong id="cce_10_0186__b196109262172">Nodes</strong>. In the same row as the node you will delete, choose <strong id="cce_10_0186__b2610102621713">More</strong> &gt; <strong id="cce_10_0186__b461010261172">Delete</strong>.</span></li><li id="cce_10_0186__li18203142544612"><span>In the <strong id="cce_10_0186__b246112113267">Delete Node</strong> dialog box, click <strong id="cce_10_0186__b149444882611">Yes</strong>.</span><p><div class="note" id="cce_10_0186__note69026485013"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0186__ul13737236142214"><li id="cce_10_0186__li5735101919217">After the node is deleted, pods on it are automatically migrated to other available nodes. </li><li id="cce_10_0186__li19644146173519">If the disks and EIPs bound to the node are important resources, unbind them first. Otherwise, they will be deleted with the node.</li></ul>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0187.html b/docs/cce/umn/cce_10_0187.html
new file mode 100644
index 00000000..7393d70a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0187.html
@@ -0,0 +1,57 @@
+<a name="cce_10_0187"></a><a name="cce_10_0187"></a>
+
+<h1 class="topictitle1">Permissions Overview</h1>
+<div id="body1559273520456"><p id="cce_10_0187__p123631955111810">CCE permissions management allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Management (IAM) and Kubernetes Role-based Access Control (RBAC) authorization to provide a variety of authorization methods, including IAM fine-grained authorization, IAM token authorization, cluster-scoped authorization, and namespace-wide authorization.</p>
+<p id="cce_10_0187__p3327830115513">CCE allows you to manage permissions on clusters and related resources at a finer granularity, for example, to control the access of employees in different departments to cloud resources.</p>
+<p id="cce_10_0187__p1432753017552">This section describes the CCE permissions management mechanism and related concepts. If your account has met your service requirements, you can skip the configurations in this chapter.</p>
+<div class="section" id="cce_10_0187__section3911182131810"><h4 class="sectiontitle">CCE Permissions Management</h4><div class="p" id="cce_10_0187__p206041921795">CCE permissions are described as follows:<ul id="cce_10_0187__ul1689014153919"><li id="cce_10_0187__li46052152312"><strong id="cce_10_0187__b817117413305">Cluster-level permissions</strong>: Cluster-level permissions management evolves out of the system policy authorization feature of IAM. IAM users in the same user group have the same permissions. On IAM, you can configure system policies to describe which IAM user groups can perform which operations on cluster resources. For example, you can grant user group A to create and delete cluster X, add a node, or install an add-on, while granting user group B to view information about cluster X. <p id="cce_10_0187__p161401647231">Cluster-level permissions involve CCE non-Kubernetes APIs and support fine-grained IAM policies.</p>
+</li><li id="cce_10_0187__li128903151991"><strong id="cce_10_0187__b781410311916">Namespace-level permissions</strong>: You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. CCE has also been enhanced based on open-source capabilities. It supports RBAC authorization based on IAM user or user group, and RBAC authentication on access to APIs using IAM tokens.<p id="cce_10_0187__p112293116233">Namespace-level permissions involve CCE Kubernetes APIs and are enhanced based on the Kubernetes RBAC capabilities. Namespace-level permissions can be granted to IAM users or user groups for authentication and authorization, but are independent of fine-grained IAM policies.</p>
+<p id="cce_10_0187__p1274831312391">Starting from version 1.11.7-r2, CCE clusters allow you to configure namespace permissions. Clusters earlier than v1.11.7-r2 have all namespace permissions by default.</p>
+</li></ul>
+</div>
+<p id="cce_10_0187__p7261627145419">In general, you configure CCE permissions in two scenarios. The first is creating and managing clusters and related resources, such as nodes. The second is creating and using Kubernetes resources in the cluster, such as workloads and Services.</p>
+<div class="fignone" id="cce_10_0187__fig11818185173613"><span class="figcap"><b>Figure 1 </b>Illustration on CCE permissions</span><br><span><img id="cce_10_0187__image77663013375" src="en-us_image_0000001199181266.png"></span></div>
+<p id="cce_10_0187__p791472435616">These permissions allow you to manage resource users at a finer granularity.</p>
+</div>
+<div class="section" id="cce_10_0187__section1464135853519"><a name="cce_10_0187__section1464135853519"></a><a name="section1464135853519"></a><h4 class="sectiontitle">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_10_0187__p5275251191113">Users with different cluster permissions (assigned using IAM) have different namespace permissions (assigned using Kubernetes RBAC). <a href="#cce_10_0187__table886210176509">Table 1</a> lists the namespace permissions of different users.</p>
+
+<div class="tablenoborder"><a name="cce_10_0187__table886210176509"></a><a name="table886210176509"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0187__table886210176509" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Differences in namespace permissions</caption><thead align="left"><tr id="cce_10_0187__row14863201719502"><th align="left" class="cellrowborder" valign="top" width="46.54%" id="mcps1.3.5.3.2.3.1.1"><p id="cce_10_0187__p14863111718502">User</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="53.459999999999994%" id="mcps1.3.5.3.2.3.1.2"><p id="cce_10_0187__p10295153183913">Clusters of v1.13 and Later</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0187__row138631617185012"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0187__p1787744075015">User with the Tenant Administrator permissions</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_10_0187__p1829523133913">All namespace permissions</p>
+</td>
+</tr>
+<tr id="cce_10_0187__row138631317205019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0187__p3878104075018">IAM user with the CCE Administrator role</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_10_0187__p172951435393">All namespace permissions</p>
+</td>
+</tr>
+<tr id="cce_10_0187__row1386412176506"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0187__p187854025013">IAM user with the CCE FullAccess or CCE ReadOnlyAccess role</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_10_0187__p7321956194312">Requires Kubernetes RBAC authorization.</p>
+</td>
+</tr>
+<tr id="cce_10_0187__row28641117145019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.5.3.2.3.1.1 "><p id="cce_10_0187__p11879440195014">IAM user with the Tenant Guest role</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.5.3.2.3.1.2 "><p id="cce_10_0187__p1932115664317">Requires Kubernetes RBAC authorization.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0187__section118521730124516"><h4 class="sectiontitle">kubectl Permissions</h4><p id="cce_10_0187__p17298223112610">You can use <a href="cce_10_0107.html">kubectl</a> to access Kubernetes resources in a cluster.</p>
+<p id="cce_10_0187__p142391810113">When you access a cluster using kubectl, CCE uses the kubeconfig.json file generated on the cluster for authentication. This file contains user information, based on which CCE determines which Kubernetes resources can be accessed by kubectl. The permissions recorded in a kubeconfig.json file vary from user to user. The permissions that a user has are listed in <a href="#cce_10_0187__table886210176509">Table 1</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0188.html b/docs/cce/umn/cce_10_0188.html
new file mode 100644
index 00000000..72c4cb06
--- /dev/null
+++ b/docs/cce/umn/cce_10_0188.html
@@ -0,0 +1,96 @@
+<a name="cce_10_0188"></a><a name="cce_10_0188"></a>
+
+<h1 class="topictitle1">Cluster Permissions (IAM-based)</h1>
+<div id="body1556099896059"><p id="cce_10_0188__p1524419446112">CCE cluster-level permissions are assigned based on <strong id="cce_10_0188__b06521521142312">IAM system policies</strong> and <strong id="cce_10_0188__b176531921112312">custom policies</strong>. You can use user groups to assign permissions to IAM users.</p>
+<div class="caution" id="cce_10_0188__note560142111218"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0188__p11831011058"><strong id="cce_10_0188__b105531627103011">Cluster permissions</strong> are configured only for cluster-related resources (such as clusters and nodes). You must also configure <a href="cce_10_0189.html">namespace permissions</a> to operate Kubernetes resources (such as workloads and Services).</p>
+</div></div>
+<div class="section" id="cce_10_0188__section16601203895318"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0188__ul115321234510"><li id="cce_10_0188__li267771813457">A user with the Security Administrator role (for example, your account) has all IAM permissions except role switching. Only these users can view user groups and their permissions on the <strong id="cce_10_0188__b364011513384">Permissions</strong> page on the CCE console.</li></ul>
+</div>
+<div class="section" id="cce_10_0188__section638994317105"><h4 class="sectiontitle">Configuration</h4><p id="cce_10_0188__p686525014420">On the CCE console, when you choose <strong id="cce_10_0188__b197085371453">Permissions</strong> &gt; <strong id="cce_10_0188__b525314581453">Cluster-Level Permissions</strong> to create a user group, you will be directed to the IAM console to complete the process. After the user group is created and its permissions are configured, you can view the information on the <strong id="cce_10_0188__b78091143115016">Cluster-Level Permissions</strong> tab page. This section describes the operations in IAM.</p>
+</div>
+<div class="section" id="cce_10_0188__section1189416161520"><h4 class="sectiontitle">Process Flow</h4><div class="fignone" id="cce_10_0188__fig1351611812271"><span class="figcap"><b>Figure 1 </b>Process of assigning CCE permissions</span><br><span><img id="cce_10_0188__image35161382273" src="en-us_image_0000001244261073.png"></span></div>
+<p id="cce_10_0188__p19791446201511"></p>
+<ol id="cce_10_0188__ol10176191312813"><li id="cce_10_0188__li10176121316284"><a name="cce_10_0188__li10176121316284"></a><a name="li10176121316284"></a>Create a user group and assign permissions to it.<p id="cce_10_0188__p41762137286"><a name="cce_10_0188__li10176121316284"></a><a name="li10176121316284"></a>Create a user group on the IAM console, and assign CCE permissions, for example, the <strong id="cce_10_0188__b64401620459">CCEReadOnlyAccess</strong> policy to the group.</p>
+<div class="note" id="cce_10_0188__note967150181611"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0188__p96817061620">CCE is deployed by region. On the IAM console, select <strong id="cce_10_0188__b1458741724518">Region-specific projects</strong> when assigning CCE permissions.</p>
+</div></div>
+</li><li id="cce_10_0188__li181761413162818">Create a user and add it to a user group.<p id="cce_10_0188__p16177613182816"><a name="cce_10_0188__li181761413162818"></a><a name="li181761413162818"></a>Create a user on the IAM console and add the user to the group created in <a href="#cce_10_0188__li10176121316284">1</a>.</p>
+</li><li id="cce_10_0188__li1177513202816">Log in and verify permissions.<p id="cce_10_0188__p1317741312289"><a name="cce_10_0188__li1177513202816"></a><a name="li1177513202816"></a>Log in to the management console as the user you created, and verify that the user has the assigned permissions.</p>
+<ul id="cce_10_0188__ul1692751312242"><li id="cce_10_0188__li205729227246">Log in to the management console, switch to the CCE console, and buy a cluster. If you fail to do so (assuming that only the CCEReadOnlyAccess permission is assigned), the permission control policy takes effect.</li><li id="cce_10_0188__li1857212212418">Switch to the console of any other service. If a message appears indicating that you do not have the required permissions to access the service, the <strong id="cce_10_0188__b155543177531">CCEReadOnlyAccess</strong> policy takes effect.</li></ul>
+</li></ol>
+</div>
+<div class="section" id="cce_10_0188__section027554371316"><h4 class="sectiontitle">System-defined Roles</h4><p id="cce_10_0188__p1256510474138">Roles are a type of coarse-grained authorization mechanism that defines service-level permissions based on user responsibilities. Only a limited number of service-level roles are available for authorization. Roles are not ideal for fine-grained authorization and least privilege access.</p>
+<p id="cce_10_0188__p89331138146">The preset system role for CCE in IAM is <strong id="cce_10_0188__b61591456104718">CCEAdministrator</strong>. When assigning this role to a user group, you must also select other roles and policies on which this role depends, such as <strong id="cce_10_0188__b816015614711">Tenant Guest</strong>, <strong id="cce_10_0188__b41601356124714">Server Administrator</strong>, <strong id="cce_10_0188__b2161656194714">ELB Administrator</strong>, <strong id="cce_10_0188__b816255674716">OBS Administrator</strong>, <strong id="cce_10_0188__b416265684717">SFS Administrator</strong>, <strong id="cce_10_0188__b121631356134713">SWR Admin</strong>, and <strong id="cce_10_0188__b71631456144713">APM FullAccess</strong>. </p>
+</div>
+<div class="section" id="cce_10_0188__section19693172419122"><h4 class="sectiontitle">System-defined Policies</h4><p id="cce_10_0188__p6319113705">The system policies preset for CCE in IAM are <strong id="cce_10_0188__b2087282112219">CCEFullAccess</strong> and <strong id="cce_10_0188__b18872162117216">CCEReadOnlyAccess</strong>.</p>
+<ul id="cce_10_0188__ul5928256852"><li id="cce_10_0188__li992895610520"><strong id="cce_10_0188__b23521617728">CCE FullAccess</strong>: common operation permissions on CCE cluster resources, excluding the namespace-level permissions for the clusters (with Kubernetes RBAC enabled) and the privileged administrator operations, such as agency configuration and cluster certificate generation</li><li id="cce_10_0188__li09289561156"><strong id="cce_10_0188__b1324117101927">CCE ReadOnlyAccess</strong>: permissions to view CCE cluster resources, excluding the namespace-level permissions of the clusters (with Kubernetes RBAC enabled)</li></ul>
+<div class="note" id="cce_10_0188__note121251312292"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0188__p212511112915">The <strong id="cce_10_0188__b19251210210">CCE Admin</strong> and <strong id="cce_10_0188__b10252412217">CCE Viewer</strong> roles will be discarded soon. You are advised to use <strong id="cce_10_0188__b1225219116211">CCE FullAccess</strong> and <strong id="cce_10_0188__b72521213214">CCE ReadOnlyAccess</strong>.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0188__section1437818291149"><h4 class="sectiontitle">Custom Policies</h4><p id="cce_10_0188__p1720839699">Custom policies can be created as a supplement to the system-defined policies of CCE. </p>
+<p id="cce_10_0188__p16101321113819">You can create custom policies in either of the following ways:</p>
+<ul id="cce_10_0188__ul9610121193813"><li id="cce_10_0188__li13610921183812">Visual editor: Select cloud services, actions, resources, and request conditions. This does not require knowledge of policy syntax.</li><li id="cce_10_0188__li106102218385">JSON: Edit JSON policies from scratch or based on an existing policy.</li></ul>
+<p id="cce_10_0188__p18299838121515">This section provides examples of common custom CCE policies.</p>
+</div>
+<p id="cce_10_0188__p11568030201410"><strong id="cce_10_0188__b363172105910">Example Custom Policies:</strong></p>
+<ul id="cce_10_0188__ul10965520113910"><li id="cce_10_0188__li14965172093918">Example 1: Creating a cluster named <strong id="cce_10_0188__b10467182715914">test</strong><pre class="screen" id="cce_10_0188__screen985911584456">{
+    "Version": "1.1",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Action": [
+                "cce:cluster:create"
+            ]
+        }
+    ]
+}</pre>
+</li><li id="cce_10_0188__li13637123173913">Example 2: Denying node deletion<p id="cce_10_0188__p15920134510474"><a name="cce_10_0188__li13637123173913"></a><a name="li13637123173913"></a>A policy with only "Deny" permissions must be used in conjunction with other policies to take effect. If the permissions assigned to a user contain both "Allow" and "Deny", the "Deny" permissions take precedence over the "Allow" permissions.</p>
+<p id="cce_10_0188__p1892011458477">The following method can be used if you need to assign permissions of the <strong id="cce_10_0188__b82591741101112">CCEFullAccess</strong> policy to a user but you want to prevent the user from deleting nodes (<strong id="cce_10_0188__b1264641191110">cce:node:delete</strong>). Create a custom policy for denying node deletion, and attach both policies to the group to which the user belongs. Then, the user can perform all operations on CCE except deleting nodes. The following is an example of a deny policy:</p>
+<pre class="screen" id="cce_10_0188__screen1592111452471">{
+    "Version": "1.1",
+    "Statement": [
+        {
+            "Effect": "Deny",
+            "Action": [
+                "cce:node:delete"
+            ]
+        }
+    ]
+}</pre>
+</li><li id="cce_10_0188__li139252014404">Example 3: Defining permissions for multiple services in a policy<p id="cce_10_0188__p1057233615402"><a name="cce_10_0188__li139252014404"></a><a name="li139252014404"></a>A custom policy can contain the actions of multiple services that are of the global or project-level type. The following is an example policy containing actions of multiple services:</p>
+<pre class="screen" id="cce_10_0188__screen102351094513">{
+    "Version": "1.1",
+    "Statement": [
+        {
+            "Action": [
+                "ecs:cloudServers:resize",
+                "ecs:cloudServers:delete",
+                "ecs:cloudServers:delete",
+                "ims:images:list",
+                "ims:serverImages:create"
+            ],
+            "Effect": "Allow"
+        }
+    ]
+}</pre>
+</li></ul>
+<div class="section" id="cce_10_0188__section8718111816319"><h4 class="sectiontitle">CCE Cluster Permissions and IAM RBAC</h4><p id="cce_10_0188__p226515508116">CCE is compatible with IAM system roles for permissions management. You are advised to use fine-grained policies provided by IAM to simplify permissions management.</p>
+<p id="cce_10_0188__p9265185011110">CCE supports the following roles:</p>
+<ul id="cce_10_0188__ul1428114381443"><li id="cce_10_0188__li6801829426">Basic IAM roles:<ul id="cce_10_0188__ul258815974219"><li id="cce_10_0188__li555011594217">te_admin (Tenant Administrator): Users with this role can call all APIs of all services except IAM.</li><li id="cce_10_0188__li928118385419">readonly (Tenant Guest): Users with this role can call APIs with the read-only permissions of all services except IAM.</li></ul>
+</li><li id="cce_10_0188__li587354415412">Custom CCE administrator role: CCE Administrator</li></ul>
+<div class="note" id="cce_10_0188__note91929387810"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0188__ul179134412118"><li id="cce_10_0188__li1891444171119">Tenant Administrator and Tenant Guest are special IAM system roles. After any system or custom policy is configured, Tenant Administrator and Tenant Guest take effect as system policies to achieve compatibility with IAM RBAC and ABAC scenarios.</li><li id="cce_10_0188__li1542612213442">If a user has the Tenant Administrator or CCE Administrator system role, the user has the cluster-admin permissions in Kubernetes RBAC and the permissions cannot be removed after the cluster is created.<div class="p" id="cce_10_0188__p1865618434419"><a name="cce_10_0188__li1542612213442"></a><a name="li1542612213442"></a>If the user is the cluster creator, the cluster-admin permissions in Kubernetes RBAC are granted to the user by default. The permissions can be manually removed after the cluster is created.<ul id="cce_10_0188__ul756995674218"><li id="cce_10_0188__li13305252174212">Method 1: Choose <strong id="cce_10_0188__b89528258302">Permissions Management</strong> &gt; <strong id="cce_10_0188__b622351309">Namespace-Level Permissions</strong> &gt; <strong id="cce_10_0188__b724315193219">Delete</strong> at the same role as cluster-creator on the CCE console.</li><li id="cce_10_0188__li187621345131113">Method 2: Delete <strong id="cce_10_0188__b1274821117337">ClusterRoleBinding: cluster-creator</strong> through the API or kubectl.</li></ul>
+</div>
+</li></ul>
+</div></div>
+<p id="cce_10_0188__p141675017814">When RBAC and IAM policies co-exist, the backend authentication logic for open APIs or console operations on CCE is as follows:</p>
+<p id="cce_10_0188__p176112191411"><span><img id="cce_10_0188__image8173102012117" src="en-us_image_0000001244101107.png"></span></p>
+<div class="caution" id="cce_10_0188__note72065369315"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0188__p426512507111">Certain CCE APIs involve namespace-level permissions or key operations and therefore, they require special permissions:</p>
+<p id="cce_10_0188__p020616363316">Using clusterCert to obtain the cluster kubeconfig: cceadm/teadmin</p>
+</div></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0189.html b/docs/cce/umn/cce_10_0189.html
new file mode 100644
index 00000000..47eca800
--- /dev/null
+++ b/docs/cce/umn/cce_10_0189.html
@@ -0,0 +1,221 @@
+<a name="cce_10_0189"></a><a name="cce_10_0189"></a>
+
+<h1 class="topictitle1">Namespace Permissions (Kubernetes RBAC-based)</h1>
+<div id="body1556099896059"><div class="section" id="cce_10_0189__section54736241399"><h4 class="sectiontitle">Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_10_0189__en-us_topic_0084600596_p293018587113">You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kubernetes objects: Role, ClusterRole, RoleBinding, and ClusterRoleBinding, which are described as follows:</p>
+<ul id="cce_10_0189__en-us_topic_0084600596_ul1051101311020"><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li1481515491386">Role: defines a set of rules for accessing Kubernetes resources in a namespace.</li><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li1224120528819">RoleBinding: defines the relationship between users and roles.</li><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li11770153233818">ClusterRole: defines a set of rules for accessing Kubernetes resources in a cluster (including all namespaces).</li><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li15813127781">ClusterRoleBinding: defines the relationship between users and cluster roles.</li></ul>
+<p id="cce_10_0189__en-us_topic_0084600596_p13511813111010">Role and ClusterRole specify actions that can be performed on specific resources. RoleBinding and ClusterRoleBinding bind roles to specific users, user groups, or ServiceAccounts. Illustration:</p>
+<div class="fignone" id="cce_10_0189__en-us_topic_0084600596_fig1751131311103"><span class="figcap"><b>Figure 1 </b>Role binding</span><br><span><img id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_image19499911182110" src="en-us_image_0000001244261071.png"></span></div>
+<p id="cce_10_0189__en-us_topic_0084600596_p18544162681014">On the CCE console, you can assign permissions to a user or user group to access resources in one or multiple namespaces. By default, the CCE console provides the following ClusterRoles:</p>
+<ul id="cce_10_0189__en-us_topic_0084600596_ul12544126191012"><li id="cce_10_0189__en-us_topic_0084600596_li1754413268102">view (read-only): read-only permission on most resources in all or selected namespaces.</li><li id="cce_10_0189__en-us_topic_0084600596_li15545182611109">edit (development): read and write permissions on most resources in all or selected namespaces. If this ClusterRole is configured for all namespaces, its capability is the same as the O&amp;M permission.</li><li id="cce_10_0189__en-us_topic_0084600596_li14545926101013">admin (O&amp;M): read and write permissions on most resources in all namespaces, and read-only permission on nodes, storage volumes, namespaces, and quota management.</li><li id="cce_10_0189__en-us_topic_0084600596_li10545926201011">cluster-admin (administrator): read and write permissions on all resources in all namespaces.</li></ul>
+</div>
+<div class="section" id="cce_10_0189__section207514572488"><a name="cce_10_0189__section207514572488"></a><a name="section207514572488"></a><h4 class="sectiontitle">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_10_0189__cce_10_0187_p5275251191113">Users with different cluster permissions (assigned using IAM) have different namespace permissions (assigned using Kubernetes RBAC). <a href="#cce_10_0189__cce_10_0187_table886210176509">Table 1</a> lists the namespace permissions of different users.</p>
+
+<div class="tablenoborder"><a name="cce_10_0189__cce_10_0187_table886210176509"></a><a name="cce_10_0187_table886210176509"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0189__cce_10_0187_table886210176509" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Differences in namespace permissions</caption><thead align="left"><tr id="cce_10_0189__cce_10_0187_row14863201719502"><th align="left" class="cellrowborder" valign="top" width="46.54%" id="mcps1.3.2.3.2.3.1.1"><p id="cce_10_0189__cce_10_0187_p14863111718502">User</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="53.459999999999994%" id="mcps1.3.2.3.2.3.1.2"><p id="cce_10_0189__cce_10_0187_p10295153183913">Clusters of v1.13 and Later</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0189__cce_10_0187_row138631617185012"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p1787744075015">User with the Tenant Administrator permissions</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p1829523133913">All namespace permissions</p>
+</td>
+</tr>
+<tr id="cce_10_0189__cce_10_0187_row138631317205019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p3878104075018">IAM user with the CCE Administrator role</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p172951435393">All namespace permissions</p>
+</td>
+</tr>
+<tr id="cce_10_0189__cce_10_0187_row1386412176506"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p187854025013">IAM user with the CCE FullAccess or CCE ReadOnlyAccess role</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p7321956194312">Requires Kubernetes RBAC authorization.</p>
+</td>
+</tr>
+<tr id="cce_10_0189__cce_10_0187_row28641117145019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p11879440195014">IAM user with the Tenant Guest role</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p1932115664317">Requires Kubernetes RBAC authorization.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0189__section320111415506"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0189__ul815212017513"><li id="cce_10_0189__li723216359475">Kubernetes RBAC authorization can be used for clusters of v1.11.7-r2 and later. Ensure that you have deployed a supported cluster version. For details about upgrading a cluster, see <a href="cce_10_0120.html">Performing Replace/Rolling Upgrade</a>.</li><li id="cce_10_0189__li8127185819407">After you create a cluster of v1.11.7-r2 or later, CCE automatically assigns the cluster-admin permission to you, which means you have full control on all resources in all namespaces in the cluster. The ID of a federated user changes upon each login and logout. Therefore, the user with the permissions is displayed as deleted. In this case, do not delete the permissions. Otherwise, the authentication fails. You are advised to grant the cluster-admin permission to a user group on CCE and add federated users to the user group.</li><li id="cce_10_0189__li9232193524714">A user with the Security Administrator role has all IAM permissions except role switching. For example, an account in the admin user group has this role by default. Only these users can assign permissions on the <strong id="cce_10_0189__b1874164883917">Permissions</strong> page on the CCE console.</li></ul>
+</div>
+<div class="section" id="cce_10_0189__section14142185815219"><h4 class="sectiontitle">Configuring Namespace Permissions (on the Console)</h4><p id="cce_10_0189__p4776162914454">You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles.</p>
+<ol id="cce_10_0189__ol24786311219"><li id="cce_10_0189__li663920334397"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0189__b189414512310">Permissions</strong>.</span></li><li id="cce_10_0189__li1235093912444"><span>Select a cluster for which you want to add permissions from the drop-down list on the right.</span></li><li id="cce_10_0189__li4640173311392"><span>Click <strong id="cce_10_0189__b1474122216500">Add Permissions</strong> in the upper right corner.</span></li><li id="cce_10_0189__li156401033143920"><span>Confirm the cluster name and select the namespace to assign permissions for. For example, select <strong id="cce_10_0189__b267285510394">All namespaces</strong>, the target user or user group, and select the permissions.</span><p><div class="note" id="cce_10_0189__note2314729165419"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0189__p731522905414">If you do not have IAM permissions, you cannot select users or user groups when configuring permissions for other users or user groups. In this case, you can enter a user ID or user group ID. </p>
+</div></div>
+<p id="cce_10_0189__p533821865412">Permissions can be customized as required. After selecting <strong id="cce_10_0189__b182025203416">Custom</strong> for <strong id="cce_10_0189__b527015227417">Permission Type</strong>, click <strong id="cce_10_0189__b579512373420">Add Custom Role</strong> on the right of the <strong id="cce_10_0189__b451964714419">Custom</strong> parameter. In the dialog box displayed, enter a name and select a rule. After the custom rule is created, you can select a value from the <strong id="cce_10_0189__b1762218151260">Custom</strong> drop-down list box.</p>
+</p></li><li id="cce_10_0189__li82386110619"><span>Click <strong id="cce_10_0189__b1729011211769">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0189__section1273861718819"><a name="cce_10_0189__section1273861718819"></a><a name="section1273861718819"></a><h4 class="sectiontitle">Using kubectl to Configure Namespace Permissions</h4><div class="note" id="cce_10_0189__note175512112562"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0189__p13538151245610">When you access a cluster using kubectl, CCE uses the kubeconfig.json file generated on the cluster for authentication. This file contains user information, based on which CCE determines which Kubernetes resources can be accessed by kubectl. The permissions recorded in a kubeconfig.json file vary from user to user. The permissions that a user has are listed in <a href="#cce_10_0189__section207514572488">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
+</div></div>
+<p id="cce_10_0189__p201194431987">In addition to cluster-admin, admin, edit, and view, you can define Roles and RoleBindings to configure the permissions to add, delete, modify, and query resources, such as pods, Deployments, and Services, in the namespace.</p>
+<p id="cce_10_0189__p9324202361517">The procedure for creating a Role is very simple. To be specific, specify a namespace and then define rules. The rules in the following example are to allow GET and LIST operations on pods in the default namespace.</p>
+<pre class="screen" id="cce_10_0189__screen197388108173">kind: Role
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  namespace: default                          # Namespace
+  name: role-example
+rules:
+- apiGroups: [""]
+  resources: ["pods"]                         # The pod can be accessed.
+  verbs: ["get", "list"]                      # The GET and LIST operations can be performed.</pre>
+<ul id="cce_10_0189__ul1451694382618"><li id="cce_10_0189__li11184115310297"><strong id="cce_10_0189__b1488414410451">apiGroups</strong> indicates the API group to which the resource belongs.</li><li id="cce_10_0189__li29394520268"><strong id="cce_10_0189__b13320131874514">resources</strong> indicates the resources that can be operated. Pods, Deployments, ConfigMaps, and other Kubernetes resources are supported.</li><li id="cce_10_0189__li13516643152612"><strong id="cce_10_0189__b81461830184516">verbs</strong> indicates the operations that can be performed. <strong id="cce_10_0189__b12147143015457">get</strong> indicates querying a specific object, and <strong id="cce_10_0189__b61484305450">list</strong> indicates listing all objects of a certain type. Other value options include <strong id="cce_10_0189__b13767192104616">create</strong>, <strong id="cce_10_0189__b13768823466">update</strong>, and <strong id="cce_10_0189__b177692216467">delete</strong>.</li></ul>
+<p id="cce_10_0189__p1094191016295">For details, see <a href="https://kubernetes.io/docs/reference/access-authn-authz/rbac/" target="_blank" rel="noopener noreferrer">Using RBAC Authorization</a>.</p>
+<p id="cce_10_0189__p185689516179">After creating a Role, you can bind the Role to a specific user, which is called RoleBinding. The following is an example.</p>
+<pre class="screen" id="cce_10_0189__screen218714207185">kind: RoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: RoleBinding-example
+  namespace: default
+  annotations:
+    CCE.com/IAM: 'true'
+roleRef:
+  kind: Role
+  name: role-example
+  apiGroup: rbac.authorization.k8s.io
+subjects:
+- kind: User
+  name: 0c97ac3cb280f4d91fa7c0096739e1f8 # User ID of the user-example
+  apiGroup: rbac.authorization.k8s.io</pre>
+<p id="cce_10_0189__p195507214188">The <strong id="cce_10_0189__b158631241144713">subjects</strong> section binds a Role with an IAM user so that the IAM user can obtain the permissions defined in the Role, as shown in the following figure.</p>
+<div class="fignone" id="cce_10_0189__fig9473195372813"><span class="figcap"><b>Figure 2 </b>A RoleBinding binds the Role to the user.</span><br><span><img id="cce_10_0189__en-us_topic_0249851132_image35211083405" src="en-us_image_0262051194.png"></span></div>
+<p id="cce_10_0189__p430545215225">You can also specify a user group in the <strong id="cce_10_0189__b193732864815">subjects</strong> section. In this case, all users in the user group obtain the permissions defined in the Role.</p>
+<pre class="screen" id="cce_10_0189__screen2269203813232">subjects:
+- kind: Group
+  name: 0c96fad22880f32a3f84c009862af6f7    # User group ID
+  apiGroup: rbac.authorization.k8s.io</pre>
+<p id="cce_10_0189__p14672183010159">Use the IAM user user-example to connect to the cluster and obtain the pod information. The following is an example of the returned pod information.</p>
+<pre class="screen" id="cce_10_0189__screen6695144212356"># kubectl get pod
+NAME                                   READY   STATUS    RESTARTS   AGE
+deployment-389584-2-6f6bd4c574-2n9rk   1/1     Running   0          4d7h
+deployment-389584-2-6f6bd4c574-7s5qw   1/1     Running   0          4d7h
+deployment-3895841-746b97b455-86g77    1/1     Running   0          4d7h
+deployment-3895841-746b97b455-twvpn    1/1     Running   0          4d7h
+nginx-658dff48ff-7rkph                 1/1     Running   0          4d9h
+nginx-658dff48ff-njdhj                 1/1     Running   0          4d9h
+# kubectl get pod nginx-658dff48ff-7rkph
+NAME                     READY   STATUS    RESTARTS   AGE
+nginx-658dff48ff-7rkph   1/1     Running   0          4d9h</pre>
+<p id="cce_10_0189__p15186132615159">Try querying Deployments and Services in the namespace. The output shows <strong id="cce_10_0189__b2530123312499">user-example</strong> does not have the required permissions. Try querying the pods in namespace kube-system. The output shows <strong id="cce_10_0189__b135321633154916">user-example</strong> does not have the required permissions, neither. This indicates that the IAM user <strong id="cce_10_0189__b17598205644916">user-example</strong> has only the GET and LIST Pod permissions in the default namespace, which is the same as expected.</p>
+<pre class="screen" id="cce_10_0189__screen5891353144711"># kubectl get deploy
+Error from server (Forbidden): deployments.apps is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "deployments" in API group "apps" in the namespace "default"
+# kubectl get svc
+Error from server (Forbidden): services is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "services" in API group "" in the namespace "default"
+# kubectl get pod --namespace=kube-system
+Error from server (Forbidden): pods is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "pods" in API group "" in the namespace "kube-system"</pre>
+</div>
+<div class="section" id="cce_10_0189__section914518255314"><h4 class="sectiontitle">Example: Assigning All Cluster Permissions (cluster-admin)</h4><p id="cce_10_0189__p175654171447">You can use the cluster-admin role to assign all permissions on a cluster. This role contains the permissions for cluster resources (such as PVs and StorageClasses).</p>
+<p id="cce_10_0189__p20492316125718">In the following example kubectl output, a ClusterRoleBinding has been created and binds the cluster-admin role to the user group <strong id="cce_10_0189__b14176131925420">cce-role-group</strong>.</p>
+<pre class="screen" id="cce_10_0189__screen172421424132819"># kubectl get clusterrolebinding
+NAME                                                              ROLE                           AGE
+clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7   ClusterRole/cluster-admin      61s
+
+# kubectl get clusterrolebinding clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7 -oyaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    CCE.com/IAM: "true"
+  creationTimestamp: "2021-06-23T09:15:22Z"
+  name: clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7
+  resourceVersion: "36659058"
+  selfLink: /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/clusterrole_cluster-admin_group0c96fad22880f32a3f84c009862af6f7
+  uid: d6cd43e9-b4ca-4b56-bc52-e36346fc1320
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: cluster-admin
+subjects:
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: 0c96fad22880f32a3f84c009862af6f7</pre>
+<p id="cce_10_0189__p1358517392418">Connect to the cluster as an authorized user. If the PVs and StorageClasses can be queried, the permission configuration takes effect.</p>
+<pre class="screen" id="cce_10_0189__screen17197161285913"># kubectl get pv
+No resources found
+# kubectl get sc
+NAME                PROVISIONER                     RECLAIMPOLICY   VOLUMEBINDINGMODE      ALLOWVOLUMEEXPANSION   AGE
+csi-disk            everest-csi-provisioner         Delete          Immediate              true                   75d
+csi-disk-topology   everest-csi-provisioner         Delete          WaitForFirstConsumer   true                   75d
+csi-nas             everest-csi-provisioner         Delete          Immediate              true                   75d
+csi-obs             everest-csi-provisioner         Delete          Immediate              false                  75d</pre>
+</div>
+<div class="section" id="cce_10_0189__section6257142116414"><h4 class="sectiontitle">Example: Assigning All Namespace Permissions (admin)</h4><p id="cce_10_0189__p740419334514"><strong id="cce_10_0189__b988163913279">admin</strong> has all permissions on namespaces. You can grant this role to a user or user group to manage one or all namespaces.</p>
+<p id="cce_10_0189__p0602429123417">In the following example kubectl output, a RoleBinding has been created, the admin role is bound to the user group <strong id="cce_10_0189__b682111613313">cce-role-group</strong>, and the target namespace is the default namespace.</p>
+<pre class="screen" id="cce_10_0189__screen137917011319"># kubectl get rolebinding
+NAME                                                      ROLE                AGE
+clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7   ClusterRole/admin   18s
+# kubectl get rolebinding clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7 -oyaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    CCE.com/IAM: "true"
+  creationTimestamp: "2021-06-24T01:30:08Z"
+  name: clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7
+  namespace: default
+  resourceVersion: "36963685"
+  selfLink: /apis/rbac.authorization.k8s.io/v1/namespaces/default/rolebindings/clusterrole_admin_group0c96fad22880f32a3f84c009862af6f7
+  uid: 6c6f46a6-8584-47da-83f5-9eef1f7b75d6
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: admin
+subjects:
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: 0c96fad22880f32a3f84c009862af6f7</pre>
+<p id="cce_10_0189__p955562215477">Connect to a cluster as an authorized user. In this example, you can create and query resources in the default namespace, but cannot query resources in the kube-system namespace or cluster resources.</p>
+<pre class="screen" id="cce_10_0189__screen6555142294711"># kubectl get pod
+NAME                    READY   STATUS    RESTARTS   AGE
+test-568d96f4f8-brdrp   1/1     Running   0          33m
+test-568d96f4f8-cgjqp   1/1     Running   0          33m
+# kubectl get pod -nkube-system
+Error from server (Forbidden): pods is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "pods" in API group "" in the namespace "kube-system"
+# kubectl get pv
+Error from server (Forbidden): persistentvolumes is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "persistentvolumes" in API group "" at the cluster scope</pre>
+</div>
+<div class="section" id="cce_10_0189__section797615691612"><h4 class="sectiontitle">Example: Assigning Read-Only Namespace Permissions (view)</h4><p id="cce_10_0189__p47422167522">The view role has the read-only permissions on a namespace. You can assign permissions to users to view one or multiple namespaces.</p>
+<p id="cce_10_0189__p15928122717374">In the following example kubectl output, a RoleBinding has been created, the view role is bound to the user group <strong id="cce_10_0189__b1120512313">cce-role-group</strong>, and the target namespace is the default namespace.</p>
+<pre class="screen" id="cce_10_0189__screen17936832103718"># kubectl get rolebinding
+NAME                                                     ROLE               AGE
+clusterrole_view_group0c96fad22880f32a3f84c009862af6f7   ClusterRole/view   7s
+
+# kubectl get rolebinding clusterrole_view_group0c96fad22880f32a3f84c009862af6f7 -oyaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    CCE.com/IAM: "true"
+  creationTimestamp: "2021-06-24T01:36:53Z"
+  name: clusterrole_view_group0c96fad22880f32a3f84c009862af6f7
+  namespace: default
+  resourceVersion: "36965800"
+  selfLink: /apis/rbac.authorization.k8s.io/v1/namespaces/default/rolebindings/clusterrole_view_group0c96fad22880f32a3f84c009862af6f7
+  uid: b86e2507-e735-494c-be55-c41a0c4ef0dd
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: view
+subjects:
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: 0c96fad22880f32a3f84c009862af6f7</pre>
+<p id="cce_10_0189__p183833411529">Connect to the cluster as an authorized user. In this example, you can query resources in the default namespace but cannot create resources.</p>
+<pre class="screen" id="cce_10_0189__screen145951025195112"># kubectl get pod
+NAME                    READY   STATUS    RESTARTS   AGE
+test-568d96f4f8-brdrp   1/1     Running   0          40m
+test-568d96f4f8-cgjqp   1/1     Running   0          40m
+# kubectl run -i --tty --image tutum/dnsutils dnsutils --restart=Never --rm /bin/sh
+Error from server (Forbidden): pods is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot create resource "pods" in API group "" in the namespace "default"</pre>
+</div>
+<div class="section" id="cce_10_0189__section1471852343"><h4 class="sectiontitle">Example: Assigning Permissions for a Specific Kubernetes Resource Object</h4><p id="cce_10_0189__p42285131366">You can assign permissions on a specific Kubernetes resource object, such as pod, Deployment, and Service. For details, see <a href="#cce_10_0189__section1273861718819">Using kubectl to Configure Namespace Permissions</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0190.html b/docs/cce/umn/cce_10_0190.html
new file mode 100644
index 00000000..d73afefd
--- /dev/null
+++ b/docs/cce/umn/cce_10_0190.html
@@ -0,0 +1,136 @@
+<a name="cce_10_0190"></a><a name="cce_10_0190"></a>
+
+<h1 class="topictitle1">Permission Dependency of the CCE Console</h1>
+<div id="body1559528539590"><p id="cce_10_0190__p29881581300">Some CCE permissions policies depend on the policies of other cloud services. To view or use other cloud resources on the CCE console, you need to enable the system policy access control feature of IAM and assign dependency policies for the other cloud services.</p>
+<ul id="cce_10_0190__ul194312513516"><li id="cce_10_0190__li4390172545812">Dependency policies are assigned based on the CCE FullAccess or CCE ReadOnlyAccess policy you configure.</li><li id="cce_10_0190__li1015512333167">Only users and user groups with namespace permissions can gain the view access to resources in clusters of v1.11.7-r2 and later.<ul id="cce_10_0190__ul786034317165"><li id="cce_10_0190__li12088914498">If a user is granted the view access to all namespaces of a cluster, the user can view all namespaced resources (except secrets) in the cluster. To view secrets in the cluster, the user must gain the <strong id="cce_10_0190__b128721355121217">admin</strong> or <strong id="cce_10_0190__b8432259131218">edit</strong> role in all namespaces of the cluster.</li><li id="cce_10_0190__li6148525122319">HPA policies take effect only after the cluster-admin permissions are configured for the namespace.</li><li id="cce_10_0190__li11549203222112">The <strong id="cce_10_0190__b175975272617">view</strong> role within a single namespace allows users to view resources only in the specified namespace.</li></ul>
+</li></ul>
+<div class="section" id="cce_10_0190__section20316111417244"><h4 class="sectiontitle">Dependency Policy Configuration</h4><p id="cce_10_0190__p1624522220613">To grant an IAM user the permissions to view or use resources of other cloud services on the CCE console, you must first grant the CCE Administrator, CCE FullAccess, or CCE ReadOnlyAccess policy to the user group to which the user belongs and then grant the dependency policies listed in <a href="#cce_10_0190__table99001215575">Table 1</a> to the user. These dependency policies will allow the IAM user to access resources of other cloud services.</p>
+<div class="note" id="cce_10_0190__note136473911394"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0190__p138917235148">CCE supports fine-grained permissions configuration, but has the following restrictions:</p>
+<ul id="cce_10_0190__ul1010417239146"><li id="cce_10_0190__li0104123171416">AOM does not support resource-level monitoring. After operation permissions on specific resources are configured using IAM's fine-grained cluster resource management function, IAM users can view cluster monitoring information on the <strong id="cce_10_0190__b131601552832">Dashboard</strong> page of the CCE console, but cannot view the data on non-fine-grained metrics.</li></ul>
+</div></div>
+
+<div class="tablenoborder"><a name="cce_10_0190__table99001215575"></a><a name="table99001215575"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0190__table99001215575" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Dependency policies</caption><thead align="left"><tr id="cce_10_0190__row16901181518712"><th align="left" class="cellrowborder" valign="top" width="21.872187218721873%" id="mcps1.3.3.4.2.4.1.1"><p id="cce_10_0190__p109011015875">Console Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.672867286728675%" id="mcps1.3.3.4.2.4.1.2"><p id="cce_10_0190__p490115151776">Dependent Services</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.45494549454945%" id="mcps1.3.3.4.2.4.1.3"><p id="cce_10_0190__p2090161513711">Roles or Policies Required</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0190__row1090114151176"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p69022151975">Dashboard</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p119021153716">Application Operations Management (AOM)</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><ul id="cce_10_0190__ul223369145920"><li id="cce_10_0190__li123316912592">An IAM user with CCE Administrator assigned can use this function only after AOM FullAccess policy is assigned.</li><li id="cce_10_0190__li22330915592">IAM users with IAM ReadOnlyAccess, CCE FullAccess, or CCE ReadOnlyAccess assigned can directly use this function.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0190__row19902151514719"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p169022151472">Workload management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p10902171518718">Elastic Load Balance (ELB)</p>
+<p id="cce_10_0190__p736818303252">Application Performance Management (APM)</p>
+<p id="cce_10_0190__p1780716195243">Application Operations Management (AOM)</p>
+<p id="cce_10_0190__p14431322102415">NAT Gateway</p>
+<p id="cce_10_0190__p2597316122815">Object Storage Service (OBS)</p>
+<p id="cce_10_0190__p117241658182817">Scalable File Service (SFS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p57471617102017">Except in the following cases, the user does not require any additional role to create workloads.</p>
+<ul id="cce_10_0190__ul8113732182016"><li id="cce_10_0190__li1549293301">To create a Service using ELB, you must have ELB FullAccess or ELB Administrator plus VPC Administrator assigned.</li><li id="cce_10_0190__li211313282010">To use a Java probe, you must have AOM FullAccess and APM FullAccess assigned.</li><li id="cce_10_0190__li191131132132013">To create a Service using NAT Gateway, you must have NAT Gateway Administrator assigned.</li><li id="cce_10_0190__li1589180192710">To use OBS, you must have OBS Administrator globally assigned.<div class="note" id="cce_10_0190__note1215220141518"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0190__p0153120121518">Because of the cache, it takes about 13 minutes for the RBAC policy to take effect after being granted to users, enterprise projects, and user groups. After an OBS-related system policy is granted, it takes about 5 minutes for the policy to take effect.</p>
+</div></div>
+</li><li id="cce_10_0190__li127085616265">To use SFS, you must have SFS FullAccess assigned.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0190__row39021315071"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p8902715071">Cluster management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p14902111511717">Application Operations Management (AOM)</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><ul id="cce_10_0190__ul772124115296"><li id="cce_10_0190__li1172184119294">Auto scale-out or scale-up requires the AOM FullAccess policy.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0190__row790217151578"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p1790281519714">Node management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p129021156718">Elastic Cloud Server (ECS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p12840824466">If the permission assigned to an IAM user is CCE Administrator, creating or deleting a node requires the ECS FullAccess or ECS Administrator policy and the VPC Administrator policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0190__row1890251514716"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p39021615371">Network management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p1588385973516">Elastic Load Balance (ELB)</p>
+<p id="cce_10_0190__p19883145923514">NAT Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p052172153518">Except in the following cases, the user does not require any additional role to create a Service.</p>
+<ul id="cce_10_0190__ul5525210353"><li id="cce_10_0190__li16521522357">To create a Service using ELB, you must have ELB FullAccess or ELB Administrator plus VPC Administrator assigned.</li><li id="cce_10_0190__li20526293518">To create a Service using NAT Gateway, you must have NAT Administrator assigned.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0190__row14486172213364"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p18487522123612">Storage management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p116411756133813">Object Storage Service (OBS)</p>
+<p id="cce_10_0190__p126411556163811">Scalable File Service (SFS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><ul id="cce_10_0190__ul146023714385"><li id="cce_10_0190__li161173711383">To use OBS, you must have OBS Administrator globally assigned.<div class="note" id="cce_10_0190__cce_10_0190_note1215220141518"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0190__cce_10_0190_p0153120121518">Because of the cache, it takes about 13 minutes for the RBAC policy to take effect after being granted to users, enterprise projects, and user groups. After an OBS-related system policy is granted, it takes about 5 minutes for the policy to take effect.</p>
+</div></div>
+</li><li id="cce_10_0190__li1461183713810">To use SFS, you must have SFS FullAccess assigned.</li></ul>
+<p id="cce_10_0190__p533161762815">The CCE Administrator role is required for importing storage devices.</p>
+</td>
+</tr>
+<tr id="cce_10_0190__row1488112216362"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p144881022123614">Namespace management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p64880224363">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p1548818222361">/</p>
+</td>
+</tr>
+<tr id="cce_10_0190__row748852253612"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p948882214364">Chart management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p257594214394">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p1457514212392">Cloud accounts and the IAM users with CCE Administrator assigned can use this function.</p>
+</td>
+</tr>
+<tr id="cce_10_0190__row248812273618"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p10488142233620">Add-on management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p51171157173918">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p218618303395">Cloud accounts and the IAM users with CCE Administrator, CCE FullAccess, or CCE ReadOnlyAccess assigned can use this function.</p>
+</td>
+</tr>
+<tr id="cce_10_0190__row54891622173617"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p1748919220362">Permissions management</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p1214191764016">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><ul id="cce_10_0190__ul372099481"><li id="cce_10_0190__li1972595489">For cloud accounts, no additional policy/role is required.</li><li id="cce_10_0190__li97220984817">IAM users with CCE Administrator or global Security Administrator assigned can use this function.</li><li id="cce_10_0190__li572129154814">IAM users with CCE FullAccess or CCE ReadOnlyAccess assigned can use this function.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0190__row1588069154010"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p1388110934011">Configuration center</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p28816914409">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><ul id="cce_10_0190__ul858844185010"><li id="cce_10_0190__li1158811412506">Creating ConfigMaps does not require any additional policy.</li><li id="cce_10_0190__li258914111504">Viewing secrets requires that the cluster-admin, admin, or edit permission be configured for the namespace. The DEW KeypairFullAccess or DEW KeypairReadOnlyAccess policy must be assigned for dependent services.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0190__row1090217151179"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p18903615977">Help center</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p943035294110">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p1343065219410">/</p>
+</td>
+</tr>
+<tr id="cce_10_0190__row1853314583492"><td class="cellrowborder" valign="top" width="21.872187218721873%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0190__p9533958114919">Switching to other related services</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p19533258154918">Software Repository for Container (SWR)</p>
+<p id="cce_10_0190__p4509331523">Application Operations Management (AOM)</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0190__p253325815496">The CCE console provides links to other related services. To view or use these services, an IAM user must be assigned required permissions for the services.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0191.html b/docs/cce/umn/cce_10_0191.html
new file mode 100644
index 00000000..4c033d54
--- /dev/null
+++ b/docs/cce/umn/cce_10_0191.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0191"></a><a name="cce_10_0191"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body1561539731188"><p id="cce_10_0191__p189078488378">CCE provides a console for managing Helm charts, helping you easily deploy applications using the charts and manage applications on the console. </p>
+<div class="section" id="cce_10_0191__en-us_topic_0226102212_section12864123341716"><h4 class="sectiontitle">Helm</h4><p id="cce_10_0191__p68719119339"><a href="https://helm.sh/" target="_blank" rel="noopener noreferrer">Helm</a> is a package manager for Kubernetes and manages charts. A Helm chart is a series of YAML files used to encapsulate native Kubernetes applications. When deploying an application, you can customize some metadata of the application for easy application distribution. Application releasers can use Helm to package applications, manage application dependencies and application versions, and release applications to the software repository. After using Helm, users do not need to compile complex application deployment files. They can easily search for, install, upgrade, roll back, and uninstall applications on Kubernetes.</p>
+<p id="cce_10_0191__en-us_topic_0226102212_p138031436191716">The relationship between Helm and Kubernetes is as follows:</p>
+<ul id="cce_10_0191__ul1633161218346"><li id="cce_10_0191__li83311212113414">Helm &lt;–&gt; Kubernetes</li><li id="cce_10_0191__li13315123347">Apt &lt;–&gt; Ubuntu</li><li id="cce_10_0191__li1833131283412">Yum &lt;–&gt; CentOS</li><li id="cce_10_0191__li7331131233420">Pip &lt;–&gt; Python</li></ul>
+<p id="cce_10_0191__p177984213343">The following figure shows the solution architecture:</p>
+<p id="cce_10_0191__p794155619355"><span><img id="cce_10_0191__image4804826181816" src="en-us_image_0000001325364477.png"></span></p>
+<p id="cce_10_0191__p95091655535">Helm can help application orchestration for Kubernetes:</p>
+<ul id="cce_10_0191__ul75096515315"><li id="cce_10_0191__li950913516539">Manages, edits, and updates a large number of Kubernetes configuration files.</li><li id="cce_10_0191__li4509459535">Deploys a complex Kubernetes application that contains a large number of configuration files.</li><li id="cce_10_0191__li1750905155317">Shares and reuses Kubernetes configurations and applications.</li><li id="cce_10_0191__li450920514533">Supports multiple environments with parameter-based configuration templates.</li><li id="cce_10_0191__li13509115105313">Manages the release of applications, including rolling back the application, finding differences (using the <strong id="cce_10_0191__b1236505916344">diff</strong> command), and viewing the release history.</li><li id="cce_10_0191__li7509125125311">Controls phases in a deployment cycle.</li><li id="cce_10_0191__li19509115195314">Tests and verifies the released version.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0019.html">Charts</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0193.html b/docs/cce/umn/cce_10_0193.html
new file mode 100644
index 00000000..b375076e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0193.html
@@ -0,0 +1,628 @@
+<a name="cce_10_0193"></a><a name="cce_10_0193"></a>
+
+<h1 class="topictitle1">volcano</h1>
+<div id="body1561601911583"><div class="section" id="cce_10_0193__section173631312185614"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0193__p171356133587">Volcano is a batch processing platform based on Kubernetes. It provides a series of features required by machine learning, deep learning, bioinformatics, genomics, and other big data applications, as a powerful supplement to Kubernetes capabilities.</p>
+<p id="cce_10_0193__p153070610592">Volcano provides general-purpose, high-performance computing capabilities, such as job scheduling engine, heterogeneous chip management, and job running management, serving end users through computing frameworks for different industries, such as AI, big data, gene sequencing, and rendering. (Volcano has been open-sourced in GitHub.)</p>
+<p id="cce_10_0193__p146815415012">Volcano provides job scheduling, job management, and queue management for computing applications. Its main features are as follows:</p>
+<ul id="cce_10_0193__ul188217451061"><li id="cce_10_0193__li1082545564">Diverse computing frameworks, such as TensorFlow, MPI, and Spark, can run on Kubernetes in containers. Common APIs for batch computing jobs through CRD, various plug-ins, and advanced job lifecycle management are provided.</li><li id="cce_10_0193__li1082134517617">Advanced scheduling capabilities are provided for batch computing and high-performance computing scenarios, including group scheduling, preemptive priority scheduling, packing, resource reservation, and task topology.</li><li id="cce_10_0193__li12821845461">Queues can be effectively managed for scheduling jobs. Complex job scheduling capabilities such as queue priority and multi-level queues are supported.</li></ul>
+<p id="cce_10_0193__p168654503">Open source community: <a href="https://github.com/volcano-sh/volcano" target="_blank" rel="noopener noreferrer">https://github.com/volcano-sh/volcano</a></p>
+</div>
+<div class="section" id="cce_10_0193__section564214328158"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0193__ol13949124616422"><li id="cce_10_0193__li13183153352515"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <span class="uicontrol" id="cce_10_0193__uicontrol8675462216"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0193__b1873174612217">volcano</strong> on the right, and click <strong id="cce_10_0193__b1873446421">Install</strong>.</span></li><li id="cce_10_0193__li537120553338"><span>Select <span class="uicontrol" id="cce_10_0193__uicontrol25651616364"><b>Standalone</b></span>, <strong id="cce_10_0193__b656619133619">Custom</strong>, or <span class="uicontrol" id="cce_10_0193__uicontrol13567811360"><b>HA</b></span> for <strong id="cce_10_0193__b12568217360">Add-on Specifications</strong>.</span><p><p id="cce_10_0193__p695151105812">If you select <strong id="cce_10_0193__b10839547203618">Custom</strong>, the recommended values of <strong id="cce_10_0193__b2494110183710">volcano-controller</strong> and <strong id="cce_10_0193__b1814316713379">volcano-scheduler</strong> are as follows:</p>
+<ul id="cce_10_0193__ul12952151175820"><li id="cce_10_0193__li12878725672">If the number of nodes is less than 100, retain the default configuration. That is, the CPU request value is <strong id="cce_10_0193__b12979103718372">500m</strong>, and the limit value is <strong id="cce_10_0193__b109130464372">2000m</strong>. The memory request value is <strong id="cce_10_0193__b362943113810">500Mi</strong>, and the limit value is <strong id="cce_10_0193__b12168121613389">2000Mi</strong>.</li><li id="cce_10_0193__li179521411165819">If the number of nodes is greater than 100, increase the CPU request value by <strong id="cce_10_0193__b1779910511390">500m</strong> and the memory request value by <strong id="cce_10_0193__b1431217244397">1000Mi</strong> each time 100 nodes (10000 pods) are added. You are advised to increase the CPU limit value by <strong id="cce_10_0193__b165851421144016">1500m</strong> and the memory limit by <strong id="cce_10_0193__b3344532194010">1000Mi</strong>.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0193__table4742829185912" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Recommended values for volcano-controller and volcano-scheduler</caption><thead align="left"><tr id="cce_10_0193__row07431329145911"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.2.2.2.2.2.5.2.6.1.1"><p id="cce_10_0193__p187511737155914">Number of Node/Pod</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.2.2.2.2.2.5.2.6.1.2"><p id="cce_10_0193__p10751123712590">CPU Request(m)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.2.2.2.2.2.5.2.6.1.3"><p id="cce_10_0193__p975163785912">CPU Limit(m)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.2.2.2.2.2.5.2.6.1.4"><p id="cce_10_0193__p7751437195915">Memory Request(Mi)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.2.2.2.2.2.5.2.6.1.5"><p id="cce_10_0193__p15751737185918">Memory Limit(Mi)</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0193__row107432029175915"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.1 "><p id="cce_10_0193__p17440104313599">50/5k</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.2 "><p id="cce_10_0193__p144064365912">500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.3 "><p id="cce_10_0193__p1244034395911">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.4 "><p id="cce_10_0193__p844034310592">500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.5 "><p id="cce_10_0193__p4440124305918">2000</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row67438296598"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.1 "><p id="cce_10_0193__p144034313592">100/1w</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.2 "><p id="cce_10_0193__p1344018435599">1000</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.3 "><p id="cce_10_0193__p24401243175910">2500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.4 "><p id="cce_10_0193__p134409438593">1500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.5 "><p id="cce_10_0193__p544018434594">2500</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row1974318297599"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.1 "><p id="cce_10_0193__p8440843175911">200/2w</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.2 "><p id="cce_10_0193__p16440104310592">1500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.3 "><p id="cce_10_0193__p124401439592">3000</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.4 "><p id="cce_10_0193__p11440843175915">2500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.5 "><p id="cce_10_0193__p184403436591">3500</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row8743202985917"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.1 "><p id="cce_10_0193__p14401343115919">300/3w</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.2 "><p id="cce_10_0193__p7440174320597">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.3 "><p id="cce_10_0193__p7440184311599">3500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.4 "><p id="cce_10_0193__p74401543125911">3500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.5 "><p id="cce_10_0193__p2440543155915">4500</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row67432029155914"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.1 "><p id="cce_10_0193__p2440204375918">400/4w</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.2 "><p id="cce_10_0193__p114401043105917">2500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.3 "><p id="cce_10_0193__p14401543195915">4000</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.4 "><p id="cce_10_0193__p154401435593">4500</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.2.2.2.2.2.5.2.6.1.5 "><p id="cce_10_0193__p10440164316595">5500</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+</p></li><li id="cce_10_0193__li2600538163517"><span>Parameters of the volcano default scheduler. For details, see <a href="#cce_10_0193__table562185146">Table 2</a>.</span><p><pre class="screen" id="cce_10_0193__screen1160010383352">ca_cert: ''
+default_scheduler_conf:
+  actions: 'allocate, backfill'
+  tiers:
+    - plugins:
+        - name: 'priority'
+        - name: 'gang'
+        - name: 'conformance'
+    - plugins:
+        - name: 'drf'
+        - name: 'predicates'
+        - name: 'nodeorder'
+    - plugins:
+        - name: 'cce-gpu-topology-predicate'
+        - name: 'cce-gpu-topology-priority'
+        - name: 'cce-gpu'
+    - plugins:
+        - name: 'nodelocalvolume'
+        - name: 'nodeemptydirvolume'
+        - name: 'nodeCSIscheduling'
+        - name: 'networkresource'
+server_cert: ''
+server_key: ''</pre>
+
+<div class="tablenoborder"><a name="cce_10_0193__table562185146"></a><a name="table562185146"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0193__table562185146" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Volcano Plugins</caption><thead align="left"><tr id="cce_10_0193__row1161711510412"><th align="left" class="cellrowborder" valign="top" width="12.778722127787221%" id="mcps1.3.2.2.3.2.2.2.5.1.1"><p id="cce_10_0193__p1861712513416">Add-on</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="22.4977502249775%" id="mcps1.3.2.2.3.2.2.2.5.1.2"><p id="cce_10_0193__p56171511414">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.38666133386661%" id="mcps1.3.2.2.3.2.2.2.5.1.3"><p id="cce_10_0193__p19617157416">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.336866313368667%" id="mcps1.3.2.2.3.2.2.2.5.1.4"><p id="cce_10_0193__p13617195947">Demonstration</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0193__row9618157412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p06171553418">binpack</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p136171657420">The binpack plugin schedules pods to nodes with high resource utilization to reduce resource fragments.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><ul id="cce_10_0193__ul8870121613411"><li id="cce_10_0193__li187011617415"><strong id="cce_10_0193__b207143623242447">binpack.weight</strong>: Weight of the binpack plugin.</li><li id="cce_10_0193__li1187011161944"><strong id="cce_10_0193__b124611952122219">binpack.cpu</strong>: Ratio of CPU resources to all resources. Defaults to <strong id="cce_10_0193__b046135292211">1</strong>.</li><li id="cce_10_0193__li198711016945"><strong id="cce_10_0193__b16938118239">binpack.memory</strong>: Ratio of memory resources to all resources. Defaults to <strong id="cce_10_0193__b29351132317">1</strong>.</li><li id="cce_10_0193__li887117162043">binpack.resources:</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen4192214191819">- plugins:
+  - name: binpack
+    arguments:
+      binpack.weight: 10
+      binpack.cpu: 1
+      binpack.memory: 1
+      binpack.resources: nvidia.com/gpu, example.com/foo
+      binpack.resources.nvidia.com/gpu: 2
+      binpack.resources.example.com/foo: 3</pre>
+</td>
+</tr>
+<tr id="cce_10_0193__row13618357412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p86181651146">conformance</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p16188516417">The conformance plugin considers that the tasks in namespace <strong id="cce_10_0193__b47148763742516">kube-system</strong> have a higher priority. These tasks will not be preempted.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p86181515412">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p16618851346">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row1761812517413"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p161811515419">gang</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p7618125943">The gang plugin considers a group of pods as a whole to allocate resources.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p16181759415">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p196181751145">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row1661811514419"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p1361814510419">priority</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p96181251748">The priority plugin schedules pods based on the custom workload priority.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p76181151248">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p14618253419">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row5618351648"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p16181751412">overcommit</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p176181757410">Resources in a cluster are scheduled after being accumulated in a certain multiple to improve the workload enqueuing efficiency. If all workloads are Deployments, remove this plugin or set the raising factor to <strong id="cce_10_0193__b159954622942558">2.0</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p146188516411"><strong id="cce_10_0193__b3061031494268">overcommit-factor</strong>: Raising factor. Defaults to <strong id="cce_10_0193__b3270523314268">1.2</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen1943123716187">- plugins:
+  - name: overcommit
+    arguments:
+      overcommit-factor: 2.0</pre>
+</td>
+</tr>
+<tr id="cce_10_0193__row10618105849"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p9618952417">drf</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p4618652418">The DRF plugin schedules resources based on the container group Domaint Resource. The smallest Domaint Resource would be selected for priority scheduling.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p46181351549">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p11618355418">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row2618251544"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p5618551445">predicates</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p166184512417">Determines whether a task is bound to a node by using a series of evaluation algorithms, such as node/pod affinity, taint tolerance, node port repetition, volume limits, and volume zone matching.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p18618105642">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p12618659419">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row14619155343"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p7619151411">nodeorder</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p361975849">The nodeorder plugin scores all nodes for a task by using a series of scoring algorithms.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><ul id="cce_10_0193__ul1127020488717"><li id="cce_10_0193__li1127014810719"><strong id="cce_10_0193__b202507265242655">nodeaffinity.weight</strong>: Pods are scheduled based on the node affinity. Defaults to <strong id="cce_10_0193__b9523119842655">1</strong>.</li><li id="cce_10_0193__li32701348977"><strong id="cce_10_0193__b2305621664275">podaffinity.weight</strong>: Pods are scheduled based on the pod affinity. Defaults to <strong id="cce_10_0193__b2523397624275">1</strong>.</li><li id="cce_10_0193__li162701248374"><strong id="cce_10_0193__b42769641742714">leastrequested.weight</strong>: Pods are scheduled to the node with the least resources. Defaults to <strong id="cce_10_0193__b201873097842714">1</strong>.</li><li id="cce_10_0193__li527012481179"><strong id="cce_10_0193__b136116848842725">balancedresource.weight</strong>: Pods are scheduled to the node with balanced resource. Defaults to <strong id="cce_10_0193__b211551392442725">1</strong>.</li><li id="cce_10_0193__li9270948670"><strong id="cce_10_0193__b167593168642737">mostrequested.weight</strong>: Pods are scheduled to the node with the most requested resources. Defaults to <strong id="cce_10_0193__b58636053242737">0</strong>.</li><li id="cce_10_0193__li42703481973"><strong id="cce_10_0193__b182899724342747">tainttoleration.weight</strong>: Pods are scheduled to the node with a high taint tolerance. Defaults to <strong id="cce_10_0193__b68931403942747">1</strong>.</li><li id="cce_10_0193__li427094816710"><strong id="cce_10_0193__b125110500242758">imagelocality.weight</strong>: Pods are scheduled to the node where the required images exist. Defaults to <strong id="cce_10_0193__b106348447042758">1</strong>.</li><li id="cce_10_0193__li13270948177"><strong id="cce_10_0193__b10668722594289">selectorspread.weight</strong>: Pods are evenly scheduled to different nodes. Defaults to <strong id="cce_10_0193__b11973613734289">0</strong>.</li><li id="cce_10_0193__li7270948875"><strong id="cce_10_0193__b119998610442819">volumebinding.weight</strong>: Pods are scheduled to the node with the local PV delayed binding policy. Defaults to <strong id="cce_10_0193__b30967323642819">1</strong>.</li><li id="cce_10_0193__li927017481271"><strong id="cce_10_0193__b156729846042830">podtopologyspread.weight</strong>: Pods are scheduled based on the pod topology. Defaults to <strong id="cce_10_0193__b44035366942830">2</strong>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen1171374419183">- plugins:
+  - name: nodeorder
+    arguments:
+      leastrequested.weight: 1
+      mostrequested.weight: 0
+      nodeaffinity.weight: 1
+      podaffinity.weight: 1
+      balancedresource.weight: 1
+      tainttoleration.weight: 1
+      imagelocality.weight: 1
+      volumebinding.weight: 1
+      podtopologyspread.weight: 2</pre>
+</td>
+</tr>
+<tr id="cce_10_0193__row156191958412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p17619551441">cce-gpu-topology-predicate</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p176191252412">GPU-topology scheduling preselection algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p161965649">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p10619115447">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row10619851748"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p11619151648">cce-gpu-topology-priority</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p161925843">GPU-topology scheduling priority algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p10619752413">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p19619185844">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row146201351747"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p11619851345">cce-gpu</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p56191451643">Works with the gpu add-on of CCE to support GPU resource allocation and decimal GPU configuration.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p3619185643">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p136201553415">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row96201451643"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p2620175142">numaaware</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p1062055244">NUMA topology scheduling</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p6620552412">weight: Weight of the numa-aware plugin.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p3620135947">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row5620125141"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p18620251413">networkresource</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p17620651046">The ENI requirement node can be preselected and filtered. The parameters are transferred by CCE and do not need to be manually configured.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p1762035945">NetworkType: Network type (eni or vpc-router).</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p106208519410">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row1562017510417"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p1762035443">nodelocalvolume</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p66201557413">The nodelocalvolume plugin filters out nodes that do not meet local volume requirements can be filtered out.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p7620357412">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p116203518416">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row86211951949"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p0621145648">nodeemptydirvolume</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p186219515411">The nodeemptydirvolume plugin filters out nodes that do not meet the emptyDir requirements.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p12621351147">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p106211151845">-</p>
+</td>
+</tr>
+<tr id="cce_10_0193__row15621957412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p126218515417">nodeCSIscheduling</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p46211852047">The nodeCSIscheduling plugin filters out nodes that have the everest component exception.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p12621105844">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p362113515411">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0193__li9455819152615"><span>Click <span class="uicontrol" id="cce_10_0193__uicontrol48361825335"><b>Install</b></span>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0193__section03891044143310"><h4 class="sectiontitle">Modifying the volcano-scheduler Configuration Using the Console</h4><p id="cce_10_0193__p664605632519">Volcano allows you to configure the scheduler during installation, upgrade, and editing. The configuration will be synchronized to volcano-scheduler-configmap.</p>
+<p id="cce_10_0193__p6646145622517">This section describes how to configure the volcano scheduler.</p>
+<div class="note" id="cce_10_0193__note13388133393710"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0193__p83326372378">Only Volcano of v1.7.1 and later support this function. On the new plug-in page, options such as <strong id="cce_10_0193__b72321884578">plugins.eas_service</strong> and <strong id="cce_10_0193__b11600171216572">resource_exporter_enable</strong> are replaced by <strong id="cce_10_0193__b1670620105715">default_scheduler_conf</strong>.</p>
+</div></div>
+<p id="cce_10_0193__p65461337133920">Log in to the CCE console and access the cluster console. Choose <strong id="cce_10_0193__b0255820105817">Add-ons</strong> in the navigation pane. On the right of the page, locate <strong id="cce_10_0193__b55460376395">volcano</strong> and click <strong id="cce_10_0193__b92052461112">Install</strong> or <strong id="cce_10_0193__b195974481813">Upgrade</strong>. In the <strong id="cce_10_0193__b1743152310610">Parameters</strong> area, configure the volcano scheduler parameters.</p>
+<ul id="cce_10_0193__ul6676425408"><li id="cce_10_0193__li46762264018">Using <strong id="cce_10_0193__b073919506719">resource_exporter</strong>:<pre class="screen" id="cce_10_0193__screen7651947143817">{
+    "ca_cert": "",
+    "default_scheduler_conf": {
+        "actions": "allocate, backfill",
+        "tiers": [
+            {
+                "plugins": [
+                    {
+                        "name": "priority"
+                    },
+                    {
+                        "name": "gang"
+                    },
+                    {
+                        "name": "conformance"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "drf"
+                    },
+                    {
+                        "name": "predicates"
+                    },
+                    {
+                        "name": "nodeorder"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "cce-gpu-topology-predicate"
+                    },
+                    {
+                        "name": "cce-gpu-topology-priority"
+                    },
+                    {
+                        "name": "cce-gpu"
+                    },
+                    {
+                        "name": "numa-aware" # add this also enable resource_exporter
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "nodelocalvolume"
+                    },
+                    {
+                        "name": "nodeemptydirvolume"
+                    },
+                    {
+                        "name": "nodeCSIscheduling"
+                    },
+                    {
+                        "name": "networkresource"
+                    }
+                ]
+            }
+        ]
+    },
+    "server_cert": "",
+    "server_key": ""
+}</pre>
+<p id="cce_10_0193__p20961144974013">After this function is enabled, you can use the functions of the numa-aware plug-in and resource_exporter at the same time.</p>
+</li></ul>
+<ul id="cce_10_0193__ul285141218409"><li id="cce_10_0193__li885161284012">Using <strong id="cce_10_0193__b113584718911">eas_service</strong>:<pre class="screen" id="cce_10_0193__screen171798438333">{
+    "ca_cert": "",
+    "default_scheduler_conf": {
+        "actions": "allocate, backfill",
+        "tiers": [
+            {
+                "plugins": [
+                    {
+                        "name": "priority"
+                    },
+                    {
+                        "name": "gang"
+                    },
+                    {
+                        "name": "conformance"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "drf"
+                    },
+                    {
+                        "name": "predicates"
+                    },
+                    {
+                        "name": "nodeorder"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "cce-gpu-topology-predicate"
+                    },
+                    {
+                        "name": "cce-gpu-topology-priority"
+                    },
+                    {
+                        "name": "cce-gpu"
+                    },
+                    {
+                        "name": "eas",
+                        "custom": {
+                            "availability_zone_id": "",
+                            "driver_id": "",
+                            "endpoint": "",
+                            "flavor_id": "",
+                            "network_type": "",
+                            "network_virtual_subnet_id": "",
+                            "pool_id": "",
+                            "project_id": "",
+                            "secret_name": "eas-service-secret"
+                        }
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "nodelocalvolume"
+                    },
+                    {
+                        "name": "nodeemptydirvolume"
+                    },
+                    {
+                        "name": "nodeCSIscheduling"
+                    },
+                    {
+                        "name": "networkresource"
+                    }
+                ]
+            }
+        ]
+    },
+    "server_cert": "",
+    "server_key": ""
+}</pre>
+</li><li id="cce_10_0193__li46361829114014">Using <strong id="cce_10_0193__b11426650161013">ief</strong>:<pre class="screen" id="cce_10_0193__screen018619123618">{
+    "ca_cert": "",
+    "default_scheduler_conf": {
+        "actions": "allocate, backfill",
+        "tiers": [
+            {
+                "plugins": [
+                    {
+                        "name": "priority"
+                    },
+                    {
+                        "name": "gang"
+                    },
+                    {
+                        "name": "conformance"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "drf"
+                    },
+                    {
+                        "name": "predicates"
+                    },
+                    {
+                        "name": "nodeorder"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "cce-gpu-topology-predicate"
+                    },
+                    {
+                        "name": "cce-gpu-topology-priority"
+                    },
+                    {
+                        "name": "cce-gpu"
+                    },
+                    {
+                        "name": "ief",
+                        "enableBestNode": true
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "nodelocalvolume"
+                    },
+                    {
+                        "name": "nodeemptydirvolume"
+                    },
+                    {
+                        "name": "nodeCSIscheduling"
+                    },
+                    {
+                        "name": "networkresource"
+                    }
+                ]
+            }
+        ]
+    },
+    "server_cert": "",
+    "server_key": ""
+}</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0193__section101061845325"><h4 class="sectiontitle">Retaining the Original volcano-scheduler-configmap Configuration</h4><p id="cce_10_0193__p83411927144419">If you want to use the original configuration after the plug-in is upgraded, perform the following steps:</p>
+<ol id="cce_10_0193__ol432221084720"><li id="cce_10_0193__li1032219103474"><span>Check and back up the original volcano-scheduler-configmap configuration.</span><p><div class="p" id="cce_10_0193__p172781138164812">Example:<pre class="screen" id="cce_10_0193__screen86139373480"># kubectl edit cm volcano-scheduler-configmap -n kube-system
+apiVersion: v1
+data:
+  default-scheduler.conf: |-
+    actions: "enqueue, allocate, backfill"
+    tiers:
+    - plugins:
+      - name: priority
+      - name: gang
+      - name: conformance
+    - plugins:
+      - name: drf
+      - name: predicates
+      - name: nodeorder
+      - name: binpack
+        arguments:
+          binpack.cpu: 100
+          binpack.weight: 10
+          binpack.resources: nvidia.com/gpu
+          binpack.resources.nvidia.com/gpu: 10000
+    - plugins:
+      - name: cce-gpu-topology-predicate
+      - name: cce-gpu-topology-priority
+      - name: cce-gpu
+    - plugins:
+      - name: nodelocalvolume
+      - name: nodeemptydirvolume
+      - name: nodeCSIscheduling
+      - name: networkresource</pre>
+</div>
+</p></li><li id="cce_10_0193__li1032951817475"><span>Enter the customized content in the <span class="uicontrol" id="cce_10_0193__uicontrol177321946134810"><b>Parameters</b></span> on the console.</span><p><pre class="screen" id="cce_10_0193__screen3136320153712">{
+    "ca_cert": "",
+    "default_scheduler_conf": {
+        "actions": "enqueue, allocate, backfill",
+        "tiers": [
+            {
+                "plugins": [
+                    {
+                        "name": "priority"
+                    },
+                    {
+                        "name": "gang"
+                    },
+                    {
+                        "name": "conformance"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "drf"
+                    },
+                    {
+                        "name": "predicates"
+                    },
+                    {
+                        "name": "nodeorder"
+                    },
+                    {
+                        "name": "binpack",
+                        "arguments": {
+                            "binpack.cpu": 100,
+                            "binpack.weight": 10,
+                            "binpack.resources": "nvidia.com/gpu",
+                            "binpack.resources.nvidia.com/gpu": 10000
+                        }
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "cce-gpu-topology-predicate"
+                    },
+                    {
+                        "name": "cce-gpu-topology-priority"
+                    },
+                    {
+                        "name": "cce-gpu"
+                    }
+                ]
+            },
+            {
+                "plugins": [
+                    {
+                        "name": "nodelocalvolume"
+                    },
+                    {
+                        "name": "nodeemptydirvolume"
+                    },
+                    {
+                        "name": "nodeCSIscheduling"
+                    },
+                    {
+                        "name": "networkresource"
+                    }
+                ]
+            }
+        ]
+    },
+    "server_cert": "",
+    "server_key": ""
+}</pre>
+<div class="note" id="cce_10_0193__note75531535194010"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0193__p10553163513402">When this function is used, the original content in volcano-scheduler-configmap will be overwritten. Therefore, you must check whether volcano-scheduler-configmap has been modified during the upgrade. If yes, synchronize the modification to the upgrade page.</p>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0197.html b/docs/cce/umn/cce_10_0197.html
new file mode 100644
index 00000000..1c7b8d84
--- /dev/null
+++ b/docs/cce/umn/cce_10_0197.html
@@ -0,0 +1,180 @@
+<a name="cce_10_0197"></a><a name="cce_10_0197"></a>
+
+<h1 class="topictitle1">Upgrade Overview</h1>
+<div id="body1561702937747"><p id="cce_10_0197__p1684939205015">To enable interoperability from one Kubernetes installation to the next, you must upgrade your Kubernetes clusters before the maintenance period ends.</p>
+<p id="cce_10_0197__p8592859164810">After the latest Kubernetes version is available in CCE, CCE will describe the changes in this version.</p>
+<p id="cce_10_0197__p734714174211">You can use the CCE console to upgrade the Kubernetes version of a cluster.</p>
+<p id="cce_10_0197__p077764404910">An upgrade flag will be displayed on the cluster card view if there is a new version for the cluster to upgrade.</p>
+<p id="cce_10_0197__p19160184914478"><strong id="cce_10_0197__b1142012715314">How to check:</strong></p>
+<p id="cce_10_0197__p5663154019473">Log in to the CCE console and check whether the message "New version available" is displayed in the lower left corner of the cluster. If yes, the cluster can be upgraded. If no, the cluster cannot be upgraded.</p>
+<div class="fignone" id="cce_10_0197__fig121651550142417"><span class="figcap"><b>Figure 1 </b>Cluster with the upgrade flag</span><br><span><img id="cce_10_0197__image18285182115388" src="en-us_image_0000001482796460.png"></span></div>
+<div class="section" id="cce_10_0197__section19981121648"><a name="cce_10_0197__section19981121648"></a><a name="section19981121648"></a><h4 class="sectiontitle">Cluster Upgrade</h4><p id="cce_10_0197__p1493653516466">The following table describes the target version to which each cluster version can be upgraded, the supported upgrade modes, and upgrade impacts.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0197__table8890112518476" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster upgrade paths and impacts</caption><thead align="left"><tr id="cce_10_0197__row089172514470"><th align="left" class="cellrowborder" valign="top" width="16.13%" id="mcps1.3.8.3.2.5.1.1"><p id="cce_10_0197__p13891182554711">Source Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.32%" id="mcps1.3.8.3.2.5.1.2"><p id="cce_10_0197__p108911425144718">Target Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.16%" id="mcps1.3.8.3.2.5.1.3"><p id="cce_10_0197__p489119252474">Upgrade Modes</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="48.39%" id="mcps1.3.8.3.2.5.1.4"><p id="cce_10_0197__p68915253479">Impacts</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0197__row19924194410388"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_10_0197__p199161534183911">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_10_0197__p109249445384">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_10_0197__p892544412383">In-place upgrade</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_10_0197__p1925104493814">You need to learn about the differences between versions. For details, see <a href="#cce_10_0197__section191131551162610">Precautions for Major Version Upgrade</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0197__row241985117714"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_10_0197__p11301919817">v1.17</p>
+<p id="cce_10_0197__p1834222343618">v1.15</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_10_0197__p13301121885">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_10_0197__p1330116118818">In-place upgrade</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_10_0197__p103011712816">You need to learn about the differences between versions. For details, see <a href="#cce_10_0197__section191131551162610">Precautions for Major Version Upgrade</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0197__row8891122514474"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_10_0197__p16913174345011">v1.13</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_10_0197__p0911343135016">v1.15</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_10_0197__p147801018192410">Rolling upgrade</p>
+<p id="cce_10_0197__p1091144355018">Replace upgrade</p>
+</td>
+<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><ul id="cce_10_0197__ul93384752413"><li id="cce_10_0197__li1433134720247"><strong id="cce_10_0197__b178083817819">proxy</strong> in the coredns add-on cannot be configured and needs to be replaced with <strong id="cce_10_0197__b188063811812">forward</strong>.</li><li id="cce_10_0197__li1033154702417">The storage add-on is changed from storage-driver to everest.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0197__section18921193519591"><h4 class="sectiontitle">Upgrade Modes</h4><p id="cce_10_0197__p175765218558">The upgrade processes are the same for master nodes. The differences between the upgrade modes of worker nodes are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0197__table19092334346" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Differences between upgrade modes and their advantages and disadvantages</caption><thead align="left"><tr id="cce_10_0197__row109098339343"><th align="left" class="cellrowborder" valign="top" width="15.079999999999998%" id="mcps1.3.9.3.2.5.1.1"><p id="cce_10_0197__p209092033123412">Upgrade Mode</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="32.35%" id="mcps1.3.9.3.2.5.1.2"><p id="cce_10_0197__p890913373416">Method</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.58%" id="mcps1.3.9.3.2.5.1.3"><p id="cce_10_0197__p290993317341">Advantage</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.990000000000002%" id="mcps1.3.9.3.2.5.1.4"><p id="cce_10_0197__p149091833203415">Disadvantage</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0197__row1275331204518"><td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.9.3.2.5.1.1 "><p id="cce_10_0197__p12753201194514"><strong id="cce_10_0197__b1171511161592">In-place upgrade</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="32.35%" headers="mcps1.3.9.3.2.5.1.2 "><p id="cce_10_0197__p19376171164519">Kubernetes components, network components, and CCE management components are upgraded on the node. During the upgrade, service pods and networks are not affected. The <strong id="cce_10_0197__b7379432675">SchedulingDisabled</strong> label will be added to all existing nodes. After the upgrade is complete, you can properly use existing nodes.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.58%" headers="mcps1.3.9.3.2.5.1.3 "><p id="cce_10_0197__p1330191818456">You do not need to migrate services, ensuring service continuity.</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.990000000000002%" headers="mcps1.3.9.3.2.5.1.4 "><p id="cce_10_0197__p2753911455">In-place upgrade does not upgrade the OS of a node. If you want to upgrade the OS, clear the corresponding node data after the node upgrade is complete and reset the node to upgrade the OS to a new version.</p>
+</td>
+</tr>
+<tr id="cce_10_0197__row12149149143118"><td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.9.3.2.5.1.1 "><p id="cce_10_0197__p109101833103417"><strong id="cce_10_0197__b179801047195113">Rolling upgrade</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="32.35%" headers="mcps1.3.9.3.2.5.1.2 "><p id="cce_10_0197__p891043317346">Only the Kubernetes components and certain network components are upgraded on the node. The <strong id="cce_10_0197__b1651218195717">SchedulingDisabled</strong> label will be added to all existing nodes to ensure that the running applications are not affected.</p>
+<div class="notice" id="cce_10_0197__note3167480559"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0197__ul818525295519"><li id="cce_10_0197__li239114549556"><strong id="cce_10_0197__b1290164417571">After the upgrade is complete, you need to manually create nodes and gradually release the old nodes</strong>, thereby migrating your applications to the new nodes. In this mode, you can control the upgrade process.</li></ul>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="26.58%" headers="mcps1.3.9.3.2.5.1.3 "><p id="cce_10_0197__p19910113393413">Services are not interrupted.</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.990000000000002%" headers="mcps1.3.9.3.2.5.1.4 "><ul id="cce_10_0197__ul14505151414115"><li id="cce_10_0197__li135052141315"><strong id="cce_10_0197__b3681111202214">After the upgrade is complete, you need to manually create nodes and gradually release the old nodes.</strong> The new nodes are billed additionally. After services are migrated to the new nodes, the old nodes can be deleted.</li></ul>
+<ul id="cce_10_0197__ul861481214"><li id="cce_10_0197__li1218510529557">After the rolling upgrade is complete, if you want to continue the upgrade to a later version, you need to reset the old nodes first. Otherwise, the pre-upgrade check cannot be passed. Services may be interrupted during the upgrade.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0197__row391043317349"><td class="cellrowborder" valign="top" width="15.079999999999998%" headers="mcps1.3.9.3.2.5.1.1 "><p id="cce_10_0197__p49104333342"><strong id="cce_10_0197__b1597612242551">Replace upgrade</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="32.35%" headers="mcps1.3.9.3.2.5.1.2 "><p id="cce_10_0197__p1391043353413">The latest worker node image is used to reset the node OS.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.58%" headers="mcps1.3.9.3.2.5.1.3 "><p id="cce_10_0197__p89109331348">This is the fastest upgrade mode and requires few manual interventions.</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.990000000000002%" headers="mcps1.3.9.3.2.5.1.4 "><p id="cce_10_0197__p2910153333419">Data or configurations on the node will be lost, and services will be interrupted for a period of time.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0197__section191131551162610"><a name="cce_10_0197__section191131551162610"></a><a name="section191131551162610"></a><h4 class="sectiontitle">Precautions for Major Version Upgrade</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0197__table117860195275" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0197__row5786131912271"><th align="left" class="cellrowborder" valign="top" width="12.6%" id="mcps1.3.10.2.1.4.1.1"><p id="cce_10_0197__p664432214415">Upgrade Path</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="42.370000000000005%" id="mcps1.3.10.2.1.4.1.2"><p id="cce_10_0197__p1778611912715">Difference</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="45.03%" id="mcps1.3.10.2.1.4.1.3"><p id="cce_10_0197__p1378618194277">Self-Check</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0197__row976811212456"><td class="cellrowborder" rowspan="2" valign="top" width="12.6%" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p995916289455">v1.19 to v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p183801149459">The bug of <strong id="cce_10_0197__b5363111110127">exec probe timeouts</strong> is fixed in Kubernetes 1.21. Before this bug fix, the exec probe does not consider the <strong id="cce_10_0197__b136431120121">timeoutSeconds</strong> field. Instead, the probe will run indefinitely, even beyond its configured deadline. It will stop until the result is returned. If this field is not specified, the default value <strong id="cce_10_0197__b6503101241313">1</strong> is used. This field takes effect after the upgrade. If the probe runs over 1 second, the application health check may fail and the application may restart frequently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.10.2.1.4.1.3 "><p id="cce_10_0197__p1638021424519">Before the upgrade, check whether the timeout is properly set for the exec probe.</p>
+</td>
+</tr>
+<tr id="cce_10_0197__row129432109456"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p11380131412451">kube-apiserver of CCE 1.19 or later requires that the Subject Alternative Names (SANs) field be configured for the certificate of your webhook server. Otherwise, kube-apiserver fails to call the webhook server after the upgrade, and containers cannot be started properly.</p>
+<p id="cce_10_0197__p3380181414515">Root cause: X.509 <a href="https://golang.google.cn/doc/go1.15#commonname" target="_blank" rel="noopener noreferrer">CommonName</a> is discarded in Go 1.15. kube-apiserver of CCE 1.19 is compiled using Go 1.15. If your webhook certificate does not have SANs, kube-apiserver does not process the <strong id="cce_10_0197__b5961742201319">CommonName</strong> field of the X.509 certificate as the host name by default. As a result, the authentication fails.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p838171454512">Before the upgrade, check whether the SAN field is configured in the certificate of your webhook server.</p>
+<ul id="cce_10_0197__ul6381101434513"><li id="cce_10_0197__li10381131494516">If you do not have your own webhook server, you can skip this check.</li><li id="cce_10_0197__li20381191424513">If the field is not set, you are advised to use the SAN field to specify the IP address and domain name supported by the certificate.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0197__row37702011134510"><td class="cellrowborder" rowspan="4" valign="top" width="12.6%" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p16885172015465">v1.15 to v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p1332891194611">The control plane of CCE 1.19 is incompatible with Kubelet 1.15. If the master node fails to be upgraded or the node to be upgraded restarts after the master node is successfully upgraded, there is a high probability that the node is in the <strong id="cce_10_0197__b193891345201513">NotReady</strong> status.</p>
+<p id="cce_10_0197__p163281511144611">There is a high probability that kubelet restarts on the node that fails to be upgraded, triggering the node registration process. The default registration labels of kubelet 1.15 (<strong id="cce_10_0197__b9869121212119">failure-domain.beta.kubernetes.io/is-baremetal</strong> and <strong id="cce_10_0197__b5978171582114">kubernetes.io/availablezone</strong>) are regarded as an invalid label by kube-apiserver 1.19.</p>
+<p id="cce_10_0197__p13281811164612">The valid labels in v1.19 are <strong id="cce_10_0197__b135215338224">node.kubernetes.io/baremetal</strong> and <strong id="cce_10_0197__b91732036182216">failure-domain.beta.kubernetes.io/zone</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.10.2.1.4.1.3 "><ol id="cce_10_0197__ol6328121174611"><li id="cce_10_0197__li6328131194611">In normal cases, this scenario is not triggered.</li><li id="cce_10_0197__li63281311194611">After the master node is upgraded, do not suspend the upgrade. Upgrade the node quickly.</li><li id="cce_10_0197__li1632821114619">If a node fails to be upgraded and cannot be restored, evict applications on the node as soon as possible. Contact technical support and skip the node upgrade. After the upgrade is complete, reset the node.</li></ol>
+</td>
+</tr>
+<tr id="cce_10_0197__row71567126452"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p1432891124613">In CCE 1.15 and 1.19 clusters, the Docker storage driver file system is switched from XFS to Ext4. As a result, the import package sequence in the pods of the upgraded Java application may be abnormal, causing pod exceptions.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p18328111174613">Before the upgrade, check the Docker configuration file <strong id="cce_10_0197__b1820571616257">/etc/docker/daemon.json</strong> on the node. Check whether the value of <strong id="cce_10_0197__b11640123416255">dm.fs</strong> is <strong id="cce_10_0197__b186411234142510">xfs</strong>.</p>
+<ul id="cce_10_0197__ul18328141164618"><li id="cce_10_0197__li1832871134620">If the value is <strong id="cce_10_0197__b1959536102514">ext4</strong> or the storage driver is Overlay, you can skip the next steps.</li><li id="cce_10_0197__li183281311114620">If the value is <strong id="cce_10_0197__b1191204142517">xfs</strong>, you are advised to deploy applications in the cluster of the new version in advance to test whether the applications are compatible with the new cluster version.</li></ul>
+<pre class="screen" id="cce_10_0197__screen20328211104610">{
+      "storage-driver": "devicemapper",
+      "storage-opts": [
+      "dm.thinpooldev=/dev/mapper/vgpaas-thinpool",
+      "dm.use_deferred_removal=true",
+      "dm.fs=xfs",
+      "dm.use_deferred_deletion=true"
+      ]
+}</pre>
+</td>
+</tr>
+<tr id="cce_10_0197__row1456761216454"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p732916111466">kube-apiserver of CCE 1.19 or later requires that the Subject Alternative Names (SANs) field be configured for the certificate of your webhook server. Otherwise, kube-apiserver fails to call the webhook server after the upgrade, and containers cannot be started properly.</p>
+<p id="cce_10_0197__p16329131117466">Root cause: X.509 <a href="https://golang.google.cn/doc/go1.15#commonname" target="_blank" rel="noopener noreferrer">CommonName</a> is discarded in Go 1.15. kube-apiserver of CCE 1.19 is compiled using Go 1.15. The <strong id="cce_10_0197__b1633316322611">CommonName</strong> field is processed as the host name. As a result, the authentication fails.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p532981113466">Before the upgrade, check whether the SAN field is configured in the certificate of your webhook server.</p>
+<ul id="cce_10_0197__ul03291711184620"><li id="cce_10_0197__li163292113465">If you do not have your own webhook server, you can skip this check.</li><li id="cce_10_0197__li15329111194610">If the field is not set, you are advised to use the SAN field to specify the IP address and domain name supported by the certificate.</li></ul>
+<div class="notice" id="cce_10_0197__note13297117462"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0197__p14329151154616">To mitigate the impact of version differences on cluster upgrade, CCE performs special processing during the upgrade from 1.15 to 1.19 and still supports certificates without SANs. However, no special processing is required for subsequent upgrades. You are advised to rectify your certificate as soon as possible.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0197__row109371087465"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p532919114464">In clusters of v1.17.17 and later, CCE automatically creates pod security policies (PSPs) for you, which restrict the creation of pods with unsafe configurations, for example, pods for which <strong id="cce_10_0197__b137991220142616">net.core.somaxconn</strong> under a sysctl is configured in the security context.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p14329131144614">After an upgrade, you can allow insecure system configurations as required. For details, see <a href="cce_10_0275.html">Configuring a Pod Security Policy</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0197__row1635249104620"><td class="cellrowborder" valign="top" width="12.6%" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p1535484014613">v1.13 to v1.15</p>
+</td>
+<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p1887274811466">After a VPC network cluster is upgraded, the master node occupies an extra CIDR block due to the upgrade of network components. If no container CIDR block is available for the new node, the pod scheduled to the node cannot run.</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.10.2.1.4.1.3 "><p id="cce_10_0197__p1487219485469">Generally, this problem occurs when the nodes in the cluster are about to fully occupy the container CIDR block. For example, the container CIDR block is 10.0.0.0/16, the number of available IP addresses is 65,536, and the VPC network is allocated a CIDR block with the fixed size (using the mask to determine the maximum number of container IP addresses allocated to each node). If the upper limit is 128, the cluster supports a maximum of 512 (65536/128) nodes, including the three master nodes. After the cluster is upgraded, each of the three master nodes occupies one CIDR block. As a result, 506 nodes are supported.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0198.html b/docs/cce/umn/cce_10_0198.html
new file mode 100644
index 00000000..711b41f2
--- /dev/null
+++ b/docs/cce/umn/cce_10_0198.html
@@ -0,0 +1,132 @@
+<a name="cce_10_0198"></a><a name="cce_10_0198"></a>
+
+<h1 class="topictitle1">Adding Nodes for Management</h1>
+<div id="body1568708776064"><div class="section" id="cce_10_0198__section149416592348"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0198__p1248555103212">In CCE, you can <a href="cce_10_0363.html">Creating a Node</a> or add existing nodes (ECSs) into your cluster.</p>
+<div class="notice" id="cce_10_0198__note1330184411443"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0198__ul633194413448"><li id="cce_10_0198__li780816820332">While an ECS is being accepted into a cluster, the operating system of the ECS will be reset to the standard OS image provided by CCE to ensure node stability. The CCE console prompts you to select the operating system and the login mode during the reset.</li><li id="cce_10_0198__li444515326218">The system disk and data disk of an ECS will be formatted while the ECS is being accepted into a cluster. Ensure that information in the disks has been backed up.</li><li id="cce_10_0198__li64453322214">While an ECS is being accepted into a cluster, do not perform any operation on the ECS through the ECS console.</li></ul>
+</div></div>
+</div>
+<div class="section" id="cce_10_0198__section11440230173714"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0198__ul2953113112618"><li id="cce_10_0198__li69535319266">The cluster version must be 1.15 or later.</li><li id="cce_10_0198__li74971558359">If the password or key has been set when a VM node is created, the VM node can be accepted into a cluster 10 minutes after it is available. During the management, the original password or key will become invalid. You need to reset the password or key.</li><li id="cce_10_0198__li77636425110">Nodes in a CCE Turbo cluster must support sub-ENIs or be bound to at least 16 ENIs. For details about the node specifications, see the nodes that can be selected on the console when you create a node.</li></ul>
+</div>
+<div class="section" id="cce_10_0198__section4156147355"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0198__p1580241831016">A cloud server that meets the following conditions can be accepted:</p>
+<ul id="cce_10_0198__ul238633332817"><li id="cce_10_0198__li8766115612119">The node to be accepted must be in the <strong id="cce_10_0198__b9828916182413">Running</strong> state and not used by other clusters. In addition, the node to be accepted does not carry the CCE-Dynamic-Provisioning-Node tag.</li><li id="cce_10_0198__li5758231102718">The node to be accepted and the cluster must be in the same VPC. (If the cluster version is earlier than v1.13.10, the node to be accepted and the CCE cluster must be in the same subnet.)</li><li id="cce_10_0198__li127661756512">At least one data disk is attached to the node to be accepted. The data disk capacity is greater than or equal to 100 GB. </li><li id="cce_10_0198__li77666565110">The node to be accepted has 2-core or higher CPU, 4 GB or larger memory, and only one NIC.</li><li id="cce_10_0198__li62969501137">Only cloud servers with the same specifications, AZ, and data disk configuration can be added in batches.</li></ul>
+</div>
+<div class="section" id="cce_10_0198__section1879231103612"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0198__ol132526487363"><li id="cce_10_0198__li525217483363"><span>Log in to the CCE console and go to the cluster where the node to be managed resides.</span></li><li id="cce_10_0198__li23498253373"><span>In the navigation pane, choose <strong id="cce_10_0198__b16168162163718">Nodes</strong>. On the displayed page, click <strong id="cce_10_0198__b546514174373">Accept Node</strong> in the upper right corner.</span></li><li id="cce_10_0198__li191797585374"><span>Specify node parameters.</span><p><p id="cce_10_0198__p67901445163816"><strong id="cce_10_0198__b16317128123718">Compute Settings</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0198__table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0198__row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.2.3.2.2.2.3.1.1"><p id="cce_10_0198__p186688710581">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.2.3.2.2.2.3.1.2"><p id="cce_10_0198__p16681570588">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0198__row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.2.2.3.1.1 "><p id="cce_10_0198__p1669177185817">Specifications</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><p id="cce_10_0198__p17225521144611">Click <strong id="cce_10_0198__b183054589531">Select Cloud Server</strong> and select the servers to be accepted.</p>
+<p id="cce_10_0198__p1251181721311">You can select multiple cloud servers for batch management. However, only the cloud servers with the same specifications, AZ, and data disk configuration can be added in batches.</p>
+<p id="cce_10_0198__p1995811631516">If a cloud server contains multiple data disks, select one of them for the container runtime and kubelet.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row20701239458"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.2.2.3.1.1 "><p id="cce_10_0198__p66685314111">Container Engine</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><p id="cce_10_0198__p1015871915468">CCE clusters support Docker. Starting from CCE 1.23, containerd is supported.</p>
+<p id="cce_10_0198__p13666533417">For a CCE Turbo cluster, both <strong id="cce_10_0198__b730204645315">Docker</strong> and <strong id="cce_10_0198__b730315464538">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.2.2.3.1.1 "><p id="cce_10_0198__p176690785813">OS</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><p id="cce_10_0198__p1058345314295"><strong id="cce_10_0198__b14639171173912">Public image</strong>: Select an OS for the node.</p>
+<p id="cce_10_0198__p89866115220"><strong id="cce_10_0198__b739012233106">Private image</strong>: You can use private images.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.2.2.3.1.1 "><p id="cce_10_0198__p1917631063017">Login Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><ul id="cce_10_0198__ul158051525184"><li id="cce_10_0198__cce_10_0363_li1857913131710"><strong id="cce_10_0198__cce_10_0363_b9138131116117">Key Pair</strong><p id="cce_10_0198__cce_10_0363_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0198__cce_10_0363_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0198__cce_10_0363_cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0198__p15555174812382"><strong id="cce_10_0198__b9698153962">Storage Settings</strong></p>
+<div class="p" id="cce_10_0198__p866914735818">Configure storage resources on a node for the containers running on it.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0198__table56691276581" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0198__row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.2.3.2.4.1.2.3.1.1"><p id="cce_10_0198__p9669576584">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.2.3.2.4.1.2.3.1.2"><p id="cce_10_0198__p366912711589">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0198__row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0198__p666916719588">System Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0198__p590942616323">Directly use the system disk of the cloud server.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0198__p0669147185817">Data Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0198__p17207615113820"><strong id="cce_10_0198__b034255085317">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0198__b1034825011538">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<p id="cce_10_0198__p3752312011">Click <strong id="cce_10_0198__b291501816313">Expand</strong> and select <strong id="cce_10_0198__b325193733516">Allocate Disk Space</strong> to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</p>
+<p id="cce_10_0198__p1391618153118">For other data disks, a raw disk is created without any processing by default. You can also click <strong id="cce_10_0198__b16127101911540">Expand</strong> and select <strong id="cce_10_0198__b21351519135417">Mount Disk</strong> to mount the data disk to a specified directory. </p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0198__p44821251133819"><strong id="cce_10_0198__b15511481563">Advanced Settings</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0198__table101545619373" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0198__row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.4.2.3.2.6.2.3.1.1"><p id="cce_10_0198__p2152561377">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.4.2.3.2.6.2.3.1.2"><p id="cce_10_0198__p1515195616375">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0198__row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_10_0198__p1253915513402">Kubernetes Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_10_0198__p11258124419136">Click <strong id="cce_10_0198__b1386891911119">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0198__p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_10_0198__p25391859406">Resource Tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_10_0198__p14909254174019">You can add resource tags to classify resources.</p>
+<p id="cce_10_0198__p10327184710426">You can create <strong id="cce_10_0198__b1229534941117">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0198__p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0198__i111451122126">node id</em>" tag.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_10_0198__p55391457404">Taint</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><div class="p" id="cce_10_0198__p2875141354415">This field is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0198__ul17274222121015"><li id="cce_10_0198__li227482216106"><strong id="cce_10_0198__b315322791211">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0198__li7274112241020"><strong id="cce_10_0198__b959462991212">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0198__li2274182211010"><strong id="cce_10_0198__b1842253117126">Effect</strong>: Available options are <strong id="cce_10_0198__b18422153171218">NoSchedule</strong>, <strong id="cce_10_0198__b2042312311128">PreferNoSchedule</strong>, and <strong id="cce_10_0198__b1042343111212">NoExecute</strong>.</li></ul>
+<div class="notice" id="cce_10_0198__note77443231113"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0198__ul104271158181515"><li id="cce_10_0198__li042725811158">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-up may fail or pods cannot be scheduled onto the added nodes.</li><li id="cce_10_0198__li642712581152">After a node pool is created, you can click <strong id="cce_10_0198__b15911477124">Edit</strong> to modify its configuration. The modification will be synchronized to all nodes in the node pool.</li></ul>
+</div></div>
+</div>
+</td>
+</tr>
+<tr id="cce_10_0198__row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_10_0198__p054015516406">Max. Pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_10_0198__p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
+<p id="cce_10_0198__p272611351429">This limit prevents the node from being overloaded with pods.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_10_0198__p534319566391">Pre-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_10_0198__p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0198__p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
+</td>
+</tr>
+<tr id="cce_10_0198__row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_10_0198__p18677104643916">Post-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_10_0198__p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0198__p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0198__li161911444103817"><span>Click <strong id="cce_10_0198__b8351222185813">Next: Confirm</strong>. Click <span class="uicontrol" id="cce_10_0198__uicontrol1669041634912"><b>Submit</b></span>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0201.html b/docs/cce/umn/cce_10_0201.html
new file mode 100644
index 00000000..f3e7f52e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0201.html
@@ -0,0 +1,151 @@
+<a name="cce_10_0201"></a><a name="cce_10_0201"></a>
+
+<h1 class="topictitle1">Custom Monitoring</h1>
+<div id="body0000001176124020"><p id="cce_10_0201__p8060118">CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and then uploads the data to AOM.</p>
+<p id="cce_10_0201__p12375759104015"><span><img id="cce_10_0201__image15650732403" src="en-us_image_0000001199501262.png"></span></p>
+<p id="cce_10_0201__p1649415194016">The custom metric API of a workload can be configured when the workload is created. This section uses an Nginx application as an example to describe how to report custom metrics to AOM.</p>
+<div class="section" id="cce_10_0201__section11634016215"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0201__ul066520226214"><li id="cce_10_0201__li1935518502212">The ICAgent is compatible with the monitoring data specifications of <a href="https://prometheus.io/" target="_blank" rel="noopener noreferrer">Prometheus</a>. The custom metrics provided by pods can be collected by the ICAgent only when they meet the monitoring data specifications of Prometheus.</li><li id="cce_10_0201__li84311436320">The ICAgent supports only <a href="https://prometheus.io/docs/concepts/metric_types/" target="_blank" rel="noopener noreferrer">Gauge</a> metrics.</li><li id="cce_10_0201__li35904504518">The interval for the ICAgent to call the custom metric API is 1 minute, which cannot be changed.</li></ul>
+</div>
+<div class="section" id="cce_10_0201__section173671127160"><h4 class="sectiontitle">Prometheus Monitoring Data Collection</h4><p id="cce_10_0201__p23001123182112">Prometheus periodically calls the metric monitoring API (<span class="uicontrol" id="cce_10_0201__uicontrol1730032302117"><b>/metrics</b></span> by default) of an application to obtain monitoring data. The application needs to provide the metric monitoring API for Prometheus to call, and the monitoring data must meet the following specifications of Prometheus:</p>
+<pre class="screen" id="cce_10_0201__screen1584511211257"># TYPE nginx_connections_active gauge
+nginx_connections_active 2
+# TYPE nginx_connections_reading gauge
+nginx_connections_reading 0</pre>
+<p id="cce_10_0201__p1358113105720">Prometheus provides clients in various languages. For details about the clients, see <a href="https://prometheus.io/docs/instrumenting/clientlibs/" target="_blank" rel="noopener noreferrer">Prometheus CLIENT LIBRARIES</a>. For details about how to develop an exporter, see <a href="https://prometheus.io/docs/instrumenting/writing_exporters/" target="_blank" rel="noopener noreferrer">WRITING EXPORTERS</a>. The Prometheus community provides various third-party exporters that can be directly used. For details, see <a href="https://prometheus.io/docs/instrumenting/exporters/" target="_blank" rel="noopener noreferrer">EXPORTERS AND INTEGRATIONS</a>.</p>
+</div>
+<div class="section" id="cce_10_0201__section14984815298"><h4 class="sectiontitle">Preparing an Application</h4><p id="cce_10_0201__p869125518296">Nginx has a module named <strong id="cce_10_0201__b128477582568">ngx_http_stub_status_module</strong>, which provides basic monitoring functions. You can configure the <strong id="cce_10_0201__b12852163912617">nginx.conf</strong> file to provide an API for external systems to access Nginx monitoring data. As shown in the following figure, after the server configuration is added to <strong id="cce_10_0201__b1680965945916">http</strong>, Nginx can provide an API for external systems to access Nginx monitoring data.</p>
+<pre class="screen" id="cce_10_0201__screen1773195816508">user  nginx;
+worker_processes  auto;
+
+error_log  /var/log/nginx/error.log warn;
+pid        /var/run/nginx.pid;
+
+events {
+    worker_connections  1024;
+}
+
+http {
+    include       /etc/nginx/mime.types;
+    default_type  application/octet-stream;
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+    sendfile        on;
+    #tcp_nopush     on;
+    keepalive_timeout  65;
+    #gzip  on;
+    include /etc/nginx/conf.d/*.conf;
+
+    server {
+      listen 8080;
+      server_name  localhost;
+      location /stub_status {
+         stub_status on;
+         access_log off;
+      }
+    }
+}</pre>
+<p id="cce_10_0201__p167506382312">Save the preceding configuration to the <strong id="cce_10_0201__b14701328207">nginx.conf</strong> file and use the configuration to create a new image. The Dockerfile file is as follows:</p>
+<pre class="screen" id="cce_10_0201__screen167463401249">FROM nginx:1.21.5-alpine
+ADD nginx.conf /etc/nginx/nginx.conf
+EXPOSE 80
+CMD ["nginx", "-g", "daemon off;"]</pre>
+<p id="cce_10_0201__p1039801093816">Use the preceding Dockerfile file to build an image and upload it to SWR. The image name is <strong id="cce_10_0201__b19241320133619">nginx:exporter</strong>. </p>
+<p id="cce_10_0201__p172771624183814"><strong id="cce_10_0201__b4921171434313">docker build -t nginx:exporter .</strong></p>
+<p id="cce_10_0201__p954513547352"><strong id="cce_10_0201__b9545954133518">docker tag nginx:exporter  {swr-address}/{group}/nginx:exporter</strong></p>
+<p id="cce_10_0201__p1954516547354"><strong id="cce_10_0201__b95451354203516">docker push  {swr-address}/{group}/nginx:exporter</strong></p>
+<p id="cce_10_0201__p12187171412469">After running a container with image <strong id="cce_10_0201__b83981759163711">nginx:exporter</strong>, you can obtain Nginx monitoring data by calling http://<em id="cce_10_0201__i4495181511399">&lt;ip_address&gt;</em>:8080/stub_status. <em id="cce_10_0201__i7453132133818">&lt; ip_address &gt;</em> indicates the IP address of the container. The monitoring data is as follows:</p>
+<pre class="screen" id="cce_10_0201__screen914517252550"># curl http://127.0.0.1:8080/stub_status
+Active connections: 3 
+server accepts handled requests
+ 146269 146269 212 
+Reading: 0 Writing: 1 Waiting: 2</pre>
+</div>
+<div class="section" id="cce_10_0201__section1539954011362"><h4 class="sectiontitle">Deploying an Application</h4><p id="cce_10_0201__p13696165713362">The data format of the monitoring data provided by <strong id="cce_10_0201__b248994731115">nginx:exporter</strong> does not meet the requirements of Prometheus. You need to convert the data format to the format required by Prometheus. To convert the format of Nginx metrics, use <a href="https://github.com/nginxinc/nginx-prometheus-exporter" target="_blank" rel="noopener noreferrer"><strong id="cce_10_0201__b24336402133">nginx-prometheus-exporter</strong></a>, as shown in the following figure.</p>
+<p id="cce_10_0201__p12976173915814"><span><img id="cce_10_0201__image11567167161312" src="en-us_image_0000001243981177.png"></span></p>
+<p id="cce_10_0201__p13391926836">Deploy <strong id="cce_10_0201__b15666153321316">nginx:exporter</strong> and <strong id="cce_10_0201__b1324493616133">nginx-prometheus-exporter</strong> in the same pod.</p>
+<pre class="screen" id="cce_10_0201__screen726020139814">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: nginx-exporter
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-exporter
+  template:
+    metadata:
+      labels:
+        app: nginx-exporter
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"prometheus","path":"/metrics","port":"9113","names":""}]'
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:exporter'  # Replace it with the address of the image you uploaded to SWR.
+          resources:
+            limits:
+              cpu: 250m
+              memory: 512Mi
+            requests:
+              cpu: 250m
+              memory: 512Mi
+        - name: container-1
+          image: 'nginx/nginx-prometheus-exporter:0.9.0'
+          command:
+            - nginx-prometheus-exporter
+          args:
+            - '-nginx.scrape-uri=http://127.0.0.1:8080/stub_status'
+      imagePullSecrets:
+        - name: default-secret</pre>
+<div class="note" id="cce_10_0201__note1789303032414"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0201__p4893143011248">The nginx/nginx-prometheus-exporter:0.9.0 image needs to be pulled from the public network. Therefore, each node in the cluster must have a public IP address.</p>
+</div></div>
+<p id="cce_10_0201__p94942045392">nginx-prometheus-exporter requires a startup command. <strong id="cce_10_0201__b778519222196">nginx-prometheus-exporter -nginx.scrape-uri=http://127.0.0.1:8080/stub_status</strong> is used to obtain Nginx monitoring data.</p>
+<p id="cce_10_0201__p79431941101118">In addition, you need to add an annotation <strong id="cce_10_0201__b14505215173318">metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"prometheus","path":"/metrics","port":"9113","names":""}]'</strong> to the pod.</p>
+</div>
+<div class="section" id="cce_10_0201__section42551081185"><h4 class="sectiontitle">Verification</h4><p id="cce_10_0201__p14723430121818">After an application is deployed, you can access Nginx to construct some access data and check whether the corresponding monitoring data can be obtained in AOM.</p>
+<pre class="screen" id="cce_10_0201__screen19233548172719">$ kubectl get pod
+NAME                              READY   STATUS    RESTARTS   AGE
+nginx-exporter-78859765db-6j8sw   2/2     Running   0          4m
+$ kubectl exec -it nginx-exporter-78859765db-6j8sw -- /bin/sh
+Defaulting container name to container-0.
+Use 'kubectl describe pod/nginx-exporter-78859765db-6j8sw -n default' to see all of the containers in this pod.
+/ # curl http://localhost
+&lt;!DOCTYPE html&gt;
+&lt;html&gt;
+&lt;head&gt;
+&lt;title&gt;Welcome to nginx!&lt;/title&gt;
+&lt;style&gt;
+html { color-scheme: light dark; }
+body { width: 35em; margin: 0 auto;
+font-family: Tahoma, Verdana, Arial, sans-serif; }
+&lt;/style&gt;
+&lt;/head&gt;
+&lt;body&gt;
+&lt;h1&gt;Welcome to nginx!&lt;/h1&gt;
+&lt;p&gt;If you see this page, the nginx web server is successfully installed and
+working. Further configuration is required.&lt;/p&gt;
+
+&lt;p&gt;For online documentation and support please refer to
+&lt;a href="http://nginx.org/"&gt;nginx.org&lt;/a&gt;.&lt;br/&gt;
+Commercial support is available at
+&lt;a href="http://nginx.com/"&gt;nginx.com&lt;/a&gt;.&lt;/p&gt;
+
+&lt;p&gt;&lt;em&gt;Thank you for using nginx.&lt;/em&gt;&lt;/p&gt;
+&lt;/body&gt;
+&lt;/html&gt;
+/ #</pre>
+<p id="cce_10_0201__p102081448152912">You can see that Nginx has been accessed once.</p>
+<p id="cce_10_0201__p468512320308">Log in to AOM. In the navigation pane, choose <strong id="cce_10_0201__b13681656105512">Monitoring</strong> &gt; <strong id="cce_10_0201__b997812745618">Metric Monitoring</strong>. You can view Nginx-related metrics, for example, <strong id="cce_10_0201__b154931930175619">nginx_connections_active</strong>.</p>
+<p id="cce_10_0201__p851344583217"></p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0110.html">Monitoring and Alarm</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0205.html b/docs/cce/umn/cce_10_0205.html
new file mode 100644
index 00000000..6515a048
--- /dev/null
+++ b/docs/cce/umn/cce_10_0205.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0205"></a><a name="cce_10_0205"></a>
+
+<h1 class="topictitle1">metrics-server</h1>
+<div id="body1574828037707"><p id="cce_10_0205__p8803328425">From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly accessed by users (for example, by using the <strong id="cce_10_0205__b5101142911575">kubectl top</strong> command) or used by controllers (for example, Horizontal Pod Autoscaler) in a cluster for decision-making. The specific component is metrics-server, which is used to substitute for heapster for providing the similar functions. heapster has been gradually abandoned since v1.11.</p>
+<p id="cce_10_0205__p183161841122110">metrics-server is an aggregator for monitoring data of core cluster resources. You can quickly install this add-on on the CCE console.</p>
+<p id="cce_10_0205__p136871139141318">After metrics-server is installed, you can create an HPA policy on the <strong id="cce_10_0205__b93481922984">Workload Scaling</strong> tab page of the <strong id="cce_10_0205__b1534812214813">Auto Scaling</strong> page. For details, see <a href="cce_10_0208.html">Creating an HPA Policy for Workload Auto Scaling</a>.</p>
+<p id="cce_10_0205__p185802028346">The official community project and documentation are available at <a href="https://github.com/kubernetes-sigs/metrics-server" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes-sigs/metrics-server</a>.</p>
+<div class="section" id="cce_10_0205__section1962241123816"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0205__ol13949124616422"><li id="cce_10_0205__li13183153352515"><span>Log in to the CCE console and access the cluster console. Choose <span class="uicontrol" id="cce_10_0205__uicontrol165791523193718"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0205__b1958032353717">metrics-server</strong> on the right, and click <strong id="cce_10_0205__b1558032343718">Install</strong>.</span></li><li id="cce_10_0205__li9455819152615"><span>Select <strong id="cce_10_0205__b14135172111218">Single</strong> or <strong id="cce_10_0205__b19549182318122">HA</strong> for <strong id="cce_10_0205__b14659192661212">Add-on Specifications</strong>, and click <strong id="cce_10_0205__b14102184123">Install</strong>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0207.html b/docs/cce/umn/cce_10_0207.html
new file mode 100644
index 00000000..16957294
--- /dev/null
+++ b/docs/cce/umn/cce_10_0207.html
@@ -0,0 +1,17 @@
+<a name="cce_10_0207"></a><a name="cce_10_0207"></a>
+
+<h1 class="topictitle1">Auto Scaling</h1>
+<div id="body1569380890256"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0279.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0293.html">Scaling a Workload</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0291.html">Scaling a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0300.html">Using HPA and CA for Auto Scaling of Workloads and Nodes</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0208.html b/docs/cce/umn/cce_10_0208.html
new file mode 100644
index 00000000..e381c6ae
--- /dev/null
+++ b/docs/cce/umn/cce_10_0208.html
@@ -0,0 +1,84 @@
+<a name="cce_10_0208"></a><a name="cce_10_0208"></a>
+
+<h1 class="topictitle1">Creating an HPA Policy for Workload Auto Scaling</h1>
+<div id="body1569380890256"><p id="cce_10_0208__p1850115535712">Horizontal Pod Autoscaling (HPA) in Kubernetes implements horizontal scaling of pods. In a CCE HPA policy, you can configure different cooldown time windows and scaling thresholds for different applications based on the Kubernetes HPA.</p>
+<div class="section" id="cce_10_0208__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0208__p10614183941110">To use HPA policies, you need to install an add-on that can provide the metrics API, such as metrics-server and prometheus. </p>
+</div>
+<div class="section" id="cce_10_0208__section107429267459"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0208__ul14111945007"><li id="cce_10_0208__li191134512018">HPA policies can be created only for clusters of v1.13 or later.</li><li id="cce_10_0208__li92774437495">For clusters earlier than v1.19.10, if an HPA policy is used to scale out a workload with EVS volumes mounted, the existing pods cannot be read or written when a new pod is scheduled to another node.<p id="cce_10_0208__p11921144194914"><a name="cce_10_0208__li92774437495"></a><a name="li92774437495"></a>For clusters of v1.19.10 and later, if an HPA policy is used to scale out a workload with EVS volume mounted, a new pod cannot be started because EVS disks cannot be attached.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0208__section12371183611583"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0208__ol29784442018"><li id="cce_10_0208__li17171333183510"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0208__li3967519744"><span>In the navigation pane, choose <strong id="cce_10_0208__b13647154645715">Workload Scaling</strong>. Then click <strong id="cce_10_0208__b9999130195818">Create HPA Policy</strong> in the upper right corner.</span></li><li id="cce_10_0208__li1233834472"><span>Set policy parameters.</span><p>
+<div class="tablenoborder"><a name="cce_10_0208__table8638121213265"></a><a name="table8638121213265"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0208__table8638121213265" frame="border" border="1" rules="all"><caption><b>Table 1 </b>HPA policy parameters</caption><thead align="left"><tr id="cce_10_0208__row10638181262612"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.2.3.2.1.2.3.1.1"><p id="cce_10_0208__p1063821214265">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.2.3.2.1.2.3.1.2"><p id="cce_10_0208__p1638181232617">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0208__row1922964644615"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p9231104613468">Policy Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_10_0208__p285719544104">Name of the policy to be created. Set this parameter as required.</p>
+</td>
+</tr>
+<tr id="cce_10_0208__row12321131519262"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p14322181522614">Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_10_0208__p1950113815188">Namespace to which the workload belongs.</p>
+</td>
+</tr>
+<tr id="cce_10_0208__row1063812126263"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p15639812122620">Associated Workload</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_10_0208__p1520317181911">Workload with which the HPA policy is associated.</p>
+</td>
+</tr>
+<tr id="cce_10_0208__row6649879161231"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p1769363161231">Pod Range</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_10_0208__p833113449476">Minimum and maximum numbers of pods.</p>
+<p id="cce_10_0208__p9100682161231">When a policy is triggered, the workload pods are scaled within this range.</p>
+</td>
+</tr>
+<tr id="cce_10_0208__row22668444436"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p426616448432">Cooldown Period</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_10_0208__p1344913426116">Interval between a scale-in and a scale-out. The unit is minute. <strong id="cce_10_0208__b101931311553">The interval cannot be shorter than 1 minute.</strong></p>
+<p id="cce_10_0208__p0735245104710"><strong id="cce_10_0208__b753810511926">This parameter is supported only from clusters of v1.15 to v1.23.</strong></p>
+<p id="cce_10_0208__p142661744204313">This parameter indicates the interval between consecutive scaling operations. The cooldown period ensures that a scaling operation is initiated only when the previous one is completed and the system is running stably.</p>
+</td>
+</tr>
+<tr id="cce_10_0208__row0779182914310"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p167791329134320">Scaling Behavior</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><p id="cce_10_0208__p18780202915432"><strong id="cce_10_0208__b652715469431">This parameter is supported only in clusters of v1.25 or later.</strong></p>
+<ul id="cce_10_0208__ul22283504445"><li id="cce_10_0208__li5228550144418"><strong id="cce_10_0208__b33996508404">Default</strong>: Scales workloads using the Kubernetes default behavior. For details, see <a href="https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#default-behavior" target="_blank" rel="noopener noreferrer">Default Behavior</a>.</li><li id="cce_10_0208__li2228950144411"><strong id="cce_10_0208__b88633712431">Custom</strong>: Scales workloads using custom policies such as stabilization window, steps, and priorities. Unspecified parameters use the values recommended by Kubernetes.<ul id="cce_10_0208__ul10391244104615"><li id="cce_10_0208__li8486154011469"><strong id="cce_10_0208__b175879562458">Disable scale-out/scale-in</strong>: Select whether to disable scale-out or scale-in.</li><li id="cce_10_0208__li4918172104810"><strong id="cce_10_0208__b167251215204718">Stabilization Window</strong>: A period during which CCE continuously checks whether the metrics used for scaling keep fluctuating. CCE triggers scaling if the desired state is not maintained for the entire window. This window restricts the unwanted flapping of pod count due to metric changes.</li><li id="cce_10_0208__li91946864814"><strong id="cce_10_0208__b178651114205016">Step</strong>: specifies the scaling step. You can set the number or percentage of pods to be scaled in or out within a specified period. If there are multiple policies, you can select the policy that maximizes or minimizes the number of pods.</li></ul>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0208__row572593234714"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p1287715471508">System Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><ul id="cce_10_0208__ul56611653205511"><li id="cce_10_0208__li1266125355511"><span class="parmname" id="cce_10_0208__parmname1784758141014"><b>Metric</b></span>: You can select <span class="parmvalue" id="cce_10_0208__parmvalue867911081114"><b>CPU usage</b></span> or <span class="parmvalue" id="cce_10_0208__parmvalue3384615201118"><b>Memory usage</b></span>.<div class="note" id="cce_10_0208__note1751133503518"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0208__p12511735183515">Usage = CPUs or memory used by pods/Requested CPUs or memory.</p>
+</div></div>
+</li><li id="cce_10_0208__li9804144917352"><strong id="cce_10_0208__b1863612425345">Desired Value</strong>: Enter the desired average resource usage.<p id="cce_10_0208__p541111525356">This parameter indicates the desired value of the selected metric. Number of pods to be scaled (rounded up) = (Current metric value/Desired value) x Number of current pods</p>
+<div class="note" id="cce_10_0208__note766672912376"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0208__p4667729193716">When calculating the number of pods to be added or reduced, the HPA policy uses the maximum number of pods in the last 5 minutes.</p>
+</div></div>
+</li><li id="cce_10_0208__li2255164019367"><strong id="cce_10_0208__b0187847181310">Tolerance Range</strong>: Scaling is not triggered when the metric value is within the tolerance range. The desired value must be within the tolerance range.<p id="cce_10_0208__p795694153617">If the metric value is greater than the scale-in threshold and less than the scale-out threshold, no scaling is triggered. <strong id="cce_10_0208__b7834143383">This parameter is supported only in clusters of v1.15 or later.</strong></p>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0208__row793894095113"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.1.2.3.1.1 "><p id="cce_10_0208__p2938204045111">Custom Policy (supported only in clusters of v1.15 or later)</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.1.2.3.1.2 "><div class="note" id="cce_10_0208__note1129335335312"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0208__p52930536539">Before setting a custom policy, you need to install an add-on that supports custom metric collection in the cluster, for example, prometheus add-on.</p>
+</div></div>
+<ul id="cce_10_0208__ul785817195214"><li id="cce_10_0208__li016583510319"><strong id="cce_10_0208__b527772319815">Metric Name</strong>: name of the custom metric. You can select a name as prompted.<p id="cce_10_0208__p330220386313">For details, see <a href="cce_10_0201.html">Custom Monitoring</a>.</p>
+</li><li id="cce_10_0208__li371011356213"><strong id="cce_10_0208__b10364342142819">Metric Source</strong>: Select an object type from the drop-down list. You can select <strong id="cce_10_0208__b03705423286">Pod</strong>.</li><li id="cce_10_0208__li5392616163119"><strong id="cce_10_0208__b162781930192918">Desired Value</strong>: the average metric value of all pods. Number of pods to be scaled (rounded up) = (Current metric value/Desired value) x Number of current pods<div class="note" id="cce_10_0208__note186064548565"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0208__p5606454125616">When calculating the number of pods to be added or reduced, the HPA policy uses the maximum number of pods in the last 5 minutes.</p>
+</div></div>
+</li><li id="cce_10_0208__li38511725217"><strong id="cce_10_0208__b173281973819">Tolerance Range</strong>: Scaling is not triggered when the metric value is within the tolerance range. The desired value must be within the tolerance range.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0208__li588915953910"><span>Click <span class="uicontrol" id="cce_10_0208__uicontrol162475281382"><b>Create</b></span>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0293.html">Scaling a Workload</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0209.html b/docs/cce/umn/cce_10_0209.html
new file mode 100644
index 00000000..7bac77d6
--- /dev/null
+++ b/docs/cce/umn/cce_10_0209.html
@@ -0,0 +1,208 @@
+<a name="cce_10_0209"></a><a name="cce_10_0209"></a>
+
+<h1 class="topictitle1">Creating a Node Scaling Policy</h1>
+<div id="body1569380890256"><p id="cce_10_0209__p582015413249">CCE provides auto scaling through the <a href="cce_10_0154.html">autoscaler</a> add-on. Nodes with different specifications can be automatically added across AZs on demand.</p>
+<p id="cce_10_0209__en-us_topic_0000001137107909_p22999573442">If a node scaling policy and the configuration in the autoscaler add-on take effect at the same time, for example, there are pods that cannot be scheduled and the value of a metric reaches the threshold at the same time, scale-out is performed first for the unschedulable pods.</p>
+<ul id="cce_10_0209__en-us_topic_0000001137107909_ul8955200154519"><li id="cce_10_0209__en-us_topic_0000001137107909_li8405131518335">If the scale-out succeeds for the unschedulable pods, the system skips the metric-based rule logic and enters the next loop.</li><li id="cce_10_0209__en-us_topic_0000001137107909_li7203193203618">If the scale-out fails for the unschedulable pods, the metric-based rule is executed.</li></ul>
+<div class="section" id="cce_10_0209__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0209__p4299242191311">Before using the node scaling function, you must install the <a href="cce_10_0154.html">autoscaler</a> add-on of v1.13.8 or later.</p>
+</div>
+<div class="section" id="cce_10_0209__section154671161116"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0209__ul198142618377"><li id="cce_10_0209__li15355154373715">Auto scaling policies apply to node pools. When the number of nodes in a node pool is 0 and the scaling policy is based on CPU or memory usage, node scaling is not triggered.</li></ul>
+</div>
+<div class="section" id="cce_10_0209__section4444195220142"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0209__ol29784442018"><li id="cce_10_0209__li148293318248"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0209__li3967519744"><span>Choose <strong id="cce_10_0209__b17415920121417">Node Scaling</strong> in the navigation pane.</span><p><ul id="cce_10_0209__ul2895102913469"><li id="cce_10_0209__li10895529174618">If <span class="uicontrol" id="cce_10_0209__uicontrol178213815103"><b>Uninstalled</b></span> is displayed next to the add-on name, click <strong id="cce_10_0209__b58853891018">Install</strong>, set add-on parameters as required, and click <strong id="cce_10_0209__b689338151015">Install</strong> to install the add-on.</li><li id="cce_10_0209__li389532914466">If <span class="uicontrol" id="cce_10_0209__uicontrol415614446107"><b>Installed</b></span> is displayed next to the add-on name, the add-on has been installed.</li></ul>
+</p></li><li id="cce_10_0209__li1233834472"><span>Click <strong id="cce_10_0209__b1735993131112">Create Node Scaling Policy</strong> in the upper right corner and set the parameters as follows:</span><p><ul id="cce_10_0209__ul17966105632820"><li id="cce_10_0209__li1396619568287"><strong id="cce_10_0209__b3656118114412">Policy Name</strong>: name of the policy to be created, which can be customized.</li><li id="cce_10_0209__li179668567286"><strong id="cce_10_0209__b19311184991110">Associated Node Pools</strong>: Select the node pool to be associated. You can associate multiple node pools to use the same scaling policy.<div class="note" id="cce_10_0209__note1789113162816"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_p198781922578">Priority is now supported for node pools. CCE will select a node pool for auto scaling based on the following policies:</p>
+<ol type="a" id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_ol133814916283"><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li14381899286">CCE uses algorithms to determine whether a node pool meets the conditions to allow scheduling of a pod in pending state, including whether the node resources are greater than requested by the pod, and whether the nodeSelect, nodeAffinity, and taints meet the conditions. In addition, the node pools that fail to be scaled (due to insufficient resources or other reasons) and are still in the 15-minute cool-down interval are filtered.</li><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li8388918282">If multiple node pools meet the scaling requirements, the system checks the priority of each node pool and selects the node pool with the highest priority for scaling. The value ranges from 0 to 100 and the default priority is 0. The value 100 indicates the highest priority, and the value 0 indicates the lowest priority.</li><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li1338189132818">If multiple node pools have the same priority or no priority is configured for them, the system selects the node pool that will consume the least resources based on the configured VM specification.</li><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li0382910282">If the VM specifications of multiple node pools are the same but the node pools are deployed in different AZs, the system randomly selects a node pool to trigger scaling.</li><li id="cce_10_0209__li663914474548">If the resources of the preferred node pool are insufficient, the system automatically selects next node pool based on the priority.</li></ol>
+<p id="cce_10_0209__p07014364305">For details about the node pool priority, see <a href="cce_10_0012.html">Creating a Node Pool</a>.</p>
+</div></div>
+</li><li id="cce_10_0209__li39669567288"><strong id="cce_10_0209__b13105141142720">Rules</strong>: Click <strong id="cce_10_0209__b53511037117">Add Rule</strong>. In the dialog box displayed, set the following parameters:<p id="cce_10_0209__p1971102016286"><strong id="cce_10_0209__b46681421144">Rule Name</strong>: Enter a rule name.</p>
+<p id="cce_10_0209__p129711920172811"><strong id="cce_10_0209__b18955153710117">Rule Type</strong>: You can select <strong id="cce_10_0209__b959911421113">Metric-based</strong> or <strong id="cce_10_0209__b17771245817">Periodic</strong>. The differences between the two types are as follows:</p>
+<ul id="cce_10_0209__ul1597352072812"><li id="cce_10_0209__li1397213202289"><strong id="cce_10_0209__b1598011319536">Metric-based</strong>:<div class="p" id="cce_10_0209__p1817714544282"><strong id="cce_10_0209__b1268835520117">Condition</strong>: Select <strong id="cce_10_0209__b10461001029">CPU allocation rate</strong> or <strong id="cce_10_0209__b1947947211">Memory allocation rate</strong> and enter a value. The value must be greater than the scale-in percentage configured in the autoscaler add-on.<div class="note" id="cce_10_0209__note17972182052813"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0209__ul85014395310"><li id="cce_10_0209__li350103953119">Resource allocation (%) = Resources requested by pods in the node pool/Resources allocatable to pods in the node pool</li><li id="cce_10_0209__li1650118397311"><strong id="cce_10_0209__b15142105410618">If multiple rules meet the conditions, the rules are executed in either of the following modes:</strong><p id="cce_10_0209__p31941933210">If rules based on the <strong id="cce_10_0209__b924072417145">CPU allocation rate</strong> and <strong id="cce_10_0209__b1624015249145">memory allocation rate</strong> are configured and two or more rules meet the scale-out conditions, the rule that will add the most nodes will be executed.</p>
+<p id="cce_10_0209__p8194179193215">If a rule based on the <strong id="cce_10_0209__b1555416281348">CPU allocation rate</strong> and <strong id="cce_10_0209__b456013281845">a periodic rule</strong> are configured and they both meet the scale-out conditions, one of them will be executed randomly. The rule executed first (rule A) changes the node pool to the scaling state. As a result, the other rule (rule B) cannot be executed. After rule A is executed and the node pool status becomes normal, rule B will not be executed.</p>
+</li><li id="cce_10_0209__li9179142215243">If rules based on the <strong id="cce_10_0209__b1981125572019">CPU allocation rate</strong> and <strong id="cce_10_0209__b857045912020">memory allocation rate</strong> are configured, the policy detection period varies with the processing logic of each loop of the autoscaler add-on. Scale-out is triggered once the conditions are met, but it is constrained by other factors such as the cool-down interval and node pool status.</li></ul>
+</div></div>
+</div>
+</li><li id="cce_10_0209__li1597332019284"><strong id="cce_10_0209__b113913177298">Periodic</strong>:<p id="cce_10_0209__p427705616284"><strong id="cce_10_0209__b49851527135515">Trigger Time</strong>: You can select a specific time point every day, every week, every month, or every year.</p>
+</li></ul>
+<p id="cce_10_0209__p32851734142816"><strong id="cce_10_0209__b117075111325">Action</strong>: Set an action to be performed when the trigger condition is met.</p>
+<p id="cce_10_0209__p199732020162814">You can click <strong id="cce_10_0209__b106807498340">Add Rule</strong> again to add more node scaling policies. You can add a maximum of one CPU usage-based rule and one memory usage-based rule. The total number of rules cannot exceed 10.</p>
+</li></ul>
+</p></li><li id="cce_10_0209__li588915953910"><span>Click <span class="uicontrol" id="cce_10_0209__uicontrol19121153161214"><b>OK</b></span>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0209__section1713483143810"><h4 class="sectiontitle">Constraints on Scale-in</h4><p id="cce_10_0209__p8965138151415">You can set node scale-in policies only when installing the <a href="cce_10_0154.html">autoscaler add-on</a>.</p>
+<p id="cce_10_0209__p18601639103811">Node scale-in can be triggered only by the resource allocation rate. When CPU and memory allocation rates in a cluster are lower than the specified thresholds (set when the autoscaler add-on is installed or modified), scale-in is triggered for nodes in the node pool (this function can be disabled).</p>
+</div>
+<div class="section" id="cce_10_0209__section3613595209"><h4 class="sectiontitle">Example YAML</h4><p id="cce_10_0209__p117581998202">The following is a YAML example of a node scaling policy:</p>
+<pre class="screen" id="cce_10_0209__screen2076018942015">apiVersion: autoscaling.cce.io/v1alpha1
+kind: HorizontalNodeAutoscaler
+metadata:
+  creationTimestamp: "2020-02-13T12:47:49Z"
+  generation: 1
+  name: xxxx
+  namespace: kube-system
+  resourceVersion: "11433270"
+  selfLink: /apis/autoscaling.cce.io/v1alpha1/namespaces/kube-system/horizontalnodeautoscalers/xxxx
+  uid: c2bd1e1d-60aa-47b5-938c-6bf3fadbe91f
+spec:
+  disable: false
+  rules:
+  - action:
+      type: ScaleUp
+      unit: Node
+      value: 1
+    cronTrigger:
+      schedule: 47 20 * * *
+    disable: false
+    ruleName: cronrule
+    type: Cron
+  - action:
+      type: ScaleUp
+      unit: Node
+      value: 2
+    disable: false
+    metricTrigger:
+      metricName: Cpu
+      metricOperation: '&gt;'
+      metricValue: "40"
+      unit: Percent
+    ruleName: metricrule
+    type: Metric
+  targetNodepoolIds:
+  - 7d48eca7-3419-11ea-bc29-0255ac1001a8</pre>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0209__table18763092201"></a><a name="table18763092201"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0209__table18763092201" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0209__row12761209132012"><th align="left" class="cellrowborder" valign="top" width="39.43394339433943%" id="mcps1.3.9.2.4.1.1"><p id="cce_10_0209__p10761892207">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.121612161216124%" id="mcps1.3.9.2.4.1.2"><p id="cce_10_0209__p07611972013">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.44444444444445%" id="mcps1.3.9.2.4.1.3"><p id="cce_10_0209__p2761179192020">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0209__row876119932015"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p157612932014">spec.disable</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p187611398202">Bool</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p1476115922010">Whether to enable the scaling policy. This parameter takes effect for all rules in the policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row18761199152019"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p1076179202019">spec.rules</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p1176199132018">Array</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p4761209152012">All rules in a scaling policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row1876119912207"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p976116910202">spec.rules[x].ruleName</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p1576179142015">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p2076179192017">Rule name.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row776129162011"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p976109102012">spec.rules[x].type</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p17761899200">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p97615952019">Rule type. Currently, <strong id="cce_10_0209__b76658599236">Cron</strong> and <strong id="cce_10_0209__b1567561132413">Metric</strong> are supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row1376119102017"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p1976119911207">spec.rules[x].disable</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p107613972014">Bool</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p197611696205">Rule switch. Currently, only <strong id="cce_10_0209__b17507113062518">false</strong> is supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row16761119142014"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p57616910204">spec.rules[x].action.type</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p476129122013">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p1476116972016">Rule action type. Currently, only <strong id="cce_10_0209__b384212424256">ScaleUp</strong> is supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row87621197201"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p17611910205">spec.rules[x].action.unit</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p1476214918204">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p167625982016">Rule action unit. Currently, only <strong id="cce_10_0209__b9689945112519">Node</strong> is supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row1476213962014"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p157625922019">spec.rules[x].action.value</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p0762179122011">Integer</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p187622962018">Rule action value.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row18762793203"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p137624952012">spec.rules[x].cronTrigger</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p67625918202">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p11762892207">Optional. This parameter is valid only in periodic rules.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row5762597202"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p5762189122014">spec.rules[x].cronTrigger.schedule</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p15762199112011">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p67621932020">Cron expression of a periodic rule.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row37621496208"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p157621398201">spec.rules[x].metricTrigger</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p17762394209">/</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p3762189152010">Optional. This parameter is valid only in metric-based rules.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row776299102010"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p576289152018">spec.rules[x].metricTrigger.metricName</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p13762139192010">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p1176218992015">Metric of a metric-based rule. Currently, <strong id="cce_10_0209__b10699858276">Cpu</strong> and <strong id="cce_10_0209__b8777673276">Memory</strong> are supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row876217919201"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p187626913202">spec.rules[x].metricTrigger.metricOperation</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p87622098209">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p07621298205">Comparison operator of a metric-based rule. Currently, only <strong id="cce_10_0209__b87451128142718">&gt;</strong> is supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row77631922017"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p1762693205">spec.rules[x].metricTrigger.metricValue</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p776219920206">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p4762159162010">Metric threshold of a metric-based rule. The value can be any integer from 1 to 100 and must be a character string.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row12763169172011"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p57639982014">spec.rules[x].metricTrigger.Unit</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p19763189122011">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p14763298203">Unit of the metric-based rule threshold. Currently, only <strong id="cce_10_0209__b3938412192811">%</strong> is supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row1276313914203"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p157634914202">spec.targetNodepoolIds</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p2076314918202">Array</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p127636972016">All node pools associated with the scaling policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0209__row1776316942015"><td class="cellrowborder" valign="top" width="39.43394339433943%" headers="mcps1.3.9.2.4.1.1 "><p id="cce_10_0209__p19763199132011">spec.targetNodepoolIds[x]</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.121612161216124%" headers="mcps1.3.9.2.4.1.2 "><p id="cce_10_0209__p4763390209">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.44444444444445%" headers="mcps1.3.9.2.4.1.3 "><p id="cce_10_0209__p157631591201">ID of the node pool associated with the scaling policy.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0291.html">Scaling a Node</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0210.html b/docs/cce/umn/cce_10_0210.html
new file mode 100644
index 00000000..741d00b3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0210.html
@@ -0,0 +1,60 @@
+<a name="cce_10_0210"></a><a name="cce_10_0210"></a>
+
+<h1 class="topictitle1">Migrating Services Across Clusters of Different Versions</h1>
+<div id="body1569380890256"><div class="section" id="cce_10_0210__section11817228199"><h4 class="sectiontitle">Application Scenarios</h4><p id="cce_10_0210__p1329694314425">This section describes how to migrate services from a cluster of an earlier version to a cluster of a later version in CCE.</p>
+<p id="cce_10_0210__p570220276196">This operation is applicable when a cross-version cluster upgrade is required (for example, upgrade from v1.7.* or v1.9.* to 1.17.*) and new clusters can be created for service migration.</p>
+</div>
+<div class="section" id="cce_10_0210__section13775155402514"><h4 class="sectiontitle">Prerequisites</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0210__table121362419267" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Checklist before migration</caption><thead align="left"><tr id="cce_10_0210__row1314122482614"><th align="left" class="cellrowborder" valign="top" width="25.369999999999997%" id="mcps1.3.2.2.2.3.1.1"><p id="cce_10_0210__p1214192410265">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="74.63%" id="mcps1.3.2.2.2.3.1.2"><p id="cce_10_0210__p8142248263">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0210__row181416245267"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_10_0210__p4141124162618">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_10_0210__p7658172516147">NodeIP-related: Check whether node IP addresses (including EIPs) of the cluster before the migration have been used in other configurations or whitelists.</p>
+</td>
+</tr>
+<tr id="cce_10_0210__row1141424162618"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_10_0210__p111492415264">Workloads</p>
+</td>
+<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_10_0210__p614112410264">Record the number of workloads for post-migration check.</p>
+</td>
+</tr>
+<tr id="cce_10_0210__row201410249264"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_10_0210__p1214324152619">Storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><ol id="cce_10_0210__ol161155617140"><li id="cce_10_0210__li8611125641413">Check whether the storage resources in use are provisioned by the cloud or by your organization.</li><li id="cce_10_0210__li1761165612148">Change the automatically created storage to the existing storage in the new cluster.</li></ol>
+</td>
+</tr>
+<tr id="cce_10_0210__row1614924172616"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_10_0210__p1114132452616">Network</p>
+</td>
+<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><ol id="cce_10_0210__ol1092210163153"><li id="cce_10_0210__li192251619150">Pay special attention to the ELB and ingress.</li><li id="cce_10_0210__li592217167152">Clusters of an earlier version support only the classic load balancer. To migrate services to a new cluster, you need to change load balancer type to shared load balancer. Then, the corresponding ELB service will be re-established.</li></ol>
+</td>
+</tr>
+<tr id="cce_10_0210__row6141224192610"><td class="cellrowborder" valign="top" width="25.369999999999997%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_10_0210__p2141424132616">O&amp;M</p>
+</td>
+<td class="cellrowborder" valign="top" width="74.63%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_10_0210__p1214724102620">Private configuration: Check whether kernel parameters or system data have been configured on nodes in the cluster.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0210__section288595091613"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0210__ol13570119184212"><li id="cce_10_0210__li157018195420"><span><strong id="cce_10_0210__b15758154795510">Create a CCE cluster.</strong></span><p><p id="cce_10_0210__p894183684211">Create a cluster with the same specifications and configurations as the cluster of the earlier version. For details, see <a href="cce_10_0028.html">Creating a CCE Cluster</a>.</p>
+</p></li><li id="cce_10_0210__li12570131954213"><span><strong id="cce_10_0210__b9369103111564">Add a node.</strong></span><p><p id="cce_10_0210__p185677529428">Add nodes with the same specifications and manual configuration items. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</p>
+</p></li><li id="cce_10_0210__li157014191426"><span><strong id="cce_10_0210__b5922415135810">Create a storage volume in the new cluster.</strong></span><p><p id="cce_10_0210__p1957420106436">Use an existing storage volume to create a PVC in the new cluster. The PVC name remains unchanged. For details, see <a href="cce_10_0378.html">PersistentVolumeClaims (PVCs)</a>.</p>
+<div class="note" id="cce_10_0210__note19988191333"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0210__p398319433">Storage switching supports only OBS buckets, SFS file systems, and shared EVS disks. If a non-shared EVS disk is used, you need to suspend the workloads in the old cluster to switch the storage resources. As a result, services will be interrupted.</p>
+</div></div>
+</p></li><li id="cce_10_0210__li657041917428"><span><strong id="cce_10_0210__b0659205011400">Create a workload in the new cluster.</strong></span><p><p id="cce_10_0210__p3900113884313">The workload name and specifications remain unchanged. For details about how to create a workload, see <a href="cce_10_0047.html">Creating a Deployment</a> or <a href="cce_10_0048.html">Creating a StatefulSet</a>. For details about how to attach a storage volume to the workload, see <a href="cce_10_0257.html">Creating a Deployment Mounted with an EVS Volume</a>.</p>
+</p></li><li id="cce_10_0210__li457071934211"><span><strong id="cce_10_0210__b734354614417">Create a Service in the new cluster.</strong></span><p><p id="cce_10_0210__p7880248447">The Service name and specifications remain unchanged. For details about how to create a Service, see <a href="cce_10_0247.html">Services</a>.</p>
+</p></li><li id="cce_10_0210__li557041911428"><span><strong id="cce_10_0210__b116585573149">Commission services.</strong></span><p><p id="cce_10_0210__p1963052113448">After all resources are created, commission the containerized services. If the commissioning is successful, migrate the services to the new cluster.</p>
+</p></li><li id="cce_10_0210__li35701819174210"><span><strong id="cce_10_0210__b553861141613">Delete the old cluster.</strong></span><p><p id="cce_10_0210__p5461371819">When all functions of the new cluster are stable, delete the old cluster. For details about how to delete a cluster, see <a href="cce_10_0212.html">Deleting a Cluster</a>.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0212.html b/docs/cce/umn/cce_10_0212.html
new file mode 100644
index 00000000..a88c3403
--- /dev/null
+++ b/docs/cce/umn/cce_10_0212.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0212"></a><a name="cce_10_0212"></a>
+
+<h1 class="topictitle1">Deleting a Cluster</h1>
+<div id="body1569380890256"><div class="section" id="cce_10_0212__section388994920203"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0212__p113681753162017">This section describes how to delete a cluster.</p>
+</div>
+<div class="section" id="cce_10_0212__section14551131145314"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0212__ul77224385210"><li id="cce_10_0212__li1150355814214">Deleting a cluster will delete the nodes in the cluster (excluding accepted nodes), data disks attached to the nodes, workloads, and Services. Related services cannot be restored. Before performing this operation, ensure that data has been backed up or migrated. Deleted data cannot be restored.<div class="p" id="cce_10_0212__p8145173813228"><a name="cce_10_0212__li1150355814214"></a><a name="li1150355814214"></a>Resources that are not created in CCE will not be deleted:<ul id="cce_10_0212__ul141181271016"><li id="cce_10_0212__li11118227106">Accepted nodes (only the nodes created in CCE are deleted);</li><li id="cce_10_0212__li189841325162516">ELB load balancers associated with Services and ingresses (only the automatically created load balancers are deleted);</li><li id="cce_10_0212__li170612470466">Manually created cloud storage resources associated with PVs or imported cloud storage resources (only the cloud storage resources automatically created by PVCs are deleted)</li></ul>
+</div>
+</li><li id="cce_10_0212__li4571923155519">A hibernated cluster cannot be deleted. Wake up the cluster and try again.</li><li id="cce_10_0212__li13277132995711">If a cluster whose status is Unavailable is deleted, some storage resources of the cluster may need to be manually deleted.</li></ul>
+</div>
+<div class="section" id="cce_10_0212__section66361189212"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0212__ol186094278570"><li id="cce_10_0212__li36092279576"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0212__uicontrol3766181561"><b>Clusters</b></span>.</span></li><li id="cce_10_0212__li6610192715714"><span>Click <span><img id="cce_10_0212__image186171558366" src="en-us_image_0000001244997085.png"></span> next to the cluster to be deleted.</span></li><li id="cce_10_0212__li1794418536121"><span>In the displayed <span class="uicontrol" id="cce_10_0212__uicontrol36639302117"><b>Delete Cluster</b></span> dialog box, select the resources to be released.</span><p><ul id="cce_10_0212__ul19051037105013"><li id="cce_10_0212__li1990515375502">Delete cloud storage resources attached to workloads in the cluster.<div class="note" id="cce_10_0212__note219391785220"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0212__p1470481715212">Before you delete the PVCs and volumes, pay attention to the following rules:</p>
+<ul id="cce_10_0212__ul57041617175211"><li id="cce_10_0212__li9704121711525">The underlying storage resources are deleted according to the reclaim policy you defined.</li><li id="cce_10_0212__li8704171715529">If there are a large number of files (more than 1,000) in the OBS bucket, manually clear the files and then delete the cluster. </li></ul>
+</div></div>
+</li><li id="cce_10_0212__li136857512513">Delete networking resources, such as load balancers in a cluster. (Only automatically created load balancers can be deleted.)</li></ul>
+</p></li><li id="cce_10_0212__li206411338151114"><span>Click <span class="uicontrol" id="cce_10_0212__uicontrol105924424253"><b>Yes</b></span> to start deleting the cluster.</span><p><p id="cce_10_0212__p020793165718">The delete operation takes 1 to 3 minutes to complete.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0031.html">Managing a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0213.html b/docs/cce/umn/cce_10_0213.html
new file mode 100644
index 00000000..eed9b36b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0213.html
@@ -0,0 +1,296 @@
+<a name="cce_10_0213"></a><a name="cce_10_0213"></a>
+
+<h1 class="topictitle1">Managing Cluster Components</h1>
+<div id="body1569380890256"><div class="section" id="cce_10_0213__section1055218393273"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0213__p149661516162511">CCE allows you to manage cluster parameters, through which you can let core components work under your very requirements.</p>
+</div>
+<div class="section" id="cce_10_0213__section12438124825414"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0213__p442175495411">This function is supported only in clusters of <strong id="cce_10_0213__b1963285592415">v1.15 and later</strong>. It is not displayed for versions earlier than v1.15.</p>
+</div>
+<div class="section" id="cce_10_0213__section186921921195519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0213__ol186094278570"><li id="cce_10_0213__li114312175131"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0213__uicontrol8506153142816"><b>Clusters</b></span>.</span></li><li id="cce_10_0213__li6610192715714"><span>Click <span><img id="cce_10_0213__image1651517417146" src="en-us_image_0000001199757520.png"></span> next to the target cluster.</span></li><li id="cce_10_0213__li10118171017510"><span>On the <span class="uicontrol" id="cce_10_0213__uicontrol165520251126"><b>Manage Component</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p><div class="p" id="cce_10_0213__p6437121432414">
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0213__table158253508558" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Extended controller parameters</caption><thead align="left"><tr id="cce_10_0213__row1782665095518"><th align="left" class="cellrowborder" valign="top" width="34.77%" id="mcps1.3.3.2.3.2.1.1.2.4.1.1"><p id="cce_10_0213__p6826185014554">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.14%" id="mcps1.3.3.2.3.2.1.1.2.4.1.2"><p id="cce_10_0213__p1982645016556">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.09%" id="mcps1.3.3.2.3.2.1.1.2.4.1.3"><p id="cce_10_0213__p8826650125517">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0213__row24681332145717"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.1.2.4.1.1 "><p id="cce_10_0213__p346873210575">enable-resource-quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.1.2.4.1.2 "><p id="cce_10_0213__p44680328574">Whether to automatically create a resource quota object when creating a namespace.</p>
+<ul id="cce_10_0213__ul193813461677"><li id="cce_10_0213__li1338174616717"><strong id="cce_10_0213__b237873120551">false</strong>: no auto creation</li><li id="cce_10_0213__li19073481772"><strong id="cce_10_0213__b18842419551">true</strong>: auto creation enabled For details about the resource quota defaults, see <a href="cce_10_0287.html">Setting a Resource Quota</a>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.1.2.4.1.3 "><p id="cce_10_0213__p117491285719">Default: false</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0213__table49112013142417" frame="border" border="1" rules="all"><caption><b>Table 2 </b>kube-apiserver parameters</caption><thead align="left"><tr id="cce_10_0213__row6905141362416"><th align="left" class="cellrowborder" valign="top" width="34.77%" id="mcps1.3.3.2.3.2.1.2.2.4.1.1"><p id="cce_10_0213__p9905121319241">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.14%" id="mcps1.3.3.2.3.2.1.2.2.4.1.2"><p id="cce_10_0213__p10905131312246">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.09%" id="mcps1.3.3.2.3.2.1.2.2.4.1.3"><p id="cce_10_0213__p89051413132414">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0213__row6906151392420"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p16906181313249">default-not-ready-toleration-seconds</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p590601322416">notReady tolerance time, in seconds. NoExecute that is added by default to every pod that does not already have such a toleration.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p17906913122417">Default: 300s</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row5906171352418"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p990601362410">default-unreachable-toleration-seconds</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p1190671362415">unreachable tolerance time, in seconds. NoExecute that is added by default to every pod that does not already have such a toleration.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p79061313142415">Default: 300s</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row2090781322411"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p59061113202414">max-mutating-requests-inflight</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p1390617136244">Maximum number of concurrent mutating requests. When the value of this parameter is exceeded, the server rejects requests.</p>
+<p id="cce_10_0213__p890641322416">The value <strong id="cce_10_0213__b389319593475">0</strong> indicates no limitation.</p>
+<p id="cce_10_0213__p11906121342418">Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.</p>
+<ul id="cce_10_0213__ul1906171317249"><li id="cce_10_0213__li1490612138248"><strong id="cce_10_0213__b209548461298">200</strong> for clusters with 50 or 200 nodes</li><li id="cce_10_0213__li10906313152419"><strong id="cce_10_0213__b12677624181019">500</strong> for clusters with 1,000 nodes</li><li id="cce_10_0213__li6906161382412"><strong id="cce_10_0213__b4703240141015">1000</strong> for clusters with 2,000 nodes</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p89061613182410">Default: 1000</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row2907181302414"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p18907171317248">max-requests-inflight</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p390717131244">Maximum number of concurrent non-mutating requests. When the value of this parameter is exceeded, the server rejects requests.</p>
+<p id="cce_10_0213__p169071513192417">The value <strong id="cce_10_0213__b1818774791">0</strong> indicates no limitation.</p>
+<p id="cce_10_0213__p10907161302416">Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.</p>
+<ul id="cce_10_0213__ul4907161372410"><li id="cce_10_0213__li139071713182414"><strong id="cce_10_0213__b560914712107">400</strong> for clusters with 50 or 200 nodes</li><li id="cce_10_0213__li290721372413"><strong id="cce_10_0213__b1733775131015">1000</strong> for clusters with 1,000 nodes</li><li id="cce_10_0213__li2907161332417"><strong id="cce_10_0213__b17328175617103">2000</strong> for clusters with 2,000 nodes</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p119071813142412">Default: 2000</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row15907181352414"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p890712137246">service-node-port-range</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p1490717139244">Range of node port numbers.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p17907713132416">Default:</p>
+<p id="cce_10_0213__p16907313132418">30000-32767</p>
+<p id="cce_10_0213__p7907161372414">Options:</p>
+<p id="cce_10_0213__p169071413152419">min&gt;20105</p>
+<p id="cce_10_0213__p189071413132419">max&lt;32768</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row17903726114212"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p20903726144217">support-overload</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p17903112624220">Cluster overload control. If enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><ul id="cce_10_0213__ul1781345824210"><li id="cce_10_0213__li481345834216">false: Overload control is disabled.</li><li id="cce_10_0213__li11813658154220">true: Overload control is enabled.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0213__table1099424952513" frame="border" border="1" rules="all"><caption><b>Table 3 </b>kube-controller-manager parameters</caption><thead align="left"><tr id="cce_10_0213__row1999444916256"><th align="left" class="cellrowborder" valign="top" width="34.77%" id="mcps1.3.3.2.3.2.2.2.4.1.1"><p id="cce_10_0213__p12994144917256">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.14%" id="mcps1.3.3.2.3.2.2.2.4.1.2"><p id="cce_10_0213__p11994194912512">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.09%" id="mcps1.3.3.2.3.2.2.2.4.1.3"><p id="cce_10_0213__p3995849152514">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0213__row18996174913258"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p1199615495258">concurrent-deployment-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p179963498259">Number of Deployments that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p20996124919258">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row169961649142518"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p2996204910258">concurrent-endpoint-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p7996134912259">Number of endpoints that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p1099614952515">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row59961149132519"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p1999610493252">concurrent-gc-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p1199694917252">Number of garbage collector workers that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p199718496255">Default: 20</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row6997349132519"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p129971749202514">concurrent-job-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p1997114919254">Number of jobs that can be synchronized at the same time.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p15997194932517">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row149972491256"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p899711496259">concurrent-namespace-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p11997124922516">Number of namespaces that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p12997449112519">Default: 10 </p>
+</td>
+</tr>
+<tr id="cce_10_0213__row179973496254"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p119975498259">concurrent-replicaset-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p29971049162510">Number of ReplicaSets that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p499774922514">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row129972494251"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p9997649112515">concurrent-resource-quota-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p19997194992519">Number of resource quotas that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p1099720493256">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row3997114942511"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p159971049162510">concurrent-service-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p13997649172515">Number of Services that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p12997154942511">Default: 10 </p>
+</td>
+</tr>
+<tr id="cce_10_0213__row59971449102512"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p1099717492256">concurrent-serviceaccount-token-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p59972496253">Number of service account tokens that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p89971449132513">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row599834916256"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p4998549142512">concurrent-ttl-after-finished-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p159980491258">Number of TTL-after-finished controller workers that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p9998164952514">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row1799817495255"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p14998649142519">concurrent_rc_syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p129981496252">Number of replication controllers that are allowed to synchronize concurrently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p109982049132516">Default: 5</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row899894932519"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p15998174913252">horizontal-pod-autoscaler-sync-period</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p1399854922511">How often HPA audits metrics in a cluster.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p16998949172510">Default: 15 seconds</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row1399810497250"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p16998449162514">kube-api-qps</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p129981849202512">Query per second (QPS) to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p2099824918253">Default: 100</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row999824912254"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p199844962517">kube-api-burst</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p8998349162517">Burst to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p16998194913259">Default: 100</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row399894912515"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p16998114918251">terminated-pod-gc-threshold</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p399984915259">Number of terminated pods that can exist before the terminated pod garbage collector starts deleting terminated pods.</p>
+<p id="cce_10_0213__p3999249132518">If &lt;= 0, the terminated pod garbage collector is disabled.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p14999154912253">Default: 1000</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0213__table1734362322720" frame="border" border="1" rules="all"><caption><b>Table 4 </b>kube-scheduler parameters</caption><thead align="left"><tr id="cce_10_0213__row14343132320274"><th align="left" class="cellrowborder" valign="top" width="34.77%" id="mcps1.3.3.2.3.2.3.2.4.1.1"><p id="cce_10_0213__p4343122310275">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.14%" id="mcps1.3.3.2.3.2.3.2.4.1.2"><p id="cce_10_0213__p123431623192720">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.09%" id="mcps1.3.3.2.3.2.3.2.4.1.3"><p id="cce_10_0213__p16343122320274">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0213__row113471723152717"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.3.2.4.1.1 "><p id="cce_10_0213__p163470232279">kube-api-qps</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.3.2.4.1.2 "><p id="cce_10_0213__p5347223152718">Query per second (QPS) to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.3.2.4.1.3 "><p id="cce_10_0213__p1034732372715">Default: 100</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row73472023162715"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.3.2.4.1.1 "><p id="cce_10_0213__p33481223112715">kube-api-burst</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.3.2.4.1.2 "><p id="cce_10_0213__p134814230272">Burst to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.3.2.4.1.3 "><p id="cce_10_0213__p17348102320276">Default: 100</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0213__table149191534112719" frame="border" border="1" rules="all"><caption><b>Table 5 </b>eni parameters (supported only by CCE Turbo clusters)</caption><thead align="left"><tr id="cce_10_0213__row11919203482717"><th align="left" class="cellrowborder" valign="top" width="34.949999999999996%" id="mcps1.3.3.2.3.2.4.2.4.1.1"><p id="cce_10_0213__p1791993417271">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="43.79%" id="mcps1.3.3.2.3.2.4.2.4.1.2"><p id="cce_10_0213__p7919143442712">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.26%" id="mcps1.3.3.2.3.2.4.2.4.1.3"><p id="cce_10_0213__p49191034132714">Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0213__row19191034202714"><td class="cellrowborder" valign="top" width="34.949999999999996%" headers="mcps1.3.3.2.3.2.4.2.4.1.1 "><p id="cce_10_0213__p69201434142718">nic-minimum-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.79%" headers="mcps1.3.3.2.3.2.4.2.4.1.2 "><p id="cce_10_0213__p1892017345274">Minimum number of ENIs bound to a node at the cluster level</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.26%" headers="mcps1.3.3.2.3.2.4.2.4.1.3 "><p id="cce_10_0213__p199201734152711">Default: 10</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row1843455173615"><td class="cellrowborder" valign="top" width="34.949999999999996%" headers="mcps1.3.3.2.3.2.4.2.4.1.1 "><p id="cce_10_0213__p16326141253720">nic-maximum-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.79%" headers="mcps1.3.3.2.3.2.4.2.4.1.2 "><p id="cce_10_0213__p1443445117365">Maximum number of ENIs pre-bound to a node at the cluster level</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.26%" headers="mcps1.3.3.2.3.2.4.2.4.1.3 "><p id="cce_10_0213__p24341351193610">Default: 0</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row9920113419279"><td class="cellrowborder" valign="top" width="34.949999999999996%" headers="mcps1.3.3.2.3.2.4.2.4.1.1 "><p id="cce_10_0213__p1292053492719">nic-warm-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.79%" headers="mcps1.3.3.2.3.2.4.2.4.1.2 "><p id="cce_10_0213__p792018344279">Number of ENIs pre-bound to a node at the cluster level</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.26%" headers="mcps1.3.3.2.3.2.4.2.4.1.3 "><p id="cce_10_0213__p15920133417271">Default: 2</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row13066172389"><td class="cellrowborder" valign="top" width="34.949999999999996%" headers="mcps1.3.3.2.3.2.4.2.4.1.1 "><p id="cce_10_0213__p1730671723813">nic-max-above-warm-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.79%" headers="mcps1.3.3.2.3.2.4.2.4.1.2 "><p id="cce_10_0213__p15306141712388">Reclaim number of ENIs pre-bound to a node at the cluster level</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.26%" headers="mcps1.3.3.2.3.2.4.2.4.1.3 "><p id="cce_10_0213__p17306517193814">Default: 2</p>
+</td>
+</tr>
+<tr id="cce_10_0213__row199209349270"><td class="cellrowborder" valign="top" width="34.949999999999996%" headers="mcps1.3.3.2.3.2.4.2.4.1.1 "><p id="cce_10_0213__p5920153402717">prebound-subeni-percentage</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.79%" headers="mcps1.3.3.2.3.2.4.2.4.1.2 "><p id="cce_10_0213__p7920193432714">Low threshold of the number of bound ENIs:High threshold of the number of bound ENIs</p>
+<div class="note" id="cce_10_0213__note769833818137"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0213__p1698138141315">This parameter is discarded. Use the other four dynamic preheating parameters of the ENI.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="21.26%" headers="mcps1.3.3.2.3.2.4.2.4.1.3 "><p id="cce_10_0213__p0920434172713">Default: 0:0</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0213__li206411338151114"><span>Click <strong id="cce_10_0213__b1685222213336">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0213__section185642613239"><h4 class="sectiontitle">References</h4><ul id="cce_10_0213__ul14570193142510"><li id="cce_10_0213__li1997622382510"><a href="https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kube-apiserver/" target="_blank" rel="noopener noreferrer">kube-apiserver</a></li><li id="cce_10_0213__li557010302511"><a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kube-controller-manager/" target="_blank" rel="noopener noreferrer">kube-controller-manager</a></li><li id="cce_10_0213__li145701334252"><a href="https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kube-scheduler/" target="_blank" rel="noopener noreferrer">kube-scheduler</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0031.html">Managing a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0214.html b/docs/cce/umn/cce_10_0214.html
new file mode 100644
index 00000000..6b4b34c0
--- /dev/null
+++ b/docs/cce/umn/cce_10_0214.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0214"></a><a name="cce_10_0214"></a>
+
+<h1 class="topictitle1">Hibernating and Waking Up a Cluster</h1>
+<div id="body1569380890257"><div class="section" id="cce_10_0214__section4812101752820"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0214__p1661910139529">If you do not need to use a cluster temporarily, you are advised to hibernate the cluster.</p>
+<p id="cce_10_0214__p15730959536">After a cluster is hibernated, resources such as workloads cannot be created or managed in the cluster.</p>
+<p id="cce_10_0214__p1693193111284">A hibernated cluster can be quickly woken up and used normally.</p>
+</div>
+<div class="section" id="cce_10_0214__section1677181718181"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0214__p178192273412">During cluster wakeup, the master node may fail to be started due to insufficient resources. As a result, the cluster fails to be woken up. Wait for a while and wake up the cluster again.</p>
+</div>
+<div class="section" id="cce_10_0214__section1033214207131"><h4 class="sectiontitle">Hibernating a Cluster</h4><ol id="cce_10_0214__ol6530151295410"><li id="cce_10_0214__li1253017127545"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0214__uicontrol16209155719587"><b>Clusters</b></span>.</span></li><li id="cce_10_0214__li11530101235412"><span>Click <span><img id="cce_10_0214__image124421819185210" src="en-us_image_0000001236562704.png"></span> next to the cluster to be hibernated.</span></li><li id="cce_10_0214__li65781125195915"><span>In the dialog box displayed, check the precautions and click <strong id="cce_10_0214__b17836812428">Yes</strong>. Wait until the cluster is hibernated.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0214__section53339203136"><h4 class="sectiontitle">Waking Up a Cluster</h4><ol id="cce_10_0214__ol3963342135713"><li id="cce_10_0214__li59639423578"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0214__uicontrol16245125642112"><b>Clusters</b></span>.</span></li><li id="cce_10_0214__li9963742175711"><span>Click <span><img id="cce_10_0214__image16569828201020" src="en-us_image_0000001225747980.png"></span> next to the cluster to be woken up.</span></li><li id="cce_10_0214__li112592262039"><span>When the cluster status changes from <span class="uicontrol" id="cce_10_0214__uicontrol13292817311"><b>Waking</b></span> to <span class="uicontrol" id="cce_10_0214__uicontrol032132811313"><b>Running</b></span>, the cluster is woken up. It takes about 3 to 5 minutes to wake up the cluster.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0031.html">Managing a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0215.html b/docs/cce/umn/cce_10_0215.html
new file mode 100644
index 00000000..9e1c9cbc
--- /dev/null
+++ b/docs/cce/umn/cce_10_0215.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0215"></a><a name="cce_10_0215"></a>
+
+<h1 class="topictitle1">Upgrading a Cluster</h1>
+<div id="body1569380890257"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0197.html">Upgrade Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0302.html">Before You Start</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0120.html">Performing Replace/Rolling Upgrade</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0301.html">Performing In-place Upgrade</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0210.html">Migrating Services Across Clusters of Different Versions</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0216.html b/docs/cce/umn/cce_10_0216.html
new file mode 100644
index 00000000..c0c4c3ac
--- /dev/null
+++ b/docs/cce/umn/cce_10_0216.html
@@ -0,0 +1,76 @@
+<a name="cce_10_0216"></a><a name="cce_10_0216"></a>
+
+<h1 class="topictitle1">Creating a DaemonSet</h1>
+<div id="body1569752901153"><div class="section" id="cce_10_0216__section1479811467429"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0216__p1934024917445">CCE provides deployment and management capabilities for multiple types of containers and supports features of container workloads, including creation, configuration, monitoring, scaling, upgrade, uninstall, service discovery, and load balancing.</p>
+<p id="cce_10_0216__p8060118">DaemonSet ensures that only one pod runs on all or some nodes. When a node is added to a cluster, a new pod is also added for the node. When a node is removed from a cluster, the pod is also reclaimed. If a DaemonSet is deleted, all pods created by it will be deleted.</p>
+<p id="cce_10_0216__p19232340184414">The typical application scenarios of a DaemonSet are as follows:</p>
+<ul id="cce_10_0216__ul35017102452"><li id="cce_10_0216__li155018101451">Run the cluster storage daemon, such as glusterd or Ceph, on each node.</li><li id="cce_10_0216__li15081013454">Run the log collection daemon, such as Fluentd or Logstash, on each node.</li><li id="cce_10_0216__li135091054518">Run the monitoring daemon, such as Prometheus Node Exporter, collectd, Datadog agent, New Relic agent, or Ganglia (gmond), on each node.</li></ul>
+<p id="cce_10_0216__p1282112555424">You can deploy a DaemonSet for each type of daemons on all nodes, or deploy multiple DaemonSets for the same type of daemons. In the second case, DaemonSets have different flags and different requirements on memory and CPU for different hardware types.</p>
+</div>
+<div class="section" id="cce_10_0216__section7271245481"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0216__p1195519514554">You must have one cluster available before creating a DaemonSet. For details on how to create a cluster, see <a href="cce_10_0028.html">Creating a CCE Cluster</a>.</p>
+</div>
+<div class="section" id="cce_10_0216__section1160483214207"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0216__ol2012902601117"><li id="cce_10_0216__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0216__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0216__b1421120185819">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0216__b139221951155717">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0216__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0216__p1259466151612"><strong id="cce_10_0216__b27161120952">Basic Info</strong><ul id="cce_10_0216__ul6954101318184"><li id="cce_10_0216__li11514131617185"><strong id="cce_10_0216__b494072815518">Workload Type</strong>: Select <strong id="cce_10_0216__b1776518313510">DaemonSet</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0216__li129541213101814"><strong id="cce_10_0216__b12465144313510">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0216__li179541813111814"><strong id="cce_10_0216__b20501185611511">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0216__b1508155615514">default</strong>. You can also click <span class="uicontrol" id="cce_10_0216__uicontrol114986014619"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0216__li11753142112539"><strong id="cce_10_0216__b1111971612">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0216__li1295571341818"><strong id="cce_10_0216__b4596419068">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
+</div>
+<div class="p" id="cce_10_0216__p206571518181616"><strong id="cce_10_0216__b348216241165">Container Settings</strong><ul id="cce_10_0216__ul42071022103320"><li id="cce_10_0216__li8770480458">Container Information<div class="p" id="cce_10_0216__p10493941854"><a name="cce_10_0216__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0216__uicontrol14558426767"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0216__ul153491055201112"><li id="cce_10_0216__li53489554115"><strong id="cce_10_0216__b746052194614">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0216__li23485559118"><strong id="cce_10_0216__b34691748194614">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0216__li1834811551114"><strong id="cce_10_0216__b91087469469">Health Check</strong>: See <a href="cce_10_0112.html">Setting Health Check for a Container</a>.</li><li id="cce_10_0216__li203481155181114"><strong id="cce_10_0216__b10507124244614">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0216__li173487556119"><strong id="cce_10_0216__b1882893994611">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0216__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0216__p17126153413513">If the workload contains more than one pod, EVS volumes cannot be mounted.</p>
+</div></div>
+</li><li id="cce_10_0216__li1434925518118"><strong id="cce_10_0216__b1444913332065">Security Context</strong>: Set container permissions to protect the system and other containers from being affected. Enter the user ID to set container permissions and prevent systems and other containers from being affected.</li><li id="cce_10_0216__li1734965517119"><strong id="cce_10_0216__b99659322466">Logging</strong>: See <a href="cce_10_0018.html">Using ICAgent to Collect Container Logs</a>.</li></ul>
+</div>
+</li><li id="cce_10_0216__li1487514116369"><strong id="cce_10_0216__b479415459616">Image Access Credential</strong>: Select the credential used for accessing the image repository. The default value is <strong id="cce_10_0216__b157944451067">default-secret</strong>. You can use default-secret to access images in SWR. For details about <strong id="cce_10_0216__b582111347813">default-secret</strong>, see <a href="cce_10_0388.html#cce_10_0388__section11760122012591">default-secret</a>.</li><li id="cce_10_0216__li11649141318194"><strong id="cce_10_0216__b9690103898">GPU graphics card</strong>: <strong id="cce_10_0216__b1235514579818">All</strong> is selected by default. The workload instance will be scheduled to the node with the specified GPU graphics card type.</li></ul>
+</div>
+<p id="cce_10_0216__p1447162741615"><strong id="cce_10_0216__b183874491969">Service Settings</strong></p>
+<p id="cce_10_0216__p102354303348">A Service is used for pod access. With a fixed IP address, a Service forwards access traffic to pods and performs load balancing for these pods.</p>
+<p id="cce_10_0216__p13343123113612">You can also create a Service after creating a workload. For details about the Service, see <a href="cce_10_0249.html">Service Overview</a>.</p>
+<div class="p" id="cce_10_0216__p310913521612"><strong id="cce_10_0216__b148945537613">Advanced Settings</strong><ul id="cce_10_0216__ul142811417"><li id="cce_10_0216__li0421513417"><strong id="cce_10_0216__b46043811467">Upgrade</strong>: See <a href="cce_10_0397.html">Configuring the Workload Upgrade Policy</a>.</li><li id="cce_10_0216__li5292111713411"><strong id="cce_10_0216__b704174465">Scheduling</strong>: See <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li><li id="cce_10_0216__li179714209414"><strong id="cce_10_0216__b52111221164619">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0216__li13285132913414"><strong id="cce_10_0216__cce_10_0047_b11222531193614">Toleration</strong>: Using both taints and tolerations allows (not forcibly) the pod to be scheduled to a node with the matching taints, and controls the pod eviction policies after the node where the pod is located is tainted. For details, see <a href="cce_10_0352.html#cce_10_0352__section2047442210417">Tolerations</a>.</li><li id="cce_10_0216__li1917237124111"><strong id="cce_10_0216__b051181704711">DNS</strong>: See <a href="cce_10_0365.html">DNS Configuration</a>.</li></ul>
+</div>
+</p></li><li id="cce_10_0216__li01417411620"><span>Click <strong id="cce_10_0216__b5824103317919">Create Workload</strong> in the lower right corner.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0216__section856819324156"><h4 class="sectiontitle">Using kubectl</h4><p id="cce_10_0216__p13147194016468">The following procedure uses Nginx as an example to describe how to <span class="keyword" id="cce_10_0216__keyword75044283128">create a workload using kubectl</span>.</p>
+<ol id="cce_10_0216__ol1424992320616"><li id="cce_10_0216__li2338171784610"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0216__li1020013819415"><span>Create and edit the <strong id="cce_10_0216__b11861153391218">nginx-daemonset.yaml</strong> file. <strong id="cce_10_0216__b7395173518120">nginx-daemonset.yaml</strong> is an example file name, and you can change it as required.</span><p><p id="cce_10_0216__p7581950184318"><strong id="cce_10_0216__b111191541172515">vi nginx-daemonset.yaml</strong></p>
+<p id="cce_10_0216__p5292517598">The content of the description file is as follows: The following provides an example. For more information on DaemonSets, see <a href="https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/" target="_blank" rel="noopener noreferrer">Kubernetes documents</a>.</p>
+<pre class="screen" id="cce_10_0216__screen484519441195">apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: nginx-daemonset
+  labels:
+    app: nginx-daemonset
+spec:
+  selector:
+    matchLabels:
+      app: nginx-daemonset
+  template:
+    metadata:
+      labels:
+        app: nginx-daemonset
+    spec:
+      nodeSelector:                 # Node selection. A pod is created on a node only when the node meets <strong id="cce_10_0216__b1829064172210">daemon=need</strong>.
+        daemon: need
+      containers:
+      - name: nginx-daemonset
+        image: nginx:alpine
+        resources:
+          limits:
+            cpu: 250m
+            memory: 512Mi
+          requests:
+            cpu: 250m
+            memory: 512Mi
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0216__p5600343141018">The <strong id="cce_10_0216__b114721710172513">replicas</strong> parameter used in defining a Deployment or StatefulSet does not exist in the above configuration for a DaemonSet, because each node has only one replica. It is fixed.</p>
+<p id="cce_10_0216__p46551724111118">The nodeSelector in the preceding pod template specifies that a pod is created only on the nodes that meet <strong id="cce_10_0216__b09741914172512">daemon=need</strong>, as shown in the following figure. If you want to create a pod on each node, delete the label.</p>
+</p></li><li id="cce_10_0216__li12194551184412"><span>Create a DaemonSet.</span><p><p id="cce_10_0216__p175719718459"><strong id="cce_10_0216__b692820516453">kubectl create -f nginx-daemonset.yaml</strong></p>
+<p id="cce_10_0216__p2821102217198">If the following information is displayed, the DaemonSet is being created.</p>
+<pre class="screen" id="cce_10_0216__screen1028913107179">daemonset.apps/nginx-daemonset created</pre>
+</p></li><li id="cce_10_0216__li166931817162412"><span>Query the DaemonSet status.</span><p><p id="cce_10_0216__p1127482013249"><strong id="cce_10_0216__b8874010124511">kubectl get ds</strong></p>
+<pre class="screen" id="cce_10_0216__screen148241342419">$ kubectl get ds
+NAME              DESIRED   CURRENT   READY   UP-TO-DATE   AVAILABLE   NODE SELECTOR   AGE
+nginx-daemonset   1         1         0       1            0           daemon=need     116s</pre>
+</p></li><li id="cce_10_0216__li128617541093"><span>If the workload will be accessed through a ClusterIP or NodePort Service, set the corresponding workload access type. For details, see <a href="cce_10_0020.html">Networking</a>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0222.html b/docs/cce/umn/cce_10_0222.html
new file mode 100644
index 00000000..cbe4ccd7
--- /dev/null
+++ b/docs/cce/umn/cce_10_0222.html
@@ -0,0 +1,411 @@
+<a name="cce_10_0222"></a><a name="cce_10_0222"></a>
+
+<h1 class="topictitle1">Managing a Node Pool</h1>
+<div id="body1570701009069"><div class="section" id="cce_10_0222__section2858332152410"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0222__p2827196112510">The default node pool DefaultPool does not support the following management operations.</p>
+</div>
+<div class="section" id="cce_10_0222__section34573421435"><h4 class="sectiontitle">Configuring Kubernetes Parameters</h4><p id="cce_10_0222__p143621952143410">CCE allows you to highly customize Kubernetes parameter settings on core components in a cluster. For more information, see <a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/" target="_blank" rel="noopener noreferrer">kubelet</a>.</p>
+<p id="cce_10_0222__p19591154615282">This function is supported only in clusters of <strong id="cce_10_0222__b114111442163">v1.15 and later</strong>. It is not displayed for clusters earlier than v1.15.</p>
+<ol id="cce_10_0222__ol14922951130"><li id="cce_10_0222__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li2075471341"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol11924193611121"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b14929136121214">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li4919175839"><span>Choose <strong id="cce_10_0222__b5599109121312">More</strong> &gt; <strong id="cce_10_0222__b14325144615259">Manage</strong> next to the node pool name.</span></li><li id="cce_10_0222__li20922452316"><span>On the <span class="uicontrol" id="cce_10_0222__uicontrol6836923125811"><b>Manage Component</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table39227516315" frame="border" border="1" rules="all"><caption><b>Table 1 </b>kubelet</caption><thead align="left"><tr id="cce_10_0222__row59201451536"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.1.2.5.1.1"><p id="cce_10_0222__p199191758311">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.1.2.5.1.2"><p id="cce_10_0222__p09208511315">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.1.2.5.1.3"><p id="cce_10_0222__p69201514317">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.1.2.5.1.4"><p id="cce_10_0222__p123651546173612">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0222__row11921251238"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p20921756312">cpu-manager-policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p17921952039">Specifies the CPU core binding configuration. For details, see <a href="cce_10_0551.html">CPU Core Binding</a>.</p>
+<ul id="cce_10_0222__ul25409302147"><li id="cce_10_0222__li1054043061419"><strong id="cce_10_0222__b17614473461">none</strong>: disables pods from exclusively occupying CPUs. Select this value if you want a large pool of shareable CPU cores.</li><li id="cce_10_0222__li954016300142"><strong id="cce_10_0222__b10647612184715">static</strong>: enables pods to exclusively occupy CPUs. Select this value if your workload is sensitive to latency in CPU cache and scheduling.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p992175733">none</p>
+</td>
+<td class="cellrowborder" rowspan="8" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p3365646173618">The values can be modified during the node pool lifecycle.</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row192120517312"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p1292113519312">kube-api-qps</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p1392155933">Query per second (QPS) to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p192125435">100</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row189211251930"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p179211857313">kube-api-burst</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p14921205536">Burst to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p17921951232">100</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row1992115514319"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p199211558318">max-pods</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p139211750310">Maximum number of pods managed by kubelet.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p792112514314">40</p>
+<p id="cce_10_0222__p15336122815358">20</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row1423519271022"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p1424218271326">pod-pids-limit</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p72425271023">PID limit in Kubernetes</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p2024282719213">-1</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row139221751031"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p39211451232">with-local-dns</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p11922155317">Whether to use the local IP address as the ClusterDNS of the node.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p159222510310">false</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row1016115483359"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p2036473943312">event-qps</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p183642398336">QPS limit for event creation</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1336453943317">5</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row119221051531"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p392225737">allowed-unsafe-sysctls</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p292218515312">Insecure system configuration allowed.</p>
+<p id="cce_10_0222__p1255654524218">Starting from <strong id="cce_10_0222__b364452812182">v1.17.17</strong>, CCE enables pod security policies for kube-apiserver. You need to add corresponding configurations to <strong id="cce_10_0222__b1486018719195">allowedUnsafeSysctls</strong> of a pod security policy to make the policy take effect. (This configuration is not required for clusters earlier than v1.17.17.) For details, see <a href="cce_10_0275.html#cce_10_0275__section155111941177">Example of Enabling Unsafe Sysctls in Pod Security Policy</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p79221551538">[]</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row12311326570"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p137161681620">over-subscription-resource</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p19712016121614">Whether to enable node oversubscription.</p>
+<p id="cce_10_0222__p2083075010179">If this parameter is set to <strong id="cce_10_0222__b11113448194819">true</strong>, the node oversubscription feature is enabled. For details, see <a href="cce_10_0384.html">Hybrid Deployment of Online and Offline Jobs</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1339317196101">true</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p1071816111618">-</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row12765512616"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p11357434195317">colocation</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p1735793485317">Whether to enable node hybrid deployment.</p>
+<p id="cce_10_0222__p1664918289104">If this parameter is set to <strong id="cce_10_0222__b9328929125010">true</strong>, the node hybrid deployment feature is enabled. For details, see <a href="cce_10_0384.html">Hybrid Deployment of Online and Offline Jobs</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1235713343536">true</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p835714349538">-</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row362443718199"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p1362593715194">kube-reserved-mem</p>
+<p id="cce_10_0222__p17130736112118">system-reserved-mem</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p6625153710197">Reserved node memory.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1625193751919">Depends on node specifications. For details, see <a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p5625123701913">The sum of kube-reserved-mem and system-reserved-mem is less than half of the memory.</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row0769163972815"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p187704396286">topology-manager-policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p194194963117">Set the topology management policy.</p>
+<p id="cce_10_0222__p180294523117">Valid values are as follows:</p>
+<ul id="cce_10_0222__ul9802545113118"><li id="cce_10_0222__li280214514318"><strong id="cce_10_0222__b683681415119">restricted</strong>: kubelet accepts only pods that achieve optimal NUMA alignment on the requested resources.</li><li id="cce_10_0222__li88031945143113"><strong id="cce_10_0222__b849151795120">best-effort</strong>: kubelet preferentially selects pods that implement NUMA alignment on CPU and device resources.</li><li id="cce_10_0222__li168031045123113"><strong id="cce_10_0222__b3186182155119">none</strong> (default): The topology management policy is disabled.</li><li id="cce_10_0222__li02141356163216"><strong id="cce_10_0222__b1636224135113">single-numa-node</strong>: kubelet allows only pods that are aligned to the same NUMA node in terms of CPU and device resources.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p477010397282">none</p>
+</td>
+<td class="cellrowborder" rowspan="2" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p18868132111335">The values can be modified during the node pool lifecycle.</p>
+<div class="notice" id="cce_10_0222__note89763063412"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0222__p521818615343">Exercise caution when modifying topology-manager-policy and topology-manager-scope will restart kubelet and recalculate the resource allocation of pods based on the modified policy. As a result, running pods may restart or even fail to receive any resources.</p>
+<p id="cce_10_0222__p169763011340"></p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0222__row363114444281"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p4631124411282">topology-manager-scope</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p183841836183219">Set the resource alignment granularity of the topology management policy. Valid values are as follows:</p>
+<ul id="cce_10_0222__ul3384836153218"><li id="cce_10_0222__li038413613218"><strong id="cce_10_0222__b14220143820516">container</strong> (default)</li><li id="cce_10_0222__li13216195983210"><strong id="cce_10_0222__b206331542155113">pod</strong></li></ul>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p136311744192811">container</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row111258127710"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p149731155143115">resolv-conf</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p1097385593111">DNS resolution configuration file specified by the container</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p69731755173113">The default value is null.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p15764161811394">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table1571891811414" frame="border" border="1" rules="all"><caption><b>Table 2 </b>kube-proxy</caption><thead align="left"><tr id="cce_10_0222__row167189181747"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.2.2.5.1.1"><p id="cce_10_0222__p107181181415">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.2.2.5.1.2"><p id="cce_10_0222__p87185181642">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.2.2.5.1.3"><p id="cce_10_0222__p37181188420">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.2.2.5.1.4"><p id="cce_10_0222__p1471881813414">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0222__row207193186419"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.1 "><p id="cce_10_0222__p8845421957">conntrack-min</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.2 "><p id="cce_10_0222__p148451227515">sysctl -w net.nf_conntrack_max</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.3 "><p id="cce_10_0222__p18456215515">131072</p>
+</td>
+<td class="cellrowborder" rowspan="2" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.4 "><p id="cce_10_0222__p27191618446">The values can be modified during the node pool lifecycle.</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row6523175217418"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.2.2.5.1.1 "><p id="cce_10_0222__p1984513217519">conntrack-tcp-timeout-close-wait</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.2.2.5.1.2 "><p id="cce_10_0222__p128459215512">sysctl -w net.netfilter.nf_conntrack_tcp_timeout_close_wait</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.2.2.5.1.3 "><p id="cce_10_0222__p9845132753">1h0m0s</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table191081201418" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Network components (available only for CCE Turbo clusters)</caption><thead align="left"><tr id="cce_10_0222__row1410911019116"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.3.2.5.1.1"><p id="cce_10_0222__p41091501917">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.3.2.5.1.2"><p id="cce_10_0222__p6109140914">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.3.2.5.1.3"><p id="cce_10_0222__p5109130310">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.3.2.5.1.4"><p id="cce_10_0222__p2109803111">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0222__row6109501911"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p83386191515">nic-threshold</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p1338181913113">Low threshold of the number of bound ENIs:High threshold of the number of bound ENIs</p>
+<div class="note" id="cce_10_0222__note33382191715"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p103387191618">This parameter is being discarded. Use the dynamic pre-binding parameters of the other four ENIs.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p633820191315">Default: 0:0</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p8110201815">-</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row113597313118"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p193381519112">nic-minimum-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p16339131911115">Minimum number of ENIs bound to the nodes in the node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p033918197116">Default: 10</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p936113216">-</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row1330911415115"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p933916192120">nic-maximum-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p143398192110">Maximum number of ENIs pre-bound to a node at the node pool level</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p13339819513">Default: 0</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p1331017416118">-</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row48521749118"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p233910191217">nic-warm-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p1233918192111">Number of ENIs pre-bound to a node at the node pool level</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p11339919410">Default: 2</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p1853140119">-</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row10457153114"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p73391219914">nic-max-above-warm-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p033941919119">Reclaim number of ENIs pre-bound to a node at the node pool level</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p833919195115">Default: 2</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p11457125513">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table154151221155917" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Pod security group in a node pool (available only for CCE Turbo clusters)</caption><thead align="left"><tr id="cce_10_0222__row10416122195916"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.4.2.5.1.1"><p id="cce_10_0222__p0416142185919">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.4.2.5.1.2"><p id="cce_10_0222__p17416821175918">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.4.2.5.1.3"><p id="cce_10_0222__p1241616210595">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.4.2.5.1.4"><p id="cce_10_0222__p741692165912">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0222__row104166213595"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.4.2.5.1.1 "><p id="cce_10_0222__p34194417595">security_groups_for_nodepool</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.4.2.5.1.2 "><ul id="cce_10_0222__ul1641174410590"><li id="cce_10_0222__li114114443592">Default security group used by pods in a node pool. You can enter the security group ID. If this parameter is not set, the default security group of the cluster container network is used. A maximum of five security group IDs can be specified at the same time, separated by semicolons (;).</li><li id="cce_10_0222__li4419444591">The priority of the security group is lower than that of the security group configured for the <a href="cce_10_0288.html">SecurityGroup</a> resource object.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.4.2.5.1.3 "><p id="cce_10_0222__p114116445597">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.4.2.5.1.4 "><p id="cce_10_0222__p1541944135919">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table36626237217" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Docker (available only for node pools that use Docker)</caption><thead align="left"><tr id="cce_10_0222__row1066210231324"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.5.2.5.1.1"><p id="cce_10_0222__p9662182318210">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.5.2.5.1.2"><p id="cce_10_0222__p466218231720">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.5.2.5.1.3"><p id="cce_10_0222__p186628235215">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.5.2.5.1.4"><p id="cce_10_0222__p1766213231829">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0222__row46629235211"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p11685711317">native-umask</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p1616857733">`--exec-opt native.umask</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p3168137134">normal</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p111684711314">Cannot be changed.</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row106633238210"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p17168971837">docker-base-size</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p6168671733">`--storage-opts dm.basesize</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p616816719313">0</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p18168170310">Cannot be changed.</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row866332311214"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p101688716312">insecure-registry</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p19168476317">Address of an insecure image registry</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p9168197739">false</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p121688713318">Cannot be changed.</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row174045431722"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p171685712315">limitcore</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p1292464083115">Maximum size of a core file in a container. The unit is byte.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p1116997338">5368709120</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p4169274317">-</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row14622447029"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p20169570312">default-ulimit-nofile</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p5169127934">Limit on the number of handles in a container</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p916918717314">{soft}:{hard}</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p91697713315">The value cannot exceed the value of the kernel parameter <strong id="cce_10_0222__b10341949704">nr_open</strong> and cannot be a negative number.</p>
+<p id="cce_10_0222__p18169271534">You can run the following command to obtain the kernel parameter <strong id="cce_10_0222__b1060217181719">nr_open</strong>:</p>
+<pre class="screen" id="cce_10_0222__screen716912711319">sysctl -a | grep nr_open</pre>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0222__li1092210513312"><span>Click <strong id="cce_10_0222__b39759371215">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0222__section359343125016"><h4 class="sectiontitle">Editing a Node Pool</h4><ol id="cce_10_0222__ol87116345495"><li id="cce_10_0222__li095292023413"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li3952220173414"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol5229158131515"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b023545817153">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li128412475118"><span>Click <strong id="cce_10_0222__b157451843191518">Edit</strong> next to the name of the node pool you will edit. In the <strong id="cce_10_0222__b15577259141511">Edit Node Pool</strong> page, edit the following parameters:</span><p><div class="p" id="cce_10_0222__p118166389258"><strong id="cce_10_0222__b2052072818498">Basic Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table6454152183120" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Basic settings</caption><thead align="left"><tr id="cce_10_0222__row194522023319"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.1.2.2.3.1.1"><p id="cce_10_0222__p1452192133119">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.1.2.2.3.1.2"><p id="cce_10_0222__p114521229312">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0222__row164535216319"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_10_0222__p18452325317">Node Pool Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_10_0222__p1345314243116">Name of the node pool.</p>
+</td>
+</tr>
+<tr id="cce_10_0222__row545316217315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_10_0222__p10453162193118">Auto Scaling</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_10_0222__p2045322133110">By default, this parameter is disabled.</p>
+<p id="cce_10_0222__p94531624314">After you enable autoscaler by clicking <span><img id="cce_10_0222__image164531263118" src="en-us_image_0000001528627005.png"></span>, nodes in the node pool are automatically created or deleted based on service requirements.</p>
+<ul id="cce_10_0222__ul11453322315"><li id="cce_10_0222__li1453326312"><strong id="cce_10_0222__b33221567500">Maximum Nodes</strong> and <strong id="cce_10_0222__b2032275614509">Minimum Nodes</strong>: You can set the maximum and minimum number of nodes to ensure that the number of nodes to be scaled is within a proper range.</li><li id="cce_10_0222__li84536212313"><strong id="cce_10_0222__b731522510111">Priority</strong>: A larger value indicates a higher priority. For example, if this parameter is set to <strong id="cce_10_0222__b1132032551117">1</strong> and <strong id="cce_10_0222__b19321925191115">4</strong> respectively for node pools A and B, B has a higher priority than A, and auto scaling is first triggered for B. If the priorities of multiple node pools are set to the same value, for example, <strong id="cce_10_0222__b13780179155114">2</strong>, the node pools are not prioritized and the system performs scaling based on the minimum resource waste principle.</li><li id="cce_10_0222__li94531923318"><strong id="cce_10_0222__b42361920165114">Cooldown Period</strong>: Required. The unit is minute. This parameter indicates the interval between the previous scale-out action and the next scale-in action.</li></ul>
+<p id="cce_10_0222__p645312233113">If the <strong id="cce_10_0222__b66651050185114">Autoscaler</strong> field is set to on, install the <a href="cce_10_0154.html">autoscaler add-on</a> to use the autoscaler feature.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="p" id="cce_10_0222__p63204532313"><strong id="cce_10_0222__b153134535712">Advanced Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table1388513493324" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Advanced settings</caption><thead align="left"><tr id="cce_10_0222__row1886164917324"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.2.2.2.3.1.1"><p id="cce_10_0222__p20886649143214">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.2.2.2.3.1.2"><p id="cce_10_0222__p1188694963213">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0222__row1888624910324"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p688619499325">K8s label</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0222__p1588624993215">Click <strong id="cce_10_0222__b939758105810">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0222__p388612497324">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+<div class="note" id="cce_10_0222__note72401322193313"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p20240422183311">After a <span class="parmname" id="cce_10_0222__parmname1164228174412"><b>K8s label</b></span> is modified, the inventory nodes in the node pool are updated synchronously.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0222__row10887134923219"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p888714923217">Resource Tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0222__p16887144933210">You can add resource tags to classify resources.</p>
+<p id="cce_10_0222__p18871349143217">You can create <strong id="cce_10_0222__b1827121301619">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0222__p18887649123215">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0222__i10583350145811">node id</em>" tag.</p>
+<div class="note" id="cce_10_0222__note076235953416"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p1976265917345">After a <span class="parmname" id="cce_10_0222__parmname4487625174410"><b>resource tag</b></span> is modified, the modification automatically takes effect when a node is added. For existing nodes, you need to manually reset the nodes for the modification to take effect.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0222__row3887849173215"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p19887164914326">Taint</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><div class="p" id="cce_10_0222__p18870496323">This field is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0222__ul188871749133213"><li id="cce_10_0222__li198871349123212"><strong id="cce_10_0222__b138225358187">Key</strong>: A key must contain 1 to 63 characters starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0222__li188871549153212"><strong id="cce_10_0222__b172009380180">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0222__li1988734917326"><strong id="cce_10_0222__b20244184015182">Effect</strong>: Available options are <strong id="cce_10_0222__b19246154041816">NoSchedule</strong>, <strong id="cce_10_0222__b824764019183">PreferNoSchedule</strong>, and <strong id="cce_10_0222__b624994001818">NoExecute</strong>.</li></ul>
+</div>
+<p id="cce_10_0222__p1188713495328">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
+<div class="note" id="cce_10_0222__note0631151634312"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p1263111644312">After a <span class="parmname" id="cce_10_0222__parmname66671618134415"><b>taint</b></span> is modified, the inventory nodes in the node pool are updated synchronously.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0222__row105511962411"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p15520615414">Edit Key pair</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0222__p10552156947">Only node pools that use key pairs for login support key pair editing. You can select another key pair.</p>
+<div class="note" id="cce_10_0222__note528463510616"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p1528512351611">The edited key pair automatically takes effect when a node is added. For existing nodes, you need to manually reset the nodes for the key pair to take effect.</p>
+</div></div>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0222__li12598104717491"><span>Click <span class="uicontrol" id="cce_10_0222__uicontrol203921431163"><b>OK</b></span>.</span><p><p id="cce_10_0222__p17311940154315">In the node pool list, the node pool status becomes <strong id="cce_10_0222__b16788571549">Scaling</strong>. After the status changes to <strong id="cce_10_0222__b124741019555">Completed</strong>, the node pool parameters are modified successfully. The modified configuration will be synchronized to all nodes in the node pool.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0222__section135941731115017"><h4 class="sectiontitle">Deleting a Node Pool</h4><p id="cce_10_0222__p63181335329">Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools. If pods in the node pool have a specific node selector and none of the other nodes in the cluster satisfies the node selector, the pods will become unschedulable.</p>
+<ol id="cce_10_0222__ol19318113515214"><li id="cce_10_0222__li626314228364"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li152641222183610"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol151105317337"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b85155312331">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li1896716618513"><span>Choose <span class="uicontrol" id="cce_10_0222__uicontrol596810675118"><b>More &gt; Delete</b></span> next to a node pool name to delete the node pool.</span></li><li id="cce_10_0222__li883285012530"><span>Read the precautions in the <span class="uicontrol" id="cce_10_0222__uicontrol783245095319"><b>Delete Node Pool</b></span> dialog box.</span></li><li id="cce_10_0222__li131704612145"><span>In the text box, click <span class="uicontrol" id="cce_10_0222__uicontrol3404931191915"><b>Yes</b></span> to confirm that you want to continue the deletion.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0222__section550619571556"><a name="cce_10_0222__section550619571556"></a><a name="section550619571556"></a><h4 class="sectiontitle">Copying a Node Pool</h4><p id="cce_10_0222__p050645718552">You can copy the configuration of an existing node pool to create a new node pool on the CCE console.</p>
+<ol id="cce_10_0222__ol12506185710555"><li id="cce_10_0222__li11561534103619"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li16561134183613"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol20263122721118"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b026322716114">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li55061457115511"><span>Choose <span class="uicontrol" id="cce_10_0222__uicontrol09861940292"><b>More &gt; Copy</b></span> next to a node pool name to copy the node pool.</span></li><li id="cce_10_0222__li0507185735518"><span>The configurations of the selected node pool are replicated to the <span class="uicontrol" id="cce_10_0222__uicontrol32610193313"><b>Clone Node Pool</b></span> page. You can edit the configurations as required and click <span class="uicontrol" id="cce_10_0222__uicontrol18262151919311"><b>Next: Confirm</b></span>.</span></li><li id="cce_10_0222__li19507165717559"><span>On the <span class="uicontrol" id="cce_10_0222__uicontrol12198116121716"><b>Confirm</b></span> page, confirm the node pool configuration and click <span class="uicontrol" id="cce_10_0222__uicontrol10204171681716"><b>Create Now</b></span>. Then, a new node pool is created based on the edited configuration.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0222__section8215206283"><h4 class="sectiontitle">Migrating a Node</h4><p id="cce_10_0222__p773035719282">Nodes in a node pool can be migrated. Currently, nodes in a node pool can be migrated only to the default node pool (defaultpool) in the same cluster.</p>
+<ol id="cce_10_0222__ol5730185713281"><li id="cce_10_0222__li20851203991514"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0222__li1673005710288"><span>In the navigation pane, choose <span class="uicontrol" id="cce_10_0222__uicontrol17730135714286"><b>Nodes</b></span> and switch to the <span class="uicontrol" id="cce_10_0222__uicontrol19561181611510"><b>Node Pools</b></span> tab page.</span></li><li id="cce_10_0222__li7730165772816"><span>Click <span class="uicontrol" id="cce_10_0222__uicontrol127301057172819"><b>View Node</b></span> in the <strong id="cce_10_0222__b10521123712510">Operation</strong> column of the node pool to be migrated.</span></li><li id="cce_10_0222__li1969510121085"><span>Select the nodes to be migrated and choose <strong id="cce_10_0222__b211368172613">More</strong> &gt; <strong id="cce_10_0222__b11872413132613">Migrate</strong> to migrate the nodes to the default node pool in batches.</span><p><p id="cce_10_0222__p19900192812184">You can also choose <strong id="cce_10_0222__b13855419275">More</strong> &gt; <strong id="cce_10_0222__b385775616279">Migrate</strong> in the <strong id="cce_10_0222__b1031695918274">Operation</strong> column of a single node to migrate the node.</p>
+<p id="cce_10_0222__p133352287184"></p>
+</p></li><li id="cce_10_0222__li187591229173716"><span>In the displayed <span class="uicontrol" id="cce_10_0222__uicontrol198741318123818"><b>Migrate Node</b></span> window, confirm the information.</span><p><div class="note" id="cce_10_0222__note182620211405"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0222__p19251111615611">The migration has no impacts on the original resource tags, Kubernetes labels, and taints of the node.</p>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0035.html">Node Pools</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0232.html b/docs/cce/umn/cce_10_0232.html
new file mode 100644
index 00000000..28cd9a17
--- /dev/null
+++ b/docs/cce/umn/cce_10_0232.html
@@ -0,0 +1,397 @@
+<a name="cce_10_0232"></a><a name="cce_10_0232"></a>
+
+<h1 class="topictitle1">Scheduling Policy (Affinity/Anti-affinity)</h1>
+<div id="body1571648302093"><p id="cce_10_0232__p8060118">A nodeSelector provides a very simple way to constrain pods to nodes with particular labels, as mentioned in <a href="cce_10_0216.html">Creating a DaemonSet</a>. The affinity and anti-affinity feature greatly expands the types of constraints you can express.</p>
+<p id="cce_10_0232__p14784281034">Kubernetes supports node-level and pod-level affinity and anti-affinity. You can configure custom rules to achieve affinity and anti-affinity scheduling. For example, you can deploy frontend pods and backend pods together, deploy the same type of applications on a specific node, or deploy different applications on different nodes.</p>
+<div class="section" id="cce_10_0232__section1665272918139"><h4 class="sectiontitle">Node Affinity (nodeAffinity)</h4><p id="cce_10_0232__p1649843461320">Labels are the basis of affinity rules. Let's look at the labels on nodes in a cluster.</p>
+<pre class="screen" id="cce_10_0232__screen426772272715">$ kubectl describe node 192.168.0.212
+Name:               192.168.0.212
+Roles:              &lt;none&gt;
+Labels:             beta.kubernetes.io/arch=amd64
+                    beta.kubernetes.io/os=linux
+                    failure-domain.beta.kubernetes.io/is-baremetal=false
+                    failure-domain.beta.kubernetes.io/region=******
+                    failure-domain.beta.kubernetes.io/zone=******
+                    kubernetes.io/arch=amd64
+                    kubernetes.io/availablezone=******
+                    kubernetes.io/eniquota=12
+                    kubernetes.io/hostname=192.168.0.212
+                    kubernetes.io/os=linux
+                    node.kubernetes.io/subnetid=fd43acad-33e7-48b2-a85a-24833f362e0e
+                    os.architecture=amd64
+                    os.name=EulerOS_2.0_SP5
+                    os.version=3.10.0-862.14.1.5.h328.eulerosv2r7.x86_64</pre>
+<p id="cce_10_0232__p8395145542912">These labels are automatically added by CCE during node creation. The following describes a few that are frequently used during scheduling.</p>
+<ul id="cce_10_0232__ul127499910294"><li id="cce_10_0232__li371042233010"><strong id="cce_10_0232__b71840529553">failure-domain.beta.kubernetes.io/region</strong>: region where the node is located.</li><li id="cce_10_0232__li1494511817339"><strong id="cce_10_0232__b16165124295520">failure-domain.beta.kubernetes.io/zone</strong>: availability zone to which the node belongs.</li><li id="cce_10_0232__li57492916296"><strong id="cce_10_0232__b11893830205613">kubernetes.io/hostname</strong>: host name of the node.</li></ul>
+<p id="cce_10_0232__p14720123173511">When you deploy pods, you can use a nodeSelector, as described in <a href="cce_10_0216.html">DaemonSet</a>, to constrain pods to nodes with specific labels. The following example shows how to use a nodeSelector to deploy pods only on the nodes with the <strong id="cce_10_0232__b1139910455565">gpu=true</strong> label.</p>
+<pre class="screen" id="cce_10_0232__screen1741420109362">apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  nodeSelector:                 # Node selection. A pod is deployed on a node only when the node has the <strong id="cce_10_0232__b168005496563">gpu=true</strong> label.
+    gpu: true
+...</pre>
+<div class="p" id="cce_10_0232__p9838151173813">Node affinity rules can achieve the same results, as shown in the following example.<pre class="screen" id="cce_10_0232__screen163933254405">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name:  gpu
+  labels:
+    app:  gpu
+spec:
+  selector:
+    matchLabels:
+      app: gpu
+  replicas: 3
+  template:
+    metadata:
+      labels:
+        app:  gpu
+    spec:
+      containers:
+      - image:  nginx:alpine
+        name:  gpu
+        resources:
+          requests:
+            cpu: 100m
+            memory: 200Mi
+          limits:
+            cpu: 100m
+            memory: 200Mi
+      imagePullSecrets:
+      - name: default-secret
+      affinity:
+        nodeAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            nodeSelectorTerms:
+            - matchExpressions:
+              - key: gpu
+                operator: In
+                values:
+                - "true"</pre>
+</div>
+<p id="cce_10_0232__p872873864311">Even though the node affinity rule requires more lines, it is more expressive, which will be further described later.</p>
+<p id="cce_10_0232__p13756177174919"><strong id="cce_10_0232__b19552168115814">requiredDuringSchedulingIgnoredDuringExecution</strong> seems to be complex, but it can be easily understood as a combination of two parts.</p>
+<ul id="cce_10_0232__ul17285714134916"><li id="cce_10_0232__li18285414134915">requiredDuringScheduling indicates that pods can be scheduled to the node only when all the defined rules are met (required).</li><li id="cce_10_0232__li152851014134915">IgnoredDuringExecution indicates that pods already running on the node do not need to meet the defined rules. That is, a label on the node is ignored, and pods that require the node to contain that label will not be re-scheduled.</li></ul>
+<p id="cce_10_0232__p3133191362319">In addition, the value of <strong id="cce_10_0232__b420764115810">operator</strong> is <strong id="cce_10_0232__b92139419589">In</strong>, indicating that the label value must be in the values list. Other available operator values are as follows:</p>
+<ul id="cce_10_0232__ul761616252"><li id="cce_10_0232__li186115112515"><strong id="cce_10_0232__b12163446582">NotIn</strong>: The label value is not in a list.</li><li id="cce_10_0232__li961161112511"><strong id="cce_10_0232__b1633184735818">Exists</strong>: A specific label exists.</li><li id="cce_10_0232__li86111116256"><strong id="cce_10_0232__b19920249105811">DoesNotExist</strong>: A specific label does not exist.</li><li id="cce_10_0232__li86120115255"><strong id="cce_10_0232__b15840115214585">Gt</strong>: The label value is greater than a specified value (string comparison).</li><li id="cce_10_0232__li18611018254"><strong id="cce_10_0232__b17310138307">Lt</strong>: The label value is less than a specified value (string comparison).</li></ul>
+<p id="cce_10_0232__p982815812264">Note that there is no such thing as nodeAntiAffinity because operators <strong id="cce_10_0232__b8458411605">NotIn</strong> and <strong id="cce_10_0232__b144645117019">DoesNotExist</strong> provide the same function.</p>
+<p id="cce_10_0232__p165721693914">The following describes how to check whether the rule takes effect. Assume that a cluster has three nodes.</p>
+<pre class="screen" id="cce_10_0232__screen140818111298">$ kubectl get node
+NAME            STATUS   ROLES    AGE   VERSION                            
+192.168.0.212   Ready    &lt;none&gt;   13m   v1.15.6-r1-20.3.0.2.B001-15.30.2
+192.168.0.94    Ready    &lt;none&gt;   13m   v1.15.6-r1-20.3.0.2.B001-15.30.2   
+192.168.0.97    Ready    &lt;none&gt;   13m   v1.15.6-r1-20.3.0.2.B001-15.30.2   </pre>
+<p id="cce_10_0232__p492899145111">Add the <strong id="cce_10_0232__b1561275563517">gpu=true</strong> label to the <strong id="cce_10_0232__b7701191914361">192.168.0.212</strong> node.</p>
+<pre class="screen" id="cce_10_0232__screen1628537145314">$ kubectl label node 192.168.0.212 gpu=true
+node/192.168.0.212 labeled
+
+$ kubectl get node -L gpu
+NAME            STATUS   ROLES    AGE   VERSION                            GPU
+192.168.0.212   Ready    &lt;none&gt;   13m   v1.15.6-r1-20.3.0.2.B001-15.30.2   true
+192.168.0.94    Ready    &lt;none&gt;   13m   v1.15.6-r1-20.3.0.2.B001-15.30.2   
+192.168.0.97    Ready    &lt;none&gt;   13m   v1.15.6-r1-20.3.0.2.B001-15.30.2   </pre>
+<p id="cce_10_0232__p1652013550538">Create the Deployment. You can find that all pods are deployed on the <strong id="cce_10_0232__b523412718360">192.168.0.212</strong> node.</p>
+<pre class="screen" id="cce_10_0232__screen15298123225413">$ kubectl create -f affinity.yaml 
+deployment.apps/gpu created
+
+$ kubectl get pod -o wide
+NAME                     READY   STATUS    RESTARTS   AGE   IP            NODE         
+gpu-6df65c44cf-42xw4     1/1     Running   0          15s   172.16.0.37   192.168.0.212
+gpu-6df65c44cf-jzjvs     1/1     Running   0          15s   172.16.0.36   192.168.0.212
+gpu-6df65c44cf-zv5cl     1/1     Running   0          15s   172.16.0.38   192.168.0.212</pre>
+</div>
+<div class="section" id="cce_10_0232__section168955237561"><h4 class="sectiontitle">Node Preference Rule</h4><p id="cce_10_0232__p320564375620">The preceding <strong id="cce_10_0232__b169534143612">requiredDuringSchedulingIgnoredDuringExecution</strong> rule is a hard selection rule. There is another type of selection rule, that is, <strong id="cce_10_0232__b1169153453620">preferredDuringSchedulingIgnoredDuringExecution</strong>. It is used to specify which nodes are preferred during scheduling.</p>
+<p id="cce_10_0232__p1413944714015">To achieve this effect, add a node attached with SAS disks to the cluster, add the <strong id="cce_10_0232__b26751852183611">DISK=SAS</strong> label to the node, and add the <strong id="cce_10_0232__b72101457203617">DISK=SSD</strong> label to the other three nodes. </p>
+<pre class="screen" id="cce_10_0232__screen183694610114">$ kubectl get node -L DISK,gpu
+NAME            STATUS   ROLES    AGE     VERSION                            DISK     GPU
+192.168.0.100   Ready    &lt;none&gt;   7h23m   v1.15.6-r1-20.3.0.2.B001-15.30.2   SAS   
+192.168.0.212   Ready    &lt;none&gt;   8h      v1.15.6-r1-20.3.0.2.B001-15.30.2   SSD      true
+192.168.0.94    Ready    &lt;none&gt;   8h      v1.15.6-r1-20.3.0.2.B001-15.30.2   SSD   
+192.168.0.97    Ready    &lt;none&gt;   8h      v1.15.6-r1-20.3.0.2.B001-15.30.2   SSD  </pre>
+<p id="cce_10_0232__p75709341339">Define a Deployment. Use the <strong id="cce_10_0232__b637343915817">preferredDuringSchedulingIgnoredDuringExecution</strong> rule to set the weight of nodes with the SSD disk installed as <strong id="cce_10_0232__b163741139155818">80</strong> and nodes with the <strong id="cce_10_0232__b18376239195814">gpu=true</strong> label as <strong id="cce_10_0232__b6377113910586">20</strong>. In this way, pods are preferentially deployed on the nodes with the SSD disk installed.</p>
+<pre class="screen" id="cce_10_0232__screen952147175512">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name:  gpu
+  labels:
+    app:  gpu
+spec:
+  selector:
+    matchLabels:
+      app: gpu
+  replicas: 10
+  template:
+    metadata:
+      labels:
+        app:  gpu
+    spec:
+      containers:
+      - image:  nginx:alpine
+        name:  gpu
+        resources:
+          requests:
+            cpu:  100m
+            memory:  200Mi
+          limits:
+            cpu:  100m
+            memory:  200Mi
+      imagePullSecrets:
+      - name: default-secret
+      affinity:
+        nodeAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+          - weight: 80 
+            preference: 
+              matchExpressions: 
+              - key: DISK
+                operator: In 
+                values: 
+                - SSD
+          - weight: 20 
+            preference: 
+              matchExpressions: 
+              - key: gpu
+                operator: In 
+                values: 
+                - "true"</pre>
+<p id="cce_10_0232__p15293645889">After the deployment, there are five pods deployed on the node <strong id="cce_10_0232__b12961271221">192.168.0.212</strong> (label: <strong id="cce_10_0232__b1693223714813">DISK=SSD</strong> and <strong id="cce_10_0232__b6739174915486">GPU=true</strong>), three pods deployed on the node <strong id="cce_10_0232__b17317583593">192.168.0.97</strong> (label: <strong id="cce_10_0232__b464510423517">DISK=SSD</strong>), and two pods deployed on the node <strong id="cce_10_0232__b119769203357">192.168.0.100</strong> (label: <strong id="cce_10_0232__b13755202412356">DISK=SAS</strong>).</p>
+<p id="cce_10_0232__p1758543301514">From the preceding output, you can find that no pods of the Deployment are scheduled to node <strong id="cce_10_0232__b1067392813916">192.168.0.94</strong> (label: <strong id="cce_10_0232__b11396121813610">DISK=SSD</strong>). This is because the node already has many pods on it and its resource usage is high. This also indicates that the <strong id="cce_10_0232__b7679628143918">preferredDuringSchedulingIgnoredDuringExecution</strong> rule defines a preference rather than a hard requirement.</p>
+<pre class="screen" id="cce_10_0232__screen5883659482">$ kubectl create -f affinity2.yaml 
+deployment.apps/gpu created
+
+$ kubectl get po -o wide
+NAME                   READY   STATUS    RESTARTS   AGE     IP            NODE         
+gpu-585455d466-5bmcz   1/1     Running   0          2m29s   172.16.0.44   192.168.0.212
+gpu-585455d466-cg2l6   1/1     Running   0          2m29s   172.16.0.63   192.168.0.97 
+gpu-585455d466-f2bt2   1/1     Running   0          2m29s   172.16.0.79   192.168.0.100
+gpu-585455d466-hdb5n   1/1     Running   0          2m29s   172.16.0.42   192.168.0.212
+gpu-585455d466-hkgvz   1/1     Running   0          2m29s   172.16.0.43   192.168.0.212
+gpu-585455d466-mngvn   1/1     Running   0          2m29s   172.16.0.48   192.168.0.97 
+gpu-585455d466-s26qs   1/1     Running   0          2m29s   172.16.0.62   192.168.0.97 
+gpu-585455d466-sxtzm   1/1     Running   0          2m29s   172.16.0.45   192.168.0.212
+gpu-585455d466-t56cm   1/1     Running   0          2m29s   172.16.0.64   192.168.0.100
+gpu-585455d466-t5w5x   1/1     Running   0          2m29s   172.16.0.41   192.168.0.212</pre>
+</div>
+<p id="cce_10_0232__p92179105145">In the preceding example, the node scheduling priority is as follows. Nodes with both <strong id="cce_10_0232__b16521734123815">SSD</strong> and <strong id="cce_10_0232__b3581134193816">gpu=true</strong> labels have the highest priority. Nodes with the <strong id="cce_10_0232__b195843443814">SSD</strong> label but no <strong id="cce_10_0232__b1258434143815">gpu=true</strong> label have the second priority (weight: 80). Nodes with the <strong id="cce_10_0232__b14581034133813">gpu=true</strong> label but no <strong id="cce_10_0232__b65883463817">SSD</strong> label have the third priority. Nodes without any of these two labels have the lowest priority.</p>
+<div class="fignone" id="cce_10_0232__fig1074885585814"><span class="figcap"><b>Figure 1 </b>Scheduling priority</span><br><span><img id="cce_10_0232__image1950520111683" src="en-us_image_0000001202101148.png"></span></div>
+<div class="section" id="cce_10_0232__section3218151791419"><h4 class="sectiontitle">Workload Affinity (podAffinity)</h4><p id="cce_10_0232__p9807315182015">Node affinity rules affect only the affinity between pods and nodes. Kubernetes also supports configuring inter-pod affinity rules. For example, the frontend and backend of an application can be deployed together on one node to reduce access latency. There are also two types of inter-pod affinity rules: <strong id="cce_10_0232__b217612455407">requiredDuringSchedulingIgnoredDuringExecution</strong> and <strong id="cce_10_0232__b17176194574018">preferredDuringSchedulingIgnoredDuringExecution</strong>.</p>
+<p id="cce_10_0232__p19665519228">Assume that the backend of an application has been created and has the <strong id="cce_10_0232__b67051008411">app=backend</strong> label.</p>
+<pre class="screen" id="cce_10_0232__screen0560223122512">$ kubectl get po -o wide
+NAME                       READY   STATUS    RESTARTS   AGE     IP            NODE         
+backend-658f6cb858-dlrz8   1/1     Running   0          2m36s   172.16.0.67   192.168.0.100</pre>
+<p id="cce_10_0232__p1620441962614">You can configure the following pod affinity rule to deploy the frontend pods of the application to the same node as the backend pods.</p>
+<pre class="screen" id="cce_10_0232__screen886384663812">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name:   frontend
+  labels:
+    app:  frontend
+spec:
+  selector:
+    matchLabels:
+      app: frontend
+  replicas: 3
+  template:
+    metadata:
+      labels:
+        app:  frontend
+    spec:
+      containers:
+      - image:  nginx:alpine
+        name:  frontend
+        resources:
+          requests:
+            cpu:  100m
+            memory:  200Mi
+          limits:
+            cpu:  100m
+            memory:  200Mi
+      imagePullSecrets:
+      - name: default-secret
+      affinity:
+        podAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - topologyKey: kubernetes.io/hostname
+            labelSelector:
+              matchExpressions: 
+              - key: app
+                operator: In 
+                values: 
+                - backend</pre>
+<p id="cce_10_0232__p14534252192611">Deploy the frontend and you can find that the frontend is deployed on the same node as the backend.</p>
+<pre class="screen" id="cce_10_0232__screen199741554162618">$ kubectl create -f affinity3.yaml 
+deployment.apps/frontend created
+
+$ kubectl get po -o wide
+NAME                        READY   STATUS    RESTARTS   AGE     IP            NODE         
+backend-658f6cb858-dlrz8    1/1     Running   0          5m38s   172.16.0.67   192.168.0.100
+frontend-67ff9b7b97-dsqzn   1/1     Running   0          6s      172.16.0.70   192.168.0.100
+frontend-67ff9b7b97-hxm5t   1/1     Running   0          6s      172.16.0.71   192.168.0.100
+frontend-67ff9b7b97-z8pdb   1/1     Running   0          6s      172.16.0.72   192.168.0.100</pre>
+<p id="cce_10_0232__p12885183116411">The <strong id="cce_10_0232__b11928182514117">topologyKey</strong> field specifies the selection range. The scheduler selects nodes within the range based on the affinity rule defined. The effect of <strong id="cce_10_0232__b18748184215413">topologyKey</strong> is not fully demonstrated in the preceding example because all the nodes have the <strong id="cce_10_0232__b774884217412">kubernetes.io/hostname</strong> label, that is, all the nodes are within the range.</p>
+<p id="cce_10_0232__p49155814502">To see how <strong id="cce_10_0232__b12680174454114">topologyKey</strong> works, assume that the backend of the application has two pods, which are running on different nodes.</p>
+<pre class="screen" id="cce_10_0232__screen152291428165020">$ kubectl get po -o wide
+NAME                       READY   STATUS    RESTARTS   AGE     IP            NODE         
+backend-658f6cb858-5bpd6   1/1     Running   0          23m     172.16.0.40   192.168.0.97
+backend-658f6cb858-dlrz8   1/1     Running   0          2m36s   172.16.0.67   192.168.0.100</pre>
+<p id="cce_10_0232__p2799287516">Add the <strong id="cce_10_0232__b17590648194118">prefer=true</strong> label to nodes <strong id="cce_10_0232__b1595748154116">192.168.0.97</strong> and <strong id="cce_10_0232__b15596124811411">192.168.0.94</strong>.</p>
+<pre class="screen" id="cce_10_0232__screen690692725113">$ kubectl label node 192.168.0.97 prefer=true
+node/192.168.0.97 labeled
+$ kubectl label node 192.168.0.94 prefer=true
+node/192.168.0.94 labeled
+
+$ kubectl get node -L prefer
+NAME            STATUS   ROLES    AGE   VERSION                            PREFER
+192.168.0.100   Ready    &lt;none&gt;   44m   v1.15.6-r1-20.3.0.2.B001-15.30.2   
+192.168.0.212   Ready    &lt;none&gt;   91m   v1.15.6-r1-20.3.0.2.B001-15.30.2   
+192.168.0.94    Ready    &lt;none&gt;   91m   v1.15.6-r1-20.3.0.2.B001-15.30.2   true
+192.168.0.97    Ready    &lt;none&gt;   91m   v1.15.6-r1-20.3.0.2.B001-15.30.2   true</pre>
+<p id="cce_10_0232__p82371197529">Define <strong id="cce_10_0232__b226612577417">topologyKey</strong> in the <strong id="cce_10_0232__b5266857174110">podAffinity</strong> section as <strong id="cce_10_0232__b13266757194119">prefer</strong>.</p>
+<pre class="screen" id="cce_10_0232__screen14634134685215">      affinity:
+        podAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - topologyKey: prefer
+            labelSelector:
+              matchExpressions: 
+              - key: app
+                operator: In 
+                values: 
+                - backend</pre>
+<p id="cce_10_0232__p885461775317">The scheduler recognizes the nodes with the <strong id="cce_10_0232__b315871114211">prefer</strong> label, that is, <strong id="cce_10_0232__b101644134211">192.168.0.97</strong> and <strong id="cce_10_0232__b1016413112425">192.168.0.94</strong>, and then find the pods with the <strong id="cce_10_0232__b3164111104218">app=backend</strong> label. In this way, all frontend pods are deployed onto <strong id="cce_10_0232__b616431114210">192.168.0.97</strong>.</p>
+<pre class="screen" id="cce_10_0232__screen11211143375517">$ kubectl create -f affinity3.yaml 
+deployment.apps/frontend created
+
+$ kubectl get po -o wide
+NAME                        READY   STATUS    RESTARTS   AGE     IP            NODE         
+backend-658f6cb858-5bpd6    1/1     Running   0          26m     172.16.0.40   192.168.0.97
+backend-658f6cb858-dlrz8    1/1     Running   0          5m38s   172.16.0.67   192.168.0.100
+frontend-67ff9b7b97-dsqzn   1/1     Running   0          6s      172.16.0.70   192.168.0.97
+frontend-67ff9b7b97-hxm5t   1/1     Running   0          6s      172.16.0.71   192.168.0.97
+frontend-67ff9b7b97-z8pdb   1/1     Running   0          6s      172.16.0.72   192.168.0.97</pre>
+</div>
+<div class="section" id="cce_10_0232__section59542620588"><h4 class="sectiontitle">Workload Anti-Affinity (podAntiAffinity)</h4><p id="cce_10_0232__p1837112018595">Unlike the scenarios in which pods are preferred to be scheduled onto the same node, sometimes, it could be the exact opposite. For example, if certain pods are deployed together, they will affect the performance.</p>
+<p id="cce_10_0232__p660518191831">The following example defines an inter-pod anti-affinity rule, which specifies that pods must not be scheduled to nodes that already have pods with the <strong id="cce_10_0232__b1294051894217">app=frontend</strong> label, that is, to deploy the pods of the frontend to different nodes with each node has only one replica.</p>
+<pre class="screen" id="cce_10_0232__screen204251341745">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name:   frontend
+  labels:
+    app:  frontend
+spec:
+  selector:
+    matchLabels:
+      app: frontend
+  replicas: 5
+  template:
+    metadata:
+      labels:
+        app:  frontend
+    spec:
+      containers:
+      - image:  nginx:alpine
+        name:  frontend
+        resources:
+          requests:
+            cpu:  100m
+            memory:  200Mi
+          limits:
+            cpu:  100m
+            memory:  200Mi
+      imagePullSecrets:
+      - name: default-secret
+      affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - topologyKey: kubernetes.io/hostname
+            labelSelector:
+              matchExpressions: 
+              - key: app
+                operator: In 
+                values: 
+                - frontend</pre>
+<p id="cce_10_0232__p5965143131410">Deploy the frontend and query the deployment results. You can find that each node has only one frontend pod and one pod of the Deployment is <strong id="cce_10_0232__b0841427104217">Pending</strong>. This is because when the scheduler is deploying the fifth pod, all nodes already have one pod with the <strong id="cce_10_0232__b108411827144217">app=frontend</strong> label on them. There is no available node. Therefore, the fifth pod will remain in the <strong id="cce_10_0232__b15841192744210">Pending</strong> status.</p>
+<pre class="screen" id="cce_10_0232__screen74071719171410">$ kubectl create -f affinity4.yaml 
+deployment.apps/frontend created
+
+$ kubectl get po -o wide
+NAME                        READY   STATUS    RESTARTS   AGE   IP            NODE         
+frontend-6f686d8d87-8dlsc   1/1     Running   0          18s   172.16.0.76   192.168.0.100
+frontend-6f686d8d87-d6l8p   0/1     Pending   0          18s   &lt;none&gt;        &lt;none&gt;       
+frontend-6f686d8d87-hgcq2   1/1     Running   0          18s   172.16.0.54   192.168.0.97 
+frontend-6f686d8d87-q7cfq   1/1     Running   0          18s   172.16.0.47   192.168.0.212
+frontend-6f686d8d87-xl8hx   1/1     Running   0          18s   172.16.0.23   192.168.0.94 </pre>
+</div>
+<div class="section" id="cce_10_0232__section14975195565810"><h4 class="sectiontitle">Configuring Scheduling Policies</h4><ol id="cce_10_0232__ol228103011185"><li id="cce_10_0232__li3604125131815"><span>Log in to the CCE console.</span></li><li id="cce_10_0232__li32521216162315"><span>When creating a workload, click <span class="uicontrol" id="cce_10_0232__uicontrol1869463216303"><b>Scheduling</b></span> in the <span class="uicontrol" id="cce_10_0232__uicontrol2694103215303"><b>Advanced Settings</b></span> area.</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0232__table202751247311" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node affinity settings</caption><thead align="left"><tr id="cce_10_0232__row6275154232"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.9.2.2.2.1.2.3.1.1"><p id="cce_10_0232__p11274641534">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.9.2.2.2.1.2.3.1.2"><p id="cce_10_0232__p12747418317">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0232__row1327511413311"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.2.2.1.2.3.1.1 "><p id="cce_10_0232__p1827516415318">Required</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.2.2.1.2.3.1.2 "><p id="cce_10_0232__p1427512410317">This is a hard rule that must be met for scheduling. It corresponds to <strong id="cce_10_0232__b1163153217176">required</strong><strong id="cce_10_0232__b4163143281718">DuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. Multiple required rules can be set, and scheduling will be performed if only one of them is met.</p>
+</td>
+</tr>
+<tr id="cce_10_0232__row112751441939"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.2.2.1.2.3.1.1 "><p id="cce_10_0232__p172751442316">Preferred</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.2.2.1.2.3.1.2 "><p id="cce_10_0232__p12275164932">This is a soft rule specifying preferences that the scheduler will try to enforce but will not guarantee. It corresponds to <strong id="cce_10_0232__b1873255212188">preferred</strong><strong id="cce_10_0232__b973320529188">DuringSchedulingIgnoredDuringExecution</strong> in Kubernetes. Scheduling is performed when one rule is met or none of the rules are met.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0232__li442203101314"><span>Under <strong id="cce_10_0232__b1059013572035">Node Affinity</strong>, <strong id="cce_10_0232__b292410716410">Workload Affinity</strong>, and <strong id="cce_10_0232__b3235121110415">Workload Anti-Affinity</strong>, click <span><img id="cce_10_0232__image684513499489" src="en-us_image_0000001203031716.png"></span> to add scheduling policies. In the dialog box displayed, add a policy directly or by specifying a node or an AZ.</span><p><div class="p" id="cce_10_0232__p17631515161414">Specifying a node or an AZ is essentially implemented through labels. The <strong id="cce_10_0232__b71812191020">kubernetes.io/hostname</strong> label is used when you specify a node, and the <strong id="cce_10_0232__b1310915241324">failure-domain.beta.kubernetes.io/zone</strong> label is used when you specify an AZ.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0232__table723331051417" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Scheduling policy configuration</caption><thead align="left"><tr id="cce_10_0232__row102330108147"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.9.2.3.2.1.3.2.3.1.1"><p id="cce_10_0232__p1423201015144">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.9.2.3.2.1.3.2.3.1.2"><p id="cce_10_0232__p20232151015147">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0232__row19233110171411"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.1 "><p id="cce_10_0232__p1323311105147">Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.2 "><p id="cce_10_0232__p1423331081410">Node label. You can use the default label or customize a label.</p>
+</td>
+</tr>
+<tr id="cce_10_0232__row9233111019149"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.1 "><p id="cce_10_0232__p3233191011410">Operator</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.2 "><p id="cce_10_0232__p1723314104146">The following relations are supported: <strong id="cce_10_0232__b169191614122213">In</strong>, <strong id="cce_10_0232__b164771016162210">NotIn</strong>, <strong id="cce_10_0232__b898721992219">Exists</strong>, <strong id="cce_10_0232__b669812342212">DoesNotExist</strong>, <strong id="cce_10_0232__b168911924102311">Gt</strong>, and <strong id="cce_10_0232__b889162462311">Lt</strong></p>
+<ul id="cce_10_0232__ul10233151017145"><li id="cce_10_0232__li92331510131411"><strong id="cce_10_0232__b135661645112318">In</strong>: A label exists in the label list.</li><li id="cce_10_0232__li423371031412"><strong id="cce_10_0232__b26231639172412">NotIn</strong>: A label does not exist in the label list.</li><li id="cce_10_0232__li623351001416"><strong id="cce_10_0232__b152126283511">Exists</strong>: A specific label exists.</li><li id="cce_10_0232__li14233171016140"><strong id="cce_10_0232__b975574143516">DoesNotExist</strong>: A specific label does not exist.</li><li id="cce_10_0232__li62331102148"><strong id="cce_10_0232__b15682967350">Gt</strong>: The label value is greater than a specified value (string comparison).</li><li id="cce_10_0232__li15233121011411"><strong id="cce_10_0232__b1330111719350">Lt</strong>: The label value is less than a specified value (string comparison).</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0232__row1523391051416"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.1 "><p id="cce_10_0232__p4233181016141">Label Value</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.2 "><p id="cce_10_0232__p1233131051415">Label value.</p>
+</td>
+</tr>
+<tr id="cce_10_0232__row13233810151420"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.1 "><p id="cce_10_0232__p196991729104014">Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.2 "><p id="cce_10_0232__p281835112545">This parameter is available only in a workload affinity or anti-affinity scheduling policy.</p>
+<p id="cce_10_0232__p47694256418">Namespace for which the scheduling policy takes effect.</p>
+</td>
+</tr>
+<tr id="cce_10_0232__row11982634104016"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.1 "><p id="cce_10_0232__p11982173424017">Topology Key</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.2 "><p id="cce_10_0232__p1073711319545">This parameter can be used only in a workload affinity or anti-affinity scheduling policy.</p>
+<p id="cce_10_0232__p1075725320423">Select the scope specified by <strong id="cce_10_0232__b194618313486">topologyKey</strong> and then select the content defined by the policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0232__row1389112844120"><td class="cellrowborder" valign="top" width="23.95%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.1 "><p id="cce_10_0232__p168911385411">Weight</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.05%" headers="mcps1.3.9.2.3.2.1.3.2.3.1.2 "><p id="cce_10_0232__p98926814113">This parameter can be set only in a <strong id="cce_10_0232__b57171024471">Preferred</strong> scheduling policy.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0245.html b/docs/cce/umn/cce_10_0245.html
new file mode 100644
index 00000000..6bffd14f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0245.html
@@ -0,0 +1,44 @@
+<a name="cce_10_0245"></a><a name="cce_10_0245"></a>
+
+<h1 class="topictitle1">Example: Designing and Configuring Permissions for Users in a Department</h1>
+<div id="body1598680778818"><div class="section" id="cce_10_0245__section139751042031"><h4 class="sectiontitle">Overview</h4><p id="cce_10_0245__p8060118">The conventional distributed task scheduling mode is being replaced by Kubernetes. CCE allows you to easily deploy, manage, and scale containerized applications in the cloud by providing support for you to use Kubernetes.</p>
+<p id="cce_10_0245__p14892147325">To help enterprise administrators manage resource permissions in clusters, CCE provides multi-dimensional, fine-grained permission policies and management measures. CCE permissions are described as follows:</p>
+<ul id="cce_10_0245__ul8502920121"><li id="cce_10_0245__li9502520122"><strong id="cce_10_0245__b154271431192616">Cluster-level permissions</strong>: allowing a user group to perform operations on clusters, nodes, node pools, charts, and add-ons. These permissions are assigned based on IAM system policies.</li><li id="cce_10_0245__li17502112011216"><strong id="cce_10_0245__b153923163214">Namespace-level permissions</strong>: allowing a user or user group to perform operations on Kubernetes resources, such as workloads, networking, storage, and namespaces. These permissions are assigned based on Kubernetes RBAC.</li></ul>
+<p id="cce_10_0245__p4534191349">Cluster permissions and namespace permissions are independent of each other but must be used together. The permissions set for a user group apply to all users in the user group. When multiple permissions are added to a user or user group, they take effect at the same time (the union set is used).</p>
+</div>
+<div class="section" id="cce_10_0245__section196214519418"><h4 class="sectiontitle">Permission Design</h4><p id="cce_10_0245__p18926715212">The following uses company X as an example.</p>
+<p id="cce_10_0245__p69182284289">Generally, a company has multiple departments or projects, and each department has multiple members. Therefore, you need to design how permissions are to be assigned to different groups and projects, and set a user name for each member to facilitate subsequent user group and permissions configuration.</p>
+<p id="cce_10_0245__p188921873212">The following figure shows the organizational structure of a department in a company and the permissions to be assigned to each member:</p>
+<p id="cce_10_0245__p19583156113816"><span><img id="cce_10_0245__image11583661383" src="en-us_image_0000001256348238.jpg"></span></p>
+</div>
+<div class="section" id="cce_10_0245__section592371519"><h4 class="sectiontitle">Director: David</h4><p id="cce_10_0245__p47251055054">David is a department director of company X. To assign him all CCE permissions (both cluster and namespace permissions), you need to create the <strong id="cce_10_0245__b58606133510">cce-admin</strong> user group for David on the IAM console and assign the CCE Administrator role.</p>
+<div class="note" id="cce_10_0245__note182032022465"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0245__p6726165517519"><strong id="cce_10_0245__b1440736141020">CCE Administrator</strong>: This role has all CCE permissions. You do not need to assign other permissions.</p>
+<p id="cce_10_0245__p177263551951"><strong id="cce_10_0245__b580252711212">CCE FullAccess and CCE ReadOnlyAccess</strong>: These policies are related to cluster management permissions and configured only for cluster-related resources (such as clusters and nodes). You must also configure namespace permissions to perform operations on Kubernetes resources (such as workloads and Services).</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0245__section1584012497910"><h4 class="sectiontitle">O&amp;M Leader: James</h4><p id="cce_10_0245__p969815111105">James is the O&amp;M team leader of the department. He needs the cluster permissions for all projects and the read-only permissions for all namespaces.</p>
+<p id="cce_10_0245__p269811141013">To assign the permissions, create a user group named <strong id="cce_10_0245__b159218711188">cce-sre</strong> on the IAM console and add James to this user group. Then, assign CCE FullAccess to the user group <strong id="cce_10_0245__b2528155111205">cce-sre</strong> to allow it to perform operations on clusters in all projects.</p>
+<p id="cce_10_0245__p1013716010147"><strong id="cce_10_0245__b1772554911265">Assigning Read-only Permissions on All Clusters and Namespaces to All Team Leaders and Engineers</strong></p>
+<p id="cce_10_0245__p14948181201410">You can create a read-only user group named <strong id="cce_10_0245__b1181612120272">read_only</strong> on the IAM console and add users to the user group.</p>
+<ul id="cce_10_0245__ul1364135011435"><li id="cce_10_0245__li1664135017439">Although the development engineers Linda and Peter do not require cluster management permissions, they still need to view data on the CCE console. Therefore, the read-only cluster permission is required.</li><li id="cce_10_0245__li166411750114319">For the O&amp;M engineer William, assign the read-only permission on clusters to him in this step.</li><li id="cce_10_0245__li564116501433">The O&amp;M team leader James already has the management permissions on all clusters. You can add him to the <strong id="cce_10_0245__b17809230174913">read_only</strong> user group to assign the read-only permission on clusters to him.</li></ul>
+<p id="cce_10_0245__p19912119144510">Users James, Robert, William, Linda, and Peter are added to the <strong id="cce_10_0245__b7809331155010">read_only</strong> user group.</p>
+<p id="cce_10_0245__p3430239154616">Assign the read-only permission on clusters to the user group <strong id="cce_10_0245__b96645278589">read_only</strong>.</p>
+<p id="cce_10_0245__p94525469481">Return to the CCE console, and add the read-only permission on namespaces to the user group <strong id="cce_10_0245__b43811566417">read_only</strong> to which the five users belong. Choose <strong id="cce_10_0245__b116471216341">Permissions</strong> on the CCE console, and assign the read-only policy to the user group <strong id="cce_10_0245__b1248358141710">read_only</strong> for each cluster.</p>
+<p id="cce_10_0245__p11335185085015">After the setting is complete, James has the cluster management permissions for all projects and the read-only permissions on all namespaces, and the Robert, William, Linda, and Peter have the read-only permission on all clusters and namespaces.</p>
+</div>
+<div class="section" id="cce_10_0245__section18207164065112"><h4 class="sectiontitle">Development Team Leader: Robert</h4><p id="cce_10_0245__p103936490541">In the previous steps, Robert has been assigned the read-only permission on all clusters and namespaces. Now, assign the administrator permissions on all namespaces to Robert.</p>
+<p id="cce_10_0245__p157971951105114">Therefore, you need to assign the administrator permissions on all namespaces in all clusters to Robert.</p>
+</div>
+<div class="section" id="cce_10_0245__section9550161810569"><h4 class="sectiontitle">O&amp;M Engineer: William</h4><p id="cce_10_0245__p837472475611">In the previous steps, William has been assigned the read-only permission on all clusters and namespaces. He also requires the cluster management permissions. Therefore, you can log in to the IAM console, create a user group named <strong id="cce_10_0245__b353072214015">cce-sre-b4</strong> and assign CCE FullAccess to William.</p>
+<p id="cce_10_0245__p6490622135818">Now, William has the cluster management permissions and the read-only permission on all namespaces.</p>
+</div>
+<div class="section" id="cce_10_0245__section11742144715581"><h4 class="sectiontitle">Development Engineers: Linda and Peter</h4><p id="cce_10_0245__p16131503580">In the previous steps, Linda and Peter have been assigned the read-only permission on clusters and namespaces. Therefore, you only need to assign the edit policy to them.</p>
+<p id="cce_10_0245__p1950082714012">By now, all the required permissions are assigned to the department members.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0247.html b/docs/cce/umn/cce_10_0247.html
new file mode 100644
index 00000000..f1bd7ceb
--- /dev/null
+++ b/docs/cce/umn/cce_10_0247.html
@@ -0,0 +1,29 @@
+<a name="cce_10_0247"></a><a name="cce_10_0247"></a>
+
+
+  <h1 class="topictitle1">Services</h1>
+
+  <div id="body1599887621732"><p id="cce_10_0247__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0249.html">Service Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0011.html">Intra-Cluster Access (ClusterIP)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0142.html">NodePort</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0014.html">LoadBalancer</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0398.html">Headless Service</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0385.html">Service Annotations</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0248.html b/docs/cce/umn/cce_10_0248.html
new file mode 100644
index 00000000..1642d0b6
--- /dev/null
+++ b/docs/cce/umn/cce_10_0248.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0248"></a><a name="cce_10_0248"></a>
+
+<h1 class="topictitle1">Ingresses</h1>
+<div id="body0000001204731993"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0094.html">Ingress Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0251.html">Using ELB Ingresses on the Console</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0252.html">Using kubectl to Create an ELB Ingress</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0249.html b/docs/cce/umn/cce_10_0249.html
similarity index 52%
rename from docs/cce/umn/cce_01_0249.html
rename to docs/cce/umn/cce_10_0249.html
index 653ad9f1..f4c02e32 100644
--- a/docs/cce/umn/cce_01_0249.html
+++ b/docs/cce/umn/cce_10_0249.html
@@ -1,27 +1,26 @@
-<a name="cce_01_0249"></a><a name="cce_01_0249"></a>
+<a name="cce_10_0249"></a><a name="cce_10_0249"></a>
 
-<h1 class="topictitle1">Overview</h1>
-<div id="body1599887621732"><div class="section" id="cce_01_0249__section674023294115"><h4 class="sectiontitle">Direct Access to a Pod</h4><p id="cce_01_0249__en-us_topic_0249851121_p182313125309">After a pod is created, the following problems may occur if you directly access the pod:</p>
-<ul id="cce_01_0249__en-us_topic_0249851121_ul15494121517303"><li id="cce_01_0249__en-us_topic_0249851121_li10494815133012">The pod can be deleted and recreated at any time by a controller such as a Deployment, and the result of accessing the pod becomes unpredictable.</li><li id="cce_01_0249__en-us_topic_0249851121_li20826546103110">The IP address of the pod is allocated only after the pod is started. Before the pod is started, the IP address of the pod is unknown.</li><li id="cce_01_0249__en-us_topic_0249851121_li1452731723014">An application is usually composed of multiple pods that run the same image. Accessing pods one by one is not efficient.</li></ul>
-<p id="cce_01_0249__en-us_topic_0249851121_p191728509184">For example, an application uses Deployments to create the frontend and backend. The frontend calls the backend for computing, as shown in <a href="#cce_01_0249__en-us_topic_0249851121_fig2173165051811">Figure 1</a>. Three pods are running in the backend, which are independent and replaceable. When a backend pod is re-created, the new pod is assigned with a new IP address, of which the frontend pod is unaware.</p>
-<div class="fignone" id="cce_01_0249__en-us_topic_0249851121_fig2173165051811"><a name="cce_01_0249__en-us_topic_0249851121_fig2173165051811"></a><a name="en-us_topic_0249851121_fig2173165051811"></a><span class="figcap"><b>Figure 1 </b>Inter-pod access</span><br><span><img id="cce_01_0249__en-us_topic_0249851121_image178354246205" src="en-us_image_0258894622.png"></span></div>
+<h1 class="topictitle1">Service Overview</h1>
+<div id="body1599887621732"><div class="section" id="cce_10_0249__section674023294115"><h4 class="sectiontitle">Direct Access to a Pod</h4><p id="cce_10_0249__en-us_topic_0249851121_p182313125309">After a pod is created, the following problems may occur if you directly access the pod:</p>
+<ul id="cce_10_0249__en-us_topic_0249851121_ul15494121517303"><li id="cce_10_0249__en-us_topic_0249851121_li10494815133012">The pod can be deleted and recreated at any time by a controller such as a Deployment, and the result of accessing the pod becomes unpredictable.</li><li id="cce_10_0249__en-us_topic_0249851121_li20826546103110">The IP address of the pod is allocated only after the pod is started. Before the pod is started, the IP address of the pod is unknown.</li><li id="cce_10_0249__en-us_topic_0249851121_li1452731723014">An application is usually composed of multiple pods that run the same image. Accessing pods one by one is not efficient.</li></ul>
+<p id="cce_10_0249__en-us_topic_0249851121_p191728509184">For example, an application uses Deployments to create the frontend and backend. The frontend calls the backend for computing, as shown in <a href="#cce_10_0249__en-us_topic_0249851121_fig2173165051811">Figure 1</a>. Three pods are running in the backend, which are independent and replaceable. When a backend pod is re-created, the new pod is assigned with a new IP address, of which the frontend pod is unaware.</p>
+<div class="fignone" id="cce_10_0249__en-us_topic_0249851121_fig2173165051811"><a name="cce_10_0249__en-us_topic_0249851121_fig2173165051811"></a><a name="en-us_topic_0249851121_fig2173165051811"></a><span class="figcap"><b>Figure 1 </b>Inter-pod access</span><br><span><img id="cce_10_0249__en-us_topic_0249851121_image178354246205" src="en-us_image_0258894622.png"></span></div>
 </div>
-<div class="section" id="cce_01_0249__section84961935194115"><h4 class="sectiontitle">Using Services for Pod Access</h4><p id="cce_01_0249__en-us_topic_0249851121_p173502035163111">Kubernetes Services are used to solve the preceding pod access problems. A Service has a fixed IP address. (When a CCE cluster is created, a Service CIDR block is set, which is used to allocate IP addresses to Services.) A Service forwards requests accessing the Service to pods based on labels, and at the same time, perform load balancing for these pods.</p>
-<p id="cce_01_0249__en-us_topic_0249851121_p1359552620518">In the preceding example, a Service is added for the frontend pod to access the backend pods. In this way, the frontend pod does not need to be aware of the changes on backend pods, as shown in <a href="#cce_01_0249__en-us_topic_0249851121_fig163156154816">Figure 2</a>.</p>
-<div class="fignone" id="cce_01_0249__en-us_topic_0249851121_fig163156154816"><a name="cce_01_0249__en-us_topic_0249851121_fig163156154816"></a><a name="en-us_topic_0249851121_fig163156154816"></a><span class="figcap"><b>Figure 2 </b>Accessing pods through a Service</span><br><span><img id="cce_01_0249__en-us_topic_0249851121_image1926812771312" src="en-us_image_0258889981.png"></span></div>
+<div class="section" id="cce_10_0249__section84961935194115"><h4 class="sectiontitle">Using Services for Pod Access</h4><p id="cce_10_0249__en-us_topic_0249851121_p173502035163111">Kubernetes Services are used to solve the preceding pod access problems. A Service has a fixed IP address. (When a CCE cluster is created, a Service CIDR block is set, which is used to allocate IP addresses to Services.) A Service forwards requests accessing the Service to pods based on labels, and at the same time, perform load balancing for these pods.</p>
+<p id="cce_10_0249__en-us_topic_0249851121_p1359552620518">In the preceding example, a Service is added for the frontend pod to access the backend pods. In this way, the frontend pod does not need to be aware of the changes on backend pods, as shown in <a href="#cce_10_0249__en-us_topic_0249851121_fig163156154816">Figure 2</a>.</p>
+<div class="fignone" id="cce_10_0249__en-us_topic_0249851121_fig163156154816"><a name="cce_10_0249__en-us_topic_0249851121_fig163156154816"></a><a name="en-us_topic_0249851121_fig163156154816"></a><span class="figcap"><b>Figure 2 </b>Accessing pods through a Service</span><br><span><img id="cce_10_0249__en-us_topic_0249851121_image1926812771312" src="en-us_image_0258889981.png"></span></div>
 </div>
-<div class="section" id="cce_01_0249__section12500411413"><h4 class="sectiontitle">Service Types</h4><p id="cce_01_0249__p133861126184815">Kubernetes allows you to specify a Service of a required type. The values and actions of different types of Services are as follows:</p>
-<ul id="cce_01_0249__ul2038619263488"><li id="cce_01_0249__li1538812624817"><a href="cce_01_0011.html">ClusterIP</a><p id="cce_01_0249__p183102423381">A ClusterIP Service allows workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
+<div class="section" id="cce_10_0249__section12500411413"><h4 class="sectiontitle">Service Types</h4><p id="cce_10_0249__p133861126184815">Kubernetes allows you to specify a Service of a required type. The values and actions of different types of Services are as follows:</p>
+<ul id="cce_10_0249__ul2038619263488"><li id="cce_10_0249__li1538812624817"><a href="cce_10_0011.html">ClusterIP</a><p id="cce_10_0249__p183102423381">A ClusterIP Service allows workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
 </li></ul>
-<ul id="cce_01_0249__ul11591136192915"><li id="cce_01_0249__li11591136102914"><a href="cce_01_0142.html">NodePort</a><p id="cce_01_0249__p5879172113913">A NodePort Service is exposed on each node's IP at a static port. A ClusterIP Service, to which the NodePort Service routes, is automatically created. By requesting &lt;<em id="cce_01_0249__i103639454237">NodeIP</em>&gt;:&lt;<em id="cce_01_0249__i124611447152319">NodePort</em>&gt;, you can access a NodePort Service from outside the cluster.</p>
-</li><li id="cce_01_0249__li1059113613295"><a href="cce_01_0014.html">LoadBalancer</a><p id="cce_01_0249__p71461840153919">A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.</p>
-</li><li id="cce_01_0249__li117894862914"><a href="cce_01_0114.html">ENI LoadBalancer</a><p id="cce_01_0249__p851716213412">An ENI LoadBalancer Service directs traffic from a load balancer at backend pods, reducing the latency and avoiding performance loss for containerized applications.</p>
+<ul id="cce_10_0249__ul11591136192915"><li id="cce_10_0249__li11591136102914"><a href="cce_10_0142.html">NodePort</a><p id="cce_10_0249__p5879172113913">A NodePort Service is exposed on each node's IP at a static port. A ClusterIP Service, to which the NodePort Service routes, is automatically created. By requesting &lt;<em id="cce_10_0249__i103639454237">NodeIP</em>&gt;:&lt;<em id="cce_10_0249__i124611447152319">NodePort</em>&gt;, you can access a NodePort Service from outside the cluster.</p>
+</li><li id="cce_10_0249__li1059113613295"><a href="cce_10_0014.html">LoadBalancer</a><p id="cce_10_0249__p71461840153919">A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.</p>
 </li></ul>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0247.html">Services</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0247.html">Services</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0251.html b/docs/cce/umn/cce_10_0251.html
new file mode 100644
index 00000000..82ed2b1b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0251.html
@@ -0,0 +1,42 @@
+<a name="cce_10_0251"></a><a name="cce_10_0251"></a>
+
+<h1 class="topictitle1">Using ELB Ingresses on the Console</h1>
+<div id="body0000001204613437"><div class="section" id="cce_10_0251__section73261751141418"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0251__ul19326175115142"><li id="cce_10_0251__li132635116149">An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a workload by referring to <a href="cce_10_0047.html">Creating a Deployment</a>, <a href="cce_10_0048.html">Creating a StatefulSet</a>, or <a href="cce_10_0216.html">Creating a DaemonSet</a>.</li><li id="cce_10_0251__li33261951161417">A NodePort Service has been configured for the workload. For details about how to configure the Service, see <a href="cce_10_0142.html">NodePort</a>.</li><li id="cce_10_0251__li11913127567">Dedicated load balancers must be the application type (HTTP/HTTPS) supporting private networks (with a private IP).</li><li id="cce_10_0251__li458714923314">In ELB passthrough networking (CCE Turbo cluster + dedicated load balancer), ELB Ingress supports ClusterIP Services. In other scenarios, ELB Ingress supports NodePort Services.</li></ul>
+</div>
+<div class="section" id="cce_10_0251__section2042610683912"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0251__ul7976181182416"><li id="cce_10_0251__li19243652101519">It is recommended that other resources not use the load balancer automatically created by an ingress. Otherwise, the load balancer will be occupied when the ingress is deleted, resulting in residual resources.</li><li id="cce_10_0251__li1524325211159">After an ingress is created, upgrade and maintain the configuration of the selected load balancers on the CCE console. Do not modify the configuration on the ELB console. Otherwise, the ingress service may be abnormal.</li><li id="cce_10_0251__li1824318524159">The URL registered in an ingress forwarding policy must be the same as the URL exposed by the backend Service. Otherwise, a 404 error will be returned.</li><li id="cce_10_0251__li202253469362">In a cluster using the IPVS proxy mode, if the ingress and Service use the same ELB load balancer, the ingress cannot be accessed from the nodes and containers in the cluster because kube-proxy mounts the LoadBalancer Service address to the ipvs-0 bridge. This bridge intercepts the traffic of the load balancer connected to the ingress. You are advised to use different ELB load balancers for the ingress and Service.</li></ul>
+</div>
+<div class="section" id="cce_10_0251__section19352112471617"><h4 class="sectiontitle">Adding an ELB Ingress</h4><p id="cce_10_0251__p010013275811">This section uses an Nginx workload as an example to describe how to add an ELB ingress.</p>
+<ol id="cce_10_0251__ol19575164212915"><li id="cce_10_0251__li8689349417"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0251__li012894520229"><span>Choose <strong id="cce_10_0251__b1285218419423">Networking</strong> in the navigation pane, click the <span class="uicontrol" id="cce_10_0251__uicontrol453134544719"><b>Ingresses</b></span> tab, and click <strong id="cce_10_0251__b14852114134215">Create Service</strong> in the upper right corner.</span></li><li id="cce_10_0251__li14953111716915"><span>Set ingress parameters.</span><p><ul id="cce_10_0251__ul14861918192"><li id="cce_10_0251__li54691630184812"><strong id="cce_10_0251__b12457195413429">Name</strong>: Specify a name of an ingress, for example, <strong id="cce_10_0251__b104634543425">ingress-demo</strong>.</li><li id="cce_10_0251__li14384123818176"><strong id="cce_10_0251__b132107218451">Load Balancer</strong><p id="cce_10_0251__p4855423189">Select the load balancer to interconnect. Only load balancers in the same VPC as the cluster are supported. If no load balancer is available, click <span class="uicontrol" id="cce_10_0251__uicontrol17519115116464"><b>Create Load Balancer</b></span> to create one on the ELB console.</p>
+<p id="cce_10_0251__p6788462284">Dedicated load balancers must support HTTP and the network type must support private networks.</p>
+</li><li id="cce_10_0251__li6851318392"><strong id="cce_10_0251__b29552108271">Listener Configuration</strong>: Ingress configures a listener for the load balancer, which listens to requests from the load balancer and distributes traffic. After the configuration is complete, a listener is created on the load balancer. The default listener name is <em id="cce_10_0251__i12144307313">k8s__&lt;Protocol type&gt;_&lt;Port number&gt;</em>, for example, <em id="cce_10_0251__i1453831916301">k8s_HTTP_80</em>.<ul id="cce_10_0251__ul98515181097"><li id="cce_10_0251__li128514181093"><strong id="cce_10_0251__b121551828142814">Front-End Protocol</strong>: <strong id="cce_10_0251__b1016142862813">HTTP</strong> and <strong id="cce_10_0251__b016102822819">HTTPS</strong> are available.</li><li id="cce_10_0251__li128531815910"><strong id="cce_10_0251__b614751917275">External Port</strong>: Port number that is open to the ELB service address. The port number can be specified randomly.</li><li id="cce_10_0251__li17853181895"><strong id="cce_10_0251__b81461344202720">Server Certificate</strong>: When an HTTPS listener is created for a load balancer, you need to bind a certificate to the load balancer to support encrypted authentication for HTTPS data transmission.<div class="note" id="cce_10_0251__note1381944192911"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0251__p5381104492915">If there is already an HTTPS ingress for the chosen port on the load balancer, the certificate of the new HTTPS ingress must be the same as the certificate of the existing ingress. This means that a listener has only one certificate. If two certificates, each with a different ingress, are added to the same listener of the same load balancer, only the certificate added earliest takes effect on the load balancer.</p>
+</div></div>
+</li><li id="cce_10_0251__li7651155094013"><strong id="cce_10_0251__b581435815219">SNI</strong>: Server Name Indication (SNI) is an extended protocol of TLS. It allows multiple TLS-based access domain names to be provided for external systems using the same IP address and port. Different domain names can use different security certificates. After SNI is enabled, the client is allowed to submit the requested domain name when initiating a TLS handshake request. After receiving the TLS request, the load balancer searches for the certificate based on the domain name in the request. If the certificate corresponding to the domain name is found, the load balancer returns the certificate for authorization. Otherwise, the default certificate (server certificate) is returned for authorization.<div class="note" id="cce_10_0251__note59161057134120"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0251__ul341785816517"><li id="cce_10_0251__li1541715805115">The <strong id="cce_10_0251__b17512414311">SNI</strong> option is available only when <strong id="cce_10_0251__b77525411312">HTTPS</strong> is selected.</li></ul>
+<ul id="cce_10_0251__ul2041716583512"><li id="cce_10_0251__li541725835112">This function is supported only for clusters of v1.15.11 and later.</li><li id="cce_10_0251__li1265688165219">Specify the domain name for the SNI certificate. Only one domain name can be specified for each certificate. Wildcard-domain certificates are supported.</li></ul>
+</div></div>
+</li><li id="cce_10_0251__li58516183919"><strong id="cce_10_0251__b1962254816312">Security Policy</strong>: combinations of different TLS versions and supported cipher suites available to HTTPS listeners.<p id="cce_10_0251__p15856189913">For details about security policies, see ELB User Guide.</p>
+<div class="note" id="cce_10_0251__note885111811917"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0251__ul6851018492"><li id="cce_10_0251__li15851118697"><strong id="cce_10_0251__b145331732163211">Security Policy</strong> is available only when <strong id="cce_10_0251__b7534173216327">HTTPS</strong> is selected.</li><li id="cce_10_0251__li285171815918">This function is supported only for clusters of v1.17.9 and later.</li></ul>
+</div></div>
+</li></ul>
+</li><li id="cce_10_0251__li78601812913"><strong id="cce_10_0251__b186201409327">Forwarding Policies</strong>: When the access address of a request matches the forwarding policy (a forwarding policy consists of a domain name and URL, for example, 10.117.117.117:80/helloworld), the request is forwarded to the corresponding target Service for processing. Click <span class="uicontrol" id="cce_10_0251__uicontrol17947248330"><b>Add Forwarding Policies</b></span> to add multiple forwarding policies.<ul id="cce_10_0251__ul486131819915"><li id="cce_10_0251__li3858186912"><strong id="cce_10_0251__b17856971330">Domain Name</strong>: actual domain name. Ensure that the domain name has been registered and archived. Once a domain name rule is configured, you must use the domain name for access.</li><li id="cce_10_0251__li2086218897"><strong id="cce_10_0251__b85451726254">URL Matching Rule</strong>:<ul id="cce_10_0251__ul5861518393"><li id="cce_10_0251__li168511815919"><strong id="cce_10_0251__b2029617457339">Prefix match</strong>: If the URL is set to <strong id="cce_10_0251__b1329618455339">/healthz</strong>, the URL that meets the prefix can be accessed. For example, <strong id="cce_10_0251__b16184165019335">/healthz/v1</strong> and <strong id="cce_10_0251__b118495019332">/healthz/v2</strong>.</li><li id="cce_10_0251__li14861818798"><strong id="cce_10_0251__b19144235496">Exact match</strong>: The URL can be accessed only when it is fully matched. For example, if the URL is set to <strong id="cce_10_0251__b18474185653313">/healthz</strong>, only /healthz can be accessed.</li><li id="cce_10_0251__li108612185917"><strong id="cce_10_0251__b365113814616">Regular expression</strong>: The URL is matched based on the regular expression. For example, if the regular expression is <strong id="cce_10_0251__b88616181699">/[A-Za-z0-9_.-]+/test</strong>, all URLs that comply with this rule can be accessed, for example, <strong id="cce_10_0251__b340611323410">/abcA9/test</strong> and <strong id="cce_10_0251__b1940610303419">/v1-Ab/test</strong>. Two regular expression standards are supported: POSIX and Perl.</li></ul>
+</li><li id="cce_10_0251__li188619181495"><strong id="cce_10_0251__b1031418943419">URL</strong>: access path to be registered, for example, <strong id="cce_10_0251__b731413963417">/healthz</strong>.<div class="note" id="cce_10_0251__note17563145615169"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0251__p103613018260">The URL added here must exist in the backend application. Otherwise, the forwarding fails.</p>
+<p id="cce_10_0251__p15563156181615">For example, the default access URL of the Nginx application is <strong id="cce_10_0251__b18177105042919">/usr/share/nginx/html</strong>. When adding <strong id="cce_10_0251__b184859149335">/test</strong> to the ingress forwarding policy, ensure that your Nginx application contains the same URL, that is, <strong id="cce_10_0251__b96142203911">/usr/share/nginx/html/test</strong>, otherwise, 404 is returned.</p>
+</div></div>
+</li><li id="cce_10_0251__li386818791"><strong id="cce_10_0251__b1345062315414">Destination Service</strong>: Select an existing Service or create a Service. Services that do not meet search criteria are automatically filtered out.</li><li id="cce_10_0251__li118614181492"><a name="cce_10_0251__li118614181492"></a><a name="li118614181492"></a><strong id="cce_10_0251__b156361728154114">Destination Service Port</strong>: Select the access port of the destination Service.</li><li id="cce_10_0251__li213801420376"><strong id="cce_10_0251__b4249181516256">Set ELB</strong>:<ul id="cce_10_0251__ul98568563812"><li id="cce_10_0251__li8170555132211"><strong id="cce_10_0251__cce_10_0014_b169881428124716">Distribution Policy</strong>: Three algorithms are available: weighted round robin, weighted least connections algorithm, or source IP hash.<div class="note" id="cce_10_0251__cce_10_0014_note14170205516225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0251__cce_10_0014_ul1717075520227"><li id="cce_10_0251__cce_10_0014_li15170955152215"><strong id="cce_10_0251__cce_10_0014_b8139183255011">Weighted round robin</strong>: Requests are forwarded to different servers based on their weights, which indicate server processing performance. Backend servers with higher weights receive proportionately more requests, whereas equal-weighted servers receive the same number of requests. This algorithm is often used for short connections, such as HTTP services.</li><li id="cce_10_0251__cce_10_0014_li12170185532213"><strong id="cce_10_0251__cce_10_0014_b9879547125012">Weighted least connections</strong>: In addition to the weight assigned to each server, the number of connections processed by each backend server is also considered. Requests are forwarded to the server with the lowest connections-to-weight ratio. Building on <strong id="cce_10_0251__cce_10_0014_b19132751145011">least connections</strong>, the <strong id="cce_10_0251__cce_10_0014_b71328516505">weighted least connections</strong> algorithm assigns a weight to each server based on their processing capability. This algorithm is often used for persistent connections, such as database connections.</li><li id="cce_10_0251__cce_10_0014_li0170105502211"><strong id="cce_10_0251__cce_10_0014_b8109955125015">Source IP hash</strong>: The source IP address of each request is calculated using the hash algorithm to obtain a unique hash key, and all backend servers are numbered. The generated key allocates the client to a particular server. This enables requests from different clients to be distributed in load balancing mode and ensures that requests from the same client are forwarded to the same server. This algorithm applies to TCP connections without cookies.</li></ul>
+</div></div>
+</li><li id="cce_10_0251__li0170115513227"><strong id="cce_10_0251__b8118183013563">Type</strong>: This function is disabled by default. You can select <strong id="cce_10_0251__b1295823925617">Load balancer cookie</strong>.</li><li id="cce_10_0251__li14170655112210"><strong id="cce_10_0251__b165081043175616">Health Check</strong>: This function is disabled by default. The health check is for the load balancer. When TCP is selected during the <a href="#cce_10_0251__li118614181492">port settings</a>, you can choose either TCP or HTTP. Currently, UDP is not supported. By default, the service port (Node Port and container port of the Service) is used for health check. You can also specify another port for health check. After the port is specified, a service port named <strong id="cce_10_0251__b2955125104120">cce-healthz</strong> will be added for the Service.</li></ul>
+</li><li id="cce_10_0251__li18862184917"><strong id="cce_10_0251__b171876474359">Operation</strong>: Click <span class="uicontrol" id="cce_10_0251__uicontrol161881147113516"><b>Delete</b></span> to delete the configuration.</li></ul>
+</li><li id="cce_10_0251__li104962251243"><strong id="cce_10_0251__b1562322564416">Annotation</strong>: Ingresses provide some advanced CCE functions, which are implemented by annotations. When you use kubectl to create a container, annotations will be used. For details, see <a href="cce_10_0252.html#cce_10_0252__section3675115714214">Creating an Ingress - Automatically Creating a Load Balancer</a> and <a href="cce_10_0252.html#cce_10_0252__section32300431736">Creating an Ingress - Interconnecting with an Existing Load Balancer</a>.</li></ul>
+</p></li><li id="cce_10_0251__li151183363920"><span>After the configuration is complete, click <strong id="cce_10_0251__b419231418398">OK</strong>. After the ingress is created, it is displayed in the ingress list.</span><p><p id="cce_10_0251__p22726310146">On the ELB console, you can view the ELB automatically created through CCE. The default name is <span class="parmvalue" id="cce_10_0251__parmvalue153432710593"><b>cce-lb-ingress.UID</b></span>. Click the ELB name to access its details page. On the<strong id="cce_10_0251__b16444435134117"> Listeners</strong> tab page, view the route settings of the ingress, including the URL, listener port, and backend server group port.</p>
+<div class="notice" id="cce_10_0251__note1849713206344"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0251__p151493617349">After the ingress is created, upgrade and maintain the selected load balancer on the CCE console. Do not maintain the load balancer on the ELB console. Otherwise, the ingress service may be abnormal.</p>
+</div></div>
+</p></li><li id="cce_10_0251__li9993123518163"><span>Access the /healthz interface of the workload, for example, workload <strong id="cce_10_0251__b16997141953610">defaultbackend</strong>.</span><p><ol type="a" id="cce_10_0251__ol17405113342712"><li id="cce_10_0251__li94051633182711">Obtain the access address of the <span class="filepath" id="cce_10_0251__filepath18129215123717"><b>/healthz</b></span> interface of the workload. The access address consists of the load balancer IP address, external port, and mapping URL, for example, 10.**.**.**:80/healthz.</li><li id="cce_10_0251__li14181114162720">Enter the URL of the /healthz interface, for example, http://10.**.**.**:80/healthz, in the address box of the browser to access the workload, as shown in <a href="#cce_10_0251__fig17115192714367">Figure 1</a>.<div class="fignone" id="cce_10_0251__fig17115192714367"><a name="cce_10_0251__fig17115192714367"></a><a name="fig17115192714367"></a><span class="figcap"><b>Figure 1 </b>Accessing the /healthz interface of defaultbackend</span><br><span><img id="cce_10_0251__image9587202217261" src="en-us_image_0000001199181230.png"></span></div>
+</li></ol>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0248.html">Ingresses</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0252.html b/docs/cce/umn/cce_10_0252.html
new file mode 100644
index 00000000..db0da4fc
--- /dev/null
+++ b/docs/cce/umn/cce_10_0252.html
@@ -0,0 +1,863 @@
+<a name="cce_10_0252"></a><a name="cce_10_0252"></a>
+
+<h1 class="topictitle1">Using kubectl to Create an ELB Ingress</h1>
+<div id="body0000001204453469"><div class="section" id="cce_10_0252__section12681123215510"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0252__p1557481754814">This section uses an <a href="cce_10_0047.html#cce_10_0047__section155246177178">Nginx workload</a> as an example to describe how to create an ELB ingress using kubectl.</p>
+<ul id="cce_10_0252__ul849465471710"><li id="cce_10_0252__li17883121171816">If no load balancer is available in the same VPC, CCE can automatically create a load balancer when creating an ingress. For details, see <a href="#cce_10_0252__section3675115714214">Creating an Ingress - Automatically Creating a Load Balancer</a>.</li><li id="cce_10_0252__li549455416173">If a load balancer is available in the same VPC, perform the operation by referring to <a href="#cce_10_0252__section32300431736">Creating an Ingress - Interconnecting with an Existing Load Balancer</a>.</li></ul>
+</div>
+<div class="section" id="cce_10_0252__section16541428173911"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0252__ul314513407396"><li id="cce_10_0252__li1578113511562">An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a sample Nginx workload by referring to <a href="cce_10_0047.html">Creating a Deployment</a>, <a href="cce_10_0048.html">Creating a StatefulSet</a>, or <a href="cce_10_0216.html">Creating a DaemonSet</a>.</li><li id="cce_10_0252__li1069122124913">A NodePort Service has been configured for the workload. For details about how to configure the Service, see <a href="cce_10_0142.html">NodePort</a>.</li><li id="cce_10_0252__li11913127567">Dedicated load balancers must be the application type (HTTP/HTTPS) supporting private networks (with a private IP).</li></ul>
+</div>
+<div class="section" id="cce_10_0252__section084115985013"><a name="cce_10_0252__section084115985013"></a><a name="section084115985013"></a><h4 class="sectiontitle">Ingress Description of networking.k8s.io/v1</h4><p id="cce_10_0252__p10742171892110">In CCE clusters of v1.23 or later, the ingress version is switched to networking.k8s.io/v1.</p>
+<p id="cce_10_0252__p20567113755215">Compared with v1beta1, v1 has the following differences in parameters:</p>
+<ul id="cce_10_0252__ul1047013217172"><li id="cce_10_0252__li10471183221719">The ingress type is changed from <strong id="cce_10_0252__b09161540125811">kubernetes.io/ingress.class</strong> in <strong id="cce_10_0252__b738654512582">annotations</strong> to <strong id="cce_10_0252__b541984935818">spec.ingressClassName</strong>.</li><li id="cce_10_0252__li7135111819196">The format of <strong id="cce_10_0252__b571072213484">backend</strong> is changed.</li><li id="cce_10_0252__li10689134614221">The <strong id="cce_10_0252__b1783119292013">pathType</strong> parameter must be specified for each path. The options are as follows:<ul id="cce_10_0252__ul3253194702213"><li id="cce_10_0252__li456213366269"><strong id="cce_10_0252__b958119196203">ImplementationSpecific</strong>: The matching method depends on Ingress Controller. The matching method defined by <strong id="cce_10_0252__b1683113113519">ingress.beta.kubernetes.io/url-match-mode</strong> is used in CCE, which is the same as v1beta1.</li><li id="cce_10_0252__li5172153972613"><strong id="cce_10_0252__b19854141864510">Exact</strong>: exact matching of the URL, which is case-sensitive.</li><li id="cce_10_0252__li584094916222"><strong id="cce_10_0252__b0441291458">Prefix</strong>: matching based on the URL prefix separated by a slash (/). The match is case-sensitive, and elements in the path are matched one by one. A path element refers to a list of labels in the path separated by a slash (/).</li></ul>
+</li></ul>
+<p id="cce_10_0252__p656120413137"><span><img id="cce_10_0252__image1480624572814" src="en-us_image_0000001276433425.png"></span></p>
+</div>
+<div class="section" id="cce_10_0252__section3675115714214"><a name="cce_10_0252__section3675115714214"></a><a name="section3675115714214"></a><h4 class="sectiontitle">Creating an Ingress - Automatically Creating a Load Balancer</h4><p id="cce_10_0252__p9677555226">The following describes how to run the kubectl command to automatically create a load balancer when creating an ingress.</p>
+<ol id="cce_10_0252__ol6677955226"><li id="cce_10_0252__li367719515229"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0252__li767713516221"><span>Create a YAML file named <strong id="cce_10_0252__b567711592218">ingress-test.yaml</strong>. The file name can be customized.</span><p><p id="cce_10_0252__p1367718512222"><strong id="cce_10_0252__b2067775112212">vi ingress-test.yaml</strong></p>
+<div class="note" id="cce_10_0252__note067711592220"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0252__p357414012263">Starting from cluster v1.23, the ingress version is switched from <strong id="cce_10_0252__b1117131914175">networking.k8s.io/v1beta1</strong> to <strong id="cce_10_0252__b1611881941714">networking.k8s.io/v1</strong>. For details about the differences between v1 and v1beta1, see <a href="#cce_10_0252__section084115985013">Ingress Description of networking.k8s.io/v1</a>.</p>
+</div></div>
+<div class="p" id="cce_10_0252__p16827122291514"><strong id="cce_10_0252__b1182722241517">Example of a shared load balancer (public network access) for clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen20827132211158">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b148209193313">v1</strong>
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    <strong id="cce_10_0252__b982762211158">kubernetes.io/elb.class: union</strong>
+    kubernetes.io/elb.port: '80'
+    <strong id="cce_10_0252__b10827192291520">kubernetes.io/elb.autocreate: </strong>
+<strong id="cce_10_0252__b082712220153">      '{</strong>
+<strong id="cce_10_0252__b7827222141517">          "type":"public",</strong>
+<strong id="cce_10_0252__b3827192281510">          "bandwidth_name":"cce-bandwidth-******",</strong>
+<strong id="cce_10_0252__b1982720227158">          "bandwidth_chargemode":"bandwidth",</strong>
+<strong id="cce_10_0252__b1582710228153">          "bandwidth_size":5,</strong>
+<strong id="cce_10_0252__b1582762219156">          "bandwidth_sharetype":"PER",</strong>
+<strong id="cce_10_0252__b48284224156">          "eip_type":"5_bgp"</strong>
+<strong id="cce_10_0252__b9828152241510">        }'</strong>
+spec:
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          service:
+            name: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+            port: 
+              number: 8080             # Replace 8080 with the port number of your target Service.
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+        pathType: ImplementationSpecific
+  <strong id="cce_10_0252__b11781027112110">ingressClassName: cce</strong>    # ELB ingress is used.</pre>
+</div>
+<div class="p" id="cce_10_0252__p1267715152213"><strong id="cce_10_0252__b13572141814571">Example of a shared load balancer (public network access) for clusters of v1.21 or earlier:</strong><pre class="screen" id="cce_10_0252__screen2677058229">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b1678212703116">v1beta1</strong>
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    <strong id="cce_10_0252__b1677453223">kubernetes.io/elb.class: union</strong>
+<strong id="cce_10_0252__b15677051223">    kubernetes.io/ingress.class: cce</strong>    # ELB ingress is used.
+    kubernetes.io/elb.port: '80'
+    <strong id="cce_10_0252__b126779522220">kubernetes.io/elb.autocreate: </strong>
+<strong id="cce_10_0252__b1367717522212">      '{</strong>
+<strong id="cce_10_0252__b156777519225">          "type":"public",</strong>
+<strong id="cce_10_0252__b567705142213">          "bandwidth_name":"cce-bandwidth-******",</strong>
+<strong id="cce_10_0252__b12677155152219">          "bandwidth_chargemode":"bandwidth",</strong>
+<strong id="cce_10_0252__b767718532210">          "bandwidth_size":5,</strong>
+<strong id="cce_10_0252__b167775142217">          "bandwidth_sharetype":"PER",</strong>
+<strong id="cce_10_0252__b106775542212">          "eip_type":"5_bgp"</strong>
+<strong id="cce_10_0252__b206786513227">        }'</strong>
+spec:
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
+</div>
+<div class="p" id="cce_10_0252__p1545533162018"><strong id="cce_10_0252__b361817033111">Example of a dedicated load balancer (public network access) for clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen13451333202016">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b14830457310">v1</strong>
+kind: Ingress
+metadata:
+  name: ingress-test
+  namespace: default
+  annotations:
+    <strong id="cce_10_0252__b6461833102015">kubernetes.io/elb.class:</strong> <strong id="cce_10_0252__b746173362019">performance</strong>
+    kubernetes.io/elb.port: '80'
+    kubernetes.io/elb.autocreate: 
+      '{
+          "type": "public",
+          "bandwidth_name": "cce-bandwidth-******",
+          "bandwidth_chargemode": "bandwidth",
+          "bandwidth_size": 5,
+          "bandwidth_sharetype": "PER",
+          "eip_type": "5_bgp",
+          <strong id="cce_10_0252__b17461233112020">"available_zone": [</strong>
+<strong id="cce_10_0252__b94673332013">              "<span id="cce_10_0252__text1075865211289">eu-de-01</span>"</strong>
+<strong id="cce_10_0252__b1046533152014">          ],</strong>
+<strong id="cce_10_0252__b64616331204">          "l7_flavor_name": "L7_flavor.elb.s1.small"</strong>
+       }'
+spec:
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          service:
+            name: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+            port: 
+              number: 8080             # Replace 8080 with the port number of your target Service.
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+        pathType: ImplementationSpecific
+  <strong id="cce_10_0252__b193031118172110">ingressClassName: cce</strong></pre>
+</div>
+<div class="p" id="cce_10_0252__p1868417552215"><strong id="cce_10_0252__b360974716571">Example of a dedicated load balancer (public network access) for clusters of version 1.21 or earlier:</strong><pre class="screen" id="cce_10_0252__screen8685357221">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b12697145012317">v1beta1</strong>
+kind: Ingress
+metadata:
+  name: ingress-test
+  namespace: default
+  annotations:
+    <strong id="cce_10_0252__b66854520225">kubernetes.io/elb.class:</strong> <strong id="cce_10_0252__b5685256224">performance</strong>
+<strong id="cce_10_0252__b66852517226">    kubernetes.io/ingress.class: cce</strong>
+    kubernetes.io/elb.port: '80'
+    kubernetes.io/elb.autocreate: 
+      '{
+          "type": "public",
+          "bandwidth_name": "cce-bandwidth-******",
+          "bandwidth_chargemode": "bandwidth",
+          "bandwidth_size": 5,
+          "bandwidth_sharetype": "PER",
+          "eip_type": "5_bgp",
+          <strong id="cce_10_0252__b76854516228">"available_zone": [</strong>
+<strong id="cce_10_0252__b156859510225">              "<span id="cce_10_0252__text1668382810540">eu-de-01</span>"</strong>
+<strong id="cce_10_0252__b56859511226">          ],</strong>
+<strong id="cce_10_0252__b968514518223">          "l7_flavor_name": "L7_flavor.elb.s1.small"</strong>
+       }'
+spec:
+  rules:
+  - host: ''
+    http:
+      paths:
+      - path: '/'
+        backend: 
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0252__table7686256226" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0252__row19686145162220"><th align="left" class="cellrowborder" valign="top" width="24.542454245424544%" id="mcps1.3.4.3.2.2.7.2.5.1.1"><p id="cce_10_0252__p56866582212">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="14.331433143314332%" id="mcps1.3.4.3.2.2.7.2.5.1.2"><p id="cce_10_0252__p136861358222">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="17.461746174617463%" id="mcps1.3.4.3.2.2.7.2.5.1.3"><p id="cce_10_0252__p0686154226">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="43.66436643664366%" id="mcps1.3.4.3.2.2.7.2.5.1.4"><p id="cce_10_0252__p768615162214">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0252__row968615513223"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p36867562211">kubernetes.io/elb.class</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p1968618512213">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p12686135112213">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p186865519228">Select a proper load balancer type.</p>
+<p id="cce_10_0252__p18686651226">The value can be:</p>
+<ul id="cce_10_0252__ul2686254223"><li id="cce_10_0252__li7686105142216"><strong id="cce_10_0252__b539143416450">union</strong>: shared load balancer</li><li id="cce_10_0252__li1768615520225"><strong id="cce_10_0252__b12637149171617">performance</strong>: dedicated load balancer..</li></ul>
+<p id="cce_10_0252__p268655142217">Default: <strong id="cce_10_0252__b96321022343">union</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0252__row136862502210"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p668610592216">kubernetes.io/ingress.class</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p671994222920">Yes</p>
+<p id="cce_10_0252__p14686205122212">(only for clusters of v1.21 or earlier)</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p7686175122215">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p12686115182216"><strong id="cce_10_0252__b686116811177">cce</strong>: The self-developed ELB ingress is used.</p>
+<p id="cce_10_0252__p168610515220">This parameter is mandatory when an ingress is created by calling the API.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row113215433284"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p832116435287">ingressClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p1232111438283">Yes</p>
+<p id="cce_10_0252__p16489747112918">(only for clusters of v1.23 or later)</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p10321194372811">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p1139112482917"><strong id="cce_10_0252__b1943380093">cce</strong>: The self-developed ELB ingress is used.</p>
+<p id="cce_10_0252__p101391724122916">This parameter is mandatory when an ingress is created by calling the API.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row1868617513229"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p15686185132218">kubernetes.io/elb.port</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p6686115112215">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p196861356223">Integer</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p168611502215">This parameter indicates the external port registered with the address of the LoadBalancer Service.</p>
+<p id="cce_10_0252__p668618516224">Supported range: 1 to 65535</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row106861582218"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p1068618512224">kubernetes.io/elb.subnet-id</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p068615516223">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p068612517228">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p568611582215">ID of the subnet where the cluster is located. The value can contain 1 to 100 characters.</p>
+<ul id="cce_10_0252__ul568616517224"><li id="cce_10_0252__li26861653221">Mandatory when a cluster of v1.11.7-r0 or earlier is to be automatically created.</li><li id="cce_10_0252__li1968635152218">Optional for clusters later than v1.11.7-r0. It is left blank by default.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0252__row1686115112217"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p146861455229">kubernetes.io/elb.autocreate</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p19686254222">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p96864511228">elb.autocreate object</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p2687254227">Whether to automatically create a load balancer associated with an ingress. For details about the field description, see <a href="#cce_10_0252__table268711532210">Table 2</a>.</p>
+<p id="cce_10_0252__p106872519226"><strong id="cce_10_0252__b92491237198">Example</strong></p>
+<ul id="cce_10_0252__ul166872552218"><li id="cce_10_0252__li1268785112220">If a public network load balancer will be automatically created, set this parameter to the following value:<p id="cce_10_0252__p136872515228"><a name="cce_10_0252__li1268785112220"></a><a name="li1268785112220"></a>{"type":"public","bandwidth_name":"cce-bandwidth-******","bandwidth_chargemode":"bandwidth","bandwidth_size":5,"bandwidth_sharetype":"PER","eip_type":"5_bgp","name":"james"}</p>
+</li><li id="cce_10_0252__li16687255229">If a private network load balancer will be automatically created, set this parameter to the following value:<p id="cce_10_0252__p15687959222"><a name="cce_10_0252__li16687255229"></a><a name="li16687255229"></a>{"type":"inner","name":"A-location-d-test"}</p>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0252__row116871853222"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p86876511227">host</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p268785142219">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p1868713582210">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p56876515224">Domain name for accessing the Service. By default, this parameter is left blank, and the domain name needs to be fully matched.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row166871513221"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p26872542219">path</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p56874519227">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p18687175112220">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p86872516225">User-defined route path. All external access requests must match <strong id="cce_10_0252__b9389202274617">host</strong> and <strong id="cce_10_0252__b6627192413464">path</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row568725172212"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p1268711511220">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p568725152210">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p168735122213">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p968725102211">Name of the target Service bound to the ingress.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row12687145162215"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p868715518227">servicePort</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p66871513229">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p268710502212">Integer</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p268725112215">Access port of the target Service.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row56878518222"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p1968717516225">ingress.beta.kubernetes.io/url-match-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p06871551221">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p368765202212">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p17687954227">Route matching policy.</p>
+<p id="cce_10_0252__p2687851225">Default: <strong id="cce_10_0252__b1341931662017">STARTS_WITH</strong> (prefix match)</p>
+<p id="cce_10_0252__p14687135102217">Options:</p>
+<ul id="cce_10_0252__ul1368755172219"><li id="cce_10_0252__li166876520222"><strong id="cce_10_0252__b18728820145814">EQUAL_TO</strong>: exact match</li><li id="cce_10_0252__li136873520227"><strong id="cce_10_0252__b2251723115812">STARTS_WITH</strong>: prefix match</li><li id="cce_10_0252__li19687159229"><strong id="cce_10_0252__b45697255581">REGEX</strong>: regular expression match</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0252__row158261683461"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.4.3.2.2.7.2.5.1.1 "><p id="cce_10_0252__p19827108154619">pathType</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.331433143314332%" headers="mcps1.3.4.3.2.2.7.2.5.1.2 "><p id="cce_10_0252__p188276814619">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p188278815467">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p1489918544469">Path type. This field is supported only by clusters of v1.23 or later.</p>
+<ul id="cce_10_0252__ul513514415472"><li id="cce_10_0252__li81351544144712"><strong id="cce_10_0252__b1761018581175">ImplementationSpecific</strong>: The matching method depends on Ingress Controller. The matching method defined by <strong id="cce_10_0252__b107391649151017">ingress.beta.kubernetes.io/url-match-mode</strong> is used in CCE.</li><li id="cce_10_0252__li3135194474711"><strong id="cce_10_0252__b1860512115115">Exact</strong>: exact matching of the URL, which is case-sensitive.</li><li id="cce_10_0252__li1613519446477"><strong id="cce_10_0252__b854868180">Prefix</strong>: matching based on the URL prefix separated by a slash (/). The match is case-sensitive, and elements in the path are matched one by one. A path element refers to a list of labels in the path separated by a slash (/).</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0252__table268711532210"></a><a name="table268711532210"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0252__table268711532210" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data structure of the elb.autocreate field</caption><thead align="left"><tr id="cce_10_0252__row46871051228"><th align="left" class="cellrowborder" valign="top" width="24.612461246124614%" id="mcps1.3.4.3.2.2.8.2.5.1.1"><p id="cce_10_0252__p568718511222">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="14.481448144814483%" id="mcps1.3.4.3.2.2.8.2.5.1.2"><p id="cce_10_0252__p17687145202214">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.771577157715772%" id="mcps1.3.4.3.2.2.8.2.5.1.3"><p id="cce_10_0252__p12687259222">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="45.13451345134513%" id="mcps1.3.4.3.2.2.8.2.5.1.4"><p id="cce_10_0252__p136878542215">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0252__row1468810518229"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0252__p106881052228">type</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0252__p36889532210">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0252__p106887522210">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0252__p1868815152219">Network type of the load balancer.</p>
+<ul id="cce_10_0252__ul36884518226"><li id="cce_10_0252__li66887511222"><strong id="cce_10_0252__b17276125216587">public</strong>: public network load balancer</li><li id="cce_10_0252__li1068812592213"><strong id="cce_10_0252__b372920248206">inner</strong>: private network load balancer</li></ul>
+<p id="cce_10_0252__p1068817515229">Default: <strong id="cce_10_0252__b6155153614333">inner</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0252__row268813515229"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0252__p1768817520227">bandwidth_name</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0252__p06881952229">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0252__p668815522218">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0252__p368820520226">Bandwidth name. The default value is <span class="parmvalue" id="cce_10_0252__parmvalue17291164862015"><b>cce-bandwidth-******</b></span>.</p>
+<p id="cce_10_0252__p1468845132213">Value range: a string of 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row2068814552210"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0252__p1868835122212">bandwidth_chargemode</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0252__p86886512223">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0252__p1368817512223">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0252__p1868818514222">Bandwidth mode.</p>
+
+</td>
+</tr>
+<tr id="cce_10_0252__row116881855228"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0252__p206884582219">bandwidth_size</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0252__p2068817592216">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0252__p568816511224">Integer</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0252__p166888522214">Bandwidth size. The value ranges from 1 Mbit/s to 2000 Mbit/s by default. The actual range varies depending on the configuration in each region.</p>
+<ul id="cce_10_0252__ul46883511224"><li id="cce_10_0252__li1168817502213">The minimum increment for bandwidth adjustment varies depending on the bandwidth range. The details are as follows:<ul id="cce_10_0252__ul1468875102216"><li id="cce_10_0252__li10688358224">The minimum increment is 1 Mbit/s if the allowed bandwidth ranges from 0 Mbit/s to 300 Mbit/s (with 300 Mbit/s included).</li><li id="cce_10_0252__li1688852228">The minimum increment is 50 Mbit/s if the allowed bandwidth ranges from 300 Mbit/s to 1000 Mbit/s.</li><li id="cce_10_0252__li10688165172211">The minimum increment is 500 Mbit/s if the allowed bandwidth is greater than 1000 Mbit/s.</li></ul>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0252__row2688257226"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0252__p668814542214">bandwidth_sharetype</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0252__p868817517227">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0252__p66881853227">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0252__p46881053226">Bandwidth type.</p>
+<p id="cce_10_0252__p579771319477"><strong id="cce_10_0252__b165303131705">PER</strong>: dedicated bandwidth.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row1668895162218"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0252__p36889518224">eip_type</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0252__p1368818514228">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0252__p86891352224">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0252__p176892572216">EIP type.</p>
+<ul id="cce_10_0252__ul968965152215"><li id="cce_10_0252__li768919513226"><strong id="cce_10_0252__b144771728607">5_bgp</strong>: dynamic BGP</li><li id="cce_10_0252__li196892572212"><strong id="cce_10_0252__b97340299010">5_sbgp</strong>: static BGP</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0252__row3689954226"><td class="cellrowborder" valign="top" width="24.612461246124614%" headers="mcps1.3.4.3.2.2.8.2.5.1.1 "><p id="cce_10_0252__p9689157227">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.481448144814483%" headers="mcps1.3.4.3.2.2.8.2.5.1.2 "><p id="cce_10_0252__p146895562212">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.771577157715772%" headers="mcps1.3.4.3.2.2.8.2.5.1.3 "><p id="cce_10_0252__p146893516226">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.13451345134513%" headers="mcps1.3.4.3.2.2.8.2.5.1.4 "><p id="cce_10_0252__p26892518226">Name of the automatically created load balancer.</p>
+<p id="cce_10_0252__p126895522211">Value range: a string of 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+<p id="cce_10_0252__p268916512216">Default: <span class="parmvalue" id="cce_10_0252__parmvalue92879242213"><b>cce-lb+ingress.UID</b></span></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0252__li15690155162214"><span>Create an ingress.</span><p><p id="cce_10_0252__p1469065162217"><strong id="cce_10_0252__b116909514225">kubectl create -f ingress-test.yaml</strong></p>
+<p id="cce_10_0252__p10690354229">If information similar to the following is displayed, the ingress has been created.</p>
+<pre class="screen" id="cce_10_0252__screen2690185162210">ingress/ingress-test created</pre>
+<p id="cce_10_0252__p1069015112213"><strong id="cce_10_0252__b1569005182213">kubectl get ingress</strong></p>
+<p id="cce_10_0252__p969015582210">If information similar to the following is displayed, the ingress has been created successfully and the workload is accessible.</p>
+<pre class="screen" id="cce_10_0252__screen66906502216">NAME             HOSTS     ADDRESS          PORTS   AGE
+ingress-test     *         121.**.**.**     80      10s</pre>
+</p></li><li id="cce_10_0252__li176903572218"><span>Enter <strong id="cce_10_0252__b1331192214233">http://<em id="cce_10_0252__i15305132210235">121.**.**.**</em>:80</strong> in the address box of the browser to access the workload (for example, <a href="cce_10_0047.html#cce_10_0047__section155246177178">Nginx workload</a>).</span><p><p id="cce_10_0252__p17690155132219"><strong id="cce_10_0252__b07511130172314"><em id="cce_10_0252__i15750830142320">121.**.**.**</em></strong> indicates the IP address of the unified load balancer.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0252__section32300431736"><a name="cce_10_0252__section32300431736"></a><a name="section32300431736"></a><h4 class="sectiontitle">Creating an Ingress - Interconnecting with an Existing Load Balancer</h4><div class="p" id="cce_10_0252__p1642165110712">CCE allows you to connect to an existing load balancer when creating an ingress.<div class="note" id="cce_10_0252__note1992012366590"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0252__ul1892013362598"><li id="cce_10_0252__li7341191122314">Existing dedicated load balancers must be the application type (HTTP/HTTPS) supporting private networks (with a private IP).</li></ul>
+</div></div>
+</div>
+<div class="p" id="cce_10_0252__p169201236125919"><strong id="cce_10_0252__b10747178102613">If the cluster version is 1.23 or earlier, the YAML file configuration is as follows:</strong><pre class="screen" id="cce_10_0252__screen3921193613592">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b68113533216">v1</strong>
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.id: <strong id="cce_10_0252__b209391123532">&lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.</strong>
+    kubernetes.io/elb.ip: &lt;<strong id="cce_10_0252__b31921352182817">your_elb_ip&gt;  # Replace it with your existing load balancer IP.</strong>
+    kubernetes.io/elb.port: '80'
+spec:
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          service:
+            name: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+            port: 
+              number: 8080             # Replace 8080 with your target service port number.
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+        pathType: ImplementationSpecific
+  <strong id="cce_10_0252__b33752172411">ingressClassName: cce</strong>               </pre>
+</div>
+<p id="cce_10_0252__p16819191515239"><strong id="cce_10_0252__b795951805211">If the cluster version is 1.21 or later, the YAML file configuration is as follows:</strong></p>
+<pre class="screen" id="cce_10_0252__screen781910150236">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b93781457102919">v1beta1</strong>
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.id: <strong id="cce_10_0252__b1062818853">&lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.</strong>
+    kubernetes.io/elb.ip: &lt;<strong id="cce_10_0252__b360459412">your_elb_ip&gt;  # Replace it with your existing load balancer IP.</strong>
+    kubernetes.io/elb.port: '80'
+    <strong id="cce_10_0252__b1482031582313">kubernetes.io/ingress.class: cce</strong>
+spec:
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0252__table1892373611597" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0252__row16921123616594"><th align="left" class="cellrowborder" valign="top" width="24.772477247724773%" id="mcps1.3.5.6.2.5.1.1"><p id="cce_10_0252__p092111361598">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.691369136913693%" id="mcps1.3.5.6.2.5.1.2"><p id="cce_10_0252__p4921736125920">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.821382138213819%" id="mcps1.3.5.6.2.5.1.3"><p id="cce_10_0252__p992173615594">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.714771477147714%" id="mcps1.3.5.6.2.5.1.4"><p id="cce_10_0252__p15921143625917">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0252__row892173675917"><td class="cellrowborder" valign="top" width="24.772477247724773%" headers="mcps1.3.5.6.2.5.1.1 "><p id="cce_10_0252__p1292133635910">kubernetes.io/elb.id</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.691369136913693%" headers="mcps1.3.5.6.2.5.1.2 "><p id="cce_10_0252__p8921936145914">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.5.6.2.5.1.3 "><p id="cce_10_0252__p09214367590">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.5.6.2.5.1.4 "><p id="cce_10_0252__p692133675916">This parameter indicates the ID of a load balancer. The value can contain 1 to 100 characters.</p>
+<p id="cce_10_0252__p1892183614596"><strong id="cce_10_0252__b81921054522">How to obtain</strong>:</p>
+<p id="cce_10_0252__p1092183616594">On the management console, click <strong id="cce_10_0252__b53131550230">Service List</strong>, and choose <strong id="cce_10_0252__b113135508315">Networking</strong> &gt; <strong id="cce_10_0252__b113138507316">Elastic Load Balance</strong>. Click the name of the target load balancer. On the <strong id="cce_10_0252__b331312501136">Summary</strong> tab page, find and copy the ID.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row2921183614593"><td class="cellrowborder" valign="top" width="24.772477247724773%" headers="mcps1.3.5.6.2.5.1.1 "><p id="cce_10_0252__p159212365592">kubernetes.io/elb.ip</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.691369136913693%" headers="mcps1.3.5.6.2.5.1.2 "><p id="cce_10_0252__p492116364592">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.5.6.2.5.1.3 "><p id="cce_10_0252__p79211436195917">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.5.6.2.5.1.4 "><p id="cce_10_0252__p4921183685915">This parameter indicates the service address of a load balancer. The value can be the public IP address of a public network load balancer or the private IP address of a private network load balancer.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0252__section64211114202417"><h4 class="sectiontitle">Configuring HTTPS Certificates</h4><p id="cce_10_0252__p2058012317447">Ingress supports TLS certificate configuration and secures your Services with HTTPS.</p>
+<div class="note" id="cce_10_0252__note84173146243"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0252__p64162293712">If HTTPS is enabled for the same port of the same load balancer of multiple ingresses, you must select the same certificate.</p>
+</div></div>
+<ol id="cce_10_0252__ol184201514102417"><li id="cce_10_0252__li18417114112414"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0252__li134181914132418"><span>Run the following command to create a YAML file named <strong id="cce_10_0252__b20417151418241">ingress-test-secret.yaml</strong> (the file name can be customized):</span><p><p id="cce_10_0252__p3417614182410"><strong id="cce_10_0252__b641751472411">vi ingress-test-secret.yaml</strong></p>
+<div class="p" id="cce_10_0252__p841811422419"><strong id="cce_10_0252__b8121165018283">The YAML file is configured as follows:</strong><pre class="screen" id="cce_10_0252__screen441821472419">apiVersion: v1
+data:
+  tls.crt: <strong id="cce_10_0252__b15418111422418">LS0******tLS0tCg==</strong>
+  tls.key: <strong id="cce_10_0252__b1841811442412">LS0tL******0tLS0K</strong>
+kind: Secret
+metadata:
+  annotations:
+    description: test for ingressTLS secrets
+  name: ingress-test-secret
+  namespace: default
+<strong id="cce_10_0252__b19418201417248">type: IngressTLS</strong></pre>
+</div>
+<div class="note" id="cce_10_0252__note134186146243"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0252__p14181514142419">In the preceding information, <strong id="cce_10_0252__b065555418611">tls.crt</strong> and <strong id="cce_10_0252__b165617541264">tls.key</strong> are only examples. Replace them with the actual files. The values of <strong id="cce_10_0252__b124733011292">tls.crt</strong> and <strong id="cce_10_0252__b1647930132920">tls.key</strong> are Base64-encoded.</p>
+</div></div>
+</p></li><li id="cce_10_0252__li104181614202415"><span>Create a secret.</span><p><p id="cce_10_0252__p4418141417245"><strong id="cce_10_0252__b1841817148245">kubectl create -f <strong id="cce_10_0252__b1741816145246">ingress-test-secret.yaml</strong></strong></p>
+<p id="cce_10_0252__p8418161413245">If information similar to the following is displayed, the secret is being created:</p>
+<pre class="screen" id="cce_10_0252__screen19418191417246">secret/ingress-test-secret created</pre>
+<p id="cce_10_0252__p14418914162410">View the created secrets.</p>
+<p id="cce_10_0252__p04185147249"><strong id="cce_10_0252__b14180142247">kubectl get secrets</strong></p>
+<p id="cce_10_0252__p164189149249">If information similar to the following is displayed, the secret has been created successfully:</p>
+<pre class="screen" id="cce_10_0252__screen74181143240">NAME                         TYPE                                  DATA      AGE
+ingress-test-secret          IngressTLS                            2         13s</pre>
+</p></li><li id="cce_10_0252__li741912140243"><span>Create a YAML file named <strong id="cce_10_0252__b1080120811319">ingress-test.yaml</strong>. The file name can be customized.</span><p><p id="cce_10_0252__p17418191410244"><strong id="cce_10_0252__b1418191472416">vi ingress-test.yaml</strong></p>
+<div class="note" id="cce_10_0252__note1841811432415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0252__p641841412416">Default security policy (kubernetes.io/elb.tls-ciphers-policy) is supported only in clusters of v1.17.17 or later.</p>
+</div></div>
+<p id="cce_10_0252__p241810146242"><strong id="cce_10_0252__b123961500305">The following uses the automatically created load balancer as an example. The YAML file is configured as follows:</strong></p>
+<p id="cce_10_0252__p31361053745"><strong id="cce_10_0252__b1386110421485">For clusters of v1.21 or earlier:</strong></p>
+<pre class="screen" id="cce_10_0252__screen74180149243">apiVersion: networking.k8s.io/v1beta1
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.class: union
+    kubernetes.io/ingress.class: cce
+    kubernetes.io/elb.port: <strong id="cce_10_0252__b541811147249">'443'</strong>
+    kubernetes.io/elb.autocreate: 
+      '{
+          "type":"public",
+          "bandwidth_name":"cce-bandwidth-15511633796**",
+          "bandwidth_chargemode":"bandwidth",
+          "bandwidth_size":5,
+          "bandwidth_sharetype":"PER",
+          "eip_type":"5_bgp"
+        }'
+    <strong id="cce_10_0252__b9418201413249">kubernetes.io/elb.tls-ciphers-policy: tls-1-2</strong>
+spec:
+<strong id="cce_10_0252__b241891413246">  tls: </strong>
+<strong id="cce_10_0252__b4418181418242">  - secretName: ingress-test-secret</strong>
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
+<div class="p" id="cce_10_0252__p2053120251459"><strong id="cce_10_0252__b12199123282518">For clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen653182516515">apiVersion: networking.k8s.io/v1
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.class: union
+    kubernetes.io/elb.port: <strong id="cce_10_0252__b411916591051">'443'</strong>
+    kubernetes.io/elb.autocreate: 
+      '{
+          "type":"public",
+          "bandwidth_name":"cce-bandwidth-15511633796**",
+          "bandwidth_chargemode":"bandwidth",
+          "bandwidth_size":5,
+          "bandwidth_sharetype":"PER",
+          "eip_type":"5_bgp"
+        }'
+    <strong id="cce_10_0252__b20119155910518">kubernetes.io/elb.tls-ciphers-policy: tls-1-2</strong>
+spec:
+<strong id="cce_10_0252__b101203598511">  tls: </strong>
+<strong id="cce_10_0252__b512019597516">  - secretName: ingress-test-secret</strong>
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          service:
+            name: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+            port: 
+              number: 8080             # Replace 8080 with the port number of your target Service.
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+        pathType: ImplementationSpecific
+  ingressClassName: cce </pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0252__table74191314162416" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0252__row1141881432420"><th align="left" class="cellrowborder" valign="top" width="24.71247124712471%" id="mcps1.3.6.4.4.2.7.2.5.1.1"><p id="cce_10_0252__p24181614182410">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.751375137513753%" id="mcps1.3.6.4.4.2.7.2.5.1.2"><p id="cce_10_0252__p441891432411">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.821382138213819%" id="mcps1.3.6.4.4.2.7.2.5.1.3"><p id="cce_10_0252__p174188147243">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.714771477147714%" id="mcps1.3.6.4.4.2.7.2.5.1.4"><p id="cce_10_0252__p84181142246">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0252__row12419614122415"><td class="cellrowborder" valign="top" width="24.71247124712471%" headers="mcps1.3.6.4.4.2.7.2.5.1.1 "><p id="cce_10_0252__p18418131411241">kubernetes.io/elb.tls-ciphers-policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.751375137513753%" headers="mcps1.3.6.4.4.2.7.2.5.1.2 "><p id="cce_10_0252__p1341851472414">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.6.4.4.2.7.2.5.1.3 "><p id="cce_10_0252__p1941810146243">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.6.4.4.2.7.2.5.1.4 "><p id="cce_10_0252__p20418131419249">The default value is <span class="parmvalue" id="cce_10_0252__parmvalue141816146245"><b>tls-1-2</b></span>, which is the default security policy used by the listener and takes effect only when the HTTPS protocol is used.</p>
+<p id="cce_10_0252__p9418614122414">Options:</p>
+<ul id="cce_10_0252__ul641916143241"><li id="cce_10_0252__li164193148248">tls-1-0</li><li id="cce_10_0252__li15419171419244">tls-1-1</li><li id="cce_10_0252__li9419161415248">tls-1-2</li><li id="cce_10_0252__li1141901452414">tls-1-2-strict</li></ul>
+<p id="cce_10_0252__p154191114182415">For details of cipher suites for each security policy, see <a href="#cce_10_0252__table9419191416246">Table 5</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row1741941412245"><td class="cellrowborder" valign="top" width="24.71247124712471%" headers="mcps1.3.6.4.4.2.7.2.5.1.1 "><p id="cce_10_0252__p0419111415244">tls</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.751375137513753%" headers="mcps1.3.6.4.4.2.7.2.5.1.2 "><p id="cce_10_0252__p7419171414244">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.6.4.4.2.7.2.5.1.3 "><p id="cce_10_0252__p114191714142413">Array of strings</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.6.4.4.2.7.2.5.1.4 "><p id="cce_10_0252__p5419101492419">This parameter is mandatory if HTTPS is used. Multiple independent domain names and certificates can be added to this parameter. For details, see <a href="#cce_10_0252__section0555194782414">Configuring the Server Name Indication (SNI)</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row5419101462414"><td class="cellrowborder" valign="top" width="24.71247124712471%" headers="mcps1.3.6.4.4.2.7.2.5.1.1 "><p id="cce_10_0252__p2419121482413">secretName</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.751375137513753%" headers="mcps1.3.6.4.4.2.7.2.5.1.2 "><p id="cce_10_0252__p1241991412412">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.821382138213819%" headers="mcps1.3.6.4.4.2.7.2.5.1.3 "><p id="cce_10_0252__p141917145245">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.714771477147714%" headers="mcps1.3.6.4.4.2.7.2.5.1.4 "><p id="cce_10_0252__p7419714162413">This parameter is mandatory if HTTPS is used. Set this parameter to the name of the created secret.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0252__table9419191416246"></a><a name="table9419191416246"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0252__table9419191416246" frame="border" border="1" rules="all"><caption><b>Table 5 </b>tls_ciphers_policy parameter description</caption><thead align="left"><tr id="cce_10_0252__row2419214132420"><th align="left" class="cellrowborder" valign="top" width="16.37%" id="mcps1.3.6.4.4.2.8.2.4.1.1"><p id="cce_10_0252__p24196145242">Security Policy</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.71%" id="mcps1.3.6.4.4.2.8.2.4.1.2"><p id="cce_10_0252__p15419131413249">TLS Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="57.92%" id="mcps1.3.6.4.4.2.8.2.4.1.3"><p id="cce_10_0252__p15419171417249">Cipher Suite</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0252__row18419161432410"><td class="cellrowborder" valign="top" width="16.37%" headers="mcps1.3.6.4.4.2.8.2.4.1.1 "><p id="cce_10_0252__p7419101442419">tls-1-0</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.71%" headers="mcps1.3.6.4.4.2.8.2.4.1.2 "><p id="cce_10_0252__p1141971442418">TLS 1.2</p>
+<p id="cce_10_0252__p04191314152418">TLS 1.1</p>
+<p id="cce_10_0252__p94191414112416">TLS 1.0</p>
+</td>
+<td class="cellrowborder" rowspan="3" valign="top" width="57.92%" headers="mcps1.3.6.4.4.2.8.2.4.1.3 "><p id="cce_10_0252__p174195143248">ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:AES128-SHA256:AES256-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:AES128-SHA:AES256-SHA</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row9419171417241"><td class="cellrowborder" valign="top" headers="mcps1.3.6.4.4.2.8.2.4.1.1 "><p id="cce_10_0252__p0419131422419">tls-1-1</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.6.4.4.2.8.2.4.1.2 "><p id="cce_10_0252__p114191614142413">TLS 1.2</p>
+<p id="cce_10_0252__p941951432415">TLS 1.1</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row19419181415248"><td class="cellrowborder" valign="top" headers="mcps1.3.6.4.4.2.8.2.4.1.1 "><p id="cce_10_0252__p64191814202410">tls-1-2</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.6.4.4.2.8.2.4.1.2 "><p id="cce_10_0252__p6419131462417">TLS 1.2</p>
+</td>
+</tr>
+<tr id="cce_10_0252__row20419141412416"><td class="cellrowborder" valign="top" width="16.37%" headers="mcps1.3.6.4.4.2.8.2.4.1.1 "><p id="cce_10_0252__p19419121482413">tls-1-2-strict</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.71%" headers="mcps1.3.6.4.4.2.8.2.4.1.2 "><p id="cce_10_0252__p64198144244">TLS 1.2</p>
+</td>
+<td class="cellrowborder" valign="top" width="57.92%" headers="mcps1.3.6.4.4.2.8.2.4.1.3 "><p id="cce_10_0252__p2041911146244">ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:AES128-SHA256:AES256-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0252__li13420131462418"><span>Create an ingress.</span><p><p id="cce_10_0252__p542021432415"><strong id="cce_10_0252__b13420121418249">kubectl create -f ingress-test.yaml</strong></p>
+<p id="cce_10_0252__p5420131416240">If information similar to the following is displayed, the ingress has been created.</p>
+<pre class="screen" id="cce_10_0252__screen1742018145243">ingress/ingress-test created</pre>
+<p id="cce_10_0252__p1542071422419">View the created ingress.</p>
+<p id="cce_10_0252__p9420141417246"><strong id="cce_10_0252__b17420101482417">kubectl get ingress</strong></p>
+<p id="cce_10_0252__p11420214202415">If information similar to the following is displayed, the ingress has been created successfully and the workload is accessible.</p>
+<pre class="screen" id="cce_10_0252__screen19420914182410">NAME             HOSTS     ADDRESS          PORTS   AGE
+ingress-test     *         121.**.**.**     80      10s</pre>
+</p></li><li id="cce_10_0252__li16420214192410"><span>Enter <strong id="cce_10_0252__b98641129163118">https://<em id="cce_10_0252__i19859629183114">121.**.**.**</em>:443</strong> in the address box of the browser to access the workload (for example, <a href="cce_10_0047.html#cce_10_0047__section155246177178">Nginx workload</a>).</span><p><p id="cce_10_0252__p34202141244"><strong id="cce_10_0252__b17947173112239"><em id="cce_10_0252__i8947163172317">121.**.**.**</em></strong> indicates the IP address of the unified load balancer.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0252__section5536333131519"><h4 class="sectiontitle">Using HTTP/2</h4><p id="cce_10_0252__p751644782620">Ingresses can use HTTP/2 to expose services. Connections from the load balancer proxy to your applications use HTTP/1.X by default. If your application is capable of receiving HTTP/2 requests, you can add the following field to the ingress annotation to enable the use of HTTP/2:</p>
+<p id="cce_10_0252__p10141011165311">`kubernetes.io/elb.http2-enable: 'true'`</p>
+<p id="cce_10_0252__p141181143539">The following shows the YAML file for associating with an existing load balancer:</p>
+<p id="cce_10_0252__p17790636192914"><strong id="cce_10_0252__b20913332132316">For clusters of v1.21 or earlier:</strong></p>
+<pre class="screen" id="cce_10_0252__screen13434514312">apiVersion: networking.k8s.io/v1beta1
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.id: &lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.
+    kubernetes.io/elb.ip: &lt;your_elb_ip&gt;  # Replace it with the IP of your existing load balancer.
+    kubernetes.io/elb.port: '443'
+    kubernetes.io/ingress.class: cce
+    <strong id="cce_10_0252__b640924813437">kubernetes.io/elb.http2-enable: 'true'</strong> # Enable HTTP/2.
+spec:
+  tls:
+  - secretName: ingress-test-secret
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80                   # Replace it with the port number of your target Service.
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
+<div class="p" id="cce_10_0252__p1536343117411"><strong id="cce_10_0252__b913624082">For clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen15915183187">apiVersion: networking.k8s.io/v1
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.id: &lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.
+    kubernetes.io/elb.ip: &lt;your_elb_ip&gt;  # Replace it with the IP of your existing load balancer.
+    kubernetes.io/elb.port: '443'
+    <strong id="cce_10_0252__b03041159182413">kubernetes.io/elb.http2-enable: 'true'</strong> # Enable HTTP/2.
+spec:
+  tls: 
+  - secretName: ingress-test-secret
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          service:
+            name: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+            port: 
+              number: 8080             # Replace 8080 with the port number of your target Service.
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+        pathType: ImplementationSpecific
+  ingressClassName: cce </pre>
+</div>
+<p id="cce_10_0252__p11996891300">Table 6 HTTP/2 parameters</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0252__table17688239103511" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0252__row568853914357"><th align="left" class="cellrowborder" valign="top" width="24.542454245424544%" id="mcps1.3.7.9.1.5.1.1"><p id="cce_10_0252__p1868818399357">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="8.830883088308832%" id="mcps1.3.7.9.1.5.1.2"><p id="cce_10_0252__p12688839163511">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="8.320832083208321%" id="mcps1.3.7.9.1.5.1.3"><p id="cce_10_0252__p26888391350">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="58.3058305830583%" id="mcps1.3.7.9.1.5.1.4"><p id="cce_10_0252__p1168810398351">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0252__row1068843915351"><td class="cellrowborder" valign="top" width="24.542454245424544%" headers="mcps1.3.7.9.1.5.1.1 "><p id="cce_10_0252__p3286145014363">kubernetes.io/elb.http2-enable</p>
+</td>
+<td class="cellrowborder" valign="top" width="8.830883088308832%" headers="mcps1.3.7.9.1.5.1.2 "><p id="cce_10_0252__p128511506361">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="8.320832083208321%" headers="mcps1.3.7.9.1.5.1.3 "><p id="cce_10_0252__p7283165017368">Bool</p>
+</td>
+<td class="cellrowborder" valign="top" width="58.3058305830583%" headers="mcps1.3.7.9.1.5.1.4 "><p id="cce_10_0252__p123836441445">Whether HTTP/2 is enabled. Request forwarding using HTTP/2 improves the access performance between your application and the load balancer. However, the load balancer still uses HTTP 1.X to forward requests to the backend server. <strong id="cce_10_0252__b18372132113519">This parameter is supported in clusters of v1.19.16-r0, v1.21.3-r0, and later versions.</strong></p>
+<p id="cce_10_0252__p428125093618">Options:</p>
+<ul id="cce_10_0252__ul2067892553718"><li id="cce_10_0252__li56789252376"><strong id="cce_10_0252__b3219121210368">true</strong>: enabled</li><li id="cce_10_0252__li18775193315373"><strong id="cce_10_0252__b1986911197360">false</strong>: disabled (default value)</li></ul>
+<p id="cce_10_0252__p694994217379">Note: <strong id="cce_10_0252__b292113476369">HTTP/2 can be enabled or disabled only when the listener uses HTTPS.</strong> This parameter is invalid and defaults to <strong id="cce_10_0252__b619710112372">false</strong> when the listener protocol is HTTP.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0252__section0555194782414"><a name="cce_10_0252__section0555194782414"></a><a name="section0555194782414"></a><h4 class="sectiontitle">Configuring the Server Name Indication (SNI)</h4><div class="p" id="cce_10_0252__p10554647142415">SNI allows multiple TLS-based access domain names to be provided for external systems using the same IP address and port number. Different domain names can use different security certificates.<div class="note" id="cce_10_0252__note255434732418"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0252__ul2055424732410"><li id="cce_10_0252__li55546476244">Only one domain name can be specified for each SNI certificate. Wildcard-domain certificates are supported.</li><li id="cce_10_0252__li17554347182418">Security policy (kubernetes.io/elb.tls-ciphers-policy) is supported only in clusters of v1.17.11 or later.</li></ul>
+</div></div>
+</div>
+<p id="cce_10_0252__p5555947202415">You can enable SNI when the preceding conditions are met. The following uses the automatic creation of a load balancer as an example. In this example, <strong id="cce_10_0252__b1358153235418">sni-test-secret-1</strong> and <strong id="cce_10_0252__b335843220544">sni-test-secret-2</strong> are SNI certificates. The domain names specified by the certificates must be the same as those in the certificates.</p>
+<div class="p" id="cce_10_0252__p1932161111266"><strong id="cce_10_0252__b8232115472513">For clusters of v1.21 or earlier:</strong><pre class="screen" id="cce_10_0252__screen0555174710241">apiVersion: networking.k8s.io/v1beta1
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.class: union
+    kubernetes.io/ingress.class: cce
+    kubernetes.io/elb.port: <strong id="cce_10_0252__b19554347142415">'443'</strong>
+    kubernetes.io/elb.autocreate: 
+      '{
+          "type":"public",
+          "bandwidth_name":"cce-bandwidth-******",
+          "bandwidth_chargemode":"bandwidth",
+          "bandwidth_size":5,
+          "bandwidth_sharetype":"PER",
+          "eip_type":"5_bgp"
+        }'
+    kubernetes.io/elb.tls-ciphers-policy: tls-1-2
+spec:
+<strong id="cce_10_0252__b255434782416">  tls: </strong>
+<strong id="cce_10_0252__b1455419478246">  - </strong>secretName: ingress-test-secret
+  <strong id="cce_10_0252__b16554114722418">- hosts:</strong>
+<strong id="cce_10_0252__b811722945816">      - example.top</strong>  # Domain name specified a certificate is issued
+<strong id="cce_10_0252__b555413476247">    secretName: sni-test-secret-1</strong>  
+<strong id="cce_10_0252__b5554247112418">  - hosts:</strong>
+<strong id="cce_10_0252__b1811882985816">      - example.com</strong>  # Domain name specified a certificate is issued
+<strong id="cce_10_0252__b155541347192413">    secretName: sni-test-secret-2</strong>
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
+</div>
+<div class="p" id="cce_10_0252__p1838216369266"><strong id="cce_10_0252__b1244655636">For clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen10223183922611">apiVersion: networking.k8s.io/v1
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  annotations: 
+    kubernetes.io/elb.class: union
+    kubernetes.io/elb.port: <strong id="cce_10_0252__b429116205275">'443'</strong>
+    kubernetes.io/elb.autocreate: 
+      '{
+          "type":"public",
+          "bandwidth_name":"cce-bandwidth-******",
+          "bandwidth_chargemode":"bandwidth",
+          "bandwidth_size":5,
+          "bandwidth_sharetype":"PER",
+          "eip_type":"5_bgp"
+        }'
+    kubernetes.io/elb.tls-ciphers-policy: tls-1-2
+spec:
+<strong id="cce_10_0252__b112912020112711">  tls: </strong>
+<strong id="cce_10_0252__b729162017271">  - </strong>secretName: ingress-test-secret
+  <strong id="cce_10_0252__b92911120172714">- hosts:</strong>
+<strong id="cce_10_0252__b1235496786">      - example.top</strong>  # Domain name specified a certificate is issued
+<strong id="cce_10_0252__b529132016274">    secretName: sni-test-secret-1</strong>  
+<strong id="cce_10_0252__b162913206279">  - hosts:</strong>
+<strong id="cce_10_0252__b1569568721">      - example.com</strong>  # Domain name specified a certificate is issued
+<strong id="cce_10_0252__b22911120162715">    secretName: sni-test-secret-2</strong>
+  rules: 
+  - host: ''
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          service:
+            name: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+            port: 
+              number: 8080             # Replace 8080 with the port number of your target Service.
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+        pathType: ImplementationSpecific
+  ingressClassName: cce </pre>
+</div>
+</div>
+<div class="section" id="cce_10_0252__section85321156192416"><h4 class="sectiontitle">Accessing Multiple Services</h4><p id="cce_10_0252__p153110565247">Ingresses can route requests to multiple backend Services based on different matching policies. The <b><span class="cmdname" id="cce_10_0252__cmdname653115566246">spec</span></b> field in the YAML file is set as below. You can access <strong id="cce_10_0252__b132205015338">www.example.com/foo</strong>, <strong id="cce_10_0252__b153533337">www.example.com/bar</strong>, and <strong id="cce_10_0252__b105391614330">foo.example.com/</strong> to route to three different backend Services.</p>
+<div class="notice" id="cce_10_0252__note1753155642416"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0252__p12531175662419">The URL registered in an ingress forwarding policy must be the same as the URL exposed by the backend Service. Otherwise, a 404 error will be returned.</p>
+</div></div>
+<pre class="screen" id="cce_10_0252__screen18532145619246">spec:
+  rules: 
+  - <strong id="cce_10_0252__b753120568241">host: 'www.example.com'</strong>
+    http: 
+      paths: 
+      <strong id="cce_10_0252__b2053111564240">- path: '/foo'</strong>
+        backend: 
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+      <strong id="cce_10_0252__b11532205642415">- path: '/bar'</strong>
+        backend:
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+  - <strong id="cce_10_0252__b35321956122414">host: 'foo.example.com'</strong>
+    http:
+      paths:
+      - <strong id="cce_10_0252__b7532145692414">path: '/'</strong>
+        backend:
+          serviceName: &lt;your_service_name&gt;  # Replace it with the name of your target Service.
+          servicePort: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0248.html">Ingresses</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0257.html b/docs/cce/umn/cce_10_0257.html
new file mode 100644
index 00000000..9d30d728
--- /dev/null
+++ b/docs/cce/umn/cce_10_0257.html
@@ -0,0 +1,207 @@
+<a name="cce_10_0257"></a><a name="cce_10_0257"></a>
+
+<h1 class="topictitle1">Creating a Deployment Mounted with an EVS Volume</h1>
+<div id="body1599889496880"><div class="section" id="cce_10_0257__section1789161805617"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0257__p19113471414">After an EVS volume is created or imported to CCE, you can mount it to a workload.</p>
+<div class="notice" id="cce_10_0257__note151273161411"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0257__p1812771181417">EVS disks cannot be attached across AZs. Before mounting a volume, you can run the <strong id="cce_10_0257__b1476484310226">kubectl get pvc</strong> command to query the available PVCs in the AZ where the current cluster is located.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0257__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0257__p832165917321">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+</div>
+<div class="section" id="cce_10_0257__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0257__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
+</div>
+<div class="section" id="cce_10_0257__section421772310564"><h4 class="sectiontitle">Using EVS Volumes for Deployments</h4><ol id="cce_10_0257__ol49241352137"><li id="cce_10_0257__li9489154713219"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0257__li109251156137"><span>Run the following commands to configure the <strong id="cce_10_0257__b32905155237">evs-deployment-example.yaml</strong> file, which is used to create a Deployment.</span><p><p id="cce_10_0257__p5929195141316"><strong id="cce_10_0257__b193391624515">touch evs-deployment-example.yaml</strong></p>
+<p id="cce_10_0257__p17933254133"><strong id="cce_10_0257__b1595201624516">vi evs-deployment-example.yaml</strong></p>
+<div class="p" id="cce_10_0257__p72162011219">Example of mounting an EVS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_10_0257__screen1913618543140">apiVersion: apps/v1 
+kind: Deployment 
+metadata: 
+  name: evs-deployment-example 
+  namespace: default 
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: evs-deployment-example 
+  template: 
+    metadata: 
+      labels: 
+        app: evs-deployment-example 
+    spec: 
+      containers: 
+      - image: nginx
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp 
+          name: pvc-evs-example 
+      imagePullSecrets:
+        - name: default-secret
+      restartPolicy: Always 
+      volumes: 
+      - name: pvc-evs-example 
+        persistentVolumeClaim: 
+          claimName: pvc-evs-auto-example</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0257__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0257__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="32.73%" id="mcps1.3.4.2.2.2.4.2.4.1.1"><p id="cce_10_0257__p525814169813">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="18.15%" id="mcps1.3.4.2.2.2.4.2.4.1.2"><p id="cce_10_0257__p18191161619356">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.120000000000005%" id="mcps1.3.4.2.2.2.4.2.4.1.3"><p id="cce_10_0257__p1919116161353">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0257__row7430236123515"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_10_0257__p92591716583">spec.template.spec.containers.volumeMounts</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_10_0257__p116341334126">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_10_0257__p1927814583433">Name of the volume mounted to the container.</p>
+</td>
+</tr>
+<tr id="cce_10_0257__row10639194016187"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_10_0257__p54664413187">spec.template.spec.containers.volumeMounts</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_10_0257__p1946674110189">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_10_0257__p546684111182">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_10_0257__b25451154103210">/tmp</strong> directory.</p>
+</td>
+</tr>
+<tr id="cce_10_0257__row6232511129"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_10_0257__p72592169811">spec.template.spec.volumes</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_10_0257__p192525131213">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_10_0257__p132182510120">Name of the volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0257__row163191830121220"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.4.2.2.2.4.2.4.1.1 "><p id="cce_10_0257__p425991613812">spec.template.spec.volumes.persistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.4.2.2.2.4.2.4.1.2 "><p id="cce_10_0257__p14319143031212">claimName</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.4.2.2.2.4.2.4.1.3 "><p id="cce_10_0257__p18319530131211">Name of an existing PVC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0257__note7669545104415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0257__p116692457448"><strong id="cce_10_0257__b7675160145016">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0257__b116821902508">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0257__li63176161314"><span>Run the following command to create the workload:</span><p><p id="cce_10_0257__p55865136"><strong id="cce_10_0257__b752416561695">kubectl create -f evs-deployment-example.yaml</strong></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0257__section1104163720107"><h4 class="sectiontitle">Using EVS Volumes for StatefulSets</h4><ol id="cce_10_0257__ol1479413921116"><li id="cce_10_0257__li1979418919118"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0257__li079449141117"><span>Run the following commands to configure the <span class="uicontrol" id="cce_10_0257__uicontrol1279459171113"><b>evs-statefulset-example.yaml</b></span> file, which is used to create a Deployment.</span><p><p id="cce_10_0257__p129541126126"><strong id="cce_10_0257__b19541231210">touch </strong><strong id="cce_10_0257__b9943161191219">evs-statefulset-example</strong><strong id="cce_10_0257__b79531216123">.yaml</strong></p>
+<p id="cce_10_0257__p35391851151111"><strong id="cce_10_0257__b115381514113">vi </strong><strong id="cce_10_0257__b149455116128">evs-statefulset-example</strong><strong id="cce_10_0257__b153865131115">.yaml</strong></p>
+<p id="cce_10_0257__p1479513913116">Mounting an EVS volume to a StatefulSet (PVC template-based, non-shared volume):</p>
+<div class="p" id="cce_10_0257__p14795493113"><strong id="cce_10_0257__b1350313576311">Example YAML:</strong><pre class="screen" id="cce_10_0257__screen1879599131118">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: evs-statefulset-example
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: evs-statefulset-example
+  template:
+    metadata:
+      labels:
+        app: evs-statefulset-example
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:latest'
+          volumeMounts:
+            - name: pvc-evs-auto-example
+              mountPath: /tmp
+      restartPolicy: Always
+      imagePullSecrets:
+        - name: default-secret
+  volumeClaimTemplates:
+    - metadata:
+        name: pvc-evs-auto-example
+        namespace: default
+        labels:
+          failure-domain.beta.kubernetes.io/region: <span id="cce_10_0257__text13180166132919">eu-de</span>
+          failure-domain.beta.kubernetes.io/zone: 
+        annotations:
+          everest.io/disk-volume-type: SAS
+      spec:
+        accessModes:
+          - ReadWriteOnce
+        resources:
+          requests:
+            storage: 10Gi
+        storageClassName: csi-disk   
+  serviceName: evs-statefulset-example-headless
+  updateStrategy:
+    type: RollingUpdate</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0257__table37966951119" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0257__row17796159151117"><th align="left" class="cellrowborder" valign="top" width="30.570000000000004%" id="mcps1.3.5.2.2.2.4.3.2.4.1.1"><p id="cce_10_0257__p779629181113">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.150000000000002%" id="mcps1.3.5.2.2.2.4.3.2.4.1.2"><p id="cce_10_0257__p079615917118">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="53.28000000000001%" id="mcps1.3.5.2.2.2.4.3.2.4.1.3"><p id="cce_10_0257__p1179619111112">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0257__row079615921119"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_10_0257__p20796691110">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_10_0257__p179617921112">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_10_0257__p1979620951115">Name of the created workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0257__row177961797115"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_10_0257__p4796119161110">spec.template.spec.containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_10_0257__p879699101113">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_10_0257__p979689131114">Image of the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0257__row179617915117"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_10_0257__p13796189161112">spec.template.spec.containers.volumeMount</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_10_0257__p157966913118">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_10_0257__p1796189101112">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_10_0257__b1610008746104918">/tmp</strong> directory.</p>
+</td>
+</tr>
+<tr id="cce_10_0257__row197963921111"><td class="cellrowborder" valign="top" width="30.570000000000004%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.1 "><p id="cce_10_0257__p379618918119">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.150000000000002%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.2 "><p id="cce_10_0257__p579610915115">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.28000000000001%" headers="mcps1.3.5.2.2.2.4.3.2.4.1.3 "><p id="cce_10_0257__p079610971112">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0257__note187971961117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0257__p6797992111"><strong id="cce_10_0257__b111763820508">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0257__b51733895016">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</div>
+</p></li><li id="cce_10_0257__li1779769121117"><span>Run the following command to create the workload:</span><p><p id="cce_10_0257__p3624185871316"><strong id="cce_10_0257__b116247588131">kubectl create -f evs-</strong><strong id="cce_10_0257__b3651810141418">statefulset</strong><strong id="cce_10_0257__b1062345811310">-example.yaml</strong></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0257__section1347793033917"><h4 class="sectiontitle">Verifying Persistent Storage of an EVS Volume</h4><ol id="cce_10_0257__ol4999113815404"><li id="cce_10_0257__li19999203814405"><span>Query the pod and EVS files of the deployed workload (for example, <strong id="cce_10_0257__b136596553352">evs-statefulset-example</strong>).</span><p><ol type="a" id="cce_10_0257__ol8584452175015"><li id="cce_10_0257__li5584252125015">Run the following command to query the pod name of the workload:<pre class="screen" id="cce_10_0257__screen1477515615319">kubectl get po | grep evs-statefulset-example</pre>
+<p id="cce_10_0257__p3677113718527">Expected outputs:</p>
+<pre class="screen" id="cce_10_0257__screen1659915915210">evs-statefulset-example-0   1/1     Running   0          22h</pre>
+</li><li id="cce_10_0257__li172361712165217">Run the following command to check whether an EVS volume is mounted to the <strong id="cce_10_0257__b362762613619">/tmp</strong> directory:<pre class="screen" id="cce_10_0257__screen14110110115418">kubectl exec evs-statefulset-example-0 -- df tmp</pre>
+<p id="cce_10_0257__p1596671205518">Expected outputs:</p>
+<pre class="screen" id="cce_10_0257__screen1792141555414">/dev/sda        10255636 36888  10202364   1% /tmp</pre>
+</li></ol>
+</p></li><li id="cce_10_0257__li15750205312556"><span>Run the following command to create a file named <strong id="cce_10_0257__b14164105319361">test</strong> in the <strong id="cce_10_0257__b1773115723612">/tmp</strong> directory:</span><p><pre class="screen" id="cce_10_0257__screen07801324205418">kubectl exec evs-statefulset-example-0 -- touch /tmp/test</pre>
+</p></li><li id="cce_10_0257__li343411174573"><span>Run the following command to view the file in the <strong id="cce_10_0257__b873761010371">/tmp</strong> directory:</span><p><pre class="screen" id="cce_10_0257__screen4181133113541">kubectl exec evs-statefulset-example-0 -- ls -l /tmp</pre>
+<p id="cce_10_0257__p4581437125810">Expected outputs:</p>
+<pre class="screen" id="cce_10_0257__screen690563919548">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
+</p></li><li id="cce_10_0257__li1840945513582"><span>Run the following command to delete the pod named <strong id="cce_10_0257__b13113551183712">evs-statefulset-example-0</strong>:</span><p><pre class="screen" id="cce_10_0257__screen0451134319548">kubectl delete po evs-statefulset-example-0</pre>
+</p></li><li id="cce_10_0257__li188315111203"><span>Check whether the file still exists after the pod is rebuilt.</span><p><ol type="a" id="cce_10_0257__ol192831981117"><li id="cce_10_0257__li12838819115">Run the following command to query the name of the rebuilt pod:<pre class="screen" id="cce_10_0257__screen1768311482542">kubectl get po</pre>
+<p id="cce_10_0257__p3901203422">Expected outputs:</p>
+<pre class="screen" id="cce_10_0257__screen11176952145414">evs-statefulset-example-0   1/1     Running   0          2m</pre>
+</li><li id="cce_10_0257__li220813138214">Run the following command to view the file in the <strong id="cce_10_0257__b3466122318387">/tmp</strong> directory:<pre class="screen" id="cce_10_0257__screen584835585420">kubectl exec evs-statefulset-example-0 -- ls -l /tmp</pre>
+<p id="cce_10_0257__p1742016385220">Expected outputs:</p>
+<pre class="screen" id="cce_10_0257__screen132285019134">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
+</li><li id="cce_10_0257__li141791742105312">The <strong id="cce_10_0257__b14318124911386">test</strong> file still exists after the pod is rebuilt, indicating that the data in the EVS volume can be persistently stored.</li></ol>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0393.html">Deployment Examples</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0262.html b/docs/cce/umn/cce_10_0262.html
new file mode 100644
index 00000000..76210b9c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0262.html
@@ -0,0 +1,149 @@
+<a name="cce_10_0262"></a><a name="cce_10_0262"></a>
+
+<h1 class="topictitle1">Creating a StatefulSet Mounted with an SFS Volume</h1>
+<div id="body1599890253478"><div class="section" id="cce_10_0262__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0262__p11734132718149">CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).</p>
+</div>
+<div class="section" id="cce_10_0262__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0262__p457511329362">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+</div>
+<div class="section" id="cce_10_0262__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0262__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
+</div>
+<div class="section" id="cce_10_0262__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0262__ol1350515318149"><li id="cce_10_0262__li85058532149"><span>Create an SFS volume by referring to <a href="cce_10_0378.html">PersistentVolumeClaims (PVCs)</a> and record the volume name.</span></li><li id="cce_10_0262__li106135421364"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0262__li8612171441813"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0262__b1844313112362">sfs-statefulset-example</strong>.<strong id="cce_10_0262__b545091633610">yaml</strong>.</span><p><p id="cce_10_0262__p13379173818187"><strong id="cce_10_0262__b18379538171814">touch sfs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0262__p3379203871816"><strong id="cce_10_0262__b2037953881811">vi sfs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0262__p9985153518198">Configuration example:</p>
+<pre class="screen" id="cce_10_0262__screen1085510415199">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: sfs-statefulset-example
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: sfs-statefulset-example
+  template:
+    metadata:
+      labels:
+        app: sfs-statefulset-example
+    spec:
+      volumes: 
+      - name: pvc-sfs-example 
+        persistentVolumeClaim:
+          claimName: pvc-sfs-example     
+      containers:
+      - name: container-0
+        image: 'nginx:latest'
+        volumeMounts:
+          - name: pvc-sfs-example
+            mountPath: /tmp
+      restartPolicy: Always
+      imagePullSecrets:
+      - name: default-secret 
+  serviceName: sfs-statefulset-example-headless
+  updateStrategy:
+    type: RollingUpdate</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0262__table397913279106" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0262__row119803273101"><th align="left" class="cellrowborder" valign="top" width="35.61%" id="mcps1.3.4.2.3.2.5.2.4.1.1"><p id="cce_10_0262__p711172811283">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="19.139999999999997%" id="mcps1.3.4.2.3.2.5.2.4.1.2"><p id="cce_10_0262__p12980132717103">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="45.25%" id="mcps1.3.4.2.3.2.5.2.4.1.3"><p id="cce_10_0262__p7981172710104">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0262__row99818271102"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_10_0262__p5111428152813">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_10_0262__p345291413122">replicas</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_10_0262__p119811427161017">Number of pods.</p>
+</td>
+</tr>
+<tr id="cce_10_0262__row14981102761010"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_10_0262__p01172810283">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_10_0262__p1258410114111">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_10_0262__p14983152711100">Name of the new workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0262__row15983132715104"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_10_0262__p111110287288">spec.template.spec.containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_10_0262__p18404174281219">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_10_0262__p2098372713107">Image used by the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0262__row17983427181013"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_10_0262__p211182811286">spec.template.spec.containers.volumeMounts</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_10_0262__p383919212135">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_10_0262__p3983142712105">Mount path of a container.</p>
+</td>
+</tr>
+<tr id="cce_10_0262__row17159179171318"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_10_0262__p1011102862812">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_10_0262__p6104899138">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_10_0262__p1210449101314">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0262__row51546961311"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.4.2.3.2.5.2.4.1.1 "><p id="cce_10_0262__p711728102820">spec.template.spec.volumes.persistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.4.2.3.2.5.2.4.1.2 "><p id="cce_10_0262__p246811218141">claimName</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.4.2.3.2.5.2.4.1.3 "><p id="cce_10_0262__p14105139131316">Name of an existing PVC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0262__p86373162018">Example of mounting an SFS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
+<div class="p" id="cce_10_0262__p2635163415593"><strong id="cce_10_0262__b11182143310526">Example YAML file:</strong><pre class="screen" id="cce_10_0262__screen059214341626">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: sfs-statefulset-example
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: sfs-statefulset-example
+  template:
+    metadata:
+      labels:
+        app: sfs-statefulset-example
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:latest'
+          volumeMounts:
+            - name: pvc-sfs-auto-example
+              mountPath: /tmp
+      restartPolicy: Always
+      imagePullSecrets:
+        - name: default-secret
+  volumeClaimTemplates:
+    - metadata:
+        name: pvc-sfs-auto-example
+        namespace: default
+      spec:
+        accessModes:
+          - ReadWriteMany
+        resources:
+          requests:
+            storage: 10Gi
+        storageClassName: csi-nas
+  serviceName: sfs-statefulset-example-headless
+  updateStrategy:
+    type: RollingUpdate</pre>
+</div>
+<div class="note" id="cce_10_0262__note125211056181112"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0262__p75234567113"><strong id="cce_10_0262__b1690632519513">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0262__b99141325750">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0262__li623417282317"><span>Create a StatefulSet.</span><p><p id="cce_10_0262__p423410219232"><strong id="cce_10_0262__b18234142162314">kubectl create -f  sfs-statefulset-example.yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0393.html">Deployment Examples</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0263.html b/docs/cce/umn/cce_10_0263.html
new file mode 100644
index 00000000..5e18dd25
--- /dev/null
+++ b/docs/cce/umn/cce_10_0263.html
@@ -0,0 +1,52 @@
+<a name="cce_10_0263"></a><a name="cce_10_0263"></a>
+
+<h1 class="topictitle1">Creating a Deployment Mounted with an SFS Volume</h1>
+<div id="body1599890253478"><div class="section" id="cce_10_0263__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0263__p0780175013561">After an SFS volume is created or imported to CCE, you can mount the volume to a workload.</p>
+</div>
+<div class="section" id="cce_10_0263__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0263__p1023472118366">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+</div>
+<div class="section" id="cce_10_0263__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0263__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
+</div>
+<div class="section" id="cce_10_0263__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0263__ol05361840142120"><li id="cce_10_0263__li735122614363"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0263__li3590240112114"><span>Run the following commands to configure the <strong id="cce_10_0263__b1923181242912">sfs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_10_0263__p459116406215"><strong id="cce_10_0263__b18593740162114">touch sfs-deployment-example.yaml</strong></p>
+<p id="cce_10_0263__p859584012117"><strong id="cce_10_0263__b14595540112113">vi sfs-deployment-example.yaml</strong></p>
+<div class="p" id="cce_10_0263__p1312737638">Example of mounting an SFS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_10_0263__screen11598540132112">apiVersion: apps/v1 
+kind: Deployment 
+metadata: 
+  name: sfs-deployment-example                                # Workload name
+  namespace: default 
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: sfs-deployment-example 
+  template: 
+    metadata: 
+      labels: 
+        app: sfs-deployment-example 
+    spec: 
+      containers: 
+      - image: nginx 
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp                                # Mount path 
+          name: pvc-sfs-example 
+      imagePullSecrets:
+        - name: default-secret
+      restartPolicy: Always 
+      volumes: 
+      - name: pvc-sfs-example 
+        persistentVolumeClaim: 
+          claimName: pvc-sfs-auto-example                # PVC name</pre>
+</div>
+<div class="note" id="cce_10_0263__note12103218191612"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0263__p21046188168"><strong id="cce_10_0263__b3571462612">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0263__b9571561610">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0263__li26411440172111"><span>Run the following command to create the workload:</span><p><p id="cce_10_0263__p1948187803"><strong id="cce_10_0263__b174317371310">kubectl create -f sfs-deployment-example.yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0393.html">Deployment Examples</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0268.html b/docs/cce/umn/cce_10_0268.html
new file mode 100644
index 00000000..1eea4642
--- /dev/null
+++ b/docs/cce/umn/cce_10_0268.html
@@ -0,0 +1,152 @@
+<a name="cce_10_0268"></a><a name="cce_10_0268"></a>
+
+<h1 class="topictitle1">Creating a StatefulSet Mounted with an OBS Volume</h1>
+<div id="body1599890911520"><div class="section" id="cce_10_0268__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0268__p417532394118">CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.</p>
+</div>
+<div class="section" id="cce_10_0268__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0268__p159115509349">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+</div>
+<div class="section" id="cce_10_0268__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0268__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
+</div>
+<div class="section" id="cce_10_0268__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0268__ol15239131281911"><li id="cce_10_0268__li823912124195"><span>Create an OBS volume by referring to <a href="cce_10_0378.html">PersistentVolumeClaims (PVCs)</a> and obtain the PVC name.</span></li><li id="cce_10_0268__li023913138296"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0268__li17489105723120"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0268__b111971432151016">obs-statefulset-example.yaml</strong>.</span><p><p id="cce_10_0268__p3653181443819"><strong id="cce_10_0268__b166535149387">touch obs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0268__p16534140382"><strong id="cce_10_0268__b765381423813">vi obs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0268__p5766151773814">Configuration example:</p>
+<pre class="screen" id="cce_10_0268__screen598644117388">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: obs-statefulset-example
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: obs-statefulset-example
+  template:
+    metadata:
+      labels:
+        app: obs-statefulset-example
+    spec:
+      volumes: 
+      - name: pvc-obs-example 
+        persistentVolumeClaim:
+          claimName: pvc-obs-example     
+      containers:
+      - name: container-0
+        image: 'nginx:latest'
+        volumeMounts:
+          - name: pvc-obs-example
+            mountPath: /tmp
+      restartPolicy: Always
+      imagePullSecrets:
+      - name: default-secret 
+  serviceName: obs-statefulset-example-headless    # Name of the headless Service</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0268__table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0268__row1425005815020"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.4.2.3.2.5.2.3.1.1"><p id="cce_10_0268__p1525045817501">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.4.2.3.2.5.2.3.1.2"><p id="cce_10_0268__p162501858165014">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0268__row725065865014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_10_0268__p152504582506">replicas</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_10_0268__p1425185812509">Number of pods.</p>
+</td>
+</tr>
+<tr id="cce_10_0268__row1025175814505"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_10_0268__p1825125813505">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_10_0268__p1178914555417">Name of the new workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0268__row17251115805017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_10_0268__p2025185817509">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_10_0268__p9251125875017">Image used by the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0268__row8251165845018"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_10_0268__p22521858135013">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_10_0268__p1525285819508">Mount path of a container.</p>
+</td>
+</tr>
+<tr id="cce_10_0268__row848562355515"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_10_0268__p144666233557">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_10_0268__p1090712121565">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0268__row8483182315551"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_10_0268__p846772375512">claimName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_10_0268__p346792375514">Name of an existing PVC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0268__p136955819379">Example of mounting an OBS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
+<p id="cce_10_0268__p13386194363812"><strong id="cce_10_0268__b11233152013288">Example YAML:</strong></p>
+<pre class="screen" id="cce_10_0268__screen544010214389">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: obs-statefulset-example
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: obs-statefulset-example
+  template:
+    metadata:
+      labels:
+        app: obs-statefulset-example
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:latest'
+          volumeMounts:
+            - name: pvc-obs-auto-example
+              mountPath: /tmp
+      restartPolicy: Always
+      imagePullSecrets:
+        - name: default-secret
+  volumeClaimTemplates:
+    - metadata:
+        name: pvc-obs-auto-example
+        namespace: default
+        annotations:
+          everest.io/obs-volume-type: STANDARD
+      spec:
+        accessModes:
+          - ReadWriteMany
+        resources:
+          requests:
+            storage: 1Gi
+        storageClassName: csi-obs  
+  serviceName: obs-statefulset-example-headless</pre>
+</p></li><li id="cce_10_0268__li156013162401"><span>Create a StatefulSet.</span><p><p id="cce_10_0268__p46091124144014"><strong id="cce_10_0268__b16609152417405">kubectl create -f obs-statefulset-example.yaml</strong></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0268__section179416310352"><h4 class="sectiontitle">Verifying Persistent Storage of an OBS Volume</h4><ol id="cce_10_0268__ol4999113815404"><li id="cce_10_0268__li19999203814405"><span>Query the pod and OBS volume of the deployed workload (for example, <strong id="cce_10_0268__b1041524782819">obs-statefulset-example</strong>).</span><p><ol type="a" id="cce_10_0268__ol8584452175015"><li id="cce_10_0268__li5584252125015">Run the following command to query the pod name of the workload:<pre class="screen" id="cce_10_0268__screen1477515615319">kubectl get po | grep obs-statefulset-example</pre>
+<p id="cce_10_0268__p3677113718527">Expected outputs:</p>
+<pre class="screen" id="cce_10_0268__screen1659915915210">obs-statefulset-example-0   1/1     Running   0          2m5s</pre>
+</li><li id="cce_10_0268__li172361712165217">Run the following command to check whether an OBS volume is mounted to the <strong id="cce_10_0268__b6179191710298">/tmp</strong> directory:<pre class="screen" id="cce_10_0268__screen14110110115418">kubectl exec obs-statefulset-example-0 -- mount|grep /tmp</pre>
+<p id="cce_10_0268__p1596671205518">Expected outputs:</p>
+<pre class="screen" id="cce_10_0268__screen1792141555414">s3fs on /tmp type fuse.s3fs (rw,nosuid,nodev,relatime,user_id=0,group_id=0,allow_other)</pre>
+</li></ol>
+</p></li><li id="cce_10_0268__li15750205312556"><span>Run the following command to create a file named <strong id="cce_10_0268__b5751830132919">test</strong> in the <strong id="cce_10_0268__b10799304293">/tmp</strong> directory:</span><p><pre class="screen" id="cce_10_0268__screen07801324205418">kubectl exec obs-statefulset-example-0 -- touch /tmp/test</pre>
+</p></li><li id="cce_10_0268__li343411174573"><span>Run the following command to view the file in the <strong id="cce_10_0268__b04651237152918">/tmp</strong> directory:</span><p><pre class="screen" id="cce_10_0268__screen4181133113541">kubectl exec obs-statefulset-example-0 -- ls -l /tmp</pre>
+<p id="cce_10_0268__p4581437125810">Expected outputs:</p>
+<pre class="screen" id="cce_10_0268__screen690563919548">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
+</p></li><li id="cce_10_0268__li1840945513582"><span>Run the following command to delete the pod named <strong id="cce_10_0268__b18213847182919">obs-statefulset-example-0</strong>:</span><p><pre class="screen" id="cce_10_0268__screen0451134319548">kubectl delete po obs-statefulset-example-0</pre>
+</p></li><li id="cce_10_0268__li188315111203"><span>Check whether the file still exists after the pod is rebuilt.</span><p><ol type="a" id="cce_10_0268__ol192831981117"><li id="cce_10_0268__li12838819115">Run the following command to query the name of the rebuilt pod:<pre class="screen" id="cce_10_0268__screen1768311482542">kubectl get po</pre>
+<p id="cce_10_0268__p3901203422">Expected outputs:</p>
+<pre class="screen" id="cce_10_0268__screen11176952145414">obs-statefulset-example-0   1/1     Running   0          2m</pre>
+</li><li id="cce_10_0268__li220813138214">Run the following command to view the file in the <strong id="cce_10_0268__b1356123143019">/tmp</strong> directory:<pre class="screen" id="cce_10_0268__screen584835585420">kubectl exec obs-statefulset-example-0 -- ls -l /tmp</pre>
+<p id="cce_10_0268__p1742016385220">Expected outputs:</p>
+<pre class="screen" id="cce_10_0268__screen132285019134">-rw-r--r-- 1 root root     0 Jun  1 02:50 test</pre>
+</li><li id="cce_10_0268__li141791742105312">The <strong id="cce_10_0268__b175601911143012">test</strong> file still exists after the pod is rebuilt, indicating that the data in the OBS volume can be persistently stored.</li></ol>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0393.html">Deployment Examples</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0269.html b/docs/cce/umn/cce_10_0269.html
new file mode 100644
index 00000000..f4bf2f66
--- /dev/null
+++ b/docs/cce/umn/cce_10_0269.html
@@ -0,0 +1,52 @@
+<a name="cce_10_0269"></a><a name="cce_10_0269"></a>
+
+<h1 class="topictitle1">Creating a Deployment Mounted with an OBS Volume</h1>
+<div id="body1599890911520"><div class="section" id="cce_10_0269__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0269__p13415181285914">After an OBS volume is created or imported to CCE, you can mount the volume to a workload.</p>
+</div>
+<div class="section" id="cce_10_0269__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0269__p1860619396347">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+</div>
+<div class="section" id="cce_10_0269__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0269__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
+</div>
+<div class="section" id="cce_10_0269__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0269__ol1367331010214"><li id="cce_10_0269__li1742454347"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0269__li13722131012216"><span>Run the following commands to configure the <strong id="cce_10_0269__b142371018131716">obs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_10_0269__p9724141011211"><strong id="cce_10_0269__b929318132249">touch obs-deployment-example.yaml</strong></p>
+<p id="cce_10_0269__p19726151015213"><strong id="cce_10_0269__b258010211243">vi obs-deployment-example.yaml</strong></p>
+<div class="p" id="cce_10_0269__p17621182320411">Example of mounting an OBS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_10_0269__screen117301810128">apiVersion: apps/v1 
+kind: Deployment 
+metadata: 
+  name: obs-deployment-example                        # Workload name
+  namespace: default 
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: obs-deployment-example 
+  template: 
+    metadata: 
+      labels: 
+        app: obs-deployment-example 
+    spec: 
+      containers: 
+      - image: nginx
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp                       # Mount path
+          name: pvc-obs-example 
+      restartPolicy: Always
+      imagePullSecrets:
+        - name: default-secret
+      volumes: 
+      - name: pvc-obs-example  
+        persistentVolumeClaim: 
+          claimName: pvc-obs-auto-example       # PVC name</pre>
+</div>
+<div class="note" id="cce_10_0269__note115140415814"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0269__p189467332584"><strong id="cce_10_0269__b136669314204">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0269__b106731331182015">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0269__li877711108215"><span>Run the following command to create the workload:</span><p><p id="cce_10_0269__p7381182911811"><strong id="cce_10_0269__b998214461244">kubectl create -f obs-deployment-example.yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0393.html">Deployment Examples</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0275.html b/docs/cce/umn/cce_10_0275.html
similarity index 61%
rename from docs/cce/umn/cce_01_0275.html
rename to docs/cce/umn/cce_10_0275.html
index e58eacc3..8e4ab6e0 100644
--- a/docs/cce/umn/cce_01_0275.html
+++ b/docs/cce/umn/cce_10_0275.html
@@ -1,25 +1,25 @@
-<a name="cce_01_0275"></a><a name="cce_01_0275"></a>
+<a name="cce_10_0275"></a><a name="cce_10_0275"></a>
 
-<h1 class="topictitle1">Pod Security Policies</h1>
-<div id="body1601191578280"><p id="cce_01_0275__p8060118">A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The <a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.19/#podsecuritypolicy-v1beta1-policy" target="_blank" rel="noopener noreferrer">PodSecurityPolicy</a> object in Kubernetes defines a group of conditions that a pod must comply with to be accepted by the system, as well as the default values of related fields.</p>
-<p id="cce_01_0275__p15443152313332">By default, the PSP access control component is enabled for clusters of v1.17.17 and a global default PSP named <strong id="cce_01_0275__b8435103585816">psp-global</strong> is created. You can modify the default policy (but not delete it). You can also create a PSP and bind it to the RBAC configuration.</p>
-<div class="note" id="cce_01_0275__note24713853517"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0275__p174718820356">In addition to the global default PSP, the system configures independent PSPs for system components in namespace kube-system. Modifying the psp-global configuration does not affect pod creation in namespace kube-system.</p>
+<h1 class="topictitle1">Configuring a Pod Security Policy</h1>
+<div id="body1601191578280"><p id="cce_10_0275__p8060118">A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The <a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.19/#podsecuritypolicy-v1beta1-policy" target="_blank" rel="noopener noreferrer">PodSecurityPolicy</a> object in Kubernetes defines a group of conditions that a pod must comply with to be accepted by the system, as well as the default values of related fields.</p>
+<p id="cce_10_0275__p15443152313332">By default, the PSP access control component is enabled for clusters of v1.17.17 and a global default PSP named <strong id="cce_10_0275__b8435103585816">psp-global</strong> is created. You can modify the default policy (but not delete it). You can also create a PSP and bind it to the RBAC configuration.</p>
+<div class="note" id="cce_10_0275__note24713853517"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0275__ul1488124019228"><li id="cce_10_0275__li1648864011223">In addition to the global default PSP, the system configures independent PSPs for system components in namespace kube-system. Modifying the psp-global configuration does not affect pod creation in namespace kube-system.</li><li id="cce_10_0275__li16223542142211">In Kubernetes 1.25, PSP has been removed and replaced by Pod Security Admission. For details, see <a href="cce_10_0466.html">Configuring Pod Security Admission</a>.</li></ul>
 </div></div>
-<div class="section" id="cce_01_0275__section1077811013599"><h4 class="sectiontitle">Modifying the Global Default PSP</h4><p id="cce_01_0275__p595324712114">Before modifying the global default PSP, ensure that a CCE cluster has been created and connected by using kubectl.</p>
-<ol id="cce_01_0275__ol1315093716615"><li id="cce_01_0275__li4922151212122"><span>Run the following command:</span><p><p id="cce_01_0275__p1083521351217"><strong id="cce_01_0275__b106758261826">kubectl edit psp psp-global</strong></p>
-</p></li><li id="cce_01_0275__li101509377619"><span>Modify the parameters as required. For details, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/" target="_blank" rel="noopener noreferrer">PodSecurityPolicy</a>.</span></li></ol>
+<div class="section" id="cce_10_0275__section1077811013599"><h4 class="sectiontitle">Modifying the Global Default PSP</h4><p id="cce_10_0275__p595324712114">Before modifying the global default PSP, ensure that a CCE cluster has been created and connected by using kubectl.</p>
+<ol id="cce_10_0275__ol1315093716615"><li id="cce_10_0275__li4922151212122"><span>Run the following command:</span><p><p id="cce_10_0275__p1083521351217"><strong id="cce_10_0275__b106758261826">kubectl edit psp psp-global</strong></p>
+</p></li><li id="cce_10_0275__li101509377619"><span>Modify the parameters as required. For details, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/" target="_blank" rel="noopener noreferrer">PodSecurityPolicy</a>.</span></li></ol>
 </div>
-<div class="section" id="cce_01_0275__section155111941177"><a name="cce_01_0275__section155111941177"></a><a name="section155111941177"></a><h4 class="sectiontitle">Example of Enabling Unsafe Sysctls in Pod Security Policy</h4><p id="cce_01_0275__p12630516873">You can configure allowed-unsafe-sysctls for a node pool. For CCE <strong id="cce_01_0275__b41541591803">v1.17.17</strong> and later versions, add configurations in <strong id="cce_01_0275__b16938944718">allowedUnsafeSysctls</strong> of the pod security policy to make the configuration take effect. For details, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/" target="_blank" rel="noopener noreferrer">PodSecurityPolicy</a>.</p>
-<p id="cce_01_0275__p181911735101110">In addition to modifying the global pod security policy, you can add new pod security policies. For example, enable the <strong id="cce_01_0275__b843083174">net.core.somaxconn</strong> unsafe sysctls. The following is an example of adding a pod security policy:</p>
-<pre class="screen" id="cce_01_0275__screen12207141103819">apiVersion: policy/v1beta1
+<div class="section" id="cce_10_0275__section155111941177"><a name="cce_10_0275__section155111941177"></a><a name="section155111941177"></a><h4 class="sectiontitle">Example of Enabling Unsafe Sysctls in Pod Security Policy</h4><p id="cce_10_0275__p12630516873">You can configure allowed-unsafe-sysctls for a node pool. For CCE <strong id="cce_10_0275__b41541591803">v1.17.17</strong> and later versions, add configurations in <strong id="cce_10_0275__b16938944718">allowedUnsafeSysctls</strong> of the pod security policy to make the configuration take effect. For details, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/" target="_blank" rel="noopener noreferrer">PodSecurityPolicy</a>.</p>
+<p id="cce_10_0275__p181911735101110">In addition to modifying the global pod security policy, you can add new pod security policies. For example, enable the <strong id="cce_10_0275__b843083174">net.core.somaxconn</strong> unsafe sysctls. The following is an example of adding a pod security policy:</p>
+<pre class="screen" id="cce_10_0275__screen12207141103819">apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
   annotations:
     seccomp.security.alpha.kubernetes.io/allowedProfileNames: '*'
   name: sysctl-psp
 spec:
-  <strong id="cce_01_0275__b139545715382">allowedUnsafeSysctls:</strong>
-<strong id="cce_01_0275__b699125703812">  - net.core.somaxconn</strong>
+  <strong id="cce_10_0275__b139545715382">allowedUnsafeSysctls:</strong>
+<strong id="cce_10_0275__b699125703812">  - net.core.somaxconn</strong>
   allowPrivilegeEscalation: true
   allowedCapabilities:
   - '*'
@@ -71,10 +71,10 @@ subjects:
   name: system:authenticated
   apiGroup: rbac.authorization.k8s.io</pre>
 </div>
-<div class="section" id="cce_01_0275__section86008121714"><h4 class="sectiontitle">Restoring the Original PSP</h4><p id="cce_01_0275__p1891732211919">If you have modified the default pod security policy and want to restore the original pod security policy, perform the following operations.</p>
-<ol id="cce_01_0275__ol141944109814"><li id="cce_01_0275__li1020013819415"><span>Create a policy description file named <strong id="cce_01_0275__b102221325396">policy.yaml</strong>. <strong id="cce_01_0275__b1220180104313">policy.yaml</strong> is an example file name. You can rename it as required.</span><p><p id="cce_01_0275__p7581950184318"><strong id="cce_01_0275__b111191541172515">vi <span style="color:#373D41;">policy.yaml</span></strong></p>
-<p id="cce_01_0275__p5292517598">The content of the description file is as follows:</p>
-<pre class="screen" id="cce_01_0275__screen1324618910106">apiVersion: policy/v1beta1
+<div class="section" id="cce_10_0275__section86008121714"><h4 class="sectiontitle">Restoring the Original PSP</h4><p id="cce_10_0275__p1891732211919">If you have modified the default pod security policy and want to restore the original pod security policy, perform the following operations.</p>
+<ol id="cce_10_0275__ol141944109814"><li id="cce_10_0275__li1020013819415"><span>Create a policy description file named <strong id="cce_10_0275__b102221325396">policy.yaml</strong>. <strong id="cce_10_0275__b1220180104313">policy.yaml</strong> is an example file name. You can rename it as required.</span><p><p id="cce_10_0275__p7581950184318"><strong id="cce_10_0275__b111191541172515">vi policy.yaml</strong></p>
+<p id="cce_10_0275__p5292517598">The content of the description file is as follows:</p>
+<pre class="screen" id="cce_10_0275__screen1324618910106">apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
   name: psp-global
@@ -130,13 +130,13 @@ subjects:
 - kind: Group
   name: system:authenticated
   apiGroup: rbac.authorization.k8s.io</pre>
-</p></li><li id="cce_01_0275__li1023717329104"><span>Run the following commands:</span><p><p id="cce_01_0275__p52967573123"><strong id="cce_01_0275__b12507154701611">kubectl apply -f policy.yaml</strong></p>
+</p></li><li id="cce_10_0275__li1023717329104"><span>Run the following command:</span><p><p id="cce_10_0275__p52967573123"><strong id="cce_10_0275__b12507154701611">kubectl apply -f policy.yaml</strong></p>
 </p></li></ol>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0164.html">Permissions Management</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0465.html">Pod Security</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0276.html b/docs/cce/umn/cce_10_0276.html
new file mode 100644
index 00000000..90f83f0e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0276.html
@@ -0,0 +1,39 @@
+<a name="cce_10_0276"></a><a name="cce_10_0276"></a>
+
+<h1 class="topictitle1">Performing Rolling Upgrade for Nodes</h1>
+<div id="body1606373496987"><div class="section" id="cce_10_0276__section7545132016522"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0276__p3561320115214">In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. <a href="#cce_10_0276__fig1689610598118">Figure 1</a> shows the migration process.</p>
+<div class="fignone" id="cce_10_0276__fig1689610598118"><a name="cce_10_0276__fig1689610598118"></a><a name="fig1689610598118"></a><span class="figcap"><b>Figure 1 </b>Workload migration</span><br><span><img id="cce_10_0276__image16106881602" src="en-us_image_0000001199181340.png"></span></div>
+</div>
+<div class="section" id="cce_10_0276__section668916271621"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0276__ul27507271222"><li id="cce_10_0276__li147502271326">The original node and the target node to which the workload is to be migrated must be in the same cluster.</li><li id="cce_10_0276__li1750227021">The cluster must be of v1.13.10 or later.</li><li id="cce_10_0276__li7750152710218">The default node pool DefaultPool does not support this configuration.</li></ul>
+</div>
+<div class="section" id="cce_10_0276__section17701027023"><h4 class="sectiontitle">Scenario 1: The Original Node Is in DefaultPool</h4><ol id="cce_10_0276__ol1675012271225"><li id="cce_10_0276__li375022715214"><a name="cce_10_0276__li375022715214"></a><a name="li375022715214"></a><span>Create a node pool. For details, see <a href="cce_10_0012.html">Creating a Node Pool</a>.</span></li><li id="cce_10_0276__li7403304157"><span>Click the name of the node pool. The IP address of the new node is displayed in the node list.</span></li></ol><ol start="3" id="cce_10_0276__ol1246498212"><li id="cce_10_0276__li041492213"><span>Install and configure kubectl. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li></ol><ol start="4" id="cce_10_0276__ol1041549521"><li id="cce_10_0276__li1841495211"><span>Migrate the workload.</span><p><ol type="a" id="cce_10_0276__ol11494911216"><li id="cce_10_0276__li347498217">Add a taint to the node where the workload needs to be migrated out.<p id="cce_10_0276__p164124916217"><a name="cce_10_0276__li347498217"></a><a name="li347498217"></a><strong id="cce_10_0276__b1941049824">kubectl taint node</strong><em id="cce_10_0276__i144449522"> [node] </em><strong id="cce_10_0276__b1344491120">key=value:</strong><em id="cce_10_0276__i1410499213">[effect]</em></p>
+<p id="cce_10_0276__p13414494219">In the preceding command, <em id="cce_10_0276__i18332155411015">[node]</em> indicates the IP address of the node where the workload to be migrated is located. The value of <em id="cce_10_0276__i1633719541011">[effect]</em> can be <strong id="cce_10_0276__b3337654606">NoSchedule</strong>, <strong id="cce_10_0276__b11337154108">PreferNoSchedule</strong>, or <strong id="cce_10_0276__b7338145419012">NoExecute</strong>. In this example, set this parameter to <strong id="cce_10_0276__b433816542016">NoSchedule</strong>.</p>
+<ul id="cce_10_0276__ul12404916211"><li id="cce_10_0276__li1419497212"><strong id="cce_10_0276__b88821052018">NoSchedule</strong>: Pods that do not tolerate this taint are not scheduled on the node; existing pods are not evicted from the node.</li><li id="cce_10_0276__li164144910214"><strong id="cce_10_0276__b133283121512">PreferNoSchedule</strong>: Kubernetes tries to avoid scheduling pods that do not tolerate this taint onto the node.</li><li id="cce_10_0276__li2417491321"><strong id="cce_10_0276__b9627142018111">NoExecute</strong>: A pod is evicted from the node if it is already running on the node, and is not scheduled onto the node if it is not yet running on the node.</li></ul>
+<div class="note" id="cce_10_0276__note47341481227"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0276__p194749728">To reset a taint, run the <strong id="cce_10_0276__b1252910222017">kubectl taint node <em id="cce_10_0276__i45281322313">[node]</em> key:<em id="cce_10_0276__i125298221019">[effect]</em>- command</strong> to remove the taint.</p>
+</div></div>
+</li><li id="cce_10_0276__li194149323">Safely evicts the workload on the node.<p id="cce_10_0276__p174164920215"><a name="cce_10_0276__li194149323"></a><a name="li194149323"></a><strong id="cce_10_0276__b2052490212">kubectl drain </strong><em id="cce_10_0276__i259491620">[node]</em></p>
+<p id="cce_10_0276__p1056491528">In the preceding command, <em id="cce_10_0276__i9175132911116">[node]</em> indicates the IP address of the node where the workload to be migrated is located.</p>
+</li><li id="cce_10_0276__li456491211">In the navigation pane of the CCE console, choose <strong id="cce_10_0276__b174261936818">Workloads</strong> &gt; <strong id="cce_10_0276__b4431936717">Deployments</strong>. In the workload list, the status of the workload to be migrated changes from <strong id="cce_10_0276__b48314391911">Running</strong> to <strong id="cce_10_0276__b1383163913117">Unready</strong>. If the workload status changes to <strong id="cce_10_0276__b33297452117">Running</strong> again, the migration is successful.</li></ol>
+<div class="note" id="cce_10_0276__note374211481421"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0276__p4518491724">During workload migration, if node affinity is configured for the workload, the workload keeps displaying a message indicating that the workload is not ready. In this case, click the workload name to go to the workload details page. On the <strong id="cce_10_0276__b1263118581617">Scheduling Policies</strong> tab page, delete the affinity configuration of the original node and configure the affinity and anti-affinity policies of the new node. For details, see <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</p>
+</div></div>
+<p id="cce_10_0276__p1650491629">After the workload is successfully migrated, you can view that the workload is migrated to the node created in <a href="#cce_10_0276__li375022715214">1</a> on the <strong id="cce_10_0276__b29617115219">Pods</strong> tab page of the workload details page.</p>
+</p></li></ol><ol start="5" id="cce_10_0276__ol16514499211"><li id="cce_10_0276__li4513497213"><span>Delete the original node.</span><p><p id="cce_10_0276__p15104916211">After the workload is successfully migrated and runs properly, delete the original node.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0276__section7773102119320"><h4 class="sectiontitle">Scenario 2: The Original Node Is Not in DefaultPool</h4><ol id="cce_10_0276__ol892652113314"><li id="cce_10_0276__li1992616214312"><a name="cce_10_0276__li1992616214312"></a><a name="li1992616214312"></a><span>Copy the node pool and add nodes to it. For details, see <a href="cce_10_0222.html#cce_10_0222__section550619571556">Copying a Node Pool</a>.</span></li><li id="cce_10_0276__li6330155162917"><span>Click <strong id="cce_10_0276__b182958597261">View Node</strong> in the <strong id="cce_10_0276__b16296115972617">Operation</strong> column of the node pool. The IP address of the new node is displayed in the node list.</span></li></ol><ol start="3" id="cce_10_0276__ol1592715215317"><li id="cce_10_0276__li79274211437"><span>Migrate the workload.</span><p><ol type="a" id="cce_10_0276__ol492714214310"><li id="cce_10_0276__li8927321039">Click <strong id="cce_10_0276__b31451941418">Edit</strong> on the right of original node pool and set <strong id="cce_10_0276__b13146141942">Taints</strong>.</li><li id="cce_10_0276__li292713211031">Enter the key and value of the taint. The options of <strong id="cce_10_0276__b151677389326">Effect</strong> are <strong id="cce_10_0276__b13607540193215">NoSchedule</strong>, <strong id="cce_10_0276__b16834184283219">PreferNoSchedule</strong>, and <strong id="cce_10_0276__b18296545143217">NoExecute</strong>. Select <strong id="cce_10_0276__b385014477325">NoExecute</strong> and click <strong id="cce_10_0276__b13225350193213">confirm to add</strong>.<ul id="cce_10_0276__ul69271221137"><li id="cce_10_0276__li14927102119319"><strong id="cce_10_0276__b7392301549">NoSchedule</strong>: Pods that do not tolerate this taint are not scheduled on the node; existing pods are not evicted from the node.</li><li id="cce_10_0276__li99271321938"><strong id="cce_10_0276__b20801632747">PreferNoSchedule</strong>: Kubernetes tries to avoid scheduling pods that do not tolerate this taint onto the node.</li><li id="cce_10_0276__li292712111319"><strong id="cce_10_0276__b24305329413">NoExecute</strong>: A pod is evicted from the node if it is already running on the node, and is not scheduled onto the node if it is not yet running on the node.</li></ul>
+<div class="note" id="cce_10_0276__note37771921331"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0276__p592762114314">If you need to reset the taint, delete the configured taint.</p>
+</div></div>
+</li><li id="cce_10_0276__li492712115318">Click <strong id="cce_10_0276__b208153920332">OK</strong>.</li><li id="cce_10_0276__li76429518311">In the navigation pane of the CCE console, choose <strong id="cce_10_0276__b194859381949">Workloads</strong> &gt; <strong id="cce_10_0276__b64856381146">Deployments</strong>. In the workload list, the status of the workload to be migrated changes from <strong id="cce_10_0276__b1962913393414">Running</strong> to <strong id="cce_10_0276__b16292391411">Unready</strong>. If the workload status changes to <strong id="cce_10_0276__b92370401741">Running</strong> again, the migration is successful.</li></ol>
+<div class="note" id="cce_10_0276__note167971521239"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0276__p1392711212311">During workload migration, if node affinity is configured for the workload, the workload keeps displaying a message indicating that the workload is not ready. In this case, click the workload name to go to the workload details page. On the <strong id="cce_10_0276__b11890132185718">Scheduling Policies</strong> tab page, delete the affinity configuration of the original node and configure the affinity and anti-affinity policies of the new node. For details, see <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</p>
+</div></div>
+<p id="cce_10_0276__p29271211137">After the workload is successfully migrated, you can view that the workload is migrated to the node created in <a href="#cce_10_0276__li1992616214312">1</a> on the <strong id="cce_10_0276__b68718466411">Pods</strong> tab page of the workload details page.</p>
+</p></li></ol><ol start="4" id="cce_10_0276__ol69271721532"><li id="cce_10_0276__li792714211234"><span>Delete the original node.</span><p><p id="cce_10_0276__p59270211931">After the workload is successfully migrated and runs properly, delete the original node.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0277.html b/docs/cce/umn/cce_10_0277.html
new file mode 100644
index 00000000..e2fea603
--- /dev/null
+++ b/docs/cce/umn/cce_10_0277.html
@@ -0,0 +1,61 @@
+<a name="cce_10_0277"></a><a name="cce_10_0277"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body1606958290664"><p id="cce_10_0277__p8060118">CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0277__table1129717261200" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Add-on list</caption><thead align="left"><tr id="cce_10_0277__row11298112612016"><th align="left" class="cellrowborder" valign="top" width="23.34%" id="mcps1.3.2.2.3.1.1"><p id="cce_10_0277__p12986266201">Add-on Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.66%" id="mcps1.3.2.2.3.1.2"><p id="cce_10_0277__p42981926122014">Introduction</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0277__row729811268202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p329812632011"><a href="cce_10_0129.html">coredns (System Resource Add-On, Mandatory)</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p12981726192017">The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.</p>
+</td>
+</tr>
+<tr id="cce_10_0277__row1729822612200"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p929842682017"><a href="cce_10_0127.html">storage-driver (System Resource Add-On, Discarded)</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p0298122602020">storage-driver is a FlexVolume driver used to support IaaS storage services such as EVS, SFS, and OBS.</p>
+</td>
+</tr>
+<tr id="cce_10_0277__row1129818265202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p172981226192012"><a href="cce_10_0066.html">everest (System Resource Add-On, Mandatory)</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p17298172618205">Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage services.</p>
+</td>
+</tr>
+<tr id="cce_10_0277__row82981726162015"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p19298172662014"><a href="cce_10_0132.html">npd</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p0298202672017">node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon running on each node. It collects node issues from different daemons and reports them to the API server. The npd add-on can run as a DaemonSet or a daemon.</p>
+</td>
+</tr>
+<tr id="cce_10_0277__row517991010214"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p818051013218"><a href="cce_10_0154.html">autoscaler</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p33062213567">The autoscaler add-on resizes a cluster based on pod scheduling status and resource usage.</p>
+</td>
+</tr>
+<tr id="cce_10_0277__row718031012117"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p1718012101214"><a href="cce_10_0205.html">metrics-server</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p8803328425">metrics-server is an aggregator for monitoring data of core cluster resources.</p>
+</td>
+</tr>
+<tr id="cce_10_0277__row2256219162517"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p182565193254"><a href="cce_10_0141.html">gpu-beta</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p12273103844718">gpu-beta is a device management add-on that supports GPUs in containers. It supports only NVIDIA drivers.</p>
+</td>
+</tr>
+<tr id="cce_10_0277__row1525615191253"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p1725617192257"><a href="cce_10_0193.html">volcano</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p7256161917253">Volcano provides general-purpose, high-performance computing capabilities, such as job scheduling, heterogeneous chip management, and job running management, serving end users through computing frameworks for different industries, such as AI, big data, gene sequencing, and rendering.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0064.html">Add-ons</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0278.html b/docs/cce/umn/cce_10_0278.html
new file mode 100644
index 00000000..9b66158d
--- /dev/null
+++ b/docs/cce/umn/cce_10_0278.html
@@ -0,0 +1,65 @@
+<a name="cce_10_0278"></a><a name="cce_10_0278"></a>
+
+<h1 class="topictitle1">Creating a Namespace</h1>
+<div id="body0000001071342821"><div class="section" id="cce_10_0278__section798858182710"><h4 class="sectiontitle">When to Use Namespaces</h4><p id="cce_10_0278__p198142512811">A namespace is a collection of resources and objects. Multiple namespaces can be created inside a cluster and isolated from each other. This enables namespaces to share the same cluster Services without affecting each other.</p>
+<p id="cce_10_0278__p477375172817">For example, you can deploy workloads in a development environment into one namespace, and deploy workloads in a testing environment into another namespace.</p>
+</div>
+<div class="section" id="cce_10_0278__section812825881312"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0278__p785816071412">At least one cluster has been created.</p>
+</div>
+<div class="section" id="cce_10_0278__section21791218165310"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0278__p532716213531">A maximum of 6,000 Services can be created in each namespace. The Services mentioned here indicate the Kubernetes Service resources added for workloads.</p>
+</div>
+<div class="section" id="cce_10_0278__section15162183815147"><h4 class="sectiontitle">Namespace Types</h4><p id="cce_10_0278__p1237620473146">Namespaces can be created in either of the following ways:</p>
+<ul id="cce_10_0278__ul4439165316154"><li id="cce_10_0278__li9439753111517">Created automatically: When a cluster is up, the <strong id="cce_10_0278__b16148131151316">default</strong>, <strong id="cce_10_0278__b171532314131">kube-public</strong>, <strong id="cce_10_0278__b13153131151318">kube-system</strong>, and <strong id="cce_10_0278__b1315393141314">kube-node-lease</strong> namespaces are created by default.<ul id="cce_10_0278__ul3843184219198"><li id="cce_10_0278__li194371638161919"><strong id="cce_10_0278__b243639161419">default</strong>: All objects for which no namespace is specified are allocated to this namespace.</li><li id="cce_10_0278__li135219534199"><strong id="cce_10_0278__b1456102411143">kube-public</strong>: Resources in this namespace can be accessed by all users (including unauthenticated users), such as public add-ons and container charts.</li><li id="cce_10_0278__li186001011182310"><strong id="cce_10_0278__b11725123319149">kube-system</strong>: All resources created by Kubernetes are in this namespace.</li><li id="cce_10_0278__li113941035141819"><strong id="cce_10_0278__b64231517121610">kube-node-lease</strong>: Each node has an associated Lease object in this namespace. The object is periodically updated by the node. Both NodeStatus and NodeLease are considered as heartbeats from a node. In versions earlier than v1.13, only NodeStatus is available. The NodeLease feature is introduced in v1.13. NodeLease is more lightweight than NodeStatus. This feature significantly improves the cluster scalability and performance.</li></ul>
+</li><li id="cce_10_0278__li1755671871616">Created manually: You can create namespaces to serve separate purposes. For example, you can create three namespaces, one for a development environment, one for joint debugging environment, and one for test environment. You can also create one namespace for login services and one for game services.</li></ul>
+</div>
+<div class="section" id="cce_10_0278__section1089753617465"><h4 class="sectiontitle">Creating a Namespace</h4><ol id="cce_10_0278__ol125221816185720"><li id="cce_10_0278__li8574193104920"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0278__li15523916125711"><span>Choose <span class="uicontrol" id="cce_10_0278__uicontrol31647432571"><b>Namespaces</b></span> in the navigation pane and click <span class="uicontrol" id="cce_10_0278__uicontrol1350249134118"><b>Create Namespace</b></span> in the upper right corner.</span></li><li id="cce_10_0278__li952361619571"><span>Set namespace parameters based on <a href="#cce_10_0278__table5523151617575">Table 1</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0278__table5523151617575"></a><a name="table5523151617575"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0278__table5523151617575" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a namespace</caption><thead align="left"><tr id="cce_10_0278__row145240162572"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.5.2.3.2.1.2.3.1.1"><p id="cce_10_0278__p105244162578">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.5.2.3.2.1.2.3.1.2"><p id="cce_10_0278__p14525016155719">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0278__row835519426223"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.3.2.1.2.3.1.1 "><p id="cce_10_0278__p1964374702211">Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.3.2.1.2.3.1.2 "><p id="cce_10_0278__p14644047132219">Unique name of the created namespace.</p>
+</td>
+</tr>
+<tr id="cce_10_0278__row75251516185711"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.3.2.1.2.3.1.1 "><p id="cce_10_0278__p19525016125713">Description</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.3.2.1.2.3.1.2 "><p id="cce_10_0278__p1452519163573">Description about the namespace.</p>
+</td>
+</tr>
+<tr id="cce_10_0278__row18506114684111"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.5.2.3.2.1.2.3.1.1 "><p id="cce_10_0278__p7506164613417">Quota Management</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.5.2.3.2.1.2.3.1.2 "><p id="cce_10_0278__p10506204644111">Resource quotas can limit the amount of resources available in namespaces, achieving resource allocation by namespace.</p>
+<div class="notice" id="cce_10_0278__note9166152113399"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0278__p34209545238"><strong id="cce_10_0278__b1317934165919">You are advised to set resource quotas in the namespace as required to prevent cluster or node exceptions caused by resource overload.</strong></p>
+<p id="cce_10_0278__p2167521123914">For example, the default number of pods that can be created on each node in a cluster is 110. If you create a cluster with 50 nodes, you can create a maximum of 5,500 pods. Therefore, you can set a resource quota to ensure that the total number of pods in all namespaces does not exceed 5,500.</p>
+</div></div>
+<p id="cce_10_0278__p1736061143918">Enter an integer. If the quota of a resource is not specified, no limit is posed on the resource.</p>
+<p id="cce_10_0278__p7221053123614">If you want to limit the CPU or memory quota, you must specify the CPU or memory request value when creating a workload.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0278__li155253162572"><span>When the configuration is complete, click <strong id="cce_10_0278__b1062541315314">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0278__section59211350144711"><h4 class="sectiontitle">Using kubectl to Create a Namespace</h4><p id="cce_10_0278__p134184134812">Define a namespace.</p>
+<pre class="screen" id="cce_10_0278__screen597624120472">apiVersion: v1 
+kind: Namespace 
+metadata: 
+  name: custom-namespace </pre>
+<p id="cce_10_0278__p362181817505">Run the <strong id="cce_10_0278__b4228537104017">kubectl</strong> command to create it.</p>
+<pre class="screen" id="cce_10_0278__screen18626282482">$ kubectl create -f custom-namespace.yaml
+namespace/custom-namespace created </pre>
+<p id="cce_10_0278__p169761441124712">You can also run the <strong id="cce_10_0278__b16784318403">kubectl create namespace</strong> command to create a namespace.</p>
+<pre class="screen" id="cce_10_0278__screen17976184164720">$ kubectl create namespace custom-namespace 
+namespace/custom-namespace created </pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0030.html">Namespaces</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0279.html b/docs/cce/umn/cce_10_0279.html
similarity index 53%
rename from docs/cce/umn/cce_01_0279.html
rename to docs/cce/umn/cce_10_0279.html
index 44f1ee9e..55cecbab 100644
--- a/docs/cce/umn/cce_01_0279.html
+++ b/docs/cce/umn/cce_10_0279.html
@@ -1,59 +1,59 @@
-<a name="cce_01_0279"></a><a name="cce_01_0279"></a>
+<a name="cce_10_0279"></a><a name="cce_10_0279"></a>
 
 <h1 class="topictitle1">Overview</h1>
-<div id="body0000001072658489"><p id="cce_01_0279__p09911139113615">Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.</p>
-<div class="section" id="cce_01_0279__section13921711133718"><h4 class="sectiontitle">Context</h4><p id="cce_01_0279__p1239216616406">More and more applications are developed based on Kubernetes. It becomes increasingly important to quickly scale out applications on Kubernetes to cope with service peaks and to scale in applications during off-peak hours to save resources and reduce costs.</p>
-<p id="cce_01_0279__p153926674019">In a Kubernetes cluster, auto scaling involves pods and nodes. A pod is an application instance. Each pod contains one or more containers and runs on a node (VM). If a cluster does not have sufficient nodes to run new pods, you need to add nodes to the cluster to ensure service running.</p>
-<p id="cce_01_0279__p85731805193">In CCE, auto scaling is used for online services, large-scale computing and training, deep learning GPU or shared GPU training and inference, periodic load changes, and many other scenarios.</p>
+<div id="body0000001072658489"><p id="cce_10_0279__p09911139113615">Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.</p>
+<div class="section" id="cce_10_0279__section13921711133718"><h4 class="sectiontitle">Context</h4><p id="cce_10_0279__p1239216616406">More and more applications are developed based on Kubernetes. It becomes increasingly important to quickly scale out applications on Kubernetes to cope with service peaks and to scale in applications during off-peak hours to save resources and reduce costs.</p>
+<p id="cce_10_0279__p153926674019">In a Kubernetes cluster, auto scaling involves pods and nodes. A pod is an application instance. Each pod contains one or more containers and runs on a node (VM or bare-metal server). If a cluster does not have sufficient nodes to run new pods, you need to add nodes to the cluster to ensure service running.</p>
+<p id="cce_10_0279__p85731805193">In CCE, auto scaling is used for online services, large-scale computing and training, deep learning GPU or shared GPU training and inference, periodic load changes, and many other scenarios.</p>
 </div>
-<div class="section" id="cce_01_0279__section185211187383"><h4 class="sectiontitle">Auto Scaling in CCE</h4><p id="cce_01_0279__p1754013813817"><strong id="cce_01_0279__b114061096441">CCE supportsauto scaling for workloads and nodes.</strong></p>
-<ul id="cce_01_0279__ul1554018816382"><li id="cce_01_0279__li135402873818"><strong id="cce_01_0279__b185406816383"><a href="cce_01_0290.html">Workload scaling</a></strong><strong id="cce_01_0279__b773413557584">:</strong> Auto scaling at the scheduling layer to change the scheduling capacity of workloads. For example, you can use the HPA, a scaling component at the scheduling layer, to adjust the number of replicas of an application. Adjusting the number of replicas changes the scheduling capacity occupied by the current workload, thereby enabling scaling at the scheduling layer.</li><li id="cce_01_0279__li2054018812384"><strong id="cce_01_0279__b554038183818"><a href="cce_01_0296.html">Node scaling</a></strong><strong id="cce_01_0279__b11777014582">:</strong> Auto scaling at the resource layer. When the planned cluster nodes cannot allow workload scheduling, ECS resources are provided to support scheduling. </li></ul>
+<div class="section" id="cce_10_0279__section185211187383"><h4 class="sectiontitle">Auto Scaling in CCE</h4><p id="cce_10_0279__p1754013813817"><strong id="cce_10_0279__b114061096441">CCE supports auto scaling for workloads and nodes.</strong></p>
+<ul id="cce_10_0279__ul1554018816382"><li id="cce_10_0279__li135402873818"><strong id="cce_10_0279__b185406816383"><a href="cce_10_0290.html">Workload scaling</a></strong><strong id="cce_10_0279__b773413557584">:</strong> Auto scaling at the scheduling layer to change the scheduling capacity of workloads. For example, you can use the HPA, a scaling component at the scheduling layer, to adjust the number of replicas of an application. Adjusting the number of replicas changes the scheduling capacity occupied by the current workload, thereby enabling scaling at the scheduling layer.</li><li id="cce_10_0279__li2054018812384"><strong id="cce_10_0279__b554038183818"><a href="cce_10_0296.html">Node scaling</a></strong><strong id="cce_10_0279__b11777014582">:</strong> Auto scaling at the resource layer. When the planned cluster nodes cannot allow workload scheduling, ECS resources are provided to support scheduling. </li></ul>
 </div>
-<div class="section" id="cce_01_0279__section17204104010413"><h4 class="sectiontitle">Components</h4><p id="cce_01_0279__p64341929143617"></p>
-<p id="cce_01_0279__p11863757124117"></p>
-<p id="cce_01_0279__p1630823823213"><strong id="cce_01_0279__b15826112317246">Workload scaling components are described as follows:</strong></p>
+<div class="section" id="cce_10_0279__section17204104010413"><h4 class="sectiontitle">Components</h4><p id="cce_10_0279__p64341929143617"></p>
+<p id="cce_10_0279__p11863757124117"></p>
+<p id="cce_10_0279__p1630823823213"><strong id="cce_10_0279__b15826112317246">Workload scaling components are described as follows:</strong></p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0279__table547120151227" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Workload scaling components</caption><thead align="left"><tr id="cce_01_0279__row247171517229"><th align="left" class="cellrowborder" valign="top" width="15.86%" id="mcps1.3.4.5.2.5.1.1"><p id="cce_01_0279__p547101511229">Type</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0279__table547120151227" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Workload scaling components</caption><thead align="left"><tr id="cce_10_0279__row247171517229"><th align="left" class="cellrowborder" valign="top" width="15.86%" id="mcps1.3.4.5.2.5.1.1"><p id="cce_10_0279__p547101511229">Type</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="21.14%" id="mcps1.3.4.5.2.5.1.2"><p id="cce_01_0279__p133801501230">Component Name</p>
+<th align="left" class="cellrowborder" valign="top" width="21.14%" id="mcps1.3.4.5.2.5.1.2"><p id="cce_10_0279__p133801501230">Component Name</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="40.31%" id="mcps1.3.4.5.2.5.1.3"><p id="cce_01_0279__p84711153227">Component Description</p>
+<th align="left" class="cellrowborder" valign="top" width="40.31%" id="mcps1.3.4.5.2.5.1.3"><p id="cce_10_0279__p84711153227">Component Description</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="22.689999999999998%" id="mcps1.3.4.5.2.5.1.4"><p id="cce_01_0279__p13628930152619">Reference</p>
+<th align="left" class="cellrowborder" valign="top" width="22.689999999999998%" id="mcps1.3.4.5.2.5.1.4"><p id="cce_10_0279__p13628930152619">Reference</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_01_0279__row74711815182218"><td class="cellrowborder" valign="top" width="15.86%" headers="mcps1.3.4.5.2.5.1.1 "><p id="cce_01_0279__p3125126132212">HPA</p>
+<tbody><tr id="cce_10_0279__row74711815182218"><td class="cellrowborder" valign="top" width="15.86%" headers="mcps1.3.4.5.2.5.1.1 "><p id="cce_10_0279__p3125126132212">HPA</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.14%" headers="mcps1.3.4.5.2.5.1.2 "><p id="cce_01_0279__p9628163016269"><a href="cce_01_0205.html">metrics-server</a></p>
+<td class="cellrowborder" valign="top" width="21.14%" headers="mcps1.3.4.5.2.5.1.2 "><p id="cce_10_0279__p9628163016269"><a href="cce_10_0205.html">metrics-server</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="40.31%" headers="mcps1.3.4.5.2.5.1.3 "><p id="cce_01_0279__p612572632214">A built-in component of Kubernetes, which enables horizontal scaling of pods. It adds the application-level cooldown time window and scaling threshold functions based on the HPA.</p>
+<td class="cellrowborder" valign="top" width="40.31%" headers="mcps1.3.4.5.2.5.1.3 "><p id="cce_10_0279__p612572632214">A built-in component of Kubernetes, which enables horizontal scaling of pods. It adds the application-level cooldown time window and scaling threshold functions based on the HPA.</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.689999999999998%" headers="mcps1.3.4.5.2.5.1.4 "><p id="cce_01_0279__p3452957143013"><a href="cce_01_0208.html">Creating an HPA Policy for Workload Auto Scaling</a></p>
+<td class="cellrowborder" valign="top" width="22.689999999999998%" headers="mcps1.3.4.5.2.5.1.4 "><p id="cce_10_0279__p3452957143013"><a href="cce_10_0208.html">Creating an HPA Policy for Workload Auto Scaling</a></p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-<p id="cce_01_0279__p1154219539315"><strong id="cce_01_0279__b9555152151416">Node scaling components are described as follows:</strong></p>
+<p id="cce_10_0279__p1154219539315"><strong id="cce_10_0279__b9555152151416">Node scaling components are described as follows:</strong></p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0279__table04218140281" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Node scaling components</caption><thead align="left"><tr id="cce_01_0279__row13422181411283"><th align="left" class="cellrowborder" valign="top" width="17.98%" id="mcps1.3.4.7.2.5.1.1"><p id="cce_01_0279__p54221314132814">Component Name</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0279__table04218140281" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Node scaling components</caption><thead align="left"><tr id="cce_10_0279__row13422181411283"><th align="left" class="cellrowborder" valign="top" width="17.98%" id="mcps1.3.4.7.2.5.1.1"><p id="cce_10_0279__p54221314132814">Component Name</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="33.45%" id="mcps1.3.4.7.2.5.1.2"><p id="cce_01_0279__p2422141417286">Component Description</p>
+<th align="left" class="cellrowborder" valign="top" width="33.45%" id="mcps1.3.4.7.2.5.1.2"><p id="cce_10_0279__p2422141417286">Component Description</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="32.89%" id="mcps1.3.4.7.2.5.1.3"><p id="cce_01_0279__p10422171419289">Application Scenario</p>
+<th align="left" class="cellrowborder" valign="top" width="32.89%" id="mcps1.3.4.7.2.5.1.3"><p id="cce_10_0279__p10422171419289">Application Scenario</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="15.68%" id="mcps1.3.4.7.2.5.1.4"><p id="cce_01_0279__p1742251402814">Reference</p>
+<th align="left" class="cellrowborder" valign="top" width="15.68%" id="mcps1.3.4.7.2.5.1.4"><p id="cce_10_0279__p1742251402814">Reference</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_01_0279__row842251417289"><td class="cellrowborder" valign="top" width="17.98%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_01_0279__p19105636298"><a href="cce_01_0154.html">autoscaler</a></p>
+<tbody><tr id="cce_10_0279__row842251417289"><td class="cellrowborder" valign="top" width="17.98%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_10_0279__p19105636298"><a href="cce_10_0154.html">autoscaler</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="33.45%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_01_0279__p1210517352914">An open-source Kubernetes component for horizontal scaling of nodes, which is optimized in terms of scheduling and auto scaling capabilities.</p>
+<td class="cellrowborder" valign="top" width="33.45%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_10_0279__p1210517352914">An open source Kubernetes component for horizontal scaling of nodes, which is optimized in terms of scheduling and auto scaling capabilities.</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.89%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_01_0279__p71057311296">Online services, deep learning, and large-scale computing with limited resource budgets</p>
+<td class="cellrowborder" valign="top" width="32.89%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_10_0279__p71057311296">Online services, deep learning, and large-scale computing with limited resource budgets</p>
 </td>
-<td class="cellrowborder" valign="top" width="15.68%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_01_0279__p16106173192919"><a href="cce_01_0209.html">Creating a Node Scaling Policy</a></p>
+<td class="cellrowborder" valign="top" width="15.68%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_10_0279__p16106173192919"><a href="cce_10_0209.html">Creating a Node Scaling Policy</a></p>
 </td>
 </tr>
 </tbody>
@@ -63,7 +63,7 @@
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0207.html">Auto Scaling</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0207.html">Auto Scaling</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_01_0280.html b/docs/cce/umn/cce_10_0280.html
similarity index 51%
rename from docs/cce/umn/cce_01_0280.html
rename to docs/cce/umn/cce_10_0280.html
index d5d09e54..069f55c7 100644
--- a/docs/cce/umn/cce_01_0280.html
+++ b/docs/cce/umn/cce_10_0280.html
@@ -1,21 +1,21 @@
-<a name="cce_01_0280"></a><a name="cce_01_0280"></a>
+<a name="cce_10_0280"></a><a name="cce_10_0280"></a>
 
 <h1 class="topictitle1">Container Network Models</h1>
 <div id="body0000001116630215"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0281.html">Overview</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0281.html">Overview</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0282.html">Container Tunnel Network</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0282.html">Container Tunnel Network</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0283.html">VPC Network</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0283.html">VPC Network</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0284.html">Cloud Native Network 2.0</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0284.html">Cloud Native Network 2.0</a></strong><br>
 </li>
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0020.html">Networking</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0281.html b/docs/cce/umn/cce_10_0281.html
new file mode 100644
index 00000000..473f5557
--- /dev/null
+++ b/docs/cce/umn/cce_10_0281.html
@@ -0,0 +1,105 @@
+<a name="cce_10_0281"></a><a name="cce_10_0281"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body0000001116232773"><p id="cce_10_0281__en-us_topic_0146398798_p17435959114810">The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:</p>
+<ul id="cce_10_0281__ul37951512175314"><li id="cce_10_0281__li87958124539"><a href="cce_10_0282.html">Tunnel network</a></li><li id="cce_10_0281__li16698131917531"><a href="cce_10_0283.html">VPC network</a></li><li id="cce_10_0281__li51085248531"><a href="cce_10_0284.html">Cloud Native Network 2.0</a></li></ul>
+<div class="section" id="cce_10_0281__section15922428693"><h4 class="sectiontitle">Network Model Comparison</h4><p id="cce_10_0281__en-us_topic_0146398798_p1057652712256"><a href="#cce_10_0281__en-us_topic_0146398798_table715802210336">Table 1</a> describes the differences of network models supported by CCE.</p>
+<div class="caution" id="cce_10_0281__note15146173219330"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0281__p8146183233312">After a cluster is created, the network model cannot be changed.</p>
+</div></div>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0281__en-us_topic_0146398798_table715802210336"></a><a name="en-us_topic_0146398798_table715802210336"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0281__en-us_topic_0146398798_table715802210336" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Network model comparison</caption><thead align="left"><tr id="cce_10_0281__en-us_topic_0146398798_row015822213316"><th align="left" class="cellrowborder" valign="top" width="15.951595159515952%" id="mcps1.3.4.2.5.1.1"><p id="cce_10_0281__en-us_topic_0146398798_p1715813225335"><strong id="cce_10_0281__b41731716123514">Dimension</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.082608260826078%" id="mcps1.3.4.2.5.1.2"><p id="cce_10_0281__en-us_topic_0146398798_p1015919220339"><strong id="cce_10_0281__b1193717182352">Tunnel Network</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="29.002900290029%" id="mcps1.3.4.2.5.1.3"><p id="cce_10_0281__en-us_topic_0146398798_p5158192253312"><strong id="cce_10_0281__b16166921123511">VPC Network</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.962896289628965%" id="mcps1.3.4.2.5.1.4"><p id="cce_10_0281__en-us_topic_0146398798_p13620427132519"><strong id="cce_10_0281__b176271955101910">Cloud Native Network 2.0</strong></p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0281__row146051022121811"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__en-us_topic_0146398798_p1926972465013">Application scenarios</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><ul id="cce_10_0281__en-us_topic_0146398798_ul619513457509"><li id="cce_10_0281__en-us_topic_0146398798_li21951445205019">Common container service scenarios</li><li id="cce_10_0281__en-us_topic_0146398798_li5195194517504">Scenarios that do not have high requirements on network latency and bandwidth</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><ul id="cce_10_0281__en-us_topic_0146398798_ul1659212532511"><li id="cce_10_0281__en-us_topic_0146398798_li175924538516">Scenarios that have high requirements on network latency and bandwidth</li><li id="cce_10_0281__en-us_topic_0146398798_li1559215532511">Containers can communicate with VMs using a microservice registration framework, such as Dubbo and CSE.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><ul id="cce_10_0281__en-us_topic_0146398798_ul10867019880"><li id="cce_10_0281__en-us_topic_0146398798_li95475237814">Scenarios that have high requirements on network latency, bandwidth, and performance</li><li id="cce_10_0281__en-us_topic_0146398798_li198291117173716">Containers can communicate with VMs using a microservice registration framework, such as Dubbo and CSE.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0281__en-us_topic_0146398798_row3364165414382"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__en-us_topic_0146398798_p7365105418387">Core technology</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0281__en-us_topic_0146398798_p205912419393">OVS</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0281__en-us_topic_0146398798_p1759117483919">IPvlan and VPC route</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0281__en-us_topic_0146398798_p962082712256">VPC ENI/sub-ENI</p>
+</td>
+</tr>
+<tr id="cce_10_0281__en-us_topic_0146398798_row9184022123919"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__en-us_topic_0146398798_p939214336391">Applicable clusters</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0281__en-us_topic_0146398798_p183921533143919">CCE cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0281__en-us_topic_0146398798_p139214338397">CCE cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0281__en-us_topic_0146398798_p7914115121510">CCE Turbo cluster</p>
+</td>
+</tr>
+<tr id="cce_10_0281__en-us_topic_0146398798_row18748936104718"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__en-us_topic_0146398798_p104711451154714">Network isolation</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0281__en-us_topic_0146398798_p20471351124715">Kubernetes native NetworkPolicy for pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0281__en-us_topic_0146398798_p1047145111471">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0281__p1246313541454">Pods support security group isolation.</p>
+</td>
+</tr>
+<tr id="cce_10_0281__row18486205482917"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__p148617549296">Passthrough networking</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0281__p154861548296">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0281__p548615422910">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0281__p9486354162919">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0281__en-us_topic_0146398798_row96181615010"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__en-us_topic_0146398798_p1726882465017">IP address management</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><ul id="cce_10_0281__ul17644143754410"><li id="cce_10_0281__li1764418377447">The container CIDR block is allocated separately.</li><li id="cce_10_0281__li11644133720443">CIDR blocks are divided by node and can be dynamically allocated (CIDR blocks can be dynamically added after being allocated.)</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><ul id="cce_10_0281__en-us_topic_0146398798_ul1259224495118"><li id="cce_10_0281__en-us_topic_0146398798_li759254425111">The container CIDR block is allocated separately.</li><li id="cce_10_0281__en-us_topic_0146398798_li19592134405120">CIDR blocks are divided by node and statically allocated (the CIDR block cannot be changed after a node is created).</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0281__p8694554174616">The container CIDR block is divided from the VPC subnet and does not need to be allocated separately.</p>
+</td>
+</tr>
+<tr id="cce_10_0281__en-us_topic_0146398798_row1661816105018"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__en-us_topic_0146398798_p10269102415509">Network performance</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0281__en-us_topic_0146398798_p526982419507">Performance loss due to VXLAN encapsulation</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0281__p435133734112">No tunnel encapsulation. Cross-node packets are forwarded through VPC routers, delivering performance equivalent to that of the host network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0281__p12150124903913">The container network is integrated with the VPC network, eliminating performance loss.</p>
+</td>
+</tr>
+<tr id="cce_10_0281__en-us_topic_0146398798_row262191685013"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0281__en-us_topic_0146398798_p142691524115014">Networking scale</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0281__p46113017549">A maximum of 2,000 nodes are supported.</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.002900290029%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0281__p325918116114">By default, 200 nodes are supported.</p>
+<p id="cce_10_0281__p16950177175711">Each time a node is added to the cluster, a route is added to the VPC route tables. Therefore, the cluster scale is limited by the VPC route tables. </p>
+</td>
+<td class="cellrowborder" valign="top" width="28.962896289628965%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0281__p107101541132219">A maximum of 2,000 nodes are supported.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="notice" id="cce_10_0281__en-us_topic_0146398798_note514622713155"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ol id="cce_10_0281__en-us_topic_0146398798_ol4704115561518"><li id="cce_10_0281__en-us_topic_0146398798_li97047554152">The scale of a cluster that uses the VPC network model is limited by the custom routes of the VPC. Therefore, you need to estimate the number of required nodes before creating a cluster.</li><li id="cce_10_0281__li12128141818386">The scale of a cluster that uses the Cloud Native Network 2.0 model depends on the size of the VPC subnet CIDR block selected for the network attachment definition. Before creating a cluster, evaluate the scale of your cluster.</li><li id="cce_10_0281__en-us_topic_0146398798_li18704355101514">By default, VPC routing network supports direct communication between containers and hosts in the same VPC. If a peering connection policy is configured between the VPC and another VPC, the containers can directly communicate with hosts on the peer VPC. In addition, in hybrid networking scenarios such as Direct Connect and VPN, communication between containers and hosts on the peer end can also be achieved with proper planning.</li><li id="cce_10_0281__li227001410377">Do not change the mask of the primary CIDR block on the VPC after a cluster is created. Otherwise, the network will be abnormal.</li></ol>
+</div></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0280.html">Container Network Models</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0282.html b/docs/cce/umn/cce_10_0282.html
similarity index 60%
rename from docs/cce/umn/cce_01_0282.html
rename to docs/cce/umn/cce_10_0282.html
index 44a93805..3ff4cca1 100644
--- a/docs/cce/umn/cce_01_0282.html
+++ b/docs/cce/umn/cce_10_0282.html
@@ -1,35 +1,30 @@
-<a name="cce_01_0282"></a><a name="cce_01_0282"></a>
+<a name="cce_10_0282"></a><a name="cce_10_0282"></a>
 
 <h1 class="topictitle1">Container Tunnel Network</h1>
-<div id="body0000001116449815"><div class="section" id="cce_01_0282__section12281724511"><h4 class="sectiontitle">Container Tunnel Network Model</h4><div class="p" id="cce_01_0282__p128621429104410">The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet packets into UDP packets and transmits them in tunnels. Open vSwitch serves as the backend virtual switch. Though at some costs of performance, packet encapsulation and tunnel transmission enable higher interoperability and compatibility with advanced features (such as network policy-based isolation) for most common scenarios.<div class="fignone" id="cce_01_0282__en-us_topic_0146398798_fig119421248102318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_01_0282__image1052320276130" src="en-us_image_0000001145535931.png"></span></div>
+<div id="body0000001116449815"><div class="section" id="cce_10_0282__section12281724511"><h4 class="sectiontitle">Container Tunnel Network Model</h4><div class="p" id="cce_10_0282__p128621429104410">The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet packets into UDP packets and transmits them in tunnels. Open vSwitch serves as the backend virtual switch. Though at some costs of performance, packet encapsulation and tunnel transmission enable higher interoperability and compatibility with advanced features (such as network policy-based isolation) for most common scenarios.<div class="fignone" id="cce_10_0282__en-us_topic_0146398798_fig119421248102318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_10_0282__image1052320276130" src="en-us_image_0000001199341330.png"></span></div>
 </div>
-<p id="cce_01_0282__p1595093112523"><strong id="cce_01_0282__b1747574215205">Pod-to-pod communication</strong></p>
-<ul id="cce_01_0282__ul14388192911477"><li id="cce_01_0282__li1638816295478">On the same node: Packets are directly forwarded via the OVS bridge on the node.</li><li id="cce_01_0282__li279114194714">Across nodes: Packets are encapsulated in the OVS bridge and then forwarded to the peer node.</li></ul>
+<p id="cce_10_0282__p1595093112523"><strong id="cce_10_0282__b1747574215205">Pod-to-pod communication</strong></p>
+<ul id="cce_10_0282__ul14388192911477"><li id="cce_10_0282__li1638816295478">On the same node: Packets are directly forwarded via the OVS bridge on the node.</li><li id="cce_10_0282__li279114194714">Across nodes: Packets are encapsulated in the OVS bridge and then forwarded to the peer node.</li></ul>
 </div>
-<div class="section" id="cce_01_0282__section207316301745"><h4 class="sectiontitle">Advantages and Disadvantages</h4><p id="cce_01_0282__p3411102335219"><strong id="cce_01_0282__b174951623142615">Advantages</strong></p>
-<ul id="cce_01_0282__ul463016407523"><li id="cce_01_0282__li4630154055217">The container network is decoupled from the node network and is not limited by the VPC quotas and response speed (such as the number of VPC routes, number of elastic ENIs, and creation speed).</li><li id="cce_01_0282__li186307405522">Network isolation is supported. For details, see <a href="cce_01_0059.html">Network Policies</a>.</li><li id="cce_01_0282__li8630134075210">Bandwidth limits are supported.</li><li id="cce_01_0282__li1363019401524">Large-scale networking is supported.</li></ul>
-<p id="cce_01_0282__p205300102531"><strong id="cce_01_0282__b104218203346">Disadvantages</strong></p>
-<ul id="cce_01_0282__ul19105172535317"><li id="cce_01_0282__li4105325145317">High encapsulation overhead, complex networking, and low performance</li><li id="cce_01_0282__li410514257532">Failure to use the load balancing and security group capabilities provided by the VPC</li><li id="cce_01_0282__li610562516539">External networks cannot be directly connected to container IP addresses.</li></ul>
+<div class="section" id="cce_10_0282__section207316301745"><h4 class="sectiontitle">Advantages and Disadvantages</h4><p id="cce_10_0282__p3411102335219"><strong id="cce_10_0282__b174951623142615">Advantages</strong></p>
+<ul id="cce_10_0282__ul463016407523"><li id="cce_10_0282__li4630154055217">The container network is decoupled from the node network and is not limited by the VPC quotas and response speed (such as the number of VPC routes, number of elastic ENIs, and creation speed).</li><li id="cce_10_0282__li186307405522">Network isolation is supported. For details, see <a href="cce_10_0059.html">Network Policies</a>.</li><li id="cce_10_0282__li8630134075210">Bandwidth limits are supported.</li><li id="cce_10_0282__li1363019401524">Large-scale networking is supported.</li></ul>
+<p id="cce_10_0282__p205300102531"><strong id="cce_10_0282__b104218203346">Disadvantages</strong></p>
+<ul id="cce_10_0282__ul19105172535317"><li id="cce_10_0282__li4105325145317">High encapsulation overhead, complex networking, and low performance</li><li id="cce_10_0282__li410514257532">Failure to use the load balancing and security group capabilities provided by the VPC</li><li id="cce_10_0282__li610562516539">External networks cannot be directly connected to container IP addresses.</li></ul>
 </div>
-<div class="section" id="cce_01_0282__section474217381446"><h4 class="sectiontitle">Applicable Scenarios</h4><ul id="cce_01_0282__ul13193146175415"><li id="cce_01_0282__li14193164665419">Low requirements on performance: As the container tunnel network requires additional VXLAN tunnel encapsulation, it has about 5% to 15% of performance loss when compared with the other two container network models. Therefore, the container tunnel network is applicable to the scenarios that do not have high performance requirements, such as web applications, and middle-end and back-end services with a small number of access requests.</li><li id="cce_01_0282__li1193346175410">Large-scale networking: Different from the VPC network that is limited by the VPC route quota, the container tunnel network does not have any restriction on the infrastructure. In addition, the container tunnel network controls the broadcast domain to the node level. The container tunnel network supports a maximum of 2000 nodes.</li></ul>
+<div class="section" id="cce_10_0282__section474217381446"><h4 class="sectiontitle">Applicable Scenarios</h4><ul id="cce_10_0282__ul13193146175415"><li id="cce_10_0282__li14193164665419">Low requirements on performance: As the container tunnel network requires additional VXLAN tunnel encapsulation, it has about 5% to 15% of performance loss when compared with the other two container network models. Therefore, the container tunnel network is applicable to the scenarios that do not have high performance requirements, such as web applications, and middle-end and back-end services with a small number of access requests.</li><li id="cce_10_0282__li1193346175410">Large-scale networking: Different from the VPC network that is limited by the VPC route quota, the container tunnel network does not have any restriction on the infrastructure. In addition, the container tunnel network controls the broadcast domain to the node level. The container tunnel network supports a maximum of 2000 nodes.</li></ul>
 </div>
-<div class="section" id="cce_01_0282__section182851515105616"><a name="cce_01_0282__section182851515105616"></a><a name="section182851515105616"></a><h4 class="sectiontitle">Container IP Address Management</h4><p id="cce_01_0282__p281322175914">The container tunnel network allocates container IP addresses according to the following rules:</p>
-<ul id="cce_01_0282__ul958419581574"><li id="cce_01_0282__li14584185875713">The container CIDR block is allocated separately, which is irrelevant to the node CIDR block.</li><li id="cce_01_0282__li125841058135712">IP addresses are allocated by node. One or more CIDR blocks with a fixed size (16 by default) are allocated to each node in a cluster from the container CIDR block.</li><li id="cce_01_0282__li4584058165712">When the IP addresses on a node are used up, you can apply for a new CIDR block.</li><li id="cce_01_0282__li155841158155716">The container CIDR block cyclically allocates CIDR blocks to new nodes or existing nodes in sequence.</li><li id="cce_01_0282__li1058455813579">Pods scheduled to a node are cyclically allocated IP addresses from one or more CIDR blocks allocated to the node.</li></ul>
-<div class="fignone" id="cce_01_0282__fig964351910578"><span class="figcap"><b>Figure 2 </b>IP address allocation of the container tunnel network</span><br><span><img id="cce_01_0282__image116431919125712" src="en-us_image_0000001198861255.png"></span></div>
-<p id="cce_01_0282__p14511937472">Maximum number of nodes that can be created in the cluster using the container tunnel network = Number of IP addresses in the container CIDR block / Size of the IP CIDR block allocated to the node by the container CIDR block at a time (16 by default)</p>
-<p id="cce_01_0282__p202791444191414">For example, if the container CIDR block is 172.16.0.0/16, the number of IP addresses is 65536. If 16 IP addresses are allocated to a node at a time, a maximum of 4096 (65536/16) nodes can be created in the cluster. This is an extreme case. If 4096 nodes are created, a maximum of 16 pods can be created for each node because only 16 IP CIDR block\s are allocated to each node. In addition, the number of nodes that can be created in a cluster also depends on the node network and cluster scale.</p>
+<div class="section" id="cce_10_0282__section182851515105616"><h4 class="sectiontitle">Container IP Address Management</h4><p id="cce_10_0282__p281322175914">The container tunnel network allocates container IP addresses according to the following rules:</p>
+<ul id="cce_10_0282__ul958419581574"><li id="cce_10_0282__li14584185875713">The container CIDR block is allocated separately, which is irrelevant to the node CIDR block.</li><li id="cce_10_0282__li125841058135712">IP addresses are allocated by node. One or more CIDR blocks with a fixed size (16 by default) are allocated to each node in a cluster from the container CIDR block.</li><li id="cce_10_0282__li4584058165712">When the IP addresses on a node are used up, you can apply for a new CIDR block.</li><li id="cce_10_0282__li155841158155716">The container CIDR block cyclically allocates CIDR blocks to new nodes or existing nodes in sequence.</li><li id="cce_10_0282__li1058455813579">Pods scheduled to a node are cyclically allocated IP addresses from one or more CIDR blocks allocated to the node.</li></ul>
+<div class="fignone" id="cce_10_0282__fig964351910578"><span class="figcap"><b>Figure 2 </b>IP address allocation of the container tunnel network</span><br><span><img id="cce_10_0282__image116431919125712" src="en-us_image_0000001244141217.png"></span></div>
+<p id="cce_10_0282__p14511937472">Maximum number of nodes that can be created in the cluster using the container tunnel network = Number of IP addresses in the container CIDR block / Size of the IP CIDR block allocated to the node by the container CIDR block at a time (16 by default)</p>
+<p id="cce_10_0282__p202791444191414">For example, if the container CIDR block is 172.16.0.0/16, the number of IP addresses is 65536. If 16 IP addresses are allocated to a node at a time, a maximum of 4096 (65536/16) nodes can be created in the cluster. This is an extreme case. If 4096 nodes are created, a maximum of 16 pods can be created for each node because only 16 IP CIDR block\s are allocated to each node. In addition, the number of nodes that can be created in a cluster also depends on the node network and cluster scale.</p>
 </div>
-<div class="section" id="cce_01_0282__section14586813191914"><h4 class="sectiontitle">Recommendation for CIDR Block Planning</h4><p id="cce_01_0282__p17616122461918">As described in <a href="cce_01_0010.html#cce_01_0010__section1131733719195">Cluster Network Structure</a>, network addresses in a cluster can be divided into three parts: node network, container network, and service network. When planning network addresses, consider the following aspects:</p>
-<ul id="cce_01_0282__ul136482211289"><li id="cce_01_0282__li1764102219287">The three CIDR blocks cannot overlap. Otherwise, a conflict occurs. </li><li id="cce_01_0282__li1691864214309">Ensure that each CIDR block has sufficient IP addresses.<ul id="cce_01_0282__ul168401136103520"><li id="cce_01_0282__li44145434282">The IP addresses in the node CIDR block must match the cluster scale. Otherwise, nodes cannot be created due to insufficient IP addresses.</li><li id="cce_01_0282__li951716382357">The IP addresses in the container CIDR block must match the service scale. Otherwise, pods cannot be created due to insufficient IP addresses. The number of pods that can be created on each node also depends on other parameter settings.</li></ul>
+<div class="section" id="cce_10_0282__section14586813191914"><h4 class="sectiontitle">Recommendation for CIDR Block Planning</h4><p id="cce_10_0282__p17616122461918">As described in <a href="cce_10_0010.html#cce_10_0010__section1131733719195">Cluster Network Structure</a>, network addresses in a cluster can be divided into three parts: node network, container network, and service network. When planning network addresses, consider the following aspects:</p>
+<ul id="cce_10_0282__ul136482211289"><li id="cce_10_0282__li1764102219287">The three CIDR blocks cannot overlap. Otherwise, a conflict occurs. </li><li id="cce_10_0282__li1691864214309">Ensure that each CIDR block has sufficient IP addresses.<ul id="cce_10_0282__ul168401136103520"><li id="cce_10_0282__li44145434282">The IP addresses in the node CIDR block must match the cluster scale. Otherwise, nodes cannot be created due to insufficient IP addresses.</li><li id="cce_10_0282__li951716382357">The IP addresses in the container CIDR block must match the service scale. Otherwise, pods cannot be created due to insufficient IP addresses. The number of pods that can be created on each node also depends on other parameter settings.</li></ul>
 </li></ul>
-<p id="cce_01_0282__p61461628194919">In the following configuration, the cluster has 200 nodes, and the network model is the container tunnel network.</p>
-<p id="cce_01_0282__p57342035104616">In this case, the number of available IP addresses in the selected node subnet must be greater than 200. Otherwise, nodes cannot be created due to insufficient IP addresses.</p>
-<p id="cce_01_0282__p38442197490">The container CIDR block is 10.0.0.0/16, and the number of available IP addresses is 65533. These IP addresses can be allocated to a maximum of 4096 nodes. (16 IP addresses are allocated to each node at a time. For details, see <a href="#cce_01_0282__section182851515105616">Container IP Address Management</a>.)</p>
-<p id="cce_01_0282__p1282112819399"></p>
 </div>
-<div class="section" id="cce_01_0282__section10441454192410"><h4 class="sectiontitle">Example of Container Tunnel Network Access</h4><p id="cce_01_0282__p14973143515713">Create a cluster that uses the container tunnel network model.</p>
-<p id="cce_01_0282__p16521185019547">Create a Deployment on the cluster.</p>
-<pre class="screen" id="cce_01_0282__screen453053319576">kind: Deployment
+<div class="section" id="cce_10_0282__section10441454192410"><h4 class="sectiontitle">Example of Container Tunnel Network Access</h4><p id="cce_10_0282__p14973143515713">Create a cluster that uses the container tunnel network model. Create a Deployment in the cluster.</p>
+<pre class="screen" id="cce_10_0282__screen453053319576">kind: Deployment
 apiVersion: apps/v1
 metadata:
   name: example
@@ -56,16 +51,16 @@ spec:
               memory: 512Mi
       imagePullSecrets:
         - name: default-secret</pre>
-<p id="cce_01_0282__p18367131911615">View the created pod.</p>
-<pre class="screen" id="cce_01_0282__screen1617415582713">$ kubectl get pod -owide
+<p id="cce_10_0282__p18367131911615">View the created pod.</p>
+<pre class="screen" id="cce_10_0282__screen1617415582713">$ kubectl get pod -owide
 NAME                       READY   STATUS    RESTARTS   AGE     IP          NODE           NOMINATED NODE   READINESS GATES
 example-5bdc5699b7-5rvq4   1/1     Running   0          3m28s   10.0.0.20   192.168.0.42   &lt;none&gt;           &lt;none&gt;
 example-5bdc5699b7-984j9   1/1     Running   0          3m28s   10.0.0.21   192.168.0.42   &lt;none&gt;           &lt;none&gt;
 example-5bdc5699b7-lfxkm   1/1     Running   0          3m28s   10.0.0.22   192.168.0.42   &lt;none&gt;           &lt;none&gt;
 example-5bdc5699b7-wjcmg   1/1     Running   0          3m28s   10.0.0.52   192.168.0.64   &lt;none&gt;           &lt;none&gt;</pre>
-<p id="cce_01_0282__p17445204113">In this case, the IP address of the pod cannot be directly accessed outside the cluster in the same VPC. This is a feature of the container tunnel network.</p>
-<p id="cce_01_0282__p6854335131718">However, the pod can be accessed from a node in the cluster or in the pod. As shown in the following figure, the pod can be accessed directly from the container.</p>
-<pre class="screen" id="cce_01_0282__screen168691417191312">$ kubectl exec -it example-5bdc5699b7-5rvq4 -- curl 10.0.0.21
+<p id="cce_10_0282__p17445204113">In this case, the IP address of the pod cannot be directly accessed outside the cluster in the same VPC. This is a feature of the container tunnel network.</p>
+<p id="cce_10_0282__p6854335131718">However, the pod can be accessed from a node in the cluster or in the pod. As shown in the following figure, the pod can be accessed directly from the container.</p>
+<pre class="screen" id="cce_10_0282__screen168691417191312">$ kubectl exec -it example-5bdc5699b7-5rvq4 -- curl 10.0.0.21
 &lt;!DOCTYPE html&gt;
 &lt;html&gt;
 &lt;head&gt;
@@ -95,7 +90,7 @@ Commercial support is available at
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0280.html">Container Network Models</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0280.html">Container Network Models</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_01_0283.html b/docs/cce/umn/cce_10_0283.html
similarity index 63%
rename from docs/cce/umn/cce_01_0283.html
rename to docs/cce/umn/cce_10_0283.html
index 0e5c7d46..3794d3e5 100644
--- a/docs/cce/umn/cce_01_0283.html
+++ b/docs/cce/umn/cce_10_0283.html
@@ -1,41 +1,38 @@
-<a name="cce_01_0283"></a><a name="cce_01_0283"></a>
+<a name="cce_10_0283"></a><a name="cce_10_0283"></a>
 
 <h1 class="topictitle1">VPC Network</h1>
-<div id="body0000001116449817"><div class="section" id="cce_01_0283__section1747411510358"><h4 class="sectiontitle">Model Definition</h4><div class="p" id="cce_01_0283__p1872194515461">The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the VPC route quota. Each node is assigned a CIDR block of a fixed size. This networking model is free from tunnel encapsulation overhead and outperforms the container tunnel network model. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in a cluster can be directly accessed from outside the cluster.<div class="fignone" id="cce_01_0283__en-us_topic_0146398798_fig105374614243"><span class="figcap"><b>Figure 1 </b>VPC network model</span><br><span><img id="cce_01_0283__en-us_topic_0146398798_image757734312392" src="en-us_image_0000001116237931.png"></span></div>
+<div id="body0000001116449817"><div class="section" id="cce_10_0283__section1747411510358"><h4 class="sectiontitle">Model Definition</h4><div class="p" id="cce_10_0283__p1872194515461">The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the VPC route quota. Each node is assigned a CIDR block of a fixed size. This networking model is free from tunnel encapsulation overhead and outperforms the container tunnel network model. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in a cluster can be directly accessed from outside the cluster.<div class="fignone" id="cce_10_0283__en-us_topic_0146398798_fig105374614243"><span class="figcap"><b>Figure 1 </b>VPC network model</span><br><span><img id="cce_10_0283__en-us_topic_0146398798_image757734312392" src="en-us_image_0000001199181338.png"></span></div>
 </div>
-<p id="cce_01_0283__p1239017542469"><strong id="cce_01_0283__b1743713301235">Pod-to-pod communication</strong></p>
-<ul id="cce_01_0283__ul16721757114818"><li id="cce_01_0283__li87315713480">On the same node: Packets are directly forwarded through IPVlan.</li><li id="cce_01_0283__li473175794820">Across nodes: Packets are forwarded to the default gateway through default routes, and then to the peer node via the VPC routes.</li></ul>
+<p id="cce_10_0283__p1239017542469"><strong id="cce_10_0283__b1743713301235">Pod-to-pod communication</strong></p>
+<ul id="cce_10_0283__ul16721757114818"><li id="cce_10_0283__li87315713480">On the same node: Packets are directly forwarded through IPVlan.</li><li id="cce_10_0283__li473175794820">Across nodes: Packets are forwarded to the default gateway through default routes, and then to the peer node via the VPC routes.</li></ul>
 </div>
-<div class="section" id="cce_01_0283__section207316301745"><h4 class="sectiontitle">Advantages and Disadvantages</h4><p id="cce_01_0283__p69518983316"><strong id="cce_01_0283__b1374013920595">Advantages</strong></p>
-<ul id="cce_01_0283__ul2921035123311"><li id="cce_01_0283__li1792173583313">No tunnel encapsulation is required, so network problems are easy to locate and the performance is high.</li><li id="cce_01_0283__li18931235163315">External networks in a VPC can be directly connected to container IP addresses.</li></ul>
-<p id="cce_01_0283__p1645715401339"><strong id="cce_01_0283__b2916045175912">Disadvantages</strong></p>
-<ul id="cce_01_0283__ul1351863133418"><li id="cce_01_0283__li251818303415">The number of nodes is limited by the VPC route quota.</li><li id="cce_01_0283__li1251814319342">Each node is assigned a CIDR block of a fixed size, which leads to a waste of IP addresses in the container CIDR block.</li><li id="cce_01_0283__li125191230348">Pods cannot directly use functionalities such as EIPs and security groups.</li></ul>
+<div class="section" id="cce_10_0283__section207316301745"><h4 class="sectiontitle">Advantages and Disadvantages</h4><p id="cce_10_0283__p69518983316"><strong id="cce_10_0283__b1374013920595">Advantages</strong></p>
+<ul id="cce_10_0283__ul2921035123311"><li id="cce_10_0283__li1792173583313">No tunnel encapsulation is required, so network problems are easy to locate and the performance is high.</li><li id="cce_10_0283__li18931235163315">External networks in a VPC can be directly connected to container IP addresses.</li></ul>
+<p id="cce_10_0283__p1645715401339"><strong id="cce_10_0283__b2916045175912">Disadvantages</strong></p>
+<ul id="cce_10_0283__ul1351863133418"><li id="cce_10_0283__li251818303415">The number of nodes is limited by the VPC route quota.</li><li id="cce_10_0283__li1251814319342">Each node is assigned a CIDR block of a fixed size, which leads to a waste of IP addresses in the container CIDR block.</li><li id="cce_10_0283__li125191230348">Pods cannot directly use functionalities such as EIPs and security groups.</li></ul>
 </div>
-<div class="section" id="cce_01_0283__section474217381446"><h4 class="sectiontitle">Applicable Scenarios</h4><ul id="cce_01_0283__ul14869171503611"><li id="cce_01_0283__li986971518364">High performance requirements: As no tunnel encapsulation is required, the VPC network model delivers the performance close to that of a VPC network when compared with the container tunnel network model. Therefore, the VPC network model is applicable to scenarios that have high requirements on performance, such as AI computing and big data computing.</li><li id="cce_01_0283__li886915156363">Small- and medium-scale networking: The VPC network is limited by the VPC route quota. Currently, a maximum of 200 nodes are supported by default. If there are large-scale networking requirements, you can increase the VPC route quota.</li></ul>
+<div class="section" id="cce_10_0283__section474217381446"><h4 class="sectiontitle">Applicable Scenarios</h4><ul id="cce_10_0283__ul14869171503611"><li id="cce_10_0283__li986971518364">High performance requirements: As no tunnel encapsulation is required, the VPC network model delivers the performance close to that of a VPC network when compared with the container tunnel network model. Therefore, the VPC network model is applicable to scenarios that have high requirements on performance, such as AI computing and big data computing.</li><li id="cce_10_0283__li886915156363">Small- and medium-scale networking: The VPC network is limited by the VPC route quota. Currently, a maximum of 200 nodes are supported by default. If there are large-scale networking requirements, you can increase the VPC route quota.</li></ul>
 </div>
-<div class="section" id="cce_01_0283__section1574982552114"><a name="cce_01_0283__section1574982552114"></a><a name="section1574982552114"></a><h4 class="sectiontitle">Container IP Address Management</h4><p id="cce_01_0283__p281322175914">The VPC network allocates container IP addresses according to the following rules:</p>
-<ul id="cce_01_0283__ul191475312218"><li id="cce_01_0283__li2014713112214">The container CIDR block is allocated separately.</li><li id="cce_01_0283__li181471314228">IP addresses are allocated by node. One CIDR block with a fixed size (which is configurable) is allocated to each node in a cluster from the container CIDR block.</li><li id="cce_01_0283__li1414773162216">The container CIDR block cyclically allocates CIDR blocks to new nodes in sequence.</li><li id="cce_01_0283__li131471362219">Pods scheduled to a node are cyclically allocated IP addresses from CIDR blocks allocated to the node.</li></ul>
-<div class="fignone" id="cce_01_0283__fig790744862219"><span class="figcap"><b>Figure 2 </b>IP address management of the VPC network</span><br><span><img id="cce_01_0283__image390717485223" src="en-us_image_0000001153101092.png"></span></div>
-<p id="cce_01_0283__p14511937472">Maximum number of nodes that can be created in the cluster using the VPC network = Number of IP addresses in the container CIDR block /Number of IP addresses in the CIDR block allocated to the node by the container CIDR block</p>
-<p id="cce_01_0283__p202791444191414">For example, if the container CIDR block is 172.16.0.0/16, the number of IP addresses is 65536. The mask of the container CIDR block allocated to the node is 25. That is, the number of container IP addresses on each node is 128. Therefore, a maximum of 512 (65536/128) nodes can be created. The number of nodes that can be created in a cluster also depends on the node network and cluster scale.</p>
+<div class="section" id="cce_10_0283__section1574982552114"><a name="cce_10_0283__section1574982552114"></a><a name="section1574982552114"></a><h4 class="sectiontitle">Container IP Address Management</h4><p id="cce_10_0283__p281322175914">The VPC network allocates container IP addresses according to the following rules:</p>
+<ul id="cce_10_0283__ul191475312218"><li id="cce_10_0283__li2014713112214">The container CIDR block is allocated separately.</li><li id="cce_10_0283__li181471314228">IP addresses are allocated by node. One CIDR block with a fixed size (which is configurable) is allocated to each node in a cluster from the container CIDR block.</li><li id="cce_10_0283__li1414773162216">The container CIDR block cyclically allocates CIDR blocks to new nodes in sequence.</li><li id="cce_10_0283__li131471362219">Pods scheduled to a node are cyclically allocated IP addresses from CIDR blocks allocated to the node.</li></ul>
+<div class="fignone" id="cce_10_0283__fig790744862219"><span class="figcap"><b>Figure 2 </b>IP address management of the VPC network</span><br><span><img id="cce_10_0283__image390717485223" src="en-us_image_0000001244261173.png"></span></div>
+<p id="cce_10_0283__p14511937472">Maximum number of nodes that can be created in the cluster using the VPC network = Number of IP addresses in the container CIDR block /Number of IP addresses in the CIDR block allocated to the node by the container CIDR block</p>
+<p id="cce_10_0283__p202791444191414">For example, if the container CIDR block is 172.16.0.0/16, the number of IP addresses is 65536. The mask of the container CIDR block allocated to the node is 25. That is, the number of container IP addresses on each node is 128. Therefore, a maximum of 512 (65536/128) nodes can be created. In addition, the number of nodes that can be created in a cluster also depends on the node network and cluster scale.</p>
 </div>
-<div class="section" id="cce_01_0283__section14586813191914"><h4 class="sectiontitle">Recommendation for CIDR Block Planning</h4><p id="cce_01_0283__p17616122461918">As described in <a href="cce_01_0010.html#cce_01_0010__section1131733719195">Cluster Network Structure</a>, network addresses in a cluster can be divided into three parts: node network, container network, and service network. When planning network addresses, consider the following aspects:</p>
-<ul id="cce_01_0283__ul136482211289"><li id="cce_01_0283__li1764102219287">The three CIDR blocks cannot overlap. Otherwise, a conflict occurs. </li><li id="cce_01_0283__li1691864214309">Ensure that each CIDR block has sufficient IP addresses.<ul id="cce_01_0283__ul168401136103520"><li id="cce_01_0283__li44145434282">The IP addresses in the node CIDR block must match the cluster scale. Otherwise, nodes cannot be created due to insufficient IP addresses.</li><li id="cce_01_0283__li951716382357">The IP addresses in the container CIDR block must match the service scale. Otherwise, pods cannot be created due to insufficient IP addresses. The number of pods that can be created on each node also depends on other parameter settings.</li></ul>
+<div class="section" id="cce_10_0283__section14586813191914"><h4 class="sectiontitle">Recommendation for CIDR Block Planning</h4><p id="cce_10_0283__p17616122461918">As described in <a href="cce_10_0010.html#cce_10_0010__section1131733719195">Cluster Network Structure</a>, network addresses in a cluster can be divided into three parts: node network, container network, and service network. When planning network addresses, consider the following aspects:</p>
+<ul id="cce_10_0283__ul136482211289"><li id="cce_10_0283__li1764102219287">The three CIDR blocks cannot overlap. Otherwise, a conflict occurs. </li><li id="cce_10_0283__li1691864214309">Ensure that each CIDR block has sufficient IP addresses.<ul id="cce_10_0283__ul168401136103520"><li id="cce_10_0283__li44145434282">The IP addresses in the node CIDR block must match the cluster scale. Otherwise, nodes cannot be created due to insufficient IP addresses.</li><li id="cce_10_0283__li951716382357">The IP addresses in the container CIDR block must match the service scale. Otherwise, pods cannot be created due to insufficient IP addresses. The number of pods that can be created on each node also depends on other parameter settings.</li></ul>
 </li></ul>
-<p id="cce_01_0283__p61461628194919">Assume that a cluster contains 200 nodes and the network model is VPC network.</p>
-<p id="cce_01_0283__p57342035104616">In this case, the number of available IP addresses in the selected node subnet must be greater than 200. Otherwise, nodes cannot be created due to insufficient IP addresses.</p>
-<p id="cce_01_0283__p38442197490">The container CIDR block is 10.0.0.0/16, and the number of available IP addresses is 65536. As described in <a href="#cce_01_0283__section1574982552114">Container IP Address Management</a>, the VPC network is allocated a CIDR block with the fixed size (using the mask to determine the maximum number of container IP addresses allocated to each node). For example, if the upper limit is 128, the cluster supports a maximum of 512 (65536/128) nodes, including the three master nodes.</p>
-<p id="cce_01_0283__p1282112819399"></p>
+<p id="cce_10_0283__p61461628194919">Assume that a cluster contains 200 nodes and the network model is VPC network.</p>
+<p id="cce_10_0283__p57342035104616">In this case, the number of available IP addresses in the selected node subnet must be greater than 200. Otherwise, nodes cannot be created due to insufficient IP addresses.</p>
+<p id="cce_10_0283__p38442197490">The container CIDR block is 10.0.0.0/16, and the number of available IP addresses is 65536. As described in <a href="#cce_10_0283__section1574982552114">Container IP Address Management</a>, the VPC network is allocated a CIDR block with the fixed size (using the mask to determine the maximum number of container IP addresses allocated to each node). For example, if the upper limit is 128, the cluster supports a maximum of 512 (65536/128) nodes, including the three master nodes.</p>
 </div>
-<div class="section" id="cce_01_0283__section10441454192410"><h4 class="sectiontitle">Example of VPC Network Access</h4><p id="cce_01_0283__p173611965371">Create a cluster using the VPC network model.</p>
-<div class="fignone" id="cce_01_0283__fig1830324293611"><span class="figcap"><b>Figure 3 </b>Cluster network</span><br><span><img id="cce_01_0283__image481772011396" src="en-us_image_0000001198980979.png"></span></div>
-<p id="cce_01_0283__p422445311464">The cluster contains one node.</p>
-<pre class="screen" id="cce_01_0283__screen12454122461">$ kubectl get node
+<div class="section" id="cce_10_0283__section10441454192410"><h4 class="sectiontitle">Example of VPC Network Access</h4><p id="cce_10_0283__p173611965371">Create a cluster using the VPC network model. The cluster contains one node.</p>
+<pre class="screen" id="cce_10_0283__screen12454122461">$ kubectl get node
 NAME           STATUS   ROLES    AGE   VERSION
 192.168.0.99   Ready    &lt;none&gt;   9d    v1.17.17-r0-CCE21.6.1.B004-17.37.5</pre>
-<p id="cce_01_0283__p198610394717">Check the VPC routing table. The destination address 172.16.0.0/25 is the container CIDR block allocated to the node, and the next hop is the corresponding node. When the container IP address is accessed, the VPC route forwards the access request to the next-hop node. This indicates that the VPC network model uses VPC routes.</p>
-<p id="cce_01_0283__p16521185019547">Create a Deployment on the cluster.</p>
-<pre class="screen" id="cce_01_0283__screen453053319576">kind: Deployment
+<p id="cce_10_0283__p198610394717">Check the VPC routing table. The destination address 172.16.0.0/25 is the container CIDR block allocated to the node, and the next hop is the corresponding node. When the container IP address is accessed, the VPC route forwards the access request to the next-hop node. This indicates that the VPC network model uses VPC routes.</p>
+<p id="cce_10_0283__p16521185019547">Create a Deployment in the cluster.</p>
+<pre class="screen" id="cce_10_0283__screen453053319576">kind: Deployment
 apiVersion: apps/v1
 metadata:
   name: example
@@ -55,16 +52,16 @@ spec:
           image: 'nginx:perl'
       imagePullSecrets:
         - name: default-secret</pre>
-<p id="cce_01_0283__p17836314194019">Check the pod.</p>
-<pre class="screen" id="cce_01_0283__screen1373552110408">$ kubectl get pod -owide
+<p id="cce_10_0283__p17836314194019">Check the pod.</p>
+<pre class="screen" id="cce_10_0283__screen1373552110408">$ kubectl get pod -owide
 NAME                       READY   STATUS    RESTARTS   AGE   IP           NODE           NOMINATED NODE   READINESS GATES
 example-86b9779494-l8qrw   1/1     Running   0          14s   172.16.0.6   192.168.0.99   &lt;none&gt;           &lt;none&gt;
 example-86b9779494-svs8t   1/1     Running   0          14s   172.16.0.7   192.168.0.99   &lt;none&gt;           &lt;none&gt;
 example-86b9779494-x8kl5   1/1     Running   0          14s   172.16.0.5   192.168.0.99   &lt;none&gt;           &lt;none&gt;
 example-86b9779494-zt627   1/1     Running   0          14s   172.16.0.8   192.168.0.99   &lt;none&gt;           &lt;none&gt;</pre>
-<p id="cce_01_0283__p17445204113">In this case, the IP address of the pod can be directly accessed from a node outside the cluster in the same VPC. This is a feature of the VPC network feature.</p>
-<p id="cce_01_0283__p6854335131718">The pod can also be accessed from a node in the same cluster or in the pod. As shown in the following figure, the pod can be accessed directly from the container.</p>
-<pre class="screen" id="cce_01_0283__screen168691417191312">$ kubectl exec -it example-86b9779494-l8qrw -- curl 172.16.0.7
+<p id="cce_10_0283__p17445204113">In this case, the IP address of the pod can be directly accessed from a node outside the cluster in the same VPC. This is a feature of the VPC network feature.</p>
+<p id="cce_10_0283__p6854335131718">The pod can also be accessed from a node in the same cluster or in the pod. As shown in the following figure, the pod can be accessed directly from the container.</p>
+<pre class="screen" id="cce_10_0283__screen168691417191312">$ kubectl exec -it example-86b9779494-l8qrw -- curl 172.16.0.7
 &lt;!DOCTYPE html&gt;
 &lt;html&gt;
 &lt;head&gt;
@@ -94,7 +91,7 @@ Commercial support is available at
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0280.html">Container Network Models</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0280.html">Container Network Models</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0284.html b/docs/cce/umn/cce_10_0284.html
new file mode 100644
index 00000000..cf1b4c20
--- /dev/null
+++ b/docs/cce/umn/cce_10_0284.html
@@ -0,0 +1,72 @@
+<a name="cce_10_0284"></a><a name="cce_10_0284"></a>
+
+<h1 class="topictitle1">Cloud Native Network 2.0</h1>
+<div id="body0000001116514283"><div class="section" id="cce_10_0284__section18112145311217"><h4 class="sectiontitle">Model Definition</h4><p id="cce_10_0284__p12850493413">Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and elastic IPs (EIPs) are bound to deliver high performance.</p>
+<div class="fignone" id="cce_10_0284__en-us_topic_0146398798_fig117435555917"><span class="figcap"><b>Figure 1 </b>Cloud Native Network 2.0</span><br><span><img id="cce_10_0284__image46261543153113" src="en-us_image_0000001199181336.png"></span></div>
+<p id="cce_10_0284__p1239017542469"><strong id="cce_10_0284__b6980183903918">Pod-to-pod communication</strong></p>
+<ul id="cce_10_0284__ul123731243121119"><li id="cce_10_0284__li54221332105816">Pods on BMS nodes use ENIs, whereas pods on ECS nodes use Sub-ENIs. Sub-ENIs are attached to ENIs through VLAN sub-interfaces.</li><li id="cce_10_0284__li8373134371116">On the same node: Packets are forwarded through the VPC ENI or sub-ENI.</li><li id="cce_10_0284__li837364311113">Across nodes: Packets are forwarded through the VPC ENI or sub-ENI.</li></ul>
+</div>
+<div class="section" id="cce_10_0284__section884011382223"><h4 class="sectiontitle">Advantages and Disadvantages</h4><p id="cce_10_0284__p557884352219"><strong id="cce_10_0284__b468035917247">Advantages</strong></p>
+<ul id="cce_10_0284__ul1336176142316"><li id="cce_10_0284__li3361069234">As the container network directly uses VPC, it is easy to locate network problems and provide the highest performance.</li><li id="cce_10_0284__li113611612237">External networks in a VPC can be directly connected to container IP addresses.</li><li id="cce_10_0284__li1136062233">The load balancing, security group, and EIP capabilities provided by VPC can be used directly.</li></ul>
+<p id="cce_10_0284__p12578743142211"><strong id="cce_10_0284__b517755110167">Disadvantages</strong></p>
+<p id="cce_10_0284__p2578943132213">The container network directly uses VPC, which occupies the VPC address space. Therefore, you must properly plan the container CIDR block before creating a cluster.</p>
+</div>
+<div class="section" id="cce_10_0284__section3723244144011"><h4 class="sectiontitle">Application Scenarios</h4><ul id="cce_10_0284__ul10867019880"><li id="cce_10_0284__li115296288146">High performance requirements and use of other VPC network capabilities: Cloud Native Network 2.0 directly uses VPC, which delivers almost the same performance as the VPC network. Therefore, it is applicable to scenarios that have high requirements on bandwidth and latency, such as online live broadcast and e-commerce seckill.</li><li id="cce_10_0284__li552912289145">Large-scale networking: Cloud Native Network 2.0 supports a maximum of 2000 ECS nodes and 100,000 containers.</li></ul>
+</div>
+<div class="section" id="cce_10_0284__section08181419115517"><h4 class="sectiontitle">Recommendation for CIDR Block Planning</h4><p id="cce_10_0284__p17616122461918">As described in <a href="cce_10_0010.html#cce_10_0010__section1131733719195">Cluster Network Structure</a>, network addresses in a cluster can be divided into three parts: node network, container network, and service network. When planning network addresses, consider the following aspects:</p>
+<ul id="cce_10_0284__ul136482211289"><li id="cce_10_0284__li1764102219287">The three CIDR blocks cannot overlap. Otherwise, a conflict occurs. All subnets (including those created from the secondary CIDR block) in the VPC where the cluster resides cannot conflict with the container and Service CIDR blocks.</li><li id="cce_10_0284__li1691864214309">Ensure that each CIDR block has sufficient IP addresses.<ul id="cce_10_0284__ul168401136103520"><li id="cce_10_0284__li44145434282">The IP addresses in the node CIDR block must match the cluster scale. Otherwise, nodes cannot be created due to insufficient IP addresses.</li><li id="cce_10_0284__li951716382357">The IP addresses in the container CIDR block must match the service scale. Otherwise, pods cannot be created due to insufficient IP addresses.</li></ul>
+</li></ul>
+<p id="cce_10_0284__p61461628194919">In the Cloud Native Network 2.0 model, the container CIDR block and node CIDR block share the network addresses in a VPC. It is recommended that the container subnet and node subnet not use the same subnet. Otherwise, containers or nodes may fail to be created due to insufficient IP resources.</p>
+<p id="cce_10_0284__p176491216405">In addition, a subnet can be added to the container CIDR block after a cluster is created to increase the number of available IP addresses. In this case, ensure that the added subnet does not conflict with other subnets in the container CIDR block.</p>
+<div class="fignone" id="cce_10_0284__fig1793613585217"><span class="figcap"><b>Figure 2 </b>Configuring CIDR blocks</span><br><span><img id="cce_10_0284__image105281151192111" src="en-us_image_0000001244261171.png"></span></div>
+</div>
+<div class="section" id="cce_10_0284__section161713314914"><h4 class="sectiontitle">Example of Cloud Native Network 2.0 Access </h4><p id="cce_10_0284__p251120493913">Create a CCE Turbo cluster, which contains three ECS nodes.</p>
+<p id="cce_10_0284__p13854155435315">Access the details page of one node. You can see that the node has one primary NIC and one extended NIC, and both of them are ENIs. The extended NIC belongs to the container CIDR block and is used to mount a sub-ENI to the pod.</p>
+<p id="cce_10_0284__p16521185019547">Create a Deployment in the cluster.</p>
+<pre class="screen" id="cce_10_0284__screen453053319576">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: example
+  namespace: default
+spec:
+  replicas: 6
+  selector:
+    matchLabels:
+      app: example
+  template:
+    metadata:
+      labels:
+        app: example
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:perl'
+          resources:
+            limits:
+              cpu: 250m
+              memory: 512Mi
+            requests:
+              cpu: 250m
+              memory: 512Mi
+      imagePullSecrets:
+        - name: default-secret</pre>
+<p id="cce_10_0284__p17198145211512">View the created pod.</p>
+<pre class="screen" id="cce_10_0284__screen4162626620">$ kubectl get pod -owide
+NAME                       READY   STATUS    RESTARTS   AGE   IP            NODE         NOMINATED NODE   READINESS GATES
+example-5bdc5699b7-54v7g   1/1     Running   0          7s    10.1.18.2     10.1.0.167   &lt;none&gt;           &lt;none&gt;
+example-5bdc5699b7-6dzx5   1/1     Running   0          7s    10.1.18.216   10.1.0.186   &lt;none&gt;           &lt;none&gt;
+example-5bdc5699b7-gq7xs   1/1     Running   0          7s    10.1.16.63    10.1.0.144   &lt;none&gt;           &lt;none&gt;
+example-5bdc5699b7-h9rvb   1/1     Running   0          7s    10.1.16.125   10.1.0.167   &lt;none&gt;           &lt;none&gt;
+example-5bdc5699b7-s9fts   1/1     Running   0          7s    10.1.16.89    10.1.0.144   &lt;none&gt;           &lt;none&gt;
+example-5bdc5699b7-swq6q   1/1     Running   0          7s    10.1.17.111   10.1.0.167   &lt;none&gt;           &lt;none&gt;</pre>
+<p id="cce_10_0284__p15779154769">The IP addresses of all pods are sub-ENIs, which are mounted to the ENI (extended NIC) of the node.</p>
+<p id="cce_10_0284__p1860322513716">For example, the extended NIC of node 10.1.0.167 is 10.1.17.172. On the <strong id="cce_10_0284__b9460221936">Network Interfaces</strong> page of the Network Console, you can see that three sub-ENIs are mounted to the extended NIC 10.1.17.172, which is the IP address of the pod.</p>
+<p id="cce_10_0284__p84879819214">In the VPC, the IP address of the pod can be successfully accessed.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0280.html">Container Network Models</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0285.html b/docs/cce/umn/cce_10_0285.html
new file mode 100644
index 00000000..b9561a15
--- /dev/null
+++ b/docs/cce/umn/cce_10_0285.html
@@ -0,0 +1,26 @@
+<a name="cce_10_0285"></a><a name="cce_10_0285"></a>
+
+<h1 class="topictitle1">Managing Namespaces</h1>
+<div id="body0000001094996335"><div class="section" id="cce_10_0285__section177341536194814"><h4 class="sectiontitle">Using Namespaces</h4><ul id="cce_10_0285__ul1710151012307"><li id="cce_10_0285__li2101410173019">When creating a workload, you can select a namespace to isolate resources or users.</li><li id="cce_10_0285__li1110171053010">When querying workloads, you can select a namespace to view all workloads in the namespace.</li></ul>
+</div>
+<div class="section" id="cce_10_0285__section10225104442820"><h4 class="sectiontitle">Isolating Namespaces</h4><ul id="cce_10_0285__ul0456115642812"><li id="cce_10_0285__li15456756172812"><strong id="cce_10_0285__b374520311867">Isolating namespaces by environment</strong><p id="cce_10_0285__p531615167290">An application generally goes through the development, joint debugging, and testing stages before it is launched. In this process, the workloads deployed in each environment (stage) are the same, but are logically defined. There are two ways to define them:</p>
+<ul id="cce_10_0285__ul16449133320528"><li id="cce_10_0285__li73965319525">Group them in different clusters for different environments.<p id="cce_10_0285__p481677539"><a name="cce_10_0285__li73965319525"></a><a name="li73965319525"></a>Resources cannot be shared among different clusters. In addition, services in different environments can access each other only through load balancing.</p>
+</li><li id="cce_10_0285__li17416104210525">Group them in different namespaces for different environments.<p id="cce_10_0285__p1741564245215"><a name="cce_10_0285__li17416104210525"></a><a name="li17416104210525"></a>Workloads in the same namespace can be mutually accessed by using the Service name. Cross-namespace access can be implemented by using the Service name or namespace name.</p>
+<p id="cce_10_0285__p12415124285217">The following figure shows namespaces created for the development, joint debugging, and testing environments, respectively.</p>
+<div class="fignone" id="cce_10_0285__fig741584216524"><span class="figcap"><b>Figure 1 </b>One namespace for one environment</span><br><span><img id="cce_10_0285__image992612283400" src="en-us_image_0000001199021298.png"></span></div>
+</li></ul>
+</li><li id="cce_10_0285__li0262174297"><strong id="cce_10_0285__b181141219121411">Isolating namespaces by application</strong><p id="cce_10_0285__p1065383143011">You are advised to use this method if a large number of workloads are deployed in the same environment. For example, in the following figure, different namespaces (APP1 and APP2) are created to logically manage workloads as different groups. Workloads in the same namespace access each other using the Service name, and workloads in different namespaces access each other using the Service name or namespace name.</p>
+<div class="fignone" id="cce_10_0285__fig11187114614422"><span class="figcap"><b>Figure 2 </b>Grouping workloads into different namespaces</span><br><span><img id="cce_10_0285__image0620749113912" src="en-us_image_0000001243981147.png"></span></div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0285__section149711133124913"><h4 class="sectiontitle">Deleting a Namespace</h4><p id="cce_10_0285__p3802082534">If a namespace is deleted, all resources (such as workloads, jobs, and ConfigMaps) in this namespace will also be deleted. Exercise caution when deleting a namespace. </p>
+<ol id="cce_10_0285__ol14525181615577"><li id="cce_10_0285__li11526316175712"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0285__li0526181655711"><span>In the navigation pane, choose <span class="uicontrol" id="cce_10_0285__uicontrol1744114205554"><b>Namespaces</b></span>, select the target namespace, and choose <strong id="cce_10_0285__b194421020115519">More</strong> &gt; <strong id="cce_10_0285__b64421720205515">Delete</strong>.</span><p><p id="cce_10_0285__p25272016115714">Follow the prompts to delete the namespace. The default namespaces cannot be deleted.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0030.html">Namespaces</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0287.html b/docs/cce/umn/cce_10_0287.html
new file mode 100644
index 00000000..089f9393
--- /dev/null
+++ b/docs/cce/umn/cce_10_0287.html
@@ -0,0 +1,124 @@
+<a name="cce_10_0287"></a><a name="cce_10_0287"></a>
+
+<h1 class="topictitle1">Setting a Resource Quota</h1>
+<div id="body0000001094879931"><p id="cce_10_0287__p7450182412459">Namespace-level resource quotas limit the amount of resources available to teams or users when these teams or users use the same cluster. The quotas include the total number of a type of objects and the total amount of compute resources (CPU and memory) consumed by the objects.</p>
+<div class="section" id="cce_10_0287__section161820104912"><h4 class="sectiontitle">Usage</h4><p id="cce_10_0287__p122111189918">By default, running pods can use the CPUs and memory of a node without restrictions. This means the pods in a namespace may exhaust all resources of the cluster.</p>
+<p id="cce_10_0287__p721115181698">Kubernetes provides namespaces for you to group workloads in a cluster. By setting resource quotas for each namespace, you can prevent resource exhaustion and ensure cluster reliability.</p>
+<p id="cce_10_0287__p6211818896">You can configure quotas for resources such as CPU, memory, and the number of pods in a namespace. For more information, see <a href="https://kubernetes.io/docs/concepts/policy/resource-quotas/?spm=a2c4g.11186623.2.8.d882712bd1i8ae" target="_blank" rel="noopener noreferrer">Resource Quotas</a>.</p>
+<p id="cce_10_0287__p1641135683113">The following table recommends how many pods you can configure for your clusters of different sizes.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0287__table76941619287" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0287__row207441417281"><th align="left" class="cellrowborder" valign="top" width="47.81%" id="mcps1.3.2.6.1.3.1.1"><p id="cce_10_0287__p18744812287">Cluster Scale</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="52.190000000000005%" id="mcps1.3.2.6.1.3.1.2"><p id="cce_10_0287__p4744717288">Recommended Number of Pods</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0287__row1974421112811"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.2.6.1.3.1.1 "><p id="cce_10_0287__p1174471132818">50 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.2.6.1.3.1.2 "><p id="cce_10_0287__p574411111288">2,500 pods</p>
+</td>
+</tr>
+<tr id="cce_10_0287__row16744171192814"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.2.6.1.3.1.1 "><p id="cce_10_0287__p974412110289">200 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.2.6.1.3.1.2 "><p id="cce_10_0287__p4744414285">10,000 pods</p>
+</td>
+</tr>
+<tr id="cce_10_0287__row1744611281"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.2.6.1.3.1.1 "><p id="cce_10_0287__p07444111282">1,000 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.2.6.1.3.1.2 "><p id="cce_10_0287__p3744141152816">30,000 pods</p>
+</td>
+</tr>
+<tr id="cce_10_0287__row174413132813"><td class="cellrowborder" valign="top" width="47.81%" headers="mcps1.3.2.6.1.3.1.1 "><p id="cce_10_0287__p1974413118283">2,000 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="52.190000000000005%" headers="mcps1.3.2.6.1.3.1.2 "><p id="cce_10_0287__p57441117288">50,000 pods</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0287__p23884611431">Starting from clusters of v1.21 and later, the default <a href="https://kubernetes.io/docs/concepts/policy/resource-quotas/?spm=a2c4g.11186623.2.8.d882712bd1i8ae" target="_blank" rel="noopener noreferrer">Resource Quotas</a> are created when a namespace is created if you have enabled <strong id="cce_10_0287__b1575120543510">enable-resource-quota</strong> in <a href="cce_10_0213.html">Managing Cluster Components</a>. <a href="#cce_10_0287__table371165714613">Table 1</a> lists the resource quotas based on cluster specifications. You can modify them according to your service requirements.</p>
+
+<div class="tablenoborder"><a name="cce_10_0287__table371165714613"></a><a name="table371165714613"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0287__table371165714613" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Default resource quotas</caption><thead align="left"><tr id="cce_10_0287__row371135714462"><th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.2.8.2.7.1.1"><p id="cce_10_0287__p2741101516471">Cluster Scale</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.2.8.2.7.1.2"><p id="cce_10_0287__p672155774618">Pod</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.2.8.2.7.1.3"><p id="cce_10_0287__p20721357144613">Deployment</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.2.8.2.7.1.4"><p id="cce_10_0287__p7728578461">Secret</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.2.8.2.7.1.5"><p id="cce_10_0287__p117215714466">ConfigMap</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.2.8.2.7.1.6"><p id="cce_10_0287__p672357104616">Service</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0287__row1172157114611"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.1 "><p id="cce_10_0287__p97411115144712">50 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.2 "><p id="cce_10_0287__p8722057154614">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.3 "><p id="cce_10_0287__p272145764613">1000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.4 "><p id="cce_10_0287__p107235744611">1000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.5 "><p id="cce_10_0287__p772457184613">1000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.6 "><p id="cce_10_0287__p1072457174618">1000</p>
+</td>
+</tr>
+<tr id="cce_10_0287__row1972115711468"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.1 "><p id="cce_10_0287__p874131544718">200 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.2 "><p id="cce_10_0287__p457244374812">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.3 "><p id="cce_10_0287__p7572124315489">1000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.4 "><p id="cce_10_0287__p8572164310486">1000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.5 "><p id="cce_10_0287__p2057254384819">1000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.6 "><p id="cce_10_0287__p2572154315484">1000</p>
+</td>
+</tr>
+<tr id="cce_10_0287__row1075851118472"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.1 "><p id="cce_10_0287__p8741171517472">1,000 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.2 "><p id="cce_10_0287__p87582011134719">5000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.3 "><p id="cce_10_0287__p1875811116478">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.4 "><p id="cce_10_0287__p1275891120471">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.5 "><p id="cce_10_0287__p875811124719">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.6 "><p id="cce_10_0287__p57581011134710">2000</p>
+</td>
+</tr>
+<tr id="cce_10_0287__row372857174613"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.1 "><p id="cce_10_0287__p1374191554715">2,000 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.2 "><p id="cce_10_0287__p1747717560487">5000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.3 "><p id="cce_10_0287__p247765611483">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.4 "><p id="cce_10_0287__p1047715624814">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.5 "><p id="cce_10_0287__p1147765616485">2000</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.2.8.2.7.1.6 "><p id="cce_10_0287__p3477185610481">2000</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0287__section14927122174314"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0287__p225310144413">Kubernetes provides optimistic concurrency control (OCC), also known as optimistic locking, for frequent data updates. You can use optimistic locking by defining the <strong id="cce_10_0287__b1937818471752">resourceVersion</strong> field. This field is in the object metadata. This field identifies the internal version number of the object. When the object is modified, this field is modified accordingly. You can use kube-apiserver to check whether an object has been modified. When the API server receives an update request containing the <strong id="cce_10_0287__b4497384101">resourceVersion</strong> field, the server compares the requested data with the resource version number of the server. If they are different, the object on the server has been modified when the update is submitted. In this case, the API server returns a conflict error (409). You need to obtain the server data, modify the data, and submit the data to the server again. The resource quota limits the total resource consumption of each namespace and records the resource information in the cluster. Therefore, after the <strong id="cce_10_0287__b19776177161920">enable-resource-quota</strong> option is enabled, the probability of resource creation conflicts increases in large-scale concurrency scenarios, affecting the performance of batch resource creation.</p>
+</div>
+<div class="section" id="cce_10_0287__section612004131015"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0287__ol721554611493"><li id="cce_10_0287__li3138144416415"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0287__li121519469499"><span>In the navigation pane, click <strong id="cce_10_0287__b44091155104216">Namespaces</strong>.</span></li><li id="cce_10_0287__li156041115011"><span>Click <strong id="cce_10_0287__b124451994316">Quota Management</strong> next to the target namespace.</span><p><p id="cce_10_0287__p918714404511">This operation cannot be performed on system namespaces <strong id="cce_10_0287__b11884943747">kube-system</strong> and <strong id="cce_10_0287__b12889204310414">kube-public</strong>.</p>
+</p></li><li id="cce_10_0287__li1824223825116"><span>Set the resource quotas and click <strong id="cce_10_0287__b158391315113814">OK</strong>.</span><p><div class="notice" id="cce_10_0287__note149764191267"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0287__ul126101287117"><li id="cce_10_0287__li061019286110">After setting CPU and memory quotas for a namespace, you must specify the request and limit values of CPU and memory resources when creating a workload. Otherwise, the workload cannot be created. If the quota of a resource is set to <strong id="cce_10_0287__b1957618541713">0</strong>, the resource usage is not limited.</li><li id="cce_10_0287__li116102281011">Accumulated quota usage includes the resources used by CCE to create default components, such as the Kubernetes Services (which can be viewed using kubectl) created under the <strong id="cce_10_0287__b11277131016814">default</strong> namespace. Therefore, you are advised to set a resource quota greater than expected to reserve resource for creating default components.</li></ul>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0030.html">Namespaces</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0288.html b/docs/cce/umn/cce_10_0288.html
new file mode 100644
index 00000000..302830b6
--- /dev/null
+++ b/docs/cce/umn/cce_10_0288.html
@@ -0,0 +1,142 @@
+<a name="cce_10_0288"></a><a name="cce_10_0288"></a>
+
+<h1 class="topictitle1">Security Group Policies</h1>
+<div id="body0000001126369307"><p id="cce_10_0288__p1974703154112">When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a custom resource object named <strong id="cce_10_0288__b165092192527">SecurityGroup</strong> for you to associate security groups with pods in CCE. You can customize workloads with specific security isolation requirements using SecurityGroups.</p>
+<div class="section" id="cce_10_0288__section21791218165310"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0288__ul9783173112364"><li id="cce_10_0288__li8783931193610">This function is supported for CCE Turbo clusters of v1.19 and later. Upgrade your CCE Turbo clusters if their versions are earlier than v1.19.</li><li id="cce_10_0288__li4993194416484">A workload can be bound to a maximum of five security groups.</li></ul>
+</div>
+<div class="section" id="cce_10_0288__section11870154492516"><h4 class="sectiontitle">Using the Console</h4><ol id="cce_10_0288__ol1361481610515"><li id="cce_10_0288__li168916863510"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0288__li3587928516103"><span>In the navigation pane, choose <strong id="cce_10_0288__b145571404713">Workloads</strong>. On the displayed page, click the name of the target workload.</span></li><li id="cce_10_0288__li010483562510"><span>Switch to the <span class="uicontrol" id="cce_10_0288__uicontrol610813359258"><b>Security Group Policy</b></span> tab page and click <span class="uicontrol" id="cce_10_0288__uicontrol7392937135212"><b>Create</b></span>.</span><p><p id="cce_10_0288__p81561312173717"></p>
+</p></li><li id="cce_10_0288__li9243164415720"><span>Set the parameters as described in <a href="#cce_10_0288__table572616321913">Table 1</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0288__table572616321913"></a><a name="table572616321913"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0288__table572616321913" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0288__row207274322093"><th align="left" class="cellrowborder" valign="top" width="27.49274927492749%" id="mcps1.3.3.2.4.2.1.2.4.1.1"><p id="cce_10_0288__p77276326911">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.943894389438945%" id="mcps1.3.3.2.4.2.1.2.4.1.2"><p id="cce_10_0288__p0728113212917">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.563356335633564%" id="mcps1.3.3.2.4.2.1.2.4.1.3"><p id="cce_10_0288__p1372820323916">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0288__row1772883218911"><td class="cellrowborder" valign="top" width="27.49274927492749%" headers="mcps1.3.3.2.4.2.1.2.4.1.1 "><p id="cce_10_0288__p1972843218919">Security Group Policy Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.4.2.1.2.4.1.2 "><p id="cce_10_0288__p1272819324915">Enter a security policy name.</p>
+<p id="cce_10_0288__p4881951142411">Enter 1 to 63 characters. The value must start with a lowercase letter and cannot end with a hyphen (-). Only lowercase letters, digits, and hyphens (-) are allowed.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.4.2.1.2.4.1.3 "><p id="cce_10_0288__p972814326910">security-group</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row18733153211911"><td class="cellrowborder" valign="top" width="27.49274927492749%" headers="mcps1.3.3.2.4.2.1.2.4.1.1 "><p id="cce_10_0288__p187338321199">Associate Security Group</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.4.2.1.2.4.1.2 "><p id="cce_10_0288__p1328632118575">The selected security group will be bound to the ENI or supplementary ENI of the selected workload. A maximum of five security groups can be selected from the drop-down list. You must select one or multiple security groups to create a SecurityGroup.</p>
+<p id="cce_10_0288__p147335320917">If no security group has not been created, click <strong id="cce_10_0288__b14281251122811">Create Security Group</strong>. After the security group is created, click the refresh button.</p>
+<div class="notice" id="cce_10_0288__note1159255716127"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0288__ul1543718137385"><li id="cce_10_0288__li2437913113810">A maximum of 5 security groups can be selected.</li><li id="cce_10_0288__li141331916103820">Hover the cursor on <span><img id="cce_10_0288__image1788617020404" src="en-us_image_0000001414561076.png"></span> next to the security group name, and you can view details about the security group.</li></ul>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.4.2.1.2.4.1.3 "><p id="cce_10_0288__p62971643205712">64566556-bd6f-48fb-b2c6-df8f44617953</p>
+<p id="cce_10_0288__p109894523576">5451f1b0-bd6f-48fb-b2c6-df8f44617953</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0288__li2313183112187"><span>After setting the parameters, click <strong id="cce_10_0288__b1582295383214">OK</strong>.</span><p><p id="cce_10_0288__p578411327180">After the security group is created, the system automatically returns to the security group list page where you can see the new security group.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0288__section16951511152313"><h4 class="sectiontitle">Using kubectl</h4><ol id="cce_10_0288__ol18112923132013"><li id="cce_10_0288__li1493862716528"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0288__li6661728195511"><span>Create a description file named <strong id="cce_10_0288__b410911248308">securitygroup-demo.yaml</strong>.</span><p><p id="cce_10_0288__p1681093315519"><strong id="cce_10_0288__b812025733818">vi securitygroup-demo.yaml</strong></p>
+<p id="cce_10_0288__p20295144971919">For example, create the following SecurityGroup to bind all nginx workloads with two security groups 64566556-bd6f-48fb-b2c6-df8f44617953 and 5451f1b0-bd6f-48fb-b2c6-df8f44617953 that have been created in advance. An example is as follows:</p>
+<pre class="screen" id="cce_10_0288__screen112085783811">apiVersion: crd.yangtse.cni/v1
+kind: SecurityGroup
+metadata:
+  name: demo
+  namespace: default
+spec:
+  podSelector:
+    matchLabels:
+      app: nginx    
+  securityGroups:
+  - id: 64566556-bd6f-48fb-b2c6-df8f44617953
+  - id: 5451f1b0-bd6f-48fb-b2c6-df8f44617953</pre>
+<div class="p" id="cce_10_0288__p1654213181418"><a href="#cce_10_0288__table132326831016">Table 2</a> describes the parameters in the YAML file.
+<div class="tablenoborder"><a name="cce_10_0288__table132326831016"></a><a name="table132326831016"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0288__table132326831016" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Description</caption><thead align="left"><tr id="cce_10_0288__row523318817104"><th align="left" class="cellrowborder" valign="top" width="36.75%" id="mcps1.3.4.2.2.2.4.2.2.4.1.1"><p id="cce_10_0288__p162344817100">Field</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.25%" id="mcps1.3.4.2.2.2.4.2.2.4.1.2"><p id="cce_10_0288__p16234138161012">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16%" id="mcps1.3.4.2.2.2.4.2.2.4.1.3"><p id="cce_10_0288__p102881159151016">Mandatory</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0288__row112346841018"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p182345811107">apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p2023458141014">API version. The value is <strong id="cce_10_0288__b123224464324">crd.yangtse.cni/v1</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p6234158101019">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row202347814100"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p172342815109">kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p142346871019">Type of the object to be created.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p2023416841019">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row1459172931315"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p1659232941311">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p165932298137">Metadata definition of the resource object.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p16593112941310">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row33638545115"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p036575412114">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p1036510541116">Name of the SecurityGroup.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p1936585415110">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row126231712194217"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p1692614369427">namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p7625512194216">Name of the namespace.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p142617117439">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row52341382109"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p2234188171017">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p1023414811012">Detailed description of the SecurityGroup.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p92341186101">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row29372135139"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p1493821315132">podSelector</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p10938171341312">Used to define the workload to be associated with security groups in the SecurityGroup.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p5939181320135">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0288__row69398139139"><td class="cellrowborder" valign="top" width="36.75%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.1 "><p id="cce_10_0288__p14452947144819">securityGroups</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.25%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.2 "><p id="cce_10_0288__p10939121391317">Security group ID.</p>
+</td>
+<td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.2.2.2.4.2.2.4.1.3 "><p id="cce_10_0288__p4939161321314">Yes</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0288__li37491511203115"><span>Run the following command to create the SecurityGroup:</span><p><p id="cce_10_0288__p10535028163215"><strong id="cce_10_0288__b141611743103317">kubectl create -f securitygroup-demo.yaml</strong></p>
+<p id="cce_10_0288__p19952164320410">If the following information is displayed, the SecurityGroup is being created.</p>
+<pre class="screen" id="cce_10_0288__screen1443217161515">securitygroup.crd.yangtse.cni/demo created</pre>
+</p></li><li id="cce_10_0288__li1922643918310"><span>Run the following command to view the SecurityGroup:</span><p><p id="cce_10_0288__p18793297337"><strong id="cce_10_0288__b196997348336">kubectl get sg</strong></p>
+<p id="cce_10_0288__p1570010192345">If the name of the created SecurityGroup is <strong id="cce_10_0288__b6605202415574">demo</strong> in the command output, the SecurityGroup is created successfully.</p>
+<pre class="screen" id="cce_10_0288__screen1921213422610">NAME                       POD-SELECTOR                      AGE
+all-no                     map[matchLabels:map[app:nginx]]   4h1m
+s001test                   map[matchLabels:map[app:nginx]]   19m
+demo                       map[matchLabels:map[app:nginx]]   2m9s</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0290.html b/docs/cce/umn/cce_10_0290.html
similarity index 57%
rename from docs/cce/umn/cce_01_0290.html
rename to docs/cce/umn/cce_10_0290.html
index b29087b3..58175b9e 100644
--- a/docs/cce/umn/cce_01_0290.html
+++ b/docs/cce/umn/cce_10_0290.html
@@ -1,30 +1,28 @@
-<a name="cce_01_0290"></a><a name="cce_01_0290"></a>
+<a name="cce_10_0290"></a><a name="cce_10_0290"></a>
 
 <h1 class="topictitle1">Workload Scaling Mechanisms</h1>
-<div id="body8662426"><div class="note" id="cce_01_0290__note43621948162313"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0290__p43621548152313"><strong id="cce_01_0290__b747784115198">Scaling policy priority</strong>: If you do not manually adjust the number of pods, auto scaling policies will take effect for resource scheduling. If <a href="cce_01_0057.html#cce_01_0057__section1050418516503">manual scaling</a> is triggered, auto scaling policies will be temporarily invalid.</p>
-</div></div>
-<div class="section" id="cce_01_0290__en-us_topic_0000001134985539_section4414215184010"><h4 class="sectiontitle">How HPA Works</h4><p id="cce_01_0290__p465813319420">HPA is a controller that controls horizontal pod scaling. HPA periodically checks the pod metrics, calculates the number of replicas required to meet the target values configured for HPA resources, and then adjusts the value of the <strong id="cce_01_0290__b2059515593207">replicas</strong> field in the target resource object (such as a Deployment).</p>
-<p id="cce_01_0290__p13390104474019">A prerequisite for auto scaling is that your container running data can be collected, such as number of cluster nodes/pods, and CPU and memory usage of containers. Kubernetes does not provide such monitoring capabilities itself. You can use extensions to monitor and collect your data. CCE integrates <a href="https://github.com/kubernetes-sigs/metrics-server" target="_blank" rel="noopener noreferrer">Metrics Server</a> to realize such capabilities:</p>
-<ul id="cce_01_0290__ul158653012711"><li id="cce_01_0290__li195551596309"><a href="https://github.com/kubernetes-sigs/metrics-server" target="_blank" rel="noopener noreferrer">Metrics Server</a> is a cluster-wide aggregator of resource utilization data. Metrics Server collects metrics from the Summary API exposed by kubelet. These metrics are set for core Kubernetes resources, such as pods, nodes, containers, and Services. Metrics Server provides a set of standard APIs for external systems to collect these metrics.</li></ul>
-<p id="cce_01_0290__p10650734153816">HPA can work with Metrics Server to implement auto scaling based on the CPU and memory usage.</p>
+<div id="body8662426"><div class="section" id="cce_10_0290__en-us_topic_0000001134985539_section4414215184010"><h4 class="sectiontitle">How HPA Works</h4><p id="cce_10_0290__p465813319420">HPA is a controller that controls horizontal pod scaling. HPA periodically checks the pod metrics, calculates the number of replicas required to meet the target values configured for HPA resources, and then adjusts the value of the <strong id="cce_10_0290__b2059515593207">replicas</strong> field in the target resource object (such as a Deployment).</p>
+<p id="cce_10_0290__p13390104474019">A prerequisite for auto scaling is that your container running data can be collected, such as number of cluster nodes/pods, and CPU and memory usage of containers. Kubernetes does not provide such monitoring capabilities itself. You can use extensions to monitor and collect your data. CCE integrates <a href="https://github.com/kubernetes-sigs/metrics-server" target="_blank" rel="noopener noreferrer">Metrics Server</a> to realize such capabilities:</p>
+<ul id="cce_10_0290__ul158653012711"><li id="cce_10_0290__li195551596309"><a href="https://github.com/kubernetes-sigs/metrics-server" target="_blank" rel="noopener noreferrer">Metrics Server</a> is a cluster-wide aggregator of resource utilization data. Metrics Server collects metrics from the Summary API exposed by kubelet. These metrics are set for core Kubernetes resources, such as pods, nodes, containers, and Services. Metrics Server provides a set of standard APIs for external systems to collect these metrics.</li></ul>
+<p id="cce_10_0290__p10650734153816">HPA can work with Metrics Server to implement auto scaling based on the CPU and memory usage.</p>
 </div>
-<p id="cce_01_0290__en-us_topic_0000001134985539_p11677034205013"><strong id="cce_01_0290__b114450873515">Two core modules of HPA:</strong></p>
-<ul id="cce_01_0290__en-us_topic_0000001134985539_ul12117113745015"><li id="cce_01_0290__en-us_topic_0000001134985539_li111823713500">Data Source Monitoring<p id="cce_01_0290__en-us_topic_0000001134985539_p075015718499"><a name="cce_01_0290__en-us_topic_0000001134985539_li111823713500"></a><a name="en-us_topic_0000001134985539_li111823713500"></a>The community provided only CPU- and memory-based HPA at the early stage. With the population of Kubernetes, developers need more custom metrics or monitoring information at the access layer for their own applications, for example, the QPS of the load balancer and the number of online users of the website. In response, the community defines a set of standard metric APIs to provide services externally through these aggregated APIs.</p>
-<ul id="cce_01_0290__en-us_topic_0000001134985539_ul1547235135116"><li id="cce_01_0290__en-us_topic_0000001134985539_li1779884713508"><strong id="cce_01_0290__b611235142312">metrics.k8s.io</strong> provides monitoring metrics related to the CPU and memory of pods and nodes.</li><li id="cce_01_0290__en-us_topic_0000001134985539_li87999479503"><strong id="cce_01_0290__b1191022247">custom.metrics.k8s.io</strong> provides custom monitoring metrics related to Kubernetes objects.</li><li id="cce_01_0290__en-us_topic_0000001134985539_li1180014713503"><strong id="cce_01_0290__b12856160245">external.metrics.k8s.io</strong> provides metrics that come from external systems and are irrelevant to any Kubernetes resource metrics.</li></ul>
-</li><li id="cce_01_0290__en-us_topic_0000001134985539_li1927717132511">Scaling Decision-Making Algorithms<p id="cce_01_0290__en-us_topic_0000001134985539_p18750157144914"><a name="cce_01_0290__en-us_topic_0000001134985539_li1927717132511"></a><a name="en-us_topic_0000001134985539_li1927717132511"></a>The HPA controller calculates the scaling ratio based on the current metric values and desired metric values using the following formula:</p>
-<p id="cce_01_0290__en-us_topic_0000001134985539_p129511655185718"><strong id="cce_01_0290__en-us_topic_0000001134985539_b1278249155818">desiredReplicas = ceil[currentReplicas x (currentMetricValue/desiredMetricValue)]</strong></p>
-<p id="cce_01_0290__en-us_topic_0000001134985539_p675114715492">For example, if the current metric value is 200m and the target value is 100m, the desired number of pods will be doubled according to the formula. In practice, pods may be constantly added or reduced. To ensure stability, the HPA controller is optimized from the following aspects:</p>
-<ul id="cce_01_0290__ul1195345514367"><li id="cce_01_0290__en-us_topic_0000001134985539_li15495175418512">Cooldown interval: In v1.11 and earlier versions, Kubernetes introduced the startup parameters <strong id="cce_01_0290__b134218411549">horizontal-pod-autoscaler-downscale-stabilization-window</strong> and <strong id="cce_01_0290__b1375920925413">horizontal-pod-autoScaler-upscale-stabilization-window</strong> to indicate the cooldown intervals after a scale-in and scale-out, respectively, in which no scaling operation will not be performed. In versions later than v1.14, the scheduling queue is introduced to store all decision-making suggestions detected within a period of time. Then, the system makes decisions based on all valid decision-making suggestions to minimize changes of the desired number of replicas to ensure stability.</li><li id="cce_01_0290__en-us_topic_0000001134985539_li927105910517">Tolerance: It can be considered as a buffer zone. If the pod number changes can be tolerated, the number of pods remains unchanged.<p id="cce_01_0290__en-us_topic_0000001134985539_p127513734917"><a name="cce_01_0290__en-us_topic_0000001134985539_li927105910517"></a><a name="en-us_topic_0000001134985539_li927105910517"></a>Use the formula: ratio = currentMetricValue/desiredMetricValue</p>
-<p id="cce_01_0290__en-us_topic_0000001134985539_p1875167134913">When |ratio – 1.0| ≤ tolerance, scaling will not be performed.</p>
-<p id="cce_01_0290__en-us_topic_0000001134985539_p16751177174916">When |ratio – 1.0| &gt; tolerance, the desired value is calculated using the formula mentioned above.</p>
-<p id="cce_01_0290__en-us_topic_0000001134985539_p19751187184919">The default value is 0.1 in the current community version.</p>
+<p id="cce_10_0290__en-us_topic_0000001134985539_p11677034205013"><strong id="cce_10_0290__b114450873515">Two core modules of HPA:</strong></p>
+<ul id="cce_10_0290__en-us_topic_0000001134985539_ul12117113745015"><li id="cce_10_0290__en-us_topic_0000001134985539_li111823713500">Data Source Monitoring<p id="cce_10_0290__en-us_topic_0000001134985539_p075015718499"><a name="cce_10_0290__en-us_topic_0000001134985539_li111823713500"></a><a name="en-us_topic_0000001134985539_li111823713500"></a>The community provided only CPU- and memory-based HPA at the early stage. With the population of Kubernetes, developers need more custom metrics or monitoring information at the access layer for their own applications, for example, the QPS of the load balancer and the number of online users of the website. In response, the community defines a set of standard metric APIs to provide services externally through these aggregated APIs.</p>
+<ul id="cce_10_0290__en-us_topic_0000001134985539_ul1547235135116"><li id="cce_10_0290__en-us_topic_0000001134985539_li1779884713508"><strong id="cce_10_0290__b611235142312">metrics.k8s.io</strong> provides monitoring metrics related to the CPU and memory of pods and nodes.</li><li id="cce_10_0290__en-us_topic_0000001134985539_li87999479503"><strong id="cce_10_0290__b1191022247">custom.metrics.k8s.io</strong> provides custom monitoring metrics related to Kubernetes objects.</li><li id="cce_10_0290__en-us_topic_0000001134985539_li1180014713503"><strong id="cce_10_0290__b12856160245">external.metrics.k8s.io</strong> provides metrics that come from external systems and are irrelevant to any Kubernetes resource metrics.</li></ul>
+</li><li id="cce_10_0290__en-us_topic_0000001134985539_li1927717132511">Scaling Decision-Making Algorithms<p id="cce_10_0290__en-us_topic_0000001134985539_p18750157144914"><a name="cce_10_0290__en-us_topic_0000001134985539_li1927717132511"></a><a name="en-us_topic_0000001134985539_li1927717132511"></a>The HPA controller calculates the scaling ratio based on the current metric values and desired metric values using the following formula:</p>
+<p id="cce_10_0290__en-us_topic_0000001134985539_p129511655185718"><strong id="cce_10_0290__en-us_topic_0000001134985539_b1278249155818">desiredReplicas = ceil[currentReplicas x (currentMetricValue/desiredMetricValue)]</strong></p>
+<p id="cce_10_0290__en-us_topic_0000001134985539_p675114715492">For example, if the current metric value is 200m and the target value is 100m, the desired number of pods will be doubled according to the formula. In practice, pods may be constantly added or reduced. To ensure stability, the HPA controller is optimized from the following aspects:</p>
+<ul id="cce_10_0290__ul1195345514367"><li id="cce_10_0290__en-us_topic_0000001134985539_li15495175418512">Cooldown interval: In v1.11 and earlier versions, Kubernetes introduced the startup parameters <strong id="cce_10_0290__b134218411549">horizontal-pod-autoscaler-downscale-stabilization-window</strong> and <strong id="cce_10_0290__b1375920925413">horizontal-pod-autoScaler-upscale-stabilization-window</strong> to indicate the cooldown intervals after a scale-in and scale-out, respectively, in which no scaling operation will not be performed. In versions later than v1.14, the scheduling queue is introduced to store all decision-making suggestions detected within a period of time. Then, the system makes decisions based on all valid decision-making suggestions to minimize changes of the desired number of replicas to ensure stability.</li><li id="cce_10_0290__en-us_topic_0000001134985539_li927105910517">Tolerance: It can be considered as a buffer zone. If the pod number changes can be tolerated, the number of pods remains unchanged.<p id="cce_10_0290__en-us_topic_0000001134985539_p127513734917"><a name="cce_10_0290__en-us_topic_0000001134985539_li927105910517"></a><a name="en-us_topic_0000001134985539_li927105910517"></a>Use the formula: ratio = currentMetricValue/desiredMetricValue</p>
+<p id="cce_10_0290__en-us_topic_0000001134985539_p1875167134913">When |ratio – 1.0| ≤ tolerance, scaling will not be performed.</p>
+<p id="cce_10_0290__en-us_topic_0000001134985539_p16751177174916">When |ratio – 1.0| &gt; tolerance, the desired value is calculated using the formula mentioned above.</p>
+<p id="cce_10_0290__en-us_topic_0000001134985539_p19751187184919">The default value is 0.1 in the current community version.</p>
 </li></ul>
 </li></ul>
-<p id="cce_01_0290__en-us_topic_0000001134985539_p275157124910">The HPA performs scaling based on metric thresholds. Common metrics include the CPU and memory usage. You can also set custom metrics, such as the QPS and number of connections, to trigger scaling. However, metric-based scaling brings in latency of minutes generated during data collection, determination, and scaling phases. Such latency may cause high CPU usage and slow response. To solve this problem, CCE allows you to configure scheduled policies to scale resources regularly for applications with periodic changes.</p>
+<p id="cce_10_0290__en-us_topic_0000001134985539_p275157124910">The HPA performs scaling based on metric thresholds. Common metrics include the CPU and memory usage. You can also set custom metrics, such as the QPS and number of connections, to trigger scaling. However, metric-based scaling brings in latency of minutes generated during data collection, determination, and scaling phases. Such latency may cause high CPU usage and slow response. To solve this problem, CCE allows you to configure scheduled policies to scale resources regularly for applications with periodic changes.</p>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0293.html">Scaling a Workload</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0293.html">Scaling a Workload</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0291.html b/docs/cce/umn/cce_10_0291.html
new file mode 100644
index 00000000..5341dde3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0291.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0291"></a><a name="cce_10_0291"></a>
+
+<h1 class="topictitle1">Scaling a Node</h1>
+<div id="body0000001089955022"><p id="cce_10_0291__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0296.html">Node Scaling Mechanisms</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0209.html">Creating a Node Scaling Policy</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0063.html">Managing Node Scaling Policies</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0207.html">Auto Scaling</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0293.html b/docs/cce/umn/cce_10_0293.html
new file mode 100644
index 00000000..dc8e0b53
--- /dev/null
+++ b/docs/cce/umn/cce_10_0293.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0293"></a><a name="cce_10_0293"></a>
+
+<h1 class="topictitle1">Scaling a Workload</h1>
+<div id="body0000001136331593"><p id="cce_10_0293__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0290.html">Workload Scaling Mechanisms</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0208.html">Creating an HPA Policy for Workload Auto Scaling</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0083.html">Managing Workload Scaling Policies</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0207.html">Auto Scaling</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0296.html b/docs/cce/umn/cce_10_0296.html
new file mode 100644
index 00000000..26efeae2
--- /dev/null
+++ b/docs/cce/umn/cce_10_0296.html
@@ -0,0 +1,27 @@
+<a name="cce_10_0296"></a><a name="cce_10_0296"></a>
+
+<h1 class="topictitle1">Node Scaling Mechanisms</h1>
+<div id="body0000001136332525"><p id="cce_10_0296__p1320251924213">Kubernetes HPA is designed for pods. However, if the cluster resources are insufficient, you can only add nodes. Scaling of cluster nodes could be laborious. Now with clouds, you can add or delete nodes by simply calling APIs.</p>
+<p id="cce_10_0296__p986943512272"><a href="https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler" target="_blank" rel="noopener noreferrer">autoscaler</a> is a component provided by Kubernetes for auto scaling of cluster nodes based on the pod scheduling status and resource usage.</p>
+<div class="section" id="cce_10_0296__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0296__p4299242191311">Before using the node scaling function, you must install the <a href="cce_10_0154.html">autoscaler</a> add-on of v1.13.8 or later.</p>
+</div>
+<div class="section" id="cce_10_0296__section15550647155618"><h4 class="sectiontitle">How autoscaler Works</h4><p id="cce_10_0296__en-us_topic_0000001134985539_p108861830195320">The cluster autoscaler (CA) goes through two processes.</p>
+<ul id="cce_10_0296__en-us_topic_0000001134985539_ul1225194595312"><li id="cce_10_0296__en-us_topic_0000001134985539_li12229204575311">Scale-out: The CA checks all unschedulable pods every 10 seconds and selects a node group that meets the requirements for scale-out based on the policy you set.</li><li id="cce_10_0296__en-us_topic_0000001134985539_li1722954585310">Scale-in: The CA scans all nodes every 10 seconds. If the number of pod requests on a node is less than the user-defined percentage for scale-in, the CA simulates whether the pods on the node can be migrated to other nodes. If yes, the node will be removed after an idle time window.</li></ul>
+<p id="cce_10_0296__p5564125663811">As described above, if a cluster node is idle for a period of time (10 minutes by default), scale-in is triggered, and the idle node is removed.</p>
+<p id="cce_10_0296__p10927740113817">However, a node cannot be removed from a cluster if the following pods exist:</p>
+<ol id="cce_10_0296__ol19081274511"><li id="cce_10_0296__li193436816395">Pods that do not meet specific requirements set in PodDisruptionBudget</li><li id="cce_10_0296__li93432819399">Pods that cannot be scheduled to other nodes due to constraints such as affinity and anti-affinity policies</li><li id="cce_10_0296__li19343168153916">Pods that have the <strong id="cce_10_0296__b13761122434">"cluster-autoscaler.kubernetes.io/safe-to-evict": "false"</strong> annotation</li><li id="cce_10_0296__li5343187394">Pods (except those created by kube-system DaemonSet) that exist in the kube-system namespace on the node</li><li id="cce_10_0296__li91151244512">Pods that are not created by the controller (Deployment/ReplicaSet/job/StatefulSet)</li></ol>
+</div>
+<div class="section" id="cce_10_0296__section1937355015712"><h4 class="sectiontitle">autoscaler Architecture</h4><p id="cce_10_0296__p19483175016574"><a href="#cce_10_0296__fig114831750115719">Figure 1</a> shows the autoscaler architecture and its core modules:</p>
+<div class="fignone" id="cce_10_0296__fig114831750115719"><a name="cce_10_0296__fig114831750115719"></a><a name="fig114831750115719"></a><span class="figcap"><b>Figure 1 </b>autoscaler architecture</span><br><span><img id="cce_10_0296__image1311110330342" src="en-us_image_0000001199501290.png"></span></div>
+<p id="cce_10_0296__p848317504572"><strong id="cce_10_0296__b124012214506">Description</strong></p>
+<ul id="cce_10_0296__ul848495025713"><li id="cce_10_0296__li184831850135719"><strong id="cce_10_0296__b2014431111413">Estimator</strong>: Evaluates the number of nodes to be added to each node pool to host unschedulable pods.</li><li id="cce_10_0296__li164832501576"><strong id="cce_10_0296__b182541915201411">Simulator</strong>: Finds the nodes that meet the scale-in conditions in the scale-in scenario.</li><li id="cce_10_0296__li12484150145717"><strong id="cce_10_0296__b96391717101419">Expander</strong>: Selects an optimal node from the node pool picked out by the Estimator based on the user-defined policy in the scale-out scenario. Currently, the Expander has the following policies:<ul id="cce_10_0296__ul15484145025716"><li id="cce_10_0296__li1848355055712"><strong id="cce_10_0296__b149572010145">Random</strong>: Selects a node pool randomly. If you have not specified a policy, <strong id="cce_10_0296__b10695175815301">Random</strong> is set by default.</li><li id="cce_10_0296__li1948395085715"><strong id="cce_10_0296__b0886923181418">most-Pods</strong>: Selects the node pool that can host the largest number of unschedulable pods after the scale-out. If multiple node pools meet the requirement, a random node pool will be selected.</li><li id="cce_10_0296__li1948315013576"><strong id="cce_10_0296__b5768228131412">least-waste</strong>: Selects the node pool that has the least CPU or memory resource waste after scale-out.</li><li id="cce_10_0296__li16484125075714"><strong id="cce_10_0296__b13641631171413">price</strong>: Selects the node pool in which the to-be-added nodes cost least for scale-out.</li><li id="cce_10_0296__li16484135065716"><strong id="cce_10_0296__b172453361411">priority</strong>: Selects the node pool with the highest weight. The weights are user-defined.</li></ul>
+</li></ul>
+<p id="cce_10_0296__p870819095816">Currently, CCE supports all policies except <strong id="cce_10_0296__b18779115815130">price</strong>. By default, CCE add-ons use the <strong id="cce_10_0296__b32070381414">least-waste</strong> policy.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0291.html">Scaling a Node</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0298.html b/docs/cce/umn/cce_10_0298.html
new file mode 100644
index 00000000..350af8eb
--- /dev/null
+++ b/docs/cce/umn/cce_10_0298.html
@@ -0,0 +1,40 @@
+<a name="cce_10_0298"></a><a name="cce_10_0298"></a>
+
+<h1 class="topictitle1">Creating a CCE Turbo Cluster</h1>
+<div id="body0000001138502763"><p id="cce_10_0298__p1734813518288">CCE Turbo clusters run on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and intelligent scheduling.</p>
+<p id="cce_10_0298__p115071022112020">CCE Turbo clusters are paired with the Cloud Native Network 2.0 model for large-scale, high-performance container deployment. Containers are assigned IP addresses from the VPC CIDR block. Containers and nodes can belong to different subnets. Access requests from external networks in a VPC can be directly routed to container IP addresses, which greatly improves networking performance. <strong id="cce_10_0298__b83411556181619">It is recommended</strong> that you go through <a href="cce_10_0284.html">Cloud Native Network 2.0</a> to understand the features and network planning of each CIDR block of Cloud Native Network 2.0.</p>
+<div class="section" id="cce_10_0298__section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0298__ul129132199018"><li id="cce_10_0298__li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0298__li138561244112310">You can create a maximum of 50 clusters in a single region.</li><li id="cce_10_0298__li137951846406">CCE Turbo clusters support only Cloud Native Network 2.0. For details about this network model, see <a href="cce_10_0284.html">Cloud Native Network 2.0</a>.</li><li id="cce_10_0298__li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_10_0298__ul1386431634910"><li id="cce_10_0298__li6864131614492">Cluster type</li><li id="cce_10_0298__li359558115311">Number of master nodes in the cluster</li><li id="cce_10_0298__li452948112016">AZ of a master node</li><li id="cce_10_0298__li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, and kube-proxy (forwarding) settings.</li><li id="cce_10_0298__li1686451618494">Network model. For example, change <strong id="cce_10_0298__b1795202020576">Tunnel network</strong> to <strong id="cce_10_0298__b1380111204575">VPC network</strong>.</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0298__section030713544344"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0298__ol1233331493511"><li id="cce_10_0298__li833491416359"><span>Log in to the CCE console. Choose <strong id="cce_10_0298__b1752612013181">Clusters</strong>. On the displayed page, click <strong id="cce_10_0298__b125542040810">Create</strong> next to <strong id="cce_10_0298__b152615016185">CCE Turbo cluster</strong>.</span></li><li id="cce_10_0298__li1569162220359"><span>Specify cluster parameters.</span><p><div class="p" id="cce_10_0298__p5653205823718"><strong id="cce_10_0298__b565819129219">Basic Settings</strong><ul id="cce_10_0298__ul5395195853710"><li id="cce_10_0298__li1739455810379"><strong id="cce_10_0298__b1949862010292">Cluster Name</strong></li><li id="cce_10_0298__li163957587379"><strong id="cce_10_0298__b1950176172918">Cluster Version</strong>: Select the Kubernetes version used by the cluster.</li><li id="cce_10_0298__li5395358163711"><strong id="cce_10_0298__b576218102916">Cluster Scale</strong>: Select the maximum number of nodes that can be managed by the cluster. After the creation is complete, only scale-out is supported, but not scale-in.</li><li id="cce_10_0298__li467617271013"><strong id="cce_10_0298__b4471430184715">HA</strong>: distribution mode of master nodes. By default, master nodes are randomly distributed in different AZs to improve DR capabilities.<div class="p" id="cce_10_0298__p15811036101">You can also expand advanced settings and customize the master node distribution mode. The following modes are supported:<ul id="cce_10_0298__ul729432918812"><li id="cce_10_0298__li62941529381"><strong id="cce_10_0298__b6880036182814">Host</strong>: Master nodes are created on different hosts in the same AZ.</li><li id="cce_10_0298__li32946293815"><strong id="cce_10_0298__b15899949410">Custom</strong>: You can determine the location of each master node.</li></ul>
+</div>
+</li></ul>
+</div>
+<p id="cce_10_0298__p1816113443815"><strong id="cce_10_0298__b12180042162220">Network Settings</strong></p>
+<p id="cce_10_0298__p850019415499">The cluster network settings cover nodes, containers, and Services. For details about the cluster networking and container network models, see <a href="cce_10_0010.html">Overview</a>.</p>
+<ul id="cce_10_0298__ul1923917171387"><li id="cce_10_0298__li12239017103811"><strong id="cce_10_0298__b162914148594">Network Model</strong>: CCE Turbo clusters support only <strong id="cce_10_0298__b1762735892313">Cloud Native Network 2.0</strong>. For details, see <a href="cce_10_0284.html">Cloud Native Network 2.0</a>.</li><li id="cce_10_0298__li106108199388"><strong id="cce_10_0298__b440822810285">VPC</strong>: Select the VPC to which the cluster belongs. If no VPC is available, click <strong id="cce_10_0298__b138981022152816">Create VPC</strong> to create one. The value cannot be changed after creation.</li><li id="cce_10_0298__li270184618382"><strong id="cce_10_0298__b895412932610">Master Node Subnet</strong>: Select the subnet where the master node is deployed. If no subnet is available, click <strong id="cce_10_0298__b1565813129248">Create Subnet</strong> to create one. A master node requires at least four IP addresses, which cannot be changed after creation.</li><li id="cce_10_0298__li2079235711388"><strong id="cce_10_0298__b940919520264">Pod Subnet</strong>: Select the subnet where the container is located. If no subnet is available, click <strong id="cce_10_0298__b0300932276">Create Subnet</strong> to create one. The pod subnet determines the maximum number of containers in the cluster. You can add pod subnets after creating the cluster.</li><li id="cce_10_0298__li411411954713"><strong id="cce_10_0298__b673392918278">Service CIDR Block</strong>: CIDR block for <a href="cce_10_0249.html">Services</a> used by containers in the same cluster to access each other. The value determines the maximum number of Services you can create. The value cannot be changed after creation.</li></ul>
+<p id="cce_10_0298__p3866175612467"><strong id="cce_10_0298__b15331920152716">Advanced Settings</strong></p>
+<ul id="cce_10_0298__ul89571727475"><li id="cce_10_0298__li1895772174715"><strong id="cce_10_0298__b1578422152710">Request Forwarding</strong>: The IPVS and iptables modes are supported. For details, see <a href="cce_10_0349.html">Comparing iptables and IPVS</a>.</li><li id="cce_10_0298__li1736133045414"><strong id="cce_10_0298__b1162418367277">CPU Manager</strong>: For details, see <a href="cce_10_0351.html">Binding CPU Cores</a>.</li><li id="cce_10_0298__li086416351551"><strong id="cce_10_0298__b89152399275">Resource Tag</strong>:<p id="cce_10_0298__p1352104214110">You can add resource tags to classify resources.</p>
+<p id="cce_10_0298__p20521942101117">You can create <strong id="cce_10_0298__b3105324195610">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use predefined tags to improve tag creation and resource migration efficiency. </p>
+</li><li id="cce_10_0298__li12346444135511"><strong id="cce_10_0298__cce_10_0028_b6538204304212">Certificate Authentication</strong>:<ul id="cce_10_0298__cce_10_0028_ul8453616205317"><li id="cce_10_0298__cce_10_0028_li104539168533"><strong id="cce_10_0298__cce_10_0028_b220412510445">Default</strong>: The X509-based authentication mode is enabled by default. X509 is a commonly used certificate format.</li><li id="cce_10_0298__cce_10_0028_li8453141615535"><strong id="cce_10_0298__cce_10_0028_b16300163832117">Custom:</strong> The cluster can identify users based on the header in the request body for authentication. <p id="cce_10_0298__cce_10_0028_p184531416105312">You need to upload your <strong id="cce_10_0298__cce_10_0028_b845836182415">CA root certificate</strong>, <strong id="cce_10_0298__cce_10_0028_b164583622416">client certificate</strong>, and <strong id="cce_10_0298__cce_10_0028_b194581169243">private key</strong> of the client certificate.</p>
+<div class="caution" id="cce_10_0298__cce_10_0028_note13453101613535"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_10_0298__cce_10_0028_ul34531816155312"><li id="cce_10_0298__cce_10_0028_li114531516195313">Upload a file <strong id="cce_10_0298__cce_10_0028_b199411240122414">smaller than 1 MB</strong>. The CA certificate and client certificate can be in <strong id="cce_10_0298__cce_10_0028_b1195014407247">.crt</strong> or <strong id="cce_10_0298__cce_10_0028_b15950140182418">.cer</strong> format. The private key of the client certificate can only be uploaded <strong id="cce_10_0298__cce_10_0028_b199501540102417">unencrypted</strong>.</li><li id="cce_10_0298__cce_10_0028_li18453516185319">The validity period of the client certificate must be longer than five years.</li><li id="cce_10_0298__cce_10_0028_li104531916125318">The uploaded CA certificate is used for both the authentication proxy and the kube-apiserver aggregation layer configuration. <strong id="cce_10_0298__cce_10_0028_b19737142016505">If the certificate is invalid, the cluster cannot be created</strong>.</li><li id="cce_10_0298__cce_10_0028_li6694716185918">Starting from v1.25, Kubernetes no longer supports certificate authentication generated using the SHA1WithRSA or ECDSAWithSHA1 algorithm. You are advised to use the SHA256 algorithm.</li></ul>
+</div></div>
+</li></ul>
+</li><li id="cce_10_0298__li8833185203815"><strong id="cce_10_0298__b79311941114614">Description</strong>: The value can contain a maximum of 200 English characters.</li></ul>
+</p></li><li id="cce_10_0298__li1464011219269"><span>Click <strong id="cce_10_0298__b05029251885">Next: Add-on Configuration</strong>.</span><p><p id="cce_10_0298__p292215338261">By default, <a href="cce_10_0129.html">cordens</a> and <a href="cce_10_0066.html">everest</a> add-ons are installed.</p>
+<div class="p" id="cce_10_0298__p1042341817336"><strong id="cce_10_0298__b54341755383">Service log</strong><ul id="cce_10_0298__ul1532032363417"><li id="cce_10_0298__li078322903611"><strong id="cce_10_0298__b111439411113">ICAgent</strong>:<p id="cce_10_0298__p5238153093619">A log collector provided by Application Operations Management (AOM), reporting logs to AOM and Log Tank Service (LTS) according to the log collection rules you configured.</p>
+<p id="cce_10_0298__p161195033716">You can collect stdout logs as required.</p>
+</li></ul>
+</div>
+</p></li><li id="cce_10_0298__li72711456163617"><span>After configuring the parameters, click <span class="uicontrol" id="cce_10_0298__uicontrol36131794526"><b>Next: Confirm</b></span>.</span><p><p id="cce_10_0298__p1020211168316">It takes about 6 to 10 minutes to create a cluster. You can click <strong id="cce_10_0298__b789018411284">Back to Cluster List</strong> to perform other operations on the cluster or click <strong id="cce_10_0298__b20890174162816">Go to Cluster Events</strong> to view the cluster details.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0298__section473818525817"><h4 class="sectiontitle">Related Operations</h4><ul id="cce_10_0298__cce_01_0028_ul912451119262"><li id="cce_10_0298__cce_01_0028_li1030825181117">Using kubectl to connect to the cluster: <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a></li><li id="cce_10_0298__cce_01_0028_li71881616124815">Add nodes to the cluster. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0300.html b/docs/cce/umn/cce_10_0300.html
new file mode 100644
index 00000000..d21f0ee9
--- /dev/null
+++ b/docs/cce/umn/cce_10_0300.html
@@ -0,0 +1,227 @@
+<a name="cce_10_0300"></a><a name="cce_10_0300"></a>
+
+<h1 class="topictitle1">Using HPA and CA for Auto Scaling of Workloads and Nodes</h1>
+<div id="body8662426"><div class="section" id="cce_10_0300__cce_bestpractice_00282_section124810133244"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0300__cce_bestpractice_00282_p20785039121718">The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p10278148141815">In CCE, the resources that can be used by containers are fixed during application deployment. Therefore, in auto scaling, pods are scaled first. The node resource usage increases only after the number of pods increases. Then, nodes can be scaled based on the node resource usage. How to configure auto scaling in CCE?</p>
+</div>
+<div class="section" id="cce_10_0300__cce_bestpractice_00282_section751193618161"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0300__cce_bestpractice_00282_p54049588619">Two major auto scaling policies are HPA (Horizontal Pod Autoscaling) and CA (Cluster AutoScaling). HPA is for workload auto scaling and CA is for node auto scaling.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p2041919560611">HPA and CA work with each other. HPA requires sufficient cluster resources for successful scaling. When the cluster resources are insufficient, CA is needed to add nodes. If HPA reduces workloads, the cluster will have a large number of idle resources. In this case, CA needs to release nodes to avoid resource waste.</p>
+<div class="p" id="cce_10_0300__cce_bestpractice_00282_p11357173063211">As shown in <a href="#cce_10_0300__cce_bestpractice_00282_fig6540132372015">Figure 1</a>, HPA performs scale-out based on the monitoring metrics. When cluster resources are insufficient, newly created pods are in Pending state. CA then checks these pending pods and selects the most appropriate node pool based on the configured scaling policy to scale out the node pool. <div class="fignone" id="cce_10_0300__cce_bestpractice_00282_fig6540132372015"><a name="cce_10_0300__cce_bestpractice_00282_fig6540132372015"></a><a name="cce_bestpractice_00282_fig6540132372015"></a><span class="figcap"><b>Figure 1 </b>HPA and CA working flows</span><br><span><img id="cce_10_0300__cce_bestpractice_00282_image1927651124120" src="en-us_image_0000001290111529.png"></span></div>
+</div>
+<p id="cce_10_0300__cce_bestpractice_00282_p1825146105817">Using HPA and CA can easily implement auto scaling in most scenarios. In addition, the scaling process of nodes and pods can be easily observed.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p489214412525">This section uses an example to describe the auto scaling process using HPA and CA policies together.</p>
+</div>
+<div class="section" id="cce_10_0300__cce_bestpractice_00282_section11665144319113"><h4 class="sectiontitle">Preparations</h4><ol id="cce_10_0300__cce_bestpractice_00282_ol4717113613587"><li id="cce_10_0300__cce_bestpractice_00282_li1271793612587"><span>Create a cluster with one node. The node should have 2 cores of CPU and 4 GB of memory, or a higher specification, as well as an EIP to allow external access. If no EIP is bound to the node during node creation, you can manually bind one on the ECS console after creating the node.</span><p><p id="cce_10_0300__cce_bestpractice_00282_p05796382598"></p>
+</p></li><li id="cce_10_0300__cce_bestpractice_00282_li114615016594"><span>Install add-ons for the cluster.</span><p><ul id="cce_10_0300__cce_bestpractice_00282_ul16149150145914"><li id="cce_10_0300__cce_bestpractice_00282_li514919011592">autoscaler: node scaling add-on</li><li id="cce_10_0300__cce_bestpractice_00282_li111491011596">metrics-server: an aggregator of resource usage data in a Kubernetes cluster. It can collect measurement data of major Kubernetes resources, such as pods, nodes, containers, and Services.</li></ul>
+</p></li><li id="cce_10_0300__cce_bestpractice_00282_li10214361584"><span>Log in to the cluster node and run a computing-intensive application. When a user sends a request, the result needs to be calculated before being returned to the user.</span><p><ol type="a" id="cce_10_0300__cce_bestpractice_00282_ol1256758388"><li id="cce_10_0300__cce_bestpractice_00282_li1017012469216">Create a PHP file named <strong id="cce_10_0300__cce_bestpractice_00282_b1632345916313">index.php</strong> to calculate the square root of the request for 1,000,000 times before returning <strong id="cce_10_0300__cce_bestpractice_00282_b8808419131013">OK!</strong>.<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen1618042614613">vi index.php</pre>
+<div class="p" id="cce_10_0300__cce_bestpractice_00282_p8834142320617">Example file content:<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen1876722369">&lt;?php
+  $x = 0.0001;
+  for ($i = 0; $i &lt;= 1000000; $i++) {
+    $x += sqrt($x);
+  }
+  echo "OK!";
+?&gt;</pre>
+</div>
+</li><li id="cce_10_0300__cce_bestpractice_00282_li3749191116815">Compile a Dockerfile to build an image.<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen145831928985">vi Dockerfile</pre>
+<div class="p" id="cce_10_0300__cce_bestpractice_00282_p1884892212816">Example Dockerfile:<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen124623137819">FROM php:5-apache
+COPY index.php /var/www/html/index.php
+RUN chmod a+rx index.php</pre>
+</div>
+</li><li id="cce_10_0300__cce_bestpractice_00282_li41280467810">Run the following command to build an image named <strong id="cce_10_0300__cce_bestpractice_00282_b1440401514159">hpa-example</strong> with the tag <strong id="cce_10_0300__cce_bestpractice_00282_b590893213151">latest</strong>.<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen16152457980">docker build -t hpa-example:latest .</pre>
+</li><li id="cce_10_0300__cce_bestpractice_00282_li108181514125"><a name="cce_10_0300__cce_bestpractice_00282_li108181514125"></a><a name="cce_bestpractice_00282_li108181514125"></a>(Optional) Log in to the SWR console, choose <strong id="cce_10_0300__cce_bestpractice_00282_b14859418103912">Organization Management</strong> in the navigation pane, and click <strong id="cce_10_0300__cce_bestpractice_00282_b1645414239391">Create Organization</strong> in the upper right corner to create an organization.<p id="cce_10_0300__cce_bestpractice_00282_p1343919314125">Skip this step if you already have an organization.</p>
+</li><li id="cce_10_0300__cce_bestpractice_00282_li187221141362"><a name="cce_10_0300__cce_bestpractice_00282_li187221141362"></a><a name="cce_bestpractice_00282_li187221141362"></a>In the navigation pane, choose <strong id="cce_10_0300__cce_bestpractice_00282_b7491242144012">My Images</strong> and then click <strong id="cce_10_0300__cce_bestpractice_00282_b1013965224014">Upload Through Client</strong>. On the page displayed, click <strong id="cce_10_0300__cce_bestpractice_00282_b129802010104113">Generate a temporary login command</strong> and click <span><img id="cce_10_0300__cce_bestpractice_00282_image18751161714" src="en-us_image_0000001360670117.png"></span> to copy the command.</li><li id="cce_10_0300__cce_bestpractice_00282_li4452185981216">Run the login command copied in the previous step on the cluster node. If the login is successful, the message "Login Succeeded" is displayed.</li><li id="cce_10_0300__cce_bestpractice_00282_li195318131144">Tag the hpa-example image.<p id="cce_10_0300__cce_bestpractice_00282_p11924913171417"><a name="cce_10_0300__cce_bestpractice_00282_li195318131144"></a><a name="cce_bestpractice_00282_li195318131144"></a><strong id="cce_10_0300__cce_bestpractice_00282_b41232567411">docker tag </strong><strong id="cce_10_0300__cce_bestpractice_00282_b1112316568416"><em id="cce_10_0300__cce_bestpractice_00282_i1494375004119">[Image name 1</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b10123556154113">:</strong><strong id="cce_10_0300__cce_bestpractice_00282_b1912345644114"><em id="cce_10_0300__cce_bestpractice_00282_i994419503416">Tag 1]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1512335684112"> </strong><strong id="cce_10_0300__cce_bestpractice_00282_b161231556164113"><em id="cce_10_0300__cce_bestpractice_00282_i1294445014114">[Image repository address]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1123105615413">/</strong><strong id="cce_10_0300__cce_bestpractice_00282_b181236568414"><em id="cce_10_0300__cce_bestpractice_00282_i294405074115">[Organization name]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1123756204114">/</strong><strong id="cce_10_0300__cce_bestpractice_00282_b312315614411"><em id="cce_10_0300__cce_bestpractice_00282_i1944195015417">[Image name 2</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b19123115614120">:</strong><strong id="cce_10_0300__cce_bestpractice_00282_b412375604119"><em id="cce_10_0300__cce_bestpractice_00282_i10944850144119">Tag 2]</em></strong></p>
+<ul id="cce_10_0300__cce_bestpractice_00282_ul763321831715"><li id="cce_10_0300__cce_bestpractice_00282_li460317260171"><strong id="cce_10_0300__cce_bestpractice_00282_b1150611814214">[Image name 1:Tag 1]</strong>: name and tag of the local image to be uploaded.</li><li id="cce_10_0300__cce_bestpractice_00282_li1060312611712"><strong id="cce_10_0300__cce_bestpractice_00282_b19464224104213">[Image repository address]</strong>: The domain name at the end of the login command in  <a href="#cce_10_0300__cce_bestpractice_00282_li187221141362">5</a> is the image repository address, which can be obtained on the SWR console.</li><li id="cce_10_0300__cce_bestpractice_00282_li14603122611175"><strong id="cce_10_0300__cce_bestpractice_00282_b953652265613">[Organization name]</strong>: name of the organization created in <a href="#cce_10_0300__cce_bestpractice_00282_li108181514125">4</a>.</li><li id="cce_10_0300__cce_bestpractice_00282_li14603112631714"><strong id="cce_10_0300__cce_bestpractice_00282_b1458315379569">[Image name 2:Tag 2]</strong>: desired image name and tag to be displayed on the SWR console.</li></ul>
+<p id="cce_10_0300__cce_bestpractice_00282_p4355540101419">Example:</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p027419151243"><strong id="cce_10_0300__cce_bestpractice_00282_b17681119162411">docker tag hpa-example:latest swr.eu-de.otc.t-systems.com/group/hpa-example:latest</strong></p>
+</li><li id="cce_10_0300__cce_bestpractice_00282_li7803141811520">Push the image to the image repository.<p id="cce_10_0300__cce_bestpractice_00282_p104601826131519"><a name="cce_10_0300__cce_bestpractice_00282_li7803141811520"></a><a name="cce_bestpractice_00282_li7803141811520"></a><strong id="cce_10_0300__cce_bestpractice_00282_b39501017115915">docker push</strong> <strong id="cce_10_0300__cce_bestpractice_00282_b11950181735915">[Image repository address]/[Organization name]/[Image name 2:Tag 2]</strong></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p134606261159">Example:</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p164472310305"><strong id="cce_10_0300__cce_bestpractice_00282_b044823193013">docker push swr.eu-de.otc.t-systems.com/group/hpa-example:latest</strong></p>
+<p id="cce_10_0300__cce_bestpractice_00282_en-us_topic_0112596104_en-us_topic_0075378957_p4521456842">The following information will be returned upon a successful push:</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_en-us_topic_0112596104_en-us_topic_0075378957_screen3521456448">6d6b9812c8ae: Pushed 
+... 
+fe4c16cbf7a4: Pushed 
+latest: digest: sha256:eb7e3bbd*** size: **</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_en-us_topic_0112596104_p17380144320510">To view the pushed image, go to the SWR console and refresh the <strong id="cce_10_0300__cce_bestpractice_00282_b34154514012">My Images</strong> page.</p>
+</li></ol>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0300__cce_bestpractice_00282_section1155620269250"><h4 class="sectiontitle">Creating a Node Pool and a Node Scaling Policy</h4><ol id="cce_10_0300__cce_bestpractice_00282_ol7268320105811"><li id="cce_10_0300__cce_bestpractice_00282_li3268520145818"><span>Log in to the CCE console, access the created cluster, click <strong id="cce_10_0300__cce_bestpractice_00282_b1873216540018">Nodes</strong> on the left, click the <strong id="cce_10_0300__cce_bestpractice_00282_b486901319">Node Pools</strong> tab, and click <strong id="cce_10_0300__cce_bestpractice_00282_b81025520110">Create Node Pool</strong> in the upper right corner.</span></li><li id="cce_10_0300__cce_bestpractice_00282_li1493164713208"><span>Set node pool parameters, add a node with 2 vCPUs and 4 GB memory, and enable auto scaling.</span><p><ul id="cce_10_0300__cce_bestpractice_00282_ul128551015182717"><li id="cce_10_0300__cce_bestpractice_00282_li6855015102710"><strong id="cce_10_0300__cce_bestpractice_00282_b2533140411">Nodes</strong>: Set it to <strong id="cce_10_0300__cce_bestpractice_00282_b20561447614">1</strong>, indicating that one node is created by default when a node pool is created.</li><li id="cce_10_0300__cce_bestpractice_00282_li885531512279"><strong id="cce_10_0300__cce_bestpractice_00282_b18918105464712">Auto Scaling</strong>: Enable the option, meaning that nodes will be automatically created or deleted in the node pool based on the cluster loads.</li><li id="cce_10_0300__cce_bestpractice_00282_li20855141592711"><strong id="cce_10_0300__cce_bestpractice_00282_b3325520513">Max. Nodes</strong>: Set it to <strong id="cce_10_0300__cce_bestpractice_00282_b122204122517">5</strong>, indicating the maximum number of nodes in a node pool.</li><li id="cce_10_0300__cce_bestpractice_00282_li12345126182717"><strong id="cce_10_0300__cce_bestpractice_00282_b48991919516">Specifications</strong>: 2 vCPUs | 4 GiB</li></ul>
+<p id="cce_10_0300__cce_bestpractice_00282_p1285517159277">Retain the defaults for other parameters. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0012.html" target="_blank" rel="noopener noreferrer">Creating a Node Pool</a>.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p138552015132714"></p>
+</p></li><li id="cce_10_0300__cce_bestpractice_00282_li1527517223212"><span>Click <strong id="cce_10_0300__cce_bestpractice_00282_b1649233712">Add-ons</strong> on the left of the cluster console, click <strong id="cce_10_0300__cce_bestpractice_00282_b163304361179">Edit</strong> under the autoscaler add-on, modify the add-on configuration, enable <strong id="cce_10_0300__cce_bestpractice_00282_b1581011521493">Auto node scale-in</strong>, and configure scale-in parameters. For example, trigger scale-in when the node resource utilization is less than 50%.</span><p><p id="cce_10_0300__cce_bestpractice_00282_p10165154173117"></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p888735143116"><span><img id="cce_10_0300__cce_bestpractice_00282_image867395994818" src="en-us_image_0000001533181077.png"></span></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p5804654163410">After the preceding configurations, scale-out is performed based on the pending status of the pod and scale-in is triggered when the node resource utilization decreases.</p>
+</p></li><li id="cce_10_0300__cce_bestpractice_00282_li1126822017585"><span>Click <strong id="cce_10_0300__cce_bestpractice_00282_b1168112406129">Node Scaling</strong> on the left of the cluster console and click <strong id="cce_10_0300__cce_bestpractice_00282_b10655553121218">Create Node Scaling Policy</strong> in the upper right corner. Node scaling policies added here trigger scale-out based on the CPU/memory allocation rate or periodically.</span><p><p id="cce_10_0300__cce_bestpractice_00282_p1695512314355">As shown in the following figure, when the cluster CPU allocation rate is greater than 70%, one node will be added. A node scaling policy needs to be associated with a node pool. Multiple node pools can be associated. When you need to scale nodes, node with proper specifications will be added or reduced from the node pool based on the minimum waste principle. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0209.html" target="_blank" rel="noopener noreferrer">Creating a Node Scaling Policy</a>.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p1060995123612"></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p1184913610364"><span><img id="cce_10_0300__cce_bestpractice_00282_image862291620537" src="en-us_image_0000001482541956.png"></span></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0300__cce_bestpractice_00282_section57571151111612"><h4 class="sectiontitle">Creating a Workload</h4><p id="cce_10_0300__cce_bestpractice_00282_p147957471717">Use the hpa-example image to create a Deployment with one replica. The image path is related to the organization uploaded to the SWR repository and needs to be replaced with the actual value.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen17421916193415">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: hpa-example
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: hpa-example
+  template:
+    metadata:
+      labels:
+        app: hpa-example
+    spec:
+      containers:
+      - name: container-1
+        image: 'hpa-example:latest '  # Replace it with the address of the image you uploaded to SWR.
+        resources:
+          limits:                  # The value of <strong id="cce_10_0300__cce_bestpractice_00282_b2419135411112">limits</strong> must be the same as that of <strong id="cce_10_0300__cce_bestpractice_00282_b19567185971119">requests</strong> to prevent flapping during scaling.
+            cpu: 500m
+            memory: 200Mi
+          requests:
+            cpu: 500m
+            memory: 200Mi
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p1810214323711">Then, create a NodePort Service for the workload so that the workload can be accessed from external networks.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen12925129113814">kind: Service
+apiVersion: v1
+metadata:
+  name: hpa-example
+spec:
+  ports:
+    - name: cce-service-0
+      protocol: TCP
+      port: 80
+      targetPort: 80
+      nodePort: 31144
+  selector:
+    app: hpa-example
+  type: NodePort</pre>
+</div>
+<div class="section" id="cce_10_0300__cce_bestpractice_00282_section1377561942518"><h4 class="sectiontitle">Creating an HPA Policy</h4><p id="cce_10_0300__cce_bestpractice_00282_p187951211154918">Create an HPA policy. As shown below, the policy is associated with the hpa-example workload, and the target CPU usage is 50%.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p1192952410259">There are two other annotations. One annotation defines the CPU thresholds, indicating that scaling is not performed when the CPU usage is between 30% and 70% to prevent impact caused by slight fluctuation. The other is the scaling time window, indicating that after the policy is successfully executed, a scaling operation will not be triggered again in this cooling interval to prevent impact caused by short-term fluctuation.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen2568105812401">apiVersion: autoscaling/v2
+kind: HorizontalPodAutoscaler
+metadata:
+  name: hpa-policy
+  annotations:
+    extendedhpa.metrics: '[{"type":"Resource","name":"cpu","targetType":"Utilization","targetRange":{"low":"30","high":"70"}}]'
+    extendedhpa.option: '{"downscaleWindow":"5m","upscaleWindow":"3m"}'
+spec:
+  scaleTargetRef:
+    kind: Deployment
+    name: hpa-example
+    apiVersion: apps/v1
+  minReplicas: 1
+  maxReplicas: 100
+  metrics:
+    - type: Resource
+      resource:
+        name: cpu
+        targetAverageUtilization: 50</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p196461938154111">Set the parameters as follows if you are using the console.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p536510019427"></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p198996511846"><span><img id="cce_10_0300__cce_bestpractice_00282_image18106194295711" src="en-us_image_0000001482701968.png"></span></p>
+</div>
+<div class="section" id="cce_10_0300__cce_bestpractice_00282_section16503511256"><h4 class="sectiontitle">Observing the Auto Scaling Process</h4><ol id="cce_10_0300__cce_bestpractice_00282_ol17709912133114"><li id="cce_10_0300__cce_bestpractice_00282_li37091512193117"><span>Check the cluster node status. In the following example, there are two nodes.</span><p><pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen179458561066"># kubectl get node
+NAME            STATUS   ROLES    AGE     VERSION
+192.168.0.183   Ready    &lt;none&gt;   2m20s   v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.26    Ready    &lt;none&gt;   55m     v1.17.9-r0-CCE21.1.1.3.B001-17.36.8</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p12280161816719">Check the HPA policy. The CPU usage of the target workload is 0%.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen741314720715"># kubectl get hpa hpa-policy
+NAME         REFERENCE                TARGETS   MINPODS   MAXPODS   REPLICAS   AGE
+hpa-policy   Deployment/hpa-example   0%/50%    1         100       1          4m</pre>
+</p></li><li id="cce_10_0300__cce_bestpractice_00282_li67091124319"><span>Run the following command to access the workload. In the following command, {ip:port} indicates the access address of the workload, which can be queried on the workload details page.</span><p><p id="cce_10_0300__cce_bestpractice_00282_p1894161101019"><strong id="cce_10_0300__cce_bestpractice_00282_b984204041115">while true;do wget -q -O- http://</strong><em id="cce_10_0300__cce_bestpractice_00282_i1584264019117">{ip:port}</em><strong id="cce_10_0300__cce_bestpractice_00282_b5842194061120">; done</strong></p>
+<div class="note" id="cce_10_0300__cce_bestpractice_00282_note1287865920552"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0300__cce_bestpractice_00282_p15878105910555">If no EIP is displayed, the cluster node has not been assigned any EIP. You need to create one, bind it to the node, and synchronize node data. .</p>
+</div></div>
+<p id="cce_10_0300__cce_bestpractice_00282_p11399441161314">Observe the scaling process of the workload.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen1286116211417"># kubectl get hpa hpa-policy --watch
+NAME         REFERENCE                TARGETS    MINPODS   MAXPODS   REPLICAS   AGE
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       1          4m
+hpa-policy   Deployment/hpa-example   190%/50%   1         100       1          4m23s
+hpa-policy   Deployment/hpa-example   190%/50%   1         100       4          4m31s
+hpa-policy   Deployment/hpa-example   200%/50%   1         100       4          5m16s
+hpa-policy   Deployment/hpa-example   200%/50%   1         100       4          6m16s
+hpa-policy   Deployment/hpa-example   85%/50%    1         100       4          7m16s
+hpa-policy   Deployment/hpa-example   81%/50%    1         100       4          8m16s
+hpa-policy   Deployment/hpa-example   81%/50%    1         100       7          8m31s
+hpa-policy   Deployment/hpa-example   57%/50%    1         100       7          9m16s
+hpa-policy   Deployment/hpa-example   51%/50%    1         100       7          10m
+hpa-policy   Deployment/hpa-example   58%/50%    1         100       7          11m</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p5983156132017">You can see that the CPU usage of the workload is 190% at 4m23s, which exceeds the target value. In this case, scaling is triggered to expand the workload to four replicas/pods. In the subsequent several minutes, the CPU usage does not decrease until 7m16s. This is because the new pods may not be successfully created. The possible cause is that resources are insufficient and the pods are in Pending state. During this period, nodes are added.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p47248443237">At 7m16s, the CPU usage decreases, indicating that the pods are successfully created and start to bear traffic. The CPU usage decreases to 81% at 8m, still greater than the target value (50%) and the high threshold (70%). Therefore, 7 pods are added at 9m16s, and the CPU usage decreases to 51%, which is within the range of 30% to 70%. From then on, the number of pods remains 7.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p274817541218">In the following output, you can see the workload scaling process and the time when the HPA policy takes effect.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen8255172931211"># kubectl describe deploy hpa-example
+...
+Events:
+  Type    Reason             Age    From                   Message
+  ----    ------             ----   ----                   -------
+  Normal  ScalingReplicaSet  25m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 1
+  Normal  ScalingReplicaSet  20m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 4
+  Normal  ScalingReplicaSet  16m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 7
+# kubectl describe hpa hpa-policy
+...
+Events:
+  Type    Reason             Age    From                       Message
+  ----    ------             ----   ----                       -------
+  Normal  SuccessfulRescale  20m    horizontal-pod-autoscaler  New size: 4; reason: cpu resource utilization (percentage of request) above target
+  Normal  SuccessfulRescale  16m    horizontal-pod-autoscaler  New size: 7; reason: cpu resource utilization (percentage of request) above target</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p5151426275">Check the number of nodes. The following output shows that two nodes are added.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen1840719131288"># kubectl get node
+NAME            STATUS   ROLES    AGE     VERSION
+192.168.0.120   Ready    &lt;none&gt;   3m5s    v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.136   Ready    &lt;none&gt;   6m58s   v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.183   Ready    &lt;none&gt;   18m     v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.26    Ready    &lt;none&gt;   71m     v1.17.9-r0-CCE21.1.1.3.B001-17.36.8</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p11952164719209">You can also view the scaling history on the console. For example, the CA policy is executed once when the CPU allocation rate in the cluster is greater than 70%, and the number of nodes in the node pool is increased from 2 to 3. The new node is automatically added by autoscaler based on the pending state of pods in the initial phase of HPA.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p1443395018309">The node scaling process is as follows:</p>
+<ol type="a" id="cce_10_0300__cce_bestpractice_00282_ol3874121133114"><li id="cce_10_0300__cce_bestpractice_00282_li98740118312">After the number of pods changes to 4, the pods are in Pending state due to insufficient resources. As a result, the default scale-out policy of the autoscaler add-on is triggered, and the number of nodes is increased by one.</li><li id="cce_10_0300__cce_bestpractice_00282_li17073754110">The second node scale-out is triggered because the CPU allocation rate in the cluster is greater than 70%. As a result, the number of nodes is increased by one, which is recorded in the scaling history on the console. Scaling based on the allocation rate ensures that the cluster has sufficient resources.</li></ol>
+</p></li><li id="cce_10_0300__cce_bestpractice_00282_li20709712153119"><span>Stop accessing the workload and check the number of pods.</span><p><pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen92632543319"># kubectl get hpa hpa-policy --watch
+NAME         REFERENCE                TARGETS    MINPODS   MAXPODS   REPLICAS   AGE
+hpa-policy   Deployment/hpa-example   50%/50%    1         100       7          12m
+hpa-policy   Deployment/hpa-example   21%/50%    1         100       7          13m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       7          14m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       7          18m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          18m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          23m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          23m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       1          23m</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p191531235143215">You can see that the CPU usage is 21% at 13m. The number of pods is reduced to 3 at 18m, and then reduced to 1 at 23m.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p469963519185">In the following output, you can see the workload scaling process and the time when the HPA policy takes effect.</p>
+<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen5858175531817"># kubectl describe deploy hpa-example
+...
+Events:
+  Type    Reason             Age    From                   Message
+  ----    ------             ----   ----                   -------
+  Normal  ScalingReplicaSet  25m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 1
+  Normal  ScalingReplicaSet  20m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 4
+  Normal  ScalingReplicaSet  16m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 7
+  Normal  ScalingReplicaSet  6m28s  deployment-controller  Scaled down replica set hpa-example-79dd795485 to 3
+  Normal  ScalingReplicaSet  72s    deployment-controller  Scaled down replica set hpa-example-79dd795485 to 1
+# kubectl describe hpa hpa-policy
+...
+Events:
+  Type    Reason             Age    From                       Message
+  ----    ------             ----   ----                       -------
+  Normal  SuccessfulRescale  20m    horizontal-pod-autoscaler  New size: 4; reason: cpu resource utilization (percentage of request) above target
+  Normal  SuccessfulRescale  16m    horizontal-pod-autoscaler  New size: 7; reason: cpu resource utilization (percentage of request) above target
+  Normal  SuccessfulRescale  6m45s  horizontal-pod-autoscaler  New size: 3; reason: All metrics below target
+  Normal  SuccessfulRescale  90s    horizontal-pod-autoscaler  New size: 1; reason: All metrics below target</pre>
+<p id="cce_10_0300__cce_bestpractice_00282_p101205281913">You can also view the HPA policy execution history on the console. Wait until the one node is reduced.</p>
+<p id="cce_10_0300__cce_bestpractice_00282_p1859372832014">The reason why the other two nodes in the node pool are not reduced is that they both have pods in the kube-system namespace (and these pods are not created by DaemonSets). For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0296.html" target="_blank" rel="noopener noreferrer">Node Scaling Mechanisms</a>.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0300__cce_bestpractice_00282_section1989492202616"><h4 class="sectiontitle">Summary</h4><p id="cce_10_0300__cce_bestpractice_00282_p17436163516389">Using HPA and CA can easily implement auto scaling in most scenarios. In addition, the scaling process of nodes and pods can be easily observed.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0207.html">Auto Scaling</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0301.html b/docs/cce/umn/cce_10_0301.html
new file mode 100644
index 00000000..4b761d90
--- /dev/null
+++ b/docs/cce/umn/cce_10_0301.html
@@ -0,0 +1,141 @@
+<a name="cce_10_0301"></a><a name="cce_10_0301"></a>
+
+<h1 class="topictitle1">Performing In-place Upgrade</h1>
+<div id="body0000001110681922">
+    <div class="section" id="cce_10_0301__section10924122311617">
+        <h4 class="sectiontitle">Scenario</h4>
+        <p id="cce_10_0301__p19245829101612">You can upgrade your clusters to a newer version on the CCE console.</p>
+        <p id="cce_10_0301__p10143161620134">Before the upgrade, learn about the target version to which each CCE
+            cluster can be upgraded in what ways, and the upgrade impacts. For details, see <a
+                href="cce_10_0197.html">Upgrade Overview</a> and <a href="cce_10_0302.html">Before You Start</a>.</p>
+    </div>
+    <div class="section" id="cce_10_0301__section2070072554817">
+        <h4 class="sectiontitle">Description</h4>
+        <ul id="cce_10_0301__ul3828175415018">
+            <li id="cce_10_0301__li982819549505">An in-place upgrade updates the Kubernetes components on cluster nodes,
+                without changing their OS version. </li>
+            <li id="cce_10_0301__li12829175411509">Data plane nodes are upgraded in batches. By default, they are
+                prioritized based on their CPU, memory, and <a
+                    href="https://kubernetes.io/docs/tasks/run-application/configure-pdb/" target="_blank"
+                    rel="noopener noreferrer">PodDisruptionBudgets (PDBs)</a>. You can also set the priorities according
+                to your service requirements.</li>
+        </ul>
+    </div>
+    <div class="section" id="cce_10_0301__section1919918391549">
+        <h4 class="sectiontitle">Precautions</h4>
+        <ul id="cce_10_0301__ul19491118352">
+            <li id="cce_10_0301__li194914183512">During the cluster upgrade, the system will automatically upgrade
+                add-ons to a version compatible with the target cluster version. Do not uninstall or reinstall add-ons
+                during the cluster upgrade.</li>
+            <li id="cce_10_0301__li449141819517">Before the upgrade, ensure that all add-ons are running. If an add-on
+                fails to be upgraded, rectify the fault and try again.</li>
+            <li id="cce_10_0301__li754953003010">During the upgrade, CCE checks the add-on running status. Some add-ons
+                (such as coredns) require at least two nodes to run normally. In this case, at least two nodes must be
+                available for the upgrade.</li>
+        </ul>
+        <p id="cce_10_0301__p12755105115414">For more information, see <a href="cce_10_0302.html">Before You Start</a>.
+        </p>
+    </div>
+    <div class="section" id="cce_10_0301__section1687417142026">
+        <h4 class="sectiontitle">Procedure</h4>
+        <p id="cce_10_0301__p1371062222518">This section describes how to upgrade a CCE cluster of v1.15 or later. For
+            other versions, see <a href="cce_10_0120.html">Performing Replace/Rolling Upgrade</a>.</p>
+        <ol id="cce_10_0301__ol226615082711">
+            <li id="cce_10_0301__li172448111993"><span>Log in to the CCE console and click the cluster name to access
+                    the cluster.</span></li>
+            <li id="cce_10_0301__li1524420111793"><span>In the navigation pane, choose <strong
+                        id="cce_10_0301__b1348251612555">Cluster Upgrade</strong>. You can view the new version
+                    available for upgrade on the right.</span>
+                <p>
+                <p id="cce_10_0301__p09562431410">Check the version information, last update/upgrade time, available
+                    upgrade version, and upgrade history of the current cluster.</p>
+                <p id="cce_10_0301__p12122131411">The cluster upgrade goes through pre-upgrade check, add-on
+                    upgrade/uninstallation, master node upgrade, worker node upgrade, and post-upgrade processing.</p>
+                <div class="note" id="cce_10_0301__note1122114205144"><img
+                        src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span>
+                    <div class="notebody">
+                        <ul id="cce_10_0301__ul1322132019147">
+                            <li id="cce_10_0301__li18221120171411">If your cluster version is up-to-date, the <strong
+                                    id="cce_10_0301__b5689758191218">Upgrade</strong> button is grayed out.</li>
+                            <li id="cce_10_0301__li22211720141413">If your cluster status is abnormal or there are
+                                abnormal add-ons, the <strong id="cce_10_0301__b5242902029">Upgrade</strong> button is
+                                dimmed. Perform a check by referring to <a href="cce_10_0302.html">Before You Start</a>.
+                            </li>
+                        </ul>
+                    </div>
+                </div>
+                </p>
+            </li>
+            <li id="cce_10_0301__li984983714109"><span>Click <strong id="cce_10_0301__b111315443241">Upgrade</strong> or <strong id="cce_10_0301__b15358185672520">Install Patch</strong> on
+                    the right. Set the upgrade parameters.</span>
+                <p>
+                <ul id="cce_10_0301__ul178452043143016">
+                    <li id="cce_10_0301__li78451143153020"><strong id="cce_10_0301__b12119145820111">New
+                            Version</strong>: Select the Kubernetes version to which the cluster can be upgraded.</li>
+                    <li id="cce_10_0301__li19219343511">(Optional) <strong id="cce_10_0301__b65418411058">Cluster
+                            Backup</strong>: Determine whether to back up the entire master node. This backup mode is
+                        recommended.<p id="cce_10_0301__p1647478566">A manual confirmation is required for backing up
+                            the entire master node. The backup process uses the Cloud Backup and Recovery (CBR) service
+                            and takes about 20 minutes. If there are many cloud backup tasks at the current site, the
+                            backup time may be prolonged. You are advised to back up the master node.</p>
+                    </li>
+                    <li id="cce_10_0301__li7676104618303"><strong id="cce_10_0301__b127845449212">Add-on Upgrade
+                            Configuration</strong>: Add-ons that have been installed in your cluster are listed. During
+                        the cluster upgrade, the system automatically upgrades the add-ons to be compatible with the
+                        target cluster version. You can click <strong id="cce_10_0301__b12141811531">Set</strong> to
+                        re-define the add-on parameters.<div class="note" id="cce_10_0301__note1131413214018"><img
+                                src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span>
+                            <div class="notebody">
+                                <p id="cce_10_0301__p969682654414">If a red dot <span><img
+                                            id="cce_10_0301__image202911371135"
+                                            src="en-us_image_0000001244101223.png"></span> is displayed on the right of
+                                    an add-on, the add-on is incompatible with the target cluster version. During the
+                                    upgrade, the add-on will be uninstalled and then re-installed. Ensure that the
+                                    add-on parameters are correctly configured.</p>
+                            </div>
+                        </div>
+                    </li>
+                    <li id="cce_10_0301__li1915055743018"><strong id="cce_10_0301__b1295375252">Node Upgrade
+                            Configuration</strong>: Before setting the node upgrade priority, you need to select a node
+                        pool. Nodes and node pools will be upgraded according to the priorities you specify. You can set
+                        the maximum number of nodes to be upgraded in a batch, or set priorities for nodes to be
+                        upgraded. If you do not set this parameter, the system will determine the nodes to upgrade in
+                        batches based on specific conditions.<ul id="cce_10_0301__ul48277236304">
+                            <li id="cce_10_0301__li1014817517255"><strong id="cce_10_0301__b956717611">Add Upgrade
+                                    Priority</strong>: Add upgrade priorities for node pools.</li>
+                            <li id="cce_10_0301__li1357212559289"><strong id="cce_10_0301__b1293814317714">Add Node
+                                    Priority</strong>: After adding a node pool priority, you can set the upgrade
+                                sequence of nodes in the node pool. The system upgrades nodes in the sequence you
+                                specify. If you skip this setting, the system upgrades nodes based on the default
+                                policy.</li>
+                        </ul>
+                    </li>
+                </ul>
+                </p>
+            </li>
+            <li id="cce_10_0301__li10560105618205"><span>Read the upgrade instructions carefully, and select <strong
+                        id="cce_10_0301__b17774421491">I have read and agree to Upgrade Precautions</strong>. Click
+                    <strong id="cce_10_0301__b191816471994">Upgrade</strong>.</span></li>
+            <li id="cce_10_0301__li716763219239"><span>After you click <strong
+                        id="cce_10_0301__b16125132413119">Upgrade</strong>, the cluster upgrade starts. You can view the
+                    upgrade process in the lower part of the page.</span>
+                <p>
+                <p id="cce_10_0301__p17419642610">During the upgrade, you can click <strong
+                        id="cce_10_0301__b1726946131116">Suspend</strong> on the right to suspend the cluster upgrade.
+                    To continue the upgrade, click <strong id="cce_10_0301__b82644641119">Continue</strong>.</p>
+                <p id="cce_10_0301__p5985504584">If an upgrade failure message is displayed during the cluster upgrade,
+                    rectify the fault as prompted and try again.</p>
+                </p>
+            </li>
+            <li id="cce_10_0301__li365851731914"><span>When the upgrade progress reaches 100%, the cluster is upgraded.
+                    The version information will be properly displayed, and no upgrade is required.</span></li>
+            <li id="cce_10_0301__li24618207291"><span>After the upgrade is complete, verify the cluster Kubernetes
+                    version on the <strong id="cce_10_0301__b18871244162219">Clusters</strong> page.</span></li>
+        </ol>
+    </div>
+</div>
+<div>
+    <div class="familylinks">
+        <div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+    </div>
+</div>
\ No newline at end of file
diff --git a/docs/cce/umn/cce_10_0302.html b/docs/cce/umn/cce_10_0302.html
new file mode 100644
index 00000000..acbcbe16
--- /dev/null
+++ b/docs/cce/umn/cce_10_0302.html
@@ -0,0 +1,114 @@
+<a name="cce_10_0302"></a><a name="cce_10_0302"></a>
+
+<h1 class="topictitle1">Before You Start</h1>
+<div id="body0000001157002327"><p id="cce_10_0302__p34419457476">Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see <a href="cce_10_0197.html">Upgrade Overview</a>.</p>
+<div class="section" id="cce_10_0302__section16520163082115"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0302__ul10508151218313"><li id="cce_10_0302__li132762210555"><strong id="cce_10_0302__b3961612125514">Upgraded clusters cannot be rolled back. Therefore, perform the upgrade during off-peak hours to minimize the impact on your services.</strong></li><li id="cce_10_0302__li189442024405">Do not <strong id="cce_10_0302__b92016251345">shut down, restart, or delete nodes</strong> during cluster upgrade. Otherwise, the upgrade fails.</li><li id="cce_10_0302__li108483591008">Before upgrading a cluster, <strong id="cce_10_0302__b1781554833416">disable auto scaling policies</strong> to prevent node scaling during the upgrade. Otherwise, the upgrade fails.</li><li id="cce_10_0302__li103137272012">If you locally modify the configuration of a cluster node, the cluster upgrade may fail or the configuration may be lost after the upgrade. Therefore, modify the configurations on the CCE console (cluster or node pool list page) so that they will be automatically inherited during the upgrade.</li><li id="cce_10_0302__li172416189312">During the cluster upgrade, the running workload services will not be interrupted, but access to the API server will be temporarily interrupted.</li><li id="cce_10_0302__li750198619">Before upgrading the cluster, check whether the cluster is healthy. </li><li id="cce_10_0302__li97621713480">To ensure data security, you are advised to back up data before upgrading the cluster. During the upgrade, you are not advised to perform any operations on the cluster.</li><li id="cce_10_0302__li6288174774019">During the cluster upgrade, the <span class="parmname" id="cce_10_0302__parmname086473264112"><b>node.kubernetes.io/upgrade</b></span> taint (the effect is <span class="parmname" id="cce_10_0302__parmname164081438124217"><b>NoSchedule</b></span>) is added to the node. After the cluster upgrade is complete, the taint is removed. Do not add taints with the same key name on the node. Even if the taints have different effects, they may be deleted by the system by mistake after the upgrade.</li></ul>
+</div>
+<div class="section" id="cce_10_0302__section28396102210"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0302__ul197771983210"><li id="cce_10_0302__li77774983217">Currently, only CCE clusters consisting of VM nodes can be upgraded.</li><li id="cce_10_0302__li15441741102515">After the cluster is upgraded, if the containerd vulnerability of the container engine is fixed in <a href="cce_10_0068.html">Cluster Version Release Notes</a>, you need to manually restart containerd for the upgrade to take effect. The same applies to the existing pods.</li><li id="cce_10_0302__li11907171333211">If initContainer or Istio is used in the in-place upgrade of a cluster of v1.15, pay attention to the following restrictions:<p id="cce_10_0302__p429993018385"><a name="cce_10_0302__li11907171333211"></a><a name="li11907171333211"></a>In kubelet 1.16 and later versions, <a href="https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/" target="_blank" rel="noopener noreferrer">QoS classes</a> are different from those in earlier versions. In kubelet 1.15 and earlier versions, only containers in <strong id="cce_10_0302__b132555619306">spec.containers</strong> are counted. In kubelet 1.16 and later versions, containers in both <strong id="cce_10_0302__b1635316653118">spec.containers</strong> and <strong id="cce_10_0302__b636919893112">spec.initContainers</strong> are counted. The QoS class of a pod will change after the upgrade. As a result, the container in the pod restarts. You are advised to modify the QoS class of the service container before the upgrade to avoid this problem. For details, see <a href="#cce_10_0302__table10713231143911">Table 1</a>.</p>
+
+<div class="tablenoborder"><a name="cce_10_0302__table10713231143911"></a><a name="table10713231143911"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0302__table10713231143911" frame="border" border="1" rules="all"><caption><b>Table 1 </b>QoS class changes before and after the upgrade</caption><thead align="left"><tr id="cce_10_0302__row15872113111394"><th align="left" class="cellrowborder" valign="top" width="21.029999999999998%" id="mcps1.3.3.2.3.2.2.5.1.1"><p id="cce_10_0302__p1187243114398">Init Container (Calculated Based on spec.initContainers)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="32.029999999999994%" id="mcps1.3.3.2.3.2.2.5.1.2"><p id="cce_10_0302__p2872103117391">Service Container (Calculated Based on spec.containers)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.77%" id="mcps1.3.3.2.3.2.2.5.1.3"><p id="cce_10_0302__p1872103123910">Pod (Calculated Based on spec.containers and spec.initContainers)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.17%" id="mcps1.3.3.2.3.2.2.5.1.4"><p id="cce_10_0302__p15662458395">Impacted or Not</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0302__row8873163113399"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1487312310395">Guaranteed</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p1887343143917">Besteffort</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p12873123123916">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p1566134512392">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row187318311393"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1873133113918">Guaranteed</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p9873143117395">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p11873123119398">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p15661145143916">No</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row98731931173919"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p198731231103911">Guaranteed</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p1587363111395">Guaranteed</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p19873193193910">Guaranteed</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p16153160406">No</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row38731931163912"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1873731173913">Besteffort</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p14873173163917">Besteffort</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p178735312393">Besteffort</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p16211416114014">No</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row13873103103915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p13873133114399">Besteffort</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p4873123173916">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p1787315314391">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p52715163404">No</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row138731031183915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p187393113399">Besteffort</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p887383163919">Guaranteed</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p88732031133915">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p7954610164017">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row19873153163914"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p287313311399">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p17873153183912">Besteffort</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p1612015308455">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p5357101016408">Yes</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row087316312398"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1587383119390">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p2873131163913">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p013073012452">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p277154516391">No</p>
+</td>
+</tr>
+<tr id="cce_10_0302__row087311312391"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1087313153916">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p12873103193912">Guaranteed</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p121379308456">Burstable</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p360315910408">Yes</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0302__section194915244494"><h4 class="sectiontitle">Upgrade Backup</h4><p id="cce_10_0302__p9276123084912">How to back up a node:</p>
+<ul id="cce_10_0302__ul1536333744916"><li id="cce_10_0302__li636317377497">etcd database backup: CCE automatically backs up the etcd database during the cluster upgrade.</li><li id="cce_10_0302__li17363203764919">Master node backup (recommended, <strong id="cce_10_0302__b176491857145810">manual confirmation required</strong>): On the upgrade confirmation page, click <strong id="cce_10_0302__b3655125710585">Backup</strong> to back up the entire master node of the cluster. The backup process uses the Cloud Backup and Recovery (CBR) service and takes about 20 minutes. If there are many cloud backup tasks at the current site, the backup time may be prolonged.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0305.html b/docs/cce/umn/cce_10_0305.html
new file mode 100644
index 00000000..d236fb11
--- /dev/null
+++ b/docs/cce/umn/cce_10_0305.html
@@ -0,0 +1,22 @@
+<a name="cce_10_0305"></a><a name="cce_10_0305"></a>
+
+<h1 class="topictitle1">Storage (FlexVolume)</h1>
+<div id="body0000001113882212"><p id="cce_10_0305__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0306.html">FlexVolume Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0343.html">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0309.html">Using EVS Disks as Storage Volumes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0322.html">Using OBS Buckets as Storage Volumes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0315.html">Using SFS File Systems as Storage Volumes</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0306.html b/docs/cce/umn/cce_10_0306.html
new file mode 100644
index 00000000..c3741037
--- /dev/null
+++ b/docs/cce/umn/cce_10_0306.html
@@ -0,0 +1,58 @@
+<a name="cce_10_0306"></a><a name="cce_10_0306"></a>
+
+<h1 class="topictitle1">FlexVolume Overview</h1>
+<div id="body0000001113722316"><p id="cce_10_0306__p1346316211126">In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.</p>
+<p id="cce_10_0306__p1825118142">In CCE, container storage is backed both by Kubernetes-native objects, such as emptyDir, hostPath, secret, and ConfigMap, and by cloud storage services.</p>
+<p id="cce_10_0306__p20981541203916">CCE clusters of <strong id="cce_10_0306__b17707143620405">1.13 and earlier versions</strong> use the <a href="cce_10_0127.html">storage-driver</a> add-on to connect to cloud storage services to support Kubernetes FlexVolume driver for container storage. The FlexVolume driver has been deprecated in favor of the Container Storage Interface (CSI). <strong id="cce_10_0306__b1873013549">The everest add-on for CSI is installed in CCE clusters of 1.15 and later versions by default.</strong> For details, see <a href="cce_10_0307.html">Overview</a>.</p>
+<div class="note" id="cce_10_0306__note138694249268"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0306__ul1771212583295"><li id="cce_10_0306__li177121458152913">In CCE clusters earlier than Kubernetes 1.13, end-to-end capacity expansion of container storage is not supported, and the PVC capacity is inconsistent with the storage capacity.</li><li id="cce_10_0306__li771285892914"><strong id="cce_10_0306__b1685617101355">In a cluster of v1.13 or earlier</strong>, when an upgrade or bug fix is available for storage functionalities, you only need to install or upgrade the storage-driver add-on. Upgrading the cluster or creating a cluster is not required.</li></ul>
+</div></div>
+<div class="section" id="cce_10_0306__section_test"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0306__ul113072911510"><li id="cce_10_0306__li10330171552010">For clusters created in CCE, Kubernetes v1.15.11 is a transitional version in which the FlexVolume plug-in (<a href="cce_10_0127.html">storage-driver</a>) is compatible with the CSI plug-in (<a href="cce_10_0066.html">everest</a>). Clusters of v1.17 and later versions do not support FlexVolume anymore. You need to use the everest add-on.</li><li id="cce_10_0306__li25582642815">The FlexVolume plug-in will be maintained by Kubernetes developers, but new functionality will only be added to CSI. You are advised not to create storage that connects to the FlexVolume plug-in (storage-driver) in CCE anymore. Otherwise, the storage resources may not function normally.</li></ul>
+</div>
+<div class="section" id="cce_10_0306__section366174392017"><h4 class="sectiontitle">Checking Storage Add-ons</h4><ol id="cce_10_0306__ol235517511467"><li id="cce_10_0306__li183555515614"><span>Log in to the CCE console.</span></li><li id="cce_10_0306__li1333875311614"><span>In the navigation tree on the left, click <strong id="cce_10_0306__b179577122116">Add-ons</strong>.</span></li><li id="cce_10_0306__li12239545772"><span>Click the <strong id="cce_10_0306__b2392191441118">Add-on Instance</strong> tab.</span></li><li id="cce_10_0306__li86216391082"><span>Select a cluster in the upper right corner. The default storage add-on installed during cluster creation is displayed.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0306__section135901429195719"><h4 class="sectiontitle">Differences Between CSI and FlexVolume Plug-ins</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0306__cce_10_0307_table9704165418310" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CSI and FlexVolume</caption><thead align="left"><tr id="cce_10_0306__cce_10_0307_row1757135413114"><th align="left" class="cellrowborder" valign="top" width="16.520000000000003%" id="mcps1.3.7.2.2.5.1.1"><p id="cce_10_0306__cce_10_0307_p177571954173119">Kubernetes Solution</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.450000000000001%" id="mcps1.3.7.2.2.5.1.2"><p id="cce_10_0306__cce_10_0307_p105501460334">CCE Add-on</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.57%" id="mcps1.3.7.2.2.5.1.3"><p id="cce_10_0306__cce_10_0307_p575715443110">Feature</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.46%" id="mcps1.3.7.2.2.5.1.4"><p id="cce_10_0306__cce_10_0307_p97571054183119">Recommendation</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0306__cce_10_0307_row5119842113215"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.7.2.2.5.1.1 "><p id="cce_10_0306__cce_10_0307_p97574546316">CSI</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.7.2.2.5.1.2 "><p id="cce_10_0306__cce_10_0307_p0550106143311">Everest</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.7.2.2.5.1.3 "><p id="cce_10_0306__cce_10_0307_p137578549318">CSI was developed as a standard for exposing arbitrary block and file storage storage systems to containerized workloads. Using CSI, third-party storage providers can deploy plugins exposing new storage systems in Kubernetes without having to touch the core Kubernetes code. In CCE, the everest add-on is installed by default in clusters of Kubernetes v1.15 and later to connect to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
+<p id="cce_10_0306__cce_10_0307_p11757754123115">The everest add-on consists of two parts:</p>
+<ul id="cce_10_0306__cce_10_0307_ul6619114334611"><li id="cce_10_0306__cce_10_0307_li1961910436465"><strong id="cce_10_0306__cce_10_0307_b5589145713475">everest-csi-controller</strong> for storage volume creation, deletion, capacity expansion, and cloud disk snapshots</li><li id="cce_10_0306__cce_10_0307_li7619154310461"><strong id="cce_10_0306__cce_10_0307_b283716015485">everest-csi-driver</strong> for mounting, unmounting, and formatting storage volumes on nodes</li></ul>
+<p id="cce_10_0306__cce_10_0307_p1387091118582">For details, see <a href="cce_10_0066.html">everest</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.7.2.2.5.1.4 "><p id="cce_10_0306__cce_10_0307_p516783510588">The <a href="cce_10_0066.html">everest</a> add-on is installed by default in clusters of <strong id="cce_10_0306__cce_10_0307_b473519624815">v1.15 and later</strong>. CCE will mirror the Kubernetes community by providing continuous support for updated CSI capabilities.</p>
+</td>
+</tr>
+<tr id="cce_10_0306__cce_10_0307_row4757195473110"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.7.2.2.5.1.1 "><p id="cce_10_0306__cce_10_0307_p1175710548316">Flexvolume</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.7.2.2.5.1.2 "><p id="cce_10_0306__cce_10_0307_p45508612335">storage-driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.7.2.2.5.1.3 "><p id="cce_10_0306__cce_10_0307_p19757145483115">FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes since version 1.2 (before CSI). CCE provided FlexVolume volumes through the storage-driver add-on installed in clusters of Kubernetes v1.13 and earlier versions. This add-on connects clusters to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
+<p id="cce_10_0306__cce_10_0307_p16757654153113">For details, see <a href="cce_10_0127.html">storage-driver</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.7.2.2.5.1.4 "><p id="cce_10_0306__cce_10_0307_p18569134265811">For the created clusters of <strong id="cce_10_0306__cce_10_0307_b13864151019332">v1.13 or earlier</strong>, the installed FlexVolume plug-in (CCE add-on <a href="cce_10_0127.html">storage-driver</a>) can still be used. CCE stops providing update support for this add-on, and you are advised to <a href="cce_10_0197.html">upgrade these clusters</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0306__cce_10_0307_note838817912503"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0306__cce_10_0307_ul1596014104509"><li id="cce_10_0306__cce_10_0307_li1796017103508">A cluster can use only one type of storage plug-ins.</li><li id="cce_10_0306__cce_10_0307_li10960910135015">The FlexVolume plug-in cannot be replaced by the CSI plug-in in clusters of v1.13 or earlier. You can only upgrade these clusters. For details, see <a href="cce_10_0197.html#cce_10_0197__section19981121648">Cluster Upgrade</a>.</li></ul>
+</div></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0307.html b/docs/cce/umn/cce_10_0307.html
new file mode 100644
index 00000000..4acf97a4
--- /dev/null
+++ b/docs/cce/umn/cce_10_0307.html
@@ -0,0 +1,234 @@
+<a name="cce_10_0307"></a><a name="cce_10_0307"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body0000001160442125"><div class="section" id="cce_10_0307__section5296105719142"><h4 class="sectiontitle">Volume</h4><p id="cce_10_0307__p1388234820249">On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The Kubernetes volume abstraction solves both of these problems. Volumes cannot be independently created, but defined in the pod spec. All containers in a pod can access its volumes, but the volumes must have been mounted to any directory in a container.</p>
+<p id="cce_10_0307__p1271419187710">The following figure shows how a storage volume is used between containers in a pod.</p>
+<p id="cce_10_0307__p9405145214716"><span><img id="cce_10_0307__image1835215316361" src="en-us_image_0000001199501276.png"></span></p>
+<p id="cce_10_0307__p1371417181574">A volume will no longer exist if the pod to which it is mounted does not exist. However, files in the volume may outlive the volume, depending on the volume type.</p>
+</div>
+<div class="section" id="cce_10_0307__section16559121287"><a name="cce_10_0307__section16559121287"></a><a name="section16559121287"></a><h4 class="sectiontitle">Volume Types</h4><p id="cce_10_0307__p171441813712">Volumes can be classified into local volumes and cloud volumes.</p>
+<ul id="cce_10_0307__ul833618212816"><li id="cce_10_0307__li93401121469">Local volumes<div class="p" id="cce_10_0307__p1633215515112"><a name="cce_10_0307__li93401121469"></a><a name="li93401121469"></a>CCE supports the following five types of local volumes. For details about how to use them, see <a href="cce_10_0377.html">Using Local Disks as Storage Volumes</a>.<ul id="cce_10_0307__ul5861174111116"><li id="cce_10_0307__li38611848115">emptyDir: an empty volume used for temporary storage</li><li id="cce_10_0307__li586113461117">hostPath: mounts a directory on a host (node) to your container for reading data from the host.</li><li id="cce_10_0307__li186117431113">ConfigMap: references the data stored in a ConfigMap for use by containers.</li><li id="cce_10_0307__li1786115431115">Secret: references the data stored in a secret for use by containers.</li></ul>
+</div>
+</li><li id="cce_10_0307__li1233611211389">Cloud volumes <p id="cce_10_0307__p1953724117126"><a name="cce_10_0307__li1233611211389"></a><a name="li1233611211389"></a>CCE supports the following types of cloud volumes:</p>
+<ul id="cce_10_0307__ul1342413161219"><li id="cce_10_0307__li169205531117">EVS</li><li id="cce_10_0307__li796713710121">SFS Turbo</li><li id="cce_10_0307__li472342851217">OBS</li><li id="cce_10_0307__li2476232121214">SFS</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0307__section187922219447"><h4 class="sectiontitle">CSI</h4><p id="cce_10_0307__p6608726201">You can use Kubernetes Container Storage Interface (CSI) to develop plug-ins to support specific storage volumes.</p>
+<p id="cce_10_0307__p2650107194411">CCE developed the storage add-on <a href="cce_10_0066.html">everest</a> for you to use cloud storage services, such as EVS and OBS. You can install this add-on when creating a cluster.</p>
+</div>
+<div class="section" id="cce_10_0307__section1181185971610"><h4 class="sectiontitle">PV and PVC</h4><p id="cce_10_0307__p188370425547">Kubernetes provides PersistentVolumes (PVs) and PersistentVolumeClaims (PVCs) to abstract details of how storage is provided from how it is consumed. You can request specific size of storage when needed, just like pods can request specific levels of resources (CPU and memory).</p>
+<ul id="cce_10_0307__ul167231941316"><li id="cce_10_0307__li1672316411914">PV: A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource. </li><li id="cce_10_0307__li1872304120111">PVC: A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are dynamically created. When creating a PVC, you need to describe the attributes of the requested persistent storage, such as the size of the volume and the read/write permissions.</li></ul>
+<p id="cce_10_0307__p46895594259">You can bind PVCs to PVs in a pod so that the pod can use storage resources. The following figure shows the relationship between PVs and PVCs.</p>
+<div class="fignone" id="cce_10_0307__fig149881117222"><span class="figcap"><b>Figure 1 </b>PVC-to-PV binding</span><br><span><img id="cce_10_0307__image48944742212" src="en-us_image_0000001244141191.png"></span></div>
+<p id="cce_10_0307__p55089134460">PVs describes storage resources in the cluster. PVCs are requests for those resources. The following sections will describe how to use kubectl to connect to storage resources.</p>
+<p id="cce_10_0307__p670213323418">If you do not want to create storage resources or PVs manually, you can use <a href="#cce_10_0307__section19926174743310">StorageClasses</a>.</p>
+</div>
+<div class="section" id="cce_10_0307__section19926174743310"><a name="cce_10_0307__section19926174743310"></a><a name="section19926174743310"></a><h4 class="sectiontitle">StorageClass</h4><p id="cce_10_0307__p6816345818">StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as csi-disk, csi-nas, and csi-obs by default. When defining a PVC, you can use a StorageClassName to create a PV of the corresponding type and automatically create underlying storage resources.</p>
+<p id="cce_10_0307__p5271142713310">You can run the following command to query the storage classes that CCE supports. You can use the CSI plug-in provided by CCE to customize a storage class, which functions similarly as the default storage classes in CCE.</p>
+<pre class="screen" id="cce_10_0307__screen2027110274334"># kubectl get sc
+NAME                PROVISIONER                     AGE
+csi-disk            everest-csi-provisioner         17d          # Storage class for EVS disks
+csi-disk-topology   everest-csi-provisioner         17d          # Storage class for EVS disks with delayed binding
+csi-nas             everest-csi-provisioner         17d          # Storage class for SFS file systems
+csi-obs             everest-csi-provisioner         17d          # Storage class for OBS buckets</pre>
+<p id="cce_10_0307__p1348743213278">After a StorageClass is set, PVs can be automatically created and maintained. You only need to specify the StorageClass when creating a PVC, which greatly reduces the workload.</p>
+</div>
+<div class="section" id="cce_10_0307__section326216625217"><h4 class="sectiontitle">Cloud Services for Container Storage</h4><p id="cce_10_0307__p1633317483117">CCE allows you to mount local and cloud storage volumes listed in <a href="cce_10_0307.html#cce_10_0307__section16559121287">Volume Types</a> to your pods. Their features are described below.</p>
+<div class="fignone" id="cce_10_0307__fig128444399616"><span class="figcap"><b>Figure 2 </b>Volume types supported by CCE</span><br><span><img id="cce_10_0307__image165014415108" src="en-us_image_0000001203385342.png"></span></div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0307__table1381911241505" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Detailed description of cloud storage services</caption><thead align="left"><tr id="cce_10_0307__row681972410017"><th align="left" class="cellrowborder" valign="top" width="12.2%" id="mcps1.3.6.4.2.6.1.1"><p id="cce_10_0307__p1182114718218">Dimension</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.2"><p id="cce_10_0307__p8821971729">EVS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.3"><p id="cce_10_0307__p68211275218">SFS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.4"><p id="cce_10_0307__p882187327">OBS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.95%" id="mcps1.3.6.4.2.6.1.5"><p id="cce_10_0307__p18211714216">SFS Turbo</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0307__row753513520417"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p853513528414">Definition</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p105361652941">EVS offers scalable block storage for cloud servers. With high reliability, high performance, and rich specifications, EVS disks can be used for distributed file systems, dev/test environments, data warehouses, and high-performance computing (HPC) applications.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p15606133319315">Expandable to petabytes, SFS provides fully hosted shared file storage, highly available and stable to handle data- and bandwidth-intensive applications in HPC, media processing, file sharing, content management, and web services.</p>
+<p id="cce_10_0307__p1560663343117"></p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p107261619142811">OBS is a stable, secure, and easy-to-use object storage service that lets you inexpensively store data of any format and size. You can use it in enterprise backup/archiving, video on demand (VoD), video surveillance, and many other scenarios.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p91731911183120">Expandable to 320 TB, SFS Turbo provides a fully hosted shared file storage, highly available and stable to support small files and applications requiring low latency and high IOPS. You can use SFS Turbo in high-traffic websites, log storage, compression/decompression, DevOps, enterprise OA, and containerized applications.</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row107852010714"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p1178122018714">Data storage logic</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p187812201879">Stores binary data and cannot directly store files. To store files, you need to format the file system first.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p77852011712">Stores files and sorts and displays data in the hierarchy of files and folders.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p178420475">Stores objects. Files directly stored automatically generate the system metadata, which can also be customized by users.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p107819201277">Stores files and sorts and displays data in the hierarchy of files and folders.</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row285818816813"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p15858186817">Services</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p085813810814">Accessible only after being mounted to ECSs or BMSs and initialized.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p98591186815">Mounted to ECSs or BMSs using network protocols. A network address must be specified or mapped to a local directory for access.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p16859118685">Accessible through the Internet or Direct Connect (DC). You need to specify the bucket address and use transmission protocols such as HTTP and HTTPS.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p2859881785">Supports the Network File System (NFS) protocol (NFSv3 only). You can seamlessly integrate existing applications and tools with SFS Turbo.</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row1762415820302"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p11821177928">Static provisioning</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p19821127024">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p1782117710220">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p4821871721">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p158211574216">Supported</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row118192240012"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p16821117228">Dynamic provisioning</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p10821371929">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p16821871824">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p68213714215">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p1282118711218">Not supported</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row178196241102"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p2821178210">Features</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p58211971024">Non-shared storage. Each volume can be mounted to only one node.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p128211976217">Shared storage featuring high performance and throughput</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p128210717211">Shared, user-mode file system</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p8821471622">Shared storage featuring high performance and bandwidth</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row20738549306"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p1273954916010">Usage</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p17367132813016">HPC, enterprise core cluster applications, enterprise application systems, and dev/test</p>
+<div class="note" id="cce_10_0307__note1547152375919"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0307__p947172385920">HPC apps here require high-speed and high-IOPS storage, such as industrial design and energy exploration.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p12791013514">HPC, media processing, content management, web services, big data, and analysis applications</p>
+<div class="note" id="cce_10_0307__note1482333019011"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0307__p17823530504">HPC apps here require high bandwidth and shared file storage, such as gene sequencing and image rendering.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p6507161018">Big data analysis, static website hosting, online video on demand (VoD), gene sequencing, intelligent video surveillance, backup and archiving, and enterprise cloud boxes (web disks)</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p11807135612">High-traffic websites, log storage, DevOps, and enterprise OA</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row795117183197"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p295218186195">Capacity</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p19521418111910">TB</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p095211871914">SFS 1.0: PB</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p179521318161916">EB</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p1795201812198">TB</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row2051631112018"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p9516161102020">Latency</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p07991430122212">1-2 ms</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p97991230122210">SFS 1.0: 3-20 ms</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p16799103015229">10 ms </p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p1551631182013">1-2 ms</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row81345119220"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p47361048233">IOPS/TPS</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p14736184122317">33,000 for a single disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p1373618414230">SFS 1.0: 2K</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p177368492319">Tens of millions</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p13134181152219">100K</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row16110165119224"><td class="cellrowborder" valign="top" width="12.2%" headers="mcps1.3.6.4.2.6.1.1 "><p id="cce_10_0307__p207361748233">Bandwidth</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.2 "><p id="cce_10_0307__p3736124102318">MB/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.3 "><p id="cce_10_0307__p97361041234">SFS 1.0: GB/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.4 "><p id="cce_10_0307__p7736114112319">TB/s</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.95%" headers="mcps1.3.6.4.2.6.1.5 "><p id="cce_10_0307__p71101151202212">GB/s</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0307__section4477154754415"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0307__p1454285216347">Secure containers do not support OBS volumes.</p>
+<ul id="cce_10_0307__ul1375874510508"><li id="cce_10_0307__li2052111514545">A single user can create a maximum of 100 OBS buckets on the console. If you have a large number of CCE workloads and you want to mount an OBS bucket to every workload, you may easily run out of buckets. In this scenario, you are advised to use OBS through the OBS API or SDK and do not mount OBS buckets to the workload on the console.</li><li id="cce_10_0307__li92774437495">For clusters earlier than v1.19.10, if an HPA policy is used to scale out a workload with EVS volumes mounted, the existing pods cannot be read or written when a new pod is scheduled to another node.<p id="cce_10_0307__p11921144194914"><a name="cce_10_0307__li92774437495"></a><a name="li92774437495"></a>For clusters of v1.19.10 and later, if an HPA policy is used to scale out a workload with EVS volume mounted, a new pod cannot be started because EVS disks cannot be attached.</p>
+</li><li id="cce_10_0307__li7641655553">When you uninstall a subpath in a cluster of v1.19 or earlier, all folders in the subpath are traversed. If there are a large number of folders, the traversal takes a long time, so does the volume unmount. You are advised not to create too many folders in the subpath.</li><li id="cce_10_0307__li0813245101113">The maximum size of a single file in OBS mounted to a CCE cluster is far smaller than that defined by obsfs.</li></ul>
+</div>
+<div class="section" id="cce_10_0307__section059455612532"><h4 class="sectiontitle">Notice on Using Add-ons</h4><ul id="cce_10_0307__ul133818422615"><li id="cce_10_0307__li3381949261">To use the CSI plug-in (the <a href="cce_10_0066.html">everest</a> add-on in CCE), your cluster must be using <strong id="cce_10_0307__b1494110804713">Kubernetes 1.15 or later</strong>. This add-on is installed by default when you create a cluster of v1.15 or later. The FlexVolume plug-in (the <a href="cce_10_0127.html">storage-driver</a> add-on in CCE) is installed by default when you create a cluster of v1.13 or earlier.</li><li id="cce_10_0307__li1347222711015">If your cluster is upgraded from v1.13 to v1.15, <a href="cce_10_0127.html">storage-driver</a> is replaced by everest (v1.1.6 or later) for container storage. The takeover does not affect the original storage functions.</li><li id="cce_10_0307__li3787162513612">In version 1.2.0 of the everest add-on, <strong id="cce_10_0307__b4207181716474">key authentication</strong> is optimized when OBS is used. After the everest add-on is upgraded from a version earlier than 1.2.0, you need to restart all workloads that use OBS in the cluster. Otherwise, workloads may not be able to use OBS.</li></ul>
+</div>
+<div class="section" id="cce_10_0307__section1690993510317"><h4 class="sectiontitle">Differences Between CSI and FlexVolume Plug-ins</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0307__table9704165418310" frame="border" border="1" rules="all"><caption><b>Table 2 </b>CSI and FlexVolume</caption><thead align="left"><tr id="cce_10_0307__row1757135413114"><th align="left" class="cellrowborder" valign="top" width="16.520000000000003%" id="mcps1.3.9.2.2.5.1.1"><p id="cce_10_0307__p177571954173119">Kubernetes Solution</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.450000000000001%" id="mcps1.3.9.2.2.5.1.2"><p id="cce_10_0307__p105501460334">CCE Add-on</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.57%" id="mcps1.3.9.2.2.5.1.3"><p id="cce_10_0307__p575715443110">Feature</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.46%" id="mcps1.3.9.2.2.5.1.4"><p id="cce_10_0307__p97571054183119">Recommendation</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0307__row5119842113215"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.9.2.2.5.1.1 "><p id="cce_10_0307__p97574546316">CSI</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.9.2.2.5.1.2 "><p id="cce_10_0307__p0550106143311">Everest</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.9.2.2.5.1.3 "><p id="cce_10_0307__p137578549318">CSI was developed as a standard for exposing arbitrary block and file storage storage systems to containerized workloads. Using CSI, third-party storage providers can deploy plugins exposing new storage systems in Kubernetes without having to touch the core Kubernetes code. In CCE, the everest add-on is installed by default in clusters of Kubernetes v1.15 and later to connect to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
+<p id="cce_10_0307__p11757754123115">The everest add-on consists of two parts:</p>
+<ul id="cce_10_0307__ul6619114334611"><li id="cce_10_0307__li1961910436465"><strong id="cce_10_0307__b5589145713475">everest-csi-controller</strong> for storage volume creation, deletion, capacity expansion, and cloud disk snapshots</li><li id="cce_10_0307__li7619154310461"><strong id="cce_10_0307__b283716015485">everest-csi-driver</strong> for mounting, unmounting, and formatting storage volumes on nodes</li></ul>
+<p id="cce_10_0307__p1387091118582">For details, see <a href="cce_10_0066.html">everest</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.9.2.2.5.1.4 "><p id="cce_10_0307__p516783510588">The <a href="cce_10_0066.html">everest</a> add-on is installed by default in clusters of <strong id="cce_10_0307__b473519624815">v1.15 and later</strong>. CCE will mirror the Kubernetes community by providing continuous support for updated CSI capabilities.</p>
+</td>
+</tr>
+<tr id="cce_10_0307__row4757195473110"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.9.2.2.5.1.1 "><p id="cce_10_0307__p1175710548316">Flexvolume</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.9.2.2.5.1.2 "><p id="cce_10_0307__p45508612335">storage-driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.9.2.2.5.1.3 "><p id="cce_10_0307__p19757145483115">FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes since version 1.2 (before CSI). CCE provided FlexVolume volumes through the storage-driver add-on installed in clusters of Kubernetes v1.13 and earlier versions. This add-on connects clusters to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
+<p id="cce_10_0307__p16757654153113">For details, see <a href="cce_10_0127.html">storage-driver</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.9.2.2.5.1.4 "><p id="cce_10_0307__p18569134265811">For the created clusters of <strong id="cce_10_0307__b13864151019332">v1.13 or earlier</strong>, the installed FlexVolume plug-in (CCE add-on <a href="cce_10_0127.html">storage-driver</a>) can still be used. CCE stops providing update support for this add-on, and you are advised to <a href="cce_10_0197.html">upgrade these clusters</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0307__note838817912503"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0307__ul1596014104509"><li id="cce_10_0307__li1796017103508">A cluster can use only one type of storage plug-ins.</li><li id="cce_10_0307__li10960910135015">The FlexVolume plug-in cannot be replaced by the CSI plug-in in clusters of v1.13 or earlier. You can only upgrade these clusters. For details, see <a href="cce_10_0197.html#cce_10_0197__section19981121648">Cluster Upgrade</a>.</li></ul>
+</div></div>
+</div>
+<div class="section" id="cce_10_0307__section155443483414"><h4 class="sectiontitle">Checking Storage Add-ons</h4><ol id="cce_10_0307__ol235517511467"><li id="cce_10_0307__li183555515614"><span>Log in to the CCE console.</span></li><li id="cce_10_0307__li1333875311614"><span>In the navigation tree on the left, click <strong id="cce_10_0307__b78742364485">Add-ons</strong>.</span></li><li id="cce_10_0307__li12239545772"><span>Click the <strong id="cce_10_0307__b97741141114818">Add-on Instance</strong> tab.</span></li><li id="cce_10_0307__li86216391082"><span>Select a cluster in the upper right corner. The default storage add-on installed during cluster creation is displayed.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0309.html b/docs/cce/umn/cce_10_0309.html
similarity index 50%
rename from docs/cce/umn/cce_01_0309.html
rename to docs/cce/umn/cce_10_0309.html
index 769ac489..162fc2e9 100644
--- a/docs/cce/umn/cce_01_0309.html
+++ b/docs/cce/umn/cce_10_0309.html
@@ -1,23 +1,21 @@
-<a name="cce_01_0309"></a><a name="cce_01_0309"></a>
+<a name="cce_10_0309"></a><a name="cce_10_0309"></a>
 
 <h1 class="topictitle1">Using EVS Disks as Storage Volumes</h1>
 <div id="body0000001113882214"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0310.html">Overview</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0310.html">Overview</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0311.html">Using EVS Volumes</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0312.html">(kubectl) Automatically Creating an EVS Disk</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0312.html">(kubectl) Automatically Creating an EVS Disk</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0313.html">(kubectl) Creating a PV from an Existing EVS Disk</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0313.html">(kubectl) Creating a PV from an Existing EVS Disk</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0314.html">(kubectl) Creating a Pod Mounted with an EVS Volume</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0314.html">(kubectl) Creating a Pod Mounted with an EVS Volume</a></strong><br>
 </li>
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0310.html b/docs/cce/umn/cce_10_0310.html
new file mode 100644
index 00000000..4c4ebe24
--- /dev/null
+++ b/docs/cce/umn/cce_10_0310.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0310"></a><a name="cce_10_0310"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body8662426"><p id="cce_10_0310__en-us_topic_0000001244141077_p52224919455">To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is migrated, the mounted EVS volumes are also migrated. By using EVS volumes, you can mount the remote file directory of storage system into a container so that data in the data volume is permanently preserved even when the container is deleted.</p>
+<div class="fignone" id="cce_10_0310__en-us_topic_0000001244141077_fig11623870218"><span class="figcap"><b>Figure 1 </b>Mounting EVS volumes to CCE</span><br><span><img id="cce_10_0310__en-us_topic_0000001244141077_image1162318782111" src="en-us_image_0000001248663503.png"></span></div>
+<div class="section" id="cce_10_0310__en-us_topic_0000001244141077_section729922716246"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0310__en-us_topic_0000001244141077_ul8811135132413"><li id="cce_10_0310__en-us_topic_0000001244141077_li1231485215191"><strong id="cce_10_0310__b1621414568346">User-friendly</strong>: Similar to formatting disks for on-site servers in traditional layouts, you can format block storage (disks) mounted to cloud servers, and create file systems on them.</li><li id="cce_10_0310__en-us_topic_0000001244141077_li1469314546190"><strong id="cce_10_0310__b5310124734017">Data isolation</strong>: Each server uses an independent block storage device (disk).</li><li id="cce_10_0310__en-us_topic_0000001244141077_li14729557151916"><strong id="cce_10_0310__b422439184118">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_10_0310__en-us_topic_0000001244141077_li12294201200"><strong id="cce_10_0310__b1649517362468">Capacity and performance</strong>: The capacity of a single volume is limited (TB-level), but the performance is excellent (ms-level read/write I/O latency).</li><li id="cce_10_0310__en-us_topic_0000001244141077_li733884793118"><strong id="cce_10_0310__b18677134312474">Restriction</strong>: EVS disks that have partitions or have non-ext4 file systems cannot be imported.</li><li id="cce_10_0310__en-us_topic_0000001244141077_li1896911521515"><strong id="cce_10_0310__b156774455114">Applications</strong>: HPC, enterprise core applications running in clusters, enterprise application systems, and development and testing. These volumes are often used by single-pod Deployments and jobs, or exclusively by each pod in a StatefulSet. EVS disks are non-shared storage and cannot be attached to multiple nodes at the same time. If two pods are configured to use the same EVS disk and the two pods are scheduled to different nodes, one pod cannot be started because the EVS disk cannot be attached to it.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0309.html">Using EVS Disks as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0312.html b/docs/cce/umn/cce_10_0312.html
new file mode 100644
index 00000000..39bb7f80
--- /dev/null
+++ b/docs/cce/umn/cce_10_0312.html
@@ -0,0 +1,71 @@
+<a name="cce_10_0312"></a><a name="cce_10_0312"></a>
+
+<h1 class="topictitle1">(kubectl) Automatically Creating an EVS Disk</h1>
+<div id="body0000001160562117"><div class="section" id="cce_10_0312__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0312__p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0312__section15671218115516"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0312__ol119461810195916"><li id="cce_10_0312__li1681024195710"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0312__li19947131075915"><span>Run the following commands to configure the <strong id="cce_10_0312__b195951121227">pvc-evs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_10_0312__p494741020593"><b><span class="cmdname" id="cce_10_0312__cmdname34351642121517">touch pvc-evs-auto-example.yaml</span></b></p>
+<p id="cce_10_0312__p1894721016594"><b><span class="cmdname" id="cce_10_0312__cmdname13437542171519">vi pvc-evs-auto-example.yaml</span></b></p>
+<div class="p" id="cce_10_0312__p03261726173411"><strong id="cce_10_0312__b1341514124">Example YAML file for clusters of v1.9, v1.11, and v1.13:</strong><pre class="screen" id="cce_10_0312__screen20715184017393">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-auto-example
+  namespace: default
+  annotations:
+    volume.beta.kubernetes.io/storage-class: sas
+  labels:
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0312__text797052902515">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: <span id="cce_10_0312__text833353619258">eu-de-01</span>
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0312__table86161748194217" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0312__row761604815426"><th align="left" class="cellrowborder" valign="top" width="45.540000000000006%" id="mcps1.3.2.2.2.2.3.3.2.3.1.1"><p id="cce_10_0312__p8617104844215">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="54.459999999999994%" id="mcps1.3.2.2.2.2.3.3.2.3.1.2"><p id="cce_10_0312__p5617548174214">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0312__row1261764813422"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0312__p86174487428">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0312__p661712486425">EVS disk type. The value is in lowercase.</p>
+</td>
+</tr>
+<tr id="cce_10_0312__row26171848134218"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0312__p8617174874217">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0312__p35531117164317">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0312__row13617348184211"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0312__p561774810425">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0312__p41813230438">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0312__row861774844217"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0312__p461754834215">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0312__p186179486429">Storage capacity in the unit of Gi.</p>
+</td>
+</tr>
+<tr id="cce_10_0312__row761774811423"><td class="cellrowborder" valign="top" width="45.540000000000006%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0312__p12617448124215">accessModes</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.459999999999994%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0312__p76171248174211">Read/write mode of the volume.</p>
+<p id="cce_10_0312__p2617348184218">You can set this parameter to <strong id="cce_10_0312__b183551738158">ReadWriteMany</strong> (shared volume) and <strong id="cce_10_0312__b235583815512">ReadWriteOnce</strong> (non-shared volume).</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0312__li1894851020597"><span>Run the following command to create a PVC.</span><p><p id="cce_10_0312__p158913151442"><b><span class="cmdname" id="cce_10_0312__cmdname1593110225415">kubectl create -f pvc-evs-auto-example.yaml</span></b></p>
+<p id="cce_10_0312__p1269713341497">After the command is executed, an EVS disk is created in the partition where the cluster is located. Choose <strong id="cce_10_0312__b1089454565412">Storage</strong> &gt; <strong id="cce_10_0312__b1289954515549">EVS</strong> to view the EVS disk. Alternatively, you can view the EVS disk based on the volume name on the EVS console.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0309.html">Using EVS Disks as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0313.html b/docs/cce/umn/cce_10_0313.html
new file mode 100644
index 00000000..4aca363c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0313.html
@@ -0,0 +1,539 @@
+<a name="cce_10_0313"></a><a name="cce_10_0313"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a PV from an Existing EVS Disk</h1>
+<div id="body0000001113882218"><div class="section" id="cce_10_0313__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0313__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0313__section265070105619"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0313__ol168961948163115"><li id="cce_10_0313__li147842268487"><span>Log in to the EVS console, create an EVS disk, and record the volume ID, capacity, and disk type of the EVS disk.</span></li><li id="cce_10_0313__li2705143583215"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0313__li149938217378"><span>Create two YAML files for creating the PersistentVolume (PV) and PersistentVolumeClaim (PVC). Assume that the file names are <strong id="cce_10_0313__b10731184951014">pv-evs-example.yaml</strong> and <strong id="cce_10_0313__b197322495106">pvc-evs-example.yaml</strong>.</span><p><p id="cce_10_0313__p291112919387"><strong id="cce_10_0313__b169111499381">touch pv-evs-example.yaml</strong> <strong id="cce_10_0313__b757265317402">pvc-evs-example.yaml</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table184303411324" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0313__row104311415322"><th align="left" class="cellrowborder" valign="top" width="33.2033203320332%" id="mcps1.3.2.2.3.2.2.1.4.1.1"><p id="cce_10_0313__p443118443220">Kubernetes Cluster Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="35.34353435343534%" id="mcps1.3.2.2.3.2.2.1.4.1.2"><p id="cce_10_0313__p1431154113212">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.453145314531454%" id="mcps1.3.2.2.3.2.2.1.4.1.3"><p id="cce_10_0313__p14311346322">YAML Example</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row543118415321"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.2.2.3.2.2.1.4.1.1 "><p id="cce_10_0313__p1743111463216">1.11.7 ≤ K8s version ≤ 1.13</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.2.2.3.2.2.1.4.1.2 "><p id="cce_10_0313__p743119413320">Clusters from v1.11.7 to v1.13</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.2.2.3.2.2.1.4.1.3 "><p id="cce_10_0313__p13431246327"><a href="#cce_10_0313__li0648350102513">Example YAML</a></p>
+</td>
+</tr>
+<tr id="cce_10_0313__row132483424343"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.2.2.3.2.2.1.4.1.1 "><p id="cce_10_0313__p102481242133410">1.11 ≤ K8s version &lt; 1.11.7</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.2.2.3.2.2.1.4.1.2 "><p id="cce_10_0313__p1524819427346">Clusters from v1.11 to v1.11.7</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.2.2.3.2.2.1.4.1.3 "><p id="cce_10_0313__p16248134217345"><a href="#cce_10_0313__li19211184720504">Example YAML</a></p>
+</td>
+</tr>
+<tr id="cce_10_0313__row72981940163417"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.2.2.3.2.2.1.4.1.1 "><p id="cce_10_0313__p9298154043420">K8s version = 1.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.2.2.3.2.2.1.4.1.2 "><p id="cce_10_0313__p1729814407349">Clusters of v1.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.2.2.3.2.2.1.4.1.3 "><p id="cce_10_0313__p529834014349"><a href="#cce_10_0313__li813222310297">Example YAML</a></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0313__p1280785102120"><strong id="cce_10_0313__b134821143171119">Clusters from v1.11.7 to v1.13</strong></p>
+<ul id="cce_10_0313__ul66471550162511"><li id="cce_10_0313__li0648350102513"><a name="cce_10_0313__li0648350102513"></a><a name="li0648350102513"></a><strong id="cce_10_0313__b265991918251">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0313__screen12963134145017">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  labels: 
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0313__text9215191820368">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone:  <span id="cce_10_0313__text11224923173612">eu-de-01</span>
+  annotations:
+    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxivol
+  name: pv-evs-example 
+spec: 
+  accessModes: 
+  - ReadWriteOnce 
+  capacity: 
+    storage: 10Gi 
+  claimRef:
+    apiVersion: v1
+    kind: PersistentVolumeClaim
+    name: pvc-evs-example
+    namespace: default
+  flexVolume: 
+    driver: huawei.com/fuxivol 
+    fsType: ext4 
+    options:
+      disk-mode: SCSI
+      fsType: ext4 
+      volumeID: 0992dbda-6340-470e-a74e-4f0db288ed82 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: sas</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table17385444165213" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0313__row173855445526"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.2.2.3.2.4.1.3.2.3.1.1"><p id="cce_10_0313__p8385144195210">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.2.2.3.2.4.1.3.2.3.1.2"><p id="cce_10_0313__p8385114425213">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row1385154425213"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p15385544135217">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p173851644195213">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row143851443521"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p238512444527">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p1338544455214">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1938594405211"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p183851744105213">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p0385124417521">EVS volume capacity in the unit of Gi.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row4385104475215"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p1038534425215">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p1438612448526">EVS disk type. Supported values: <span id="cce_10_0313__text1523372214318">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)</span></p>
+</td>
+</tr>
+<tr id="cce_10_0313__row193861444175213"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p133861440521">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p123869449527">Storage driver.</p>
+<p id="cce_10_0313__p438684475216">For EVS disks, set this parameter to <strong id="cce_10_0313__b17392125231419">huawei.com/fuxivol</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1386164445220"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p237316125619">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p9724131810569">Volume ID of the EVS disk.</p>
+<p id="cce_10_0313__p10651585616">To obtain the volume ID, log in to the CCE console, choose <strong id="cce_10_0313__b10175143355519">Resource Management</strong> &gt; <strong id="cce_10_0313__b1181153305518">Storage</strong>, click the PVC name in the <strong id="cce_10_0313__b51811733175513">EVS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1038684415211"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p1438618441525">disk-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p9649653145619">Device type of the EVS disk. The value is <strong id="cce_10_0313__b330531341516">VBD</strong> or <strong id="cce_10_0313__b8311613171516">SCSI</strong>.</p>
+<p id="cce_10_0313__p1798412565565">For CCE clusters earlier than v1.11.7, you do not need to set this field. The value defaults to <strong id="cce_10_0313__b1693618214158">VBD</strong>.</p>
+<p id="cce_10_0313__p338644415527">This field is mandatory for CCE clusters from v1.11.7 to v1.13 that use Linux x86. As the EVS volumes dynamically provisioned by a PVC are created from SCSI EVS disks, you are advised to choose <strong id="cce_10_0313__b1228373501514">SCSI</strong> when manually creating volumes (static PVs). Volumes in the VBD mode can still be used after cluster upgrades.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1320925404611"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p1120905414467">spec.claimRef.apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p220911541464">The value is fixed at <strong id="cce_10_0313__b139958212014">v1</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row52872572460"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p62871457164620">spec.claimRef.kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p13287195716468">The value is fixed at <strong id="cce_10_0313__b53413632012">PersistentVolumeClaim</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row151672034719"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p1616714019477">spec.claimRef.name</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p616717016473">PVC name. The value is the same as the name of the PVC created in the next step.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row19505236477"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0313__p1505173104717">spec.claimRef.namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0313__p95056374715">Namespace of the PVC. The value is the same as the namespace of the PVC created in the next step.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0313__li16865124414264"><strong id="cce_10_0313__b0693201713205">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0313__screen134271258185312">apiVersion: v1  
+kind: PersistentVolumeClaim  
+metadata:  
+  annotations:  
+    volume.beta.kubernetes.io/storage-class: sas
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxivol 
+  labels: 
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0313__text1992619114466">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: <span id="cce_10_0313__text12883151854617">eu-de-01</span>     
+  name: pvc-evs-example 
+  namespace: default  
+spec:  
+  accessModes:  
+  - ReadWriteOnce  
+  resources:  
+    requests:  
+      storage: 10Gi
+  volumeName: pv-evs-example</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table88201244114010" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0313__row17820204417402"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.2.2.3.2.4.2.3.2.3.1.1"><p id="cce_10_0313__p782054464019">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.2.2.3.2.4.2.3.2.3.1.2"><p id="cce_10_0313__p1882054424015">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row796915557409"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0313__p1896955524012">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0313__p0970205513401">Storage class, which must be the same as that of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row234119218414"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0313__p93414212410">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0313__p834182174112">The field must be set to <strong id="cce_10_0313__b144514617216">flexvolume-huawei.com/fuxivol</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row98212044164016"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0313__p128211144144011">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0313__p882184494011">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row158211544174010"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0313__p148216449402">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0313__p168211744174016">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row78211944124017"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0313__p16821744174020">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0313__p98216441409">Requested capacity in the PVC, in Gi.</p>
+<p id="cce_10_0313__p6821344144012">The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row15822104404015"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0313__p15822644124014">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0313__p882284415406">Name of the PV.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+<p id="cce_10_0313__p37560197274"><strong id="cce_10_0313__b1547043412330">Clusters from v1.11 to v1.11.7</strong></p>
+<ul id="cce_10_0313__ul1889073016186"><li id="cce_10_0313__li19211184720504"><a name="cce_10_0313__li19211184720504"></a><a name="li19211184720504"></a><strong id="cce_10_0313__b335285213116">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0313__screen15211147185014">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  labels: 
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0313__text11161621102216">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone:  
+  name: pv-evs-example 
+spec: 
+  accessModes: 
+  - ReadWriteOnce
+  capacity: 
+    storage: 10Gi 
+  flexVolume: 
+    driver: huawei.com/fuxivol 
+    fsType: ext4 
+    options:
+      fsType: ext4 
+      volumeID: 0992dbda-6340-470e-a74e-4f0db288ed82 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: sas</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table17899165410571" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0313__row4899195455718"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.2.2.3.2.6.1.3.2.3.1.1"><p id="cce_10_0313__p1899115465719">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.2.2.3.2.6.1.3.2.3.1.2"><p id="cce_10_0313__p889975465712">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row18899854185719"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p17899195445720">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p48997549579">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1589905411574"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p78991554125716">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p1989935485713">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1690018544578"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p79001054165713">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p6900135415719">EVS volume capacity in the unit of Gi.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row5900205455714"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p2900105485718">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p14900354135717">EVS disk type. Supported values: <span id="cce_10_0313__cce_10_0313_text1523372214318">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)</span></p>
+</td>
+</tr>
+<tr id="cce_10_0313__row11900354155717"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p14900175410578">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p119001954185713">Storage driver.</p>
+<p id="cce_10_0313__p16900354165710">For EVS disks, set this parameter to <strong id="cce_10_0313__b13725185481411">huawei.com/fuxivol</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row10900354175715"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p1900554165719">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p9900154195715">Volume ID of the EVS disk.</p>
+<p id="cce_10_0313__p890085485716">To obtain the volume ID, log in to the CCE console, choose <strong id="cce_10_0313__b6680133515553">Resource Management</strong> &gt; <strong id="cce_10_0313__b18680935105511">Storage</strong>, click the PVC name in the <strong id="cce_10_0313__b17680135165514">EVS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row179008547577"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p1690065485718">disk-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p11211547011">Device type of the EVS disk. The value is <strong id="cce_10_0313__b1886110202152">VBD</strong> or <strong id="cce_10_0313__b1386182019150">SCSI</strong>.</p>
+<p id="cce_10_0313__p850713616012">For CCE clusters earlier than v1.11.7, you do not need to set this field. The default value is <strong id="cce_10_0313__b163384336155">VBD</strong>.</p>
+<p id="cce_10_0313__p1590145411577">This field is mandatory for CCE clusters from v1.11.7 to v1.13 that use Linux x86. As the EVS volumes dynamically provisioned by a PVC are created from SCSI EVS disks, you are advised to choose <strong id="cce_10_0313__b19974155915191">SCSI</strong> when manually creating volumes (static PVs). Volumes in the VBD mode can still be used after cluster upgrades.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0313__li3398185342814"><strong id="cce_10_0313__b12978172015204">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0313__screen339812538284">apiVersion: v1  
+kind: PersistentVolumeClaim  
+metadata:  
+  annotations:  
+    volume.beta.kubernetes.io/storage-class: sas
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxivol 
+  labels: 
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0313__text42461713131320">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: <span id="cce_10_0313__text57436205137">eu-de-01</span>     
+  name: pvc-evs-example 
+  namespace: default  
+spec:  
+  accessModes:  
+  - ReadWriteOnce
+  resources:  
+    requests:  
+      storage: 10Gi
+  volumeName: pv-evs-example</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table63991353162816" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0313__row183991653132813"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.2.2.3.2.6.2.3.2.3.1.1"><p id="cce_10_0313__p239975362811">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.2.2.3.2.6.2.3.2.3.1.2"><p id="cce_10_0313__p1739905312815">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row1439955382818"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0313__p14399145392817">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0313__p103996535282">Storage class. The value can be <strong id="cce_10_0313__b328585722015">sas</strong> or <strong id="cce_10_0313__b52857570203">ssd</strong>. The value must be the same as that of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row539935332820"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0313__p15399175319282">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0313__p140011531282">The field must be set to <strong id="cce_10_0313__b186539154214">flexvolume-huawei.com/fuxivol</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row04001553102811"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0313__p140019537288">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0313__p740035352815">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row11400353192818"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0313__p1440045382816">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0313__p11400155372817">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row6400125332818"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0313__p1340025342816">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0313__p8400125317289">Requested capacity in the PVC, in Gi.</p>
+<p id="cce_10_0313__p0400853162811">The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row34001453152819"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0313__p1840045317289">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0313__p15401205310282">Name of the PV.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+<p id="cce_10_0313__p124308228298"><strong id="cce_10_0313__b14957320172212">Clusters of v1.9</strong></p>
+<ul id="cce_10_0313__ul19134102372918"><li id="cce_10_0313__li813222310297"><a name="cce_10_0313__li813222310297"></a><a name="li813222310297"></a><strong id="cce_10_0313__b2355105212112">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0313__screen013052392918">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  labels: 
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0313__text45805792210">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone:  
+  name: pv-evs-example 
+  namespace: default 
+spec: 
+  accessModes: 
+  - ReadWriteOnce
+  capacity: 
+    storage: 10Gi 
+  flexVolume: 
+    driver: huawei.com/fuxivol 
+    fsType: ext4 
+    options: 
+      fsType: ext4 
+      kubernetes.io/namespace: default 
+      volumeID: 0992dbda-6340-470e-a74e-4f0db288ed82 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: sas</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table31321323122915" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0313__row9131172332912"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.2.2.3.2.8.1.3.2.3.1.1"><p id="cce_10_0313__p12130162311290">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.2.2.3.2.8.1.3.2.3.1.2"><p id="cce_10_0313__p113112322916">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row713132312920"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p161311123152916">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p15131823132915">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row20131142312293"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p213152392918">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p101311823152918">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row11131823122915"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p913110239294">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p1813115238297">EVS volume capacity in the unit of Gi.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row913114238296"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p51311223182911">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p1213192316299">EVS disk type. Supported values: <span id="cce_10_0313__cce_10_0313_text1523372214318_1">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)</span></p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1813272362913"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p71311323132913">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p1313114232293">Storage driver.</p>
+<p id="cce_10_0313__p513122317297">For EVS disks, set this parameter to <strong id="cce_10_0313__b372785451417">huawei.com/fuxivol</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row10132102312916"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p213202332919">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p0132132317299">Volume ID of the EVS disk.</p>
+<p id="cce_10_0313__p11327234297">To obtain the volume ID, log in to the CCE console, choose <strong id="cce_10_0313__b19974137165513">Resource Management</strong> &gt; <strong id="cce_10_0313__b13975143785514">Storage</strong>, click the PVC name in the <strong id="cce_10_0313__b14975153717551">EVS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row91329238294"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p1713242322911">disk-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p7132142322920">Device type of the EVS disk. The value is <strong id="cce_10_0313__b168661720161518">VBD</strong> or <strong id="cce_10_0313__b1886618201151">SCSI</strong>.</p>
+<p id="cce_10_0313__p213212237296">For CCE clusters earlier than v1.11.7, you do not need to set this field. The default value is <strong id="cce_10_0313__b10345123311515">VBD</strong>.</p>
+<p id="cce_10_0313__p161329233297">This field is mandatory for CCE clusters from v1.11.7 to v1.13 that use Linux x86. As the EVS volumes dynamically provisioned by a PVC are created from SCSI EVS disks, you are advised to choose <strong id="cce_10_0313__b62615072015">SCSI</strong> when manually creating volumes (static PVs). Volumes in the VBD mode can still be used after cluster upgrades.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0313__li1134152342914"><strong id="cce_10_0313__b1998016203203">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0313__screen7133623102911">apiVersion: v1  
+kind: PersistentVolumeClaim  
+metadata:  
+  annotations:  
+    volume.beta.kubernetes.io/storage-class: sas
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxivol 
+  labels: 
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0313__text162861534182619">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: 
+  name: pvc-evs-example 
+  namespace: default  
+spec:  
+  accessModes:  
+  - ReadWriteOnce 
+  resources:  
+    requests:  
+      storage: 10Gi
+  volumeName: pv-evs-example
+  volumeNamespace: default</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table9134323142911" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0313__row171331223112910"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.2.2.3.2.8.2.3.2.3.1.1"><p id="cce_10_0313__p613319236291">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.2.2.3.2.8.2.3.2.3.1.2"><p id="cce_10_0313__p413312315294">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row15133142312918"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.1 "><p id="cce_10_0313__p21331523182914">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.2 "><p id="cce_10_0313__p4133723152915">Storage class, which must be the same as that of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row12133123202916"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.1 "><p id="cce_10_0313__p81331523122911">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.2 "><p id="cce_10_0313__p1913342319298">The field must be set to <strong id="cce_10_0313__b18656101532114">flexvolume-huawei.com/fuxivol</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row151339233297"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.1 "><p id="cce_10_0313__p1313362332910">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.2 "><p id="cce_10_0313__p61331923142916">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row13134423102910"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.1 "><p id="cce_10_0313__p713322382917">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.2 "><p id="cce_10_0313__p2134623192912">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row14134162352918"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.1 "><p id="cce_10_0313__p20134112362914">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.2 "><p id="cce_10_0313__p121341623132917">Requested capacity in the PVC, in Gi.</p>
+<p id="cce_10_0313__p1134162310298">The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row17134142342912"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.1 "><p id="cce_10_0313__p2013492372910">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.2.3.2.3.1.2 "><p id="cce_10_0313__p131342239291">Name of the PV.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+</p></li><li id="cce_10_0313__li8685924173017"><span>Create the PV.</span><p><p id="cce_10_0313__p12144346143012"><strong id="cce_10_0313__b14144184673015">kubectl create -f pv-evs-example.yaml</strong></p>
+</p></li><li id="cce_10_0313__li48622058154813"><span>Create the PVC.</span><p><p id="cce_10_0313__p12347144535113"><strong id="cce_10_0313__b163478456519">kubectl create -f pvc-evs-example.yaml</strong></p>
+<p id="cce_10_0313__p133471345205113">After the operation is successful, choose <strong id="cce_10_0313__b556053502219">Resource Management</strong> &gt; <strong id="cce_10_0313__b2561103522218">Storage</strong> to view the created PVC. You can also view the EVS disk by name on the EVS console.</p>
+</p></li><li id="cce_10_0313__li13991152352"><span>(Optional) Add the metadata associated with the cluster to ensure that the EVS disk associated with the mounted static PV is not deleted when the node or cluster is deleted.</span><p><div class="caution" id="cce_10_0313__note1447544543912"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0313__p67924923911">If you skip this step in this example or when creating a static PV or PVC, ensure that the EVS disk associated with the static PV has been unbound from the node before you delete the node.</p>
+</div></div>
+<ol type="a" id="cce_10_0313__ol78918263419"><li id="cce_10_0313__li6891526204113"><a name="cce_10_0313__li6891526204113"></a><a name="li6891526204113"></a>Obtain the tenant token. For details, see <a href="https://docs.otc.t-systems.com/en-us/api/apiug/apig-en-api-180328003.html" target="_blank" rel="noopener noreferrer">Obtaining a User Token</a>.</li><li id="cce_10_0313__li17017349418"><a name="cce_10_0313__li17017349418"></a><a name="li17017349418"></a>Obtain the EVS access address <strong id="cce_10_0313__en-us_topic_0276664175_b5739177155917">EVS_ENDPOINT</strong>. For details, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.<p id="cce_10_0313__en-us_topic_0276664175_p7282286480"></p>
+</li><li id="cce_10_0313__li195528509494">Add the metadata associated with the cluster to the EVS disk backing the static PV.<pre class="screen" id="cce_10_0313__screen1019252755013">curl -X POST ${EVS_ENDPOINT}/v2/${project_id}/volumes/${volume_id}/metadata --insecure \
+    -d '{"metadata":{"cluster_id": "${cluster_id}", "namespace": "${pvc_namespace}"}}' \
+    -H 'Accept:application/json' -H 'Content-Type:application/json;charset=utf8' \
+    -H 'X-Auth-Token:${TOKEN}'</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0313__table13625113414315" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0313__row96261634739"><th align="left" class="cellrowborder" valign="top" width="28.74%" id="mcps1.3.2.2.6.2.2.3.2.2.3.1.1"><p id="cce_10_0313__p1062614347317">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="71.26%" id="mcps1.3.2.2.6.2.2.3.2.2.3.1.2"><p id="cce_10_0313__p1762633415311">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0313__row862653414312"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.1 "><p id="cce_10_0313__p46261934435">EVS_ENDPOINT</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.2 "><p id="cce_10_0313__p462616341032">EVS access address. Set this parameter to the value obtained in <a href="#cce_10_0313__li17017349418">6.b</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row166266343319"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.1 "><p id="cce_10_0313__p176262343312">project_id</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.2 "><p id="cce_10_0313__p61617139512">Project ID.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row18626183419312"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.1 "><p id="cce_10_0313__p36261341232">volume_id</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.2 "><p id="cce_10_0313__p862733416319">ID of the associated EVS disk. Set this parameter to <strong id="cce_10_0313__b149251352103919">volume_id</strong> of the static PV to be created. You can also log in to the EVS console, click the name of the EVS disk to be imported, and obtain the ID from <strong id="cce_10_0313__b0927175283913">Summary</strong> on the disk details page.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row113384713615"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.1 "><p id="cce_10_0313__p234147769">cluster_id</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.2 "><p id="cce_10_0313__p173418474610">ID of the cluster where the EVS PV is to be created. On the CCE console, choose <strong id="cce_10_0313__b731994265512">Resource Management</strong> &gt; <strong id="cce_10_0313__b7325842145517">Clusters</strong>. Click the name of the cluster to be associated. On the cluster details page, obtain the cluster ID.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row1873715191073"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.1 "><p id="cce_10_0313__p0737181912714">pvc_namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.2 "><p id="cce_10_0313__p273721910713">Namespace where the PVC is to be bound.</p>
+</td>
+</tr>
+<tr id="cce_10_0313__row188050161716"><td class="cellrowborder" valign="top" width="28.74%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.1 "><p id="cce_10_0313__p108053160715">TOKEN</p>
+</td>
+<td class="cellrowborder" valign="top" width="71.26%" headers="mcps1.3.2.2.6.2.2.3.2.2.3.1.2 "><p id="cce_10_0313__p680515161572">User token. Set this parameter to the value obtained in <a href="#cce_10_0313__li6891526204113">6.a</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0313__p1622175025012">For example, run the following commands:</p>
+<pre class="screen" id="cce_10_0313__screen1211533025114">curl -X POST https://evs.<span id="cce_10_0313__text1874044911281">eu-de.otc.t-systems.com</span>:443/v2/060576866680d5762f52c0150e726aa7/volumes/69c9619d-174c-4c41-837e-31b892604e14/metadata --insecure \
+    -d '{"metadata":{"cluster_id": "71e8277e-80c7-11ea-925c-0255ac100442", "namespace": "default"}}' \
+    -H 'Accept:application/json' -H 'Content-Type:application/json;charset=utf8' \
+    -H 'X-Auth-Token:MIIPe******IsIm1ldG</pre>
+<p id="cce_10_0313__p1578432745115">After the request is executed, run the following commands to check whether the EVS disk has been associated with the metadata of the cluster:</p>
+<pre class="screen" id="cce_10_0313__screen117491601217">curl -X GET ${EVS_ENDPOINT}/v2/${project_id}/volumes/${volume_id}/metadata --insecure \
+    -H 'X-Auth-Token:${TOKEN}'</pre>
+<p id="cce_10_0313__p752819115615">For example, run the following commands:</p>
+<pre class="screen" id="cce_10_0313__screen5706917145810">curl -X GET https://evs.<span id="cce_10_0313__text1974718714295">eu-de.otc.t-systems.com</span>/v2/060576866680d5762f52c0150e726aa7/volumes/69c9619d-174c-4c41-837e-31b892604e14/metadata --insecure \
+    -H 'X-Auth-Token:MIIPeAYJ***9t1c31ASaQ=='</pre>
+<p id="cce_10_0313__p134231261516">The command output displays the current metadata of the EVS disk.</p>
+<pre class="screen" id="cce_10_0313__screen119522077569">{
+    "metadata": {
+        "namespace": "default",
+        "cluster_id": "71e8277e-80c7-11ea-925c-0255ac100442",
+       <strong id="cce_10_0313__b5322161714342"> "hw:passthrough": "true"</strong>
+    }
+}</pre>
+</li></ol>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0309.html">Using EVS Disks as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0314.html b/docs/cce/umn/cce_10_0314.html
new file mode 100644
index 00000000..eb8d01df
--- /dev/null
+++ b/docs/cce/umn/cce_10_0314.html
@@ -0,0 +1,174 @@
+<a name="cce_10_0314"></a><a name="cce_10_0314"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a Pod Mounted with an EVS Volume</h1>
+<div id="body0000001113722322"><div class="section" id="cce_10_0314__section1789161805617"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0314__cce_10_0257_p19113471414">After an EVS volume is created or imported to CCE, you can mount it to a workload.</p>
+<div class="notice" id="cce_10_0314__cce_10_0257_note151273161411"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0314__cce_10_0257_p1812771181417">EVS disks cannot be attached across AZs. Before mounting a volume, you can run the <strong id="cce_10_0314__cce_10_0257_b1476484310226">kubectl get pvc</strong> command to query the available PVCs in the AZ where the current cluster is located.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0314__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0314__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0314__section421772310564"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0314__ol49241352137"><li id="cce_10_0314__li251694784112"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0314__li109251156137"><span>Run the following commands to configure the <strong id="cce_10_0314__b194574162918">evs-deployment-example.yaml</strong> file, which is used to create a Deployment.</span><p><p id="cce_10_0314__p5929195141316"><strong id="cce_10_0314__b193391624515">touch evs-deployment-example.yaml</strong></p>
+<p id="cce_10_0314__p17933254133"><strong id="cce_10_0314__b1595201624516">vi evs-deployment-example.yaml</strong></p>
+<div class="p" id="cce_10_0314__p72162011219">Example of mounting an EVS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_10_0314__screen1913618543140">apiVersion: apps/v1 
+kind: Deployment 
+metadata: 
+  name: evs-deployment-example 
+  namespace: default 
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: evs-deployment-example 
+  template: 
+    metadata: 
+      labels: 
+        app: evs-deployment-example 
+    spec: 
+      containers: 
+      - image: nginx
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp 
+          name: pvc-evs-example 
+      imagePullSecrets:
+        - name: default-secret
+      restartPolicy: Always 
+      volumes: 
+      - name: pvc-evs-example 
+        persistentVolumeClaim: 
+          claimName: pvc-evs-auto-example</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0314__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0314__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="32.73%" id="mcps1.3.3.2.2.2.4.2.4.1.1"><p id="cce_10_0314__p525814169813">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="18.15%" id="mcps1.3.3.2.2.2.4.2.4.1.2"><p id="cce_10_0314__p18191161619356">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.120000000000005%" id="mcps1.3.3.2.2.2.4.2.4.1.3"><p id="cce_10_0314__p1919116161353">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0314__row7430236123515"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.3.2.2.2.4.2.4.1.1 "><p id="cce_10_0314__p92591716583">spec.template.spec.containers.volumeMounts</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.3.2.2.2.4.2.4.1.2 "><p id="cce_10_0314__p116341334126">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.3.2.2.2.4.2.4.1.3 "><p id="cce_10_0314__p1927814583433">Name of the volume mounted to the container.</p>
+</td>
+</tr>
+<tr id="cce_10_0314__row10639194016187"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.3.2.2.2.4.2.4.1.1 "><p id="cce_10_0314__p54664413187">spec.template.spec.containers.volumeMounts</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.3.2.2.2.4.2.4.1.2 "><p id="cce_10_0314__p1946674110189">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.3.2.2.2.4.2.4.1.3 "><p id="cce_10_0314__p546684111182">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_10_0314__b20599124116917">/tmp</strong> directory.</p>
+</td>
+</tr>
+<tr id="cce_10_0314__row6232511129"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.3.2.2.2.4.2.4.1.1 "><p id="cce_10_0314__p72592169811">spec.template.spec.volumes</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.3.2.2.2.4.2.4.1.2 "><p id="cce_10_0314__p192525131213">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.3.2.2.2.4.2.4.1.3 "><p id="cce_10_0314__p132182510120">Name of the volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0314__row163191830121220"><td class="cellrowborder" valign="top" width="32.73%" headers="mcps1.3.3.2.2.2.4.2.4.1.1 "><p id="cce_10_0314__p425991613812">spec.template.spec.volumes.persistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.15%" headers="mcps1.3.3.2.2.2.4.2.4.1.2 "><p id="cce_10_0314__p14319143031212">claimName</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.120000000000005%" headers="mcps1.3.3.2.2.2.4.2.4.1.3 "><p id="cce_10_0314__p18319530131211">Name of an existing PVC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0314__note7669545104415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0314__p116692457448"><strong id="cce_10_0314__b144495415911">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0314__b1344519542914">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+<p id="cce_10_0314__p17131103118237">Mounting an EVS volume to a StatefulSet (PVC template-based, non-shared volume):</p>
+<div class="p" id="cce_10_0314__p511017130419"><strong id="cce_10_0314__b104096441119">Example YAML:</strong><pre class="screen" id="cce_10_0314__screen966014561919">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: deploy-evs-sas-in
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: deploy-evs-sata-in
+  template:
+    metadata:
+      labels:
+        app: deploy-evs-sata-in
+        failure-domain.beta.kubernetes.io/region: <span id="cce_10_0314__text102951211204118">eu-de</span>
+        failure-domain.beta.kubernetes.io/zone: <span id="cce_10_0314__text17322317174115">eu-de-01</span>
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:1.12-alpine-perl'
+          volumeMounts:
+            - name: bs-sas-mountoptionpvc
+              mountPath: /tmp
+      imagePullSecrets:
+        - name: default-secret
+  volumeClaimTemplates:
+    - metadata:
+        name: bs-sas-mountoptionpvc
+        annotations:
+          volume.beta.kubernetes.io/storage-class: sas
+          volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxivol
+      spec:
+        accessModes:
+          - ReadWriteOnce
+        resources:
+          requests:
+            storage: 10Gi
+  serviceName: wwww</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0314__table628368131916" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0314__row122837851917"><th align="left" class="cellrowborder" valign="top" width="27.01%" id="mcps1.3.3.2.2.2.7.3.2.4.1.1"><p id="cce_10_0314__p24390324267">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="17.59%" id="mcps1.3.3.2.2.2.7.3.2.4.1.2"><p id="cce_10_0314__p42830816196">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="55.400000000000006%" id="mcps1.3.3.2.2.2.7.3.2.4.1.3"><p id="cce_10_0314__p16284108101912">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0314__row1428438101916"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.1 "><p id="cce_10_0314__p143914327264">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.2 "><p id="cce_10_0314__p142843811197">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.3 "><p id="cce_10_0314__p14367283124">Name of the created workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0314__row428458201916"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.1 "><p id="cce_10_0314__p104391325267">spec.template.spec.containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.2 "><p id="cce_10_0314__p202841483196">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.3 "><p id="cce_10_0314__p11284585196">Image of the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0314__row192841589190"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.1 "><p id="cce_10_0314__p243920327269">spec.template.spec.containers.volumeMount</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.2 "><p id="cce_10_0314__p32847817196">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.3 "><p id="cce_10_0314__p112851818196">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_10_0314__b74607461094">/tmp</strong> directory.</p>
+</td>
+</tr>
+<tr id="cce_10_0314__row6285158191916"><td class="cellrowborder" valign="top" width="27.01%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.1 "><p id="cce_10_0314__p2043914322263">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="17.59%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.2 "><p id="cce_10_0314__p1828558101912">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.400000000000006%" headers="mcps1.3.3.2.2.2.7.3.2.4.1.3 "><p id="cce_10_0314__p415683820207">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0314__note10161347172016"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0314__p1917194752016"><strong id="cce_10_0314__b1733463820124">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0314__b5335123861212">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</div>
+</p></li><li id="cce_10_0314__li63176161314"><span>Run the following command to create the pod:</span><p><p id="cce_10_0314__p55865136"><strong id="cce_10_0314__b432393411104">kubectl create -f evs-deployment-example.yaml</strong></p>
+<p id="cce_10_0314__p186512010161311">After the creation is complete, log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0314__b146262811135">Resource Management</strong> &gt; <strong id="cce_10_0314__b96718281131">Storage</strong> &gt; <strong id="cce_10_0314__b1268928201313">EVS</strong>. Then, click the PVC name. On the PVC details page, you can view the binding relationship between the EVS volume and the PVC.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0309.html">Using EVS Disks as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0315.html b/docs/cce/umn/cce_10_0315.html
similarity index 52%
rename from docs/cce/umn/cce_01_0315.html
rename to docs/cce/umn/cce_10_0315.html
index 12ea529f..135337a9 100644
--- a/docs/cce/umn/cce_01_0315.html
+++ b/docs/cce/umn/cce_10_0315.html
@@ -1,25 +1,23 @@
-<a name="cce_01_0315"></a><a name="cce_01_0315"></a>
+<a name="cce_10_0315"></a><a name="cce_10_0315"></a>
 
 <h1 class="topictitle1">Using SFS File Systems as Storage Volumes</h1>
 <div id="body0000001160442129"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0316.html">Overview</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0316.html">Overview</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0317.html">Using SFS Volumes</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0318.html">(kubectl) Automatically Creating an SFS Volume</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0318.html">(kubectl) Automatically Creating an SFS Volume</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0319.html">(kubectl) Creating a PV from an Existing SFS File System</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0319.html">(kubectl) Creating a PV from an Existing SFS File System</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0320.html">(kubectl) Creating a Deployment Mounted with an SFS Volume</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0320.html">(kubectl) Creating a Deployment Mounted with an SFS Volume</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0321.html">(kubectl) Creating a StatefulSet Mounted with an SFS Volume</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0321.html">(kubectl) Creating a StatefulSet Mounted with an SFS Volume</a></strong><br>
 </li>
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0316.html b/docs/cce/umn/cce_10_0316.html
new file mode 100644
index 00000000..7004742a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0316.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0316"></a><a name="cce_10_0316"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body8662426"><p id="cce_10_0316__en-us_topic_0000001199021180_p4264101318317">CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWriteMany scenarios, such as media processing, content management, big data analysis, and workload process analysis.</p>
+<div class="fignone" id="cce_10_0316__en-us_topic_0000001199021180_fig1743195012373"><span class="figcap"><b>Figure 1 </b>Mounting SFS volumes to CCE</span><br><span><img id="cce_10_0316__en-us_topic_0000001199021180_image114311750193716" src="en-us_image_0000001201823500.png"></span></div>
+<div class="section" id="cce_10_0316__en-us_topic_0000001199021180_section313719276380"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0316__en-us_topic_0000001199021180_ul10598125623816"><li id="cce_10_0316__en-us_topic_0000001199021180_li3598556163813"><strong id="cce_10_0316__b8472174211615">Standard file protocols</strong>: You can mount file systems as volumes to servers, the same as using local directories.</li><li id="cce_10_0316__en-us_topic_0000001199021180_li45981656153819"><strong id="cce_10_0316__b14430648762">Data sharing</strong>: The same file system can be mounted to multiple servers, so that data can be shared.</li><li id="cce_10_0316__en-us_topic_0000001199021180_li1859895616386"><strong id="cce_10_0316__b391211521667">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_10_0316__en-us_topic_0000001199021180_li1359865617380"><strong id="cce_10_0316__b10709601472">Capacity and performance</strong>: The capacity of a single file system is high (PB level) and the performance is excellent (ms-level read/write I/O latency).</li><li id="cce_10_0316__en-us_topic_0000001199021180_li953501813619"><strong id="cce_10_0316__b12109155410712">Use cases</strong>: Deployments/StatefulSets in the ReadWriteMany mode and jobs created for high-performance computing (HPC), media processing, content management, web services, big data analysis, and workload process analysis</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0315.html">Using SFS File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0318.html b/docs/cce/umn/cce_10_0318.html
new file mode 100644
index 00000000..f2957fa0
--- /dev/null
+++ b/docs/cce/umn/cce_10_0318.html
@@ -0,0 +1,62 @@
+<a name="cce_10_0318"></a><a name="cce_10_0318"></a>
+
+<h1 class="topictitle1">(kubectl) Automatically Creating an SFS Volume</h1>
+<div id="body0000001113722324"><div class="section" id="cce_10_0318__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0318__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0318__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0318__ol1685919529594"><li id="cce_10_0318__li158591052155914"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0318__li138592521596"><span>Run the following commands to configure the <strong id="cce_10_0318__b18317185754417">pvc-sfs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_10_0318__p12859155220599"><b><span class="cmdname" id="cce_10_0318__cmdname836284582311">touch pvc-sfs-auto-example.yaml</span></b></p>
+<p id="cce_10_0318__p1585925265913"><b><span class="cmdname" id="cce_10_0318__cmdname5363345162311">vi pvc-sfs-auto-example.yaml</span></b></p>
+<div class="p" id="cce_10_0318__p3957141815421"><strong id="cce_10_0318__b312114510455">Example YAML file:</strong><pre class="screen" id="cce_10_0318__screen158591652105911">apiVersion: v1 
+kind: PersistentVolumeClaim 
+metadata: 
+  annotations: 
+    volume.beta.kubernetes.io/storage-class: nfs-rw
+  name: pvc-sfs-auto-example 
+  namespace: default 
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  resources: 
+    requests: 
+      storage: 10Gi</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0318__table71355385813" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0318__row141351434587"><th align="left" class="cellrowborder" valign="top" width="35.91%" id="mcps1.3.2.2.2.2.3.3.2.3.1.1"><p id="cce_10_0318__p151358385810">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="64.09%" id="mcps1.3.2.2.2.2.3.3.2.3.1.2"><p id="cce_10_0318__p7135331587">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0318__row11351935589"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0318__p12135334586">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0318__p813603165815">File storage class. Currently, the standard file protocol type (nfs-rw) is supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0318__row1413614317585"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0318__p1313610315580">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0318__p121368345813">Name of the PVC to be created.</p>
+</td>
+</tr>
+<tr id="cce_10_0318__row1713683175810"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0318__p20136133145811">accessModes</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0318__p8136235589">Only <strong id="cce_10_0318__b5978113110455">ReadWriteMany</strong> is supported. <strong id="cce_10_0318__b1897813314453">ReadWriteOnly</strong> is not supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0318__row1513614311583"><td class="cellrowborder" valign="top" width="35.91%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.1 "><p id="cce_10_0318__p81361634589">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.09%" headers="mcps1.3.2.2.2.2.3.3.2.3.1.2 "><p id="cce_10_0318__p21361134586">Storage capacity in the unit of Gi.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0318__li20860105211598"><span>Run the following command to create a PVC:</span><p><p id="cce_10_0318__p20799163073714"><b><span class="cmdname" id="cce_10_0318__cmdname1460105112371">kubectl create -f pvc-sfs-auto-example.yaml</span></b></p>
+<p id="cce_10_0318__p15332455387">After the command is executed, a file system is created in the VPC to which the cluster belongs. Choose <strong id="cce_10_0318__b2031814262562">Storage</strong> &gt; <strong id="cce_10_0318__b832416263563">SFS</strong> on the CCE console or log in to the SFS console to view the file system.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0315.html">Using SFS File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0319.html b/docs/cce/umn/cce_10_0319.html
new file mode 100644
index 00000000..8069d6cd
--- /dev/null
+++ b/docs/cce/umn/cce_10_0319.html
@@ -0,0 +1,279 @@
+<a name="cce_10_0319"></a><a name="cce_10_0319"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a PV from an Existing SFS File System</h1>
+<div id="body0000001160442133"><div class="section" id="cce_10_0319__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0319__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0319__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0319__ol17848656773"><li id="cce_10_0319__li12896194833111"><span>Log in to the SFS console, create a file system, and record the file system ID, shared path, and capacity.</span></li><li id="cce_10_0319__li2705143583215"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0319__li149938217378"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_10_0319__b11861877583">pv-sfs-example.yaml</strong> and <strong id="cce_10_0319__b1586137165813">pvc-sfs-example.yaml</strong>.</span><p><p id="cce_10_0319__p13633619911"><strong id="cce_10_0319__b1267361291">touch pv-sfs-example.yaml</strong> <strong id="cce_10_0319__b10457202293811">pvc-sfs-example.yaml</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0319__table184303411324" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0319__row104311415322"><th align="left" class="cellrowborder" valign="top" width="33.2033203320332%" id="mcps1.3.2.2.3.2.2.1.4.1.1"><p id="cce_10_0319__p443118443220">Kubernetes Cluster Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="35.34353435343534%" id="mcps1.3.2.2.3.2.2.1.4.1.2"><p id="cce_10_0319__p1431154113212">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.453145314531454%" id="mcps1.3.2.2.3.2.2.1.4.1.3"><p id="cce_10_0319__p14311346322">YAML Example</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0319__row132483424343"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.2.2.3.2.2.1.4.1.1 "><p id="cce_10_0319__p102481242133410">1.11 ≤ K8s version &lt; 1.13</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.2.2.3.2.2.1.4.1.2 "><p id="cce_10_0319__p1524819427346">Clusters from v1.11 to v1.13</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.2.2.3.2.2.1.4.1.3 "><p id="cce_10_0319__p16248134217345"><a href="#cce_10_0319__li1252510101515">Example YAML</a></p>
+</td>
+</tr>
+<tr id="cce_10_0319__row72981940163417"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.2.2.3.2.2.1.4.1.1 "><p id="cce_10_0319__p9298154043420">K8s version = 1.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.2.2.3.2.2.1.4.1.2 "><p id="cce_10_0319__p1729814407349">Clusters of v1.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.2.2.3.2.2.1.4.1.3 "><p id="cce_10_0319__p529834014349"><a href="#cce_10_0319__li10858156164514">Example YAML</a></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0319__p5758169144413"><strong id="cce_10_0319__b13245508218">Clusters from v1.11 to v1.13</strong></p>
+<ul id="cce_10_0319__ul158929465413"><li id="cce_10_0319__li1252510101515"><a name="cce_10_0319__li1252510101515"></a><a name="li1252510101515"></a><strong id="cce_10_0319__b1246614511623">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0319__screen7525410818">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  name: pv-sfs-example 
+  annotations:
+    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxinfs
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  capacity: 
+    storage: 10Gi 
+  claimRef:
+    apiVersion: v1
+    kind: PersistentVolumeClaim
+    name: pvc-sfs-example
+    namespace: default
+  flexVolume: 
+    driver: huawei.com/fuxinfs 
+    fsType: nfs 
+    options: 
+      deviceMountPath: &lt;your_deviceMountPath&gt;  # Shared storage path of your file.
+      fsType: nfs 
+      volumeID: f6976f9e-2493-419b-97ca-d7816008d91c 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: nfs-rw</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0319__table3934731234" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0319__row149341731534"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.2.2.3.2.4.1.3.2.3.1.1"><p id="cce_10_0319__p149358311835">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.2.2.3.2.4.1.3.2.3.1.2"><p id="cce_10_0319__p7935631739">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0319__row793512311034"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p29357311432">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p49351131131">Storage driver used to mount the volume. Set the driver to <strong id="cce_10_0319__b13193202333">huawei.com/fuxinfs</strong> for the file system.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row1093563112316"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p993515311335">deviceMountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p16935231434">Shared path of the file system.</p>
+<p id="cce_10_0319__p157371234845">On the management console, choose <strong id="cce_10_0319__b1267823375619">Service List</strong> &gt; <strong id="cce_10_0319__b6684193305614">Storage</strong> &gt; <strong id="cce_10_0319__b26841233125612">Scalable File Service</strong>. You can obtain the shared path of the file system from the <strong id="cce_10_0319__b106846339564">Mount Address</strong> column.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row993610311039"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p5936531137">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p2936133118317">File system ID.</p>
+<p id="cce_10_0319__p093612311432">To obtain the ID, log in to the CCE console, choose <strong id="cce_10_0319__b145663362566">Resource Management</strong> &gt; <strong id="cce_10_0319__b956663615565">Storage</strong>, click the PVC name in the <strong id="cce_10_0319__b145668367563">SFS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row093613116318"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p6936131332">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p893615311319">File system size.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row1193611312034"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p129361313317">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p59361631933">Read/write mode supported by the file system. Currently, <strong id="cce_10_0319__b183281944836">nfs-rw</strong> and <strong id="cce_10_0319__b6334744032">nfs-ro</strong> are supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row1513119244513"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p11313212457">spec.claimRef.apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p111311922456">The value is fixed at <strong id="cce_10_0319__b481214810318">v1</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row3844449452"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p28454434512">spec.claimRef.kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p188452042450">The value is fixed at <strong id="cce_10_0319__b793714503315">PersistentVolumeClaim</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row1629208104518"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p112928815457">spec.claimRef.name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p9292178174514">The value is the same as the name of the PVC created in the next step.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row15213155919448"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0319__p42131059134414">spec.claimRef.namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0319__p102136598446">Namespace of the PVC. The value is the same as the namespace of the PVC created in the next step.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0319__li34711310140"><strong id="cce_10_0319__b135218151147">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0319__screen147113101543">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    volume.beta.kubernetes.io/storage-class: nfs-rw
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxinfs
+  name: pvc-sfs-example
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 10Gi
+  volumeName: pv-sfs-example</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0319__table10792183512813" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0319__row1879416351085"><th align="left" class="cellrowborder" valign="top" width="40.01%" id="mcps1.3.2.2.3.2.4.2.3.2.3.1.1"><p id="cce_10_0319__p1179416355820">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="59.99%" id="mcps1.3.2.2.3.2.4.2.3.2.3.1.2"><p id="cce_10_0319__p6794635582">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0319__row8357105211816"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0319__p173577528812">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0319__p491810248911">Read/write mode supported by the file system. <strong id="cce_10_0319__b13018231045">nfs-rw</strong> and <strong id="cce_10_0319__b531152314416">nfs-ro</strong> are supported. The value must be the same as that of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row1269015485818"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0319__p1169111486814">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0319__p116929481812">Must be set to <strong id="cce_10_0319__b1762512281420">flexvolume-huawei.com/fuxinfs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row37957351088"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0319__p15795735487">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0319__p19795153519813">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row147951835388"><td class="cellrowborder" valign="top" width="40.01%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0319__p279512351189">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="59.99%" headers="mcps1.3.2.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0319__p1179511352811">Name of the PV.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+<p id="cce_10_0319__p18519756134520"><strong id="cce_10_0319__b121215461546">Clusters of v1.9</strong></p>
+<ul id="cce_10_0319__ul885875612452"><li id="cce_10_0319__li10858156164514"><a name="cce_10_0319__li10858156164514"></a><a name="li10858156164514"></a><strong id="cce_10_0319__b69741951722">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0319__screen9855195694515">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  name: pv-sfs-example 
+  namespace: default 
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  capacity: 
+    storage: 10Gi 
+  flexVolume: 
+    driver: huawei.com/fuxinfs 
+    fsType: nfs 
+    options: 
+      deviceMountPath: &lt;your_deviceMountPath&gt;  # Shared storage path of your file.
+      fsType: nfs 
+      kubernetes.io/namespace: default 
+      volumeID: f6976f9e-2493-419b-97ca-d7816008d91c 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: nfs-rw</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0319__table28568561454" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0319__row78551956154510"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.2.2.3.2.6.1.3.2.3.1.1"><p id="cce_10_0319__p185565634512">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.2.2.3.2.6.1.3.2.3.1.2"><p id="cce_10_0319__p1885512569451">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0319__row17855656204514"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0319__p685565614519">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0319__p78551356174510">Storage driver used to mount the volume. Set the driver to <strong id="cce_10_0319__b179661622033">huawei.com/fuxinfs</strong> for the file system.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row1856195610455"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0319__p14855205674516">deviceMountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0319__p1685555619456">Shared path of the file system.</p>
+<p id="cce_10_0319__p4856155611458">On the management console, choose <strong id="cce_10_0319__b93818399565">Service List</strong> &gt; <strong id="cce_10_0319__b113893955610">Storage</strong> &gt; <strong id="cce_10_0319__b2388393560">Scalable File Service</strong>. You can obtain the shared path of the file system from the <strong id="cce_10_0319__b1438113955614">Mount Address</strong> column.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row2856165619453"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0319__p1985610564458">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0319__p12856155616454">File system ID.</p>
+<p id="cce_10_0319__p108561156184519">To obtain the ID, log in to the CCE console, choose <strong id="cce_10_0319__b1365484119568">Resource Management</strong> &gt; <strong id="cce_10_0319__b265454112565">Storage</strong>, click the PVC name in the <strong id="cce_10_0319__b1065414115611">SFS</strong> tab page, and copy the PVC ID on the PVC details page.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row1785665684516"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0319__p1856856174516">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0319__p78566564458">File system size.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row13856165614457"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0319__p14856756134516">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0319__p19856356124520">Read/write mode supported by the file system. Currently, <strong id="cce_10_0319__b136311472310">nfs-rw</strong> and <strong id="cce_10_0319__b136311947031">nfs-ro</strong> are supported.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0319__li12198164264618"><strong id="cce_10_0319__b20734161417">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0319__screen10857105664513">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    volume.beta.kubernetes.io/storage-class: nfs-rw
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxinfs
+  name: pvc-sfs-example
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 10Gi
+  volumeName: pv-sfs-example
+  volumeNamespace: default</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0319__table585755619458" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0319__row1585714564459"><th align="left" class="cellrowborder" valign="top" width="41.67%" id="mcps1.3.2.2.3.2.6.2.3.2.3.1.1"><p id="cce_10_0319__p18857175610459">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="58.330000000000005%" id="mcps1.3.2.2.3.2.6.2.3.2.3.1.2"><p id="cce_10_0319__p13857156104514">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0319__row785735644514"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0319__p1785745654517">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0319__p4857056104511">Read/write mode supported by the file system. <strong id="cce_10_0319__b132713246419">nfs-rw</strong> and <strong id="cce_10_0319__b732716247417">nfs-ro</strong> are supported. The value must be the same as that of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row16857125615456"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0319__p1785715624516">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0319__p7857056174514">The field must be set to <strong id="cce_10_0319__b17463122915413">flexvolume-huawei.com/fuxinfs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row18857195644515"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0319__p1085711566457">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0319__p58571756174515">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0319__row98571856184519"><td class="cellrowborder" valign="top" width="41.67%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0319__p685720560459">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="58.330000000000005%" headers="mcps1.3.2.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0319__p118572568450">Name of the PV.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+<div class="note" id="cce_10_0319__note136361326161114"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0319__p86381726181119">The VPC to which the file system belongs must be the same as the VPC of the ECS VM to which the workload is planned.</p>
+</div></div>
+</p></li><li id="cce_10_0319__li1343431619108"><span>Create the PV.</span><p><p id="cce_10_0319__p125241281212"><strong id="cce_10_0319__b1425218123122">kubectl create -f pv-sfs-example.yaml</strong></p>
+</p></li><li id="cce_10_0319__li10145930121319"><span>Create the PVC.</span><p><p id="cce_10_0319__p16145330191319"><strong id="cce_10_0319__b768912391133">kubectl create -f pvc-sfs-example.yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0315.html">Using SFS File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0320.html b/docs/cce/umn/cce_10_0320.html
new file mode 100644
index 00000000..e8605db3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0320.html
@@ -0,0 +1,166 @@
+<a name="cce_10_0320"></a><a name="cce_10_0320"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an SFS Volume</h1>
+<div id="body0000001160562123"><div class="section" id="cce_10_0320__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0320__p0780175013561">After an SFS volume is created or imported to CCE, you can mount the volume to a workload.</p>
+</div>
+<div class="section" id="cce_10_0320__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0320__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0320__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0320__ol05361840142120"><li id="cce_10_0320__li1210641545116"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0320__li3590240112114"><span>Run the following commands to configure the <strong id="cce_10_0320__b14221145814352">sfs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_10_0320__p459116406215"><strong id="cce_10_0320__b18593740162114"><em id="cce_10_0320__i18593440172118">touch sfs-deployment-example.yaml</em></strong></p>
+<p id="cce_10_0320__p859584012117"><strong id="cce_10_0320__b14595540112113"><em id="cce_10_0320__i10597104012120">vi sfs-deployment-example.yaml</em></strong></p>
+<div class="p" id="cce_10_0320__p1312737638">Example of mounting an SFS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_10_0320__screen11598540132112">apiVersion: apps/v1 
+kind: Deployment 
+metadata: 
+  name: sfs-deployment-example                                # Workload name
+  namespace: default 
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: sfs-deployment-example 
+  template: 
+    metadata: 
+      labels: 
+        app: sfs-deployment-example 
+    spec: 
+      containers: 
+      - image: nginx 
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp                                # Mount path 
+          name: pvc-sfs-example 
+      imagePullSecrets:
+        - name: default-secret
+      restartPolicy: Always 
+      volumes: 
+      - name: pvc-sfs-example 
+        persistentVolumeClaim: 
+          claimName: pvc-sfs-auto-example                # PVC name</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0320__table397913279106" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0320__row119803273101"><th align="left" class="cellrowborder" valign="top" width="38.24%" id="mcps1.3.3.2.2.2.4.2.4.1.1"><p id="cce_10_0320__p1615192114317">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.91%" id="mcps1.3.3.2.2.2.4.2.4.1.2"><p id="cce_10_0320__p12980132717103">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.85%" id="mcps1.3.3.2.2.2.4.2.4.1.3"><p id="cce_10_0320__p7981172710104">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0320__row99818271102"><td class="cellrowborder" valign="top" width="38.24%" headers="mcps1.3.3.2.2.2.4.2.4.1.1 "><p id="cce_10_0320__p2151921153117">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.3.2.2.2.4.2.4.1.2 "><p id="cce_10_0320__p345291413122">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.85%" headers="mcps1.3.3.2.2.2.4.2.4.1.3 "><p id="cce_10_0320__p119811427161017">Name of the pod to be created.</p>
+</td>
+</tr>
+<tr id="cce_10_0320__row15983132715104"><td class="cellrowborder" valign="top" width="38.24%" headers="mcps1.3.3.2.2.2.4.2.4.1.1 "><p id="cce_10_0320__p8151102118311">spec.template.spec.containers.volumeMounts</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.3.2.2.2.4.2.4.1.2 "><p id="cce_10_0320__p18404174281219">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.85%" headers="mcps1.3.3.2.2.2.4.2.4.1.3 "><p id="cce_10_0320__p2098372713107">Mount path in the container. In this example, the mount path is <strong id="cce_10_0320__b182281037193614">/tmp</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0320__row188911550183213"><td class="cellrowborder" valign="top" width="38.24%" headers="mcps1.3.3.2.2.2.4.2.4.1.1 "><p id="cce_10_0320__p425991613812">spec.template.spec.volumes.persistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.91%" headers="mcps1.3.3.2.2.2.4.2.4.1.2 "><p id="cce_10_0320__p14319143031212">claimName</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.85%" headers="mcps1.3.3.2.2.2.4.2.4.1.3 "><p id="cce_10_0320__p18319530131211">Name of an existing PVC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0320__note12103218191612"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0320__p21046188168"><strong id="cce_10_0320__b914564712363">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0320__b9146124718366">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+<p id="cce_10_0320__p86373162018">Example of mounting an SFS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
+<div class="p" id="cce_10_0320__p143661739115910"><strong id="cce_10_0320__b1860119615373">Example YAML:</strong><pre class="screen" id="cce_10_0320__screen558619452187">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: deploy-sfs-nfs-rw-in
+  namespace: default
+  labels:
+    appgroup: ''
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: deploy-sfs-nfs-rw-in
+  template:
+    metadata:
+      labels:
+        app: deploy-sfs-nfs-rw-in
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:1.12-alpine-perl'
+          volumeMounts:
+            - name: bs-nfs-rw-mountoptionpvc
+              mountPath: /aaa
+      imagePullSecrets:
+        - name: default-secret
+  volumeClaimTemplates:
+    - metadata:
+        name: bs-nfs-rw-mountoptionpvc
+        annotations:
+          volume.beta.kubernetes.io/storage-class: nfs-rw
+          volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxinfs
+      spec:
+        accessModes:
+          - ReadWriteMany
+        resources:
+          requests:
+            storage: 1Gi
+  serviceName: wwww</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0320__table14312339123018" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0320__row8312153953015"><th align="left" class="cellrowborder" valign="top" width="30.45%" id="mcps1.3.3.2.2.2.8.2.4.1.1"><p id="cce_10_0320__p1237415107350">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="18.04%" id="mcps1.3.3.2.2.2.8.2.4.1.2"><p id="cce_10_0320__p11312143923015">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="51.51%" id="mcps1.3.3.2.2.2.8.2.4.1.3"><p id="cce_10_0320__p13313153914304">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0320__row1031311395306"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.3.2.2.2.8.2.4.1.1 "><p id="cce_10_0320__p137431017353">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.2.2.2.8.2.4.1.2 "><p id="cce_10_0320__p10313203914303">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.3.2.2.2.8.2.4.1.3 "><p id="cce_10_0320__p2313133916301">Name of the created workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0320__row731393993011"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.3.2.2.2.8.2.4.1.1 "><p id="cce_10_0320__p237441033513">spec.template.spec.containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.2.2.2.8.2.4.1.2 "><p id="cce_10_0320__p143141539123014">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.3.2.2.2.8.2.4.1.3 "><p id="cce_10_0320__p1231423983016">Image of the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0320__row33147398308"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.3.2.2.2.8.2.4.1.1 "><p id="cce_10_0320__p1237431018356">spec.template.spec.containers.volumeMount</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.2.2.2.8.2.4.1.2 "><p id="cce_10_0320__p18314439163011">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.3.2.2.2.8.2.4.1.3 "><p id="cce_10_0320__p20314183973011">Mount path in the container. In this example, the mount path is <strong id="cce_10_0320__b2560144213620">/tmp</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0320__row931415398304"><td class="cellrowborder" valign="top" width="30.45%" headers="mcps1.3.3.2.2.2.8.2.4.1.1 "><p id="cce_10_0320__p13374111053511">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.04%" headers="mcps1.3.3.2.2.2.8.2.4.1.2 "><p id="cce_10_0320__p1731415391302">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="51.51%" headers="mcps1.3.3.2.2.2.8.2.4.1.3 "><p id="cce_10_0320__p163146397302">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0320__note8995165343018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0320__p13997953163015"><strong id="cce_10_0320__b1946819260378">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0320__b12468112619373">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0320__li26411440172111"><span>Run the following command to create the pod:</span><p><p id="cce_10_0320__p1948187803"><strong id="cce_10_0320__b106417253131">kubectl create -f sfs-deployment-example.yaml</strong></p>
+<p id="cce_10_0320__p1466112111010">After the creation is complete, log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0320__b492353511371">Resource Management</strong> &gt; <strong id="cce_10_0320__b11929163533714">Storage</strong> &gt; <strong id="cce_10_0320__b193073512379">SFS</strong>. Click the PVC name. On the PVC details page, you can view the binding relationship between SFS and PVC.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0315.html">Using SFS File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0321.html b/docs/cce/umn/cce_10_0321.html
new file mode 100644
index 00000000..cc566cc8
--- /dev/null
+++ b/docs/cce/umn/cce_10_0321.html
@@ -0,0 +1,108 @@
+<a name="cce_10_0321"></a><a name="cce_10_0321"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an SFS Volume</h1>
+<div id="body0000001113882224"><div class="section" id="cce_10_0321__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0321__p11734132718149">CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).</p>
+</div>
+<div class="section" id="cce_10_0321__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0321__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0321__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0321__ol1350515318149"><li id="cce_10_0321__li85058532149"><span>Create an SFS volume by referring to <a href="cce_10_0318.html">(kubectl) Automatically Creating an SFS Volume</a> and record the volume name.</span></li><li id="cce_10_0321__li7504151211813"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0321__li8612171441813"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0321__b825271183913">sfs-statefulset-example</strong>.<strong id="cce_10_0321__b11253121133914">yaml</strong>.</span><p><p id="cce_10_0321__p13379173818187"><strong id="cce_10_0321__b18379538171814">touch sfs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0321__p3379203871816"><strong id="cce_10_0321__b2037953881811">vi sfs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0321__p9985153518198"><strong id="cce_10_0321__b3857171353913">Example YAML:</strong></p>
+<pre class="screen" id="cce_10_0321__screen1085510415199">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: sfs-statefulset-example
+  namespace: default
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: sfs-statefulset-example
+  serviceName: qwqq
+  template:
+    metadata:
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
+        pod.alpha.kubernetes.io/initialized: "true"
+      labels:
+        app: sfs-statefulset-example
+    spec:
+      affinity: {}
+      containers:
+      - image: nginx:latest
+        name: container-0
+        volumeMounts:
+        - mountPath: /tmp
+          name: pvc-sfs-example
+      imagePullSecrets:
+      - name: default-secret
+      volumes:
+        - name: pvc-sfs-example
+          persistentVolumeClaim:
+            claimName: cce-sfs-demo</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0321__table397913279106" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0321__row119803273101"><th align="left" class="cellrowborder" valign="top" width="35.61%" id="mcps1.3.3.2.3.2.5.2.4.1.1"><p id="cce_10_0321__p711172811283">Parent Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="19.139999999999997%" id="mcps1.3.3.2.3.2.5.2.4.1.2"><p id="cce_10_0321__p12980132717103">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="45.25%" id="mcps1.3.3.2.3.2.5.2.4.1.3"><p id="cce_10_0321__p7981172710104">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0321__row99818271102"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.3.2.3.2.5.2.4.1.1 "><p id="cce_10_0321__p5111428152813">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.3.2.3.2.5.2.4.1.2 "><p id="cce_10_0321__p345291413122">replicas</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.3.2.3.2.5.2.4.1.3 "><p id="cce_10_0321__p119811427161017">Number of pods.</p>
+</td>
+</tr>
+<tr id="cce_10_0321__row14981102761010"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.3.2.3.2.5.2.4.1.1 "><p id="cce_10_0321__p01172810283">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.3.2.3.2.5.2.4.1.2 "><p id="cce_10_0321__p1258410114111">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.3.2.3.2.5.2.4.1.3 "><p id="cce_10_0321__p14983152711100">Name of the created workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0321__row15983132715104"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.3.2.3.2.5.2.4.1.1 "><p id="cce_10_0321__p111110287288">spec.template.spec.containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.3.2.3.2.5.2.4.1.2 "><p id="cce_10_0321__p18404174281219">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.3.2.3.2.5.2.4.1.3 "><p id="cce_10_0321__p2098372713107">Image used by the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0321__row17983427181013"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.3.2.3.2.5.2.4.1.1 "><p id="cce_10_0321__p211182811286">spec.template.spec.containers.volumeMounts</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.3.2.3.2.5.2.4.1.2 "><p id="cce_10_0321__p383919212135">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.3.2.3.2.5.2.4.1.3 "><p id="cce_10_0321__p3983142712105">Mount path in the container.</p>
+</td>
+</tr>
+<tr id="cce_10_0321__row17159179171318"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.3.2.3.2.5.2.4.1.1 "><p id="cce_10_0321__p1011102862812">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.3.2.3.2.5.2.4.1.2 "><p id="cce_10_0321__p6104899138">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.3.2.3.2.5.2.4.1.3 "><p id="cce_10_0321__p1210449101314">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0321__row51546961311"><td class="cellrowborder" valign="top" width="35.61%" headers="mcps1.3.3.2.3.2.5.2.4.1.1 "><p id="cce_10_0321__p711728102820">spec.template.spec.volumes.persistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.139999999999997%" headers="mcps1.3.3.2.3.2.5.2.4.1.2 "><p id="cce_10_0321__p246811218141">claimName</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.25%" headers="mcps1.3.3.2.3.2.5.2.4.1.3 "><p id="cce_10_0321__p14105139131316">Name of an existing PVC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0321__note125211056181112"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0321__p75234567113"><strong id="cce_10_0321__b49091443103918">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0321__b0910164314394">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0321__li623417282317"><span>Create the StatefulSet.</span><p><p id="cce_10_0321__p423410219232"><strong id="cce_10_0321__b18234142162314">kubectl create -f  sfs-statefulset-example .yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0315.html">Using SFS File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0322.html b/docs/cce/umn/cce_10_0322.html
similarity index 51%
rename from docs/cce/umn/cce_01_0322.html
rename to docs/cce/umn/cce_10_0322.html
index e7faed46..9b022042 100644
--- a/docs/cce/umn/cce_01_0322.html
+++ b/docs/cce/umn/cce_10_0322.html
@@ -1,25 +1,23 @@
-<a name="cce_01_0322"></a><a name="cce_01_0322"></a>
+<a name="cce_10_0322"></a><a name="cce_10_0322"></a>
 
 <h1 class="topictitle1">Using OBS Buckets as Storage Volumes</h1>
 <div id="body0000001113722326"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0323.html">Overview</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0323.html">Overview</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0324.html">Using OBS Volumes</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0325.html">(kubectl) Automatically Creating an OBS Volume</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0325.html">(kubectl) Automatically Creating an OBS Volume</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0326.html">(kubectl) Creating a PV from an Existing OBS Bucket</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0326.html">(kubectl) Creating a PV from an Existing OBS Bucket</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0327.html">(kubectl) Creating a Deployment Mounted with an OBS Volume</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0327.html">(kubectl) Creating a Deployment Mounted with an OBS Volume</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0328.html">(kubectl) Creating a StatefulSet Mounted with an OBS Volume</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0328.html">(kubectl) Creating a StatefulSet Mounted with an OBS Volume</a></strong><br>
 </li>
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0323.html b/docs/cce/umn/cce_10_0323.html
new file mode 100644
index 00000000..ad8c21d3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0323.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0323"></a><a name="cce_10_0323"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body8662426"><p id="cce_10_0323__en-us_topic_0000001244101063_p178793583820">CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud workloads, data analysis, content analysis, and hotspot objects.</p>
+<div class="fignone" id="cce_10_0323__en-us_topic_0000001244101063_fig93521319153910"><span class="figcap"><b>Figure 1 </b>Mounting OBS volumes to CCE</span><br><span><img id="cce_10_0323__en-us_topic_0000001244101063_image3353111953912" src="en-us_image_0000001249023453.png"></span></div>
+<div class="section" id="cce_10_0323__en-us_topic_0000001244101063_section1432613347151"><h4 class="sectiontitle">Storage Class</h4><p id="cce_10_0323__en-us_topic_0000001244101063_p855403534318">Object storage offers three storage classes, Standard, Infrequent Access, and Archive, to satisfy different requirements for storage performance and costs.</p>
+<ul id="cce_10_0323__en-us_topic_0000001244101063_ul473211719441"><li id="cce_10_0323__en-us_topic_0000001244101063_li117324720445">The Standard storage class features low access latency and high throughput. It is therefore applicable to storing a large number of hot files (frequently accessed every month) or small files (less than 1 MB). The application scenarios include big data analytics, mobile apps, hot videos, and picture processing on social media.</li><li id="cce_10_0323__en-us_topic_0000001244101063_li4732372445">The Infrequent Access storage class is ideal for storing data that is semi-frequently accessed (less than 12 times a year), with requirements for quick response. The application scenarios include file synchronization or sharing, and enterprise-level backup. It provides the same durability, access latency, and throughput as the Standard storage class but at a lower cost. However, the Infrequent Access storage class has lower availability than the Standard storage class.</li><li id="cce_10_0323__en-us_topic_0000001244101063_li473213711447">The Archive storage class is suitable for archiving data that is rarely-accessed (averagely once a year). The application scenarios include data archiving and long-term data backup. The Archive storage class is secure and durable at an affordable low cost, which can be used to replace tape libraries. However, it may take hours to restore data from the Archive storage class.</li></ul>
+</div>
+<div class="section" id="cce_10_0323__en-us_topic_0000001244101063_section85026235402"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0323__en-us_topic_0000001244101063_ul697743174018"><li id="cce_10_0323__en-us_topic_0000001244101063_li99713432401"><strong id="cce_10_0323__b11419132141019">Standard APIs</strong>: With HTTP RESTful APIs, OBS allows you to use client tools or third-party tools to access object storage.</li><li id="cce_10_0323__en-us_topic_0000001244101063_li49718432400"><strong id="cce_10_0323__b752713419104">Data sharing</strong>: Servers, embedded devices, and IoT devices can use the same path to access shared object data in OBS.</li><li id="cce_10_0323__en-us_topic_0000001244101063_li8975439402"><strong id="cce_10_0323__b12721146101015">Public/Private networks</strong>: OBS allows data to be accessed from public networks to meet Internet application requirements.</li><li id="cce_10_0323__en-us_topic_0000001244101063_li169784314401"><strong id="cce_10_0323__b732916100119">Capacity and performance</strong>: No capacity limit; high performance (read/write I/O latency within 10 ms).</li><li id="cce_10_0323__en-us_topic_0000001244101063_li1897134317406"><strong id="cce_10_0323__b163313219165">Use cases</strong>: Deployments/StatefulSets in the ReadOnlyMany mode and jobs created for big data analysis, static website hosting, online video on demand (VoD), gene sequencing, intelligent video surveillance, backup and archiving, and enterprise cloud boxes (web disks). You can create object storage by using the OBS console, tools, and SDKs.</li></ul>
+</div>
+<div class="section" id="cce_10_0323__en-us_topic_0000001244101063_section79144061410"><h4 class="sectiontitle">Reference</h4><p id="cce_10_0323__en-us_topic_0000001244101063_p16231018183117">CCE clusters can also be mounted with OBS buckets of third-party tenants, including OBS parallel file systems (preferred) and OBS object buckets.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0322.html">Using OBS Buckets as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0325.html b/docs/cce/umn/cce_10_0325.html
new file mode 100644
index 00000000..c89ffb46
--- /dev/null
+++ b/docs/cce/umn/cce_10_0325.html
@@ -0,0 +1,64 @@
+<a name="cce_10_0325"></a><a name="cce_10_0325"></a>
+
+<h1 class="topictitle1">(kubectl) Automatically Creating an OBS Volume</h1>
+<div id="body0000001113882226"><div class="section" id="cce_10_0325__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0325__p144041821719">During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, which correspond to <strong id="cce_10_0325__b11119257183915">obs-standard</strong> and <strong id="cce_10_0325__b811985718395">obs-standard-ia</strong>, respectively.</p>
+</div>
+<div class="section" id="cce_10_0325__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0325__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0325__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0325__ol141112211118"><li id="cce_10_0325__li128662616503"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0325__li840720210114"><span>Run the following commands to configure the <strong id="cce_10_0325__b10123151994019">pvc-obs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_10_0325__p1040552117118"><strong id="cce_10_0325__b1140517211618">touch pvc-obs-auto-example.yaml</strong></p>
+<p id="cce_10_0325__p1640515212119"><strong id="cce_10_0325__b184051421619">vi pvc-obs-auto-example.yaml</strong></p>
+<p id="cce_10_0325__p18405102120120"><strong id="cce_10_0325__b6797112716402">Example YAML:</strong></p>
+<pre class="screen" id="cce_10_0325__screen164061219112">apiVersion: v1 
+kind: PersistentVolumeClaim 
+metadata: 
+  annotations: 
+    volume.beta.kubernetes.io/storage-class: obs-standard  # OBS bucket type. The value can be <strong id="cce_10_0325__b81602031194015">obs-standard</strong> (standard) or <strong id="cce_10_0325__b916610314403">obs-standard-ia</strong> (infrequent access).
+  name: pvc-obs-auto-example  # PVC name
+  namespace: default 
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  resources: 
+    requests: 
+      storage: 1Gi   # Storage capacity in the unit of Gi. For OBS buckets, this parameter is used only for verification (fixed to 1, cannot be empty or 0). Any value you set does not take effect for OBS buckets.</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0325__table1897325023619" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0325__row2973195019365"><th align="left" class="cellrowborder" valign="top" width="35.809999999999995%" id="mcps1.3.3.2.2.2.5.2.3.1.1"><p id="cce_10_0325__p1973155063611">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="64.19%" id="mcps1.3.3.2.2.2.5.2.3.1.2"><p id="cce_10_0325__p139741150123614">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0325__row3974350153618"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.3.2.2.2.5.2.3.1.1 "><p id="cce_10_0325__p2974155083619">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.3.2.2.2.5.2.3.1.2 "><p id="cce_10_0325__p1497425012362">Bucket type. Currently, <strong id="cce_10_0325__b13573114910441">obs-standard</strong> and <strong id="cce_10_0325__b201555314448">obs-standard-ia</strong> are supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0325__row2974950133612"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.3.2.2.2.5.2.3.1.1 "><p id="cce_10_0325__p1497565093618">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.3.2.2.2.5.2.3.1.2 "><p id="cce_10_0325__p1975145003618">Name of the PVC to be created.</p>
+</td>
+</tr>
+<tr id="cce_10_0325__row12975850123614"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.3.2.2.2.5.2.3.1.1 "><p id="cce_10_0325__p17975150193613">accessModes</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.3.2.2.2.5.2.3.1.2 "><p id="cce_10_0325__p10975150173615">Only <strong id="cce_10_0325__b156114844517">ReadWriteMany</strong> is supported. <strong id="cce_10_0325__b18561108174513">ReadWriteOnly</strong> is not supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0325__row169751506362"><td class="cellrowborder" valign="top" width="35.809999999999995%" headers="mcps1.3.3.2.2.2.5.2.3.1.1 "><p id="cce_10_0325__p109751750123619">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.19%" headers="mcps1.3.3.2.2.2.5.2.3.1.2 "><p id="cce_10_0325__p119761450113614">Storage capacity in the unit of Gi. For OBS buckets, this field is used only for verification (cannot be empty or 0). Its value is fixed at <strong id="cce_10_0325__b2093561284510">1</strong>, and any value you set does not take effect for OBS buckets. </p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0325__li540817214118"><span>Run the following command to create a PVC:</span><p><p id="cce_10_0325__p6992011944"><b><span class="cmdname" id="cce_10_0325__cmdname11735142416412">kubectl create -f pvc-obs-auto-example.yaml</span></b></p>
+<p id="cce_10_0325__p184723116418">After the command is executed, an OBS bucket is created in the VPC to which the cluster belongs. You can click the bucket name in <strong id="cce_10_0325__b1898215335613">Storage</strong> &gt; <strong id="cce_10_0325__b79902385612">OBS</strong> to view the bucket or view it on the OBS console.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0322.html">Using OBS Buckets as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0326.html b/docs/cce/umn/cce_10_0326.html
new file mode 100644
index 00000000..cd4f804a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0326.html
@@ -0,0 +1,289 @@
+<a name="cce_10_0326"></a><a name="cce_10_0326"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a PV from an Existing OBS Bucket</h1>
+<div id="body0000001113722330"><div class="section" id="cce_10_0326__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0326__p0191112112620">CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.</p>
+</div>
+<div class="section" id="cce_10_0326__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0326__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0326__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0326__ol195789327269"><li id="cce_10_0326__li1757810328267"><span>Log in to the OBS console, create an OBS bucket, and record the bucket name and storage class.</span></li><li id="cce_10_0326__li1225213417279"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0326__li147207192281"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_10_0326__b1272522465">pv-obs-example.yaml</strong> and <strong id="cce_10_0326__b13719529462">pvc-obs-example.yaml</strong>.</span><p><p id="cce_10_0326__p171322115295"><strong id="cce_10_0326__b213211152911">touch pv-obs-example.yaml</strong> <strong id="cce_10_0326__b15874182919519">pvc-obs-example.yaml</strong></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0326__table184303411324" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0326__row104311415322"><th align="left" class="cellrowborder" valign="top" width="33.2033203320332%" id="mcps1.3.3.2.3.2.2.1.4.1.1"><p id="cce_10_0326__p443118443220">Kubernetes Cluster Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="35.34353435343534%" id="mcps1.3.3.2.3.2.2.1.4.1.2"><p id="cce_10_0326__p1431154113212">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.453145314531454%" id="mcps1.3.3.2.3.2.2.1.4.1.3"><p id="cce_10_0326__p14311346322">YAML Example</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0326__row543118415321"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.3.2.3.2.2.1.4.1.1 "><p id="cce_10_0326__p1743111463216">1.11 ≤ K8s version ≤ 1.13</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.3.2.3.2.2.1.4.1.2 "><p id="cce_10_0326__p743119413320">Clusters from v1.11 to v1.13</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.3.2.3.2.2.1.4.1.3 "><p id="cce_10_0326__p13431246327"><a href="#cce_10_0326__li45671840132016">Example YAML</a></p>
+</td>
+</tr>
+<tr id="cce_10_0326__row72981940163417"><td class="cellrowborder" valign="top" width="33.2033203320332%" headers="mcps1.3.3.2.3.2.2.1.4.1.1 "><p id="cce_10_0326__p9298154043420">K8s version = 1.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.34353435343534%" headers="mcps1.3.3.2.3.2.2.1.4.1.2 "><p id="cce_10_0326__p1729814407349">Clusters of v1.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.453145314531454%" headers="mcps1.3.3.2.3.2.2.1.4.1.3 "><p id="cce_10_0326__p529834014349"><a href="#cce_10_0326__li154036581589">Example YAML</a></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0326__p10842183795616"><strong id="cce_10_0326__b11124618144718">Clusters from v1.11 to v1.13</strong></p>
+<ul id="cce_10_0326__ul64775085512"><li id="cce_10_0326__li45671840132016"><a name="cce_10_0326__li45671840132016"></a><a name="li45671840132016"></a><strong id="cce_10_0326__b362732044717">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0326__screen16987121761917">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  name: pv-obs-example 
+  annotations:
+    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxiobs
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  capacity: 
+    storage: 1Gi 
+  claimRef:
+    apiVersion: v1
+    kind: PersistentVolumeClaim
+    name: pvc-obs-example
+    namespace: default
+  flexVolume: 
+    driver: huawei.com/fuxiobs 
+    fsType: obs 
+    options: 
+      fsType: obs 
+      region: <span id="cce_10_0326__text286811385519">eu-de</span>
+      storage_class: STANDARD 
+      volumeID: test-obs 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: obs-standard</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0326__table832713405430" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0326__row53276406434"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.2.3.2.4.1.3.2.3.1.1"><p id="cce_10_0326__p15327134014433">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.2.3.2.4.1.3.2.3.1.2"><p id="cce_10_0326__p133274408432">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0326__row432714020436"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p13328540134319">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p1032814074320">Storage driver used to mount the volume. Set the driver to <strong id="cce_10_0326__b078094144718">huawei.com/fuxiobs</strong> for the OBS volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row132834014431"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p13979181319442">storage_class</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p83281740134319">Storage class, including <strong id="cce_10_0326__b19261114104814">STANDARD</strong> (standard bucket) and <strong id="cce_10_0326__b1326215444816">STANDARD_IA</strong> (infrequent access bucket).</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row1332819409437"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p997612588441">region</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p173851644195213">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row5328440194311"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p143286409433">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p1676410385454">OBS bucket name.</p>
+<p id="cce_10_0326__p35271835134519">To obtain the name, log in to the CCE console, choose <strong id="cce_10_0326__b1659015122569">Resource Management</strong> &gt; <strong id="cce_10_0326__b185971122566">Storage</strong>, click the PVC name in the <strong id="cce_10_0326__b859781255618">OBS</strong> tab page, and copy the PV name on the <strong id="cce_10_0326__b1559731217569">PV Details</strong> tab page.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row203291940144319"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p4330114084310">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p183313401430">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_10_0326__b974818517487">1Gi</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row833154011434"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p8331174074312">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p1733111407435">Storage class supported by OBS, including <strong id="cce_10_0326__b1727512412492">obs-standard</strong> (standard bucket) and <strong id="cce_10_0326__b728162416490">obs-standard-ia</strong> (infrequent access bucket).</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row211494345516"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p20114194315517">spec.claimRef.apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p1211412438557">The value is fixed at <strong id="cce_10_0326__b11576184112499">v1</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row16358204720552"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p123581247115512">spec.claimRef.kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p3358647155515">The value is fixed at <strong id="cce_10_0326__b105031148114919">PersistentVolumeClaim</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row149212505557"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p13921250125513">spec.claimRef.name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p13921195013554">The value is the same as the name of the PVC created in the next step.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row38145495515"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.1 "><p id="cce_10_0326__p168205418552">spec.claimRef.namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.4.1.3.2.3.1.2 "><p id="cce_10_0326__p1821854205512">The value is the same as the namespace of the PVC created in the next step.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0326__li1617832212268"><strong id="cce_10_0326__b5590172135011">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0326__screen12104142412269">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    volume.beta.kubernetes.io/storage-class: obs-standard
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiobs
+  name: pvc-obs-example
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+  volumeName: pv-obs-example</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0326__table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0326__row1425005815020"><th align="left" class="cellrowborder" valign="top" width="37.36%" id="mcps1.3.3.2.3.2.4.2.3.2.3.1.1"><p id="cce_10_0326__p1525045817501">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="62.63999999999999%" id="mcps1.3.3.2.3.2.4.2.3.2.3.1.2"><p id="cce_10_0326__p162501858165014">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0326__row725065865014"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0326__p152504582506">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0326__p1425185812509">Storage class supported by OBS, including <strong id="cce_10_0326__b7441011175015">obs-standard</strong> and <strong id="cce_10_0326__b9441111185010">obs-standard-ia</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row1025175814505"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0326__p1825125813505">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0326__p1825195895012">Must be set to <strong id="cce_10_0326__b10378181712501">flexvolume-huawei.com/fuxiobs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row17251115805017"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0326__p2025185817509">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0326__p9251125875017">Name of the PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row8251165845018"><td class="cellrowborder" valign="top" width="37.36%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.1 "><p id="cce_10_0326__p22521858135013">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="62.63999999999999%" headers="mcps1.3.3.2.3.2.4.2.3.2.3.1.2 "><p id="cce_10_0326__p1525285819508">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_10_0326__b36562112491">1Gi</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+<p id="cce_10_0326__p1303587582"><strong id="cce_10_0326__b1578620448503">Clusters of v1.9</strong></p>
+<ul id="cce_10_0326__ul194031589581"><li id="cce_10_0326__li154036581589"><a name="cce_10_0326__li154036581589"></a><a name="li154036581589"></a><strong id="cce_10_0326__b53202222477">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0326__screen54001458115811">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  name: pv-obs-example 
+  namespace: default  
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  capacity: 
+    storage: 1Gi 
+  flexVolume: 
+    driver: huawei.com/fuxiobs 
+    fsType: obs 
+    options: 
+      fsType: obs 
+      kubernetes.io/namespace: default 
+      region: <span id="cce_10_0326__text9721123875614">eu-de</span>
+      storage_class: STANDARD 
+      volumeID: test-obs 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: obs-standard</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0326__table1940115586588" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0326__row10400145816580"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.2.3.2.6.1.3.2.3.1.1"><p id="cce_10_0326__p1840065885817">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.2.3.2.6.1.3.2.3.1.2"><p id="cce_10_0326__p64001058145818">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0326__row164002584588"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0326__p44009581587">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0326__p740075825813">Storage driver used to mount the volume. Set the driver to <strong id="cce_10_0326__b1751791114819">huawei.com/fuxiobs</strong> for the OBS volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row6400165875813"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0326__p1340075815814">storage_class</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0326__p1840015819589">Storage class, including <strong id="cce_10_0326__b5281171817485">STANDARD</strong> (standard bucket) and <strong id="cce_10_0326__b13281201834811">STANDARD_IA</strong> (infrequent access bucket).</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row7400175895815"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0326__p74008588581">region</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0326__p281983218918">Region where the cluster is located.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row10401758105816"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0326__p124003586586">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0326__p1401165813584">OBS bucket name.</p>
+<p id="cce_10_0326__p8401155845819">To obtain the name, log in to the CCE console, choose <strong id="cce_10_0326__b8895314195611">Resource Management</strong> &gt; <strong id="cce_10_0326__b17895414205617">Storage</strong>, click the PVC name in the <strong id="cce_10_0326__b12895131415569">OBS</strong> tab page, and copy the PV name on the <strong id="cce_10_0326__b1989571419568">PV Details</strong> tab page.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row1240112584582"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0326__p9401105845814">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0326__p14401145814587">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_10_0326__b48122194911">1Gi</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row5401175812585"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0326__p1401195816581">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0326__p164013584586">Storage class supported by OBS, including <strong id="cce_10_0326__b16169193984915">obs-standard</strong> (standard bucket) and <strong id="cce_10_0326__b6170839204911">obs-standard-ia</strong> (infrequent access bucket).</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0326__li947793419597"><strong id="cce_10_0326__b113769425017">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0326__screen740265818588">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    volume.beta.kubernetes.io/storage-class: obs-standard
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiobs
+  name: pvc-obs-example
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+  volumeName: pv-obs-example
+  volumeNamespace: default</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0326__table19403105818582" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0326__row1140216585581"><th align="left" class="cellrowborder" valign="top" width="36.74%" id="mcps1.3.3.2.3.2.6.2.3.2.3.1.1"><p id="cce_10_0326__p1402658115814">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="63.260000000000005%" id="mcps1.3.3.2.3.2.6.2.3.2.3.1.2"><p id="cce_10_0326__p240210586584">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0326__row040235815582"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0326__p1640212587584">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0326__p240285855820">Storage class supported by OBS, including <strong id="cce_10_0326__b679614136504">obs-standard</strong> and <strong id="cce_10_0326__b157961413145013">obs-standard-ia</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row1040216587588"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0326__p4402125810586">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0326__p440245815818">Must be set to <strong id="cce_10_0326__b1235163645017">flexvolume-huawei.com/fuxiobs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row1640245845818"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0326__p10402175816583">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0326__p14402125817583">Name of the PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0326__row24021658155817"><td class="cellrowborder" valign="top" width="36.74%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.1 "><p id="cce_10_0326__p2402125819582">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="63.260000000000005%" headers="mcps1.3.3.2.3.2.6.2.3.2.3.1.2 "><p id="cce_10_0326__p44022582583">Storage capacity in the unit of Gi. The value is fixed at <strong id="cce_10_0326__b197521114919">1Gi</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+</p></li><li id="cce_10_0326__li06040310295"><span>Create the PV.</span><p><p id="cce_10_0326__p1835711346313"><strong id="cce_10_0326__b15781343031">kubectl create -f pv-obs-example.yaml</strong></p>
+</p></li><li id="cce_10_0326__li186032314517"><span>Create the PVC.</span><p><p id="cce_10_0326__p56019239516"><strong id="cce_10_0326__b57561726455">kubectl create -f pvc-obs-example.yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0322.html">Using OBS Buckets as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0327.html b/docs/cce/umn/cce_10_0327.html
new file mode 100644
index 00000000..53ced888
--- /dev/null
+++ b/docs/cce/umn/cce_10_0327.html
@@ -0,0 +1,173 @@
+<a name="cce_10_0327"></a><a name="cce_10_0327"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an OBS Volume</h1>
+<div id="body0000001160442137"><div class="section" id="cce_10_0327__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0327__p13415181285914">After an OBS volume is created or imported to CCE, you can mount the volume to a workload.</p>
+</div>
+<div class="section" id="cce_10_0327__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0327__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0327__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0327__ol1367331010214"><li id="cce_10_0327__li19130164216502"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0327__li13722131012216"><span>Run the following commands to configure the <strong id="cce_10_0327__b126172437519">obs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_10_0327__p9724141011211"><strong id="cce_10_0327__b64921215152512">touch obs-deployment-example.yaml</strong></p>
+<p id="cce_10_0327__p19726151015213"><strong id="cce_10_0327__b1762182312513">vi obs-deployment-example.yaml</strong></p>
+<div class="p" id="cce_10_0327__p17621182320411">Example of mounting an OBS volume to a Deployment (PVC-based, shared volume):<pre class="screen" id="cce_10_0327__screen117301810128">apiVersion: apps/v1 
+kind: Deployment 
+metadata: 
+   name: obs-deployment-example                       # Workload name
+  namespace: default 
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: obs-deployment-example 
+  template: 
+    metadata: 
+      labels: 
+        app: obs-deployment-example 
+    spec: 
+      containers: 
+      - image: nginx 
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp                       # Mount path
+          name: pvc-obs-example 
+      restartPolicy: Always
+      imagePullSecrets:
+        - name: default-secret
+      volumes: 
+      - name: pvc-obs-example  
+        persistentVolumeClaim: 
+          claimName: pvc-obs-auto-example       # PVC name</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0327__table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0327__row1425005815020"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.2.2.2.4.2.3.1.1"><p id="cce_10_0327__p1525045817501">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.2.2.2.4.2.3.1.2"><p id="cce_10_0327__p162501858165014">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0327__row1025175814505"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.2.2.4.2.3.1.1 "><p id="cce_10_0327__p1825125813505">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.2.2.4.2.3.1.2 "><p id="cce_10_0327__p1134463635714">Name of the pod to be created.</p>
+</td>
+</tr>
+<tr id="cce_10_0327__row17251115805017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.2.2.4.2.3.1.1 "><p id="cce_10_0327__p2025185817509">app</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.2.2.4.2.3.1.2 "><p id="cce_10_0327__p9251125875017">Name of the application running in the pod.</p>
+</td>
+</tr>
+<tr id="cce_10_0327__row8251165845018"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.2.2.4.2.3.1.1 "><p id="cce_10_0327__p22521858135013">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.2.2.4.2.3.1.2 "><p id="cce_10_0327__p1525285819508">Mount path in the container.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0327__note115140415814"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0327__p189467332584"><strong id="cce_10_0327__b84011947182220">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0327__b154021747152216">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+<p id="cce_10_0327__p498895716713">Example of mounting an OBS volume to a StatefulSet (PVC template-based, dedicated volume):</p>
+<div class="p" id="cce_10_0327__p13082281942"><strong id="cce_10_0327__b092173182414">Example YAML:</strong><pre class="screen" id="cce_10_0327__screen1081785719214">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: deploy-obs-standard-in
+  namespace: default
+  generation: 1
+  labels:
+    appgroup: ''
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: deploy-obs-standard-in
+  template:
+    metadata:
+      labels:
+        app: deploy-obs-standard-in
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
+        pod.alpha.kubernetes.io/initialized: 'true'
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:1.12-alpine-perl'
+          env:
+            - name: PAAS_APP_NAME
+              value: deploy-obs-standard-in
+            - name: PAAS_NAMESPACE
+              value: default
+            - name: PAAS_PROJECT_ID
+              value: a2cd8e998dca42e98a41f596c636dbda
+          resources: {}
+          volumeMounts:
+            - name: obs-bs-standard-mountoptionpvc
+              mountPath: /tmp
+          terminationMessagePath: /dev/termination-log
+          terminationMessagePolicy: File
+          imagePullPolicy: IfNotPresent
+      restartPolicy: Always
+      terminationGracePeriodSeconds: 30
+      dnsPolicy: ClusterFirst
+      securityContext: {}
+      imagePullSecrets:
+        - name: default-secret
+      affinity: {}
+      schedulerName: default-scheduler
+  volumeClaimTemplates:
+    - metadata:
+        name: obs-bs-standard-mountoptionpvc
+        annotations:
+          volume.beta.kubernetes.io/storage-class: obs-standard
+          volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiobs
+      spec:
+        accessModes:
+          - ReadWriteMany
+        resources:
+          requests:
+            storage: 1Gi
+  serviceName: wwww
+  podManagementPolicy: OrderedReady
+  updateStrategy:
+    type: RollingUpdate
+  revisionHistoryLimit: 10</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0327__table953204119" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0327__row1666206115"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.2.2.2.8.2.3.1.1"><p id="cce_10_0327__p1662017116">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.2.2.2.8.2.3.1.2"><p id="cce_10_0327__p56820513">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0327__row1061620713"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.2.2.8.2.3.1.1 "><p id="cce_10_0327__p56120115">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.2.2.8.2.3.1.2 "><p id="cce_10_0327__p911192017111">Name of the created workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0327__row6115201810"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.2.2.8.2.3.1.1 "><p id="cce_10_0327__p1911172013115">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.2.2.8.2.3.1.2 "><p id="cce_10_0327__p1812132017111">Image of the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0327__row181217201317"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.2.2.8.2.3.1.1 "><p id="cce_10_0327__p2127205115">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.2.2.8.2.3.1.2 "><p id="cce_10_0327__p151216208112">Mount path in the container. In this example, the volume is mounted to the <strong id="cce_10_0327__b13813181212517">/tmp</strong> directory.</p>
+</td>
+</tr>
+<tr id="cce_10_0327__row101220201616"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.2.2.8.2.3.1.1 "><p id="cce_10_0327__p4121201717">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.2.2.8.2.3.1.2 "><p id="cce_10_0327__p8126203112">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0327__note9401441116"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0327__p174184413113"><strong id="cce_10_0327__b0273927112510">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0327__b1227342718253">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0327__li877711108215"><span>Run the following command to create the pod:</span><p><p id="cce_10_0327__p7381182911811"><strong id="cce_10_0327__b449410082611">kubectl create -f obs-deployment-example.yaml</strong></p>
+<p id="cce_10_0327__p1479419281286">After the creation is complete, choose <strong id="cce_10_0327__b191017406252">Storage</strong> &gt; <strong id="cce_10_0327__b2161400255">OBS</strong> on the CCE console and click the PVC name. On the PVC details page, you can view the binding relationship between the OBS service and the PVC.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0322.html">Using OBS Buckets as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0328.html b/docs/cce/umn/cce_10_0328.html
new file mode 100644
index 00000000..8dac0ed4
--- /dev/null
+++ b/docs/cce/umn/cce_10_0328.html
@@ -0,0 +1,94 @@
+<a name="cce_10_0328"></a><a name="cce_10_0328"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an OBS Volume</h1>
+<div id="body0000001160562129"><div class="section" id="cce_10_0328__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0328__p417532394118">CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).</p>
+</div>
+<div class="section" id="cce_10_0328__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0328__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0328__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0328__ol15239131281911"><li id="cce_10_0328__li823912124195"><span>Create an OBS volume by referring to <a href="cce_10_0325.html">(kubectl) Automatically Creating an OBS Volume</a> and obtain the PVC name.</span></li><li id="cce_10_0328__li169971354185015"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0328__li17489105723120"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0328__b14643102042813">obs-statefulset-example.yaml</strong>.</span><p><p id="cce_10_0328__p3653181443819"><strong id="cce_10_0328__b166535149387">touch obs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0328__p16534140382"><strong id="cce_10_0328__b765381423813">vi obs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0328__p5766151773814"><strong id="cce_10_0328__b10273202362810">Example YAML:</strong></p>
+<pre class="screen" id="cce_10_0328__screen598644117388">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: obs-statefulset-example
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: obs-statefulset-example
+  serviceName: qwqq
+  template:
+    metadata:
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
+        pod.alpha.kubernetes.io/initialized: "true"
+      creationTimestamp: null
+      labels:
+        app: obs-statefulset-example
+    spec:
+      affinity: {}
+      containers:	
+        image: nginx:latest
+        imagePullPolicy: Always
+        name: container-0
+        volumeMounts:
+        - mountPath: /tmp
+          name: pvc-obs-example
+      imagePullSecrets:
+      - name: default-secret
+      volumes:
+        - name: pvc-obs-example
+          persistentVolumeClaim:
+            claimName: cce-obs-demo</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0328__table19249175815503" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0328__row1425005815020"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.2.3.2.5.2.3.1.1"><p id="cce_10_0328__p1525045817501">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.2.3.2.5.2.3.1.2"><p id="cce_10_0328__p162501858165014">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0328__row725065865014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0328__p152504582506">replicas</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0328__p1425185812509">Number of pods.</p>
+</td>
+</tr>
+<tr id="cce_10_0328__row1025175814505"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0328__p1825125813505">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0328__p1178914555417">Name of the created workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0328__row17251115805017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0328__p2025185817509">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0328__p9251125875017">Image used by the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0328__row8251165845018"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0328__p22521858135013">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0328__p1525285819508">Mount path in the container.</p>
+</td>
+</tr>
+<tr id="cce_10_0328__row848562355515"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0328__p144666233557">serviceName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0328__p1090712121565">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0328__row8483182315551"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0328__p846772375512">claimName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0328__p346792375514">Name of an existing PVC.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0328__li156013162401"><span>Create the StatefulSet.</span><p><p id="cce_10_0328__p46091124144014"><strong id="cce_10_0328__b16609152417405">kubectl create -f obs-statefulset-example.yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0322.html">Using OBS Buckets as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0329.html b/docs/cce/umn/cce_10_0329.html
similarity index 53%
rename from docs/cce/umn/cce_01_0329.html
rename to docs/cce/umn/cce_10_0329.html
index 3e62416d..e5bfba0d 100644
--- a/docs/cce/umn/cce_01_0329.html
+++ b/docs/cce/umn/cce_10_0329.html
@@ -1,23 +1,21 @@
-<a name="cce_01_0329"></a><a name="cce_01_0329"></a>
+<a name="cce_10_0329"></a><a name="cce_10_0329"></a>
 
 <h1 class="topictitle1">Using SFS Turbo File Systems as Storage Volumes</h1>
 <div id="body0000001113882228"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_01_0330.html">Overview</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0330.html">Overview</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0331.html">Using SFS Turbo Volumes</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0332.html">(kubectl) Creating a PV from an Existing SFS Turbo File System</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0332.html">(kubectl) Creating a PV from an Existing SFS Turbo File System</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0333.html">(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_01_0333.html">(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_01_0334.html">(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0334.html">(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume</a></strong><br>
 </li>
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0330.html b/docs/cce/umn/cce_10_0330.html
new file mode 100644
index 00000000..1a935be8
--- /dev/null
+++ b/docs/cce/umn/cce_10_0330.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0330"></a><a name="cce_10_0330"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body8662426"><p id="cce_10_0330__en-us_topic_0000001199181200_p398114244394">CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable for DevOps, container microservices, and enterprise OA scenarios.</p>
+<div class="fignone" id="cce_10_0330__en-us_topic_0000001199181200_fig1837231912417"><span class="figcap"><b>Figure 1 </b>Mounting SFS Turbo volumes to CCE</span><br><span><img id="cce_10_0330__en-us_topic_0000001199181200_image8372161911411" src="en-us_image_0000001202103502.png"></span></div>
+<div class="section" id="cce_10_0330__en-us_topic_0000001199181200_section16125104115411"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0330__en-us_topic_0000001199181200_ul222119314424"><li id="cce_10_0330__en-us_topic_0000001199181200_li82215317429"><strong id="cce_10_0330__b62803516222">Standard file protocols</strong>: You can mount file systems as volumes to servers, the same as using local directories.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li522115314210"><strong id="cce_10_0330__b13263155815232">Data sharing</strong>: The same file system can be mounted to multiple servers, so that data can be shared.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li422120318427"><strong id="cce_10_0330__b183071519112418">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li202212036421"><strong id="cce_10_0330__b1443654292420">Data isolation</strong>: The on-cloud storage service provides exclusive cloud file storage, which delivers data isolation and ensures IOPS performance.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li122283134215"><strong id="cce_10_0330__b1641217962810">Use cases</strong>: Deployments/StatefulSets in the ReadWriteMany mode, DaemonSets, and jobs created for high-traffic websites, log storage, DevOps, and enterprise OA applications</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0332.html b/docs/cce/umn/cce_10_0332.html
new file mode 100644
index 00000000..4d37c897
--- /dev/null
+++ b/docs/cce/umn/cce_10_0332.html
@@ -0,0 +1,148 @@
+<a name="cce_10_0332"></a><a name="cce_10_0332"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a PV from an Existing SFS Turbo File System</h1>
+<div id="body0000001160562131"><div class="section" id="cce_10_0332__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0332__p1738118119414">CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) and bind it to the PV.</p>
+</div>
+<div class="section" id="cce_10_0332__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0332__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0332__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0332__ol6381151110418"><li id="cce_10_0332__li7381101104115"><span>Log in to the SFS console, create a file system, and record the file system ID, shared path, and capacity.</span></li><li id="cce_10_0332__li14405185119498"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0332__li33811611154115"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_10_0332__b15773888301">pv-efs-example.yaml</strong> and <strong id="cce_10_0332__b677310843013">pvc-efs-example.yaml</strong>.</span><p><p id="cce_10_0332__p1638141111418"><strong id="cce_10_0332__b19381101114115">touch pv-efs-example.yaml</strong> <strong id="cce_10_0332__b1084211115106">pvc-efs-example.yaml</strong></p>
+<ul id="cce_10_0332__ul1957616471105"><li id="cce_10_0332__li17576947171010"><strong id="cce_10_0332__b886431003017">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0332__screen85741747141015">apiVersion: v1 
+kind: PersistentVolume 
+metadata: 
+  name: pv-efs-example 
+  annotations:
+    pv.kubernetes.io/provisioned-by: flexvolume-huawei.com/fuxiefs
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  capacity: 
+    storage: 100Gi 
+  claimRef:
+    apiVersion: v1
+    kind: PersistentVolumeClaim
+    name: pvc-efs-example
+    namespace: default
+  flexVolume: 
+    driver: huawei.com/fuxiefs 
+    fsType: efs 
+    options: 
+      deviceMountPath: &lt;your_deviceMountPath&gt;  # Shared storage path of your SFS Turbo file.
+      fsType: efs 
+      volumeID: 8962a2a2-a583-4b7f-bb74-fe76712d8414 
+  persistentVolumeReclaimPolicy: Delete 
+  storageClassName: efs-standard</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0332__table1857613471103" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0332__row65751147161014"><th align="left" class="cellrowborder" valign="top" width="32.32%" id="mcps1.3.3.2.3.2.2.1.3.2.3.1.1"><p id="cce_10_0332__p10575114719102">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="67.67999999999999%" id="mcps1.3.3.2.3.2.2.1.3.2.3.1.2"><p id="cce_10_0332__p1357534717101">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0332__row15756477108"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p1557564718103">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p2575114791013">Storage driver used to mount the volume. Set it to <strong id="cce_10_0332__b17534131903012">huawei.com/fuxiefs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row5575134713108"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p8575164721010">deviceMountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p8575124761010">Shared path of the SFS Turbo volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row957514731018"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p115758475102">volumeID</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p205751747141012">SFS Turbo volume ID.</p>
+<p id="cce_10_0332__p14575124751019">To obtain the ID, log in to the CCE console, choose <strong id="cce_10_0332__b1293595518551">Resource Management</strong> &gt; <strong id="cce_10_0332__b16941125511552">Storage</strong>, click the PVC name in the <strong id="cce_10_0332__b59411255195518">SFS Turbo</strong> tab page, and copy the PVC ID on the PVC details page.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row75761347101016"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p18575147131016">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p115751479106">File system size.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row2057617470102"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p557614715108">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p45761947201014">Volume type supported by SFS Turbo. The value can be <strong id="cce_10_0332__b17642153123012">efs-standard</strong> and <strong id="cce_10_0332__b46481653163014">efs-performance</strong>. Currently, SFS Turbo does not support dynamic creation; therefore, this parameter is not used for now.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row17100922145816"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p31001822145820">spec.claimRef.apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p21000227587">The value is fixed at <strong id="cce_10_0332__b029272463110">v1</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row19278192545812"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p122788253581">spec.claimRef.kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p20278325145819">The value is fixed at <strong id="cce_10_0332__b1641052610314">PersistentVolumeClaim</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row275172845812"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p13753281589">spec.claimRef.name</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p1175172855817">The value is the same as the name of the PVC created in the next step.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row9112631195811"><td class="cellrowborder" valign="top" width="32.32%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.1 "><p id="cce_10_0332__p101121531185818">spec.claimRef.namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.67999999999999%" headers="mcps1.3.3.2.3.2.2.1.3.2.3.1.2 "><p id="cce_10_0332__p10112531115815">The value is the same as the namespace of the PVC created in the next step.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0332__li127651143182518"><strong id="cce_10_0332__b101995341319">Example YAML file for the PVC:</strong><pre class="screen" id="cce_10_0332__screen5779193011506">apiVersion: v1 
+kind: PersistentVolumeClaim 
+metadata: 
+  annotations: 
+    volume.beta.kubernetes.io/storage-class: efs-standard 
+    volume.beta.kubernetes.io/storage-provisioner: flexvolume-huawei.com/fuxiefs 
+  name: pvc-efs-example 
+  namespace: default 
+spec: 
+  accessModes: 
+  - ReadWriteMany 
+  resources: 
+    requests: 
+      storage: 100Gi 
+  volumeName: pv-efs-example</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0332__table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0332__row439135512158"><th align="left" class="cellrowborder" valign="top" width="39.46%" id="mcps1.3.3.2.3.2.2.2.3.2.3.1.1"><p id="cce_10_0332__p11391105571516">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="60.540000000000006%" id="mcps1.3.3.2.3.2.2.2.3.2.3.1.2"><p id="cce_10_0332__p439255513157">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0332__row739215556154"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.1 "><p id="cce_10_0332__p3131325191618">volume.beta.kubernetes.io/storage-class</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.2 "><p id="cce_10_0332__p23923555150">Read/write mode supported by SFS Turbo. The value can be <strong id="cce_10_0332__b10641942133111">efs-standard</strong> or <strong id="cce_10_0332__b464942163117">efs-performance</strong>. The value must be the same as that of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row18143134041612"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.1 "><p id="cce_10_0332__p11431840161611">volume.beta.kubernetes.io/storage-provisioner</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.2 "><p id="cce_10_0332__p714434016164">The field must be set to <strong id="cce_10_0332__b1672513543219">flexvolume-huawei.com/fuxiefs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row1339295514152"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.1 "><p id="cce_10_0332__p83921559156">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.2 "><p id="cce_10_0332__p1839395518152">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0332__row1339365571519"><td class="cellrowborder" valign="top" width="39.46%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.1 "><p id="cce_10_0332__p239365513155">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="60.540000000000006%" headers="mcps1.3.3.2.3.2.2.2.3.2.3.1.2 "><p id="cce_10_0332__p10393455131513">Name of the PV.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ul>
+<div class="note" id="cce_10_0332__note896816108461"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0332__p207541015124619">The VPC to which the SFS Turbo file system belongs must be the same as the VPC of the ECS VM planned for the workload. Ports 111, 445, 2049, 2051, and 20048 must be enabled in the security groups.</p>
+</div></div>
+</p></li><li id="cce_10_0332__li1491415314505"><span>Create the PV.</span><p><p id="cce_10_0332__p1491413115016"><strong id="cce_10_0332__b29145318500">kubectl create -f pv-efs-example.yaml</strong></p>
+</p></li><li id="cce_10_0332__li1672453512517"><span>Create the PVC.</span><p><p id="cce_10_0332__p12724113515513"><strong id="cce_10_0332__b10724935145112">kubectl create -f pvc-efs-example.yaml</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0333.html b/docs/cce/umn/cce_10_0333.html
new file mode 100644
index 00000000..4fd3b8d4
--- /dev/null
+++ b/docs/cce/umn/cce_10_0333.html
@@ -0,0 +1,76 @@
+<a name="cce_10_0333"></a><a name="cce_10_0333"></a>
+
+<h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume</h1>
+<div id="body0000001113882232"><div class="section" id="cce_10_0333__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0333__p13415181285914">After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.</p>
+</div>
+<div class="section" id="cce_10_0333__section1349262916461"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0333__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+</div>
+<div class="section" id="cce_10_0333__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0333__ol8551750135510"><li id="cce_10_0333__li18480358134919"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0333__li1355135045513"><span>Run the following commands to configure the <strong id="cce_10_0333__b1436216344">efs-deployment-example.yaml</strong> file, which is used to create a Deployment:</span><p><p id="cce_10_0333__p20551165012555"><strong id="cce_10_0333__b45511650175517"><em id="cce_10_0333__i1555135045514">touch efs-deployment-example.yaml</em></strong></p>
+<p id="cce_10_0333__p185516509554"><strong id="cce_10_0333__b19551450125514"><em id="cce_10_0333__i7551250175516">vi efs-deployment-example.yaml</em></strong></p>
+<p id="cce_10_0333__p95138587551">Example of mounting an SFS Turbo volume to a Deployment (PVC-based, shared volume):</p>
+<pre class="screen" id="cce_10_0333__screen1083444825613">apiVersion: apps/v1  
+kind: Deployment  
+metadata:  
+  name: efs-deployment-example                                # Workload name
+  namespace: default  
+spec:  
+  replicas: 1  
+  selector:  
+    matchLabels:  
+      app: efs-deployment-example  
+  template:  
+    metadata:  
+      labels:  
+        app: efs-deployment-example  
+    spec:  
+      containers:  
+      - image: nginx  
+        name: container-0  
+        volumeMounts:  
+        - mountPath: /tmp                                # Mount path
+          name: pvc-efs-example  
+      restartPolicy: Always
+      imagePullSecrets:
+        - name: default-secret
+      volumes:  
+      - name: pvc-efs-example  
+        persistentVolumeClaim:  
+          claimName: pvc-sfs-auto-example                # PVC name</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0333__table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0333__row439135512158"><th align="left" class="cellrowborder" valign="top" width="26.42980935875217%" id="mcps1.3.3.2.2.2.5.2.3.1.1"><p id="cce_10_0333__p11391105571516">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57019064124783%" id="mcps1.3.3.2.2.2.5.2.3.1.2"><p id="cce_10_0333__p439255513157">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0333__row18143134041612"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.2.2.5.2.3.1.1 "><p id="cce_10_0333__p11431840161611">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.2.2.5.2.3.1.2 "><p id="cce_10_0333__p714434016164">Name of the created Deployment.</p>
+</td>
+</tr>
+<tr id="cce_10_0333__row1339295514152"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.2.2.5.2.3.1.1 "><p id="cce_10_0333__p83921559156">app</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.2.2.5.2.3.1.2 "><p id="cce_10_0333__p1839395518152">Name of the application running in the Deployment.</p>
+</td>
+</tr>
+<tr id="cce_10_0333__row1339365571519"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.2.2.5.2.3.1.1 "><p id="cce_10_0333__p239365513155">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.2.2.5.2.3.1.2 "><p id="cce_10_0333__p98841828192311">Mount path in the container. In this example, the mount path is <strong id="cce_10_0333__b15650109407">/tmp</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0333__note114240335225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0333__p134241233122219"><strong id="cce_10_0333__b18475202020403">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0333__b447592013401">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0333__li151061326125817"><span>Run the following command to create the pod:</span><p><p id="cce_10_0333__p1310692612582"><strong id="cce_10_0333__b11106202625812">kubectl create -f efs-deployment-example.yaml</strong></p>
+<p id="cce_10_0333__p710632610581">After the creation is complete, choose <strong id="cce_10_0333__b187321926194012">Storage</strong> &gt; <strong id="cce_10_0333__b17382268408">SFS Turbo</strong> on the CCE console and click the PVC name. On the PVC details page, you can view the binding relationship between SFS Turbo and PVC.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0334.html b/docs/cce/umn/cce_10_0334.html
similarity index 51%
rename from docs/cce/umn/cce_01_0334.html
rename to docs/cce/umn/cce_10_0334.html
index 8d617954..0e81efd3 100644
--- a/docs/cce/umn/cce_01_0334.html
+++ b/docs/cce/umn/cce_10_0334.html
@@ -1,16 +1,14 @@
-<a name="cce_01_0334"></a><a name="cce_01_0334"></a>
+<a name="cce_10_0334"></a><a name="cce_10_0334"></a>
 
 <h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume</h1>
-<div id="body0000001113722334"><div class="section" id="cce_01_0334__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_01_0334__p8619171413523">CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.</p>
+<div id="body0000001113722334"><div class="section" id="cce_10_0334__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0334__p8619171413523">CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.</p>
 </div>
-<div class="section" id="cce_01_0334__section1640173074515"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_01_0334__cce_01_0311_p3254172811916">You have created a CCE cluster and installed the FlexVolume plug-in (<a href="cce_01_0127.html">storage-driver</a>) in the cluster.</p>
+<div class="section" id="cce_10_0334__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0334__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
-<div class="section" id="cce_01_0334__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_01_0334__cce_01_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
-</div>
-<div class="section" id="cce_01_0334__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_01_0334__ol661917142523"><li id="cce_01_0334__li176191814195219"><span>Create an SFS Turbo volume and record the volume name.</span></li><li id="cce_01_0334__li1163755011"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_01_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_01_0334__li061981475210"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_01_0334__b18231174684410">efs-statefulset-example.yaml</strong>.</span><p><p id="cce_01_0334__p2619014165213"><strong id="cce_01_0334__b16619314205216">touch efs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0334__p9619151414527"><strong id="cce_01_0334__b146196149526">vi efs-statefulset-example.yaml</strong></p>
-<p id="cce_01_0334__p136191214155210"><strong id="cce_01_0334__b1990964814442">Example YAML:</strong></p>
-<pre class="screen" id="cce_01_0334__screen45402186537">apiVersion: apps/v1
+<div class="section" id="cce_10_0334__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0334__ol661917142523"><li id="cce_10_0334__li176191814195219"><span>Create an SFS Turbo volume and record the volume name.</span></li><li id="cce_10_0334__li1163755011"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0334__li061981475210"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0334__b18231174684410">efs-statefulset-example.yaml</strong>.</span><p><p id="cce_10_0334__p2619014165213"><strong id="cce_10_0334__b16619314205216">touch efs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0334__p9619151414527"><strong id="cce_10_0334__b146196149526">vi efs-statefulset-example.yaml</strong></p>
+<p id="cce_10_0334__p136191214155210"><strong id="cce_10_0334__b1990964814442">Example YAML:</strong></p>
+<pre class="screen" id="cce_10_0334__screen45402186537">apiVersion: apps/v1
 kind: StatefulSet
 metadata:
   name: efs-statefulset-example
@@ -68,54 +66,54 @@ spec:
   updateStrategy:
     type: RollingUpdate</pre>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_01_0334__table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_01_0334__row439135512158"><th align="left" class="cellrowborder" valign="top" width="26.42980935875217%" id="mcps1.3.4.2.3.2.5.2.3.1.1"><p id="cce_01_0334__p11391105571516">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0334__table1739110557150" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0334__row439135512158"><th align="left" class="cellrowborder" valign="top" width="26.42980935875217%" id="mcps1.3.3.2.3.2.5.2.3.1.1"><p id="cce_10_0334__p11391105571516">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.57019064124783%" id="mcps1.3.4.2.3.2.5.2.3.1.2"><p id="cce_01_0334__p439255513157">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.57019064124783%" id="mcps1.3.3.2.3.2.5.2.3.1.2"><p id="cce_10_0334__p439255513157">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_01_0334__row739215556154"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0334__p10106112010189">replicas</p>
+<tbody><tr id="cce_10_0334__row739215556154"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0334__p10106112010189">replicas</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0334__p23923555150">Number of pods.</p>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0334__p23923555150">Number of pods.</p>
 </td>
 </tr>
-<tr id="cce_01_0334__row18143134041612"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0334__p11431840161611">name</p>
+<tr id="cce_10_0334__row18143134041612"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0334__p11431840161611">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0334__p714434016164">Name of the created workload.</p>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0334__p714434016164">Name of the created workload.</p>
 </td>
 </tr>
-<tr id="cce_01_0334__row1339295514152"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0334__p83921559156">image</p>
+<tr id="cce_10_0334__row1339295514152"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0334__p83921559156">image</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0334__p1839395518152">Image used by the workload.</p>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0334__p1839395518152">Image used by the workload.</p>
 </td>
 </tr>
-<tr id="cce_01_0334__row1339365571519"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0334__p239365513155">mountPath</p>
+<tr id="cce_10_0334__row1339365571519"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0334__p239365513155">mountPath</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0334__p10393455131513">Mount path in the container.</p>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0334__p10393455131513">Mount path in the container.</p>
 </td>
 </tr>
-<tr id="cce_01_0334__row19843742102014"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0334__p131115042015">serviceName</p>
+<tr id="cce_10_0334__row19843742102014"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0334__p131115042015">serviceName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0334__p15831142152010">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_01_0048.html">Creating a StatefulSet</a>.</p>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0334__p15831142152010">Service corresponding to the workload. For details about how to create a Service, see <a href="cce_10_0048.html">Creating a StatefulSet</a>.</p>
 </td>
 </tr>
-<tr id="cce_01_0334__row12841184262014"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.4.2.3.2.5.2.3.1.1 "><p id="cce_01_0334__p15151719152119">claimName</p>
+<tr id="cce_10_0334__row12841184262014"><td class="cellrowborder" valign="top" width="26.42980935875217%" headers="mcps1.3.3.2.3.2.5.2.3.1.1 "><p id="cce_10_0334__p15151719152119">claimName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.4.2.3.2.5.2.3.1.2 "><p id="cce_01_0334__p2831114232019">Name of an existing PVC.</p>
+<td class="cellrowborder" valign="top" width="73.57019064124783%" headers="mcps1.3.3.2.3.2.5.2.3.1.2 "><p id="cce_10_0334__p2831114232019">Name of an existing PVC.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-<div class="note" id="cce_01_0334__note346353313213"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_0334__p1746423312217"><strong id="cce_01_0334__b366194911454">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_01_0334__b156621349184519">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+<div class="note" id="cce_10_0334__note346353313213"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0334__p1746423312217"><strong id="cce_10_0334__b366194911454">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0334__b156621349184519">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
 </div></div>
-</p></li><li id="cce_01_0334__li9890133865410"><span>Create the StatefulSet.</span><p><p id="cce_01_0334__p9890138175415"><strong id="cce_01_0334__b208901538115416">kubectl create -f  efs-statefulset-example.yaml</strong></p>
+</p></li><li id="cce_10_0334__li9890133865410"><span>Create the StatefulSet.</span><p><p id="cce_10_0334__p9890138175415"><strong id="cce_10_0334__b208901538115416">kubectl create -f  efs-statefulset-example.yaml</strong></p>
 </p></li></ol>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0329.html">Using SFS Turbo File Systems as Storage Volumes</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0336.html b/docs/cce/umn/cce_10_0336.html
new file mode 100644
index 00000000..5e271acd
--- /dev/null
+++ b/docs/cce/umn/cce_10_0336.html
@@ -0,0 +1,242 @@
+<a name="cce_10_0336"></a><a name="cce_10_0336"></a>
+
+<h1 class="topictitle1">Using a Custom AK/SK to Mount an OBS Volume</h1>
+<div id="body0000001118652158"><div class="section" id="cce_10_0336__section69149541619"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0336__p195616516813">You can solve this issue by using Everest 1.2.8 and later versions to use custom access keys for different IAM users.</p>
+</div>
+<div class="section" id="cce_10_0336__section1356645410223"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0336__ul169942513238"><li id="cce_10_0336__li1799112511235">The everest add-on version must be 1.2.8 or later. </li><li id="cce_10_0336__li599172552311">The cluster version must be 1.15.11 or later.</li></ul>
+</div>
+<div class="section" id="cce_10_0336__section19922155718332"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0336__p1529019213346">Custom access keys cannot be configured for secure containers.</p>
+</div>
+<div class="section" id="cce_10_0336__section1045502219184"><h4 class="sectiontitle">Disabling Auto Key Mounting</h4><p id="cce_10_0336__p1419516122419">The key you uploaded is used by default when mounting an OBS volume. That is, all IAM users under your account will use the same key to mount OBS buckets, and they have the same permissions on buckets. This setting does not allow you to configure differentiated permissions for different IAM users.</p>
+<p id="cce_10_0336__p3972105715910">If you have uploaded the AK/SK, you are advised to disable the automatic mounting of access keys by enabling the <strong id="cce_10_0336__b97941059445">disable_auto_mount_secret</strong> parameter in the everest add-on to prevent IAM users from performing unauthorized operations. In this way, the access keys uploaded on the console will not be used when creating OBS volumes.</p>
+<div class="note" id="cce_10_0336__note06431619183416"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0336__ul1215320963516"><li id="cce_10_0336__li115389133519">When enabling <strong id="cce_10_0336__b1296478123519">disable-auto-mount-secret</strong>, ensure that no OBS volume exists in the cluster. A workload mounted with an OBS volume, when scaled or restarted, will fail to remount the OBS volume because it needs to specify the access key but is prohibited by <strong id="cce_10_0336__b1638220201436">disable-auto-mount-secret</strong>.</li><li id="cce_10_0336__li16153139153517">If <strong id="cce_10_0336__b173114045014">disable-auto-mount-secret</strong> is set to <strong id="cce_10_0336__b1857414195018">true</strong>, an access key must be specified when a PV or PVC is created. Otherwise, the OBS volume fails to be mounted.</li></ul>
+</div></div>
+<p id="cce_10_0336__p6511171951913"><strong id="cce_10_0336__b1479092017563">kubectl edit ds everest-csi-driver -nkube-system</strong></p>
+<p id="cce_10_0336__p33191134303">Search for <strong id="cce_10_0336__b1434271975315">disable-auto-mount-secret</strong> and set it to <strong id="cce_10_0336__b18853123105311">true</strong>.</p>
+<p id="cce_10_0336__p4978205865511"><span><img id="cce_10_0336__image397885885519" src="en-us_image_0000001199181232.png"></span></p>
+<p id="cce_10_0336__p6152891328">Run <strong id="cce_10_0336__b1368954213536">:wq</strong> to save the settings and exit. Wait until the pod is restarted.</p>
+</div>
+<div class="section" id="cce_10_0336__section12416824164618"><h4 class="sectiontitle">Creating a Secret Using an Access Key</h4><ol id="cce_10_0336__ol2051283471018"><li id="cce_10_0336__li45111634121014"><span>Obtain an access key.</span><p><p id="cce_10_0336__p17511193419108">For details, see <a href="https://docs.otc.t-systems.com/usermanual/obs/obs_03_0405.html " target="_blank" rel="noopener noreferrer">Creating Access Keys (AK and SK)</a>.</p>
+</p></li><li id="cce_10_0336__li751113431018"><span>Encode the keys using Base64. (Assume that the AK is xxx and the SK is yyy.)</span><p><p id="cce_10_0336__p1851103412100"><strong id="cce_10_0336__b13798260171">echo -n xxx|base64</strong></p>
+<p id="cce_10_0336__p65114348105"><strong id="cce_10_0336__b118017261171">echo -n yyy|base64</strong></p>
+<p id="cce_10_0336__p95111934171018">Record the encoded AK and SK.</p>
+</p></li><li id="cce_10_0336__li155129343104"><span>Create a YAML file for the secret, for example, <strong id="cce_10_0336__b8910163895518">test-user.yaml</strong>.</span><p><pre class="screen" id="cce_10_0336__screen2051217347105">apiVersion: v1
+data:
+  access.key: WE5WWVhVNU*****
+  secret.key: Nnk4emJyZ0*****
+kind: Secret
+metadata:
+  name: test-user
+  namespace: default
+  labels:
+    secret.kubernetes.io/used-by: csi
+type: cfe/secure-opaque</pre>
+<p id="cce_10_0336__p10512934101016">Specifically:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table551243410100" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row951223481012"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.5.2.3.2.3.1.3.1.1"><p id="cce_10_0336__p55121341100">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.5.2.3.2.3.1.3.1.2"><p id="cce_10_0336__p451233461016">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0336__row551203451016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p13512734101015">access.key</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p451213342102">Base64-encoded AK.</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row5512123420106"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p6512143431020">secret.key</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p115121434121020">Base64-encoded SK.</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row7512834131017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p25121534181016">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p251233441019">Secret name.</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row95121534191014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p16512834121016">namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p551243461015">Namespace of the secret.</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row16799198182814"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p0245182232816">secret.kubernetes.io/used-by: csi</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p380018122814">You need to add this label in the YAML file if you want to make it available on the CCE console when you create an OBS PV/PVC.</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row1451283421016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p25121234161018">type</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p851212346102">Secret type. The value must be <strong id="cce_10_0336__b815416175542">cfe/secure-opaque</strong>.</p>
+<p id="cce_10_0336__p4512334141012">When this type is used, the data entered by users is automatically encrypted.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0336__li16512193412108"><span>Create the secret.</span><p><p id="cce_10_0336__p551216340107"><strong id="cce_10_0336__b1569505372">kubectl create -f test-user.yaml</strong></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0336__section14417324114618"><h4 class="sectiontitle">Mounting a Secret When Statically Creating an OBS Volume</h4><p id="cce_10_0336__p93554114272">After a secret is created using the AK/SK, you can associate the secret with the PV to be created and then use the AK/SK in the secret to mount an OBS volume.</p>
+<ol id="cce_10_0336__ol697018298268"><li id="cce_10_0336__li4106132410256"><span>Log in to the OBS console, create an OBS bucket, and record the bucket name and storage class. The parallel file system is used as an example.</span></li><li id="cce_10_0336__li597052912264"><span>Create a YAML file for the PV, for example, <strong id="cce_10_0336__b147571030162110">pv-example.yaml</strong>.</span><p><p id="cce_10_0336__p885014454142"></p>
+<pre class="screen" id="cce_10_0336__screen653473412187">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: pv-obs-example
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+spec:
+  accessModes:
+  - ReadWriteMany
+  capacity:
+    storage: 1Gi
+  csi:
+    nodePublishSecretRef:
+      name: test-user
+      namespace: default
+    driver: obs.csi.everest.io
+    fsType: obsfs
+    volumeAttributes:
+      everest.io/obs-volume-type: STANDARD
+      everest.io/region: <span id="cce_10_0336__text4408152285215">eu-de</span>
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    volumeHandle: obs-normal-static-pv
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: csi-obs</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table6615161819296" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row1361531813296"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.6.3.2.2.3.1.3.1.1"><p id="cce_10_0336__p5615151822915">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.6.3.2.2.3.1.3.1.2"><p id="cce_10_0336__p461519185298">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0336__row12615101802919"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p96441230162919">nodePublishSecretRef</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p26152189295">Secret specified during the mounting.</p>
+<ul id="cce_10_0336__ul1061862010115"><li id="cce_10_0336__li186183201911"><strong id="cce_10_0336__b32593613239">name</strong>: name of the secret</li><li id="cce_10_0336__li1261818209118"><strong id="cce_10_0336__b086871616235">namespace</strong>: namespace of the secret</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0336__row17768552185616"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p98321261573">fsType</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p168323610576">File type. The value can be <strong id="cce_10_0336__b10357101624410">obsfs</strong> or <strong id="cce_10_0336__b1935821619441">s3fs</strong>. If the value is <strong id="cce_10_0336__b1935819166444">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_10_0336__b1360116104410">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. You are advised to set this field to <strong id="cce_10_0336__b1236016168442">obsfs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row78891119135511"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p17889141914554">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p12890141918554">OBS bucket name.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0336__li1613414199588"><span>Create the PV.</span><p><p id="cce_10_0336__p4771103319589"><strong id="cce_10_0336__b29446711252">kubectl create -f pv-example.yaml</strong></p>
+<p id="cce_10_0336__p1994220111813">After a PV is created, you can create a PVC and associate it with the PV.</p>
+</p></li><li id="cce_10_0336__li1623335911249"><span>Create a YAML file for the PVC, for example, <strong id="cce_10_0336__b718710283446">pvc-example.yaml</strong>.</span><p><p id="cce_10_0336__li147777204119p0"><strong id="cce_10_0336__b136881832174419">Example YAML file for the PVC:</strong></p>
+<pre class="screen" id="cce_10_0336__screen29933615125">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    csi.storage.k8s.io/node-publish-secret-name: test-user
+    csi.storage.k8s.io/node-publish-secret-namespace: default
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+    everest.io/obs-volume-type: STANDARD
+    csi.storage.k8s.io/fstype: obsfs
+  name: obs-secret
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+  storageClassName: csi-obs
+  volumeName: pv-obs-example</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table36670218280" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row166713212813"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.6.3.4.2.3.1.3.1.1"><p id="cce_10_0336__p16675202812">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.6.3.4.2.3.1.3.1.2"><p id="cce_10_0336__p156674217284">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0336__row866717219285"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.6.3.4.2.3.1.3.1.1 "><p id="cce_10_0336__p196674219287">csi.storage.k8s.io/node-publish-secret-name</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.6.3.4.2.3.1.3.1.2 "><p id="cce_10_0336__p1466715214280">Name of the secret</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row1966762142811"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.6.3.4.2.3.1.3.1.1 "><p id="cce_10_0336__p866718272816">csi.storage.k8s.io/node-publish-secret-namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.6.3.4.2.3.1.3.1.2 "><p id="cce_10_0336__p11667142182814">Namespace of the secret</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0336__li5978123641714"><span>Create the PVC.</span><p><p id="cce_10_0336__p1197814366172"><strong id="cce_10_0336__b497823641720">kubectl create -f pvc-example.yaml</strong></p>
+<p id="cce_10_0336__p1897815365173">After the PVC is created, you can create a workload and associate it with the PVC to create volumes.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0336__section204171024144619"><h4 class="sectiontitle">Mounting a Secret When Dynamically Creating an OBS Volume</h4><p id="cce_10_0336__p103621416379">When dynamically creating an OBS volume, you can use the following method to specify a secret:</p>
+<ol id="cce_10_0336__ol55461938716"><li id="cce_10_0336__li16546183175"><span>Create a YAML file for the PVC, for example, <strong id="cce_10_0336__b218119472516">pvc-example.yaml</strong>.</span><p><pre class="screen" id="cce_10_0336__screen181936371482">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    csi.storage.k8s.io/node-publish-secret-name: test-user
+    csi.storage.k8s.io/node-publish-secret-namespace: default
+    everest.io/obs-volume-type: STANDARD
+    csi.storage.k8s.io/fstype: obsfs
+  name: obs-secret
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+  storageClassName: csi-obs</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table1911916210118" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row711972201120"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.7.3.1.2.2.1.3.1.1"><p id="cce_10_0336__p15120821110">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.7.3.1.2.2.1.3.1.2"><p id="cce_10_0336__p71209271119">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0336__row1112012271110"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.1.2.2.1.3.1.1 "><p id="cce_10_0336__p61203218111">csi.storage.k8s.io/node-publish-secret-name</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.1.2.2.1.3.1.2 "><p id="cce_10_0336__p2120122121114">Name of the secret</p>
+</td>
+</tr>
+<tr id="cce_10_0336__row266117185118"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.1.2.2.1.3.1.1 "><p id="cce_10_0336__p1662151891115">csi.storage.k8s.io/node-publish-secret-namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.1.2.2.1.3.1.2 "><p id="cce_10_0336__p12662131811118">Namespace of the secret</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0336__li11614552151116"><span>Create the PVC.</span><p><p id="cce_10_0336__p2321154151210"><strong id="cce_10_0336__b9231232163816">kubectl create -f pvc-example.yaml</strong></p>
+<p id="cce_10_0336__p4255338215">After the PVC is created, you can create a workload and associate it with the PVC to create volumes.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0336__section1698122173919"><h4 class="sectiontitle">Verification</h4><div class="p" id="cce_10_0336__p11504721521">You can use a secret of an IAM user to mount an OBS volume. Assume that a workload named <strong id="cce_10_0336__b0143114517314">obs-secret</strong> is created, the mount path in the container is <strong id="cce_10_0336__b3806513123217">/temp</strong>, and the IAM user has the CCE <strong id="cce_10_0336__b14155556183219">ReadOnlyAccess</strong> and <strong id="cce_10_0336__b742055918322">Tenant Guest</strong> permissions.<ol id="cce_10_0336__ol656171774216"><li id="cce_10_0336__li2561170423">Query the name of the workload pod.<p id="cce_10_0336__p1117620592457"><a name="cce_10_0336__li2561170423"></a><a name="li2561170423"></a><strong id="cce_10_0336__b204787557393">kubectl get po | grep obs-secret</strong></p>
+<p id="cce_10_0336__p1654921194617">Expected outputs:</p>
+<pre class="screen" id="cce_10_0336__screen175211232114611">obs-secret-5cd558f76f-vxslv          1/1     Running   0          3m22s</pre>
+</li><li id="cce_10_0336__li239217408467">Query the objects in the mount path. In this example, the query is successful.<p id="cce_10_0336__p19266121194717"><a name="cce_10_0336__li239217408467"></a><a name="li239217408467"></a><strong id="cce_10_0336__b162581019401">kubectl exec obs-secret-5cd558f76f-vxslv -- ls -l /temp/</strong></p>
+</li><li id="cce_10_0336__li97510533467">Write data into the mount path. In this example, the write operation fails.<p id="cce_10_0336__p13257203514812"><a name="cce_10_0336__li97510533467"></a><a name="li97510533467"></a><strong id="cce_10_0336__b7995511402">kubectl exec obs-secret-5cd558f76f-vxslv -- touch /temp/test</strong></p>
+<p id="cce_10_0336__p667716518493">Expected outputs:</p>
+<pre class="screen" id="cce_10_0336__screen14869155884916">touch: setting times of '/temp/test': No such file or directory
+command terminated with exit code 1</pre>
+</li><li id="cce_10_0336__li1375318184504">Set the read/write permissions for the IAM user who mounted the OBS volume by referring to the bucket policy configuration.<p id="cce_10_0336__p7818145635018"><a name="cce_10_0336__li1375318184504"></a><a name="li1375318184504"></a><span><img id="cce_10_0336__image91425562247" src="en-us_image_0000001244141105.png"></span></p>
+<p id="cce_10_0336__p163431053616"><span><img id="cce_10_0336__image17701961669" src="en-us_image_0000001244261069.png"></span></p>
+</li><li id="cce_10_0336__li3633175615112">Write data into the mouth path again. In this example, the write operation succeeded.<p id="cce_10_0336__p147671620145213"><a name="cce_10_0336__li3633175615112"></a><a name="li3633175615112"></a><strong id="cce_10_0336__b16269111110403">kubectl exec obs-secret-5cd558f76f-vxslv -- touch /temp/test</strong></p>
+</li><li id="cce_10_0336__li185365479522">Check the mount path in the container to see whether the data is successfully written.<p id="cce_10_0336__p879715312525"><a name="cce_10_0336__li185365479522"></a><a name="li185365479522"></a><strong id="cce_10_0336__b695501514018">kubectl exec obs-secret-5cd558f76f-vxslv -- ls -l /temp/</strong></p>
+<p id="cce_10_0336__p1123745195313">Expected outputs:</p>
+<pre class="screen" id="cce_10_0336__screen18702181485316">-rwxrwxrwx 1 root root 0 Jun  7 01:52 test</pre>
+</li></ol>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0337.html b/docs/cce/umn/cce_10_0337.html
new file mode 100644
index 00000000..dada39f1
--- /dev/null
+++ b/docs/cce/umn/cce_10_0337.html
@@ -0,0 +1,184 @@
+<a name="cce_10_0337"></a><a name="cce_10_0337"></a>
+
+<h1 class="topictitle1">Setting Mount Options</h1>
+<div id="body0000001118492264"><div class="section" id="cce_10_0337__section1291115518717"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0337__p3495910717">You can mount cloud storage volumes to your containers and use these volumes as local directories.</p>
+<p id="cce_10_0337__p154255419914">This section describes how to set mount options when mounting SFS and OBS volumes. You can set mount options in a PV and bind the PV to a PVC. Alternatively, set mount options in a StorageClass and use the StorageClass to create a PVC. In this way, PVs can be dynamically created and inherit mount options configured in the StorageClass by default.</p>
+</div>
+<div class="section" id="cce_10_0337__section14888047833"><a name="cce_10_0337__section14888047833"></a><a name="section14888047833"></a><h4 class="sectiontitle">SFS Volume Mount Options</h4><p id="cce_10_0337__p1373413010222">The everest add-on in CCE presets the options described in <a href="#cce_10_0337__table128754351546">Table 1</a> for mounting SFS volumes. You can set other mount options if needed. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/sfs/en-us_topic_0034428728.html" target="_blank" rel="noopener noreferrer">Mounting an NFS File System to ECSs (Linux)</a>.</p>
+
+<div class="tablenoborder"><a name="cce_10_0337__table128754351546"></a><a name="table128754351546"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0337__table128754351546" frame="border" border="1" rules="all"><caption><b>Table 1 </b>SFS volume mount options</caption><thead align="left"><tr id="cce_10_0337__row17875103517418"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.2.3.2.3.1.1"><p id="cce_10_0337__p108751735648">Option</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.2.3.2.3.1.2"><p id="cce_10_0337__p16876143516416">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0337__row178769351417"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0337__p148769351045">vers=3</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0337__p1787653510419">File system version. Currently, only NFSv3 is supported, Value: <strong id="cce_10_0337__b1713610346441">3</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0337__row1287615351943"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0337__p138762357410">nolock</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0337__p14876143516411">Whether to lock files on the server using the NLM protocol. If <strong id="cce_10_0337__b13294115274417">nolock</strong> is selected, the lock is valid for applications on one host. For applications on another host, the lock is invalid.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row287619355416"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0337__p7876173515414">timeo=600</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0337__p3876535248">Waiting time before the NFS client retransmits a request. The unit is 0.1 seconds. Recommended value: <strong id="cce_10_0337__b08209119461">600</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0337__row13763631151614"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0337__p14763631101610">hard/soft</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0337__p5754011192615">Mounting mode.</p>
+<ul id="cce_10_0337__ul776915118268"><li id="cce_10_0337__li167692116262"><strong id="cce_10_0337__b173071823206">hard</strong>: If the NFS request times out, the client keeps resending the request until the request is successful.</li><li id="cce_10_0337__li147697112266"><strong id="cce_10_0337__b976815531708">soft</strong>: If the NFS request times out, the client returns an error to the invoking program.</li></ul>
+<p id="cce_10_0337__p26201257171610">The default value is <strong id="cce_10_0337__b11493651411">hard</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0337__section1254912109811"><a name="cce_10_0337__section1254912109811"></a><a name="section1254912109811"></a><h4 class="sectiontitle">OBS Volume Mount Options</h4><p id="cce_10_0337__p12416958949">When mounting file storage, the everest add-on presets the options described in <a href="#cce_10_0337__table1688593020213">Table 2</a> and <a href="#cce_10_0337__table9886123010217">Table 3</a> by default. The options in <a href="#cce_10_0337__table1688593020213">Table 2</a> are mandatory. </p>
+
+<div class="tablenoborder"><a name="cce_10_0337__table1688593020213"></a><a name="table1688593020213"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0337__table1688593020213" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Mandatory mount options configured by default</caption><thead align="left"><tr id="cce_10_0337__row148854300216"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.3.2.3.1.1"><p id="cce_10_0337__p1188553019213">Option</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.3.2.3.1.2"><p id="cce_10_0337__p12885183018212">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0337__row788593020214"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0337__p178859301223">use_ino</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0337__p1088511301822">If enabled, obsfs allocates the <strong id="cce_10_0337__b2091210301903">inode</strong> number. Enabled by default in read/write mode.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row1088515301022"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0337__p0885330824">big_writes</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0337__p788523015219">If configured, the maximum size of the cache can be modified.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row15885430427"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0337__p888510301229">nonempty</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0337__p588514301920">Allows non-empty mount paths.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row10885203010215"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0337__p10885153013219">allow_other</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0337__p1788519301222">Allows other users to access the parallel file system.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row4885230826"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0337__p688503013211">no_check_certificate</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0337__p14885193020215">Disables server certificate verification.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row198861530026"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0337__p17886123011213">enable_noobj_cache</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0337__p18861830125">Enables cache entries for objects that do not exist, which can improve performance. Enabled by default in object bucket read/write mode.</p>
+<p id="cce_10_0337__p5685144374318"><strong id="cce_10_0337__b9430193052819">This option is no longer set by default since everest 1.2.40.</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0337__row5886133014212"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.3.2.3.1.1 "><p id="cce_10_0337__p98862301524">sigv2</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.3.2.3.1.2 "><p id="cce_10_0337__p688613012211">Specifies the signature version. Used by default in object buckets.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0337__table9886123010217"></a><a name="table9886123010217"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0337__table9886123010217" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Optional mount options configured by default</caption><thead align="left"><tr id="cce_10_0337__row188863307212"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.3.4.2.3.1.1"><p id="cce_10_0337__p1788614305216">Option</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.3.4.2.3.1.2"><p id="cce_10_0337__p1988613014217">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0337__row3886230427"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_10_0337__p98861530227">max_write=131072</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_10_0337__p78861330527">This parameter is valid only when <strong id="cce_10_0337__b1091511417366">big_writes</strong> is configured. The recommended value is <strong id="cce_10_0337__b122223233368">128 KB</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row4886163018211"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_10_0337__p988613301225">ssl_verify_hostname=0</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_10_0337__p988619301422">Disables verifying the SSL certificate based on the host name.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row8886630228"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_10_0337__p4886203011213">max_background=100</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_10_0337__p48862301720">Allows setting the maximum number of waiting requests in the background. Used by default in parallel file systems.</p>
+</td>
+</tr>
+<tr id="cce_10_0337__row48861230521"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.3.4.2.3.1.1 "><p id="cce_10_0337__p1588643011212">public_bucket=1</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.3.4.2.3.1.2 "><p id="cce_10_0337__p988614301928">If set to <strong id="cce_10_0337__b3500851788">1</strong>, public buckets are mounted anonymously. Enabled by default in object bucket read/write mode.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0337__p831913817451">You can log in to the node to which the pod is scheduled and view all mount options used for mounting the OBS volume in the process details.</p>
+<ul id="cce_10_0337__ul1031913854513"><li id="cce_10_0337__li1231993844517">Object bucket: ps -ef | grep s3fs<pre class="screen" id="cce_10_0337__screen231963814510">root     22142     1  0 Jun03 ?        00:00:00 /usr/bin/s3fs pvc-82fe2cbe-3838-43a2-8afb-f994e402fb9d /mnt/paas/kubernetes/kubelet/pods/0b13ff68-4c8e-4a1c-b15c-724fd4d64389/volumes/kubernetes.io~csi/pvc-82fe2cbe-3838-43a2-8afb-f994e402fb9d/mount -o url=https://{{endpoint}}:443 -o endpoint=xxxxxx -o passwd_file=/opt/everest-host-connector/1622707954357702943_obstmpcred/pvc-82fe2cbe-3838-43a2-8afb-f994e402fb9d -o nonempty -o big_writes -o enable_noobj_cache -o sigv2 -o allow_other -o no_check_certificate -o ssl_verify_hostname=0 -o max_write=131072 -o multipart_size=20 -o umask=0</pre>
+</li><li id="cce_10_0337__li6320153894510">Parallel file system: ps -ef | grep obsfs<pre class="screen" id="cce_10_0337__screen13202388456">root      1355     1  0 Jun03 ?        00:03:16 /usr/bin/obsfs pvc-86720bb9-5aa8-4cde-9231-5253994f8468 /mnt/paas/kubernetes/kubelet/pods/c959a91d-eced-4b41-91c6-96cbd65324f9/volumes/kubernetes.io~csi/pvc-86720bb9-5aa8-4cde-9231-5253994f8468/mount -o url=https://{{endpoint}}:443 -o endpoint=xxxxxx -o passwd_file=/opt/everest-host-connector/1622714415305160399_obstmpcred/pvc-86720bb9-5aa8-4cde-9231-5253994f8468 -o allow_other -o nonempty -o big_writes -o use_ino -o no_check_certificate -o ssl_verify_hostname=0 -o umask=0027 -o max_write=131072 -o max_background=100 -o uid=10000 -o gid=10000</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0337__section1940515714420"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0337__ul1364364214526"><li id="cce_10_0337__li13643442135219">The everest add-on version must be <strong id="cce_10_0337__b181871855195813">1.2.8 or later</strong>.</li><li id="cce_10_0337__li2028012204545">The add-on identifies the mount options and transfers them to the underlying storage resources, which determine whether the specified options are valid.</li></ul>
+</div>
+<div class="section" id="cce_10_0337__section6456132219344"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0337__p1869352683414">Mount options cannot be configured for secure containers.</p>
+</div>
+<div class="section" id="cce_10_0337__section846811715589"><h4 class="sectiontitle">Setting Mount Options in a PV</h4><p id="cce_10_0337__p1070219443123">You can use the <strong id="cce_10_0337__b1768712683112">mountOptions</strong> field to set mount options in a PV. The options you can configure in <strong id="cce_10_0337__b10717142133513">mountOptions</strong> are listed in <a href="#cce_10_0337__section14888047833">SFS Volume Mount Options</a> and <a href="#cce_10_0337__section1254912109811">OBS Volume Mount Options</a>.</p>
+<pre class="screen" id="cce_10_0337__screen1647520711160">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: pv-obs-example
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+spec:
+  mountOptions:
+  - umask=0027
+  - uid=10000
+  - gid=10000
+  accessModes:
+  - ReadWriteMany
+  capacity:
+    storage: 1Gi
+  claimRef:
+    apiVersion: v1
+    kind: PersistentVolumeClaim
+    name: pvc-obs-example
+    namespace: default
+  csi:
+    driver: obs.csi.everest.io
+    fsType: obsfs
+    volumeAttributes:
+      everest.io/obs-volume-type: STANDARD
+      everest.io/region: <span id="cce_10_0337__text13180166132919">eu-de</span>
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    volumeHandle: obs-normal-static-pv
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: csi-obs</pre>
+<p id="cce_10_0337__p58371937174114">After a PV is created, you can create a PVC and bind it to the PV, and then mount the PV to the container in the workload.</p>
+</div>
+<div class="section" id="cce_10_0337__section14845171205813"><h4 class="sectiontitle">Setting Mount Options in a StorageClass</h4><p id="cce_10_0337__p09111331124418">You can use the <strong id="cce_10_0337__b1035845733512">mountOptions</strong> field to set mount options in a StorageClass. The options you can configure in <strong id="cce_10_0337__b2365757163511">mountOptions</strong> are listed in <a href="#cce_10_0337__section14888047833">SFS Volume Mount Options</a> and <a href="#cce_10_0337__section1254912109811">OBS Volume Mount Options</a>.</p>
+<pre class="screen" id="cce_10_0337__screen164701419172012">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-obs-mount-option
+mountOptions:
+- umask=0027
+- uid=10000
+- gid=10000
+parameters:
+  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
+  csi.storage.k8s.io/fstype: s3fs
+  everest.io/obs-volume-type: STANDARD
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+<p id="cce_10_0337__p1048738182818">After the StorageClass is configured, you can use it to create a PVC. By default, the dynamically created PVs inherit the mount options set in the StorageClass.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0338.html b/docs/cce/umn/cce_10_0338.html
new file mode 100644
index 00000000..df6a512f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0338.html
@@ -0,0 +1,45 @@
+<a name="cce_10_0338"></a><a name="cce_10_0338"></a>
+
+<h1 class="topictitle1">Removing a Node</h1>
+<div id="body0000001117989308"><div class="section" id="cce_10_0338__section1730974915433"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0338__p171654316363">Removing a node from a cluster will re-install the node OS and clear CCE components on the node.</p>
+<p id="cce_10_0338__p5236101374415">Removing a node will not delete the server corresponding to the node. You are advised to remove nodes at off-peak hours to avoid impacts on your services.</p>
+<p id="cce_10_0338__p643416142166">After a node is removed from the cluster, the node is still running.</p>
+</div>
+<div class="section" id="cce_10_0338__section3145212449"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0338__ul1825317203447"><li id="cce_10_0338__li1325312012442">Nodes can be removed only when the cluster is in the <strong id="cce_10_0338__b5685015118">Available</strong> or <strong id="cce_10_0338__b268508115">Unavailable</strong> state.</li><li id="cce_10_0338__li72534202445">A CCE node can be removed only when it is in the <strong id="cce_10_0338__b98691545119">Active</strong>, <strong id="cce_10_0338__b1687010541315">Abnormal</strong>, or <strong id="cce_10_0338__b6870254817">Error</strong> state.</li><li id="cce_10_0338__li172536201445">A CCE node in the Active state can have its OS re-installed and CCE components cleared after it is removed.</li><li id="cce_10_0338__li13253132013448">If the OS fails to be re-installed after the node is removed, manually re-install the OS. After the re-installation, log in to the node and run the clearance script to clear CCE components. For details, see <a href="#cce_10_0338__section149069481111">Handling Failed OS Reinstallation</a>.</li></ul>
+</div>
+<div class="section" id="cce_10_0338__section152591751204415"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0338__ul1431712593445"><li id="cce_10_0338__li131795974416">Removing a node will lead to pod migration, which may affect services. Perform this operation during off-peak hours.</li><li id="cce_10_0338__li53171759104415">Unexpected risks may occur during the operation. Back up data in advance.</li><li id="cce_10_0338__li9317195994418">While the node is being deleted, the backend will set the node to the unschedulable state.</li><li id="cce_10_0338__li103171259174415">After you remove the node and re-install the OS, the original LVM partitions will be cleared and the data managed by LVM will be cleared. Therefore, back up data in advance.</li></ul>
+</div>
+<div class="section" id="cce_10_0338__section1313874144519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0338__ol1066931784513"><li id="cce_10_0338__li525217483363"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0338__li23498253373"><span>Choose <strong id="cce_10_0338__b070118416523">Nodes</strong> from the navigation pane and choose <strong id="cce_10_0338__b1757323691015">More</strong> &gt; <strong id="cce_10_0338__b101871339171017">Remove</strong> in the <strong id="cce_10_0338__b16183131585416">Operation</strong> column of the target node.</span></li><li id="cce_10_0338__li1522012619456"><span>In the dialog box displayed, configure the login information required for re-installing the OS and click <strong id="cce_10_0338__b1595991122413">Yes</strong>. Wait until the node is removed.</span><p><p id="cce_10_0338__p4223557125913">After the node is removed, workload pods on the node are automatically migrated to other available nodes.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0338__section149069481111"><a name="cce_10_0338__section149069481111"></a><a name="section149069481111"></a><h4 class="sectiontitle">Handling Failed OS Reinstallation</h4><p id="cce_10_0338__p12145161315526">You can perform the following steps to re-install the OS and clear the CCE components on the node if previous attempts fail:</p>
+<ol id="cce_10_0338__ol1953743913419"><li id="cce_10_0338__li16537739184113"><span>Log in to the management console of the server and re-install the OS.</span></li><li id="cce_10_0338__li653713398417"><span>Log in to the server and run the following commands to clear the CCE components and LVM data:</span><p><p id="cce_10_0338__p1988674794217">Write the following scripts to the <strong id="cce_10_0338__b7273114316">clean.sh</strong> file:</p>
+<pre class="screen" id="cce_10_0338__screen195892818439">lsblk
+vgs --noheadings | awk '{print $1}' | xargs vgremove -f
+pvs --noheadings | awk '{print $1}' | xargs pvremove -f
+lvs --noheadings | awk '{print $1}' | xargs -i lvremove -f --select {}
+function init_data_disk() {
+    all_devices=$(lsblk -o KNAME,TYPE | grep disk | grep -v nvme | awk '{print $1}' | awk '{ print "/dev/"$1}')
+    for device in ${all_devices[@]}; do
+        isRootDisk=$(lsblk -o KNAME,MOUNTPOINT $device 2&gt;/dev/null| grep -E '[[:space:]]/$' | wc -l )
+        if [[ ${isRootDisk} != 0 ]]; then
+            continue
+        fi
+        dd if=/dev/urandom of=${device} bs=512 count=64
+        return
+    done
+    exit 1
+}
+init_data_disk
+lsblk</pre>
+<p id="cce_10_0338__p171947604410">Run the following command:</p>
+<p id="cce_10_0338__p18878191412442"><strong id="cce_10_0338__b1393417245448">bash clean.sh</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0341.html b/docs/cce/umn/cce_10_0341.html
new file mode 100644
index 00000000..078a4ab0
--- /dev/null
+++ b/docs/cce/umn/cce_10_0341.html
@@ -0,0 +1,50 @@
+<a name="cce_10_0341"></a><a name="cce_10_0341"></a>
+
+<h1 class="topictitle1">Data Disk Space Allocation</h1>
+<div id="body0000001172371807"><p id="cce_10_0341__p12279151419394">This section describes how to allocate data disk space.</p>
+<p id="cce_10_0341__p8060118">When creating a node, you need to configure a data disk whose capacity is greater than or equal to 100GB for the node. You can click <span class="uicontrol" id="cce_10_0341__uicontrol121091440172612"><b>Expand</b></span> to customize the data disk space allocation.</p>
+<p id="cce_10_0341__p2030944219363"></p>
+<ul id="cce_10_0341__ul131071177194"><li id="cce_10_0341__li1610731741918"><a href="#cce_10_0341__section10653143445411">Allocate Disk Space</a>: CCE divides the data disk space for container engines and pods. The container engine space stores the Docker/containerd working directories, container images, and image metadata. The pod space stores kubelet components and emptyDir volumes. The available container engine space affects image download and container startup and running.<ul id="cce_10_0341__ul569711153914"><li id="cce_10_0341__li369761103910">Container engine and container image space (90% by default): functions as the container runtime working directory and stores container image data and image metadata.</li><li id="cce_10_0341__li12697111123915">kubelet component and emptyDir volume space (10% by default): stores pod configuration files, secrets, and mounted storage such as emptyDir volumes.</li></ul>
+</li><li id="cce_10_0341__li1046332121913"><a href="#cce_10_0341__section12119191161518">Allocate Pod Basesize</a>: indicates the base size of a container, that is, the upper limit of the disk space occupied by each workload pod (including the space occupied by container images). This setting prevents the pods from taking all the disk space available, which may cause service exceptions. It is recommended that the value be smaller than or equal to 80% of the container engine space. This parameter is related to the node OS and container storage rootfs and is not supported in some scenarios.</li></ul>
+<div class="section" id="cce_10_0341__section10653143445411"><a name="cce_10_0341__section10653143445411"></a><a name="section10653143445411"></a><h4 class="sectiontitle">Setting Container Engine Space</h4><p id="cce_10_0341__p1980613586544">A data disk, 100 GB for example, is divided as follows (depending on the container storage rootfs):</p>
+<p id="cce_10_0341__p1469162212151">You can log in to the node and run the <strong id="cce_10_0341__b182955169314">docker info</strong> command to view the storage engine type.</p>
+<pre class="screen" id="cce_10_0341__screen655819587155"># docker info
+Containers: 20
+ Running: 17
+ Paused: 0
+ Stopped: 3
+Images: 16
+Server Version: 18.09.0
+Storage Driver: devicemapper</pre>
+<ul id="cce_10_0341__ul20369135562510"><li id="cce_10_0341__li7709101613457"><strong id="cce_10_0341__b3645191661515">Rootfs (Device Mapper)</strong><div class="p" id="cce_10_0341__p269110559348">By default, 90% of the data disk is the container engine and container image space, which can be divided into the following two parts:<ul id="cce_10_0341__ul129621654173420"><li id="cce_10_0341__li1796075493411">The <strong id="cce_10_0341__b1960410329431">/var/lib/docker</strong> directory is the Docker working directory and occupies 20% of the container runtime space by default. (Space size of the <strong id="cce_10_0341__b1360433210433">/var/lib/docker</strong> directory = <strong id="cce_10_0341__b18981345194320">Data disk space x 90% x 20%</strong>)</li><li id="cce_10_0341__li1596055410343">The thin pool stores container image data, image metadata, and container data, and occupies 80% of the container runtime space by default. (Thin pool space = <strong id="cce_10_0341__b579915551432">Data disk space x 90% x 80%</strong>)<p id="cce_10_0341__p1996075413345">The thin pool is dynamically mounted. You can view it by running the <strong id="cce_10_0341__b16273758244">lsblk</strong> command on a node, but not the <strong id="cce_10_0341__b13637955182316">df -h</strong> command.</p>
+</li></ul>
+</div>
+<p id="cce_10_0341__p396210546347"><span><img id="cce_10_0341__image187589441557" src="en-us_image_0000001199021278.png"></span></p>
+</li></ul>
+<ul id="cce_10_0341__ul20849165711250"><li id="cce_10_0341__li162571641195915"><strong id="cce_10_0341__b32761419101513">Rootfs (OverlayFS)</strong><p id="cce_10_0341__p98354212596">No separate thin pool. The entire container engine and container image space (90% of the data disk by default) are in the <strong id="cce_10_0341__b460816824418">/var/lib/docker</strong> directory.</p>
+<p id="cce_10_0341__p78987371501"><span><img id="cce_10_0341__image154991612555" src="en-us_image_0000001244101121.png"></span></p>
+</li></ul>
+<div class="p" id="cce_10_0341__p16515912192615">Using rootfs for container storage in CCE<ul id="cce_10_0341__ul197101852142618"><li id="cce_10_0341__li328233311815">CCE cluster: EulerOS 2.5 nodes use Device Mapper and EulerOS 2.9 nodes use OverlayFS. CentOS 7.x nodes in clusters earlier than v1.19.16 use Device Mapper, and use OverlayFS in clusters of v1.19.16 and later. </li><li id="cce_10_0341__li10902655122612">CCE Turbo cluster: BMSs use Device Mapper. ECSs use OverlayFS.</li></ul>
+</div>
+</div>
+<div class="section" id="cce_10_0341__section12119191161518"><a name="cce_10_0341__section12119191161518"></a><a name="section12119191161518"></a><h4 class="sectiontitle">Allocating Basesize for Pods</h4><p id="cce_10_0341__p1680512513583">The capability of customizing pod basesize is related to the node OS and container storage rootfs. You can log in to the node and run the <strong id="cce_10_0341__b119965387265">docker info</strong> command to view the container storage rootfs.</p>
+<ul id="cce_10_0341__ul5416437104217"><li id="cce_10_0341__li1741663794216">Device Mapper supports custom pod basesize. The default value is 10 GB.</li><li id="cce_10_0341__li9444184454215">When OverlayFS is used, <strong id="cce_10_0341__b1959305613013">basesize</strong> is not limited by default. In clusters of latest versions (1.19.16, 1.21.3, 1.23.3, and later), EulerOS 2.9 supports <strong id="cce_10_0341__b76413193119">basesize</strong> if the Docker engine is used. Other OSs do not support <strong id="cce_10_0341__b20234123113119">basesize</strong>.<div class="note" id="cce_10_0341__note299324124513"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0341__p110012410457">In the case of using Docker on EulerOS 2.9 nodes, <strong id="cce_10_0341__b187661041183112">basesize</strong> will not take effect if <strong id="cce_10_0341__b147691641183110">CAP_SYS_RESOURCE</strong> or <strong id="cce_10_0341__b77726412316">privileged</strong> is configured for a container.</p>
+</div></div>
+</li></ul>
+<p id="cce_10_0341__p14092029191414">When configuring <strong id="cce_10_0341__b1630984453420">basesize</strong>, consider the maximum number of pods on a node. The container engine space should be greater than the total disk space used by containers. Formula: <strong id="cce_10_0341__b0931349183616">the container engine space and container image space (90% by default)</strong> &gt; <strong id="cce_10_0341__b18772923134215">Number of containers</strong> x <strong id="cce_10_0341__b127724231421">basesize</strong>. Otherwise, the container engine space allocated to the node may be insufficient and the container cannot be started.</p>
+<p id="cce_10_0341__p5888135001914"></p>
+<p id="cce_10_0341__p552122284915">For nodes that support <strong id="cce_10_0341__b162431026193013">basesize</strong>, when Device Mapper is used, although you can limit the size of the <strong id="cce_10_0341__b14451113615217">/home</strong> directory of a single container (to 10 GB by default), all containers on the node still share the thin pool of the node for storage. They are not completely isolated. When the sum of the thin pool space used by certain containers reaches the upper limit, other containers cannot run properly.</p>
+<p id="cce_10_0341__p8521222154918">In addition, after a file is deleted in the <strong id="cce_10_0341__b84841451241">/home</strong> directory of the container, the thin pool space occupied by the file is not released immediately. Therefore, even if <strong id="cce_10_0341__b114845454243">basesize</strong> is set to 10 GB, the thin pool space occupied by files keeps increasing until 10 GB when files are created in the container. The space released after file deletion will be reused but after a while. If <strong id="cce_10_0341__b722334192516">the number of containers on the node multiplied by basesize</strong> is greater than the thin pool space size of the node, there is a possibility that the thin pool space has been used up.</p>
+</div>
+<div class="section" id="cce_10_0341__section1926415516193"><h4 class="sectiontitle">Garbage Collection Policies for Container Images</h4><p id="cce_10_0341__p972681822011">When the container engine space is insufficient, image garbage collection is triggered.</p>
+<p id="cce_10_0341__p116561726135115">The policy for garbage collecting images takes two factors into consideration: <strong id="cce_10_0341__b16515235351">HighThresholdPercent</strong> and <strong id="cce_10_0341__b1455317361951">LowThresholdPercent</strong>. Disk usage above the high threshold (default: 85%) will trigger garbage collection. The garbage collection will delete least recently used images until the low threshold (default: 80%) has been met.</p>
+</div>
+<div class="section" id="cce_10_0341__section41701981545"><h4 class="sectiontitle">Recommended Configuration for the Container Engine Space</h4><ul id="cce_10_0341__ul65481047181516"><li id="cce_10_0341__li154817478159">The container engine space should be greater than the total disk space used by containers. Formula: <strong id="cce_10_0341__b2066417434131">Container engine space</strong> &gt; <strong id="cce_10_0341__b206659431133">Number of containers</strong> x <strong id="cce_10_0341__b666594351310">basesize</strong></li><li id="cce_10_0341__li2845145154411">You are advised to create and delete files of containerized services in local storage volumes (such as emptyDir and hostPath volumes) or cloud storage directories mounted to the containers. In this way, the thin pool space is not occupied. emptyDir volumes occupy the kubelet space. Therefore, properly plan the size of the kubelet space.</li><li id="cce_10_0341__li3257185416717">If OverlayFS is used by in CCE clusters, you can deploy services on these nodes so that the disk space occupied by files created or deleted in containers can be released immediately.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0180.html">Node Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0342.html b/docs/cce/umn/cce_10_0342.html
new file mode 100644
index 00000000..6b620951
--- /dev/null
+++ b/docs/cce/umn/cce_10_0342.html
@@ -0,0 +1,79 @@
+<a name="cce_10_0342"></a><a name="cce_10_0342"></a>
+
+<h1 class="topictitle1">CCE Turbo Clusters and CCE Clusters</h1>
+<div id="body0000001176699695"><div class="section" id="cce_10_0342__section67171919115114"><h4 class="sectiontitle">Comparison Between CCE Turbo Clusters and CCE Clusters</h4><p id="cce_10_0342__en-us_topic_0000001151389047_p2050821394419">The following table lists the differences between CCE Turbo clusters and CCE clusters:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0342__en-us_topic_0000001151389047_table8289045224" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster types</caption><thead align="left"><tr id="cce_10_0342__en-us_topic_0000001151389047_row19289164182216"><th align="left" class="cellrowborder" valign="top" width="9.699030096990302%" id="mcps1.3.1.3.2.5.1.1"><p id="cce_10_0342__en-us_topic_0000001151389047_p1628917416228">Dimension</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.218778122187782%" id="mcps1.3.1.3.2.5.1.2"><p id="cce_10_0342__en-us_topic_0000001151389047_p17232141414127">Sub-dimension</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.965903409659035%" id="mcps1.3.1.3.2.5.1.3"><p id="cce_10_0342__en-us_topic_0000001151389047_p101992815291">CCE Turbo Cluster</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="37.11628837116288%" id="mcps1.3.1.3.2.5.1.4"><p id="cce_10_0342__en-us_topic_0000001151389047_p4289544222">CCE Cluster</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0342__en-us_topic_0000001151389047_row0378353192912"><td class="cellrowborder" rowspan="2" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p243905112307">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p4966548153013">Positioning</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p123785538299">Next-gen container cluster, with accelerated computing, networking, and scheduling. Designed for Cloud Native 2.0</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p153781053122917">Standard cluster for common commercial use</p>
+</td>
+</tr>
+<tr id="cce_10_0342__en-us_topic_0000001151389047_row132892412218"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p136288022711">Node type</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p11199184296">Hybrid deployment of VMs and bare-metal servers</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p11340151510272">Hybrid deployment of VMs</p>
+</td>
+</tr>
+<tr id="cce_10_0342__en-us_topic_0000001151389047_row19562502266"><td class="cellrowborder" rowspan="3" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p1356550102618">Networking</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p76288082716">Model</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p101999842920"><strong id="cce_10_0342__en-us_topic_0000001151389047_b5222152982410">Cloud Native Network 2.0</strong>: applies to large-scale and high-performance scenarios.</p>
+<p id="cce_10_0342__en-us_topic_0000001151389047_p74677316335">Max networking scale: 2,000 nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p1734061519273"><strong id="cce_10_0342__en-us_topic_0000001151389047_b3481929453">Cloud-native network 1.0</strong>: applies to common, smaller-scale scenarios.</p>
+<ul id="cce_10_0342__en-us_topic_0000001151389047_ul2055005123618"><li id="cce_10_0342__en-us_topic_0000001151389047_li10550155114368">Tunnel network model</li><li id="cce_10_0342__en-us_topic_0000001151389047_li9550551123616">VPC network model</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0342__en-us_topic_0000001151389047_row133581631175511"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p2800173617559">Performance</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p219913817299">Flattens the VPC network and container network into one. No performance loss.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p58001736135520">Overlays the VPC network with the container network, causing certain performance loss.</p>
+</td>
+</tr>
+<tr id="cce_10_0342__en-us_topic_0000001151389047_row1328914432215"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p1362811017275">Container network isolation</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p519910842911">Associates pods with security groups. Unifies security isolation in and out the cluster via security groups' network policies.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_10_0342__en-us_topic_0000001151389047_ul29571941173617"><li id="cce_10_0342__en-us_topic_0000001151389047_li1595716411365">Tunnel network model: supports network policies for intra-cluster communications.</li><li id="cce_10_0342__en-us_topic_0000001151389047_li16957541123611">VPC network model: supports no isolation.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0342__en-us_topic_0000001151389047_row17290144506"><td class="cellrowborder" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p85985184509">Security</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p959891855012">Isolation</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_10_0342__en-us_topic_0000001151389047_ul125981418125012"><li id="cce_10_0342__en-us_topic_0000001151389047_li159814182503">Physical machine: runs Kata containers, allowing VM-level isolation.</li><li id="cce_10_0342__en-us_topic_0000001151389047_li1759813188506">VM: runs common containers.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p16598131835011">Runs common containers, isolated by cgroups.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0342__section4862101115511"><h4 class="sectiontitle">QingTian Architecture</h4><p id="cce_10_0342__cce_01_0342_p3849111653112"><span><img id="cce_10_0342__cce_01_0342_image148501216123112" src="en-us_image_0000001212924318.png"></span></p>
+<p id="cce_10_0342__cce_01_0342_p1185011160316">The QingTian architecture consists of data plane (software-hardware synergy) and management plane (Alkaid Smart Cloud Brain). The data plane innovates in five dimensions: simplified data center, diversified computing power, QingTian cards, ultra-fast engines, and simplified virtualization, to fully offload and accelerate compute, storage, networking, and security components. VMs, bare metal servers, and containers can run together. As a distributed operating system, the Alkaid Smart Cloud Brain focuses on the cloud, AI, and 5G, and provide all-domain scheduling to achieve cloud-edge-device collaboration and governance.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0002.html">Cluster Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0343.html b/docs/cce/umn/cce_10_0343.html
new file mode 100644
index 00000000..21b20726
--- /dev/null
+++ b/docs/cce/umn/cce_10_0343.html
@@ -0,0 +1,645 @@
+<a name="cce_10_0343"></a><a name="cce_10_0343"></a>
+
+<h1 class="topictitle1">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</h1>
+<div id="body8662426"><p id="cce_10_0343__cce_bestpractice_0107_p148301338132712">In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. You are advised to use CSI Everest.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p1556618195217">To migrate your storage volumes, create a static PV to associate with the original underlying storage, and then create a PVC to associate with this static PV. When you upgrade your application, mount the new PVC to the original mounting path to migrate the storage volumes.</p>
+<div class="warning" id="cce_10_0343__cce_bestpractice_0107_note589874414375"><span class="warningtitle"><img src="public_sys-resources/warning_3.0-en-us.png"> </span><div class="warningbody"><p id="cce_10_0343__cce_bestpractice_0107_p1189834410374">Services will be interrupted during the migration. Therefore, properly plan the migration and back up data.</p>
+</div></div>
+<div class="section" id="cce_10_0343__cce_bestpractice_0107_section1914417445277"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0343__cce_bestpractice_0107_ol1119842011254"><li id="cce_10_0343__cce_bestpractice_0107_li39059101273"><span>(Optional) Back up data to prevent data loss in case of exceptions.</span></li><li id="cce_10_0343__cce_bestpractice_0107_li1219802032512"><a name="cce_10_0343__cce_bestpractice_0107_li1219802032512"></a><a name="cce_bestpractice_0107_li1219802032512"></a><span>Configure a YAML file of the PV in the CSI format according to the PV in the FlexVolume format and associate the PV with the existing storage.</span><p><p id="cce_10_0343__cce_bestpractice_0107_p10956144914562">To be specific, run the following commands to configure the pv-example.yaml file, which is used to create a PV. </p>
+<p id="cce_10_0343__cce_bestpractice_0107_p16647121665720"><strong id="cce_10_0343__cce_bestpractice_0107_b20159165101615">touch pv-example.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p166474161573"><strong id="cce_10_0343__cce_bestpractice_0107_b520305161611">vi pv-example.yaml</strong></p>
+<div class="p" id="cce_10_0343__cce_bestpractice_0107_p10409104995614">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b13988223541">a PV for an EVS volume</strong>:<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen124093496566">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  labels:
+    <strong id="cce_10_0343__cce_bestpractice_0107_b12131375441">failure-domain.beta.kubernetes.io/region: </strong><span id="cce_10_0343__cce_bestpractice_0107_text6728433172218">eu-de</span>
+<strong id="cce_10_0343__cce_bestpractice_0107_b16216133724416">    failure-domain.beta.kubernetes.io/zone: &lt;zone name&gt;</strong>
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+  <strong id="cce_10_0343__cce_bestpractice_0107_b050631184419">name: </strong><strong id="cce_10_0343__cce_bestpractice_0107_b105123134415">pv-evs-example</strong>
+spec:
+  accessModes:
+  - ReadWriteOnce
+  capacity:
+    <strong id="cce_10_0343__cce_bestpractice_0107_b1916712269445">storage: </strong><strong id="cce_10_0343__cce_bestpractice_0107_b15172162617446">10Gi</strong>
+  csi:
+    driver: disk.csi.everest.io
+    fsType: ext4
+    volumeAttributes:
+      <strong id="cce_10_0343__cce_bestpractice_0107_b771412711482">everest.io/disk-mode: </strong><strong id="cce_10_0343__cce_bestpractice_0107_b3715107184817">SCSI</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b57196714812">      everest.io/disk-volume-type: SAS</strong>
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    <strong id="cce_10_0343__cce_bestpractice_0107_b915010138486">volumeHandle: </strong><strong id="cce_10_0343__cce_bestpractice_0107_b5151201318488">0992dbda-6340-470e-a74e-4f0db288ed82</strong>
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: csi-disk</pre>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p19607165215128"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p54091549175616">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>EVS volume configuration parameters</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.7.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p18191161619356">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.7.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p1919116161353">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row2318123021219"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p1995180962">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1861300612">Region where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row163191830121220"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p168517016619">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p12892459355">AZ where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row9653154613512"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p166542461356">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p126541746357">Name of the PV, which must be unique in the cluster.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row36542464516"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p2065516461655">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1065544610519">EVS volume capacity in the unit of Gi. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b1144121364514">spec.capacity.storage</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row95681351352"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p115681951655">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p556912511555">Storage driver used to attach the volume. Set the driver to <strong id="cce_10_0343__cce_bestpractice_0107_b673716182452">disk.csi.everest.io</strong> for the EVS volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row856925110517"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p1756925110517">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p11569175120514">Volume ID of the EVS disk. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b221553434517">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row19351157557"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p183510571550">everest.io/disk-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p163511571556">EVS disk mode. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b381519478459">spec.flexVolume.options.disk-mode</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row15352571556"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p3357571053">everest.io/disk-volume-type</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1936105718517">EVS disk type. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b2528131316506">kubernetes.io/volumetype</strong> in the storage class corresponding to <strong id="cce_10_0343__cce_bestpractice_0107_b1953411395020">spec.storageClassName</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row153610571511"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p03614576517">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b25261158105018">csi-disk</strong> for EVS disks.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p040913499563">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b9465137161213">a PV for an SFS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen16410149155610">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  <strong id="cce_10_0343__cce_bestpractice_0107_b20655104515487">name: pv-sfs-example</strong>
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+spec:
+  accessModes:
+  - ReadWriteMany
+  capacity:
+    <strong id="cce_10_0343__cce_bestpractice_0107_b10446115017484">storage: </strong><strong id="cce_10_0343__cce_bestpractice_0107_b11448135010480">10Gi</strong>
+  csi:
+    driver: nas.csi.everest.io
+    fsType: nfs
+    volumeAttributes:
+      <strong id="cce_10_0343__cce_bestpractice_0107_b1986810568485">everest.io/share-export-location:  # Shared path of the file storage</strong>
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    <strong id="cce_10_0343__cce_bestpractice_0107_b5516219497">volumeHandle: 682f00bb-ace0-41d8-9b3e-913c9aa6b695</strong>
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: csi-nas</pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p104042044181220"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p6410144945614">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table10859183316916" frame="border" border="1" rules="all"><caption><b>Table 2 </b>SFS volume configuration parameters</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row38591633994"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.12.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p1385913337917">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.12.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p3859733090">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row88591233395"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p108591533693">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p148592335912">Name of the PV, which must be unique in the cluster.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row158595338918"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p785919331096">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p186003319918">File storage size in the unit of Gi. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b4964104616563">spec.capacity.storage</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row48607331494"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p1686014331913">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p3860173312917">Storage driver used to attach the volume. Set the driver to <strong id="cce_10_0343__cce_bestpractice_0107_b67607155715">nas.csi.everest.io</strong> for the file system.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row6808112520114"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p17809172511117">everest.io/share-export-location</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p780919259115">Shared path of the file system. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b562915119">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row78601833094"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p18601933393">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p148602331397">File system ID. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b77331625326">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row5860143317914"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p178608331994">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b1398782915210">csi-nas</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p94101749105619">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b957014161416">a PV for an OBS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen341064915612">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  <strong id="cce_10_0343__cce_bestpractice_0107_b19697272497">name: pv-obs-example</strong>
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+spec:
+  accessModes:
+  - ReadWriteMany
+  capacity:
+    storage: 1Gi
+  csi:
+    driver: obs.csi.everest.io
+    <strong id="cce_10_0343__cce_bestpractice_0107_b64651633194911">fsType: s3fs</strong>
+    volumeAttributes:
+      <strong id="cce_10_0343__cce_bestpractice_0107_b18061377497">everest.io/obs-volume-type: STANDARD</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b5807153794916">      everest.io/region: <span id="cce_10_0343__cce_bestpractice_0107_text13180166132919">eu-de</span></strong>
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    <strong id="cce_10_0343__cce_bestpractice_0107_b16316154315491">volumeHandle: obs-normal-static-pv</strong>
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: csi-obs</pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p1541064918566"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p1763835121210">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table147634352126" frame="border" border="1" rules="all"><caption><b>Table 3 </b>OBS volume configuration parameters</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row1376383591219"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.17.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p187631357122">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.17.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p147631357126">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row20763935101212"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p10763335141218">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1876313352123">Name of the PV, which must be unique in the cluster.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row2763183511126"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p12763143541213">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p10763143561217">Storage capacity, in the unit of Gi. Set this parameter to the fixed value <strong id="cce_10_0343__cce_bestpractice_0107_b69303913316">1Gi</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row17763635161217"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p12763143516123">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p476403511217">Storage driver used to attach the volume. Set the driver to <strong id="cce_10_0343__cce_bestpractice_0107_b1892865020316">obs.csi.everest.io</strong> for the OBS volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row87641035151214"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p2764133531218">fsType</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1764163514127">File type. Value options are <strong id="cce_10_0343__cce_bestpractice_0107_b4774501048">obsfs</strong> or <strong id="cce_10_0343__cce_bestpractice_0107_b77751001416">s3fs</strong>. If the value is <strong id="cce_10_0343__cce_bestpractice_0107_b3775701249">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_10_0343__cce_bestpractice_0107_b0775140745">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. Set this parameter according to the value of <strong id="cce_10_0343__cce_bestpractice_0107_b182806128410">spec.flexVolume.options.posix</strong> of the FlexVolume PV. If the value of <strong id="cce_10_0343__cce_bestpractice_0107_b132852121947">spec.flexVolume.options.posix</strong> is <strong id="cce_10_0343__cce_bestpractice_0107_b42852121541">true</strong>, set this parameter to <strong id="cce_10_0343__cce_bestpractice_0107_b112862121945">obsfs</strong>. If the value is <strong id="cce_10_0343__cce_bestpractice_0107_b14286151215418">false</strong>, set this parameter to <strong id="cce_10_0343__cce_bestpractice_0107_b928615121417">s3fs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row671295211146"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p671313522145">everest.io/obs-volume-type</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p9713452161412">Storage class, including <strong id="cce_10_0343__cce_bestpractice_0107_b04090199415">STANDARD</strong> (standard bucket) and <strong id="cce_10_0343__cce_bestpractice_0107_b441491915417">WARM</strong> (infrequent access bucket). Set this parameter according to the value of <strong id="cce_10_0343__cce_bestpractice_0107_b11614133019416">spec.flexVolume.options.storage_class</strong> of the FlexVolume PV. If the value of <strong id="cce_10_0343__cce_bestpractice_0107_b261913012414">spec.flexVolume.options.storage_class</strong> is <strong id="cce_10_0343__cce_bestpractice_0107_b1461913300413">standard</strong>, set this parameter to <strong id="cce_10_0343__cce_bestpractice_0107_b362010301446">STANDARD</strong>. If the value is <strong id="cce_10_0343__cce_bestpractice_0107_b962023017412">standard_ia</strong>, set this parameter to <strong id="cce_10_0343__cce_bestpractice_0107_b1162018301843">WARM</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row1929744911413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p7298164941418">everest.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1429844971411">Region where the OBS bucket is located. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b9813625987">spec.flexVolume.options.region</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row19764935181217"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p476416354129">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1476433581210">OBS bucket name. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b19199334192">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row197641935171213"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p576413351125">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b184161337594">csi-obs</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p204119497566">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b47395156165">a PV for an SFS Turbo volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen4411164920568">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  <strong id="cce_10_0343__cce_bestpractice_0107_b151901852174911">name: pv-efs-example</strong>
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+spec:
+  accessModes:
+  - ReadWriteMany
+  capacity:
+    <strong id="cce_10_0343__cce_bestpractice_0107_b872211561497">storage: 10Gi</strong>
+  csi:
+    driver: sfsturbo.csi.everest.io
+    fsType: nfs
+    volumeAttributes:
+      <strong id="cce_10_0343__cce_bestpractice_0107_b17915122125015">everest.io/share-export-location: 192.168.0.169:/</strong>
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    <strong id="cce_10_0343__cce_bestpractice_0107_b16810197175014">volumeHandle: 8962a2a2-a583-4b7f-bb74-fe76712d8414</strong>
+  persistentVolumeReclaimPolicy: Delete
+  storageClassName: csi-sfsturbo</pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p8391138132018"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p85884120207">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table7581741152015" frame="border" border="1" rules="all"><caption><b>Table 4 </b>SFS Turbo volume configuration parameters</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row2058124162013"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.22.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p13591241202019">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.22.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p1859204152010">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row185944110206"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p185919415209">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1259144113208">Name of the PV, which must be unique in the cluster.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row1459141112011"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p13592417202">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p2059174162015">File system size. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b7973528131212">spec.capacity.storage</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row8597411207"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p9591841152015">driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p16595418201">Storage driver used to attach the volume. Set it to <strong id="cce_10_0343__cce_bestpractice_0107_b028711355126">sfsturbo.csi.everest.io</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row1601741132014"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p10883193912218">everest.io/share-export-location</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p4882153911226">Shared path of the SFS Turbo volume. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b256734911217">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row176012417202"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p11881839112219">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p288013962213">SFS Turbo volume ID. Use the value of <strong id="cce_10_0343__cce_bestpractice_0107_b1819716572124">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row12603415203"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p11879153915225">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b92392161313">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0343__cce_bestpractice_0107_li1710710385418"><a name="cce_10_0343__cce_bestpractice_0107_li1710710385418"></a><a name="cce_bestpractice_0107_li1710710385418"></a><span>Configure a YAML file of the PVC in the CSI format according to the PVC in the FlexVolume format and associate the PVC with the PV created in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a>.</span><p><p id="cce_10_0343__cce_bestpractice_0107_p11528815195819">To be specific, run the following commands to configure the pvc-example.yaml file, which is used to create a PVC. </p>
+<p id="cce_10_0343__cce_bestpractice_0107_p652841585811"><strong id="cce_10_0343__cce_bestpractice_0107_b136125221717">touch pvc-example.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p185281515155810"><strong id="cce_10_0343__cce_bestpractice_0107_b6957522175">vi pvc-example.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p474941465817">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b125522619204">a PVC for an EVS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen874991414586">apiVersion: v1  
+kind: PersistentVolumeClaim
+metadata:
+  labels:
+    <strong id="cce_10_0343__cce_bestpractice_0107_b3970622105017">failure-domain.beta.kubernetes.io/region: <span id="cce_10_0343__cce_bestpractice_0107_text20432543122320">eu-de</span></strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b209722222507">    failure-domain.beta.kubernetes.io/zone: &lt;zone name&gt;</strong>
+  annotations:
+    <strong id="cce_10_0343__cce_bestpractice_0107_b37912037155015">everest.io/disk-volume-type: SAS</strong>
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+  <strong id="cce_10_0343__cce_bestpractice_0107_b161731742165015">name: pvc-evs-example</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b61761842205015">  namespace: default</strong>
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      <strong id="cce_10_0343__cce_bestpractice_0107_b1345115474504">storage: 10Gi</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b645811477500">  volumeName:  pv-evs-example</strong>
+  storageClassName: csi-disk</pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p9518267242"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p3812172815241">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table16812928132411" frame="border" border="1" rules="all"><caption><b>Table 5 </b>PVC configuration parameters for an EVS volume</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row4813122818245"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.8.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p16813112818246">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.8.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p198131028112415">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row081318282243"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p1732144516242">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1431974514243">Region where the cluster is located. Use the same value as that of the FlexVolume PVC.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row1581342816246"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p1631844572420">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p18317184513249">AZ where the EVS disk is deployed. Use the same value as that of the FlexVolume PVC.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row181462811245"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p133168454241">everest.io/disk-volume-type</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p0315114552411">Storage class of the EVS disk. The value can be <strong id="cce_10_0343__cce_bestpractice_0107_b139414107543">SAS</strong> or <strong id="cce_10_0343__cce_bestpractice_0107_b540051016549">SSD</strong>. Set this parameter to the same value as that of the PV created in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row681442812241"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p123141645112413">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p531364572411">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row14814112802420"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p12312104542415">namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p23111645172416">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row29461842142512"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p17946114232518">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p139473427251">Requested capacity of the PVC, which must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row49479423257"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p18947342152514">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p3947184232520">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row18815102892413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p8310164517245">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b595416107185">csi-disk</strong> for EVS disks.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p274981413584">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b89401733192715">a PVC for an SFS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen374911425816">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+  <strong id="cce_10_0343__cce_bestpractice_0107_b133131858205020">name: pvc-sfs-example</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b143149582501">  namespace: default</strong>
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      <strong id="cce_10_0343__cce_bestpractice_0107_b951138515">storage: 10Gi</strong>
+  storageClassName: csi-nas
+  <strong id="cce_10_0343__cce_bestpractice_0107_b31661107515">volumeName: pv-sfs-example</strong></pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p153871736162614"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p12224173311267">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table422493310266" frame="border" border="1" rules="all"><caption><b>Table 6 </b>PVC configuration parameters for an SFS volume</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row1922563392612"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.13.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p22251033152613">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.13.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p8225933132618">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row2225333122619"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p8945032152711">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p10943203272712">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row12258330265"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p199433322276">namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1794193282720">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row4226193317265"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p3941123222711">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1937163220275">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row122267331266"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p693723214276">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p12935432172717">Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b2098319548357">csi-nas</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row16226173312266"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p13935113202710">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1789783262714">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p10749101435811">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b1319323912287">a PVC for an OBS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen6750191415816">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+    <strong id="cce_10_0343__cce_bestpractice_0107_b148192314516">everest.io/obs-volume-type: STANDARD</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b115042311518">    csi.storage.k8s.io/fstype: s3fs</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b65119231516">  name: pvc-obs-example</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b155282318512">  namespace: default</strong>
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+  storageClassName: csi-obs
+  <strong id="cce_10_0343__cce_bestpractice_0107_b1338563395110">volumeName: pv-obs-example</strong></pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p383704032816"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p47721342102816">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table17773144214281" frame="border" border="1" rules="all"><caption><b>Table 7 </b>PVC configuration parameters for an OBS volume</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row177312429288"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.18.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p1577319428281">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.18.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p18773114202812">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row577312423281"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p193015559284">everest.io/obs-volume-type</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p992585519282">OBS volume type, which can be <strong id="cce_10_0343__cce_bestpractice_0107_b2444626143612">STANDARD</strong> (standard bucket) and <strong id="cce_10_0343__cce_bestpractice_0107_b844912623617">WARM</strong> (infrequent access bucket). Set this parameter to the same value as that of the PV created in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row19773144211282"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p5923855162815">csi.storage.k8s.io/fstype</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p39171555102815">File type, which can be <strong id="cce_10_0343__cce_bestpractice_0107_b13289932153612">obsfs</strong> or <strong id="cce_10_0343__cce_bestpractice_0107_b1290113233617">s3fs</strong>. The value must be the same as that of <strong id="cce_10_0343__cce_bestpractice_0107_b14178841123611">fsType</strong> of the static OBS volume PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row477319428280"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p1291685572817">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p109121355172817">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row1774942132812"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p1991165552819">namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p5906185532810">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row45426588296"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p18543135842910">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p5543125816296">Storage capacity, in the unit of Gi. Set this parameter to the fixed value <strong id="cce_10_0343__cce_bestpractice_0107_b539314634520">1Gi</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row19543858172911"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p185431558192914">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b55964491456">csi-obs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row1577494282811"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p169043554284">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p14898135517281">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p1675061455816">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b17354554153016">a PVC for an SFS Turbo volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen3750214135816">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+  <strong id="cce_10_0343__cce_bestpractice_0107_b244135135117">name: pvc-efs-example</strong>
+<strong id="cce_10_0343__cce_bestpractice_0107_b1745135175111">  namespace: default</strong>
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      <strong id="cce_10_0343__cce_bestpractice_0107_b19227115545111">storage: 10Gi</strong>
+  storageClassName: csi-sfsturbo
+  <strong id="cce_10_0343__cce_bestpractice_0107_b189426581511">volumeName: pv-efs-example</strong></pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p86568093119"></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p1171114213318">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0343__cce_bestpractice_0107_table671111213311" frame="border" border="1" rules="all"><caption><b>Table 8 </b>PVC configuration parameters for an SFS Turbo volume</caption><thead align="left"><tr id="cce_10_0343__cce_bestpractice_0107_row1471215263113"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.23.2.3.1.1"><p id="cce_10_0343__cce_bestpractice_0107_p67121726317">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.23.2.3.1.2"><p id="cce_10_0343__cce_bestpractice_0107_p1271218216314">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0343__cce_bestpractice_0107_row57121926319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p0943764313">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p199421860316">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row57124233111"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p494114615316">namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p49399611316">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row10712132133110"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p193419653113">storageClassName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b205679596525">csi-sfsturbo</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row97131621319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p11933106203116">storage</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p179324633110">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
+</td>
+</tr>
+<tr id="cce_10_0343__cce_bestpractice_0107_row17131626319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p39311762316">volumeName</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1393016623115">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0343__cce_bestpractice_0107_li487255772614"><a name="cce_10_0343__cce_bestpractice_0107_li487255772614"></a><a name="cce_bestpractice_0107_li487255772614"></a><span>Upgrade the workload to use a new PVC.</span><p><div class="p" id="cce_10_0343__cce_bestpractice_0107_p49135415327"><strong id="cce_10_0343__cce_bestpractice_0107_b4921045529">For Deployments</strong><ol type="a" id="cce_10_0343__cce_bestpractice_0107_ol13702185293210"><li id="cce_10_0343__cce_bestpractice_0107_li89201610376">Run the <strong id="cce_10_0343__cce_bestpractice_0107_b37767425521">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_10_0343__cce_bestpractice_0107_p14051775518"><strong id="cce_10_0343__cce_bestpractice_0107_b634944319535">kubectl create -f pv-example.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p3931117155519"><strong id="cce_10_0343__cce_bestpractice_0107_b12351174335316">kubectl create -f pvc-example.yaml</strong></p>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note29456108015"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p15945410903">Replace the example file name <strong id="cce_10_0343__cce_bestpractice_0107_b488083619534">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a> and <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
+</div></div>
+</li><li id="cce_10_0343__cce_bestpractice_0107_li9702175212324">Go to the CCE console. On the workload upgrade page, click <strong id="cce_10_0343__cce_bestpractice_0107_b112026811519">Upgrade</strong> &gt; <strong id="cce_10_0343__cce_bestpractice_0107_b1293016109517">Advanced Settings</strong> &gt; <strong id="cce_10_0343__cce_bestpractice_0107_b2033618182518">Data Storage</strong> &gt; <strong id="cce_10_0343__cce_bestpractice_0107_b3464204813510">Cloud Storage</strong>.<p id="cce_10_0343__cce_bestpractice_0107_p86798198185"></p>
+</li><li id="cce_10_0343__cce_bestpractice_0107_li1570218527326">Uninstall the old storage and add the PVC in the CSI format. Retain the original mounting path in the container.</li><li id="cce_10_0343__cce_bestpractice_0107_li770285210328">Click <strong id="cce_10_0343__cce_bestpractice_0107_b8264527157">Submit</strong>.</li><li id="cce_10_0343__cce_bestpractice_0107_li9702125211325">Wait until the pods are running.</li></ol>
+</div>
+<p id="cce_10_0343__cce_bestpractice_0107_p2046531913410"><strong id="cce_10_0343__cce_bestpractice_0107_b1218415319183">For StatefulSets that use existing storage</strong></p>
+<ol type="a" id="cce_10_0343__cce_bestpractice_0107_ol391017653810"><li id="cce_10_0343__cce_bestpractice_0107_li1991019610384">Run the <strong id="cce_10_0343__cce_bestpractice_0107_b5635143217182">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_10_0343__cce_bestpractice_0107_p719614467583"><strong id="cce_10_0343__cce_bestpractice_0107_b16814314529">kubectl create -f pv-example.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p2019634635813"><strong id="cce_10_0343__cce_bestpractice_0107_b368303175216">kubectl create -f pvc-example.yaml</strong></p>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note1366820421907"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p1766874218020">Replace the example file name <strong id="cce_10_0343__cce_bestpractice_0107_b2077273716181">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a> and <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
+</div></div>
+</li><li id="cce_10_0343__cce_bestpractice_0107_li467218817397">Run the <strong id="cce_10_0343__cce_bestpractice_0107_b591655819185">kubectl edit</strong> command to edit the StatefulSet and use the newly created PVC.<p id="cce_10_0343__cce_bestpractice_0107_p3883848805"><strong id="cce_10_0343__cce_bestpractice_0107_b8480926155211">kubectl edit sts sts-example -n</strong> xxx</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p1047514291298"><span><img id="cce_10_0343__cce_bestpractice_0107_image1089813263010" src="en-us_image_0000001097062729.png"></span></p>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note1646111820116"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p74619186120">Replace <strong id="cce_10_0343__cce_bestpractice_0107_b137451618206">sts-example</strong> in the preceding command with the actual name of the StatefulSet to upgrade. <strong id="cce_10_0343__cce_bestpractice_0107_b11603328217">xxx</strong> indicates the namespace to which the StatefulSet belongs.</p>
+</div></div>
+</li><li id="cce_10_0343__cce_bestpractice_0107_li182243184017">Wait until the pods are running.</li></ol>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note14106440104810"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p1010634011480">The current console does not support the operation of adding new cloud storage for StatefulSets. Use the kubectl commands to replace the storage with the newly created PVC.</p>
+</div></div>
+<p id="cce_10_0343__cce_bestpractice_0107_p6139112124010"><strong id="cce_10_0343__cce_bestpractice_0107_b169082072316">For StatefulSets that use dynamically allocated storage</strong></p>
+<ol type="a" id="cce_10_0343__cce_bestpractice_0107_ol8394103754010"><li id="cce_10_0343__cce_bestpractice_0107_li839453710408">Back up the PV and PVC in the flexVolume format used by the StatefulSet.<p id="cce_10_0343__cce_bestpractice_0107_p860733613433"><a name="cce_10_0343__cce_bestpractice_0107_li839453710408"></a><a name="cce_bestpractice_0107_li839453710408"></a><strong id="cce_10_0343__cce_bestpractice_0107_b15772239165214">kubectl get pvc xxx -n {namespaces} -oyaml &gt; pvc-backup.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p1946244224319"><strong id="cce_10_0343__cce_bestpractice_0107_b11773153914525">kubectl get pv xxx -n {namespaces} -oyaml &gt; pv-backup.yaml</strong></p>
+</li><li id="cce_10_0343__cce_bestpractice_0107_li3752132274116">Change the number of pods to <strong id="cce_10_0343__cce_bestpractice_0107_b842715611241">0</strong>.</li><li id="cce_10_0343__cce_bestpractice_0107_li8594347124116">On the storage page, disassociate the flexVolume PVC used by the StatefulSet.</li><li id="cce_10_0343__cce_bestpractice_0107_li1516912289428">Run the <strong id="cce_10_0343__cce_bestpractice_0107_b4130171813255">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_10_0343__cce_bestpractice_0107_p8843649624"><strong id="cce_10_0343__cce_bestpractice_0107_b6321104512522">kubectl create -f pv-example.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p108433491626"><strong id="cce_10_0343__cce_bestpractice_0107_b732314519529">kubectl create -f pvc-example.yaml</strong></p>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note1984317491325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p884394916216">Replace the example file name <strong id="cce_10_0343__cce_bestpractice_0107_b63634327258">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a> and <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
+</div></div>
+</li><li id="cce_10_0343__cce_bestpractice_0107_li416917424">Change the number of pods back to the original value and wait until the pods are running.</li></ol>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note16369154924218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p193690499421">The dynamic allocation of storage for StatefulSets is achieved by using <strong id="cce_10_0343__cce_bestpractice_0107_b718174012716">volumeClaimTemplates</strong>. This field cannot be modified by Kubernetes. Therefore, data cannot be migrated by using a new PVC.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p191911444124512">The PVC naming rule of the <strong id="cce_10_0343__cce_bestpractice_0107_b586438122911">volumeClaimTemplates</strong> is fixed. When a PVC that meets the naming rule exists, this PVC is used.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p226010117479">Therefore, disassociate the original PVC first, and then create a PVC with the same name in the CSI format.</p>
+</div></div>
+<p id="cce_10_0343__cce_bestpractice_0107_p101114953715">6. (Optional) Recreate the stateful application to ensure that a CSI PVC is used when the application is scaled out. Otherwise, FlexVolume PVCs are used in scaling out.</p>
+<ul id="cce_10_0343__cce_bestpractice_0107_ul6565455173114"><li id="cce_10_0343__cce_bestpractice_0107_li85652555315">Run the following command to obtain the YAML file of the StatefulSet:</li></ul>
+<p id="cce_10_0343__cce_bestpractice_0107_p8106135815424"><strong id="cce_10_0343__cce_bestpractice_0107_b142839015531">kubectl get sts xxx -n {namespaces} -oyaml &gt; sts.yaml</strong></p>
+<ul id="cce_10_0343__cce_bestpractice_0107_ul1702757163116"><li id="cce_10_0343__cce_bestpractice_0107_li1870215715312">Run the following command to back up the YAML file of the StatefulSet:</li></ul>
+<p id="cce_10_0343__cce_bestpractice_0107_p16392162024511"><strong id="cce_10_0343__cce_bestpractice_0107_b885919419538">cp sts.yaml sts-backup.yaml</strong></p>
+<ul id="cce_10_0343__cce_bestpractice_0107_ul147311659183119"><li id="cce_10_0343__cce_bestpractice_0107_li9731259123116">Modify the definition of <strong id="cce_10_0343__cce_bestpractice_0107_b181291215342">volumeClaimTemplates</strong> in the YAML file of the StatefulSet.</li></ul>
+<p id="cce_10_0343__cce_bestpractice_0107_p1503720144718"><strong id="cce_10_0343__cce_bestpractice_0107_b61168985318">vi sts.yaml</strong></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p1327113457466">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b187711213386">volumeClaimTemplates for an EVS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen8273843134614">  volumeClaimTemplates:
+    - metadata:
+        name: pvc-161070049798261342
+        namespace: default
+        creationTimestamp: null
+        annotations:
+          everest.io/disk-volume-type: SAS
+      spec:
+        accessModes:
+          - ReadWriteOnce
+        resources:
+          requests:
+            storage: 10Gi
+        storageClassName: csi-disk</pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p16173075017">The parameter value must be the same as the PVC of the EVS volume created in <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p496972015420">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b38819408388">volumeClaimTemplates for an SFS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen2111101275510">  volumeClaimTemplates:
+    - metadata:
+        name: pvc-161063441560279697
+        namespace: default
+        creationTimestamp: null
+      spec:
+        accessModes:
+          - ReadWriteMany
+        resources:
+          requests:
+            storage: 10Gi
+        storageClassName: csi-nas</pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p18964174325419">The parameter value must be the same as the PVC of the SFS volume created in <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p2028514411542">Configuration example of <strong id="cce_10_0343__cce_bestpractice_0107_b32081043916">volumeClaimTemplates for an OBS volume</strong>:</p>
+<pre class="screen" id="cce_10_0343__cce_bestpractice_0107_screen3803192217565">  volumeClaimTemplates:
+    - metadata:
+        name: pvc-161070100417416148
+        namespace: default
+        creationTimestamp: null
+        annotations:
+          csi.storage.k8s.io/fstype: s3fs
+          everest.io/obs-volume-type: STANDARD
+      spec:
+        accessModes:
+          - ReadWriteMany
+        resources:
+          requests:
+            storage: 1Gi
+        storageClassName: csi-obs</pre>
+<p id="cce_10_0343__cce_bestpractice_0107_p7452134435416">The parameter value must be the same as the PVC of the OBS volume created in <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
+<ul id="cce_10_0343__cce_bestpractice_0107_ul4451106123212"><li id="cce_10_0343__cce_bestpractice_0107_li1445110623213">Delete the StatefulSet.</li></ul>
+<p id="cce_10_0343__cce_bestpractice_0107_p9484135210583"><strong id="cce_10_0343__cce_bestpractice_0107_b10187161615531">kubectl delete sts xxx -n</strong> {namespaces}</p>
+<ul id="cce_10_0343__cce_bestpractice_0107_ul23331682326"><li id="cce_10_0343__cce_bestpractice_0107_li183333819328">Create the StatefulSet.</li></ul>
+<p id="cce_10_0343__cce_bestpractice_0107_p15201716115912"><strong id="cce_10_0343__cce_bestpractice_0107_b364112118534">kubectl create -f sts.yaml</strong></p>
+</p></li><li id="cce_10_0343__cce_bestpractice_0107_li613114241611"><span>Check service functions.</span><p><ol type="a" id="cce_10_0343__cce_bestpractice_0107_ol11922155141617"><li id="cce_10_0343__cce_bestpractice_0107_li39225559164">Check whether the application is running properly.</li><li id="cce_10_0343__cce_bestpractice_0107_li14372105921616">Checking whether the data storage is normal.</li></ol>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note175615519171"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p25611851151710">If a rollback is required, perform <a href="#cce_10_0343__cce_bestpractice_0107_li487255772614">4</a>. Select the PVC in FlexVolume format and upgrade the application.</p>
+</div></div>
+</p></li><li id="cce_10_0343__cce_bestpractice_0107_li11514201412713"><span>Uninstall the PVC in the FlexVolume format.</span><p><p id="cce_10_0343__cce_bestpractice_0107_p1096845811912">If the application functions normally, unbind the PVC in the FlexVolume format on the storage management page.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p106251635193615">You can also run the kubectl command to delete the PVC and PV of the FlexVolume format.</p>
+<div class="caution" id="cce_10_0343__cce_bestpractice_0107_note7619735143613"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0343__cce_bestpractice_0107_p14619163573619">Before deleting a PV, change the persistentVolumeReclaimPolicy of the PV to <strong id="cce_10_0343__cce_bestpractice_0107_b057412249379">Retain</strong>. Otherwise, the underlying storage will be reclaimed after the PV is deleted.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p597819349482">If the cluster has been upgraded before the storage migration, PVs may fail to be deleted. You can remove the PV protection field <strong id="cce_10_0343__cce_bestpractice_0107_b16941325115918">finalizers</strong> to delete PVs.</p>
+<p id="cce_10_0343__cce_bestpractice_0107_p69375506527">kubectl patch pv {pv_name} -p '{"metadata":{"finalizers":null}}'</p>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0345.html b/docs/cce/umn/cce_10_0345.html
new file mode 100644
index 00000000..ec10e4c0
--- /dev/null
+++ b/docs/cce/umn/cce_10_0345.html
@@ -0,0 +1,93 @@
+<a name="cce_10_0345"></a><a name="cce_10_0345"></a>
+
+<h1 class="topictitle1">GPU Scheduling</h1>
+<div id="body0000001191789743"><p id="cce_10_0345__p181291144135211">You can use GPUs in CCE containers.</p>
+<div class="section" id="cce_10_0345__section18703125715210"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0345__ul18236114216378"><li id="cce_10_0345__li1423619424378">A GPU node has been created. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</li><li id="cce_10_0345__li272171818395">The gpu-beta add-on has been installed. During the installation, select the GPU driver on the node. For details, see <a href="cce_10_0141.html">gpu-beta</a>.</li><li id="cce_10_0345__li185845612593">gpu-beta mounts the driver directory to <strong id="cce_10_0345__b1744723405912">/usr/local/nvidia/lib64</strong>. To use GPU resources in a container, you need to add <strong id="cce_10_0345__b1144853412594">/usr/local/nvidia/lib64</strong> to the <strong id="cce_10_0345__b7450123411597">LD_LIBRARY_PATH</strong> environment variable.<p id="cce_10_0345__p1958183214411">Generally, you can use any of the following methods to add a file:</p>
+<ol id="cce_10_0345__ol1782518311820"><li id="cce_10_0345__li148254313818">Configure the <strong id="cce_10_0345__b14596162125617">LD_LIBRARY_PATH</strong> environment variable in the Dockerfile used for creating an image. (Recommended)<pre class="screen" id="cce_10_0345__screen132364613716">ENV LD_LIBRARY_PATH /usr/local/nvidia/lib64:$LD_LIBRARY_PATH</pre>
+</li><li id="cce_10_0345__li197152017283">Configure the <strong id="cce_10_0345__b69721856185515">LD_LIBRARY_PATH</strong> environment variable in the image startup command.<pre class="screen" id="cce_10_0345__screen726715451476">/bin/bash -c "export LD_LIBRARY_PATH=/usr/local/nvidia/lib64:$LD_LIBRARY_PATH &amp;&amp; ..."</pre>
+</li><li id="cce_10_0345__li8216192610818">Define the <strong id="cce_10_0345__b125111826507">LD_LIBRARY_PATH</strong> environment variable when creating a workload. (Ensure that this variable is not configured in the container. Otherwise, it will be overwritten.)<pre class="screen" id="cce_10_0345__screen1459191517616">          env:
+            - name: LD_LIBRARY_PATH
+              value: /usr/local/nvidia/lib64</pre>
+</li></ol>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0345__section17426191045420"><h4 class="sectiontitle">Using GPUs</h4><p id="cce_10_0345__p170812362507">Create a workload and request GPUs. You can specify the number of GPUs as follows:</p>
+<pre class="screen" id="cce_10_0345__screen1916913579139">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: gpu-test
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: gpu-test
+  template:
+    metadata:
+      labels:
+        app: gpu-test
+    spec:
+      containers:
+      - image: nginx:perl
+        name: container-0
+        resources:
+          requests:
+            cpu: 250m
+            memory: 512Mi
+            nvidia.com/gpu: 1   # Number of requested GPUs
+          limits:
+            cpu: 250m
+            memory: 512Mi
+            nvidia.com/gpu: 1   # Maximum number of GPUs that can be used
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0345__p8060118"><strong id="cce_10_0345__b716118414529">nvidia.com/gpu</strong> specifies the number of GPUs to be requested. The value can be smaller than <strong id="cce_10_0345__b978512320539">1</strong>. For example, <strong id="cce_10_0345__b189631520532">nvidia.com/gpu: 0.5</strong> indicates that multiple pods share a GPU. In this case, all the requested GPU resources come from the same GPU card.</p>
+<p id="cce_10_0345__p07594391651">After <strong id="cce_10_0345__b1376335518534">nvidia.com/gpu</strong> is specified, workloads will not be scheduled to nodes without GPUs. If the node is GPU-starved, Kubernetes events similar to the following are reported:</p>
+<ul id="cce_10_0345__ul939111995913"><li id="cce_10_0345__li1839213935912">0/2 nodes are available: 2 Insufficient nvidia.com/gpu.</li><li id="cce_10_0345__li1392179165916">0/4 nodes are available: 1 InsufficientResourceOnSingleGPU, 3 Insufficient nvidia.com/gpu.</li></ul>
+<p id="cce_10_0345__p15516871416">To use GPUs on the CCE console, select the GPU quota and specify the percentage of GPUs reserved for the container when creating a workload.</p>
+<div class="fignone" id="cce_10_0345__fig348242715203"><span class="figcap"><b>Figure 1 </b>Using GPUs</span><br><span><img id="cce_10_0345__image291913517439" src="en-us_image_0000001397733101.png"></span></div>
+</div>
+<div class="section" id="cce_10_0345__section1869217223111"><h4 class="sectiontitle">GPU Node Labels</h4><p id="cce_10_0345__p17881183210116">CCE will label GPU-enabled nodes after they are created. Different types of GPU-enabled nodes have different labels.</p>
+<pre class="screen" id="cce_10_0345__screen942724902">$ kubectl get node -L accelerator
+NAME           STATUS   ROLES    AGE     VERSION                                    ACCELERATOR
+10.100.2.179   Ready    &lt;none&gt;   8m43s   v1.19.10-r0-CCE21.11.1.B006-21.11.1.B006   nvidia-t4</pre>
+<p id="cce_10_0345__p12507125615319">When using GPUs, you can enable the affinity between pods and nodes based on labels so that the pods can be scheduled to the correct nodes.</p>
+<pre class="screen" id="cce_10_0345__screen98034817516">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: gpu-test
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: gpu-test
+  template:
+    metadata:
+      labels:
+        app: gpu-test
+    spec:
+      nodeSelector:
+        accelerator: nvidia-t4
+      containers:
+      - image: nginx:perl
+        name: container-0
+        resources:
+          requests:
+            cpu: 250m
+            memory: 512Mi
+            nvidia.com/gpu: 1   # Number of requested GPUs
+          limits:
+            cpu: 250m
+            memory: 512Mi
+            nvidia.com/gpu: 1   # Maximum number of GPUs that can be used
+      imagePullSecrets:
+      - name: default-secret</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0348.html b/docs/cce/umn/cce_10_0348.html
new file mode 100644
index 00000000..798d9c12
--- /dev/null
+++ b/docs/cce/umn/cce_10_0348.html
@@ -0,0 +1,25 @@
+<a name="cce_10_0348"></a><a name="cce_10_0348"></a>
+
+<h1 class="topictitle1">Maximum Number of Pods That Can Be Created on a Node</h1>
+<div id="body0000001194883959"><p id="cce_10_0348__p4301132315368">The maximum number of pods that can be created on a node is determined by the following parameters:</p>
+<ul id="cce_10_0348__ul182866594369"><li id="cce_10_0348__li10119934104016">Number of container IP addresses that can be allocated on a node (alpha.cce/fixPoolMask): Set this parameter when creating a CCE cluster. This parameter is available only when <strong id="cce_10_0348__b2275134162911">Network Model</strong> is <span class="uicontrol" id="cce_10_0348__uicontrol9275153416295"><b>VPC network</b></span>.</li><li id="cce_10_0348__li125231619113110">Maximum number of pods of a node (maxPods): Set this parameter when creating a node. It is a configuration item of kubelet.</li><li id="cce_10_0348__li5286959123611"><a name="cce_10_0348__li5286959123611"></a><a name="li5286959123611"></a>Number of ENIs of a CCE Turbo cluster node: In a CCE Turbo cluster, ECS nodes use sub-ENIs and BMS nodes use ENIs. The maximum number of pods that can be created on a node depends on the number of ENIs that can be used by the node.</li></ul>
+<p id="cce_10_0348__p18604173662514">The maximum number of pods that can be created on a node depends on the minimum value of these parameters.</p>
+<ul id="cce_10_0348__ul1792348152514"><li id="cce_10_0348__li1179213481256">For a cluster using the container tunnel network model, the value depends only on <a href="#cce_10_0348__section16296174054019">the maximum number of pods on a node</a>.</li><li id="cce_10_0348__li67512318260">For a cluster using the VPC network model, the value depends on the minimum value between <a href="#cce_10_0348__section16296174054019">the maximum number of pods on a node</a> and <a href="#cce_10_0348__section10770192193714">the number of container IP addresses that can be allocated to a node</a>, that is, min(maximum number of pods on a node, number of container IP addresses that can be allocated to a node).</li><li id="cce_10_0348__li1484192016275">For a cluster (CCE Turbo cluster) using the Cloud Native Network 2.0 model, the value depends on <a href="#cce_10_0348__section16296174054019">the maximum number of pods on a node</a> and <a href="#cce_10_0348__li5286959123611">the number of NICs on a CCE Turbo cluster node</a>.</li></ul>
+<div class="section" id="cce_10_0348__section12428143711548"><h4 class="sectiontitle">Container Network vs. Host Network</h4><p id="cce_10_0348__p94989483544">When creating a pod, you can select the container network or host network for the pod.</p>
+<ul id="cce_10_0348__ul373982665917"><li id="cce_10_0348__li13739132619599">Container network (default): <strong id="cce_10_0348__b433319515920">Each pod is assigned an IP address by the cluster networking add-ons, which occupies the IP addresses of the container network</strong>.</li><li id="cce_10_0348__li13752132911597">Host network: The pod uses the host network (<strong id="cce_10_0348__b4625914564">hostNetwork: true</strong> needs to be configured for the pod) and occupies the host port. The pod IP address is the host IP address. The pod does not occupy the IP addresses of the container network. To use the host network, you must confirm whether the container ports conflict with the host ports. Do not use the host network unless you know exactly which host port is used by which container.</li></ul>
+</div>
+<div class="section" id="cce_10_0348__section10770192193714"><a name="cce_10_0348__section10770192193714"></a><a name="section10770192193714"></a><h4 class="sectiontitle">Number of Container IP Addresses That Can Be Allocated on a Node</h4><p id="cce_10_0348__p8060118">If you select <span class="uicontrol" id="cce_10_0348__uicontrol214931162912"><b>VPC network</b></span> for <strong id="cce_10_0348__b1878943932511">Network Model</strong> when creating a CCE cluster, you also need to set the number of container IP addresses that can be allocated to each node.</p>
+<p id="cce_10_0348__p36341919183012">This parameter affects the maximum number of pods that can be created on a node. Each pod occupies an IP address (when the container network is used). If the number of available IP addresses is insufficient, pods cannot be created.</p>
+<p id="cce_10_0348__p1931471918459"></p>
+<p id="cce_10_0348__p18181516161419">By default, a node occupies three container IP addresses (network address, gateway address, and broadcast address). Therefore, the number of container IP addresses that can be allocated to a node equals the number of selected container IP addresses minus 3. For example, in the preceding figure, <strong id="cce_10_0348__b880185251115">the number of container IP addresses that can be allocated to a node is 125 (128 – 3)</strong>.</p>
+</div>
+<div class="section" id="cce_10_0348__section16296174054019"><a name="cce_10_0348__section16296174054019"></a><a name="section16296174054019"></a><h4 class="sectiontitle">Maximum Number of Pods on a Node</h4><p id="cce_10_0348__p982012382456">When creating a node, you can configure the maximum number of pods that can be created on the node. This parameter is a configuration item of kubelet and determines the maximum number of pods that can be created by kubelet.</p>
+<p id="cce_10_0348__p4727980360"></p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0180.html">Node Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0349.html b/docs/cce/umn/cce_10_0349.html
new file mode 100644
index 00000000..52e1c092
--- /dev/null
+++ b/docs/cce/umn/cce_10_0349.html
@@ -0,0 +1,25 @@
+<a name="cce_10_0349"></a><a name="cce_10_0349"></a>
+
+<h1 class="topictitle1">Comparing iptables and IPVS</h1>
+<div id="body0000001148964174"><p id="cce_10_0349__p8060118">kube-proxy is a key component of a Kubernetes cluster. It is responsible for load balancing and forwarding between a Service and its backend pod.</p>
+<p id="cce_10_0349__p6616172092319">CCE supports two forwarding modes: iptables and IPVS.</p>
+<ul id="cce_10_0349__ul4533122413611"><li id="cce_10_0349__li10533102418367">IPVS allows higher throughput and faster forwarding. This mode applies to scenarios where the cluster scale is large or the number of Services is large.</li><li id="cce_10_0349__li2533624123616">iptables is the traditional kube-proxy mode. This mode applies to the scenario where the number of Services is small or a large number of short connections are concurrently sent on the client.</li></ul>
+<div class="section" id="cce_10_0349__section64409397216"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0349__p1055811500138">In a cluster using the IPVS proxy mode, if the ingress and Service use the same ELB load balancer, the ingress cannot be accessed from the nodes and containers in the cluster because kube-proxy mounts the LoadBalancer Service address to the ipvs-0 bridge. This bridge intercepts the traffic of the load balancer connected to the ingress. You are advised to use different ELB load balancers for the ingress and Service.</p>
+</div>
+<div class="section" id="cce_10_0349__section13695343122418"><h4 class="sectiontitle">iptables</h4><p id="cce_10_0349__p17253151516322">iptables is a Linux kernel function that provides a large amount of data packet processing and filtering capabilities. It allows flexible sequences of rules to be attached to various hooks in the packet processing pipeline. When iptables is used, kube-proxy implements NAT and load balancing in the NAT pre-routing hook.</p>
+<p id="cce_10_0349__p76263412510">kube-proxy is an O(n) algorithm, in which <em id="cce_10_0349__i1112813432472">n</em> increases with the cluster scale. The cluster scale refers to the number of Services and backend pods.</p>
+</div>
+<div class="section" id="cce_10_0349__section580312573262"><h4 class="sectiontitle">IPVS</h4><p id="cce_10_0349__p726748332">IP Virtual Server (IPVS) is constructed on top of Netfilter and implements transport-layer load balancing as part of the Linux kernel. IPVS can direct requests for TCP- and UDP-based services to the real servers, and make services of the real servers appear as virtual services on a single IP address.</p>
+<p id="cce_10_0349__p40126172718">In the IPVS mode, kube-proxy uses IPVS load balancing instead of iptables. IPVS is designed to balance loads for a large number of Services. It has a set of optimized APIs and uses optimized search algorithms instead of simply searching for rules from a list.</p>
+</div>
+<p id="cce_10_0349__p2609172717286">The complexity of the connection process of IPVS-based kube-proxy is O(1). In other words, in most cases, the connection processing efficiency is irrelevant to the cluster scale.</p>
+<p id="cce_10_0349__p7609102702815">IPVS involves multiple load balancing algorithms, such as round-robin, shortest expected delay, least connections, and various hashing methods. However, iptables has only one algorithm for random selection.</p>
+<p id="cce_10_0349__p177014434263">Compared with iptables, IPVS has the following advantages:</p>
+<ol id="cce_10_0349__ol1237413322353"><li id="cce_10_0349__li1374332203516">Provides better scalability and performance for large clusters.</li><li id="cce_10_0349__li20374183283517">Supports better load balancing algorithms than iptables.</li><li id="cce_10_0349__li193741432163511">Supports functions including server health check and connection retries.</li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0002.html">Cluster Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0351.html b/docs/cce/umn/cce_10_0351.html
new file mode 100644
index 00000000..185ae921
--- /dev/null
+++ b/docs/cce/umn/cce_10_0351.html
@@ -0,0 +1,51 @@
+<a name="cce_10_0351"></a><a name="cce_10_0351"></a>
+
+<h1 class="topictitle1">Binding CPU Cores</h1>
+<div id="body0000001148804376"><p id="cce_10_0351__p43401139173617">By default, kubelet uses <a href="https://www.kernel.org/doc/html/latest/scheduler/sched-design-CFS.html" target="_blank" rel="noopener noreferrer">CFS quotas</a> to enforce pod CPU limits. When the node runs many CPU-bound pods, the workload can move to different CPU cores depending on whether the pod is throttled and which CPU cores are available at scheduling time. Many workloads are not sensitive to this migration and thus work fine without any intervention. Some applications are CPU-sensitive. They are sensitive to:</p>
+<ul id="cce_10_0351__ul144721771494"><li id="cce_10_0351__li8472377496">CPU throttling</li><li id="cce_10_0351__li547213710498">Context switching</li><li id="cce_10_0351__li54722078499">Processor cache misses</li><li id="cce_10_0351__li20472127184918">Cross-socket memory access</li><li id="cce_10_0351__li647211754916">Hyperthreads that are expected to run on the same physical CPU card</li></ul>
+<p id="cce_10_0351__p84721273491">If your workloads are sensitive to any of these items and CPU cache affinity and scheduling latency significantly affect workload performance, kubelet allows alternative CPU management policies to determine some placement preferences on the node. The CPU manager preferentially allocates resources on a socket and full physical cores to avoid interference.</p>
+<div class="section" id="cce_10_0351__section1211174714517"><h4 class="sectiontitle">Binding CPU Cores to a Pod</h4><p id="cce_10_0351__p4433121318521">Prerequisites:</p>
+<ul id="cce_10_0351__ul19547351195214"><li id="cce_10_0351__li135471451175216">The static core binding policy is enabled on the node. For details, see <a href="#cce_10_0351__section173918176434">Enabling the CPU Management Policy</a>.</li><li id="cce_10_0351__li954705117523">Both <strong id="cce_10_0351__b8483152174710">requests</strong> and <strong id="cce_10_0351__b24451423124712">limits</strong> must be set in the pod definition and their values must be the same.</li><li id="cce_10_0351__li165471151185214">The value of <strong id="cce_10_0351__b1366342114814">requests</strong> must be an integer for the container.</li><li id="cce_10_0351__li33251114537">For an init container, it is recommended that you set its <strong id="cce_10_0351__b3453173712483">requests</strong> to the same as that of the service container. Otherwise, the service container does not inherit the CPU allocation result of the init container, and the CPU manager reserves more CPU resources than supposed. For more information, see <a href="https://github.com/kubernetes/kubernetes/issues/94220#issuecomment-868489201" target="_blank" rel="noopener noreferrer">App Containers can't inherit Init Containers CPUs - CPU Manager Static Policy</a>.</li></ul>
+<p id="cce_10_0351__p66846381129">You can use <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a> to schedule the configured pods to the nodes where the static CPU policy is enabled. In this way, cores can be bound.</p>
+</div>
+<div class="section" id="cce_10_0351__section173918176434"><a name="cce_10_0351__section173918176434"></a><a name="section173918176434"></a><h4 class="sectiontitle">Enabling the CPU Management Policy</h4><p id="cce_10_0351__p2030652012167">A <a href="https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/" target="_blank" rel="noopener noreferrer">CPU management policy</a> is specified by the kubelet flag <strong id="cce_10_0351__b184452047165113">--cpu-manager-policy</strong>. The following policies are supported:</p>
+<ul id="cce_10_0351__ul830614202161"><li id="cce_10_0351__li43061320161619">Disabled (<strong id="cce_10_0351__b645432675210">none</strong>): the default policy. The <strong id="cce_10_0351__b7454122605213">none</strong> policy explicitly enables the existing default CPU affinity scheme, providing no affinity beyond what the OS scheduler does automatically.</li><li id="cce_10_0351__li16306112010160">Enabled (<strong id="cce_10_0351__b724483319522">static</strong>): The <strong id="cce_10_0351__b1724411332524">static</strong> policy allows containers in <strong id="cce_10_0351__b3244113365214">Guaranteed</strong> pods with integer CPU requests to be granted increased CPU affinity and exclusivity on the node.</li></ul>
+<p id="cce_10_0351__p1340113963619">When creating a cluster, you can configure the CPU management policy in <strong id="cce_10_0351__b19314131913552">Advanced Settings</strong>, as shown in the following figure.</p>
+<p id="cce_10_0351__p124711122433"><span><img id="cce_10_0351__image1951371204318" src="en-us_image_0000001244261055.png"></span></p>
+<p id="cce_10_0351__p5974134104311">You can also configure the policy in a node pool. The configuration will change the kubelet flag <strong id="cce_10_0351__b209314149569">--cpu-manager-policy</strong> on the node. Log in to the CCE console, click the cluster name, access the cluster details page, and choose <strong id="cce_10_0351__b129714201506">Nodes</strong> in the navigation pane. On the page displayed, click the <strong id="cce_10_0351__b192976201701">Node Pools</strong> tab. Choose <strong id="cce_10_0351__b1029818201107">More</strong> &gt; <strong id="cce_10_0351__b8298520209">Manage</strong> in the <strong id="cce_10_0351__b1359213121634">Operation</strong> column of the target node pool, and change the value of <strong id="cce_10_0351__b02991720203">cpu-manager-policy</strong> to <strong id="cce_10_0351__b122991520305">static</strong>.</p>
+</div>
+<div class="section" id="cce_10_0351__section193243402534"><h4 class="sectiontitle">Pod Configuration</h4><p id="cce_10_0351__p20744312541">For CPU, both <strong id="cce_10_0351__b48614497594">requests</strong> and <strong id="cce_10_0351__b188611449185916">limits</strong> must be set to the same, and <strong id="cce_10_0351__b86921281802">requests</strong> must be an integer.</p>
+<pre class="screen" id="cce_10_0351__screen17844135117547">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: test
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: test
+  template:
+    metadata:
+      labels:
+        app: test
+    spec:
+      containers:
+        - name: container-1
+          image: nginx:alpine
+          resources:
+            requests:
+              cpu: 2           # The value must be an integer and must be the same as that in <strong id="cce_10_0351__b721193914117">limits</strong>.
+              memory: 2048Mi
+            limits:
+              cpu: 2           # The value must be an integer and must be the same as that in <strong id="cce_10_0351__b76644313112">requests</strong>.
+              memory: 2048Mi
+      imagePullSecrets:
+        - name: default-secret</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0551.html">CPU Core Binding</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0352.html b/docs/cce/umn/cce_10_0352.html
new file mode 100644
index 00000000..95cdd682
--- /dev/null
+++ b/docs/cce/umn/cce_10_0352.html
@@ -0,0 +1,86 @@
+<a name="cce_10_0352"></a><a name="cce_10_0352"></a>
+
+<h1 class="topictitle1">Managing Node Taints</h1>
+<div id="body0000001149077264"><p id="cce_10_0352__p8060118">Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.</p>
+<div class="section" id="cce_10_0352__section1660016436407"><h4 class="sectiontitle">Taints</h4><p id="cce_10_0352__p1521494954012">A taint is a key-value pair associated with an effect. The following effects are available:</p>
+<ul id="cce_10_0352__ul021424964018"><li id="cce_10_0352__li421494912402">NoSchedule: No pod will be able to schedule onto the node unless it has a matching toleration. Existing pods will not be evicted from the node.</li><li id="cce_10_0352__li92155499408">PreferNoSchedule: Kubernetes prevents pods that cannot tolerate this taint from being scheduled onto the node.</li><li id="cce_10_0352__li15215114914011">NoExecute: If the pod has been running on a node, the pod will be evicted from the node. If the pod has not been running on a node, the pod will not be scheduled onto the node.</li></ul>
+<p id="cce_10_0352__p565812645816">To add a taint to a node, run the <strong id="cce_10_0352__b164121637377">kubectl taint</strong> <strong id="cce_10_0352__b12107133144919">node </strong><em id="cce_10_0352__i15653203574919">nodename</em> command as follows:</p>
+<pre class="screen" id="cce_10_0352__screen1977910515016">$ kubectl get node
+NAME             STATUS   ROLES    AGE    VERSION
+192.168.10.170   Ready    &lt;none&gt;   73d    v1.19.8-r1-CCE21.4.1.B003
+192.168.10.240   Ready    &lt;none&gt;   4h8m   v1.19.8-r1-CCE21.6.1.2.B001
+$ kubectl taint node 192.168.10.240 key1=value1:NoSchedule
+node/192.168.10.240 tainted</pre>
+<p id="cce_10_0352__p15744175401">To view the taint configuration, run the <strong id="cce_10_0352__b1673424184510">describe</strong> and <strong id="cce_10_0352__b18923820124511">get</strong> commands as follows:</p>
+<pre class="screen" id="cce_10_0352__screen1676853310019">$ kubectl describe node 192.168.10.240
+Name:               192.168.10.240
+...
+Taints:             key1=value1:NoSchedule
+...
+$ kubectl get node 192.168.10.240 -oyaml
+apiVersion: v1
+...
+spec:
+  providerID: 06a5ea3a-0482-11ec-8e1a-0255ac101dc2
+  taints:
+  - effect: NoSchedule
+    key: key1
+    value: value1
+...</pre>
+<p id="cce_10_0352__p797914269376">To remove a taint, run the following command with a hyphen (-) added after <strong id="cce_10_0352__b16265155024615">NoSchedule</strong>:</p>
+<pre class="screen" id="cce_10_0352__screen19650205723714">$ kubectl taint node 192.168.10.240 key1=value1:NoSchedule-
+node/192.168.10.240 untainted
+$ kubectl describe node 192.168.10.240
+Name:               192.168.10.240
+...
+Taints:             &lt;none&gt;
+...</pre>
+<p id="cce_10_0352__p794010567518">On the CCE console, you can also manage taints of a node in batches.</p>
+<ol id="cce_10_0352__ol19031523513"><li id="cce_10_0352__li18903145217515"><span>Log in to the CCE console.</span></li><li id="cce_10_0352__li5903145216513"><span>Click the cluster name, access the cluster details page, and choose <strong id="cce_10_0352__b729311991315">Nodes</strong> in the navigation pane. On the page displayed, select a node and click <strong id="cce_10_0352__b82931919121319">Manage Labels and Taints</strong>.</span></li><li id="cce_10_0352__li199041952951"><span>In the displayed dialog box, click <span class="uicontrol" id="cce_10_0352__uicontrol132648549512"><b>Add batch operations</b></span> under <span class="uicontrol" id="cce_10_0352__uicontrol6264105417515"><b>Batch Operation</b></span>, choose <span class="uicontrol" id="cce_10_0352__uicontrol12641354350"><b>Add/Update</b></span>, and select <span class="uicontrol" id="cce_10_0352__uicontrol192643541752"><b>Taint</b></span>.</span><p><p id="cce_10_0352__p169041527515">Enter the key and value of the taint to be added, select the taint effect, and click <strong id="cce_10_0352__b1497115914478">OK</strong>.</p>
+</p></li><li id="cce_10_0352__li9904352251"><span>After the taint is added, check the added taint in node data.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0352__section15643100155"><h4 class="sectiontitle">Node Scheduling Settings</h4><p id="cce_10_0352__p531912418406">To configure scheduling settings, log in to the CCE console, click the cluster, choose <strong id="cce_10_0352__b087141892">Nodes</strong> in the navigation pane, and click <strong id="cce_10_0352__b12866201114915">More</strong> &gt; <strong id="cce_10_0352__b2161102012914">Disable Scheduling</strong> in the <strong id="cce_10_0352__b06816538914">Operation</strong> column of a node in the node list.</p>
+<p id="cce_10_0352__p16391144984516"></p>
+<p id="cce_10_0352__p16889510179">In the dialog box that is displayed, click <strong id="cce_10_0352__b14313181211117">OK</strong> to set the node to be unschedulable.</p>
+<p id="cce_10_0352__p1047324818514"></p>
+<p id="cce_10_0352__p109591059495">This operation will add a taint to the node. You can use kubectl to view the content of the taint.</p>
+<pre class="screen" id="cce_10_0352__screen6879108038">$ kubectl describe node 192.168.10.240
+...
+Taints:             node.kubernetes.io/unschedulable:NoSchedule
+...</pre>
+<p id="cce_10_0352__p2015122411">On the CCE console, perform the same operations again to remove the taint and set the node to be schedulable.</p>
+<p id="cce_10_0352__p312417183813"></p>
+</div>
+<div class="section" id="cce_10_0352__section2047442210417"><a name="cce_10_0352__section2047442210417"></a><a name="section2047442210417"></a><h4 class="sectiontitle">Tolerations</h4><p id="cce_10_0352__p426753884119">Tolerations are applied to pods, and allow (but do not require) the pods to schedule onto nodes with matching taints.</p>
+<p id="cce_10_0352__p484717171575">Taints and tolerations work together to ensure that pods are not scheduled onto inappropriate nodes. One or more taints are applied to a node. This marks that the node should not accept any pods that do not tolerate the taints.</p>
+<p id="cce_10_0352__p484761720574">Here's an example of a pod that uses tolerations:</p>
+<pre class="screen" id="cce_10_0352__screen029862812212">apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+  labels:
+    env: test
+spec:
+  containers:
+  - name: nginx
+    image: nginx
+    imagePullPolicy: IfNotPresent
+  tolerations:
+  - key: "key1"
+    operator: "Equal"
+    value: "value1"
+    effect: "NoSchedule"  </pre>
+<p id="cce_10_0352__p5728522612">In the preceding example, the toleration label of the pod is key1=value1 and the taint effect is NoSchedule. Therefore, the pod can be scheduled onto the corresponding node.</p>
+<p id="cce_10_0352__p924318395235">You can also configure tolerations similar to the following information, which indicates that the pod can be scheduled onto a node when the node has the taint key1:</p>
+<pre class="screen" id="cce_10_0352__screen28427492254">tolerations:
+- key: "key1"
+  operator: "Exists"
+  effect: "NoSchedule"</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0353.html b/docs/cce/umn/cce_10_0353.html
new file mode 100644
index 00000000..5b15aa34
--- /dev/null
+++ b/docs/cce/umn/cce_10_0353.html
@@ -0,0 +1,35 @@
+<a name="cce_10_0353"></a><a name="cce_10_0353"></a>
+
+<h1 class="topictitle1">Configuring an Image Pull Policy</h1>
+<div id="body0000001149163802"><p id="cce_10_0353__p14311173453919">When a workload is created, the container image is pulled from the image repository to the node. The image is also pulled when the workload is restarted or upgraded.</p>
+<p id="cce_10_0353__p181651894712">By default, <strong id="cce_10_0353__b1928772014311">imagePullPolicy</strong> is set to <strong id="cce_10_0353__b753532115318">IfNotPresent</strong>, indicating that if the image exists on the node, the existing image is used. If the image does not exist on the node, the image is pulled from the image repository.</p>
+<p id="cce_10_0353__p8060118">The image pull policy can also be set to <strong id="cce_10_0353__b19302143618319">Always</strong>, indicating that the image is pulled from the image repository and overwrites the image on the node regardless of whether the image exists on the node.</p>
+<pre class="screen" id="cce_10_0353__screen192551316536">apiVersion: v1
+kind: Pod 
+metadata:
+  name: nginx 
+spec: 
+  containers:
+  - image: nginx:alpine 
+    name: container-0 
+    resources:
+      limits:
+        cpu: 100m
+        memory: 200Mi
+      requests:
+        cpu: 100m
+        memory: 200Mi
+    imagePullPolicy: Always
+  imagePullSecrets:                 
+  - name: default-secret</pre>
+<p id="cce_10_0353__p11311941144712">You can also set the image pull policy when creating a workload on the CCE console. As shown in the following figure, if you select <strong id="cce_10_0353__b10334172011335">Always</strong>, the image is always pulled. If you do not select it, the policy will be <strong id="cce_10_0353__b10854433173512">IfNotPresent</strong>, which means that the image is not pulled.</p>
+<p id="cce_10_0353__p1460174044313"></p>
+<div class="notice" id="cce_10_0353__note161534124311"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0353__p341423994218">You are advised to use a new tag each time you create an image. If you do not update the tag but only update the image, when <strong id="cce_10_0353__b176398019440">Pull Policy</strong> is set to <strong id="cce_10_0353__b792531124413">IfNotPresent</strong>, CCE considers that an image with the tag already exists on the current node and will not pull the image again.</p>
+</div></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0354.html b/docs/cce/umn/cce_10_0354.html
new file mode 100644
index 00000000..7380d8ce
--- /dev/null
+++ b/docs/cce/umn/cce_10_0354.html
@@ -0,0 +1,43 @@
+<a name="cce_10_0354"></a><a name="cce_10_0354"></a>
+
+<h1 class="topictitle1">Configuring Time Zone Synchronization</h1>
+<div id="body0000001149173758"><p id="cce_10_0354__p8060118">When creating a workload, you can configure containers to use the same time zone as the node. You can enable time zone synchronization when creating a workload.</p>
+<p id="cce_10_0354__p1797517372084"></p>
+<p id="cce_10_0354__p36501501799">The time zone synchronization function depends on the local disk (hostPath) mounted to the container. After time zone synchronization is enabled, <strong id="cce_10_0354__b1913185420282">/etc/localtime</strong> of the node is mounted to <strong id="cce_10_0354__b7820145619286">/etc/localtime</strong> of the container in HostPath mode, in this way, the node and container use the same time zone configuration file.</p>
+<pre class="screen" id="cce_10_0354__screen299615714161">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: test
+  namespace: default
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: test
+  template:
+    metadata:
+      labels:
+        app: test
+    spec:
+      volumes:
+        - name: vol-162979628557461404
+          hostPath:
+            path: /etc/localtime
+            type: ''
+      containers:
+        - name: container-0
+          image: 'nginx:alpine'
+          volumeMounts:
+            - name: vol-162979628557461404
+              readOnly: true
+              mountPath: /etc/localtime
+          imagePullPolicy: IfNotPresent
+      imagePullSecrets:
+        - name: default-secret</pre>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0359.html b/docs/cce/umn/cce_10_0359.html
new file mode 100644
index 00000000..4ee73a81
--- /dev/null
+++ b/docs/cce/umn/cce_10_0359.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0359"></a><a name="cce_10_0359"></a>
+
+
+  <h1 class="topictitle1">DNS</h1>
+
+  <div id="body0000001199388333"><p id="cce_10_0359__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0360.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0365.html">DNS Configuration</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0361.html">Using CoreDNS for Custom Domain Name Resolution</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0360.html b/docs/cce/umn/cce_10_0360.html
new file mode 100644
index 00000000..918f84d1
--- /dev/null
+++ b/docs/cce/umn/cce_10_0360.html
@@ -0,0 +1,35 @@
+<a name="cce_10_0360"></a><a name="cce_10_0360"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body0000001199278805"><div class="section" id="cce_10_0360__section092613718475"><h4 class="sectiontitle">Introduction to CoreDNS</h4><p id="cce_10_0360__p18471718103517">When you create a cluster, the <a href="cce_10_0129.html">coredns add-on</a> is installed to resolve domain names in the cluster.</p>
+<p id="cce_10_0360__p8060118">You can view the pod of the coredns add-on in the kube-system namespace.</p>
+<pre class="screen" id="cce_10_0360__screen126731635426">$ kubectl get po --namespace=kube-system
+NAME                                      READY   STATUS    RESTARTS   AGE
+coredns-7689f8bdf-295rk                   1/1     Running   0          9m11s
+coredns-7689f8bdf-h7n68                   1/1     Running   0          11m</pre>
+<p id="cce_10_0360__p62475204919">After coredns is installed, it becomes a DNS. After the Service is created, coredns records the Service name and IP address. In this way, the pod can obtain the Service IP address by querying the Service name from coredns.</p>
+<p id="cce_10_0360__p168221121125"><strong id="cce_10_0360__b9180124234018">nginx.&lt;namespace&gt;.svc.cluster.local</strong> is used to access the Service. <strong id="cce_10_0360__b1918794219406">nginx</strong> is the Service name, <strong id="cce_10_0360__b31872424401">&lt;namespace&gt;</strong> is the namespace, and <strong id="cce_10_0360__b15188242184017">svc.cluster.local</strong> is the domain name suffix. In actual use, you can omit <strong id="cce_10_0360__b118864214013">&lt;namespace&gt;.svc.cluster.local</strong> in the same namespace and use the ServiceName.</p>
+<p id="cce_10_0360__p108063317138">An advantage of using ServiceName is that you can write ServiceName into the program when developing the application. In this way, you do not need to know the IP address of a specific Service.</p>
+<p id="cce_10_0360__p3921115318229">After the coredns add-on is installed, there is also a Service in the kube-system namespace, as shown below.</p>
+<pre class="screen" id="cce_10_0360__screen958792014223">$ kubectl get svc -n kube-system
+NAME               TYPE           CLUSTER-IP      EXTERNAL-IP                    PORT(S)                      AGE
+coredns            ClusterIP      10.247.3.10     &lt;none&gt;                         53/UDP,53/TCP,8080/TCP       13d</pre>
+<p id="cce_10_0360__p9432841182320">By default, after other pods are created, the address of the coredns Service is written as the address of the domain name resolution server in the <strong id="cce_10_0360__b55221838134110">/etc/resolv.conf</strong> file of the pod. Create a pod and view the <strong id="cce_10_0360__b1950104613418">/etc/resolv.conf</strong> file as follows:</p>
+<pre class="screen" id="cce_10_0360__screen14511162132516">$ kubectl exec test01-6cbbf97b78-krj6h -it -- /bin/sh
+/ # cat /etc/resolv.conf
+nameserver 10.247.3.10
+search default.svc.cluster.local svc.cluster.local cluster.local
+options ndots:5 timeout single-request-reopen</pre>
+<p id="cce_10_0360__p5191714112818">When a user accesses the <em id="cce_10_0360__i1747192920485">Service name:Port</em> of the Nginx pod, the IP address of the Nginx Service is resolved from CoreDNS, and then the IP address of the Nginx Service is accessed. In this way, the user can access the backend Nginx pod.</p>
+<div class="fignone" id="cce_10_0360__fig56221517187"><span class="figcap"><b>Figure 1 </b>Example of domain name resolution in a cluster</span><br><span><img id="cce_10_0360__image13391194511278" src="en-us_image_0000001244261167.png"></span></div>
+</div>
+<div class="section" id="cce_10_0360__section15985263473"><h4 class="sectiontitle">Related Operations</h4><p id="cce_10_0360__p558816715366">You can also configure DNS in a workload. For details, see <a href="cce_10_0365.html">DNS Configuration</a>.</p>
+<p id="cce_10_0360__p1283117309440">You can also use coredns to implement user-defined domain name resolution. For details, see <a href="cce_10_0361.html">Using CoreDNS for Custom Domain Name Resolution</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0359.html">DNS</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0361.html b/docs/cce/umn/cce_10_0361.html
new file mode 100644
index 00000000..de760df9
--- /dev/null
+++ b/docs/cce/umn/cce_10_0361.html
@@ -0,0 +1,185 @@
+<a name="cce_10_0361"></a><a name="cce_10_0361"></a>
+
+<h1 class="topictitle1">Using CoreDNS for Custom Domain Name Resolution</h1>
+<div id="body0000001199508229"><div class="section" id="cce_10_0361__section1374833194817"><h4 class="sectiontitle">Challenges</h4><p id="cce_10_0361__p1087853619481">When using CCE, you may need to resolve custom internal domain names in the following scenarios:</p>
+<ul id="cce_10_0361__ul138789368488"><li id="cce_10_0361__li523917912819">In the legacy code, a fixed domain name is configured for calling other internal services. If the system decides to use Kubernetes Services, the code refactoring workload could be heavy.</li><li id="cce_10_0361__li6878183615483">A service is created outside the cluster. Data in the cluster needs to be sent to the service through a fixed domain name.</li></ul>
+</div>
+<div class="section" id="cce_10_0361__section1911914574918"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0361__p187602135111">There are several CoreDNS-based solutions for custom domain name resolution:</p>
+<ul id="cce_10_0361__ul12459156185212"><li id="cce_10_0361__li12391049124211"><a href="#cce_10_0361__section5202157467">Configuring the Stub Domain for CoreDNS</a>: You can add it on the console, which is easy to operate.</li><li id="cce_10_0361__li1245986105216"><a href="#cce_10_0361__section106211954135311">Using the CoreDNS Hosts plug-in to configure resolution for any domain name</a>: You can add any record set, which is similar to adding a record set in the local <strong id="cce_10_0361__b3258171162018">/etc/hosts</strong> file.</li><li id="cce_10_0361__li9459362525"><a href="#cce_10_0361__section2213823544">Using the CoreDNS Rewrite plug-in to point a domain name to a service in the cluster</a>: A nickname is assigned to the Kubernetes Service. You do not need to know the IP address of the resolution record in advance.</li><li id="cce_10_0361__li154590616527"><a href="#cce_10_0361__section677819913541">Using the CoreDNS Forward plug-in to set the self-built DNS as the upstream DNS</a>: The self-built DNS can manage a large number of resolution records. You do not need to modify the CoreDNS configuration when adding or deleting records.</li></ul>
+</div>
+<div class="section" id="cce_10_0361__section1817217121625"><h4 class="sectiontitle">Precautions</h4><p id="cce_10_0361__p111618191125">Improper modification on CoreDNS configuration may cause domain name resolution failures in the cluster. Perform tests before and after the modification.</p>
+</div>
+<div class="section" id="cce_10_0361__section5202157467"><a name="cce_10_0361__section5202157467"></a><a name="section5202157467"></a><h4 class="sectiontitle">Configuring the Stub Domain for CoreDNS</h4><p id="cce_10_0361__p133703571615">Cluster administrators can modify the ConfigMap for the CoreDNS Corefile to change how service discovery works.</p>
+<p id="cce_10_0361__p158773611266">Assume that a cluster administrator has a Consul DNS server located at 10.150.0.1 and all Consul domain names have the suffix <strong id="cce_10_0361__b681346115619">.consul.local</strong>.</p>
+<ol id="cce_10_0361__ol1778824143115"><li id="cce_10_0361__li9788194173111"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0361__li299924911324"><span>In the navigation pane, choose <strong id="cce_10_0361__b13315751713">Add-ons</strong>. On the displayed page, click <strong id="cce_10_0361__b715116171012">Edit</strong> under CoreDNS.</span></li><li id="cce_10_0361__li11849287364"><span>Add a stub domain in the <span class="uicontrol" id="cce_10_0361__uicontrol137160301244"><b>Parameters</b></span> area.</span><p><div class="p" id="cce_10_0361__p38296222412">Modify the <strong id="cce_10_0361__b8893111101617">stub_domains</strong> parameter in the format of a key-value pair. The key is a DNS suffix domain name, and the value is a DNS IP address or a group of DNS IP addresses.<pre class="screen" id="cce_10_0361__screen1471417401301">{
+	"stub_domains": {
+                "consul.local": [
+			"10.150.0.1"
+		]
+	},
+	"upstream_nameservers": []
+}</pre>
+</div>
+</p></li><li id="cce_10_0361__li33368168390"><span>Click <strong id="cce_10_0361__b072990412">OK</strong>.</span></li></ol>
+<p id="cce_10_0361__p1037819711349">You can also modify the ConfigMap as follows:</p>
+<pre class="screen" id="cce_10_0361__screen4171155193418">$ kubectl edit configmap coredns -n kube-system
+apiVersion: v1
+data:
+  Corefile: |-
+    .:5353 {
+        bind {$POD_IP}
+        cache 30
+        errors
+        health {$POD_IP}:8080
+        kubernetes cluster.local in-addr.arpa ip6.arpa {
+            pods insecure
+            fallthrough in-addr.arpa ip6.arpa
+        }
+        loadbalance round_robin
+        prometheus {$POD_IP}:9153
+        forward . /etc/resolv.conf {
+            policy random
+        }
+        reload
+    }
+
+    consul.local:5353 {
+        bind {$POD_IP}
+        errors
+        cache 30
+        forward . 10.150.0.1
+    }
+kind: ConfigMap
+metadata:
+  creationTimestamp: "2022-05-04T04:42:24Z"
+  labels:
+    app: coredns
+    k8s-app: coredns
+    kubernetes.io/cluster-service: "true"
+    kubernetes.io/name: CoreDNS
+    release: cceaddon-coredns
+  name: coredns
+  namespace: kube-system
+  resourceVersion: "8663493"
+  uid: bba87142-9f8d-4056-b8a6-94c3887e9e1d</pre>
+</div>
+<div class="section" id="cce_10_0361__section106211954135311"><a name="cce_10_0361__section106211954135311"></a><a name="section106211954135311"></a><h4 class="sectiontitle">Modifying the CoreDNS Hosts Configuration File</h4><ol id="cce_10_0361__ol1126714113565"><li id="cce_10_0361__li1626744125619"><span>Use kubectl to connect to the cluster.</span></li><li id="cce_10_0361__li52791948135618"><span>Modify the CoreDNS configuration file and add the custom domain name to the hosts file.</span><p><p id="cce_10_0361__p55553911214">Point <strong id="cce_10_0361__b115142551585">www.example.com</strong> to <strong id="cce_10_0361__b59139572581">192.168.1.1</strong>. When CoreDNS resolves <strong id="cce_10_0361__b340661165914">www.example.com</strong>, <strong id="cce_10_0361__b13447239596">192.168.1.1</strong> is returned.</p>
+<div class="notice" id="cce_10_0361__note7531041444"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0361__p105374547">The fallthrough field must be configured. <strong id="cce_10_0361__b773217202591">fallthrough</strong> indicates that when the domain name to be resolved cannot be found in the hosts file, the resolution task is transferred to the next CoreDNS plug-in. If <strong id="cce_10_0361__b1994037992">fallthrough</strong> is not specified, the task ends and the domain name resolution stops. As a result, the domain name resolution in the cluster fails.</p>
+<p id="cce_10_0361__p1882014441676">For details about how to configure the hosts file, visit <a href="https://coredns.io/plugins/hosts/" target="_blank" rel="noopener noreferrer">https://coredns.io/plugins/hosts/</a>.</p>
+</div></div>
+<pre class="screen" id="cce_10_0361__screen18278592212">$ kubectl edit configmap coredns -n kube-system
+apiVersion: v1
+data:
+  Corefile: |-
+    .:5353 {
+        bind {$POD_IP}
+        cache 30
+        errors
+        health {$POD_IP}:8080
+        kubernetes cluster.local in-addr.arpa ip6.arpa {
+          pods insecure
+          fallthrough in-addr.arpa ip6.arpa
+        }
+        hosts {
+          192.168.1.1 www.example.com
+          fallthrough
+        }
+        loadbalance round_robin
+        prometheus {$POD_IP}:9153
+        forward . /etc/resolv.conf
+        reload
+    }
+kind: ConfigMap
+metadata:
+  creationTimestamp: "2021-08-23T13:27:28Z"
+  labels:
+    app: coredns
+    k8s-app: coredns
+    kubernetes.io/cluster-service: "true"
+    kubernetes.io/name: CoreDNS
+    release: cceaddon-coredns
+  name: coredns
+  namespace: kube-system
+  resourceVersion: "460"
+  selfLink: /api/v1/namespaces/kube-system/configmaps/coredns
+  uid: be64aaad-1629-441f-8a40-a3efc0db9fa9</pre>
+<p id="cce_10_0361__p1402175020518">After modifying the hosts file in CoreDNS, you do not need to configure the hosts file in each pod.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0361__section2213823544"><a name="cce_10_0361__section2213823544"></a><a name="section2213823544"></a><h4 class="sectiontitle">Adding the CoreDNS Rewrite Configuration to Point the Domain Name to Services in the Cluster</h4><p id="cce_10_0361__p1220743313188">Use the Rewrite plug-in of CoreDNS to resolve a specified domain name to the domain name of a Service.</p>
+<ol id="cce_10_0361__ol1628538210"><li id="cce_10_0361__li106319531214"><span>Use kubectl to connect to the cluster.</span></li><li id="cce_10_0361__li206365316219"><span>Modify the CoreDNS configuration file to point <strong id="cce_10_0361__b1871313843011">example.com</strong> to the <strong id="cce_10_0361__b1955810278306">example</strong> service in the <strong id="cce_10_0361__b6659122443016">default</strong> namespace.</span><p><pre class="screen" id="cce_10_0361__screen057384420134">$ kubectl edit configmap coredns -n kube-system
+apiVersion: v1
+data:
+  Corefile: |-
+    .:5353 {
+        bind {$POD_IP}
+        cache 30
+        errors
+        health {$POD_IP}:8080
+        kubernetes cluster.local in-addr.arpa ip6.arpa {
+          pods insecure
+          fallthrough in-addr.arpa ip6.arpa
+        }
+        rewrite name example.com example.default.svc.cluster.local
+        loadbalance round_robin
+        prometheus {$POD_IP}:9153
+        forward . /etc/resolv.conf
+        reload
+    }
+kind: ConfigMap
+metadata:
+  creationTimestamp: "2021-08-23T13:27:28Z"
+  labels:
+    app: coredns
+    k8s-app: coredns
+    kubernetes.io/cluster-service: "true"
+    kubernetes.io/name: CoreDNS
+    release: cceaddon-coredns
+  name: coredns
+  namespace: kube-system
+  resourceVersion: "460"
+  selfLink: /api/v1/namespaces/kube-system/configmaps/coredns
+  uid: be64aaad-1629-441f-8a40-a3efc0db9fa9</pre>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0361__section677819913541"><a name="cce_10_0361__section677819913541"></a><a name="section677819913541"></a><h4 class="sectiontitle">Using CoreDNS to Cascade Self-Built DNS</h4><ol id="cce_10_0361__ol035791313197"><li id="cce_10_0361__li19357213181918"><span>Use kubectl to connect to the cluster.</span></li><li id="cce_10_0361__li16945195192111"><span>Modify the CoreDNS configuration file and change <strong id="cce_10_0361__b626516019336">/etc/resolv.conf</strong> following <strong id="cce_10_0361__b58451257331">forward</strong> to the IP address of the external DNS server.</span><p><pre class="screen" id="cce_10_0361__screen5357151317197">$ kubectl edit configmap coredns -n kube-system
+apiVersion: v1
+data:
+  Corefile: |-
+    .:5353 {
+        bind {$POD_IP}
+        cache 30
+        errors
+        health {$POD_IP}:8080
+        kubernetes cluster.local in-addr.arpa ip6.arpa {
+          pods insecure
+          fallthrough in-addr.arpa ip6.arpa
+        }
+        loadbalance round_robin
+        prometheus {$POD_IP}:9153
+        forward . 192.168.1.1
+        reload
+    }
+kind: ConfigMap
+metadata:
+  creationTimestamp: "2021-08-23T13:27:28Z"
+  labels:
+    app: coredns
+    k8s-app: coredns
+    kubernetes.io/cluster-service: "true"
+    kubernetes.io/name: CoreDNS
+    release: cceaddon-coredns
+  name: coredns
+  namespace: kube-system
+  resourceVersion: "460"
+  selfLink: /api/v1/namespaces/kube-system/configmaps/coredns
+  uid: be64aaad-1629-441f-8a40-a3efc0db9fa9</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0359.html">DNS</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0363.html b/docs/cce/umn/cce_10_0363.html
new file mode 100644
index 00000000..44f8d147
--- /dev/null
+++ b/docs/cce/umn/cce_10_0363.html
@@ -0,0 +1,197 @@
+<a name="cce_10_0363"></a><a name="cce_10_0363"></a>
+
+<h1 class="topictitle1">Creating a Node</h1>
+<div id="body8662426"><div class="section" id="cce_10_0363__section103205496263"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0363__ul1074615557447"><li id="cce_10_0363__li474645512448">At least one cluster has been created.</li><li id="cce_10_0363__li1919515393327">A key pair has been created for identity authentication upon remote node login.</li></ul>
+</div>
+<div class="section" id="cce_10_0363__cce_01_0298_section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0363__cce_01_0298_ul129132199018"><li id="cce_10_0363__li103127381647">The node has 2-core or higher CPU, 4 GB or larger memory.</li><li id="cce_10_0363__li372583115367">To ensure node stability, a certain amount of CCE node resources will be reserved for Kubernetes components (such as kubelet, kube-proxy, and docker) based on the node specifications. Therefore, the total number of node resources and assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, more node resources need to be reserved to run Kubernetes components. For details, see <a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</li><li id="cce_10_0363__li375224163611">The node networking (such as the VM networking and container networking) is taken over by CCE. You are not allowed to add and delete NICs or change routes. If you modify the networking configuration, the availability of CCE may be affected. For example, the NIC named <strong id="cce_10_0363__b11775111413426">gw_11cbf51a@eth0</strong> on the node is the container network gateway and cannot be modified.</li><li id="cce_10_0363__cce_01_0298_li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0363__li1164034982716">Once a node is created, its AZ cannot be changed.</li></ul>
+</div>
+<div class="section" id="cce_10_0363__cce_01_0298_section13305183010495"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0363__p46648386490">After a cluster is created, you can create nodes for the cluster.</p>
+<ol id="cce_10_0363__ol778663545319"><li id="cce_10_0363__li1353715161746"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0363__b2071892118317">Clusters</strong>. Click the target cluster name to access its details page.</span></li><li id="cce_10_0363__li178653514531"><span>In the navigation pane on the left, choose <strong id="cce_10_0363__b571665718317">Nodes</strong>. On the page displayed, click <strong id="cce_10_0363__b77441273411">Create Node</strong>. In the <strong id="cce_10_0363__b172353310516">Node Settings</strong> step, set node parameters by referring to the following table.</span><p><p id="cce_10_0363__p1466807105817"><strong id="cce_10_0363__cce_01_0298_b369382154816">Compute Settings</strong></p>
+<div class="p" id="cce_10_0363__p1666817710586">You can configure the specifications and OS of a cloud server, on which your containerized applications run.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0363__table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0363__row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.3.2.2.2.1.2.3.1.1"><p id="cce_10_0363__p186688710581">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.3.2.2.2.1.2.3.1.2"><p id="cce_10_0363__p16681570588">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0363__row1666817718587"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p13216122213017">AZ</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p4383635121713">AZ where the node is located. Nodes in a cluster can be created in different AZs for higher reliability. The value cannot be changed after the node is created.</p>
+<p id="cce_10_0363__p13307144019185">You are advised to select <strong id="cce_10_0363__cce_01_0298_b280055945418">Random</strong> to deploy your node in a random AZ based on the selected node flavor.</p>
+<p id="cce_10_0363__p4786153575318">An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network. To enhance workload availability, create nodes in different AZs.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row1979195915497"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p18005944914">Node Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p17807592491">CCE clusters support Elastic Cloud Servers (ECSs).</p>
+<p id="cce_10_0363__p96493611512">CCE Turbo clusters support Elastic Cloud Servers (ECSs) and bare metal servers (BMSs).</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row1394816562"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p11464820561">Container Engine</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p192017281555">CCE clusters support Docker and containerd in some scenarios.</p>
+<ul id="cce_10_0363__ul93311957155518"><li id="cce_10_0363__li1770423185614">VPC network clusters of v1.23 and later versions support containerd. Container tunnel network clusters of v1.23.2-r0 and later versions support containerd.</li><li id="cce_10_0363__li1873025821011">For a CCE Turbo cluster, both <strong id="cce_10_0363__b1832101213569">Docker</strong> and <strong id="cce_10_0363__b432231216566">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>. </li></ul>
+</td>
+</tr>
+<tr id="cce_10_0363__row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p1669177185817">Specifications</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p156695715814">Select the node specifications based on service requirements. The available node specifications vary depending on AZs.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p176690785813">OS</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p872401816306">Select an OS type. Different types of nodes support different OSs.</p>
+<p id="cce_10_0363__p1058345314295"><strong id="cce_10_0363__cce_01_0298_b182401825201815">Public image</strong>: Select an OS for the node.</p>
+<p id="cce_10_0363__p89866115220"><strong id="cce_10_0363__b685216581971">Private image</strong>: You can use private images. </p>
+</td>
+</tr>
+<tr id="cce_10_0363__row209270458578"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p15928144516578">Node Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p18111188595">Name of the node. When nodes (ECSs) are created in batches, the value of this parameter is used as the name prefix for each ECS.</p>
+<p id="cce_10_0363__p863771115914">The system generates a default name for you, which can be modified.</p>
+<p id="cce_10_0363__p2017023218586">A node name must start with a lowercase letter and cannot end with a hyphen (-). Only digits, lowercase letters, and hyphens (-) are allowed.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p1917631063017">Login Mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><ul id="cce_10_0363__ul77401618191712"><li id="cce_10_0363__li1857913131710"><strong id="cce_10_0363__b9138131116117">Key Pair</strong><p id="cce_10_0363__p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0363__p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0363__cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0363__p136695718581"><strong id="cce_10_0363__b7857173019519">Storage Settings</strong></p>
+<div class="p" id="cce_10_0363__p866914735818">Configure storage resources on a node for the containers running on it. Set the disk size according to site requirements.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0363__table56691276581" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0363__row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.3.2.2.4.1.2.3.1.1"><p id="cce_10_0363__p9669576584">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.3.2.2.4.1.2.3.1.2"><p id="cce_10_0363__p366912711589">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0363__row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.1 "><p id="cce_10_0363__p666916719588">System Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.2 "><p id="cce_10_0363__p590942616323">System disk used by the node OS. The value ranges from 40 GB to 1,024 GB. The default value is 50 GB.</p>
+<div class="p" id="cce_10_0363__cce_01_0028_p196385417139"><strong id="cce_10_0363__b136271720418">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0363__b11294425727">This function is available only in certain regions.</strong><ul id="cce_10_0363__cce_01_0028_ul6195114261211"><li id="cce_10_0363__cce_01_0028_li5195194211127"><strong id="cce_10_0363__b3414281726">Encryption</strong> is not selected by default.</li><li id="cce_10_0363__cce_01_0028_li5195184201217">After you select <strong id="cce_10_0363__b1022719341521">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0363__b1222793417213">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
+</div>
+</td>
+</tr>
+<tr id="cce_10_0363__row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.1 "><p id="cce_10_0363__p0669147185817">Data Disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.2 "><p id="cce_10_0363__p246755017336">Data disk used by the container runtime and kubelet on the node.  </p>
+<p id="cce_10_0363__p17207615113820"><strong id="cce_10_0363__b189421213171912">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0363__b3766102113197">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<p id="cce_10_0363__p3752312011">Click <strong id="cce_10_0363__b869213393116">Expand</strong> to set the following parameters:</p>
+<ul id="cce_10_0363__ul197721145155911"><li id="cce_10_0363__li12110343014"><strong id="cce_10_0363__b15422114714113">Allocate Disk Space</strong>: Select this option to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</li><li id="cce_10_0363__li1095641711169"><strong id="cce_10_0363__b3246163917219">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0363__b185315414212">This function is available only in certain regions.</strong><ul id="cce_10_0363__ul1924511512168"><li id="cce_10_0363__li4245181561611"><strong id="cce_10_0363__b166022451425">Encryption</strong> is not selected by default.</li><li id="cce_10_0363__li17245415121616">After you select <strong id="cce_10_0363__b1910517483216">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0363__b181053482219">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
+</li></ul>
+<p id="cce_10_0363__p1391618153118"><strong id="cce_10_0363__b112491441101918">Adding Multiple Data Disks</strong></p>
+<p id="cce_10_0363__p45741654112612">A maximum of four data disks can be added. By default, raw disks are created without any processing. You can also click <strong id="cce_10_0363__b1353214375715">Expand</strong> and select any of the following options:</p>
+<ul id="cce_10_0363__ul198131191414"><li id="cce_10_0363__li1681481912112"><strong id="cce_10_0363__b650951155715">Default</strong>: By default, a raw disk is created without any processing.</li><li id="cce_10_0363__li108141119311"><strong id="cce_10_0363__b1791414137595">Mount Disk</strong>: The data disk is attached to a specified directory.</li></ul>
+<p id="cce_10_0363__p198093910435"><strong id="cce_10_0363__b61081115114914">Local Disk Description</strong></p>
+<p id="cce_10_0363__p1962741518436">If the node flavor is disk-intensive or ultra-high I/O, one data disk can be a local disk.</p>
+<p id="cce_10_0363__p99347577438">Local disks may break down and do not ensure data reliability. It is recommended that you store service data in EVS disks, which are more reliable than local disks.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0363__p26726745816"><strong id="cce_10_0363__b63761661929">Network Settings</strong></p>
+<div class="p" id="cce_10_0363__p267212714583">Configure networking resources to allow node and containerized application access.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0363__table267212716587" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0363__row126729712588"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.3.2.2.6.1.2.3.1.1"><p id="cce_10_0363__p667211795816">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.3.2.2.6.1.2.3.1.2"><p id="cce_10_0363__p867210795810">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0363__row1067237145814"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.6.1.2.3.1.1 "><p id="cce_10_0363__p1367219735815">Node Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.6.1.2.3.1.2 "><p id="cce_10_0363__p46731571584">The node subnet selected during cluster creation is used by default. You can choose another subnet instead.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row122511938205318"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.6.1.2.3.1.1 "><p id="cce_10_0363__p42521038165319">Node IP Address</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.6.1.2.3.1.2 "><p id="cce_10_0363__p192521838115318">IP address of the specified node. By default, the value is randomly allocated.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_10_0363__p151517566378"><strong id="cce_10_0363__cce_01_0298_b1479511744511">Advanced Settings</strong></p>
+<div class="p" id="cce_10_0363__p1715175643712">Configure advanced node capabilities such as labels, taints, and startup command.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0363__table101545619373" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0363__row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.3.3.2.2.8.1.2.3.1.1"><p id="cce_10_0363__p2152561377">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.3.3.2.2.8.1.2.3.1.2"><p id="cce_10_0363__p1515195616375">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0363__row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p1253915513402">Kubernetes Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p11258124419136">Click <strong id="cce_10_0363__cce_01_0298_b134533618313">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0363__p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p25391859406">Resource Tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p14909254174019">You can add resource tags to classify resources.</p>
+<p id="cce_10_0363__p10327184710426">You can create <strong id="cce_10_0363__b37781633820">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0363__p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0363__i19542542112415">node id</em>" tag.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p55391457404">Taint</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><div class="p" id="cce_10_0363__p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0363__ul17274222121015"><li id="cce_10_0363__li227482216106"><strong id="cce_10_0363__cce_01_0298_b19270155312584">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0363__li7274112241020"><strong id="cce_10_0363__cce_01_0298_b149231210105912">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0363__li2274182211010"><strong id="cce_10_0363__cce_01_0298_b1535002716590">Effect</strong>: Available options are <strong id="cce_10_0363__cce_01_0298_b6356142716595">NoSchedule</strong>, <strong id="cce_10_0363__cce_01_0298_b9356327175910">PreferNoSchedule</strong>, and <strong id="cce_10_0363__cce_01_0298_b935642719599">NoExecute</strong>.</li></ul>
+</div>
+<p id="cce_10_0363__p1817835834614">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
+<div class="note" id="cce_10_0363__note1344571543714"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0363__p544591520372">For a cluster of v1.19 or earlier, the workload may have been scheduled to a node before the taint is added. To avoid such a situation, select a cluster of v1.19 or later.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0363__row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p054015516406">Max. Pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
+<p id="cce_10_0363__p272611351429">This limit prevents the node from being overloaded with pods.</p>
+<p id="cce_10_0363__p1462134144713">This number is also decided by other factors. For details, see <a href="cce_10_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row124141558173910"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p154141258193916">ECS Group</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p53431536184014">An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.</p>
+<p id="cce_10_0363__p135011254181618"><strong id="cce_10_0363__cce_01_0298_b181742121446">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</p>
+<p id="cce_10_0363__p19871173217401">Select an existing ECS group, or click <strong id="cce_10_0363__cce_01_0298_b573830128">Add ECS Group</strong> to create one. After the ECS group is created, click the refresh button.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p534319566391">Pre-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0363__p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p18677104643916">Post-installation Command</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0363__p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
+</td>
+</tr>
+<tr id="cce_10_0363__row3366174093118"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p123672040183119">Agency</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p15869944123119">An agency is created by the account administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources.</p>
+<p id="cce_10_0363__p151464163220">If no agency is available, click <strong id="cce_10_0363__b13240143311254">Create Agency</strong> on the right to create one.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0363__li10191721165313"><span>Click <strong id="cce_10_0363__b175017184413">Next: Confirm</strong>. Confirm the configured parameters, specifications. </span></li><li id="cce_10_0363__li742974974510"><span>Click <strong id="cce_10_0363__cce_01_0298_b19330133916119">Submit</strong>.</span><p><p id="cce_10_0363__p1582601641210">The node list page is displayed. If the node status is <strong id="cce_10_0363__cce_01_0298_b343891612121">Running</strong>, the node is created successfully. It takes about 6 to 10 minutes to create a node.</p>
+</p></li><li id="cce_10_0363__li8393044161317"><span>Click <strong id="cce_10_0363__b1679124911319">Back to Node List</strong>. The node is created successfully if it changes to the <strong id="cce_10_0363__b158544910312">Running</strong> state.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0183.html">Nodes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0365.html b/docs/cce/umn/cce_10_0365.html
new file mode 100644
index 00000000..70278765
--- /dev/null
+++ b/docs/cce/umn/cce_10_0365.html
@@ -0,0 +1,237 @@
+<a name="cce_10_0365"></a><a name="cce_10_0365"></a>
+
+<h1 class="topictitle1">DNS Configuration</h1>
+<div id="body1544768341541"><p id="cce_10_0365__p1830782913414">Every Kubernetes cluster has a built-in DNS add-on (Kube-DNS or CoreDNS) to provide domain name resolution for workloads in the cluster. When handling a high concurrency of DNS queries, Kube-DNS/CoreDNS may encounter a performance bottleneck, that is, it may fail occasionally to fulfill DNS queries. There are cases when Kubernetes workloads initiate unnecessary DNS queries. This makes DNS overloaded if there are many concurrent DNS queries. Tuning DNS configuration for workloads will reduce the risks of DNS query failures to some extent.</p>
+<p id="cce_10_0365__p19500843145713">For more information about DNS, see <a href="cce_10_0129.html">coredns (System Resource Add-On, Mandatory)</a>.</p>
+<div class="section" id="cce_10_0365__section18633925113111"><h4 class="sectiontitle">DNS Configuration Items</h4><div class="p" id="cce_10_0365__p74081110154818">Run the <strong id="cce_10_0365__b109794181301">cat /etc/resolv.conf</strong> command on a Linux node or container to view the DNS resolver configuration file. The following is an example DNS resolver configuration of a container in a Kubernetes cluster:<pre class="screen" id="cce_10_0365__screen193321514199"><strong id="cce_10_0365__b147831147343">nameserver</strong> 10.247.x.x
+<strong id="cce_10_0365__b167771693416">search</strong> default.svc.cluster.local svc.cluster.local cluster.local
+<strong id="cce_10_0365__b1272410813343">options</strong> ndots:5</pre>
+</div>
+<div class="p" id="cce_10_0365__p1690213494495"><strong id="cce_10_0365__b1983513532390">Configuration Options</strong><ul id="cce_10_0365__ul1732605274913"><li id="cce_10_0365__li1532615218498"><strong id="cce_10_0365__b7509181194310">nameserver</strong>: an IP address list of a name server that the resolver will query. If this parameter is set to 10.247.x.x, the resolver will query the kube-dns/CoreDNS. If this parameter is set to another IP address, the resolver will query a cloud or on-premises DNS server.</li><li id="cce_10_0365__li2077610417502"><strong id="cce_10_0365__b6637135395713">search</strong>: a search list for host-name lookup. When a domain name cannot be resolved, DNS queries will be attempted combining the domain name with each domain in the search list in turn until a match is found or all domains in the search list are tried. For CCE clusters, the search list is currently limited to three domains per container. When a nonexistent domain name is being resolved, eight DNS queries will be initiated because each domain name (including those in the search list) will be queried twice, one for IPv4 and the other for IPv6.</li><li id="cce_10_0365__li1956561515294"><strong id="cce_10_0365__b9658724113310">options</strong>: options that allow certain internal resolver variables to be modified. Common options include timeout and ndots.<p id="cce_10_0365__p1544141662911">The value <strong id="cce_10_0365__b3568726153410">ndots:5</strong> means that if a domain name has fewer than 5 dots (.), DNS queries will be attempted by combining the domain name with each domain in the search list in turn. If no match is found after all the domains in the search list are tried, the domain name is then used for DNS query. If the domain name has 5 or more than 5 dots, it will be tried first for DNS query. In case that the domain name cannot be resolved, DNS queries will be attempted by combining the domain name with each domain in the search list in turn.</p>
+<p id="cce_10_0365__p6401512172912">For example, the domain name <strong id="cce_10_0365__b11826712959">www.***.com</strong> has only two dots (smaller than the value of <strong id="cce_10_0365__b1850644216611">ndots</strong>), and therefore the sequence of DNS queries is as follows: <strong id="cce_10_0365__b63519222053">www.***.default.svc.cluster.local</strong>, <strong id="cce_10_0365__b2154103019517">www.***.com.svc.cluster.local</strong>, <strong id="cce_10_0365__b76502341354">www.***.com.cluster.local</strong>, and <strong id="cce_10_0365__b9862103711510">www.***.com</strong>. This means that at least seven DNS queries will be initiated before the domain name is resolved into an IP address. It is clear that when many unnecessary DNS queries will be initiated to access an external domain name. There is room for improvement in workload's DNS configuration.</p>
+</li></ul>
+</div>
+<div class="note" id="cce_10_0365__note0509184610213"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0365__p17566125317216">For more information about configuration options in the resolver configuration file used by Linux operating systems, visit <a href="http://man7.org/linux/man-pages/man5/resolv.conf.5.html" target="_blank" rel="noopener noreferrer">http://man7.org/linux/man-pages/man5/resolv.conf.5.html</a>.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0365__section1742333103211"><h4 class="sectiontitle">Configuring DNS Using the Workload YAML</h4><div class="p" id="cce_10_0365__p14502185713468">When creating a workload using a YAML file, you can configure the DNS settings in the YAML. The following is an example for an Nginx application:<pre class="screen" id="cce_10_0365__screen181561814316">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+  namespace: default
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+        - name: container-1
+          image: nginx:latest
+          imagePullPolicy: IfNotPresent
+      imagePullSecrets:
+        - name: default-secret
+<strong id="cce_10_0365__b196121503011">      dnsPolicy</strong>: None
+<strong id="cce_10_0365__b634154674618">      dnsConfig:</strong>
+<strong id="cce_10_0365__b1135104615465">        options:</strong>
+          - name: ndots
+            value: '5'
+          - name: timeout
+            value: '3'
+<strong id="cce_10_0365__b243154614620">        nameservers:</strong>
+          - 10.2.3.4
+<strong id="cce_10_0365__b17460465469">        searches:</strong>
+          - my.dns.search.suffix</pre>
+</div>
+<p id="cce_10_0365__p083152112219"><strong id="cce_10_0365__b2051113143920">dnsPolicy</strong></p>
+<div class="p" id="cce_10_0365__p1583112211228">The <strong id="cce_10_0365__b37381742155513">dnsPolicy</strong> field is used to configure a DNS policy for an application. The default value is <strong id="cce_10_0365__b54606252561">ClusterFirst</strong>. The DNS parameters in <strong id="cce_10_0365__b766543917580">dnsConfig</strong> will be merged to the DNS file generated according to <strong id="cce_10_0365__b14387210135819">dnsPolicy</strong>. The merge rules are later explained in <a href="#cce_10_0365__table16581121652515">Table 2</a>. Currently, <strong id="cce_10_0365__b88143142120">dnsPolicy</strong> supports the following four values:
+<div class="tablenoborder"><a name="cce_10_0365__table144443315261"></a><a name="table144443315261"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0365__table144443315261" frame="border" border="1" rules="all"><caption><b>Table 1 </b>dnsPolicy</caption><thead align="left"><tr id="cce_10_0365__row1441933172613"><th align="left" class="cellrowborder" valign="top" width="20.62%" id="mcps1.3.4.4.7.2.3.1.1"><p id="cce_10_0365__p174414338268">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.38%" id="mcps1.3.4.4.7.2.3.1.2"><p id="cce_10_0365__p24433342614">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0365__row154463320269"><td class="cellrowborder" valign="top" width="20.62%" headers="mcps1.3.4.4.7.2.3.1.1 "><p id="cce_10_0365__p34473317261">ClusterFirst (default value)</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.38%" headers="mcps1.3.4.4.7.2.3.1.2 "><p id="cce_10_0365__p114463315266">CCE cluster's CoreDNS, which is cascaded with the cloud DNS by default, is used for workloads. Containers can resolve both the cluster-internal domain names registered by a Service and the external domain names exposed to public networks. The search list (<strong id="cce_10_0365__b4303335194111">search</strong> option) and <strong id="cce_10_0365__b14304835184119">ndots: 5</strong> are present in the DNS configuration file. Therefore, when accessing an external domain name and a long cluster-internal domain name (for example, kubernetes.default.svc.cluster.local), the search list will usually be traversed first, resulting in at least six invalid DNS queries. The issue of invalid DNS queries disappears only when a short cluster-internal domain name (for example, kubernetes) is being accessed.</p>
+</td>
+</tr>
+<tr id="cce_10_0365__row344133312617"><td class="cellrowborder" valign="top" width="20.62%" headers="mcps1.3.4.4.7.2.3.1.1 "><p id="cce_10_0365__p1449331268">ClusterFirstWithHostNet</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.38%" headers="mcps1.3.4.4.7.2.3.1.2 "><div class="p" id="cce_10_0365__p3129123815244">By default, the DNS configuration file that the <strong id="cce_10_0365__b5454612165615">--resolv-conf</strong> flag points to is configured for workloads running with <strong id="cce_10_0365__b77292531571">hostNetwork=true</strong>, that is, a cloud DNS is used for CCE clusters. If workloads need to use Kube-DNS/CoreDNS of the cluster, set <strong id="cce_10_0365__b185925215585">dnsPolicy</strong> to <strong id="cce_10_0365__b1617622585816">ClusterFirstWithHostNet</strong> and container's DNS configuration file is the same as ClusterFirst, in which invalid DNS queries still exist.<pre class="screen" id="cce_10_0365__screen2519123019148">...
+spec:
+  containers:
+  - image: nginx:latest
+    imagePullPolicy: IfNotPresent
+    name: container-1
+  restartPolicy: Always
+  <strong id="cce_10_0365__b19219548111615">hostNetwork: true</strong>
+  dnsPolicy: <strong id="cce_10_0365__b718235115162">ClusterFirstWithHostNet</strong></pre>
+</div>
+</td>
+</tr>
+<tr id="cce_10_0365__row1444113332613"><td class="cellrowborder" valign="top" width="20.62%" headers="mcps1.3.4.4.7.2.3.1.1 "><p id="cce_10_0365__p13441033202612">Default</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.38%" headers="mcps1.3.4.4.7.2.3.1.2 "><p id="cce_10_0365__p13441336269">Container's DNS configuration file is the DNS configuration file that the kubelet's <strong id="cce_10_0365__b11654142913018">--resolv-conf</strong> flag points to. In this case, a cloud DNS is used for CCE clusters. Both <strong id="cce_10_0365__b1665418291704">search</strong> and <strong id="cce_10_0365__b06542029907">options</strong> fields are left unspecified. This configuration can only resolve the external domain names registered with the Internet, and not cluster-internal domain names. This configuration is free from the issue of invalid DNS queries.</p>
+</td>
+</tr>
+<tr id="cce_10_0365__row1646271816277"><td class="cellrowborder" valign="top" width="20.62%" headers="mcps1.3.4.4.7.2.3.1.1 "><p id="cce_10_0365__p54621118122710">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.38%" headers="mcps1.3.4.4.7.2.3.1.2 "><p id="cce_10_0365__p446221852718">If <strong id="cce_10_0365__b22701511114">dnsPolicy</strong> is set to <strong id="cce_10_0365__b18279154111">None</strong>, the <strong id="cce_10_0365__b7281915111">dnsConfig</strong> field must be specified because all DNS settings are supposed to be provided using the <strong id="cce_10_0365__b1928131514112">dnsConfig</strong> field.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0365__note158146479115"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0365__p4815147181119">If the <strong id="cce_10_0365__b91835232115">dnsPolicy</strong> field is not specified, the default value is <strong id="cce_10_0365__b104542380114">ClusterFirst</strong> instead of <strong id="cce_10_0365__b146291741712">Default</strong>.</p>
+</div></div>
+</div>
+<p id="cce_10_0365__p1483132192216"><strong id="cce_10_0365__b104641038125119">dnsConfig</strong></p>
+<div class="p" id="cce_10_0365__p1783113216225">The <strong id="cce_10_0365__b1082922723211">dnsConfig</strong> field is used to configure DNS parameters for workloads. The configured parameters are merged to the DNS configuration file generated according to <strong id="cce_10_0365__b9709105417331">dnsPolicy</strong>. If <strong id="cce_10_0365__b9919772346">dnsPolicy</strong> is set to <strong id="cce_10_0365__b588817107341">None</strong>, the workload's DNS configuration file is specified by the <strong id="cce_10_0365__b14330134359">dnsConfig</strong> field. If <strong id="cce_10_0365__b228624443511">dnsPolicy</strong> is not set to <strong id="cce_10_0365__b13630850163515">None</strong>, the DNS parameters configured in <strong id="cce_10_0365__b192618715366">dnsConfig</strong> are added to the DNS configuration file generated according to <strong id="cce_10_0365__b12940104573611">dnsPolicy</strong>.
+<div class="tablenoborder"><a name="cce_10_0365__table16581121652515"></a><a name="table16581121652515"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0365__table16581121652515" frame="border" border="1" rules="all"><caption><b>Table 2 </b>dnsConfig</caption><thead align="left"><tr id="cce_10_0365__row15582141612255"><th align="left" class="cellrowborder" valign="top" width="18.970000000000002%" id="mcps1.3.4.6.10.2.3.1.1"><p id="cce_10_0365__p17582111619250">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="81.03%" id="mcps1.3.4.6.10.2.3.1.2"><p id="cce_10_0365__p1758251613256">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0365__row749091534419"><td class="cellrowborder" valign="top" width="18.970000000000002%" headers="mcps1.3.4.6.10.2.3.1.1 "><p id="cce_10_0365__p058231612255">options</p>
+</td>
+<td class="cellrowborder" valign="top" width="81.03%" headers="mcps1.3.4.6.10.2.3.1.2 "><p id="cce_10_0365__p1958291612516">An optional list of objects where each object may have a name property (required) and a value property (optional). The contents in this property will be merged to the options generated from the specified DNS policy in <strong id="cce_10_0365__b1616011719310">dnsPolicy</strong>. Duplicate entries are removed.</p>
+</td>
+</tr>
+<tr id="cce_10_0365__row1358215168255"><td class="cellrowborder" valign="top" width="18.970000000000002%" headers="mcps1.3.4.6.10.2.3.1.1 "><p id="cce_10_0365__p45821616172514">nameservers</p>
+</td>
+<td class="cellrowborder" valign="top" width="81.03%" headers="mcps1.3.4.6.10.2.3.1.2 "><p id="cce_10_0365__p10213757202413">A list of IP addresses that will be used as DNS servers. If workload's <strong id="cce_10_0365__b121441824436">dnsPolicy</strong> is set to <strong id="cce_10_0365__b14144724832">None</strong>, the list must contain at least one IP address, otherwise this property is optional. The servers listed will be combined to the nameservers generated from the specified DNS policy in <strong id="cce_10_0365__b667132213312">dnsPolicy</strong> with duplicate addresses removed.</p>
+</td>
+</tr>
+<tr id="cce_10_0365__row0582181632518"><td class="cellrowborder" valign="top" width="18.970000000000002%" headers="mcps1.3.4.6.10.2.3.1.1 "><p id="cce_10_0365__p9582101612511">searches</p>
+</td>
+<td class="cellrowborder" valign="top" width="81.03%" headers="mcps1.3.4.6.10.2.3.1.2 "><p id="cce_10_0365__p5582111692512">A list of DNS search domains for hostname lookup in the Pod. This property is optional. When specified, the provided list will be merged into the search domain names generated from the chosen DNS policy in <strong id="cce_10_0365__b1831513491736">dnsPolicy</strong>. Duplicate domain names are removed. Kubernetes allows for at most 6 search domains.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div class="section" id="cce_10_0365__section782913619427"><h4 class="sectiontitle">Configuring DNS for a Workload Using the Console</h4><p id="cce_10_0365__p195449555558">Kubernetes provides DNS-related configuration options for applications. The use of application's DNS configuration can effectively reduce unnecessary DNS queries in certain scenarios and improve service concurrency. The following procedure uses an Nginx application as an example to describe how to add DNS configurations for a workload on the console.</p>
+<ol id="cce_10_0365__ol1035961215558"><li id="cce_10_0365__li6526123335515"><span>Log in to the CCE console, access the cluster console, select <span class="uicontrol" id="cce_10_0365__uicontrol1687204583717"><b>Workloads</b></span> in the navigation pane, and click <span class="uicontrol" id="cce_10_0365__uicontrol7240191410535"><b>Create Workload</b></span> in the upper right corner.</span></li><li id="cce_10_0365__li57661910269"><span>Configure basic information about the workload. For details, see <a href="cce_10_0047.html">Creating a Deployment</a>.</span></li><li id="cce_10_0365__li1329014101777"><span>In the <strong id="cce_10_0365__b149501154111211">Advanced Settings</strong> area, click the <strong id="cce_10_0365__b17979182141314">DNS</strong> tab and set the following parameters as required:</span><p><ul id="cce_10_0365__ul949817369810"><li id="cce_10_0365__li1049833612819"><strong id="cce_10_0365__b164331516121314">DNS Policy</strong>: The DNS policies provided on the console correspond to the <strong id="cce_10_0365__b73261428191319">dnsPolicy</strong> field in the YAML file. For details, see <a href="#cce_10_0365__table144443315261">Table 1</a>.<ul id="cce_10_0365__ul129381410992"><li id="cce_10_0365__li189271105388"><strong id="cce_10_0365__b1527615216162">Supplement defaults</strong>: corresponds to <strong id="cce_10_0365__b64322023132213">dnsPolicy=ClusterFirst</strong>. Containers can resolve both the cluster-internal domain names registered by a Service and the external domain names exposed to public networks.</li><li id="cce_10_0365__li101722515381"><strong id="cce_10_0365__b178931112013">Replace defaults</strong>: corresponds to <strong id="cce_10_0365__b36921212220">dnsPolicy=None</strong>. You must configure <strong id="cce_10_0365__b15651025142318">IP Address</strong> and <strong id="cce_10_0365__b2722122932314">Search Domain</strong>. Containers only use the user-defined IP address and search domain configurations for domain name resolution.</li><li id="cce_10_0365__li5619793817"><strong id="cce_10_0365__b1290814495267">Inherit defaults</strong>: corresponds to <strong id="cce_10_0365__b10911022279">dnsPolicy=Default</strong>. Containers use the domain name resolution configuration from the node that pods run on and cannot resolve the cluster-internal domain names.</li></ul>
+</li><li id="cce_10_0365__li153416472231"><strong id="cce_10_0365__b58158239284">Optional Objects</strong>: The options parameters in the <a href="#cce_10_0365__table16581121652515">dnsConfig field</a>. Each object may have a name property (required) and a value property (optional). After setting the properties, click <span class="uicontrol" id="cce_10_0365__uicontrol45351947172316"><b>confirm to add</b></span>.<ul id="cce_10_0365__ul6501141918503"><li id="cce_10_0365__li59411218105019"><strong id="cce_10_0365__b87611354460">timeout</strong>: Timeout interval, in seconds.</li><li id="cce_10_0365__li14291172365019"><strong id="cce_10_0365__b182981152184815">ndots</strong>: Number of dots (.) that must be present in a domain name. If a domain name has dots fewer than this value, the operating system will look up the name in the search domain. If not, the name is a fully qualified domain name (FQDN) and will be tried first as an absolute name.</li></ul>
+</li><li id="cce_10_0365__li9328144411429"><strong id="cce_10_0365__b15276450174916">IP Address</strong>: <strong id="cce_10_0365__b10223114765218">nameservers</strong> in the <a href="#cce_10_0365__table16581121652515">dnsConfig field</a>. You can configure the domain name server for the custom domain name. The value is one or a group of DNS IP addresses.</li><li id="cce_10_0365__li13630845287"><strong id="cce_10_0365__b6942724135413">Search Domain</strong>: <strong id="cce_10_0365__b1423115314544">searches</strong> in the <a href="#cce_10_0365__table16581121652515">dnsConfig field</a>. A list of DNS search domains for hostname lookup in the pod. This property is optional. When specified, the provided list will be merged into the search domain names generated from the chosen DNS policy in <strong id="cce_10_0365__b51461323554">dnsPolicy</strong>. Duplicate domain names are removed.</li></ul>
+<p id="cce_10_0365__p1713442913813"></p>
+</p></li><li id="cce_10_0365__li03217211358"><span>Click <span class="uicontrol" id="cce_10_0365__uicontrol144255386555"><b>Create Workload</b></span>.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0365__section12309936102318"><h4 class="sectiontitle">Configuration Examples</h4><p id="cce_10_0365__p130963652310">The following example describes how to configure DNS for workloads.</p>
+<ul id="cce_10_0365__ul3543341770"><li id="cce_10_0365__li554313419719"><strong id="cce_10_0365__b1479321813498">Use Case 1: Using Kube-DNS/CoreDNS Built in Kubernetes Clusters</strong><p id="cce_10_0365__p1931093672318"><strong id="cce_10_0365__b25020359501">Scenario</strong></p>
+<p id="cce_10_0365__p1631013616239">Kubernetes in-cluster Kube-DNS/CoreDNS is applicable to resolving only cluster-internal domain names or cluster-internal domain names + external domain names. This is the default DNS for workloads.</p>
+<p id="cce_10_0365__p7310143662318"><strong id="cce_10_0365__b99850174302">Example:</strong></p>
+<pre class="screen" id="cce_10_0365__screen11310136152319">apiVersion: v1
+kind: Pod
+metadata:
+  namespace: default
+  name: dns-example
+spec:
+  containers:
+  - name: test
+    image: nginx:alpine
+  <strong id="cce_10_0365__b1331014366231">dnsPolicy: ClusterFirst</strong></pre>
+<p id="cce_10_0365__p6310153610238">Container's DNS configuration file:</p>
+<pre class="screen" id="cce_10_0365__screen1631063619234">nameserver 10.247.3.10
+search default.svc.cluster.local svc.cluster.local cluster.local
+options ndots:5</pre>
+</li><li id="cce_10_0365__li1924518231719"><strong id="cce_10_0365__b12809162913214">Use Case 2: Using a Cloud DNS</strong><p id="cce_10_0365__p5310436142311"><strong id="cce_10_0365__b1298619165335">Scenario</strong></p>
+<p id="cce_10_0365__p18311163652320">A DNS cannot resolve cluster-internal domain names and therefore is applicable to the scenario where workloads access only external domain names registered with the Internet.</p>
+<p id="cce_10_0365__p3311103618235"><strong id="cce_10_0365__b115813893518">Example:</strong></p>
+<pre class="screen" id="cce_10_0365__screen123111536192315">apiVersion: v1
+kind: Pod
+metadata:
+  namespace: default
+  name: dns-example
+spec:
+  containers:
+  - name: test
+    image: nginx:alpine
+  <strong id="cce_10_0365__b1968781092915">dnsPolicy: Default</strong>//The DNS configuration file that the kubelet's <strong id="cce_10_0365__b9104164775513">--resolv-conf</strong> flag points to is used. In this case, a DNS is used for CCE clusters.</pre>
+<p id="cce_10_0365__p831183612313">Container's DNS configuration file:</p>
+<pre class="screen" id="cce_10_0365__screen96153331974">nameserver 100.125.x.x</pre>
+</li><li id="cce_10_0365__li1424611455714"><strong id="cce_10_0365__b75138422567">Use Case 3: Using Kube-DNS/CoreDNS for Workloads Running with hostNetwork</strong><p id="cce_10_0365__p93111136192314"><strong id="cce_10_0365__b13377165317357">Scenario</strong></p>
+<p id="cce_10_0365__p43111636172313">By default, a DNS is used for workloads running with hostNetwork. If workloads need to use Kube-DNS/CoreDNS, set <strong id="cce_10_0365__b173401153171010">dnsPolicy</strong> to <strong id="cce_10_0365__b1635245415105">ClusterFirstWithHostNet</strong>.</p>
+<p id="cce_10_0365__p1331119364237"><strong id="cce_10_0365__b9802172218387">Example:</strong></p>
+<pre class="screen" id="cce_10_0365__screen13118369232">apiVersion: v1
+kind: Pod
+metadata:
+  name: nginx
+spec:
+  <strong id="cce_10_0365__b984299111411">hostNetwork: true</strong>
+<strong id="cce_10_0365__b1843199141">  dnsPolicy: ClusterFirstWithHostNet</strong>
+  containers:
+  - name: nginx
+    image: nginx:alpine
+    ports:
+    - containerPort: 80</pre>
+<p id="cce_10_0365__p131243618236">Container's DNS configuration file:</p>
+<pre class="screen" id="cce_10_0365__screen12312236132316">nameserver 10.247.3.10
+search default.svc.cluster.local svc.cluster.local cluster.local
+options ndots:5</pre>
+</li><li id="cce_10_0365__li479718112082"><strong id="cce_10_0365__b1436014910418">Use Case 4: Customizing Application's DNS Configuration</strong><p id="cce_10_0365__p1331213682319"><strong id="cce_10_0365__b215416200416">Scenario</strong></p>
+<p id="cce_10_0365__p11312636192320">You can flexibly customize the DNS configuration file for applications. Using <strong id="cce_10_0365__b148316312018">dnsPolicy</strong> and <strong id="cce_10_0365__b1285110342010">dnsConfig</strong> together can address almost all scenarios, including the scenarios in which an on-premises DNS will be used, multiple DNSs will be cascaded, and DNS configuration options will be modified.</p>
+<p id="cce_10_0365__p1131213362239"><strong id="cce_10_0365__b14207631033">Example 1: Using Your On-Premises DNS</strong></p>
+<p id="cce_10_0365__p6312123652313"><em id="cce_10_0365__i6848161184218">Set <strong id="cce_10_0365__b1070216291546">dnsPolicy</strong> to <strong id="cce_10_0365__b920393213419">None</strong> so application's DNS configuration file is generated based on <strong id="cce_10_0365__b157338157">dnsConfig</strong>.</em></p>
+<pre class="screen" id="cce_10_0365__screen5312133652314">apiVersion: v1
+kind: Pod
+metadata:
+  namespace: default
+  name: dns-example
+spec:
+  containers:
+  - name: test
+    image: nginx:alpine
+  dnsPolicy: "None"
+  dnsConfig:
+<strong id="cce_10_0365__b5312173672320">    nameservers:</strong>
+<strong id="cce_10_0365__b493710136265">    - 10.2.3.4 //IP address of your on-premises DNS</strong>
+<strong id="cce_10_0365__b163121836172314">    searches:</strong>
+<strong id="cce_10_0365__b93125361235">    - ns1.svc.cluster.local</strong>
+<strong id="cce_10_0365__b231219361237">    - my.dns.search.suffix</strong>
+<strong id="cce_10_0365__b73121436182315">    options:</strong>
+<strong id="cce_10_0365__b9312183682314">    - name: ndots</strong>
+<strong id="cce_10_0365__b1131219368237">      value: "2"</strong>
+<strong id="cce_10_0365__b631210368235">    - name: timeout</strong>
+<strong id="cce_10_0365__b17312133692311">      value: "3"</strong></pre>
+<p id="cce_10_0365__p33125369234">Container's DNS configuration file:</p>
+<pre class="screen" id="cce_10_0365__screen15312236182314">nameserver 10.2.3.4
+search ns1.svc.cluster.local my.dns.search.suffix
+options timeout:3 ndots:2</pre>
+<p id="cce_10_0365__p163131736162312"><strong id="cce_10_0365__b14408141510612">Example 2: Modifying the ndots Option in the DNS Configuration File to Reduce Invalid DNS Queries</strong></p>
+<p id="cce_10_0365__p203134365234">Set <strong id="cce_10_0365__b143015529720">dnsPolicy</strong> to a value other than <strong id="cce_10_0365__b11334110483">None</strong> so the DNS parameters configured in <strong id="cce_10_0365__b18263173519814">dnsConfig</strong> are added to the DNS configuration file generated based on <strong id="cce_10_0365__b993120501881">dnsPolicy</strong>.</p>
+<pre class="screen" id="cce_10_0365__screen18313936162319">apiVersion: v1
+kind: Pod
+metadata:
+  namespace: default
+  name: dns-example
+spec:
+  containers:
+  - name: test
+    image: nginx:alpine
+  dnsPolicy: <strong id="cce_10_0365__b1331313692310">"ClusterFirst"</strong>
+  dnsConfig:
+    options:
+    - <strong id="cce_10_0365__b531312363233">name: ndots</strong>
+      <strong id="cce_10_0365__b1321614214205">value: "2" //Changes the ndots:5 option in the DNS configuration file generated based on the ClusterFirst policy to ndots:2.</strong></pre>
+<p id="cce_10_0365__p13133364234">Container's DNS configuration file:</p>
+<pre class="screen" id="cce_10_0365__screen7313536112319">nameserver 10.247.3.10
+search default.svc.cluster.local svc.cluster.local cluster.local
+<strong id="cce_10_0365__b13139365234">options ndots:2</strong></pre>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0359.html">DNS</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0367.html b/docs/cce/umn/cce_10_0367.html
new file mode 100644
index 00000000..843f653e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0367.html
@@ -0,0 +1,24 @@
+<a name="cce_10_0367"></a><a name="cce_10_0367"></a>
+
+<h1 class="topictitle1">Customizing a Cluster Certificate SAN</h1>
+<div id="body0000001213596583"><div class="section" id="cce_10_0367__section33802116582"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0367__p59101350161213">A <strong id="cce_10_0367__b1083715466917">Subject Alternative Name (SAN)</strong> can be signed in to a cluster server certificate. A SAN is usually used by the client to verify the server validity in TLS handshakes. Specifically, the validity check includes whether the server certificate is issued by a CA trusted by the client and whether the SAN in the certificate matches the IP address or DNS domain name that the client actually accesses.</p>
+<p id="cce_10_0367__p8678206135818">If the client cannot directly access the private IP or EIP of the cluster, you can sign the IP address or DNS domain name that can be directly accessed by the client into the cluster server certificate to enable two-way authentication on the client, which improves security. Typical use cases include DNAT access and domain name access.</p>
+</div>
+<div class="section" id="cce_10_0367__section1830417304596"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0367__p743513488317">This feature is available only to clusters of v1.19 and later.</p>
+</div>
+<div class="section" id="cce_10_0367__section13739162465410"><h4 class="sectiontitle">Customizing a SAN</h4><ol id="cce_10_0367__ol14222161910276"><li id="cce_10_0367__li522271918277"><span>Log in to the CCE console.</span></li><li id="cce_10_0367__li88264265271"><span>Click the target cluster in the cluster list to go to the cluster details page.</span></li><li id="cce_10_0367__li1942836112713"><span>In the <strong id="cce_10_0367__b11906134417264">Connection Information</strong> area, click <span><img id="cce_10_0367__image194171230112913" src="en-us_image_0000001199341268.png"></span> next to <strong id="cce_10_0367__b04361849172613">Custom SAN</strong>. In the dialog box displayed, add the IP address or domain name and click <strong id="cce_10_0367__b1062916962814">Save</strong>.</span><p><p id="cce_10_0367__p465614114287"></p>
+<div class="note" id="cce_10_0367__note182701752173012"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0367__p19655105393012">1. This operation will restart kube-apiserver and update the <strong id="cce_10_0367__b18757175662916">kubeconfig.json</strong> file for a short period of time. Do not perform operations on the cluster during this period.</p>
+<p id="cce_10_0367__p66551353183015">2. A maximum of 128 domain names or IP addresses, separated by commas (,), are allowed.</p>
+<p id="cce_10_0367__p1865625323020">3. If a custom domain name needs to be bound to an EIP, ensure that an EIP has been configured.</p>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0367__section1577515244184"><h4 class="sectiontitle">Typical Domain Name Access Scenarios</h4><ul id="cce_10_0367__ul54106529187"><li id="cce_10_0367__li741065217186">Add the response domain name mapping when specifying the DNS domain name address in the host domain name configuration on the client, or configuring <strong id="cce_10_0367__b185291228388">/etc/hosts</strong> on the client host.</li><li id="cce_10_0367__li11410205215185">Use domain name access in the intranet. DNS allows you to configure mappings between cluster EIPs and custom domain names. After an EIP is updated, you can continue to use two-way authentication and the domain name to access the cluster without downloading the <strong id="cce_10_0367__b81618387398">kubeconfig.json</strong> file again.</li><li id="cce_10_0367__li6410952151810">Add A records on a self-built DNS server.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0140.html">Using kubectl to Run a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0374.html b/docs/cce/umn/cce_10_0374.html
new file mode 100644
index 00000000..80ad67df
--- /dev/null
+++ b/docs/cce/umn/cce_10_0374.html
@@ -0,0 +1,28 @@
+<a name="cce_10_0374"></a><a name="cce_10_0374"></a>
+
+<h1 class="topictitle1">Storage</h1>
+<div id="body0000001223214917"><p id="cce_10_0374__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0307.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0377.html">Using Local Disks as Storage Volumes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0379.html">PersistentVolumes (PVs)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0378.html">PersistentVolumeClaims (PVCs)</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0380.html">StorageClass</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0381.html">Snapshots and Backups</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0337.html">Setting Mount Options</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0393.html">Deployment Examples</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0377.html b/docs/cce/umn/cce_10_0377.html
new file mode 100644
index 00000000..6c3b3b9b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0377.html
@@ -0,0 +1,231 @@
+<a name="cce_10_0377"></a><a name="cce_10_0377"></a>
+
+<h1 class="topictitle1">Using Local Disks as Storage Volumes</h1>
+<div id="body0000001177336722"><p id="cce_10_0377__p1095113173412">You can mount a file directory of the host where a container is located to a specified container path (the hostPath mode in Kubernetes) for persistent data storage. Alternatively, you can leave the source path empty (the emptyDir mode in Kubernetes), and a temporary directory of the host will be mounted to the mount point of the container for temporary storage.</p>
+<div class="section" id="cce_10_0377__section12724113154514"><h4 class="sectiontitle">Using Local Volumes</h4><p id="cce_10_0377__p17507173819455">CCE supports four types of local volumes.</p>
+</div>
+<ul id="cce_10_0377__ul194180134612"><li id="cce_10_0377__li694015064614"><strong id="cce_10_0377__b880110243506"><a href="#cce_10_0377__section196700523438">hostPath</a></strong>: mounts a file directory of the host where the container is located to the specified mount point of the container. For example, if the container needs to access <strong id="cce_10_0377__b5801122414501">/etc/hosts</strong>, you can use a hostPath volume to map <strong id="cce_10_0377__b1180212245508">/etc/hosts</strong>.</li><li id="cce_10_0377__li14816734462"><strong id="cce_10_0377__b7496927195019"><a href="#cce_10_0377__section550555216467">emptyDir</a></strong>: stores data temporarily. An emptyDir volume is first created when a pod is assigned to a node, and exists as long as that pod is running on that node. When a container pod is terminated, <strong id="cce_10_0377__b35121429155013">EmptyDir</strong> will be deleted and the data is permanently lost.</li><li id="cce_10_0377__li207169844620"><strong id="cce_10_0377__b72194320507"><a href="#cce_10_0377__section18638191594712">ConfigMap</a></strong>: A ConfigMap can be mounted as a volume, and all contents stored in its key are mounted onto the specified container directory. A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. For details about how to create a ConfigMap, see <a href="cce_10_0152.html">Creating a ConfigMap</a>. For details about how to use a ConfigMap, see <a href="cce_10_0015.html">Using a ConfigMap</a>.</li><li id="cce_10_0377__li18308105468"><strong id="cce_10_0377__b1647124113500"><a href="#cce_10_0377__section10197243134710">Secret mounting</a></strong>: Data in the secret is mounted to a path of the container. A secret is a type of resource that holds sensitive data, such as authentication and key information. All content is user-defined. For details about how to create a secret, see <a href="cce_10_0153.html">Creating a Secret</a>. For details on how to use a secret, see <a href="cce_10_0016.html">Using a Secret</a>.</li></ul>
+<p id="cce_10_0377__p145851339143512">The following describes how to mount these four types of volumes.</p>
+<div class="section" id="cce_10_0377__section196700523438"><a name="cce_10_0377__section196700523438"></a><a name="section196700523438"></a><h4 class="sectiontitle">hostPath</h4><p id="cce_10_0377__p10373195993517">You can mount a path on the host to a specified container path. A hostPath volume is usually used to <strong id="cce_10_0377__b3581158125010">store workload logs permanently</strong> or used by workloads that need to <strong id="cce_10_0377__b258817584507">access internal data structure of the Docker engine on the host</strong>. </p>
+</div>
+<ol id="cce_10_0377__ol12431489443"><li id="cce_10_0377__li3604125131815"><span>Log in to the CCE console.</span></li><li id="cce_10_0377__li32521216162315"><span>When creating a workload, click <span class="uicontrol" id="cce_10_0377__uicontrol92825450013"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0377__uicontrol928215451509"><b>Container Settings</b></span>. Click <span class="uicontrol" id="cce_10_0377__uicontrol105013551011"><b>Add Volume</b></span> and choose <strong id="cce_10_0377__b712882920567">hostPath</strong> from the drop-down list.</span></li><li id="cce_10_0377__li1743198144418"><span>Set parameters for adding a local volume, as listed in <a href="#cce_10_0377__table14312815449">Table 1</a>. </span><p>
+<div class="tablenoborder"><a name="cce_10_0377__table14312815449"></a><a name="table14312815449"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table14312815449" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Setting parameters for mounting a hostPath volume</caption><thead align="left"><tr id="cce_10_0377__row1430108144414"><th align="left" class="cellrowborder" valign="top" width="23.02%" id="mcps1.3.6.3.2.1.2.3.1.1"><p id="cce_10_0377__p3304815443">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76.98%" id="mcps1.3.6.3.2.1.2.3.1.2"><p id="cce_10_0377__p63012813442">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0377__row931118184415"><td class="cellrowborder" valign="top" width="23.02%" headers="mcps1.3.6.3.2.1.2.3.1.1 "><p id="cce_10_0377__p7315824414">Storage Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.98%" headers="mcps1.3.6.3.2.1.2.3.1.2 "><p id="cce_10_0377__p193112817449">Select <strong id="cce_10_0377__b1345161419539">hostPath</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0377__row203214811443"><td class="cellrowborder" valign="top" width="23.02%" headers="mcps1.3.6.3.2.1.2.3.1.1 "><p id="cce_10_0377__p5314818448">Host Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.98%" headers="mcps1.3.6.3.2.1.2.3.1.2 "><p id="cce_10_0377__p133114874418">Path of the host to which the local volume is to be mounted, for example, <strong id="cce_10_0377__b1094411178537">/etc/hosts</strong>.</p>
+<div class="note" id="cce_10_0377__note168401426124510"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0377__p384172604518"><strong id="cce_10_0377__b10763132915310">Host Path</strong> cannot be set to the root directory <strong id="cce_10_0377__b117691129195315">/</strong>. Otherwise, the mounting fails. Mount paths can be as follows:</p>
+<ul id="cce_10_0377__ul9786952142610"><li id="cce_10_0377__li19786105242619">/opt/xxxx (excluding <strong id="cce_10_0377__b080123215314">/opt/cloud</strong>)</li><li id="cce_10_0377__li278615525269">/mnt/xxxx (excluding <strong id="cce_10_0377__b159481033115310">/mnt/paas</strong>)</li><li id="cce_10_0377__li167861752152610">/tmp/xxx</li><li id="cce_10_0377__li1176843184115">/var/xxx (excluding key directories such as <strong id="cce_10_0377__b1832183612535">/var/lib</strong>, <strong id="cce_10_0377__b5832123685314">/var/script</strong>, and <strong id="cce_10_0377__b1783317366536">/var/paas</strong>)</li><li id="cce_10_0377__li8786105216260">/xxxx (It cannot conflict with the system directory, such as bin, lib, home, root, boot, dev, etc, lost+found, mnt, proc, sbin, srv, tmp, var, media, opt, selinux, sys, and usr.)</li></ul>
+<p id="cce_10_0377__p1257852412335">Do not set this parameter to <strong id="cce_10_0377__b19391104235311">/home/paas</strong>, <strong id="cce_10_0377__b19392164235310">/var/paas</strong>, <strong id="cce_10_0377__b143921642205310">/var/lib</strong>, <strong id="cce_10_0377__b13921042165313">/var/script</strong>, <strong id="cce_10_0377__b7393194217534">/mnt/paas</strong>, or <strong id="cce_10_0377__b2039316428539">/opt/cloud</strong>. Otherwise, the system or node installation will fail.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0377__row53620864414"><td class="cellrowborder" valign="top" width="23.02%" headers="mcps1.3.6.3.2.1.2.3.1.1 "><p id="cce_10_0377__p153212810443">Add Container Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="76.98%" headers="mcps1.3.6.3.2.1.2.3.1.2 "><p id="cce_10_0377__p4174161519591">Configure the following parameters:</p>
+<ol type="a" id="cce_10_0377__ol1535285447"><li id="cce_10_0377__li81991024215"><strong id="cce_10_0377__b457724713533">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__b1557718476536">tmp</strong>.<p id="cce_10_0377__p183671375216">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
+</li><li id="cce_10_0377__li1498071020210"><strong id="cce_10_0377__b122452553539">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__b3252185515539">/tmp</strong>.<div class="p" id="cce_10_0377__p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__b1887395915531">/</strong> or <strong id="cce_10_0377__b88791559175320">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0377__li3356824413">Permission<ul id="cce_10_0377__ul3352818447"><li id="cce_10_0377__li1351488444"><strong id="cce_10_0377__b1561171095419">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_10_0377__li535148164412"><strong id="cce_10_0377__b20905191114541">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
+</li></ol>
+<p id="cce_10_0377__p156433043">You can click <span><img id="cce_10_0377__image75256391391" src="en-us_image_0000001465197524.png"></span> to add multiple paths and subpaths.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+<div class="section" id="cce_10_0377__section550555216467"><a name="cce_10_0377__section550555216467"></a><a name="section550555216467"></a><h4 class="sectiontitle">emptyDir</h4><p id="cce_10_0377__p1538455920350">emptyDir applies to temporary data storage, disaster recovery, and runtime data sharing. It will be deleted upon deletion or transfer of workload pods.</p>
+</div>
+<ol id="cce_10_0377__ol17674181064719"><li id="cce_10_0377__li1518017451310"><span>Log in to the CCE console.</span></li><li id="cce_10_0377__li191801845817"><span>When creating a workload, click <span class="uicontrol" id="cce_10_0377__uicontrol20449173318265"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0377__uicontrol8450153315266"><b>Container Settings</b></span>. Click <span class="uicontrol" id="cce_10_0377__uicontrol38541921193012"><b>Add Volume</b></span> and choose <strong id="cce_10_0377__b6854132120308">emptyDir</strong> from the drop-down list.</span></li><li id="cce_10_0377__li66741810134716"><span>Set the local volume type to <strong id="cce_10_0377__b126951325115415">emptyDir</strong> and set parameters for adding a local volume, as described in <a href="#cce_10_0377__table1867417102475">Table 2</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0377__table1867417102475"></a><a name="table1867417102475"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table1867417102475" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Setting parameters for mounting an emptyDir volume</caption><thead align="left"><tr id="cce_10_0377__row116705107477"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.8.3.2.1.2.3.1.1"><p id="cce_10_0377__p367021084716">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.8.3.2.1.2.3.1.2"><p id="cce_10_0377__p1367017107472">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0377__row867231016476"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.8.3.2.1.2.3.1.1 "><p id="cce_10_0377__p15672210204710">Storage Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.8.3.2.1.2.3.1.2 "><p id="cce_10_0377__p1267271094716">Select <strong id="cce_10_0377__b09201035105419">emptyDir</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0377__row8672181011474"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.8.3.2.1.2.3.1.1 "><p id="cce_10_0377__p967231014479">Storage Medium</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.8.3.2.1.2.3.1.2 "><ul id="cce_10_0377__ul2672201015476"><li id="cce_10_0377__li7753916194314"><strong id="cce_10_0377__b1287874818548">Default</strong>: Data is stored in hard disks, which is applicable to a large amount of data with low requirements on reading and writing efficiency. </li><li id="cce_10_0377__li122925104438"><strong id="cce_10_0377__b10762155112819">Memory</strong>: Selecting this option can improve the running speed, but the storage capacity is subject to the memory size. This mode applies to scenarios where the data volume is small and the read and write efficiency is high.</li></ul>
+<div class="note" id="cce_10_0377__note1698854220427"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0377__ul3988742134214"><li id="cce_10_0377__li129881142134218">If you select <strong id="cce_10_0377__b7227125815410">Memory</strong>, any files you write will count against your container's memory limit. Pay attention to the memory quota. If the memory usage exceeds the threshold, OOM may occur.</li><li id="cce_10_0377__li998824210422">If <strong id="cce_10_0377__b14191812551">Memory</strong> is selected, the size of an emptyDir volume is 50% of the pod specifications and cannot be changed.</li><li id="cce_10_0377__li59888422427">If <strong id="cce_10_0377__b19262948558">Memory</strong> is not selected, emptyDir volumes will not occupy the system memory.</li></ul>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0377__row10674101084717"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.8.3.2.1.2.3.1.1 "><p id="cce_10_0377__p96728108473">Add Container Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.8.3.2.1.2.3.1.2 "><p id="cce_10_0377__p18708203013719">Configure the following parameters:</p>
+<ol type="a" id="cce_10_0377__ol76839501038"><li id="cce_10_0377__cce_10_0377_li81991024215"><strong id="cce_10_0377__cce_10_0377_b457724713533">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__cce_10_0377_b1557718476536">tmp</strong>.<p id="cce_10_0377__cce_10_0377_p183671375216">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
+</li><li id="cce_10_0377__cce_10_0377_li1498071020210"><strong id="cce_10_0377__cce_10_0377_b122452553539">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__cce_10_0377_b3252185515539">/tmp</strong>.<div class="p" id="cce_10_0377__cce_10_0377_p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__cce_10_0377_b1887395915531">/</strong> or <strong id="cce_10_0377__cce_10_0377_b88791559175320">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__cce_10_0377_note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__cce_10_0377_p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0377__cce_10_0377_li3356824413">Permission<ul id="cce_10_0377__cce_10_0377_ul3352818447"><li id="cce_10_0377__cce_10_0377_li1351488444"><strong id="cce_10_0377__cce_10_0377_b1561171095419">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_10_0377__cce_10_0377_li535148164412"><strong id="cce_10_0377__cce_10_0377_b20905191114541">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
+</li></ol>
+<p id="cce_10_0377__p443859151014">You can click <span><img id="cce_10_0377__image1259138194019" src="en-us_image_0000001515917789.png"></span> to add multiple paths and subpaths.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+<div class="section" id="cce_10_0377__section18638191594712"><a name="cce_10_0377__section18638191594712"></a><a name="section18638191594712"></a><h4 class="sectiontitle">ConfigMap</h4><p id="cce_10_0377__p192196124125">The data stored in a ConfigMap can be referenced in a volume of type ConfigMap. You can mount such a volume to a specified container path. The platform supports the separation of workload codes and configuration files. ConfigMap volumes are used to store workload configuration parameters. Before that, you need to create ConfigMaps in advance. For details, see <a href="cce_10_0152.html">Creating a ConfigMap</a>. </p>
+</div>
+<ol id="cce_10_0377__ol1964410161043"><li id="cce_10_0377__li597113523117"><span>Log in to the CCE console.</span></li><li id="cce_10_0377__li0971752112"><span>When creating a workload, click <span class="uicontrol" id="cce_10_0377__uicontrol132721717322"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0377__uicontrol827121723215"><b>Container Settings</b></span>. Click <span class="uicontrol" id="cce_10_0377__uicontrol20764123243219"><b>Add Volume</b></span> and choose <strong id="cce_10_0377__b127641132113219">ConfigMap</strong> from the drop-down list.</span></li><li id="cce_10_0377__li6644161617412"><span>Set the local volume type to <strong id="cce_10_0377__b1887350153410">ConfigMap</strong> and set parameters for adding a local volume, as shown in <a href="#cce_10_0377__table1776324831114">Table 3</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0377__table1776324831114"></a><a name="table1776324831114"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table1776324831114" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Setting parameters for mounting a ConfigMap volume</caption><thead align="left"><tr id="cce_10_0377__row177484871120"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.10.3.2.1.2.3.1.1"><p id="cce_10_0377__p977974818111">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.10.3.2.1.2.3.1.2"><p id="cce_10_0377__p978113488113">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0377__row20785144820118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_10_0377__p197881548171117">Storage Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_10_0377__p479110483117">Select <strong id="cce_10_0377__b5198113819364">ConfigMap</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0377__row342915156166"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_10_0377__p17429315151617">Option</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_10_0377__p3133142513414">Select the desired ConfigMap name.</p>
+<p id="cce_10_0377__p17741424142">A ConfigMap must be created in advance. For details, see <a href="cce_10_0152.html">Creating a ConfigMap</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0377__row28091948181115"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_10_0377__p9813048191118">Add Container Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_10_0377__p6972055171410">Configure the following parameters:</p>
+<ol type="a" id="cce_10_0377__ol18607172216391"><li id="cce_10_0377__li842512390413"><strong id="cce_10_0377__b8317182411262">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__b16317192411269">tmp</strong>.<ul id="cce_10_0377__ul19821342112914"><li id="cce_10_0377__li12982114218296">A subpath is used to mount a local volume so that the same data volume is used in a single pod.</li><li id="cce_10_0377__li79821942142920">The subpath can be the key and value of a ConfigMap or secret. If the subpath is a key-value pair that does not exist, the data import does not take effect.</li><li id="cce_10_0377__li129821442102910">The data imported by specifying a subpath will not be updated along with the ConfigMap/secret updates.</li></ul>
+</li><li id="cce_10_0377__li26161221390"><strong id="cce_10_0377__cce_10_0377_b122452553539_1">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__cce_10_0377_b3252185515539_1">/tmp</strong>.<div class="p" id="cce_10_0377__cce_10_0377_p5157313628_1">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__cce_10_0377_b1887395915531_1">/</strong> or <strong id="cce_10_0377__cce_10_0377_b88791559175320_1">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__cce_10_0377_note235158114415_1"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__cce_10_0377_p22751516234_1">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0377__li126321222103912">Set the permission to <strong id="cce_10_0377__b10399165510382">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
+<p id="cce_10_0377__p6374955151514">You can click <span><img id="cce_10_0377__image13122165318407" src="en-us_image_0000001464878016.png"></span> to add multiple paths and subpaths.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+<div class="section" id="cce_10_0377__section10197243134710"><a name="cce_10_0377__section10197243134710"></a><a name="section10197243134710"></a><h4 class="sectiontitle">Secret</h4><p id="cce_10_0377__p196047901010">You can mount a secret as a volume to the specified container path. Contents in a secret are user-defined. Before that, you need to create a secret. For details, see <a href="cce_10_0153.html">Creating a Secret</a>.</p>
+</div>
+<ol id="cce_10_0377__ol668714114817"><li id="cce_10_0377__li5675379212"><span>Log in to the CCE console.</span></li><li id="cce_10_0377__li176751271627"><span>When creating a workload, click <span class="uicontrol" id="cce_10_0377__uicontrol046084443218"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0377__uicontrol14466114423216"><b>Container Settings</b></span>. Click <span class="uicontrol" id="cce_10_0377__uicontrol18169142610332"><b>Add Volume</b></span> and choose <strong id="cce_10_0377__b16169226173314">Secret</strong> from the drop-down list.</span></li><li id="cce_10_0377__li06877414482"><span>Set the local volume type to <strong id="cce_10_0377__b112241816123918">Secret</strong> and set parameters for adding a local volume, as shown in <a href="#cce_10_0377__table861818920109">Table 4</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0377__table861818920109"></a><a name="table861818920109"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table861818920109" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Setting parameters for mounting a secret volume</caption><thead align="left"><tr id="cce_10_0377__row1962619171020"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.12.3.2.1.2.3.1.1"><p id="cce_10_0377__p196285991018">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.12.3.2.1.2.3.1.2"><p id="cce_10_0377__p126314951020">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0377__row20632792101"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_10_0377__p56341798108">Storage Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_10_0377__p206363911018">Select <strong id="cce_10_0377__b8430441113918">Secret</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0377__row563713981015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_10_0377__p16638594102">Secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_10_0377__p790921317488">Select the desired secret name.</p>
+<p id="cce_10_0377__p128541638181620">A secret must be created in advance. For details, see <a href="cce_10_0153.html">Creating a Secret</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0377__row146458911015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_10_0377__p46473921020">Add Container Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_10_0377__p15454317176">Configure the following parameters:</p>
+<ol type="a" id="cce_10_0377__ol1365012913103"><li id="cce_10_0377__li106519951015"><strong id="cce_10_0377__cce_10_0377_b8317182411262">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__cce_10_0377_b16317192411269">tmp</strong>.<ul id="cce_10_0377__cce_10_0377_ul19821342112914"><li id="cce_10_0377__cce_10_0377_li12982114218296">A subpath is used to mount a local volume so that the same data volume is used in a single pod.</li><li id="cce_10_0377__cce_10_0377_li79821942142920">The subpath can be the key and value of a ConfigMap or secret. If the subpath is a key-value pair that does not exist, the data import does not take effect.</li><li id="cce_10_0377__cce_10_0377_li129821442102910">The data imported by specifying a subpath will not be updated along with the ConfigMap/secret updates.</li></ul>
+</li><li id="cce_10_0377__li865414941020"><strong id="cce_10_0377__cce_10_0377_b122452553539_2">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__cce_10_0377_b3252185515539_2">/tmp</strong>.<div class="p" id="cce_10_0377__cce_10_0377_p5157313628_2">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__cce_10_0377_b1887395915531_2">/</strong> or <strong id="cce_10_0377__cce_10_0377_b88791559175320_2">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__cce_10_0377_note235158114415_2"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__cce_10_0377_p22751516234_2">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0377__li1666210911012">Set the permission to <strong id="cce_10_0377__b614195817399">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
+<p id="cce_10_0377__p145078478238">You can click <span><img id="cce_10_0377__image51014313412" src="en-us_image_0000001515838557.png"></span> to add multiple paths and subpaths.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+<div class="section" id="cce_10_0377__section2432104516110"><h4 class="sectiontitle">Mounting a hostPath Volume Using kubectl</h4><p id="cce_10_0377__p8648172081919">You can use kubectl to mount a file directory of the host where the container is located to a specified mount path of the container.</p>
+<ol id="cce_10_0377__ol119461810195916"><li id="cce_10_0377__li1681024195710"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0377__li19947131075915"><span>Run the following commands to configure the <strong id="cce_10_0377__b19091326184016">hostPath-pod-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_10_0377__p494741020593"><b><span class="cmdname" id="cce_10_0377__cmdname1967825151319">touch hostPath-pod-example.yaml</span></b></p>
+<p id="cce_10_0377__p1894721016594"><b><span class="cmdname" id="cce_10_0377__cmdname11936124712136">vi hostPath-pod-example.yaml</span></b></p>
+<p id="cce_10_0377__p7947310185911">Mount the hostPath volume for the Deployment. The following is an example:</p>
+<pre class="screen" id="cce_10_0377__screen20715184017393">apiVersion: apps/v1 
+kind: Deployment 
+metadata: 
+  name: hostpath-pod-example 
+  namespace: default 
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: hostpath-pod-example 
+  template: 
+    metadata: 
+      labels: 
+        app: hostpath-pod-example 
+    spec: 
+      containers: 
+      - image: nginx
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp 
+          name: hostpath-example 
+      imagePullSecrets:
+        - name: default-secret
+      restartPolicy: Always 
+      volumes: 
+      - name: hostpath-example 
+        hostPath: 
+          path: /tmp/test</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Local disk storage dependency parameters</caption><thead align="left"><tr id="cce_10_0377__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.13.3.2.2.5.2.3.1.1"><p id="cce_10_0377__p18191161619356">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.13.3.2.2.5.2.3.1.2"><p id="cce_10_0377__p1919116161353">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0377__row2318123021219"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.13.3.2.2.5.2.3.1.1 "><p id="cce_10_0377__p9319103017129">mountPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.13.3.2.2.5.2.3.1.2 "><p id="cce_10_0377__p1631923081216">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_10_0377__b53751640134019">/tmp</strong> directory.</p>
+</td>
+</tr>
+<tr id="cce_10_0377__row163191830121220"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.13.3.2.2.5.2.3.1.1 "><p id="cce_10_0377__p14319143031212">hostPath</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.13.3.2.2.5.2.3.1.2 "><p id="cce_10_0377__p18319530131211">Host path. In this example, the host path is <strong id="cce_10_0377__b189589425404">/tmp/test</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0377__note14426266132"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0377__p1544282651314"><strong id="cce_10_0377__b418064514018">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_10_0377__b9181134564014">spec.template.spec.volumes.name</strong> must be consistent because they have a mapping relationship.</p>
+</div></div>
+</p></li><li id="cce_10_0377__li1894851020597"><span>Run the following command to create the pod:</span><p><p id="cce_10_0377__p17708712161919"><b><span class="cmdname" id="cce_10_0377__cmdname1081472281913">kubectl create -f hostPath-pod-example.yaml</span></b></p>
+</p></li><li id="cce_10_0377__li151611271311"><span>Verify the mounting.</span><p><ol type="a" id="cce_10_0377__ol206428471234"><li id="cce_10_0377__li1964274717317">Query the pod name of the workload (<strong id="cce_10_0377__b15577165674012">hostpath-pod-example</strong> is used as an example).<pre class="screen" id="cce_10_0377__screen1725316813160">kubectl get po|grep hostpath-pod-example</pre>
+<p id="cce_10_0377__p758622061118">Expected outputs:</p>
+<pre class="screen" id="cce_10_0377__screen12939131191619">hostpath-pod-example-55c8d4dc59-md5d9   1/1     Running   0          35s</pre>
+</li><li id="cce_10_0377__li12332123651112">Create the <strong id="cce_10_0377__b158918573449">test1</strong> file in the container mount path <strong id="cce_10_0377__b129595784410">/tmp</strong>.<pre class="screen" id="cce_10_0377__screen6227121671616">kubectl exec hostpath-pod-example-55c8d4dc59-md5d9 -- touch /tmp/test1</pre>
+</li><li id="cce_10_0377__li1596943101211">Verify that the file is created in the host path <strong id="cce_10_0377__b83267012452">/tmp/test/</strong>.<pre class="screen" id="cce_10_0377__screen207161721161615">ll /tmp/test/</pre>
+<p id="cce_10_0377__p967063519139">Expected outputs:</p>
+<pre class="screen" id="cce_10_0377__screen68741225191619">-rw-r--r--  1 root root    0 Jun  1 16:12 test1</pre>
+</li><li id="cce_10_0377__li151383557138">Create the <strong id="cce_10_0377__b75798518454">test2</strong> file in the host path <strong id="cce_10_0377__b145851954452">/tmp/test/</strong>.<pre class="screen" id="cce_10_0377__screen11543112919163">touch /tmp/test/test2</pre>
+</li><li id="cce_10_0377__li14867104819146">Verify that the file is created in the container mount path.<pre class="screen" id="cce_10_0377__screen3419183312163">kubectl exec hostpath-pod-example-55c8d4dc59-md5d9 -- ls -l /tmp</pre>
+<p id="cce_10_0377__p1827844616159">Expected outputs:</p>
+<pre class="screen" id="cce_10_0377__screen1724419394161">-rw-r--r-- 1 root root 0 Jun  1 08:12 test1
+-rw-r--r-- 1 root root 0 Jun  1 08:14 test2</pre>
+</li></ol>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0378.html b/docs/cce/umn/cce_10_0378.html
new file mode 100644
index 00000000..b15c9794
--- /dev/null
+++ b/docs/cce/umn/cce_10_0378.html
@@ -0,0 +1,299 @@
+<a name="cce_10_0378"></a><a name="cce_10_0378"></a>
+
+<h1 class="topictitle1">PersistentVolumeClaims (PVCs)</h1>
+<div id="body0000001223336471"><p id="cce_10_0378__p8060118">A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are dynamically created. When creating a PVC, you need to describe the attributes of the requested persistent storage, such as the size of the volume and the read/write permissions.</p>
+<div class="section" id="cce_10_0378__section516692464018"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0378__p16618172994018">When a PVC is created, the system checks whether there is an available PV with the same configuration in the cluster. If yes, the PVC binds the available PV to the cluster. If no PV meets the matching conditions, the system dynamically creates a storage volume.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0378__table3531229104018" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0378__row4618142917405"><th align="left" class="cellrowborder" valign="top" width="12.691269126912694%" id="mcps1.3.2.3.1.5.1.1"><p id="cce_10_0378__p1961812916400">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="27.93279327932793%" id="mcps1.3.2.3.1.5.1.2"><p id="cce_10_0378__p17618529114015">PVC Field</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="34.963496349634966%" id="mcps1.3.2.3.1.5.1.3"><p id="cce_10_0378__p661810299404">PV Field</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.412441244124413%" id="mcps1.3.2.3.1.5.1.4"><p id="cce_10_0378__p1461892915408">Matching Logic</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0378__row176183299407"><td class="cellrowborder" valign="top" width="12.691269126912694%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_10_0378__p16181229124014">region</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.93279327932793%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_10_0378__p561862974016">pvc.metadata.labels (failure-domain.beta.kubernetes.io/region or topology.kubernetes.io/region)</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_10_0378__p17618192914013">pv.metadata.labels (failure-domain.beta.kubernetes.io/region or topology.kubernetes.io/region)</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_10_0378__p106181296406">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row9618172917407"><td class="cellrowborder" valign="top" width="12.691269126912694%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_10_0378__p11618229124014">zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.93279327932793%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_10_0378__p6618122915409">pvc.metadata.labels (failure-domain.beta.kubernetes.io/zone or topology.kubernetes.io/zone)</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_10_0378__p116181429104018">pv.metadata.labels (failure-domain.beta.kubernetes.io/zone or topology.kubernetes.io/zone)</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_10_0378__p196185293400">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row146187298409"><td class="cellrowborder" valign="top" width="12.691269126912694%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_10_0378__p861813298407">EVS disk type</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.93279327932793%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_10_0378__p18618142911400">pvc.metadata.annotations (everest.io/disk-volume-type)</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_10_0378__p561832912407">pv.spec.csi.volumeAttributes (everest.io/disk-volume-type)</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_10_0378__p18618192974019">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row136181029104012"><td class="cellrowborder" valign="top" width="12.691269126912694%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_10_0378__p166181229164014">Key ID</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.93279327932793%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_10_0378__p20618229204012">pvc.metadata.annotations (everest.io/crypt-key-id)</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_10_0378__p136181429134010">pv.spec.csi.volumeAttributes (everest.io/crypt-key-id)</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_10_0378__p361832918405">Defined or not defined at the same time. If defined, the settings must be consistent.</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row106182299407"><td class="cellrowborder" valign="top" width="12.691269126912694%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_10_0378__p16618102913400">accessMode</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.93279327932793%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_10_0378__p1461817293407">accessMode</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_10_0378__p06186293402">accessMode</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_10_0378__p1361812964011">The settings must be consistent.</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row96181929134020"><td class="cellrowborder" valign="top" width="12.691269126912694%" headers="mcps1.3.2.3.1.5.1.1 "><p id="cce_10_0378__p1961892918405">Storage class</p>
+</td>
+<td class="cellrowborder" valign="top" width="27.93279327932793%" headers="mcps1.3.2.3.1.5.1.2 "><p id="cce_10_0378__p1761842954017">storageclass</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.963496349634966%" headers="mcps1.3.2.3.1.5.1.3 "><p id="cce_10_0378__p56181629114017">storageclass</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.412441244124413%" headers="mcps1.3.2.3.1.5.1.4 "><p id="cce_10_0378__p14618102994011">The settings must be consistent.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0378__section43881411172418"><a name="cce_10_0378__section43881411172418"></a><a name="section43881411172418"></a><h4 class="sectiontitle">Volume Access Modes</h4><p id="cce_10_0378__p3855173814011">PVs can be mounted to the host system only in the mode supported by underlying storage resources. For example, a file storage system can be read and written by multiple nodes, but an EVS disk can be read and written by only one node.</p>
+<ul id="cce_10_0378__ul15491194720247"><li id="cce_10_0378__li649112478240">ReadWriteOnce: A volume can be mounted as read-write by a single node. This access mode is supported by EVS.</li><li id="cce_10_0378__li8491447162410">ReadWriteMany: A volume can be mounted as read-write by multiple nodes. This access mode is supported by SFS, SFS Turbo, and OBS.</li></ul>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0378__table773195654210" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Supported access modes</caption><thead align="left"><tr id="cce_10_0378__row773135617420"><th align="left" class="cellrowborder" valign="top" width="23.352335233523352%" id="mcps1.3.3.4.2.4.1.1"><p id="cce_10_0378__p10731155674211">Storage Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.023602360236026%" id="mcps1.3.3.4.2.4.1.2"><p id="cce_10_0378__p12731115614425">ReadWriteOnce</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.624062406240625%" id="mcps1.3.3.4.2.4.1.3"><p id="cce_10_0378__p3731556114214">ReadWriteMany</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0378__row773165604217"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0378__p12731185618427">EVS</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0378__p87311956124218">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0378__p27311556164218">×</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row17731956134214"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0378__p873115610428">SFS</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0378__p15731856104219">×</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0378__p1675417266441">√</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row1873105654216"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0378__p12731125644217">OBS</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0378__p47311556184213">×</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0378__p12369172711443">√</p>
+</td>
+</tr>
+<tr id="cce_10_0378__row757122118433"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0378__p135713211435">SFS Turbo</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0378__p155713210434">×</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0378__p7960162715446">√</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0378__section155911631134310"><h4 class="sectiontitle">Using a Storage Class to Create a PVC</h4><p id="cce_10_0378__p9806175313430">StorageClass describes the storage class used in the cluster. You need to specify StorageClass to dynamically create PVs and underlying storage resources when creating a PVC.</p>
+<p id="cce_10_0378__p1814111468317"><strong id="cce_10_0378__b149616359506">Using the CCE Console</strong></p>
+<ol id="cce_10_0378__ol1579572174320"><li id="cce_10_0378__li1179513219432"><span>Log in to the CCE console.</span></li><li id="cce_10_0378__li3574131225117"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0378__b7460541049">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0378__b13472541549">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_10_0378__li84178566546"><span>Click <strong id="cce_10_0378__b257061514129">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_10_0378__ul65541240105712"><li id="cce_10_0378__li871083119597"><strong id="cce_10_0378__b122496324913">Storage Volume Claim Type</strong>: Select a storage type as required.</li><li id="cce_10_0378__li79551012165515"><strong id="cce_10_0378__b119820111173">PVC Name</strong>: Enter a PVC name.</li><li id="cce_10_0378__li201219334507"><strong id="cce_10_0378__b03011917104">Creation Method</strong>: Select <span class="uicontrol" id="cce_10_0378__uicontrol026114820551"><b>Dynamic creation</b></span>.</li><li id="cce_10_0378__li101354814553"><strong id="cce_10_0378__b1710110531270">Storage Classes</strong>: Select the required storage class. The following storage resources can be dynamically provisioned:<ul id="cce_10_0378__ul756519426562"><li id="cce_10_0378__li4796104055617"><strong id="cce_10_0378__b188621174917">csi-disk</strong>: EVS disk.</li><li id="cce_10_0378__li157685016562"><strong id="cce_10_0378__b91214156163">csi-nas</strong>: SFS Capacity-Oriented file storage.</li><li id="cce_10_0378__li5481205435613"><strong id="cce_10_0378__b16356104221018">csi-obs</strong>: OBS bucket.</li></ul>
+</li><li id="cce_10_0378__li19689536844"><strong id="cce_10_0378__b1264433419112">AZ</strong> (supported only by EVS): Select the AZ where the EVS disk is located.</li><li id="cce_10_0378__li11271134215416"><strong id="cce_10_0378__b189489272187">Disk Type</strong> (supported only by EVS disks): Select an EVS disk type as required. EVS disk types vary in different regions.<ul id="cce_10_0378__cce_10_0378_ul161367711350"><li id="cce_10_0378__li1216105512268">Common I/O</li><li id="cce_10_0378__cce_10_0378_li19136197193514">High I/O</li><li id="cce_10_0378__cce_10_0378_li613613717357">Ultra-high I/O</li></ul>
+</li><li id="cce_10_0378__li36181046115814"><strong id="cce_10_0378__b42952016447">Access Mode</strong>: <strong id="cce_10_0378__b7449371141">ReadWriteOnce</strong> and <strong id="cce_10_0378__b896919391840">ReadWriteMany</strong> are supported. For details, see <a href="#cce_10_0378__section43881411172418">Volume Access Modes</a>.</li><li id="cce_10_0378__li73361425175819"><strong id="cce_10_0378__b13562541043">Capacity (GiB)</strong> (only EVS and SFS are supported): storage capacity. This parameter is not available for OBS.</li><li id="cce_10_0378__li1233257917"><strong id="cce_10_0378__b515331016181">Encryption</strong> (supported only for EVS and SFS): Select <strong id="cce_10_0378__b14774947205218">Encryption</strong>. After selecting this option, you need to select a key.</li><li id="cce_10_0378__li1595213531529"><strong id="cce_10_0378__b895518512511">Secret</strong> (supported only for OBS): Select an access key for OBS. For details, see <a href="cce_10_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</li></ul>
+</p></li><li id="cce_10_0378__li164393175720"><span>Click <strong id="cce_10_0378__b0200411262">Create</strong>.</span></li></ol>
+<p id="cce_10_0378__p1591216145220"><strong id="cce_10_0378__b135191451068">Using YAML</strong></p>
+<p id="cce_10_0378__p22646414138">Example YAML for EVS</p>
+<ul id="cce_10_0378__ul07311455181312"><li id="cce_10_0378__li5731205521320"><strong id="cce_10_0378__b1794815519710">failure-domain.beta.kubernetes.io/region</strong>: region where the cluster is located.<p id="cce_10_0378__p92141648132614">For details about the value of <strong id="cce_10_0378__b2712171851210">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</li><li id="cce_10_0378__li11731175541310"><strong id="cce_10_0378__b480954810718">failure-domain.beta.kubernetes.io/zone</strong>: AZ where the EVS volume is created. It must be the same as the AZ planned for the workload. <p id="cce_10_0378__p11213204892611">For details about the value of <strong id="cce_10_0378__b138791842579">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</li></ul>
+<pre class="screen" id="cce_10_0378__screen1881364111517">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-auto-example
+  namespace: default
+  annotations:
+    everest.io/disk-volume-type: SSD    # EVS disk type.
+    everest.io/crypt-key-id: 0992dbda-6340-470e-a74e-4f0db288ed82  # (Optional) Key ID. The key is used to encrypt EVS disks.
+    
+  labels:
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0378__text13180166132919">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: 
+spec:
+  accessModes:
+  - ReadWriteOnce               # The value must be <strong id="cce_10_0378__b1486015141019">ReadWriteOnce</strong> for EVS.
+  resources:
+    requests:
+      storage: 10Gi             # EVS disk capacity, ranging from <strong id="cce_10_0378__b5275042113914">1</strong> to <strong id="cce_10_0378__b1018034419392">32768</strong>.
+  storageClassName: csi-disk    # The storage class type is EVS.</pre>
+<div class="p" id="cce_10_0378__p107386209910">Example YAML for file storage:<pre class="screen" id="cce_10_0378__screen593312262092">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  pvc-sfs-auto-example
+  namespace: default
+  annotations: 
+    everest.io/crypt-key-id: 0992dbda-6340-470e-a74e-4f0db288ed82  # (Optional) Key ID. The key is used to encrypt file systems.
+    everest.io/crypt-alias: sfs/default                            # (Optional) Key name. Mandatory for encrypted volumes.
+    everest.io/crypt-domain-id: 2cd7ebd02e4743eba4e6342c09e49344   # (Optional) ID of the tenant to which the encrypted volume belongs. Mandatory for encrypted volumes.
+spec:
+  accessModes:
+  - ReadWriteMany               # The value must be <strong id="cce_10_0378__b145834251204">ReadWriteMany</strong> for SFS.
+  resources:
+    requests:
+      storage: 10Gi                # SFS file system size.
+  storageClassName: csi-nas        # The storage class type is SFS.</pre>
+</div>
+<p id="cce_10_0378__p974417351315">Example YAML for OBS:</p>
+<pre class="screen" id="cce_10_0378__screen115819219138">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: obs-warm-provision-pvc
+  namespace: default
+  annotations:
+    everest.io/obs-volume-type: STANDARD      # OBS bucket type. Currently, standard (STANDARD) and infrequent access (WARM) are supported.
+    csi.storage.k8s.io/fstype: obsfs          # File type. <strong id="cce_10_0378__b1332103301411">obsfs</strong> indicates to create a parallel file system (recommended), and <strong id="cce_10_0378__b1975718616169">s3fs</strong> indicates to create an OBS bucket.
+    
+spec:
+  accessModes:
+  - ReadWriteMany             # The value must be <strong id="cce_10_0378__b722990515">ReadWriteMany</strong> for OBS.
+  resources:
+    requests:
+      storage: 1Gi                 # This field is valid only for verification (fixed to <strong id="cce_10_0378__b1342314529268">1</strong>, cannot be empty or <strong id="cce_10_0378__b1561355172616">0</strong>). The value setting does not take effect for OBS buckets.
+  storageClassName: csi-obs        # The storage class type is OBS.</pre>
+</div>
+<div class="section" id="cce_10_0378__section139251655204319"><h4 class="sectiontitle">Using a PV to Create a PVC</h4><p id="cce_10_0378__p98558172443">If a PV has been created, you can create a PVC to apply for PV resources.</p>
+<p id="cce_10_0378__p326513510362"><strong id="cce_10_0378__b930094518414">Using the CCE Console</strong></p>
+<ol id="cce_10_0378__ol126520513363"><li id="cce_10_0378__li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_10_0378__li14265165103610"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0378__b510716121074">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0378__b13115112272">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_10_0378__li42661759363"><span>Click <strong id="cce_10_0378__b1932214131761">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_10_0378__ul2026615203615"><li id="cce_10_0378__li1516061012110"><strong id="cce_10_0378__b71801311114">Storage Volume Claim Type</strong>: Select a storage type as required.</li><li id="cce_10_0378__li22055148111"><strong id="cce_10_0378__b12926914141115">PVC Name</strong>: name of a PVC.</li><li id="cce_10_0378__li1426615103615"><strong id="cce_10_0378__b247117258719">Creation Method</strong>: Select <span class="uicontrol" id="cce_10_0378__uicontrol1147220251073"><b>Existing storage volume</b></span>.</li><li id="cce_10_0378__li202662051369"><strong id="cce_10_0378__b1342813319920">PV</strong>: Select the volume to be associated, that is, the PV.</li></ul>
+</p></li><li id="cce_10_0378__li10266451367"><span>Click <strong id="cce_10_0378__b6143445864">Create</strong>.</span></li></ol>
+<p id="cce_10_0378__p7439164710549"><strong id="cce_10_0378__b56823306">Using YAML</strong></p>
+<p id="cce_10_0378__p12978164617616">Example YAML for EVS</p>
+<ul id="cce_10_0378__ul17488175512616"><li id="cce_10_0378__cce_10_0378_li5731205521320"><strong id="cce_10_0378__cce_10_0378_b1794815519710">failure-domain.beta.kubernetes.io/region</strong>: region where the cluster is located.<p id="cce_10_0378__cce_10_0378_p92141648132614">For details about the value of <strong id="cce_10_0378__cce_10_0378_b2712171851210">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</li><li id="cce_10_0378__cce_10_0378_li11731175541310"><strong id="cce_10_0378__cce_10_0378_b480954810718">failure-domain.beta.kubernetes.io/zone</strong>: AZ where the EVS volume is created. It must be the same as the AZ planned for the workload. <p id="cce_10_0378__cce_10_0378_p11213204892611">For details about the value of <strong id="cce_10_0378__cce_10_0378_b138791842579">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</li></ul>
+<pre class="screen" id="cce_10_0378__screen102203545714">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-test
+  namespace: default
+  annotations:
+    everest.io/disk-volume-type: SAS                                # EVS disk type.
+    everest.io/crypt-key-id: fe0757de-104c-4b32-99c5-ee832b3bcaa3   # (Optional) Key ID. The key is used to encrypt EVS disks.
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+    
+  labels:
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0378__text52766166259">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: 
+spec:
+  accessModes:
+  - ReadWriteOnce               # The value must be <strong id="cce_10_0378__b1057835801416">ReadWriteOnce</strong> for EVS.
+  resources:
+    requests:
+      storage: 10Gi              
+  storageClassName: csi-disk     # Storage class name. The value is <strong id="cce_10_0378__b1255014871510">csi-disk</strong> for EVS.
+  volumeName: cce-evs-test       # PV name.</pre>
+<div class="p" id="cce_10_0378__p19436033307">Example YAML for SFS:<pre class="screen" id="cce_10_0378__screen19251020183010">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-sfs-test
+  namespace: default
+  annotations:
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+spec:
+  accessModes:
+  - ReadWriteMany              # The value must be <strong id="cce_10_0378__b2804933201614">ReadWriteMany</strong> for SFS.
+  resources:
+    requests:
+      storage: 100Gi           # Requested PVC capacity
+  storageClassName: csi-nas    # Storage class name
+  volumeName: cce-sfs-test     # PV name</pre>
+</div>
+<p id="cce_10_0378__p1345711510305">Example YAML for OBS:</p>
+<pre class="screen" id="cce_10_0378__screen51531623153015">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-obs-test
+  namespace: default
+  annotations:
+    everest.io/obs-volume-type: STANDARD                         # OBS bucket type. Currently, standard (STANDARD) and infrequent access (WARM) are supported.
+    csi.storage.k8s.io/fstype: s3fs                              # File type. <strong id="cce_10_0378__b1286718336182">obsfs</strong> indicates to create a parallel file system (recommended), and <strong id="cce_10_0378__b486812330189">s3fs</strong> indicates to create an OBS bucket.
+    csi.storage.k8s.io/node-publish-secret-name: test-user
+    csi.storage.k8s.io/node-publish-secret-namespace: default
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+    
+spec:
+  accessModes:
+  - ReadWriteMany             # The value must be <strong id="cce_10_0378__b4761194710193">ReadWriteMany</strong> for OBS.
+  resources:
+    requests:
+      storage: 1Gi            # Requested PVC capacity. This field is valid only for verification (fixed to <strong id="cce_10_0378__b14633439152216">1</strong>, cannot be empty or <strong id="cce_10_0378__b551864332219">0</strong>). The value setting does not take effect for OBS buckets.
+  storageClassName: csi-obs   # Storage class name. The value is <strong id="cce_10_0378__b5631153115206">csi-obs</strong> for OBS.
+  volumeName: cce-obs-test    # PV name.</pre>
+<div class="p" id="cce_10_0378__p1786519513614">Example YAML for SFS Turbo:<pre class="screen" id="cce_10_0378__screen34571718203816">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-test
+  namespace: default
+  annotations:
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+spec:
+  accessModes:
+    - ReadWriteMany               # The value must be <strong id="cce_10_0378__b618511579379">ReadWriteMany</strong> for SFS Turbo.
+  resources:
+    requests:
+      storage: 100Gi              # Requested PVC capacity.
+  storageClassName: csi-sfsturbo  # Storage class name. The value is <strong id="cce_10_0378__b594583113716">csi-sfsturbo</strong> for SFS Turbo.
+  volumeName: pv-sfsturbo-test         # PV name.</pre>
+</div>
+</div>
+<div class="section" id="cce_10_0378__section181681453141710"><h4 class="sectiontitle">Using a Snapshot to Creating a PVC</h4><p id="cce_10_0378__cce_10_0381_p614685193310">The disk type, encryption setting, and disk mode of the created EVS PVC are consistent with those of the snapshot's source EVS disk.</p>
+<p id="cce_10_0378__cce_10_0381_p326513510362"><strong id="cce_10_0378__cce_10_0381_b11698411123514">Using the CCE Console</strong></p>
+<ol id="cce_10_0378__cce_10_0381_ol126520513363"><li id="cce_10_0378__cce_10_0381_li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_10_0378__cce_10_0381_li14265165103610"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0378__cce_10_0381_b79941532173015">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0378__cce_10_0381_b19994132133020">Snapshots and Backups</strong> tab.</span></li><li id="cce_10_0378__cce_10_0381_li42661759363"><span>Locate the snapshot for which you want to create a PVC, click <span class="uicontrol" id="cce_10_0378__cce_10_0381_uicontrol4916544164518"><b>Create PVC</b></span>, and specify the PVC name in the displayed dialog box.</span></li><li id="cce_10_0378__cce_10_0381_li10266451367"><span>Click <strong id="cce_10_0378__cce_10_0381_b22763361837">Create</strong>.</span></li></ol>
+<p id="cce_10_0378__cce_10_0381_p7439164710549"><strong id="cce_10_0378__cce_10_0381_b923212304347">Creating from YAML</strong></p>
+<pre class="screen" id="cce_10_0378__cce_10_0381_screen12534181311281">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-test
+  namespace: default
+  annotations:
+    everest.io/disk-volume-type: SSD     # EVS disk type, which must be the same as that of the source EVS disk of the snapshot.
+  labels:
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0378__cce_10_0381_text52766166259">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: 
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: '10'
+  storageClassName: csi-disk
+  dataSource:
+    name: cce-disksnap-test             # Snapshot name
+    kind: VolumeSnapshot
+    apiGroup: snapshot.storage.k8s.io</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0379.html b/docs/cce/umn/cce_10_0379.html
new file mode 100644
index 00000000..6da88d0d
--- /dev/null
+++ b/docs/cce/umn/cce_10_0379.html
@@ -0,0 +1,398 @@
+<a name="cce_10_0379"></a><a name="cce_10_0379"></a>
+
+<h1 class="topictitle1">PersistentVolumes (PVs)</h1>
+<div id="body0000001177655236"><p id="cce_10_0379__li1672316411914p0">A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource.</p>
+<div class="section" id="cce_10_0379__section13324112843915"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0379__ul570363215217"><li id="cce_10_0379__li157039325522">On the new CCE console (the cluster needs to be <strong id="cce_10_0379__b10475191135215">upgraded to v1.19.10 or later</strong> and <strong id="cce_10_0379__b34814114520">the everest add-on needs to be upgraded to v1.2.10 or later</strong>), PVs are open to you for management. On the old CCE console, PVs can only be imported or dynamically created. You cannot manage the PV lifecycle on the console.</li><li id="cce_10_0379__li14703193211529">Multiple PVs can use the same SFS or SFS Turbo file system with the following restrictions:<ul id="cce_10_0379__ul489363612528"><li id="cce_10_0379__li1470303295214">An error may occur if multiple PVCs/PVs that use the same underlying SFS or SFS Turbo file system are mounted to the same pod.</li><li id="cce_10_0379__li5703832125210">The <strong id="cce_10_0379__b1172729111913">persistentVolumeReclaimPolicy</strong> parameter in the PVs must be set to <strong id="cce_10_0379__b3179729171920">Retain</strong>. Otherwise, when a PV is deleted, the associated underlying volume may be deleted. In this case, other PVs associated with the underlying volume may be abnormal.</li><li id="cce_10_0379__li1970311324526">When the underlying volume is repeatedly used, it is recommended that ReadWriteMany be implemented at the application layer to prevent data overwriting and loss.</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0379__section43881411172418"><h4 class="sectiontitle">Volume Access Modes</h4><p id="cce_10_0379__p3855173814011">PVs can be mounted to the host system only in the mode supported by underlying storage resources. For example, a file storage system can be read and written by multiple nodes, but an EVS disk can be read and written by only one node.</p>
+<ul id="cce_10_0379__ul15491194720247"><li id="cce_10_0379__li649112478240">ReadWriteOnce: A volume can be mounted as read-write by a single node. This access mode is supported by EVS.</li><li id="cce_10_0379__li8491447162410">ReadWriteMany: A volume can be mounted as read-write by multiple nodes. This access mode is supported by SFS, OBS, and SFS Turbo.</li></ul>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0379__table773195654210" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Access modes supported by cloud storage</caption><thead align="left"><tr id="cce_10_0379__row773135617420"><th align="left" class="cellrowborder" valign="top" width="23.352335233523352%" id="mcps1.3.3.4.2.4.1.1"><p id="cce_10_0379__p10731155674211">Storage Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.023602360236026%" id="mcps1.3.3.4.2.4.1.2"><p id="cce_10_0379__p12731115614425">ReadWriteOnce</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.624062406240625%" id="mcps1.3.3.4.2.4.1.3"><p id="cce_10_0379__p3731556114214">ReadWriteMany</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0379__row773165604217"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0379__p12731185618427">EVS</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0379__p87311956124218">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0379__p27311556164218">×</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row17731956134214"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0379__p873115610428">SFS</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0379__p15731856104219">×</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0379__p1675417266441">√</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row1873105654216"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0379__p12731125644217">OBS</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0379__p47311556184213">×</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0379__p12369172711443">√</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row757122118433"><td class="cellrowborder" valign="top" width="23.352335233523352%" headers="mcps1.3.3.4.2.4.1.1 "><p id="cce_10_0379__p135713211435">SFS Turbo</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.023602360236026%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0379__p155713210434">×</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.624062406240625%" headers="mcps1.3.3.4.2.4.1.3 "><p id="cce_10_0379__p7960162715446">√</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0379__section19999142414413"><a name="cce_10_0379__section19999142414413"></a><a name="section19999142414413"></a><h4 class="sectiontitle">PV Reclaim Policy</h4><p id="cce_10_0379__p10997445184415">A PV reclaim policy is used to delete or reclaim underlying volumes when a PVC is deleted. The value can be <strong id="cce_10_0379__b1123512274416">Delete</strong> or <strong id="cce_10_0379__b1351430194110">Retain</strong>.</p>
+<ul id="cce_10_0379__ul269114316456"><li id="cce_10_0379__li1469115319456"><strong id="cce_10_0379__b156721435302">Delete</strong>: When a PVC is deleted, the PV and underlying storage resources are deleted.</li><li id="cce_10_0379__li1251938134519"><strong id="cce_10_0379__b184784711304">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After a PVC is deleted, the PV resource is in the Released state and cannot be bound to the PVC again.</li></ul>
+<p id="cce_10_0379__p349715413273">Everest also allows you to delete a PVC without deleting underlying storage resources. This function can be achieved only by using a YAML file. Set the PV reclaim policy to <strong id="cce_10_0379__b172838135325">Delete</strong> and add <strong id="cce_10_0379__b13789655114617">annotations"everest.io/reclaim-policy: retain-volume-only"</strong>. In this way, when the PVC is deleted, the PV resource is deleted, but the underlying storage resources are retained.</p>
+</div>
+<div class="section" id="cce_10_0379__section12315152464120"><h4 class="sectiontitle">Creating an EVS Volume</h4><div class="note" id="cce_10_0379__note4966151612334"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0379__p172419355397">The requirements for creating an EVS volume are as follows:</p>
+<ul id="cce_10_0379__ul10811145813912"><li id="cce_10_0379__li188111358183910">System disks, DSS disks, and shared disks cannot be used.</li><li id="cce_10_0379__li5811258143917">The EVS disk is one of the supported types (common I/O, high I/O, and ultra-high I/O), and the EVS disk device type is SCSI.</li><li id="cce_10_0379__li181125873910">The EVS disk is not frozen or used, and the status is available.</li><li id="cce_10_0379__li1981115833910">If the EVS disk is encrypted, the key must be available.</li></ul>
+</div></div>
+<p id="cce_10_0379__p1814111468317"><strong id="cce_10_0379__b514795517502">Using the CCE Console</strong></p>
+<ol id="cce_10_0379__ol1579572174320"><li id="cce_10_0379__li1179513219432"><span>Log in to the CCE console.</span></li><li id="cce_10_0379__li3574131225117"><span>Click the cluster name and access the cluster console. Choose <strong id="cce_10_0379__b35991414523">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0379__b659954165217">PersistentVolumes (PVs)</strong> tab.</span></li><li id="cce_10_0379__li84178566546"><span>Click <strong id="cce_10_0379__b12969112613534">Create Volume</strong> in the upper right corner. In the dialog box displayed, set the volume parameters.</span><p><ul id="cce_10_0379__ul65541240105712"><li id="cce_10_0379__li6554134018571"><strong id="cce_10_0379__b181509125544">Volume Type</strong>: Select <span class="uicontrol" id="cce_10_0379__uicontrol730816341816"><b>EVS</b></span>.</li><li id="cce_10_0379__li1285964185815"><strong id="cce_10_0379__b78211565514">EVS</strong>: </li><li id="cce_10_0379__li17965152811588"><strong id="cce_10_0379__b93920213568">PV Name</strong>: Enter a PV name.</li><li id="cce_10_0379__li36181046115814"><strong id="cce_10_0379__b32871140195618">Access Mode</strong>: ReadWriteOnce</li><li id="cce_10_0379__li1186342512595"><strong id="cce_10_0379__b2694111195715">Reclaim Policy</strong>: Select <strong id="cce_10_0379__b16521832185716">Delete</strong> or <strong id="cce_10_0379__b172961234165711">Retain</strong> as required. For details, see <a href="#cce_10_0379__section19999142414413">PV Reclaim Policy</a>.</li></ul>
+</p></li><li id="cce_10_0379__li164393175720"><span>Click <strong id="cce_10_0379__b1616873910577">Create</strong>.</span></li></ol>
+<p id="cce_10_0379__p19425131413016"><strong id="cce_10_0379__b367774465719">Using YAML</strong></p>
+<pre class="screen" id="cce_10_0379__screen19782225103016">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+    everest.io/reclaim-policy: retain-volume-only         # (Optional) The PV is deleted while the underlying volume is retained.
+  name: cce-evs-test
+  labels:
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0379__text163921842424">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: 
+spec:
+  accessModes:
+    - ReadWriteOnce     # Access mode. The value is fixed to <strong id="cce_10_0379__b1130816341218">ReadWriteOnce</strong> for EVS.
+  capacity:
+    storage: 10Gi       #  EVS disk capacity, in the unit of Gi. The value ranges from <strong id="cce_10_0379__b103441922104811">1</strong> to <strong id="cce_10_0379__b299912315489">32768</strong>.
+  csi:
+    driver: disk.csi.everest.io     # Dependent storage driver for the mounting.
+    fsType: ext4
+    volumeHandle: 459581af-e78c-4356-9e78-eaf9cd8525eb   # Volume ID of the EVS disk.
+    volumeAttributes:
+      everest.io/disk-mode: SCSI           # Device type of the EVS disk. Only SCSI is supported.
+      everest.io/disk-volume-type: SAS     # EVS disk type.
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+      everest.io/crypt-key-id: 0992dbda-6340-470e-a74e-4f0db288ed82    # (Optional) Encryption key ID. Mandatory for an encrypted disk.
+  persistentVolumeReclaimPolicy: Delete    # Reclain policy.
+  storageClassName: csi-disk               # Storage class name. The value must be <strong id="cce_10_0379__b104188454440">csi-disk</strong>.</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0379__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0379__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="43.81%" id="mcps1.3.5.7.2.3.1.1"><p id="cce_10_0379__p18191161619356">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.19%" id="mcps1.3.5.7.2.3.1.2"><p id="cce_10_0379__p1919116161353">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0379__row1693515261514"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_10_0379__p59357261258">everest.io/reclaim-policy: retain-volume-only</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p125111321387">This field is optional.</p>
+<p id="cce_10_0379__p725113210818">Currently, only <strong id="cce_10_0379__b935461044510">retain-volume-only</strong> is supported.</p>
+<p id="cce_10_0379__p12251163219812">This field is valid only when the everest version is 1.2.9 or later and the reclaim policy is Delete. If the reclaim policy is Delete and the current value is <strong id="cce_10_0379__b11319542538">retain-volume-only</strong>, the associated PV is deleted while the underlying storage volume is retained, when a PVC is deleted.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row6232511129"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_10_0379__p857144622619">failure-domain.beta.kubernetes.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p991323413456">Region where the cluster is located.</p>
+<p id="cce_10_0379__p92141648132614">For details about the value of <strong id="cce_10_0379__b1384613501679">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row2318123021219"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_10_0379__p957446102612">failure-domain.beta.kubernetes.io/zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p3378436154620">AZ where the EVS volume is created. It must be the same as the AZ planned for the workload.</p>
+<p id="cce_10_0379__p11213204892611">For details about the value of <strong id="cce_10_0379__b1118105818711">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row8618742488"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_10_0379__p12618134114814">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p146181448489">Volume ID of the EVS disk.</p>
+<p id="cce_10_0379__p1069118611491">To obtain the volume ID, log in to the <strong id="cce_10_0379__b1542417021417">Cloud Server Console</strong>. In the navigation pane, choose <strong id="cce_10_0379__b74242021419">Elastic Volume Service</strong> &gt; <strong id="cce_10_0379__b1042470131415">Disks</strong>. Click the name of the target EVS disk to go to its details page. On the <strong id="cce_10_0379__b15425200171419">Summary</strong> tab page, click the copy button after <strong id="cce_10_0379__b7425120161413">ID</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row6149172219514"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_10_0379__p2137102735114">everest.io/disk-volume-type</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p191376271512">EVS disk type. All letters are in uppercase.</p>
+<ul id="cce_10_0379__ul1099913293217"><li id="cce_10_0379__li769621143010"><strong id="cce_10_0379__b039213118811">SATA</strong>: common I/O</li><li id="cce_10_0379__li11999525321"><strong id="cce_10_0379__b95698331488">SAS</strong>: high I/O</li><li id="cce_10_0379__li199991629326"><strong id="cce_10_0379__b11803192152611">SSD</strong>: ultra-high I/O</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0379__row66049431458"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_10_0379__p16604154314513">everest.io/crypt-key-id</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p46531143965">Encryption key ID. This field is mandatory when the volume is an encrypted volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row142351542711"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.5.7.2.3.1.1 "><p id="cce_10_0379__p1323585418713">persistentVolumeReclaimPolicy</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p29951981584">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
+<p id="cce_10_0379__p1995198389">The Delete and Retain policies are supported.</p>
+<p id="cce_10_0379__p139951481289"><strong id="cce_10_0379__b10742153312475">Delete</strong>:</p>
+<ul id="cce_10_0379__ul1999516818817"><li id="cce_10_0379__li179951481089">If <strong id="cce_10_0379__b12454191784810">everest.io/reclaim-policy</strong> is not specified, both the PV and EVS disk are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1399528980">If <strong id="cce_10_0379__b10124152310482">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b1512416231481">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the EVS resources are retained.</li></ul>
+<p id="cce_10_0379__p1099515819810"><strong id="cce_10_0379__b1911716468486">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
+<p id="cce_10_0379__p1849613104811">If high data security is required, you are advised to select <strong id="cce_10_0379__b9484012155617">Retain</strong> to prevent data from being deleted by mistake.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0379__section1923816719915"><h4 class="sectiontitle">Creating an SFS Volume</h4><div class="note" id="cce_10_0379__note1212718518324"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0379__ul52412216266"><li id="cce_10_0379__li12241421267">The SFS file system and the cluster must be in the same VPC.</li></ul>
+</div></div>
+<p id="cce_10_0379__p151675055219"><strong id="cce_10_0379__b1066973935218">Using the CCE Console</strong></p>
+<ol id="cce_10_0379__ol1728728095"><li id="cce_10_0379__li162871881492"><span>Log in to the CCE console.</span></li><li id="cce_10_0379__li72871082915"><span>Click the cluster name and access the cluster console. Choose <strong id="cce_10_0379__b18434115517577">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0379__b8434195575719">PersistentVolumes (PVs)</strong> tab.</span></li><li id="cce_10_0379__li172878819912"><span>Click <strong id="cce_10_0379__b13994134982316">Create Volume</strong> in the upper right corner. In the dialog box displayed, set the volume parameters.</span><p><ul id="cce_10_0379__ul10287781914"><li id="cce_10_0379__li1928816812919"><strong id="cce_10_0379__b1449254811267">Volume Type</strong>: Select <span class="uicontrol" id="cce_10_0379__uicontrol55121254122316"><b>SFS</b></span>.</li><li id="cce_10_0379__li18288198297">Select SFS resources.</li><li id="cce_10_0379__li22881681898"><strong id="cce_10_0379__b109801159403">PV Name</strong>: Enter a PV name.</li><li id="cce_10_0379__li52886818917"><strong id="cce_10_0379__b07608139244">Access Mode</strong>: ReadWriteMany</li><li id="cce_10_0379__li0288281395"><strong id="cce_10_0379__b1968412347111">Reclaim Policy</strong>: Select <strong id="cce_10_0379__b568483413115">Delete</strong> or <strong id="cce_10_0379__b1068410345115">Retain</strong> as required. For details, see <a href="#cce_10_0379__section19999142414413">PV Reclaim Policy</a>.</li><li id="cce_10_0379__li196272277119"><strong id="cce_10_0379__b5622424164913">Mount Options</strong>: mount options. For details about the options, see <a href="cce_10_0337.html">Setting Mount Options</a>.</li></ul>
+</p></li><li id="cce_10_0379__li528814817918"><span>Click <strong id="cce_10_0379__b20930144317578">Create</strong>.</span></li></ol>
+<p id="cce_10_0379__p391519221529"><strong id="cce_10_0379__b126616443117">Using YAML</strong></p>
+<pre class="screen" id="cce_10_0379__screen49291727135211">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+    everest.io/reclaim-policy: retain-volume-only      # (Optional) The PV is deleted while the underlying volume is retained.
+  name: cce-sfs-test
+spec:
+  accessModes:
+  - ReadWriteMany      # Access mode. The value must be <strong id="cce_10_0379__b1319143120306">ReadWriteMany</strong> for SFS.
+  capacity:
+    storage: 1Gi       # File storage capacity.
+  csi:
+    driver: disk.csi.everest.io   # Mount the dependent storage driver.
+    fsType: nfs
+    volumeHandle: 30b3d92a-0bc7-4610-b484-534660db81be   # SFS file system ID.
+    volumeAttributes:
+      everest.io/share-export-location:   # Shared path of the file storage
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+  persistentVolumeReclaimPolicy: Retain    # Reclaim policy.
+  storageClassName: csi-nas                # Storage class name
+  mountOptions: []                         # Mount options</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0379__table71355385813" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0379__row141351434587"><th align="left" class="cellrowborder" valign="top" width="32.5%" id="mcps1.3.6.7.2.3.1.1"><p id="cce_10_0379__p151358385810">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="67.5%" id="mcps1.3.6.7.2.3.1.2"><p id="cce_10_0379__p7135331587">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0379__row16418161611148"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.7.2.3.1.1 "><p id="cce_10_0379__p15990111731412">everest.io/reclaim-policy: retain-volume-only</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.7.2.3.1.2 "><p id="cce_10_0379__p499071711415">This field is optional.</p>
+<p id="cce_10_0379__p16990141718140">Currently, only <strong id="cce_10_0379__b188571710144516">retain-volume-only</strong> is supported.</p>
+<p id="cce_10_0379__p199011711412">This field is valid only when the everest version is 1.2.9 or later and the reclaim policy is Delete. If the reclaim policy is Delete and the current value is <strong id="cce_10_0379__b1465612317343">retain-volume-only</strong>, the associated PV is deleted while the underlying storage volume is retained, when a PVC is deleted.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row1713683175810"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.7.2.3.1.1 "><p id="cce_10_0379__p20136133145811">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.7.2.3.1.2 "><ul id="cce_10_0379__ul5922134121016"><li id="cce_10_0379__li14922114101016">If SFS Capacity-Oriented file storage is used, enter the file storage ID.<p id="cce_10_0379__p1182583515019"><a name="cce_10_0379__li14922114101016"></a><a name="li14922114101016"></a>On the management console, choose <strong id="cce_10_0379__b10484115363517">Service List</strong> &gt; <strong id="cce_10_0379__b94853534358">Storage</strong> &gt; <strong id="cce_10_0379__b4485185315356">Scalable File Service</strong>. In the SFS file system list, click the name of the target file system and copy the content following <strong id="cce_10_0379__b13486115393518">ID</strong> on the page displayed.</p>
+</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0379__row12163348416"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.7.2.3.1.1 "><p id="cce_10_0379__p737873912413">everest.io/share-export-location</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.7.2.3.1.2 "><p id="cce_10_0379__p1737815391842">Shared path of the file system.</p>
+<p id="cce_10_0379__p13378143918414">On the management console, choose <strong id="cce_10_0379__b94193211363">Service List</strong> &gt; <strong id="cce_10_0379__b16513213613">Storage</strong> &gt; <strong id="cce_10_0379__b105153273610">Scalable File Service</strong>. You can obtain the shared path of the file system from the <strong id="cce_10_0379__b16543213617">Mount Address</strong> column.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row161237179516"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.7.2.3.1.1 "><p id="cce_10_0379__p201237171151">mountOptions</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.7.2.3.1.2 "><p id="cce_10_0379__p1912313175512">Mount options.</p>
+<p id="cce_10_0379__p78621554981">If not specified, the following configurations are used by default. For details, see <a href="cce_10_0337.html#cce_10_0337__section14888047833">SFS Volume Mount Options</a>.</p>
+<pre class="screen" id="cce_10_0379__screen1779155351116">mountOptions:
+- vers=3
+- timeo=600
+- nolock
+- hard</pre>
+</td>
+</tr>
+<tr id="cce_10_0379__row10670145113012"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.7.2.3.1.1 "><p id="cce_10_0379__p85401647163019">everest.io/crypt-key-id</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.7.2.3.1.2 "><p id="cce_10_0379__p8540154712305">Encryption key ID. This field is mandatory when the volume is an encrypted volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row10842104516303"><td class="cellrowborder" valign="top" width="32.5%" headers="mcps1.3.6.7.2.3.1.1 "><p id="cce_10_0379__p7540204719305">persistentVolumeReclaimPolicy</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.7.2.3.1.2 "><p id="cce_10_0379__p5540154712308">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
+<p id="cce_10_0379__p1154016478304">The options are as follows:</p>
+<p id="cce_10_0379__p11540124713309"><strong id="cce_10_0379__b168481115016">Delete</strong>:</p>
+<ul id="cce_10_0379__ul35408479304"><li id="cce_10_0379__li165401147123011">If <strong id="cce_10_0379__b443455145219">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1954054743014">If <strong id="cce_10_0379__b328165111520">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b5281512522">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the file storage resources are retained.</li></ul>
+<p id="cce_10_0379__p105411447133020"><strong id="cce_10_0379__b5414545203415">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
+<p id="cce_10_0379__p5668154145019">If high data security is required, you are advised to select <strong id="cce_10_0379__b15311756143410">Retain</strong> to prevent data from being deleted by mistake.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0379__section13401181013912"><h4 class="sectiontitle">Creating an OBS Volume</h4><div class="note" id="cce_10_0379__note6469180194217"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0379__p1454285216347">Secure containers do not support OBS volumes.</p>
+<p id="cce_10_0379__p17931173313573">A single user can create a maximum of 100 OBS buckets on the console. If you have a large number of CCE workloads and you want to mount an OBS bucket to every workload, you may easily run out of buckets. In this scenario, you are advised to use OBS through the OBS API or SDK and do not mount OBS buckets to the workload on the console.</p>
+</div></div>
+<p id="cce_10_0379__p737610317714"><strong id="cce_10_0379__b12674639155211">Using the CCE Console</strong></p>
+<ol id="cce_10_0379__ol4401171012916"><li id="cce_10_0379__li18401510597"><span>Log in to the CCE console.</span></li><li id="cce_10_0379__li1640171012911"><span>Click the cluster name and access the cluster console. Choose <strong id="cce_10_0379__b5437145545717">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0379__b7437055185711">PersistentVolumes (PVs)</strong> tab.</span></li><li id="cce_10_0379__li84017101192"><span>Click <strong id="cce_10_0379__b369010955215">Create Volume</strong> in the upper right corner. In the dialog box displayed, set the volume parameters.</span><p><ul id="cce_10_0379__ul340216101194"><li id="cce_10_0379__li840216105913"><strong id="cce_10_0379__b94016111527">Volume Type</strong>: Select <span class="uicontrol" id="cce_10_0379__uicontrol11401011155214"><b>OBS</b></span>.</li><li id="cce_10_0379__li154021610594">Select OBS resources.</li><li id="cce_10_0379__li440214102912"><strong id="cce_10_0379__b1198210593017">PV Name</strong>: Enter a PV name.</li><li id="cce_10_0379__li18402110994"><strong id="cce_10_0379__b1548122415216">Access Mode</strong>: ReadWriteMany</li><li id="cce_10_0379__li94020101797"><strong id="cce_10_0379__b1069511347111">Reclaim Policy</strong>: Select <strong id="cce_10_0379__b11695163417117">Delete</strong> or <strong id="cce_10_0379__b14695134916">Retain</strong> as required. For details, see <a href="#cce_10_0379__section19999142414413">PV Reclaim Policy</a>.</li><li id="cce_10_0379__li136581431111412"><strong id="cce_10_0379__b18136233135011">Secret</strong>: You can customize the access key (AK/SK) for mounting an OBS volume. You can use the AK/SK to create a secret and mount the secret to the PV. For details, see <a href="cce_10_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</li><li id="cce_10_0379__li0396131811133"><strong id="cce_10_0379__b15561301559">Mount Options</strong>: mount options. For details about the options, see <a href="cce_10_0337.html">Setting Mount Options</a>.</li></ul>
+</p></li><li id="cce_10_0379__li134021510390"><span>Click <strong id="cce_10_0379__b1293324355715">Create</strong>.</span></li></ol>
+<p id="cce_10_0379__p1013617396711"><strong id="cce_10_0379__b192694442119">Using YAML</strong></p>
+<pre class="screen" id="cce_10_0379__screen19407913135120">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+    everest.io/reclaim-policy: retain-volume-only         # (Optional) The PV is deleted while the underlying volume is retained.
+  name: cce-obs-test
+spec:
+  accessModes:
+  - ReadWriteMany                      # Access mode. The value must be <strong id="cce_10_0379__b1574233011312">ReadWriteMany</strong> for OBS.
+  capacity:
+    storage: 1Gi      # Storage capacity. This parameter is set only to meet the PV format requirements. It can be set to any value. The actual OBS space size is not limited by this value.
+  csi:
+    driver: obs.csi.everest.io        # Dependent storage driver for the mounting.
+    fsType: obsfs                      # OBS file type.
+    volumeHandle: cce-obs-bucket       # OBS bucket name.
+    volumeAttributes:
+      everest.io/obs-volume-type: STANDARD
+      everest.io/region: <span id="cce_10_0379__text69961862350">eu-de</span>
+      
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    nodePublishSecretRef:
+      name: test-user
+      namespace: default
+  persistentVolumeReclaimPolicy: Retain       # Reclaim policy.
+  storageClassName: csi-obs                   # Storage class name. The value must be <strong id="cce_10_0379__b107933401611">csi-obs</strong> for OBS.
+  mountOptions: []                            # Mount options.</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0379__table1897325023619" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0379__row2973195019365"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.7.7.2.3.1.1"><p id="cce_10_0379__p1973155063611">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.7.7.2.3.1.2"><p id="cce_10_0379__p139741150123614">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0379__row768273923117"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p87921540193114">everest.io/reclaim-policy: retain-volume-only</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p20792184011318">This field is optional.</p>
+<p id="cce_10_0379__p2792440143119">Currently, only <strong id="cce_10_0379__b686041020458">retain-volume-only</strong> is supported.</p>
+<p id="cce_10_0379__p19792164013313">This field is valid only when the everest version is 1.2.9 or later and the reclaim policy is Delete. If the reclaim policy is Delete and the current value is <strong id="cce_10_0379__b17571124317358">retain-volume-only</strong>, the associated PV is deleted while the underlying storage volume is retained, when a PVC is deleted.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row79175211559"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p15794144011386">fsType</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p9794134093811">File type. The value can be <strong id="cce_10_0379__b96261655191816">obsfs</strong> or <strong id="cce_10_0379__b1862610558185">s3fs</strong>. If the value is <strong id="cce_10_0379__b1362625513180">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_10_0379__b9627205531818">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. You are advised to set this field to <strong id="cce_10_0379__b2627125571818">obsfs</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row3112104155614"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p8846313115612">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p17846013115614">OBS bucket name.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row2974950133612"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p1497565093618">everest.io/obs-volume-type</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p1975145003618">Storage class, including <strong id="cce_10_0379__b13592133261910">STANDARD</strong> (standard bucket) and <strong id="cce_10_0379__b1359333251920">WARM</strong> (infrequent access bucket).</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row12975850123614"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p17975150193613">everest.io/region</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p8485153732813">Region where the OBS bucket is deployed.</p>
+<p id="cce_10_0379__p10975150173615">For details about the value of <strong id="cce_10_0379__en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row169751506362"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p1362313208576">nodePublishSecretRef</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p1214194318595">Access key (AK/SK) used for mounting the object storage volume. You can use the AK/SK to create a secret and mount it to the PV. For details, see <a href="cce_10_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row19499851182010"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p1549918517204">mountOptions</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p10499051132019">Mount options. For details, see <a href="cce_10_0337.html#cce_10_0337__section1254912109811">OBS Volume Mount Options</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row219716449316"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p1274655318312">persistentVolumeReclaimPolicy</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p1074616532313">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
+<p id="cce_10_0379__p10746105353119">The Delete and Retain policies are supported.</p>
+<p id="cce_10_0379__p147461153173114"><strong id="cce_10_0379__b1217715293503">Delete</strong>:</p>
+<ul id="cce_10_0379__ul14746853183117"><li id="cce_10_0379__li6746145317316">If <strong id="cce_10_0379__b14482181215481">everest.io/reclaim-policy</strong> is not specified, both the PV and OBS volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1874685393111">If <strong id="cce_10_0379__b178031918398">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b10264730133913">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the object storage resources are retained.</li></ul>
+<p id="cce_10_0379__p137462053133111"><strong id="cce_10_0379__b1818615163618">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
+<p id="cce_10_0379__p778102518503">If high data security is required, you are advised to select <strong id="cce_10_0379__b183971221163613">Retain</strong> to prevent data from being deleted by mistake.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0379__section746701219919"><h4 class="sectiontitle">Creating an SFS Turbo Volume</h4><div class="note" id="cce_10_0379__note575671812325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0379__p3756111883210">SFS Turbo and the cluster must be in the same VPC.</p>
+</div></div>
+<p id="cce_10_0379__p2262659131314"><strong id="cce_10_0379__b1467811394524">Using the CCE Console</strong></p>
+<ol id="cce_10_0379__ol64671112494"><li id="cce_10_0379__li134671121790"><span>Log in to the CCE console.</span></li><li id="cce_10_0379__li54677123913"><span>Click the cluster name and access the cluster console. Choose <strong id="cce_10_0379__b1444065565715">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0379__b7440125515719">PersistentVolumes (PVs)</strong> tab.</span></li><li id="cce_10_0379__li24671612796"><span>Click <strong id="cce_10_0379__b94231831122919">Create Volume</strong> in the upper right corner. In the dialog box displayed, set the volume parameters.</span><p><ul id="cce_10_0379__ul11467151218919"><li id="cce_10_0379__li13467412190"><strong id="cce_10_0379__b2321051135112">Volume Type</strong>: Select <span class="uicontrol" id="cce_10_0379__uicontrol43211651145117"><b>SFS Turbo</b></span>.</li><li id="cce_10_0379__li2467512496"><strong id="cce_10_0379__b546811291035">SFS Turbo</strong>: Select SFS Turbo resources.</li><li id="cce_10_0379__li204671812497"><strong id="cce_10_0379__b617544212294">PV Name</strong>: Enter a PV name.</li><li id="cce_10_0379__li64671812598"><strong id="cce_10_0379__b131526335521">Access Mode</strong>: ReadWriteMany</li><li id="cce_10_0379__li1941612261414"><strong id="cce_10_0379__b912111275211">Reclaim Policy</strong>: Select <strong id="cce_10_0379__b1512911295214">Retain</strong>. For details, see <a href="#cce_10_0379__section19999142414413">PV Reclaim Policy</a>.</li><li id="cce_10_0379__li5417422131416"><strong id="cce_10_0379__b9820142414526">Mount Options</strong>: mount options. For details about the options, see <a href="cce_10_0337.html">Setting Mount Options</a>.</li></ul>
+</p></li><li id="cce_10_0379__li54671212499"><span>Click <strong id="cce_10_0379__b13936164314575">Create</strong>.</span></li></ol>
+<p id="cce_10_0379__p104025526133"><strong id="cce_10_0379__b52733448114">Using YAML</strong></p>
+<pre class="screen" id="cce_10_0379__screen201943326121">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+  name: cce-sfsturbo-test
+spec:
+  accessModes:
+    - ReadWriteMany       # Access mode. The value must be <strong id="cce_10_0379__b1135143295219">ReadWriteMany</strong> for SFS Turbo.
+  capacity:
+    storage: 100.00Gi     # SFS Turbo volume capacity.
+  csi:
+    driver: sfsturbo.csi.everest.io    # Dependent storage driver for the mounting.
+    fsType: nfs
+    volumeHandle: 6674bd0a-d760-49de-bb9e-805c7883f047      # SFS Turbo volume ID.
+    volumeAttributes:
+      everest.io/share-export-location: 192.168.0.85:/      # Shared path of the SFS Turbo volume.
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+  persistentVolumeReclaimPolicy: Retain     # Reclaim policy.
+  storageClassName: csi-sfsturbo            # Storage class name. The value must be <strong id="cce_10_0379__b7909144555811">csi-sfsturbo</strong> for SFS Turbo.
+  mountOptions: []                          # Mount options.</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0379__table953204119" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0379__row1666206115"><th align="left" class="cellrowborder" valign="top" width="35.89%" id="mcps1.3.8.7.2.3.1.1"><p id="cce_10_0379__p1662017116">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="64.11%" id="mcps1.3.8.7.2.3.1.2"><p id="cce_10_0379__p56820513">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0379__row1061620713"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_10_0379__p2127205115">volumeHandle</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_10_0379__p331414324103">SFS Turbo volume ID.</p>
+<p id="cce_10_0379__p1455172961010">You can obtain the ID on the SFS Turbo storage instance details page on the SFS console.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row6115201810"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_10_0379__p1911172013115">everest.io/share-export-location</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_10_0379__p1812132017111">Shared path of the SFS Turbo volume.</p>
+</td>
+</tr>
+<tr id="cce_10_0379__row18678549121716"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_10_0379__p18225195111714">mountOptions</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_10_0379__p102261251111713">Mount options.</p>
+<p id="cce_10_0379__p16226251151710">If not specified, the following configurations are used by default. For details, see <a href="cce_10_0337.html#cce_10_0337__section14888047833">SFS Volume Mount Options</a>.</p>
+<pre class="screen" id="cce_10_0379__screen162263516171">mountOptions:
+- vers=3
+- timeo=600
+- nolock
+- hard</pre>
+</td>
+</tr>
+<tr id="cce_10_0379__row1761104195212"><td class="cellrowborder" valign="top" width="35.89%" headers="mcps1.3.8.7.2.3.1.1 "><p id="cce_10_0379__p166175137524">persistentVolumeReclaimPolicy</p>
+</td>
+<td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_10_0379__p146171913195219">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
+<p id="cce_10_0379__p1661719131526">The Delete and Retain policies are supported.</p>
+<p id="cce_10_0379__p261701305213"><strong id="cce_10_0379__b1861731316521">Delete</strong>:</p>
+<ul id="cce_10_0379__ul86171313175216"><li id="cce_10_0379__li661721310522">If <strong id="cce_10_0379__b4216103123615">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS Turbo volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li961781395213">If <strong id="cce_10_0379__b1417394393610">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b2173164333616">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the SFF Turbo resources are retained.</li></ul>
+<p id="cce_10_0379__p261761313522"><strong id="cce_10_0379__b38127815379">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
+<p id="cce_10_0379__p1361771316526">If high data security is required, you are advised to select <strong id="cce_10_0379__b2849435105615">Retain</strong> to prevent data from being deleted by mistake.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0380.html b/docs/cce/umn/cce_10_0380.html
new file mode 100644
index 00000000..857d6b61
--- /dev/null
+++ b/docs/cce/umn/cce_10_0380.html
@@ -0,0 +1,211 @@
+<a name="cce_10_0380"></a><a name="cce_10_0380"></a>
+
+<h1 class="topictitle1">StorageClass</h1>
+<div id="body0000001177815168"><p id="cce_10_0380__p6816345818">StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as csi-disk, csi-nas, and csi-obs by default. When defining a PVC, you can use a StorageClassName to automatically create a PV of the corresponding type and automatically create underlying storage resources.</p>
+<p id="cce_10_0380__p5271142713310">You can run the following command to query the storage classes that CCE supports. You can use the CSI plug-in provided by CCE to customize a storage class, which functions similarly as the default storage classes in CCE.</p>
+<pre class="screen" id="cce_10_0380__screen2027110274334"># kubectl get sc
+NAME                PROVISIONER                     AGE
+csi-disk            everest-csi-provisioner         17d          # Storage class for EVS disks
+csi-nas             everest-csi-provisioner         17d          # Storage class for SFS 1.0 file systems
+csi-obs             everest-csi-provisioner         17d          # Storage class for OBS buckets</pre>
+<p id="cce_10_0380__p1348743213278">After a StorageClass is set, PVs can be automatically created and maintained. You only need to specify the StorageClass when creating a PVC, which greatly reduces the workload.</p>
+<p id="cce_10_0380__p17360330819">In addition to the predefined storage classes provided by CCE, you can also customize storage classes. The following sections describe the application status, solutions, and methods of customizing storage classes.</p>
+<div class="section" id="cce_10_0380__section18703932139"><h4 class="sectiontitle">Challenges</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p19810642103411">When using storage resources in CCE, the most common method is to specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b1439518042014">storageClassName</strong> to define the type of storage resources to be created when creating a PVC. The following configuration shows how to use a PVC to apply for an SAS (high I/O) EVS disk (block storage).</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen146941631606">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-example
+  namespace: default
+  annotations:
+    everest.io/disk-volume-type: SAS
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: csi-disk</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p10416164023811">If you need to specify the EVS disk type, you can set the <strong id="cce_10_0380__cce_bestpractice_00281_0_b1327345035413">everest.io/disk-volume-type</strong> field. The value <strong id="cce_10_0380__cce_bestpractice_00281_0_b1527965015414">SAS</strong> is used as an example here, indicating the high I/O EVS disk type. Or you can choose <strong id="cce_10_0380__cce_bestpractice_00281_0_b18796143718507">SATA</strong> (common I/O) and <strong id="cce_10_0380__cce_bestpractice_00281_0_b5279250115416">SSD</strong> (ultra-high I/O).</p>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p1992812244296">This configuration method may not work if you want to:</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_0_ul1666681113305"><li id="cce_10_0380__cce_bestpractice_00281_0_li26671211203012">Set <strong id="cce_10_0380__cce_bestpractice_00281_0_b19384122374818">storageClassName</strong> only, which is simpler than specifying the EVS disk type by using <strong id="cce_10_0380__cce_bestpractice_00281_0_b1043282143520">everest.io/disk-volume-type</strong>.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li1430122517314">Avoid modifying YAML files or Helm charts. Some users switch from self-built or other Kubernetes services to CCE and have written YAML files of many applications. In these YAML files, different types of storage resources are specified by different StorageClassNames. When using CCE, they need to modify a large number of YAML files or Helm charts to use storage resources, which is labor-consuming and error-prone.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li6714783711">Set the default <strong id="cce_10_0380__cce_bestpractice_00281_0_b3414714817">storageClassName</strong> for all applications to use the default storage class. In this way, you can create storage resources of the default type without needing to specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b15163103104815">storageClassName</strong> in the YAML file.</li></ul>
+</div>
+<div class="section" id="cce_10_0380__section1520511451"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p33361127181019">This section describes how to set a custom storage class in CCE and how to set the default storage class. You can specify different types of storage resources by setting <strong id="cce_10_0380__cce_bestpractice_00281_0_b15705152195010">storageClassName</strong>.</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_0_ul1394816541798"><li id="cce_10_0380__cce_bestpractice_00281_0_li1494865412920">For the first scenario, you can define custom storageClassNames for SAS and SSD EVS disks. For example, define a storage class named <strong id="cce_10_0380__cce_bestpractice_00281_0_b11954204618017">csi-disk-sas</strong> for creating SAS disks. The following figure shows the differences before and after you use a custom storage class.<p id="cce_10_0380__cce_bestpractice_00281_0_p1639843625220"><span><img id="cce_10_0380__cce_bestpractice_00281_0_image62065521613" src="en-us_image_0000001102275444.png"></span></p>
+</li><li id="cce_10_0380__cce_bestpractice_00281_0_li112521973108">For the second scenario, you can define a storage class with the same name as that in the existing YAML file without needing to modify <strong id="cce_10_0380__cce_bestpractice_00281_0_b13346387104">storageClassName</strong> in the YAML file.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li595443471215">For the third scenario, you can set the default storage class as described below to create storage resources without specifying <strong id="cce_10_0380__cce_bestpractice_00281_0_b863812014124">storageClassName</strong> in YAML files.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen22067304183">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-example
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0380__section92221021258"><h4 class="sectiontitle">Custom Storage Classes</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p9601335151617">You can customize a high I/O storage class in a YAML file. For example, the name <strong id="cce_10_0380__cce_bestpractice_00281_0_b186185811594">csi-disk-sas</strong> indicates that the disk type is SAS (high I/O).</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen659210819391">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-sas                          # Name of the high I/O storage class, which can be customized.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SAS            # High I/O EVS disk type, which cannot be customized.
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true                    # <strong id="cce_10_0380__cce_bestpractice_00281_0_b148711949142017">true</strong> indicates that capacity expansion is allowed.</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p1281618138471">For an ultra-high I/O storage class, you can set the class name to <strong id="cce_10_0380__cce_bestpractice_00281_0_b722754812">csi-disk-ssd</strong> to create SSD EVS disk (ultra-high I/O).</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen199713432478">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-ssd                       # Name of the ultra-high I/O storage class, which can be customized.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SSD         # Ultra-high I/O EVS disk type, which cannot be customized.
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p146067122106"><strong id="cce_10_0380__cce_bestpractice_00281_0_b69321846286">reclaimPolicy</strong>: indicates the recycling policies of the underlying cloud storage. The value can be <strong id="cce_10_0380__cce_bestpractice_00281_0_b9392322125012">Delete</strong> or <strong id="cce_10_0380__cce_bestpractice_00281_0_b91651126105014">Retain</strong>.</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_0_ul42481619111116"><li id="cce_10_0380__cce_bestpractice_00281_0_li1624871911111"><strong id="cce_10_0380__cce_bestpractice_00281_0_b1313332805014">Delete</strong>: When a PVC is deleted, both the PV and the EVS disk are deleted.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li9248141919118"><strong id="cce_10_0380__cce_bestpractice_00281_0_b26601433105212">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the <strong id="cce_10_0380__cce_bestpractice_00281_0_b1956334045518">Released</strong> state and cannot be bound to the PVC again.</li></ul>
+<div class="note" id="cce_10_0380__cce_bestpractice_00281_0_note8801953114018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0380__cce_bestpractice_00281_0_p178035314020">The reclamation policy set here has no impact on the SFS Turbo storage. Therefore, the yearly/monthly SFS Turbo resources will not be reclaimed when the cluster or PVC is deleted.</p>
+</div></div>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p778102518503">If high data security is required, you are advised to select <strong id="cce_10_0380__cce_bestpractice_00281_0_b1478374995218">Retain</strong> to prevent data from being deleted by mistake.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p824713561207">After the definition is complete, run the <strong id="cce_10_0380__cce_bestpractice_00281_0_b14281158232">kubectl create</strong> commands to create storage resources.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen164494218115"># kubectl create -f sas.yaml
+storageclass.storage.k8s.io/csi-disk-sas created
+# kubectl create -f ssd.yaml
+storageclass.storage.k8s.io/csi-disk-ssd created</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p1412183715488">Query the storage class again. Two more types of storage classes are displayed in the command output, as shown below.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen13784148495"># kubectl get sc
+NAME                PROVISIONER                     AGE
+csi-disk            everest-csi-provisioner         17d
+csi-disk-sas        everest-csi-provisioner         2m28s
+csi-disk-ssd        everest-csi-provisioner         16s
+csi-disk-topology   everest-csi-provisioner         17d
+csi-nas             everest-csi-provisioner         17d
+csi-obs             everest-csi-provisioner         17d
+csi-sfsturbo        everest-csi-provisioner         17d</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p05291082227">Other types of storage resources can be defined in the similar way. You can use kubectl to obtain the YAML file and modify it as required.</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_0_ul38311130152115"><li id="cce_10_0380__cce_bestpractice_00281_0_li18831113072113">File storage<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen181646213295"># kubectl get sc csi-nas -oyaml
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  name: csi-nas
+provisioner: everest-csi-provisioner
+parameters:
+  csi.storage.k8s.io/csi-driver-name: nas.csi.everest.io
+  csi.storage.k8s.io/fstype: nfs
+  everest.io/share-access-level: rw
+  everest.io/share-access-to: 5e3864c6-e78d-4d00-b6fd-de09d432c632   # ID of the VPC to which the cluster belongs
+  everest.io/share-is-public: 'false'
+  everest.io/zone: xxxxx          # AZ
+reclaimPolicy: Delete
+allowVolumeExpansion: true
+volumeBindingMode: Immediate</pre>
+</li><li id="cce_10_0380__cce_bestpractice_00281_0_li4390135712118">Object storage<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen1745353552911"># kubectl get sc csi-obs -oyaml
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  name: csi-obs
+provisioner: everest-csi-provisioner
+parameters:
+  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
+  csi.storage.k8s.io/fstype: s3fs           # Object storage type. <strong id="cce_10_0380__cce_bestpractice_00281_0_b581916217422">s3fs</strong> indicates an object bucket, and <strong id="cce_10_0380__cce_bestpractice_00281_0_b19130111019424">obsfs</strong> indicates a parallel file system.
+  everest.io/obs-volume-type: STANDARD      # Storage class of the OBS bucket
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0380__section9720192252"><h4 class="sectiontitle">Setting a Default Storage Class</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p163571329132111">You can specify a storage class as the default class. In this way, if you do not specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b133883591469">storageClassName</strong> when creating a PVC, the PVC is created using the default storage class.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p1435710291217">For example, to specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b1964515812715">csi-disk-ssd</strong> as the default storage class, edit your YAML file as follows:</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen5357429172112">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-ssd
+  annotations:
+    storageclass.kubernetes.io/is-default-class: "true"   # Specifies the default storage class in a cluster. A cluster can have only one default storage class.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SSD
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p1135711298213">Delete the created csi-disk-ssd disk, run the <strong id="cce_10_0380__cce_bestpractice_00281_0_b152561717817">kubectl create</strong> command to create a csi-disk-ssd disk again, and then query the storage class. The following information is displayed.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen135872982120"># kubectl delete sc csi-disk-ssd
+storageclass.storage.k8s.io "csi-disk-ssd" deleted
+# kubectl create -f ssd.yaml
+storageclass.storage.k8s.io/csi-disk-ssd created
+# kubectl get sc
+NAME                     PROVISIONER                     AGE
+csi-disk                 everest-csi-provisioner         17d
+csi-disk-sas             everest-csi-provisioner         114m
+csi-disk-ssd (default)   everest-csi-provisioner         9s
+csi-disk-topology        everest-csi-provisioner         17d
+csi-nas                  everest-csi-provisioner         17d
+csi-obs                  everest-csi-provisioner         17d
+csi-sfsturbo             everest-csi-provisioner         17d</pre>
+</div>
+<div class="section" id="cce_10_0380__section147641081060"><h4 class="sectiontitle">Verification</h4><ul id="cce_10_0380__cce_bestpractice_00281_0_ul326513332433"><li id="cce_10_0380__cce_bestpractice_00281_0_li1426593312439">Use <strong id="cce_10_0380__cce_bestpractice_00281_0_b72318715919">csi-disk-sas</strong> to create a PVC.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen164121655153014">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  sas-disk
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: csi-disk-sas</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p1331523183215">Create a storage class and view its details. As shown below, the object can be created and the value of <strong id="cce_10_0380__cce_bestpractice_00281_0_b2841103141010">STORAGECLASS</strong> is <strong id="cce_10_0380__cce_bestpractice_00281_0_b1290115143103">csi-disk-sas</strong>.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen3819181515400"># kubectl create -f sas-disk.yaml 
+persistentvolumeclaim/sas-disk created
+# kubectl get pvc
+NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
+sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   24s
+# kubectl get pv
+NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
+pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            30s</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p296654417436">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is high I/O.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p1365215405213"></p>
+</li><li id="cce_10_0380__cce_bestpractice_00281_0_li16722125154315">If <strong id="cce_10_0380__cce_bestpractice_00281_0_b53910164176">storageClassName</strong> is not specified, the default configuration is used, as shown below.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen623034510524">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  ssd-disk
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p14101131875619">Create and view the storage resource. You can see that the storage class of PVC ssd-disk is csi-disk-ssd, indicating that csi-disk-ssd is used by default.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen133543256569"># kubectl create -f ssd-disk.yaml 
+persistentvolumeclaim/ssd-disk created
+# kubectl get pvc
+NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
+sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   16m
+ssd-disk   Bound    pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            csi-disk-ssd   10s
+# kubectl get pv
+NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
+pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            Delete           Bound       default/ssd-disk          csi-disk-ssd            15s
+pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            17m</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p14639104411583">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is ultra-high I/O.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_0_p76651917155918"></p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0381.html b/docs/cce/umn/cce_10_0381.html
new file mode 100644
index 00000000..fda481b9
--- /dev/null
+++ b/docs/cce/umn/cce_10_0381.html
@@ -0,0 +1,66 @@
+<a name="cce_10_0381"></a><a name="cce_10_0381"></a>
+
+<h1 class="topictitle1">Snapshots and Backups</h1>
+<div id="body0000001223094983"><p id="cce_10_0381__p64144462419">CCE works with EVS to support snapshots. A snapshot is a complete copy or image of EVS disk data at a certain point of time, which can be used for data DR.</p>
+<p id="cce_10_0381__p6499155011342">You can create snapshots to rapidly save the disk data at specified time points. In addition, you can use snapshots to create new disks so that the created disks will contain the snapshot data in the beginning.</p>
+<div class="section" id="cce_10_0381__section113181948104715"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0381__ul1621310918488"><li id="cce_10_0381__li617612518534">The snapshot function is available <strong id="cce_10_0381__b15228105918598">only for clusters of v1.15 or later</strong> and requires the CSI-based everest add-on.</li><li id="cce_10_0381__li199561838153910">The subtype (common I/O, high I/O, or ultra-high I/O), disk mode (SCSI or VBD), data encryption, sharing status, and capacity of an EVS disk created from a snapshot must be the same as those of the disk associated with the snapshot. These attributes cannot be modified after being queried or set.</li><li id="cce_10_0381__li1954823042315">Snapshots can be created only for available or in-use CSI disks. During the free trial, you can create up to 7 snapshots per disk.</li><li id="cce_10_0381__li17877201852316">Snapshot data of encrypted disks is stored encrypted, and that of non-encrypted disks is stored non-encrypted.</li></ul>
+</div>
+<div class="section" id="cce_10_0381__section54641247195218"><h4 class="sectiontitle">Application Scenario</h4><p id="cce_10_0381__p1391672917530">The snapshot feature helps address your following needs:</p>
+<ul id="cce_10_0381__ul181411130195519"><li id="cce_10_0381__li101411830165512"><strong id="cce_10_0381__b25400238018">Routine data backup</strong><p id="cce_10_0381__p17604103255516">You can create snapshots for EVS disks regularly and use snapshots to recover your data in case that data loss or data inconsistency occurred due to misoperations, viruses, or attacks.</p>
+</li><li id="cce_10_0381__li514119304557"><strong id="cce_10_0381__b869018251014">Rapid data restoration</strong><p id="cce_10_0381__p155811334175514">You can create a snapshot or multiple snapshots before an OS change, application software upgrade, or a service data migration. If an exception occurs during the upgrade or migration, service data can be rapidly restored to the time point when the snapshot was created.</p>
+<div class="p" id="cce_10_0381__p12312336205520">For example, a fault occurred on system disk A of ECS A, and therefore ECS A cannot be started. Because system disk A is already faulty, the data on system disk A cannot be restored by rolling back snapshots. In this case, you can use an existing snapshot of system disk A to create EVS disk B and attach it to ECS B that is running properly. Then, ECS B can read data from system disk A using EVS disk B.<div class="note" id="cce_10_0381__note514511518541"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0381__p1531205917113">The snapshot capability provided by CCE is the same as the CSI snapshot function provided by the Kubernetes community. EVS disks can be created only based on snapshots, and snapshots cannot be rolled back to source EVS disks.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0381__li5141230135519"><strong id="cce_10_0381__b1465815401401">Rapid deployment of multiple services</strong><p id="cce_10_0381__p10343164212559">You can use a snapshot to create multiple EVS disks containing the same initial data, and these disks can be used as data resources for various services, for example, data mining, report query, and development and testing. This method protects the initial data and creates disks rapidly, meeting the diversified service data requirements.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0381__section1461332311913"><h4 class="sectiontitle">Creating a Snapshot</h4><p id="cce_10_0381__p1281915285197"><strong id="cce_10_0381__b18769135623910">Using the CCE Console</strong></p>
+<ol id="cce_10_0381__ol152401851181913"><li id="cce_10_0381__li1179513219432"><span>Log in to the CCE console.</span></li><li id="cce_10_0381__li3574131225117"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0381__b1458912512247">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0381__b922063714254">Snapshots and Backups</strong> tab.</span></li><li id="cce_10_0381__li19331121142020"><span>Click <span class="uicontrol" id="cce_10_0381__uicontrol18916952142010"><b>Create Snapshot</b></span> in the upper right corner. In the dialog box displayed, set related parameters.</span><p><ul id="cce_10_0381__ul26971012211"><li id="cce_10_0381__li13697180112213"><span class="parmname" id="cce_10_0381__parmname4328131816"><b>Snapshot Name</b></span>: Enter a snapshot name.</li><li id="cce_10_0381__li1473992216"><strong id="cce_10_0381__b8883623112817">Storage</strong>: Select a PVC. Only EVS PVCs can create a snapshot.</li></ul>
+</p></li><li id="cce_10_0381__li3247144122016"><span>Click <strong id="cce_10_0381__b118910197112">Create</strong>.</span></li></ol>
+<p id="cce_10_0381__p1091918022416"><strong id="cce_10_0381__b148829420302">Creating from YAML</strong></p>
+<pre class="screen" id="cce_10_0381__screen197841222181">kind: VolumeSnapshot
+apiVersion: snapshot.storage.k8s.io/v1beta1
+metadata:
+  finalizers:
+    - snapshot.storage.kubernetes.io/volumesnapshot-as-source-protection
+    - snapshot.storage.kubernetes.io/volumesnapshot-bound-protection
+  name: cce-disksnap-test
+  namespace: default
+spec:
+  source:
+    persistentVolumeClaimName: pvc-evs-test     # PVC name. Only an EVS PVC can be created.
+  volumeSnapshotClassName: csi-disk-snapclass</pre>
+</div>
+<div class="section" id="cce_10_0381__section228816108265"><h4 class="sectiontitle">Using a Snapshot to Creating a PVC</h4><p id="cce_10_0381__p614685193310">The disk type, encryption setting, and disk mode of the created EVS PVC are consistent with those of the snapshot's source EVS disk.</p>
+<p id="cce_10_0381__p326513510362"><strong id="cce_10_0381__b11698411123514">Using the CCE Console</strong></p>
+<ol id="cce_10_0381__ol126520513363"><li id="cce_10_0381__li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_10_0381__li14265165103610"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0381__b79941532173015">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0381__b19994132133020">Snapshots and Backups</strong> tab.</span></li><li id="cce_10_0381__li42661759363"><span>Locate the snapshot for which you want to create a PVC, click <span class="uicontrol" id="cce_10_0381__uicontrol4916544164518"><b>Create PVC</b></span>, and specify the PVC name in the displayed dialog box.</span></li><li id="cce_10_0381__li10266451367"><span>Click <strong id="cce_10_0381__b22763361837">Create</strong>.</span></li></ol>
+<p id="cce_10_0381__p7439164710549"><strong id="cce_10_0381__b923212304347">Creating from YAML</strong></p>
+<pre class="screen" id="cce_10_0381__screen12534181311281">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-test
+  namespace: default
+  annotations:
+    everest.io/disk-volume-type: SSD     # EVS disk type, which must be the same as that of the source EVS disk of the snapshot.
+  labels:
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0381__text52766166259">eu-de</span>
+    failure-domain.beta.kubernetes.io/zone: 
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: '10'
+  storageClassName: csi-disk
+  dataSource:
+    name: cce-disksnap-test             # Snapshot name
+    kind: VolumeSnapshot
+    apiGroup: snapshot.storage.k8s.io</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0384.html b/docs/cce/umn/cce_10_0384.html
new file mode 100644
index 00000000..cacb3a4c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0384.html
@@ -0,0 +1,760 @@
+<a name="cce_10_0384"></a><a name="cce_10_0384"></a>
+
+<h1 class="topictitle1">Hybrid Deployment of Online and Offline Jobs</h1>
+<div id="body0000001223887231">
+  <div class="section" id="cce_10_0384__section37571116112019">
+    <h4 class="sectiontitle">Online and Offline Jobs</h4>
+    <p id="cce_10_0384__p98401338182019">Jobs can be classified into online jobs and offline jobs based on whether
+      services are always online.</p>
+    <ul id="cce_10_0384__ul14442134602013">
+      <li id="cce_10_0384__li1644334662019"><strong id="cce_10_0384__b974314933413">Online job</strong>: Such jobs run
+        for a long time, with regular traffic surges, tidal resource requests, and high requirements on SLA, such as
+        advertising and e-commerce services.</li>
+      <li id="cce_10_0384__li54435468203"><strong id="cce_10_0384__b1786718118466">Offline jobs</strong>: Such jobs run
+        for a short time, have high computing requirements, and can tolerate high latency, such as AI and big data
+        services.</li>
+    </ul>
+  </div>
+  <div class="section" id="cce_10_0384__section79851928172111">
+    <h4 class="sectiontitle">Resource Oversubscription and Hybrid Deployment</h4>
+    <p id="cce_10_0384__p85737368395">Many services see surges in traffic. To ensure performance and stability,
+      resources are often requested at the maximum needed. However, the surges may ebb very shortly and resources, if
+      not released, are wasted in non-peak hours. Especially for online jobs that request a large quantity of resources
+      to ensure SLA, resource utilization can be as low as it gets.</p>
+    <p id="cce_10_0384__p109101627142814">Resource oversubscription is the process of making use of idle requested
+      resources. Oversubscribed resources are suitable for deploying offline jobs, which focus on throughput but have
+      low SLA requirements and can tolerate certain failures.</p>
+    <p id="cce_10_0384__p783132619158">Hybrid deployment of online and offline jobs in a cluster can better utilize
+      cluster resources.</p>
+    <div class="fignone" id="cce_10_0384__fig49992297287"><span class="figcap"><b>Figure 1 </b>Resource
+        oversubscription</span><br><span><img id="cce_10_0384__image108031910281"
+          src="en-us_image_0000001378942548.png"></span></div>
+  </div>
+  <div class="section" id="cce_10_0384__section134433136240">
+    <h4 class="sectiontitle">Oversubscription for Hybrid Deployment</h4>
+    <p id="cce_10_0384__p314884410243">Hybrid deployment is supported, and CPU and memory resources can be
+      oversubscribed. The key features are as follows:</p>
+    <ul id="cce_10_0384__ul31481544132411">
+      <li id="cce_10_0384__li1314874417243">Offline jobs preferentially run on oversubscribed nodes.<p
+          id="cce_10_0384__p3148744132416"><a name="cce_10_0384__li1314874417243"></a><a name="li1314874417243"></a>If
+          both oversubscribed and non-oversubscribed nodes exist, the former will score higher than the latter and
+          offline jobs are preferentially scheduled to oversubscribed nodes.</p>
+      </li>
+    </ul>
+    <ul id="cce_10_0384__ul1514834492416">
+      <li id="cce_10_0384__li1314884452410">Online jobs can use only non-oversubscribed resources if scheduled to an
+        oversubscribed node.<p id="cce_10_0384__p131487442243"><a name="cce_10_0384__li1314884452410"></a><a
+            name="li1314884452410"></a>Offline jobs can use both oversubscribed and non-oversubscribed resources of an
+          oversubscribed node.</p>
+      </li>
+    </ul>
+    <ul id="cce_10_0384__ul214864442411">
+      <li id="cce_10_0384__li16148134492413">In the same scheduling period, online jobs take precedence over offline
+        jobs.<p id="cce_10_0384__p91481144122419"><a name="cce_10_0384__li16148134492413"></a><a
+            name="li16148134492413"></a>If both online and offline jobs exist, online jobs are scheduled first. When the
+          node resource usage exceeds the upper limit and the node requests exceed 100%, offline jobs will be evicted.
+        </p>
+      </li>
+      <li id="cce_10_0384__li1822019482511">CPU/memory isolation is provided by kernels.<p
+          id="cce_10_0384__p15253145256"><a name="cce_10_0384__li1822019482511"></a><a name="li1822019482511"></a>CPU
+          isolation: Online jobs can quickly preempt CPU resources of offline jobs and suppress the CPU usage of the
+          offline jobs.</p>
+        <p id="cce_10_0384__p172530412256">Memory isolation: When system memory resources are used up and OOM Kill is
+          triggered, the kernel evicts offline jobs first.</p>
+      </li>
+      <li id="cce_10_0384__li98521216131611">kubelet offline jobs admission rules:<p id="cce_10_0384__p449363091616"><a
+            name="cce_10_0384__li98521216131611"></a><a name="li98521216131611"></a>After the the pod is scheduled to a
+          node, kubelet starts the pod only when the node resources can meet the pod request
+          (predicateAdmitHandler.Admit). kubelet starts the pod when both of the following conditions are met:</p>
+        <ul id="cce_10_0384__ul46524681611">
+          <li id="cce_10_0384__li1523284401610">The total request of pods to be started and online running jobs &lt;
+            allocatable nodes</li>
+          <li id="cce_10_0384__li11164552161617">The total request of pods to be started and online/offline running job
+            &lt; allocatable nodes+oversubscribed nodes</li>
+        </ul>
+      </li>
+      <li id="cce_10_0384__li12611173113324">Resource oversubscription and hybrid deployment:<p
+          id="cce_10_0384__p15341242113210"><a name="cce_10_0384__li12611173113324"></a><a
+            name="li12611173113324"></a>If only hybrid deployment is used, you need to configure the label <strong
+            id="cce_10_0384__b97841542438">volcano.sh/colocation=true</strong> for the node and delete the node label
+          <strong id="cce_10_0384__b1026420984217">volcano.sh/oversubscription</strong> or set its value to <strong
+            id="cce_10_0384__b17808132124215">false</strong>.</p>
+        <div class="p" id="cce_10_0384__p1123473213323">If the label <strong
+            id="cce_10_0384__b168216507436">volcano.sh/colocation=true</strong> is configured for a node, hybrid
+          deployment is enabled. If the label <strong
+            id="cce_10_0384__b758355819442">volcano.sh/oversubscription=true</strong> is configured, resource
+          oversubscription is enabled. The following table lists the available feature combinations after hybrid
+          deployment or resource oversubscription is enabled.
+          <div class="tablenoborder">
+            <table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table92167243324" frame="border"
+              border="1" rules="all">
+              <thead align="left">
+                <tr id="cce_10_0384__row526532483213">
+                  <th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.1">
+                    <p id="cce_10_0384__p126522453215">Hybrid Deployment Enabled (<strong
+                        id="cce_10_0384__b1578918489483">volcano.sh/colocation=true</strong>)</p>
+                  </th>
+                  <th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.2">
+                    <p id="cce_10_0384__p426532463215">Resource oversubscription Enabled (<strong
+                        id="cce_10_0384__b1563752011494">volcano.sh/oversubscription=true</strong>)</p>
+                  </th>
+                  <th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.3">
+                    <p id="cce_10_0384__p11265024153212">Use Oversubscribed Resources?</p>
+                  </th>
+                  <th align="left" class="cellrowborder" valign="top" width="25.27%" id="mcps1.3.3.5.4.2.3.1.5.1.4">
+                    <p id="cce_10_0384__p16265142413213">Conditions for Evicting Offline Pods</p>
+                  </th>
+                </tr>
+              </thead>
+              <tbody>
+                <tr id="cce_10_0384__row5265132483216">
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
+                    <p id="cce_10_0384__p4265724113217">No</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
+                    <p id="cce_10_0384__p9265112413324">No</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
+                    <p id="cce_10_0384__p3265182423218">No</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
+                    <p id="cce_10_0384__p1926614244327">None</p>
+                  </td>
+                </tr>
+                <tr id="cce_10_0384__row9266124193219">
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
+                    <p id="cce_10_0384__p42669244322">Yes</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
+                    <p id="cce_10_0384__p14266724193217">No</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
+                    <p id="cce_10_0384__p192668244321">No</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
+                    <p id="cce_10_0384__p1726602413321">The node resource usage exceeds the high threshold.</p>
+                  </td>
+                </tr>
+                <tr id="cce_10_0384__row826612414327">
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
+                    <p id="cce_10_0384__p152661024193220">No</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
+                    <p id="cce_10_0384__p8266132443211">Yes</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
+                    <p id="cce_10_0384__p162661424193210">Yes</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
+                    <p id="cce_10_0384__p7266122443215">The node resource usage exceeds the high threshold, and the node
+                      request exceeds 100%.</p>
+                  </td>
+                </tr>
+                <tr id="cce_10_0384__row1926612244320">
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
+                    <p id="cce_10_0384__p1226612410323">Yes</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
+                    <p id="cce_10_0384__p82661624153214">Yes</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
+                    <p id="cce_10_0384__p10266112416327">Yes</p>
+                  </td>
+                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
+                    <p id="cce_10_0384__p1826682419329">The node resource usage exceeds the high threshold.</p>
+                  </td>
+                </tr>
+              </tbody>
+            </table>
+          </div>
+        </div>
+      </li>
+    </ul>
+  </div>
+  <div class="section" id="cce_10_0384__section102385261413">
+    <h4 class="sectiontitle">Notes and Constraints</h4>
+    <div class="p" id="cce_10_0384__p10679133852220"><strong id="cce_10_0384__b1912720762219">Specifications</strong>
+      <ul id="cce_10_0384__ul19383164411191">
+        <li id="cce_10_0384__li10766125111429">Kubernetes version:<ul id="cce_10_0384__ul62201752154212">
+            <li id="cce_10_0384__li1532115594220">1.19: 1.19.16-r4 or later</li>
+            <li id="cce_10_0384__li3107145714213">1.21: 1.21.7-r0 or later</li>
+            <li id="cce_10_0384__li15200194771716">1.23: 1.23.5-r0 or later</li>
+          </ul>
+        </li>
+        <li id="cce_10_0384__li4200184712177">Cluster Type: CCE or CCE Turbo</li>
+        <li id="cce_10_0384__li132001147111715">Node OS: EulerOS 2.9 (kernel-4.18.0-147.5.1.6.h729.6.eulerosv2r9.x86_64)</li>
+        <li id="cce_10_0384__li9200947201717">Node Type: ECS</li>
+        <li id="cce_10_0384__li10364142632218">The volcano add-on version: 1.7.0 or later</li>
+      </ul>
+    </div>
+    <div class="p" id="cce_10_0384__p0806142992218"><strong id="cce_10_0384__b1989171172917">Constraints</strong>
+      <ul id="cce_10_0384__ul5279171104212">
+        <li id="cce_10_0384__li1741118264206">Before enabling the volcano oversubscription plug-in, ensure that the
+          overcommit plug-in is not enabled.</li>
+        <li id="cce_10_0384__li3852121519212">Modifying the label of an oversubscribed node does not affect the running
+          pods.</li>
+        <li id="cce_10_0384__li269881617214">Running pods cannot be converted between online and offline services. To
+          convert services, you need to rebuild pods.</li>
+        <li id="cce_10_0384__li1149628182118">If the label <strong
+            id="cce_10_0384__b17494172396">volcano.sh/oversubscription=true</strong> is configured for a node in the
+          cluster, the <strong id="cce_10_0384__b74947711399">oversubscription</strong> configuration must be added to
+          the volcano add-on. Otherwise, the scheduling of oversubscribed nodes will be abnormal. Ensure that you have
+          correctly configure labels because the scheduler does not check the add-on and node configurations. For
+          details about the labels, see <a href="#cce_10_0384__section1940910414220">Configuring Oversubscription Labels
+            for Scheduling</a>.</li>
+        <li id="cce_10_0384__li49631856162112">To disable oversubscription, perform the following operations:<ul
+            id="cce_10_0384__ul1112232242215">
+            <li id="cce_10_0384__li12124162022210">Remove the <strong
+                id="cce_10_0384__b29051026184010">volcano.sh/oversubscription</strong> label from the oversubscribed
+              node.</li>
+            <li id="cce_10_0384__li91251620132217">Set <strong
+                id="cce_10_0384__b19244951411">over-subscription-resource</strong> to <strong
+                id="cce_10_0384__b158914764118">false</strong>.</li>
+            <li id="cce_10_0384__li12125420162210">Modify the configmap of the volcano scheduler named <strong
+                id="cce_10_0384__b163264240414">volcano-scheduler-configmap</strong> and remove the oversubscription
+              add-on.</li>
+          </ul>
+        </li>
+        <li id="cce_10_0384__li8879133410365">If <strong id="cce_10_0384__b610611461371">cpu-manager-policy</strong> is
+          set to static core binding on a node, do not assign the QoS class of Guaranteed to offline pods. If core
+          binding is required, change the pods to online pods. Otherwise, offline pods may occupy the CPUs of online
+          pods, causing online pod startup failures, and offline pods fail to be started although they are successfully
+          scheduled.</li>
+        <li id="cce_10_0384__li1223404614368">If <strong id="cce_10_0384__b69171513282">cpu-manager-policy</strong> is
+          set to static core binding on a node, do not bind cores to all online pods. Otherwise, online pods occupy all
+          CPU or memory resources, leaving a small number of oversubscribed resources.</li>
+      </ul>
+    </div>
+  </div>
+  <div class="section" id="cce_10_0384__section1940910414220"><a name="cce_10_0384__section1940910414220"></a><a
+      name="section1940910414220"></a>
+    <h4 class="sectiontitle">Configuring Oversubscription Labels for Scheduling</h4>
+    <p id="cce_10_0384__p742917132313">If the label <strong
+        id="cce_10_0384__b171792617431">volcano.sh/oversubscription=true</strong> is configured for a node in the
+      cluster, the <strong id="cce_10_0384__b142923516434">oversubscription</strong> configuration must be added to the
+      volcano add-on. Otherwise, the scheduling of oversubscribed nodes will be abnormal. For details about the related
+      configuration, see <a href="#cce_10_0384__table152481219311">Table 1</a>.</p>
+    <div class="p" id="cce_10_0384__p2798039318">Ensure that you have correctly configure labels because the scheduler
+      does not check the add-on and node configurations.
+      <div class="tablenoborder"><a name="cce_10_0384__table152481219311"></a><a name="table152481219311"></a>
+        <table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table152481219311" frame="border" border="1"
+          rules="all">
+          <caption><b>Table 1 </b>Configuring oversubscription labels for scheduling</caption>
+          <thead align="left">
+            <tr id="cce_10_0384__row13248611314">
+              <th align="left" class="cellrowborder" valign="top" width="23.32%" id="mcps1.3.5.3.1.2.4.1.1">
+                <p id="cce_10_0384__p1824814115313">Oversubscription in Add-on</p>
+              </th>
+              <th align="left" class="cellrowborder" valign="top" width="23.32%" id="mcps1.3.5.3.1.2.4.1.2">
+                <p id="cce_10_0384__p124801530">Oversubscription Label on Node</p>
+              </th>
+              <th align="left" class="cellrowborder" valign="top" width="53.36%" id="mcps1.3.5.3.1.2.4.1.3">
+                <p id="cce_10_0384__p82481611537">Scheduling</p>
+              </th>
+            </tr>
+          </thead>
+          <tbody>
+            <tr id="cce_10_0384__row1024811633">
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
+                <p id="cce_10_0384__p32481911317">Yes</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
+                <p id="cce_10_0384__p72483119318">Yes</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
+                <p id="cce_10_0384__p15248413313">Triggered by oversubscription</p>
+              </td>
+            </tr>
+            <tr id="cce_10_0384__row1324819110312">
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
+                <p id="cce_10_0384__p182491411939">Yes</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
+                <p id="cce_10_0384__p102491411135">No</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
+                <p id="cce_10_0384__p20249517310">Triggered</p>
+              </td>
+            </tr>
+            <tr id="cce_10_0384__row162491815313">
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
+                <p id="cce_10_0384__p524911113316">No</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
+                <p id="cce_10_0384__p1249513311">No</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
+                <p id="cce_10_0384__p142491810318">Triggered</p>
+              </td>
+            </tr>
+            <tr id="cce_10_0384__row1824961238">
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
+                <p id="cce_10_0384__p1724951432">No</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
+                <p id="cce_10_0384__p19249141338">Yes</p>
+              </td>
+              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
+                <p id="cce_10_0384__p132491117313">Not triggered or failed. Avoid this configuration.</p>
+              </td>
+            </tr>
+          </tbody>
+        </table>
+      </div>
+    </div>
+  </div>
+  <div class="section" id="cce_10_0384__section1425191115439">
+    <h4 class="sectiontitle">Using Hybrid Deployment</h4>
+    <ol id="cce_10_0384__ol1169011275438">
+      <li id="cce_10_0384__li7690162711431"><span>Configure the volcano add-on.</span>
+        <p>
+        <ol type="a" id="cce_10_0384__ol52248364158">
+          <li id="cce_10_0384__li19225133651519">Use kubectl to connect to the cluster.</li>
+          <li id="cce_10_0384__li1225173611152">Install the volcano plug-in and add the <strong
+              id="cce_10_0384__b131290157581">oversubscription</strong> plug-in to <strong
+              id="cce_10_0384__b1775324565716">volcano-scheduler-configmap</strong>. Ensure that the plug-in
+            configuration does not contain the <strong id="cce_10_0384__b98657015516">overcommit</strong> plug-in. If
+            <strong id="cce_10_0384__b139215266510">- name: overcommit</strong> exists, delete this configuration.
+            <pre class="screen" id="cce_10_0384__screen935710443148"># kubectl edit cm volcano-scheduler-configmap -n kube-system
+apiVersion: v1
+data:
+  volcano-scheduler.conf: |
+    actions: "enqueue, allocate, backfill"
+    tiers:
+    - plugins:
+      - name: gang
+      - name: priority
+      - name: conformance
+      - name: oversubscription
+    - plugins:
+      - name: drf
+      - name: predicates
+      - name: nodeorder
+      - name: binpack
+    - plugins:
+      - name: cce-gpu-topology-predicate
+      - name: cce-gpu-topology-priority
+      - name: cce-gpu</pre>
+          </li>
+        </ol>
+        </p>
+      </li>
+      <li id="cce_10_0384__li11364155010439"><span>Enable the node oversubscription feature.</span>
+        <p>
+        <p id="cce_10_0384__p1958412304184">A label can be configured to use oversubscribed resources only after the
+          oversubscription feature is enabled for a node. Related nodes can be created only in a node pool. To enable
+          the oversubscription feature, perform the following steps:</p>
+        <ol type="a" id="cce_10_0384__ol181230455528">
+          <li id="cce_10_0384__li15123445115219">Create a node pool.</li>
+          <li id="cce_10_0384__li512314518521">Choose <strong id="cce_10_0384__b067725222512">More</strong> &gt; <strong
+              id="cce_10_0384__b4647152217310">Manage</strong> in the <strong
+              id="cce_10_0384__b120101615277">Operation</strong> column of the created node pool.</li>
+          <li id="cce_10_0384__li111231945135219">In the <strong id="cce_10_0384__b4902182482616">Manage
+              Component</strong> window that is displayed, set <strong
+              id="cce_10_0384__b189811236132611">over-subscription-resource</strong> under <strong
+              id="cce_10_0384__b217205052715">kubelet</strong> to <strong id="cce_10_0384__b999644092613">true</strong>
+            and click <strong id="cce_10_0384__b157015448266">OK</strong>.</li>
+        </ol>
+        <p id="cce_10_0384__p19727583819"><span><img id="cce_10_0384__image17744105621315"
+              src="en-us_image_0000001207511384.png"></span></p>
+        </p>
+      </li>
+      <li id="cce_10_0384__li182861216174415"><span>Set the node oversubscription label.</span>
+        <p>
+        <p id="cce_10_0384__p15827102792019">The <strong
+            id="cce_10_0384__b176001451961">volcano.sh/oversubscription</strong> label needs to be configured for an
+          oversubscribed node. If this label is set for a node and the value is <strong
+            id="cce_10_0384__b6944921463">true</strong>, the node is an oversubscribed node. Otherwise, the node is not
+          an oversubscribed node.</p>
+        <pre class="screen"
+          id="cce_10_0384__screen4181417171812">kubectl label node 192.168.0.0 volcano.sh/oversubscription=true</pre>
+        <p id="cce_10_0384__p1172017528912">An oversubscribed node also supports the oversubscription thresholds, as
+          listed in <a href="#cce_10_0384__table1853397191112">Table 2</a>. For example:</p>
+        <pre class="screen"
+          id="cce_10_0384__screen344613013257">kubectl annotate node 192.168.0.0 volcano.sh/evicting-cpu-high-watermark=70</pre>
+        <p id="cce_10_0384__p1072018388253">Querying the node information</p>
+        <pre class="screen" id="cce_10_0384__screen146893231812"># kubectl describe node 192.168.0.0
+Name:             192.168.0.0
+Roles:              &lt;none&gt;
+Labels:           ...
+                  volcano.sh/oversubscription=true
+Annotations:      ...
+                  volcano.sh/evicting-cpu-high-watermark: 70</pre>
+
+        <div class="tablenoborder"><a name="cce_10_0384__table1853397191112"></a><a name="table1853397191112"></a>
+          <table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table1853397191112" frame="border"
+            border="1" rules="all">
+            <caption><b>Table 2 </b>Node oversubscription annotations</caption>
+            <thead align="left">
+              <tr id="cce_10_0384__row105951715118">
+                <th align="left" class="cellrowborder" valign="top" width="48%" id="mcps1.3.6.2.3.2.7.2.3.1.1">
+                  <p id="cce_10_0384__p185951711115">Name</p>
+                </th>
+                <th align="left" class="cellrowborder" valign="top" width="52%" id="mcps1.3.6.2.3.2.7.2.3.1.2">
+                  <p id="cce_10_0384__p259510717114">Description</p>
+                </th>
+              </tr>
+            </thead>
+            <tbody>
+              <tr id="cce_10_0384__row45951176117">
+                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
+                  <p id="cce_10_0384__p259557171110">volcano.sh/evicting-cpu-high-watermark</p>
+                </td>
+                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
+                  <p id="cce_10_0384__p41092413154">When the CPU usage of a node exceeds the specified value, offline
+                    job eviction is triggered and the node becomes unschedulable.</p>
+                  <p id="cce_10_0384__p259511741114">The default value is <strong
+                      id="cce_10_0384__b44974543419">80</strong>, indicating that offline job eviction is triggered when
+                    the CPU usage of a node exceeds 80%.</p>
+                </td>
+              </tr>
+              <tr id="cce_10_0384__row11595577116">
+                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
+                  <p id="cce_10_0384__p1859513716115">volcano.sh/evicting-cpu-low-watermark</p>
+                </td>
+                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
+                  <p id="cce_10_0384__p17595137161114">After eviction is triggered, the scheduling starts again when the
+                    CPU usage of a node is lower than the specified value.</p>
+                  <p id="cce_10_0384__p16595197161115">The default value is <strong
+                      id="cce_10_0384__b1914818330384">30</strong>, indicating that scheduling starts again when the CPU
+                    usage of a node is lower than 30%.</p>
+                </td>
+              </tr>
+              <tr id="cce_10_0384__row17595167181110">
+                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
+                  <p id="cce_10_0384__p1459517791112">volcano.sh/evicting-memory-high-watermark</p>
+                </td>
+                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
+                  <p id="cce_10_0384__p13595770114">When the memory usage of a node exceeds the specified value, offline
+                    job eviction is triggered and the node becomes unschedulable.</p>
+                  <p id="cce_10_0384__p125952715117">The default value is <strong
+                      id="cce_10_0384__b2040511225392">60</strong>, indicating that offline job eviction is triggered
+                    when the memory usage of a node exceeds 60%.</p>
+                </td>
+              </tr>
+              <tr id="cce_10_0384__row45958731118">
+                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
+                  <p id="cce_10_0384__p105958710119">volcano.sh/evicting-memory-low-watermark</p>
+                </td>
+                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
+                  <p id="cce_10_0384__p10595197171117">After eviction is triggered, the scheduling starts again when the
+                    memory usage of a node is lower than the specified value.</p>
+                  <p id="cce_10_0384__p1259519712115">The default value is <strong
+                      id="cce_10_0384__b176291225104013">30</strong>, indicating that the scheduling starts again when
+                    the memory usage of a node is less than 30%.</p>
+                </td>
+              </tr>
+              <tr id="cce_10_0384__row25953771110">
+                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
+                  <p id="cce_10_0384__p19595974119">volcano.sh/oversubscription-types</p>
+                </td>
+                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
+                  <p id="cce_10_0384__p1359567101115">Oversubscribed resource type. The options are as follows:</p>
+                  <ul id="cce_10_0384__ul440551111316">
+                    <li id="cce_10_0384__li34075114137">CPU (oversubscribed CPU)</li>
+                    <li id="cce_10_0384__li14401151191319">memory (oversubscribed memory)</li>
+                    <li id="cce_10_0384__li240551141315">cpu,memory (oversubscribed CPU and memory)</li>
+                  </ul>
+                  <p id="cce_10_0384__p175951741117">The default value is <strong
+                      id="cce_10_0384__b1181107142511">cpu,memory</strong>.</p>
+                </td>
+              </tr>
+            </tbody>
+          </table>
+        </div>
+        </p>
+      </li>
+      <li id="cce_10_0384__li8503750144419"><span>Deploy online and offline jobs.</span>
+        <p>
+        <p id="cce_10_0384__p16825144217223">The <strong id="cce_10_0384__b56664173114">volcano.sh/qos-level</strong>
+          label needs to be added to annotation to distinguish offline jobs. The value is an integer ranging from -7 to
+          7. If the value is less than 0, the job is an offline job. If the value is greater than or equal to 0, the job
+          is a high-priority job, that is, online job. You do not need to set this label for online jobs. For both
+          online and offline jobs, set <strong id="cce_10_0384__b1638944418447">schedulerName</strong> to <strong
+            id="cce_10_0384__b1525118474441">volcano</strong> to enable the Volcano scheduler.</p>
+        <div class="note" id="cce_10_0384__note881010430447"><img src="public_sys-resources/note_3.0-en-us.png"><span
+            class="notetitle"> </span>
+          <div class="notebody">
+            <p id="cce_10_0384__p7811184318442">The priorities of online/online and offline/offline jobs are not
+              differentiated, and the value validity is not verified. If the value of <strong
+                id="cce_10_0384__b1185815543911">volcano.sh/qos-level</strong> of an offline job is not a negative
+              integer ranging from -7 to 0, the job is processed as an online job.</p>
+          </div>
+        </div>
+        <p id="cce_10_0384__p84551082233">For an offline job:</p>
+        <pre class="screen" id="cce_10_0384__screen152641472313">kind: Deployment
+apiVersion: apps/v1
+spec:
+  replicas: 4
+  template:
+    metadata:
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
+        volcano.sh/qos-level: "-1" # Offline job label
+    spec:
+      schedulerName: volcano             # The Volcano scheduler is used.
+      ...</pre>
+        <p id="cce_10_0384__p76818266236">For an online job:</p>
+        <pre class="screen" id="cce_10_0384__screen6550173472317">kind: Deployment
+apiVersion: apps/v1
+spec:
+  replicas: 4
+  template:
+    metadata:
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
+    spec:
+      schedulerName: volcano          # The Volcano scheduler is used.
+      ...</pre>
+        </p>
+      </li>
+      <li id="cce_10_0384__li13682193413597"><span>Run the following command to check the number of oversubscribed
+          resources and the resource usage:</span>
+        <p>
+        <p id="cce_10_0384__p763544410597">kubectl describe node <em id="cce_10_0384__i17334612013">&lt;nodeIP&gt;</em>
+        </p>
+        <pre class="screen" id="cce_10_0384__screen118601312303"># kubectl describe node 192.168.0.0
+Name:             192.168.0.0
+Roles:              &lt;none&gt;
+Labels:           ...
+                  volcano.sh/oversubscription=true
+Annotations:      ...
+                  volcano.sh/oversubscription-cpu: 2335
+                  volcano.sh/oversubscription-memory: 341753856
+Allocatable:
+  cpu:               3920m
+  memory:            6263988Ki
+Allocated resources:
+  (Total limits may be over 100 percent, i.e., overcommitted.)
+  Resource           Requests      Limits
+  --------           --------      ------
+  cpu                 4950m (126%)  4950m (126%)
+  memory             1712Mi (27%)  1712Mi (27%)</pre>
+        </p>
+      </li>
+    </ol>
+  </div>
+  <div class="section" id="cce_10_0384__section20146113631217">
+    <h4 class="sectiontitle">Hybrid Deployment Example</h4>
+    <p id="cce_10_0384__p937932519339">The following uses an example to describe how to deploy online and offline jobs
+      in hybrid mode.</p>
+    <ol id="cce_10_0384__ol39002575313">
+      <li id="cce_10_0384__li090115511531"><span>Assume that a cluster has two nodes: one oversubscribed node and one
+          non-oversubscribed node.</span>
+        <p>
+        <pre class="screen" id="cce_10_0384__screen1752292953315"># kubectl get node
+NAME           STATUS   ROLES    AGE    VERSION
+192.168.0.173   Ready    &lt;none&gt;   4h58m   v1.19.16-r2-CCE22.5.1
+192.168.0.3     Ready    &lt;none&gt;   148m    v1.19.16-r2-CCE22.5.1</pre>
+        <ul id="cce_10_0384__ul165291105544">
+          <li id="cce_10_0384__li452912016542">192.168.0.173 is an oversubscribed node (with the <strong
+              id="cce_10_0384__b228320422472">volcano.sh/oversubscirption=true</strong> label).</li>
+          <li id="cce_10_0384__li85291007543">192.168.0.3 is a non-oversubscribed node (without the <strong
+              id="cce_10_0384__b1985814634812">volcano.sh/oversubscirption=true</strong> label).</li>
+        </ul>
+        <pre class="screen" id="cce_10_0384__screen59401542193813"># kubectl describe node 192.168.0.173
+Name:               192.168.0.173
+Roles:              &lt;none&gt;
+Labels:             beta.kubernetes.io/arch=amd64
+                    ...
+                    volcano.sh/oversubscription=true</pre>
+        </p>
+      </li>
+      <li id="cce_10_0384__li1690112512532"><span>Submit offline job creation requests. If resources are sufficient, all
+          offline jobs will be scheduled to the oversubscribed node.</span>
+        <p>
+        <div class="p" id="cce_10_0384__p999651055412">The offline job template is as follows:
+          <pre class="screen" id="cce_10_0384__screen753415113407">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: offline
+  namespace: default
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: offline
+  template:
+    metadata:
+      labels:
+        app: offline
+      annotations:
+        volcano.sh/qos-level: "-1"       #Offline job label
+    spec:
+      schedulerName: volcano             # The Volcano scheduler is used.
+      containers:
+        - name: container-1
+          image: nginx:latest
+          imagePullPolicy: IfNotPresent
+          resources:
+            requests:
+              cpu: 500m
+              memory: 512Mi
+            limits:
+              cpu: "1"
+              memory: 512Mi
+      imagePullSecrets:
+        - name: default-secret</pre>
+        </div>
+        <div class="p" id="cce_10_0384__p9291118135718">Offline jobs are scheduled to the oversubscribed node.
+          <pre class="screen" id="cce_10_0384__screen665518432405"># kubectl get pod -o wide
+NAME                      READY   STATUS   RESTARTS  AGE     IP             NODE 
+offline-69cdd49bf4-pmjp8   1/1    Running   0         5s    192.168.10.178   192.168.0.173
+offline-69cdd49bf4-z8kxh   1/1    Running   0         5s    192.168.10.131   192.168.0.173</pre>
+        </div>
+        </p>
+      </li>
+      <li id="cce_10_0384__li17902650535"><span>Submit online job creation requests. If resources are sufficient, the
+          online jobs will be scheduled to the non-oversubscribed node.</span>
+        <p>
+        <div class="p" id="cce_10_0384__p19861847115710">The online job template is as follows:
+          <pre class="screen" id="cce_10_0384__screen16642755144114">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: online
+  namespace: default
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: online
+  template:
+    metadata:
+      labels:
+        app: online
+    spec:
+      schedulerName: volcano                 # The Volcano scheduler is used.
+      containers:
+        - name: container-1
+          image: resource_consumer:latest
+          imagePullPolicy: IfNotPresent
+          resources:
+            requests:
+              cpu: 1400m
+              memory: 512Mi
+            limits:
+              cpu: "2"
+              memory: 512Mi
+      imagePullSecrets:
+        - name: default-secret</pre>
+        </div>
+        <div class="p" id="cce_10_0384__p10664161345820">Online jobs are scheduled to the non-oversubscribed node.
+          <pre class="screen" id="cce_10_0384__screen0561994514"># kubectl get pod -o wide
+NAME                   READY   STATUS   RESTARTS  AGE     IP             NODE 
+online-ffb46f656-4mwr6  1/1    Running   0         5s    192.168.10.146   192.168.0.3
+online-ffb46f656-dqdv2   1/1    Running   0         5s    192.168.10.67   192.168.0.3</pre>
+        </div>
+        </p>
+      </li>
+      <li id="cce_10_0384__li5902153538"><span>Improve the resource usage of the oversubscribed node and observe whether
+          offline job eviction is triggered.</span>
+        <p>
+        <div class="p" id="cce_10_0384__p107753012711">Deploy online jobs to the oversubscribed node (192.168.0.173).
+          <pre class="screen" id="cce_10_0384__screen3995115914266">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: online
+  namespace: default
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: online
+  template:
+    metadata:
+      labels:
+        app: online
+    spec:
+       affinity:                              # Submit an online job to an oversubscribed node.
+        nodeAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            nodeSelectorTerms:
+            - matchExpressions:
+              - key: kubernetes.io/hostname
+                operator: In
+                values:
+                - 192.168.0.173
+      schedulerName: volcano                 # The Volcano scheduler is used.
+      containers:
+        - name: container-1
+          image: resource_consumer:latest
+          imagePullPolicy: IfNotPresent
+          resources:
+            requests:
+              cpu: 700m
+              memory: 512Mi
+            limits:
+              cpu: 700m
+              memory: 512Mi
+      imagePullSecrets:
+        - name: default-secret</pre>
+        </div>
+        <div class="p" id="cce_10_0384__p499525952619">Submit the online or offline jobs to the oversubscribed node
+          (192.168.0.173) at the same time.
+          <pre class="screen" id="cce_10_0384__screen1299516595261"># kubectl get pod -o wide
+NAME                     READY   STATUS   RESTARTS  AGE     IP             NODE 
+offline-69cdd49bf4-pmjp8  1/1     Running    0      13m   192.168.10.178   192.168.0.173 
+offline-69cdd49bf4-z8kxh  1/1     Running     0      13m   192.168.10.131   192.168.0.173 
+online-6f44bb68bd-b8z9p  1/1     Running     0     3m4s   192.168.10.18   192.168.0.173 
+online-6f44bb68bd-g6xk8  1/1     Running     0     3m12s   192.168.10.69   192.168.0.173</pre>
+        </div>
+        <div class="p" id="cce_10_0384__p17995259182613">Observe the oversubscribed node (192.168.0.173). You can find
+          that oversubscribed resources exist and the CPU allocation rate exceeds 100%.
+          <pre class="screen" id="cce_10_0384__screen399518598261"># kubectl describe node 192.168.0.173
+Name:              192.168.0.173
+Roles:              &lt;none&gt;
+Labels:              …
+                    volcano.sh/oversubscription=true
+Annotations:         …                  
+                    volcano.sh/oversubscription-cpu: 2343
+                    volcano.sh/oversubscription-memory: 3073653200
+                    …
+Allocated resources:
+  (Total limits may be over 100 percent, i.e., overcommitted.)
+  Resource               Requests      Limits
+  --------               --------        ------
+  cpu                    4750m (121%)  7350m (187%)
+  memory                 3760Mi (61%)  4660Mi (76%)
+                         …</pre>
+        </div>
+        <div class="p" id="cce_10_0384__p99950591263">Increase the CPU usage of online jobs on the node. Offline job
+          eviction is triggered.
+          <pre class="screen" id="cce_10_0384__screen1299518590268"># kubectl get pod -o wide
+NAME                     READY   STATUS   RESTARTS  AGE     IP             NODE 
+offline-69cdd49bf4-bwdm7  1/1    Running   0       11m   192.168.10.208  192.168.0.3 
+offline-69cdd49bf4-pmjp8   0/1    Evicted    0       26m   &lt;none&gt;         192.168.0.173
+offline-69cdd49bf4-qpdss   1/1     Running   0       11m   192.168.10.174  192.168.0.3  
+offline-69cdd49bf4-z8kxh   0/1     Evicted    0       26m   &lt;none&gt;        192.168.0.173
+online-6f44bb68bd-b8z9p   1/1     Running   0       24m   192.168.10.18  192.168.0.173
+online-6f44bb68bd-g6xk8   1/1     Running   0       24m   192.168.10.69  192.168.0.173</pre>
+        </div>
+        </p>
+      </li>
+    </ol>
+  </div>
+  <div class="section" id="cce_10_0384__section441525519717">
+    <h4 class="sectiontitle">Handling Suggestions</h4>
+    <ul id="cce_10_0384__ul674900188">
+      <li id="cce_10_0384__li14749203818">After kubelet of the oversubscribed node is restarted, the resource view of
+        the Volcano scheduler is not synchronized with that of kubelet. As a result, OutOfCPU occurs in some newly
+        scheduled jobs, which is normal. After a period of time, the Volcano scheduler can properly schedule online and
+        offline jobs.</li>
+      <li id="cce_10_0384__li187491801281">After online and offline jobs are submitted, you are not advised to
+        dynamically change the job type (adding or deleting annotation volcano.sh/qos-level: "-1") because the current
+        kernel does not support the change of an offline job to an online job.</li>
+      <li id="cce_10_0384__li87492020815">CCE collects the resource usage (CPU/memory) of all pods running on a node
+        based on the status information in the cgroups system. The resource usage may be different from the monitored
+        resource usage, for example, the resource statistics displayed by running the <strong
+          id="cce_10_0384__b1847916172319">top</strong> command.</li>
+      <li id="cce_10_0384__li9731645142617">You can add oversubscribed resources (such as CPU and memory) at any time.<p
+          id="cce_10_0384__p1229754519266"><a name="cce_10_0384__li9731645142617"></a><a name="li9731645142617"></a>You
+          can reduce the oversubscribed resource types only when the resource allocation rate does not exceed 100%.</p>
+      </li>
+    </ul>
+  </div>
+</div>
+<div>
+  <div class="familylinks">
+    <div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0423.html">Volcano Scheduling</a></div>
+  </div>
+</div>
\ No newline at end of file
diff --git a/docs/cce/umn/cce_10_0385.html b/docs/cce/umn/cce_10_0385.html
new file mode 100644
index 00000000..5754de66
--- /dev/null
+++ b/docs/cce/umn/cce_10_0385.html
@@ -0,0 +1,376 @@
+<a name="cce_10_0385"></a><a name="cce_10_0385"></a>
+
+<h1 class="topictitle1">Service Annotations</h1>
+<div id="body0000001179558342"><p id="cce_10_0385__p476811919593">CCE allows you to add annotations to a YAML file to realize some advanced Service functions. The following table describes the annotations you can add.</p>
+<p id="cce_10_0385__p272201312194">The annotations of a Service are the parameters that need to be specified for connecting to a load balancer. For details about how to use the annotations, see <a href="cce_10_0014.html#cce_10_0014__section12168131904611">Using kubectl to Create a Service (Automatically Creating a Load Balancer)</a>.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table133089105019" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Service annotations</caption><thead align="left"><tr id="cce_10_0385__row11330199501"><th align="left" class="cellrowborder" valign="top" width="21%" id="mcps1.3.3.2.6.1.1"><p id="cce_10_0385__p173306915017">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.06%" id="mcps1.3.3.2.6.1.2"><p id="cce_10_0385__p1766813392229">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="35.44%" id="mcps1.3.3.2.6.1.3"><p id="cce_10_0385__p133301795508">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="19.53%" id="mcps1.3.3.2.6.1.4"><p id="cce_10_0385__p498113216229">Default Value on the Console</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.97%" id="mcps1.3.3.2.6.1.5"><p id="cce_10_0385__p2060351510225">Supported Cluster Version</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0385__row433017915509"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p17331159135017">kubernetes.io/elb.class</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p9668133962219">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p17331169135014">Select a proper load balancer type.</p>
+<p id="cce_10_0385__p143311298508">The value can be:</p>
+<ul id="cce_10_0385__ul3415201212612"><li id="cce_10_0385__cce_10_0014_li735384716395"><strong id="cce_10_0385__cce_10_0014_b3322231123015">union</strong>: shared load balancer</li><li id="cce_10_0385__cce_10_0014_li1535310477392"><strong id="cce_10_0385__cce_10_0014_b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p598114218226">performance</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p156031515142220">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row1616210113222"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p816218112216">kubernetes.io/elb.id</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p18668163942216">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p1435464793910">ID of a load balancer. The value can contain 1 to 100 characters.</p>
+<p id="cce_10_0385__p123611341161318">Mandatory when an existing load balancer is to be associated.</p>
+<p id="cce_10_0385__p735464753918"><strong id="cce_10_0385__b1711012186102">How to obtain</strong>:</p>
+<p id="cce_10_0385__p1335417476396">On the management console, click <strong id="cce_10_0385__b299224141010">Service List</strong>, and choose <strong id="cce_10_0385__b16105172421015">Networking</strong> &gt; <strong id="cce_10_0385__b141051924191013">Elastic Load Balance</strong>. Click the name of the target load balancer. On the <strong id="cce_10_0385__b1910552411109">Summary</strong> tab page, find and copy the ID.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p179816242213">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p106034154225">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row790233013543"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p143324917501">kubernetes.io/elb.subnet-id</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p1666833942211">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p7332119105010">ID of the subnet where the cluster is located. The value can contain 1 to 100 characters.</p>
+<ul id="cce_10_0385__ul19332189145019"><li id="cce_10_0385__li14332109185017">Mandatory when a cluster of v1.11.7-r0 or earlier is to be automatically created.</li><li id="cce_10_0385__li203324919509">Optional for clusters later than v1.11.7-r0.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p398119212226">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p1760321518227">Mandatory for versions earlier than v1.11.7-r0</p>
+<p id="cce_10_0385__p137315821210">Discarded in versions later than v1.11.7-r0</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row8332096503"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p839452715462">kubernetes.io/elb.autocreate</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p14668133910225"><a href="#cce_10_0385__table148341447193017">Table 2</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p3394827134612">Whether to automatically create a load balancer associated with the Service.</p>
+<p id="cce_10_0385__p113941527154613"><strong id="cce_10_0385__b151131019121214">Example:</strong></p>
+<ul id="cce_10_0385__ul17394182711462"><li id="cce_10_0385__li1939492713460">If a public network load balancer will be automatically created, set this parameter to the following value:<p id="cce_10_0385__p339413273467"><a name="cce_10_0385__li1939492713460"></a><a name="li1939492713460"></a>{"type":"public","bandwidth_name":"cce-bandwidth-1551163379627","bandwidth_chargemode":"bandwidth","bandwidth_size":5,"bandwidth_sharetype":"PER","eip_type":"5_bgp","name":"james"}</p>
+</li><li id="cce_10_0385__li1939417272469">If a private network load balancer will be automatically created, set this parameter to the following value:<p id="cce_10_0385__p14395132717468"><a name="cce_10_0385__li1939417272469"></a><a name="li1939417272469"></a>{"type":"inner","name":"A-location-d-test"}</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p17981152122216">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p16603715192210">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row1333313918508"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p1133339115016">kubernetes.io/elb.lb-algorithm</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p76681739142217">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p0333699508">Specifies the load balancing algorithm of the backend server group.</p>
+<p id="cce_10_0385__p6333198503">Value:</p>
+<ul id="cce_10_0385__ul13337919508"><li id="cce_10_0385__li3333893501"><strong id="cce_10_0385__b7947131318136">ROUND_ROBIN</strong>: weighted round robin algorithm</li><li id="cce_10_0385__li93331191509"><strong id="cce_10_0385__b1057318168136">LEAST_CONNECTIONS</strong>: weighted least connections algorithm</li><li id="cce_10_0385__li1333379105016"><strong id="cce_10_0385__b6410171911319">SOURCE_IP</strong>: source IP hash algorithm</li></ul>
+<p id="cce_10_0385__p833315910507">When the value is <strong id="cce_10_0385__b2226102451314">SOURCE_IP</strong>, the weights of backend servers in the server group are invalid.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p149811926226">ROUND_ROBIN</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p8603151517229">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row1533329185018"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p1533313905015">kubernetes.io/elb.health-check-flag</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p156681639202214">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p1833315910509">Whether to enable the ELB health check.</p>
+<ul id="cce_10_0385__ul19333199205012"><li id="cce_10_0385__li8333109155020">Enabling health check: Leave blank this parameter or set it to <strong id="cce_10_0385__b110014201141">on</strong>.</li><li id="cce_10_0385__li103330914504">Disabling health check: Set this parameter to <strong id="cce_10_0385__b6479724141416">off</strong>.</li></ul>
+<p id="cce_10_0385__p144301330171416">If this parameter is enabled, the <a href="#cce_10_0385__table19192143412319">kubernetes.io/elb.health-check-option</a> field must also be specified at the same time.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p4981142142210">off</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p1060391515223">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row14334169195010"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p43341794509">kubernetes.io/elb.health-check-option</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p866823915227"><a href="#cce_10_0385__table19192143412319">Table 3</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p933489175020">ELB health check configuration items.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p698117220226">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p56031815152216">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row638444875814"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p9331159155018">kubernetes.io/elb.session-affinity-mode</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p5668113917226">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p533113915503">Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</p>
+<ul id="cce_10_0385__ul113311191508"><li id="cce_10_0385__li11331189195017">Disabling sticky session: Do not set this parameter.</li><li id="cce_10_0385__li133313914502">Enabling sticky session: Set this parameter to <strong id="cce_10_0385__b9317195611416">SOURCE_IP</strong>, indicating that the sticky session is based on the source IP address.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p39821428221">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p1603215122213">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row1421317512156"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p12624252121514">kubernetes.io/elb.session-affinity-option</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p19668123917228"><a href="#cce_10_0385__table3340195463412">Table 4</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p5624145218150">Sticky session timeout.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p9982727229">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p260320155223">v1.9 or later</p>
+</td>
+</tr>
+<tr id="cce_10_0385__row5492113210146"><td class="cellrowborder" valign="top" width="21%" headers="mcps1.3.3.2.6.1.1 "><p id="cce_10_0385__p93349995013">kubernetes.io/hws-hostNetwork</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.06%" headers="mcps1.3.3.2.6.1.2 "><p id="cce_10_0385__p76688396226">Boolean</p>
+</td>
+<td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p6334798502">Whether the workload Services use the host network. Setting this parameter to <strong id="cce_10_0385__b15289162721512">true</strong> will enable the load balancer to forward requests to the host network.</p>
+<p id="cce_10_0385__p14334095506">The value is <strong id="cce_10_0385__b8229119122612">true</strong> or <strong id="cce_10_0385__b13229791261">false</strong>.</p>
+<p id="cce_10_0385__p11863913162416">The default value is <strong id="cce_10_0385__b147771802618">false</strong>, indicating that the host network is not used.</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p698214232218">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.97%" headers="mcps1.3.3.2.6.1.5 "><p id="cce_10_0385__p1860331572220">v1.9 or later</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0385__table148341447193017"></a><a name="table148341447193017"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table148341447193017" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data structure of the elb.autocreate field</caption><thead align="left"><tr id="cce_10_0385__cce_10_0014_row183958279468"><th align="left" class="cellrowborder" valign="top" width="26.96%" id="mcps1.3.4.2.5.1.1"><p id="cce_10_0385__cce_10_0014_p439572712466">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.08%" id="mcps1.3.4.2.5.1.2"><p id="cce_10_0385__cce_10_0014_p5395162716461">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.25%" id="mcps1.3.4.2.5.1.3"><p id="cce_10_0385__cce_10_0014_p1839522764612">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.71%" id="mcps1.3.4.2.5.1.4"><p id="cce_10_0385__cce_10_0014_p13395182713462">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0385__cce_10_0014_row17395132744615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p239612715462">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p939602714615">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p039672712468">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p1939611278467">Name of the load balancer that is automatically created.</p>
+<p id="cce_10_0385__cce_10_0014_p1339672794620">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+<p id="cce_10_0385__cce_10_0014_p1039616277465">Default: <strong id="cce_10_0385__cce_10_0014_b4743102120314">cce-lb+service.UID</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row153968276468"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1939617273464">type</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1739622713461">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p16396102784619">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p14396172764615">Network type of the load balancer.</p>
+<ul id="cce_10_0385__cce_10_0014_ul23961827154617"><li id="cce_10_0385__cce_10_0014_li8396127154616"><strong id="cce_10_0385__cce_10_0014_b1121645643414">public</strong>: public network load balancer</li><li id="cce_10_0385__cce_10_0014_li73971827184618"><strong id="cce_10_0385__cce_10_0014_b383111529316">inner</strong>: private network load balancer</li></ul>
+<p id="cce_10_0385__cce_10_0014_p539752754611">Default: <strong id="cce_10_0385__cce_10_0014_b64071431273">inner</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row2397927194613"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p12397122718464">bandwidth_name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1129745332217">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p16397182734610">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p113972278461">Bandwidth name. The default value is <strong id="cce_10_0385__cce_10_0014_b10901181916366">cce-bandwidth-******</strong>.</p>
+<p id="cce_10_0385__cce_10_0014_p1439717273462">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row1439722794619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p7397182720466">bandwidth_chargemode</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p71019556225">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p193974278460">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p83981227124616">Bandwidth mode.</p>
+
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row19398122716461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p739892794619">bandwidth_size</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p639862719463">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p439882734619">Integer</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p14398927134615">Bandwidth size. The default value is 1 to 2000 Mbit/s. Set this parameter based on the bandwidth range allowed in your region.</p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row193991627164615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p15399627174614">bandwidth_sharetype</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1239962754620">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p4399327124618">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p6399227154620">Bandwidth sharing mode.</p>
+<ul id="cce_10_0385__cce_10_0014_ul1539932712464"><li id="cce_10_0385__cce_10_0014_li163992272465"><strong id="cce_10_0385__cce_10_0014_b1753918428519">PER</strong>: dedicated bandwidth</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row139952712463"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1139952764611">eip_type</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p266247192314">Yes for public network load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p84001027124612">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p440013273464">EIP type.</p>
+<ul id="cce_10_0385__cce_10_0014_ul18765175214406"><li id="cce_10_0385__cce_10_0014_li27656521408"><strong id="cce_10_0385__cce_10_0014_b572720271246">5_bgp</strong>: dynamic BGP</li><li id="cce_10_0385__cce_10_0014_li676505212409"><strong id="cce_10_0385__cce_10_0014_b94671311140">5_sbgp</strong>: static BGP</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row20400102713466"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p140015271469">available_zone</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p15400727164618">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p04001927144618">Array of strings</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p64001827194610">AZ where the load balancer is located.</p>
+<p id="cce_10_0385__cce_10_0014_p2040082784615">This parameter is available only for dedicated load balancers.</p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row12400122734616"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p040102718464">l4_flavor_name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p74011327184614">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p4401227124615">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p3911190135911">Flavor name of the layer-4 load balancer.</p>
+<p id="cce_10_0385__cce_10_0014_p16615412105">This parameter is available only for dedicated load balancers.</p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row64018274461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p94015275467">l7_flavor_name</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1840182714466">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p5401132754612">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p540115278464">Flavor name of the layer-7 load balancer.</p>
+<p id="cce_10_0385__cce_10_0014_p439195851013">This parameter is available only for dedicated load balancers.</p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row17401027104619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p2040112275467">elb_virsubnet_ids</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p040262754619">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p1540222710464">Array of strings</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p1840292719463">Subnet where the backend server of the load balancer is located. If this parameter is left blank, the default cluster subnet is used. Load balancers occupy different number of subnet IP addresses based on their specifications. Therefore, you are not advised to use the subnet CIDR blocks of other resources (such as clusters and nodes) as the load balancer CIDR block.</p>
+<p id="cce_10_0385__cce_10_0014_p3476173161118">This parameter is available only for dedicated load balancers.</p>
+<p id="cce_10_0385__cce_10_0014_p6628139141015">Example:</p>
+<pre class="screen" id="cce_10_0385__cce_10_0014_screen18587145018263">"elb_virsubnet_ids": [
+   "14567f27-8ae4-42b8-ae47-9f847a4690dd"
+ ]</pre>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0385__table19192143412319"></a><a name="table19192143412319"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table19192143412319" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Data structure description of the <strong id="cce_10_0385__cce_10_0014_b209486325462">elb.health-check-option</strong> field</caption><thead align="left"><tr id="cce_10_0385__cce_10_0014_row336018475396"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.5.2.5.1.1"><p id="cce_10_0385__cce_10_0014_p15360184723911">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.5.2.5.1.2"><p id="cce_10_0385__cce_10_0014_p139932420145">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.5%" id="mcps1.3.5.2.5.1.3"><p id="cce_10_0385__cce_10_0014_p1036074715392">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.230000000000004%" id="mcps1.3.5.2.5.1.4"><p id="cce_10_0385__cce_10_0014_p036084733912">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0385__cce_10_0014_row1136012478397"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1736074717393">delay</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p2099132416147">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p1360144773911">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p7361154710397">Initial waiting time (in seconds) for starting the health check.</p>
+<p id="cce_10_0385__cce_10_0014_p17361184715394">Value range: 1 to 50. Default value: <strong id="cce_10_0385__cce_10_0014_b0772113914818">5</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row163618473395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p636114763916">timeout</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p69919246147">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p103611347123914">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p113611447183912">Health check timeout, in seconds.</p>
+<p id="cce_10_0385__cce_10_0014_p143612047133913">Value range: 1 to 50. Default value: <strong id="cce_10_0385__cce_10_0014_b166661875494">10</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row18361154723913"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p136144716396">max_retries</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p166343581149">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p17361114717395">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p14361114712397">Maximum number of health check retries.</p>
+<p id="cce_10_0385__cce_10_0014_p6361114733910">Value range: 1 to 10. Default value: <strong id="cce_10_0385__cce_10_0014_b940918204498">3</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row9361104720394"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1636111476395">protocol</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p763495881417">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p14361144716395">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p15361164723916">Health check protocol.</p>
+<p id="cce_10_0385__cce_10_0014_p2361204719390">Default value: protocol of the associated Service</p>
+<p id="cce_10_0385__cce_10_0014_p143617474391">Value options: TCP, UDP, or HTTP</p>
+</td>
+</tr>
+<tr id="cce_10_0385__cce_10_0014_row036113475395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p93612047133915">path</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p159952471418">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p13361747173915">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p6361647183913">Health check URL. This parameter needs to be configured when the protocol is HTTP.</p>
+<p id="cce_10_0385__cce_10_0014_p636184753911">Default value: <strong id="cce_10_0385__cce_10_0014_b2032803325105021">/</strong></p>
+<p id="cce_10_0385__cce_10_0014_p8361847153910">The value can contain 1 to 10,000 characters.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_10_0385__table3340195463412"></a><a name="table3340195463412"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table3340195463412" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Data structure of the elb.session-affinity-option field</caption><thead align="left"><tr id="cce_10_0385__cce_10_0014_row23591547163913"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.6.2.5.1.1"><p id="cce_10_0385__cce_10_0014_p6359124763911">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.139999999999999%" id="mcps1.3.6.2.5.1.2"><p id="cce_10_0385__cce_10_0014_p8442205011314">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.69%" id="mcps1.3.6.2.5.1.3"><p id="cce_10_0385__cce_10_0014_p23601947173914">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.220000000000006%" id="mcps1.3.6.2.5.1.4"><p id="cce_10_0385__cce_10_0014_p19360647113911">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0385__cce_10_0014_row1236084719399"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.6.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1636019470393">persistence_timeout</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.139999999999999%" headers="mcps1.3.6.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p164427503134">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.69%" headers="mcps1.3.6.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p1236084793919">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.220000000000006%" headers="mcps1.3.6.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p12360147143917">Sticky session timeout, in minutes. This parameter is valid only when <strong id="cce_10_0385__cce_10_0014_b1651462119461">elb.session-affinity-mode</strong> is set to <strong id="cce_10_0385__cce_10_0014_b973718232469">SOURCE_IP</strong>.</p>
+<p id="cce_10_0385__cce_10_0014_p0360204713398">Value range: 1 to 60. Default value: <strong id="cce_10_0385__cce_10_0014_b83331032104616">60</strong></p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0247.html">Services</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0386.html b/docs/cce/umn/cce_10_0386.html
new file mode 100644
index 00000000..2482173b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0386.html
@@ -0,0 +1,60 @@
+<a name="cce_10_0386"></a><a name="cce_10_0386"></a>
+
+<h1 class="topictitle1">Pod Labels and Annotations</h1>
+<div id="body0000001179239832"><div class="section" id="cce_10_0386__section240743194419"><h4 class="sectiontitle">Pod Annotations</h4><p id="cce_10_0386__p8060118">CCE allows you to add annotations to a YAML file to realize some advanced pod functions. The following table describes the annotations you can add.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0386__table194691458405" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Pod annotations</caption><thead align="left"><tr id="cce_10_0386__row247019514406"><th align="left" class="cellrowborder" valign="top" width="29.849999999999998%" id="mcps1.3.1.3.2.4.1.1"><p id="cce_10_0386__p10470205174015">Annotation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="43.65%" id="mcps1.3.1.3.2.4.1.2"><p id="cce_10_0386__p1847015134012">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.5%" id="mcps1.3.1.3.2.4.1.3"><p id="cce_10_0386__p14707510401">Default Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0386__row9470558404"><td class="cellrowborder" valign="top" width="29.849999999999998%" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_10_0386__p174705519404">kubernetes.AOM.log.stdout</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.65%" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_10_0386__p54701658401">Standard output parameter. If not specified, the standard log output of all containers is reported to AOM. You can collect stdout logs from certain containers or ignore them at all.</p>
+<p id="cce_10_0386__p1941418503333">Example:</p>
+<ul id="cce_10_0386__ul12635112733519"><li id="cce_10_0386__li186351278356">Collecting none of the stdout logs:<p id="cce_10_0386__p17572143063518"><a name="cce_10_0386__li186351278356"></a><a name="li186351278356"></a>kubernetes.AOM.log.stdout: '[]'</p>
+</li><li id="cce_10_0386__li18635192720356">Collecting stdout logs of container-1 and container-2:<p id="cce_10_0386__p10842193220352"><a name="cce_10_0386__li18635192720356"></a><a name="li18635192720356"></a>kubernetes.AOM.log.stdout: '["container-1","container-2"]'</p>
+</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="26.5%" headers="mcps1.3.1.3.2.4.1.3 "><p id="cce_10_0386__p1447085164020">-</p>
+</td>
+</tr>
+<tr id="cce_10_0386__row82408107499"><td class="cellrowborder" valign="top" width="29.849999999999998%" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_10_0386__p1324081064915">metrics.alpha.kubernetes.io/custom-endpoints</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.65%" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_10_0386__p11240101012499">Parameter for reporting AOM monitoring metrics that you specify.</p>
+<p id="cce_10_0386__p1360142835113">For details, see <a href="cce_10_0201.html">Custom Monitoring</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.5%" headers="mcps1.3.1.3.2.4.1.3 "><p id="cce_10_0386__p8240181024910">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0386__section12537205444319"><h4 class="sectiontitle">Pod Labels</h4><p id="cce_10_0386__p1660721164412">When you create a workload on the console, the following labels are added to the pod by default. The value of <strong id="cce_10_0386__b89129431227">app</strong> is the workload name. You can add labels as required.</p>
+<p id="cce_10_0386__p16996141514479"></p>
+<p id="cce_10_0386__p023890125811">The pod labels added here will be added to the <strong id="cce_10_0386__b12108459830">selector.matchLabels</strong> parameter in the workload definition. The following is an example YAML file:</p>
+<pre class="screen" id="cce_10_0386__screen148314347617">...
+spec:
+  selector:
+<strong id="cce_10_0386__b086410133110">    matchLabels:</strong>
+<strong id="cce_10_0386__b10866191314110">      app: nginx</strong>
+<strong id="cce_10_0386__b18868201311118">      version: v1</strong>
+  template:
+    metadata:
+<strong id="cce_10_0386__b3124220171116">      labels:</strong>
+<strong id="cce_10_0386__b5126152011117">        app: nginx</strong>
+<strong id="cce_10_0386__b712842013119">        version: v1</strong>
+    spec:
+      ...</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0388.html b/docs/cce/umn/cce_10_0388.html
new file mode 100644
index 00000000..cd534ae4
--- /dev/null
+++ b/docs/cce/umn/cce_10_0388.html
@@ -0,0 +1,63 @@
+<a name="cce_10_0388"></a><a name="cce_10_0388"></a>
+
+<h1 class="topictitle1">Cluster Secrets</h1>
+<div id="body0000001227449187"><p id="cce_10_0388__p8060118">By default, CCE creates the following secrets in each namespace:</p>
+<ul id="cce_10_0388__ul11133437164415"><li id="cce_10_0388__li2013314377449">default-secret</li><li id="cce_10_0388__li1579120032910">paas.elb</li><li id="cce_10_0388__li2057534620443">default-token-<em id="cce_10_0388__i106994569422">xxxxx</em> (<em id="cce_10_0388__i13316853104213">xxxxx</em> is a random number.)</li></ul>
+<p id="cce_10_0388__p1461725310415">The functions of these secrets are described as follows.</p>
+<div class="section" id="cce_10_0388__section11760122012591"><a name="cce_10_0388__section11760122012591"></a><a name="section11760122012591"></a><h4 class="sectiontitle">default-secret</h4><p id="cce_10_0388__p1297205225915">The type of <strong id="cce_10_0388__b5795112964411">default-secret</strong> is <strong id="cce_10_0388__b1988233219444">kubernetes.io/dockerconfigjson</strong>. The data is the credential for logging in to the SWR image repository and is used to pull images from SWR. If you need to pull an image from SWR when creating a workload on CCE, set <strong id="cce_10_0388__b1165772811456">imagePullSecrets</strong> to <strong id="cce_10_0388__b8729429144513">default-secret</strong>.</p>
+<pre class="screen" id="cce_10_0388__screen1412134515516">apiVersion: v1                      
+kind: Pod                          
+metadata:
+  name: nginx                      
+spec:                            
+  containers:
+  - image: nginx:alpine            
+    name: container-0               
+    resources:                      
+      limits:
+        cpu: 100m
+        memory: 200Mi
+      requests:
+        cpu: 100m
+        memory: 200Mi
+  imagePullSecrets:
+  - name: default-secret</pre>
+<p id="cce_10_0388__p10387553316">The data of <strong id="cce_10_0388__b202852431455">default-secret</strong> is updated periodically, and the current data will expire after a certain period of time. You can run the <strong id="cce_10_0388__b922520015461">describe</strong> command to view the expiration time in of default-secret.</p>
+<div class="notice" id="cce_10_0388__note94616032115"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0388__p13461200122114">Use default-secret directly instead of copying the secret content to create a new one. The credential in the copied secret will expire and the image cannot be pulled.</p>
+</div></div>
+<pre class="screen" id="cce_10_0388__screen28241756204212">$ kubectl describe secret default-secret
+Name:         default-secret
+Namespace:    default
+Labels:       secret-generated-by=cce
+Annotations:  temporary-ak-sk-expires-at: 2021-11-26 20:55:31.380909 +0000 UTC
+
+Type:  kubernetes.io/dockerconfigjson
+
+Data
+====
+.dockerconfigjson:  347 bytes</pre>
+</div>
+<div class="section" id="cce_10_0388__section773741319418"><h4 class="sectiontitle">paas.elb</h4><p id="cce_10_0388__p116412118419">The data of <strong id="cce_10_0388__b78751819184819">paas.elb</strong> is the temporary AK/SK data, which is used to create ELB load balancers during Service and ingress creation. The data of paas.elb is periodically updated and expires after a certain period of time.</p>
+<p id="cce_10_0388__p20102433102518">In practice, you will not directly use paas.elb. However, do not delete it. Otherwise, ELB load balancers will fail to be created.</p>
+</div>
+<div class="section" id="cce_10_0388__section15110823415"><h4 class="sectiontitle">default-token-xxxxx</h4><p id="cce_10_0388__p6438131143414">By default, Kubernetes creates a service account named <strong id="cce_10_0388__b15722111135016">default</strong> for each namespace. <strong id="cce_10_0388__b137381826135010">default-token-<em id="cce_10_0388__i1311819344503">xxxxx</em></strong> is the key of the service account, and <strong id="cce_10_0388__b898052985020"><em id="cce_10_0388__i7154338105016">xxxxx</em></strong> is a random number.</p>
+<pre class="screen" id="cce_10_0388__screen12251202113620">$ kubectl get sa
+NAME     SECRETS   AGE
+default  1         30d
+$ kubectl describe sa default
+Name:                default
+Namespace:           default
+Labels:              &lt;none&gt;
+Annotations:         &lt;none&gt;
+Image pull secrets:  &lt;none&gt;
+Mountable secrets:   default-token-vssmw
+Tokens:              default-token-vssmw
+Events:              &lt;none&gt;</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0393.html b/docs/cce/umn/cce_10_0393.html
new file mode 100644
index 00000000..05d4838f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0393.html
@@ -0,0 +1,24 @@
+<a name="cce_10_0393"></a><a name="cce_10_0393"></a>
+
+<h1 class="topictitle1">Deployment Examples</h1>
+<div id="body0000001249022071"><p id="cce_10_0393__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0257.html">Creating a Deployment Mounted with an EVS Volume</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0269.html">Creating a Deployment Mounted with an OBS Volume</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0268.html">Creating a StatefulSet Mounted with an OBS Volume</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0263.html">Creating a Deployment Mounted with an SFS Volume</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0262.html">Creating a StatefulSet Mounted with an SFS Volume</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0374.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0396.html b/docs/cce/umn/cce_10_0396.html
new file mode 100644
index 00000000..1519bd29
--- /dev/null
+++ b/docs/cce/umn/cce_10_0396.html
@@ -0,0 +1,72 @@
+<a name="cce_10_0396"></a><a name="cce_10_0396"></a>
+
+<h1 class="topictitle1">Setting Basic Container Information</h1>
+<div id="body0000001245903187"><p id="cce_10_0396__p3913954122219">A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click <strong id="cce_10_0396__b144316395154">Add Container</strong> in the upper right corner to add multiple container images and set them separately.</p>
+<p id="cce_10_0396__p5208726155413"></p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0396__table128216444815" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Image parameters</caption><thead align="left"><tr id="cce_10_0396__row0282348486"><th align="left" class="cellrowborder" valign="top" width="23%" id="mcps1.3.3.2.3.1.1"><p id="cce_10_0396__p3282147483">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="77%" id="mcps1.3.3.2.3.1.2"><p id="cce_10_0396__p1828244144819">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0396__row109911651125414"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p39922517546">Container Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0396__p13992551175414">Name the container.</p>
+</td>
+</tr>
+<tr id="cce_10_0396__row1844916557597"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p182837474815">Image Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0396__p1372913120568">Click <strong id="cce_10_0396__b1843316343141">Select Image</strong> and select the image used by the container.</p>
+<p id="cce_10_0396__p137884754811">If you need to use a third-party image, see <a href="cce_10_0009.html">Using a Third-Party Image</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0396__row338117362515"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p1038143616517">Image Tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0396__p1338110368519">Select the image tag to be deployed.</p>
+</td>
+</tr>
+<tr id="cce_10_0396__row164532054153718"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p1945419542371">Pull Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0396__p1445445483719">Image update or pull policy. If you select <strong id="cce_10_0396__b12705727122015">Always</strong>, the image is pulled from the image repository each time. If you do not select <strong id="cce_10_0396__b275805211200">Always</strong>, the existing image of the node is preferentially used. If the image does not exist, the image is pulled from the image repository.</p>
+</td>
+</tr>
+<tr id="cce_10_0396__row161110459565"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p56111845145612">CPU Quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><ul id="cce_10_0396__ul9168521572"><li id="cce_10_0396__li15168227577"><strong id="cce_10_0396__b10938468166">Request</strong>: minimum number of CPU cores required by a container. The default value is 0.25 cores.</li><li id="cce_10_0396__li121681216579"><strong id="cce_10_0396__b10394911614">Limit</strong>: maximum number of CPU cores available for a container. Do not leave <strong id="cce_10_0396__b109824518167">Limit</strong> unspecified. Otherwise, intensive use of container resources will occur and your workload may exhibit unexpected behavior.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0396__row1119234316562"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p13193154315561">Memory Quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><ul id="cce_10_0396__ul177605101578"><li id="cce_10_0396__li2760310155716"><strong id="cce_10_0396__b1022413595164">Request</strong>: minimum amount of memory required by a container. The default value is 512 MiB.</li><li id="cce_10_0396__li276012107576"><strong id="cce_10_0396__b9782141111717">Limit</strong>: maximum amount of memory available for a container. When memory usage exceeds the specified memory limit, the container will be terminated.</li></ul>
+<p id="cce_10_0396__p157608103573">For more information about <strong id="cce_10_0396__b19339136111719">Request</strong> and <strong id="cce_10_0396__b173443616178">Limit</strong>, see <a href="cce_10_0163.html">Setting Container Specifications</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0396__row272852945719"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p20728192912572">GPU Quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0396__p53791055710">It is configurable only when the cluster contains GPU nodes.</p>
+<ul id="cce_10_0396__ul19823440122219"><li id="cce_10_0396__li14823540152219"><strong id="cce_10_0396__b1177420871414">All</strong>: The GPU is not used.</li><li id="cce_10_0396__li128232405222"><strong id="cce_10_0396__b12829182623218">Dedicated</strong>: GPU resources are exclusively used by the container.</li><li id="cce_10_0396__li13823440182213"><strong id="cce_10_0396__b188892217164">Shared</strong>: percentage of GPU resources used by the container. For example, if this parameter is set to <strong id="cce_10_0396__b392593471619">10%</strong>, the container uses 10% of GPU resources.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0396__row1449911299503"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p53374336504">Privileged Container</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0396__p49887211526">Programs in a privileged container have certain privileges.</p>
+<p id="cce_10_0396__p65001729105011">If <strong id="cce_10_0396__b1253191513462">Privileged Container</strong> is enabled, the container is assigned privileges. For example, privileged containers can manipulate network devices on the host machine and modify kernel parameters.</p>
+</td>
+</tr>
+<tr id="cce_10_0396__row152831345485"><td class="cellrowborder" valign="top" width="23%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0396__p875325925918">Init Container</p>
+</td>
+<td class="cellrowborder" valign="top" width="77%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0396__p5379182494610">Indicates whether to use the container as an init container.</p>
+<p id="cce_10_0396__p191910221439">An init container is a special container that run before app containers in a pod. For details, see <a href="https://kubernetes.io/docs/concepts/workloads/pods/init-containers/" target="_blank" rel="noopener noreferrer">Init Container</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0397.html b/docs/cce/umn/cce_10_0397.html
new file mode 100644
index 00000000..f91b4cf7
--- /dev/null
+++ b/docs/cce/umn/cce_10_0397.html
@@ -0,0 +1,52 @@
+<a name="cce_10_0397"></a><a name="cce_10_0397"></a>
+
+<h1 class="topictitle1">Configuring the Workload Upgrade Policy</h1>
+<div id="body0000001245904065"><p id="cce_10_0397__p48711136866">In actual applications, upgrade is a common operation. A Deployment, StatefulSet, or DaemonSet can easily support application upgrade.</p>
+<p id="cce_10_0397__p143361340201620">You can set different upgrade policies:</p>
+<ul id="cce_10_0397__ul533684016169"><li id="cce_10_0397__li83361740191617"><strong id="cce_10_0397__b19203165494312">Rolling upgrade</strong>: New pods are created gradually and then old pods are deleted. This is the default policy.</li><li id="cce_10_0397__li10336184041612"><strong id="cce_10_0397__b598016567437">Replace upgrade</strong>: The current pods are deleted and then new pods are created.</li></ul>
+<p id="cce_10_0397__p14855153617716"></p>
+<div class="section" id="cce_10_0397__section718835152215"><h4 class="sectiontitle">Upgrade Parameters</h4><ul id="cce_10_0397__ul11957311181314"><li id="cce_10_0397__li10939115613196"><strong id="cce_10_0397__b138440116294">Max. Surge</strong> (maxSurge)<p id="cce_10_0397__p359965721916">Specifies the maximum number of pods that can exist over <strong id="cce_10_0397__b96243232449">spec.replicas</strong>. The default value is 25%. For example, if <strong id="cce_10_0397__b2624172313447">spec.replicas</strong> is set to <strong id="cce_10_0397__b116241723134411">4</strong>, no more than 5 pods can exist during the upgrade process, that is, the upgrade step is 1. The absolute number is calculated from the percentage by rounding up. The value can also be set to an absolute number.</p>
+<p id="cce_10_0397__p1836755110219">This parameter is supported only by Deployments.</p>
+</li><li id="cce_10_0397__li198920112203"><strong id="cce_10_0397__b194396255291">Max. Unavailable Pods</strong> (maxUnavailable)<p id="cce_10_0397__p04213782020">Specifies the maximum number of pods that can be unavailable during the update process. The default value is 25%. For example, if <strong id="cce_10_0397__b7796143918456">spec.replicas</strong> is set to <strong id="cce_10_0397__b9796143919457">4</strong>, at least 3 pods exist during the upgrade process, that is, the deletion step is 1. The value can also be set to an absolute number.</p>
+<p id="cce_10_0397__p11222104182218">This parameter is supported only by Deployments.</p>
+</li><li id="cce_10_0397__li179678106208"><strong id="cce_10_0397__b207711383292">Min. Ready Seconds</strong> (minReadySeconds)<p id="cce_10_0397__p029161112013">A pod is considered available only when the minimum readiness time is exceeded without any of its containers crashing. The default value is <strong id="cce_10_0397__b12357459290">0</strong> (the pod is considered available immediately after it is ready).</p>
+</li><li id="cce_10_0397__li1891343520147"><strong id="cce_10_0397__b1588010541315">Revision History Limit</strong> (revisionHistoryLimit)<p id="cce_10_0397__p1773017182010">Specifies the number of old ReplicaSets to retain to allow rollback. These old ReplicaSets consume resources in etcd and crowd the output of <strong id="cce_10_0397__b14771554133320">kubectl get rs</strong>. The configuration of each Deployment revision is stored in its ReplicaSets. Therefore, once the old ReplicaSet is deleted, you lose the ability to roll back to that revision of Deployment. By default, 10 old ReplicaSets will be kept, but the ideal value depends on the frequency and stability of the new Deployments.</p>
+</li><li id="cce_10_0397__li5264847181915"><strong id="cce_10_0397__b16363173019355">Max. Upgrade Duration</strong> (progressDeadlineSeconds)<p id="cce_10_0397__p1327634801915">Specifies the number of seconds that the system waits for a Deployment to make progress before reporting a Deployment progress failure. It is surfaced as a condition with Type=Progressing, Status=False, and Reason=ProgressDeadlineExceeded in the status of the resource. The Deployment controller will keep retrying the Deployment. In the future, once automatic rollback will be implemented, the Deployment controller will roll back a Deployment as soon as it observes such a condition.</p>
+<p id="cce_10_0397__p20435183841919">If this parameter is specified, the value of this parameter must be greater than that of <strong id="cce_10_0397__b136087411753">.spec.minReadySeconds</strong>.</p>
+</li><li id="cce_10_0397__li13266125113191"><strong id="cce_10_0397__b1162619544510">Scale-In Time Window</strong> (terminationGracePeriodSeconds)<p id="cce_10_0397__p1817155118193">Graceful deletion time. The default value is 30 seconds. When a pod is deleted, a SIGTERM signal is sent and the system waits for the applications in the container to terminate. If the application is not terminated within the time specified by <strong id="cce_10_0397__b482182514716">terminationGracePeriodSeconds</strong>, a SIGKILL signal is sent to forcibly terminate the pod.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0397__section388485452919"><h4 class="sectiontitle">Upgrade Example</h4><p id="cce_10_0397__p7179122170">The Deployment can be upgraded in a declarative mode. That is, you only need to modify the YAML definition of the Deployment. For example, you can run the <strong id="cce_10_0397__b109821613121513">kubectl edit</strong> command to change the Deployment image to <strong id="cce_10_0397__b189821613121512">nginx:alpine</strong>. After the modification, query the ReplicaSet and pod. The query result shows that a new ReplicaSet is created and the pod is re-created.</p>
+<pre class="screen" id="cce_10_0397__screen145021152316">$ kubectl edit deploy nginx
+
+$ kubectl get rs
+NAME               DESIRED   CURRENT   READY     AGE
+nginx-6f9f58dffd   2         2         2         1m
+nginx-7f98958cdf   0         0         0         48m
+
+$ kubectl get pods
+NAME                     READY     STATUS    RESTARTS   AGE
+nginx-6f9f58dffd-tdmqk   1/1       Running   0          1m
+nginx-6f9f58dffd-tesqr   1/1       Running   0          1m</pre>
+<p id="cce_10_0397__p137257203294">The Deployment can use the <strong id="cce_10_0397__b1833572251510">maxSurge</strong> and <strong id="cce_10_0397__b19341222101520">maxUnavailable</strong> parameters to control the proportion of pods to be re-created during the upgrade, which is useful in many scenarios. The configuration is as follows:</p>
+<pre class="screen" id="cce_10_0397__screen27254201291">spec:
+  strategy:
+    rollingUpdate:
+      maxSurge: 1
+      maxUnavailable: 0
+    type: RollingUpdate</pre>
+<p id="cce_10_0397__p19232011173215">In the preceding example, the value of <strong id="cce_10_0397__b9540102821512">spec.replicas</strong> is <strong id="cce_10_0397__b35461528101517">2</strong>. If both <strong id="cce_10_0397__b105465288154">maxSurge</strong> and <strong id="cce_10_0397__b135462287155">maxUnavailable</strong> are the default value 25%, <strong id="cce_10_0397__b165461328161518">maxSurge</strong> allows a maximum of three pods to exist (2 x 1.25 = 2.5, rounded up to 3), and <strong id="cce_10_0397__b1154652871514">maxUnavailable</strong> does not allow a maximum of two pods to be unavailable (2 x 0.75 = 1.5, rounded up to 2). That is, during the upgrade process, there will always be two pods running. Each time a new pod is created, an old pod is deleted, until all pods are new.</p>
+</div>
+<div class="section" id="cce_10_0397__section48841529143718"><h4 class="sectiontitle">Rollback</h4><p id="cce_10_0397__p2086164923718">Rollback is to roll an application back to the earlier version when a fault occurs during the upgrade. A Deployment can be easily rolled back to the earlier version.</p>
+<p id="cce_10_0397__p031317413419">For example, if the upgraded image is faulty, you can run the <strong id="cce_10_0397__b99825404152">kubectl rollout undo</strong> command to roll back the Deployment.</p>
+<pre class="screen" id="cce_10_0397__screen178351538124219">$ kubectl rollout undo deployment nginx
+deployment.apps/nginx rolled back</pre>
+<p id="cce_10_0397__p18184141315436">A Deployment can be easily rolled back because it uses a ReplicaSet to control a pod. After the upgrade, the previous ReplicaSet still exists. The Deployment is rolled back by using the previous ReplicaSet to re-create the pod. The number of ReplicaSets stored in a Deployment can be restricted by the <strong id="cce_10_0397__b169491649101511">revisionHistoryLimit</strong> parameter. The default value is <strong id="cce_10_0397__b15636114173419">10</strong>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0130.html">Configuring a Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0398.html b/docs/cce/umn/cce_10_0398.html
new file mode 100644
index 00000000..97e692cb
--- /dev/null
+++ b/docs/cce/umn/cce_10_0398.html
@@ -0,0 +1,53 @@
+<a name="cce_10_0398"></a><a name="cce_10_0398"></a>
+
+<h1 class="topictitle1">Headless Service</h1>
+<div id="body0000001201246976"><p id="cce_10_0398__p0198342671">The preceding types of Services allow internal and external pod access, but not the following scenarios:</p>
+<ul id="cce_10_0398__ul719820421075"><li id="cce_10_0398__li1519816422078">Accessing all pods at the same time</li><li id="cce_10_0398__li719818421074">Pods in a Service accessing each other</li></ul>
+<p id="cce_10_0398__p149781249326">This is where headless Service come into service. A headless Service does not create a cluster IP address, and the DNS records of all pods are returned during query. In this way, the IP addresses of all pods can be queried. <a href="cce_10_0048.html">StatefulSets</a> use headless Services to support mutual access between pods.</p>
+<pre class="screen" id="cce_10_0398__screen139049509261">apiVersion: v1
+kind: Service       # Object type (Service)
+metadata:
+  name: nginx-headless
+  labels:
+    app: nginx
+spec:
+  ports:
+    - name: nginx      #     - name: nginx     # Name of the port for communication between pods
+      port: 80        # Port number for communication between pods
+  selector:
+    app: nginx        # Select the pod whose label is app:nginx.
+  clusterIP: None     # Set this parameter to <strong id="cce_10_0398__b42225813410">None</strong>, indicating that a headless Service is to be created.</pre>
+<p id="cce_10_0398__p9440056113214">Run the following command to create a headless Service:</p>
+<pre class="screen" id="cce_10_0398__screen1410422005013"># kubectl create -f headless.yaml 
+service/nginx-headless created</pre>
+<p id="cce_10_0398__p7632133615438">After the Service is created, you can query the Service.</p>
+<pre class="screen" id="cce_10_0398__screen1071013914448"># kubectl get svc
+NAME             TYPE        CLUSTER-IP   EXTERNAL-IP   PORT(S)   AGE
+nginx-headless   ClusterIP   None         &lt;none&gt;        80/TCP    5s</pre>
+<p id="cce_10_0398__p1755434415123">Create a pod to query the DNS. You can view the records of all pods. In this way, all pods can be accessed.</p>
+<pre class="screen" id="cce_10_0398__screen0590163941415">$ kubectl run -i --tty --image tutum/dnsutils dnsutils --restart=Never --rm /bin/sh
+If you do not see a command prompt, try pressing <strong id="cce_10_0398__b194705494485">Enter</strong>.
+/ # nslookup nginx-0.nginx
+Server:         10.247.3.10
+Address:        10.247.3.10#53
+Name:   nginx-0.nginx.default.svc.cluster.local
+Address: 172.16.0.31
+
+/ # nslookup nginx-1.nginx
+Server:         10.247.3.10
+Address:        10.247.3.10#53
+Name:   nginx-1.nginx.default.svc.cluster.local
+Address: 172.16.0.18
+
+/ # nslookup nginx-2.nginx
+Server:         10.247.3.10
+Address:        10.247.3.10#53
+Name:   nginx-2.nginx.default.svc.cluster.local
+Address: 172.16.0.19</pre>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0247.html">Services</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0399.html b/docs/cce/umn/cce_10_0399.html
new file mode 100644
index 00000000..340595cf
--- /dev/null
+++ b/docs/cce/umn/cce_10_0399.html
@@ -0,0 +1,54 @@
+<a name="cce_10_0399"></a><a name="cce_10_0399"></a>
+
+<h1 class="topictitle1">Configuring Intra-VPC Access</h1>
+<div id="body8662426"><p id="cce_10_0399__p12595319224">This section describes how to access an intranet from a container (outside the cluster in a VPC), including intra-VPC access and cross-VPC access.</p>
+<div class="section" id="cce_10_0399__section1940319933"><a name="cce_10_0399__section1940319933"></a><a name="section1940319933"></a><h4 class="sectiontitle">Intra-VPC Access</h4><p id="cce_10_0399__p1412775285417">The performance of accessing an intranet from a container varies depending on the container network models of a cluster.</p>
+<ul id="cce_10_0399__ul8703614010"><li id="cce_10_0399__li1574761115244"><strong id="cce_10_0399__b6543162034612">Container tunnel network</strong><p id="cce_10_0399__p63241112182417">The container tunnel network encapsulates network data packets through tunnels based on the node network. A container can access other resources in the same VPC as long as the node can access the resources. If the access fails, check whether the security group of the peer resource allows access from the node where the container is located.</p>
+</li><li id="cce_10_0399__li14583193313364"><strong id="cce_10_0399__b4639436311">Cloud Native Network 2.0</strong><p id="cce_10_0399__p20211635143612">In the Cloud Native Network 2.0 model, a container is assigned an IP address from the CIDR block of a VPC. The container CIDR block is the subnet of the VPC where the node is located. The container can naturally communicate with other addresses in the VPC. If the access fails, check whether the security group of peer resources allows the access from the container CIDR block.</p>
+</li><li id="cce_10_0399__li154245812247"><strong id="cce_10_0399__b1850132514511">VPC network</strong><p id="cce_10_0399__p13998128152418">The VPC network model uses VPC routes to forward container traffic. The container CIDR block and the node VPC are not in the same CIDR block. When a container accesses other resources in the same VPC, <strong id="cce_10_0399__b1893296104013">the security group of the peer resource must allow access of the container CIDR block</strong>.</p>
+<p id="cce_10_0399__p1911943811257">For example, the CIDR block where the cluster node resides is 192.168.10.0/24, and the container CIDR block is 172.16.0.0/16.</p>
+<p id="cce_10_0399__p9314195522717">There is an ECS whose IP address is 192.168.10.52 in the VPC (outside the cluster). The security group of the ECS allows access of only the CIDR block of the cluster node.</p>
+<p id="cce_10_0399__p15794175019308"></p>
+<p id="cce_10_0399__p1632042093119">In this case, if you ping 192.168.10.52 from the container, the ping operation fails.</p>
+<pre class="screen" id="cce_10_0399__screen51721930103212">kubectl exec test01-6cbbf97b78-krj6h  -it -- /bin/sh
+/ # ping 192.168.10.25
+PING 192.168.10.25 (192.168.10.25): 56 data bytes
+^C
+--- 192.168.10.25 ping statistics ---
+104 packets transmitted, 0 packets received, 100% packet loss</pre>
+<p id="cce_10_0399__p1683310101337">Configure the security group to allow access from the container CIDR block 172.16.0.0/16.</p>
+<p id="cce_10_0399__p1849215933316"></p>
+<p id="cce_10_0399__p1653519149356">In this case, 192.168.10.52 can be pinged from the container.</p>
+<pre class="screen" id="cce_10_0399__screen179951134153516">$ kubectl exec test01-6cbbf97b78-krj6h  -it -- /bin/sh
+/ # ping 192.168.10.25
+PING 192.168.10.25 (192.168.10.25): 56 data bytes
+64 bytes from 192.168.10.25: seq=0 ttl=64 time=1.412 ms
+64 bytes from 192.168.10.25: seq=1 ttl=64 time=1.400 ms
+64 bytes from 192.168.10.25: seq=2 ttl=64 time=1.299 ms
+64 bytes from 192.168.10.25: seq=3 ttl=64 time=1.283 ms
+^C
+--- 192.168.10.25 ping statistics ---
+4 packets transmitted, 4 packets received, 0% packet loss</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0399__section44190754210"><a name="cce_10_0399__section44190754210"></a><a name="section44190754210"></a><h4 class="sectiontitle">Cross-VPC Access</h4><p id="cce_10_0399__p1239214625717">Cross-VPC access is implemented by establishing a peering connection between VPCs.</p>
+<ul id="cce_10_0399__ul2682114214576"><li id="cce_10_0399__li66821142155718">In the container tunnel network model, a container can access the peer VPC only when the communication is enabled between the node network and the peer VPC.</li><li id="cce_10_0399__li1568244211578">Cloud Native Network 2.0 is similar to the container tunnel network. You only need to enable the communication between the subnet where the container is located and the peer VPC.</li><li id="cce_10_0399__li875142861916">Each VPC network has an independent container CIDR block. In addition to the VPC CIDR block, the container CIDR block also needs to be connected.<div class="p" id="cce_10_0399__p1781132801915"><a name="cce_10_0399__li875142861916"></a><a name="li875142861916"></a>Assume that there are two VPCs.<ul id="cce_10_0399__ul5258181310115"><li id="cce_10_0399__li123982112018">vpc-demo: Its CIDR block is 192.168.0.0/16, the cluster is in vpc-demo, and the container CIDR block is 10.0.0.0/16.</li><li id="cce_10_0399__li710617201915">vpc-demo2: Its CIDR block is 10.1.0.0/16.</li></ul>
+</div>
+<p id="cce_10_0399__p1435419185312">Create a peering connection named <strong id="cce_10_0399__b16695155835617">peering-demo</strong> (the local VPC is vpc-demo and the peer VPC is vpc-demo2). Add the container CIDR block to the route of the peer VPC.</p>
+<p id="cce_10_0399__p18708194117456">After this configuration, you can access the container CIDR block 10.0.0.0/16 in vpc-demo2. During the access, pay attention to the security group configuration and enable the port configuration.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0399__section1787164484211"><h4 class="sectiontitle">Accessing Other Cloud Services</h4><p id="cce_10_0399__p1010045604216">Common services that communicate with CCE through an intranet include RDS, DCS, Kafka, RabbitMQ, and ModelArts.</p>
+<p id="cce_10_0399__p149621552246">In addition to the network configurations described in <a href="#cce_10_0399__section1940319933">Intra-VPC Access</a> and <a href="#cce_10_0399__section44190754210">Cross-VPC Access</a>, you also need to check <strong id="cce_10_0399__b2058018169541">whether these cloud services allow external access</strong>. For example, the DCS Redis instance can be accessed only by the IP addresses in its whitelist. Generally, these cloud services can be accessed by IP addresses in the same VPC. However, the container CIDR block in the VPC network model is different from the CIDR block of the VPC. Therefore, you must add the container CIDR block to the whitelist.</p>
+</div>
+<div class="section" id="cce_10_0399__section481075910302"><h4 class="sectiontitle">What If a Container Fails to Access an Intranet?</h4><p id="cce_10_0399__p22153012324">If an intranet cannot be accessed from a container, perform the following operations:</p>
+<ol id="cce_10_0399__ol20449184973310"><li id="cce_10_0399__li0449184903320">View the security group rule of the peer server to check whether the container is allowed to access the peer server.<ul id="cce_10_0399__ul148171045193710"><li id="cce_10_0399__li138171145133717">The container tunnel network model needs to allow the IP address of the node where the container is located.</li><li id="cce_10_0399__li08171645193719">The VPC network model needs to allow the container CIDR block.</li><li id="cce_10_0399__li186112369549">The Cloud Native Network 2.0 model needs to allow the subnet where the container is located.</li></ul>
+</li><li id="cce_10_0399__li94484120358">Check whether a whitelist is configured for the peer server. For example, the DCS Redis instance can be accessed only by the IP addresses in its whitelist. Add the container and node CIDR blocks to the whitelist.</li><li id="cce_10_0399__li852151433910">Check whether the container engine is installed on the peer server and whether it conflicts with the container CIDR block in CCE. If a network conflict occurs, the access fails.</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0400.html b/docs/cce/umn/cce_10_0400.html
new file mode 100644
index 00000000..69b75ac7
--- /dev/null
+++ b/docs/cce/umn/cce_10_0400.html
@@ -0,0 +1,28 @@
+<a name="cce_10_0400"></a><a name="cce_10_0400"></a>
+
+<h1 class="topictitle1">Accessing Public Networks from a Container</h1>
+<div id="body8662426"><p id="cce_10_0400__cce_bestpractice_00274_0_p115941804492">Containers can access public networks in either of the following ways:</p>
+<ul id="cce_10_0400__cce_bestpractice_00274_0_ul54621241165111"><li id="cce_10_0400__cce_bestpractice_00274_0_li1646213417511">Bind a public IP address to the node where the container is located if the network model is VPC network or tunnel network.</li><li id="cce_10_0400__cce_bestpractice_00274_0_li21559167208">Bind a public IP address to the pod. (When the Cloud Native Network 2.0 model is used, manually bind an EIP to the ENI or sub-ENI of the pod on the VPC console. This method is not recommended because the IP address of a pod changes after the pod is rescheduled. As a result, the new pod cannot access the public network.)</li><li id="cce_10_0400__cce_bestpractice_00274_0_li54626419513">Configure SNAT rules through NAT Gateway.</li></ul>
+<p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p8060118">You can use NAT Gateway to enable container pods in a VPC to access public networks. NAT Gateway provides source network address translation (SNAT), which translates private IP addresses to a public IP address by binding an elastic IP address (EIP) to the gateway, providing secure and efficient access to the Internet. <a href="#cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619">Figure 1</a> shows the SNAT architecture. The SNAT function allows the container pods in a VPC to access the Internet without being bound to an EIP. SNAT supports a large number of concurrent connections, which makes it suitable for applications involving a large number of requests and connections.</p>
+<div class="fignone" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"><a name="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"></a><a name="cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"></a><span class="figcap"><b>Figure 1 </b>SNAT</span><br><span><img id="cce_10_0400__cce_bestpractice_00274_0_image5903131018582" src="en-us_image_0000001192028618.png"></span></div>
+<p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p195351309390">To enable a container pod to access the Internet, perform the following steps:</p>
+<ol id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol193061718104012"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li3306151811401"><span>Assign an EIP.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol1653535472210"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li19535175412226">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1353565412213">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0226102195_en-us_topic_0213478735_en-us_topic_0118066459_image153181912216" src="en-us_image_0275445566.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li7535145442211">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_image069119812416" src="en-us_image_0261818893.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b17538433191214">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1354993301211">Elastic IP</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li19535195413229">On the <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b148879106514">EIPs</strong> page, click <strong id="cce_10_0400__cce_bestpractice_00274_0_b1074015412595"></strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b207402041205917">Create</strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b1674013418593"> EIP</strong>.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1153595412218">Set parameters as required.<div class="note" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_note14643013113817"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p064611343811">Set <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1492418419227">Region</strong> to the region where container pods are located.</p>
+</div></div>
+</li></ol>
+</p></li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li73624518417"><span>Create a NAT gateway.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol16568135313263"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li19568185313261">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1933722072119">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_image11509111112222" src="en-us_image_0275445543.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1162619102717">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_image2573122211715" src="en-us_image_0261818896.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1279217292252">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b10793152992519">NAT Gateway</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li362121920273">On the displayed page, click <strong id="cce_10_0400__cce_bestpractice_00274_0_b3505181312120"></strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b150571314114">Create</strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b1950515131118"> Public NAT Gateway</strong> in the upper right corner.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li10966453202717">Set parameters as required.<div class="note" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_note134945524260"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p44943521266">Select the same VPC.</p>
+</div></div>
+</li></ol>
+</p></li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li5124338104217"><span>Configure an SNAT rule and bind the EIP to the subnet.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol12907104842817"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li119074484286">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li12981824132210">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_image8287172122614" src="en-us_image_0275452681.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li9908124813283">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_image7626391277" src="en-us_image_0261818899.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b850612479357">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1950794703510">NAT Gateway</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li9838182315292">On the page displayed, click the name of the NAT gateway for which you want to add the SNAT rule.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li86338159294">On the <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b37032365364">SNAT Rules</strong> tab page, click <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b07089369365">Add SNAT Rule</strong>.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li179090487287">Set parameters as required.</li></ol>
+<div class="note" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_note12381948172810"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_0_p1140519565386">SNAT rules take effect by CIDR block. As different container network models use different communication modes, the subnet needs to be selected according to the following rules:</p>
+<ul id="cce_10_0400__cce_bestpractice_00274_0_ul15248410114411"><li id="cce_10_0400__cce_bestpractice_00274_0_li8248101044414">Tunnel network and VPC network: Select the subnet where the node is located, that is, the subnet selected during node creation.</li></ul>
+<p id="cce_10_0400__cce_bestpractice_00274_0_p621313311074">If there are multiple CIDR blocks, you can create multiple SNAT rules or customize a CIDR block as long as the CIDR block contains the node subnet.</p>
+</div></div>
+<p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p19486202224014">After the SNAT rule is configured, workloads can access public networks from the container. Public networks can be pinged from the container.</p>
+</p></li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0402.html b/docs/cce/umn/cce_10_0402.html
new file mode 100644
index 00000000..0e079431
--- /dev/null
+++ b/docs/cce/umn/cce_10_0402.html
@@ -0,0 +1,82 @@
+<a name="cce_10_0402"></a><a name="cce_10_0402"></a>
+
+<h1 class="topictitle1">Host Network</h1>
+<div id="body0000001299329977"><div class="section" id="cce_10_0402__section13747276158"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0402__p16469141551519">Kubernetes allows pods to directly use the host/node network.</p>
+</div>
+<div class="section" id="cce_10_0402__section11571172031511"><h4 class="sectiontitle">Configuration</h4><p id="cce_10_0402__p3830323101515">Add <strong id="cce_10_0402__b510479164617">hostNetwork: true</strong> to the pod definition.</p>
+<pre class="screen" id="cce_10_0402__screen186116220260">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      <strong id="cce_10_0402__b2936142572616">hostNetwork: true</strong>
+      containers:
+      - image: nginx:alpine
+        name: nginx
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_10_0402__p1979451261114">The configuration succeeds if the pod IP is the same as the node IP.</p>
+<pre class="screen" id="cce_10_0402__screen1696312481713">$ kubectl get pod -owide
+NAME                    READY   STATUS    RESTARTS   AGE     IP          NODE        NOMINATED NODE   READINESS GATES
+nginx-6fdf99c8b-6wwft   1/1     Running   0          3m41s   10.1.0.55   10.1.0.55   &lt;none&gt;           &lt;none&gt;</pre>
+</div>
+<div class="section" id="cce_10_0402__section16111716174014"><h4 class="sectiontitle">Precautions</h4><p id="cce_10_0402__p14305179714">If a pod uses the host network, it occupies a host port. The pod IP is the host IP. To use the host network, you must confirm pods do not conflict with each other in terms of the host ports they occupy. Do not use the host network unless you know exactly which host port is used by which pod.</p>
+<p id="cce_10_0402__p1415115041113">When using the host network, you access the node to access a pod on it. Therefore, you need to <strong id="cce_10_0402__b05237268250">allow access from the security group port of the node</strong>. Otherwise, the access fails.</p>
+<p id="cce_10_0402__p16917123515212">In addition, using the host network requires you to reserve host ports for the pods. When using a Deployment to deploy pods of the hostNetwork type, ensure that <strong id="cce_10_0402__b1398384414260">the number of pods does not exceed the number of nodes</strong>. Otherwise, multiple pods will be scheduled onto the node, and they will fail to start due to port conflicts. For example, in the preceding example nginx YAML, if two pods (setting <strong id="cce_10_0402__b11504132311295">replicas</strong> to <strong id="cce_10_0402__b15584326192912">2</strong>) are deployed in a cluster with only one node, one pod cannot be created. The pod logs will show that the Nginx cannot be started because the port is occupied.</p>
+<div class="caution" id="cce_10_0402__note7854133510516"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0402__p7897195745016">Do not schedule multiple pods that use the host network on the same node. Otherwise, when a ClusterIP Service is created to access a pod, the cluster IP address cannot be accessed.</p>
+</div></div>
+<pre class="screen" id="cce_10_0402__screen177351026171916">$ kubectl get deploy
+NAME    READY   UP-TO-DATE   AVAILABLE   AGE
+nginx   1/2     2            1           67m
+$ kubectl get pod
+NAME                    READY   STATUS             RESTARTS   AGE
+nginx-6fdf99c8b-6wwft   1/1     Running            0          67m
+nginx-6fdf99c8b-rglm7   0/1     CrashLoopBackOff   13         44m
+$ kubectl logs nginx-6fdf99c8b-rglm7
+/docker-entrypoint.sh: /docker-entrypoint.d/ is not empty, will attempt to perform configuration
+/docker-entrypoint.sh: Looking for shell scripts in /docker-entrypoint.d/
+/docker-entrypoint.sh: Launching /docker-entrypoint.d/10-listen-on-ipv6-by-default.sh
+10-listen-on-ipv6-by-default.sh: info: Getting the checksum of /etc/nginx/conf.d/default.conf
+10-listen-on-ipv6-by-default.sh: info: Enabled listen on IPv6 in /etc/nginx/conf.d/default.conf
+/docker-entrypoint.sh: Launching /docker-entrypoint.d/20-envsubst-on-templates.sh
+/docker-entrypoint.sh: Launching /docker-entrypoint.d/30-tune-worker-processes.sh
+/docker-entrypoint.sh: Configuration complete; ready for start up
+2022/05/11 07:18:11 [emerg] 1#1: bind() to 0.0.0.0:80 failed (98: Address in use)
+nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to [::]:80 failed (98: Address in use)
+nginx: [emerg] bind() to [::]:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to 0.0.0.0:80 failed (98: Address in use)
+nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to [::]:80 failed (98: Address in use)
+nginx: [emerg] bind() to [::]:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to 0.0.0.0:80 failed (98: Address in use)
+nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to [::]:80 failed (98: Address in use)
+nginx: [emerg] bind() to [::]:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to 0.0.0.0:80 failed (98: Address in use)
+nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to [::]:80 failed (98: Address in use)
+nginx: [emerg] bind() to [::]:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to 0.0.0.0:80 failed (98: Address in use)
+nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: bind() to [::]:80 failed (98: Address in use)
+nginx: [emerg] bind() to [::]:80 failed (98: Address in use)
+2022/05/11 07:18:11 [emerg] 1#1: still could not bind()
+nginx: [emerg] still could not bind()</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0020.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0403.html b/docs/cce/umn/cce_10_0403.html
new file mode 100644
index 00000000..51c352b8
--- /dev/null
+++ b/docs/cce/umn/cce_10_0403.html
@@ -0,0 +1,17 @@
+<a name="cce_10_0403"></a><a name="cce_10_0403"></a>
+
+<h1 class="topictitle1">Changing Cluster Scale</h1>
+<div id="body0000001131095117"><div class="section" id="cce_10_0403__section160213214302"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0403__p91625416520">CCE allows you to change the number of nodes managed in a cluster.</p>
+</div>
+<div class="section" id="cce_10_0403__section15358134114117"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0403__ul36851344171417"><li id="cce_10_0403__li2686194471411">This function is supported for clusters of v1.15 and later versions.</li><li id="cce_10_0403__li83941825889">Starting from v1.15.11, the number of nodes in a cluster can be changed to 2000. The number of nodes in a single master node cannot be changed to 1000 or more.</li><li id="cce_10_0403__li03738710586">Currently, a cluster can only be scaled out to a larger specification, but cannot be scaled in.</li><li id="cce_10_0403__li126841917336">During the specifications change, master nodes will be powered off and on, and the cluster cannot run properly. Perform the change during off-peak hours.</li><li id="cce_10_0403__li95462472323">Changing the cluster scale does not affect the services running in the cluster. However, the control plane (master nodes) will be interrupted for a short period of time. You are advised not to perform any other operations (such as creating workloads) during the change.</li><li id="cce_10_0403__li20214141744">Change failures will trigger a cluster rollback to the normal state. If the rollback fails, submit a service ticket.</li></ul>
+</div>
+<div class="section" id="cce_10_0403__section1832111264289"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0403__ol10323172610285"><li id="cce_10_0403__li179831852301"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0403__uicontrol15332131717263"><b>Clusters</b></span>.</span></li><li id="cce_10_0403__li169841352902"><span>Click <span><img id="cce_10_0403__image98281624206" src="en-us_image_0000001236723668.png"></span> next to the cluster whose specifications need to be changed.</span></li><li id="cce_10_0403__li2941172833118"><span>On the page displayed, select a new flavor for <strong id="cce_10_0403__b6972823515">Target Flavor</strong> as required.</span></li><li id="cce_10_0403__li1891072315334"><span>Click <strong id="cce_10_0403__b090824933113">OK</strong>.</span><p><p id="cce_10_0403__p1680761618408">You can click <strong id="cce_10_0403__b0756112592417">Operation Records</strong> in the upper left corner to view the cluster change history. The status changes from <strong id="cce_10_0403__b175950360241">Executing</strong> to <strong id="cce_10_0403__b3595143618248">Successful</strong>, indicating that the cluster specifications are successfully changed.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0091.html">Clusters</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0423.html b/docs/cce/umn/cce_10_0423.html
new file mode 100644
index 00000000..1aa96fa1
--- /dev/null
+++ b/docs/cce/umn/cce_10_0423.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0423"></a><a name="cce_10_0423"></a>
+
+
+  <h1 class="topictitle1">Volcano Scheduling</h1>
+
+  <div id="body0000001405022885"><p id="cce_10_0423__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0384.html">Hybrid Deployment of Online and Offline Jobs</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0430.html b/docs/cce/umn/cce_10_0430.html
new file mode 100644
index 00000000..15d8d07a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0430.html
@@ -0,0 +1,89 @@
+<a name="cce_10_0430"></a><a name="cce_10_0430"></a>
+
+<h1 class="topictitle1">Basic Cluster Information</h1>
+<div id="body0000001439287493"><p id="cce_10_0430__p923425843412"><a href="https://kubernetes.io/" target="_blank" rel="noopener noreferrer">Kubernetes</a> allows you to easily deploy and manage containerized application and facilitates container scheduling and orchestration.</p>
+<p id="cce_10_0430__p087617574435">For developers, Kubernetes is a cluster operating system. Kubernetes provides service discovery, scaling, load balancing, self-healing, and even leader election, freeing developers from infrastructure-related configurations.</p>
+<p id="cce_10_0430__p11204125211240">When using Kubernetes, it is like you run a large number of servers as one and the method for deploying applications in Kubernetes is always the same.</p>
+<div class="section" id="cce_10_0430__section1865552014316"><h4 class="sectiontitle">Kubernetes Cluster Architecture</h4><p id="cce_10_0430__en-us_topic_0249851107_p989413913431">A Kubernetes cluster consists of master nodes (Masters) and worker nodes (Nodes). Applications are deployed on worker nodes, and you can specify the nodes for deployment.</p>
+<p id="cce_10_0430__en-us_topic_0249851107_p177913134514">The following figure shows the architecture of a Kubernetes cluster.</p>
+<div class="fignone" id="cce_10_0430__en-us_topic_0249851107_fig1124035552814"><span class="figcap"><b>Figure 1 </b>Kubernetes cluster architecture</span><br><span><img id="cce_10_0430__en-us_topic_0249851107_image91201347266" src="en-us_image_0267028603.png"></span></div>
+<p id="cce_10_0430__en-us_topic_0249851107_p1679744211105"><strong id="cce_10_0430__en-us_topic_0249851107_b115641204135">Master node</strong></p>
+<p id="cce_10_0430__en-us_topic_0249851107_p16688915171213">A master node is the machine where the control plane components run, including API server, Scheduler, Controller manager, and etcd.</p>
+<ul id="cce_10_0430__en-us_topic_0249851107_ul36981436204616"><li id="cce_10_0430__en-us_topic_0249851107_li15698173615464">API server: functions as a transit station for components to communicate with each other, receives external requests, and writes information to etcd.</li><li id="cce_10_0430__en-us_topic_0249851107_li6698183610466">Controller manager: performs cluster-level functions, such as component replication, node tracing, and node fault fixing.</li><li id="cce_10_0430__en-us_topic_0249851107_li8698173674618">Scheduler: schedules containers to nodes based on various conditions (such as available resources and node affinity).</li><li id="cce_10_0430__en-us_topic_0249851107_li6698173684613">etcd: serves as a distributed data storage component that stores cluster configuration information.</li></ul>
+<p id="cce_10_0430__en-us_topic_0249851107_p84384449512">In a production environment, multiple master nodes are deployed to ensure high cluster availability. For example, you can deploy three master nodes for your CCE cluster.</p>
+<p id="cce_10_0430__en-us_topic_0249851107_p691416554116"><strong id="cce_10_0430__en-us_topic_0249851107_b9975345122">Worker node</strong></p>
+<p id="cce_10_0430__en-us_topic_0249851107_p18205041220">A worker node is a compute node in a cluster, that is, a node running containerized applications. A worker node has the following components:</p>
+<ul id="cce_10_0430__en-us_topic_0249851107_ul19181255131118"><li id="cce_10_0430__en-us_topic_0249851107_li59181055191113">kubelet: communicates with the container runtime, interacts with the API server, and manages containers on the node.</li><li id="cce_10_0430__en-us_topic_0249851107_li191820550116">kube-proxy: serves as an access proxy between application components.</li><li id="cce_10_0430__en-us_topic_0249851107_li9918205591116">Container runtime: functions as the software for running containers. You can download images to build your container runtime, such as Docker.</li></ul>
+</div>
+<div class="section" id="cce_10_0430__section12927055173912"><h4 class="sectiontitle">Master Nodes and Cluster Scale</h4><p id="cce_10_0430__p5724161191510">When you create a cluster on CCE, you can have one or three master nodes. Three master nodes can create a cluster in HA mode.</p>
+<p id="cce_10_0430__p1577917514285">The master node specifications decide the number of nodes that can be managed by a cluster. You can select the cluster management scale, for example, 50 or 200 nodes.</p>
+</div>
+<div class="section" id="cce_10_0430__section151319151072"><h4 class="sectiontitle">Cluster Network</h4><p id="cce_10_0430__p5731628134020">From the perspective of the network, all nodes in a cluster are located in a VPC, and containers are running on the nodes. You need to configure node-node, node-container, and container-container communication.</p>
+<p id="cce_10_0430__p324784610184">A cluster network can be divided into three network types:</p>
+<ul id="cce_10_0430__ul165402429382"><li id="cce_10_0430__li954017424388">Node network: IP addresses are assigned to nodes in a cluster.</li><li id="cce_10_0430__li1557254623819">Container network: IP addresses are assigned to containers in a cluster for communication. Currently, multiple container network models are supported, and each model has its own working mechanism.</li><li id="cce_10_0430__li17172121185311">Service network: A Service is a Kubernetes object used to access containers. Each Service has a fixed IP address.</li></ul>
+<p id="cce_10_0430__p1671864135914">When you create a cluster, select a proper CIDR block for each network. Ensure that the CIDR blocks do not conflict with each other and have sufficient available IP addresses. <strong id="cce_10_0430__b14994162918313">You cannot change the container network model after the cluster is created.</strong> Plan the container network model properly in advance.</p>
+<p id="cce_10_0430__p12245104074016">You are advised to learn about the cluster network and container network models before creating a cluster. For details, see <a href="cce_10_0280.html">Container Network Models</a>.</p>
+</div>
+<div class="section" id="cce_10_0430__section2048514305592"><h4 class="sectiontitle">Cluster Lifecycle</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0430__table12191040104" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster status</caption><thead align="left"><tr id="cce_10_0430__row222012402006"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.7.2.2.3.1.1"><p id="cce_10_0430__p1322094012018">Status</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.7.2.2.3.1.2"><p id="cce_10_0430__p622024012014">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0430__row6220640203"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p822064015018">Creating</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p8220440605">A cluster is being created and is requesting for cloud resources.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row1822020409010"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p2022034016018">Running</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p1222014401700">A cluster is running properly.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row14220840606"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p10220640508">Scaling-out</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p17220184017012">A node is being added to a cluster.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row12220440503"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p680253414204">Scaling-in</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p9208569201">A node is being deleted from a cluster.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row1224521014401"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p2246111054012">Hibernating</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p72461510194016">A cluster is hibernating.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row1450522112209"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p8817339102011">Awaking</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p1250502111207">A cluster is being woken up.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row13614111762019"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p1261441762018">Upgrading</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p1361415175200">A cluster is being upgraded.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row142095617205"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p42065612200">Unavailable</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p22055652016">A cluster is unavailable.</p>
+</td>
+</tr>
+<tr id="cce_10_0430__row2056716914216"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_10_0430__p13567129172113">Deleting</p>
+</td>
+<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_10_0430__p105678916214">A cluster is being deleted.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0002.html">Cluster Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0461.html b/docs/cce/umn/cce_10_0461.html
new file mode 100644
index 00000000..6ae92d5a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0461.html
@@ -0,0 +1,94 @@
+<a name="cce_10_0461"></a><a name="cce_10_0461"></a>
+
+<h1 class="topictitle1">Precautions for Using a Node</h1>
+<div id="body0000001389082026"><div class="section" id="cce_10_0461__section192318418302"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0461__p8909587309">A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (PM), depending on your service requirements. The components on a node include kubelet, container runtime, and kube-proxy.</p>
+<div class="note" id="cce_10_0461__note62802132513"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0461__p17287216259">A Kubernetes cluster consists of master nodes and worker nodes. The nodes described in this section refer to <strong id="cce_10_0461__b214518810434">worker nodes</strong>, the computing nodes of a cluster that run containerized applications.</p>
+</div></div>
+<p id="cce_10_0461__p7224034124116">CCE uses high-performance Elastic Cloud Servers (ECSs) as nodes to build highly available Kubernetes clusters.</p>
+</div>
+<div class="section" id="cce_10_0461__section1667513391595"><a name="cce_10_0461__section1667513391595"></a><a name="section1667513391595"></a><h4 class="sectiontitle">Supported Node Specifications</h4><p id="cce_10_0461__p145110527493">Different regions support different node flavors, and node flavors may be changed or sold out. You are advised to log in to the CCE console and check whether the required node flavors are supported on the page for creating nodes.</p>
+</div>
+<div class="section" id="cce_10_0461__section270816512219"><h4 class="sectiontitle">Underlying File Storage System of Docker</h4><ul id="cce_10_0461__ul1042195318224"><li id="cce_10_0461__li1842253112217">In clusters of v1.15.6 or earlier, the underlying file storage system uses the XFS format.</li><li id="cce_10_0461__li1842185332216">In clusters of v1.15.11 or later, after a node is created or reset, the underlying file storage system uses the ext4 format.</li></ul>
+<p id="cce_10_0461__p18592419162315">For containerized applications that use the XFS format, pay attention to the impact of the underlying file storage format change. (The sequence of files in different file systems is different. For example, some Java applications reference a JAR package, but the directory contains multiple versions of the JAR package. If the version is not specified, the actual referenced package is determined by the system file.)</p>
+<p id="cce_10_0461__p177514150229">Run the <strong id="cce_10_0461__b1059112131477">docker info | grep "Backing Filesystem"</strong> command to check the format of the Docker underlying storage file used by the current node.</p>
+</div>
+<div class="section" id="cce_10_0461__section1163534412367"><h4 class="sectiontitle">Paas User and User Group</h4><p id="cce_10_0461__p2431914163714">When you create a node in a CCE cluster, a paas user or user group is created on the node by default. CCE components and CCE add-ons on a node run as a non-root user (paas user/user group) to minimize the running permission. If the paas user or user group is modified, CCE components and pods may fail to run properly.</p>
+<div class="notice" id="cce_10_0461__note1649203844910"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0461__p7884254523">The normal running of CCE components depends on the paas user or user group. Pay attention to the following requirements:</p>
+<ul id="cce_10_0461__ul82821025145111"><li id="cce_10_0461__li17775102813171">Do not modify the directory permission and container directory permission on a node.</li><li id="cce_10_0461__li1980170112013">Do not change the GID and UID of the paas user or user group.</li><li id="cce_10_0461__li86012816535">Do not directly use the paas user or user group to set the user and group to which the service file belongs.</li></ul>
+</div></div>
+</div>
+<div class="section" id="cce_10_0461__section10178149152811"><h4 class="sectiontitle">Node Lifecycle</h4><p id="cce_10_0461__p747083694014">A lifecycle indicates the node statuses recorded from the time when the node is created through the time when the node is deleted or released.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0461__table17402472296" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node statuses</caption><thead align="left"><tr id="cce_10_0461__row3772182292915"><th align="left" class="cellrowborder" valign="top" width="19.09%" id="mcps1.3.5.3.2.4.1.1"><p id="cce_10_0461__p87731822192912">Status</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="18.96%" id="mcps1.3.5.3.2.4.1.2"><p id="cce_10_0461__p10181992388">Status Attribute</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="61.95%" id="mcps1.3.5.3.2.4.1.3"><p id="cce_10_0461__p19773322162916">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0461__row127851396358"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_10_0461__p87851239123513">Running</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_10_0461__p29178413612">Stable state</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_10_0461__p49172415361">The node is running properly and is connected to the cluster.</p>
+<p id="cce_10_0461__p834918431444">Nodes in this state can provide services.</p>
+</td>
+</tr>
+<tr id="cce_10_0461__row10449165023519"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_10_0461__p16449155053517">Unavailable</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_10_0461__p338181615362">Stable state</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_10_0461__p438161693614">The node is not running properly.</p>
+<p id="cce_10_0461__p1316964110457">Instances in this state no longer provide services. In this case, perform the operations in <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0461__row4425127202910"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_10_0461__p114251477299">Creating</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_10_0461__p1318179103815">Intermediate state</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_10_0461__p24251375295">The node has been created but is not running.</p>
+</td>
+</tr>
+<tr id="cce_10_0461__row1385572713368"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_10_0461__p1485532773615">Installing</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_10_0461__p19300340173617">Intermediate state</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_10_0461__p1385562783619">The Kubernetes software is being installed on the node.</p>
+</td>
+</tr>
+<tr id="cce_10_0461__row6474103113718"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_10_0461__p0474133153710">Deleting</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_10_0461__p1347493163711">Intermediate state</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_10_0461__p6470184874013">The node is being deleted.</p>
+<p id="cce_10_0461__p1247423163713">If this state stays for a long time, an exception occurs.</p>
+</td>
+</tr>
+<tr id="cce_10_0461__row1342567172914"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_10_0461__p17425177172911">Stopped</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_10_0461__p51811919382">Stable state</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_10_0461__p63872919417">The node is stopped properly.</p>
+<p id="cce_10_0461__p147702274411">A node in this state cannot provide services. You can start the node on the ECS console.</p>
+</td>
+</tr>
+<tr id="cce_10_0461__row107389391356"><td class="cellrowborder" valign="top" width="19.09%" headers="mcps1.3.5.3.2.4.1.1 "><p id="cce_10_0461__p673813963511">Error</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.96%" headers="mcps1.3.5.3.2.4.1.2 "><p id="cce_10_0461__p61811496382">Stable state</p>
+</td>
+<td class="cellrowborder" valign="top" width="61.95%" headers="mcps1.3.5.3.2.4.1.3 "><p id="cce_10_0461__p9930111744220">The node is abnormal.</p>
+<p id="cce_10_0461__p1573815398352">Instances in this state no longer provide services. In this case, perform the operations in <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0180.html">Node Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0462.html b/docs/cce/umn/cce_10_0462.html
new file mode 100644
index 00000000..a91b6cda
--- /dev/null
+++ b/docs/cce/umn/cce_10_0462.html
@@ -0,0 +1,119 @@
+<a name="cce_10_0462"></a><a name="cce_10_0462"></a>
+
+<h1 class="topictitle1">Container Engine</h1>
+<div id="body0000001389559298"><div class="section" id="cce_10_0462__section178721435163116"><h4 class="sectiontitle">Introduction to Container Engines</h4><p id="cce_10_0462__p11430124094515">Container engines, one of the most important components of Kubernetes, manage the lifecycle of images and containers. The kubelet interacts with a container runtime through the Container Runtime Interface (CRI).</p>
+</div>
+<div class="section" id="cce_10_0462__section159298451879"><a name="cce_10_0462__section159298451879"></a><a name="section159298451879"></a><h4 class="sectiontitle">Mapping between Node OSs and Container Engines</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0462__table2291621581" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node OSs and container engines in CCE clusters</caption><thead align="left"><tr id="cce_10_0462__row910219215812"><th align="left" class="cellrowborder" valign="top" width="23.34%" id="mcps1.3.2.2.2.6.1.1"><p id="cce_10_0462__p148202181680">OS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.87%" id="mcps1.3.2.2.2.6.1.2"><p id="cce_10_0462__p131891727584">Kernel Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.2.2.2.6.1.3"><p id="cce_10_0462__p2102621818">Container Engine</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="34.47%" id="mcps1.3.2.2.2.6.1.4"><p id="cce_10_0462__p141021721812">Container Storage Rootfs</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.32%" id="mcps1.3.2.2.2.6.1.5"><p id="cce_10_0462__p4214133511514">Container Runtime</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0462__row810262382"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.2.6.1.1 "><p id="cce_10_0462__p88201018885">CentOS 7.x</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.87%" headers="mcps1.3.2.2.2.6.1.2 "><p id="cce_10_0462__p14189192717815">3.x</p>
+</td>
+<td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.2.2.2.6.1.3 "><p id="cce_10_0462__p16102102783">Docker</p>
+<p id="cce_10_0462__p1630412144431">Clusters of v1.23 and later support containerd.</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.47%" headers="mcps1.3.2.2.2.6.1.4 "><p id="cce_10_0462__p1510213216814">Clusters of v1.19.16 and earlier use Device Mapper.</p>
+<p id="cce_10_0462__p1251655494914">Clusters of v1.19.16 and later use OverlayFS.</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.32%" headers="mcps1.3.2.2.2.6.1.5 "><p id="cce_10_0462__p41351846105112">runC</p>
+</td>
+</tr>
+<tr id="cce_10_0462__row1410214218819"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.2.6.1.1 "><p id="cce_10_0462__p0820121812819">EulerOS 2.5</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.87%" headers="mcps1.3.2.2.2.6.1.2 "><p id="cce_10_0462__p53831124986">3.x</p>
+</td>
+<td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.2.2.2.6.1.3 "><p id="cce_10_0462__p12435452596">Docker</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.47%" headers="mcps1.3.2.2.2.6.1.4 "><p id="cce_10_0462__p14374192215015">Device Mapper</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.32%" headers="mcps1.3.2.2.2.6.1.5 "><p id="cce_10_0462__p14110105718817">runC</p>
+</td>
+</tr>
+<tr id="cce_10_0462__row1153401803319"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.2.6.1.1 "><p id="cce_10_0462__p13535121833315">EulerOS 2.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.87%" headers="mcps1.3.2.2.2.6.1.2 "><p id="cce_10_0462__p171891927688">4.x</p>
+</td>
+<td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.2.2.2.6.1.3 "><p id="cce_10_0462__p17531148891">Docker</p>
+<p id="cce_10_0462__p45321248492">Clusters of v1.23 and later support containerd.</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.47%" headers="mcps1.3.2.2.2.6.1.4 "><p id="cce_10_0462__p8103122088">OverlayFS</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.32%" headers="mcps1.3.2.2.2.6.1.5 "><p id="cce_10_0462__p161312057089">runC</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0462__table138541215675" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Node OSs and container engines in CCE Turbo clusters</caption><thead align="left"><tr id="cce_10_0462__row28547159714"><th align="left" class="cellrowborder" valign="top" width="16.16%" id="mcps1.3.2.3.2.7.1.1"><p id="cce_10_0462__p7854161514717">Node Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="19.68%" id="mcps1.3.2.3.2.7.1.2"><p id="cce_10_0462__p2085420159718">OS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="14.399999999999999%" id="mcps1.3.2.3.2.7.1.3"><p id="cce_10_0462__p128555151972">Kernel Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.24%" id="mcps1.3.2.3.2.7.1.4"><p id="cce_10_0462__p158557151674">Container Engine</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="19.32%" id="mcps1.3.2.3.2.7.1.5"><p id="cce_10_0462__p12855915470">Container Storage Rootfs</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.2%" id="mcps1.3.2.3.2.7.1.6"><p id="cce_10_0462__p18855101511717">Container Runtime</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0462__row385510159718"><td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p138551215976">Elastic Cloud Server (VM)</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.68%" headers="mcps1.3.2.3.2.7.1.2 "><p id="cce_10_0462__p78552151270">CentOS 7.x</p>
+<p id="cce_10_0462__p1120818541420">EulerOS 2.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.399999999999999%" headers="mcps1.3.2.3.2.7.1.3 "><p id="cce_10_0462__p17855131519719">3.x</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.24%" headers="mcps1.3.2.3.2.7.1.4 "><p id="cce_10_0462__p6855315876">Docker</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.32%" headers="mcps1.3.2.3.2.7.1.5 "><p id="cce_10_0462__p13855815471">OverlayFS</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.2%" headers="mcps1.3.2.3.2.7.1.6 "><p id="cce_10_0462__p085514150718">runC</p>
+</td>
+</tr>
+<tr id="cce_10_0462__row1485531515716"><td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p198554151379">Elastic Cloud Server (physical machine)</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.68%" headers="mcps1.3.2.3.2.7.1.2 "><p id="cce_10_0462__p1885521519716">EulerOS 2.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.399999999999999%" headers="mcps1.3.2.3.2.7.1.3 "><p id="cce_10_0462__p148551515174">4.x</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.24%" headers="mcps1.3.2.3.2.7.1.4 "><p id="cce_10_0462__p685591513715">containerd</p>
+</td>
+<td class="cellrowborder" valign="top" width="19.32%" headers="mcps1.3.2.3.2.7.1.5 "><p id="cce_10_0462__p1485511151072">Device Mapper</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.2%" headers="mcps1.3.2.3.2.7.1.6 "><p id="cce_10_0462__p485519152719">Kata</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0462__section17583257191519"><h4 class="sectiontitle">Differences in Tracing</h4><ul id="cce_10_0462__ul7366822143615"><li id="cce_10_0462__li63661022103618">Docker (Kubernetes 1.23 and earlier versions):<p id="cce_10_0462__p222672573613"><a name="cce_10_0462__li63661022103618"></a><a name="li63661022103618"></a>kubelet --&gt; docker shim (in the kubelet process) --&gt; docker --&gt; containerd</p>
+</li><li id="cce_10_0462__li536662203619">Docker (community solution for Kubernetes v1.24 or later):<p id="cce_10_0462__p19828162673619"><a name="cce_10_0462__li536662203619"></a><a name="li536662203619"></a>kubelet --&gt; cri-dockerd (kubelet uses CRI to connect to cri-dockerd) --&gt; docker--&gt; containerd </p>
+</li><li id="cce_10_0462__li1736652212360">containerd:<p id="cce_10_0462__p145119128365"><a name="cce_10_0462__li1736652212360"></a><a name="li1736652212360"></a>kubelet --&gt; cri plugin (in the containerd process) --&gt; containerd</p>
+</li></ul>
+<p id="cce_10_0462__p94517125362">Although Docker has added functions such as swarm cluster, docker build, and Docker APIs, it also introduces bugs. Compared with containerd, Docker has one more layer of calling. <strong id="cce_10_0462__b1399119182517">Therefore, containerd is more resource-saving and secure.</strong></p>
+</div>
+<div class="section" id="cce_10_0462__section14430187154416"><h4 class="sectiontitle">Container Engine Version Description</h4><ul id="cce_10_0462__ul16192131615441"><li id="cce_10_0462__li147394435210">Docker<ul id="cce_10_0462__ul15372112405214"><li id="cce_10_0462__li191921116174416">EulerOS/CentOS: docker-engine 18.9.0, a Docker version customized for CCE. Security vulnerabilities will be fixed in a timely manner.</li></ul>
+</li><li id="cce_10_0462__li18953141119523">containerd: 1.4.1</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0180.html">Node Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0463.html b/docs/cce/umn/cce_10_0463.html
new file mode 100644
index 00000000..f8a0771b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0463.html
@@ -0,0 +1,129 @@
+<a name="cce_10_0463"></a><a name="cce_10_0463"></a>
+
+<h1 class="topictitle1">Kata Containers and Common Containers</h1>
+<div id="body0000001389560674"><p id="cce_10_0463__p13611030182615">The most significant difference is that each Kata container (pod) runs on an independent micro-VM, has an independent OS kernel, and is securely isolated at the virtualization layer. CCE provides container isolation that is more secure than independent private Kubernetes clusters. With isolated OS kernels, computing resources, and networks, pod resources and data will not be preempted and stolen by other pods.</p>
+<p id="cce_10_0463__p119042411320">You can run common or Kata containers on a single node in a CCE Turbo cluster. The differences between them are as follows:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0463__table7735928151311" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0463__row1978816285135"><th align="left" class="cellrowborder" valign="top" width="19%" id="mcps1.3.3.1.5.1.1"><p id="cce_10_0463__p7788142811132"><strong id="cce_10_0463__b867383211104">Category</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="29.93%" id="mcps1.3.3.1.5.1.2"><p id="cce_10_0463__p17788112811134"><strong id="cce_10_0463__b34501340104">Kata Container</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.13%" id="mcps1.3.3.1.5.1.3"><p id="cce_10_0463__p2078842881319"><strong id="cce_10_0463__b3842440111011">Common Container (Docker)</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.94%" id="mcps1.3.3.1.5.1.4"><p id="cce_10_0463__p12832194118518"><strong id="cce_10_0463__b89502434101">Common Container (containerd)</strong></p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0463__row185153106411"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p152517212098">Node type used to run containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p75254214913">Bare-metal server (BMS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p7525021599">VM</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p1483212415513">VM</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row953462111916"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p65258219915">Container Engine</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p8525821797">containerd</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p115259211298">Docker</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p5832341145114">containerd</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row68981259143316"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p1989855911335">Container Runtime</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p12898185920339">Kata</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p1889814594334">runC</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p4832541155111">runC</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row125346216916"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p1052519218916">Container kernel</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p75252211696">Exclusive kernel</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p1752510211993">Sharing the kernel with the host</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p1583274111515">Sharing the kernel with the host</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row453414211995"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p552562119914">Container isolation</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p252514211797">Lightweight VMs</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p185251921799">cgroups and namespaces</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p0832341145115">cgroups and namespaces</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row145341921791"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p35256211999">Container engine storage driver</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p752582113913">Device Mapper</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p752542119911">OverlayFS2</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p1983218411510">OverlayFS</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row1753372115912"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p11525321495"><a href="https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/" target="_blank" rel="noopener noreferrer">Pod overhead</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p69621414132319">Memory: 100 MiB</p>
+<p id="cce_10_0463__p1213422142320">CPU: 0.1 cores</p>
+<p id="cce_10_0463__p1325184142613">Pod overhead is a feature for accounting for the resources consumed by the pod infrastructure on top of the container requests and limits. For example, if <strong id="cce_10_0463__b18147183054414">limits.cpu</strong> is set to 0.5 cores and <strong id="cce_10_0463__b10148133024418">limits.memory</strong> to 256 MiB for a pod, the pod will request 0.6-core CPUs and 356 MiB of memory.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p1452510214911">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p1083218417512">None</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row114111106308"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p54113033015">Minimal specifications</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p104113013304">Memory: 256 MiB</p>
+<p id="cce_10_0463__p540452918310">CPU: 0.25 cores</p>
+<p id="cce_10_0463__p0859515379">It is recommended that the ratio of CPU (unit: core) to memory (unit: GiB) be in the range of 1:1 to 1:8. For example, if CPU is 0.5 cores, the memory should range form 512 MiB to 4 GiB.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p34112093012">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p583220414513">None</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row68812038164219"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p1878862812136">Container engine CLI</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p478819289134">crictl</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p578815286134">Docker</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p1983214185118">crictl</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row55101249388"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p145100242386">Pod computing resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p77887281138">The request and limit values must be the same for both CPU and memory.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p127886286135">The request and limit values can be different for both CPU and memory.</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p1832941155112">The request and limit values can be different for both CPU and memory.</p>
+</td>
+</tr>
+<tr id="cce_10_0463__row141611128378"><td class="cellrowborder" valign="top" width="19%" headers="mcps1.3.3.1.5.1.1 "><p id="cce_10_0463__p31681214377">Host network</p>
+</td>
+<td class="cellrowborder" valign="top" width="29.93%" headers="mcps1.3.3.1.5.1.2 "><p id="cce_10_0463__p46341018133713">Not supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.13%" headers="mcps1.3.3.1.5.1.3 "><p id="cce_10_0463__p13634118193715">Supported</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.94%" headers="mcps1.3.3.1.5.1.4 "><p id="cce_10_0463__p14832164116515">Supported</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0180.html">Node Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0465.html b/docs/cce/umn/cce_10_0465.html
new file mode 100644
index 00000000..96444536
--- /dev/null
+++ b/docs/cce/umn/cce_10_0465.html
@@ -0,0 +1,18 @@
+<a name="cce_10_0465"></a><a name="cce_10_0465"></a>
+
+<h1 class="topictitle1">Pod Security</h1>
+<div id="body0000001440777153"><p id="cce_10_0465__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0275.html">Configuring a Pod Security Policy</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0466.html">Configuring Pod Security Admission</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0466.html b/docs/cce/umn/cce_10_0466.html
new file mode 100644
index 00000000..d8316ec7
--- /dev/null
+++ b/docs/cce/umn/cce_10_0466.html
@@ -0,0 +1,107 @@
+<a name="cce_10_0466"></a><a name="cce_10_0466"></a>
+
+<h1 class="topictitle1">Configuring Pod Security Admission</h1>
+<div id="body0000001441140089"><p id="cce_10_0466__p83099343112">Before using <a href="https://kubernetes.io/docs/concepts/security/pod-security-admission/" target="_blank" rel="noopener noreferrer">Pod Security Admission</a>, you need to understand Kubernetes <a href="https://kubernetes.io/docs/concepts/security/pod-security-standards/" target="_blank" rel="noopener noreferrer">Pod Security Standards</a>. These standards define different isolation levels for pods. They let you define how you want to restrict the behavior of pods in a clear, consistent fashion. Kubernetes offers a built-in pod security admission controller to enforce the pod security standards. Pod security restrictions are applied at the namespace level when pods are created.</p>
+<p id="cce_10_0466__p257612516312">The pod security standard defines three security policy levels:</p>
+
+<div class="tablenoborder"><a name="cce_10_0466__table0547553318"></a><a name="table0547553318"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0466__table0547553318" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Pod security policy levels</caption><thead align="left"><tr id="cce_10_0466__row8576251317"><th align="left" class="cellrowborder" valign="top" width="22.5%" id="mcps1.3.3.2.3.1.1"><p id="cce_10_0466__p0576185113113">Level</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="77.5%" id="mcps1.3.3.2.3.1.2"><p id="cce_10_0466__p145763510317">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0466__row2576155103114"><td class="cellrowborder" valign="top" width="22.5%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0466__p1457695183116">privileged</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.5%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0466__p25771655312">Unrestricted policy, providing the widest possible level of permissions, typically aimed at system- and infrastructure-level workloads managed by privileged, trusted users, such as CNIs and storage drivers.</p>
+</td>
+</tr>
+<tr id="cce_10_0466__row957745203113"><td class="cellrowborder" valign="top" width="22.5%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0466__p135770517313">baseline</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.5%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0466__p257765173110">Minimally restrictive policy which prevents known privilege escalations, typically targeted at non-critical workloads. This policy disables capabilities such as hostNetwork and hostPID.</p>
+</td>
+</tr>
+<tr id="cce_10_0466__row6577115133114"><td class="cellrowborder" valign="top" width="22.5%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0466__p1857775163110">restricted</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.5%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0466__p75779513312">Heavily restricted policy, following current Pod hardening best practices. </p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0466__p188985325013"><a href="#cce_10_0466__section4761636371">Pod security admission</a> is applied at the namespace level. The controller restricts the security context and other parameters in the pod or container in the namespace. The privileged policy does not verify the <strong id="cce_10_0466__b18165143071319">securityContext</strong> field of the pod and container. The baseline and restricted policies have different requirements on <strong id="cce_10_0466__b1145903119322">securityContext</strong>. For details, see <a href="https://kubernetes.io/docs/concepts/security/pod-security-standards/" target="_blank" rel="noopener noreferrer">Pod Security Standards</a>.</p>
+<p id="cce_10_0466__p145617304596">Setting security context: <a href="https://kubernetes.io/docs/tasks/configure-pod-container/security-context/" target="_blank" rel="noopener noreferrer">Configure a Security Context for a Pod or Container</a></p>
+<div class="section" id="cce_10_0466__section5799112914313"><h4 class="sectiontitle">Pod Security Admission Labels</h4><p id="cce_10_0466__p19152155443">Kubernetes defines three types of labels for Pod Security Admission (see <a href="#cce_10_0466__table198561415448">Table 2</a>). You can set these labels in a namespace to define the pod security standard level to be used. However, do not change the pod security standard level in system namespaces such as kube-system. Otherwise, pods in the system namespace may be faulty.</p>
+
+<div class="tablenoborder"><a name="cce_10_0466__table198561415448"></a><a name="table198561415448"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0466__table198561415448" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Pod security admission labels</caption><thead align="left"><tr id="cce_10_0466__row9151615174411"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.6.3.2.4.1.1"><p id="cce_10_0466__p915171516445">Mode</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.6.3.2.4.1.2"><p id="cce_10_0466__p6348919151310">Target Object</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.6.3.2.4.1.3"><p id="cce_10_0466__p41571504419">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0466__row515141520440"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.3.2.4.1.1 "><p id="cce_10_0466__p91515151447">enforce</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.3.2.4.1.2 "><p id="cce_10_0466__p3348171912132">Pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.6.3.2.4.1.3 "><p id="cce_10_0466__p1115151514413">Policy violations will cause the pod to be rejected.</p>
+</td>
+</tr>
+<tr id="cce_10_0466__row6159155449"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.3.2.4.1.1 "><p id="cce_10_0466__p121541514417">audit</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.3.2.4.1.2 "><p id="cce_10_0466__p834818193135">Workloads (such as Deployment and job)</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.6.3.2.4.1.3 "><p id="cce_10_0466__p7151115194412">Policy violations will trigger the addition of an audit annotation to the event recorded in the audit log, but are otherwise allowed. </p>
+</td>
+</tr>
+<tr id="cce_10_0466__row1415315164416"><td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.3.2.4.1.1 "><p id="cce_10_0466__p51591511449">warn</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.6.3.2.4.1.2 "><p id="cce_10_0466__p434818194133">Workloads (such as Deployment and job)</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.6.3.2.4.1.3 "><p id="cce_10_0466__p215215104419">Policy violations will trigger a user-facing warning, but are otherwise allowed. </p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="note" id="cce_10_0466__note71481644088"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0466__p131482441481">Pods are often created indirectly, by creating a workload object such as a Deployment or job. To help catch violations early, both the audit and warning modes are applied to the workload resources. However, the enforce mode is applied only to the resulting pod objects.</p>
+</div></div>
+</div>
+<div class="section" id="cce_10_0466__section4761636371"><a name="cce_10_0466__section4761636371"></a><a name="section4761636371"></a><h4 class="sectiontitle">Enforcing Pod Security Admission with Namespace Labels</h4><p id="cce_10_0466__p14801896481">You can label namespaces to enforce pod security standards. Assume that a namespace is configured as follows:</p>
+<pre class="screen" id="cce_10_0466__screen44687319484">apiVersion: v1
+kind: Namespace
+metadata:
+  name: my-baseline-namespace
+  labels:
+<strong id="cce_10_0466__b1022913263492">    pod-security.kubernetes.io/enforce: privileged</strong>
+    <strong id="cce_10_0466__b9439174835810">pod-security.kubernetes.io/enforce-version: v1.25</strong>
+<strong id="cce_10_0466__b192309261491">    pod-security.kubernetes.io/audit: baseline</strong>
+<strong id="cce_10_0466__b29131029135911">    pod-security.kubernetes.io/audit-version: v1.25</strong>
+<strong id="cce_10_0466__b79171929115911">    pod-security.kubernetes.io/warn: restricted</strong>
+<strong id="cce_10_0466__b7919112912594">    pod-security.kubernetes.io/warn-version: v1.25</strong>
+
+    # The label can be in either of the following formats:
+    # pod-security.kubernetes.io/&lt;MODE&gt;: &lt;LEVEL&gt; 
+    # pod-security.kubernetes.io/&lt;MODE&gt;-version: &lt;VERSION&gt;  
+    # The audit and warn modes inform you of which security behaviors are violated by the load.</pre>
+<p id="cce_10_0466__p2237134475714">Namespace labels indicate which policy level to apply for the mode. For each mode, there are two labels that determine the policy used:</p>
+<ul id="cce_10_0466__ul713891095216"><li id="cce_10_0466__li1613891019528">pod-security.kubernetes.io/&lt;MODE&gt;: &lt;LEVEL&gt;<ul id="cce_10_0466__ul16953114416611"><li id="cce_10_0466__li199531644269">&lt;MODE&gt;: must be <strong id="cce_10_0466__b18866185105319">enforce</strong>, <strong id="cce_10_0466__b1627025620531">audit</strong>, or <strong id="cce_10_0466__b109838355549">warn</strong>. For details about the modes, see <a href="#cce_10_0466__table198561415448">Table 2</a>.</li><li id="cce_10_0466__li1953444969">&lt;LEVEL&gt;: must be <strong id="cce_10_0466__b122195105415">privileged</strong>, <strong id="cce_10_0466__b10631185320547">baseline</strong>, or <strong id="cce_10_0466__b16266957185419">restricted</strong>. For details about the levels, see <a href="#cce_10_0466__table0547553318">Table 1</a>.</li></ul>
+</li><li id="cce_10_0466__li864395910010">pod-security.kubernetes.io/&lt;MODE&gt;-version: &lt;VERSION&gt;<p id="cce_10_0466__p045914511438"><a name="cce_10_0466__li864395910010"></a><a name="li864395910010"></a>Optional, which pins the policy to a given Kubernetes version.</p>
+<ul id="cce_10_0466__ul177621555235"><li id="cce_10_0466__li7751555313">&lt;MODE&gt;: must be <strong id="cce_10_0466__b1733415165915">enforce</strong>, <strong id="cce_10_0466__b52001181591">audit</strong>, or <strong id="cce_10_0466__b3825101005916">warn</strong>. For details about the modes, see <a href="#cce_10_0466__table198561415448">Table 2</a>.</li><li id="cce_10_0466__li17549164744">&lt;VERSION&gt;: Kubernetes version number. For example, v1.25. You can also use <strong id="cce_10_0466__b1590564255911">latest</strong>.</li></ul>
+</li></ul>
+<p id="cce_10_0466__p23725491819">If pods are deployed in the preceding namespace, the following security restrictions apply:</p>
+<ol id="cce_10_0466__ol337294910815"><li id="cce_10_0466__li1837254915817">The verification in the enforce mode is skipped (enforce mode + privileged level).</li><li id="cce_10_0466__li203722498812">Restrictions related to the baseline policy are verified (audit mode + baseline level). That is, if the pod or container violates the policy, the corresponding event is recorded into the audit log.</li><li id="cce_10_0466__li1372749485">Restrictions related to the restricted policy are verified (warn mode + restricted level). That is, if the pod or container violates the policy, the user will receive an alarm when creating the pod.</li></ol>
+</div>
+<div class="section" id="cce_10_0466__section7164192319226"><h4 class="sectiontitle">Migrating from Pod Security Policy to Pod Security Admission</h4><p id="cce_10_0466__p645319354122">If you use pod security policies in a cluster earlier than v1.25 and need to replace them with pod security admission in a cluster of v1.25 or later, follow the guide in <a href="https://kubernetes.io/docs/tasks/configure-pod-container/migrate-from-psp/#eliminating-mutaging-fields" target="_blank" rel="noopener noreferrer">Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller</a>.</p>
+<div class="notice" id="cce_10_0466__note1638381691412"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ol id="cce_10_0466__ol1236433313325"><li id="cce_10_0466__li1568774816321">Pod security admission supports only three isolation modes, less flexible than pod security policies. If you require more control over specific constraints, you will need to use a Validating Admission Webhook to enforce those policies.</li><li id="cce_10_0466__li836453314322">Pod security admission is a non-mutating admission controller, meaning it will not modify pods before validating them. If you were relying on this aspect of PSP, you will need to either modify the security context in your workloads, or use a Mutating Admission Webhook to make those changes.</li><li id="cce_10_0466__li33641833153218">PSP lets you bind different policies to different service accounts. This approach has many pitfalls and is not recommended, but if you require this feature anyway you will need to use a third-party webhook instead.</li><li id="cce_10_0466__li1336419336324">Do not apply pod security admission to namespaces where CCE components, such as kube-system, kube-public, and kube-node-lease, are deployed. Otherwise, CCE components and add-on functions will be abnormal.</li></ol>
+</div></div>
+</div>
+<div class="section" id="cce_10_0466__section164185819161"><h4 class="sectiontitle">Reference</h4><ul id="cce_10_0466__ul591314919191"><li id="cce_10_0466__li2321924165"><a href="https://kubernetes.io/docs/concepts/security/pod-security-admission/" target="_blank" rel="noopener noreferrer">Pod Security Admission</a></li><li id="cce_10_0466__li891379111912"><a href="https://kubernetes.io/docs/reference/access-authn-authz/psp-to-pod-security-standards/" target="_blank" rel="noopener noreferrer">Mapping PodSecurityPolicies to Pod Security Standards</a></li><li id="cce_10_0466__li691310920192"><a href="https://kubernetes.io/docs/tasks/configure-pod-container/enforce-standards-namespace-labels/" target="_blank" rel="noopener noreferrer">Enforce Pod Security Standards with Namespace Labels</a></li><li id="cce_10_0466__li1793512451390"><a href="https://kubernetes.io/docs/tasks/configure-pod-container/enforce-standards-admission-controller/" target="_blank" rel="noopener noreferrer">Enforce Pod Security Standards by Configuring the Built-in Admission Controller</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0465.html">Pod Security</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0467.html b/docs/cce/umn/cce_10_0467.html
new file mode 100644
index 00000000..ca7e4c2c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0467.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0467"></a><a name="cce_10_0467"></a>
+
+<h1 class="topictitle1">CCE Kubernetes 1.25 Release Notes</h1>
+<div id="body8662426"><p id="cce_10_0467__en-us_topic_0000001430891141_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_p8060118">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.25.</p>
+<div class="section" id="cce_10_0467__en-us_topic_0000001430891141_en-us_topic_0000001072975092_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><p id="cce_10_0467__en-us_topic_0000001430891141_p1185317533351"><strong id="cce_10_0467__b137991217155516">Kubernetes 1.25 Release Notes</strong></p>
+<ul id="cce_10_0467__ul1034517171059"><li id="cce_10_0467__li234591715512">PodSecurityPolicy is replaced by Pod Security Admission. For details about the migration, see <a href="https://kubernetes.io/docs/tasks/configure-pod-container/migrate-from-psp/" target="_blank" rel="noopener noreferrer">Migrate from PodSecurityPolicy to the Built-In PodSecurity Admission Controller</a>.</li><li id="cce_10_0467__li734501714517">SeccompDefault is in Beta. To enable this feature, you need to add the startup parameter <strong id="cce_10_0467__b1837674319576">--seccomp-default=true</strong> to kubelet. In this way, seccomp is set to <strong id="cce_10_0467__b151591956135715">RuntimeDefault</strong> by default, improving the system security. Clusters of v1.25 no longer use <span class="parmvalue" id="cce_10_0467__parmvalue13151857965"><b>seccomp.security.alpha.kubernetes.io/pod</b></span> and <span class="parmvalue" id="cce_10_0467__parmvalue263121771"><b>container.seccomp.security.alpha.kubernetes.io/annotation</b></span> to use seccomp. Replace them with the <span class="parmvalue" id="cce_10_0467__parmvalue081993710"><b>securityContext.seccompProfile</b></span> field in the pod or container. For details, see <a href="https://kubernetes.io/docs/tasks/configure-pod-container/security-context/" target="_blank" rel="noopener noreferrer">Configure a Security Context for a Pod or Container</a>.<div class="note" id="cce_10_0467__note434122513125"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0467__p6489429131217">After the feature is enabled, the system calls required by the application may be restricted by the runtime. Ensure that the debugging is performed in the test environment and the application is not affected.</p>
+</div></div>
+</li><li id="cce_10_0467__li1345201719517">EndPort in Network Policy is stable. This feature is incorporated in version 1.21. EndPort is added to NetworkPolicy for you to specify a port range.</li><li id="cce_10_0467__li209321580571">Since clusters of v1.25, Kubernetes does not support certificate authentication generated using the SHA1WithRSA or ECDSAWithSHA1 algorithm. You are advised to use the SHA256 algorithm.</li></ul>
+<p id="cce_10_0467__en-us_topic_0000001430891141_p10214233152815"><strong id="cce_10_0467__en-us_topic_0000001430891141_b8804105410284">Kubernetes 1.24 Release Notes</strong></p>
+<ul id="cce_10_0467__en-us_topic_0000001430891141_ul4368918102916"><li id="cce_10_0467__li5755183917532">Beta APIs are disabled by default. When some long-term beta APIs are removed from Kubernetes, 90% cluster administrators do not care about the beta APIs. Beta features are not recommended in the production environment. However, due to the default enabling policy, these APIs are enabled in the production environment, incurring risks. Therefore, in v1.24 and later versions, beta APIs are disabled by default except for the enabled beta APIs.</li><li id="cce_10_0467__li129121539173213">The LegacyServiceAccountTokenNoAutoGeneration feature is in beta state. By default, this feature is enabled and no more secret token will be automatically generated for the service account. If you want to use a token that never expires, you need to create a secret and mount it. For details, see <a href="https://kubernetes.io/docs/concepts/configuration/secret/#service-account-token-secrets" target="_blank" rel="noopener noreferrer">Service account token secrets</a>.</li><li id="cce_10_0467__li1324516314370"><strong id="cce_10_0467__b685935518179">service.alpha.kubernetes.io/tolerate-unready-endpoints</strong> is replaced by <strong id="cce_10_0467__b165527281810">Service.spec.publishNotReadyAddresses</strong>.</li><li id="cce_10_0467__li53631441103210">The <strong id="cce_10_0467__b95215274185">Service.Spec.LoadBalancerIP</strong> tag is deprecated and may be removed in later versions. Use a customized annotation.</li></ul>
+</div>
+<div class="section" id="cce_10_0467__en-us_topic_0000001430891141_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_section1272182810583"><h4 class="sectiontitle">References</h4><p id="cce_10_0467__en-us_topic_0000001430891141_en-us_topic_0000001072975092_p15127239183119">For more details about the performance comparison and function evolution between Kubernetes 1.25 and other versions, see the following documents:</p>
+<ul id="cce_10_0467__en-us_topic_0000001430891141_en-us_topic_0000001072975092_ul10912174853114"><li id="cce_10_0467__en-us_topic_0000001430891141_en-us_topic_0000001072975092_li17912184843113"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.25.md" target="_blank" rel="noopener noreferrer">Kubernetes v1.25 Release Notes</a></li><li id="cce_10_0467__en-us_topic_0000001430891141_en-us_topic_0263124530_li6912194811317"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.24.md" target="_blank" rel="noopener noreferrer">Kubernetes v1.24 Release Notes</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0068.html">Release Notes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0468.html b/docs/cce/umn/cce_10_0468.html
new file mode 100644
index 00000000..f2fd49d2
--- /dev/null
+++ b/docs/cce/umn/cce_10_0468.html
@@ -0,0 +1,22 @@
+<a name="cce_10_0468"></a><a name="cce_10_0468"></a>
+
+<h1 class="topictitle1">CCE Kubernetes 1.23 Release Notes</h1>
+<div id="body8662426"><p id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_p8060118">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.23.</p>
+<div class="section" id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><p id="cce_10_0468__en-us_topic_0000001212381758_p201411481102"><strong id="cce_10_0468__en-us_topic_0000001212381758_b1544395317457">Changes in CCE 1.23</strong></p>
+<ul id="cce_10_0468__en-us_topic_0000001212381758_ul135518561105"><li id="cce_10_0468__en-us_topic_0000001212381758_li03551856702">The web-terminal add-on is no longer supported. Use CloudShell or kubectl instead.</li></ul>
+<p id="cce_10_0468__en-us_topic_0000001212381758_p1185317533351"><strong id="cce_10_0468__en-us_topic_0000001212381758_b14388042103914">Kubernetes 1.23 Release Notes</strong></p>
+<ul id="cce_10_0468__en-us_topic_0000001212381758_ul14465512152614"><li id="cce_10_0468__en-us_topic_0000001212381758_li194651912162616">FlexVolume is deprecated. Use CSI.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li1513453601318">HorizontalPodAutoscaler v2 is promoted to GA, and HorizontalPodAutoscaler API v2 is gradually stable in version 1.23. The HorizontalPodAutoscaler v2beta2 API is not recommended. Use the v2 API.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li868648161616"><a href="https://kubernetes.io/docs/concepts/security/pod-security-admission/" target="_blank" rel="noopener noreferrer">PodSecurity</a> moves to beta, replacing the deprecated PodSecurityPolicy. PodSecurity is an admission controller that enforces pod security standards on pods in the namespace based on specific namespace labels that set the enforcement level. PodSecurity is enabled by default in version 1.23.</li></ul>
+<p id="cce_10_0468__en-us_topic_0000001212381758_p10214233152815"><strong id="cce_10_0468__en-us_topic_0000001212381758_b6988723114812">Kubernetes 1.22 Release Notes</strong></p>
+<ul id="cce_10_0468__en-us_topic_0000001212381758_ul4368918102916"><li id="cce_10_0468__en-us_topic_0000001212381758_li15362335212">Ingresses no longer support networking.k8s.io/v1beta1 and extensions/v1beta1 APIs. If you use the API of an earlier version to manage ingresses, an application cannot be exposed to external services. Use networking.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li790410319228">CustomResourceDefinitions no longer support the apiextensions.k8s.io/v1beta1 API. If you use the API of an earlier version to create a CRD, the creation will fail, which affects the controller that reconciles this CRD. Use apiextensions.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li1473132516568">ClusterRoles, ClusterRoleBindings, Roles, and RoleBindings no longer support the rbac.authorization.k8s.io/v1beta1 API. If you use the API of an earlier version to manage RBAC resources, application permissions control is affected and even cannot work in the cluster. Use rbac.authorization.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li138559548225">The Kubernetes release cycle is changed from four releases a year to three releases a year.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li14384229999">StatefulSets support <strong id="cce_10_0468__en-us_topic_0000001212381758_b171761433531">minReadySeconds</strong>.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li632585119">During scale-in, pods are randomly selected and deleted based on the pod UID by default (LogarithmicScaleDown). This feature enhances the randomness of the pods to be deleted and alleviates the problems caused by pod topology spread constraints. For more information, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/2185-random-pod-select-on-replicaset-downscale" target="_blank" rel="noopener noreferrer">KEP-2185</a> and <a href="https://github.com/kubernetes/kubernetes/issues/96748?spm=a2c4g.11186623.0.0.1de23edc3yorUN" target="_blank" rel="noopener noreferrer">issue 96748</a>.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li618011428113">The <a href="https://kubernetes.io/en-us/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature is stable. This feature improves the token security of the service account and changes the method of mounting tokens to pods. Kubernetes clusters of v1.21 and later enable this approach by default.<p id="cce_10_0468__en-us_topic_0000001212381758_p2180842161113"></p>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_section1272182810583"><h4 class="sectiontitle">References</h4><p id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_p15127239183119">For more details about the performance comparison and function evolution between Kubernetes 1.23 and other versions, see the following documents:</p>
+<ul id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_ul10912174853114"><li id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_li17912184843113"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.23.md" target="_blank" rel="noopener noreferrer">Kubernetes v1.23 Release Notes</a></li><li id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0263124530_li6912194811317"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.22.md" target="_blank" rel="noopener noreferrer">Kubernetes v1.22 Release Notes</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0068.html">Release Notes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0469.html b/docs/cce/umn/cce_10_0469.html
new file mode 100644
index 00000000..5e120710
--- /dev/null
+++ b/docs/cce/umn/cce_10_0469.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0469"></a><a name="cce_10_0469"></a>
+
+<h1 class="topictitle1">CCE Kubernetes 1.21 Release Notes</h1>
+<div id="body8662426"><p id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_p8060118">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.21.</p>
+<div class="section" id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><p id="cce_10_0469__en-us_topic_0000001177935088_p1185317533351"><strong id="cce_10_0469__en-us_topic_0000001177935088_b696619014173">Kubernetes 1.21 Release Notes</strong></p>
+<ul id="cce_10_0469__en-us_topic_0000001177935088_ul14465512152614"><li id="cce_10_0469__en-us_topic_0000001177935088_li2053973382610">CronJob is now in the stable state, and the version number changes to batch/v1.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li15465141215268">The immutable Secret and ConfigMap have now been upgraded to the stable state. A new immutable field is added to these objects to reject changes. The rejection protects clusters from accidental updates that may cause application outages. As these resources are immutable, kubelet does not monitor or poll for changes. This reduces the load of kube-apiserver and improves scalability and performance of your clusters. For more information, see <a href="https://kubernetes.io/docs/concepts/configuration/configmap/#configmap-immutable" target="_blank" rel="noopener noreferrer">Immutable ConfigMaps</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li9465101232612">Graceful node shutdown has been upgraded to the test state. With this update, kubelet can detect that a node is shut down and gracefully terminate the pods on the node. Prior to this update, when the node was shut down, its pod did not follow the expected termination lifecycle, which caused workload problems. Now kubelet can use systemd to detect the systems that are about to be shut down and notify the running pods to terminate them gracefully.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li1846531220264">For a pod with multiple containers, you can use <strong id="cce_10_0469__en-us_topic_0000001177935088_b1441123519305">kubectl.kubernetes.io/</strong> to pre-select containers.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li194651912162616">PodSecurityPolicy is deprecated. For details, see <a href="https://kubernetes.io/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/" target="_blank" rel="noopener noreferrer">https://kubernetes.io/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li143841433920">The <a href="https://kubernetes.io/en-us/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature has entered the beta test. This feature improves the token security of the service account and changes the method of mounting tokens to pods. Kubernetes clusters of v1.21 and later enable this approach by default.</li></ul>
+<p id="cce_10_0469__en-us_topic_0000001177935088_p10214233152815"><strong id="cce_10_0469__en-us_topic_0000001177935088_b153181215261">Kubernetes 1.20 Release Notes</strong></p>
+<ul id="cce_10_0469__en-us_topic_0000001177935088_ul4368918102916"><li id="cce_10_0469__en-us_topic_0000001177935088_li736851882915">The API priority and fairness have reached the test state and are enabled by default. This allows kube-apiserver to classify incoming requests by priority. For more information, see <a href="https://kubernetes.io/docs/concepts/cluster-administration/flow-control/" target="_blank" rel="noopener noreferrer">API Priority and Fairness</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li19204736191216">The bug of <strong id="cce_10_0469__en-us_topic_0000001177935088_b1246518301279">exec probe timeouts</strong> is fixed. Before this bug is fixed, the exec probe does not consider the <strong id="cce_10_0469__en-us_topic_0000001177935088_b923318463279">timeoutSeconds</strong> field. Instead, the probe will run indefinitely, even beyond its configured deadline. It will stop until the result is returned. Now, if no value is specified, the default value is used, that is, one second. If the detection time exceeds one second, the application health check may fail. Update the <strong id="cce_10_0469__en-us_topic_0000001177935088_b1177265114294">timeoutSeconds</strong> field for the applications that use this feature during the upgrade. The repair provided by the newly introduced ExecProbeTimeout feature gating enables the cluster operator to restore the previous behavior, but this behavior will be locked and removed in later versions.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li14382105113017">RuntimeClass enters the stable state. RuntimeClass provides a mechanism to support multiple runtimes in a cluster and expose information about the container runtime to the control plane.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li138419519302">kubectl debugging has reached the test state. kubectl debugging provides support for common debugging workflows.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li153851151173010">Dockershim was marked as deprecated in Kubernetes 1.20. Currently, you can continue to use Docker in the cluster. This change is irrelevant to the container image used by clusters. You can still use Docker to build your images. For more information, see <a href="https://kubernetes.io/blog/2020/12/02/dockershim-faq/" target="_blank" rel="noopener noreferrer">Dockershim Deprecation FAQ</a>.</li></ul>
+</div>
+<div class="section" id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_section1272182810583"><h4 class="sectiontitle">References</h4><p id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_p15127239183119">For more details about the performance comparison and function evolution between Kubernetes 1.21 and other versions, see the following documents:</p>
+<ul id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_ul10912174853114"><li id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_li17912184843113"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.21.md" target="_blank" rel="noopener noreferrer">Kubernetes v1.21 Release Notes</a></li><li id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0263124530_li6912194811317"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md" target="_blank" rel="noopener noreferrer">Kubernetes v1.20 Release Notes</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0068.html">Release Notes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0470.html b/docs/cce/umn/cce_10_0470.html
new file mode 100644
index 00000000..a26d6e44
--- /dev/null
+++ b/docs/cce/umn/cce_10_0470.html
@@ -0,0 +1,35 @@
+<a name="cce_10_0470"></a><a name="cce_10_0470"></a>
+
+<h1 class="topictitle1">CCE Kubernetes 1.19 Release Notes</h1>
+<div id="body8662426"><p id="cce_10_0470__en-us_topic_0000001088754632_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_p8060118">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.19.</p>
+<div class="section" id="cce_10_0470__en-us_topic_0000001088754632_en-us_topic_0000001072975092_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><p id="cce_10_0470__en-us_topic_0000001088754632_p1185317533351"><strong id="cce_10_0470__en-us_topic_0000001088754632_b9971184115416">Kubernetes 1.19 Release Notes</strong></p>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul566111545365"><li id="cce_10_0470__en-us_topic_0000001088754632_li13661954123614">vSphere in-tree volumes can be migrated to vSphere CSI drivers. The in-tree vSphere Volume plugin is no longer used and will be deleted in later versions.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li116611154133613"><strong id="cce_10_0470__en-us_topic_0000001088754632_b124261101303">apiextensions.k8s.io/v1beta1</strong> has been deprecated. You are advised to use <strong id="cce_10_0470__en-us_topic_0000001088754632_b12426161915300">apiextensions.k8s.io/v1</strong>.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1566155453616"><strong id="cce_10_0470__en-us_topic_0000001088754632_b529714212307">apiregistration.k8s.io/v1beta1</strong> has been deprecated. You are advised to use <strong id="cce_10_0470__en-us_topic_0000001088754632_b18687947153020">apiregistration.k8s.io/v1</strong>.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li466116546366"><strong id="cce_10_0470__en-us_topic_0000001088754632_b7824824317">authentication.k8s.io/v1beta1</strong> and <strong id="cce_10_0470__en-us_topic_0000001088754632_b207528623118">authorization.k8s.io/v1beta1</strong> have been deprecated and will be removed from Kubernetes 1.22. You are advised to use <strong id="cce_10_0470__en-us_topic_0000001088754632_b15113141312316">authentication.k8s.io/v1</strong> and <strong id="cce_10_0470__en-us_topic_0000001088754632_b128503152315">authorization.k8s.io/v1</strong>.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li666119547369"><strong id="cce_10_0470__en-us_topic_0000001088754632_b7758326153117">autoscaling/v2beta1</strong> has been deprecated. You are advised to use <strong id="cce_10_0470__en-us_topic_0000001088754632_b1678442915311">autoscaling/v2beta2</strong>.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li966195414369"><strong id="cce_10_0470__en-us_topic_0000001088754632_b31671536173114">coordination.k8s.io/v1beta1</strong> has been deprecated in Kubernetes 1.19 and will be removed from version 1.22. You are advised to use <strong id="cce_10_0470__en-us_topic_0000001088754632_b185781203325">coordination.k8s.io/v1</strong>.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li46612054143616">kube-apiserver: The <strong id="cce_10_0470__en-us_topic_0000001088754632_b471933211322">componentstatus</strong> API has been deprecated.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li86611954183615">kubeadm: The <strong id="cce_10_0470__en-us_topic_0000001088754632_b4313123014544">kubeadm config view</strong> command has been deprecated and will be deleted in later versions. Use <strong id="cce_10_0470__en-us_topic_0000001088754632_b2070383414565">kubectl get cm -o yaml -n kube-system kubeadm-config</strong> to directly obtain the kubeadm configuration.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li196619543368">kubeadm: The <strong id="cce_10_0470__en-us_topic_0000001088754632_b6638263579">kubeadm alpha kubelet config enable-dynamic</strong> command has been deprecated.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li566118543369">kubeadm: The <strong id="cce_10_0470__en-us_topic_0000001088754632_b199651250145717">--use-api</strong> flag in the <strong id="cce_10_0470__en-us_topic_0000001088754632_b1594675815570">kubeadm alpha certs renew</strong> command has been deprecated.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1066125453610">Kubernetes no longer supports <strong id="cce_10_0470__en-us_topic_0000001088754632_b98486275332">hyperkube</strong> image creation.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1666115419365">The <strong id="cce_10_0470__en-us_topic_0000001088754632_b1318084310412">--export</strong> flag is removed from the <strong id="cce_10_0470__en-us_topic_0000001088754632_b1021112195520">kubectl get</strong> command.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li7661115412368">The alpha feature <strong id="cce_10_0470__en-us_topic_0000001088754632_b157955411339">ResourceLimitsPriorityFunction</strong> has been deleted.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li466235473615"><strong id="cce_10_0470__en-us_topic_0000001088754632_b181755823315">storage.k8s.io/v1beta1</strong> has been deprecated. You are advised to use <strong id="cce_10_0470__en-us_topic_0000001088754632_b20270132123418">storage.k8s.io/v1</strong>.</li></ul>
+<p id="cce_10_0470__en-us_topic_0000001088754632_p10214233152815"><strong id="cce_10_0470__en-us_topic_0000001088754632_b2563164152512">Kubernetes 1.18 Release Notes</strong></p>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul8248172132810"><li id="cce_10_0470__en-us_topic_0000001088754632_li724817214288">kube-apiserver<ul id="cce_10_0470__en-us_topic_0000001088754632_ul14845330122916"><li id="cce_10_0470__en-us_topic_0000001088754632_li17273829132919">All resources in the <strong id="cce_10_0470__en-us_topic_0000001088754632_b78891346142617">apps/v1beta1</strong> and <strong id="cce_10_0470__en-us_topic_0000001088754632_b14896184613266">apps/v1beta2</strong> API versions are no longer served. You can use the <strong id="cce_10_0470__en-us_topic_0000001088754632_b14896164614269">apps/v1</strong> API version.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1727413294296">DaemonSets, Deployments, and ReplicaSets in the <strong id="cce_10_0470__en-us_topic_0000001088754632_b04011143163618">extensions/v1beta1</strong> API version are no longer served. You can use the <strong id="cce_10_0470__en-us_topic_0000001088754632_b15402143163616">apps/v1</strong> API version.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li927452932919">NetworkPolicies in the <strong id="cce_10_0470__en-us_topic_0000001088754632_b398252183710">extensions/v1beta1</strong> API version are no longer served. You can use the <strong id="cce_10_0470__en-us_topic_0000001088754632_b1698919203710">networking.k8s.io/v1</strong> API version.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1527482992917">PodSecurityPolicies in the <strong id="cce_10_0470__en-us_topic_0000001088754632_b181021831893">extensions/v1beta1</strong> API version are no longer served. Migrate to use the <strong id="cce_10_0470__en-us_topic_0000001088754632_b14102130912">policy/v1beta1</strong> API version.</li></ul>
+</li></ul>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul53898617289"><li id="cce_10_0470__en-us_topic_0000001088754632_li1738916672815">kubelet<ul id="cce_10_0470__en-us_topic_0000001088754632_ul16182134682913"><li id="cce_10_0470__en-us_topic_0000001088754632_li05660459299"><strong id="cce_10_0470__en-us_topic_0000001088754632_b16693124774210">--redirect-container-streaming</strong> is not recommended and will be deprecated in v1.20.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li17566445152912">The resource measurement endpoint <strong id="cce_10_0470__en-us_topic_0000001088754632_b10248228104710">/metrics/resource/v1alpha1</strong> and all measurement standards under this endpoint have been deprecated. Use the measurement standards under the endpoint <strong id="cce_10_0470__en-us_topic_0000001088754632_b15260122864816">/metrics/resource</strong> instead:<ul id="cce_10_0470__en-us_topic_0000001088754632_ul44101155102918"><li id="cce_10_0470__en-us_topic_0000001088754632_li2567104512293">scrape_error --&gt; scrape_error</li><li id="cce_10_0470__en-us_topic_0000001088754632_li456720459294">node_cpu_usage_seconds_total --&gt; node_cpu_usage_seconds</li><li id="cce_10_0470__en-us_topic_0000001088754632_li4567345202912">node_memory_working_set_bytes --&gt; node_memory_working_set_bytes</li><li id="cce_10_0470__en-us_topic_0000001088754632_li75678456293">container_cpu_usage_seconds_total --&gt; container_cpu_usage_seconds</li><li id="cce_10_0470__en-us_topic_0000001088754632_li20567184519292">container_memory_working_set_bytes --&gt; container_memory_working_set_bytes</li><li id="cce_10_0470__en-us_topic_0000001088754632_li11567134511295">scrape_error --&gt; scrape_error</li></ul>
+</li><li id="cce_10_0470__en-us_topic_0000001088754632_li5567184542914">In future releases, kubelet will no longer create the target directory <strong id="cce_10_0470__en-us_topic_0000001088754632_b187818111513">CSI NodePublishVolume</strong> according to the CSI specifications. You may need to update the CSI driver accordingly to correctly create and process the target path.</li></ul>
+</li></ul>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul53115152281"><li id="cce_10_0470__en-us_topic_0000001088754632_li1531201522814">kube-proxy<ul id="cce_10_0470__en-us_topic_0000001088754632_ul6265161210301"><li id="cce_10_0470__en-us_topic_0000001088754632_li1593191116303">You are not advised to use the <strong id="cce_10_0470__en-us_topic_0000001088754632_b137260185413">--healthz-port</strong> and <strong id="cce_10_0470__en-us_topic_0000001088754632_b92111536549">--metrics-port</strong> flags. Use <strong id="cce_10_0470__en-us_topic_0000001088754632_b5874121710548">--healthz-bind-address</strong> and <strong id="cce_10_0470__en-us_topic_0000001088754632_b23251523115413">--metrics-bind-address</strong> instead.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li49331119301">The <strong id="cce_10_0470__en-us_topic_0000001088754632_b1796919576578">EndpointSliceProxying</strong> function option is added to control the use of EndpointSlices in kube-proxy. This function is disabled by default.</li></ul>
+</li></ul>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul1609818122815"><li id="cce_10_0470__en-us_topic_0000001088754632_li1860911872818">kubeadm<ul id="cce_10_0470__en-us_topic_0000001088754632_ul18616112333017"><li id="cce_10_0470__en-us_topic_0000001088754632_li186161123183017">The <strong id="cce_10_0470__en-us_topic_0000001088754632_b39711409212">--kubelet-version</strong> flag of <strong id="cce_10_0470__en-us_topic_0000001088754632_b3861249626">kubeadm upgrade node</strong> has been deprecated and will be deleted in later versions.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li9617152373015">The <strong id="cce_10_0470__en-us_topic_0000001088754632_b1965185119318">--use-api</strong> flag in the <strong id="cce_10_0470__en-us_topic_0000001088754632_b144810581431">kubeadm alpha certs renew</strong> command has been deprecated.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li4617523193011">kube-dns has been deprecated and will no longer be supported in future versions.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1861722318301">The ClusterStatus structure in the kubeadm-config ConfigMap has been deprecated and will be deleted in later versions.</li></ul>
+</li></ul>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul1195562013282"><li id="cce_10_0470__en-us_topic_0000001088754632_li1695592052818">kubectl<ul id="cce_10_0470__en-us_topic_0000001088754632_ul12542163416304"><li id="cce_10_0470__en-us_topic_0000001088754632_li107921933173018">You are not advised to use boolean and unset values for <strong id="cce_10_0470__en-us_topic_0000001088754632_b92545431211">--dry-run</strong>. <strong id="cce_10_0470__en-us_topic_0000001088754632_b16694155719134">server|client|none</strong> is used in the new version.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li6793833133015"><strong id="cce_10_0470__en-us_topic_0000001088754632_b1884223161412">--server-dry-run</strong> has been deprecated for <strong id="cce_10_0470__en-us_topic_0000001088754632_b494810482573">kubectl apply</strong> and replaced by <strong id="cce_10_0470__en-us_topic_0000001088754632_b18779380148">--dry-run=server</strong>.</li></ul>
+</li></ul>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul125421971290"><li id="cce_10_0470__en-us_topic_0000001088754632_li35421279294">add-ons</li></ul>
+<p id="cce_10_0470__en-us_topic_0000001088754632_p16181551112718">The cluster-monitoring add-on is deleted.</p>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul739951310299"><li id="cce_10_0470__en-us_topic_0000001088754632_li1339910134294">kube-scheduler<ul id="cce_10_0470__en-us_topic_0000001088754632_ul350085015308"><li id="cce_10_0470__en-us_topic_0000001088754632_li75757497308">The <strong id="cce_10_0470__en-us_topic_0000001088754632_b1125915179156">scheduling_duration_seconds</strong> metric has been deprecated.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1057618494308">The <strong id="cce_10_0470__en-us_topic_0000001088754632_b13972155161519">scheduling_algorithm_predicate_evaluation_seconds</strong> and <strong id="cce_10_0470__en-us_topic_0000001088754632_b13315520101619">scheduling_algorithm_priority_evaluation_seconds counters</strong> metrics are no longer used and are replaced by <strong id="cce_10_0470__en-us_topic_0000001088754632_b97648103171">framework_extension_point_duration_seconds[extension_point="Filter"]</strong> and <strong id="cce_10_0470__en-us_topic_0000001088754632_b386851981713">framework_extension_point_duration_seconds[extension_point="Score"]</strong>.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li1576194973015">The scheduler policy AlwaysCheckAllPredictes has been deprecated.</li></ul>
+</li></ul>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_ul4368918102916"><li id="cce_10_0470__en-us_topic_0000001088754632_li736851882915">Other changes<ul id="cce_10_0470__en-us_topic_0000001088754632_ul9108101311"><li id="cce_10_0470__en-us_topic_0000001088754632_li640655933017">The k8s.io/node-api component is no longer updated. Instead, you can use the <strong id="cce_10_0470__en-us_topic_0000001088754632_b777711452020">RuntimeClass</strong> type in <strong id="cce_10_0470__en-us_topic_0000001088754632_b19423171252011">k8s.io/api</strong> and the generated clients in <strong id="cce_10_0470__en-us_topic_0000001088754632_b199942031142019">k8s.io/client-go</strong>.</li><li id="cce_10_0470__en-us_topic_0000001088754632_li18406185963016">The <strong id="cce_10_0470__en-us_topic_0000001088754632_b159121726182118">client</strong> label has been deleted from <strong id="cce_10_0470__en-us_topic_0000001088754632_b1470715526202">apiserver_request_total</strong>.</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0470__en-us_topic_0000001088754632_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_section1272182810583"><h4 class="sectiontitle">References</h4><p id="cce_10_0470__en-us_topic_0000001088754632_en-us_topic_0000001072975092_p15127239183119">For more details about the performance comparison and function evolution between Kubernetes 1.19 and other versions, see the following documents:</p>
+<ul id="cce_10_0470__en-us_topic_0000001088754632_en-us_topic_0000001072975092_ul10912174853114"><li id="cce_10_0470__en-us_topic_0000001088754632_en-us_topic_0000001072975092_li17912184843113"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.19.md#changes" target="_blank" rel="noopener noreferrer">Kubernetes v1.19.0 Release Notes</a></li><li id="cce_10_0470__en-us_topic_0000001088754632_en-us_topic_0263124530_li6912194811317"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md#changes" target="_blank" rel="noopener noreferrer">Kubernetes v1.18.0 Release Notes</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0068.html">Release Notes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0471.html b/docs/cce/umn/cce_10_0471.html
new file mode 100644
index 00000000..12af1696
--- /dev/null
+++ b/docs/cce/umn/cce_10_0471.html
@@ -0,0 +1,18 @@
+<a name="cce_10_0471"></a><a name="cce_10_0471"></a>
+
+<h1 class="topictitle1">CCE Kubernetes 1.17 Release Notes</h1>
+<div id="body8662426"><p id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_en-us_topic_0261805759_en-us_topic_0261793154_p8060118">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.17.</p>
+<div class="section" id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><ul id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_ul14791132872916"><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li127913288296">All resources in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b7538103019547">apps/v1beta1</strong> and <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b12949123213546">apps/v1beta2</strong> API versions are no longer served. Migrate to use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b24531035175414">apps/v1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li079112813293">DaemonSets, Deployments, and ReplicaSets in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1336733319560">extensions/v1beta1</strong> API version are no longer served. You can use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b6373533145611">apps/v1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li17910288297">NetworkPolicies in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b198986177373">extensions/v1beta1</strong> API version are no longer served. Migrate to use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1190391783711">networking.k8s.io/v1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li18791102832913">PodSecurityPolicies in the <strong id="cce_10_0471__en-us_topic_0000001088435034_b84321129174217">extensions/v1beta1</strong> API version are no longer served. Migrate to use the <strong id="cce_10_0471__en-us_topic_0000001088435034_b74379294422">policy/v1beta1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li679112822916">Ingresses in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b2012998445">extensions/v1beta1</strong> API version will no longer be served in v1.20. Migrate to use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b65613471941">networking.k8s.io/v1beta1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li12791132832912">PriorityClass in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b31131325114614">scheduling.k8s.io/v1beta1</strong> and <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b82965296465">scheduling.k8s.io/v1alpha1</strong> API versions is no longer served in v1.17. Migrate to use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1585115784812">scheduling.k8s.io/v1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li12791428142920">The <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b148091515194817">event series.state</strong> field in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1510716196484">events.k8s.io/v1beta1</strong> API version has been deprecated and will be removed from v1.18.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li479142812294"><strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b0733164444812">CustomResourceDefinition</strong> in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b364144819485">apiextensions.k8s.io/v1beta1</strong> API version has been deprecated and will no longer be served in v1.19. Use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b47284515493">apiextensions.k8s.io/v1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li5791182872912"><strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b18101536205615">MutatingWebhookConfiguration</strong> and <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b11101103685615">ValidatingWebhookConfiguration</strong> in the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1210273617562">admissionregistration.k8s.io/v1beta1</strong> API version have been deprecated and will no longer be served in v1.19. You can use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b41021836165617">admissionregistration.k8s.io/v1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li87917285297">The <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b18416632015">rbac.authorization.k8s.io/v1alpha1</strong> and <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b115521563018">rbac.authorization.k8s.io/v1beta1</strong> API versions have been deprecated and will no longer be served in v1.20. Use the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1662710141814">rbac.authorization.k8s.io/v1</strong> API version.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li2079113286292">The <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b845162310576">CSINode</strong> object of <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b650182311579">storage.k8s.io/v1beta1</strong> has been deprecated and will be removed in later versions.</li></ul>
+</div>
+<div class="section" id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_section17271659191217"><h4 class="sectiontitle">Other Deprecations and Removals</h4><ul id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_ul793810246137"><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li8747125981213"><strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b152810591859">OutOfDisk node condition</strong> is removed in favor of <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b5224521266">DiskPressure</strong>.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li1274717593124">The <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b18949193314578">scheduler.alpha.kubernetes.io/critical-pod</strong> annotation is removed in favor of <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1695418337578">priorityClassName</strong>.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li127471459181216"><strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b288519438577">beta.kubernetes.io/os</strong> and <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b148901543155717">beta.kubernetes.io/arch</strong> have been deprecated in v1.14 and will be removed in v1.18.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li14747195971212">Do not use <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b18221684262">--node-labels</strong> to set labels prefixed with <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1728087261">kubernetes.io</strong> and <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1281389269">k8s.io</strong>. The <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b132828122619">kubernetes.io/availablezone</strong> label in earlier versions is removed in v1.17 and changed to <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b182919814265">failure-domain.beta.kubernetes.io/zone</strong>.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li15808104120160">The <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1755741017589">beta.kubernetes.io/instance-type</strong> is deprecated in favor of <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b656219105586">node.kubernetes.io/instance-type</strong>.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li177471359191219">Remove the <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1385452015310">{kubelet_root_dir}/plugins</strong> path.</li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li1893842414139">Remove the built-in cluster roles <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b1827894115811">system:csi-external-provisioner</strong> and <strong id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_b16283184145820">system:csi-external-attacher</strong>.</li></ul>
+</div>
+<div class="section" id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_en-us_topic_0261805759_en-us_topic_0261793154_section1272182810583"><h4 class="sectiontitle">References</h4><p id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_p15127239183119">For more details about the performance comparison and function evolution between Kubernetes 1.17 and other versions, see the following documents:</p>
+<ul id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_ul10912174853114"><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li17912184843113"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.17.md#changes" target="_blank" rel="noopener noreferrer">Kubernetes v1.17.0 Release Notes</a></li><li id="cce_10_0471__en-us_topic_0000001088435034_en-us_topic_0263124530_li6912194811317"><a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.16.md#kubernetes-v1160-release-notes" target="_blank" rel="noopener noreferrer">Kubernetes v1.16.0 Release Notes</a></li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0068.html">Release Notes</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0477.html b/docs/cce/umn/cce_10_0477.html
new file mode 100644
index 00000000..e2153637
--- /dev/null
+++ b/docs/cce/umn/cce_10_0477.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0477"></a><a name="cce_10_0477"></a>
+
+<h1 class="topictitle1">Service Account Token Security Improvement</h1>
+<div id="body32001227"><p id="cce_10_0477__cce_10_0477_0_p101581459141715">In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no longer recommended starting from version 1.21. Service accounts will stop auto creating secrets in clusters from version 1.25.</p>
+<p id="cce_10_0477__cce_10_0477_0_p238119179114">In clusters of version 1.21 or later, you can use the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API to obtain the token and use the projected volume to mount the token to the pod. Such tokens are valid for a fixed period (one hour by default). Before expiration, Kubelet refreshes the token to ensure that the pod always uses a valid token. When the mounting pod is deleted, the token automatically becomes invalid. This approach is implemented by the <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature to improve the token security of the service account. Kubernetes clusters of v1.21 and later enables this approach by default.</p>
+<p id="cce_10_0477__cce_10_0477_0_p477395017368">For smooth transition, the community extends the token validity period to one year by default. After one year, the token becomes invalid, and clients that do not support certificate reloading cannot access the API server. It is recommended that clients of earlier versions be upgraded as soon as possible. Otherwise, service faults may occur.</p>
+<p id="cce_10_0477__cce_10_0477_0_p1624471113010">If you use a Kubernetes client of a to-be-outdated version, the certificate reloading may fail. Versions of officially supported Kubernetes client libraries able to reload tokens are as follows:</p>
+<ul id="cce_10_0477__cce_10_0477_0_ul102441419306"><li id="cce_10_0477__cce_10_0477_0_li624481103011">Go: &gt;= v0.15.7</li><li id="cce_10_0477__cce_10_0477_0_li172444113016">Python: &gt;= v12.0.0</li><li id="cce_10_0477__cce_10_0477_0_li15244814308">Java: &gt;= v9.0.0</li><li id="cce_10_0477__cce_10_0477_0_li22441215300">Javascript: &gt;= v0.10.3</li><li id="cce_10_0477__cce_10_0477_0_li122446112304">Ruby: master branch</li><li id="cce_10_0477__cce_10_0477_0_li42441116306">Haskell: v0.3.0.0</li><li id="cce_10_0477__cce_10_0477_0_li1772914471366">C#: &gt;= 7.0.5</li></ul>
+<p id="cce_10_0477__cce_10_0477_0_p172441718308">For details, visit <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens</a>.</p>
+<div class="note" id="cce_10_0477__cce_10_0477_0_note088612571761"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0477__cce_10_0477_0_p14870184852411">If you need a token that never expires, you can also <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#manual-secret-management-for-serviceaccounts" target="_blank" rel="noopener noreferrer">manually manage secrets for service accounts</a>. Although a permanent service account token can be manually created, you are advised to use a short-lived token by calling the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API for higher security.</p>
+</div></div>
+<div class="section" id="cce_10_0477__cce_10_0477_0_section153991573316"><h4 class="sectiontitle">Diagnosis</h4><p id="cce_10_0477__cce_10_0477_0_p1624414193019">Run the following steps to check your CCE clusters of v1.21 and later:</p>
+<ol id="cce_10_0477__cce_10_0477_0_ol824418111301"><li id="cce_10_0477__cce_10_0477_0_li113851727203515">Use kubectl to connect to the cluster and run the <b><span class="cmdname" id="cce_10_0477__cce_10_0477_0_cmdname43875277355">kubectl get --raw "/metrics" | grep stale</span></b> command to query the metrics. Check the metric named <strong id="cce_10_0477__cce_10_0477_0_b85724131906">serviceaccount_stale_tokens_total</strong>.<p id="cce_10_0477__cce_10_0477_0_p4867227113517">If the value is greater than 0, some workloads in the cluster may be using an earlier client-go version. In this case, check whether this problem occurs in your deployed applications. If yes, upgrade client-go to the version specified by the community as soon as possible. The version must be at least two major versions of the CCE cluster. For example, if your cluster version is 1.23, the Kubernetes dependency library version must be at least 1.19.</p>
+<p id="cce_10_0477__cce_10_0477_0_p1916154083416"><span><img id="cce_10_0477__cce_10_0477_0_image1120284118341" src="en-us_image_0000001402494682.png"></span></p>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0477_0.html b/docs/cce/umn/cce_10_0477_0.html
new file mode 100644
index 00000000..53c90ce8
--- /dev/null
+++ b/docs/cce/umn/cce_10_0477_0.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0477_0"></a><a name="cce_10_0477_0"></a>
+
+<h1 class="topictitle1">Service Account Token Security Improvement</h1>
+<div id="body0000001452648473"><p id="cce_10_0477_0__p101581459141715">In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no longer recommended starting from version 1.21. Service accounts will stop auto creating secrets in clusters from version 1.25.</p>
+<p id="cce_10_0477_0__p238119179114">In clusters of version 1.21 or later, you can use the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API to obtain the token and use the projected volume to mount the token to the pod. Such tokens are valid for a fixed period (one hour by default). Before expiration, Kubelet refreshes the token to ensure that the pod always uses a valid token. When the mounting pod is deleted, the token automatically becomes invalid. This approach is implemented by the <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature to improve the token security of the service account. Kubernetes clusters of v1.21 and later enables this approach by default.</p>
+<p id="cce_10_0477_0__p477395017368">For smooth transition, the community extends the token validity period to one year by default. After one year, the token becomes invalid, and clients that do not support certificate reloading cannot access the API server. It is recommended that clients of earlier versions be upgraded as soon as possible. Otherwise, service faults may occur.</p>
+<p id="cce_10_0477_0__p1624471113010">If you use a Kubernetes client of a to-be-outdated version, the certificate reloading may fail. Versions of officially supported Kubernetes client libraries able to reload tokens are as follows:</p>
+<ul id="cce_10_0477_0__ul102441419306"><li id="cce_10_0477_0__li624481103011">Go: &gt;= v0.15.7</li><li id="cce_10_0477_0__li172444113016">Python: &gt;= v12.0.0</li><li id="cce_10_0477_0__li15244814308">Java: &gt;= v9.0.0</li><li id="cce_10_0477_0__li22441215300">Javascript: &gt;= v0.10.3</li><li id="cce_10_0477_0__li122446112304">Ruby: master branch</li><li id="cce_10_0477_0__li42441116306">Haskell: v0.3.0.0</li><li id="cce_10_0477_0__li1772914471366">C#: &gt;= 7.0.5</li></ul>
+<p id="cce_10_0477_0__p172441718308">For details, visit <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens</a>.</p>
+<div class="note" id="cce_10_0477_0__note088612571761"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0477_0__p14870184852411">If you need a token that never expires, you can also <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#manual-secret-management-for-serviceaccounts" target="_blank" rel="noopener noreferrer">manually manage secrets for service accounts</a>. Although a permanent service account token can be manually created, you are advised to use a short-lived token by calling the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API for higher security.</p>
+</div></div>
+<div class="section" id="cce_10_0477_0__section153991573316"><h4 class="sectiontitle">Diagnosis</h4><p id="cce_10_0477_0__p1624414193019">Run the following steps to check your CCE clusters of v1.21 and later:</p>
+<ol id="cce_10_0477_0__ol824418111301"><li id="cce_10_0477_0__li113851727203515">Use kubectl to connect to the cluster and run the <b><span class="cmdname" id="cce_10_0477_0__cmdname43875277355">kubectl get --raw "/metrics" | grep stale</span></b> command to query the metrics. Check the metric named <strong id="cce_10_0477_0__b85724131906">serviceaccount_stale_tokens_total</strong>.<p id="cce_10_0477_0__p4867227113517">If the value is greater than 0, some workloads in the cluster may be using an earlier client-go version. In this case, check whether this problem occurs in your deployed applications. If yes, upgrade client-go to the version specified by the community as soon as possible. The version must be at least two major versions of the CCE cluster. For example, if your cluster version is 1.23, the Kubernetes dependency library version must be at least 1.19.</p>
+<p id="cce_10_0477_0__p1916154083416"><span><img id="cce_10_0477_0__image1120284118341" src="en-us_image_0000001402494682.png"></span></p>
+</li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0551.html b/docs/cce/umn/cce_10_0551.html
new file mode 100644
index 00000000..93edd210
--- /dev/null
+++ b/docs/cce/umn/cce_10_0551.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0551"></a><a name="cce_10_0551"></a>
+
+
+  <h1 class="topictitle1">CPU Core Binding</h1>
+
+  <div id="body0000001461282029"><p id="cce_10_0551__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0351.html">Binding CPU Cores</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0553.html b/docs/cce/umn/cce_10_0553.html
new file mode 100644
index 00000000..ea69ff6e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0553.html
@@ -0,0 +1,13 @@
+<a name="cce_10_0553"></a><a name="cce_10_0553"></a>
+
+<h1 class="topictitle1">Logging</h1>
+<div id="body0000001412373656"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0557.html">Log Management Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0018.html">Using ICAgent to Collect Container Logs</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0557.html b/docs/cce/umn/cce_10_0557.html
new file mode 100644
index 00000000..c5743b1f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0557.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0557"></a><a name="cce_10_0557"></a>
+
+<h1 class="topictitle1">Log Management Overview</h1>
+<div id="body0000001467926141"><p id="cce_10_0557__p8060118">CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.</p>
+<ul id="cce_10_0557__ul514781815910"><li id="cce_10_0557__li078322903611">Using ICAgent:<p id="cce_10_0557__p13971644304"><a name="cce_10_0557__li078322903611"></a><a name="li078322903611"></a>By default, the ICAgent collects container standard outputs (stdout logs). No configuration required.</p>
+<p id="cce_10_0557__p393014501011">You can also configure the path for storing container logs when creating a workload so that the ICAgent collects logs from this path.</p>
+<div class="p" id="cce_10_0557__p1646794220018">You can select either of the following modes for container logs:<ul id="cce_10_0557__ul1646711426016"><li id="cce_10_0557__li11838686014">hostPath: A host path is mounted to the specified container path (mount path). In the node host path, you can view the container logs output into the mount path.</li><li id="cce_10_0557__li16467242401">emptyDir: A temporary path of the node is mounted to the specified path (mount path). Log data that exists in the temporary path but is not reported by the collector to AOM will disappear after the pod is deleted.</li></ul>
+</div>
+</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0553.html">Logging</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0602.html b/docs/cce/umn/cce_10_0602.html
new file mode 100644
index 00000000..4e68567a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0602.html
@@ -0,0 +1,23 @@
+<a name="cce_10_0602"></a><a name="cce_10_0602"></a>
+
+<h1 class="topictitle1">Cluster Overload Control</h1>
+<div id="body0000001429447300"><div class="section" id="cce_10_0602__section1011431555010"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0602__p8060118">If overload control is enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.</p>
+</div>
+<div class="section" id="cce_10_0602__section0600224326"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0602__p1368115281620">The cluster version must be 1.23 or later.</p>
+</div>
+<div class="section" id="cce_10_0602__section1275184312514"><h4 class="sectiontitle">Enabling Overload Control</h4><p id="cce_10_0602__p88741467292"><strong id="cce_10_0602__b1487994422118">Method 1: Enabling it when creating a cluster</strong></p>
+<p id="cce_10_0602__p18443112903018">When creating a cluster of v1.23 or later, you can enable overload control during the cluster creation.</p>
+<p id="cce_10_0602__p1420532722311"></p>
+<p id="cce_10_0602__p871324410308"><strong id="cce_10_0602__b102672423224">Method 2: Enabling it in an existing cluster</strong></p>
+<ol id="cce_10_0602__ol1912211373118"><li id="cce_10_0602__cce_01_0007_li9879311402"><span>Log in to the CCE console and go to an existing cluster whose version is v1.23 or later.</span></li><li id="cce_10_0602__li10442205019333"><span>On the cluster information page, view the master node information. If overload control is not enabled, a message is displayed. You can click <strong id="cce_10_0602__b734791010406">Enable</strong> to enable the function.</span><p><p id="cce_10_0602__p496815743318"></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0602__section282685364919"><h4 class="sectiontitle">Disabling Cluster Overload Control</h4><ol id="cce_10_0602__ol20569143416503"><li id="cce_10_0602__li16569163465018"><span>Log in to the CCE console and go to an existing cluster whose version is v1.23 or later.</span></li><li id="cce_10_0602__li856933418505"><span>On the <strong id="cce_10_0602__b36261210161715">Cluster Information</strong> page, click <strong id="cce_10_0602__b698716494169">Manage</strong> in the upper right corner.</span></li><li id="cce_10_0602__li1739312010510"><span>Set <strong id="cce_10_0602__b57041690184">support-overload</strong> to <strong id="cce_10_0602__b15571920181810">false</strong> under <strong id="cce_10_0602__b11800102412187">kube-apiserver</strong>.</span></li><li id="cce_10_0602__li183566272524"><span>Click <span class="uicontrol" id="cce_10_0602__uicontrol137951638181810"><b>OK</b></span>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0031.html">Managing a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice.html b/docs/cce/umn/cce_bestpractice.html
new file mode 100644
index 00000000..73105f9e
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice.html
@@ -0,0 +1,33 @@
+<a name="cce_bestpractice"></a><a name="cce_bestpractice"></a>
+
+
+  <h1 class="topictitle1">Best Practice</h1>
+
+  <div id="body0000001405633950"><p id="cce_bestpractice__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00006.html">Checklist for Deploying Containerized Applications in the Cloud</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00237.html">Migration</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0322.html">DevOps</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0323.html">Disaster Recovery</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0315.html">Security</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0090.html">Auto Scaling</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0050.html">Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0052.html">Networking</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0053.html">Storage</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0051.html">Container</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00002.html b/docs/cce/umn/cce_bestpractice_00002.html
new file mode 100644
index 00000000..3f04189c
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00002.html
@@ -0,0 +1,74 @@
+<a name="cce_bestpractice_00002"></a><a name="cce_bestpractice_00002"></a>
+
+<h1 class="topictitle1">Properly Allocating Container Computing Resources</h1>
+<div id="body8662426"><p id="cce_bestpractice_00002__en-us_topic_0183030542_p24441586012">If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a container exceeds the upper limit, the container is stopped first. If the container continuously uses memory resources more than limited, the container is terminated. If a stopped container is allowed to be restarted, kubelet will restart it, but other types of run errors will occur.</p>
+<div class="section" id="cce_bestpractice_00002__en-us_topic_0183030542_section084113417487"><h4 class="sectiontitle">Scenario 1</h4><p id="cce_bestpractice_00002__en-us_topic_0183030542_p2024195015485">The node's memory has reached the memory limit reserved for the node. As a result, OOM killer is triggered.</p>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p174631133316"><strong id="cce_bestpractice_00002__en-us_topic_0183030542_b3462156185313">Solution</strong></p>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p43761944426">You can either scale up the node or migrate the pods on the node to other nodes.</p>
+</div>
+<div class="section" id="cce_bestpractice_00002__en-us_topic_0183030542_section1190644417499"><h4 class="sectiontitle">Scenario 2</h4><p id="cce_bestpractice_00002__en-us_topic_0183030542_p4584753184911">The upper limit of resources configured for the pod is too small. When the actual usage exceeds the limit, OOM killer is triggered.</p>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p8951891316"><strong id="cce_bestpractice_00002__en-us_topic_0183030542_b18861827686">Solution</strong></p>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p147841204315">Set a higher upper limit for the workload.</p>
+</div>
+<div class="section" id="cce_bestpractice_00002__en-us_topic_0183030542_section991734310316"><h4 class="sectiontitle">Example</h4><p id="cce_bestpractice_00002__en-us_topic_0183030542_p73781251436">A pod will be created and allocated memory that exceeds the limit. As shown in the following configuration file of the pod, the pod requests 50 MB memory and the memory limit is set to 100 MB.</p>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p1898362217517">Example YAML file (memory-request-limit-2.yaml):</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen590314361861">apiVersion: v1
+kind: Pod
+metadata:
+  name: memory-demo-2
+spec:
+  containers:
+  - name: memory-demo-2-ctr
+    image: vish/stress
+    resources:
+      requests:
+        memory: 50Mi
+      limits:
+        memory: "100Mi"
+    args:
+    - -mem-total
+    - 250Mi
+    - -mem-alloc-size
+    - 10Mi
+    - -mem-alloc-sleep
+    - 1s</pre>
+</div>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p36642273244">The <strong id="cce_bestpractice_00002__en-us_topic_0183030542_b15265193415510">args</strong> parameters indicate that the container attempts to request 250 MB memory, which exceeds the pod's upper limit (100 MB).</p>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p1664182716249">Creating a pod:</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen113961536162416">kubectl create -f https://k8s.io/docs/tasks/configure-pod-container/memory-request-limit-2.yaml --namespace=mem-example </pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p18874514243">Viewing the details about the pod:</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen10187658102418">kubectl get pod memory-demo-2 --namespace=mem-example </pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p1149119162517">In this stage, the container may be running or be killed. If the container is not killed, repeat the previous command until the container is killed.</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen11131141215250">NAME            READY     STATUS      RESTARTS   AGE 
+memory-demo-2   0/1       OOMKilled   1          24s</pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p111492942510">Viewing detailed information about the container:</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen3866193962511">kubectl get pod memory-demo-2 --output=yaml --namespace=mem-example </pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p5704846162419">This output indicates that the container is killed because the memory limit is exceeded.</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen12454717272">lastState:
+   terminated:
+     containerID: docker://7aae52677a4542917c23b10fb56fcb2434c2e8427bc956065183c1879cc0dbd2
+     exitCode: 137
+     finishedAt: 2020-02-20T17:35:12Z
+     reason: OOMKilled
+     startedAt: null</pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p11955134213254">In this example, the container can be automatically restarted. Therefore, kubelet will start it again. You can run the following command several times to see how the container is killed and started:</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen11885955192711">kubectl get pod memory-demo-2 --namespace=mem-example</pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p111921812818">The preceding command output indicates how the container is killed and started back and forth:</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen1516551712811">$ kubectl get pod memory-demo-2 --namespace=mem-example 
+NAME            READY     STATUS      RESTARTS   AGE 
+memory-demo-2   0/1       OOMKilled   1          37s
+$ kubectl get pod memory-demo-2 --namespace=mem-example 
+NAME            READY     STATUS    RESTARTS   AGE 
+memory-demo-2   1/1       Running   2          40s</pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p74428162812">Viewing the historical information of the pod:</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen15673115295">kubectl describe pod memory-demo-2 --namespace=mem-example </pre>
+<p id="cce_bestpractice_00002__en-us_topic_0183030542_p13714213286">The following command output indicates that the pod is repeatedly killed and started.</p>
+<pre class="screen" id="cce_bestpractice_00002__en-us_topic_0183030542_screen14279141153017">... Normal  Created   Created container with id 66a3a20aa7980e61be4922780bf9d24d1a1d8b7395c09861225b0eba1b1f8511 
+... Warning BackOff   Back-off restarting failed container</pre>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0051.html">Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00004.html b/docs/cce/umn/cce_bestpractice_00004.html
index 70d47857..9780e5bb 100644
--- a/docs/cce/umn/cce_bestpractice_00004.html
+++ b/docs/cce/umn/cce_bestpractice_00004.html
@@ -1,55 +1,61 @@
 <a name="cce_bestpractice_00004"></a><a name="cce_bestpractice_00004"></a>
 
-<h1 class="topictitle1">Planning CIDR Blocks for a CCE Cluster</h1>
-<div id="body0000001197234829"><p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p171361623141010">Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p8060118">This section describes the functions of various addresses in a CCE cluster in a VPC and how to plan CIDR blocks.</p>
-<div class="section" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_section112971201215"><h4 class="sectiontitle">Basic Concepts</h4><p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p168509461324"><strong id="cce_bestpractice_00004__b1392218384116">VPC CIDR Block</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p1740016231210">Virtual Private Cloud (VPC) enables you to provision logically isolated, configurable, and manageable virtual networks for cloud servers, cloud containers, and cloud databases. You have complete control over your virtual network, including selecting your own CIDR block, creating subnets, and configuring security groups. You can also assign EIPs and allocate bandwidth in your VPC for secure and easy access to your business system.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p1485094619212"><strong id="cce_bestpractice_00004__b132275555114">Subnet CIDR Block</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p48501146421">A subnet is a network that manages ECS network planes. It supports IP address management and DNS. The IP addresses of all ECSs in a subnet belong to the subnet.</p>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig6641150194810"><span class="figcap"><b>Figure 1 </b>VPC CIDR block architecture</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image1527114614912" src="en-us_image_0000001223152421.png"></span></div>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p1295684411717">By default, ECSs in all subnets of the same VPC can communicate with one another, while ECSs in different VPCs cannot communicate with each other.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p179952396173">You can create VPC peering connections to enable ECSs in different VPCs to communicate with one another.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p5850134612219"><strong id="cce_bestpractice_00004__b12921391522">Container (Pod) CIDR Block</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p12566113113198">Pod is a Kubernetes object. Each pod has an IP address.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p9850114615213">When creating a cluster on CCE, you can specify the pod (container) CIDR block, which cannot overlap with the subnet CIDR block. For example, if the subnet CIDR block is 192.168.0.0/16, the container CIDR block cannot be 192.168.0.0/18 or 192.168.1.0/18, because these addresses are included in 192.168.0.0/16.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p28501461627"><strong id="cce_bestpractice_00004__b78211315925">Service CIDR Block</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p5850124611213">Service is also a Kubernetes object. Each Service has an address. When creating a cluster on CCE, you can specify the Service CIDR block. Similarly, the Service CIDR block cannot overlap with the subnet CIDR block or the container CIDR block. The Service CIDR block can be used only within a cluster.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p67822036161510">For details about the relationship between these CIDR blocks, see <a href="#cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig15791152874920">Figure 2</a>.</p>
+<h1 class="topictitle1">Planning CIDR Blocks for a Cluster</h1>
+<div id="body8662426"><p id="cce_bestpractice_00004__en-us_topic_0099587154_p171361623141010">Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.</p>
+<p id="cce_bestpractice_00004__en-us_topic_0099587154_p8060118">This topic describes the addresses in a CCE cluster in a VPC and how to plan CIDR blocks.</p>
+<div class="section" id="cce_bestpractice_00004__section189633841215"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_bestpractice_00004__p1935674611213">To access a CCE cluster through a VPN, ensure that the VPN does not conflict with the VPC CIDR block where the cluster resides and the container CIDR block.</p>
 </div>
-<div class="section" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_section176413381249"><h4 class="sectiontitle">How Do I Select a CIDR Block?</h4><p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p207251050348"><strong id="cce_bestpractice_00004__b1418617434213">Single-VPC Single-Cluster Scenarios</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p1880015311148">These are the simplest scenarios. The VPC CIDR block is determined when the VPC is created. When creating a CCE cluster, select a CIDR block different from that of the current VPC.</p>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig15791152874920"><a name="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig15791152874920"></a><a name="en-us_topic_0261817695_en-us_topic_0099587154_fig15791152874920"></a><span class="figcap"><b>Figure 2 </b>CIDR block in the single-VPC single-cluster scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image839131719109" src="en-us_image_0000001223152417.png"></span></div>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p10725135014418"><strong id="cce_bestpractice_00004__b152671152724">Single-VPC Multi-Cluster Scenarios</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p1547642918192">Multiple CCE clusters are created in a VPC.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p2017890132517">In the <strong id="cce_bestpractice_00004__b6123131239">VPC network</strong> mode, pod packets are forwarded through VPC routes. CCE automatically configures a routing table on the VPC routes to each container CIDR block.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p890973917163">Pay attention to the following:</p>
-<ul id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_ul882015557241"><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li107547812253">The VPC address is determined during VPC creation. When creating a cluster, select a CIDR block for each cluster that does not overlap with the VPC CIDR block or other container CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li13820185572420">The container CIDR blocks of all clusters cannot overlap, but the Service CIDR blocks can. In this case, CCE clusters are partially interconnected. A pod of a cluster can directly access the pods of another cluster, but cannot access the Services of the cluster.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li198211055182410">The network scale is limited by the VPC route table.</li></ul>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig69527530400"><span class="figcap"><b>Figure 3 </b>VPC network - multi-cluster scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image2088115717617" src="en-us_image_0000001178034110.png"></span></div>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p2895124762317">In the tunnel network model, the container network is an overlay network plane deployed over the VPC network. Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications.</p>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig8672112184219"><span class="figcap"><b>Figure 4 </b>Tunnel network - multi-cluster scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image14998656164117" src="en-us_image_0000001178192670.png"></span></div>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p1989116343161">Pay attention to the following:</p>
-<ul id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_ul20459320102617"><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li1845962010268">The VPC address is determined during VPC creation. When creating a cluster, select a CIDR block for each cluster that does not overlap with the VPC CIDR block or other container CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li1459152032618">The container CIDR blocks of all clusters can overlap, so do the Service CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li15493174202711">It is recommended that ELB be used for the cross-cluster access between containers.</li></ul>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p127261150746"><strong id="cce_bestpractice_00004__b17704113816318">VPC Interconnection Scenarios</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p164027122611">When two VPC networks are interconnected, you can configure the packets to be sent to the peer VPC in the route table.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p84981130122719">In the VPC network model, after creating a peering connection, you need to add routes for the peering connection to enable communication between the two VPCs.</p>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig5812933155410"><span class="figcap"><b>Figure 5 </b>VPC Network - VPC interconnection scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image196453652114" src="en-us_image_0000001223393899.png"></span></div>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p73783692817">To interconnect cluster containers across VPCs, you need to create VPC peering connections.</p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p19345110299">Pay attention to the following:</p>
-<ul id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_ul18682114711291"><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li4682184718299">The VPC address is determined during VPC creation. When creating a cluster, select a CIDR block for each cluster that does not overlap with the VPC CIDR block or other container CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li86822047152916">The container CIDR blocks of all clusters cannot overlap, but the Service CIDR blocks can.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li206821447202916">Add the peer container CIDR block to the route table of the VPC peering connection. The following is an example:<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig58067316321"><span class="figcap"><b>Figure 6 </b>Adding the peer container CIDR block to the local route on the VPC console</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image9242185003110" src="en-us_image_0000001178034114.png"></span></div>
+<div class="section" id="cce_bestpractice_00004__en-us_topic_0099587154_section112971201215"><h4 class="sectiontitle">Basic Concepts</h4><ul id="cce_bestpractice_00004__ul7466114812918"><li id="cce_bestpractice_00004__li74671848172920"><strong id="cce_bestpractice_00004__en-us_topic_0099587154_b17598104014123">VPC CIDR Block</strong><p id="cce_bestpractice_00004__p18394150132916">Virtual Private Cloud (VPC) enables you to provision logically isolated, configurable, and manageable virtual networks for cloud servers, cloud containers, and cloud databases. You have complete control over your virtual network, including selecting your own CIDR block, creating subnets, and configuring security groups. You can also assign EIPs and allocate bandwidth in your VPC for secure and easy access to your business system.</p>
+</li><li id="cce_bestpractice_00004__li13467748182920"><strong id="cce_bestpractice_00004__en-us_topic_0099587154_b242703391610">Subnet CIDR Block</strong><div class="p" id="cce_bestpractice_00004__p290815192912">A subnet is a network that manages ECS network planes. It supports IP address management and DNS. The IP addresses of all ECSs in a subnet belong to the subnet.<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig6641150194810"><span class="figcap"><b>Figure 1 </b>VPC CIDR block architecture</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image1527114614912" src="en-us_image_0261818822.png"></span></div>
+</div>
+<p id="cce_bestpractice_00004__p7299135103015">By default, ECSs in all subnets of the same VPC can communicate with one another, while ECSs in different VPCs cannot communicate with each other.</p>
+<p id="cce_bestpractice_00004__p136916153017">You can create a peering connection on VPC to enable ECSs in different VPCs to communicate with each other.</p>
+</li><li id="cce_bestpractice_00004__li1146794852913"><strong id="cce_bestpractice_00004__en-us_topic_0099587154_b27799243223">Container (Pod) CIDR Block</strong><p id="cce_bestpractice_00004__p6297167153018">Pod is a Kubernetes concept. Each pod has an IP address.</p>
+<p id="cce_bestpractice_00004__p171812810307">When creating a cluster on CCE, you can specify the pod (container) CIDR block, which cannot overlap with the subnet CIDR block. For example, if the subnet CIDR block is 192.168.0.0/16, the container CIDR block cannot be 192.168.0.0/18 or 192.168.1.0/18, because these addresses are included in 192.168.0.0/16.</p>
+</li><li id="cce_bestpractice_00004__li20467104822913"><strong id="cce_bestpractice_00004__b1884175255317">Container Subnet</strong> (Only for CCE Turbo Clusters)<p id="cce_bestpractice_00004__p81603918301">In a CCE Turbo cluster, a container is assigned an IP address from the CIDR block of a VPC. The container subnet can overlap with the subnet CIDR block. Note that the subnet you select determines the maximum number of pods in the cluster. After a cluster is created, you can only add container subnets but cannot delete them.</p>
+</li><li id="cce_bestpractice_00004__li2046713484293"><strong id="cce_bestpractice_00004__b195887310590">Service CIDR Block</strong><p id="cce_bestpractice_00004__p4224510113019">Service is also a Kubernetes concept. Each Service has an address. When creating a cluster on CCE, you can specify the Service CIDR block. Similarly, the Service CIDR block cannot overlap with the subnet CIDR block or the container CIDR block. The Service CIDR block can be used only within a cluster.</p>
 </li></ul>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p11808133173211">In the tunnel network model, after creating a peering connection, you need to add routes for the peering connection to enable communication between the two VPCs.</p>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig751481973514"><span class="figcap"><b>Figure 7 </b>Tunnel network - VPC interconnection scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image5272122663413" src="en-us_image_0000001223473845.png"></span></div>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p15295194916354">Pay attention to the following:</p>
-<ul id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_ul62952049133517"><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li132959494355">The VPC address is determined during VPC creation. When creating a cluster, select a CIDR block for each cluster that does not overlap with the VPC CIDR block or other container CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li10295134911351">The container CIDR blocks of all clusters cannot overlap, but the Service CIDR blocks can.</li><li id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_li1329524983512">Add the peer subnet CIDR block to the route table of the VPC peering connection. The following is an example:<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_fig154041352174416"><span class="figcap"><b>Figure 8 </b>Adding the subnet CIDR block of the peer cluster node to the local route on the VPC console</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_image389616428447" src="en-us_image_0000001178034116.png"></span></div>
-</li></ul>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p208983311518"><strong id="cce_bestpractice_00004__b18709102314413">VPC-IDC Scenarios</strong></p>
-<p id="cce_bestpractice_00004__en-us_topic_0261817695_en-us_topic_0099587154_p989813311959">Similar to the VPC interconnection scenario, some CIDR blocks in the VPC are routed to the IDC. The pod IP addresses of CCE clusters cannot overlap with the addresses within these CIDR blocks. To access the pod IP addresses in the cluster in the IDC, you need to configure the route table to the private line VBR on the IDC.</p>
+</div>
+<div class="section" id="cce_bestpractice_00004__en-us_topic_0099587154_section176413381249"><h4 class="sectiontitle">Single-VPC Single-Cluster Scenarios</h4><div class="p" id="cce_bestpractice_00004__p1465393382815"><strong id="cce_bestpractice_00004__b073783814597">CCE Clusters</strong>: include clusters in VPC network model and container tunnel network model. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920">Figure 2</a> shows the CIDR block planning of a cluster.<ul id="cce_bestpractice_00004__ul1765416399218"><li id="cce_bestpractice_00004__li1833617374211">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li133373379218">Subnet CIDR Block: specifies the subnet CIDR block where the node in the cluster resides. The subnet CIDR block is included in the VPC CIDR block. Different nodes in the same cluster can be allocated to different subnet CIDR blocks.</li><li id="cce_bestpractice_00004__li315115092119">Container CIDR Block: cannot overlap with the subnet CIDR block.</li><li id="cce_bestpractice_00004__li6749956172118">Service CIDR Block: cannot overlap with the subnet CIDR block or the container CIDR block.</li></ul>
+<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920"><a name="cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920"></a><a name="en-us_topic_0099587154_fig15791152874920"></a><span class="figcap"><b>Figure 2 </b>Network CIDR block planning in the single-VPC single-cluster scenario (CCE cluster)</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image839131719109" src="en-us_image_0000001392318380.png"></span></div>
+</div>
+<div class="p" id="cce_bestpractice_00004__p1373718535281"><a href="#cce_bestpractice_00004__fig19746213285">Figure 3</a> shows the CIDR block planning for a <strong id="cce_bestpractice_00004__b131718432615">CCE Turbo cluster</strong> (cloud native network 2.0).<ul id="cce_bestpractice_00004__ul16961327152214"><li id="cce_bestpractice_00004__li19611827192217">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li1961182782214">Subnet CIDR Block: specifies the subnet CIDR block where the node in the cluster resides. The subnet CIDR block is included in the VPC CIDR block. Different nodes in the same cluster can be allocated to different subnet CIDR blocks.</li><li id="cce_bestpractice_00004__li15961132710225">Container Subnet CIDR Block: The container subnet is included in the VPC CIDR block and can overlap with the subnet CIDR block or even be the same as the subnet CIDR block. Note that the container subnet size determines the maximum number of containers in the cluster because IP addresses in the VPC are directly allocated to containers. After a cluster is created, you can only add container subnets but cannot delete them. You are advised to set a larger IP address segment for the container subnet to prevent insufficient container IP addresses.</li><li id="cce_bestpractice_00004__li129612271220">Service CIDR Block: cannot overlap with the subnet CIDR block or the container CIDR block.</li></ul>
+<div class="fignone" id="cce_bestpractice_00004__fig19746213285"><a name="cce_bestpractice_00004__fig19746213285"></a><a name="fig19746213285"></a><span class="figcap"><b>Figure 3 </b>CIDR block planning in the single-VPC single-cluster scenario (CCE Turbo cluster)</span><br><span><img class="eddx" id="cce_bestpractice_00004__image12974112122817" src="en-us_image_0000001392280374.png"></span></div>
+</div>
+</div>
+<div class="section" id="cce_bestpractice_00004__section158285913212"><h4 class="sectiontitle"><strong id="cce_bestpractice_00004__b57645130912">Single-VPC Multi-Cluster Scenarios</strong></h4><p id="cce_bestpractice_00004__p92201520336"><strong id="cce_bestpractice_00004__b193873301795">VPC network model</strong></p>
+<div class="p" id="cce_bestpractice_00004__en-us_topic_0099587154_p2017890132517">Pod packets are forwarded through VPC routes. CCE automatically configures a routing table on the VPC routes to each container CIDR block. The network scale is limited by the VPC route table. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig69527530400">Figure 4</a> shows the CIDR block planning of the cluster.<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul882015557241"><li id="cce_bestpractice_00004__li790154610251">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li20845848142312">Subnet CIDR Block: The subnet CIDR block in each cluster cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li13820185572420">Container CIDR Block: If multiple VPC network model clusters exist in a single VPC, the container CIDR blocks of all clusters cannot overlap because the clusters use the same routing table. In this case, CCE clusters are partially interconnected. A pod of a cluster can directly access the pods of another cluster, but cannot access the Services of the cluster.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li198211055182410">Service CIDR Block: can be used only in clusters. Therefore, the service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster to which the clusters belong.</li></ul>
+<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig69527530400"><a name="cce_bestpractice_00004__en-us_topic_0099587154_fig69527530400"></a><a name="en-us_topic_0099587154_fig69527530400"></a><span class="figcap"><b>Figure 4 </b>VPC network - multi-cluster scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image2088115717617" src="en-us_image_0261818824.png"></span></div>
+</div>
+<p id="cce_bestpractice_00004__p137155120316"><strong id="cce_bestpractice_00004__b9885618151210">Tunnel Network</strong></p>
+<div class="p" id="cce_bestpractice_00004__en-us_topic_0099587154_p2895124762317">Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig8672112184219">Figure 5</a> shows the CIDR block planning of the cluster.<ul id="cce_bestpractice_00004__ul2493220356"><li id="cce_bestpractice_00004__li24632163511">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li154193263512">Subnet CIDR Block: The subnet CIDR block in each cluster cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__li1941632203519">Container CIDR Block: The container CIDR blocks of all clusters can overlap. In this case, pods in different clusters cannot be directly accessed using IP addresses. It is recommended that ELB be used for the cross-cluster access between containers.</li><li id="cce_bestpractice_00004__li16433293512">Service CIDR Block: can be used only in clusters. Therefore, the service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster to which the clusters belong.</li></ul>
+<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig8672112184219"><a name="cce_bestpractice_00004__en-us_topic_0099587154_fig8672112184219"></a><a name="en-us_topic_0099587154_fig8672112184219"></a><span class="figcap"><b>Figure 5 </b>Tunnel network - multi-cluster scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image14998656164117" src="en-us_image_0261818885.png"></span></div>
+</div>
+<p id="cce_bestpractice_00004__p63888102047"><strong id="cce_bestpractice_00004__b13940172119169">Cloud native network 2.0 network model</strong> (CCE Turbo cluster)</p>
+<div class="p" id="cce_bestpractice_00004__p6708838144310">In this mode, container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and multiple types of VPC networks can be bound to deliver high performance.<ul id="cce_bestpractice_00004__ul1354819545457"><li id="cce_bestpractice_00004__li18548454104515">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. In a CCE Turbo cluster, the CIDR block size affects the total number of nodes and containers that can be created in the cluster.</li><li id="cce_bestpractice_00004__li1254820544457">Subnet CIDR Block: There is no special restriction on the subnet CIDR blocks in CCE Turbo clusters.</li><li id="cce_bestpractice_00004__li1254815415457">Container Subnet: The CIDR block of the container subnet is included in the VPC CIDR block. Container subnets in different clusters can overlap with each other or overlap with the subnet CIDR block. However, you are advised to stagger the container CIDR blocks of different clusters and ensure that the container subnet CIDR blocks have sufficient IP addresses. In this case, pods in different clusters can directly access each other through IP addresses.</li><li id="cce_bestpractice_00004__li1354945412456">Service CIDR Block: can be used only in clusters. Therefore, the service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block or container CIDR block.</li></ul>
+<div class="fignone" id="cce_bestpractice_00004__fig1881152517391"><span class="figcap"><b>Figure 6 </b>Cloud native network 2.0 network model - multi-cluster scenario</span><br><span><img class="eddx" id="cce_bestpractice_00004__image988282523911" src="en-us_image_0000001392259910.png"></span></div>
+</div>
+<p id="cce_bestpractice_00004__p330710143563"><strong id="cce_bestpractice_00004__b2733618145620">Coexistence of Clusters in Multi-Network</strong></p>
+<p id="cce_bestpractice_00004__p1863711518564">When a VPC contains clusters created with different network models, comply with the following rules when creating a cluster:</p>
+<ul id="cce_bestpractice_00004__ul151475497118"><li id="cce_bestpractice_00004__li91473495115">VPC CIDR Block: In this scenario, all clusters are located in the same VPC CIDR block. Ensure that there are sufficient available IP addresses in the VPC.</li><li id="cce_bestpractice_00004__li18147204901112">Subnet CIDR Block: Ensure that the subnet CIDR block does not overlap with the container CIDR block. Even in some scenarios (for example, coexistence with CCE Turbo clusters), the subnet CIDR block can overlap with the container (subnet) CIDR block. However, this is not recommended.</li><li id="cce_bestpractice_00004__li4147649131112">Container CIDR Block: Ensure that the container CIDR blocks of clusters in <strong id="cce_bestpractice_00004__b34461031473">VPC network model</strong> do not overlap.</li><li id="cce_bestpractice_00004__li11147204915115">Service CIDR Block: The service CIDR blocks of all clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00004__section14417155019213"><h4 class="sectiontitle">Cross-VPC Cluster Interconnection</h4><p id="cce_bestpractice_00004__en-us_topic_0099587154_p164027122611">When two VPC networks are interconnected, you can configure the packets to be sent to the peer VPC in the route table.</p>
+<p id="cce_bestpractice_00004__en-us_topic_0099587154_p84981130122719">In the VPC network model, after creating a peering connection, you need to add routes for the peering connection to enable communication between the two VPCs.</p>
+<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig5812933155410"><span class="figcap"><b>Figure 7 </b>VPC Network - VPC interconnection scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image196453652114" src="en-us_image_0261818886.png"></span></div>
+<p id="cce_bestpractice_00004__en-us_topic_0099587154_p73783692817">When creating a VPC peering connection between containers across VPCs, pay attention to the following points:</p>
+<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul18682114711291"><li id="cce_bestpractice_00004__en-us_topic_0099587154_li4682184718299">The VPC to which the clusters belong must not overlap. In each cluster, the subnet CIDR block cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li86822047152916">The container CIDR blocks of clusters cannot overlap, but the Service CIDR blocks can.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li206821447202916">You need to add not only the peer VPC CIDR block but also the peer container CIDR block to the VPC routing tables at both ends. Note that this operation must be performed in the VPC route tables of the clusters.</li></ul>
+<p id="cce_bestpractice_00004__en-us_topic_0099587154_p11808133173211">In the tunnel network model, after creating a peering connection, you need to add routes for the peering connection to enable communication between the two VPCs.</p>
+<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig751481973514"><span class="figcap"><b>Figure 8 </b>Tunnel network - VPC interconnection scenario</span><br><span><img id="cce_bestpractice_00004__image12344161803817" src="en-us_image_0000001082048529.png"></span></div>
+<p id="cce_bestpractice_00004__en-us_topic_0099587154_p15295194916354">Pay attention to the following:</p>
+<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul62952049133517"><li id="cce_bestpractice_00004__en-us_topic_0099587154_li132959494355">The VPC of the clusters must not overlap.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li10295134911351">The container CIDR blocks of all clusters can overlap, so do the Service CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li1329524983512">Add the peer subnet CIDR block to the route table of the VPC peering connection.</li></ul>
+<p id="cce_bestpractice_00004__p1397317227577">In <span class="uicontrol" id="cce_bestpractice_00004__uicontrol1186282345715"><b>Cloud Native Network 2.0</b></span> mode, after creating a VPC peering connection, you only need to add routes for the VPC peering connection to enable communication between the two VPCs. Ensure that the VPC of the clusters does not overlap.</p>
+</div>
+<div class="section" id="cce_bestpractice_00004__section292112285216"><h4 class="sectiontitle"><strong id="cce_bestpractice_00004__b119061350558">VPC-IDC Scenarios</strong></h4><p id="cce_bestpractice_00004__en-us_topic_0099587154_p989813311959">Similar to the VPC interconnection scenario, some CIDR blocks in the VPC are routed to the IDC. The pod IP addresses of CCE clusters cannot overlap with the addresses within these CIDR blocks. To access the pod IP addresses in the cluster in the IDC, you need to configure the route table to the private line VBR on the IDC.</p>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_faq_0083.html">Reference</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0052.html">Networking</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_bestpractice_00006.html b/docs/cce/umn/cce_bestpractice_00006.html
new file mode 100644
index 00000000..171079eb
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00006.html
@@ -0,0 +1,186 @@
+<a name="cce_bestpractice_00006"></a><a name="cce_bestpractice_00006"></a>
+
+<h1 class="topictitle1">Checklist for Deploying Containerized Applications in the Cloud</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00006__en-us_topic_0196818704_section277217531231"><h4 class="sectiontitle">Overview</h4><p id="cce_bestpractice_00006__en-us_topic_0196818704_p156732719517">Security, efficiency, stability, and availability are common requirements on all cloud services. To meet these requirements, the system availability, data reliability, and O&amp;M stability must be perfectly coordinated. This checklist describes the check items for deploying containerized applications on the cloud to help you efficiently migrate services to CCE, reducing potential cluster or application exceptions caused by improper use.</p>
+</div>
+<div class="section" id="cce_bestpractice_00006__en-us_topic_0196818704_section182281181291"><h4 class="sectiontitle">Check Items</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00006__en-us_topic_0196818704_table164991312201710" frame="border" border="1" rules="all"><caption><b>Table 1 </b>System availability</caption><thead align="left"><tr id="cce_bestpractice_00006__en-us_topic_0196818704_row135006125171"><th align="left" class="cellrowborder" valign="top" width="12.70372526193248%" id="mcps1.3.2.2.2.5.1.1"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p75001612181713">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="37.82013969732247%" id="mcps1.3.2.2.2.5.1.2"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p150131214173">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.350407450523864%" id="mcps1.3.2.2.2.5.1.3"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p125011712171711">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.12572759022119%" id="mcps1.3.2.2.2.5.1.4"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p5501512151719">Impact</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_00006__en-us_topic_0196818704_row19950447201611"><td class="cellrowborder" rowspan="5" valign="top" width="12.70372526193248%" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p59501047111616">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.82013969732247%" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p4501812101719">Before creating a cluster, properly plan the node network and container network based on service requirements to allow subsequent service expansion.</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.350407450523864%" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1250131220173">Network planning</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.12572759022119%" headers="mcps1.3.2.2.2.5.1.4 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p135361626948">If the subnet or container CIDR block where the cluster resides is small, the number of available nodes supported by the cluster may be less than required.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row195771637163416"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p141771091211">Before creating a cluster, properly plan CIDR blocks for the related Direct Connect, peering connection, container network, service network, and subnet to avoid IP address conflicts.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p17501151211171">Network planning</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p18501312141712">If CIDR blocks are not properly set and IP address conflicts occur, service access will be affected.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row7540820104113"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p18173182913417">When a cluster is created, the default security group is automatically created and bound to the cluster. You can set custom security group rules based on service requirements.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p9173029154119">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p817312964115">Security groups are key to security isolation. Improper security policy configuration may cause security risks and service connectivity problems.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row14501131220173"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__p1680120417375">Enable the multi-master node mode, and set the number of master nodes to <strong id="cce_bestpractice_00006__b1464515162214">3</strong> when creating a cluster.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p11501191211174">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__p11533937143612">After the multi-master node mode is enabled, three master nodes will be created. If a master node is faulty, the cluster can still be available without affecting service functions. In commercial scenarios, it is advised to enable the multi-master node mode.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row75011212161711"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p730414511">When creating a cluster, select a proper network model, such as container tunnel network or VPC network.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p183154254">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p831541516">After a cluster is created, the network model cannot be changed. Exercise caution when selecting a network model.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row20501101281711"><td class="cellrowborder" rowspan="6" valign="top" width="12.70372526193248%" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p0501712141714">Workload</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.82013969732247%" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1150131216175">When creating a workload, you need to set the CPU and memory limits to improve service robustness.</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.350407450523864%" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p14502212181712">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.12572759022119%" headers="mcps1.3.2.2.2.5.1.4 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p650251271716">When multiple applications are deployed on the same node, if the upper and lower resource limits are not set for an application, resource leakage occurs. As a result, resources cannot be allocated to other applications, and the application monitoring information will be inaccurate.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row142164565169"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p6250434165712">When creating a workload, you can set probes for container health check, including <strong id="cce_bestpractice_00006__b958435445812">liveness probe</strong> and <strong id="cce_bestpractice_00006__b1279195817586">readiness probe</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p725043418577">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p10251534185714">If the health check function is not configured, a pod cannot detect service exceptions or automatically restart the service to restore it. This results in a situation where the pod status is normal but the service in the pod is abnormal.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row83611469175"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p13581405302">When creating a workload, select a proper access mode (Service). Currently, the following types of Services are supported: ClusterIP, NodePort, and LoadBalancer.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p935844033015">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1635814015304">Improper Service configuration may cause logic confusion for internal and external access and resource waste.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row918205611309"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p931981510194">When creating a workload, do not set the number of replicas for a single pod. Set a proper node scheduling policy based on your service requirements.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p9183565309">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p71825612306">For example, if the number of replicas of a single pod is set, the service will be abnormal when the node or pod is abnormal. To ensure that your pods can be successfully scheduled, ensure that the node has idle resources for container scheduling after you set the scheduling rule.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row161825673020"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p7181656183010">Properly set affinity and anti-affinity.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1618205603013">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1218656113019">If affinity and anti-affinity are both configured for an application that provides Services externally, Services may fail to be accessed after the application is upgraded or restarted.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row676864612304"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p6768114643017">When creating a workload, set the pre-stop processing command (<strong id="cce_bestpractice_00006__en-us_topic_0196818704_b730814121392">Lifecycle</strong> &gt; <strong id="cce_bestpractice_00006__en-us_topic_0196818704_b14309312490">Pre-Stop</strong>) to ensure that the services running in the pods can be completed in advance in the case of application upgrade or pod deletion.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p77685468309">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1076804618309">If the pre-stop processing command is not configured, the pod will be directly killed and services will be interrupted during application upgrade. </p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00006__en-us_topic_0196818704_table34517594413" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data reliability</caption><thead align="left"><tr id="cce_bestpractice_00006__en-us_topic_0196818704_row17452105910416"><th align="left" class="cellrowborder" valign="top" width="12.724092697857456%" id="mcps1.3.2.3.2.5.1.1"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p19452175916417">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.026526745372394%" id="mcps1.3.2.3.2.5.1.2"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p17452155913418">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.368605159597726%" id="mcps1.3.2.3.2.5.1.3"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p14452155944117">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="37.88077539717242%" id="mcps1.3.2.3.2.5.1.4"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p164528599411">Impact</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_00006__en-us_topic_0196818704_row174521959164116"><td class="cellrowborder" valign="top" width="12.724092697857456%" headers="mcps1.3.2.3.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p11452195974113">Container data persistency</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.026526745372394%" headers="mcps1.3.2.3.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p0452185913416">Select a proper data volume type based on service requirements.</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.368605159597726%" headers="mcps1.3.2.3.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p445295913416">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.88077539717242%" headers="mcps1.3.2.3.2.5.1.4 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p6452125917415">When a node is faulty and cannot be recovered, data in the local disk cannot be recovered. Therefore, you are advised to use cloud storage volumes to ensure data reliability.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row4452125984114"><td class="cellrowborder" valign="top" width="12.724092697857456%" headers="mcps1.3.2.3.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p5452125904110">Backup</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.026526745372394%" headers="mcps1.3.2.3.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p745313591413">Back up application data.</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.368605159597726%" headers="mcps1.3.2.3.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p9453125934120">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.88077539717242%" headers="mcps1.3.2.3.2.5.1.4 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p18453559154115">Data cannot be restored after being lost.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00006__en-us_topic_0196818704_table1177832919469" frame="border" border="1" rules="all"><caption><b>Table 3 </b>O&amp;M reliability</caption><thead align="left"><tr id="cce_bestpractice_00006__en-us_topic_0196818704_row777822934612"><th align="left" class="cellrowborder" valign="top" width="12.66686012768427%" id="mcps1.3.2.4.2.5.1.1"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p6779102924617">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.015089959373185%" id="mcps1.3.2.4.2.5.1.2"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p13779102994610">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="11.012768427161927%" id="mcps1.3.2.4.2.5.1.3"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p7779132913462">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38.30528148578061%" id="mcps1.3.2.4.2.5.1.4"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1577915295469">Impact</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_00006__en-us_topic_0196818704_row137791294464"><td class="cellrowborder" rowspan="3" valign="top" width="12.66686012768427%" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1477919292464">Project</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.015089959373185%" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p3779182912468">The quotas of ECS, VPC, subnet, EIP, and EVS resources must meet customer requirements.</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.012768427161927%" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p15779172984614">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.30528148578061%" headers="mcps1.3.2.4.2.5.1.4 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p20779162914614">If the quota is insufficient, resources will fail to be created. Specifically, users who have configured auto scaling must have sufficient resource quotas.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row10779102919461"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p147791329154618">You are not advised to modify kernel parameters, system configurations, cluster core component versions, security groups, and ELB-related parameters on cluster nodes, or install software that has not been verified.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p1177917296468">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p3779102919464">Exceptions may occur on CCE clusters or Kubernetes components on the node, making the node unavailable for application deployment.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row19779142934618"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p137801295461">Do not modify information about resources created by CCE, such as security groups and EVS disks. Resources created by CCE are labeled <strong id="cce_bestpractice_00006__en-us_topic_0196818704_b824395071512">cce</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p27801829144618">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p8780142913462">CCE cluster functions may be abnormal.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00006__en-us_topic_0196818704_row8780182974617"><td class="cellrowborder" valign="top" width="12.66686012768427%" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p978082984614">Proactive O&amp;M</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.015089959373185%" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p778002974612">CCE provides multi-dimensional monitoring and alarm reporting functions, and supports basic resource monitoring based on fine-grained metrics by interconnecting with Application Operations Management (AOM). Alarms allow users to locate and rectify faults as soon as possible.</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.012768427161927%" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p4780192914467">Monitoring</p>
+</td>
+<td class="cellrowborder" valign="top" width="38.30528148578061%" headers="mcps1.3.2.4.2.5.1.4 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p3780172964611">If the alarms are not configured, the standard of container cluster performance cannot be established. When an exception occurs, you cannot receive alarms and will need to manually locate the fault.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00035.html b/docs/cce/umn/cce_bestpractice_00035.html
new file mode 100644
index 00000000..6446f86d
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00035.html
@@ -0,0 +1,37 @@
+<a name="cce_bestpractice_00035"></a><a name="cce_bestpractice_00035"></a>
+
+<h1 class="topictitle1">Obtaining the Client Source IP Address for a Container</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00035__en-us_topic_0112307025_section15473144153818"><h4 class="sectiontitle">Background</h4><p id="cce_bestpractice_00035__en-us_topic_0112307025_p16169173419396">There may be different types of proxy servers between a client and a container server. How can a container obtain the real source IP address of the client? This section describes several scenarios you may encounter.</p>
+</div>
+<div class="section" id="cce_bestpractice_00035__en-us_topic_0112307025_section14623143319552"><h4 class="sectiontitle">Principles</h4><p id="cce_bestpractice_00035__p1842819471458"><span><img class="eddx" id="cce_bestpractice_00035__image4962449184416" src="en-us_image_0000001176818150.png"></span></p>
+<p id="cce_bestpractice_00035__p1773572516282"><strong id="cce_bestpractice_00035__b10990522751">Layer-7 forwarding:</strong></p>
+<p id="cce_bestpractice_00035__p127218392817">Ingress: If this access mode is used, the client source IP address is saved in the <strong id="cce_bestpractice_00035__b220014255720">X-Forwarded-For</strong> HTTP header field by default. No other configuration is required.</p>
+<ul id="cce_bestpractice_00035__ul14638131964712"><li id="cce_bestpractice_00035__li116385193479">ELB ingress: A self-developed ingress to implement layer-7 network access between the internet and intranet (in the same VPC) based on ELB. If the backend Service type is <strong id="cce_bestpractice_00035__b1623512557593">NodePort</strong>, set <strong id="cce_bestpractice_00035__b361918135812">Service Affinity</strong> to <strong id="cce_bestpractice_00035__b1936962185815">Node level</strong>.</li></ul>
+<p id="cce_bestpractice_00035__p127358257286"><strong id="cce_bestpractice_00035__b665912598571">Layer-4 forwarding:</strong></p>
+<ul id="cce_bestpractice_00035__ul378957151212"><li id="cce_bestpractice_00035__li18219175312486">LoadBalancer: Use ELB to achieve load balancing. You can manually enable the <strong id="cce_bestpractice_00035__b2036318173518">Obtain Client IP Address</strong> option for TCP and UDP listeners of shared load balancers. By default, the <strong id="cce_bestpractice_00035__b560632310437">Obtain Client IP Address</strong> option is enabled for TCP and UDP listeners of dedicated load balancers. You do not need to manually enable it.</li><li id="cce_bestpractice_00035__li137845712121">NodePort: In this access mode, the container port is mapped to the node port. If cluster-level affinity is configured, access requests will be forwarded through the node and the client source IP address cannot be obtained. If node-level affinity is configured, access requests are not forwarded and the client source IP address can be obtained.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00035__section182607151519"><h4 class="sectiontitle">Ingress</h4><p id="cce_bestpractice_00035__p201511142171416">Configure the application server and obtain the IP address of a client from the HTTP header.</p>
+<p id="cce_bestpractice_00035__p107351425162815">The real IP address is placed in the <strong id="cce_bestpractice_00035__b129812919298">X-Forwarded-For</strong> HTTP header field by the load balancer in the following format:</p>
+<pre class="screen" id="cce_bestpractice_00035__screen154815112816">X-Forwarded-For: <em id="cce_bestpractice_00035__i0263819192912">IP address of the client</em>,<em id="cce_bestpractice_00035__i4263619162919">Proxy server 1-IP address</em>,<em id="cce_bestpractice_00035__i1526310197290">Proxy server 2-IP address</em>,...</pre>
+<p id="cce_bestpractice_00035__p131511642121417">If you use this method, the first IP address obtained is the IP address of the client.</p>
+<p id="cce_bestpractice_00035__p13412284711">For details, see <a href="https://docs.otc.t-systems.com/usermanual/elb/elb_faq_0090.html" target="_blank" rel="noopener noreferrer">How Can I Obtain the IP Address of a Client?</a></p>
+<div class="note" id="cce_bestpractice_00035__note17787124418"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_00035__ul9269131812110"><li id="cce_bestpractice_00035__li102697185210">When adding an ingress, if the backend service is of the NodePort type, set <strong id="cce_bestpractice_00035__b177497173714">Service Affinity</strong> to <strong id="cce_bestpractice_00035__b1518711205415">Node level</strong>, that is, set <strong id="cce_bestpractice_00035__b17727191625417">spec.externalTrafficPolicy</strong> to <strong id="cce_bestpractice_00035__b277211191547">Local</strong>. For details, see <a href="#cce_bestpractice_00035__section6340152911914">NodePort</a>.</li></ul>
+</div></div>
+</div>
+<div class="section" id="cce_bestpractice_00035__en-us_topic_0112307025_section968953616401"><h4 class="sectiontitle">LoadBalancer</h4><p id="cce_bestpractice_00035__p17777185411612">For a LoadBalancer Service, different types of clusters obtain source IP addresses in different scenarios. In some scenarios, source IP addresses cannot be obtained currently.</p>
+<p id="cce_bestpractice_00035__p101483813463"><strong id="cce_bestpractice_00035__b94263121219">VPC and Container Tunnel Network Models</strong></p>
+<p id="cce_bestpractice_00035__p420914396245">To obtain source IP addresses, perform the following steps:</p>
+<ol id="cce_bestpractice_00035__ol1477712543620"><li id="cce_bestpractice_00035__li12777454962"><span>When creating a LoadBalancer Service on the CCE console, set <strong id="cce_bestpractice_00035__b1745114210315">Service Affinity</strong> to <strong id="cce_bestpractice_00035__b9844491834">Node level</strong> instead of <strong id="cce_bestpractice_00035__b1631105614320">Cluster level</strong>.</span><p><p id="cce_bestpractice_00035__p07779548616"></p>
+</p></li><li id="cce_bestpractice_00035__li1777795419614"><span>Go to the ELB console and enable the function of obtaining the client IP address of the listener corresponding to the load balancer. <strong id="cce_bestpractice_00035__b670319210497">Transparent transmission of source IP addresses is enabled for dedicated load balancers by default. You do not need to manually enable this function.</strong></span><p><ol type="a" id="cce_bestpractice_00035__ol167779541767"><li id="cce_bestpractice_00035__li11777154764">Log in to the ELB console.</li><li id="cce_bestpractice_00035__li187771754967">Click <span><img id="cce_bestpractice_00035__image1677716541169" src="en-us_image_0000001221501677.png"></span> in the upper left corner to select the desired region and project.</li><li id="cce_bestpractice_00035__li17777145417611">Click <strong id="cce_bestpractice_00035__b11958203315514">Service List</strong>. Under <strong id="cce_bestpractice_00035__b1096313310516">Networking</strong>, click <strong id="cce_bestpractice_00035__b1396312337513">Elastic Load Balance</strong>.</li><li id="cce_bestpractice_00035__li877713542067">On the <strong id="cce_bestpractice_00035__b7806736153212">Load Balancers</strong> page, click the name of the load balancer.</li><li id="cce_bestpractice_00035__li17771254563">Click <strong id="cce_bestpractice_00035__b113891339173212">Listeners</strong>.</li><li id="cce_bestpractice_00035__li377745418611">To add a listener, click <strong id="cce_bestpractice_00035__b972114414517">Add Listener</strong>.</li><li id="cce_bestpractice_00035__li07777540611">To modify a listener, locate the listener and click <span><img id="cce_bestpractice_00035__image107771654368" src="en-us_image_0000001221820189.png"></span> on the right of its name.</li><li id="cce_bestpractice_00035__li477720541864">Enable <strong id="cce_bestpractice_00035__b207848511656">Obtain Client IP Address</strong>.</li></ol>
+</p></li></ol>
+<p id="cce_bestpractice_00035__p59816519"></p>
+</div>
+<div class="section" id="cce_bestpractice_00035__section6340152911914"><a name="cce_bestpractice_00035__section6340152911914"></a><a name="section6340152911914"></a><h4 class="sectiontitle">NodePort</h4><p id="cce_bestpractice_00035__p12338629898">Set the service affinity of a NodePort Service to <strong id="cce_bestpractice_00035__b18193342472">Node level</strong> instead of <strong id="cce_bestpractice_00035__b13200442778">Cluster level</strong>. That is, set <strong id="cce_bestpractice_00035__b122003421077">spec.externalTrafficPolicy</strong> of the Service to <strong id="cce_bestpractice_00035__b1920020424712">Local</strong>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0052.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00162.html b/docs/cce/umn/cce_bestpractice_00162.html
index d7a1cd6d..e29f7a89 100644
--- a/docs/cce/umn/cce_bestpractice_00162.html
+++ b/docs/cce/umn/cce_bestpractice_00162.html
@@ -1,97 +1,107 @@
 <a name="cce_bestpractice_00162"></a><a name="cce_bestpractice_00162"></a>
 
-<h1 class="topictitle1">Selecting a Network Model When Creating a Cluster on CCE</h1>
-<div id="body0000001197314927"><p id="cce_bestpractice_00162__p178281861772">CCE uses high-performance container networking add-ons, which support the tunnel network and VPC network models.</p>
-<div class="caution" id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_note16210116164920"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p13210161634911">After a cluster is created, the network model cannot be changed. Exercise caution when selecting a network model.</p>
+<h1 class="topictitle1">Selecting a Network Model</h1>
+<div id="body8662426"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p17435959114810">CCE uses self-proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.</p>
+<div class="caution" id="cce_bestpractice_00162__en-us_topic_0146398798_note16210116164920"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p13210161634911">After a cluster is created, the network model cannot be changed. Exercise caution when selecting a network model.</p>
 </div></div>
-<ul id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_ul19705159132810"><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li13471796331"><strong id="cce_bestpractice_00162__b1240315443522">Tunnel network</strong>: The container network is an overlay tunnel network on top of a VPC network and uses the VXLAN technology. This network model is applicable when there is no high requirements on performance. VXLAN encapsulates Ethernet packets as UDP packets for tunnel transmission. Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications.<div class="fignone" id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_fig119421248102318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_image126561265409" src="en-us_image_0000001223393893.png"></span></div>
-</li><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li12415181582811"><strong id="cce_bestpractice_00162__b51451654135216">VPC network</strong>: The container network uses VPC routing to integrate with the underlying network. This network model is applicable to performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the route quota in a VPC network. Each node is assigned a CIDR block of a fixed size. VPC networks are free from tunnel encapsulation overhead and outperform container tunnel networks. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in the cluster can be directly accessed from outside the cluster.<div class="fignone" id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_fig105374614243"><span class="figcap"><b>Figure 2 </b>VPC network</span><br><span><img id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_image757734312392" src="en-us_image_0000001178034108.png"></span></div>
+<ul id="cce_bestpractice_00162__en-us_topic_0146398798_ul19705159132810"><li id="cce_bestpractice_00162__en-us_topic_0146398798_li13471796331"><strong id="cce_bestpractice_00162__en-us_topic_0146398798_b1464918596228">Tunnel network</strong>: The container network is an overlay tunnel network on top of a VPC network and uses the VXLAN technology. This network model is applicable when there is no high requirements on performance. VXLAN encapsulates Ethernet packets as UDP packets for tunnel transmission. Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications.<div class="fignone" id="cce_bestpractice_00162__fig14516205351318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_bestpractice_00162__image185161053141319" src="en-us_image_0000001145545261.png"></span></div>
+</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li12415181582811"><strong id="cce_bestpractice_00162__en-us_topic_0146398798_b474220128312">VPC network</strong>: The container network uses VPC routing to integrate with the underlying network. This network model is applicable to performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the route quota in a VPC network. Each node is assigned a CIDR block of a fixed size. VPC networks are free from tunnel encapsulation overhead and outperform container tunnel networks. In addition, as VPC routing includes routes to node IP addresses and container network segment, container pods in the cluster can be directly accessed from outside the cluster.<div class="fignone" id="cce_bestpractice_00162__en-us_topic_0146398798_fig105374614243"><span class="figcap"><b>Figure 2 </b>VPC network</span><br><span><img id="cce_bestpractice_00162__en-us_topic_0146398798_image757734312392" src="en-us_image_0261818875.png"></span></div>
+</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li165814075311"><strong id="cce_bestpractice_00162__b1599116212174">Cloud Native Network 2.0</strong>: The container network deeply integrates the elastic network interface (ENI) capability of VPC, uses the VPC CIDR block to allocate container addresses, and supports passthrough networking to containers through a load balancer.<div class="fignone" id="cce_bestpractice_00162__en-us_topic_0146398798_fig117435555917"><span class="figcap"><b>Figure 3 </b>Cloud Native Network 2.0</span><br><span><img id="cce_bestpractice_00162__cce_01_0284_image46261543153113" src="en-us_image_0000001352539924.png"></span></div>
 </li></ul>
-<p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1057652712256">The following table lists the differences between the network models.</p>
+<p id="cce_bestpractice_00162__en-us_topic_0146398798_p1057652712256">The following table lists the differences between the network models.</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_table715802210336" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Network comparison</caption><thead align="left"><tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row015822213316"><th align="left" class="cellrowborder" valign="top" width="22.45%" id="mcps1.3.5.2.4.1.1"><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1715813225335"><strong id="cce_bestpractice_00162__b63475552533">Dimension</strong></p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00162__table20493185118330" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Networking model comparison</caption><thead align="left"><tr id="cce_bestpractice_00162__en-us_topic_0146398798_row015822213316"><th align="left" class="cellrowborder" valign="top" width="15.951595159515952%" id="mcps1.3.5.2.5.1.1"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p1715813225335"><strong id="cce_bestpractice_00162__en-us_topic_0146398798_b18239648143919">Dimension</strong></p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="36.69%" id="mcps1.3.5.2.4.1.2"><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1015919220339"><strong id="cce_bestpractice_00162__b1004576534">Tunnel Network</strong></p>
+<th align="left" class="cellrowborder" valign="top" width="26.082608260826078%" id="mcps1.3.5.2.5.1.2"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p1015919220339"><strong id="cce_bestpractice_00162__en-us_topic_0146398798_b129018364392">Tunnel Network</strong></p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="40.86%" id="mcps1.3.5.2.4.1.3"><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p5158192253312"><strong id="cce_bestpractice_00162__b737145865310">VPC Network</strong></p>
+<th align="left" class="cellrowborder" valign="top" width="29.022902290229023%" id="mcps1.3.5.2.5.1.3"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p5158192253312"><strong id="cce_bestpractice_00162__en-us_topic_0146398798_b12902173623916">VPC Network</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.942894289428946%" id="mcps1.3.5.2.5.1.4"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p13620427132519"><strong id="cce_bestpractice_00162__b118445931714">Cloud Native Network 2.0</strong></p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row3364165414382"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p7365105418387">Core component</p>
+<tbody><tr id="cce_bestpractice_00162__en-us_topic_0146398798_row3364165414382"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p7365105418387">Core technology</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p205912419393">OVS</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p205912419393">OVS</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1759117483919">IPVlan</p>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p1759117483919">IPvlan and VPC route</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p962082712256">VPC ENI/sub-ENI</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row9184022123919"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p939214336391">Applicable clusters</p>
+<tr id="cce_bestpractice_00162__en-us_topic_0146398798_row9184022123919"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p939214336391">Applicable Clusters</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p183921533143919">Hybrid cluster</p>
-<p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p7392123313914">VM cluster</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p183921533143919">CCE cluster</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p139214338397">Hybrid cluster</p>
-<p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p53924334399">VM cluster</p>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p139214338397">CCE cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p7914115121510">CCE Turbo cluster</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row18748936104718"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p104711451154714">Support for network policies</p>
-<p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p6471751134717">(networkpolicy)</p>
+<tr id="cce_bestpractice_00162__en-us_topic_0146398798_row18748936104718"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p104711451154714">Network isolation</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p20471351124715">Yes</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p20471351124715">Kubernetes native NetworkPolicy for pods</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1047145111471">No</p>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p1047145111471">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p3620162742516">Pods support security group isolation.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row26521844204715"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p134711351184716">Support for ENI</p>
+<tr id="cce_bestpractice_00162__row18486205482917"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__p148617549296">Passthrough networking</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p74715518471">No</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_bestpractice_00162__p154861548296">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p20471115114714">Yes. The container network is deeply integrated with the VPC network, and ENI is used for pods to communicate.</p>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_bestpractice_00162__p548615422910">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_bestpractice_00162__p9486354162919">Yes</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row96181615010"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1726882465017">IP address management</p>
+<tr id="cce_bestpractice_00162__en-us_topic_0146398798_row96181615010"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p1726882465017">IP address management</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p82691024125018">IP addresses can be migrated.</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><ul id="cce_bestpractice_00162__ul17644143754410"><li id="cce_bestpractice_00162__li1764418377447">The container CIDR block is allocated separately.</li><li id="cce_bestpractice_00162__li11644133720443">CIDR blocks are divided by node and can be dynamically allocated (CIDR blocks can be dynamically added after being allocated.)</li></ul>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><ul id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_ul1259224495118"><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li759254425111">Each node is allocated with a small subnet.</li><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li19592134405120">A static route is added on the VPC router with the next hop set to the node IP address.</li></ul>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><ul id="cce_bestpractice_00162__en-us_topic_0146398798_ul1259224495118"><li id="cce_bestpractice_00162__en-us_topic_0146398798_li759254425111">The container CIDR block is allocated separately.</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li19592134405120">CIDR blocks are divided by node and statically allocated (the CIDR block cannot be changed after a node is created).</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_bestpractice_00162__p8694554174616">The container CIDR block is divided from the VPC subnet and does not need to be allocated separately.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row1661816105018"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p10269102415509">Network performance</p>
+<tr id="cce_bestpractice_00162__en-us_topic_0146398798_row1661816105018"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p10269102415509">Performance</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p526982419507">Performance loss due to VXLAN tunnel encapsulation</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p526982419507">Performance loss due to VXLAN encapsulation</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><ul id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_ul4143192791019"><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li171442027191013">No performance loss as no tunnel encapsulation is required; performance comparable to bare metal networks</li><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li714562781018">Data forwarded across nodes through the VPC router</li></ul>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_bestpractice_00162__p435133734112">No tunnel encapsulation. Cross-node packets are forwarded through VPC routers, delivering performance equivalent to that of the host network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_bestpractice_00162__p12150124903913">The container network is integrated with the VPC network, eliminating performance loss.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row262191685013"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p142691524115014">Networking scale</p>
+<tr id="cce_bestpractice_00162__en-us_topic_0146398798_row262191685013"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p142691524115014">Networking scale</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p72692024105016">A maximum of 2,000 nodes are supported.</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p72692024105016">A maximum of 2,000 nodes are supported.</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p184026307513">Limited by the VPC route table.</p>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_bestpractice_00162__p325918116114">By default, 200 nodes are supported.</p>
+<p id="cce_bestpractice_00162__p16950177175711">Each time a node is added to the cluster, a route is added to the VPC routing table. Therefore, the cluster scale is limited by the VPC route table.</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_bestpractice_00162__p107101541132219">A maximum of 2,000 nodes are supported.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row265119104479"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1826920247509">External dependency</p>
+<tr id="cce_bestpractice_00162__en-us_topic_0146398798_row14400144693816"><td class="cellrowborder" valign="top" width="15.951595159515952%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0146398798_p1926972465013">Scenario</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p32691424195014">None</p>
+<td class="cellrowborder" valign="top" width="26.082608260826078%" headers="mcps1.3.5.2.5.1.2 "><ul id="cce_bestpractice_00162__en-us_topic_0146398798_ul619513457509"><li id="cce_bestpractice_00162__en-us_topic_0146398798_li21951445205019">Common container services</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li5195194517504">Scenarios that do not have high requirements on network latency and bandwidth</li></ul>
 </td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p204029302517">Static route table of the VPC router</p>
+<td class="cellrowborder" valign="top" width="29.022902290229023%" headers="mcps1.3.5.2.5.1.3 "><ul id="cce_bestpractice_00162__en-us_topic_0146398798_ul1659212532511"><li id="cce_bestpractice_00162__en-us_topic_0146398798_li175924538516">Scenarios that have high requirements on network latency and bandwidth</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li1559215532511">Containers communicate with VMs using a microservice registration framework, such as Dubbo and CSE.</li></ul>
 </td>
-</tr>
-<tr id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_row14400144693816"><td class="cellrowborder" valign="top" width="22.45%" headers="mcps1.3.5.2.4.1.1 "><p id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_p1926972465013">Application scenarios</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.69%" headers="mcps1.3.5.2.4.1.2 "><ul id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_ul619513457509"><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li21951445205019">Common container service scenarios</li><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li5195194517504">Scenarios that do not have high requirements on network latency and bandwidth</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="40.86%" headers="mcps1.3.5.2.4.1.3 "><ul id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_ul1659212532511"><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li175924538516">Scenarios that have high requirements on network latency and bandwidth</li><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li1559215532511">Containers can communicate with VMs using a microservice registration framework, such as Dubbo and CSE.</li></ul>
+<td class="cellrowborder" valign="top" width="28.942894289428946%" headers="mcps1.3.5.2.5.1.4 "><ul id="cce_bestpractice_00162__en-us_topic_0146398798_ul10867019880"><li id="cce_bestpractice_00162__en-us_topic_0146398798_li95475237814">Scenarios that have high requirements on network latency, bandwidth, and performance</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li198291117173716">Containers communicate with VMs using a microservice registration framework, such as Dubbo and CSE.</li></ul>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-<div class="notice" id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_note514622713155"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ol id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_ol4704115561518"><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li97047554152">The actual cluster scale is limited by the quota of custom routes of the VPC. Therefore, estimate the number of required nodes before creating a VPC.</li><li id="cce_bestpractice_00162__en-us_topic_0261817694_en-us_topic_0146398798_li18704355101514">By default, the VPC network model supports direct communication between containers and hosts in the same VPC. If a peering connection policy is configured between the VPC and another VPC, the containers can directly communicate with hosts on the peer VPC. In addition, in hybrid networking scenarios such as Direct Connect and VPN, communication between containers and hosts on the peer end can also be achieved with proper planning.</li></ol>
+<div class="notice" id="cce_bestpractice_00162__en-us_topic_0146398798_note514622713155"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ol id="cce_bestpractice_00162__cce_01_0281_en-us_topic_0146398798_ol4704115561518"><li id="cce_bestpractice_00162__cce_01_0281_en-us_topic_0146398798_li97047554152">The scale of a cluster that uses the VPC network model is limited by the custom routes of the VPC. Therefore, you need to estimate the number of required nodes before creating a cluster.</li><li id="cce_bestpractice_00162__cce_01_0281_li12128141818386">The scale of a cluster that uses the Cloud Native Network 2.0 model depends on the size of the VPC subnet CIDR block selected for the network attachment definition. Before creating a cluster, evaluate the scale of your cluster.</li><li id="cce_bestpractice_00162__cce_01_0281_en-us_topic_0146398798_li18704355101514">By default, VPC routing network supports direct communication between containers and hosts in the same VPC. If a peering connection policy is configured between the VPC and another VPC, the containers can directly communicate with hosts on the peer VPC. In addition, in hybrid networking scenarios such as Direct Connect and VPN, communication between containers and hosts on the peer end can also be achieved with proper planning.</li></ol>
 </div></div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_faq_0083.html">Reference</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0052.html">Networking</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_bestpractice_00190.html b/docs/cce/umn/cce_bestpractice_00190.html
new file mode 100644
index 00000000..68748bbb
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00190.html
@@ -0,0 +1,88 @@
+<a name="cce_bestpractice_00190"></a><a name="cce_bestpractice_00190"></a>
+
+<h1 class="topictitle1">Adding a Second Data Disk to a Node in a CCE Cluster</h1>
+<div id="body32001227"><p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_p288973420553">You can use the pre-installation script feature to configure CCE cluster nodes (ECSs). </p>
+<div class="note" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_note187118299010"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_ul148441643567"><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_li78443455617">When creating a node in a cluster of v1.13.10 or later, if a data disk is not managed by LVM, follow instructions in this section to format the data disk before adding the disk. Otherwise, the data disk will still be managed by LVM.</li><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_li284412417565">When creating a node in a cluster earlier than v1.13.10, you must format the data disks that are not managed by LVM. Otherwise, either these data disks or the first data disk will be managed by LVM.</li></ul>
+</div></div>
+<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p1015225014282">Before using this feature, write a script that can format data disks and save it to your OBS bucket. This script must be executed by user <strong id="cce_bestpractice_00190__cce_01_0344_b12368487253">root</strong>.</p>
+<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p14797151002918"><strong id="cce_bestpractice_00190__cce_01_0344_b8735151412269">Input Parameters</strong></p>
+<ol id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_ol2479194612293"><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_li1184816446266">Set the script name to <strong id="cce_bestpractice_00190__cce_01_0344_b11895918132610">formatdisk.sh</strong>, save the script to your OBS bucket, and obtain the address of the script in OBS.</li><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_li4843193873011">You need to specify the size of the Docker data disk (the data disk managed by LVM is called the Docker data disk). The size of the Docker disk must be different from that of the second disk. For example, the Docker data disk is 100 GB and the new disk is 110 GB.</li><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_li414717519311">Set the mount path of the second data disk, for example, <strong id="cce_bestpractice_00190__cce_01_0344_b161641838172615">/data/code</strong>.</li></ol>
+<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p1055181511314">Run the following command in the pre-installation script to format the disk:</p>
+<pre class="screen" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_screen758171514537">cd /tmp;curl -k -X GET <strong id="cce_bestpractice_00190__cce_01_0344_b1875314503263"><em id="cce_bestpractice_00190__cce_01_0344_i67471850122614">OBS bucket address</em></strong> /formatdisk.sh -1 -O;fdisk -l;sleep 30;bash -x formatdisk.sh <strong id="cce_bestpractice_00190__cce_01_0344_b37531350142614">100</strong> <strong id="cce_bestpractice_00190__cce_01_0344_b197531450132610">/data/code</strong>;fdisk -l</pre>
+<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_p44543285525">Example script (<strong id="cce_bestpractice_00190__cce_01_0344_b1719855415266">formatdisk.sh</strong>):</p>
+<pre class="screen" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_screen669716413522">dockerdisksize=$1
+mountdir=$2
+systemdisksize=40
+i=0
+while [ 20 -gt $i ]; do 
+    echo $i; 
+    if [ $(lsblk -o KNAME,TYPE | grep disk | grep -v nvme | awk '{print $1}' | awk '{ print "/dev/"$1}' |wc -l) -ge 3 ]; then 
+        break 
+    else 
+        sleep 5 
+    fi; 
+    i=$[i+1] 
+done 
+all_devices=$(lsblk -o KNAME,TYPE | grep disk | grep -v nvme | awk '{print $1}' | awk '{ print "/dev/"$1}')
+for device in ${all_devices[@]}; do
+    isRawDisk=$(lsblk -n $device 2&gt;/dev/null | grep disk | wc -l)
+    if [[ ${isRawDisk} &gt; 0 ]]; then
+        # is it partitioned ?
+        match=$(lsblk -n $device 2&gt;/dev/null | grep -v disk | wc -l)
+        if [[ ${match} &gt; 0 ]]; then
+            # already partited
+            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Raw disk ${device} has been partition, will skip this device"
+            continue
+        fi
+    else
+        isPart=$(lsblk -n $device 2&gt;/dev/null | grep part | wc -l)
+        if [[ ${isPart} -ne 1 ]]; then
+            # not parted
+            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} has not been partition, will skip this device"
+            continue
+        fi
+        # is used ?
+        match=$(lsblk -n $device 2&gt;/dev/null | grep -v part | wc -l)
+        if [[ ${match} &gt; 0 ]]; then
+            # already used
+            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} has been used, will skip this device"
+            continue
+        fi
+        isMount=$(lsblk -n -o MOUNTPOINT $device 2&gt;/dev/null)
+        if [[ -n ${isMount} ]]; then
+            # already used
+            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} has been used, will skip this device"
+            continue
+        fi
+        isLvm=$(sfdisk -lqL 2&gt;&gt;/dev/null | grep $device | grep "8e.*Linux LVM")
+        if [[ ! -n ${isLvm} ]]; then
+            # part system type is not Linux LVM
+            [[ -n "${DOCKER_BLOCK_DEVICES}" ]] &amp;&amp; echo "Disk ${device} system type is not Linux LVM, will skip this device"
+            continue
+        fi
+    fi
+    block_devices_size=$(lsblk -n -o SIZE $device 2&gt;/dev/null | awk '{ print $1}')
+    if [[ ${block_devices_size}"x" != "${dockerdisksize}Gx" ]] &amp;&amp; [[ ${block_devices_size}"x" != "${systemdisksize}Gx" ]]; then
+echo "n
+p
+1
+
+
+w
+" | fdisk $device
+        mkfs -t ext4 ${device}1
+        mkdir -p $mountdir
+	uuid=$(blkid ${device}1 |awk '{print $2}')
+	echo "${uuid}  $mountdir ext4  noatime  0 0" | tee -a /etc/fstab &gt;/dev/null
+        mount $mountdir
+    fi
+done</pre>
+<div class="note" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_note129708364117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p1897163671118">If the preceding example cannot be executed, use the dos2unix tool to convert the format.</p>
+</div></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0050.html">Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00198.html b/docs/cce/umn/cce_bestpractice_00198.html
new file mode 100644
index 00000000..b4384058
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00198.html
@@ -0,0 +1,48 @@
+<a name="cce_bestpractice_00198"></a><a name="cce_bestpractice_00198"></a>
+
+<h1 class="topictitle1">Expanding Node Disk Capacity</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00198__en-us_topic_0196817407_section9671812194910"><h4 class="sectiontitle">System Disk</h4><ol id="cce_bestpractice_00198__en-us_topic_0196817407_ol336654010496"><li id="cce_bestpractice_00198__en-us_topic_0196817407_li11366940174919"><span>Expand the capacity of the system disk on the EVS console.</span></li><li id="cce_bestpractice_00198__en-us_topic_0196817407_li116943521116"><span>Restart the node on the ECS console.</span></li><li id="cce_bestpractice_00198__li849281818811"><span>Log in to the CCE console and click the cluster. In the navigation pane, choose <strong id="cce_bestpractice_00198__b1050033133713">Nodes</strong>. Click <strong id="cce_bestpractice_00198__b87062132381">More</strong> &gt; <strong id="cce_bestpractice_00198__b335101614382">Sync Server Data</strong> at the row containing the target node.</span></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00198__en-us_topic_0196817407_section155006183017"><h4 class="sectiontitle">Node Data Disk (Dedicated for Docker)</h4><ol id="cce_bestpractice_00198__en-us_topic_0196817407_ol99174381202"><li id="cce_bestpractice_00198__en-us_topic_0196817407_li1091823811013"><span>Expand the capacity of the data disk on the EVS console.</span></li><li id="cce_bestpractice_00198__li15327184914542"><span>Log in to the CCE console and click the cluster. In the navigation pane, choose <strong id="cce_bestpractice_00198__b176491516203817">Nodes</strong>. Click <strong id="cce_bestpractice_00198__b464971673810">More</strong> &gt; <strong id="cce_bestpractice_00198__b9649161615380">Sync Server Data</strong> at the row containing the target node.</span></li><li id="cce_bestpractice_00198__en-us_topic_0196817407_li209187382011"><span>Log in to the target node.</span></li><li id="cce_bestpractice_00198__li128005014232"><span>Run the <strong id="cce_bestpractice_00198__b6455184022316">lsblk</strong> command to check the block device information of the node.</span><p><p id="cce_bestpractice_00198__p980018092312">A data disk is divided depending on the container storage <strong id="cce_bestpractice_00198__b687813596016">Rootfs</strong>:</p>
+<ul id="cce_bestpractice_00198__ul89731919102417"><li id="cce_bestpractice_00198__li1536084418247">Overlayfs: No independent thin pool is allocated. Image data is stored in the <strong id="cce_bestpractice_00198__b14504233414">dockersys</strong> disk.<pre class="screen" id="cce_bestpractice_00198__screen736044442417"># lsblk
+NAME                MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
+sda                   8:0    0   50G  0 disk 
+└─sda1                8:1    0   50G  0 part /
+sdb                   8:16   0  200G  0 disk 
+├─vgpaas-dockersys  253:0    0   90G  0 lvm  /var/lib/docker               # Space used by Docker.
+└─vgpaas-kubernetes 253:1    0   10G  0 lvm  /mnt/paas/kubernetes/kubelet  # Space used by Kubernetes.</pre>
+<p id="cce_bestpractice_00198__p1599151113360">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_00198__b12521182040">dockersys</strong> disk:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen10503202016363">pvresize /dev/sdb 
+lvextend -l+100%FREE -n vgpaas/dockersys
+resize2fs /dev/vgpaas/dockersys</pre>
+</li><li id="cce_bestpractice_00198__li7973131913245">Devicemapper: A thin pool is allocated to store image data.<pre class="screen" id="cce_bestpractice_00198__screen10480142251"># lsblk
+NAME                                MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
+sda                                   8:0    0   50G  0 disk 
+└─sda1                                8:1    0   50G  0 part /
+sdb                                   8:16   0  200G  0 disk 
+├─vgpaas-dockersys                  253:0    0   18G  0 lvm  /var/lib/docker    
+├─vgpaas-thinpool_tmeta             253:1    0    3G  0 lvm                   
+│ └─vgpaas-thinpool                 253:3    0   67G  0 lvm                   # Thin pool space.
+│   ...
+├─vgpaas-thinpool_tdata             253:2    0   67G  0 lvm  
+│ └─vgpaas-thinpool                 253:3    0   67G  0 lvm  
+│   ...
+└─vgpaas-kubernetes                 253:4    0   10G  0 lvm  /mnt/paas/kubernetes/kubelet</pre>
+<p id="cce_bestpractice_00198__p19417131211313">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_00198__b299821246">thinpool</strong> disk:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen1941742617282">pvresize /dev/sdb 
+lvextend -l+100%FREE -n vgpaas/thinpool</pre>
+</li></ul>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00198__section181915191968"><h4 class="sectiontitle">Node Data Disk (Kubernetes)</h4><ol id="cce_bestpractice_00198__ol138464209616"><li id="cce_bestpractice_00198__li584617201265"><span>Expand the capacity of the data disk on the EVS console.</span></li><li id="cce_bestpractice_00198__li18658756175420"><span>Log in to the CCE console and click the cluster. In the navigation pane, choose <strong id="cce_bestpractice_00198__b56631616143811">Nodes</strong>. Click <strong id="cce_bestpractice_00198__b566311616382">More</strong> &gt; <strong id="cce_bestpractice_00198__b866312165381">Sync Server Data</strong> at the row containing the target node.</span></li><li id="cce_bestpractice_00198__li584616201663"><span>Log in to the target node.</span></li><li id="cce_bestpractice_00198__li1484615201963"><span>Run the following commands on the node to add the new disk capacity to the Kubernetes disk:</span><p><pre class="screen" id="cce_bestpractice_00198__screen3846120468">pvresize /dev/sdb
+lvextend -l+100%FREE -n vgpaas/kubernetes
+resize2fs /dev/vgpaas/kubernetes</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00199.html b/docs/cce/umn/cce_bestpractice_00199.html
new file mode 100644
index 00000000..2f6e241f
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00199.html
@@ -0,0 +1,123 @@
+<a name="cce_bestpractice_00199"></a><a name="cce_bestpractice_00199"></a>
+
+<h1 class="topictitle1">Mounting an Object Storage Bucket of a Third-Party Tenant</h1>
+<div id="body1596848144770"><p id="cce_bestpractice_00199__p297671310586">This section describes how to mount OBS buckets and OBS parallel file systems (preferred) of third-party tenants.</p>
+<div class="section" id="cce_bestpractice_00199__section3528113716314"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_00199__p1358132815418">The CCE cluster of a SaaS service provider needs to be mounted with the OBS bucket of a third-party tenant, as shown in <a href="#cce_bestpractice_00199__fig1315433183918">Figure 1</a>.</p>
+<div class="fignone" id="cce_bestpractice_00199__fig1315433183918"><a name="cce_bestpractice_00199__fig1315433183918"></a><a name="fig1315433183918"></a><span class="figcap"><b>Figure 1 </b>Mounting an OBS bucket of a third-party tenant</span><br><span><img id="cce_bestpractice_00199__image715415317393" src="en-us_image_0268523694.png"></span></div>
+<ol id="cce_bestpractice_00199__ol9553203045414"><li id="cce_bestpractice_00199__li1804183225414"><a href="#cce_bestpractice_00199__section193471249193310">The third-party tenant authorizes the SaaS service provider to access the OBS buckets or parallel file systems</a> by setting the bucket policy and bucket ACL.</li><li id="cce_bestpractice_00199__li211712725511"><a href="#cce_bestpractice_00199__en-us_topic_0196817407_section155006183017">The SaaS service provider statically imports the OBS buckets and parallel file systems of the third-party tenant</a>.</li><li id="cce_bestpractice_00199__li632118155551">The SaaS service provider processes the service and writes the processing result (result file or result data) back to the OBS bucket of the third-party tenant.</li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00199__section15714753924"><h4 class="sectiontitle">Precautions</h4><ul id="cce_bestpractice_00199__ul12160175611"><li id="cce_bestpractice_00199__li11642893612">Only parallel file systems and OBS buckets of third-party tenants in the same region can be mounted.</li><li id="cce_bestpractice_00199__li079611425113">Only clusters where the everest add-on of v1.1.11 or later has been installed (the cluster version must be v1.15 or later) can be mounted with OBS buckets of third-party tenants.</li><li id="cce_bestpractice_00199__li740473311506">The service platform of the SaaS service provider needs to manage the lifecycle of the third-party bucket PVs. When a PVC is deleted separately, the PV is not deleted. Instead, it will be retained. To do so, you need to call the native Kubernetes APIs to create and delete static PVs.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00199__section193471249193310"><a name="cce_bestpractice_00199__section193471249193310"></a><a name="section193471249193310"></a><h4 class="sectiontitle">Authorizing the SaaS Service Provider to Access the OBS Buckets</h4><p id="cce_bestpractice_00199__p1875516136566">The following uses an OBS bucket as an example to describe how to set a bucket policy and bucket ACL to authorize the SaaS service provider. The configuration for an OBS parallel file system is the same.</p>
+<ol id="cce_bestpractice_00199__ol833253975212"><li id="cce_bestpractice_00199__li633253935210"><span>Log in to the OBS console. In the navigation pane, choose <strong id="cce_bestpractice_00199__b2435414183611">Buckets</strong>.</span></li><li id="cce_bestpractice_00199__li3463735310"><span>In the bucket list, click a bucket name to access the <strong id="cce_bestpractice_00199__b18829181715363">Overview</strong> page.</span></li></ol><ol start="3" id="cce_bestpractice_00199__ol99282343911"><li id="cce_bestpractice_00199__li554574744910"><span>In the navigation pane, choose <strong id="cce_bestpractice_00199__b7328142203915">Permissions</strong> &gt; <strong id="cce_bestpractice_00199__b143281221398">Bucket Policy</strong>. On the displayed page, click <strong id="cce_bestpractice_00199__b3415314205710">Create</strong> to create a bucket policy.</span><p><div class="p" id="cce_bestpractice_00199__p2054594734915">Set the parameters as shown in the following figure.<div class="fignone" id="cce_bestpractice_00199__fig1854564754912"><span class="figcap"><b>Figure 2 </b>Creating a bucket policy</span><br><span><img id="cce_bestpractice_00199__image954504724917" src="en-us_image_0000001325377749.png"></span></div>
+<ul id="cce_bestpractice_00199__ul11545124714494"><li id="cce_bestpractice_00199__li063716875214"><strong id="cce_bestpractice_00199__b11511194133413">Policy Mode</strong>: Select <strong id="cce_bestpractice_00199__b2095371013342">Customized</strong>.</li><li id="cce_bestpractice_00199__li10545647174914"><strong id="cce_bestpractice_00199__b168516157348">Effect</strong>: Select <strong id="cce_bestpractice_00199__b108611513341">Allow</strong>.</li><li id="cce_bestpractice_00199__li1454594715494"><strong id="cce_bestpractice_00199__b383668709">Principal</strong>: Select <strong id="cce_bestpractice_00199__b898804887">Other account</strong>, and enter the account ID and user ID. The bucket policy takes effect for the specified users.</li><li id="cce_bestpractice_00199__li16545164794920"><strong id="cce_bestpractice_00199__b10978526">Resources</strong>: Select the resources that can be operated.</li><li id="cce_bestpractice_00199__li8545144714495"><strong id="cce_bestpractice_00199__b172896563376">Actions</strong>: Select the actions that can be operated.</li></ul>
+</div>
+</p></li><li id="cce_bestpractice_00199__li13503613502"><span>In the navigation pane, choose <strong id="cce_bestpractice_00199__b9718153124710">Permissions</strong> &gt; <strong id="cce_bestpractice_00199__b147187324710">Bucket ACLs</strong>. In the right pane, click <strong id="cce_bestpractice_00199__b199195586487">Add</strong>.Enter the account ID or account name of the authorized user, select <strong id="cce_bestpractice_00199__b219915371573">Read</strong> and <strong id="cce_bestpractice_00199__b791217401576">Write</strong> for <strong id="cce_bestpractice_00199__b188374355718">Access to Bucket</strong>, select <strong id="cce_bestpractice_00199__b443404915716">Read</strong> and <strong id="cce_bestpractice_00199__b388575195717">Write</strong> for <strong id="cce_bestpractice_00199__b96971054175710">Access to ACL</strong>, and click <strong id="cce_bestpractice_00199__b135653588578">OK</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00199__en-us_topic_0196817407_section155006183017"><a name="cce_bestpractice_00199__en-us_topic_0196817407_section155006183017"></a><a name="en-us_topic_0196817407_section155006183017"></a><h4 class="sectiontitle">Statically Importing OBS Buckets and Parallel File Systems</h4><ul id="cce_bestpractice_00199__ul79216315179"><li id="cce_bestpractice_00199__li354212402246"><strong id="cce_bestpractice_00199__b580115524189">Static PV of an OBS bucket:</strong><pre class="screen" id="cce_bestpractice_00199__screen7813151101315">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: <strong id="cce_bestpractice_00199__b138883416190">objbucket</strong>      #Replace the name with the actual PV name of the bucket.
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+spec:
+  accessModes:
+  - ReadWriteMany
+  capacity:
+    storage: 1Gi
+  <strong id="cce_bestpractice_00199__b10922444151419">mountOptions:  </strong>
+<strong id="cce_bestpractice_00199__b893345171915">  - default_acl=bucket-owner-full-control     </strong> #New OBS mounting parameters
+  csi:
+    driver: obs.csi.everest.io
+    fsType: obsfs
+    volumeAttributes:
+      everest.io/obs-volume-type: STANDARD
+      everest.io/region:   <strong id="cce_bestpractice_00199__b1035933031610">eu-de</strong>     #Set it to the ID of the current region.
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    volumeHandle: <strong id="cce_bestpractice_00199__b249514404235">objbucket</strong>             #Replace the name with the actual bucket name of the third-party tenant.
+  persistentVolumeReclaimPolicy: <strong id="cce_bestpractice_00199__b341545032418">Retain</strong>    #This parameter must be set to <strong id="cce_bestpractice_00199__b146658142412">Retain</strong> to ensure that the bucket will not be deleted when a PV is deleted.
+  storageClassName: <strong id="cce_bestpractice_00199__b10185165532510">csi-obs-mountoption</strong>    #You can associate a new custom OBS storage class or the built-in csi-obs of the cluster.</pre>
+<ul id="cce_bestpractice_00199__ul1595124103911"><li id="cce_bestpractice_00199__li171531846194420"><strong id="cce_bestpractice_00199__b118161262818">mountOptions</strong>: This field contains the new OBS mounting parameters that allow the bucket owner to have full access to the data in the bucket. This field solves the problem that the bucket owner cannot read the data written into a mounted third-party bucket. If the object storage of a third-party tenant is mounted, <strong id="cce_bestpractice_00199__b953194033313">default_acl</strong> must be set to <strong id="cce_bestpractice_00199__b15241245143417">bucket-owner-full-control</strong>. For details about other values of <strong id="cce_bestpractice_00199__b416174913345">default_acl</strong>, see <a href="https://docs.otc.t-systems.com/usermanual/obs/en-us_topic_0066088967.html" target="_blank" rel="noopener noreferrer">Bucket ACLs and Object ACLs</a>.</li><li id="cce_bestpractice_00199__li17913438433"><strong id="cce_bestpractice_00199__b102548414420">persistentVolumeReclaimPolicy</strong>: When the object storage of a third-party tenant is mounted, this field must be set to <strong id="cce_bestpractice_00199__b184185634410">Retain</strong>. In this way, the OBS bucket will not be deleted when a PV is deleted. The service platform of the SaaS service provider needs to manage the lifecycle of the third-party bucket PVs. When a PVC is deleted separately, the PV is not deleted. Instead, it will be retained. To do so, you need to call the native Kubernetes APIs to create and delete static PVs.</li><li id="cce_bestpractice_00199__li524945474217"><strong id="cce_bestpractice_00199__b259155884515">storageClassName</strong>: You can associate a new custom OBS storage class (<a href="#cce_bestpractice_00199__li1235812419467">click here</a>) or the built-in csi-obs of the cluster.</li></ul>
+<div class="p" id="cce_bestpractice_00199__p201991729111715"><strong id="cce_bestpractice_00199__b4729131224817">PVC of a bound OBS bucket:</strong><pre class="screen" id="cce_bestpractice_00199__screen25531018167">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    csi.storage.k8s.io/fstype: obsfs
+    everest.io/obs-volume-type: STANDARD
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+  name: <strong id="cce_bestpractice_00199__b576533810480">objbucketpvc</strong>      #Replace the name with the actual PVC name of the bucket.
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+  storageClassName: csi-obs-mountoption     #The value must be the same as the storage class associated with the bound PV.
+  volumeName: objbucket       #Replace the name with the actual PV name of the bucket to be bound.</pre>
+</div>
+</li><li id="cce_bestpractice_00199__li162888148182"><strong id="cce_bestpractice_00199__b1526719614528">Static PV of an OBS parallel file system:</strong><pre class="screen" id="cce_bestpractice_00199__screen210918941814">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: <strong id="cce_bestpractice_00199__b1188381612526">obsfscheck</strong>   #Replace the name with the actual PV name of the parallel file system.
+  annotations:
+    pv.kubernetes.io/provisioned-by: everest-csi-provisioner
+spec:
+  accessModes:
+  - ReadWriteMany
+  capacity:
+    storage: 1Gi
+<strong id="cce_bestpractice_00199__b189013419182">  mountOptions:</strong>
+<strong id="cce_bestpractice_00199__b48995413185">  - default_acl=bucket-owner-full-control </strong>    #New OBS mounting parameters
+  csi:
+    driver: obs.csi.everest.io
+    fsType: obsfs
+    volumeAttributes:
+      everest.io/obs-volume-type: STANDARD
+      everest.io/region:   eu-de
+      storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
+    volumeHandle: <strong id="cce_bestpractice_00199__b9314144765316">obsfscheck</strong>               #Replace the name with the actual name of the parallel file system of the third-party tenant.
+  persistentVolumeReclaimPolicy: <strong id="cce_bestpractice_00199__b217875914534">Retain</strong>        #This parameter must be set to <strong id="cce_bestpractice_00199__b41831859205318">Retain</strong> to ensure that the bucket will not be deleted when a PV is deleted.
+  storageClassName: <strong id="cce_bestpractice_00199__b4661138541">csi-obs-mountoption</strong>       #You can associate a new custom OBS storage class or the built-in csi-obs of the cluster.</pre>
+<ul id="cce_bestpractice_00199__ul53721653124616"><li id="cce_bestpractice_00199__cce_bestpractice_00199_li171531846194420"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b118161262818">mountOptions</strong>: This field contains the new OBS mounting parameters that allow the bucket owner to have full access to the data in the bucket. This field solves the problem that the bucket owner cannot read the data written into a mounted third-party bucket. If the object storage of a third-party tenant is mounted, <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b953194033313">default_acl</strong> must be set to <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b15241245143417">bucket-owner-full-control</strong>. For details about other values of <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b416174913345">default_acl</strong>, see <a href="https://docs.otc.t-systems.com/usermanual/obs/en-us_topic_0066088967.html" target="_blank" rel="noopener noreferrer">Bucket ACLs and Object ACLs</a>.</li><li id="cce_bestpractice_00199__cce_bestpractice_00199_li17913438433"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b102548414420">persistentVolumeReclaimPolicy</strong>: When the object storage of a third-party tenant is mounted, this field must be set to <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b184185634410">Retain</strong>. In this way, the OBS bucket will not be deleted when a PV is deleted. The service platform of the SaaS service provider needs to manage the lifecycle of the third-party bucket PVs. When a PVC is deleted separately, the PV is not deleted. Instead, it will be retained. To do so, you need to call the native Kubernetes APIs to create and delete static PVs.</li><li id="cce_bestpractice_00199__cce_bestpractice_00199_li524945474217"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b259155884515">storageClassName</strong>: You can associate a new custom OBS storage class (<a href="cce_bestpractice_00199.html#cce_bestpractice_00199__li1235812419467">click here</a>) or the built-in csi-obs of the cluster.</li></ul>
+<div class="p" id="cce_bestpractice_00199__p126984225451">PVC of a bound OBS parallel file system:<pre class="screen" id="cce_bestpractice_00199__screen76981822194516">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  annotations:
+    csi.storage.k8s.io/fstype: obsfs
+    everest.io/obs-volume-type: STANDARD
+    volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
+  name: <strong id="cce_bestpractice_00199__b7631950175413">obsfscheckpvc</strong>   #Replace the name with the actual PVC name of the parallel file system.
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 1Gi
+  storageClassName: <strong id="cce_bestpractice_00199__b61231484557">csi-obs-mountoption</strong>    #The value must be the same as the storage class associated with the bound PV.
+  volumeName: <strong id="cce_bestpractice_00199__b10363151611551">obsfscheck</strong>     #Replace the name with the actual PV name of the parallel file system.</pre>
+</div>
+</li><li id="cce_bestpractice_00199__li1235812419467"><a name="cce_bestpractice_00199__li1235812419467"></a><a name="li1235812419467"></a><strong id="cce_bestpractice_00199__b1882510012561">(Optional) Creating a custom OBS storage class to associate with a static PV:</strong><pre class="screen" id="cce_bestpractice_00199__screen311019201818">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: <strong id="cce_bestpractice_00199__b1495613411479">csi-obs-mountoption</strong>
+mountOptions:
+  - default_acl=bucket-owner-full-control
+parameters:
+  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
+  csi.storage.k8s.io/fstype: <strong id="cce_bestpractice_00199__b106501846191220">obsfs</strong>
+  everest.io/obs-volume-type: STANDARD
+provisioner: everest-csi-provisioner
+reclaimPolicy: <strong id="cce_bestpractice_00199__b206884384409">Retain</strong>
+volumeBindingMode: Immediate</pre>
+<ul id="cce_bestpractice_00199__ul187295111124"><li id="cce_bestpractice_00199__li1097918427123"><strong id="cce_bestpractice_00199__b1620910137564">csi.storage.k8s.io/fstype</strong>: File type. The value can be <strong id="cce_bestpractice_00199__b20812925195618">obsfs</strong> or <strong id="cce_bestpractice_00199__b9234027135615">s3fs</strong>. If the value is <strong id="cce_bestpractice_00199__b1086513487569">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_bestpractice_00199__b19954115185616">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs.</li><li id="cce_bestpractice_00199__li1529511132129"><strong id="cce_bestpractice_00199__b7241165795618">reclaimPolicy</strong>: Reclaim policy of a PV. The value will be set in <strong id="cce_bestpractice_00199__b18152714720">PV.spec.persistentVolumeReclaimPolicy</strong> dynamically created based on the new PVC associated with the storage class. If the value is <strong id="cce_bestpractice_00199__b8571175713215">Delete</strong>, the external OBS bucket and the PV will be deleted when the PVC is deleted. If the value is <strong id="cce_bestpractice_00199__b78551245345">Retain</strong>, the PV and external storage are retained when the PVC is deleted. In this case, you need to clear the PV separately. In the scenario where an imported third-party bucket is associated, the storage class is used only for associating static PVs (with this field set to <strong id="cce_bestpractice_00199__b17519614712">Retain</strong>). Dynamic creation is not involved.</li></ul>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00220.html b/docs/cce/umn/cce_bestpractice_00220.html
new file mode 100644
index 00000000..921efc41
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00220.html
@@ -0,0 +1,99 @@
+<a name="cce_bestpractice_00220"></a><a name="cce_bestpractice_00220"></a>
+
+<h1 class="topictitle1">Implementing High Availability for Containers in CCE</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00220__en-us_topic_0226102193_en-us_topic_0161035939_section1222403512500"><h4 class="sectiontitle">Basic Principles</h4><p id="cce_bestpractice_00220__en-us_topic_0226102193_p153705219139">To achieve high availability for your CCE containers, you can do as follows:</p>
+<ol id="cce_bestpractice_00220__en-us_topic_0226102193_ol1288495941210"><li id="cce_bestpractice_00220__en-us_topic_0226102193_li12884059121212">Deploy three master nodes for the cluster.</li><li id="cce_bestpractice_00220__en-us_topic_0226102193_li3884135917125">When nodes are deployed across AZs, set custom scheduling policies based on site requirements to maximize resource utilization.</li><li id="cce_bestpractice_00220__li07770269459">Create multiple node pools in different AZs and use them for node scaling.</li><li id="cce_bestpractice_00220__en-us_topic_0226102193_li178031817171620">Set the number of pods to be greater than 2 when creating a workload.</li><li id="cce_bestpractice_00220__en-us_topic_0226102193_li158841559121215">Set pod affinity rules to distribute pods to different AZs and nodes.</li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00220__en-us_topic_0226102193_en-us_topic_0161035939_section1184815509400"><h4 class="sectiontitle">Procedure</h4><p id="cce_bestpractice_00220__en-us_topic_0226102193_p1865915314124">Assume that there are four nodes in a cluster distributed in the following AZs:</p>
+<pre class="screen" id="cce_bestpractice_00220__screen206101248562">$ kubectl get node -L topology.kubernetes.io/zone,kubernetes.io/hostname
+NAME            STATUS   ROLES    AGE   VERSION                      ZONE       HOSTNAME
+192.168.5.112   Ready    &lt;none&gt;   42m   v1.21.7-r0-CCE21.11.1.B007   eu-de-01   192.168.5.112
+192.168.5.179   Ready    &lt;none&gt;   42m   v1.21.7-r0-CCE21.11.1.B007   eu-de-01   192.168.5.179
+192.168.5.252   Ready    &lt;none&gt;   37m   v1.21.7-r0-CCE21.11.1.B007   eu-de-02   192.168.5.252
+192.168.5.8     Ready    &lt;none&gt;   33h   v1.21.7-r0-CCE21.11.1.B007   eu-de-03   192.168.5.8</pre>
+<p id="cce_bestpractice_00220__p886104233818">Create workloads according to the following two podAntiAffinity rules:</p>
+<ul id="cce_bestpractice_00220__ul1752111682611"><li id="cce_bestpractice_00220__li75291617269">The first one is the pod anti-affinity in an AZ. Set the parameters as follows:<ul id="cce_bestpractice_00220__ul31352148254"><li id="cce_bestpractice_00220__li01351814132518"><strong id="cce_bestpractice_00220__b13495615122314">weight</strong>: A larger weight value indicates a higher priority. In this example, set it to <strong id="cce_bestpractice_00220__b3741917112815">50</strong>.</li><li id="cce_bestpractice_00220__li2042781913286"><strong id="cce_bestpractice_00220__b14967113632312">topologyKey</strong>: a default or custom key for the node label that the system uses to denote a topology domain. A topology key determines the scope where the pod should be scheduled to. In this example, set this parameter to <strong id="cce_bestpractice_00220__b13632852202618">topology.kubernetes.io/zone</strong>, which is the label for identifying the AZ where the node is located.</li><li id="cce_bestpractice_00220__li2013561417256"><strong id="cce_bestpractice_00220__b642431013275">labelSelector</strong>: Select the label of the workload to realize the anti-affinity between this container and the workload.</li></ul>
+</li><li id="cce_bestpractice_00220__li639824118295">The second one is the pod anti-affinity in the node host name. Set the parameters as follows:<ul id="cce_bestpractice_00220__ul1511765542911"><li id="cce_bestpractice_00220__li11738115542910"><strong id="cce_bestpractice_00220__b17461363287">weight</strong>: Set it to <strong id="cce_bestpractice_00220__b4153202512280">50</strong>.</li><li id="cce_bestpractice_00220__li1055413454318"><strong id="cce_bestpractice_00220__b428919513281">topologyKey</strong>: Set it to <strong id="cce_bestpractice_00220__b12890125122912">kubernetes.io/hostname</strong>.</li><li id="cce_bestpractice_00220__li142325363212"><strong id="cce_bestpractice_00220__b1837122732712">labelSelector</strong>: Select the label of the pod, which is anti-affinity with the pod.</li></ul>
+</li></ul>
+<pre class="screen" id="cce_bestpractice_00220__screen6767131210242">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: nginx
+  namespace: default
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+        - name: container-0
+          image: nginx:alpine
+          resources:
+            limits:
+              cpu: 250m
+              memory: 512Mi
+            requests:
+              cpu: 250m
+              memory: 512Mi
+      affinity:
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+            - weight: 50
+              podAffinityTerm:
+                labelSelector:                       # Select the label of the workload to realize the anti-affinity between this container and the workload.
+                  matchExpressions:
+                    - key: app
+                      operator: In
+                      values:
+                        - nginx
+                namespaces:
+                  - default
+                topologyKey: topology.kubernetes.io/zone   # It takes effect in the same AZ.
+            - weight: 50
+              podAffinityTerm:
+                labelSelector:                       # Select the label of the workload to realize the anti-affinity between this container and the workload.
+                  matchExpressions:
+                    - key: app
+                      operator: In
+                      values:
+                        - nginx
+                namespaces:
+                  - default
+                topologyKey: kubernetes.io/hostname     # It takes effect on the node.
+      imagePullSecrets:
+        - name: default-secret</pre>
+<p id="cce_bestpractice_00220__p19693164315341">Create a workload and view the node where the pod is located.</p>
+<pre class="screen" id="cce_bestpractice_00220__screen10335113414356">$ kubectl get pod -owide
+NAME                     READY   STATUS    RESTARTS   AGE   IP           NODE
+nginx-6fffd8d664-dpwbk   1/1     Running   0          17s   10.0.0.132   192.168.5.112
+nginx-6fffd8d664-qhclc   1/1     Running   0          17s   10.0.1.133   192.168.5.252</pre>
+<p id="cce_bestpractice_00220__p1553611101018">Increase the number of pods to 3. The pod is scheduled to another node, and the three nodes are in three different AZs.</p>
+<pre class="screen" id="cce_bestpractice_00220__screen1081114401019">$ kubectl scale --replicas=3 deploy/nginx
+deployment.apps/nginx scaled
+$ kubectl get pod -owide
+NAME                     READY   STATUS    RESTARTS   AGE     IP           NODE
+nginx-6fffd8d664-8t7rv   1/1     Running   0          3s      10.0.0.9     192.168.5.8
+nginx-6fffd8d664-dpwbk   1/1     Running   0          2m45s   10.0.0.132   192.168.5.112
+nginx-6fffd8d664-qhclc   1/1     Running   0          2m45s   10.0.1.133   192.168.5.252</pre>
+<p id="cce_bestpractice_00220__p11531840191016">Increase the number of pods to 4. The pod is scheduled to the last node. With podAntiAffinity rules, pods can be evenly distributed to AZs and nodes.</p>
+<pre class="screen" id="cce_bestpractice_00220__screen1180259111318">$ kubectl scale --replicas=4 deploy/nginx
+deployment.apps/nginx scaled
+$ kubectl get pod -owide
+NAME                     READY   STATUS    RESTARTS   AGE     IP           NODE
+nginx-6fffd8d664-8t7rv   1/1     Running   0          2m30s   10.0.0.9     192.168.5.8
+nginx-6fffd8d664-dpwbk   1/1     Running   0          5m12s   10.0.0.132   192.168.5.112
+nginx-6fffd8d664-h796b   1/1     Running   0          78s     10.0.1.5     192.168.5.179
+nginx-6fffd8d664-qhclc   1/1     Running   0          5m12s   10.0.1.133   192.168.5.252</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0323.html">Disaster Recovery</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00226.html b/docs/cce/umn/cce_bestpractice_00226.html
new file mode 100644
index 00000000..4c20a58f
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00226.html
@@ -0,0 +1,157 @@
+<a name="cce_bestpractice_00226"></a><a name="cce_bestpractice_00226"></a>
+
+<h1 class="topictitle1">Using hostAliases to Configure /etc/hosts in a Pod</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_section20755161821610"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1527410186552">If DNS or other related settings are inappropriate, you can use <strong id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_b1791219203115">hostAliases</strong> to overwrite the resolution of the host name at the pod level when adding entries to the <span class="filepath" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_filepath1114272033120"><b>/etc/hosts</b></span> file of the pod.</p>
+</div>
+<div class="section" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_section779303911619"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_ol16599107131712"><li id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_li159997171719"><span>Use kubectl to connect to the cluster.</span></li><li id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_li2060047201712"><span>Create the <strong id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_b23004507019">hostaliases-pod.yaml</strong> file.</span><p><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p241436111314"><strong id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_b3714173931313">vi hostaliases-pod.yaml</strong></p>
+<p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p182512111718">The field in bold in the YAML file indicates the image name and tag. You can replace the example value as required.</p>
+<pre class="screen" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_screen124551438121812">apiVersion: v1
+kind: Pod
+metadata:
+  name: hostaliases-pod
+spec:
+  hostAliases:
+  - ip: 127.0.0.1
+    hostnames:
+    - foo.local
+    - bar.local
+  - ip: 10.1.2.3
+    hostnames:
+    - foo.remote
+    - bar.remote
+  containers:
+    - name: cat-hosts
+      image: <strong id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_b5317744146">tomcat:9-jre11-slim</strong>
+      lifecycle:
+        postStart:
+          exec:
+            command:
+              - cat
+              - /etc/hosts
+  imagePullSecrets:
+    - name: default-secret</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_table141082641914" frame="border" border="1" rules="all"><caption><b>Table 1 </b>pod field description</caption><thead align="left"><tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row122349263197"><th align="left" class="cellrowborder" valign="top" width="25.56%" id="mcps1.3.2.2.2.2.4.2.4.1.1"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p023552610196">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.16%" id="mcps1.3.2.2.2.2.4.2.4.1.2"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p123201841181516">Mandatory/Optional</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.28%" id="mcps1.3.2.2.2.2.4.2.4.1.3"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p10235102631913">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row3235182612197"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.4.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p12235182661918">apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.4.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p53211941171512">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.4.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p142351426121913">API version number</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row4235152618194"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.4.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p3235826151910">kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.4.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1132184151512">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.4.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p2235826161915">Type of the object to be created</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row1423592671919"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.4.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p4235726191916">metadata</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.4.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p13321114191518">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.4.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1423582612195">Metadata definition of a resource object</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row102351026101911"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.4.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p2236152611918">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.4.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p12321184116153">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.4.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p12236626161917">Name of a pod</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row1323662661914"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.4.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1623612620190">spec</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.4.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p17939174718237">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.4.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p6939174713238">Detailed description of the pod. For details, see <a href="#cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_table33531919193">Table 2</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_table33531919193"></a><a name="en-us_topic_0226102200_en-us_topic_0179003345_table33531919193"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_table33531919193" frame="border" border="1" rules="all"><caption><b>Table 2 </b>spec field description</caption><thead align="left"><tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row23539971916"><th align="left" class="cellrowborder" valign="top" width="25.56%" id="mcps1.3.2.2.2.2.5.2.4.1.1"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p133537941920">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.16%" id="mcps1.3.2.2.2.2.5.2.4.1.2"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p103532090199">Mandatory/Optional</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.28%" id="mcps1.3.2.2.2.2.5.2.4.1.3"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p11353099191">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row1235389171917"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.5.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1777183010198">hostAliases</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.5.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p2076173041915">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.5.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p37553011197">Host alias</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row15353189161918"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.5.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p15774454161915">containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.5.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p47419302197">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.5.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p273330151910">For details, see <a href="#cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_table196127172016">Table 3</a>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><a name="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_table196127172016"></a><a name="en-us_topic_0226102200_en-us_topic_0179003345_table196127172016"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_table196127172016" frame="border" border="1" rules="all"><caption><b>Table 3 </b>containers field description</caption><thead align="left"><tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row2096213712017"><th align="left" class="cellrowborder" valign="top" width="25.56%" id="mcps1.3.2.2.2.2.6.2.4.1.1"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p39621974209">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.16%" id="mcps1.3.2.2.2.2.6.2.4.1.2"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p7962167192011">Mandatory/Optional</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.28%" id="mcps1.3.2.2.2.2.6.2.4.1.3"><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p2962107122018">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row4962472207"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.6.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p19872299204">name</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.6.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p2096219714209">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.6.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1096214710200">Container name</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row199621176205"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.6.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p086629162013">image</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.6.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p596220752020">Mandatory</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.6.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p29621173202">Container image name</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_row544161722113"><td class="cellrowborder" valign="top" width="25.56%" headers="mcps1.3.2.2.2.2.6.2.4.1.1 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p444191782116">lifecycle</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.16%" headers="mcps1.3.2.2.2.2.6.2.4.1.2 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1446175215">Optional</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.28%" headers="mcps1.3.2.2.2.2.6.2.4.1.3 "><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p184491702118">Lifecycle</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_li175921101710"><span>Create a pod.</span><p><p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p1651865103411"><strong id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_b1064915513348">kubectl create -f hostaliases-pod.yaml</strong></p>
+<p id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_p103896343518">If information similar to the following is displayed, the pod is created.</p>
+<pre class="screen" id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_screen1340334043512">pod/hostaliases-pod created</pre>
+</p></li><li id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_li792156112018"><span>Query the pod status. </span><p><p id="cce_bestpractice_00226__p87143611811"><strong id="cce_bestpractice_00226__b19715362812">kubectl get pod hostaliases-pod</strong></p>
+<p id="cce_bestpractice_00226__p77123617814">If the pod is in the <strong id="cce_bestpractice_00226__en-us_topic_0226102200_en-us_topic_0179003345_b1558515421212">Running</strong> state, the pod is successfully created.</p>
+<pre class="screen" id="cce_bestpractice_00226__screen107116361983">NAME                  READY          STATUS       RESTARTS      AGE
+hostaliases-pod       1/1            Running      0             16m</pre>
+</p></li><li id="cce_bestpractice_00226__li171193611812"><span>Check whether the <strong id="cce_bestpractice_00226__b1576619151014">hostAliases</strong> functions properly.</span><p><p id="cce_bestpractice_00226__p1320312370102"><strong id="cce_bestpractice_00226__b1075214961015">docker ps |grep hostaliases-pod</strong></p>
+<p id="cce_bestpractice_00226__p1420451251018"><strong id="cce_bestpractice_00226__b575474916108">docker exec -ti <em id="cce_bestpractice_00226__i6440190165715">Container ID</em> /bin/sh</strong></p>
+<p id="cce_bestpractice_00226__p175861018113"><span><img id="cce_bestpractice_00226__image797444841213" src="en-us_image_0278498565.png"></span></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0051.html">Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00227.html b/docs/cce/umn/cce_bestpractice_00227.html
new file mode 100644
index 00000000..040ae3fc
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00227.html
@@ -0,0 +1,73 @@
+<a name="cce_bestpractice_00227"></a><a name="cce_bestpractice_00227"></a>
+
+<h1 class="topictitle1">Modifying Kernel Parameters Using a Privileged Container</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_section136132011171713"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p44821585237">To access a Kubernetes cluster from a client, you can use the Kubernetes command line tool kubectl.</p>
+</div>
+<div class="section" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_section195893610174"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_ol8890756191816"><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li38911568185"><span>Create a DaemonSet in the background, select the Nginx image, enable the Privileged Container, configure the lifecycle, and add the <span class="parmname" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_parmname42281654101420"><b>hostNetwork</b></span> field (value: <span class="parmvalue" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_parmvalue993921719153"><b>true</b></span>).</span><p><ol type="a" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_ol8206143982618"><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li172064392266">Create a DaemonSet file.<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p96145582611"><a name="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li172064392266"></a><a name="en-us_topic_0226102201_en-us_topic_0179003019_li172064392266"></a><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b0319716270">vi daemonSet.yaml</strong></p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p14871934289">An example YAML file is provided as follows:</p>
+<div class="notice" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_note1414511022814"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p9146121092817">The <span class="parmname" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_parmname988311433197"><b>spec.spec.containers.lifecycle</b></span> field indicates the command that will be run after the container is started.</p>
+</div></div>
+<pre class="screen" id="cce_bestpractice_00227__screen2840183444617">kind: DaemonSet
+apiVersion: apps/v1
+metadata:
+  name: daemonset-test
+  labels:
+    name: daemonset-test
+spec:
+  selector:
+    matchLabels:
+      name: daemonset-test
+  template:
+    metadata:
+      labels:
+        name: daemonset-test
+    spec:
+      hostNetwork: true
+      containers:
+      - name: daemonset-test
+        image: nginx:alpine-perl
+        command:
+        - "/bin/sh"
+        args:
+        - "-c"
+        - while :; do  time=$(date);done
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          postStart:
+            exec:
+              command:
+              - sysctl
+              - "-w"
+              - net.ipv4.tcp_tw_reuse=1
+        securityContext:
+          privileged: true
+      imagePullSecrets:
+      - name: default-secret</pre>
+</li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li16654143132615">Create a DaemonSet.<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p19378714202719"><a name="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li16654143132615"></a><a name="en-us_topic_0226102201_en-us_topic_0179003019_li16654143132615"></a><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b449172122717">kubectl create –f daemonSet.yaml</strong></p>
+</li></ol>
+</p></li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li1989115691812"><span>Check whether the DaemonSet is successfully created.</span><p><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p330213205299"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b3510114519214">kubectl get daemonset </strong> <em id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_i15896105518214">DaemonSet name</em></p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p8260371304">In this example, run the following command:</p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p262474111301"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b77659461301">kubectl get daemonset</strong> daemonset-test</p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p144280503115">Information similar to the following is displayed:</p>
+<pre class="screen" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_screen041418164230">NAME               DESIRED    CURRENT   READY    UP-T0-DATE    AVAILABLE     NODE SELECTOR   AGE
+daemonset-test     2          2         2        2             2             &lt;node&gt;          2h</pre>
+</p></li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li1721483962911"><span>Query the container ID of DaemonSet on the node.</span><p><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p12251648182918"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b111781214152816">docker ps -a|grep</strong> <em id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_i1982214204285">DaemonSet name</em></p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p189121843183518">In this example, run the following command:</p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p76951258133513"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b911611592355">docker ps -a|grep</strong> daemonset-test</p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p188115139361">Information similar to the following is displayed:</p>
+<pre class="screen" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_screen103471223397"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b13543202713918">897b99faa9ce</strong>        3e094d5696c1                           "/bin/sh  -c while..."     31 minutes ago     Up  30 minutes  ault_fa7cc313-4ac1-11e9-a716-fa163e0aalba_0</pre>
+</p></li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li19804143193010"><span>Access the container.</span><p><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p182991085304"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b276893373511">docker exec -it </strong><em id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_i14770103393513">containerid </em><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b9769113311351">/bin/sh</strong></p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p15306932143920">In this example, run the following command:</p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p198991238153914"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b18533853133912">docker exec -it </strong><em id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_i65351253173916">897b99faa9ce</em><em id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_i3535105383911"> </em><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b14105174703917">/bin/sh</strong></p>
+</p></li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li515613122228"><span>Check whether the configured command is executed after the container is started.</span><p><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p12382171293513"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b1270341517351">sysctl -a |grep net.ipv4.tcp_tw_reuse</strong></p>
+<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p5351202754015">If the following information is displayed, the system parameters are modified successfully:</p>
+<pre class="screen" id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_screen4589125014013">net.ipv4.tcp_tw_reuse=1</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0051.html">Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00228.html b/docs/cce/umn/cce_bestpractice_00228.html
new file mode 100644
index 00000000..0cef5e72
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00228.html
@@ -0,0 +1,61 @@
+<a name="cce_bestpractice_00228"></a><a name="cce_bestpractice_00228"></a>
+
+<h1 class="topictitle1">Initializing a Container</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_section14960455181718"><h4 class="sectiontitle">Concepts</h4><p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p938416141816">Before containers running applications are started, one or some init containers are started first. If there are multiple init containers, they will be started in the defined sequence. The application containers are started only after all init containers run to completion and exit. Storage volumes in a pod are shared. Therefore, the data generated in the init containers can be used by the application containers.</p>
+<p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p176103452181">Init containers can be used in multiple Kubernetes resources, such as Deployments, DaemonSets, and jobs. They perform initialization before application containers are started.</p>
+</div>
+<div class="section" id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_section14381103754819"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p158401681591">Before deploying a service, you can use an init container to make preparations before the pod where the service is running is deployed. After the preparations are complete, the init container runs to completion and exit, and the container to be deployed will be started.</p>
+<ul id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_ul11231611202114"><li id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_li10231211122115"><strong id="cce_bestpractice_00228__b17904249161119">Scenario 1: Wait for other modules to be ready.</strong> For example, an application contains two containerized services: web server and database. The web server service needs to access the database service. However, when the application is started, the database service may have not been started. Therefore, web server may fail to access database. To solve this problem, you can use an init container in the pod where web server is running to check whether database is ready. The init container runs to completion only when database is accessible. Then, web server is started and initiates a formal access request to database. </li><li id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_li15231101110218"><strong id="cce_bestpractice_00228__en-us_topic_0226102202_b19862142313314">Scenario 2: Initialize the configuration.</strong> For example, the init container can check all existing member nodes in the cluster and prepare the cluster configuration information for the application container. After the application container is started, it can be added to the cluster using the configuration information.</li><li id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_li923181119211"><strong id="cce_bestpractice_00228__en-us_topic_0226102202_b91511427113312">Other scenarios</strong>: For example, register a pod with a central database and download application dependencies.</li></ul>
+<p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p10749659162017">For details, see <a href="https://kubernetes.io/docs/concepts/workloads/pods/init-containers/" target="_blank" rel="noopener noreferrer">Init Containers</a>.</p>
+</div>
+<div class="section" id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_section8930186205313"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_ol18594151312411"><li id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_li881417212911"><span>Edit the YAML file of the init container workload.</span><p><p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p139726306911"><strong id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_b721101417465">vi deployment.yaml</strong></p>
+<p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p1114204610911">An example YAML file is provided as follows:</p>
+<pre class="screen" id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_screen13274102010419">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mysql
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      name: mysql
+  template:
+    metadata:
+      labels:
+        name: mysql
+    spec:
+      initContainers:
+      - name: getresource
+        image: busybox
+        command: ['sleep 20']
+      containers:
+      - name: mysql
+        image: percona:5.7.22
+        imagePullPolicy: Always
+        ports:
+        - containerPort: 3306
+        resources:
+          limits:
+            memory: "500Mi"
+            cpu: "500m"
+          requests:
+            memory: "500Mi"
+            cpu: "250m"
+        env:
+        - name: MYSQL_ROOT_PASSWORD
+          value: "mysql"</pre>
+</p></li><li id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_li88441356418"><span>Create an init container workload.</span><p><p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p915693164615"><strong id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_b18517361468">kubectl create -f deployment.yaml</strong></p>
+<p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p8360144734611">Information similar to the following is displayed:</p>
+<pre class="screen" id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_screen25907581469">deployment.apps/mysql created</pre>
+</p></li><li id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_li17517174055517"><span>Query the created Docker container on the node where the workload is running.</span><p><p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p129597220482"><strong id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_b114921319184810">docker ps -a|grep mysql</strong></p>
+<p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p18451347135510">The init container will exit after it runs to completion. The query result <span class="parmvalue" id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_parmvalue23838296528"><b>Exited (0)</b></span> shows the exit status of the init container.</p>
+<p id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_p446582104816"><span><img id="cce_bestpractice_00228__en-us_topic_0226102202_en-us_topic_0181631534_image16211124395516" src="en-us_image_0261818867.png"></span></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0051.html">Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00231.html b/docs/cce/umn/cce_bestpractice_00231.html
new file mode 100644
index 00000000..2eb46737
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00231.html
@@ -0,0 +1,147 @@
+<a name="cce_bestpractice_00231"></a><a name="cce_bestpractice_00231"></a>
+
+<h1 class="topictitle1">Implementing Sticky Session Through Load Balancing</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_section89688321407"><h4 class="sectiontitle">Concepts</h4><p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p13844165318404">Session persistence is one of the most common while complex problems in load balancing.</p>
+<p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p158441053124019">Session persistence is also called sticky sessions. After the sticky session function is enabled, requests from the same client are distributed to the same backend ECS by the load balancer for better continuity.</p>
+<p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p19844125312402">In load balancing and sticky session, connection and session are two key concepts. When only load balancing is concerned, session and connection refer to the same thing.</p>
+<p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p8844253104015">Simply put, if a user needs to log in, it can be regarded as a session; otherwise, a connection.</p>
+<p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p68441453144013">The sticky session mechanism fundamentally conflicts with the basic functions of load balancing. A load balancer forwards requests from clients to multiple backend servers to avoid overload on a single server. However, sticky session requires that some requests be forwarded to the same server for processing. Therefore, you need to select a proper sticky session mechanism based on the application environment.</p>
+</div>
+<div class="section" id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_section94681829101"><h4 class="sectiontitle">Layer-4 Load Balancing (Service)</h4><p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p17432131472">In layer-4 load balancing, source IP address-based sticky session (Hash routing based on the client IP address) can be enabled. To enable source IP address-based sticky session on Services, the following conditions must be met:</p>
+<ol id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_ol146719359478"><li id="cce_bestpractice_00231__li968014117386"><strong id="cce_bestpractice_00231__b975782132613">Service Affinity</strong> of the Service is set to <strong id="cce_bestpractice_00231__b63151810293">Node level</strong> (that is, the value of the <strong id="cce_bestpractice_00231__b1242923262916">externalTrafficPolicy</strong> field of the Service is <strong id="cce_bestpractice_00231__b4402184812915">Local</strong>).</li><li id="cce_bestpractice_00231__li45711478339">Enable the source IP address-based sticky session in the load balancing configuration of the Service.<pre class="screen" id="cce_bestpractice_00231__screen14193018147">apiVersion: v1
+kind: Service
+metadata:
+  name: svc-example
+  namespace: default
+  annotations:
+    kubernetes.io/elb.class: union
+    kubernetes.io/elb.id: 56dcc1b4-8810-480c-940a-a44f7736f0dc
+    kubernetes.io/elb.lb-algorithm: ROUND_ROBIN
+    kubernetes.io/elb.session-affinity-mode: SOURCE_IP
+spec:
+  selector: 
+    app: nginx
+  externalTrafficPolicy: Local
+  ports:
+    - name: cce-service-0
+      targetPort: 80
+      nodePort: 32633
+      port: 80
+      protocol: TCP
+  type: LoadBalancer</pre>
+</li><li id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li13671735144717">Anti-affinity is enabled for the backend application corresponding to the Service.</li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_section7684169135614"><h4 class="sectiontitle">Layer-7 Load Balancing (Ingress)</h4><p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p819192517506">In layer-7 load balancing, sticky session based on HTTP cookies and app cookies can be enabled. To enable such sticky session, the following conditions must be met:</p>
+<ol id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_ol13704202116515"><li id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li127041821165117">The application (workload) corresponding to the ingress is enabled with workload anti-affinity.</li><li id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li1370462195119">Node affinity is enabled for the Service corresponding to the ingress.</li></ol>
+<p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p514014531516"><strong id="cce_bestpractice_00231__en-us_topic_0226102205_b126341389412">Procedure</strong></p>
+<ol id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_ol12391642125610"><li id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li19541156676"><span>Create a Nginx workload.</span><p><div class="p" id="cce_bestpractice_00231__p3938205171917">Set the number of pods to 3 and set the podAntiAffinity.<pre class="screen" id="cce_bestpractice_00231__screen16797168121915">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: nginx
+  namespace: default
+spec:
+  replicas: 3
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:perl'
+          resources:
+            limits:
+              cpu: 250m
+              memory: 512Mi
+            requests:
+              cpu: 250m
+              memory: 512Mi
+      imagePullSecrets:
+        - name: default-secret
+      affinity:
+        podAntiAffinity:                   # Pod anti-affinity.
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - labelSelector:
+                matchExpressions:
+                  - key: app
+                    operator: In
+                    values:
+                      - nginx
+              topologyKey: kubernetes.io/hostname</pre>
+</div>
+</p></li><li id="cce_bestpractice_00231__li17131113214555"><span>Creating a NodePort Service</span><p><div class="p" id="cce_bestpractice_00231__p187863245518">Configure the sticky session in a Service. An ingress can connect to multiple Services, and each Service can have different sticky sessions.<pre class="screen" id="cce_bestpractice_00231__screen7998134412298">apiVersion: v1
+kind: Service
+metadata:
+  name: nginx
+  namespace: default
+  annotations:
+    kubernetes.io/elb.lb-algorithm: ROUND_ROBIN
+    kubernetes.io/elb.session-affinity-mode: HTTP_COOKIE      # HTTP cookie type.
+    kubernetes.io/elb.session-affinity-option: '{"persistence_timeout":"1440"}'   # Session stickiness duration, in minutes. The value ranges from 1 to 1440.
+spec:
+  selector:
+    app: nginx
+  ports:
+    - name: cce-service-0
+      protocol: TCP
+      port: 80
+      targetPort: 80
+      nodePort: 32633            # Node port number.
+  type: NodePort
+  externalTrafficPolicy: Local   # Node-level forwarding.</pre>
+</div>
+<p id="cce_bestpractice_00231__p8998184442914">You can also select <strong id="cce_bestpractice_00231__b9788104453012">APP_COOKIE</strong>.</p>
+<pre class="screen" id="cce_bestpractice_00231__screen15998104442918">apiVersion: v1
+kind: Service
+metadata:
+  name: nginx
+  namespace: default
+  annotations:
+    kubernetes.io/elb.lb-algorithm: ROUND_ROBIN
+    kubernetes.io/elb.session-affinity-mode: APP_COOKIE     # Select <strong id="cce_bestpractice_00231__b91151110132816">APP_COOKIE</strong>.
+    kubernetes.io/elb.session-affinity-option: '{"app_cookie_name":"test"}'  # Application cookie name.
+...</pre>
+</p></li><li id="cce_bestpractice_00231__li1499116492297"><span>Create an ingress and associate it with a Service. The following example describes how to automatically create a shared load balancer. For details about how to specify other types of load balancers, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0252.html" target="_blank" rel="noopener noreferrer">Using kubectl to Create an ELB Ingress</a>.</span><p><pre class="screen" id="cce_bestpractice_00231__screen1790322712361">apiVersion: networking.k8s.io/v1
+kind: Ingress 
+metadata: 
+  name: ingress-test
+  namespace: default
+  annotations: 
+    kubernetes.io/elb.class: union
+    kubernetes.io/elb.port: '80'
+    kubernetes.io/elb.autocreate: 
+      '{
+          "type":"public",
+          "bandwidth_name":"cce-bandwidth-test",
+          "bandwidth_chargemode":"traffic",
+          "bandwidth_size":1,
+          "bandwidth_sharetype":"PER",
+          "eip_type":"5_bgp"
+        }'
+spec:
+  rules: 
+  - host: 'www.example.com'
+    http: 
+      paths: 
+      - path: '/'
+        backend: 
+          service:
+            name: nginx     #Service name
+            port: 
+              number: 80
+        property:
+          ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+        pathType: ImplementationSpecific
+  ingressClassName: cce</pre>
+</p></li><li class="msonormal" id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li139184205612"><span>Log in to the ELB console, access the load balancer details page, and check whether the sticky session feature is enabled.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0052.html">Networking</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00237.html b/docs/cce/umn/cce_bestpractice_00237.html
new file mode 100644
index 00000000..a755d3ea
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00237.html
@@ -0,0 +1,15 @@
+<a name="cce_bestpractice_00237"></a><a name="cce_bestpractice_00237"></a>
+
+<h1 class="topictitle1">Migration</h1>
+<div id="body8662426"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00253_0.html b/docs/cce/umn/cce_bestpractice_00253_0.html
new file mode 100644
index 00000000..77ab416c
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00253_0.html
@@ -0,0 +1,171 @@
+<a name="cce_bestpractice_00253_0"></a><a name="cce_bestpractice_00253_0"></a>
+
+<h1 class="topictitle1">Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00253_0__section1253143915414"><h4 class="sectiontitle">Background</h4><p id="cce_bestpractice_00253_0__p20577205044110">The minimum capacity of an SFS Turbo file system is 500 GB, and the SFS Turbo file system cannot be billed by usage. By default, the root directory of an SFS Turbo file system is mounted to a container which, in most case, does not require such a large capacity.</p>
+<p id="cce_bestpractice_00253_0__p1595551225512">The everest add-on allows you to dynamically create subdirectories in an SFS Turbo file system and mount these subdirectories to containers. In this way, an SFS Turbo file system can be shared by multiple containers to increase storage efficiency.</p>
+</div>
+<div class="section" id="cce_bestpractice_00253_0__section17695156154019"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_bestpractice_00253_0__ul17455186154219"><li id="cce_bestpractice_00253_0__li54551562423">Only clusters of v1.15 and later are supported.</li><li id="cce_bestpractice_00253_0__li045646184211">The cluster must use the everest add-on of version 1.1.13 or later.</li><li id="cce_bestpractice_00253_0__li54566618425">Kata containers are not supported.</li><li id="cce_bestpractice_00253_0__li11620175819575">A maximum of 10 PVCs can be created concurrently at a time by using the subdirectory function.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00253_0__en-us_topic_0278443086_section2794612"><h4 class="sectiontitle">Creating an SFS Turbo Volume of the subpath Type</h4><div class="caution" id="cce_bestpractice_00253_0__en-us_topic_0278443086_note2373120455"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p33745274517">The CCE console has not yet supported the operations related to this feature, such as expanding, disassociating, and deleting subPath volumes.</p>
+</div></div>
+<ol id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol12819762"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li48268995"><span>Import an SFS Turbo file system that is located in the same VPC and subnet as the cluster.</span></li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li31767774"><span>Create a StorageClass YAML file, for example, <strong id="cce_bestpractice_00253_0__b533819231317">sfsturbo-sc-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p12658339115317">Configuration example:</p>
+<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen386441711546">apiVersion: storage.k8s.io/v1
+allowVolumeExpansion: true
+kind: StorageClass
+metadata:
+  name: sfsturbo-sc-test
+mountOptions:
+- lock
+parameters:
+  csi.storage.k8s.io/csi-driver-name: sfsturbo.csi.everest.io
+  csi.storage.k8s.io/fstype: nfs
+  everest.io/archive-on-delete: "true"
+  everest.io/share-access-to: 7ca2dba2-1234-1234-1234-626371a8fb3a
+  everest.io/share-expand-type: bandwidth
+  everest.io/share-export-location: 192.168.1.1:/sfsturbo/
+  everest.io/share-source: sfs-turbo
+  everest.io/share-volume-type: STANDARD
+  everest.io/volume-as: subpath
+  everest.io/volume-id: 0d773f2e-1234-1234-1234-de6a35074696
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p35962059">In this example:</p>
+<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul795395815547"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li27245651"><strong id="cce_bestpractice_00253_0__b59516297213">name</strong>: name of the StorageClass.</li><li id="cce_bestpractice_00253_0__li827114118142"><strong id="cce_bestpractice_00253_0__b1842222223318">mountOptions</strong>: mount options. This field is optional.<ul id="cce_bestpractice_00253_0__ul2080191311145"><li id="cce_bestpractice_00253_0__li118941043511">In versions later than everest 1.1.13 and earlier than everest 1.2.8, only the <strong id="cce_bestpractice_00253_0__b1530712183345">nolock</strong> parameter can be configured. By default, the <strong id="cce_bestpractice_00253_0__b1074524617406">nolock</strong> parameter is used for the mount operation and does not need to be configured. If <strong id="cce_bestpractice_00253_0__b1055562717355">nolock</strong> is set to <strong id="cce_bestpractice_00253_0__b9563227143514">false</strong>, the <strong id="cce_bestpractice_00253_0__b19563192717359">lock</strong> field is used.</li><li id="cce_bestpractice_00253_0__li688882012141">Starting from everest 1.2.8, more parameters are supported. The default parameter configurations are shown below. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0337.html" target="_blank" rel="noopener noreferrer">Setting Mount Options</a>. <strong id="cce_bestpractice_00253_0__b176745492029">Do not set nolock to true. Otherwise, the mount operation fails.</strong><pre class="screen" id="cce_bestpractice_00253_0__screen1779155351116">mountOptions:
+- vers=3
+- timeo=600
+- nolock
+- hard</pre>
+</li></ul>
+</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li59414099"><strong id="cce_bestpractice_00253_0__b683652511616">everest.io/volume-as</strong>: Set this parameter to <strong id="cce_bestpractice_00253_0__b1069812451564">subpath</strong>.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li64964848"><strong id="cce_bestpractice_00253_0__b19358581569">everest.io/share-access-to</strong>: This parameter is optional. In subpath mode, set this parameter to the ID of the VPC where the SFS Turbo file system is located.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li47812724"><strong id="cce_bestpractice_00253_0__b127663114712">everest.io/share-expand-type</strong>: This parameter is optional. If the type of the SFS Turbo file system is SFS Turbo Standard – Enhanced or SFS Turbo Performance – Enhanced, set this parameter to <strong id="cce_bestpractice_00253_0__b134224338918">bandwidth</strong>.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li27661336"><strong id="cce_bestpractice_00253_0__b1572537996">everest.io/share-export-location</strong>: root directory to be mounted. It consists of the SFS Turbo shared path and sub-directory. The shared path can be queried on the SFS Turbo console. The sub-directory is user-defined. The PVCs created by the StorageClass are located in the sub-directory.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li47625437"><strong id="cce_bestpractice_00253_0__b6709163321610">everest.io/share-volume-type</strong>: This parameter is optional. It specifies the SFS Turbo file system type. The value can be <strong id="cce_bestpractice_00253_0__b037932717173">STANDARD</strong> or <strong id="cce_bestpractice_00253_0__b1641030111718">PERFORMANCE</strong>. For enhanced types, this parameter must be used together with <strong id="cce_bestpractice_00253_0__b131533103415">everest.io/share-expand-type</strong> (whose value should be <strong id="cce_bestpractice_00253_0__b590213587341">bandwidth</strong>).</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li25975757"><strong id="cce_bestpractice_00253_0__b695171217249">everest.io/zone</strong>: This parameter is optional. Set it to the AZ where the SFS Turbo file system is located.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li32455223"><strong id="cce_bestpractice_00253_0__b118371555102415">everest.io/volume-id</strong>: ID of the SFS Turbo volume. You can query the volume ID on the SFS Turbo page.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li15953145805416"><strong id="cce_bestpractice_00253_0__b77796106276">everest.io/archive-on-delete</strong>: If this parameter is set to <strong id="cce_bestpractice_00253_0__b1015211417278">true</strong> and the recycling policy is set to <strong id="cce_bestpractice_00253_0__b13108122662818">Delete</strong>, the original PV file will be archived when the PVC is deleted. The archive directory is named in the format of <em id="cce_bestpractice_00253_0__i264667113011">archived-$PV name.timestamp</em>. If this parameter is set to <strong id="cce_bestpractice_00253_0__b76771833193017">false</strong>, the SFS Turbo sub-directory corresponding to the PV will be deleted. The default value is <strong id="cce_bestpractice_00253_0__b192753912325">true</strong>.</li></ul>
+</p></li></ol><ol start="3" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol11627434"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li37538044"><span>Run the <strong id="cce_bestpractice_00253_0__en-us_topic_0278443086_b195971021185515">kubectl create -f sfsturbo-sc-test.yaml</strong> command to create a StorageClass.</span></li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li2298077"><span>Create a PVC YAML file named <strong id="cce_bestpractice_00253_0__b103274313328">sfs-turbo-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p1710723205516">Configuration example:</p>
+<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen102059461551">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: sfs-turbo-test
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 50Gi
+  storageClassName: sfsturbo-sc-test
+  volumeMode: Filesystem</pre>
+<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p51062251">In this example:</p>
+<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul141055813557"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li42401657"><strong id="cce_bestpractice_00253_0__b55881230143711">name</strong>: name of the PVC.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li46070597"><strong id="cce_bestpractice_00253_0__b840884117372">storageClassName</strong>: name of the StorageClass created in the previous step.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li810458165517"><strong id="cce_bestpractice_00253_0__b1729053143817">storage</strong>: In the subpath mode, this parameter is invalid. The storage capacity is limited by the total capacity of the SFS Turbo file system. If the total capacity of the SFS Turbo file system is insufficient, expand the capacity on the SFS Turbo page in a timely manner.</li></ul>
+</p></li></ol><ol start="5" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol40730901"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li31033795"><span>Run the <strong id="cce_bestpractice_00253_0__en-us_topic_0278443086_b19629151617568">kubectl create -f sfs-turbo-test.yaml</strong> command to create a PVC.</span></li></ol>
+<div class="note" id="cce_bestpractice_00253_0__en-us_topic_0278443086_note93389369214"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p2338113616218">It is meaningless to conduct capacity expansion on an SFS Turbo volume created in the subpath mode. This operation does not expand the capacity of the SFS Turbo file system. You need to ensure that the total capacity of the SFS Turbo file system is not used up.</p>
+</div></div>
+</div>
+<div class="section" id="cce_bestpractice_00253_0__en-us_topic_0278443086_section25151514"><h4 class="sectiontitle">Creating a Deployment and Mounting an Existing Volume</h4><ol id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol30709455"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li7949639"><span>Create a Deployment YAML file named <strong id="cce_bestpractice_00253_0__b1671155814319">deployment-test.yaml</strong>.</span><p><div class="p" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p18260165212212">Configuration example:<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen1691315352015">apiVersion: <strong id="cce_bestpractice_00253_0__b6285133413417">apps/v1</strong>
+kind: Deployment
+metadata:
+  name: test-turbo-subpath-example
+  namespace: default
+  generation: 1
+  labels:
+    appgroup: ''
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: test-turbo-subpath-example 
+  template: 
+    metadata: 
+      labels: 
+        app: test-turbo-subpath-example 
+    spec: 
+      containers: 
+      - image: nginx:latest 
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp
+          name: pvc-sfs-turbo-example 
+      restartPolicy: Always 
+      imagePullSecrets:
+      - name: default-secret
+      volumes: 
+      - name: pvc-sfs-turbo-example 
+        persistentVolumeClaim: 
+          claimName: sfs-turbo-test</pre>
+</div>
+<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p4860205">In this example:</p>
+<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul36201717228"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li58132325"><strong id="cce_bestpractice_00253_0__b31113410411260">name</strong>: name of the Deployment.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li53428882"><strong id="cce_bestpractice_00253_0__b22553026611260">image</strong>: image used by the Deployment.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li11097898"><strong id="cce_bestpractice_00253_0__b201972372711260">mountPath</strong>: mount path of the container. In this example, the volume is mounted to the <strong id="cce_bestpractice_00253_0__b211877593811260">/tmp</strong> directory.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li14691711225"><strong id="cce_bestpractice_00253_0__b143341716164517">claimName</strong>: name of an existing PVC.</li></ul>
+</p></li></ol><ol start="2" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol26514531"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li37304191"><span>Run the <strong id="cce_bestpractice_00253_0__b20772483514">kubectl create -f deployment-test.yaml</strong> command to create a Deployment.</span></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00253_0__en-us_topic_0278443086_section25037038"><h4 class="sectiontitle">Creating a StatefulSet That Uses a Volume Dynamically Created in subpath Mode</h4><ol id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol60945241"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li11636265"><span>Create a StatefulSet YAML file named <strong id="cce_bestpractice_00253_0__b552833616470">statefulset-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p1397704611222">Configuration example:</p>
+<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen37909379235">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: test-turbo-subpath
+  namespace: default
+  generation: 1
+  labels:
+    appgroup: ''
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: test-turbo-subpath
+  template:
+    metadata:
+      labels:
+        app: test-turbo-subpath
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
+        pod.alpha.kubernetes.io/initialized: 'true'
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:latest'
+          env:
+            - name: PAAS_APP_NAME
+              value: deploy-sfs-nfs-rw-in
+            - name: PAAS_NAMESPACE
+              value: default
+            - name: PAAS_PROJECT_ID
+              value: 8190a2a1692c46f284585c56fc0e2fb9
+          resources: {}
+          volumeMounts:
+            - name: sfs-turbo-160024548582479676
+              mountPath: /tmp
+          terminationMessagePath: /dev/termination-log
+          terminationMessagePolicy: File
+          imagePullPolicy: IfNotPresent
+      restartPolicy: Always
+      terminationGracePeriodSeconds: 30
+      dnsPolicy: ClusterFirst
+      securityContext: {}
+      imagePullSecrets:
+        - name: default-secret
+      affinity: {}
+      schedulerName: default-scheduler
+  volumeClaimTemplates:
+    - metadata:
+        name: sfs-turbo-160024548582479676
+        namespace: default
+        annotations: {}
+      spec:
+        accessModes:
+          - ReadWriteOnce
+        resources:
+          requests:
+            storage: 10Gi
+        storageClassName: sfsturbo-sc-test
+  serviceName: wwww
+  podManagementPolicy: OrderedReady
+  updateStrategy:
+    type: RollingUpdate
+  revisionHistoryLimit: 10</pre>
+<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p16490530">In this example:</p>
+<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul197522816235"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li60664521"><strong id="cce_bestpractice_00253_0__b136565215111260">name</strong>: name of the StatefulSet.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li9109783"><strong id="cce_bestpractice_00253_0__b5576105914811">image</strong>: image used by the StatefulSet.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li14879189"><strong id="cce_bestpractice_00253_0__b350221013490">mountPath</strong>: mount path of the container. In this example, the volume is mounted to the <strong id="cce_bestpractice_00253_0__b1850671015494">/tmp</strong> directory.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li66803845"><strong id="cce_bestpractice_00253_0__b36936475411260">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_bestpractice_00253_0__b9012554811260">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li127521389238"><strong id="cce_bestpractice_00253_0__b1899022819490">storageClassName</strong>: name of the created StorageClass.</li></ul>
+</p></li></ol><ol start="2" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol42402339"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li46076731"><span>Run the <strong id="cce_bestpractice_00253_0__b1943813683515">kubectl create -f statefulset-test.yaml</strong> command to create a StatefulSet.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00254.html b/docs/cce/umn/cce_bestpractice_00254.html
new file mode 100644
index 00000000..7c10cf2a
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00254.html
@@ -0,0 +1,248 @@
+<a name="cce_bestpractice_00254"></a><a name="cce_bestpractice_00254"></a>
+
+<h1 class="topictitle1">Connecting to Multiple Clusters Using kubectl</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00254__section156339655817"><h4 class="sectiontitle">Painpoint</h4><p id="cce_bestpractice_00254__p132071541185816">When you have multiple CCE clusters, you may find it difficult to efficiently connect to all of them.</p>
+</div>
+<div class="section" id="cce_bestpractice_00254__en-us_topic_0235319739_section1561741319418"><h4 class="sectiontitle">Solution</h4><p id="cce_bestpractice_00254__p6684102771116">This section describes how to configure access to multiple clusters by modifying <strong id="cce_bestpractice_00254__b177041111812">kubeconfig.json</strong>. The file describes multiple clusters, users, and contexts. To access different clusters, run the <strong id="cce_bestpractice_00254__b155735151915">kubectl config use-context</strong> command to switch between contexts.</p>
+<div class="fignone" id="cce_bestpractice_00254__en-us_topic_0235319739_fig14883228101410"><span class="figcap"><b>Figure 1 </b>Using kubectl to connect to multiple clusters</span><br><span><img id="cce_bestpractice_00254__en-us_topic_0235319739_image135781785143" src="en-us_image_0261820020.png"></span></div>
+</div>
+<div class="section" id="cce_bestpractice_00254__en-us_topic_0235319739_section18659174911433"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_bestpractice_00254__p158711946239">kubectl can access multiple clusters.</p>
+</div>
+<div class="section" id="cce_bestpractice_00254__section11674113613242"><h4 class="sectiontitle">Introduction to kubeconfig.json</h4><p id="cce_bestpractice_00254__p8702134915241">kubeconfig.json is the configuration file of kubectl. You can download it on the cluster details page.</p>
+<p id="cce_bestpractice_00254__p1481771113015"></p>
+<p id="cce_bestpractice_00254__p106143616110"><span><img id="cce_bestpractice_00254__image109028361319" src="en-us_image_0000001274882416.png"></span></p>
+<p id="cce_bestpractice_00254__p1155911933011">The content of kubeconfig.json is as follows:</p>
+<pre class="screen" id="cce_bestpractice_00254__screen157423392309">{
+    "kind": "Config",
+    "apiVersion": "v1",
+    "preferences": {},
+    "clusters": [{
+        "name": "internalCluster",
+        "cluster": {
+            "server": "https://192.168.0.85:5443",
+            "certificate-authority-data": "LS0tLS1CRUULIE..."
+        }
+    }, {
+        "name": "externalCluster",
+        "cluster": {
+            "server": "https://xxx.xxx.xxx.xxx:5443",
+            "insecure-skip-tls-verify": true
+        }
+    }],
+    "users": [{
+        "name": "user",
+        "user": {
+            "client-certificate-data": "LS0tLS1CRUdJTiBDRVJ...",
+            "client-key-data": "LS0tLS1CRUdJTiBS..."
+        }
+    }],
+    "contexts": [{
+        "name": "internal",
+        "context": {
+            "cluster": "internalCluster",
+            "user": "user"
+        }
+    }, {
+        "name": "external",
+        "context": {
+            "cluster": "externalCluster",
+            "user": "user"
+        }
+    }],
+    "current-context": "external"
+}</pre>
+<p id="cce_bestpractice_00254__p10730733113919">It mainly consists of three sections.</p>
+<ul id="cce_bestpractice_00254__ul12987042104618"><li id="cce_bestpractice_00254__li169870420462"><strong id="cce_bestpractice_00254__b766119371187">clusters</strong>: describes the cluster information, mainly the access address of the cluster.</li><li id="cce_bestpractice_00254__li6987442134610"><strong id="cce_bestpractice_00254__b19936481820">users</strong>: describes information about the users who access the cluster. It includes the <strong id="cce_bestpractice_00254__b138711337917">client-certificate-data</strong> and <strong id="cce_bestpractice_00254__b1090714356917">client-key-data</strong> certificate files.</li><li id="cce_bestpractice_00254__li119872042134610"><strong id="cce_bestpractice_00254__b396473916918">contexts</strong>: describes the configuration contexts. You switch between contexts to access different clusters. A context is associated with <strong id="cce_bestpractice_00254__b49986282256">user</strong> and <strong id="cce_bestpractice_00254__b689483019258">cluster</strong>, that is, it defines which user accesses which cluster.</li></ul>
+<p id="cce_bestpractice_00254__p886116014496">The preceding kubeconfig.json defines the private network address and public network address of the cluster as two clusters with two different contexts. You can switch the context to use different addresses to access the cluster.</p>
+</div>
+<div class="section" id="cce_bestpractice_00254__section1272762813465"><h4 class="sectiontitle">Configuring Access to Multiple Clusters</h4><p id="cce_bestpractice_00254__p1257042518583">The following steps walk you through the procedure of configuring access to two clusters by modifying kubeconfig.json.</p>
+<p id="cce_bestpractice_00254__p182171650104613">This example configures only the public network access to the clusters. If you want to access multiple clusters over private networks, retain the <strong id="cce_bestpractice_00254__b1696152143812">clusters</strong> field and ensure that the clusters can be accessed over private networks. Its configuration is similar to that described in this example.</p>
+<ol id="cce_bestpractice_00254__ol098212243111"><li id="cce_bestpractice_00254__li159832223318"><span>Download kubeconfig.json of the two clusters and delete the lines related to private network access, as shown in the following figure.</span><p><ul id="cce_bestpractice_00254__ul55324272313"><li id="cce_bestpractice_00254__li6532527143113">Cluster A:<pre class="screen" id="cce_bestpractice_00254__screen11574481246">{
+    "kind": "Config",
+    "apiVersion": "v1",
+    "preferences": {},
+    "clusters": [ {
+        "name": "externalCluster",
+        "cluster": {
+            "server": "https://119.xxx.xxx.xxx:5443",
+            "insecure-skip-tls-verify": true
+        }
+    }],
+    "users": [{
+        "name": "user",
+        "user": {
+            "client-certificate-data": "LS0tLS1CRUdJTxM...",
+            "client-key-data": "LS0tLS1CRUdJTiB...."
+        }
+    }],
+    "contexts": [{
+        "name": "external",
+        "context": {
+            "cluster": "externalCluster",
+            "user": "user"
+        }
+    }],
+    "current-context": "external"
+}</pre>
+</li><li id="cce_bestpractice_00254__li59821522163110">Cluster B:<pre class="screen" id="cce_bestpractice_00254__screen75016506513">{
+    "kind": "Config",
+    "apiVersion": "v1",
+    "preferences": {},
+    "clusters": [ {
+        "name": "externalCluster",
+        "cluster": {
+            "server": "https://124.xxx.xxx.xxx:5443",
+            "insecure-skip-tls-verify": true
+        }
+    }],
+    "users": [{
+        "name": "user",
+        "user": {
+            "client-certificate-data": "LS0tLS1CRUdJTxM...",
+            "client-key-data": "LS0rTUideUdJTiB...."
+        }
+    }],
+    "contexts": [{
+        "name": "external",
+        "context": {
+            "cluster": "externalCluster",
+            "user": "user"
+        }
+    }],
+    "current-context": "external"
+}</pre>
+<p id="cce_bestpractice_00254__p10583238163117">The preceding files have the same structure except that the <strong id="cce_bestpractice_00254__b714854134220">client-certificate-data</strong> and <strong id="cce_bestpractice_00254__b11715578425">client-key-data</strong> fields of <strong id="cce_bestpractice_00254__b7574130104310">user</strong> and the <strong id="cce_bestpractice_00254__b16301950174212">clusters.cluster.server</strong> field are different.</p>
+</li></ul>
+</p></li><li id="cce_bestpractice_00254__li18661644183110"><span>Modify the <strong id="cce_bestpractice_00254__b6936315445">name</strong> field as follows:</span><p><ul id="cce_bestpractice_00254__ul18281640121217"><li id="cce_bestpractice_00254__li428274041220">Cluster A:<pre class="screen" id="cce_bestpractice_00254__screen122824403128">{
+    "kind": "Config",
+    "apiVersion": "v1",
+    "preferences": {},
+    "clusters": [ {
+        "name": "Cluster-A",
+        "cluster": {
+            "server": "https://119.xxx.xxx.xxx:5443",
+            "insecure-skip-tls-verify": true
+        }
+    }],
+    "users": [{
+        "name": "Cluster-A-user",
+        "user": {
+            "client-certificate-data": "LS0tLS1CRUdJTxM...",
+            "client-key-data": "LS0tLS1CRUdJTiB...."
+        }
+    }],
+    "contexts": [{
+        "name": "Cluster-A-Context",
+        "context": {
+            "cluster": "Cluster-A",
+            "user": "Cluster-A-user"
+        }
+    }],
+    "current-context": "Cluster-A-Context"
+}</pre>
+</li><li id="cce_bestpractice_00254__li72831140111211">Cluster B:<pre class="screen" id="cce_bestpractice_00254__screen1728304061219">{
+    "kind": "Config",
+    "apiVersion": "v1",
+    "preferences": {},
+    "clusters": [ {
+        "name": "Cluster-B",
+        "cluster": {
+            "server": "https://124.xxx.xxx.xxx:5443",
+            "insecure-skip-tls-verify": true
+        }
+    }],
+    "users": [{
+        "name": "Cluster-B-user",
+        "user": {
+            "client-certificate-data": "LS0tLS1CRUdJTxM...",
+            "client-key-data": "LS0rTUideUdJTiB...."
+        }
+    }],
+    "contexts": [{
+        "name": "Cluster-B-Context",
+        "context": {
+            "cluster": "Cluster-B",
+            "user": "Cluster-B-user"
+        }
+    }],
+    "current-context": "Cluster-B-Context"
+}</pre>
+</li></ul>
+</p></li><li id="cce_bestpractice_00254__li7254155873116"><span>Combine these two files.</span><p><p id="cce_bestpractice_00254__p18648121918323">The file structure remains unchanged. Combine the contents of <strong id="cce_bestpractice_00254__b896772964420">clusters</strong>, <strong id="cce_bestpractice_00254__b14392313447">users</strong>, and <strong id="cce_bestpractice_00254__b620603304412">contexts</strong> as follows:</p>
+<pre class="screen" id="cce_bestpractice_00254__screen598613816173">{
+    "kind": "Config",
+    "apiVersion": "v1",
+    "preferences": {},
+    "clusters": [ {
+        "name": "Cluster-A",
+        "cluster": {
+            "server": "https://119.xxx.xxx.xxx:5443",
+            "insecure-skip-tls-verify": true
+        }
+    },
+     {
+        "name": "Cluster-B",
+        "cluster": {
+            "server": "https://124.xxx.xxx.xxx:5443",
+            "insecure-skip-tls-verify": true
+        }
+    }],
+    "users": [{
+        "name": "Cluster-A-user",
+        "user": {
+            "client-certificate-data": "LS0tLS1CRUdJTxM...",
+            "client-key-data": "LS0tLS1CRUdJTiB...."
+        }
+    },
+    {
+        "name": "Cluster-B-user",
+        "user": {
+            "client-certificate-data": "LS0tLS1CRUdJTxM...",
+            "client-key-data": "LS0rTUideUdJTiB...."
+        }
+    }],
+    "contexts": [{
+        "name": "Cluster-A-Context",
+        "context": {
+            "cluster": "Cluster-A",
+            "user": "Cluster-A-user"
+        }
+    },
+    {
+        "name": "Cluster-B-Context",
+        "context": {
+            "cluster": "Cluster-B",
+            "user": "Cluster-B-user"
+        }
+    }],
+    "current-context": "Cluster-A-Context"
+}</pre>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00254__section1314833691912"><h4 class="sectiontitle">Verification</h4><p id="cce_bestpractice_00254__p9558540121916">Run the following commands to copy the file to the kubectl configuration path:</p>
+<p id="cce_bestpractice_00254__p353913182319"><strong id="cce_bestpractice_00254__b03632142242">mkdir -p $HOME/.kube</strong></p>
+<p id="cce_bestpractice_00254__p1539153172317"><strong id="cce_bestpractice_00254__b53684145244">mv -f kubeconfig.json $HOME/.kube/config</strong></p>
+<p id="cce_bestpractice_00254__p79691040172211">Run the kubectl commands to check whether the two clusters can be connected.</p>
+<pre class="screen" id="cce_bestpractice_00254__screen1123661152220"># kubectl config use-context Cluster-A-Context
+Switched to context "Cluster-A-Context".
+# kubectl cluster-info
+Kubernetes control plane is running at https://119.xxx.xxx.xxx:5443
+CoreDNS is running at https://119.xxx.xxx.xxx:5443/api/v1/namespaces/kube-system/services/coredns:dns/proxy
+
+To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.
+
+# kubectl config use-context Cluster-B-Context
+Switched to context "Cluster-B-Context".
+# kubectl cluster-info
+Kubernetes control plane is running at https://124.xxx.xxx.xxx:5443
+CoreDNS is running at https://124.xxx.xxx.xxx:5443/api/v1/namespaces/kube-system/services/coredns:dns/proxy
+
+To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0050.html">Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00281_0.html b/docs/cce/umn/cce_bestpractice_00281_0.html
new file mode 100644
index 00000000..7bf0c936
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00281_0.html
@@ -0,0 +1,230 @@
+<a name="cce_bestpractice_00281_0"></a><a name="cce_bestpractice_00281_0"></a>
+
+<h1 class="topictitle1">Custom Storage Classes</h1>
+<div id="body0000001148435277"><div class="section" id="cce_bestpractice_00281_0__section13347243125312"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_00281_0__p19810642103411">When using storage resources in CCE, the most common method is to specify <strong id="cce_bestpractice_00281_0__b1439518042014">storageClassName</strong> to define the type of storage resources to be created when creating a PVC. The following configuration shows how to use a PVC to apply for an SAS (high I/O) EVS disk (block storage).</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen146941631606">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-example
+  namespace: default
+  annotations:
+    everest.io/disk-volume-type: SAS
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: csi-disk</pre>
+<p id="cce_bestpractice_00281_0__p10416164023811">If you need to specify the EVS disk type, you can set the <strong id="cce_bestpractice_00281_0__b1327345035413">everest.io/disk-volume-type</strong> field. The value <strong id="cce_bestpractice_00281_0__b1527965015414">SAS</strong> is used as an example here, indicating the high I/O EVS disk type. Or you can choose <strong id="cce_bestpractice_00281_0__b18796143718507">SATA</strong> (common I/O) and <strong id="cce_bestpractice_00281_0__b5279250115416">SSD</strong> (ultra-high I/O).</p>
+<p id="cce_bestpractice_00281_0__p1992812244296">This configuration method may not work if you want to:</p>
+<ul id="cce_bestpractice_00281_0__ul1666681113305"><li id="cce_bestpractice_00281_0__li26671211203012">Set <strong id="cce_bestpractice_00281_0__b19384122374818">storageClassName</strong> only, which is simpler than specifying the EVS disk type by using <strong id="cce_bestpractice_00281_0__b1043282143520">everest.io/disk-volume-type</strong>.</li><li id="cce_bestpractice_00281_0__li1430122517314">Avoid modifying YAML files or Helm charts. Some users switch from self-built or other Kubernetes services to CCE and have written YAML files of many applications. In these YAML files, different types of storage resources are specified by different StorageClassNames. When using CCE, they need to modify a large number of YAML files or Helm charts to use storage resources, which is labor-consuming and error-prone.</li><li id="cce_bestpractice_00281_0__li6714783711">Set the default <strong id="cce_bestpractice_00281_0__b3414714817">storageClassName</strong> for all applications to use the default storage class. In this way, you can create storage resources of the default type without needing to specify <strong id="cce_bestpractice_00281_0__b15163103104815">storageClassName</strong> in the YAML file.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00281_0__section10387181592813"><h4 class="sectiontitle">Solution</h4><p id="cce_bestpractice_00281_0__p33361127181019">This section describes how to set a custom storage class in CCE and how to set the default storage class. You can specify different types of storage resources by setting <strong id="cce_bestpractice_00281_0__b15705152195010">storageClassName</strong>.</p>
+<ul id="cce_bestpractice_00281_0__ul1394816541798"><li id="cce_bestpractice_00281_0__li1494865412920">For the first scenario, you can define custom storageClassNames for SAS and SSD EVS disks. For example, define a storage class named <strong id="cce_bestpractice_00281_0__b11954204618017">csi-disk-sas</strong> for creating SAS disks. The following figure shows the differences before and after you use a custom storage class.<p id="cce_bestpractice_00281_0__p1639843625220"><span><img id="cce_bestpractice_00281_0__image62065521613" src="en-us_image_0000001102275444.png"></span></p>
+</li><li id="cce_bestpractice_00281_0__li112521973108">For the second scenario, you can define a storage class with the same name as that in the existing YAML file without needing to modify <strong id="cce_bestpractice_00281_0__b13346387104">storageClassName</strong> in the YAML file.</li><li id="cce_bestpractice_00281_0__li595443471215">For the third scenario, you can set the default storage class as described below to create storage resources without specifying <strong id="cce_bestpractice_00281_0__b863812014124">storageClassName</strong> in YAML files.<pre class="screen" id="cce_bestpractice_00281_0__screen22067304183">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-example
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00281_0__section11887112131418"><h4 class="sectiontitle">Storage Classes in CCE</h4><p id="cce_bestpractice_00281_0__p1633311831410">Run the following command to query the supported storage classes.</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen207891315121516"># kubectl get sc
+NAME                PROVISIONER                     AGE
+csi-disk            everest-csi-provisioner         17d          # Storage class for EVS disks
+csi-disk-topology   everest-csi-provisioner         17d          # Storage class for EVS disks with delayed association
+csi-nas             everest-csi-provisioner         17d          # Storage class for SFS file systems
+csi-obs             everest-csi-provisioner         17d          # Storage Class for OBS buckets
+csi-sfsturbo        everest-csi-provisioner         17d          # Storage class for SFS Turbo file systems</pre>
+<p id="cce_bestpractice_00281_0__p3417711182818">Check the details of <strong id="cce_bestpractice_00281_0__b08035920551">csi-disk</strong>. You can see that the type of the disk created by <strong id="cce_bestpractice_00281_0__b138145995512">csi-disk</strong> is SAS by default.</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen12583162812818"># kubectl get sc csi-disk -oyaml
+allowVolumeExpansion: true
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  creationTimestamp: "2021-03-17T02:10:32Z"
+  name: csi-disk
+  resourceVersion: "760"
+  selfLink: /apis/storage.k8s.io/v1/storageclasses/csi-disk
+  uid: 4db97b6c-853b-443d-b0dc-41cdcb8140f2
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SAS
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+</div>
+<div class="section" id="cce_bestpractice_00281_0__section179154267162"><h4 class="sectiontitle">Custom Storage Classes</h4><p id="cce_bestpractice_00281_0__p9601335151617">You can customize a high I/O storage class in a YAML file. For example, the name <strong id="cce_bestpractice_00281_0__b186185811594">csi-disk-sas</strong> indicates that the disk type is SAS (high I/O).</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen659210819391">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-sas                          # Name of the high I/O storage class, which can be customized.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SAS            # High I/O EVS disk type, which cannot be customized.
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true                    # <strong id="cce_bestpractice_00281_0__b148711949142017">true</strong> indicates that capacity expansion is allowed.</pre>
+<p id="cce_bestpractice_00281_0__p1281618138471">For an ultra-high I/O storage class, you can set the class name to <strong id="cce_bestpractice_00281_0__b722754812">csi-disk-ssd</strong> to create SSD EVS disk (ultra-high I/O).</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen199713432478">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-ssd                       # Name of the ultra-high I/O storage class, which can be customized.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SSD         # Ultra-high I/O EVS disk type, which cannot be customized.
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true</pre>
+<p id="cce_bestpractice_00281_0__p146067122106"><strong id="cce_bestpractice_00281_0__b69321846286">reclaimPolicy</strong>: indicates the recycling policies of the underlying cloud storage. The value can be <strong id="cce_bestpractice_00281_0__b9392322125012">Delete</strong> or <strong id="cce_bestpractice_00281_0__b91651126105014">Retain</strong>.</p>
+<ul id="cce_bestpractice_00281_0__ul42481619111116"><li id="cce_bestpractice_00281_0__li1624871911111"><strong id="cce_bestpractice_00281_0__b1313332805014">Delete</strong>: When a PVC is deleted, both the PV and the EVS disk are deleted.</li><li id="cce_bestpractice_00281_0__li9248141919118"><strong id="cce_bestpractice_00281_0__b26601433105212">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the <strong id="cce_bestpractice_00281_0__b1956334045518">Released</strong> state and cannot be bound to the PVC again.</li></ul>
+<div class="note" id="cce_bestpractice_00281_0__note8801953114018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00281_0__p178035314020">The reclamation policy set here has no impact on the SFS Turbo storage. Therefore, the yearly/monthly SFS Turbo resources will not be reclaimed when the cluster or PVC is deleted.</p>
+</div></div>
+<p id="cce_bestpractice_00281_0__p778102518503">If high data security is required, you are advised to select <strong id="cce_bestpractice_00281_0__b1478374995218">Retain</strong> to prevent data from being deleted by mistake.</p>
+<p id="cce_bestpractice_00281_0__p824713561207">After the definition is complete, run the <strong id="cce_bestpractice_00281_0__b14281158232">kubectl create</strong> commands to create storage resources.</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen164494218115"># kubectl create -f sas.yaml
+storageclass.storage.k8s.io/csi-disk-sas created
+# kubectl create -f ssd.yaml
+storageclass.storage.k8s.io/csi-disk-ssd created</pre>
+<p id="cce_bestpractice_00281_0__p1412183715488">Query the storage class again. Two more types of storage classes are displayed in the command output, as shown below.</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen13784148495"># kubectl get sc
+NAME                PROVISIONER                     AGE
+csi-disk            everest-csi-provisioner         17d
+csi-disk-sas        everest-csi-provisioner         2m28s
+csi-disk-ssd        everest-csi-provisioner         16s
+csi-disk-topology   everest-csi-provisioner         17d
+csi-nas             everest-csi-provisioner         17d
+csi-obs             everest-csi-provisioner         17d
+csi-sfsturbo        everest-csi-provisioner         17d</pre>
+<p id="cce_bestpractice_00281_0__p05291082227">Other types of storage resources can be defined in the similar way. You can use kubectl to obtain the YAML file and modify it as required.</p>
+<ul id="cce_bestpractice_00281_0__ul38311130152115"><li id="cce_bestpractice_00281_0__li18831113072113">File storage<pre class="screen" id="cce_bestpractice_00281_0__screen181646213295"># kubectl get sc csi-nas -oyaml
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  name: csi-nas
+provisioner: everest-csi-provisioner
+parameters:
+  csi.storage.k8s.io/csi-driver-name: nas.csi.everest.io
+  csi.storage.k8s.io/fstype: nfs
+  everest.io/share-access-level: rw
+  everest.io/share-access-to: 5e3864c6-e78d-4d00-b6fd-de09d432c632   # ID of the VPC to which the cluster belongs
+  everest.io/share-is-public: 'false'
+  everest.io/zone: xxxxx          # AZ
+reclaimPolicy: Delete
+allowVolumeExpansion: true
+volumeBindingMode: Immediate</pre>
+</li><li id="cce_bestpractice_00281_0__li4390135712118">Object storage<pre class="screen" id="cce_bestpractice_00281_0__screen1745353552911"># kubectl get sc csi-obs -oyaml
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  name: csi-obs
+provisioner: everest-csi-provisioner
+parameters:
+  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
+  csi.storage.k8s.io/fstype: s3fs           # Object storage type. <strong id="cce_bestpractice_00281_0__b581916217422">s3fs</strong> indicates an object bucket, and <strong id="cce_bestpractice_00281_0__b19130111019424">obsfs</strong> indicates a parallel file system.
+  everest.io/obs-volume-type: STANDARD      # Storage class of the OBS bucket
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00281_0__section13586291218"><h4 class="sectiontitle">Setting a Default Storage Class</h4><p id="cce_bestpractice_00281_0__p163571329132111">You can specify a storage class as the default class. In this way, if you do not specify <strong id="cce_bestpractice_00281_0__b133883591469">storageClassName</strong> when creating a PVC, the PVC is created using the default storage class.</p>
+<p id="cce_bestpractice_00281_0__p1435710291217">For example, to specify <strong id="cce_bestpractice_00281_0__b1964515812715">csi-disk-ssd</strong> as the default storage class, edit your YAML file as follows:</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen5357429172112">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-ssd
+  annotations:
+    storageclass.kubernetes.io/is-default-class: "true"   # Specifies the default storage class in a cluster. A cluster can have only one default storage class.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SSD
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true</pre>
+<p id="cce_bestpractice_00281_0__p1135711298213">Delete the created csi-disk-ssd disk, run the <strong id="cce_bestpractice_00281_0__b152561717817">kubectl create</strong> command to create a csi-disk-ssd disk again, and then query the storage class. The following information is displayed.</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen135872982120"># kubectl delete sc csi-disk-ssd
+storageclass.storage.k8s.io "csi-disk-ssd" deleted
+# kubectl create -f ssd.yaml
+storageclass.storage.k8s.io/csi-disk-ssd created
+# kubectl get sc
+NAME                     PROVISIONER                     AGE
+csi-disk                 everest-csi-provisioner         17d
+csi-disk-sas             everest-csi-provisioner         114m
+csi-disk-ssd (default)   everest-csi-provisioner         9s
+csi-disk-topology        everest-csi-provisioner         17d
+csi-nas                  everest-csi-provisioner         17d
+csi-obs                  everest-csi-provisioner         17d
+csi-sfsturbo             everest-csi-provisioner         17d</pre>
+</div>
+<div class="section" id="cce_bestpractice_00281_0__section113669814307"><h4 class="sectiontitle">Verification</h4><ul id="cce_bestpractice_00281_0__ul326513332433"><li id="cce_bestpractice_00281_0__li1426593312439">Use <strong id="cce_bestpractice_00281_0__b72318715919">csi-disk-sas</strong> to create a PVC.<pre class="screen" id="cce_bestpractice_00281_0__screen164121655153014">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  sas-disk
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: csi-disk-sas</pre>
+<p id="cce_bestpractice_00281_0__p1331523183215">Create a storage class and view its details. As shown below, the object can be created and the value of <strong id="cce_bestpractice_00281_0__b2841103141010">STORAGECLASS</strong> is <strong id="cce_bestpractice_00281_0__b1290115143103">csi-disk-sas</strong>.</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen3819181515400"># kubectl create -f sas-disk.yaml 
+persistentvolumeclaim/sas-disk created
+# kubectl get pvc
+NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
+sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   24s
+# kubectl get pv
+NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
+pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            30s</pre>
+<p id="cce_bestpractice_00281_0__p296654417436">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is high I/O.</p>
+<p id="cce_bestpractice_00281_0__p1365215405213"></p>
+</li><li id="cce_bestpractice_00281_0__li16722125154315">If <strong id="cce_bestpractice_00281_0__b53910164176">storageClassName</strong> is not specified, the default configuration is used, as shown below.<pre class="screen" id="cce_bestpractice_00281_0__screen623034510524">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  ssd-disk
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi</pre>
+<p id="cce_bestpractice_00281_0__p14101131875619">Create and view the storage resource. You can see that the storage class of PVC ssd-disk is csi-disk-ssd, indicating that csi-disk-ssd is used by default.</p>
+<pre class="screen" id="cce_bestpractice_00281_0__screen133543256569"># kubectl create -f ssd-disk.yaml 
+persistentvolumeclaim/ssd-disk created
+# kubectl get pvc
+NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
+sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   16m
+ssd-disk   Bound    pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            csi-disk-ssd   10s
+# kubectl get pv
+NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
+pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            Delete           Bound       default/ssd-disk          csi-disk-ssd            15s
+pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            17m</pre>
+<p id="cce_bestpractice_00281_0__p14639104411583">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is ultra-high I/O.</p>
+<p id="cce_bestpractice_00281_0__p76651917155918"></p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00282.html b/docs/cce/umn/cce_bestpractice_00282.html
new file mode 100644
index 00000000..77c9e5fc
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00282.html
@@ -0,0 +1,227 @@
+<a name="cce_bestpractice_00282"></a><a name="cce_bestpractice_00282"></a>
+
+<h1 class="topictitle1">Using HPA and CA for Auto Scaling of Workloads and Nodes</h1>
+<div id="body0000001148755333"><div class="section" id="cce_bestpractice_00282__section124810133244"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_00282__p20785039121718">The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.</p>
+<p id="cce_bestpractice_00282__p10278148141815">In CCE, the resources that can be used by containers are fixed during application deployment. Therefore, in auto scaling, pods are scaled first. The node resource usage increases only after the number of pods increases. Then, nodes can be scaled based on the node resource usage. How to configure auto scaling in CCE?</p>
+</div>
+<div class="section" id="cce_bestpractice_00282__section751193618161"><h4 class="sectiontitle">Solution</h4><p id="cce_bestpractice_00282__p54049588619">Two major auto scaling policies are HPA (Horizontal Pod Autoscaling) and CA (Cluster AutoScaling). HPA is for workload auto scaling and CA is for node auto scaling.</p>
+<p id="cce_bestpractice_00282__p2041919560611">HPA and CA work with each other. HPA requires sufficient cluster resources for successful scaling. When the cluster resources are insufficient, CA is needed to add nodes. If HPA reduces workloads, the cluster will have a large number of idle resources. In this case, CA needs to release nodes to avoid resource waste.</p>
+<div class="p" id="cce_bestpractice_00282__p11357173063211">As shown in <a href="#cce_bestpractice_00282__fig6540132372015">Figure 1</a>, HPA performs scale-out based on the monitoring metrics. When cluster resources are insufficient, newly created pods are in Pending state. CA then checks these pending pods and selects the most appropriate node pool based on the configured scaling policy to scale out the node pool. <div class="fignone" id="cce_bestpractice_00282__fig6540132372015"><a name="cce_bestpractice_00282__fig6540132372015"></a><a name="fig6540132372015"></a><span class="figcap"><b>Figure 1 </b>HPA and CA working flows</span><br><span><img id="cce_bestpractice_00282__image1927651124120" src="en-us_image_0000001290111529.png"></span></div>
+</div>
+<p id="cce_bestpractice_00282__p1825146105817">Using HPA and CA can easily implement auto scaling in most scenarios. In addition, the scaling process of nodes and pods can be easily observed.</p>
+<p id="cce_bestpractice_00282__p489214412525">This section uses an example to describe the auto scaling process using HPA and CA policies together.</p>
+</div>
+<div class="section" id="cce_bestpractice_00282__section11665144319113"><h4 class="sectiontitle">Preparations</h4><ol id="cce_bestpractice_00282__ol4717113613587"><li id="cce_bestpractice_00282__li1271793612587"><span>Create a cluster with one node. The node should have 2 cores of CPU and 4 GB of memory, or a higher specification, as well as an EIP to allow external access. If no EIP is bound to the node during node creation, you can manually bind one on the ECS console after creating the node.</span><p><p id="cce_bestpractice_00282__p05796382598"></p>
+</p></li><li id="cce_bestpractice_00282__li114615016594"><span>Install add-ons for the cluster.</span><p><ul id="cce_bestpractice_00282__ul16149150145914"><li id="cce_bestpractice_00282__li514919011592">autoscaler: node scaling add-on</li><li id="cce_bestpractice_00282__li111491011596">metrics-server: an aggregator of resource usage data in a Kubernetes cluster. It can collect measurement data of major Kubernetes resources, such as pods, nodes, containers, and Services.</li></ul>
+</p></li><li id="cce_bestpractice_00282__li10214361584"><span>Log in to the cluster node and run a computing-intensive application. When a user sends a request, the result needs to be calculated before being returned to the user.</span><p><ol type="a" id="cce_bestpractice_00282__ol1256758388"><li id="cce_bestpractice_00282__li1017012469216">Create a PHP file named <strong id="cce_bestpractice_00282__b1632345916313">index.php</strong> to calculate the square root of the request for 1,000,000 times before returning <strong id="cce_bestpractice_00282__b8808419131013">OK!</strong>.<pre class="screen" id="cce_bestpractice_00282__screen1618042614613">vi index.php</pre>
+<div class="p" id="cce_bestpractice_00282__p8834142320617">Example file content:<pre class="screen" id="cce_bestpractice_00282__screen1876722369">&lt;?php
+  $x = 0.0001;
+  for ($i = 0; $i &lt;= 1000000; $i++) {
+    $x += sqrt($x);
+  }
+  echo "OK!";
+?&gt;</pre>
+</div>
+</li><li id="cce_bestpractice_00282__li3749191116815">Compile a Dockerfile to build an image.<pre class="screen" id="cce_bestpractice_00282__screen145831928985">vi Dockerfile</pre>
+<div class="p" id="cce_bestpractice_00282__p1884892212816">Example Dockerfile:<pre class="screen" id="cce_bestpractice_00282__screen124623137819">FROM php:5-apache
+COPY index.php /var/www/html/index.php
+RUN chmod a+rx index.php</pre>
+</div>
+</li><li id="cce_bestpractice_00282__li41280467810">Run the following command to build an image named <strong id="cce_bestpractice_00282__b1440401514159">hpa-example</strong> with the tag <strong id="cce_bestpractice_00282__b590893213151">latest</strong>.<pre class="screen" id="cce_bestpractice_00282__screen16152457980">docker build -t hpa-example:latest .</pre>
+</li><li id="cce_bestpractice_00282__li108181514125"><a name="cce_bestpractice_00282__li108181514125"></a><a name="li108181514125"></a>(Optional) Log in to the SWR console, choose <strong id="cce_bestpractice_00282__b14859418103912">Organization Management</strong> in the navigation pane, and click <strong id="cce_bestpractice_00282__b1645414239391">Create Organization</strong> in the upper right corner to create an organization.<p id="cce_bestpractice_00282__p1343919314125">Skip this step if you already have an organization.</p>
+</li><li id="cce_bestpractice_00282__li187221141362"><a name="cce_bestpractice_00282__li187221141362"></a><a name="li187221141362"></a>In the navigation pane, choose <strong id="cce_bestpractice_00282__b7491242144012">My Images</strong> and then click <strong id="cce_bestpractice_00282__b1013965224014">Upload Through Client</strong>. On the page displayed, click <strong id="cce_bestpractice_00282__b129802010104113">Generate a temporary login command</strong> and click <span><img id="cce_bestpractice_00282__image18751161714" src="en-us_image_0000001360670117.png"></span> to copy the command.</li><li id="cce_bestpractice_00282__li4452185981216">Run the login command copied in the previous step on the cluster node. If the login is successful, the message "Login Succeeded" is displayed.</li><li id="cce_bestpractice_00282__li195318131144">Tag the hpa-example image.<p id="cce_bestpractice_00282__p11924913171417"><a name="cce_bestpractice_00282__li195318131144"></a><a name="li195318131144"></a><strong id="cce_bestpractice_00282__b41232567411">docker tag </strong><strong id="cce_bestpractice_00282__b1112316568416"><em id="cce_bestpractice_00282__i1494375004119">[Image name 1</em></strong><strong id="cce_bestpractice_00282__b10123556154113">:</strong><strong id="cce_bestpractice_00282__b1912345644114"><em id="cce_bestpractice_00282__i994419503416">Tag 1]</em></strong><strong id="cce_bestpractice_00282__b1512335684112"> </strong><strong id="cce_bestpractice_00282__b161231556164113"><em id="cce_bestpractice_00282__i1294445014114">[Image repository address]</em></strong><strong id="cce_bestpractice_00282__b1123105615413">/</strong><strong id="cce_bestpractice_00282__b181236568414"><em id="cce_bestpractice_00282__i294405074115">[Organization name]</em></strong><strong id="cce_bestpractice_00282__b1123756204114">/</strong><strong id="cce_bestpractice_00282__b312315614411"><em id="cce_bestpractice_00282__i1944195015417">[Image name 2</em></strong><strong id="cce_bestpractice_00282__b19123115614120">:</strong><strong id="cce_bestpractice_00282__b412375604119"><em id="cce_bestpractice_00282__i10944850144119">Tag 2]</em></strong></p>
+<ul id="cce_bestpractice_00282__ul763321831715"><li id="cce_bestpractice_00282__li460317260171"><strong id="cce_bestpractice_00282__b1150611814214">[Image name 1:Tag 1]</strong>: name and tag of the local image to be uploaded.</li><li id="cce_bestpractice_00282__li1060312611712"><strong id="cce_bestpractice_00282__b19464224104213">[Image repository address]</strong>: The domain name at the end of the login command in  <a href="#cce_bestpractice_00282__li187221141362">5</a> is the image repository address, which can be obtained on the SWR console.</li><li id="cce_bestpractice_00282__li14603122611175"><strong id="cce_bestpractice_00282__b953652265613">[Organization name]</strong>: name of the organization created in <a href="#cce_bestpractice_00282__li108181514125">4</a>.</li><li id="cce_bestpractice_00282__li14603112631714"><strong id="cce_bestpractice_00282__b1458315379569">[Image name 2:Tag 2]</strong>: desired image name and tag to be displayed on the SWR console.</li></ul>
+<p id="cce_bestpractice_00282__p4355540101419">Example:</p>
+<p id="cce_bestpractice_00282__p027419151243"><strong id="cce_bestpractice_00282__b17681119162411">docker tag hpa-example:latest swr.eu-de.otc.t-systems.com/group/hpa-example:latest</strong></p>
+</li><li id="cce_bestpractice_00282__li7803141811520">Push the image to the image repository.<p id="cce_bestpractice_00282__p104601826131519"><a name="cce_bestpractice_00282__li7803141811520"></a><a name="li7803141811520"></a><strong id="cce_bestpractice_00282__b39501017115915">docker push</strong> <strong id="cce_bestpractice_00282__b11950181735915">[Image repository address]/[Organization name]/[Image name 2:Tag 2]</strong></p>
+<p id="cce_bestpractice_00282__p134606261159">Example:</p>
+<p id="cce_bestpractice_00282__p164472310305"><strong id="cce_bestpractice_00282__b044823193013">docker push swr.eu-de.otc.t-systems.com/group/hpa-example:latest</strong></p>
+<p id="cce_bestpractice_00282__en-us_topic_0112596104_en-us_topic_0075378957_p4521456842">The following information will be returned upon a successful push:</p>
+<pre class="screen" id="cce_bestpractice_00282__en-us_topic_0112596104_en-us_topic_0075378957_screen3521456448">6d6b9812c8ae: Pushed 
+... 
+fe4c16cbf7a4: Pushed 
+latest: digest: sha256:eb7e3bbd*** size: **</pre>
+<p id="cce_bestpractice_00282__en-us_topic_0112596104_p17380144320510">To view the pushed image, go to the SWR console and refresh the <strong id="cce_bestpractice_00282__b34154514012">My Images</strong> page.</p>
+</li></ol>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00282__section1155620269250"><h4 class="sectiontitle">Creating a Node Pool and a Node Scaling Policy</h4><ol id="cce_bestpractice_00282__ol7268320105811"><li id="cce_bestpractice_00282__li3268520145818"><span>Log in to the CCE console, access the created cluster, click <strong id="cce_bestpractice_00282__b1873216540018">Nodes</strong> on the left, click the <strong id="cce_bestpractice_00282__b486901319">Node Pools</strong> tab, and click <strong id="cce_bestpractice_00282__b81025520110">Create Node Pool</strong> in the upper right corner.</span></li><li id="cce_bestpractice_00282__li1493164713208"><span>Set node pool parameters, add a node with 2 vCPUs and 4 GB memory, and enable auto scaling.</span><p><ul id="cce_bestpractice_00282__ul128551015182717"><li id="cce_bestpractice_00282__li6855015102710"><strong id="cce_bestpractice_00282__b2533140411">Nodes</strong>: Set it to <strong id="cce_bestpractice_00282__b20561447614">1</strong>, indicating that one node is created by default when a node pool is created.</li><li id="cce_bestpractice_00282__li885531512279"><strong id="cce_bestpractice_00282__b18918105464712">Auto Scaling</strong>: Enable the option, meaning that nodes will be automatically created or deleted in the node pool based on the cluster loads.</li><li id="cce_bestpractice_00282__li20855141592711"><strong id="cce_bestpractice_00282__b3325520513">Max. Nodes</strong>: Set it to <strong id="cce_bestpractice_00282__b122204122517">5</strong>, indicating the maximum number of nodes in a node pool.</li><li id="cce_bestpractice_00282__li12345126182717"><strong id="cce_bestpractice_00282__b48991919516">Specifications</strong>: 2 vCPUs | 4 GiB</li></ul>
+<p id="cce_bestpractice_00282__p1285517159277">Retain the defaults for other parameters. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0012.html" target="_blank" rel="noopener noreferrer">Creating a Node Pool</a>.</p>
+<p id="cce_bestpractice_00282__p138552015132714"></p>
+</p></li><li id="cce_bestpractice_00282__li1527517223212"><span>Click <strong id="cce_bestpractice_00282__b1649233712">Add-ons</strong> on the left of the cluster console, click <strong id="cce_bestpractice_00282__b163304361179">Edit</strong> under the autoscaler add-on, modify the add-on configuration, enable <strong id="cce_bestpractice_00282__b1581011521493">Auto node scale-in</strong>, and configure scale-in parameters. For example, trigger scale-in when the node resource utilization is less than 50%.</span><p><p id="cce_bestpractice_00282__p10165154173117"></p>
+<p id="cce_bestpractice_00282__p888735143116"><span><img id="cce_bestpractice_00282__image867395994818" src="en-us_image_0000001533181077.png"></span></p>
+<p id="cce_bestpractice_00282__p5804654163410">After the preceding configurations, scale-out is performed based on the pending status of the pod and scale-in is triggered when the node resource utilization decreases.</p>
+</p></li><li id="cce_bestpractice_00282__li1126822017585"><span>Click <strong id="cce_bestpractice_00282__b1168112406129">Node Scaling</strong> on the left of the cluster console and click <strong id="cce_bestpractice_00282__b10655553121218">Create Node Scaling Policy</strong> in the upper right corner. Node scaling policies added here trigger scale-out based on the CPU/memory allocation rate or periodically.</span><p><p id="cce_bestpractice_00282__p1695512314355">As shown in the following figure, when the cluster CPU allocation rate is greater than 70%, one node will be added. A node scaling policy needs to be associated with a node pool. Multiple node pools can be associated. When you need to scale nodes, node with proper specifications will be added or reduced from the node pool based on the minimum waste principle. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0209.html" target="_blank" rel="noopener noreferrer">Creating a Node Scaling Policy</a>.</p>
+<p id="cce_bestpractice_00282__p1060995123612"></p>
+<p id="cce_bestpractice_00282__p1184913610364"><span><img id="cce_bestpractice_00282__image862291620537" src="en-us_image_0000001482541956.png"></span></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00282__section57571151111612"><h4 class="sectiontitle">Creating a Workload</h4><p id="cce_bestpractice_00282__p147957471717">Use the hpa-example image to create a Deployment with one replica. The image path is related to the organization uploaded to the SWR repository and needs to be replaced with the actual value.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen17421916193415">kind: Deployment
+apiVersion: apps/v1
+metadata:
+  name: hpa-example
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: hpa-example
+  template:
+    metadata:
+      labels:
+        app: hpa-example
+    spec:
+      containers:
+      - name: container-1
+        image: 'hpa-example:latest '  # Replace it with the address of the image you uploaded to SWR.
+        resources:
+          limits:                  # The value of <strong id="cce_bestpractice_00282__b2419135411112">limits</strong> must be the same as that of <strong id="cce_bestpractice_00282__b19567185971119">requests</strong> to prevent flapping during scaling.
+            cpu: 500m
+            memory: 200Mi
+          requests:
+            cpu: 500m
+            memory: 200Mi
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_bestpractice_00282__p1810214323711">Then, create a NodePort Service for the workload so that the workload can be accessed from external networks.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen12925129113814">kind: Service
+apiVersion: v1
+metadata:
+  name: hpa-example
+spec:
+  ports:
+    - name: cce-service-0
+      protocol: TCP
+      port: 80
+      targetPort: 80
+      nodePort: 31144
+  selector:
+    app: hpa-example
+  type: NodePort</pre>
+</div>
+<div class="section" id="cce_bestpractice_00282__section1377561942518"><h4 class="sectiontitle">Creating an HPA Policy</h4><p id="cce_bestpractice_00282__p187951211154918">Create an HPA policy. As shown below, the policy is associated with the hpa-example workload, and the target CPU usage is 50%.</p>
+<p id="cce_bestpractice_00282__p1192952410259">There are two other annotations. One annotation defines the CPU thresholds, indicating that scaling is not performed when the CPU usage is between 30% and 70% to prevent impact caused by slight fluctuation. The other is the scaling time window, indicating that after the policy is successfully executed, a scaling operation will not be triggered again in this cooling interval to prevent impact caused by short-term fluctuation.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen2568105812401">apiVersion: autoscaling/v2
+kind: HorizontalPodAutoscaler
+metadata:
+  name: hpa-policy
+  annotations:
+    extendedhpa.metrics: '[{"type":"Resource","name":"cpu","targetType":"Utilization","targetRange":{"low":"30","high":"70"}}]'
+    extendedhpa.option: '{"downscaleWindow":"5m","upscaleWindow":"3m"}'
+spec:
+  scaleTargetRef:
+    kind: Deployment
+    name: hpa-example
+    apiVersion: apps/v1
+  minReplicas: 1
+  maxReplicas: 100
+  metrics:
+    - type: Resource
+      resource:
+        name: cpu
+        targetAverageUtilization: 50</pre>
+<p id="cce_bestpractice_00282__p196461938154111">Set the parameters as follows if you are using the console.</p>
+<p id="cce_bestpractice_00282__p536510019427"></p>
+<p id="cce_bestpractice_00282__p198996511846"><span><img id="cce_bestpractice_00282__image18106194295711" src="en-us_image_0000001482701968.png"></span></p>
+</div>
+<div class="section" id="cce_bestpractice_00282__section16503511256"><h4 class="sectiontitle">Observing the Auto Scaling Process</h4><ol id="cce_bestpractice_00282__ol17709912133114"><li id="cce_bestpractice_00282__li37091512193117"><span>Check the cluster node status. In the following example, there are two nodes.</span><p><pre class="screen" id="cce_bestpractice_00282__screen179458561066"># kubectl get node
+NAME            STATUS   ROLES    AGE     VERSION
+192.168.0.183   Ready    &lt;none&gt;   2m20s   v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.26    Ready    &lt;none&gt;   55m     v1.17.9-r0-CCE21.1.1.3.B001-17.36.8</pre>
+<p id="cce_bestpractice_00282__p12280161816719">Check the HPA policy. The CPU usage of the target workload is 0%.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen741314720715"># kubectl get hpa hpa-policy
+NAME         REFERENCE                TARGETS   MINPODS   MAXPODS   REPLICAS   AGE
+hpa-policy   Deployment/hpa-example   0%/50%    1         100       1          4m</pre>
+</p></li><li id="cce_bestpractice_00282__li67091124319"><span>Run the following command to access the workload. In the following command, {ip:port} indicates the access address of the workload, which can be queried on the workload details page.</span><p><p id="cce_bestpractice_00282__p1894161101019"><strong id="cce_bestpractice_00282__b984204041115">while true;do wget -q -O- http://</strong><em id="cce_bestpractice_00282__i1584264019117">{ip:port}</em><strong id="cce_bestpractice_00282__b5842194061120">; done</strong></p>
+<div class="note" id="cce_bestpractice_00282__note1287865920552"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00282__p15878105910555">If no EIP is displayed, the cluster node has not been assigned any EIP. You need to create one, bind it to the node, and synchronize node data. .</p>
+</div></div>
+<p id="cce_bestpractice_00282__p11399441161314">Observe the scaling process of the workload.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen1286116211417"># kubectl get hpa hpa-policy --watch
+NAME         REFERENCE                TARGETS    MINPODS   MAXPODS   REPLICAS   AGE
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       1          4m
+hpa-policy   Deployment/hpa-example   190%/50%   1         100       1          4m23s
+hpa-policy   Deployment/hpa-example   190%/50%   1         100       4          4m31s
+hpa-policy   Deployment/hpa-example   200%/50%   1         100       4          5m16s
+hpa-policy   Deployment/hpa-example   200%/50%   1         100       4          6m16s
+hpa-policy   Deployment/hpa-example   85%/50%    1         100       4          7m16s
+hpa-policy   Deployment/hpa-example   81%/50%    1         100       4          8m16s
+hpa-policy   Deployment/hpa-example   81%/50%    1         100       7          8m31s
+hpa-policy   Deployment/hpa-example   57%/50%    1         100       7          9m16s
+hpa-policy   Deployment/hpa-example   51%/50%    1         100       7          10m
+hpa-policy   Deployment/hpa-example   58%/50%    1         100       7          11m</pre>
+<p id="cce_bestpractice_00282__p5983156132017">You can see that the CPU usage of the workload is 190% at 4m23s, which exceeds the target value. In this case, scaling is triggered to expand the workload to four replicas/pods. In the subsequent several minutes, the CPU usage does not decrease until 7m16s. This is because the new pods may not be successfully created. The possible cause is that resources are insufficient and the pods are in Pending state. During this period, nodes are added.</p>
+<p id="cce_bestpractice_00282__p47248443237">At 7m16s, the CPU usage decreases, indicating that the pods are successfully created and start to bear traffic. The CPU usage decreases to 81% at 8m, still greater than the target value (50%) and the high threshold (70%). Therefore, 7 pods are added at 9m16s, and the CPU usage decreases to 51%, which is within the range of 30% to 70%. From then on, the number of pods remains 7.</p>
+<p id="cce_bestpractice_00282__p274817541218">In the following output, you can see the workload scaling process and the time when the HPA policy takes effect.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen8255172931211"># kubectl describe deploy hpa-example
+...
+Events:
+  Type    Reason             Age    From                   Message
+  ----    ------             ----   ----                   -------
+  Normal  ScalingReplicaSet  25m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 1
+  Normal  ScalingReplicaSet  20m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 4
+  Normal  ScalingReplicaSet  16m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 7
+# kubectl describe hpa hpa-policy
+...
+Events:
+  Type    Reason             Age    From                       Message
+  ----    ------             ----   ----                       -------
+  Normal  SuccessfulRescale  20m    horizontal-pod-autoscaler  New size: 4; reason: cpu resource utilization (percentage of request) above target
+  Normal  SuccessfulRescale  16m    horizontal-pod-autoscaler  New size: 7; reason: cpu resource utilization (percentage of request) above target</pre>
+<p id="cce_bestpractice_00282__p5151426275">Check the number of nodes. The following output shows that two nodes are added.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen1840719131288"># kubectl get node
+NAME            STATUS   ROLES    AGE     VERSION
+192.168.0.120   Ready    &lt;none&gt;   3m5s    v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.136   Ready    &lt;none&gt;   6m58s   v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.183   Ready    &lt;none&gt;   18m     v1.17.9-r0-CCE21.1.1.3.B001-17.36.8
+192.168.0.26    Ready    &lt;none&gt;   71m     v1.17.9-r0-CCE21.1.1.3.B001-17.36.8</pre>
+<p id="cce_bestpractice_00282__p11952164719209">You can also view the scaling history on the console. For example, the CA policy is executed once when the CPU allocation rate in the cluster is greater than 70%, and the number of nodes in the node pool is increased from 2 to 3. The new node is automatically added by autoscaler based on the pending state of pods in the initial phase of HPA.</p>
+<p id="cce_bestpractice_00282__p1443395018309">The node scaling process is as follows:</p>
+<ol type="a" id="cce_bestpractice_00282__ol3874121133114"><li id="cce_bestpractice_00282__li98740118312">After the number of pods changes to 4, the pods are in Pending state due to insufficient resources. As a result, the default scale-out policy of the autoscaler add-on is triggered, and the number of nodes is increased by one.</li><li id="cce_bestpractice_00282__li17073754110">The second node scale-out is triggered because the CPU allocation rate in the cluster is greater than 70%. As a result, the number of nodes is increased by one, which is recorded in the scaling history on the console. Scaling based on the allocation rate ensures that the cluster has sufficient resources.</li></ol>
+</p></li><li id="cce_bestpractice_00282__li20709712153119"><span>Stop accessing the workload and check the number of pods.</span><p><pre class="screen" id="cce_bestpractice_00282__screen92632543319"># kubectl get hpa hpa-policy --watch
+NAME         REFERENCE                TARGETS    MINPODS   MAXPODS   REPLICAS   AGE
+hpa-policy   Deployment/hpa-example   50%/50%    1         100       7          12m
+hpa-policy   Deployment/hpa-example   21%/50%    1         100       7          13m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       7          14m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       7          18m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          18m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          19m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          23m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       3          23m
+hpa-policy   Deployment/hpa-example   0%/50%     1         100       1          23m</pre>
+<p id="cce_bestpractice_00282__p191531235143215">You can see that the CPU usage is 21% at 13m. The number of pods is reduced to 3 at 18m, and then reduced to 1 at 23m.</p>
+<p id="cce_bestpractice_00282__p469963519185">In the following output, you can see the workload scaling process and the time when the HPA policy takes effect.</p>
+<pre class="screen" id="cce_bestpractice_00282__screen5858175531817"># kubectl describe deploy hpa-example
+...
+Events:
+  Type    Reason             Age    From                   Message
+  ----    ------             ----   ----                   -------
+  Normal  ScalingReplicaSet  25m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 1
+  Normal  ScalingReplicaSet  20m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 4
+  Normal  ScalingReplicaSet  16m    deployment-controller  Scaled up replica set hpa-example-79dd795485 to 7
+  Normal  ScalingReplicaSet  6m28s  deployment-controller  Scaled down replica set hpa-example-79dd795485 to 3
+  Normal  ScalingReplicaSet  72s    deployment-controller  Scaled down replica set hpa-example-79dd795485 to 1
+# kubectl describe hpa hpa-policy
+...
+Events:
+  Type    Reason             Age    From                       Message
+  ----    ------             ----   ----                       -------
+  Normal  SuccessfulRescale  20m    horizontal-pod-autoscaler  New size: 4; reason: cpu resource utilization (percentage of request) above target
+  Normal  SuccessfulRescale  16m    horizontal-pod-autoscaler  New size: 7; reason: cpu resource utilization (percentage of request) above target
+  Normal  SuccessfulRescale  6m45s  horizontal-pod-autoscaler  New size: 3; reason: All metrics below target
+  Normal  SuccessfulRescale  90s    horizontal-pod-autoscaler  New size: 1; reason: All metrics below target</pre>
+<p id="cce_bestpractice_00282__p101205281913">You can also view the HPA policy execution history on the console. Wait until the one node is reduced.</p>
+<p id="cce_bestpractice_00282__p1859372832014">The reason why the other two nodes in the node pool are not reduced is that they both have pods in the kube-system namespace (and these pods are not created by DaemonSets). For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0296.html" target="_blank" rel="noopener noreferrer">Node Scaling Mechanisms</a>.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00282__section1989492202616"><h4 class="sectiontitle">Summary</h4><p id="cce_bestpractice_00282__p17436163516389">Using HPA and CA can easily implement auto scaling in most scenarios. In addition, the scaling process of nodes and pods can be easily observed.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0090.html">Auto Scaling</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00284.html b/docs/cce/umn/cce_bestpractice_00284.html
new file mode 100644
index 00000000..272c654d
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00284.html
@@ -0,0 +1,247 @@
+<a name="cce_bestpractice_00284"></a><a name="cce_bestpractice_00284"></a>
+
+<h1 class="topictitle1">Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology)</h1>
+<div id="body0000001160642383"><div class="section" id="cce_bestpractice_00284__section1841164612415"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_00284__p9749252131817">EVS disks cannot be attached across AZs. For example, EVS disks in AZ 1 cannot be attached to nodes in AZ 2.</p>
+<p id="cce_bestpractice_00284__p0734625164117">If the storage class csi-disk is used for StatefulSets, when a StatefulSet is scheduled, a PVC and a PV are created immediately (an EVS disk is created along with the PV), and then the PVC is bound to the PV.</p>
+<p id="cce_bestpractice_00284__p20991145374515">However, when the cluster nodes are located in multiple AZs, the EVS disk created by the PVC and the node to which the pods are scheduled may be in different AZs. As a result, the pods fail to be scheduled.</p>
+<p id="cce_bestpractice_00284__p062911762215"><span><img id="cce_bestpractice_00284__image7148966818" src="en-us_image_0000001113962636.png"></span></p>
+</div>
+<div class="section" id="cce_bestpractice_00284__section17361652174112"><h4 class="sectiontitle">Solution</h4><p id="cce_bestpractice_00284__p14126016124620">CCE provides a storage class named <strong id="cce_bestpractice_00284__b173961137143017">csi-disk-topology</strong>. When you use this storage class to create a PVC, no PV will be created in pace with the PVC. Instead, the PV is created in the AZ of the node where the pod will be scheduled. An EVS disk is then created in the same AZ to ensure that the EVS disk can be attached and the pod can be successfully scheduled.</p>
+<p id="cce_bestpractice_00284__p128381154104111">csi-disk-topology postpones the binding between a PVC and a PV for a while.</p>
+<p id="cce_bestpractice_00284__p244912219914"><span><img id="cce_bestpractice_00284__image1822719574375" src="en-us_image_0000001160642447.png"></span></p>
+</div>
+<div class="section" id="cce_bestpractice_00284__section7593221101313"><h4 class="sectiontitle">Failed Pod Scheduling Due to csi-disk Used in Cross-AZ Node Deployment</h4><p id="cce_bestpractice_00284__p124211302555">Create a cluster with three nodes in different AZs.</p>
+<p id="cce_bestpractice_00284__p19414205913232">Use the csi-disk storage class to create a StatefulSet and check whether the workload is successfully created.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen5696185033220">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: nginx
+spec:
+  serviceName: nginx                             # Name of the headless Service
+  replicas: 4
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+        - name: container-0
+          image: nginx:alpine
+          resources:
+            limits:
+              cpu: 600m
+              memory: 200Mi
+            requests:
+              cpu: 600m
+              memory: 200Mi
+          volumeMounts:                           # Storage mounted to the pod
+          - name:  data
+            mountPath: /usr/share/nginx/html      # Mount the storage to <strong id="cce_bestpractice_00284__b19209582492">/usr/share/nginx/html</strong>.
+      imagePullSecrets:
+        - name: default-secret
+  volumeClaimTemplates:
+  - metadata:
+      name: data
+      annotations:
+        everest.io/disk-volume-type: SAS
+    spec:
+      accessModes:
+      - ReadWriteOnce
+      resources:
+        requests:
+          storage: 1Gi
+      storageClassName: <strong id="cce_bestpractice_00284__b3642191283317">csi-disk</strong></pre>
+<p id="cce_bestpractice_00284__p161987541515">The StatefulSet uses the following headless Service.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen1727513871513">apiVersion: v1
+kind: Service       # Object type (Service)
+metadata:
+  name: nginx
+  labels:
+    app: nginx
+spec:
+  ports:
+    - name: nginx     # Name of the port for communication between pods
+      port: 80        # Port number for communication between pods
+  selector:
+    app: nginx        # Select the pod whose label is app:nginx.
+  clusterIP: None     # Set this parameter to <strong id="cce_bestpractice_00284__b277710103520">None</strong>, indicating the headless Service.</pre>
+<p id="cce_bestpractice_00284__p20651155932317">After the creation, check the PVC and pod status. In the following output, the PVC has been created and bound successfully, and a pod is in the Pending state.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen141431819341"># kubectl get pvc -owide
+NAME           STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE   VOLUMEMODE
+data-nginx-0   Bound    pvc-04e25985-fc93-4254-92a1-1085ce19d31e   1Gi        RWO            csi-disk       64s   Filesystem
+data-nginx-1   Bound    pvc-0ae6336b-a2ea-4ddc-8f63-cfc5f9efe189   1Gi        RWO            csi-disk       47s   Filesystem
+data-nginx-2   Bound    pvc-aa46f452-cc5b-4dbd-825a-da68c858720d   1Gi        RWO            csi-disk       30s   Filesystem
+data-nginx-3   <strong id="cce_bestpractice_00284__b18916914151615">Bound</strong>    pvc-3d60e532-ff31-42df-9e78-015cacb18a0b   1Gi        RWO            csi-disk       14s   Filesystem
+
+# kubectl get pod -owide
+NAME      READY   STATUS    RESTARTS   AGE     IP             NODE            NOMINATED NODE   READINESS GATES
+nginx-0   1/1     Running   0          2m25s   172.16.0.12    192.168.0.121   &lt;none&gt;           &lt;none&gt;
+nginx-1   1/1     Running   0          2m8s    172.16.0.136   192.168.0.211   &lt;none&gt;           &lt;none&gt;
+nginx-2   1/1     Running   0          111s    172.16.1.7     192.168.0.240   &lt;none&gt;           &lt;none&gt;
+nginx-3   0/1     <strong id="cce_bestpractice_00284__b19994114783419">Pending   </strong>0          95s     &lt;none&gt;         &lt;none&gt;          &lt;none&gt;           &lt;none&gt;</pre>
+<p id="cce_bestpractice_00284__p713183013342">The event information of the pod shows that the scheduling fails due to no available node. Two nodes (in AZ 1 and AZ 2) do not have sufficient CPUs, and the created EVS disk is not in the AZ where the third node (in AZ 3) is located. As a result, the pod cannot use the EVS disk.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen538991113362"># kubectl describe pod nginx-3
+Name:           nginx-3
+...
+Events:
+  Type     Reason            Age   From               Message
+  ----     ------            ----  ----               -------
+  Warning  FailedScheduling  111s  default-scheduler  0/3 nodes are available: 3 pod has unbound immediate PersistentVolumeClaims.
+  Warning  FailedScheduling  111s  default-scheduler  0/3 nodes are available: 3 pod has unbound immediate PersistentVolumeClaims.
+  Warning  FailedScheduling  28s   default-scheduler  0/3 nodes are available: 1 node(s) had volume node affinity conflict, 2 Insufficient cpu.</pre>
+<p id="cce_bestpractice_00284__p4254171194110">Check the AZ where the EVS disk created from the PVC is located. It is found that data-nginx-3 is in AZ 1. In this case, the node in AZ 1 has no resources, and only the node in AZ 3 has CPU resources. As a result, the scheduling fails. Therefore, there should be a delay between creating the PVC and binding the PV.</p>
+</div>
+<div class="section" id="cce_bestpractice_00284__section13498124134220"><h4 class="sectiontitle">Storage Class for Delayed Binding</h4><p id="cce_bestpractice_00284__p7238115614217">If you check the cluster storage class, you can see that the binding mode of csi-disk-topology is <strong id="cce_bestpractice_00284__b153431355992">WaitForFirstConsumer</strong>, indicating that a PV is created and bound when a pod uses the PVC. That is, the PV and the underlying storage resources are created based on the pod information.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen166855018229"># kubectl get storageclass
+NAME                PROVISIONER                     RECLAIMPOLICY   VOLUMEBINDINGMODE      ALLOWVOLUMEEXPANSION   AGE
+csi-disk            everest-csi-provisioner         Delete          <strong id="cce_bestpractice_00284__b7920857163114">Immediate</strong>              true                   156m
+csi-disk-topology   everest-csi-provisioner         Delete          <strong id="cce_bestpractice_00284__b1193125710223">WaitForFirstConsumer</strong>   true                   156m
+csi-nas             everest-csi-provisioner         Delete          Immediate              true                   156m
+csi-obs             everest-csi-provisioner         Delete          Immediate              false                  156m</pre>
+<p id="cce_bestpractice_00284__p1577885119263"><strong id="cce_bestpractice_00284__b18102183016162">VOLUMEBINDINGMODE</strong> is displayed if your cluster is v1.19. It is not displayed in clusters of v1.17 or v1.15.</p>
+<p id="cce_bestpractice_00284__p6407913122917">You can also view the binding mode in the csi-disk-topology details.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen22780385295"># kubectl describe sc csi-disk-topology
+Name:                  csi-disk-topology
+IsDefaultClass:        No
+Annotations:           &lt;none&gt;
+Provisioner:           everest-csi-provisioner
+Parameters:            csi.storage.k8s.io/csi-driver-name=disk.csi.everest.io,csi.storage.k8s.io/fstype=ext4,everest.io/disk-volume-type=SAS,everest.io/passthrough=true
+AllowVolumeExpansion:  True
+MountOptions:          &lt;none&gt;
+ReclaimPolicy:         Delete
+VolumeBindingMode:     <strong id="cce_bestpractice_00284__b88257563014">WaitForFirstConsumer</strong>
+Events:                &lt;none&gt;</pre>
+<p id="cce_bestpractice_00284__p1028724153116">Create PVCs of the csi-disk and csi-disk-topology classes. Observe the differences between these two types of PVCs.</p>
+<ul id="cce_bestpractice_00284__ul432519816331"><li id="cce_bestpractice_00284__li13325158183317">csi-disk<pre class="screen" id="cce_bestpractice_00284__screen17545834103215">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  disk
+  annotations:
+    everest.io/disk-volume-type: SAS
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: <strong id="cce_bestpractice_00284__b24251823163420">csi-disk</strong>        # StorageClass</pre>
+</li><li id="cce_bestpractice_00284__li15893842173316">csi-disk-topology<pre class="screen" id="cce_bestpractice_00284__screen719355213332">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  topology
+  annotations:
+    everest.io/disk-volume-type: SAS
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: <strong id="cce_bestpractice_00284__b14741718153414">csi-disk-topology</strong>        # StorageClass</pre>
+</li></ul>
+<p id="cce_bestpractice_00284__p1291423153416">View the PVC details. As shown below, the csi-disk PVC is in Bound state and the csi-disk-topology PVC is in Pending state.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen1557125316345"># kubectl create -f pvc1.yaml
+persistentvolumeclaim/disk created
+# kubectl create -f pvc2.yaml
+persistentvolumeclaim/topology created
+# kubectl get pvc
+NAME           STATUS    VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS        AGE
+disk           <strong id="cce_bestpractice_00284__b11288188183713">Bound</strong>     pvc-88d96508-d246-422e-91f0-8caf414001fc   10Gi       RWO            csi-disk            18s
+topology       <strong id="cce_bestpractice_00284__b74881214153717">Pending</strong>                                                                        csi-disk-topology   2s</pre>
+<p id="cce_bestpractice_00284__p272113418382">View details about the csi-disk-topology PVC. You can see that "waiting for first consumer to be created before binding" is displayed in the event, indicating that the PVC is bound after the consumer (pod) is created.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen176812261404"># kubectl describe pvc topology
+Name:          topology
+Namespace:     default
+StorageClass:  csi-disk-topology
+Status:        <strong id="cce_bestpractice_00284__b128517296419">Pending</strong>
+Volume:
+Labels:        &lt;none&gt;
+Annotations:   everest.io/disk-volume-type: SAS
+Finalizers:    [kubernetes.io/pvc-protection]
+Capacity:
+Access Modes:
+VolumeMode:    Filesystem
+Used By:       &lt;none&gt;
+Events:
+  Type    Reason                Age               From                         Message
+  ----    ------                ----              ----                         -------
+  Normal  <strong id="cce_bestpractice_00284__b1192191684113">WaitForFirstConsumer</strong>  5s (x3 over 30s)  persistentvolume-controller  <strong id="cce_bestpractice_00284__b11875185117405">waiting for first consumer to be created before binding</strong></pre>
+<p id="cce_bestpractice_00284__p1161184644211">Create a workload that uses the PVC. Set the PVC name to <strong id="cce_bestpractice_00284__b05011942217">topology</strong>.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen1630133115439">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-deployment
+spec:
+  selector:
+    matchLabels:
+      app: nginx
+  replicas: 1
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers: 
+      - image: nginx:alpine
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp                                # Mount path 
+          name: topology-example 
+      restartPolicy: Always 
+      volumes: 
+      - name: topology-example 
+        persistentVolumeClaim: 
+          claimName:  <strong id="cce_bestpractice_00284__b44331906443">topology</strong>                       # PVC name</pre>
+<p id="cce_bestpractice_00284__p8112810174418">After the PVC is created, check the PVC details. You can see that the PVC is bound successfully.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen183172785310"># kubectl describe pvc topology
+Name:          topology
+Namespace:     default
+StorageClass:  csi-disk-topology
+Status:        Bound
+....
+Used By:       nginx-deployment-fcd9fd98b-x6tbs
+Events:
+  Type    Reason                 Age                   From                                                                                                  Message
+  ----    ------                 ----                  ----                                                                                                  -------
+  Normal  WaitForFirstConsumer   84s (x26 over 7m34s)  persistentvolume-controller                                                                           waiting for first consumer to be created before binding
+  Normal  <strong id="cce_bestpractice_00284__b43252146549">Provisioning           </strong>54s                   everest-csi-provisioner_everest-csi-controller-7965dc48c4-5k799_2a6b513e-f01f-4e77-af21-6d7f8d4dbc98  External provisioner is provisioning volume for claim "default/topology"
+  Normal  <strong id="cce_bestpractice_00284__b126891619195413">ProvisioningSucceeded  </strong>52s                   everest-csi-provisioner_everest-csi-controller-7965dc48c4-5k799_2a6b513e-f01f-4e77-af21-6d7f8d4dbc98  Successfully provisioned volume pvc-9a89ea12-4708-4c71-8ec5-97981da032c9</pre>
+</div>
+<div class="section" id="cce_bestpractice_00284__section17108115194218"><h4 class="sectiontitle">Using csi-disk-topology in Cross-AZ Node Deployment</h4><p id="cce_bestpractice_00284__p8898142594416">The following uses csi-disk-topology to create a StatefulSet with the same configurations used in the preceding example.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen1479764710455">  volumeClaimTemplates:
+  - metadata:
+      name: data
+      annotations:
+        everest.io/disk-volume-type: SAS
+    spec:
+      accessModes:
+      - ReadWriteOnce
+      resources:
+        requests:
+          storage: 1Gi
+      storageClassName: <strong id="cce_bestpractice_00284__b34915488458">csi-disk-topology</strong></pre>
+<p id="cce_bestpractice_00284__p829913814485">After the creation, check the PVC and pod status. As shown in the following output, the PVC and pod can be created successfully. The nginx-3 pod is created on the node in AZ 3.</p>
+<pre class="screen" id="cce_bestpractice_00284__screen8004319485"># kubectl get pvc -owide
+NAME           STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS        AGE   VOLUMEMODE
+data-nginx-0   Bound    pvc-43802cec-cf78-4876-bcca-e041618f2470   1Gi        RWO            csi-disk-topology   55s   Filesystem
+data-nginx-1   Bound    pvc-fc942a73-45d3-476b-95d4-1eb94bf19f1f   1Gi        RWO            csi-disk-topology   39s   Filesystem
+data-nginx-2   Bound    pvc-d219f4b7-e7cb-4832-a3ae-01ad689e364e   1Gi        RWO            csi-disk-topology   22s   Filesystem
+data-nginx-3   Bound    pvc-b54a61e1-1c0f-42b1-9951-410ebd326a4d   1Gi        RWO            csi-disk-topology   9s    Filesystem
+
+# kubectl get pod -owide
+NAME      READY   STATUS    RESTARTS   AGE   IP             NODE            NOMINATED NODE   READINESS GATES
+nginx-0   1/1     Running   0          65s   172.16.1.8     192.168.0.240   &lt;none&gt;           &lt;none&gt;
+nginx-1   1/1     Running   0          49s   172.16.0.13    192.168.0.121   &lt;none&gt;           &lt;none&gt;
+nginx-2   1/1     Running   0          32s   172.16.0.137   192.168.0.211   &lt;none&gt;           &lt;none&gt;
+nginx-3   1/1     Running   0          19s   172.16.1.9     192.168.0.240   &lt;none&gt;           &lt;none&gt;</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0050.html b/docs/cce/umn/cce_bestpractice_0050.html
new file mode 100644
index 00000000..60c3536d
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0050.html
@@ -0,0 +1,18 @@
+<a name="cce_bestpractice_0050"></a><a name="cce_bestpractice_0050"></a>
+
+<h1 class="topictitle1">Cluster</h1>
+<div id="body1594731697312"><p id="cce_bestpractice_0050__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00254.html">Connecting to Multiple Clusters Using kubectl</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00190.html">Adding a Second Data Disk to a Node in a CCE Cluster</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0051.html b/docs/cce/umn/cce_bestpractice_0051.html
new file mode 100644
index 00000000..dcc7beff
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0051.html
@@ -0,0 +1,27 @@
+<a name="cce_bestpractice_0051"></a><a name="cce_bestpractice_0051"></a>
+
+
+  <h1 class="topictitle1">Container</h1>
+
+  <div id="body1594731697312"><p id="cce_bestpractice_0051__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00002.html">Properly Allocating Container Computing Resources</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00227.html">Modifying Kernel Parameters Using a Privileged Container</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00228.html">Initializing a Container</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00226.html">Using hostAliases to Configure /etc/hosts in a Pod</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0325.html">Configuring Core Dumps</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0052.html b/docs/cce/umn/cce_bestpractice_0052.html
new file mode 100644
index 00000000..d689f65d
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0052.html
@@ -0,0 +1,22 @@
+<a name="cce_bestpractice_0052"></a><a name="cce_bestpractice_0052"></a>
+
+<h1 class="topictitle1">Networking</h1>
+<div id="body1594731697312"><p id="cce_bestpractice_0052__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00004.html">Planning CIDR Blocks for a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00162.html">Selecting a Network Model</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00231.html">Implementing Sticky Session Through Load Balancing</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00035.html">Obtaining the Client Source IP Address for a Container</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0053.html b/docs/cce/umn/cce_bestpractice_0053.html
new file mode 100644
index 00000000..aed39b6d
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0053.html
@@ -0,0 +1,25 @@
+<a name="cce_bestpractice_0053"></a><a name="cce_bestpractice_0053"></a>
+
+<h1 class="topictitle1">Storage</h1>
+<div id="body1594731697312"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00198.html">Expanding Node Disk Capacity</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00199.html">Mounting an Object Storage Bucket of a Third-Party Tenant</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00253_0.html">Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0107.html">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00281_0.html">Custom Storage Classes</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00284.html">Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology)</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0090.html b/docs/cce/umn/cce_bestpractice_0090.html
new file mode 100644
index 00000000..a5795253
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0090.html
@@ -0,0 +1,16 @@
+<a name="cce_bestpractice_0090"></a><a name="cce_bestpractice_0090"></a>
+
+<h1 class="topictitle1">Auto Scaling</h1>
+<div id="body1598962014453"><p id="cce_bestpractice_0090__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00282.html">Using HPA and CA for Auto Scaling of Workloads and Nodes</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0107.html b/docs/cce/umn/cce_bestpractice_0107.html
index 9d9fe793..e3bbc32a 100644
--- a/docs/cce/umn/cce_bestpractice_0107.html
+++ b/docs/cce/umn/cce_bestpractice_0107.html
@@ -1,89 +1,90 @@
 <a name="cce_bestpractice_0107"></a><a name="cce_bestpractice_0107"></a>
 
 <h1 class="topictitle1">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</h1>
-<div id="body0000001151315262"><p id="cce_bestpractice_0107__p148301338132712">For clusters of v1.15.11-r1 and later, the CSI everest add-on has taken over all functions of the fuxi FlexVolume driver (the storage-driver add-on) for container storage management. In versions later than 1.17.9-r0, the fuxi FlexVolume driver (storage-driver) is no longer supported.</p>
+<div id="body1603175011039"><p id="cce_bestpractice_0107__p148301338132712">In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. You are advised to use CSI Everest.</p>
 <p id="cce_bestpractice_0107__p1556618195217">To migrate your storage volumes, create a static PV to associate with the original underlying storage, and then create a PVC to associate with this static PV. When you upgrade your application, mount the new PVC to the original mounting path to migrate the storage volumes.</p>
 <div class="warning" id="cce_bestpractice_0107__note589874414375"><span class="warningtitle"><img src="public_sys-resources/warning_3.0-en-us.png"> </span><div class="warningbody"><p id="cce_bestpractice_0107__p1189834410374">Services will be interrupted during the migration. Therefore, properly plan the migration and back up data.</p>
 </div></div>
-<div class="section" id="cce_bestpractice_0107__section1914417445277"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_0107__ol1119842011254"><li id="cce_bestpractice_0107__li39059101273"><span>(Optional) Back up data to prevent data loss in case of exceptions.</span></li><li id="cce_bestpractice_0107__li1381511310560"><span>Run kubectl commands.</span></li><li id="cce_bestpractice_0107__li1219802032512"><a name="cce_bestpractice_0107__li1219802032512"></a><a name="li1219802032512"></a><span>Configure a YAML file of the PV in the CSI format according to the PV in the FlexVolume format and associate the PV with the existing storage.</span><p><p id="cce_bestpractice_0107__p10956144914562">To be specific, run the following commands to configure the pv-example.yaml file, which is used to create a PV.</p>
+<div class="section" id="cce_bestpractice_0107__section1914417445277"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_0107__ol1119842011254"><li id="cce_bestpractice_0107__li39059101273"><span>(Optional) Back up data to prevent data loss in case of exceptions.</span></li><li id="cce_bestpractice_0107__li1219802032512"><a name="cce_bestpractice_0107__li1219802032512"></a><a name="li1219802032512"></a><span>Configure a YAML file of the PV in the CSI format according to the PV in the FlexVolume format and associate the PV with the existing storage.</span><p><p id="cce_bestpractice_0107__p10956144914562">To be specific, run the following commands to configure the pv-example.yaml file, which is used to create a PV. </p>
 <p id="cce_bestpractice_0107__p16647121665720"><strong id="cce_bestpractice_0107__b20159165101615">touch pv-example.yaml</strong></p>
 <p id="cce_bestpractice_0107__p166474161573"><strong id="cce_bestpractice_0107__b520305161611">vi pv-example.yaml</strong></p>
 <div class="p" id="cce_bestpractice_0107__p10409104995614">Configuration example of <strong id="cce_bestpractice_0107__b13988223541">a PV for an EVS volume</strong>:<pre class="screen" id="cce_bestpractice_0107__screen124093496566">apiVersion: v1
 kind: PersistentVolume
 metadata:
   labels:
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b12131375441">failure-domain.beta.kubernetes.io/region: eu-de</strong>
-<strong id="cce_bestpractice_0107__b16216133724416">    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone: eu-de-01</span></strong>
+    <strong id="cce_bestpractice_0107__b12131375441">failure-domain.beta.kubernetes.io/region: </strong><span id="cce_bestpractice_0107__text6728433172218">eu-de</span>
+<strong id="cce_bestpractice_0107__b16216133724416">    failure-domain.beta.kubernetes.io/zone: &lt;zone name&gt;</strong>
   annotations:
     pv.kubernetes.io/provisioned-by: everest-csi-provisioner
-  <strong style="color:#FF0000;" id="cce_bestpractice_0107__b050631184419">name: </strong><strong id="cce_bestpractice_0107__b105123134415"><span style="color:#FF0000;">pv-evs-example</span></strong>
+  <strong id="cce_bestpractice_0107__b050631184419">name: </strong><strong id="cce_bestpractice_0107__b105123134415">pv-evs-example</strong>
 spec:
   accessModes:
   - ReadWriteOnce
   capacity:
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b1916712269445">storage: </strong><strong style="color:#FF0000;" id="cce_bestpractice_0107__b15172162617446">10Gi</strong>
+    <strong id="cce_bestpractice_0107__b1916712269445">storage: </strong><strong id="cce_bestpractice_0107__b15172162617446">10Gi</strong>
   csi:
     driver: disk.csi.everest.io
     fsType: ext4
     volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_bestpractice_0107__b771412711482">everest.io/disk-mode: </strong><strong id="cce_bestpractice_0107__b3715107184817"><span style="color:#FF0000;">SCSI</span></strong>
-<strong id="cce_bestpractice_0107__b57196714812">      <span style="color:#FF0000;">everest.io/disk-volume-type: </span><span style="color:#FF0000;">SATA</span></strong>
+      <strong id="cce_bestpractice_0107__b771412711482">everest.io/disk-mode: </strong><strong id="cce_bestpractice_0107__b3715107184817">SCSI</strong>
+<strong id="cce_bestpractice_0107__b57196714812">      everest.io/disk-volume-type: SAS</strong>
       storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b915010138486">volumeHandle: </strong><strong id="cce_bestpractice_0107__b5151201318488"><span style="color:#FF0000;">0992dbda-6340-470e-a74e-4f0db288ed82</span></strong>
+    <strong id="cce_bestpractice_0107__b915010138486">volumeHandle: </strong><strong id="cce_bestpractice_0107__b5151201318488">0992dbda-6340-470e-a74e-4f0db288ed82</strong>
   persistentVolumeReclaimPolicy: Delete
   storageClassName: csi-disk</pre>
 </div>
+<p id="cce_bestpractice_0107__p19607165215128"></p>
 <p id="cce_bestpractice_0107__p54091549175616">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>EVS volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.3.2.6.2.3.1.1"><p id="cce_bestpractice_0107__p18191161619356">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 1 </b>EVS volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.7.2.3.1.1"><p id="cce_bestpractice_0107__p18191161619356">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.3.2.6.2.3.1.2"><p id="cce_bestpractice_0107__p1919116161353">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.7.2.3.1.2"><p id="cce_bestpractice_0107__p1919116161353">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row2318123021219"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p1995180962">failure-domain.beta.kubernetes.io/region</p>
+<tbody><tr id="cce_bestpractice_0107__row2318123021219"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p1995180962">failure-domain.beta.kubernetes.io/region</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p1861300612">Region where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1861300612">Region where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row163191830121220"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p168517016619">failure-domain.beta.kubernetes.io/zone</p>
+<tr id="cce_bestpractice_0107__row163191830121220"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p168517016619">failure-domain.beta.kubernetes.io/zone</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p12892459355">AZ where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p12892459355">AZ where the EVS disk is located. Use the same value as that of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row9653154613512"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p166542461356">name</p>
+<tr id="cce_bestpractice_0107__row9653154613512"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p166542461356">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p126541746357">Name of the PV, which must be unique in the cluster.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p126541746357">Name of the PV, which must be unique in the cluster.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row36542464516"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p2065516461655">storage</p>
+<tr id="cce_bestpractice_0107__row36542464516"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p2065516461655">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p1065544610519">EVS volume capacity in the unit of Gi. Use the value of <strong id="cce_bestpractice_0107__b1144121364514">spec.capacity.storage</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1065544610519">EVS volume capacity in the unit of Gi. Use the value of <strong id="cce_bestpractice_0107__b1144121364514">spec.capacity.storage</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row95681351352"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p115681951655">driver</p>
+<tr id="cce_bestpractice_0107__row95681351352"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p115681951655">driver</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p556912511555">Storage driver used to attach the volume. Set the driver to <strong id="cce_bestpractice_0107__b673716182452">disk.csi.everest.io</strong> for the EVS volume.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p556912511555">Storage driver used to attach the volume. Set the driver to <strong id="cce_bestpractice_0107__b673716182452">disk.csi.everest.io</strong> for the EVS volume.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row856925110517"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p1756925110517">volumeHandle</p>
+<tr id="cce_bestpractice_0107__row856925110517"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p1756925110517">volumeHandle</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p11569175120514">Volume ID of the EVS disk. Use the value of <strong id="cce_bestpractice_0107__b221553434517">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p11569175120514">Volume ID of the EVS disk. Use the value of <strong id="cce_bestpractice_0107__b221553434517">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row19351157557"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p183510571550">everest.io/disk-mode</p>
+<tr id="cce_bestpractice_0107__row19351157557"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p183510571550">everest.io/disk-mode</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p163511571556">EVS disk mode. Use the value of <strong id="cce_bestpractice_0107__b381519478459">spec.flexVolume.options.disk-mode</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p163511571556">EVS disk mode. Use the value of <strong id="cce_bestpractice_0107__b381519478459">spec.flexVolume.options.disk-mode</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row15352571556"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p3357571053">everest.io/disk-volume-type</p>
+<tr id="cce_bestpractice_0107__row15352571556"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p3357571053">everest.io/disk-volume-type</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p1936105718517">EVS disk type. Currently, high I/O (SAS), ultra-high I/O (SSD), and common I/O (SATA) are supported. Use the value of <strong id="cce_bestpractice_0107__b2528131316506">kubernetes.io/volumetype</strong> in the storage class corresponding to <strong id="cce_bestpractice_0107__b1953411395020">spec.storageClassName</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1936105718517">EVS disk type. Use the value of <strong id="cce_bestpractice_0107__b2528131316506">kubernetes.io/volumetype</strong> in the storage class corresponding to <strong id="cce_bestpractice_0107__b1953411395020">spec.storageClassName</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row153610571511"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.6.2.3.1.1 "><p id="cce_bestpractice_0107__p03614576517">storageClassName</p>
+<tr id="cce_bestpractice_0107__row153610571511"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p03614576517">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.6.2.3.1.2 "><p id="cce_bestpractice_0107__p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_bestpractice_0107__b25261158105018">csi-disk</strong> for EVS disks.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_bestpractice_0107__b25261158105018">csi-disk</strong> for EVS disks.</p>
 </td>
 </tr>
 </tbody>
@@ -93,59 +94,60 @@ spec:
 <pre class="screen" id="cce_bestpractice_0107__screen16410149155610">apiVersion: v1
 kind: PersistentVolume
 metadata:
-  <strong id="cce_bestpractice_0107__b20655104515487"><span style="color:#FF0000;">name: </span><span style="color:#FF0000;">pv-sfs-example</span></strong>
+  <strong id="cce_bestpractice_0107__b20655104515487">name: pv-sfs-example</strong>
   annotations:
     pv.kubernetes.io/provisioned-by: everest-csi-provisioner
 spec:
   accessModes:
   - ReadWriteMany
   capacity:
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b10446115017484">storage: </strong><strong id="cce_bestpractice_0107__b11448135010480"><span style="color:#FF0000;">10Gi</span></strong>
+    <strong id="cce_bestpractice_0107__b10446115017484">storage: </strong><strong id="cce_bestpractice_0107__b11448135010480">10Gi</strong>
   csi:
     driver: nas.csi.everest.io
     fsType: nfs
     volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_bestpractice_0107__b1986810568485">everest.io/share-export-location: sfs-nas01.Endpoint:/share-436304e8</strong>
+      <strong id="cce_bestpractice_0107__b1986810568485">everest.io/share-export-location:  # Shared path of the file storage</strong>
       storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong id="cce_bestpractice_0107__b5516219497"><span style="color:#FF0000;">volumeHandle: 682f00bb-ace0-41d8-9b3e-913c9aa6b695</span></strong>
+    <strong id="cce_bestpractice_0107__b5516219497">volumeHandle: 682f00bb-ace0-41d8-9b3e-913c9aa6b695</strong>
   persistentVolumeReclaimPolicy: Delete
   storageClassName: csi-nas</pre>
+<p id="cce_bestpractice_0107__p104042044181220"></p>
 <p id="cce_bestpractice_0107__p6410144945614">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table10859183316916" frame="border" border="1" rules="all"><caption><b>Table 2 </b>SFS volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row38591633994"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.3.2.10.2.3.1.1"><p id="cce_bestpractice_0107__p1385913337917">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table10859183316916" frame="border" border="1" rules="all"><caption><b>Table 2 </b>SFS volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row38591633994"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.12.2.3.1.1"><p id="cce_bestpractice_0107__p1385913337917">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.3.2.10.2.3.1.2"><p id="cce_bestpractice_0107__p3859733090">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.12.2.3.1.2"><p id="cce_bestpractice_0107__p3859733090">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row88591233395"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.10.2.3.1.1 "><p id="cce_bestpractice_0107__p108591533693">name</p>
+<tbody><tr id="cce_bestpractice_0107__row88591233395"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_bestpractice_0107__p108591533693">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.10.2.3.1.2 "><p id="cce_bestpractice_0107__p148592335912">Name of the PV, which must be unique in the cluster.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p148592335912">Name of the PV, which must be unique in the cluster.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row158595338918"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.10.2.3.1.1 "><p id="cce_bestpractice_0107__p785919331096">storage</p>
+<tr id="cce_bestpractice_0107__row158595338918"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_bestpractice_0107__p785919331096">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.10.2.3.1.2 "><p id="cce_bestpractice_0107__p186003319918">File storage size in the unit of Gi. Use the value of <strong id="cce_bestpractice_0107__b4964104616563">spec.capacity.storage</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p186003319918">File storage size in the unit of Gi. Use the value of <strong id="cce_bestpractice_0107__b4964104616563">spec.capacity.storage</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row48607331494"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.10.2.3.1.1 "><p id="cce_bestpractice_0107__p1686014331913">driver</p>
+<tr id="cce_bestpractice_0107__row48607331494"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_bestpractice_0107__p1686014331913">driver</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.10.2.3.1.2 "><p id="cce_bestpractice_0107__p3860173312917">Storage driver used to attach the volume. Set the driver to <strong id="cce_bestpractice_0107__b67607155715">nas.csi.everest.io</strong> for the file system.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p3860173312917">Storage driver used to attach the volume. Set the driver to <strong id="cce_bestpractice_0107__b67607155715">nas.csi.everest.io</strong> for the file system.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row6808112520114"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.10.2.3.1.1 "><p id="cce_bestpractice_0107__p17809172511117">everest.io/share-export-location</p>
+<tr id="cce_bestpractice_0107__row6808112520114"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_bestpractice_0107__p17809172511117">everest.io/share-export-location</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.10.2.3.1.2 "><p id="cce_bestpractice_0107__p780919259115">Shared path of the file system. Use the value of <strong id="cce_bestpractice_0107__b562915119">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p780919259115">Shared path of the file system. Use the value of <strong id="cce_bestpractice_0107__b562915119">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row78601833094"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.10.2.3.1.1 "><p id="cce_bestpractice_0107__p18601933393">volumeHandle</p>
+<tr id="cce_bestpractice_0107__row78601833094"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_bestpractice_0107__p18601933393">volumeHandle</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.10.2.3.1.2 "><p id="cce_bestpractice_0107__p148602331397">File system ID. Use the value of <strong id="cce_bestpractice_0107__b77331625326">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p148602331397">File system ID. Use the value of <strong id="cce_bestpractice_0107__b77331625326">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row5860143317914"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.10.2.3.1.1 "><p id="cce_bestpractice_0107__p178608331994">storageClassName</p>
+<tr id="cce_bestpractice_0107__row5860143317914"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_bestpractice_0107__p178608331994">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.10.2.3.1.2 "><p id="cce_bestpractice_0107__p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b1398782915210">csi-nas</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b1398782915210">csi-nas</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -155,7 +157,7 @@ spec:
 <pre class="screen" id="cce_bestpractice_0107__screen341064915612">apiVersion: v1
 kind: PersistentVolume
 metadata:
-  <strong style="color:#FF0000;" id="cce_bestpractice_0107__b19697272497">name: pv-obs-example</strong>
+  <strong id="cce_bestpractice_0107__b19697272497">name: pv-obs-example</strong>
   annotations:
     pv.kubernetes.io/provisioned-by: everest-csi-provisioner
 spec:
@@ -165,61 +167,61 @@ spec:
     storage: 1Gi
   csi:
     driver: obs.csi.everest.io
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b64651633194911">fsType: s3fs</strong>
+    <strong id="cce_bestpractice_0107__b64651633194911">fsType: s3fs</strong>
     volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_bestpractice_0107__b18061377497">everest.io/obs-volume-type: STANDARD</strong>
-<strong id="cce_bestpractice_0107__b5807153794916">      <span style="color:#FF0000;">everest.io/region: eu-de</span></strong>
+      <strong id="cce_bestpractice_0107__b18061377497">everest.io/obs-volume-type: STANDARD</strong>
+<strong id="cce_bestpractice_0107__b5807153794916">      everest.io/region: <span id="cce_bestpractice_0107__text13180166132919">eu-de</span></strong>
       storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b16316154315491">volumeHandle: obs-normal-static-pv</strong>
+    <strong id="cce_bestpractice_0107__b16316154315491">volumeHandle: obs-normal-static-pv</strong>
   persistentVolumeReclaimPolicy: Delete
   storageClassName: csi-obs</pre>
 <p id="cce_bestpractice_0107__p1541064918566"></p>
 <p id="cce_bestpractice_0107__p1763835121210">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table147634352126" frame="border" border="1" rules="all"><caption><b>Table 3 </b>OBS volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row1376383591219"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.3.2.15.2.3.1.1"><p id="cce_bestpractice_0107__p187631357122">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table147634352126" frame="border" border="1" rules="all"><caption><b>Table 3 </b>OBS volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row1376383591219"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.17.2.3.1.1"><p id="cce_bestpractice_0107__p187631357122">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.3.2.15.2.3.1.2"><p id="cce_bestpractice_0107__p147631357126">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.17.2.3.1.2"><p id="cce_bestpractice_0107__p147631357126">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row20763935101212"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p10763335141218">name</p>
+<tbody><tr id="cce_bestpractice_0107__row20763935101212"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p10763335141218">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p1876313352123">Name of the PV, which must be unique in the cluster.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p1876313352123">Name of the PV, which must be unique in the cluster.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row2763183511126"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p12763143541213">storage</p>
+<tr id="cce_bestpractice_0107__row2763183511126"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p12763143541213">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p10763143561217">Storage capacity in the unit of Gi. Set this parameter to the fixed value <strong id="cce_bestpractice_0107__b69303913316">1Gi</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p10763143561217">Storage capacity, in the unit of Gi. Set this parameter to the fixed value <strong id="cce_bestpractice_0107__b69303913316">1Gi</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row17763635161217"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p12763143516123">driver</p>
+<tr id="cce_bestpractice_0107__row17763635161217"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p12763143516123">driver</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p476403511217">Storage driver used to attach the volume. Set the driver to <strong id="cce_bestpractice_0107__b1892865020316">obs.csi.everest.io</strong> for the OBS volume.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p476403511217">Storage driver used to attach the volume. Set the driver to <strong id="cce_bestpractice_0107__b1892865020316">obs.csi.everest.io</strong> for the OBS volume.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row87641035151214"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p2764133531218">fsType</p>
+<tr id="cce_bestpractice_0107__row87641035151214"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p2764133531218">fsType</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p1764163514127">File type. Value options are <strong id="cce_bestpractice_0107__b4774501048">obsfs</strong> or <strong id="cce_bestpractice_0107__b77751001416">s3fs</strong>. If the value is <strong id="cce_bestpractice_0107__b3775701249">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_bestpractice_0107__b0775140745">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. Set this parameter according to the value of <strong id="cce_bestpractice_0107__b182806128410">spec.flexVolume.options.posix</strong> of the FlexVolume PV. If the value of <strong id="cce_bestpractice_0107__b132852121947">spec.flexVolume.options.posix</strong> is <strong id="cce_bestpractice_0107__b42852121541">true</strong>, set this parameter to <strong id="cce_bestpractice_0107__b112862121945">obsfs</strong>. If the value is <strong id="cce_bestpractice_0107__b14286151215418">false</strong>, set this parameter to <strong id="cce_bestpractice_0107__b928615121417">s3fs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p1764163514127">File type. Value options are <strong id="cce_bestpractice_0107__b4774501048">obsfs</strong> or <strong id="cce_bestpractice_0107__b77751001416">s3fs</strong>. If the value is <strong id="cce_bestpractice_0107__b3775701249">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_bestpractice_0107__b0775140745">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. Set this parameter according to the value of <strong id="cce_bestpractice_0107__b182806128410">spec.flexVolume.options.posix</strong> of the FlexVolume PV. If the value of <strong id="cce_bestpractice_0107__b132852121947">spec.flexVolume.options.posix</strong> is <strong id="cce_bestpractice_0107__b42852121541">true</strong>, set this parameter to <strong id="cce_bestpractice_0107__b112862121945">obsfs</strong>. If the value is <strong id="cce_bestpractice_0107__b14286151215418">false</strong>, set this parameter to <strong id="cce_bestpractice_0107__b928615121417">s3fs</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row671295211146"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p671313522145">everest.io/obs-volume-type</p>
+<tr id="cce_bestpractice_0107__row671295211146"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p671313522145">everest.io/obs-volume-type</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p9713452161412">Storage class, including <strong id="cce_bestpractice_0107__b04090199415">STANDARD</strong> (standard bucket) and <strong id="cce_bestpractice_0107__b441491915417">WARM</strong> (infrequent access bucket). Set this parameter according to the value of <strong id="cce_bestpractice_0107__b11614133019416">spec.flexVolume.options.storage_class</strong> of the FlexVolume PV. If the value of <strong id="cce_bestpractice_0107__b261913012414">spec.flexVolume.options.storage_class</strong> is <strong id="cce_bestpractice_0107__b1461913300413">standard</strong>, set this parameter to <strong id="cce_bestpractice_0107__b362010301446">STANDARD</strong>. If the value is <strong id="cce_bestpractice_0107__b962023017412">standard_ia</strong>, set this parameter to <strong id="cce_bestpractice_0107__b1162018301843">WARM</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p9713452161412">Storage class, including <strong id="cce_bestpractice_0107__b04090199415">STANDARD</strong> (standard bucket) and <strong id="cce_bestpractice_0107__b441491915417">WARM</strong> (infrequent access bucket). Set this parameter according to the value of <strong id="cce_bestpractice_0107__b11614133019416">spec.flexVolume.options.storage_class</strong> of the FlexVolume PV. If the value of <strong id="cce_bestpractice_0107__b261913012414">spec.flexVolume.options.storage_class</strong> is <strong id="cce_bestpractice_0107__b1461913300413">standard</strong>, set this parameter to <strong id="cce_bestpractice_0107__b362010301446">STANDARD</strong>. If the value is <strong id="cce_bestpractice_0107__b962023017412">standard_ia</strong>, set this parameter to <strong id="cce_bestpractice_0107__b1162018301843">WARM</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row1929744911413"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p7298164941418">everest.io/region</p>
+<tr id="cce_bestpractice_0107__row1929744911413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p7298164941418">everest.io/region</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p1429844971411">Region where the OBS bucket is located. Use the value of <strong id="cce_bestpractice_0107__b9813625987">spec.flexVolume.options.region</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p1429844971411">Region where the OBS bucket is located. Use the value of <strong id="cce_bestpractice_0107__b9813625987">spec.flexVolume.options.region</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row19764935181217"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p476416354129">volumeHandle</p>
+<tr id="cce_bestpractice_0107__row19764935181217"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p476416354129">volumeHandle</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p1476433581210">OBS bucket name. Use the value of <strong id="cce_bestpractice_0107__b19199334192">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p1476433581210">OBS bucket name. Use the value of <strong id="cce_bestpractice_0107__b19199334192">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row197641935171213"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p576413351125">storageClassName</p>
+<tr id="cce_bestpractice_0107__row197641935171213"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p576413351125">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b184161337594">csi-obs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b184161337594">csi-obs</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -229,65 +231,66 @@ spec:
 <pre class="screen" id="cce_bestpractice_0107__screen4411164920568">apiVersion: v1
 kind: PersistentVolume
 metadata:
-  <strong style="color:#FF0000;" id="cce_bestpractice_0107__b151901852174911">name: pv-efs-example</strong>
+  <strong id="cce_bestpractice_0107__b151901852174911">name: pv-efs-example</strong>
   annotations:
     pv.kubernetes.io/provisioned-by: everest-csi-provisioner
 spec:
   accessModes:
   - ReadWriteMany
   capacity:
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b872211561497">storage: 10Gi</strong>
+    <strong id="cce_bestpractice_0107__b872211561497">storage: 10Gi</strong>
   csi:
     driver: sfsturbo.csi.everest.io
     fsType: nfs
     volumeAttributes:
-      <strong style="color:#FF0000;" id="cce_bestpractice_0107__b17915122125015">everest.io/share-export-location: 192.168.0.169:/</strong>
+      <strong id="cce_bestpractice_0107__b17915122125015">everest.io/share-export-location: 192.168.0.169:/</strong>
       storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b16810197175014">volumeHandle: 8962a2a2-a583-4b7f-bb74-fe76712d8414</strong>
+    <strong id="cce_bestpractice_0107__b16810197175014">volumeHandle: 8962a2a2-a583-4b7f-bb74-fe76712d8414</strong>
   persistentVolumeReclaimPolicy: Delete
   storageClassName: csi-sfsturbo</pre>
+<p id="cce_bestpractice_0107__p8391138132018"></p>
 <p id="cce_bestpractice_0107__p85884120207">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table7581741152015" frame="border" border="1" rules="all"><caption><b>Table 4 </b>SFS Turbo volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row2058124162013"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.3.2.19.2.3.1.1"><p id="cce_bestpractice_0107__p13591241202019">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table7581741152015" frame="border" border="1" rules="all"><caption><b>Table 4 </b>SFS Turbo volume configuration parameters</caption><thead align="left"><tr id="cce_bestpractice_0107__row2058124162013"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.2.2.22.2.3.1.1"><p id="cce_bestpractice_0107__p13591241202019">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.3.2.19.2.3.1.2"><p id="cce_bestpractice_0107__p1859204152010">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.2.2.22.2.3.1.2"><p id="cce_bestpractice_0107__p1859204152010">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row185944110206"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.19.2.3.1.1 "><p id="cce_bestpractice_0107__p185919415209">name</p>
+<tbody><tr id="cce_bestpractice_0107__row185944110206"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_bestpractice_0107__p185919415209">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.19.2.3.1.2 "><p id="cce_bestpractice_0107__p1259144113208">Name of the PV, which must be unique in the cluster.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p1259144113208">Name of the PV, which must be unique in the cluster.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row1459141112011"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.19.2.3.1.1 "><p id="cce_bestpractice_0107__p13592417202">storage</p>
+<tr id="cce_bestpractice_0107__row1459141112011"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_bestpractice_0107__p13592417202">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.19.2.3.1.2 "><p id="cce_bestpractice_0107__p2059174162015">File system size. Use the value of <strong id="cce_bestpractice_0107__b7973528131212">spec.capacity.storage</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p2059174162015">File system size. Use the value of <strong id="cce_bestpractice_0107__b7973528131212">spec.capacity.storage</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row8597411207"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.19.2.3.1.1 "><p id="cce_bestpractice_0107__p9591841152015">driver</p>
+<tr id="cce_bestpractice_0107__row8597411207"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_bestpractice_0107__p9591841152015">driver</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.19.2.3.1.2 "><p id="cce_bestpractice_0107__p16595418201">Storage driver used to attach the volume. Set it to <strong id="cce_bestpractice_0107__b028711355126">sfsturbo.csi.everest.io</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p16595418201">Storage driver used to attach the volume. Set it to <strong id="cce_bestpractice_0107__b028711355126">sfsturbo.csi.everest.io</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row1601741132014"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.19.2.3.1.1 "><p id="cce_bestpractice_0107__p10883193912218">everest.io/share-export-location</p>
+<tr id="cce_bestpractice_0107__row1601741132014"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_bestpractice_0107__p10883193912218">everest.io/share-export-location</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.19.2.3.1.2 "><p id="cce_bestpractice_0107__p4882153911226">Shared path of the SFS Turbo volume. Use the value of <strong id="cce_bestpractice_0107__b256734911217">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p4882153911226">Shared path of the SFS Turbo volume. Use the value of <strong id="cce_bestpractice_0107__b256734911217">spec.flexVolume.options.deviceMountPath</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row176012417202"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.19.2.3.1.1 "><p id="cce_bestpractice_0107__p11881839112219">volumeHandle</p>
+<tr id="cce_bestpractice_0107__row176012417202"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_bestpractice_0107__p11881839112219">volumeHandle</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.19.2.3.1.2 "><p id="cce_bestpractice_0107__p288013962213">SFS Turbo volume ID. Use the value of <strong id="cce_bestpractice_0107__b1819716572124">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p288013962213">SFS Turbo volume ID. Use the value of <strong id="cce_bestpractice_0107__b1819716572124">spec.flexVolume.options.volumeID</strong> of the FlexVolume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row12603415203"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.3.2.19.2.3.1.1 "><p id="cce_bestpractice_0107__p11879153915225">storageClassName</p>
+<tr id="cce_bestpractice_0107__row12603415203"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_bestpractice_0107__p11879153915225">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.3.2.19.2.3.1.2 "><p id="cce_bestpractice_0107__p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b92392161313">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b92392161313">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-</p></li><li id="cce_bestpractice_0107__li1710710385418"><a name="cce_bestpractice_0107__li1710710385418"></a><a name="li1710710385418"></a><span>Configure a YAML file of the PVC in the CSI format according to the PVC in the FlexVolume format and associate the PVC with the PV created in <a href="#cce_bestpractice_0107__li1219802032512">3</a>.</span><p><p id="cce_bestpractice_0107__p11528815195819">To be specific, run the following commands to configure the pvc-example.yaml file, which is used to create a PVC.</p>
+</p></li><li id="cce_bestpractice_0107__li1710710385418"><a name="cce_bestpractice_0107__li1710710385418"></a><a name="li1710710385418"></a><span>Configure a YAML file of the PVC in the CSI format according to the PVC in the FlexVolume format and associate the PVC with the PV created in <a href="#cce_bestpractice_0107__li1219802032512">2</a>.</span><p><p id="cce_bestpractice_0107__p11528815195819">To be specific, run the following commands to configure the pvc-example.yaml file, which is used to create a PVC. </p>
 <p id="cce_bestpractice_0107__p652841585811"><strong id="cce_bestpractice_0107__b136125221717">touch pvc-example.yaml</strong></p>
 <p id="cce_bestpractice_0107__p185281515155810"><strong id="cce_bestpractice_0107__b6957522175">vi pvc-example.yaml</strong></p>
 <p id="cce_bestpractice_0107__p474941465817">Configuration example of <strong id="cce_bestpractice_0107__b125522619204">a PVC for an EVS volume</strong>:</p>
@@ -295,67 +298,68 @@ spec:
 kind: PersistentVolumeClaim
 metadata:
   labels:
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b3970622105017">failure-domain.beta.kubernetes.io/region: eu-de</strong>
-<strong id="cce_bestpractice_0107__b209722222507">    <span style="color:#FF0000;">failure-domain.beta.kubernetes.io/zone: eu-de-01</span></strong>
+    <strong id="cce_bestpractice_0107__b3970622105017">failure-domain.beta.kubernetes.io/region: <span id="cce_bestpractice_0107__text20432543122320">eu-de</span></strong>
+<strong id="cce_bestpractice_0107__b209722222507">    failure-domain.beta.kubernetes.io/zone: &lt;zone name&gt;</strong>
   annotations:
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b37912037155015">everest.io/disk-volume-type: SATA</strong>
+    <strong id="cce_bestpractice_0107__b37912037155015">everest.io/disk-volume-type: SAS</strong>
     volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-  <strong id="cce_bestpractice_0107__b161731742165015"><span style="color:#FF0000;">name: pvc-evs-example</span></strong>
-<strong id="cce_bestpractice_0107__b61761842205015">  <span style="color:#FF0000;">namespace: default</span></strong>
+  <strong id="cce_bestpractice_0107__b161731742165015">name: pvc-evs-example</strong>
+<strong id="cce_bestpractice_0107__b61761842205015">  namespace: default</strong>
 spec:
   accessModes:
   - ReadWriteOnce
   resources:
     requests:
-      <strong style="color:#FF0000;" id="cce_bestpractice_0107__b1345115474504">storage: 10Gi</strong>
-<strong id="cce_bestpractice_0107__b645811477500">  <span style="color:#FF0000;">volumeName:  pv-evs-example</span></strong>
+      <strong id="cce_bestpractice_0107__b1345115474504">storage: 10Gi</strong>
+<strong id="cce_bestpractice_0107__b645811477500">  volumeName:  pv-evs-example</strong>
   storageClassName: csi-disk</pre>
+<p id="cce_bestpractice_0107__p9518267242"></p>
 <p id="cce_bestpractice_0107__p3812172815241">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table16812928132411" frame="border" border="1" rules="all"><caption><b>Table 5 </b>PVC configuration parameters for an EVS volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row4813122818245"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.4.2.7.2.3.1.1"><p id="cce_bestpractice_0107__p16813112818246">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table16812928132411" frame="border" border="1" rules="all"><caption><b>Table 5 </b>PVC configuration parameters for an EVS volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row4813122818245"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.8.2.3.1.1"><p id="cce_bestpractice_0107__p16813112818246">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.4.2.7.2.3.1.2"><p id="cce_bestpractice_0107__p198131028112415">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.8.2.3.1.2"><p id="cce_bestpractice_0107__p198131028112415">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row081318282243"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p1732144516242">failure-domain.beta.kubernetes.io/region</p>
+<tbody><tr id="cce_bestpractice_0107__row081318282243"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p1732144516242">failure-domain.beta.kubernetes.io/region</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1431974514243">Region where the cluster is located. Use the same value as that of the FlexVolume PVC.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p1431974514243">Region where the cluster is located. Use the same value as that of the FlexVolume PVC.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row1581342816246"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p1631844572420">failure-domain.beta.kubernetes.io/zone</p>
+<tr id="cce_bestpractice_0107__row1581342816246"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p1631844572420">failure-domain.beta.kubernetes.io/zone</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p18317184513249">AZ where the EVS disk is deployed. Use the same value as that of the FlexVolume PVC.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p18317184513249">AZ where the EVS disk is deployed. Use the same value as that of the FlexVolume PVC.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row181462811245"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p133168454241">everest.io/disk-volume-type</p>
+<tr id="cce_bestpractice_0107__row181462811245"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p133168454241">everest.io/disk-volume-type</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p0315114552411">Storage class of the EVS disk. The value can be <strong id="cce_bestpractice_0107__b97514263140">SAS</strong>, <strong id="cce_bestpractice_0107__b150562718141">SSD</strong>, or <strong id="cce_bestpractice_0107__b2584182861412">SATA</strong>. Set this parameter to the same value as that of the PV created in <a href="#cce_bestpractice_0107__li1219802032512">3</a>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p0315114552411">Storage class of the EVS disk. The value can be <strong id="cce_bestpractice_0107__b139414107543">SAS</strong> or <strong id="cce_bestpractice_0107__b540051016549">SSD</strong>. Set this parameter to the same value as that of the PV created in <a href="#cce_bestpractice_0107__li1219802032512">2</a>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row681442812241"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p123141645112413">name</p>
+<tr id="cce_bestpractice_0107__row681442812241"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p123141645112413">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p531364572411">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p531364572411">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row14814112802420"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p12312104542415">namespace</p>
+<tr id="cce_bestpractice_0107__row14814112802420"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p12312104542415">namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p23111645172416">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p23111645172416">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row29461842142512"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p17946114232518">storage</p>
+<tr id="cce_bestpractice_0107__row29461842142512"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p17946114232518">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p139473427251">Requested capacity of the PVC, which must be the same as the storage size of the existing PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p139473427251">Requested capacity of the PVC, which must be the same as the storage size of the existing PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row49479423257"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p18947342152514">volumeName</p>
+<tr id="cce_bestpractice_0107__row49479423257"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p18947342152514">volumeName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p3947184232520">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_bestpractice_0107__li1219802032512">3</a>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p3947184232520">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_bestpractice_0107__li1219802032512">2</a>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row18815102892413"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p8310164517245">storageClassName</p>
+<tr id="cce_bestpractice_0107__row18815102892413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p8310164517245">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b595416107185">csi-disk</strong> for EVS disks.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b595416107185">csi-disk</strong> for EVS disks.</p>
 </td>
 </tr>
 </tbody>
@@ -367,47 +371,48 @@ kind: PersistentVolumeClaim
 metadata:
   annotations:
     volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-  <strong id="cce_bestpractice_0107__b133131858205020"><span style="color:#FF0000;">name: pvc-sfs-example</span></strong>
-<strong id="cce_bestpractice_0107__b143149582501">  <span style="color:#FF0000;">namespace: default</span></strong>
+  <strong id="cce_bestpractice_0107__b133131858205020">name: pvc-sfs-example</strong>
+<strong id="cce_bestpractice_0107__b143149582501">  namespace: default</strong>
 spec:
   accessModes:
   - ReadWriteMany
   resources:
     requests:
-      <strong style="color:#FF0000;" id="cce_bestpractice_0107__b951138515">storage: 10Gi</strong>
+      <strong id="cce_bestpractice_0107__b951138515">storage: 10Gi</strong>
   storageClassName: csi-nas
-  <strong id="cce_bestpractice_0107__b31661107515"><span style="color:#FF0000;">volumeName: pv-sfs-example</span></strong></pre>
+  <strong id="cce_bestpractice_0107__b31661107515">volumeName: pv-sfs-example</strong></pre>
+<p id="cce_bestpractice_0107__p153871736162614"></p>
 <p id="cce_bestpractice_0107__p12224173311267">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table422493310266" frame="border" border="1" rules="all"><caption><b>Table 6 </b>PVC configuration parameters for an SFS volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row1922563392612"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.4.2.11.2.3.1.1"><p id="cce_bestpractice_0107__p22251033152613">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table422493310266" frame="border" border="1" rules="all"><caption><b>Table 6 </b>PVC configuration parameters for an SFS volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row1922563392612"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.13.2.3.1.1"><p id="cce_bestpractice_0107__p22251033152613">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.4.2.11.2.3.1.2"><p id="cce_bestpractice_0107__p8225933132618">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.13.2.3.1.2"><p id="cce_bestpractice_0107__p8225933132618">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row2225333122619"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.11.2.3.1.1 "><p id="cce_bestpractice_0107__p8945032152711">name</p>
+<tbody><tr id="cce_bestpractice_0107__row2225333122619"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_bestpractice_0107__p8945032152711">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.11.2.3.1.2 "><p id="cce_bestpractice_0107__p10943203272712">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_bestpractice_0107__p10943203272712">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row12258330265"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.11.2.3.1.1 "><p id="cce_bestpractice_0107__p199433322276">namespace</p>
+<tr id="cce_bestpractice_0107__row12258330265"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_bestpractice_0107__p199433322276">namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.11.2.3.1.2 "><p id="cce_bestpractice_0107__p1794193282720">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_bestpractice_0107__p1794193282720">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row4226193317265"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.11.2.3.1.1 "><p id="cce_bestpractice_0107__p3941123222711">storage</p>
+<tr id="cce_bestpractice_0107__row4226193317265"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_bestpractice_0107__p3941123222711">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.11.2.3.1.2 "><p id="cce_bestpractice_0107__p1937163220275">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_bestpractice_0107__p1937163220275">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row122267331266"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.11.2.3.1.1 "><p id="cce_bestpractice_0107__p693723214276">storageClassName</p>
+<tr id="cce_bestpractice_0107__row122267331266"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_bestpractice_0107__p693723214276">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.11.2.3.1.2 "><p id="cce_bestpractice_0107__p12935432172717">Set this field to <strong id="cce_bestpractice_0107__b2098319548357">csi-nas</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_bestpractice_0107__p12935432172717">Set this field to <strong id="cce_bestpractice_0107__b2098319548357">csi-nas</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row16226173312266"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.11.2.3.1.1 "><p id="cce_bestpractice_0107__p13935113202710">volumeName</p>
+<tr id="cce_bestpractice_0107__row16226173312266"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.13.2.3.1.1 "><p id="cce_bestpractice_0107__p13935113202710">volumeName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.11.2.3.1.2 "><p id="cce_bestpractice_0107__p1789783262714">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_bestpractice_0107__li1219802032512">3</a>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.13.2.3.1.2 "><p id="cce_bestpractice_0107__p1789783262714">Name of the PV. Set this parameter to the name of the static PV in <a href="#cce_bestpractice_0107__li1219802032512">2</a>.</p>
 </td>
 </tr>
 </tbody>
@@ -419,10 +424,10 @@ kind: PersistentVolumeClaim
 metadata:
   annotations:
     volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-    <strong style="color:#FF0000;" id="cce_bestpractice_0107__b148192314516">everest.io/obs-volume-type: STANDARD</strong>
-<strong id="cce_bestpractice_0107__b115042311518">    <span style="color:#FF0000;">csi.storage.k8s.io/fstype: s3fs</span></strong>
-<strong id="cce_bestpractice_0107__b65119231516">  <span style="color:#FF0000;">name: pvc-obs-example</span></strong>
-<strong id="cce_bestpractice_0107__b155282318512">  <span style="color:#FF0000;">namespace: default</span></strong>
+    <strong id="cce_bestpractice_0107__b148192314516">everest.io/obs-volume-type: STANDARD</strong>
+<strong id="cce_bestpractice_0107__b115042311518">    csi.storage.k8s.io/fstype: s3fs</strong>
+<strong id="cce_bestpractice_0107__b65119231516">  name: pvc-obs-example</strong>
+<strong id="cce_bestpractice_0107__b155282318512">  namespace: default</strong>
 spec:
   accessModes:
   - ReadWriteMany
@@ -430,48 +435,49 @@ spec:
     requests:
       storage: 1Gi
   storageClassName: csi-obs
-  <strong style="color:#FF0000;" id="cce_bestpractice_0107__b1338563395110">volumeName: pv-obs-example</strong></pre>
+  <strong id="cce_bestpractice_0107__b1338563395110">volumeName: pv-obs-example</strong></pre>
+<p id="cce_bestpractice_0107__p383704032816"></p>
 <p id="cce_bestpractice_0107__p47721342102816">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table17773144214281" frame="border" border="1" rules="all"><caption><b>Table 7 </b>PVC configuration parameters for an OBS volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row177312429288"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.4.2.15.2.3.1.1"><p id="cce_bestpractice_0107__p1577319428281">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table17773144214281" frame="border" border="1" rules="all"><caption><b>Table 7 </b>PVC configuration parameters for an OBS volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row177312429288"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.18.2.3.1.1"><p id="cce_bestpractice_0107__p1577319428281">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.4.2.15.2.3.1.2"><p id="cce_bestpractice_0107__p18773114202812">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.18.2.3.1.2"><p id="cce_bestpractice_0107__p18773114202812">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row577312423281"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p193015559284">everest.io/obs-volume-type</p>
+<tbody><tr id="cce_bestpractice_0107__row577312423281"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p193015559284">everest.io/obs-volume-type</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p992585519282">OBS volume type, which can be <strong id="cce_bestpractice_0107__b2444626143612">STANDARD</strong> (standard bucket) and <strong id="cce_bestpractice_0107__b844912623617">WARM</strong> (infrequent access bucket). Set this parameter to the same value as that of the PV created in <a href="#cce_bestpractice_0107__li1219802032512">3</a>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p992585519282">OBS volume type, which can be <strong id="cce_bestpractice_0107__b2444626143612">STANDARD</strong> (standard bucket) and <strong id="cce_bestpractice_0107__b844912623617">WARM</strong> (infrequent access bucket). Set this parameter to the same value as that of the PV created in <a href="#cce_bestpractice_0107__li1219802032512">2</a>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row19773144211282"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p5923855162815">csi.storage.k8s.io/fstype</p>
+<tr id="cce_bestpractice_0107__row19773144211282"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p5923855162815">csi.storage.k8s.io/fstype</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p39171555102815">File type, which can be <strong id="cce_bestpractice_0107__b13289932153612">obsfs</strong> or <strong id="cce_bestpractice_0107__b1290113233617">s3fs</strong>. The value must be the same as that of <strong id="cce_bestpractice_0107__b14178841123611">fsType</strong> of the static OBS volume PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p39171555102815">File type, which can be <strong id="cce_bestpractice_0107__b13289932153612">obsfs</strong> or <strong id="cce_bestpractice_0107__b1290113233617">s3fs</strong>. The value must be the same as that of <strong id="cce_bestpractice_0107__b14178841123611">fsType</strong> of the static OBS volume PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row477319428280"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p1291685572817">name</p>
+<tr id="cce_bestpractice_0107__row477319428280"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p1291685572817">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p109121355172817">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p109121355172817">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row1774942132812"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p1991165552819">namespace</p>
+<tr id="cce_bestpractice_0107__row1774942132812"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p1991165552819">namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p5906185532810">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p5906185532810">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row45426588296"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p18543135842910">storage</p>
+<tr id="cce_bestpractice_0107__row45426588296"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p18543135842910">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p5543125816296">Storage capacity in the unit of Gi. Set this parameter to the fixed value <strong id="cce_bestpractice_0107__b539314634520">1Gi</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p5543125816296">Storage capacity, in the unit of Gi. Set this parameter to the fixed value <strong id="cce_bestpractice_0107__b539314634520">1Gi</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row19543858172911"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p185431558192914">storageClassName</p>
+<tr id="cce_bestpractice_0107__row19543858172911"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p185431558192914">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b55964491456">csi-obs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b55964491456">csi-obs</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row1577494282811"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.15.2.3.1.1 "><p id="cce_bestpractice_0107__p169043554284">volumeName</p>
+<tr id="cce_bestpractice_0107__row1577494282811"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p169043554284">volumeName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.15.2.3.1.2 "><p id="cce_bestpractice_0107__p14898135517281">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_bestpractice_0107__li1219802032512">3</a>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p14898135517281">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_bestpractice_0107__li1219802032512">2</a>.</p>
 </td>
 </tr>
 </tbody>
@@ -483,66 +489,67 @@ kind: PersistentVolumeClaim
 metadata:
   annotations:
     volume.beta.kubernetes.io/storage-provisioner: everest-csi-provisioner
-  <strong id="cce_bestpractice_0107__b244135135117"><span style="color:#FF0000;">name: pvc-efs-example</span></strong>
-<strong id="cce_bestpractice_0107__b1745135175111">  <span style="color:#FF0000;">namespace: default</span></strong>
+  <strong id="cce_bestpractice_0107__b244135135117">name: pvc-efs-example</strong>
+<strong id="cce_bestpractice_0107__b1745135175111">  namespace: default</strong>
 spec:
   accessModes:
   - ReadWriteMany
   resources:
     requests:
-      <strong style="color:#FF0000;" id="cce_bestpractice_0107__b19227115545111">storage: 10Gi</strong>
+      <strong id="cce_bestpractice_0107__b19227115545111">storage: 10Gi</strong>
   storageClassName: csi-sfsturbo
-  <strong style="color:#FF0000;" id="cce_bestpractice_0107__b189426581511">volumeName: pv-efs-example</strong></pre>
+  <strong id="cce_bestpractice_0107__b189426581511">volumeName: pv-efs-example</strong></pre>
 <p id="cce_bestpractice_0107__p86568093119"></p>
 <p id="cce_bestpractice_0107__p1171114213318">Pay attention to the fields in bold and red. The parameters are described as follows:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table671111213311" frame="border" border="1" rules="all"><caption><b>Table 8 </b>PVC configuration parameters for an SFS Turbo volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row1471215263113"><th align="left" class="cellrowborder" valign="top" width="26.102241101508717%" id="mcps1.3.4.2.4.2.20.2.3.1.1"><p id="cce_bestpractice_0107__p67121726317">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0107__table671111213311" frame="border" border="1" rules="all"><caption><b>Table 8 </b>PVC configuration parameters for an SFS Turbo volume</caption><thead align="left"><tr id="cce_bestpractice_0107__row1471215263113"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.4.2.3.2.23.2.3.1.1"><p id="cce_bestpractice_0107__p67121726317">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.89775889849129%" id="mcps1.3.4.2.4.2.20.2.3.1.2"><p id="cce_bestpractice_0107__p1271218216314">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.4.2.3.2.23.2.3.1.2"><p id="cce_bestpractice_0107__p1271218216314">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bestpractice_0107__row57121926319"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.20.2.3.1.1 "><p id="cce_bestpractice_0107__p0943764313">name</p>
+<tbody><tr id="cce_bestpractice_0107__row57121926319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_bestpractice_0107__p0943764313">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.20.2.3.1.2 "><p id="cce_bestpractice_0107__p199421860316">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_bestpractice_0107__p199421860316">PVC name, which must be unique in the namespace. The value must be unique in the namespace. (If the PVC is dynamically created by a stateful application, the value of this parameter must be the same as the name of the FlexVolume PVC.)</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row57124233111"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.20.2.3.1.1 "><p id="cce_bestpractice_0107__p494114615316">namespace</p>
+<tr id="cce_bestpractice_0107__row57124233111"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_bestpractice_0107__p494114615316">namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.20.2.3.1.2 "><p id="cce_bestpractice_0107__p49399611316">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_bestpractice_0107__p49399611316">Namespace to which the PVC belongs. Use the same value as that of the FlexVolume PVC.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row10712132133110"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.20.2.3.1.1 "><p id="cce_bestpractice_0107__p193419653113">storageClassName</p>
+<tr id="cce_bestpractice_0107__row10712132133110"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_bestpractice_0107__p193419653113">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.20.2.3.1.2 "><p id="cce_bestpractice_0107__p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b205679596525">csi-sfsturbo</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_bestpractice_0107__p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b205679596525">csi-sfsturbo</strong>.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row97131621319"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.20.2.3.1.1 "><p id="cce_bestpractice_0107__p11933106203116">storage</p>
+<tr id="cce_bestpractice_0107__row97131621319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_bestpractice_0107__p11933106203116">storage</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.20.2.3.1.2 "><p id="cce_bestpractice_0107__p179324633110">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_bestpractice_0107__p179324633110">Storage capacity, in the unit of Gi. The value must be the same as the storage size of the existing PV.</p>
 </td>
 </tr>
-<tr id="cce_bestpractice_0107__row17131626319"><td class="cellrowborder" valign="top" width="26.102241101508717%" headers="mcps1.3.4.2.4.2.20.2.3.1.1 "><p id="cce_bestpractice_0107__p39311762316">volumeName</p>
+<tr id="cce_bestpractice_0107__row17131626319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_bestpractice_0107__p39311762316">volumeName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.89775889849129%" headers="mcps1.3.4.2.4.2.20.2.3.1.2 "><p id="cce_bestpractice_0107__p1393016623115">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_bestpractice_0107__li1219802032512">3</a>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_bestpractice_0107__p1393016623115">Name of the PV. Set this parameter to the name of the static PV created in <a href="#cce_bestpractice_0107__li1219802032512">2</a>.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-</p></li><li id="cce_bestpractice_0107__li487255772614"><a name="cce_bestpractice_0107__li487255772614"></a><a name="li487255772614"></a><span>Upgrade the workload to use a new PVC.</span><p><div class="p" id="cce_bestpractice_0107__p49135415327"><strong id="cce_bestpractice_0107__b4921045529">For Deployments</strong><ol type="a" id="cce_bestpractice_0107__ol13702185293210"><li id="cce_bestpractice_0107__li89201610376">Run the <strong id="cce_bestpractice_0107__b37767425521">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_bestpractice_0107__p14051775518"><strong style="color:#252B3A;" id="cce_bestpractice_0107__b634944319535">kubectl create -f pv-example.yaml</strong></p>
-<p id="cce_bestpractice_0107__p3931117155519"><strong id="cce_bestpractice_0107__b12351174335316"><span style="color:#252B3A;">kubectl create -f pvc-example.yaml</span></strong></p>
-<div class="note" id="cce_bestpractice_0107__note29456108015"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p15945410903">Replace the example file name <strong id="cce_bestpractice_0107__b488083619534">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_bestpractice_0107__li1219802032512">3</a> and <a href="#cce_bestpractice_0107__li1710710385418">4</a>.</p>
+</p></li><li id="cce_bestpractice_0107__li487255772614"><a name="cce_bestpractice_0107__li487255772614"></a><a name="li487255772614"></a><span>Upgrade the workload to use a new PVC.</span><p><div class="p" id="cce_bestpractice_0107__p49135415327"><strong id="cce_bestpractice_0107__b4921045529">For Deployments</strong><ol type="a" id="cce_bestpractice_0107__ol13702185293210"><li id="cce_bestpractice_0107__li89201610376">Run the <strong id="cce_bestpractice_0107__b37767425521">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_bestpractice_0107__p14051775518"><strong id="cce_bestpractice_0107__b634944319535">kubectl create -f pv-example.yaml</strong></p>
+<p id="cce_bestpractice_0107__p3931117155519"><strong id="cce_bestpractice_0107__b12351174335316">kubectl create -f pvc-example.yaml</strong></p>
+<div class="note" id="cce_bestpractice_0107__note29456108015"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p15945410903">Replace the example file name <strong id="cce_bestpractice_0107__b488083619534">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_bestpractice_0107__li1219802032512">2</a> and <a href="#cce_bestpractice_0107__li1710710385418">3</a>.</p>
 </div></div>
-</li><li id="cce_bestpractice_0107__li9702175212324">Go to the CCE console. On the workload upgrade page, click <strong id="cce_bestpractice_0107__b112026811519">Upgrade</strong> &gt; <strong id="cce_bestpractice_0107__b1293016109517">Advanced Settings</strong> &gt; <strong id="cce_bestpractice_0107__b2033618182518">Data Storage</strong> &gt; <strong id="cce_bestpractice_0107__b3464204813510">Cloud Storage</strong>.</li><li id="cce_bestpractice_0107__li1570218527326">Uninstall the old storage and add the PVC in the CSI format. Retain the original mounting path in the container.</li><li id="cce_bestpractice_0107__li770285210328">Click <strong id="cce_bestpractice_0107__b8264527157">Submit</strong>.</li><li id="cce_bestpractice_0107__li9702125211325">Wait until the pods are running.</li></ol>
+</li><li id="cce_bestpractice_0107__li9702175212324">Go to the CCE console. On the workload upgrade page, click <strong id="cce_bestpractice_0107__b112026811519">Upgrade</strong> &gt; <strong id="cce_bestpractice_0107__b1293016109517">Advanced Settings</strong> &gt; <strong id="cce_bestpractice_0107__b2033618182518">Data Storage</strong> &gt; <strong id="cce_bestpractice_0107__b3464204813510">Cloud Storage</strong>.<p id="cce_bestpractice_0107__p86798198185"></p>
+</li><li id="cce_bestpractice_0107__li1570218527326">Uninstall the old storage and add the PVC in the CSI format. Retain the original mounting path in the container.</li><li id="cce_bestpractice_0107__li770285210328">Click <strong id="cce_bestpractice_0107__b8264527157">Submit</strong>.</li><li id="cce_bestpractice_0107__li9702125211325">Wait until the pods are running.</li></ol>
 </div>
 <p id="cce_bestpractice_0107__p2046531913410"><strong id="cce_bestpractice_0107__b1218415319183">For StatefulSets that use existing storage</strong></p>
-<ol type="a" id="cce_bestpractice_0107__ol391017653810"><li id="cce_bestpractice_0107__li1991019610384">Run the <strong id="cce_bestpractice_0107__b5635143217182">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_bestpractice_0107__p719614467583"><strong style="color:#252B3A;" id="cce_bestpractice_0107__b16814314529">kubectl create -f pv-example.yaml</strong></p>
-<p id="cce_bestpractice_0107__p2019634635813"><strong id="cce_bestpractice_0107__b368303175216"><span style="color:#252B3A;">kubectl create -f pvc-example.yaml</span></strong></p>
-<div class="note" id="cce_bestpractice_0107__note1366820421907"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p1766874218020">Replace the example file name <strong id="cce_bestpractice_0107__b2077273716181">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_bestpractice_0107__li1219802032512">3</a> and <a href="#cce_bestpractice_0107__li1710710385418">4</a>.</p>
+<ol type="a" id="cce_bestpractice_0107__ol391017653810"><li id="cce_bestpractice_0107__li1991019610384">Run the <strong id="cce_bestpractice_0107__b5635143217182">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_bestpractice_0107__p719614467583"><strong id="cce_bestpractice_0107__b16814314529">kubectl create -f pv-example.yaml</strong></p>
+<p id="cce_bestpractice_0107__p2019634635813"><strong id="cce_bestpractice_0107__b368303175216">kubectl create -f pvc-example.yaml</strong></p>
+<div class="note" id="cce_bestpractice_0107__note1366820421907"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p1766874218020">Replace the example file name <strong id="cce_bestpractice_0107__b2077273716181">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_bestpractice_0107__li1219802032512">2</a> and <a href="#cce_bestpractice_0107__li1710710385418">3</a>.</p>
 </div></div>
 </li><li id="cce_bestpractice_0107__li467218817397">Run the <strong id="cce_bestpractice_0107__b591655819185">kubectl edit</strong> command to edit the StatefulSet and use the newly created PVC.<p id="cce_bestpractice_0107__p3883848805"><strong id="cce_bestpractice_0107__b8480926155211">kubectl edit sts sts-example -n</strong> xxx</p>
-<p id="cce_bestpractice_0107__p1047514291298"><span><img id="cce_bestpractice_0107__image1089813263010" src="en-us_image_0000001178352604.png"></span></p>
+<p id="cce_bestpractice_0107__p1047514291298"><span><img id="cce_bestpractice_0107__image1089813263010" src="en-us_image_0000001097062729.png"></span></p>
 <div class="note" id="cce_bestpractice_0107__note1646111820116"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p74619186120">Replace <strong id="cce_bestpractice_0107__b137451618206">sts-example</strong> in the preceding command with the actual name of the StatefulSet to upgrade. <strong id="cce_bestpractice_0107__b11603328217">xxx</strong> indicates the namespace to which the StatefulSet belongs.</p>
 </div></div>
 </li><li id="cce_bestpractice_0107__li182243184017">Wait until the pods are running.</li></ol>
@@ -551,9 +558,9 @@ spec:
 <p id="cce_bestpractice_0107__p6139112124010"><strong id="cce_bestpractice_0107__b169082072316">For StatefulSets that use dynamically allocated storage</strong></p>
 <ol type="a" id="cce_bestpractice_0107__ol8394103754010"><li id="cce_bestpractice_0107__li839453710408">Back up the PV and PVC in the flexVolume format used by the StatefulSet.<p id="cce_bestpractice_0107__p860733613433"><a name="cce_bestpractice_0107__li839453710408"></a><a name="li839453710408"></a><strong id="cce_bestpractice_0107__b15772239165214">kubectl get pvc xxx -n {namespaces} -oyaml &gt; pvc-backup.yaml</strong></p>
 <p id="cce_bestpractice_0107__p1946244224319"><strong id="cce_bestpractice_0107__b11773153914525">kubectl get pv xxx -n {namespaces} -oyaml &gt; pv-backup.yaml</strong></p>
-</li><li id="cce_bestpractice_0107__li3752132274116">Change the number of pods to <strong id="cce_bestpractice_0107__b842715611241">0</strong>.</li><li id="cce_bestpractice_0107__li8594347124116">On the storage page, disassociate the flexVolume PVC used by the StatefulSet.</li><li id="cce_bestpractice_0107__li1516912289428">Run the <strong id="cce_bestpractice_0107__b4130171813255">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_bestpractice_0107__p8843649624"><strong style="color:#252B3A;" id="cce_bestpractice_0107__b6321104512522">kubectl create -f pv-example.yaml</strong></p>
-<p id="cce_bestpractice_0107__p108433491626"><strong id="cce_bestpractice_0107__b732314519529"><span style="color:#252B3A;">kubectl create -f pvc-example.yaml</span></strong></p>
-<div class="note" id="cce_bestpractice_0107__note1984317491325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p884394916216">Replace the example file name <strong id="cce_bestpractice_0107__b63634327258">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_bestpractice_0107__li1219802032512">3</a> and <a href="#cce_bestpractice_0107__li1710710385418">4</a>.</p>
+</li><li id="cce_bestpractice_0107__li3752132274116">Change the number of pods to <strong id="cce_bestpractice_0107__b842715611241">0</strong>.</li><li id="cce_bestpractice_0107__li8594347124116">On the storage page, disassociate the flexVolume PVC used by the StatefulSet.</li><li id="cce_bestpractice_0107__li1516912289428">Run the <strong id="cce_bestpractice_0107__b4130171813255">kubectl create -f</strong> commands to create a PV and PVC.<p id="cce_bestpractice_0107__p8843649624"><strong id="cce_bestpractice_0107__b6321104512522">kubectl create -f pv-example.yaml</strong></p>
+<p id="cce_bestpractice_0107__p108433491626"><strong id="cce_bestpractice_0107__b732314519529">kubectl create -f pvc-example.yaml</strong></p>
+<div class="note" id="cce_bestpractice_0107__note1984317491325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p884394916216">Replace the example file name <strong id="cce_bestpractice_0107__b63634327258">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_bestpractice_0107__li1219802032512">2</a> and <a href="#cce_bestpractice_0107__li1710710385418">3</a>.</p>
 </div></div>
 </li><li id="cce_bestpractice_0107__li416917424">Change the number of pods back to the original value and wait until the pods are running.</li></ol>
 <div class="note" id="cce_bestpractice_0107__note16369154924218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p193690499421">The dynamic allocation of storage for StatefulSets is achieved by using <strong id="cce_bestpractice_0107__b718174012716">volumeClaimTemplates</strong>. This field cannot be modified by Kubernetes. Therefore, data cannot be migrated by using a new PVC.</p>
@@ -574,7 +581,7 @@ spec:
         namespace: default
         creationTimestamp: null
         annotations:
-          everest.io/disk-volume-type: SATA
+          everest.io/disk-volume-type: SAS
       spec:
         accessModes:
           - ReadWriteOnce
@@ -582,7 +589,7 @@ spec:
           requests:
             storage: 10Gi
         storageClassName: csi-disk</pre>
-<p id="cce_bestpractice_0107__p16173075017">The parameter value must be the same as the PVC of the EVS volume created in <a href="#cce_bestpractice_0107__li1710710385418">4</a>.</p>
+<p id="cce_bestpractice_0107__p16173075017">The parameter value must be the same as the PVC of the EVS volume created in <a href="#cce_bestpractice_0107__li1710710385418">3</a>.</p>
 <p id="cce_bestpractice_0107__p496972015420">Configuration example of <strong id="cce_bestpractice_0107__b38819408388">volumeClaimTemplates for an SFS volume</strong>:</p>
 <pre class="screen" id="cce_bestpractice_0107__screen2111101275510">  volumeClaimTemplates:
     - metadata:
@@ -595,8 +602,8 @@ spec:
         resources:
           requests:
             storage: 10Gi
-        storageClassName: csi-na</pre>
-<p id="cce_bestpractice_0107__p18964174325419">The parameter value must be the same as the PVC of the SFS volume created in <a href="#cce_bestpractice_0107__li1710710385418">4</a>.</p>
+        storageClassName: csi-nas</pre>
+<p id="cce_bestpractice_0107__p18964174325419">The parameter value must be the same as the PVC of the SFS volume created in <a href="#cce_bestpractice_0107__li1710710385418">3</a>.</p>
 <p id="cce_bestpractice_0107__p2028514411542">Configuration example of <strong id="cce_bestpractice_0107__b32081043916">volumeClaimTemplates for an OBS volume</strong>:</p>
 <pre class="screen" id="cce_bestpractice_0107__screen3803192217565">  volumeClaimTemplates:
     - metadata:
@@ -613,24 +620,26 @@ spec:
           requests:
             storage: 1Gi
         storageClassName: csi-obs</pre>
-<p id="cce_bestpractice_0107__p7452134435416">The parameter value must be the same as the PVC of the OBS volume created in <a href="#cce_bestpractice_0107__li1710710385418">4</a>.</p>
+<p id="cce_bestpractice_0107__p7452134435416">The parameter value must be the same as the PVC of the OBS volume created in <a href="#cce_bestpractice_0107__li1710710385418">3</a>.</p>
 <ul id="cce_bestpractice_0107__ul4451106123212"><li id="cce_bestpractice_0107__li1445110623213">Delete the StatefulSet.</li></ul>
 <p id="cce_bestpractice_0107__p9484135210583"><strong id="cce_bestpractice_0107__b10187161615531">kubectl delete sts xxx -n</strong> {namespaces}</p>
 <ul id="cce_bestpractice_0107__ul23331682326"><li id="cce_bestpractice_0107__li183333819328">Create the StatefulSet.</li></ul>
 <p id="cce_bestpractice_0107__p15201716115912"><strong id="cce_bestpractice_0107__b364112118534">kubectl create -f sts.yaml</strong></p>
 </p></li><li id="cce_bestpractice_0107__li613114241611"><span>Check service functions.</span><p><ol type="a" id="cce_bestpractice_0107__ol11922155141617"><li id="cce_bestpractice_0107__li39225559164">Check whether the application is running properly.</li><li id="cce_bestpractice_0107__li14372105921616">Checking whether the data storage is normal.</li></ol>
-<div class="note" id="cce_bestpractice_0107__note175615519171"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p25611851151710">If a rollback is required, perform <a href="#cce_bestpractice_0107__li487255772614">5</a>. Select the PVC in FlexVolume format and upgrade the application.</p>
+<div class="note" id="cce_bestpractice_0107__note175615519171"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p25611851151710">If a rollback is required, perform <a href="#cce_bestpractice_0107__li487255772614">4</a>. Select the PVC in FlexVolume format and upgrade the application.</p>
 </div></div>
 </p></li><li id="cce_bestpractice_0107__li11514201412713"><span>Uninstall the PVC in the FlexVolume format.</span><p><p id="cce_bestpractice_0107__p1096845811912">If the application functions normally, unbind the PVC in the FlexVolume format on the storage management page.</p>
 <p id="cce_bestpractice_0107__p106251635193615">You can also run the kubectl command to delete the PVC and PV of the FlexVolume format.</p>
-<div class="caution" id="cce_bestpractice_0107__note7619735143613"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_0107__p14619163573619">Before deleting a PV, change the persistentVolumeReclaimPolicy policy of the PV to <strong id="cce_bestpractice_0107__b057412249379">Retain</strong>. Otherwise, the underlying storage will be reclaimed after the PV is deleted.</p>
+<div class="caution" id="cce_bestpractice_0107__note7619735143613"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_0107__p14619163573619">Before deleting a PV, change the persistentVolumeReclaimPolicy of the PV to <strong id="cce_bestpractice_0107__b057412249379">Retain</strong>. Otherwise, the underlying storage will be reclaimed after the PV is deleted.</p>
+<p id="cce_bestpractice_0107__p597819349482">If the cluster has been upgraded before the storage migration, PVs may fail to be deleted. You can remove the PV protection field <strong id="cce_bestpractice_0107__b16941325115918">finalizers</strong> to delete PVs.</p>
+<p id="cce_bestpractice_0107__p69375506527">kubectl patch pv {pv_name} -p '{"metadata":{"finalizers":null}}'</p>
 </div></div>
 </p></li></ol>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_faq_0083.html">Reference</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_bestpractice_0306.html b/docs/cce/umn/cce_bestpractice_0306.html
new file mode 100644
index 00000000..7e2330c7
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0306.html
@@ -0,0 +1,29 @@
+<a name="cce_bestpractice_0306"></a><a name="cce_bestpractice_0306"></a>
+
+<h1 class="topictitle1">Migrating On-premises Kubernetes Clusters to CCE</h1>
+<div id="body0000001217423603"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0307.html">Solution Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0308.html">Planning Resources for the Target Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0309.html">Migrating Resources Outside a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0310.html">Installing the Migration Tool</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0311.html">Migrating Resources in a Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0312.html">Updating Resources Accordingly</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0313.html">Performing Additional Tasks</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0314.html">Troubleshooting</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_00237.html">Migration</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0307.html b/docs/cce/umn/cce_bestpractice_0307.html
new file mode 100644
index 00000000..4e873d7d
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0307.html
@@ -0,0 +1,78 @@
+<a name="cce_bestpractice_0307"></a><a name="cce_bestpractice_0307"></a>
+
+<h1 class="topictitle1">Solution Overview</h1>
+<div id="body0000001217183655"><div class="section" id="cce_bestpractice_0307__section14709747163418"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_0307__p17455125113810">Containers are growing in popularity and Kubernetes simplifies containerized deployment. Many companies choose to build their own Kubernetes clusters. However, the O&amp;M workload of on-premises clusters is heavy, and O&amp;M personnel need to configure the management systems and monitoring solutions by themselves. This increases the labor costs while decreasing the efficiency.</p>
+<p id="cce_bestpractice_0307__p31141322163118">In terms of performance, an on-premises cluster has poor scalability due to its fixed specifications. Auto scaling cannot be implemented in case of traffic surges, which may easily result in the insufficient or waste of cluster resources. In addition, an on-premises cluster is usually deployed on a single node without considering disaster recovery risks. Once a fault occurs, the entire cluster cannot be used, which may cause serious production incident.</p>
+<p id="cce_bestpractice_0307__p516932813291">Now you can address the preceding challenges by using CCE, a service that allows easy cluster management and flexible scaling, integrated with application service mesh and Helm charts to simplify cluster O&amp;M and reduce operations costs. CCE is easy to use and delivers high performance, security, reliability, openness, and compatibility. This section describes the solution and procedure for migrating on-premises clusters to CCE.</p>
+</div>
+<div class="section" id="cce_bestpractice_0307__section96147345128"><a name="cce_bestpractice_0307__section96147345128"></a><a name="section96147345128"></a><h4 class="sectiontitle">Migration Solution</h4><p id="cce_bestpractice_0307__p68174413595">This section describes a cluster migration solution, which applies to the following types of clusters:</p>
+<ul id="cce_bestpractice_0307__ul1166104675910"><li id="cce_bestpractice_0307__li16159248145914">Kubernetes clusters built in local IDCs</li><li id="cce_bestpractice_0307__li1695203308">On-premises clusters built using multiple ECSs</li><li id="cce_bestpractice_0307__li489193516016">Cluster services provided by other cloud service providers</li></ul>
+<div class="p" id="cce_bestpractice_0307__p083513115214">Before the migration, you need to analyze all resources in the source clusters and then determine the migration solution. Resources that can be migrated include resources inside and outside the clusters, as listed in the following table.
+<div class="tablenoborder"><a name="cce_bestpractice_0307__table1126932541820"></a><a name="table1126932541820"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0307__table1126932541820" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Resources that can be migrated</caption><thead align="left"><tr id="cce_bestpractice_0307__row162701325181818"><th align="left" class="cellrowborder" valign="top" width="18.371837183718373%" id="mcps1.3.2.4.1.2.4.1.1"><p id="cce_bestpractice_0307__p1227012513184">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.724072407240726%" id="mcps1.3.2.4.1.2.4.1.2"><p id="cce_bestpractice_0307__p62701425181817">Migration Object</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.9040904090409%" id="mcps1.3.2.4.1.2.4.1.3"><p id="cce_bestpractice_0307__p142701525181810">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0307__row112706254180"><td class="cellrowborder" rowspan="2" valign="top" width="18.371837183718373%" headers="mcps1.3.2.4.1.2.4.1.1 "><p id="cce_bestpractice_0307__p1127052511813">Resources inside a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.724072407240726%" headers="mcps1.3.2.4.1.2.4.1.2 "><p id="cce_bestpractice_0307__p827072531819">All objects in a cluster, including pods, jobs, Services, Deployments, and ConfigMaps.</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.9040904090409%" headers="mcps1.3.2.4.1.2.4.1.3 "><p id="cce_bestpractice_0307__p1731712017411">You are not advised to migrate the resources in the <strong id="cce_bestpractice_0307__b959117185306">velero</strong> and <strong id="cce_bestpractice_0307__b95794228301">kube-system</strong> namespaces.</p>
+<ul id="cce_bestpractice_0307__ul321917814720"><li id="cce_bestpractice_0307__li1621958134715"><strong id="cce_bestpractice_0307__b9600163713010">velero</strong>: Resources in this namespace are created by the migration tool and do not need to be migrated.</li><li id="cce_bestpractice_0307__li47721211194717"><strong id="cce_bestpractice_0307__b11266184918306">kube-system</strong>: Resources in this namespace are system resources. If this namespace of the source cluster contains resources created by users, migrate the resources on demand.</li></ul>
+<div class="caution" id="cce_bestpractice_0307__note1144714363571"><span class="cautiontitle"> CAUTION: </span><div class="cautionbody"><p id="cce_bestpractice_0307__p3447113615711">If you are migrating or backing up cluster resources in CCE, for example, from a namespace to another, do not back up Secret <strong id="cce_bestpractice_0307__b1898025042415">paas.elb</strong>. It is because secret <strong id="cce_bestpractice_0307__b69911519192515">paas.elb</strong> is periodically updated. After the backup is complete, the secret may become invalid when it is restored. As a result, network storage functions are affected.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_bestpractice_0307__row142701925191817"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.1.2.4.1.1 "><p id="cce_bestpractice_0307__p527042511814">PersistentVolumes (PVs) mounted to containers</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.1.2.4.1.2 "><p id="cce_bestpractice_0307__p1227022517184">Due to restrictions of the Restic tool, migration is not supported for the hostPath storage volume. For details about how to solve the problem, see <a href="cce_bestpractice_0314.html#cce_bestpractice_0314__section11197194820367">Storage Volumes of the HostPath Type Cannot Be Backed Up</a>.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0307__row17561521201920"><td class="cellrowborder" rowspan="3" valign="top" width="18.371837183718373%" headers="mcps1.3.2.4.1.2.4.1.1 "><p id="cce_bestpractice_0307__p16561521131919">Resources outside a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.724072407240726%" headers="mcps1.3.2.4.1.2.4.1.2 "><p id="cce_bestpractice_0307__p13561182111916">On-premises image repository</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.9040904090409%" headers="mcps1.3.2.4.1.2.4.1.3 "><p id="cce_bestpractice_0307__p65616210195">Resources can be migrated to SoftWare Repository for Container (SWR).</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0307__row6927152912208"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.1.2.4.1.1 "><p id="cce_bestpractice_0307__p159271299203">Non-containerized database</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.1.2.4.1.2 "><p id="cce_bestpractice_0307__p19271529132013">Resources can be migrated to Relational Database Service (RDS).</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0307__row19533194652012"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.1.2.4.1.1 "><p id="cce_bestpractice_0307__p1353394672010">Non-local storage, such as object storage</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.1.2.4.1.2 "><p id="cce_bestpractice_0307__p14533646112012">Resources can be migrated to Object Storage Service (OBS).</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<p id="cce_bestpractice_0307__p941154474217"><a href="#cce_bestpractice_0307__fig203631140201419">Figure 1</a> shows the migration process. You can migrate resources outside a cluster as required.</p>
+<div class="fignone" id="cce_bestpractice_0307__fig203631140201419"><a name="cce_bestpractice_0307__fig203631140201419"></a><a name="fig203631140201419"></a><span class="figcap"><b>Figure 1 </b>Migration solution diagram</span><br><span><img class="eddx" id="cce_bestpractice_0307__image2097373112920" src="en-us_image_0000001172392670.png"></span></div>
+</div>
+<div class="section" id="cce_bestpractice_0307__section188932711218"><h4 class="sectiontitle">Migration Process</h4><p id="cce_bestpractice_0307__p131027295410"><span><img class="eddx" id="cce_bestpractice_0307__image101029293412" src="en-us_image_0000001218074121.png"></span></p>
+<p id="cce_bestpractice_0307__p1775316305121">The cluster migration process is as follows:</p>
+<ol id="cce_bestpractice_0307__ol1716802114911"><li id="cce_bestpractice_0307__li816852174910"><span><strong id="cce_bestpractice_0307__b9310111853620">Plan resources for the target cluster.</strong></span><p><p id="cce_bestpractice_0307__p1635313410501">For details about the differences between CCE clusters and on-premises clusters, see <strong id="cce_bestpractice_0307__b6613814194517">Key Performance Parameter</strong> in <a href="cce_bestpractice_0308.html">Planning Resources for the Target Cluster</a>. Plan resources as required and ensure that the performance configuration of the target cluster is the same as that of the source cluster.</p>
+</p></li><li id="cce_bestpractice_0307__li932294015497"><span><strong id="cce_bestpractice_0307__b9106102112362">Migrate resources outside a cluster.</strong></span><p><p id="cce_bestpractice_0307__p770816502239">If you need to migrate resources outside the cluster, see <a href="cce_bestpractice_0309.html">Migrating Resources Outside a Cluster</a>.</p>
+</p></li><li id="cce_bestpractice_0307__li489795611493"><span><strong id="cce_bestpractice_0307__b145432024123714">Install the migration tool.</strong></span><p><p id="cce_bestpractice_0307__p171855589589">After resources outside a cluster are migrated, you can use a migration tool to back up and restore application configurations in the source and target clusters. For details about how to install the tool, see <a href="cce_bestpractice_0310.html">Installing the Migration Tool</a>.</p>
+</p></li><li id="cce_bestpractice_0307__li64881447506"><span><strong id="cce_bestpractice_0307__b973722063811">Migrate resources in the cluster.</strong></span><p><p id="cce_bestpractice_0307__p7306829111212">Use Velero to back up resources in the source cluster to OBS and restore the resources in the target cluster. For details, see <a href="cce_bestpractice_0311.html">Migrating Resources in a Cluster</a>.</p>
+<ul id="cce_bestpractice_0307__ul722117561652"><li id="cce_bestpractice_0307__li5221856657"><a href="cce_bestpractice_0311.html#cce_bestpractice_0311__section750718193288">Backing Up Applications in the Source Cluster</a><p id="cce_bestpractice_0307__p498019491519">To back up resources, use the Velero tool to create a backup object in the original cluster, query and back up cluster data and resources, package the data, and upload the package to the object storage that is compatible with the S3 protocol. Cluster resources are stored in the JSON format.</p>
+</li><li id="cce_bestpractice_0307__li107751021863"><a href="cce_bestpractice_0311.html#cce_bestpractice_0311__section482103142819">Restoring Applications in the Target Cluster</a><p id="cce_bestpractice_0307__p1316002362918">During restoration in the target cluster, Velero specifies the temporary object bucket that stores the backup data, downloads the backup data to the new cluster, and redeploys resources based on the JSON file.</p>
+</li></ul>
+</p></li><li id="cce_bestpractice_0307__li1553341005011"><span><strong id="cce_bestpractice_0307__b1032214317167">Update resources accordingly.</strong></span><p><p id="cce_bestpractice_0307__p1157265271410">After the migration, cluster resources may fail to be deployed. You need to update the faulty resources. The possible adaptation problems are as follows:</p>
+<ul id="cce_bestpractice_0307__ul15735182810208"><li id="cce_bestpractice_0307__li1735122892020"><a href="cce_bestpractice_0312.html#cce_bestpractice_0312__section7125750134820">Updating Images</a></li><li id="cce_bestpractice_0307__li573552814209"><a href="cce_bestpractice_0312.html#cce_bestpractice_0312__section41282507482">Updating Services</a></li><li id="cce_bestpractice_0307__li1873562817205"><a href="cce_bestpractice_0312.html#cce_bestpractice_0312__section746195321414">Updating the Storage Class</a></li><li id="cce_bestpractice_0307__li273592811206"><a href="cce_bestpractice_0312.html#cce_bestpractice_0312__section728213614323">Updating Databases</a></li></ul>
+</p></li><li id="cce_bestpractice_0307__li17717151765019"><span><strong id="cce_bestpractice_0307__b125386416222">Perform additional tasks.</strong></span><p><p id="cce_bestpractice_0307__p252401031618">After cluster resources are properly deployed, verify application functions after the migration and switch service traffic to the target cluster. After confirming that all services are running properly, bring the source cluster offline.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0308.html b/docs/cce/umn/cce_bestpractice_0308.html
new file mode 100644
index 00000000..d3b2be7f
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0308.html
@@ -0,0 +1,80 @@
+<a name="cce_bestpractice_0308"></a><a name="cce_bestpractice_0308"></a>
+
+<h1 class="topictitle1">Planning Resources for the Target Cluster</h1>
+<div id="body0000001217302181"><p id="cce_bestpractice_0308__p131025384">CCE allows you to customize cluster resources to meet various service requirements. <a href="#cce_bestpractice_0308__table1841815113913">Table 1</a> lists the key performance parameters of a cluster and provides the planned values. You can set the parameters based on your service requirements. It is recommended that the performance configuration be the same as that of the source cluster.</p>
+<div class="notice" id="cce_bestpractice_0308__note1065614489"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_bestpractice_0308__p86561441285">After a cluster is created, the resource parameters marked with asterisks (*) in <a href="#cce_bestpractice_0308__table1841815113913">Table 1</a> cannot be modified.</p>
+</div></div>
+
+<div class="tablenoborder"><a name="cce_bestpractice_0308__table1841815113913"></a><a name="table1841815113913"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0308__table1841815113913" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CCE cluster planning</caption><thead align="left"><tr id="cce_bestpractice_0308__row9842101513919"><th align="left" class="cellrowborder" valign="top" width="5.750575057505751%" id="mcps1.3.3.2.5.1.1"><p id="cce_bestpractice_0308__p10842515173920">Resource</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.001200120012001%" id="mcps1.3.3.2.5.1.2"><p id="cce_bestpractice_0308__p8515114620215">Key Performance Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72.19721972197219%" id="mcps1.3.3.2.5.1.3"><p id="cce_bestpractice_0308__p1284271512391">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="10.051005100510052%" id="mcps1.3.3.2.5.1.4"><p id="cce_bestpractice_0308__p1584219153393">Example Value</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0308__row184217155391"><td class="cellrowborder" rowspan="3" valign="top" width="5.750575057505751%" headers="mcps1.3.3.2.5.1.1 "><p id="cce_bestpractice_0308__p19842215163915">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.001200120012001%" headers="mcps1.3.3.2.5.1.2 "><p id="cce_bestpractice_0308__p35159461125"><strong id="cce_bestpractice_0308__b5390232995">*</strong>Cluster Type</p>
+</td>
+<td class="cellrowborder" valign="top" width="72.19721972197219%" headers="mcps1.3.3.2.5.1.3 "><ul id="cce_bestpractice_0308__ul149822281462"><li id="cce_bestpractice_0308__li49825285469"><strong id="cce_bestpractice_0308__b23176124910">CCE cluster</strong>: supports VM nodes. You can run your containers in a secure and stable container runtime environment based on a high-performance network model.</li><li id="cce_bestpractice_0308__li09822028114616"><strong id="cce_bestpractice_0308__b14415104315493">CCE Turbo cluster</strong>: runs on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, intelligent scheduling, and BMS nodes.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="10.051005100510052%" headers="mcps1.3.3.2.5.1.4 "><p id="cce_bestpractice_0308__p1784219151395">CCE cluster</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0308__row88425158392"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.1 "><p id="cce_bestpractice_0308__p195157467210"><strong id="cce_bestpractice_0308__b1457213342916">*</strong>Network Model</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.2 "><ul id="cce_bestpractice_0308__ul1439111511565"><li id="cce_bestpractice_0308__li4391101512560"><strong id="cce_bestpractice_0308__b108721159195016">VPC network</strong>: The container network uses VPC routing to integrate with the underlying network. This network model is applicable to performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the route quota in a VPC network.</li><li id="cce_bestpractice_0308__li4611618195616"><strong id="cce_bestpractice_0308__b132186415114">Tunnel network</strong>: The container network is an overlay tunnel network on top of a VPC network and uses the VXLAN technology. This network model is applicable when there is no high requirements on performance.</li><li id="cce_bestpractice_0308__li17651230195612"><strong id="cce_bestpractice_0308__b169001947164">Cloud Native Network 2.0</strong>: The container network deeply integrates the elastic network interface (ENI) capability of VPC, uses the VPC CIDR block to allocate container addresses, and supports passthrough networking to containers through a load balancer.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.3 "><p id="cce_bestpractice_0308__p2842515153910">VPC network</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0308__row16842191511395"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.1 "><p id="cce_bestpractice_0308__p125150461214"><strong id="cce_bestpractice_0308__b151391747191711">*</strong>Number of master nodes</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.2 "><ul id="cce_bestpractice_0308__ul1487217081512"><li id="cce_bestpractice_0308__li2872609150"><strong id="cce_bestpractice_0308__b17173142055213">3</strong>: Three master nodes will be created to deliver better DR performance. If one master node is faulty, the cluster can still be available without affecting service functions.</li><li id="cce_bestpractice_0308__li78971480156"><strong id="cce_bestpractice_0308__b431914781712">1</strong>: A single master node will be created. This mode is not recommended in commercial scenarios.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.3 "><p id="cce_bestpractice_0308__p484261515393">3</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0308__row384241515399"><td class="cellrowborder" rowspan="4" valign="top" width="5.750575057505751%" headers="mcps1.3.3.2.5.1.1 "><p id="cce_bestpractice_0308__p17842151514393">Node</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.001200120012001%" headers="mcps1.3.3.2.5.1.2 "><p id="cce_bestpractice_0308__p125156461122">OS</p>
+</td>
+<td class="cellrowborder" valign="top" width="72.19721972197219%" headers="mcps1.3.3.2.5.1.3 "><ul id="cce_bestpractice_0308__ul2622194214104"><li id="cce_bestpractice_0308__li9622184214104">EulerOS</li><li id="cce_bestpractice_0308__li1153313441105">CentOS</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="10.051005100510052%" headers="mcps1.3.3.2.5.1.4 "><p id="cce_bestpractice_0308__p9842151514392">EulerOS</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0308__row16841543171117"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.1 "><p id="cce_bestpractice_0308__p06841743181116">Node Specifications (vary depending on the actual region)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.2 "><ul id="cce_bestpractice_0308__ul7634123731220"><li id="cce_bestpractice_0308__li56341372129"><strong id="cce_bestpractice_0308__b443211577574">General-purpose</strong>: provides a balance of computing, memory, and network resources. It is a good choice for many applications. General-purpose nodes can be used for web servers, workload development, workload testing, and small-scale databases.</li><li id="cce_bestpractice_0308__li163493715124"><strong id="cce_bestpractice_0308__b14113148411">Memory-optimized</strong>: provides higher memory capacity than general-purpose nodes and is suitable for relational databases, NoSQL, and other workloads that are both memory-intensive and data-intensive.</li><li id="cce_bestpractice_0308__li3634137161212"><strong id="cce_bestpractice_0308__b623214177115">GPU-accelerated</strong>: provides powerful floating-point computing and is suitable for real-time, highly concurrent massive computing. Graphical processing units (GPUs) of P series are suitable for deep learning, scientific computing, and CAE. GPUs of G series are suitable for 3D animation rendering and CAD. GPU-accelerated nodes can be added only to clusters of v1.11 or later.</li><li id="cce_bestpractice_0308__li0634103741212"><strong id="cce_bestpractice_0308__b216220375117">General computing-plus</strong>: provides stable performance and exclusive resources to enterprise-class workloads with high and stable computing performance.</li><li id="cce_bestpractice_0308__li6634937131210"><strong id="cce_bestpractice_0308__b11341739145814">Disk-intensive</strong>: supports local disk storage and provides high networking performance. It is designed for workloads requiring high throughput and data switching, such as big data workloads.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.3 "><p id="cce_bestpractice_0308__p1468494381117">General-purpose (node specifications: 4 vCPUs and 8 GiB memory)</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0308__row7336123731"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.1 "><p id="cce_bestpractice_0308__p1433612311315">System Disk</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.2 "><ul id="cce_bestpractice_0308__ul19390161511312"><li id="cce_bestpractice_0308__li415520391154"><strong id="cce_bestpractice_0308__b56605349326">Common I/O</strong>: The backend storage media is SATA disks.</li><li id="cce_bestpractice_0308__li133901715835"><strong id="cce_bestpractice_0308__b813715121636">High I/O</strong>: The backend storage media is SAS disks.</li><li id="cce_bestpractice_0308__li184602272310"><strong id="cce_bestpractice_0308__b1597102317315">Ultra-high I/O</strong>: The backend storage media is SSD disks.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.3 "><p id="cce_bestpractice_0308__p17336113634">High I/O</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0308__row1484218154391"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.1 "><p id="cce_bestpractice_0308__p5515746325">Storage Type</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.2 "><ul id="cce_bestpractice_0308__ul516914445"><li id="cce_bestpractice_0308__li316912419419"><strong id="cce_bestpractice_0308__b039152817412">EVS volumes</strong>: Mount an EVS volume to a container path. When containers are migrated, the attached EVS volumes are migrated accordingly. This storage mode is suitable for data that needs to be permanently stored.</li><li id="cce_bestpractice_0308__li916913420412"><strong id="cce_bestpractice_0308__b45008381946">SFS volumes</strong>: Create SFS volumes and mount them to a container path. The file system volumes created by the underlying SFS service can also be used. SFS volumes are applicable to persistent storage for frequent read/write in multiple workload scenarios, including media processing, content management, big data analysis, and workload analysis.</li><li id="cce_bestpractice_0308__li6169204045"><strong id="cce_bestpractice_0308__b10463342146">OBS volumes</strong>: Create OBS volumes and mount them to a container path. OBS volumes are applicable to scenarios such as cloud workload, data analysis, content analysis, and hotspot objects.</li><li id="cce_bestpractice_0308__li9169342414"><strong id="cce_bestpractice_0308__b639412462415">SFS Turbo volumes</strong>: Create SFS Turbo volumes and mount them to a container path. SFS Turbo volumes are fast, on-demand, and scalable, which makes them suitable for DevOps, containerized microservices, and enterprise office applications. </li></ul>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.1.3 "><p id="cce_bestpractice_0308__p1784271513393">EVS volumes</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0309.html b/docs/cce/umn/cce_bestpractice_0309.html
new file mode 100644
index 00000000..794acd71
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0309.html
@@ -0,0 +1,25 @@
+<a name="cce_bestpractice_0309"></a><a name="cce_bestpractice_0309"></a>
+
+<h1 class="topictitle1">Migrating Resources Outside a Cluster</h1>
+<div id="body0000001171862344"><p id="cce_bestpractice_0309__p578123012334">If your migration does not involve resources outside a cluster listed in <a href="cce_bestpractice_0307.html#cce_bestpractice_0307__table1126932541820">Table 1</a> or you do not need to use other services to update resources after the migration, skip this section.</p>
+<div class="section" id="cce_bestpractice_0309__section143771859185618"><h4 class="sectiontitle">Migrating Container Images</h4><p id="cce_bestpractice_0309__p4241514164217">To ensure that container images can be properly pulled after cluster migration and improve container deployment efficiency, you are advised to migrate private images to SoftWare Repository for Container (SWR). CCE works with SWR to provide a pipeline for automated container delivery. Images are pulled in parallel, which greatly improves container delivery efficiency.</p>
+<p id="cce_bestpractice_0309__p19850219181320">You need to manually migrate container images.</p>
+<ol id="cce_bestpractice_0309__cce_bestpractice_0059_ol4754151523913"><li id="cce_bestpractice_0309__cce_bestpractice_0059_li5754315133911"><span>Remotely log in to any node in the source cluster and run the <strong id="cce_bestpractice_0309__b123531411920">docker pull</strong> command to pull all images to the local host.</span></li><li id="cce_bestpractice_0309__li54208378229"><span>Log in to the SWR console, click <strong id="cce_bestpractice_0309__b710016262913">Login Command</strong> in the upper right corner of the page, and copy the command.</span></li><li id="cce_bestpractice_0309__li14501174119258"><span>Run the copied login command on the node.</span><p><p id="cce_bestpractice_0309__p1936514421259">The message "Login Succeeded" will be displayed upon a successful login.</p>
+</p></li><li id="cce_bestpractice_0309__li1088171782619"><span>Add tags to all local images.</span><p><pre class="screen" id="cce_bestpractice_0309__screen1354353544915">docker tag <em id="cce_bestpractice_0309__i713342215465">[Image name 1</em>:<em id="cce_bestpractice_0309__i1113482214619">tag 1]</em> <em id="cce_bestpractice_0309__i21342229464">[Image repository address]</em>/<em id="cce_bestpractice_0309__i1513462213464">[Organization name]</em>/<em id="cce_bestpractice_0309__i413522213467">[Image name 2</em>:<em id="cce_bestpractice_0309__i1013532284617">tag 2]</em></pre>
+<ul id="cce_bestpractice_0309__ul11488154018279"><li id="cce_bestpractice_0309__li84881840172716"><em id="cce_bestpractice_0309__i1778785720460">[Image name 1</em>:<em id="cce_bestpractice_0309__i187871557124610">tag 1]</em>: name and tag of the local image to be pulled.</li><li id="cce_bestpractice_0309__li948844016276"><em id="cce_bestpractice_0309__i41140121478">[Image repository address]</em>: You can query the image repository address on the SWR console.</li><li id="cce_bestpractice_0309__li2488144072718"><em id="cce_bestpractice_0309__i11199103854715">[Organization name]</em>: Enter the name of the organization you created on the SWR console.</li><li id="cce_bestpractice_0309__li4488940142715"><em id="cce_bestpractice_0309__i106852023104820">[Image name 2</em>:<em id="cce_bestpractice_0309__i17685132311484">tag 2]</em>: image name and tag displayed on the SWR console.</li></ul>
+<p id="cce_bestpractice_0309__p1948824042717"><strong id="cce_bestpractice_0309__b195553801120">Example</strong></p>
+<pre class="screen" id="cce_bestpractice_0309__screen1338255424513">docker tag nginx:v1 swr.eu-de.otc.t-systems.com/cloud-develop/mynginx:v1</pre>
+</p></li><li id="cce_bestpractice_0309__cce_bestpractice_0059_li10318626203915"><span>Run the <strong id="cce_bestpractice_0309__b3346477115">docker push</strong> command to upload all local container image files to SWR.</span><p><pre class="screen" id="cce_bestpractice_0309__screen17237344194914">docker push <em id="cce_bestpractice_0309__i3187105764818">[Image repository address]</em>/<em id="cce_bestpractice_0309__i1187135724812">[Organization name]</em>/<em id="cce_bestpractice_0309__i121871757154820">[Image name</em> 2:<em id="cce_bestpractice_0309__i61881857124819">tag 2]</em></pre>
+<p id="cce_bestpractice_0309__p28065557311"><strong id="cce_bestpractice_0309__b3521024687">Example</strong></p>
+<pre class="screen" id="cce_bestpractice_0309__screen1513693694612">docker push swr.eu-de.otc.t-systems.com/cloud-develop/mynginx:v1</pre>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0309__section395172934618"><h4 class="sectiontitle">Migrating Databases and Storage (On-Demand)</h4><p id="cce_bestpractice_0309__p59552934610">You can determine whether to use <strong id="cce_bestpractice_0309__b148311014171516">Relational Database Service (RDS)</strong> and <strong id="cce_bestpractice_0309__b15604151861511">Object Storage Service (OBS)</strong> based on your production requirements. After the migration is complete, you need to reconfigure the database and storage for applications in the target CCE cluster.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0310.html b/docs/cce/umn/cce_bestpractice_0310.html
new file mode 100644
index 00000000..6ed4b549
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0310.html
@@ -0,0 +1,133 @@
+<a name="cce_bestpractice_0310"></a><a name="cce_bestpractice_0310"></a>
+
+<h1 class="topictitle1">Installing the Migration Tool</h1>
+<div id="body0000001172022292"><p id="cce_bestpractice_0310__p3809931112915">Velero is an open-source backup and migration tool for Kubernetes clusters. It integrates the persistent volume (PV) data backup capability of the Restic tool and can be used to back up Kubernetes resource objects (such as Deployments, jobs, Services, and ConfigMaps) in the source cluster. Data in the PV mounted to the pod is backed up and uploaded to the object storage. When a disaster occurs or migration is required, the target cluster can use Velero to obtain the corresponding backup data from OBS and restore cluster resources as required.</p>
+<p id="cce_bestpractice_0310__p1411654112223">According to <a href="cce_bestpractice_0307.html#cce_bestpractice_0307__section96147345128">Migration Solution</a>, you need to prepare temporary object storage to store backup files before the migration. Velero supports OSB or <strong id="cce_bestpractice_0310__b1312245414411"><a href="https://min.io/" target="_blank" rel="noopener noreferrer">MinIO</a></strong> as the object storage. OBS requires sufficient storage space for storing backup files. You can estimate the storage space based on your cluster scale and data volume. You are advised to use OBS for backup. For details about how to deploy Velero, see <a href="#cce_bestpractice_0310__section138392220432">Installing Velero</a>.</p>
+<div class="section" id="cce_bestpractice_0310__section359172610485"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_bestpractice_0310__ul6273183844819"><li id="cce_bestpractice_0310__li20273193884812">The Kubernetes version of the source on-premises cluster must be 1.10 or later, and the cluster can use DNS and Internet services properly.</li><li id="cce_bestpractice_0310__li155136174411">If you use OBS to store backup files, you need to obtain the AK/SK of a user who has the right to operate OBS. For details about how to obtain the AK/SK, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/ac/en-us_topic_0046606340.html" target="_blank" rel="noopener noreferrer">Access Keys</a>.</li><li id="cce_bestpractice_0310__li1891954012534">If you use MinIO to store backup files, bind an EIP to the server where MinIO is installed and enable the API and console port of MinIO in the security group.</li><li id="cce_bestpractice_0310__li134135186499">The target CCE cluster has been created.</li><li id="cce_bestpractice_0310__li559517319329">The source cluster and target cluster must each have at least one idle node. It is recommended that the node specifications be 4 vCPUs and 8 GB memory or higher.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0310__section181263714271"><h4 class="sectiontitle">Installing MinIO</h4><p id="cce_bestpractice_0310__p6796542102519">MinIO is an open-source, high-performance object storage tool compatible with the S3 API protocol. If MinIO is used to store backup files for cluster migration, you need a temporary server to deploy MinIO and provide services for external systems. If you use OBS to store backup files, skip this section and go to <a href="#cce_bestpractice_0310__section138392220432">Installing Velero</a>.</p>
+<p id="cce_bestpractice_0310__p14624847191214">MinIO can be installed in any of the following locations:</p>
+<ul id="cce_bestpractice_0310__ul3285524012"><li id="cce_bestpractice_0310__li206713119817">Temporary ECS outside the cluster<p id="cce_bestpractice_0310__p20732133911221"><a name="cce_bestpractice_0310__li206713119817"></a><a name="li206713119817"></a>If the MinIO server is installed outside the cluster, backup files will not be affected when a catastrophic fault occurs in the cluster.</p>
+</li><li id="cce_bestpractice_0310__li1615322012011">Idle nodes in the cluster<div class="p" id="cce_bestpractice_0310__p148410843615"><a name="cce_bestpractice_0310__li1615322012011"></a><a name="li1615322012011"></a>You can remotely log in to a node to install the MinIO server or install MinIO in a container. For details, see the official Velero documentation at <a href="https://velero.io/docs/v1.7/contributions/minio/#set-up-server" target="_blank" rel="noopener noreferrer">https://velero.io/docs/v1.7/contributions/minio/#set-up-server</a>.<div class="notice" id="cce_bestpractice_0310__note22499214346"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_bestpractice_0310__p1624972103415">For example, to install MinIO in a container, run the following command:</p>
+<ul id="cce_bestpractice_0310__ul324932183410"><li id="cce_bestpractice_0310__li162491925345">The storage type in the YAML file provided by Velero is <strong id="cce_bestpractice_0310__b1808122372315">emptyDir</strong>. You are advised to change the storage type to <strong id="cce_bestpractice_0310__b977341734114">HostPath</strong> or <strong id="cce_bestpractice_0310__b0798520144114">Local</strong>. Otherwise, backup files will be permanently lost after the container is restarted.</li><li id="cce_bestpractice_0310__li524918253414">Ensure that the MinIO service is accessible externally. Otherwise, backup files cannot be downloaded outside the cluster. You can change the Service type to NodePort or use other types of public network access Services.</li></ul>
+</div></div>
+</div>
+</li></ul>
+<p id="cce_bestpractice_0310__p188061459195317">Regardless of which deployment method is used, the server where MinIO is installed must have sufficient storage space, an EIP must be bound to the server, and the MinIO service port must be enabled in the security group. Otherwise, backup files cannot be uploaded or downloaded.</p>
+<p id="cce_bestpractice_0310__p3891235918">In this example, MinIO is installed on a temporary ECS outside the cluster.</p>
+<ol id="cce_bestpractice_0310__ol9501644134317"><li id="cce_bestpractice_0310__li2501124412437"><span>Download MinIO.</span><p><pre class="screen" id="cce_bestpractice_0310__screen7473102322915">mkdir /opt/minio
+mkdir /opt/miniodata
+cd /opt/minio
+wget https://dl.minio.io/server/minio/release/linux-amd64/minio
+chmod +x minio</pre>
+</p></li><li id="cce_bestpractice_0310__li126129251432"><a name="cce_bestpractice_0310__li126129251432"></a><a name="li126129251432"></a><span>Set the username and password of MinIO.</span><p><div class="p" id="cce_bestpractice_0310__p129201130164311">The username and password set using this method are temporary environment variables and must be reset after the service is restarted. Otherwise, the default root credential <strong id="cce_bestpractice_0310__b692584013259">minioadmin:minioadmin</strong> will be used to create the service.<pre class="screen" id="cce_bestpractice_0310__screen203563619379">export MINIO_ROOT_USER=minio
+export MINIO_ROOT_PASSWORD=minio123</pre>
+</div>
+</p></li><li id="cce_bestpractice_0310__li11998181319215"><span>Create a service. In the command, <strong id="cce_bestpractice_0310__b6190111516260">/opt/miniodata/</strong> indicates the local disk path for MinIO to store data.</span><p><div class="p" id="cce_bestpractice_0310__p2772814105517">The default API port of MinIO is 9000, and the console port is randomly generated. You can use the<strong id="cce_bestpractice_0310__b9701114135410"> --console-address</strong> parameter to specify a console port.<pre class="screen" id="cce_bestpractice_0310__screen41261845123720">./minio server /opt/miniodata/ <strong id="cce_bestpractice_0310__b2067953905617">--console-address ":30840"</strong> &amp;</pre>
+<div class="note" id="cce_bestpractice_0310__note599313216576"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0310__p361815479536">Enable the API and console ports in the firewall and security group on the server where MinIO is to be installed. Otherwise, access to the object bucket will fail.</p>
+</div></div>
+</div>
+</p></li><li id="cce_bestpractice_0310__li679315587507"><span>Use a browser to access http://{<em id="cce_bestpractice_0310__i2387183555417">EIP of the node where MinIO resides</em>}:30840. The MinIO console page is displayed.</span></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0310__section138392220432"><a name="cce_bestpractice_0310__section138392220432"></a><a name="section138392220432"></a><h4 class="sectiontitle">Installing Velero</h4><p id="cce_bestpractice_0310__p1288219132619">Go to the OBS console or MinIO console and create a bucket named <strong id="cce_bestpractice_0310__b48824918262">velero</strong> to store backup files. You can custom the bucket name, which must be used when installing Velero. Otherwise, the bucket cannot be accessed and the backup fails. For details, see <a href="#cce_bestpractice_0310__li1722825643415">4</a>.</p>
+<div class="notice" id="cce_bestpractice_0310__note3130637171311"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_bestpractice_0310__ul18878113412459"><li id="cce_bestpractice_0310__li14878113410458">Velero instances need to be installed and deployed in both the <strong id="cce_bestpractice_0310__b66513418511">source and target clusters</strong>. The installation procedures are the same, which are used for backup and restoration, respectively.</li><li id="cce_bestpractice_0310__li13878123434512">The master node of a CCE cluster does not provide a port for remote login. You can install Velero using kubectl.</li><li id="cce_bestpractice_0310__li086014434132">If there are a large number of resources to back up, you are advised to adjust the CPU and memory resources of Velero and Restic to 1 vCPU and 1 GB memory or higher. For details, see <a href="cce_bestpractice_0314.html#cce_bestpractice_0314__section321054511332">Backup Tool Resources Are Insufficient</a>.</li><li id="cce_bestpractice_0310__li371815153549">The object storage bucket for storing backup files must be <strong id="cce_bestpractice_0310__b925991915532">empty</strong>.</li></ul>
+</div></div>
+<p id="cce_bestpractice_0310__p23063528370">Download the latest, stable binary file from <a href="https://github.com/vmware-tanzu/velero/releases" target="_blank" rel="noopener noreferrer">https://github.com/vmware-tanzu/velero/releases</a>. This section uses Velero 1.7.0 as an example. The installation process in the source cluster is the same as that in the target cluster.</p>
+<ol id="cce_bestpractice_0310__ol23917418811"><li id="cce_bestpractice_0310__li139941685"><span>Download the binary file of Velero 1.7.0.</span><p><pre class="screen" id="cce_bestpractice_0310__screen18999040171111">wget https://github.com/vmware-tanzu/velero/releases/download/v1.7.0/velero-v1.7.0-linux-amd64.tar.gz</pre>
+</p></li><li id="cce_bestpractice_0310__li689617355117"><span>Install the Velero client.</span><p><pre class="screen" id="cce_bestpractice_0310__screen56461032153214">tar -xvf velero-v1.7.0-linux-amd64.tar.gz
+cp ./velero-v1.7.0-linux-amd64/velero /usr/local/bin</pre>
+</p></li><li id="cce_bestpractice_0310__li197871715322"><a name="cce_bestpractice_0310__li197871715322"></a><a name="li197871715322"></a><span>Create the access key file <strong id="cce_bestpractice_0310__b667315187332">credentials-velero</strong> for the backup object storage.</span><p><pre class="screen" id="cce_bestpractice_0310__screen349193683016">vim credentials-velero</pre>
+<div class="p" id="cce_bestpractice_0310__p829284510217">Replace the AK/SK in the file based on the site requirements. If OBS is used, obtain the AK/SK by referring to . If MinIO is used, the AK and SK are the username and password created in <a href="#cce_bestpractice_0310__li126129251432">2</a>.<pre class="screen" id="cce_bestpractice_0310__screen1785641615356">[default]
+aws_access_key_id = {AK}
+aws_secret_access_key = {SK}</pre>
+</div>
+</p></li><li id="cce_bestpractice_0310__li1722825643415"><a name="cce_bestpractice_0310__li1722825643415"></a><a name="li1722825643415"></a><span>Deploy the Velero server. Change the value of <strong id="cce_bestpractice_0310__b19564115842">--bucket</strong> to the name of the created object storage bucket. In this example, the bucket name is <strong id="cce_bestpractice_0310__b936516262045">velero</strong>. For more information about custom installation parameters, see <a href="https://velero.io/docs/v1.7/customize-installation/" target="_blank" rel="noopener noreferrer">Customize Velero Install</a>.</span><p><pre class="screen" id="cce_bestpractice_0310__screen456316020486">velero install \
+  --provider aws \
+  --plugins velero/velero-plugin-for-aws:v1.2.1 \
+ <strong id="cce_bestpractice_0310__b14563170204817"> --bucket</strong> <strong id="cce_bestpractice_0310__b3564140114811">velero</strong> \
+  --secret-file ./credentials-velero \
+  <strong id="cce_bestpractice_0310__b17564170204811">--use-restic</strong> \
+  --use-volume-snapshots=false \
+  --backup-location-config <strong id="cce_bestpractice_0310__b1856418018483">region=eu-de</strong>,s3ForcePathStyle="true",s3Url=<strong id="cce_bestpractice_0310__b1656490114819">http://</strong><strong id="cce_bestpractice_0310__b434842745017">obs.eu-de.otc.t-systems.com</strong></pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0310__table1298553205012" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Installation parameters of Velero</caption><thead align="left"><tr id="cce_bestpractice_0310__row49861632155012"><th align="left" class="cellrowborder" valign="top" width="20.11%" id="mcps1.3.5.5.4.2.2.2.3.1.1"><p id="cce_bestpractice_0310__p198612324502">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.89%" id="mcps1.3.5.5.4.2.2.2.3.1.2"><p id="cce_bestpractice_0310__p698683213500">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0310__row4986133285016"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p10986183225015">--provider</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p9986123216503">Vendor who provides the plug-in.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row6986173225015"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p1698619321505">--plugins</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p199861232175017">API component compatible with AWS S3. Both OBS and MinIO support the S3 protocol.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row17986103245013"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p1986113295017">--bucket</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p3986132165014">Name of the object storage bucket for storing backup files. The bucket must be created in advance.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row1298683216500"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p16986143213509">--secret-file</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p29861632135010">Secret file for accessing the object storage, that is, the <strong id="cce_bestpractice_0310__b1566251467">credentials-velero</strong> file created in <a href="#cce_bestpractice_0310__li197871715322">3</a>.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row17986732155016"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p1398613327503">--use-restic</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p1198613220502">Whether to use Restic to support PV data backup. You are advised to enable this function. Otherwise, storage volume resources cannot be backed up.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row16986193255013"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p5986632185017">--use-volume-snapshots</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p5986232135011">Whether to create the VolumeSnapshotLocation object for PV snapshot, which requires support from the snapshot program. Set this parameter to <strong id="cce_bestpractice_0310__b351510543617">false</strong>.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row123519155210"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p183529125217">--backup-location-config</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p2028718451307">OBS bucket configurations, including region, s3ForcePathStyle, and s3Url.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row185442375713"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p1654543717712">region</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p57281942191117">Region to which object storage bucket belongs.</p>
+<ul id="cce_bestpractice_0310__ul132912452113"><li id="cce_bestpractice_0310__li88571258191415">If OBS is used, set this parameter according to your region, for example, <strong id="cce_bestpractice_0310__b1534116269549">eu-de</strong>.</li><li id="cce_bestpractice_0310__li836215615116">If MinIO is used, set this parameter to <strong id="cce_bestpractice_0310__b08694591776">minio</strong>.</li></ul>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row188978428713"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p289784219712">s3ForcePathStyle</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p3897134213715">The value<strong id="cce_bestpractice_0310__b188221455816"> true</strong> indicates that the S3 file path format is used.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0310__row1623114013713"><td class="cellrowborder" valign="top" width="20.11%" headers="mcps1.3.5.5.4.2.2.2.3.1.1 "><p id="cce_bestpractice_0310__p172318407712">s3Url</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.89%" headers="mcps1.3.5.5.4.2.2.2.3.1.2 "><p id="cce_bestpractice_0310__p12252926151211">API access address of the object storage bucket.</p>
+<ul id="cce_bestpractice_0310__ul19661627161215"><li id="cce_bestpractice_0310__li177014356503">If OBS is used, set this parameter to <strong id="cce_bestpractice_0310__b1613911313205">http://obs.{<em id="cce_bestpractice_0310__i1213931318208">region</em>}.otc.t-systems.com</strong> (<em id="cce_bestpractice_0310__i161399136202">region</em> indicates the region where the object storage bucket is located). For example, if the region is eu-de, the parameter value is <span class="parmvalue" id="cce_bestpractice_0310__parmvalue1649984092017"><b>http://obs.eu-de.otc.t-systems.com</b></span>.</li><li id="cce_bestpractice_0310__li6848734101211">If MinIO is used, set this parameter to <strong id="cce_bestpractice_0310__b1369418443498">http://{<em id="cce_bestpractice_0310__i93851949134913">EIP of the node where minio is located</em>}:9000</strong>. The value of this parameter is determined based on the IP address and port of the node where MinIO is installed.<div class="note" id="cce_bestpractice_0310__note12459531216"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_bestpractice_0310__ul367413691214"><li id="cce_bestpractice_0310__li067417617121">The access port in s3Url must be set to the API port of MinIO instead of the console port. The default API port of MinIO is 9000.</li><li id="cce_bestpractice_0310__li96748671210">To access MinIO installed outside the cluster, you need to enter the public IP address of MinIO.</li></ul>
+</div></div>
+</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_bestpractice_0310__li1416185416018"><span>By default, a namespace named <strong id="cce_bestpractice_0310__b111206162522">velero</strong> is created for the Velero instance. Run the following command to view the pod status:</span><p><pre class="screen" id="cce_bestpractice_0310__screen11881501936">$ kubectl get pod -n velero
+NAME                   READY   STATUS    RESTARTS   AGE
+restic-rn29c           1/1     Running   0          16s
+velero-c9ddd56-tkzpk   1/1     Running   0          16s</pre>
+<div class="note" id="cce_bestpractice_0310__note345023151715"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0310__p845012371714">To prevent memory insufficiency during backup in the actual production environment, you are advised to change the CPU and memory allocated to Restic and Velero by referring to <a href="cce_bestpractice_0314.html#cce_bestpractice_0314__section321054511332">Backup Tool Resources Are Insufficient</a>.</p>
+</div></div>
+</p></li><li id="cce_bestpractice_0310__li12133141692317"><span>Check the interconnection between Velero and the object storage and ensure that the status is <strong id="cce_bestpractice_0310__b951210429164">Available</strong>.</span><p><pre class="screen" id="cce_bestpractice_0310__screen552335112113">$ velero backup-location get
+NAME      PROVIDER   BUCKET/PREFIX   PHASE       LAST VALIDATED                  ACCESS MODE   DEFAULT
+default   aws        velero          Available   2021-10-22 15:21:12 +0800 CST   ReadWrite     true</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0311.html b/docs/cce/umn/cce_bestpractice_0311.html
new file mode 100644
index 00000000..83ef9bb7
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0311.html
@@ -0,0 +1,67 @@
+<a name="cce_bestpractice_0311"></a><a name="cce_bestpractice_0311"></a>
+
+<h1 class="topictitle1">Migrating Resources in a Cluster </h1>
+<div id="body0000001171703796"><div class="section" id="cce_bestpractice_0311__section0632163995516"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_0311__p6160124715555">WordPress is used as an example to describe how to migrate an application from an on-premises Kubernetes cluster to a CCE cluster. The WordPress application consists of the WordPress and MySQL components, which are containerized. The two components are bound to two local storage volumes of the Local type respectively and provide external access through the NodePort Service.</p>
+<p id="cce_bestpractice_0311__p115616459247">Before the migration, use a browser to access the WordPress site, create a site named <strong id="cce_bestpractice_0311__b77331014112012">Migrate to CCE</strong>, and publish an article to verify the integrity of PV data after the migration. The article published in WordPress will be stored in the <strong id="cce_bestpractice_0311__b19549114712015">wp_posts</strong> table of the MySQL database. If the migration is successful, all contents in the database will be migrated to the new cluster. You can verify the PV data migration based on the migration result.</p>
+</div>
+<div class="section" id="cce_bestpractice_0311__section172731632154715"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_bestpractice_0311__ul178289225471"><li id="cce_bestpractice_0311__li10515100098">Before the migration, clear the abnormal pod resources in the source cluster. If the pod is in the abnormal state and has a PVC mounted, the PVC is in the pending state after the cluster is migrated.</li><li id="cce_bestpractice_0311__li8517155211119">Ensure that the cluster on the CCE side does not have the same resources as the cluster to be migrated because Velero does not restore the same resources by default.</li><li id="cce_bestpractice_0311__li1436416144524">To ensure that container image images can be properly pulled after cluster migration, migrate the images to SWR.</li><li id="cce_bestpractice_0311__li1122702481914">CCE does not support EVS disks of the <strong id="cce_bestpractice_0311__b69136231580">ReadWriteMany</strong> type. If resources of this type exist in the source cluster, change the storage type to <strong id="cce_bestpractice_0311__b6248204013812">ReadWriteOnce</strong>.</li><li id="cce_bestpractice_0311__li14227112441912">Velero integrates the Restic tool to back up and restore storage volumes. Currently, the storage volumes of the HostPath type are not supported. For details, see <a href="https://velero.io/docs/v1.7/restic/#limitations" target="_blank" rel="noopener noreferrer">Restic Restrictions</a>. If you need to back up storage volumes of this type, replace the hostPath volumes with local volumes by referring to <a href="cce_bestpractice_0314.html#cce_bestpractice_0314__section11197194820367">Storage Volumes of the HostPath Type Cannot Be Backed Up</a>. If a backup task involves storage of the HostPath type, the storage volumes of this type will be automatically skipped and a warning message will be generated. This will not cause a backup failure.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0311__section750718193288"><a name="cce_bestpractice_0311__section750718193288"></a><a name="section750718193288"></a><h4 class="sectiontitle">Backing Up Applications in the Source Cluster</h4><ol id="cce_bestpractice_0311__ol13869175012815"><li id="cce_bestpractice_0311__li686918502812"><a name="cce_bestpractice_0311__li686918502812"></a><a name="li686918502812"></a><span>(Optional) If you need to back up the data of a specified storage volume in the pod, add an annotation to the pod. The annotation template is as follows:</span><p><pre class="screen" id="cce_bestpractice_0311__screen1621514549277">kubectl -n <strong id="cce_bestpractice_0311__b18471511300">&lt;namespace</strong><strong id="cce_bestpractice_0311__b1437915916323">&gt;</strong> annotate &lt;pod/<strong id="cce_bestpractice_0311__b8513833018">pod_name</strong>&gt; backup.velero.io/backup-volumes=<strong id="cce_bestpractice_0311__b2058671816322">&lt;volume_name_1&gt;</strong>,<strong id="cce_bestpractice_0311__b8147102610320">&lt;volume_name_2&gt;</strong>,...</pre>
+<ul id="cce_bestpractice_0311__ul787332554013"><li id="cce_bestpractice_0311__li17873725124015"><strong id="cce_bestpractice_0311__b991653818272">&lt;namespace&gt;</strong>: namespace where the pod is located.</li><li id="cce_bestpractice_0311__li91571452104016"><strong id="cce_bestpractice_0311__b4133105572713">&lt;pod_name&gt;</strong>: pod name.</li><li id="cce_bestpractice_0311__li17289162413"><strong id="cce_bestpractice_0311__b2645165910274">&lt;volume_name&gt;</strong>: name of the persistent volume mounted to the pod. You can run the <strong id="cce_bestpractice_0311__b7672131818281">describe</strong> statement to query the pod information. The <strong id="cce_bestpractice_0311__b92329236285">Volume</strong> field indicates the names of all persistent volumes attached to the pod.</li></ul>
+<p id="cce_bestpractice_0311__p59773463286">Add annotations to the pods of WordPress and MySQL. The pod names are <strong id="cce_bestpractice_0311__b111314504285">wordpress-758fbf6fc7-s7fsr</strong> and <strong id="cce_bestpractice_0311__b14571853152814">mysql-5ffdfbc498-c45lh</strong>. As the pods are in the default namespace <strong id="cce_bestpractice_0311__b360017234294">default</strong>, the <strong id="cce_bestpractice_0311__b195571126162920">-n &lt;NAMESPACE&gt;</strong> parameter can be omitted.</p>
+<pre class="screen" id="cce_bestpractice_0311__screen16790194410298">kubectl annotate pod/<strong id="cce_bestpractice_0311__b977317119301">wordpress-758fbf6fc7-s7fsr</strong> backup.velero.io/backup-volumes=<strong id="cce_bestpractice_0311__b15315124203312">wp-storage</strong>
+kubectl annotate pod/<strong id="cce_bestpractice_0311__b1846113910331">mysql-5ffdfbc498-c45lh</strong> backup.velero.io/backup-volumes=<strong id="cce_bestpractice_0311__b84753445334">mysql-storage</strong></pre>
+</p></li><li id="cce_bestpractice_0311__li184741221231"><span>Back up the application. During the backup, you can specify resources based on parameters. If no parameter is added, the entire cluster resources are backed up by default. For details about the parameters, see <a href="https://velero.io/docs/v1.7/resource-filtering/" target="_blank" rel="noopener noreferrer">Resource filtering</a>.</span><p><ul id="cce_bestpractice_0311__ul13885530152318"><li id="cce_bestpractice_0311__li189541343113814"><strong id="cce_bestpractice_0311__b1951912443366">--default-volumes-to-restic</strong>: indicates that the Restic tool is used to back up all storage volumes mounted to the pod. Storage volumes of the HostPath type are not supported. If this parameter is not specified, the storage volume specified by annotation in <a href="#cce_bestpractice_0311__li686918502812">1</a> is backed up by default. This parameter is available only when <span class="uicontrol" id="cce_bestpractice_0311__uicontrol116710184316"><b>--use-restic</b></span> is specified during <a href="cce_bestpractice_0310.html#cce_bestpractice_0310__li1722825643415">Velero installation</a>.<pre class="screen" id="cce_bestpractice_0311__screen339016477281">velero backup create <strong id="cce_bestpractice_0311__b3391124717289">&lt;backup-name&gt;</strong> --default-volumes-to-restic</pre>
+</li><li id="cce_bestpractice_0311__li13885103020233"><strong id="cce_bestpractice_0311__b123935464395">--include-namespaces</strong>: backs up resources in a specified namespace.<pre class="screen" id="cce_bestpractice_0311__screen10218456192820">velero backup create <strong id="cce_bestpractice_0311__b321865692814">&lt;backup-name&gt;</strong> --include-namespaces <strong id="cce_bestpractice_0311__b112181456132819">&lt;namespace&gt;</strong></pre>
+</li><li id="cce_bestpractice_0311__li1878363214300"><strong id="cce_bestpractice_0311__b1962311854016">--include-resources</strong>: backs up the specified resources.<pre class="screen" id="cce_bestpractice_0311__screen182801359172820">velero backup create <strong id="cce_bestpractice_0311__b16280135911286">&lt;backup-name&gt;</strong> --include-resources <strong id="cce_bestpractice_0311__b132801959152815">deployments</strong></pre>
+</li><li id="cce_bestpractice_0311__li279112398233"><strong id="cce_bestpractice_0311__b18831103874018">--selector</strong>: backs up resources that match the selector.<pre class="screen" id="cce_bestpractice_0311__screen996615142911">velero backup create <strong id="cce_bestpractice_0311__b1696710142919">&lt;backup-name&gt;</strong> --selector <strong id="cce_bestpractice_0311__b89677111293">&lt;key&gt;=&lt;value&gt;</strong></pre>
+</li></ul>
+<p id="cce_bestpractice_0311__p92264358479">In this section, resources in the namespace <strong id="cce_bestpractice_0311__b17851222194115">default</strong> are backed up. <strong id="cce_bestpractice_0311__b75041029144111">wordpress-backup</strong> is the backup name. You need to specify the same backup name when restoring applications. Example:</p>
+<pre class="screen" id="cce_bestpractice_0311__screen06891528122912">velero backup create <strong id="cce_bestpractice_0311__b12689028112917">wordpress-backup</strong> --include-namespaces <strong id="cce_bestpractice_0311__b768982819295">default</strong> --default-volumes-to-restic</pre>
+<p id="cce_bestpractice_0311__p144623310522">If the following information is displayed, the backup task is successfully created:</p>
+<pre class="screen" id="cce_bestpractice_0311__screen19371846194717">Backup request "wordpress-backup" submitted successfully. Run `velero backup describe wordpress-backup` or `velero backup logs wordpress-backup` for more details.</pre>
+</p></li><li id="cce_bestpractice_0311__li1346315753711"><span>Check the backup status.</span><p><pre class="screen" id="cce_bestpractice_0311__screen9602533192917">velero backup get</pre>
+<div class="p" id="cce_bestpractice_0311__p13385551093">Information similar to the following is displayed:<pre class="screen" id="cce_bestpractice_0311__screen194819531693">NAME               STATUS      ERRORS   WARNINGS   CREATED                         EXPIRES   STORAGE LOCATION   SELECTOR
+wordpress-backup   Completed   0        0          2021-10-14 15:32:07 +0800 CST   29d       default            &lt;none&gt;</pre>
+</div>
+<p id="cce_bestpractice_0311__p172822018101211">In addition, you can go to the object bucket to view the backup files. The backups path is the application resource backup path, and the restic path is the PV data backup path.</p>
+<p id="cce_bestpractice_0311__p070010193464"><span><img id="cce_bestpractice_0311__image1182894315373" src="en-us_image_0000001480191270.png"></span></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0311__section482103142819"><a name="cce_bestpractice_0311__section482103142819"></a><a name="section482103142819"></a><h4 class="sectiontitle">Restoring Applications in the Target Cluster</h4><p id="cce_bestpractice_0311__p327511016415">The storage infrastructure of an on-premises cluster is different from that of a cloud cluster. After the cluster is migrated, PVs cannot be mounted to pods. Therefore, during the migration, you need to update the storage class of the target cluster to shield the differences of underlying storage interfaces between the two clusters when creating a workload and request storage resources of the corresponding type. For details, see <a href="cce_bestpractice_0312.html#cce_bestpractice_0312__section746195321414">Updating the Storage Class</a>. </p>
+<ol id="cce_bestpractice_0311__ol1479111811193"><li id="cce_bestpractice_0311__li2818156192318"><span>Use kubectl to connect to the CCE cluster. Create a storage class with the same name as that of the source cluster.</span><p><p id="cce_bestpractice_0311__p16147123103312">In this example, the storage class name of the source cluster is <strong id="cce_bestpractice_0311__b1230733411542">local</strong> and the storage type is local disk. Local disks completely depend on the node availability. The data DR performance is poor. When the node is unavailable, the existing storage data is affected. Therefore, EVS volumes are used as storage resources in CCE clusters, and SAS disks are used as backend storage media.</p>
+<div class="note" id="cce_bestpractice_0311__note16252155165813"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_0311__ul20948324183318"><li id="cce_bestpractice_0311__li14948724153314">When an application containing PV data is restored in a CCE cluster, the defined storage class dynamically creates and mounts storage resources (such as EVS volumes) based on the PVC.</li><li id="cce_bestpractice_0311__li31252027143311">The storage resources of the cluster can be changed as required, not limited to EVS volumes. To mount other types of storage, such as file storage and object storage, see <a href="cce_bestpractice_0312.html#cce_bestpractice_0312__section746195321414">Updating the Storage Class</a>.</li></ul>
+</div></div>
+<p id="cce_bestpractice_0311__p7541929823">YAML file of the migrated cluster:</p>
+<pre class="screen" id="cce_bestpractice_0311__screen563461684510">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  <strong id="cce_bestpractice_0311__b1219891116519">name: local</strong>
+provisioner: kubernetes.io/no-provisioner
+volumeBindingMode: WaitForFirstConsumer</pre>
+<div class="p" id="cce_bestpractice_0311__p12916438619">The following is an example of the YAML file of the migration cluster:<pre class="screen" id="cce_bestpractice_0311__screen159154313617">allowVolumeExpansion: true
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  <strong id="cce_bestpractice_0311__b195715171158">name: local</strong>
+  selfLink: /apis/storage.k8s.io/v1/storageclasses/csi-disk
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: <strong id="cce_bestpractice_0311__b9914438618">SAS</strong>
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate  </pre>
+</div>
+</p></li><li id="cce_bestpractice_0311__li07918183190"><span>Use the Velero tool to create a restore and specify a backup named <strong id="cce_bestpractice_0311__b19649155385816">wordpress-backup</strong> to restore the WordPress application to the CCE cluster.</span><p><pre class="screen" id="cce_bestpractice_0311__screen14271750153013">velero restore create --from-backup <strong id="cce_bestpractice_0311__b127355023010">wordpress-backup</strong></pre>
+<p id="cce_bestpractice_0311__p19761518814">You can run the <strong id="cce_bestpractice_0311__b216533021114">velero restore get</strong> statement to view the application restoration status.</p>
+</p></li><li id="cce_bestpractice_0311__li1339614791812"><span>After the restoration is complete, check whether the application is running properly. If other adaptation problems may occur, rectify the fault by following the procedure described in <a href="cce_bestpractice_0312.html">Updating Resources Accordingly</a>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0312.html b/docs/cce/umn/cce_bestpractice_0312.html
new file mode 100644
index 00000000..c5971c38
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0312.html
@@ -0,0 +1,124 @@
+<a name="cce_bestpractice_0312"></a><a name="cce_bestpractice_0312"></a>
+
+<h1 class="topictitle1">Updating Resources Accordingly</h1>
+<div id="body0000001217102135"><div class="section" id="cce_bestpractice_0312__section7125750134820"><a name="cce_bestpractice_0312__section7125750134820"></a><a name="section7125750134820"></a><h4 class="sectiontitle">Updating Images</h4><p id="cce_bestpractice_0312__p1560310344915">The WordPress and MySQL images used in this example can be pulled from SWR. Therefore, the image pull failure (ErrImagePull) will not occur. If the application to be migrated is created from a private image, perform the following steps to update the image:</p>
+<ol id="cce_bestpractice_0312__ol66032354918"><li id="cce_bestpractice_0312__li13603193194912"><span>Migrate the image resources to SWR. For details, see <a href="https://docs.otc.t-systems.com/usermanual/swr/swr_01_0011.html" target="_blank" rel="noopener noreferrer">Uploading an Image Through a Container Engine Client</a>.</span></li><li id="cce_bestpractice_0312__li9603143194919"><span>Log in to the SWR console and obtain the image path used after the migration.</span><p><p id="cce_bestpractice_0312__p1460393114916">The image path is in the following format:</p>
+<pre class="screen" id="cce_bestpractice_0312__screen759811575217">'swr.{<em id="cce_bestpractice_0312__i14911877283">Region</em>}.otc.t-systems.com/{<em id="cce_bestpractice_0312__i7913772813">Organization name</em>}/{<em id="cce_bestpractice_0312__i39114742814">Image name</em>}:{<em id="cce_bestpractice_0312__i991177142820">Tag</em>}'</pre>
+</p></li><li id="cce_bestpractice_0312__li1960315315492"><span>Run the following command to modify the workload and replace the <strong id="cce_bestpractice_0312__b0644124213411">image</strong> field in the YAML file with the image path:</span><p><pre class="screen" id="cce_bestpractice_0312__screen1160343174917">kubectl edit deploy wordpress</pre>
+</p></li><li id="cce_bestpractice_0312__li160363184919"><span>Check the running status of the workload.</span></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0312__section41282507482"><a name="cce_bestpractice_0312__section41282507482"></a><a name="section41282507482"></a><h4 class="sectiontitle">Updating Services</h4><p id="cce_bestpractice_0312__p1560383174913">After the cluster is migrated, the Service of the source cluster may fail to take effect. You can perform the following steps to update the Service. If ingresses are configured in the source cluster, you need to connect the new cluster to ELB again after the migration. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0252.html" target="_blank" rel="noopener noreferrer">Using kubectl to Create an ELB Ingress</a>.</p>
+<ol id="cce_bestpractice_0312__ol1960423184919"><li id="cce_bestpractice_0312__li1660418319490"><span>Connect to the cluster using kubectl.</span></li><li id="cce_bestpractice_0312__li5604636499"><span>Edit the YAML file of the corresponding Service to change the Service type and port number.</span><p><pre class="screen" id="cce_bestpractice_0312__screen66048315494">kubectl edit svc wordpress</pre>
+<div class="p" id="cce_bestpractice_0312__p1860411394913">To update load balancer resources, you need to connect to ELB again. Add the annotations by following the procedure described in <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0014.html" target="_blank" rel="noopener noreferrer">LoadBalancer</a>.<pre class="screen" id="cce_bestpractice_0312__screen106043304914">annotations: 
+  kubernetes.io/elb.class: union # Shared load balancer
+  kubernetes.io/elb.id: 9d06a39d-xxxx-xxxx-xxxx-c204397498a3    # Load balancer ID, which can be queried on the ELB console.
+  kubernetes.io/elb.subnet-id: f86ba71c-xxxx-xxxx-xxxx-39c8a7d4bb36    # ID of the cluster where the subnet resides
+  kubernetes.io/session-affinity-mode: SOURCE_IP    # Enable the sticky session based on the source IP address.</pre>
+</div>
+</p></li><li id="cce_bestpractice_0312__li96049313494"><span>Use a browser to check whether the Service is available.</span></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0312__section746195321414"><a name="cce_bestpractice_0312__section746195321414"></a><a name="section746195321414"></a><h4 class="sectiontitle">Updating the Storage Class</h4><p id="cce_bestpractice_0312__p17625325142318">As the storage infrastructures of clusters may be different, storage volumes cannot be mounted to the target cluster. You can use either of the following methods to update the volumes:</p>
+<div class="notice" id="cce_bestpractice_0312__note1378016463514"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_bestpractice_0312__p2078015463520">Both update methods can be performed only before the application is restored in the target cluster. Otherwise, PV data resources may fail to be restored. In this case, use the Velero to restore applications after the storage class update is complete. For details, see <a href="cce_bestpractice_0311.html#cce_bestpractice_0311__section482103142819">Restoring Applications in the Target Cluster</a>.</p>
+</div></div>
+<p id="cce_bestpractice_0312__p149269391012"><strong id="cce_bestpractice_0312__b16827153163616">Method 1: Creating a ConfigMap mapping</strong></p>
+<ol id="cce_bestpractice_0312__ol574713536417"><li id="cce_bestpractice_0312__li874717534410"><span>Create a ConfigMap in the CCE cluster and map the storage class used by the source cluster to the default storage class of the CCE cluster.</span><p><pre class="screen" id="cce_bestpractice_0312__screen1834415284610">apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: change-storageclass-plugin-config
+  namespace: velero
+  labels:
+    app.kubernetes.io/name: velero
+    velero.io/plugin-config: "true"
+    velero.io/change-storage-class: RestoreItemAction
+data:
+  {<em id="cce_bestpractice_0312__i1983113453919">Storage class name01 in the source cluster</em>}: {<em id="cce_bestpractice_0312__i924521173919">Storage class name01 in the target cluster</em>}
+  {<em id="cce_bestpractice_0312__i168868174395">Storage class name02 in the source cluster</em>}: {<em id="cce_bestpractice_0312__i968517221397">Storage class name02 in the target cluster</em>}</pre>
+</p></li><li id="cce_bestpractice_0312__li878419406710"><span>Run the following command to apply the ConfigMap configuration:</span><p><pre class="screen" id="cce_bestpractice_0312__screen1374418581376">$ kubectl create -f change-storage-class.yaml
+configmap/change-storageclass-plugin-config created</pre>
+</p></li></ol>
+<p id="cce_bestpractice_0312__p587014412092"></p>
+<p id="cce_bestpractice_0312__p20809115412120"><strong id="cce_bestpractice_0312__b54871245163810">Method 2: Creating a storage class with the same name</strong></p>
+<ol id="cce_bestpractice_0312__ol1441418230405"><li id="cce_bestpractice_0312__li1141472319401"><span>Run the following command to query the default storage class supported by CCE:</span><p><pre class="screen" id="cce_bestpractice_0312__screen161881044182911">kubectl get sc</pre>
+<div class="p" id="cce_bestpractice_0312__p1314616398317">Information similar to the following is displayed:<pre class="screen" id="cce_bestpractice_0312__screen457453914613">NAME                PROVISIONER                     RECLAIMPOLICY   VOLUMEBINDINGMODE      ALLOWVOLUMEEXPANSION   AGE
+csi-disk            everest-csi-provisioner         Delete          Immediate              true                   3d23h
+csi-disk-topology   everest-csi-provisioner         Delete          WaitForFirstConsumer   true                   3d23h
+csi-nas             everest-csi-provisioner         Delete          Immediate              true                   3d23h
+csi-obs             everest-csi-provisioner         Delete          Immediate              false                  3d23h
+csi-sfsturbo        everest-csi-provisioner         Delete          Immediate              true                   3d23h</pre>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0312__table03467104491" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Storage classes</caption><thead align="left"><tr id="cce_bestpractice_0312__row19346151013499"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.3.8.1.2.3.2.3.1.1"><p id="cce_bestpractice_0312__p334691015491">Storage Class</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.3.8.1.2.3.2.3.1.2"><p id="cce_bestpractice_0312__p634612106493">Storage Resource</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0312__row1634691012492"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.1 "><p id="cce_bestpractice_0312__p9346171044910">csi-disk</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.2 "><p id="cce_bestpractice_0312__p4346141019492">EVS</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0312__row1034681064912"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.1 "><p id="cce_bestpractice_0312__p73461310104917">csi-disk-topology</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.2 "><p id="cce_bestpractice_0312__p13461110114920">EVS with delayed binding</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0312__row11346171084913"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.1 "><p id="cce_bestpractice_0312__p434661017495">csi-nas</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.2 "><p id="cce_bestpractice_0312__p183461310124917">SFS</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0312__row9505155815495"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.1 "><p id="cce_bestpractice_0312__p8506058204916">csi-obs</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.2 "><p id="cce_bestpractice_0312__p550685811491">OBS</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0312__row179712714508"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.1 "><p id="cce_bestpractice_0312__p187971078507">csi-sfsturbo</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.3.8.1.2.3.2.3.1.2 "><p id="cce_bestpractice_0312__p12797147175014">SFS Turbo</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_bestpractice_0312__li1385453764117"><span>Run the following command to export the required storage class details in YAML format:</span><p><pre class="screen" id="cce_bestpractice_0312__screen192266487290">kubectl get sc &lt;storageclass-name&gt; -o=yaml</pre>
+</p></li><li id="cce_bestpractice_0312__li11180161711381"><span>Copy the YAML file and create a new storage class.</span><p><p id="cce_bestpractice_0312__p9483161853815">Change the storage class name to the name used in the source cluster to call basic storage resources of the cloud.</p>
+<div class="p" id="cce_bestpractice_0312__p18571473351">The YAML file of csi-obs is used as an example. Delete the unnecessary information in italic under the <strong id="cce_bestpractice_0312__b568509194010">metadata</strong> field and modify the information in bold. You are advised not to modify other parameters.<pre class="screen" id="cce_bestpractice_0312__screen6228456122612">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+<em id="cce_bestpractice_0312__i8329021132916">  creationTimestamp: "2021-10-18T06:41:36Z"</em>
+<strong id="cce_bestpractice_0312__b1224183420296">  name: &lt;your_storageclass_name&gt;</strong>     # Use the name of the storage class used in the source cluster.
+<em id="cce_bestpractice_0312__i20787202722914">  resourceVersion: "747"</em>
+<em id="cce_bestpractice_0312__i20637038337">  </em><em id="cce_bestpractice_0312__i17441950112018">selfLink: /apis/storage.k8s.io/v1/storageclasses/csi-obs</em>
+<em id="cce_bestpractice_0312__i578811275291">  uid: 4dbbe557-ddd1-4ce8-bb7b-7fa15459aac7</em>
+parameters:
+  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
+  csi.storage.k8s.io/fstype: obsfs
+  everest.io/obs-volume-type: STANDARD
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+</div>
+<div class="note" id="cce_bestpractice_0312__note1492219540165"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_0312__ul1546025102017"><li id="cce_bestpractice_0312__li4460135118200">SFS Turbo file systems cannot be directly created using StorageClass. You need to go to the SFS Turbo console to create SFS Turbo file systems that belong to the same VPC subnet and have inbound ports (111, 445, 2049, 2051, 2052, and 20048) enabled in the security group.</li><li id="cce_bestpractice_0312__li132755569209">CCE does not support EVS disks of the ReadWriteMany type. If resources of this type exist in the source cluster, change the storage type to <strong id="cce_bestpractice_0312__b356454664315">ReadWriteOnce</strong>.</li></ul>
+</div></div>
+</p></li><li id="cce_bestpractice_0312__li194861041203410"><span>Restore the cluster application by referring to <a href="cce_bestpractice_0311.html#cce_bestpractice_0311__section482103142819">Restoring Applications in the Target Cluster</a> and check whether the PVC is successfully created.</span><p><pre class="screen" id="cce_bestpractice_0312__screen105011052102915">kubectl get pvc</pre>
+<div class="p" id="cce_bestpractice_0312__p32718211215">In the command output, the <strong id="cce_bestpractice_0312__b14760956194214">VOLUME</strong> column indicates the name of the PV automatically created using the storage class.<pre class="screen" id="cce_bestpractice_0312__screen32712021225">NAME   STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
+pvc    Bound    pvc-4c8e655a-1dbc-4897-ae6c-446b502f5e77   5Gi        RWX            local          13s</pre>
+</div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0312__section728213614323"><a name="cce_bestpractice_0312__section728213614323"></a><a name="section728213614323"></a><h4 class="sectiontitle">Updating Databases</h4><p id="cce_bestpractice_0312__p20140414193211">In this example, the database is a local MySQL database and does not need to be reconfigured after the migration. </p>
+<div class="note" id="cce_bestpractice_0312__note11817102644511"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_0312__ul499372015564"><li id="cce_bestpractice_0312__li499462005613">If the RDS instance is in the same VPC as the CCE cluster, it can be accessed using the private IP address. Otherwise, it can only be accessed only through public networks by binding an EIP. You are advised to use the private network access mode for high security and good RDS performance.</li><li id="cce_bestpractice_0312__li063711222569">Ensure that the inbound rule of the security group to which RDS belongs has been enabled for the cluster. Otherwise, the connection will fail.</li></ul>
+</div></div>
+<ol id="cce_bestpractice_0312__ol26111728123013"><li id="cce_bestpractice_0312__li165986176408"><span>Log in to the RDS console and obtain the private IP address and port number of the DB instance on the <strong id="cce_bestpractice_0312__b23625119234">Basic Information</strong> page.</span></li><li id="cce_bestpractice_0312__li10611192833012"><span>Run the following command to modify the WordPress workload:</span><p><pre class="screen" id="cce_bestpractice_0312__screen231813218314">kubectl edit deploy wordpress</pre>
+<p id="cce_bestpractice_0312__p18154140114018">Set the environment variables in the <strong id="cce_bestpractice_0312__b8819162519485">env</strong> field.</p>
+<ul id="cce_bestpractice_0312__ul1216418395442"><li id="cce_bestpractice_0312__li15164183919448"><strong id="cce_bestpractice_0312__b4996143094811">WORDPRESS_DB_HOST</strong>: address and port number used for accessing the database, that is, the internal network address and port number obtained in the previous step.</li><li id="cce_bestpractice_0312__li1940315453"><strong id="cce_bestpractice_0312__b16326456124818">WORDPRESS_DB_USERU</strong>: username for accessing the database.</li><li id="cce_bestpractice_0312__li5279145485115"><strong id="cce_bestpractice_0312__b4202182014493">WORDPRESS_DB_PASSWORD</strong>: password for accessing the database.</li><li id="cce_bestpractice_0312__li12791154145113"><strong id="cce_bestpractice_0312__b37212036144918">WORDPRESS_DB_NAME</strong>: name of the database to be connected.</li></ul>
+</p></li><li id="cce_bestpractice_0312__li392916303399"><span>Check whether the RDS database is properly connected.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0313.html b/docs/cce/umn/cce_bestpractice_0313.html
new file mode 100644
index 00000000..d87a1eef
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0313.html
@@ -0,0 +1,20 @@
+<a name="cce_bestpractice_0313"></a><a name="cce_bestpractice_0313"></a>
+
+<h1 class="topictitle1">Performing Additional Tasks</h1>
+<div id="body0000001171543822"><div class="section" id="cce_bestpractice_0313__section1578484910380"><h4 class="sectiontitle">Verifying Application Functions</h4><p id="cce_bestpractice_0313__p128291081247">Cluster migration involves full migration of application data, which may cause intra-application adaptation problems. In this example, after the cluster is migrated, the redirection link of the article published in WordPress is still the original domain name. If you click the article title, you will be redirected to the application in the source cluster. Therefore, you need to search for the original domain name in WordPress and replace it with the new domain name, change the values of <strong id="cce_bestpractice_0313__b107738385312">site_url</strong> and primary URL in the database. For details, see <a href="https://wordpress.org/support/article/changing-the-site-url/" target="_blank" rel="noopener noreferrer">Changing The Site URL</a>.</p>
+<p id="cce_bestpractice_0313__p10794113102716">Access the new address of the WordPress application. If the article published before the migration is displayed, the data of the persistent volume is successfully restored.</p>
+<p id="cce_bestpractice_0313__p79951449182618"><span><img id="cce_bestpractice_0313__image330135912299" src="en-us_image_0000001217183707.png"></span></p>
+</div>
+<div class="section" id="cce_bestpractice_0313__section842716101402"><h4 class="sectiontitle">Switching Live Traffic to the Target Cluster</h4><p id="cce_bestpractice_0313__p16689193811312">O&amp;M personnel switch DNS to direct live traffic to the target cluster.</p>
+<ul id="cce_bestpractice_0313__ul4689638433"><li id="cce_bestpractice_0313__li268913816315">DNS traffic switching: Adjust the DNS configuration to switch traffic.</li><li id="cce_bestpractice_0313__li16896380316">Client traffic switching: Upgrade the client code or update the configuration to switch traffic.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0313__section18290192920406"><h4 class="sectiontitle">Bringing the Source Cluster Offline</h4><p id="cce_bestpractice_0313__p1893512610414">After confirming that the service on the target cluster is normal, bring the source cluster offline and delete the backup files.</p>
+<ul id="cce_bestpractice_0313__ul179351561240"><li id="cce_bestpractice_0313__li3935765417">Verify that the service on the target cluster is running properly.</li><li id="cce_bestpractice_0313__li49351367413">Bring the source cluster offline.</li><li id="cce_bestpractice_0313__li15935961546">Delete backup files.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0314.html b/docs/cce/umn/cce_bestpractice_0314.html
new file mode 100644
index 00000000..38593f8e
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0314.html
@@ -0,0 +1,74 @@
+<a name="cce_bestpractice_0314"></a><a name="cce_bestpractice_0314"></a>
+
+<h1 class="topictitle1">Troubleshooting</h1>
+<div id="body0000001217423605"><div class="section" id="cce_bestpractice_0314__section11197194820367"><a name="cce_bestpractice_0314__section11197194820367"></a><a name="section11197194820367"></a><h4 class="sectiontitle">Storage Volumes of the HostPath Type Cannot Be Backed Up</h4><p id="cce_bestpractice_0314__p47071330142913">Both HostPath and Local volumes are local storage volumes. However, the Restic tool integrated in Velero cannot back up the PVs of the HostPath type and supports only the Local type. Therefore, you need to replace the storage volumes of the HostPath type with the Local type in the source cluster.</p>
+<div class="note" id="cce_bestpractice_0314__note1315018672419"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0314__p171503692410">It is recommended that Local volumes be used in Kubernetes v1.10 or later and can only be statically created. For details, see <a href="https://kubernetes.io/docs/concepts/storage/volumes/#local" target="_blank" rel="noopener noreferrer">local</a>.</p>
+</div></div>
+<ol id="cce_bestpractice_0314__ol1490212317367"><li id="cce_bestpractice_0314__li790253163613"><span>Create a storage class for the Local volume.</span><p><div class="p" id="cce_bestpractice_0314__p2575101774514">Example YAML:<pre class="screen" id="cce_bestpractice_0314__screen563461684510">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: local
+provisioner: kubernetes.io/no-provisioner
+volumeBindingMode: WaitForFirstConsumer</pre>
+</div>
+</p></li><li id="cce_bestpractice_0314__li6467182874513"><span>Change the <strong id="cce_bestpractice_0314__b1060475213216">hostPath</strong> field to the <strong id="cce_bestpractice_0314__b55071552212">local</strong> field, specify the original local disk path of the host machine, and add the <strong id="cce_bestpractice_0314__b159315555172">nodeAffinity</strong> field.</span><p><div class="p" id="cce_bestpractice_0314__p25541334194511">Example YAML:<pre class="screen" id="cce_bestpractice_0314__screen18790153514361">apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: mysql-pv
+  labels: 
+    app: mysql
+spec:
+  accessModes:
+  - ReadWriteOnce
+  capacity:
+    storage: 5Gi
+  <strong id="cce_bestpractice_0314__b17508110124115">storageClassName: local</strong>     # Storage class created in the previous step
+  persistentVolumeReclaimPolicy: Delete
+<strong id="cce_bestpractice_0314__b1539137385">  local:</strong>
+    <strong id="cce_bestpractice_0314__b12954113023514">path: "/mnt/data"</strong><strong id="cce_bestpractice_0314__b1955030173513">     </strong># Path of the attached local disk
+<strong id="cce_bestpractice_0314__b17911859183714">  nodeAffinity:</strong>
+<strong id="cce_bestpractice_0314__b59111759183720">    required:</strong>
+<strong id="cce_bestpractice_0314__b199121559173713">      nodeSelectorTerms:</strong>
+<strong id="cce_bestpractice_0314__b69121659123710">      - matchExpressions:</strong>
+<strong id="cce_bestpractice_0314__b139132594377">        - key: kubernetes.io/hostname</strong>
+<strong id="cce_bestpractice_0314__b15914185903714">          operator: Exists</strong></pre>
+</div>
+</p></li><li id="cce_bestpractice_0314__li629935507"><span>Run the following commands to verify the creation result:</span><p><pre class="screen" id="cce_bestpractice_0314__screen14975202309">kubectl get pv</pre>
+<p id="cce_bestpractice_0314__p15938619195110">Information similar to the following is displayed:</p>
+<pre class="screen" id="cce_bestpractice_0314__screen731065984819">NAME       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM               STORAGECLASS   REASON   AGE
+mysql-pv   5Gi        RWO            Delete           Available                       local                   3s</pre>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0314__section321054511332"><a name="cce_bestpractice_0314__section321054511332"></a><a name="section321054511332"></a><h4 class="sectiontitle">Backup Tool Resources Are Insufficient</h4><p id="cce_bestpractice_0314__p218203121617">In the production environment, if there are many backup resources, for example, the default resource size of the backup tool is used, the resources may be insufficient. In this case, perform the following steps to adjust the CPU and memory size allocated to the Velero and Restic:</p>
+<p id="cce_bestpractice_0314__p734363981114"><strong id="cce_bestpractice_0314__b1948866102714">Before installing Velero:</strong></p>
+<p id="cce_bestpractice_0314__p17861183171218">You can specify the size of resources used by Velero and Restic when <a href="cce_bestpractice_0310.html#cce_bestpractice_0310__li1722825643415">installing Velero</a>.</p>
+<p id="cce_bestpractice_0314__p2257956191115">The following is an example of installation parameters:</p>
+<pre class="screen" id="cce_bestpractice_0314__screen12744192921514">velero install \
+   --velero-pod-cpu-request 500m \
+   --velero-pod-mem-request 1Gi \
+   --velero-pod-cpu-limit 1000m \
+   --velero-pod-mem-limit 1Gi \
+   --use-restic \
+   --restic-pod-cpu-request 500m \
+   --restic-pod-mem-request 1Gi \
+   --restic-pod-cpu-limit 1000m \
+   --restic-pod-mem-limit 1Gi</pre>
+<p id="cce_bestpractice_0314__p193082488111"><strong id="cce_bestpractice_0314__b0563848286">After Velero is installed:</strong></p>
+<ol id="cce_bestpractice_0314__ol13623142152116"><li id="cce_bestpractice_0314__li11623112132116"><span>Edit the YAML files of the Velero and Restic workloads in the<strong id="cce_bestpractice_0314__b0869216122819"> velero</strong> namespace.</span><p><pre class="screen" id="cce_bestpractice_0314__screen313783042112">kubectl edit deploy velero -n velero
+kubectl edit deploy restic -n velero</pre>
+</p></li><li id="cce_bestpractice_0314__li1484610340218"><span>Modify the resource size under the <strong id="cce_bestpractice_0314__b194031434172820">resources</strong> field. The modification is the same for the Velero and Restic workloads, as shown in the following:</span><p><pre class="screen" id="cce_bestpractice_0314__screen18413495225">resources:
+  limits:
+    cpu: "1"
+    memory: 1Gi
+  requests:
+    cpu: 500m
+    memory: 1Gi</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0306.html">Migrating On-premises Kubernetes Clusters to CCE</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0315.html b/docs/cce/umn/cce_bestpractice_0315.html
new file mode 100644
index 00000000..c4eef920
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0315.html
@@ -0,0 +1,25 @@
+<a name="cce_bestpractice_0315"></a><a name="cce_bestpractice_0315"></a>
+
+
+  <h1 class="topictitle1">Security</h1>
+
+  <div id="body0000001183506302"><p id="cce_bestpractice_0315__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0317.html">Cluster Security</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0318.html">Node Security</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0319.html">Container Security</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0320.html">Secret Security</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0317.html b/docs/cce/umn/cce_bestpractice_0317.html
new file mode 100644
index 00000000..80c9b6ac
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0317.html
@@ -0,0 +1,103 @@
+<a name="cce_bestpractice_0317"></a><a name="cce_bestpractice_0317"></a>
+
+<h1 class="topictitle1">Cluster Security</h1>
+<div id="body8662426"><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p1117095515514">For security purposes, you are advised to configure a cluster as follows.</p>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section2556163712524"><h4 class="sectiontitle">Using the CCE Cluster of the Latest Version</h4><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p334392925917">Kubernetes releases a major version in about four months. CCE follows the same frequency as Kubernetes to release major versions. To be specific, a new CCE version is released about three months after a new Kubernetes version is released in the community. For example, Kubernetes v1.19 was released in September 2020 and CCE v1.19 was released in March 2021.</p>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p12343229105914">The latest cluster version has known vulnerabilities fixed or provides a more comprehensive security protection mechanism. You are advised to select the latest cluster version when creating a cluster. Before a cluster version is deprecated and removed, upgrade your cluster to a supported version.</p>
+</div>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section188477111536"><h4 class="sectiontitle">Disabling the Automatic Token Mounting Function of the Default Service Account</h4><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p186241431173414">By default, Kubernetes associates the default service account with every pod. That is, the token is mounted to a container. The container can use this token to pass the authentication by the kube-apiserver and kubelet components. In a cluster with RBAC disabled, the service account who owns the token has the control permissions for the entire cluster. In a cluster with RBAC enabled, the permissions of the service account who owns the token depends on the roles associated by the administrator. The service account's token is generally used by workloads that need to access kube-apiserver, such as coredns, autoscaler, and prometheus. For workloads that do not need to access kube-apiserver, you are advised to disable the automatic association between the service account and token.</p>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p9625163114348">Two methods are available:</p>
+<ul id="cce_bestpractice_0317__en-us_topic_0000001226756283_ul1695212371341"><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li18952103743417">Method 1: Set the <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b2131255175913">automountServiceAccountToken</strong> field of the service account to <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b41311855175910">false</strong>. After the configuration is complete, newly created workloads will not be associated with the default service account by default. Set this field for each namespace as required.<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen169251958163416">apiVersion: v1 
+kind: ServiceAccount 
+metadata: 
+  name: default 
+automountServiceAccountToken: false 
+...</pre>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p169601538341">When a workload needs to be associated with a service account, explicitly set the <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b11601125515019">automountServiceAccountToken</strong> field to <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b76011655803">true</strong> in the YAML file of the workload.</p>
+<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen295517306350">... 
+ spec: 
+   template: 
+     spec: 
+       serviceAccountName: default 
+       automountServiceAccountToken: true 
+       ...</pre>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p9434327103516"></p>
+</li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li2018250143416">Method 2: Explicitly disable the function of automatically associating with service accounts for workloads.<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen545123953619">... 
+ spec: 
+   template: 
+     spec: 
+       automountServiceAccountToken: false 
+       ...</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section16521330135312"><h4 class="sectiontitle">Configuring Proper Cluster Access Permissions for Users</h4><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p1421322620111">CCE allows you to create multiple IAM users. Your account can create different user groups, assign different access permissions to different user groups, and add users to the user groups with corresponding permissions when creating IAM users. In this way, users can control permissions on different regions and assign read-only permissions. Your account can also assign namespace-level permissions for users or user groups. To ensure security, it is advised that minimum user access permissions are assigned.</p>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p815419540271">If you need to create multiple IAM users, configure the permissions of the IAM users and namespaces properly.</p>
+</div>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section5542036155511"><h4 class="sectiontitle">Configuring Resource Quotas for Cluster Namespaces</h4><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p207925320495">CCE provides resource quota management, which allows users to limit the total amount of resources that can be allocated to each namespace. These resources include CPU, memory, storage volumes, pods, Services, Deployments, and StatefulSets. Proper configuration can prevent excessive resources created in a namespace from affecting the stability of the entire cluster.</p>
+</div>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section1396719295520"><h4 class="sectiontitle">Configuring LimitRange for Containers in a Namespace</h4><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p1984219418382">With resource quotas, cluster administrators can restrict the use and creation of resources by namespace. In a namespace, a pod or container can use the maximum CPU and memory resources defined by the resource quota of the namespace. In this case, a pod or container may monopolize all available resources in the namespace. You are advised to configure LimitRange to restrict resource allocation within the namespace. The LimitRange parameter has the following restrictions:</p>
+<ul id="cce_bestpractice_0317__en-us_topic_0000001226756283_ul835235018386"><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li135215501386">Limits the minimum and maximum resource usage of each pod or container in a namespace.<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p123651874391"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li135215501386"></a><a name="en-us_topic_0000001226756283_li135215501386"></a>For example, create the maximum and minimum CPU usage limits for a pod in a namespace as follows:</p>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p19800112144713">cpu-constraints.yaml</p>
+<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen942610051819">apiVersion: v1
+kind: LimitRange
+metadata:
+  name: cpu-min-max-demo-lr
+spec:
+  limits:
+  - max:
+      cpu: "800m"
+    min:
+      cpu: "200m"
+    type: Container</pre>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p7110129194514">Then, run <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b1662075711820">kubectl -n </strong><em id="cce_bestpractice_0317__en-us_topic_0000001226756283_i762205711812">&lt;namespace&gt;</em><strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b97744217197"> create -f </strong><em id="cce_bestpractice_0317__en-us_topic_0000001226756283_i14307835195">cpu-constraints.yaml</em> to complete the creation. If the default CPU usage is not specified for the container, the platform automatically configures the default CPU usage. That is, the default configuration is automatically added after the container is created.</p>
+<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen1185143774413">...
+spec:
+  limits:
+  - <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b169955814618">default:</strong>
+<strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b1470045894618">      cpu: 800m</strong>
+<strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b5701145813462">    defaultRequest:</strong>
+<strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b107032058174620">      cpu: 800m</strong>
+    max:
+      cpu: 800m
+    min:
+      cpu: 200m
+    type: Container</pre>
+</li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li135216503386">Limits the maximum and minimum storage space that each PersistentVolumeClaim can apply for in a namespace.<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p1168613177117"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li135216503386"></a><a name="en-us_topic_0000001226756283_li135216503386"></a>storagelimit.yaml</p>
+<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen876920585499">apiVersion: v1
+kind: LimitRange
+metadata:
+  name: storagelimit
+spec:
+  limits:
+  - type: PersistentVolumeClaim
+    max:
+      storage: 2Gi
+    min:
+      storage: 1Gi</pre>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p145851619110">Then, run <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b166053081912">kubectl -n </strong><em id="cce_bestpractice_0317__en-us_topic_0000001226756283_i1067311303199">&lt;namespace&gt; </em><strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b107351236141911">create -f </strong><em id="cce_bestpractice_0317__en-us_topic_0000001226756283_i3737123615199">storagelimit.yaml</em> to complete the creation.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section13967110185719"><h4 class="sectiontitle">Configuring Network Isolation in a Cluster</h4><ul id="cce_bestpractice_0317__en-us_topic_0000001226756283_ul1786982355710"><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li14869123125713">Container tunnel network<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p923219216146"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li14869123125713"></a><a name="en-us_topic_0000001226756283_li14869123125713"></a>If networks need to be isolated between namespaces in a cluster or between workloads in the same namespace, you can configure network policies to isolate the networks. </p>
+</li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li17869142335714">Cloud Native Network 2.0<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p1691384325712"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li17869142335714"></a><a name="en-us_topic_0000001226756283_li17869142335714"></a>In the Cloud Native Network 2.0 model, you can configure security groups to isolate networks between pods. For details, see <a href="https://support.huaweicloud.com/en-us/usermanual-cce/cce_01_0288.html" target="_blank" rel="noopener noreferrer">SecurityGroups</a>.</p>
+</li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li17895010563">VPC network<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p811841416567"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li17895010563"></a><a name="en-us_topic_0000001226756283_li17895010563"></a>Network isolation is not supported.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section5480716175815"><h4 class="sectiontitle">Enabling the Webhook Authentication Mode with kubelet</h4><div class="notice" id="cce_bestpractice_0317__en-us_topic_0000001226756283_note983131514410"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p683171514417">CCE clusters of v1.15.6-r1 or earlier are involved, whereas versions later than v1.15.6-r1 are not.</p>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p17731357155">Upgrade the CCE cluster version to 1.13 or 1.15 and enable the RBAC capability for the cluster. If the version is 1.13 or later, no upgrade is required.</p>
+</div></div>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p14882451758">When creating a node, you can enable the kubelet authentication mode by injecting the <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b2040431134717">postinstall</strong> file (by setting the kubelet startup parameter <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b199401430193211">--authorization-node=Webhook</strong>).</p>
+<ol id="cce_bestpractice_0317__en-us_topic_0000001226756283_ol016854617318"><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li141439336611"><span>Run the following command to create clusterrolebinding:</span><p><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p394410334614"><strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b1482265083710">kubectl create clusterrolebinding kube-apiserver-kubelet-admin --clusterrole=system:kubelet-api-admin --user=system:kube-apiserver</strong></p>
+</p></li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li19541153419419"><span>For an existing node, log in to the node, change <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b1237994173311">authorization mode</strong> in <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b127021045163310">/var/paas/kubernetes/kubelet/kubelet_config.yaml</strong> on the node to <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b10117204843318">Webhook</strong>, and restart kubelet.</span><p><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p7262194418410"><strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b1780817573373">sed -i s/AlwaysAllow/Webhook/g /var/paas/kubernetes/kubelet/kubelet_config.yaml; systemctl restart kubelet</strong></p>
+</p></li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li1430516535111"><span>For a new node, add the following command to the post-installation script to change the kubelet permission mode:</span><p><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p918592114518"><strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b667171143815">sed -i s/AlwaysAllow/Webhook/g /var/paas/kubernetes/kubelet/kubelet_config.yaml; systemctl restart kubelet</strong></p>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p17968471271"></p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section1730432053118"><h4 class="sectiontitle">Uninstalling web-terminal After Use</h4><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p18400172813110">The web-terminal add-on can be used to manage CCE clusters. Keep the login password secure and uninstall the add-on when it is no longer needed.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0315.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0318.html b/docs/cce/umn/cce_bestpractice_0318.html
new file mode 100644
index 00000000..e01bcf11
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0318.html
@@ -0,0 +1,41 @@
+<a name="cce_bestpractice_0318"></a><a name="cce_bestpractice_0318"></a>
+
+<h1 class="topictitle1">Node Security</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_0318__en-us_topic_0000001226756285_section125731371643"><h4 class="sectiontitle">Preventing Nodes from Being Exposed to Public Networks</h4><ul id="cce_bestpractice_0318__en-us_topic_0000001226756285_ul5635110999"><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li263516104912">Do not bind an EIP to a node unless necessary to reduce the attack surface.</li><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li5635151014915">If an EIP must be used, properly configure the firewall or security group rules to restrict access of unnecessary ports and IP addresses.</li></ul>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p10325152114429">You may have configured the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b18197848171612">kubeconfig.json</strong> file on a node in your cluster. kubectl can use the certificate and private key in this file to control the entire cluster. You are advised to delete unnecessary files from the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b8108142218165">/root/.kube</strong> directory on the node to prevent malicious use.</p>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p12555543184410">rm -rf /root/.kube</p>
+</div>
+<div class="section" id="cce_bestpractice_0318__en-us_topic_0000001226756285_section144410272047"><h4 class="sectiontitle">Hardening VPC Security Group Rules</h4><p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p114652430149">CCE is a universal container platform. Its default security group rules apply to common scenarios. Based on security requirements, you can harden the security group rules set for CCE clusters on the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b91050271851712">Security Groups</strong> page of <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b13847012151712">Network Console</strong>.</p>
+</div>
+<div class="section" id="cce_bestpractice_0318__en-us_topic_0000001226756285_section896012361718"><h4 class="sectiontitle">Hardening Nodes on Demand</h4><p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p164510477111">CCE cluster nodes use the default settings of open source OSs. After a node is created, you need to perform security hardening according to your service requirements.</p>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p54515474120">In CCE, you can perform hardening as follows:</p>
+<ul id="cce_bestpractice_0318__en-us_topic_0000001226756285_ul19571142909"><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li109576421702">Use the post-installation script after the node is created. For details, see the description about <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b1059324225113">Post-installation Script</strong> in <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b188320484515">Advanced Settings</strong> when creating a node. This script is user-defined.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0318__en-us_topic_0000001226756285_section71961744466"><h4 class="sectiontitle">Forbidding Containers to Obtain Host Machine Metadata</h4><p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p796335218252">If a single CCE cluster is shared by multiple users to deploy containers, containers cannot access the management address (169.254.169.254) of OpenStack, preventing containers from obtaining metadata of host machines.</p>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p12964195242515">For details about how to restore the metadata, see the "Notes" section in <a href="https://docs.otc.t-systems.com/en-us/usermanual/ecs/en-us_topic_0042400609.html" target="_blank" rel="noopener noreferrer">Obtaining Metadata</a>.</p>
+<div class="warning" id="cce_bestpractice_0318__en-us_topic_0000001226756285_note896420520252"><span class="warningtitle"><img src="public_sys-resources/warning_3.0-en-us.png"> </span><div class="warningbody"><p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p13964195213257">This solution may affect the password change on the ECS console. Therefore, you must verify the solution before rectifying the fault.</p>
+</div></div>
+<ol id="cce_bestpractice_0318__en-us_topic_0000001226756285_ol4410181419216"><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li1041011148211"><span>Obtain the network model and container CIDR of the cluster.</span><p><p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p188112716215">On the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b209605371582">Clusters</strong> page of the CCE console, view the network model and container CIDR of the cluster.</p>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p1655182952116"><span><img id="cce_bestpractice_0318__en-us_topic_0000001226756285_image0609172712311" src="en-us_image_0000001226818003.png"></span></p>
+</p></li><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li54171921142111"><span>Prevent the container from obtaining host metadata.</span><p><ul id="cce_bestpractice_0318__en-us_topic_0000001226756285_ul8334817122417"><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li153344176247">VPC network<ol type="a" id="cce_bestpractice_0318__en-us_topic_0000001226756285_ol1709147182414"><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li1709134714249">Log in to each node in the CCE cluster as user <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b1421113391590">root</strong> and run the following command:<pre class="screen" id="cce_bestpractice_0318__en-us_topic_0000001226756285_screen9109045192317">iptables -I OUTPUT -s {container_cidr} -d 169.254.169.254 -j REJECT</pre>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p66011853192413"><em id="cce_bestpractice_0318__en-us_topic_0000001226756285_i179121431491">{container_cidr}</em> indicates the container CIDR of the cluster, for example, 10.0.0.0/16.</p>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p884725717242">To ensure configuration persistence, you are advised to write the command to the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b1685417405716">/etc/rc.local</strong> script.</p>
+</li><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li1370914471249">Run the following commands in the container to access the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b10687111245713">userdata</strong> and <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b446151617575">metadata</strong> interfaces of OpenStack and check whether the request is intercepted:<pre class="screen" id="cce_bestpractice_0318__en-us_topic_0000001226756285_screen159624507230">curl 169.254.169.254/openstack/latest/meta_data.json
+curl 169.254.169.254/openstack/latest/user_data</pre>
+</li></ol>
+</li><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li146002216241">Container tunnel network<ol type="a" id="cce_bestpractice_0318__en-us_topic_0000001226756285_ol1773441712518"><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li107344176256">Log in to each node in the CCE cluster as user <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b34872417577">root</strong> and run the following command:<pre class="screen" id="cce_bestpractice_0318__en-us_topic_0000001226756285_screen1119181152410">iptables -I FORWARD -s {container_cidr} -d 169.254.169.254 -j REJECT</pre>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p117923213256"><em id="cce_bestpractice_0318__en-us_topic_0000001226756285_i203612473573">{container_cidr}</em> indicates the container CIDR of the cluster, for example, 10.0.0.0/16.</p>
+<p id="cce_bestpractice_0318__en-us_topic_0000001226756285_p1865472210250">To ensure configuration persistence, you are advised to write the command to the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b15471205375717">/etc/rc.local</strong> script.</p>
+</li><li id="cce_bestpractice_0318__en-us_topic_0000001226756285_li973418171252">Run the following commands in the container to access the <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b246592185813">userdata</strong> and <strong id="cce_bestpractice_0318__en-us_topic_0000001226756285_b3942184125817">metadata</strong> interfaces of OpenStack and check whether the request is intercepted:<pre class="screen" id="cce_bestpractice_0318__en-us_topic_0000001226756285_screen3787166102414">curl 169.254.169.254/openstack/latest/meta_data.json
+curl 169.254.169.254/openstack/latest/user_data</pre>
+</li></ol>
+</li></ul>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0315.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0319.html b/docs/cce/umn/cce_bestpractice_0319.html
new file mode 100644
index 00000000..19ae5aa3
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0319.html
@@ -0,0 +1,82 @@
+<a name="cce_bestpractice_0319"></a><a name="cce_bestpractice_0319"></a>
+
+<h1 class="topictitle1">Container Security</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_0319__en-us_topic_0000001181182498_section33548184212"><h4 class="sectiontitle">Controlling the Pod Scheduling Scope</h4><p class="msonormal" id="cce_bestpractice_0319__en-us_topic_0000001181182498_p1217894319312">The nodeSelector or nodeAffinity is used to limit the range of nodes to which applications can be scheduled, preventing the entire cluster from being threatened due to the exceptions of a single application. </p>
+</div>
+<div class="section" id="cce_bestpractice_0319__en-us_topic_0000001181182498_section9957027632"><h4 class="sectiontitle">Suggestions on Container Security Configuration</h4><ul id="cce_bestpractice_0319__en-us_topic_0000001181182498_ul41585571516"><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li8158145795119">Set the computing resource limits (<strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b17893201319579">request</strong> and <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b1373971695720">limit</strong>) of a container. This prevents the container from occupying too many resources and affecting the stability of the host and other containers on the same node.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li215885745115">Unless necessary, do not mount sensitive host directories to containers, such as <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b141203032451659">/</strong>, <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b183322389551659">/boot</strong>, <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b57887466051659">/dev</strong>, <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b77225877051659">/etc</strong>, <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b88598197751659">/lib</strong>, <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b213844612151659">/proc</strong>, <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b152215198251659">/sys</strong>, and <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b124051750451659">/usr</strong>.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li18158557195120">Do not run the sshd process in containers unless necessary.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li11158175795118">Unless necessary, it is not recommended that containers and hosts share the network namespace.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li1415885795117">Unless necessary, it is not recommended that containers and hosts share the process namespace.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li1415825775116">Unless necessary, it is not recommended that containers and hosts share the IPC namespace.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li11158057155119">Unless necessary, it is not recommended that containers and hosts share the UTS namespace.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li1615835735113">Unless necessary, do not mount the sock file of Docker to any container.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0319__en-us_topic_0000001181182498_section19516391833"><h4 class="sectiontitle">Container Permission Access Control</h4><p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p59421020105220">When using a containerized application, comply with the minimum privilege principle and properly set securityContext of Deployments or StatefulSets.</p>
+<ul id="cce_bestpractice_0319__en-us_topic_0000001181182498_ul9942132020520"><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li39421020175218">Configure runAsUser to specify a non-root user to run a container.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li69421020195211">Configure privileged to prevent containers being used in scenarios where privilege is not required.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li494272085219">Configure capabilities to accurately control the privileged access permission of containers.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li16491224125218">Configure allowPrivilegeEscalation to disable privilege escape in scenarios where privilege escalation is not required for container processes.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li51923552117">Configure seccomp to restrict the container syscalls. For details, see <a href="https://kubernetes.io/docs/tutorials/security/seccomp/" target="_blank" rel="noopener noreferrer">Restrict a Container's Syscalls with seccomp</a> in the official Kubernetes documentation.</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li1550815525214">Configure ReadOnlyRootFilesystem to protect the root file system of a container.<p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p12216113113328"><a name="cce_bestpractice_0319__en-us_topic_0000001181182498_li1550815525214"></a><a name="en-us_topic_0000001181182498_li1550815525214"></a>Example YAML for a Deployment:</p>
+<pre class="screen" id="cce_bestpractice_0319__en-us_topic_0000001181182498_screen17607650143219">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: security-context-example
+  namespace: security-example
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: security-context-example
+      label: security-context-example
+  strategy:
+    rollingUpdate:
+      maxSurge: 25%
+      maxUnavailable: 25%
+    type: RollingUpdate
+  template:
+    metadata:
+      annotations:
+        seccomp.security.alpha.kubernetes.io/pod: runtime/default
+      labels:
+        app: security-context-example
+        label: security-context-example
+    spec:
+      containers:
+        - image: ...
+          imagePullPolicy: Always
+          name: security-context-example
+          <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b85281014566">securityContext:</strong>
+            <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b89191944185520">allowPrivilegeEscalation:</strong> false
+            <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b5413135317556">readOnlyRootFilesystem</strong>: true
+            <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b1040875714552">runAsUser</strong>: 1000
+            <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b1341410114565">capabilities:</strong>
+              <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b2034013845512">add:</strong>
+              <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b939033475520">- NET_BIND_SERVICE</strong>
+              <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b19870172810559">drop:</strong>
+              <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b11633122475512">- all</strong>		
+          volumeMounts:
+            - mountPath: /etc/localtime
+              name: localtime
+              readOnly: true
+            - <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b166591545550">mountPath</strong>: <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b16668819555">/opt/write-file-dir</strong>
+              <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b10331161315511">name:</strong> <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b175921217165516">tmpfs-example-001</strong>
+      <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b450683811543">securityContext</strong>:
+        <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b11661742105413">seccompProfile</strong>:
+          <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b694725075415">type:</strong> <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b93592554547">RuntimeDefault</strong>
+      volumes:
+        - hostPath:
+            path: /etc/localtime
+            type: ""
+          name: localtime
+        - <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b6625143214546">emptyDir</strong>: {}            
+          name: tmpfs-example-001 </pre>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0319__en-us_topic_0000001181182498_section4598201610719"><h4 class="sectiontitle">Restricting the Access of Containers to the Management Plane</h4><p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p96815188353">If application containers on a node do not need to access Kubernetes, you can perform the following operations to disable containers from accessing kube-apiserver:</p>
+<ol id="cce_bestpractice_0319__en-us_topic_0000001181182498_ol345485831912"><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li92971066014"><span>Query the container CIDR block and private API server address.</span><p><p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p188112716215">On the <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b9183440101218">Clusters</strong> page of the CCE console, click the name of the cluster to find the information on the details page.</p>
+<p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p1655182952116"></p>
+</p></li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li19454135821910"><span>Log in to each node in the CCE cluster as user <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b16397169201316">root</strong> and run the following command:</span><p><ul id="cce_bestpractice_0319__en-us_topic_0000001181182498_ul2206102094315"><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li11206820114310">VPC network:<pre class="screen" id="cce_bestpractice_0319__en-us_topic_0000001181182498_screen1826691752418">iptables -I OUTPUT -s {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i17492042294">container_cidr</em>} -d {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i349212421792">Private API server IP</em>} -j REJECT</pre>
+</li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li82061820194315">Container tunnel network:<pre class="screen" id="cce_bestpractice_0319__en-us_topic_0000001181182498_screen1857421916242">iptables -I FORWARD -s {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i134061451191213">container_cidr</em>} -d {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i124061510122">Private API server IP</em>} -j REJECT</pre>
+</li></ul>
+<p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p8208153174219"><em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i1192051918131">{container_cidr}</em> indicates the container network of the cluster, for example, 10.0.0.0/16, and <em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i8487827101313">{master_ip}</em> indicates the IP address of the master node.</p>
+<p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p5208185310428">To ensure configuration persistence, you are advised to write the command to the <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b0858451111319">/etc/rc.local</strong> script.</p>
+</p></li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li8454105818194"><span>Run the following command in the container to access kube-apiserver and check whether the request is intercepted:</span><p><pre class="screen" id="cce_bestpractice_0319__en-us_topic_0000001181182498_screen198782045205215">curl -k https://{<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i0393123151412">Private API server IP</em>}:5443</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0315.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0320.html b/docs/cce/umn/cce_bestpractice_0320.html
new file mode 100644
index 00000000..2734b477
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0320.html
@@ -0,0 +1,103 @@
+<a name="cce_bestpractice_0320"></a><a name="cce_bestpractice_0320"></a>
+
+<h1 class="topictitle1">Secret Security</h1>
+<div id="body8662426"><p id="cce_bestpractice_0320__en-us_topic_0000001226820653_p1417445419489">Currently, CCE has configured static encryption for secret resources. The secrets created by users will be encrypted and stored in etcd of the CCE cluster. Secrets can be used in two modes: environment variable and file mounting. No matter which mode is used, CCE still transfers the configured data to users. Therefore, it is recommended that:</p>
+<ol id="cce_bestpractice_0320__en-us_topic_0000001226820653_ol1623210174919"><li id="cce_bestpractice_0320__en-us_topic_0000001226820653_li1723210024914">Do not record sensitive information in logs.</li><li id="cce_bestpractice_0320__en-us_topic_0000001226820653_li11631235175718">For the secret that uses the file mounting mode, the default file permission mapped in the container is 0644. Configure stricter permissions for the file. For example:<pre class="screen" id="cce_bestpractice_0320__en-us_topic_0000001226820653_screen5811165542417">apiversion: v1
+kind: Pod
+metadata:
+  name: mypod
+spec:
+  containers:
+  - name: mypod
+    image: redis
+    volumeMounts:
+    - name: foo
+      mountPath: "/etc/foo"
+  volumes:
+  - name: foo
+    secret:
+      secretName: mysecret
+      defaultMode: 256</pre>
+<p id="cce_bestpractice_0320__en-us_topic_0000001226820653_p5704161113526">In <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b3442210171617">defaultMode: 256</strong>, <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b621011134166">256</strong> is a decimal number, which corresponds to the octal number <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b95878507176">0400</strong>.</p>
+</li><li id="cce_bestpractice_0320__en-us_topic_0000001226820653_li7471855165910">When the file mounting mode is used, configure the secret file name to hide the file in the container.<pre class="screen" id="cce_bestpractice_0320__en-us_topic_0000001226820653_screen20995191015261">apiVersion: v1
+kind: Secret
+metadata:
+  name: dotfile-secret
+data:
+  .secret-file: dmFsdWUtMg0KDQo=
+---
+apiVersion: v1
+kind: Pod
+metadata;
+  name: secret-dotfiles-pod
+spec:
+  volumes:
+  - name: secret-volume
+    secret:
+      secretName: dotfile-secret
+  containers:
+  - name: dotfile-test-container
+    image: k8s.gcr.io/busybox
+    command:
+    - ls
+    - "-1"
+    - "/etc/secret-volume"
+    volumeMounts:
+    - name: secret-volume
+      readOnly: true
+      mountPath: "/etc/secret-volume"</pre>
+<p id="cce_bestpractice_0320__en-us_topic_0000001226820653_p1714103816314">In this way, <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b127162049111618">.secret-file</strong> cannot be viewed by running the <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b9446555201616">ls -l</strong> command in the <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b1320795914167">/etc/secret-volume/</strong> directory, but can be viewed by running the <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b1172118121174">ls -al</strong> command.</p>
+</li><li id="cce_bestpractice_0320__en-us_topic_0000001226820653_li97928435333">Encrypt sensitive information before creating a secret and decrypt the information when using it.</li></ol>
+<div class="section" id="cce_bestpractice_0320__en-us_topic_0000001226820653_section6268104520397"><h4 class="sectiontitle">Using a Bound ServiceAccount Token to Access a Cluster</h4><p id="cce_bestpractice_0320__en-us_topic_0000001226820653_p12148028135412">The secret-based ServiceAccount token does not support expiration time or auto update. In addition, after the mounting pod is deleted, the token is still stored in the secret. Token leakage may incur security risks. A bound ServiceAccount token is recommended for CCE clusters of version 1.23 or later. In this mode, the expiration time can be set and is the same as the pod lifecycle, reducing token leakage risks. Example:</p>
+<pre class="screen" id="cce_bestpractice_0320__en-us_topic_0000001226820653_screen17607650143219">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: security-token-example
+  namespace: security-example
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: security-token-example
+      label: security-token-example
+  template:
+    metadata:
+      annotations:
+        seccomp.security.alpha.kubernetes.io/pod: runtime/default
+      labels:
+        app: security-token-example
+        label: security-token-example
+    spec:
+      <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b1718111816218">serviceAccountName: test-sa</strong>
+      containers:
+        - image: ...
+          imagePullPolicy: Always
+          name: security-token-example
+      volumes:
+        <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b99681052110">- name: test-projected</strong>
+          <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b6123893115">projected:</strong>
+            <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b17693131217116">defaultMode: 420</strong>
+            <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b174941151418">sources:</strong>
+              <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b71164196113">- serviceAccountToken:</strong>
+                  <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b25645221015">expirationSeconds: 1800</strong>
+                  <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b1033314277119">path: token</strong>
+              <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b29893118119">- configMap:</strong>
+                  <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b52150341516">items:</strong>
+                    <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b194842381510">- key: ca.crt</strong>
+                      <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b122718541303">path: ca.crt</strong>
+                  <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b4171647207">name: kube-root-ca.crt</strong>
+              <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b091414421010">- downwardAPI:</strong>
+                  <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b577510382012">items:</strong>
+                    <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b498812346012">- fieldRef:</strong>
+                        <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b1332012311018">apiVersion: v1</strong>
+                        <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b07851026407">fieldPath: metadata.namespace</strong>
+                      <strong id="cce_bestpractice_0320__en-us_topic_0000001226820653_b12351221201">path: namespace</strong></pre>
+<p id="cce_bestpractice_0320__en-us_topic_0000001226820653_p1978522112718">For details, visit https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0315.html">Security</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0322.html b/docs/cce/umn/cce_bestpractice_0322.html
new file mode 100644
index 00000000..3fac4ff9
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0322.html
@@ -0,0 +1,19 @@
+<a name="cce_bestpractice_0322"></a><a name="cce_bestpractice_0322"></a>
+
+
+  <h1 class="topictitle1">DevOps</h1>
+
+  <div id="body0000001282414609"><p id="cce_bestpractice_0322__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0324.html">Interconnecting GitLab with SWR and CCE for CI/CD</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0323.html b/docs/cce/umn/cce_bestpractice_0323.html
new file mode 100644
index 00000000..ecb2381c
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0323.html
@@ -0,0 +1,19 @@
+<a name="cce_bestpractice_0323"></a><a name="cce_bestpractice_0323"></a>
+
+
+  <h1 class="topictitle1">Disaster Recovery</h1>
+
+  <div id="body0000001238534256"><p id="cce_bestpractice_0323__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00220.html">Implementing High Availability for Containers in CCE</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0324.html b/docs/cce/umn/cce_bestpractice_0324.html
new file mode 100644
index 00000000..2bbfa67a
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0324.html
@@ -0,0 +1,109 @@
+<a name="cce_bestpractice_0324"></a><a name="cce_bestpractice_0324"></a>
+
+<h1 class="topictitle1">Interconnecting GitLab with SWR and CCE for CI/CD</h1>
+<div id="body0000001238215064"><p id="cce_bestpractice_0324__p8060118"></p>
+<div class="section" id="cce_bestpractice_0324__section104562318367"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_0324__p563822163811">GitLab is an open-source version management system developed with Ruby on Rails for Git project repository management. It supports web-based access to public and private projects. Similar to GitHub, GitLab allows you to browse source code, manage bugs and comments, and control team member access to repositories. You will find it very easy to view committed versions and file history database. Team members can communicate with each other using the built-in chat program (Wall).</p>
+<p id="cce_bestpractice_0324__p1274620283394">GitLab provides powerful CI/CD functions and is widely used in software development.</p>
+<div class="fignone" id="cce_bestpractice_0324__fig2090044616395"><span class="figcap"><b>Figure 1 </b>GitLab CI/CD process</span><br><span><img id="cce_bestpractice_0324__image13651332153917" src="en-us_image_0000001291567729.png"></span></div>
+<p id="cce_bestpractice_0324__p9298143183713">This section describes how to interconnect GitLab with SWR and CCE for CI/CD.</p>
+</div>
+<div class="section" id="cce_bestpractice_0324__section2060412224119"><h4 class="sectiontitle">Preparations</h4><ol id="cce_bestpractice_0324__ol158624331226"><li id="cce_bestpractice_0324__li88620331724">Create a CCE cluster and a node and bind an EIP to the node for downloading an image during GitLab Runner installation.</li><li id="cce_bestpractice_0324__li2086213318215">Download and configure kubectl to connect to the cluster.</li><li id="cce_bestpractice_0324__li13479155813217"><a href="https://helm.sh/docs/intro/install/" target="_blank" rel="noopener noreferrer">Install Helm 3</a>.</li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0324__section7459101375015"><h4 class="sectiontitle">Installing GitLab Runner</h4><p id="cce_bestpractice_0324__p99813218399">Log in to <a href="https://www.gitlab.com/" target="_blank" rel="noopener noreferrer">GitLab</a>, choose <strong id="cce_bestpractice_0324__b16415107183416">Settings</strong> &gt; <strong id="cce_bestpractice_0324__b41611933415">CI/CD</strong> in the project view, click <strong id="cce_bestpractice_0324__b5786121313414">Expand</strong> next to <strong id="cce_bestpractice_0324__b1093881563411">Runners</strong>, and search for the GitLab Runner registration URL and token.</p>
+<p id="cce_bestpractice_0324__p10952323124318"><span><img id="cce_bestpractice_0324__image813162519432" src="en-us_image_0000001238489436.png"></span></p>
+<p id="cce_bestpractice_0324__p1983485014367">Create the <strong id="cce_bestpractice_0324__b10556175363413">values.yaml</strong> file and fill in the following information:</p>
+<pre class="screen" id="cce_bestpractice_0324__screen1016123017374"># Registration URL
+gitlabUrl: https://gitlab.com/
+# Registration token
+runnerRegistrationToken: "GR13489411dKVzmTyaywEDTF_1QXb"
+rbac:
+    create: true
+runners:
+    privileged: true</pre>
+<p id="cce_bestpractice_0324__p1672651414379">Create a GitLab namespace.</p>
+<pre class="screen" id="cce_bestpractice_0324__screen1739210238102">kubectl create namespace gitlab</pre>
+<p id="cce_bestpractice_0324__p11198038171419">Install GitLab Runner using Helm.</p>
+<pre class="screen" id="cce_bestpractice_0324__screen1432715563145">helm repo add gitlab https://charts.gitlab.io 
+helm install --namespace gitlab gitlab-runner -f values.yaml gitlab/gitlab-runner</pre>
+<p id="cce_bestpractice_0324__p1760416501781">After the installation, you can query the workload of gitlab-runner on the CCE console and view the connection information in GitLab later.</p>
+<p id="cce_bestpractice_0324__p062113719548"><span><img id="cce_bestpractice_0324__image0306174412542" src="en-us_image_0000001283301301.png"></span></p>
+</div>
+<div class="section" id="cce_bestpractice_0324__section14977521194213"><h4 class="sectiontitle">Creating an Application</h4><p id="cce_bestpractice_0324__p17491928134214">Place the application to be created in the GitLab project repository. This section takes Nginx modification as an example. For details, visit <a href="https://gitlab.com/c8147/cidemo/-/tree/main" target="_blank" rel="noopener noreferrer">https://gitlab.com/c8147/cidemo/-/tree/main</a>.</p>
+<p id="cce_bestpractice_0324__p2710175013216">The following files are included:</p>
+<ul id="cce_bestpractice_0324__ul1283975373210"><li id="cce_bestpractice_0324__li4289145863214"><strong id="cce_bestpractice_0324__b760015354517">.gitlab-ci.yml</strong>: Gitlab CI file, which will be described in detail in <a href="#cce_bestpractice_0324__section171541431101910">Creating a Pipeline</a>.</li><li id="cce_bestpractice_0324__li18961220193319"><strong id="cce_bestpractice_0324__b584111474510">Dockerfile</strong>: used to build Docker images.</li><li id="cce_bestpractice_0324__li12151726173311"><strong id="cce_bestpractice_0324__b3895378453">index.html</strong>: used to replace the index page of Nginx.</li><li id="cce_bestpractice_0324__li128403533327"><strong id="cce_bestpractice_0324__b7189154544514">k8s.yaml</strong>: used to deploy the Nginx app. A Deployment named <strong id="cce_bestpractice_0324__b818913456451">nginx-test</strong> and a Service named <strong id="cce_bestpractice_0324__b1918914594520">nginx-test</strong> will be created.</li></ul>
+<p id="cce_bestpractice_0324__p9536214194319">The preceding files are only examples. You can replace or modify them accordingly.</p>
+</div>
+<div class="section" id="cce_bestpractice_0324__section8498152791815"><h4 class="sectiontitle">Configuring Global Variables</h4><p id="cce_bestpractice_0324__p638732817559">When using pipelines, you need to build an image, upload it to SWR, and run kubectl commands to deploy the image in the cluster. Before performing these operations, you must log in to SWR and obtain the credential for connecting to the cluster. You can define the information as variables in GitLab.</p>
+<p id="cce_bestpractice_0324__p642032716199">Log in to <a href="https://www.gitlab.com/" target="_blank" rel="noopener noreferrer">GitLab</a>, choose <strong id="cce_bestpractice_0324__b207051173521">Settings</strong> &gt; <strong id="cce_bestpractice_0324__b422621925218">CI/CD</strong> in the project view, and click <strong id="cce_bestpractice_0324__b1458782105219">Expand</strong> next to <strong id="cce_bestpractice_0324__b13215243528">Variables</strong> to add variables.</p>
+<p id="cce_bestpractice_0324__p6966102711198"><span><img id="cce_bestpractice_0324__image1480813492017" src="en-us_image_0000001238903330.png"></span></p>
+<ul id="cce_bestpractice_0324__ul17795124313228"><li id="cce_bestpractice_0324__li99752566242"><strong id="cce_bestpractice_0324__b1442193305214">kube_config</strong><p id="cce_bestpractice_0324__p9618857172412"><strong id="cce_bestpractice_0324__b146033285532">kubeconfig.json</strong> file used for kubectl command authentication. Run the following command on the host where kubectl is configured to convert the file to the Base64 format:</p>
+<p id="cce_bestpractice_0324__p11481120132512"><strong id="cce_bestpractice_0324__b1550193724111">echo $(cat ~/.kube/config | base64) | tr -d " "</strong></p>
+<p id="cce_bestpractice_0324__p14681440132517">The command output is the content of <strong id="cce_bestpractice_0324__b22697258534">kubeconfig.json</strong>.</p>
+</li><li id="cce_bestpractice_0324__li0571732133117"><strong id="cce_bestpractice_0324__b967519332531">project</strong>: project name.<p id="cce_bestpractice_0324__p1098083212315">Log in to the management console, click your username in the upper right corner, and click <strong id="cce_bestpractice_0324__b184132165419">My Credentials</strong>. In the <strong id="cce_bestpractice_0324__b6211857135318">Projects</strong> area on the <strong id="cce_bestpractice_0324__b728185735317">API Credentials</strong> page, check the name of the project in your current region.</p>
+</li><li id="cce_bestpractice_0324__li1382183519310"><strong id="cce_bestpractice_0324__b3429921135410">swr_ak</strong>: access key.<p id="cce_bestpractice_0324__p12766133514315">Log in to the management console, click your username in the upper right corner, and click <strong id="cce_bestpractice_0324__b14630195820548">My Credentials</strong>. In the navigation pane on the left, choose <strong id="cce_bestpractice_0324__b7395090210">Access Keys</strong>. Click <strong id="cce_bestpractice_0324__b123813182024">Create Access Key</strong>, enter the description, and click <strong id="cce_bestpractice_0324__b82911824625">OK</strong>. In the displayed <strong id="cce_bestpractice_0324__b1051115251722">Information</strong> dialog box, click <span class="uicontrol" id="cce_bestpractice_0324__uicontrol95178251326"><b>Download</b></span>. After the certificate is downloaded, obtain the AK and SK information from the <strong id="cce_bestpractice_0324__b1061133131818">credentials</strong> file.</p>
+</li><li id="cce_bestpractice_0324__li12211152014237"><strong id="cce_bestpractice_0324__b1877511361037">swr_sk</strong>: secret key for logging in to SWR.<p id="cce_bestpractice_0324__p17573639338">Run the following command to obtain the key pair. Replace <em id="cce_bestpractice_0324__i24341255101012">$AK</em> and <em id="cce_bestpractice_0324__i161220586109">$SK</em> with the AK and SK obtained in the preceding steps.</p>
+<p id="cce_bestpractice_0324__p172946312336"><strong id="cce_bestpractice_0324__b123114254113">printf "</strong><strong id="cce_bestpractice_0324__b439417274344"><em id="cce_bestpractice_0324__i1988111460419">$AK</em></strong><strong id="cce_bestpractice_0324__b102334213412">" | openssl dgst -binary -sha256 -hmac "</strong><strong id="cce_bestpractice_0324__b066123143413"><em id="cce_bestpractice_0324__i16267451154115">$SK</em></strong><strong id="cce_bestpractice_0324__b52310426411">" | od -An -vtx1 | sed 's/[ \n]//g' | sed 'N;s/\n//'</strong></p>
+<p id="cce_bestpractice_0324__p3605640103410">The command output displays the login key pair.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0324__section171541431101910"><a name="cce_bestpractice_0324__section171541431101910"></a><a name="section171541431101910"></a><h4 class="sectiontitle">Creating a Pipeline</h4><p id="cce_bestpractice_0324__p1815163610194">Log in to <a href="https://www.gitlab.com/" target="_blank" rel="noopener noreferrer">Gitlab</a> and add the <strong id="cce_bestpractice_0324__b12130165371113">.gitlab-ci.yml</strong> file to <strong id="cce_bestpractice_0324__b63781657161117">Repository</strong>.</p>
+<p id="cce_bestpractice_0324__p10937163133618"><span><img id="cce_bestpractice_0324__image128228320363" src="en-us_image_0000001238830246.png"></span></p>
+<p id="cce_bestpractice_0324__p9962163843715">The content is as follows:</p>
+<pre class="screen" id="cce_bestpractice_0324__screen3120121125720"># Define pipeline stages, including <strong id="cce_bestpractice_0324__b1341584243418">package</strong>, <strong id="cce_bestpractice_0324__b104159423347">build</strong>, and <strong id="cce_bestpractice_0324__b164151042113416">deploy</strong>.
+stages:
+  - package  
+  - build
+  - deploy
+# If no image is specified in each stage, the default image <strong id="cce_bestpractice_0324__b1284348989">docker:latest</strong> is used.
+image: docker:latest
+# In the package stage, only printing is performed.
+package:
+  stage: package
+  script:
+    - echo "package"
+# In the build stage, the Docker-in-Docker mode is used.
+build:
+  stage: build
+  # Define environment variables for the build stage.
+  variables:
+    DOCKER_HOST: tcp://docker:2375
+  # Define the image for running Docker-in-Docker.
+  services:
+    - docker:18.09-dind
+  script:
+    - echo "build"
+    # Log in to SWR.
+    - docker login -u $project@$swr_ak -p $swr_sk swr.eu-de.otc.t-systems.com
+    # Build an image. <strong id="cce_bestpractice_0324__b1689310412146">k8s-dev</strong> is the organization name in SWR. Replace it to the actual name.
+    - docker build -t swr.eu-de.otc.t-systems.com/k8s-dev/nginx:$CI_PIPELINE_ID .
+    # Push the image to SWR.
+    - docker push swr.eu-de.otc.t-systems.com/k8s-dev/nginx:$CI_PIPELINE_ID
+deploy:
+  # Use the kubectl image.
+  image: 
+    name: bitnami/kubectl:latest
+    entrypoint: [""]
+  stage: deploy
+  script:
+    # Configure the kubeconfig file.
+    - echo $kube_config |base64 -d &gt; $KUBECONFIG
+    # Replace the image in the <strong id="cce_bestpractice_0324__b12796161463513">k8s.yaml</strong> file.
+    - sed -i "s/&lt;IMAGE_NAME&gt;/swr.eu-de.otc.t-systems.com\/k8s-dev\/nginx:$CI_PIPELINE_ID/g" k8s.yaml
+    - cat k8s.yaml
+    # Deploy an application.
+    - kubectl apply -f k8s.yaml</pre>
+<p id="cce_bestpractice_0324__p157432174497">After the <strong id="cce_bestpractice_0324__b179031421151813">.gitlab-ci.yml</strong> file is saved, the pipeline is started immediately. You can view the pipeline execution status in GitLab.</p>
+<p id="cce_bestpractice_0324__p186649471400"><span><img id="cce_bestpractice_0324__image1533712481601" src="en-us_image_0000001283343269.png"></span></p>
+</div>
+<div class="section" id="cce_bestpractice_0324__section195431441494"><h4 class="sectiontitle">Verifying Deployment</h4><p id="cce_bestpractice_0324__p144556611115">After the pipeline is deployed, locate the <strong id="cce_bestpractice_0324__b1412745371913">nginx-test</strong> Service on the CCE console, query its access address, and run the <strong id="cce_bestpractice_0324__b119743161717">curl</strong> command to access the Service.</p>
+<pre class="screen" id="cce_bestpractice_0324__screen135641518685"># curl xxx.xxx.xxx.xxx:31111
+Hello Gitlab!</pre>
+<p id="cce_bestpractice_0324__p1044314811417">If the preceding information is displayed, the deployment is correct.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0322.html">DevOps</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0325.html b/docs/cce/umn/cce_bestpractice_0325.html
new file mode 100644
index 00000000..506ca265
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0325.html
@@ -0,0 +1,50 @@
+<a name="cce_bestpractice_0325"></a><a name="cce_bestpractice_0325"></a>
+
+<h1 class="topictitle1">Configuring Core Dumps</h1>
+<div id="body0000001283292257"><div class="section" id="cce_bestpractice_0325__section14618738113"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_0325__p1338285915416">Linux allows you to create a core dump file if an application crashes, which contains the data the application had in memory at the time of the crash. You can analyze the file to locate the fault.</p>
+<p id="cce_bestpractice_0325__p1038218591147">Generally, when a service application crashes, its container exits and is reclaimed and destroyed. Therefore, container core files need to be permanently stored on the host or cloud storage. This topic describes how to configure container core dumps.</p>
+</div>
+<div class="section" id="cce_bestpractice_0325__section9971753171912"><h4 class="sectiontitle">Enabling Core Dump on a Node</h4><p id="cce_bestpractice_0325__p1734196152018">Log in to the node, run the following command to enable core dump, and set the path and format for storing core files:</p>
+<p id="cce_bestpractice_0325__p194919126270"><strong id="cce_bestpractice_0325__b38136022917">echo "/tmp/cores/core.%h.%e.%p.%t" &gt; /proc/sys/kernel/core_pattern</strong></p>
+<p id="cce_bestpractice_0325__p39805477280">Parameters:</p>
+<ul id="cce_bestpractice_0325__ul1011719502913"><li id="cce_bestpractice_0325__li611713513296"><strong id="cce_bestpractice_0325__b11644105318327">%h</strong>: host name (or pod name). You are advised to configure this parameter.</li><li id="cce_bestpractice_0325__li811710516296"><strong id="cce_bestpractice_0325__b208401216103315">%e</strong>: program file name. You are advised to configure this parameter.</li><li id="cce_bestpractice_0325__li71171451292"><strong id="cce_bestpractice_0325__b1482684833315">%p</strong>: (optional) process ID.</li><li id="cce_bestpractice_0325__li161177552917"><strong id="cce_bestpractice_0325__b1025135103416">%t</strong>: (optional) time of the core dump.</li></ul>
+<p id="cce_bestpractice_0325__p2260244162911">You can also configure a pre-installation or post-installation script to automatically run this command when creating a node.</p>
+</div>
+<div class="section" id="cce_bestpractice_0325__section1648563614590"><h4 class="sectiontitle">Permanently Storing Core Dumps</h4><div class="p" id="cce_bestpractice_0325__p5974185015920">A core file can be stored in your host (using a hostPath volume) or cloud storage (using a PVC). The following is an example YAML file for using a hostPath volume.<pre class="screen" id="cce_bestpractice_0325__screen18924185211372">apiVersion: v1
+kind: Pod
+metadata:
+  name: coredump
+spec:
+  volumes:
+  - name: coredump-path
+    hostPath:
+      path: /home/coredump
+  containers:
+  - name: ubuntu
+    image: ubuntu:12.04
+    command: ["/bin/sleep","3600"]
+    volumeMounts:
+    - mountPath: /tmp/cores
+      name: coredump-path</pre>
+</div>
+<p id="cce_bestpractice_0325__p1368124917810">Create a pod using kubectl.</p>
+<p id="cce_bestpractice_0325__p1954417589810"><strong id="cce_bestpractice_0325__b1253141813919">kubectl create -f  pod.yaml</strong></p>
+</div>
+<div class="section" id="cce_bestpractice_0325__section1779715127510"><h4 class="sectiontitle">Verification</h4><p id="cce_bestpractice_0325__p1042311615513">After the pod is created, access the container and trigger a segmentation fault of the current shell terminal.</p>
+<pre class="screen" id="cce_bestpractice_0325__screen163494419713">$ kubectl get pod
+NAME                          READY   STATUS    RESTARTS   AGE
+coredump                      1/1     Running   0          56s
+$ kubectl exec -it coredump -- /bin/bash
+root@coredump:/# <strong id="cce_bestpractice_0325__b56801540101011">kill -s SIGSEGV $$</strong>
+command terminated with exit code 139</pre>
+<p id="cce_bestpractice_0325__p1597014391019">Log in to the node and check whether a core file is generated in the <strong id="cce_bestpractice_0325__b8338141318199">/home/coredump</strong> directory. The following example indicates that a core file is generated.</p>
+<pre class="screen" id="cce_bestpractice_0325__screen11605018116"># ls /home/coredump
+core.coredump.bash.18.1650438992</pre>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0051.html">Container</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_01_0236.html b/docs/cce/umn/cce_bulletin_0000.html
similarity index 79%
rename from docs/cce/umn/cce_01_0236.html
rename to docs/cce/umn/cce_bulletin_0000.html
index 68750f5e..003398f0 100644
--- a/docs/cce/umn/cce_01_0236.html
+++ b/docs/cce/umn/cce_bulletin_0000.html
@@ -1,4 +1,4 @@
-<a name="cce_01_0236"></a><a name="cce_01_0236"></a>
+<a name="cce_bulletin_0000"></a><a name="cce_bulletin_0000"></a>
 
 <h1 class="topictitle1">Product Bulletin</h1>
 <div id="body0000001197314909"></div>
@@ -14,6 +14,8 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_bulletin_0169.html">Security Vulnerability Responses</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_10_0477.html">Service Account Token Security Improvement</a></strong><br>
+</li>
 </ul>
 </div>
 
diff --git a/docs/cce/umn/cce_bulletin_0003.html b/docs/cce/umn/cce_bulletin_0003.html
index 504707ee..7711c70e 100644
--- a/docs/cce/umn/cce_bulletin_0003.html
+++ b/docs/cce/umn/cce_bulletin_0003.html
@@ -1,29 +1,29 @@
 <a name="cce_bulletin_0003"></a><a name="cce_bulletin_0003"></a>
 
 <h1 class="topictitle1">Kubernetes Version Support Mechanism</h1>
-<div id="body0000001151475050"><p id="cce_bulletin_0003__p66161925886">This section describes the Kubernetes version support mechanism of CCE.</p>
-<div class="section" id="cce_bulletin_0003__section1919192517295"><h4 class="sectiontitle">Cluster Version Description</h4><p id="cce_bulletin_0003__zh-cn_topic_0204861439_p132879491301"><strong id="cce_bulletin_0003__b19695104212817">Version number</strong>: The format is <strong id="cce_bulletin_0003__b36957427811">x.y.z-r{n}</strong>, where <strong id="cce_bulletin_0003__b169514422812">x.y</strong> is the major version and <strong id="cce_bulletin_0003__b19695442289">z</strong> is the minor version. If the version number is followed by <strong id="cce_bulletin_0003__b166953421284">-r{n}</strong>, the version is a patch version, for example, v1.15.11-r1.</p>
-<p id="cce_bulletin_0003__zh-cn_topic_0204861439_p16870976217"><span><img id="cce_bulletin_0003__image1042211268497" src="en-us_image_0000001178192666.png"></span></p>
-<div class="note" id="cce_bulletin_0003__note19638175915812"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bulletin_0003__p663819598582">Starting from Kubernetes 1.21, CCE only displays the major version number, for example, v1.21.</p>
-</div></div>
-<p id="cce_bulletin_0003__p749375018113"><strong id="cce_bulletin_0003__b74931150131111">Offline</strong>: After a version is brought offline, a cluster of this version cannot be created on the CCE console and no new features will be released for the clusters of this version.</p>
-<p id="cce_bulletin_0003__p1649318501116"><strong id="cce_bulletin_0003__b4493185091119">Disuse</strong>: After a version is disused, CCE will no longer provide technical support for the version, including supporting new features, backporting Kubernetes bug fixes, fixing vulnerabilities, and upgrading to new versions.</p>
+<div id="en-us_topic_0000001510544129_body8662426"><p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_p20915126194616">This section explains versioning in CCE, and the policies for Kubernetes version support.</p>
+<div class="section" id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_section379512554115"><h4 class="sectiontitle">Version Description</h4><p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_p86982431415"><strong id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_b1298102132918">Version number</strong>: The format is <strong id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_b7298122152911">x.y.z</strong>, where <strong id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_b1529852162914">x.y</strong> is the major version and <strong id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_b172986213290">z</strong> is the minor version. If the version number is followed by <strong id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_b15298421152913">-r</strong>, the version is a patch version, for example, v1.15.6-r1.</p>
+<p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_p6698134394114"><span><img id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_image9698164313416" src="en-us_image_0000001460905374.png"></span></p>
+</div>
+<div class="section" id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_section2829194363118"><h4 class="sectiontitle">Version Requirements</h4><div class="notice" id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_note78114121912"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_p1912144113195"><strong id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_b613424310119">Offline</strong>: After a version is brought offline, a cluster of this version cannot be created on the CCE console and no new features will be released for the clusters of this version.</p>
+<p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_p20913194181910"><strong id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_b77781345201113">Obsolete</strong>: CCE will no longer provide support for this version, including release of new functions, community bug fixes, vulnerability management, and upgrade.</p>
+</div></div>
+<p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_p191581633213">CCE releases only odd major Kubernetes versions, such as v1.25, v1.23, and v1.21. The specific version support policies in different scenarios are as follows:</p>
+<ul id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_ul1294540113319"><li id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li1994512053314">Cluster creation<p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_p1672745332"><a name="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li1994512053314"></a><a name="en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li1994512053314"></a>CCE allows you to create clusters of two latest major Kubernetes versions, for example, v1.25 and v1.23. When v1.25 is commercially available, support for earlier versions (such as v1.21) will be removed. In this case, you will not be able to create clusters of v1.21 on the CCE console.</p>
+</li><li id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li161431111950">Cluster maintenance<p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_p363613161451"><a name="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li161431111950"></a><a name="en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li161431111950"></a>CCE maintains clusters of four major Kubernetes versions at most, such as v1.25, v1.23, v1.21, and v1.19. For example, after v1.25 is commercially available, support for v1.17 will be removed.</p>
+<p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_p1487716394110"><span><img class="eddx" id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_image48771739512" src="en-us_image_0000001461224886.png"></span></p>
+</li><li id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li179455010335">Cluster upgrade<div class="p" id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_p9485173511191"><a name="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li179455010335"></a><a name="en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li179455010335"></a>CCE allows you to upgrade clusters of <strong id="cce_bulletin_0003__en-us_topic_0000001510544129_b134942016182216">three major versions</strong> at the same time. Clusters of 1.19 and later versions can be upgraded skipping one major version at most (for example, from 1.19 directly to 1.23). Each version is maintained for one year. For example, after v1.25 is available, support for earlier versions (such as v1.17) will be removed. You are advised to upgrade your Kubernetes cluster before the maintenance period ends.<ul id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_ul09786286199"><li id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li149781828101912">Cluster version upgrade: After the latest major version (for example, v1.25) is available, CCE allows you to upgrade clusters to the last stable version of the second-latest major version, for example, v1.23. For details, see <a href="cce_10_0197.html">Upgrade Overview</a>.</li><li id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_li9978192871911">Cluster patch upgrade: For existing clusters running on the live network, if there are major Kubernetes issues or vulnerabilities, CCE will perform the patch upgrade on these clusters in the background. Users are unaware of the patch upgrade. If the patch upgrade has adverse impact on user services, CCE will release a notice one week in advance.</li></ul>
 </div>
-<div class="section" id="cce_bulletin_0003__zh-cn_topic_0204861439_section2829194363118"><h4 class="sectiontitle">Lifecycle</h4><p id="cce_bulletin_0003__p107293416127">CCE releases only odd major Kubernetes versions, such as v1.23, v1.21, v1.19, and v1.17. The specific version support policies in different scenarios are as follows:</p>
-<ul id="cce_bulletin_0003__zh-cn_topic_0204861439_ul1294540113319"><li id="cce_bulletin_0003__zh-cn_topic_0204861439_li1994512053314">Cluster creation<p id="cce_bulletin_0003__p88691417184512"><a name="cce_bulletin_0003__zh-cn_topic_0204861439_li1994512053314"></a><a name="zh-cn_topic_0204861439_li1994512053314"></a>CCE provides you with two major Kubernetes versions of clusters, for example, v1.23 and v1.21. For example, after v1.23 is brought online for commercial use, v1.19 is brought offline synchronously. In this case, the cluster of this version cannot be created on the console.</p>
-</li><li id="cce_bulletin_0003__zh-cn_topic_0204861439_li161431111950">Cluster maintenance<p id="cce_bulletin_0003__p1183835184317"><a name="cce_bulletin_0003__zh-cn_topic_0204861439_li161431111950"></a><a name="zh-cn_topic_0204861439_li161431111950"></a>CCE maintains four major Kubernetes versions, such as v1.17, v1.19, v1.21 and v1.23. For example, when v1.23 is put into commercial use, earlier versions such as v1.15 will be disused.</p>
-<p id="cce_bulletin_0003__p21321713142718"><span><img id="cce_bulletin_0003__image66577525464" src="en-us_image_0000001223152415.png"></span></p>
-</li><li id="cce_bulletin_0003__zh-cn_topic_0204861439_li179455010335">Cluster upgrade<p id="cce_bulletin_0003__p15381214104613"><a name="cce_bulletin_0003__zh-cn_topic_0204861439_li179455010335"></a><a name="zh-cn_topic_0204861439_li179455010335"></a>CCE supports the upgrade of three major Kubernetes versions, such as v1.21, v1.19, and v1.17. For example, after v1.23 is put into commercial use, clusters of versions earlier than v1.17, such as v1.15, cannot be upgraded any more.</p>
 </li></ul>
 </div>
-<div class="section" id="cce_bulletin_0003__zh-cn_topic_0204861439_section799412401339"><h4 class="sectiontitle">Version Release Cycle</h4><p id="cce_bulletin_0003__p106991250101313">CCE follows the Kubernetes community to release major versions. To be specific, a new CCE version is released about six months after a new Kubernetes version is released in the community.</p>
+<div class="section" id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_section799412401339"><h4 class="sectiontitle">Version Release Cycle</h4><p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_p9874119334">Kubernetes releases a major version in about four months. CCE will provide support to mirror the new Kubernetes version in about seven months after the version release.</p>
 </div>
-<div class="section" id="cce_bulletin_0003__zh-cn_topic_0204861439_section1989418334"><h4 class="sectiontitle">Version Constraints</h4><p id="cce_bulletin_0003__p98614272131">After a cluster is upgraded, it cannot be rolled back to the source version.</p>
+<div class="section" id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_section1989418334"><h4 class="sectiontitle">Version Constraints</h4><p id="cce_bulletin_0003__en-us_topic_0000001510544129_en-us_topic_0261805755_en-us_topic_0204861439_p202761056143311">After a cluster is upgraded, it cannot be rolled back to the source version.</p>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0236.html">Product Bulletin</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_bulletin_0011.html b/docs/cce/umn/cce_bulletin_0011.html
new file mode 100644
index 00000000..cc58bb59
--- /dev/null
+++ b/docs/cce/umn/cce_bulletin_0011.html
@@ -0,0 +1,18 @@
+<a name="cce_bulletin_0011"></a><a name="cce_bulletin_0011"></a>
+
+<h1 class="topictitle1">Vulnerability Fixing Policies</h1>
+<div id="en-us_topic_0261805763_body8662426"><div class="section" id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_section193331940115611"><h4 class="sectiontitle">Cluster Vulnerability Fixing SLA</h4><ul id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_ul142008297318"><li id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_li17404220516">High-risk vulnerabilities:<ul id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_ul21681726512"><li id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_li820016296314">CCE fixes vulnerabilities as soon as possible after the Kubernetes community detects them and releases fixing solutions. The fixing policies are the same as those of the community.</li><li id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_li98946271311">Emergency vulnerabilities of the operating system are released according to the operating system fixing policies and procedure. Generally, after a fixing solution is provided, you need to fix the vulnerabilities by yourself.</li></ul>
+</li><li id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_li587711176151">Other vulnerabilities:<p id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_p1751741918152"><a name="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_li587711176151"></a><a name="en-us_topic_0261805763_en-us_topic_0168001580_li587711176151"></a>Other vulnerabilities can be fixed through a normal upgrade.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_section12886145162212"><h4 class="sectiontitle">Fixing Statement</h4><p id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_p674518462079">To prevent customers from being exposed to unexpected risks, CCE does not provide other information about the vulnerability except the vulnerability background, details, technical analysis, affected functions/versions/scenarios, solutions, and reference information.</p>
+<p id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_p97301548871">In addition, CCE provides the same information for all customers to protect all customers equally. CCE will not notify individual customers in advance.</p>
+<p id="cce_bulletin_0011__en-us_topic_0261805763_en-us_topic_0168001580_p8624152416226">CCE does not develop or release exploitable intrusive code (or code for verification) using the vulnerabilities in the product.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0169.html">Security Vulnerability Responses</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bulletin_0054.html b/docs/cce/umn/cce_bulletin_0054.html
index 2c7cd78a..bff99bbd 100644
--- a/docs/cce/umn/cce_bulletin_0054.html
+++ b/docs/cce/umn/cce_bulletin_0054.html
@@ -72,7 +72,7 @@
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0236.html">Product Bulletin</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_bulletin_0068.html b/docs/cce/umn/cce_bulletin_0068.html
index 195990bb..1be6f35e 100644
--- a/docs/cce/umn/cce_bulletin_0068.html
+++ b/docs/cce/umn/cce_bulletin_0068.html
@@ -2,16 +2,33 @@
 
 <h1 class="topictitle1">CCE Cluster Version Release Notes</h1>
 <div id="body0000001151315244"><p id="cce_bulletin_0068__p367622383420">To ensure that stable and reliable Kubernetes versions are available during your use of CCE, CCE provides the Kubernetes version support mechanism. A new supported version will be released every half a year with a support period of one year. You must upgrade your Kubernetes clusters before the support period ends.</p>
-<div class="section" id="cce_bulletin_0068__section795484393512"><h4 class="sectiontitle">V1.23</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table8862195316359" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Feature description of clusters of v1.23</caption><thead align="left"><tr id="cce_bulletin_0068__row3862553183515"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.2.2.2.3.1.1"><p id="cce_bulletin_0068__p19862125363515">Kubernetes Version</p>
+<div class="section" id="cce_bulletin_0068__section1323283264616"><h4 class="sectiontitle">V1.25</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table8232183294611" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Feature description of clusters of v1.25</caption><thead align="left"><tr id="cce_bulletin_0068__row523273274619"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.2.2.2.3.1.1"><p id="cce_bulletin_0068__p18232173254610">Kubernetes Version</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.2.2.2.3.1.2"><p id="cce_bulletin_0068__p58629533359">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.2.2.2.3.1.2"><p id="cce_bulletin_0068__p92321232114614">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0068__row2863115363517"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_bulletin_0068__p786385312354">v1.23</p>
+<tbody><tr id="cce_bulletin_0068__row13232133217465"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.2.2.2.3.1.1 "><p id="cce_bulletin_0068__p14232432134620">v1.25</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_bulletin_0068__p6863753203516">Main features:</p>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.2.2.2.3.1.2 "><p id="cce_bulletin_0068__p15232103244610">Main features:</p>
+<ul id="cce_bulletin_0068__ul19994916105814"><li id="cce_bulletin_0068__li6994121616588">Incorporates features of Kubernetes v1.25.</li><li id="cce_bulletin_0068__li234591715512">PodSecurityPolicy is replaced by Pod Security Admission.</li><li id="cce_bulletin_0068__li133631364017">The LegacyServiceAccountTokenNoAutoGeneration feature is in beta state. By default, this feature is enabled and no more secret token will be automatically generated for the service account. If you want to use a token that never expires, you need to create a secret and mount it. For details, see <a href="https://kubernetes.io/docs/concepts/configuration/secret/#service-account-token-secrets" target="_blank" rel="noopener noreferrer">Service account token Secrets</a>.</li></ul>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_bulletin_0068__section795484393512"><h4 class="sectiontitle">V1.23</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table8862195316359" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Feature description of clusters of v1.23</caption><thead align="left"><tr id="cce_bulletin_0068__row3862553183515"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.3.2.2.3.1.1"><p id="cce_bulletin_0068__p19862125363515">Kubernetes Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.3.2.2.3.1.2"><p id="cce_bulletin_0068__p58629533359">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bulletin_0068__row2863115363517"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_bulletin_0068__p786385312354">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_bulletin_0068__p6863753203516">Main features:</p>
 <ul id="cce_bulletin_0068__ul7478030112218"><li id="cce_bulletin_0068__li1947803015221">Incorporates features of Kubernetes v1.23, the relevant Docker engine is version 18.09 and the operating system version is EulerOS 2.5, EulerOS 2.9 or Centos7.7.</li><li id="cce_bulletin_0068__li17986431122212">Egress rules can be configured when adding a Network Policy.</li></ul>
 </td>
 </tr>
@@ -20,15 +37,15 @@
 </div>
 </div>
 <div class="section" id="cce_bulletin_0068__section749462364"><h4 class="sectiontitle">V1.21</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table5976112713391" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Feature description of clusters of v1.21</caption><thead align="left"><tr id="cce_bulletin_0068__row19976227123917"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.3.2.2.3.1.1"><p id="cce_bulletin_0068__p497672723912">Kubernetes Version</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table5976112713391" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Feature description of clusters of v1.21</caption><thead align="left"><tr id="cce_bulletin_0068__row19976227123917"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.4.2.2.3.1.1"><p id="cce_bulletin_0068__p497672723912">Kubernetes Version</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.3.2.2.3.1.2"><p id="cce_bulletin_0068__p1976122783912">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.4.2.2.3.1.2"><p id="cce_bulletin_0068__p1976122783912">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0068__row1497612720396"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.3.2.2.3.1.1 "><p id="cce_bulletin_0068__p697642763910">v1.21</p>
+<tbody><tr id="cce_bulletin_0068__row1497612720396"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_bulletin_0068__p697642763910">v1.21</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.3.2.2.3.1.2 "><p id="cce_bulletin_0068__p12976182713917">Main features:</p>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_bulletin_0068__p12976182713917">Main features:</p>
 <ul id="cce_bulletin_0068__ul79761627123910"><li id="cce_bulletin_0068__li209761527133915">Incorporates features of Kubernetes v1.21.</li><li id="cce_bulletin_0068__li19802419174410">Two-way authentication is supported for domain name access.</li><li id="cce_bulletin_0068__li1319920321515">The Docker storage mode of nodes running CentOS 7 in CCE clusters is changed from Device Mapper to OverlayFS.</li></ul>
 </td>
 </tr>
@@ -37,21 +54,21 @@
 </div>
 </div>
 <div class="section" id="cce_bulletin_0068__section193365551628"><h4 class="sectiontitle">V1.19</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table1933617555217" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Feature description of clusters of v1.19</caption><thead align="left"><tr id="cce_bulletin_0068__row163364556214"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.4.2.2.3.1.1"><p id="cce_bulletin_0068__p4336195517215">Kubernetes Version</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table1933617555217" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Feature description of clusters of v1.19</caption><thead align="left"><tr id="cce_bulletin_0068__row163364556214"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.5.2.2.3.1.1"><p id="cce_bulletin_0068__p4336195517215">Kubernetes Version</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.4.2.2.3.1.2"><p id="cce_bulletin_0068__p433755512217">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.5.2.2.3.1.2"><p id="cce_bulletin_0068__p433755512217">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0068__row9777143161815"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_bulletin_0068__p077744371813">v1.19.10</p>
+<tbody><tr id="cce_bulletin_0068__row9777143161815"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.5.2.2.3.1.1 "><p id="cce_bulletin_0068__p077744371813">v1.19.10</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_bulletin_0068__p650662017812">Main features:</p>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.5.2.2.3.1.2 "><p id="cce_bulletin_0068__p650662017812">Main features:</p>
 <ul id="cce_bulletin_0068__ul107173116197"><li id="cce_bulletin_0068__li105895300718">EulerOS 2.5 and CentOS 7.7 are supported.</li><li id="cce_bulletin_0068__li17715315191">Incorporates features of Kubernetes v1.19.10.</li></ul>
 </td>
 </tr>
-<tr id="cce_bulletin_0068__row5337155514211"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.4.2.2.3.1.1 "><p id="cce_bulletin_0068__p43371055627">v1.19.8</p>
+<tr id="cce_bulletin_0068__row5337155514211"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.5.2.2.3.1.1 "><p id="cce_bulletin_0068__p43371055627">v1.19.8</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.4.2.2.3.1.2 "><p id="cce_bulletin_0068__p157541824680">Main features:</p>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.5.2.2.3.1.2 "><p id="cce_bulletin_0068__p157541824680">Main features:</p>
 <ul id="cce_bulletin_0068__ul23377550218"><li id="cce_bulletin_0068__li1233735517215">EulerOS 2.5 and CentOS 7.7 are supported.</li></ul>
 <ul id="cce_bulletin_0068__ul1733713551426"><li id="cce_bulletin_0068__li10337195516218">Features of Kubernetes v1.19.8 are incorporated.</li><li id="cce_bulletin_0068__li1810912123018">Pod security policies (PSPs) can be configured for a cluster.</li></ul>
 </td>
@@ -61,15 +78,15 @@
 </div>
 </div>
 <div class="section" id="cce_bulletin_0068__section5797192962810"><h4 class="sectiontitle">V1.17</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table379792911280" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Feature description of clusters of v1.17</caption><thead align="left"><tr id="cce_bulletin_0068__row20797172913283"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.5.2.2.3.1.1"><p id="cce_bulletin_0068__p19797132932819">Kubernetes</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table379792911280" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Feature description of clusters of v1.17</caption><thead align="left"><tr id="cce_bulletin_0068__row20797172913283"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.6.2.2.3.1.1"><p id="cce_bulletin_0068__p19797132932819">Kubernetes</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.5.2.2.3.1.2"><p id="cce_bulletin_0068__p157971629192813">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.6.2.2.3.1.2"><p id="cce_bulletin_0068__p157971629192813">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0068__row8797172910285"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.5.2.2.3.1.1 "><p id="cce_bulletin_0068__p14797112916282">v1.17.9-r0</p>
+<tbody><tr id="cce_bulletin_0068__row8797172910285"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.6.2.2.3.1.1 "><p id="cce_bulletin_0068__p14797112916282">v1.17.9-r0</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.5.2.2.3.1.2 "><p id="cce_bulletin_0068__p16797329102817">Main features:</p>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.6.2.2.3.1.2 "><p id="cce_bulletin_0068__p16797329102817">Main features:</p>
 <ul id="cce_bulletin_0068__ul1073727132913"><li id="cce_bulletin_0068__li12737173296">Support for EulerOS 2.5 and CentOS 7.7.</li><li id="cce_bulletin_0068__li10331239296">Incorporates features of Kubernetes v1.17.9.</li></ul>
 </td>
 </tr>
@@ -78,22 +95,22 @@
 </div>
 </div>
 <div class="section" id="cce_bulletin_0068__section18351606577"><h4 class="sectiontitle">V1.15</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table1381822411498" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Feature description of clusters of v1.15</caption><thead align="left"><tr id="cce_bulletin_0068__row18181424144918"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.6.2.2.3.1.1"><p id="cce_bulletin_0068__p18188245498">Kubernetes</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table1381822411498" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Feature description of clusters of v1.15</caption><thead align="left"><tr id="cce_bulletin_0068__row18181424144918"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.7.2.2.3.1.1"><p id="cce_bulletin_0068__p18188245498">Kubernetes</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.6.2.2.3.1.2"><p id="cce_bulletin_0068__p13819424114915">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.7.2.2.3.1.2"><p id="cce_bulletin_0068__p13819424114915">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0068__row9558623152211"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.6.2.2.3.1.1 "><p id="cce_bulletin_0068__p9559192319222">v1.15.11-r1</p>
+<tbody><tr id="cce_bulletin_0068__row9558623152211"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_bulletin_0068__p9559192319222">v1.15.11-r1</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.6.2.2.3.1.2 "><p id="cce_bulletin_0068__p16454172315312">Main features:</p>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_bulletin_0068__p16454172315312">Main features:</p>
 <ul id="cce_bulletin_0068__ul74543239532"><li id="cce_bulletin_0068__li18454123105317">EulerOS 2.5 is supported.</li><li id="cce_bulletin_0068__li164551723115312">Incorporates features of Kubernetes v1.15.11.</li></ul>
 </td>
 </tr>
-<tr id="cce_bulletin_0068__row9819824154913"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.6.2.2.3.1.1 "><p id="cce_bulletin_0068__p181952410497">v1.15.6-r1</p>
+<tr id="cce_bulletin_0068__row9819824154913"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_bulletin_0068__p181952410497">v1.15.6-r1</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.6.2.2.3.1.2 "><p id="cce_bulletin_0068__p41121229115010">Main features:</p>
-<ul id="cce_bulletin_0068__ul9447153212409"><li id="cce_bulletin_0068__li20808213222">EulerOS 2.5 is supported.</li><li id="cce_bulletin_0068__li37311020163914">Support for GPU-accelerated.</li><li id="cce_bulletin_0068__li18447173294011">Kubernetes parameters can be dynamically configured. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0213.html" target="_blank" rel="noopener noreferrer">Configuring Kubernetes Parameters</a> and <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0222.html" target="_blank" rel="noopener noreferrer">Managing a Node Pool</a>.</li><li id="cce_bulletin_0068__li172083186416">CCE storage supports CSI-based cloud-native container storage systems. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0066.html" target="_blank" rel="noopener noreferrer">everest</a>.</li></ul>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_bulletin_0068__p41121229115010">Main features:</p>
+<ul id="cce_bulletin_0068__ul9447153212409"><li id="cce_bulletin_0068__li20808213222">EulerOS 2.5 is supported.</li><li id="cce_bulletin_0068__li37311020163914">Support for GPU-accelerated.</li><li id="cce_bulletin_0068__li18447173294011">Kubernetes parameters can be dynamically configured. For details, see <a href="cce_10_0213.html">Configuring Kubernetes Parameters</a> and <a href="cce_10_0222.html">Managing a Node Pool</a>.</li><li id="cce_bulletin_0068__li172083186416">CCE storage supports CSI-based cloud-native container storage systems. For details, see <a href="cce_10_0066.html">everest</a>.</li></ul>
 </td>
 </tr>
 </tbody>
@@ -101,15 +118,15 @@
 </div>
 </div>
 <div class="section" id="cce_bulletin_0068__section1801516195711"><h4 class="sectiontitle">V1.13</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table14450940866" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Feature description of clusters of v1.13</caption><thead align="left"><tr id="cce_bulletin_0068__row145024011618"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.7.2.2.3.1.1"><p id="cce_bulletin_0068__p3450154019612">Kubernetes (CCE Enhanced Version)</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table14450940866" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Feature description of clusters of v1.13</caption><thead align="left"><tr id="cce_bulletin_0068__row145024011618"><th align="left" class="cellrowborder" valign="top" width="29.12%" id="mcps1.3.8.2.2.3.1.1"><p id="cce_bulletin_0068__p3450154019612">Kubernetes (CCE Enhanced Version)</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.7.2.2.3.1.2"><p id="cce_bulletin_0068__p19450184018614">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="70.88%" id="mcps1.3.8.2.2.3.1.2"><p id="cce_bulletin_0068__p19450184018614">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0068__row445115408610"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.7.2.2.3.1.1 "><p id="cce_bulletin_0068__p10471182012239">v1.13.10-r0</p>
+<tbody><tr id="cce_bulletin_0068__row445115408610"><td class="cellrowborder" valign="top" width="29.12%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_bulletin_0068__p10471182012239">v1.13.10-r0</p>
 </td>
-<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.7.2.2.3.1.2 "><p id="cce_bulletin_0068__p338519266389">Main features:</p>
+<td class="cellrowborder" valign="top" width="70.88%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_bulletin_0068__p338519266389">Main features:</p>
 <ul id="cce_bulletin_0068__ul5385826163813"><li id="cce_bulletin_0068__li14582113411229">Support for EulerOS 2.5.</li><li id="cce_bulletin_0068__li1385453717196">Support for GPU-accelerated.</li><li id="cce_bulletin_0068__li53854261389">Incorporates features of Kubernetes v1.13.10.</li></ul>
 </td>
 </tr>
@@ -118,21 +135,21 @@
 </div>
 </div>
 <div class="section" id="cce_bulletin_0068__section19479153020578"><h4 class="sectiontitle">V1.11 and Earlier Versions</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table1576019618322" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Feature description of clusters of v1.11 or earlier</caption><thead align="left"><tr id="cce_bulletin_0068__row0760106193218"><th align="left" class="cellrowborder" valign="top" width="35.05%" id="mcps1.3.8.2.2.3.1.1"><p id="cce_bulletin_0068__p12760186193219">Kubernetes (CCE Enhanced Version)</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0068__table1576019618322" frame="border" border="1" rules="all"><caption><b>Table 8 </b>Feature description of clusters of v1.11 or earlier</caption><thead align="left"><tr id="cce_bulletin_0068__row0760106193218"><th align="left" class="cellrowborder" valign="top" width="35.05%" id="mcps1.3.9.2.2.3.1.1"><p id="cce_bulletin_0068__p12760186193219">Kubernetes (CCE Enhanced Version)</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="64.95%" id="mcps1.3.8.2.2.3.1.2"><p id="cce_bulletin_0068__p13760460325">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="64.95%" id="mcps1.3.9.2.2.3.1.2"><p id="cce_bulletin_0068__p13760460325">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0068__row9327183322712"><td class="cellrowborder" valign="top" width="35.05%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_bulletin_0068__p83286338273">v1.11.7-r2</p>
+<tbody><tr id="cce_bulletin_0068__row9327183322712"><td class="cellrowborder" valign="top" width="35.05%" headers="mcps1.3.9.2.2.3.1.1 "><p id="cce_bulletin_0068__p83286338273">v1.11.7-r2</p>
 </td>
-<td class="cellrowborder" valign="top" width="64.95%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_bulletin_0068__p123502013204914">Main features:</p>
+<td class="cellrowborder" valign="top" width="64.95%" headers="mcps1.3.9.2.2.3.1.2 "><p id="cce_bulletin_0068__p123502013204914">Main features:</p>
 <ul id="cce_bulletin_0068__ul9267182224916"><li id="cce_bulletin_0068__li6397185071913">Support for GPU-accelerated.</li><li id="cce_bulletin_0068__li583617173237">Support for EulerOS 2.2.</li><li id="cce_bulletin_0068__li926712216492">Incorporates features of Kubernetes v1.11.7.</li></ul>
 </td>
 </tr>
-<tr id="cce_bulletin_0068__row09291939193211"><td class="cellrowborder" valign="top" width="35.05%" headers="mcps1.3.8.2.2.3.1.1 "><p id="cce_bulletin_0068__p159297395325">v1.9.10-r2</p>
+<tr id="cce_bulletin_0068__row09291939193211"><td class="cellrowborder" valign="top" width="35.05%" headers="mcps1.3.9.2.2.3.1.1 "><p id="cce_bulletin_0068__p159297395325">v1.9.10-r2</p>
 </td>
-<td class="cellrowborder" valign="top" width="64.95%" headers="mcps1.3.8.2.2.3.1.2 "><p id="cce_bulletin_0068__p76566117334">Main features:</p>
+<td class="cellrowborder" valign="top" width="64.95%" headers="mcps1.3.9.2.2.3.1.2 "><p id="cce_bulletin_0068__p76566117334">Main features:</p>
 <p id="cce_bulletin_0068__p456113616183">Incorporates features of Kubernetes v1.9.10.</p>
 </td>
 </tr>
@@ -143,7 +160,7 @@
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0236.html">Product Bulletin</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_bulletin_0169.html b/docs/cce/umn/cce_bulletin_0169.html
index 4c6ad41e..a8403e12 100644
--- a/docs/cce/umn/cce_bulletin_0169.html
+++ b/docs/cce/umn/cce_bulletin_0169.html
@@ -4,6 +4,8 @@
 <div id="body0000001197234813"></div>
 <div>
 <ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bulletin_0011.html">Vulnerability Fixing Policies</a></strong><br>
+</li>
 <li class="ulchildlink"><strong><a href="CVE-2021-4034.html">Linux Polkit Privilege Escalation Vulnerability (CVE-2021-4034)</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_bulletin_0206.html">Notice on Fixing Linux Kernel SACK Vulnerabilities</a></strong><br>
@@ -11,7 +13,7 @@
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0236.html">Product Bulletin</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_bulletin_0301.html b/docs/cce/umn/cce_bulletin_0301.html
index 97b45bf4..28021127 100644
--- a/docs/cce/umn/cce_bulletin_0301.html
+++ b/docs/cce/umn/cce_bulletin_0301.html
@@ -1,7 +1,7 @@
 <a name="cce_bulletin_0301"></a><a name="cce_bulletin_0301"></a>
 
 <h1 class="topictitle1">OS Patch Notes for Cluster Nodes</h1>
-<div id="body0000001197314911"><div class="section" id="cce_bulletin_0301__section326285833711"><h4 class="sectiontitle">Nodes in Hybrid Clusters</h4><p id="cce_bulletin_0301__p420694412491">CCE nodes in Hybrid clusters can run on EulerOS 2.2, EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.</p>
+<div id="body0000001197314911"><div class="section" id="cce_bulletin_0301__section326285833711"><h4 class="sectiontitle">Nodes in Hybrid Clusters</h4><p id="cce_bulletin_0301__p420694412491">CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.</p>
 
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0301__table1704174684710" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node OS patches</caption><thead align="left"><tr id="cce_bulletin_0301__row147041846154716"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.3.2.3.1.1"><p id="cce_bulletin_0301__p14704154614472">OS</p>
 </th>
@@ -9,24 +9,19 @@
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0301__row14704154610477"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p670494644718">EulerOS release 2.0 (SP2)</p>
+<tbody><tr id="cce_bulletin_0301__row17704144644713"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p7704184612471">EulerOS release 2.0 (SP5)</p>
 </td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p67045465476">3.10.0-327.62.59.83.h128.x86_64</p>
-</td>
-</tr>
-<tr id="cce_bulletin_0301__row17704144644713"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p7704184612471">EulerOS release 2.0 (SP5)</p>
-</td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p20704846104711">3.10.0-862.14.1.5.h591.eulerosv2r7.x86_64</p>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p20704846104711">3.10.0-862.14.1.5.h687.eulerosv2r7.x86_64</p>
 </td>
 </tr>
 <tr id="cce_bulletin_0301__row13771104834214"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p1277134884215">EulerOS release 2.0 (SP9)</p>
 </td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p1877154814425">4.18.0-147.5.1.6.h541.eulerosv2r9.x86_64</p>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p1877154814425">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
 </td>
 </tr>
 <tr id="cce_bulletin_0301__row3430310162"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p1143081016618">CentOS Linux release 7.7</p>
 </td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p04301710967">3.10.0-1062.18.1.el7.x86_64</p>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p04301710967">3.10.0-1160.76.1.el7.x86_64</p>
 </td>
 </tr>
 </tbody>
@@ -37,7 +32,7 @@
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_01_0236.html">Product Bulletin</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_faq_00006.html b/docs/cce/umn/cce_faq_00006.html
deleted file mode 100644
index 2fda550b..00000000
--- a/docs/cce/umn/cce_faq_00006.html
+++ /dev/null
@@ -1,180 +0,0 @@
-<a name="cce_faq_00006"></a><a name="cce_faq_00006"></a>
-
-<h1 class="topictitle1">Checklist for Migrating Containerized Applications to the Cloud</h1>
-<div id="body0000001197314913"><div class="section" id="cce_faq_00006__section277217531231"><h4 class="sectiontitle">Overview</h4><p id="cce_faq_00006__p10790550111920">Cloud Container Engine (CCE) provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily deploy, manage, and scale out containerized applications.</p>
-<p id="cce_faq_00006__p156732719517">This checklist describes the system availability, data reliability, and O&amp;M reliability of migrating containerized applications to the cloud. It contains check items, impact, FAQs, and examples, helping you migrate services to CCE and avoid application exceptions or cluster reconstruction caused by improper use.</p>
-</div>
-<div class="section" id="cce_faq_00006__section182281181291"><h4 class="sectiontitle">Check Items</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_faq_00006__table164991312201710" frame="border" border="1" rules="all"><caption><b>Table 1 </b>System availability</caption><thead align="left"><tr id="cce_faq_00006__row135006125171"><th align="left" class="cellrowborder" valign="top" width="14.090000000000003%" id="mcps1.3.2.2.2.5.1.1"><p id="cce_faq_00006__p75001612181713">Category</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="29.990000000000006%" id="mcps1.3.2.2.2.5.1.2"><p id="cce_faq_00006__p150131214173">Check Item</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="22.330000000000002%" id="mcps1.3.2.2.2.5.1.3"><p id="cce_faq_00006__p125011712171711">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="33.59%" id="mcps1.3.2.2.2.5.1.4"><p id="cce_faq_00006__p5501512151719">Impact</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_faq_00006__row14501131220173"><td class="cellrowborder" rowspan="4" valign="top" width="14.090000000000003%" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p11501191220174">Cluster</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.990000000000006%" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p1650115126174">When creating a cluster, set <strong id="cce_faq_00006__b8813162133119">High Availability</strong> to <strong id="cce_faq_00006__b1881816213313">Yes</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="22.330000000000002%" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p11501191211174">Reliability</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.59%" headers="mcps1.3.2.2.2.5.1.4 "><p id="cce_faq_00006__p16501161281714">A cluster with <strong id="cce_faq_00006__b8461184317318">High Availability</strong> set to <strong id="cce_faq_00006__b1546124353112">No</strong> is a non-HA cluster with only one master. If the master node is faulty, the entire cluster will be unavailable. Therefore, you are advised to create an HA cluster in the production environment.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row1850117122170"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p4501812101719">Before creating a cluster, determine the container network model that is suitable to the service scenario.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p1250131220173">Network planning</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p135361626948">Different container network models apply to different scenarios.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row75011212161711"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p155319281619">Before creating a cluster, plan the subnet CIDR block and container network CIDR block properly.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p150101291710">Network planning</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p0501151216175">If the range of the subnet and container network CIDR blocks is not properly set, the number of available nodes in the cluster will be less than the number of nodes supported by the cluster. Network planning has different constraints on different container network models.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row1750191218170"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p141771091211">Before creating a cluster, properly plan CIDR blocks for the related Direct Connect, peering connection, container network, service network, and subnet to avoid IP address conflicts.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p17501151211171">Network planning</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p18501312141712">If CIDR blocks are not properly set and IP address conflicts occur, service access will be affected.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row20501101281711"><td class="cellrowborder" rowspan="6" valign="top" width="14.090000000000003%" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p0501712141714">Workload</p>
-</td>
-<td class="cellrowborder" valign="top" width="29.990000000000006%" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p1150131216175">When creating a workload, set the upper and lower limits of CPU and memory resources.</p>
-</td>
-<td class="cellrowborder" valign="top" width="22.330000000000002%" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p14502212181712">Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.59%" headers="mcps1.3.2.2.2.5.1.4 "><p id="cce_faq_00006__p650251271716">If the upper and lower resource limits are not set for an application, a resource leak of this application will make resources unavailable for other applications deployed on the same node. In addition, applications that do not have upper and lower resource limits cannot be accurately monitored.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row918205611309"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p2018125612304">When creating an application, set the number of pods to more than two and set the scheduling policy based on service requirements.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p9183565309">Reliability</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p71825612306">A single-pod application will be faulty if the node or pod is faulty.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row161825673020"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p7181656183010">Properly set affinity and anti-affinity.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p1618205603013">Reliability</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p1218656113019">If affinity and anti-affinity are both configured for an application that provides Services externally, Services may fail to be accessed after the application is upgraded or restarted.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row12493344576"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p6250434165712">When creating a workload, set the health check policy, that is, set the workload liveness probe and the readiness probe.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p725043418577">Reliability</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p10251534185714">If the two probes are not set, pods cannot detect service exceptions or automatically restart the service to restore it. This results in a situation where the pod status is normal but the service in the pod is abnormal.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row676864612304"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p6768114643017">When creating a workload, set the pre-stop processing command (<strong id="cce_faq_00006__b730814121392">Lifecycle</strong> &gt; <strong id="cce_faq_00006__b14309312490">Pre-Stop</strong>) to ensure that the services running in the pods can be completed in advance in the case of application upgrade or pod deletion.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p77685468309">Reliability</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p1076804618309">If the pre-stop processing command is not configured, the pod will be directly killed and services will be interrupted during application upgrade.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row16357154013015"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_faq_00006__p13581405302">When creating a Service, select an access mode based on service requirements. Currently, the following types of access modes are supported: intra-cluster access, intra-VPC access, and external access.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_faq_00006__p935844033015">Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_faq_00006__p1635814015304">If the access mode is not properly set, internal and external access may be in disorder and resources may be wasted.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_faq_00006__table34517594413" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data reliability</caption><thead align="left"><tr id="cce_faq_00006__row17452105910416"><th align="left" class="cellrowborder" valign="top" width="12.72%" id="mcps1.3.2.3.2.5.1.1"><p id="cce_faq_00006__p19452175916417">Category</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="32.76%" id="mcps1.3.2.3.2.5.1.2"><p id="cce_faq_00006__p17452155913418">Check Item</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.64%" id="mcps1.3.2.3.2.5.1.3"><p id="cce_faq_00006__p14452155944117">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="37.88%" id="mcps1.3.2.3.2.5.1.4"><p id="cce_faq_00006__p164528599411">Impact</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_faq_00006__row174521959164116"><td class="cellrowborder" valign="top" width="12.72%" headers="mcps1.3.2.3.2.5.1.1 "><p id="cce_faq_00006__p11452195974113">Container data persistency</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.76%" headers="mcps1.3.2.3.2.5.1.2 "><p id="cce_faq_00006__p0452185913416">Store application data in the cloud, rather than on a local disk.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.64%" headers="mcps1.3.2.3.2.5.1.3 "><p id="cce_faq_00006__p445295913416">Reliability</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.88%" headers="mcps1.3.2.3.2.5.1.4 "><p id="cce_faq_00006__p6452125917415">If a node is faulty and cannot be restored, data on the local disk cannot be restored.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row4452125984114"><td class="cellrowborder" valign="top" width="12.72%" headers="mcps1.3.2.3.2.5.1.1 "><p id="cce_faq_00006__p5452125904110">Backup</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.76%" headers="mcps1.3.2.3.2.5.1.2 "><p id="cce_faq_00006__p745313591413">Back up application data.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.64%" headers="mcps1.3.2.3.2.5.1.3 "><p id="cce_faq_00006__p9453125934120">Reliability</p>
-</td>
-<td class="cellrowborder" valign="top" width="37.88%" headers="mcps1.3.2.3.2.5.1.4 "><p id="cce_faq_00006__p18453559154115">Data cannot be restored after being lost.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_faq_00006__table1177832919469" frame="border" border="1" rules="all"><caption><b>Table 3 </b>O&amp;M reliability</caption><thead align="left"><tr id="cce_faq_00006__row777822934612"><th align="left" class="cellrowborder" valign="top" width="12.668733126687332%" id="mcps1.3.2.4.2.5.1.1"><p id="cce_faq_00006__p6779102924617">Category</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="32.586741325867415%" id="mcps1.3.2.4.2.5.1.2"><p id="cce_faq_00006__p13779102994610">Check Item</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="16.43835616438356%" id="mcps1.3.2.4.2.5.1.3"><p id="cce_faq_00006__p7779132913462">Type</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="38.30616938306169%" id="mcps1.3.2.4.2.5.1.4"><p id="cce_faq_00006__p1577915295469">Impact</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_faq_00006__row137791294464"><td class="cellrowborder" rowspan="3" valign="top" width="12.668733126687332%" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_faq_00006__p1477919292464">Project</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.586741325867415%" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_faq_00006__p3779182912468">The quotas of ECS, VPC, subnet, EIP, and EVS resources must meet customer requirements.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.43835616438356%" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_faq_00006__p15779172984614">Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.30616938306169%" headers="mcps1.3.2.4.2.5.1.4 "><p id="cce_faq_00006__p20779162914614">If the quota is insufficient, resources will fail to be created. Specifically, users who have configured automatic capacity expansion must have sufficient resource quotas.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row10779102919461"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_faq_00006__p147791329154618">Do not install private software or modify OS configurations on a cluster node.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_faq_00006__p1177917296468">Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_faq_00006__p3779102919464">If private software is installed on a cluster node or OS configurations are modified, exceptions may occur on Kubernetes components on the node, making it unavailable for application deployment.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row19779142934618"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_faq_00006__p137801295461">Do not modify information about resources created by CCE, such as security groups and EVS disks. Resources created by CCE are labeled <strong id="cce_faq_00006__b824395071512">cce</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_faq_00006__p27801829144618">Deployment</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_faq_00006__p8780142913462">CCE cluster functions may be abnormal.</p>
-</td>
-</tr>
-<tr id="cce_faq_00006__row8780182974617"><td class="cellrowborder" valign="top" width="12.668733126687332%" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_faq_00006__p978082984614">Proactive O&amp;M</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.586741325867415%" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_faq_00006__p778002974612">Configure alarm monitoring on AOM for the applications you deployed in CCE clusters.</p>
-</td>
-<td class="cellrowborder" valign="top" width="16.43835616438356%" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_faq_00006__p4780192914467">Monitoring</p>
-</td>
-<td class="cellrowborder" valign="top" width="38.30616938306169%" headers="mcps1.3.2.4.2.5.1.4 "><p id="cce_faq_00006__p3780172964611">If alarm monitoring is not configured, you cannot receive alarms when applications are faulty and need to manually locate the faults.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_faq_0083.html">Reference</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_faq_0083.html b/docs/cce/umn/cce_faq_0083.html
index 04b96a4c..da3bc80c 100644
--- a/docs/cce/umn/cce_faq_0083.html
+++ b/docs/cce/umn/cce_faq_0083.html
@@ -4,8 +4,6 @@
 <div id="body0000001151315246"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_faq_00006.html">Checklist for Migrating Containerized Applications to the Cloud</a></strong><br>
-</li>
 <li class="ulchildlink"><strong><a href="cce_01_0203.html">How Do I Troubleshoot Insufficient EIPs When a Node Is Added?</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_01_0204.html">How Do I Format a Data Disk Using Command Line Injection?</a></strong><br>
@@ -26,14 +24,8 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_faq_00202.html">What Should I Do If a Service Released in a Workload Cannot Be Accessed from Public Networks?</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_bestpractice_00162.html">Selecting a Network Model When Creating a Cluster on CCE</a></strong><br>
-</li>
-<li class="ulchildlink"><strong><a href="cce_bestpractice_00004.html">Planning CIDR Blocks for a CCE Cluster</a></strong><br>
-</li>
 <li class="ulchildlink"><strong><a href="cce_faq_00266.html">What Is the Relationship Between Clusters, VPCs, and Subnets?</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_bestpractice_0107.html">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</a></strong><br>
-</li>
 <li class="ulchildlink"><strong><a href="cce_faq_00265.html">How Do I Harden the VPC Security Group Rules for CCE Cluster Nodes?</a></strong><br>
 </li>
 </ul>
diff --git a/docs/cce/umn/cce_qs_0001.html b/docs/cce/umn/cce_qs_0001.html
index 0a6f992d..9cd4c9ee 100644
--- a/docs/cce/umn/cce_qs_0001.html
+++ b/docs/cce/umn/cce_qs_0001.html
@@ -4,21 +4,21 @@
 <div id="body0000001151315242"><p id="cce_qs_0001__p1326211113390">This document provides instructions for getting started with the Cloud Container Engine (CCE).</p>
 <div class="section" id="cce_qs_0001__section19297198134420"><h4 class="sectiontitle">Procedure</h4><p id="cce_qs_0001__p6253212111713">Complete the following tasks to get started with CCE.</p>
 <div class="fignone" id="cce_qs_0001__fig154658221372"><span class="figcap"><b>Figure 1 </b>Procedure for getting started with CCE</span><br><span><img id="cce_qs_0001__image185691312124214" src="en-us_image_0000001178352608.png"></span></div>
-<ol id="cce_qs_0001__ol36118145197"><li id="cce_qs_0001__li561214131915"><span><strong id="cce_qs_0001__b935719471156">Authorize an IAM user to use CCE.</strong></span><p><p id="cce_qs_0001__p6622149196">The accounts have the permission to use CCE. However, IAM users created by the accounts do not have the permission. You need to manually assign the permission to IAM users.</p>
+<ol id="cce_qs_0001__ol36118145197"><li id="cce_qs_0001__li561214131915"><span><strong id="cce_qs_0001__b935719471156"><a href="cce_10_0019.html">Charts (Helm)</a>Authorize an IAM user to use CCE.</strong></span><p><p id="cce_qs_0001__p6622149196">The accounts have the permission to use CCE. However, IAM users created by the accounts do not have the permission. You need to manually assign the permission to IAM users.</p>
 </p></li><li id="cce_qs_0001__li96271414199"><span><strong id="cce_qs_0001__b8136134182211">Create a cluster.</strong></span><p><p id="cce_qs_0001__p247113280451">For details on how to create a regular Kubernetes cluster, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0028.html" target="_blank" rel="noopener noreferrer">Creating a CCE Cluster</a>.</p>
 </p></li><li id="cce_qs_0001__li862314191919"><span><strong id="cce_qs_0001__b660310483016">Create a workload from images or a chart.</strong></span><p><p id="cce_qs_0001__p262161411192">Select existing images/chart, or create new images/chart.</p>
-<ul id="cce_qs_0001__ul6591849114510"><li id="cce_qs_0001__li10591174913456">For details on how to create a workload from images, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0046.html" target="_blank" rel="noopener noreferrer">Workloads</a>.</li><li id="cce_qs_0001__li14912743102117">For details on how to create a workload from a chart, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0019.html" target="_blank" rel="noopener noreferrer">Charts (Helm)</a>.</li></ul>
-</p></li><li id="cce_qs_0001__li96241491911"><span><strong id="cce_qs_0001__b14652202516442">View workload status and logs. Upgrade, scale, and monitor the workload.</strong></span><p><p id="cce_qs_0001__p24978321104">For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0007.html" target="_blank" rel="noopener noreferrer">Managing Workloads and Jobs</a>.</p>
+<ul id="cce_qs_0001__ul6591849114510"><li id="cce_qs_0001__li10591174913456">For details on how to create a workload from images, see <a href="cce_10_0046.html">Workloads</a>.</li><li id="cce_qs_0001__li14912743102117">For details on how to create a workload from a chart, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0019.html" target="_blank" rel="noopener noreferrer">Charts (Helm)</a>.</li></ul>
+</p></li><li id="cce_qs_0001__li96241491911"><span><strong id="cce_qs_0001__b14652202516442">View workload status and logs. Upgrade, scale, and monitor the workload.</strong></span><p><p id="cce_qs_0001__p24978321104">For details, see <a href="cce_10_0007.html">Managing Workloads and Jobs</a>.</p>
 </p></li></ol>
 </div>
 <div class="section" id="cce_qs_0001__section194421388298"><h4 class="sectiontitle">FAQs</h4><ol id="cce_qs_0001__ol44421786292"><li id="cce_qs_0001__li136697585502"><strong id="cce_qs_0001__b137795284220">Is CCE suitable for users who are not familiar with Kubernetes?</strong><p id="cce_qs_0001__p9517929144411">Yes. The CCE console is easy-to-use.</p>
-</li><li id="cce_qs_0001__li77593711519"><strong id="cce_qs_0001__b13838749144616">Is CCE suitable for users who have little experience in building images?</strong><p id="cce_qs_0001__p197591076513">Yes. You can select images from <strong id="cce_qs_0001__b576625914461">Third-party Images</strong>, and <strong id="cce_qs_0001__b15766195984614">Shared Images</strong> pages on the CCE console. The <strong id="cce_qs_0001__b1576655911464">My Images</strong> page displays only the images created by you. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0046.html" target="_blank" rel="noopener noreferrer">Workloads</a>.</p>
+</li><li id="cce_qs_0001__li77593711519"><strong id="cce_qs_0001__b13838749144616">Is CCE suitable for users who have little experience in building images?</strong><p id="cce_qs_0001__p197591076513">Yes. You can select images from <strong id="cce_qs_0001__b576625914461">Third-party Images</strong>, and <strong id="cce_qs_0001__b15766195984614">Shared Images</strong> pages on the CCE console. The <strong id="cce_qs_0001__b1576655911464">My Images</strong> page displays only the images created by you. For details, see <a href="cce_10_0046.html">Workloads</a>.</p>
 </li><li id="cce_qs_0001__li144388122912"><strong id="cce_qs_0001__b1885272210107">How do I create a workload using CCE?</strong><p id="cce_qs_0001__p84431820293">Create a cluster and then create a workload in the cluster.</p>
-</li><li id="cce_qs_0001__li744310816298"><strong id="cce_qs_0001__b1365132511112">How do I create a workload accessible to public networks?</strong><p id="cce_qs_0001__p31041519455">CCE provides different types of Services for workload access in diverse scenarios. Currently, CCE provides two access types to expose a workload to public networks: NodePort and LoadBalancer. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0020.html" target="_blank" rel="noopener noreferrer">Networking</a>.</p>
+</li><li id="cce_qs_0001__li744310816298"><strong id="cce_qs_0001__b1365132511112">How do I create a workload accessible to public networks?</strong><p id="cce_qs_0001__p31041519455">CCE provides different types of Services for workload access in diverse scenarios. Currently, CCE provides two access types to expose a workload to public networks: NodePort and LoadBalancer. For details, see <a href="cce_10_0020.html">Networking</a>.</p>
 </li><li id="cce_qs_0001__li104431832910"><strong id="cce_qs_0001__b1858117417451">How can I allow multiple workloads in the same cluster to access each other?</strong><p id="cce_qs_0001__p744310811290">Select the access type ClusterIP, which allows workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
 <p id="cce_qs_0001__p94431686292">Cluster-internal domain names are in the format of &lt;self-defined service name&gt;.&lt;workload's namespace&gt;.svc.cluster.local:&lt;port number&gt;. For example, nginx.default.svc.cluster.local:80.</p>
 <p id="cce_qs_0001__p644313892918">Example:</p>
-<p id="cce_qs_0001__p13443388293">Assume that workload A needs to access workload B in the same cluster. Then, you can create a <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0011.html" target="_blank" rel="noopener noreferrer">ClusterIP</a> Service for workload B. After the ClusterIP Service is created, workload B is reachable at &lt;self-defined service name&gt;.&lt;workload B's namespace&gt;.svc.cluster.local:&lt;port number&gt;.</p>
+<p id="cce_qs_0001__p13443388293">Assume that workload A needs to access workload B in the same cluster. Then, you can create a <a href="cce_10_0011.html">ClusterIP</a> Service for workload B. After the ClusterIP Service is created, workload B is reachable at &lt;self-defined service name&gt;.&lt;workload B's namespace&gt;.svc.cluster.local:&lt;port number&gt;.</p>
 </li></ol>
 </div>
 </div>
diff --git a/docs/cce/umn/en-us_image_0000001223473845.png b/docs/cce/umn/en-us_image_0000001082048529.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001223473845.png
rename to docs/cce/umn/en-us_image_0000001082048529.png
diff --git a/docs/cce/umn/en-us_image_0000001088110417.png b/docs/cce/umn/en-us_image_0000001088110417.png
deleted file mode 100644
index b138cac6..00000000
Binary files a/docs/cce/umn/en-us_image_0000001088110417.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001113962636.png b/docs/cce/umn/en-us_image_0000001113962636.png
new file mode 100644
index 00000000..7c35ae08
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001113962636.png differ
diff --git a/docs/cce/umn/en-us_image_0000001126243447.png b/docs/cce/umn/en-us_image_0000001126243447.png
deleted file mode 100644
index 19d17bee..00000000
Binary files a/docs/cce/umn/en-us_image_0000001126243447.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001144208440.png b/docs/cce/umn/en-us_image_0000001144208440.png
deleted file mode 100644
index f6280ad0..00000000
Binary files a/docs/cce/umn/en-us_image_0000001144208440.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001144342236.png b/docs/cce/umn/en-us_image_0000001144342236.png
deleted file mode 100644
index 07d911c9..00000000
Binary files a/docs/cce/umn/en-us_image_0000001144342236.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001144342238.png b/docs/cce/umn/en-us_image_0000001144342238.png
deleted file mode 100644
index b8cd51de..00000000
Binary files a/docs/cce/umn/en-us_image_0000001144342238.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001144578756.png b/docs/cce/umn/en-us_image_0000001144578756.png
deleted file mode 100644
index 4eda4beb..00000000
Binary files a/docs/cce/umn/en-us_image_0000001144578756.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001144738550.png b/docs/cce/umn/en-us_image_0000001144738550.png
deleted file mode 100644
index 9a9b4449..00000000
Binary files a/docs/cce/umn/en-us_image_0000001144738550.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001144779784.png b/docs/cce/umn/en-us_image_0000001144779784.png
deleted file mode 100644
index a4bbbd03..00000000
Binary files a/docs/cce/umn/en-us_image_0000001144779784.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001145535931.png b/docs/cce/umn/en-us_image_0000001145545261.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001145535931.png
rename to docs/cce/umn/en-us_image_0000001145545261.png
diff --git a/docs/cce/umn/en-us_image_0000001148989534.png b/docs/cce/umn/en-us_image_0000001148989534.png
deleted file mode 100644
index f64927d6..00000000
Binary files a/docs/cce/umn/en-us_image_0000001148989534.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001150420952.png b/docs/cce/umn/en-us_image_0000001150420952.png
deleted file mode 100644
index 9bca8f60..00000000
Binary files a/docs/cce/umn/en-us_image_0000001150420952.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001152953258.png b/docs/cce/umn/en-us_image_0000001152953258.png
deleted file mode 100644
index b19a8248..00000000
Binary files a/docs/cce/umn/en-us_image_0000001152953258.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001160642447.png b/docs/cce/umn/en-us_image_0000001160642447.png
new file mode 100644
index 00000000..1be0aa0a
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001160642447.png differ
diff --git a/docs/cce/umn/en-us_image_0000001160731158.png b/docs/cce/umn/en-us_image_0000001160731158.png
deleted file mode 100644
index 3e03cd3d..00000000
Binary files a/docs/cce/umn/en-us_image_0000001160731158.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001172076961.png b/docs/cce/umn/en-us_image_0000001172076961.png
deleted file mode 100644
index 378328aa..00000000
Binary files a/docs/cce/umn/en-us_image_0000001172076961.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001172392670.png b/docs/cce/umn/en-us_image_0000001172392670.png
new file mode 100644
index 00000000..05cb59e8
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001172392670.png differ
diff --git a/docs/cce/umn/en-us_image_0000001176255102.png b/docs/cce/umn/en-us_image_0000001176255102.png
deleted file mode 100644
index c32d9be4..00000000
Binary files a/docs/cce/umn/en-us_image_0000001176255102.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001176818150.png b/docs/cce/umn/en-us_image_0000001176818150.png
new file mode 100644
index 00000000..efdf9ff7
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001176818150.png differ
diff --git a/docs/cce/umn/en-us_image_0000001178034114.png b/docs/cce/umn/en-us_image_0000001178034114.png
deleted file mode 100644
index d7b05530..00000000
Binary files a/docs/cce/umn/en-us_image_0000001178034114.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001178034116.png b/docs/cce/umn/en-us_image_0000001178034116.png
deleted file mode 100644
index e6a687b9..00000000
Binary files a/docs/cce/umn/en-us_image_0000001178034116.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001178192666.png b/docs/cce/umn/en-us_image_0000001178192666.png
deleted file mode 100644
index d000a3fd..00000000
Binary files a/docs/cce/umn/en-us_image_0000001178192666.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001178352604.png b/docs/cce/umn/en-us_image_0000001178352604.png
deleted file mode 100644
index 5bfbc6ca..00000000
Binary files a/docs/cce/umn/en-us_image_0000001178352604.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190048341.png b/docs/cce/umn/en-us_image_0000001190048341.png
deleted file mode 100644
index 57a44dd1..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190048341.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190168507.png b/docs/cce/umn/en-us_image_0000001190168507.png
deleted file mode 100644
index 5b3a3e05..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190168507.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190302085.png b/docs/cce/umn/en-us_image_0000001190302085.png
deleted file mode 100644
index dce5dbc8..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190302085.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190302087.png b/docs/cce/umn/en-us_image_0000001190302087.png
deleted file mode 100644
index d70fb1ab..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190302087.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190302089.png b/docs/cce/umn/en-us_image_0000001190302089.png
deleted file mode 100644
index 42c594e5..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190302089.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190302091.png b/docs/cce/umn/en-us_image_0000001190302091.png
deleted file mode 100644
index cbdee420..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190302091.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190302095.png b/docs/cce/umn/en-us_image_0000001190302095.png
deleted file mode 100644
index 4be70fad..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190302095.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190302097.png b/docs/cce/umn/en-us_image_0000001190302097.png
deleted file mode 100644
index 689fd9c4..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190302097.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190538605.png b/docs/cce/umn/en-us_image_0000001190538605.png
deleted file mode 100644
index 4d6df5d3..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190538605.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001190658439.png b/docs/cce/umn/en-us_image_0000001190658439.png
deleted file mode 100644
index 7df14a7b..00000000
Binary files a/docs/cce/umn/en-us_image_0000001190658439.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001192028618.png b/docs/cce/umn/en-us_image_0000001192028618.png
new file mode 100644
index 00000000..67590f40
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001192028618.png differ
diff --git a/docs/cce/umn/en-us_image_0000001195057213.png b/docs/cce/umn/en-us_image_0000001195057213.png
deleted file mode 100644
index c2958d95..00000000
Binary files a/docs/cce/umn/en-us_image_0000001195057213.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001198867835.png b/docs/cce/umn/en-us_image_0000001198867835.png
deleted file mode 100644
index 101fab41..00000000
Binary files a/docs/cce/umn/en-us_image_0000001198867835.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001198980979.png b/docs/cce/umn/en-us_image_0000001198980979.png
deleted file mode 100644
index 34322425..00000000
Binary files a/docs/cce/umn/en-us_image_0000001198980979.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001180446397.png b/docs/cce/umn/en-us_image_0000001199021278.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001180446397.png
rename to docs/cce/umn/en-us_image_0000001199021278.png
diff --git a/docs/cce/umn/en-us_image_0000001098645539.png b/docs/cce/umn/en-us_image_0000001199021298.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001098645539.png
rename to docs/cce/umn/en-us_image_0000001199021298.png
diff --git a/docs/cce/umn/en-us_image_0186273271.png b/docs/cce/umn/en-us_image_0000001199021308.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0186273271.png
rename to docs/cce/umn/en-us_image_0000001199021308.png
diff --git a/docs/cce/umn/en-us_image_0000001243407853.png b/docs/cce/umn/en-us_image_0000001199021320.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243407853.png
rename to docs/cce/umn/en-us_image_0000001199021320.png
diff --git a/docs/cce/umn/en-us_image_0000001093275701.png b/docs/cce/umn/en-us_image_0000001199021334.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001093275701.png
rename to docs/cce/umn/en-us_image_0000001199021334.png
diff --git a/docs/cce/umn/en-us_image_0000001190859184.png b/docs/cce/umn/en-us_image_0000001199181228.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001190859184.png
rename to docs/cce/umn/en-us_image_0000001199181228.png
diff --git a/docs/cce/umn/en-us_image_0000001192723194.png b/docs/cce/umn/en-us_image_0000001199181230.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001192723194.png
rename to docs/cce/umn/en-us_image_0000001199181230.png
diff --git a/docs/cce/umn/en-us_image_0000001409700093.png b/docs/cce/umn/en-us_image_0000001199181232.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001409700093.png
rename to docs/cce/umn/en-us_image_0000001199181232.png
diff --git a/docs/cce/umn/en-us_image_0000001168537057.png b/docs/cce/umn/en-us_image_0000001199181266.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001168537057.png
rename to docs/cce/umn/en-us_image_0000001199181266.png
diff --git a/docs/cce/umn/en-us_image_0000001190538599.png b/docs/cce/umn/en-us_image_0000001199181298.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001190538599.png
rename to docs/cce/umn/en-us_image_0000001199181298.png
diff --git a/docs/cce/umn/en-us_image_0000001159292060.png b/docs/cce/umn/en-us_image_0000001199181334.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001159292060.png
rename to docs/cce/umn/en-us_image_0000001199181334.png
diff --git a/docs/cce/umn/en-us_image_0000001231949185.png b/docs/cce/umn/en-us_image_0000001199181336.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001231949185.png
rename to docs/cce/umn/en-us_image_0000001199181336.png
diff --git a/docs/cce/umn/en-us_image_0000001116237931.png b/docs/cce/umn/en-us_image_0000001199181338.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001116237931.png
rename to docs/cce/umn/en-us_image_0000001199181338.png
diff --git a/docs/cce/umn/en-us_image_0295359661.png b/docs/cce/umn/en-us_image_0000001199181340.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0295359661.png
rename to docs/cce/umn/en-us_image_0000001199181340.png
diff --git a/docs/cce/umn/en-us_image_0144049227.png b/docs/cce/umn/en-us_image_0000001199341250.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0144049227.png
rename to docs/cce/umn/en-us_image_0000001199341250.png
diff --git a/docs/cce/umn/en-us_image_0000001199341268.png b/docs/cce/umn/en-us_image_0000001199341268.png
new file mode 100644
index 00000000..672ccf8d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001199341268.png differ
diff --git a/docs/cce/umn/en-us_image_0000001199341330.png b/docs/cce/umn/en-us_image_0000001199341330.png
new file mode 100644
index 00000000..5ddb8e3e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001199341330.png differ
diff --git a/docs/cce/umn/en-us_image_0000001192723190.png b/docs/cce/umn/en-us_image_0000001199501200.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001192723190.png
rename to docs/cce/umn/en-us_image_0000001199501200.png
diff --git a/docs/cce/umn/en-us_image_0000001163847995.png b/docs/cce/umn/en-us_image_0000001199501230.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001163847995.png
rename to docs/cce/umn/en-us_image_0000001199501230.png
diff --git a/docs/cce/umn/en-us_image_0000001199501262.png b/docs/cce/umn/en-us_image_0000001199501262.png
new file mode 100644
index 00000000..e3a75afd
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001199501262.png differ
diff --git a/docs/cce/umn/en-us_image_0000001409860177.png b/docs/cce/umn/en-us_image_0000001199501276.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001409860177.png
rename to docs/cce/umn/en-us_image_0000001199501276.png
diff --git a/docs/cce/umn/en-us_image_0000001199848585.png b/docs/cce/umn/en-us_image_0000001199501290.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199848585.png
rename to docs/cce/umn/en-us_image_0000001199501290.png
diff --git a/docs/cce/umn/en-us_image_0000001199757520.png b/docs/cce/umn/en-us_image_0000001199757520.png
new file mode 100644
index 00000000..0987110f
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001199757520.png differ
diff --git a/docs/cce/umn/en-us_image_0258503428.png b/docs/cce/umn/en-us_image_0000001201381906.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258503428.png
rename to docs/cce/umn/en-us_image_0000001201381906.png
diff --git a/docs/cce/umn/en-us_image_0276664213.png b/docs/cce/umn/en-us_image_0000001201823500.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0276664213.png
rename to docs/cce/umn/en-us_image_0000001201823500.png
diff --git a/docs/cce/umn/en-us_image_0000001202101148.png b/docs/cce/umn/en-us_image_0000001202101148.png
new file mode 100644
index 00000000..42fccb7b
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001202101148.png differ
diff --git a/docs/cce/umn/en-us_image_0276664792.png b/docs/cce/umn/en-us_image_0000001202103502.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0276664792.png
rename to docs/cce/umn/en-us_image_0000001202103502.png
diff --git a/docs/cce/umn/en-us_image_0000001203031716.png b/docs/cce/umn/en-us_image_0000001203031716.png
new file mode 100644
index 00000000..7cdfc47d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001203031716.png differ
diff --git a/docs/cce/umn/en-us_image_0000001359820608.png b/docs/cce/umn/en-us_image_0000001203385342.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001359820608.png
rename to docs/cce/umn/en-us_image_0000001203385342.png
diff --git a/docs/cce/umn/en-us_image_0000001204449561.png b/docs/cce/umn/en-us_image_0000001204449561.png
deleted file mode 100644
index bf526e22..00000000
Binary files a/docs/cce/umn/en-us_image_0000001204449561.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001205757902.png b/docs/cce/umn/en-us_image_0000001205757902.png
new file mode 100644
index 00000000..36a1a482
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001205757902.png differ
diff --git a/docs/cce/umn/en-us_image_0000001206876656.png b/docs/cce/umn/en-us_image_0000001206876656.png
new file mode 100644
index 00000000..303124ea
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001206876656.png differ
diff --git a/docs/cce/umn/en-us_image_0249778542.png b/docs/cce/umn/en-us_image_0000001206959574.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0249778542.png
rename to docs/cce/umn/en-us_image_0000001206959574.png
diff --git a/docs/cce/umn/en-us_image_0000001207511384.png b/docs/cce/umn/en-us_image_0000001207511384.png
new file mode 100644
index 00000000..5a0e7609
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001207511384.png differ
diff --git a/docs/cce/umn/en-us_image_0000001217183707.png b/docs/cce/umn/en-us_image_0000001217183707.png
new file mode 100644
index 00000000..aa7b279e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001217183707.png differ
diff --git a/docs/cce/umn/en-us_image_0000001218074121.png b/docs/cce/umn/en-us_image_0000001218074121.png
new file mode 100644
index 00000000..97a22d83
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001218074121.png differ
diff --git a/docs/cce/umn/en-us_image_0000001221007635.png b/docs/cce/umn/en-us_image_0000001221007635.png
deleted file mode 100644
index 29071310..00000000
Binary files a/docs/cce/umn/en-us_image_0000001221007635.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001221376671.png b/docs/cce/umn/en-us_image_0000001221376671.png
deleted file mode 100644
index ba5937d9..00000000
Binary files a/docs/cce/umn/en-us_image_0000001221376671.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001221501677.png b/docs/cce/umn/en-us_image_0000001221501677.png
new file mode 100644
index 00000000..f1403c1d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001221501677.png differ
diff --git a/docs/cce/umn/en-us_image_0000001221820189.png b/docs/cce/umn/en-us_image_0000001221820189.png
new file mode 100644
index 00000000..2af028bd
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001221820189.png differ
diff --git a/docs/cce/umn/en-us_image_0000001222591781.png b/docs/cce/umn/en-us_image_0000001222591781.png
deleted file mode 100644
index 866483a2..00000000
Binary files a/docs/cce/umn/en-us_image_0000001222591781.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001223152415.png b/docs/cce/umn/en-us_image_0000001223152415.png
deleted file mode 100644
index a0a3b169..00000000
Binary files a/docs/cce/umn/en-us_image_0000001223152415.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001223152417.png b/docs/cce/umn/en-us_image_0000001223152417.png
deleted file mode 100644
index 64a42b7c..00000000
Binary files a/docs/cce/umn/en-us_image_0000001223152417.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001223393893.png b/docs/cce/umn/en-us_image_0000001223393893.png
deleted file mode 100644
index 3f5e34ea..00000000
Binary files a/docs/cce/umn/en-us_image_0000001223393893.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001225747980.png b/docs/cce/umn/en-us_image_0000001225747980.png
new file mode 100644
index 00000000..e36aa545
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001225747980.png differ
diff --git a/docs/cce/umn/en-us_image_0000001226818003.png b/docs/cce/umn/en-us_image_0000001226818003.png
new file mode 100644
index 00000000..c586bbf4
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001226818003.png differ
diff --git a/docs/cce/umn/en-us_image_0000001227977765.png b/docs/cce/umn/en-us_image_0000001227977765.png
deleted file mode 100644
index 10acfee9..00000000
Binary files a/docs/cce/umn/en-us_image_0000001227977765.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001229793402.png b/docs/cce/umn/en-us_image_0000001229793402.png
deleted file mode 100644
index 794961c8..00000000
Binary files a/docs/cce/umn/en-us_image_0000001229793402.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001229794946.png b/docs/cce/umn/en-us_image_0000001229794946.png
deleted file mode 100644
index ca497cf7..00000000
Binary files a/docs/cce/umn/en-us_image_0000001229794946.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001236263298.png b/docs/cce/umn/en-us_image_0000001236263298.png
deleted file mode 100644
index 405ed945..00000000
Binary files a/docs/cce/umn/en-us_image_0000001236263298.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001236562704.png b/docs/cce/umn/en-us_image_0000001236562704.png
new file mode 100644
index 00000000..d8f82666
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001236562704.png differ
diff --git a/docs/cce/umn/en-us_image_0000001236582394.png b/docs/cce/umn/en-us_image_0000001236582394.png
deleted file mode 100644
index 0e0debd1..00000000
Binary files a/docs/cce/umn/en-us_image_0000001236582394.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001236723668.png b/docs/cce/umn/en-us_image_0000001236723668.png
new file mode 100644
index 00000000..4f4611d9
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001236723668.png differ
diff --git a/docs/cce/umn/en-us_image_0000001238163131.png b/docs/cce/umn/en-us_image_0000001238163131.png
deleted file mode 100644
index edccd543..00000000
Binary files a/docs/cce/umn/en-us_image_0000001238163131.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001238489436.png b/docs/cce/umn/en-us_image_0000001238489436.png
new file mode 100644
index 00000000..22b800ae
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001238489436.png differ
diff --git a/docs/cce/umn/en-us_image_0000001238830246.png b/docs/cce/umn/en-us_image_0000001238830246.png
new file mode 100644
index 00000000..9d1f0355
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001238830246.png differ
diff --git a/docs/cce/umn/en-us_image_0000001238903330.png b/docs/cce/umn/en-us_image_0000001238903330.png
new file mode 100644
index 00000000..82ffe7e7
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001238903330.png differ
diff --git a/docs/cce/umn/en-us_image_0000001238003081.png b/docs/cce/umn/en-us_image_0000001243981115.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001238003081.png
rename to docs/cce/umn/en-us_image_0000001243981115.png
diff --git a/docs/cce/umn/en-us_image_0000001117575950.png b/docs/cce/umn/en-us_image_0000001243981117.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001117575950.png
rename to docs/cce/umn/en-us_image_0000001243981117.png
diff --git a/docs/cce/umn/en-us_image_0000001144779790.png b/docs/cce/umn/en-us_image_0000001243981141.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001144779790.png
rename to docs/cce/umn/en-us_image_0000001243981141.png
diff --git a/docs/cce/umn/en-us_image_0000001098403383.png b/docs/cce/umn/en-us_image_0000001243981147.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001098403383.png
rename to docs/cce/umn/en-us_image_0000001243981147.png
diff --git a/docs/cce/umn/en-us_image_0000001243981177.png b/docs/cce/umn/en-us_image_0000001243981177.png
new file mode 100644
index 00000000..d1794e79
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001243981177.png differ
diff --git a/docs/cce/umn/en-us_image_0276664171.png b/docs/cce/umn/en-us_image_0000001243981181.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0276664171.png
rename to docs/cce/umn/en-us_image_0000001243981181.png
diff --git a/docs/cce/umn/en-us_image_0000001144502022.png b/docs/cce/umn/en-us_image_0000001243981203.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001144502022.png
rename to docs/cce/umn/en-us_image_0000001243981203.png
diff --git a/docs/cce/umn/en-us_image_0000001086743939.png b/docs/cce/umn/en-us_image_0000001244101107.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001086743939.png
rename to docs/cce/umn/en-us_image_0000001244101107.png
diff --git a/docs/cce/umn/en-us_image_0000001134406294.png b/docs/cce/umn/en-us_image_0000001244101121.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001134406294.png
rename to docs/cce/umn/en-us_image_0000001244101121.png
diff --git a/docs/cce/umn/en-us_image_0000001159118361.png b/docs/cce/umn/en-us_image_0000001244101223.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001159118361.png
rename to docs/cce/umn/en-us_image_0000001244101223.png
diff --git a/docs/cce/umn/en-us_image_0000001244141105.png b/docs/cce/umn/en-us_image_0000001244141105.png
new file mode 100644
index 00000000..8567ed8e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001244141105.png differ
diff --git a/docs/cce/umn/en-us_image_0000001144620002.png b/docs/cce/umn/en-us_image_0000001244141139.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001144620002.png
rename to docs/cce/umn/en-us_image_0000001244141139.png
diff --git a/docs/cce/umn/en-us_image_0144054048.gif b/docs/cce/umn/en-us_image_0000001244141141.gif
similarity index 100%
rename from docs/cce/umn/en-us_image_0144054048.gif
rename to docs/cce/umn/en-us_image_0000001244141141.gif
diff --git a/docs/cce/umn/en-us_image_0000001163928763.png b/docs/cce/umn/en-us_image_0000001244141181.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001163928763.png
rename to docs/cce/umn/en-us_image_0000001244141181.png
diff --git a/docs/cce/umn/en-us_image_0000001409580465.png b/docs/cce/umn/en-us_image_0000001244141191.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001409580465.png
rename to docs/cce/umn/en-us_image_0000001244141191.png
diff --git a/docs/cce/umn/en-us_image_0000001198861255.png b/docs/cce/umn/en-us_image_0000001244141217.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001198861255.png
rename to docs/cce/umn/en-us_image_0000001244141217.png
diff --git a/docs/cce/umn/en-us_image_0000001244261055.png b/docs/cce/umn/en-us_image_0000001244261055.png
new file mode 100644
index 00000000..25122445
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001244261055.png differ
diff --git a/docs/cce/umn/en-us_image_0000001360140132.png b/docs/cce/umn/en-us_image_0000001244261069.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001360140132.png
rename to docs/cce/umn/en-us_image_0000001244261069.png
diff --git a/docs/cce/umn/en-us_image_0000001142984374.png b/docs/cce/umn/en-us_image_0000001244261071.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001142984374.png
rename to docs/cce/umn/en-us_image_0000001244261071.png
diff --git a/docs/cce/umn/en-us_image_0000001120226646.png b/docs/cce/umn/en-us_image_0000001244261073.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001120226646.png
rename to docs/cce/umn/en-us_image_0000001244261073.png
diff --git a/docs/cce/umn/en-us_image_0254985211.png b/docs/cce/umn/en-us_image_0000001244261103.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0254985211.png
rename to docs/cce/umn/en-us_image_0000001244261103.png
diff --git a/docs/cce/umn/en-us_image_0000001144342232.png b/docs/cce/umn/en-us_image_0000001244261119.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001144342232.png
rename to docs/cce/umn/en-us_image_0000001244261119.png
diff --git a/docs/cce/umn/en-us_image_0254986677.png b/docs/cce/umn/en-us_image_0000001244261161.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0254986677.png
rename to docs/cce/umn/en-us_image_0000001244261161.png
diff --git a/docs/cce/umn/en-us_image_0000001244261167.png b/docs/cce/umn/en-us_image_0000001244261167.png
new file mode 100644
index 00000000..f1ed744e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001244261167.png differ
diff --git a/docs/cce/umn/en-us_image_0000001160748146.png b/docs/cce/umn/en-us_image_0000001244261169.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001160748146.png
rename to docs/cce/umn/en-us_image_0000001244261169.png
diff --git a/docs/cce/umn/en-us_image_0000001159831938.png b/docs/cce/umn/en-us_image_0000001244261171.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001159831938.png
rename to docs/cce/umn/en-us_image_0000001244261171.png
diff --git a/docs/cce/umn/en-us_image_0000001153101092.png b/docs/cce/umn/en-us_image_0000001244261173.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001153101092.png
rename to docs/cce/umn/en-us_image_0000001244261173.png
diff --git a/docs/cce/umn/en-us_image_0000001244997085.png b/docs/cce/umn/en-us_image_0000001244997085.png
new file mode 100644
index 00000000..ff8087ba
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001244997085.png differ
diff --git a/docs/cce/umn/en-us_image_0000001247802971.png b/docs/cce/umn/en-us_image_0000001247802971.png
new file mode 100644
index 00000000..fcdc7768
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001247802971.png differ
diff --git a/docs/cce/umn/en-us_image_0276664178.png b/docs/cce/umn/en-us_image_0000001248663503.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0276664178.png
rename to docs/cce/umn/en-us_image_0000001248663503.png
diff --git a/docs/cce/umn/en-us_image_0276664570.png b/docs/cce/umn/en-us_image_0000001249023453.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0276664570.png
rename to docs/cce/umn/en-us_image_0000001249023453.png
diff --git a/docs/cce/umn/en-us_image_0000001249073211.png b/docs/cce/umn/en-us_image_0000001249073211.png
new file mode 100644
index 00000000..87446d84
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001249073211.png differ
diff --git a/docs/cce/umn/en-us_image_0000001249958645.png b/docs/cce/umn/en-us_image_0000001249958645.png
new file mode 100644
index 00000000..36a1a482
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001249958645.png differ
diff --git a/docs/cce/umn/en-us_image_0000001251716033.png b/docs/cce/umn/en-us_image_0000001251716033.png
new file mode 100644
index 00000000..92f9830e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001251716033.png differ
diff --git a/docs/cce/umn/en-us_image_0000001256348238.jpg b/docs/cce/umn/en-us_image_0000001256348238.jpg
new file mode 100644
index 00000000..7747408f
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001256348238.jpg differ
diff --git a/docs/cce/umn/en-us_image_0000001274316069.png b/docs/cce/umn/en-us_image_0000001274316069.png
deleted file mode 100644
index f86a5ecd..00000000
Binary files a/docs/cce/umn/en-us_image_0000001274316069.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001274882416.png b/docs/cce/umn/en-us_image_0000001274882416.png
new file mode 100644
index 00000000..935bdf78
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001274882416.png differ
diff --git a/docs/cce/umn/en-us_image_0000001276433425.png b/docs/cce/umn/en-us_image_0000001276433425.png
new file mode 100644
index 00000000..6a1cd906
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001276433425.png differ
diff --git a/docs/cce/umn/en-us_image_0000001280171657.png b/docs/cce/umn/en-us_image_0000001280171657.png
deleted file mode 100644
index c3426e36..00000000
Binary files a/docs/cce/umn/en-us_image_0000001280171657.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001280181541.png b/docs/cce/umn/en-us_image_0000001280181541.png
deleted file mode 100644
index 6e12ed43..00000000
Binary files a/docs/cce/umn/en-us_image_0000001280181541.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001280421317.png b/docs/cce/umn/en-us_image_0000001280421317.png
deleted file mode 100644
index 108dd89d..00000000
Binary files a/docs/cce/umn/en-us_image_0000001280421317.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001280466745.png b/docs/cce/umn/en-us_image_0000001280466745.png
deleted file mode 100644
index 0492b6b4..00000000
Binary files a/docs/cce/umn/en-us_image_0000001280466745.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001283301301.png b/docs/cce/umn/en-us_image_0000001283301301.png
new file mode 100644
index 00000000..770a9fc0
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001283301301.png differ
diff --git a/docs/cce/umn/en-us_image_0000001283343269.png b/docs/cce/umn/en-us_image_0000001283343269.png
new file mode 100644
index 00000000..4c17d7c1
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001283343269.png differ
diff --git a/docs/cce/umn/en-us_image_0000001290111529.png b/docs/cce/umn/en-us_image_0000001290111529.png
new file mode 100644
index 00000000..226fcf76
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001290111529.png differ
diff --git a/docs/cce/umn/en-us_image_0000001291567729.png b/docs/cce/umn/en-us_image_0000001291567729.png
new file mode 100644
index 00000000..b48bf295
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001291567729.png differ
diff --git a/docs/cce/umn/en-us_image_0000001325364477.png b/docs/cce/umn/en-us_image_0000001325364477.png
new file mode 100644
index 00000000..b181bead
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001325364477.png differ
diff --git a/docs/cce/umn/en-us_image_0000001325377749.png b/docs/cce/umn/en-us_image_0000001325377749.png
new file mode 100644
index 00000000..6cab297a
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001325377749.png differ
diff --git a/docs/cce/umn/en-us_image_0000001283755568.png b/docs/cce/umn/en-us_image_0000001336475537.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001283755568.png
rename to docs/cce/umn/en-us_image_0000001336475537.png
diff --git a/docs/cce/umn/en-us_image_0000001352539924.png b/docs/cce/umn/en-us_image_0000001352539924.png
new file mode 100644
index 00000000..5ae1c1de
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001352539924.png differ
diff --git a/docs/cce/umn/en-us_image_0000001360670117.png b/docs/cce/umn/en-us_image_0000001360670117.png
new file mode 100644
index 00000000..603c9468
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001360670117.png differ
diff --git a/docs/cce/umn/en-us_image_0000001378942548.png b/docs/cce/umn/en-us_image_0000001378942548.png
new file mode 100644
index 00000000..a004b89a
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001378942548.png differ
diff --git a/docs/cce/umn/en-us_image_0000001392259910.png b/docs/cce/umn/en-us_image_0000001392259910.png
new file mode 100644
index 00000000..1dbc8381
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001392259910.png differ
diff --git a/docs/cce/umn/en-us_image_0000001392280374.png b/docs/cce/umn/en-us_image_0000001392280374.png
new file mode 100644
index 00000000..c569d0fc
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001392280374.png differ
diff --git a/docs/cce/umn/en-us_image_0000001392318380.png b/docs/cce/umn/en-us_image_0000001392318380.png
new file mode 100644
index 00000000..8e6d0509
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001392318380.png differ
diff --git a/docs/cce/umn/en-us_image_0000001397733101.png b/docs/cce/umn/en-us_image_0000001397733101.png
new file mode 100644
index 00000000..ece3f195
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001397733101.png differ
diff --git a/docs/cce/umn/en-us_image_0000001402494682.png b/docs/cce/umn/en-us_image_0000001402494682.png
new file mode 100644
index 00000000..cf481886
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001402494682.png differ
diff --git a/docs/cce/umn/en-us_image_0165888686.png b/docs/cce/umn/en-us_image_0000001408895746.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0165888686.png
rename to docs/cce/umn/en-us_image_0000001408895746.png
diff --git a/docs/cce/umn/en-us_image_0000001414561076.png b/docs/cce/umn/en-us_image_0000001414561076.png
new file mode 100644
index 00000000..f57b6c81
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001414561076.png differ
diff --git a/docs/cce/umn/en-us_image_0000001460905374.png b/docs/cce/umn/en-us_image_0000001460905374.png
new file mode 100644
index 00000000..50d2b8fd
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001460905374.png differ
diff --git a/docs/cce/umn/en-us_image_0000001461224886.png b/docs/cce/umn/en-us_image_0000001461224886.png
new file mode 100644
index 00000000..fd35a0fd
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001461224886.png differ
diff --git a/docs/cce/umn/en-us_image_0000001359980148.png b/docs/cce/umn/en-us_image_0000001464878016.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001359980148.png
rename to docs/cce/umn/en-us_image_0000001464878016.png
diff --git a/docs/cce/umn/en-us_image_0000001360140128.png b/docs/cce/umn/en-us_image_0000001465197524.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001360140128.png
rename to docs/cce/umn/en-us_image_0000001465197524.png
diff --git a/docs/cce/umn/en-us_image_0000001480191270.png b/docs/cce/umn/en-us_image_0000001480191270.png
new file mode 100644
index 00000000..290b94f1
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001480191270.png differ
diff --git a/docs/cce/umn/en-us_image_0000001482541956.png b/docs/cce/umn/en-us_image_0000001482541956.png
new file mode 100644
index 00000000..ca9934b1
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001482541956.png differ
diff --git a/docs/cce/umn/en-us_image_0000001482546084.png b/docs/cce/umn/en-us_image_0000001482546084.png
new file mode 100644
index 00000000..b2f9f125
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001482546084.png differ
diff --git a/docs/cce/umn/en-us_image_0000001482701968.png b/docs/cce/umn/en-us_image_0000001482701968.png
new file mode 100644
index 00000000..9b7e01f2
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001482701968.png differ
diff --git a/docs/cce/umn/en-us_image_0000001482796460.png b/docs/cce/umn/en-us_image_0000001482796460.png
new file mode 100644
index 00000000..60b03efc
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001482796460.png differ
diff --git a/docs/cce/umn/en-us_image_0000001409700089.png b/docs/cce/umn/en-us_image_0000001515838557.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001409700089.png
rename to docs/cce/umn/en-us_image_0000001515838557.png
diff --git a/docs/cce/umn/en-us_image_0000001409740389.png b/docs/cce/umn/en-us_image_0000001515917789.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001409740389.png
rename to docs/cce/umn/en-us_image_0000001515917789.png
diff --git a/docs/cce/umn/en-us_image_0000001528627005.png b/docs/cce/umn/en-us_image_0000001528627005.png
new file mode 100644
index 00000000..d74a10fa
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001528627005.png differ
diff --git a/docs/cce/umn/en-us_image_0000001531373685.png b/docs/cce/umn/en-us_image_0000001531373685.png
new file mode 100644
index 00000000..23752228
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001531373685.png differ
diff --git a/docs/cce/umn/en-us_image_0000001531533045.png b/docs/cce/umn/en-us_image_0000001531533045.png
new file mode 100644
index 00000000..f963c973
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001531533045.png differ
diff --git a/docs/cce/umn/en-us_image_0000001531533921.png b/docs/cce/umn/en-us_image_0000001531533921.png
new file mode 100644
index 00000000..da5aed3a
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001531533921.png differ
diff --git a/docs/cce/umn/en-us_image_0000001533181077.png b/docs/cce/umn/en-us_image_0000001533181077.png
new file mode 100644
index 00000000..47324ea0
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001533181077.png differ
diff --git a/docs/cce/umn/en-us_image_0000001533585325.png b/docs/cce/umn/en-us_image_0000001533585325.png
new file mode 100644
index 00000000..c18b7997
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001533585325.png differ
diff --git a/docs/cce/umn/en-us_image_0000001533586881.png b/docs/cce/umn/en-us_image_0000001533586881.png
new file mode 100644
index 00000000..92f9830e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001533586881.png differ
diff --git a/docs/cce/umn/en-us_image_0121749065.png b/docs/cce/umn/en-us_image_0121749065.png
deleted file mode 100644
index 7fab2b4e..00000000
Binary files a/docs/cce/umn/en-us_image_0121749065.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0144042759.png b/docs/cce/umn/en-us_image_0144042759.png
deleted file mode 100644
index 8df3e3b2..00000000
Binary files a/docs/cce/umn/en-us_image_0144042759.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0144045351.png b/docs/cce/umn/en-us_image_0144045351.png
deleted file mode 100644
index 4f6eaf1e..00000000
Binary files a/docs/cce/umn/en-us_image_0144045351.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0165899095.png b/docs/cce/umn/en-us_image_0165899095.png
deleted file mode 100644
index 4be5db17..00000000
Binary files a/docs/cce/umn/en-us_image_0165899095.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0165899282.png b/docs/cce/umn/en-us_image_0165899282.png
deleted file mode 100644
index 8e539c68..00000000
Binary files a/docs/cce/umn/en-us_image_0165899282.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0181616313.png b/docs/cce/umn/en-us_image_0181616313.png
deleted file mode 100644
index bfcccfec..00000000
Binary files a/docs/cce/umn/en-us_image_0181616313.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0181616314.png b/docs/cce/umn/en-us_image_0181616314.png
deleted file mode 100644
index bd210297..00000000
Binary files a/docs/cce/umn/en-us_image_0181616314.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0183134473.png b/docs/cce/umn/en-us_image_0183134473.png
deleted file mode 100644
index c293cf90..00000000
Binary files a/docs/cce/umn/en-us_image_0183134473.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0183134479.png b/docs/cce/umn/en-us_image_0183134479.png
deleted file mode 100644
index c293cf90..00000000
Binary files a/docs/cce/umn/en-us_image_0183134479.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0183134608.png b/docs/cce/umn/en-us_image_0183134608.png
deleted file mode 100644
index c293cf90..00000000
Binary files a/docs/cce/umn/en-us_image_0183134608.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0183674977.png b/docs/cce/umn/en-us_image_0183674977.png
deleted file mode 100644
index 1fe5ee34..00000000
Binary files a/docs/cce/umn/en-us_image_0183674977.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0195434915.png b/docs/cce/umn/en-us_image_0195434915.png
deleted file mode 100644
index 4f6eaf1e..00000000
Binary files a/docs/cce/umn/en-us_image_0195434915.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0198873490.png b/docs/cce/umn/en-us_image_0198873490.png
deleted file mode 100644
index 577d034f..00000000
Binary files a/docs/cce/umn/en-us_image_0198873490.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0198876479.png b/docs/cce/umn/en-us_image_0198876479.png
deleted file mode 100644
index 577d034f..00000000
Binary files a/docs/cce/umn/en-us_image_0198876479.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0214003838.png b/docs/cce/umn/en-us_image_0214003838.png
deleted file mode 100644
index 15ee848b..00000000
Binary files a/docs/cce/umn/en-us_image_0214003838.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0220702939.png b/docs/cce/umn/en-us_image_0220702939.png
deleted file mode 100644
index 8ea2b58b..00000000
Binary files a/docs/cce/umn/en-us_image_0220702939.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0220765374.png b/docs/cce/umn/en-us_image_0220765374.png
deleted file mode 100644
index e6d9c02a..00000000
Binary files a/docs/cce/umn/en-us_image_0220765374.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0250508826.png b/docs/cce/umn/en-us_image_0250508826.png
deleted file mode 100644
index 229ce201..00000000
Binary files a/docs/cce/umn/en-us_image_0250508826.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0259714782.png b/docs/cce/umn/en-us_image_0259714782.png
deleted file mode 100644
index e69e52c6..00000000
Binary files a/docs/cce/umn/en-us_image_0259714782.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0259716601.png b/docs/cce/umn/en-us_image_0259716601.png
deleted file mode 100644
index 81ed369b..00000000
Binary files a/docs/cce/umn/en-us_image_0259716601.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0259814716.png b/docs/cce/umn/en-us_image_0259814716.png
deleted file mode 100644
index 81ed369b..00000000
Binary files a/docs/cce/umn/en-us_image_0259814716.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0259814717.png b/docs/cce/umn/en-us_image_0259814717.png
deleted file mode 100644
index e69e52c6..00000000
Binary files a/docs/cce/umn/en-us_image_0259814717.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001223152421.png b/docs/cce/umn/en-us_image_0261818822.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001223152421.png
rename to docs/cce/umn/en-us_image_0261818822.png
diff --git a/docs/cce/umn/en-us_image_0000001178034110.png b/docs/cce/umn/en-us_image_0261818824.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001178034110.png
rename to docs/cce/umn/en-us_image_0261818824.png
diff --git a/docs/cce/umn/en-us_image_0261818867.png b/docs/cce/umn/en-us_image_0261818867.png
new file mode 100644
index 00000000..99f7849e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0261818867.png differ
diff --git a/docs/cce/umn/en-us_image_0000001178034108.png b/docs/cce/umn/en-us_image_0261818875.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001178034108.png
rename to docs/cce/umn/en-us_image_0261818875.png
diff --git a/docs/cce/umn/en-us_image_0000001178192670.png b/docs/cce/umn/en-us_image_0261818885.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001178192670.png
rename to docs/cce/umn/en-us_image_0261818885.png
diff --git a/docs/cce/umn/en-us_image_0000001223393899.png b/docs/cce/umn/en-us_image_0261818886.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001223393899.png
rename to docs/cce/umn/en-us_image_0261818886.png
diff --git a/docs/cce/umn/en-us_image_0261818893.png b/docs/cce/umn/en-us_image_0261818893.png
new file mode 100644
index 00000000..e1b6ec8d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0261818893.png differ
diff --git a/docs/cce/umn/en-us_image_0261818896.png b/docs/cce/umn/en-us_image_0261818896.png
new file mode 100644
index 00000000..e1b6ec8d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0261818896.png differ
diff --git a/docs/cce/umn/en-us_image_0261818899.png b/docs/cce/umn/en-us_image_0261818899.png
new file mode 100644
index 00000000..e1b6ec8d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0261818899.png differ
diff --git a/docs/cce/umn/en-us_image_0261820020.png b/docs/cce/umn/en-us_image_0261820020.png
new file mode 100644
index 00000000..b0639578
Binary files /dev/null and b/docs/cce/umn/en-us_image_0261820020.png differ
diff --git a/docs/cce/umn/en-us_image_0268523694.png b/docs/cce/umn/en-us_image_0268523694.png
new file mode 100644
index 00000000..718c8fa2
Binary files /dev/null and b/docs/cce/umn/en-us_image_0268523694.png differ
diff --git a/docs/cce/umn/en-us_image_0269288708.png b/docs/cce/umn/en-us_image_0269288708.png
deleted file mode 100644
index 63c26fe3..00000000
Binary files a/docs/cce/umn/en-us_image_0269288708.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0273156799.png b/docs/cce/umn/en-us_image_0273156799.png
deleted file mode 100644
index f6a55993..00000000
Binary files a/docs/cce/umn/en-us_image_0273156799.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0275445543.png b/docs/cce/umn/en-us_image_0275445543.png
new file mode 100644
index 00000000..1909444d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0275445543.png differ
diff --git a/docs/cce/umn/en-us_image_0275445566.png b/docs/cce/umn/en-us_image_0275445566.png
new file mode 100644
index 00000000..1909444d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0275445566.png differ
diff --git a/docs/cce/umn/en-us_image_0275452681.png b/docs/cce/umn/en-us_image_0275452681.png
new file mode 100644
index 00000000..1909444d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0275452681.png differ
diff --git a/docs/cce/umn/en-us_image_0278498565.png b/docs/cce/umn/en-us_image_0278498565.png
new file mode 100644
index 00000000..2756b2fb
Binary files /dev/null and b/docs/cce/umn/en-us_image_0278498565.png differ
diff --git a/docs/cce/umn/en-us_image_0298565473.png b/docs/cce/umn/en-us_image_0298565473.png
deleted file mode 100644
index 68d37b13..00000000
Binary files a/docs/cce/umn/en-us_image_0298565473.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0300973777.png b/docs/cce/umn/en-us_image_0300973777.png
deleted file mode 100644
index 1fe5ee34..00000000
Binary files a/docs/cce/umn/en-us_image_0300973777.png and /dev/null differ
diff --git a/docs/cce/umn/public_sys-resources/icon-arrowdn.gif b/docs/cce/umn/public_sys-resources/icon-arrowdn.gif
index 84eec9be..37942803 100644
Binary files a/docs/cce/umn/public_sys-resources/icon-arrowdn.gif and b/docs/cce/umn/public_sys-resources/icon-arrowdn.gif differ
diff --git a/docs/cce/umn/public_sys-resources/icon-arrowrt.gif b/docs/cce/umn/public_sys-resources/icon-arrowrt.gif
index 39583d16..6aaaa11c 100644
Binary files a/docs/cce/umn/public_sys-resources/icon-arrowrt.gif and b/docs/cce/umn/public_sys-resources/icon-arrowrt.gif differ