diff --git a/docs/cce/umn/ALL_META.TXT.json b/docs/cce/umn/ALL_META.TXT.json
index bebc082e..250c6c81 100644
--- a/docs/cce/umn/ALL_META.TXT.json
+++ b/docs/cce/umn/ALL_META.TXT.json
@@ -1,48 +1,168 @@
 [
+	{
+		"uri":"en-us_topic_0000001550437509.html",
+		"product_code":"cce",
+		"code":"1",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Service Overview",
+		"title":"Service Overview",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_01_0091.html",
 		"product_code":"cce",
-		"code":"1",
-		"des":"Cloud Container Engine (CCE) provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily dep",
+		"code":"2",
+		"des":"Cloud Container Engine (CCE) is a scalable, enterprise-class hosted Kubernetes service. With CCE, you can easily deploy, manage, and scale containerized applications in t",
 		"doc_type":"usermanual2",
-		"kw":"What Is Cloud Container Engine?,User Guide",
+		"kw":"What Is Cloud Container Engine?,Service Overview,User Guide",
 		"title":"What Is Cloud Container Engine?",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_qs_0001.html",
+		"uri":"cce_productdesc_0003.html",
 		"product_code":"cce",
-		"code":"2",
-		"des":"This document provides instructions for getting started with the Cloud Container Engine (CCE).Complete the following tasks to get started with CCE.The accounts have the p",
+		"code":"3",
+		"des":"CCE is a container service built on Docker and Kubernetes. A wealth of features enable you to run container clusters at scale. CCE eases containerization thanks to its re",
 		"doc_type":"usermanual2",
-		"kw":"Instruction,User Guide",
-		"title":"Instruction",
+		"kw":"Product Advantages,Service Overview,User Guide",
+		"title":"Product Advantages",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0007.html",
+		"product_code":"cce",
+		"code":"4",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Application Scenarios",
+		"title":"Application Scenarios",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0020.html",
+		"product_code":"cce",
+		"code":"5",
+		"des":"In CCE, you can run clusters with x86 and Arm nodes. Create and manage Kubernetes clusters. Deploy containerized applications in them. All done in CCE.Containerization re",
+		"doc_type":"usermanual2",
+		"kw":"Infrastructure and Containerized Application Management,Application Scenarios,User Guide",
+		"title":"Infrastructure and Containerized Application Management",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0015.html",
+		"product_code":"cce",
+		"code":"6",
+		"des":"Shopping apps and websites, especially during promotions and flash salesLive streaming, where service loads often fluctuateGames, where many players may go online in cert",
+		"doc_type":"usermanual2",
+		"kw":"Auto Scaling in Seconds,Application Scenarios,User Guide",
+		"title":"Auto Scaling in Seconds",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0017.html",
+		"product_code":"cce",
+		"code":"7",
+		"des":"You may receive a lot feedback and requirements for your apps or services. You may want to boost user experience with new features. Continuous integration (CI) and delive",
+		"doc_type":"usermanual2",
+		"kw":"DevOps and CI/CD,Application Scenarios,User Guide",
+		"title":"DevOps and CI/CD",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0018.html",
+		"product_code":"cce",
+		"code":"8",
+		"des":"Multi-cloud deployment and disaster recoveryRunning apps in containers on different clouds can ensure high availability. When a cloud is down, other clouds respond and se",
+		"doc_type":"usermanual2",
+		"kw":"Hybrid Cloud Architecture,Application Scenarios,User Guide",
+		"title":"Hybrid Cloud Architecture",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0005.html",
+		"product_code":"cce",
+		"code":"9",
+		"des":"This section describes the notes and constraints on using CCE.After a cluster is created, the following items cannot be changed:Number of master nodes. For example, you c",
+		"doc_type":"usermanual2",
+		"kw":"Volumes,namespace,Notes and Constraints,Service Overview,User Guide",
+		"title":"Notes and Constraints",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0002.html",
+		"product_code":"cce",
+		"code":"10",
+		"des":"CCE allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Management (IAM) and Kube",
+		"doc_type":"usermanual2",
+		"kw":"Permissions,Service Overview,User Guide",
+		"title":"Permissions",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0004.html",
+		"product_code":"cce",
+		"code":"11",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Basic Concepts",
+		"title":"Basic Concepts",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0011.html",
+		"product_code":"cce",
+		"code":"12",
+		"des":"CCE provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily deploy, manage, and scale co",
+		"doc_type":"usermanual2",
+		"kw":"Cluster,Node,Pod,Workload,image,image repository,job,Basic Concepts,Basic Concepts,User Guide",
+		"title":"Basic Concepts",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0010.html",
+		"product_code":"cce",
+		"code":"13",
+		"des":"Kubernetes (K8s) is an open-source system for automating deployment, scaling, and management of container clusters. It is a container orchestration tool and a leading sol",
+		"doc_type":"usermanual2",
+		"kw":"Mappings Between CCE and Kubernetes Terms,Basic Concepts,User Guide",
+		"title":"Mappings Between CCE and Kubernetes Terms",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0012.html",
+		"product_code":"cce",
+		"code":"14",
+		"des":"A region and availability zone (AZ) identify the location of a data center. You can create resources in a specific region and AZ.Regions are divided based on geographical",
+		"doc_type":"usermanual2",
+		"kw":"Regions and AZs,Basic Concepts,User Guide",
+		"title":"Regions and AZs",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_productdesc_0008.html",
+		"product_code":"cce",
+		"code":"15",
+		"des":"CCE works with the following cloud services and requires permissions to access them.",
+		"doc_type":"usermanual2",
+		"kw":"Elastic Cloud Server (ECS),Virtual Private Cloud (VPC),Elastic Load Balance (ELB),cloud storage for ",
+		"title":"Related Services",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_bulletin_0000.html",
 		"product_code":"cce",
-		"code":"3",
+		"code":"16",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Product Bulletin",
 		"title":"Product Bulletin",
 		"githuburl":""
 	},
-	{
-		"uri":"cce_bulletin_0054.html",
-		"product_code":"cce",
-		"code":"4",
-		"des":"When performing operations such as creating, deleting, and scaling clusters, do not change user permission in the Identity and Access Management (IAM) console. Otherwise,",
-		"doc_type":"usermanual2",
-		"kw":"the node will become unready,Risky Operations on Cluster Nodes,Product Bulletin,User Guide",
-		"title":"Risky Operations on Cluster Nodes",
-		"githuburl":""
-	},
 	{
 		"uri":"cce_bulletin_0003.html",
 		"product_code":"cce",
-		"code":"5",
+		"code":"17",
 		"des":"This section explains versioning in CCE, and the policies for Kubernetes version support.Version number: The format is x.y.z, where x.y is the major version and z is the ",
 		"doc_type":"usermanual2",
 		"kw":"Kubernetes Version Support Mechanism,Product Bulletin,User Guide",
@@ -52,7 +172,7 @@
 	{
 		"uri":"cce_bulletin_0068.html",
 		"product_code":"cce",
-		"code":"6",
+		"code":"18",
 		"des":"To ensure that stable and reliable Kubernetes versions are available during your use of CCE, CCE provides the Kubernetes version support mechanism. A new supported versio",
 		"doc_type":"usermanual2",
 		"kw":"CCE Cluster Version Release Notes,Product Bulletin,User Guide",
@@ -62,8 +182,8 @@
 	{
 		"uri":"cce_bulletin_0301.html",
 		"product_code":"cce",
-		"code":"7",
-		"des":"CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.The OS patches and verifica",
+		"code":"19",
+		"des":"CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9, CentOS 7.7 and Ubuntu 22.04. The following table lists the supported patches for these OSs.The OS patche",
 		"doc_type":"usermanual2",
 		"kw":"OS Patch Notes for Cluster Nodes,Product Bulletin,User Guide",
 		"title":"OS Patch Notes for Cluster Nodes",
@@ -72,7 +192,7 @@
 	{
 		"uri":"cce_bulletin_0169.html",
 		"product_code":"cce",
-		"code":"8",
+		"code":"20",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Security Vulnerability Responses",
@@ -82,7 +202,7 @@
 	{
 		"uri":"cce_bulletin_0011.html",
 		"product_code":"cce",
-		"code":"9",
+		"code":"21",
 		"des":"High-risk vulnerabilities:CCE fixes vulnerabilities as soon as possible after the Kubernetes community detects them and releases fixing solutions. The fixing policies are",
 		"doc_type":"usermanual2",
 		"kw":"Vulnerability Fixing Policies,Security Vulnerability Responses,User Guide",
@@ -92,7 +212,7 @@
 	{
 		"uri":"CVE-2021-4034.html",
 		"product_code":"cce",
-		"code":"10",
+		"code":"22",
 		"des":"Recently, a security research team disclosed a privilege escalation vulnerability (CVE-2021-4034, also dubbed PwnKit) in PolKit's pkexec. Unprivileged users can gain full",
 		"doc_type":"usermanual2",
 		"kw":"Linux Polkit Privilege Escalation Vulnerability (CVE-2021-4034),Security Vulnerability Responses,Use",
@@ -102,7 +222,7 @@
 	{
 		"uri":"cce_bulletin_0206.html",
 		"product_code":"cce",
-		"code":"11",
+		"code":"23",
 		"des":"The Linux Kernel SACK vulnerabilities have been fixed. This section describes the solution to these vulnerabilities.On June 18, 2019, Red Hat released a security notice, ",
 		"doc_type":"usermanual2",
 		"kw":"Notice on Fixing Linux Kernel SACK Vulnerabilities,Security Vulnerability Responses,User Guide",
@@ -110,29 +230,109 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_10_0477.html",
+		"uri":"cce_qs_0000.html",
 		"product_code":"cce",
-		"code":"12",
-		"des":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
+		"code":"24",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Service Account Token Security Improvement,Product Bulletin,User Guide",
-		"title":"Service Account Token Security Improvement",
+		"kw":"Getting Started",
+		"title":"Getting Started",
 		"githuburl":""
 	},
 	{
-		"uri":"cce_01_9994.html",
+		"uri":"cce_qs_0001.html",
 		"product_code":"cce",
-		"code":"13",
-		"des":"CCE works closely with multiple cloud services to support computing, storage, networking, and monitoring functions. When you log in to the CCE console for the first time,",
+		"code":"25",
+		"des":"This section describes how to use Cloud Container Engine (CCE) and provides frequently asked questions (FAQs) to help you quickly get started with CCE.Complete the follow",
 		"doc_type":"usermanual2",
-		"kw":"Obtaining Resource Permissions,User Guide",
-		"title":"Obtaining Resource Permissions",
+		"kw":"Introduction,Getting Started,User Guide",
+		"title":"Introduction",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_qs_0006.html",
+		"product_code":"cce",
+		"code":"26",
+		"des":"Before using CCE, you need to make the following preparations:Creating an IAM userObtaining Resource Permissions(Optional) Creating a VPC(Optional) Creating a Key PairIf ",
+		"doc_type":"usermanual2",
+		"kw":"VPC,Preparations,Getting Started,User Guide",
+		"title":"Preparations",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_qs_0008.html",
+		"product_code":"cce",
+		"code":"27",
+		"des":"This section describes how to quickly create a CCE cluster. In this example, the default or simple configurations are in use.If you have not created a cluster, a wizard p",
+		"doc_type":"usermanual2",
+		"kw":"Creating a Kubernetes Cluster,Getting Started,User Guide",
+		"title":"Creating a Kubernetes Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_qs_0003.html",
+		"product_code":"cce",
+		"code":"28",
+		"des":"You can use images to quickly create a single-pod workload that can be accessed from public networks. This section describes how to use CCE to quickly deploy an Nginx app",
+		"doc_type":"usermanual2",
+		"kw":"Creating a Deployment (Nginx) from an Image,Getting Started,User Guide",
+		"title":"Creating a Deployment (Nginx) from an Image",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_qs_0007.html",
+		"product_code":"cce",
+		"code":"29",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Deploying WordPress and MySQL That Depend on Each Other",
+		"title":"Deploying WordPress and MySQL That Depend on Each Other",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_qs_0009.html",
+		"product_code":"cce",
+		"code":"30",
+		"des":"WordPress was originally a blog platform based on PHP and MySQL. It is gradually evolved into a content management system. You can set up your own blog website on any ser",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Deploying WordPress and MySQL That Depend on Each Other,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_qs_0004.html",
+		"product_code":"cce",
+		"code":"31",
+		"des":"WordPress must be used together with MySQL. WordPress runs the content management program while MySQL serves as a database to store data.The WordPress and MySQL images ha",
+		"doc_type":"usermanual2",
+		"kw":"Step 1: Create a MySQL Workload,Deploying WordPress and MySQL That Depend on Each Other,User Guide",
+		"title":"Step 1: Create a MySQL Workload",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_qs_0005.html",
+		"product_code":"cce",
+		"code":"32",
+		"des":"WordPress was originally a blog platform based on PHP and MySQL. It is gradually evolved into a content management system. You can set up your own blog website on any ser",
+		"doc_type":"usermanual2",
+		"kw":"Step 2: Create a WordPress Workload,Deploying WordPress and MySQL That Depend on Each Other,User Gui",
+		"title":"Step 2: Create a WordPress Workload",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0054.html",
+		"product_code":"cce",
+		"code":"33",
+		"des":"During service deployment or running, you may trigger high-risk operations at different levels, causing service faults or interruption. To help you better estimate and av",
+		"doc_type":"usermanual2",
+		"kw":"High-Risk Operations and Solutions,User Guide",
+		"title":"High-Risk Operations and Solutions",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0091.html",
 		"product_code":"cce",
-		"code":"14",
+		"code":"34",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Clusters",
@@ -142,7 +342,7 @@
 	{
 		"uri":"cce_10_0002.html",
 		"product_code":"cce",
-		"code":"15",
+		"code":"35",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Cluster Overview",
@@ -152,8 +352,8 @@
 	{
 		"uri":"cce_10_0430.html",
 		"product_code":"cce",
-		"code":"16",
-		"des":"Kubernetes allows you to easily deploy and manage containerized application and facilitates container scheduling and orchestration.For developers, Kubernetes is a cluster",
+		"code":"36",
+		"des":"Kubernetes is an open source container orchestration engine for automating deployment, scaling, and management of containerized applications.For developers, Kubernetes is",
 		"doc_type":"usermanual2",
 		"kw":"Basic Cluster Information,Cluster Overview,User Guide",
 		"title":"Basic Cluster Information",
@@ -162,7 +362,7 @@
 	{
 		"uri":"cce_10_0342.html",
 		"product_code":"cce",
-		"code":"17",
+		"code":"37",
 		"des":"The following table lists the differences between CCE Turbo clusters and CCE clusters:The QingTian architecture consists of data plane (software-hardware synergy) and man",
 		"doc_type":"usermanual2",
 		"kw":"CCE Turbo Clusters and CCE Clusters,Cluster Overview,User Guide",
@@ -172,7 +372,7 @@
 	{
 		"uri":"cce_10_0349.html",
 		"product_code":"cce",
-		"code":"18",
+		"code":"38",
 		"des":"kube-proxy is a key component of a Kubernetes cluster. It is responsible for load balancing and forwarding between a Service and its backend pod.CCE supports two forwardi",
 		"doc_type":"usermanual2",
 		"kw":"Comparing iptables and IPVS,Cluster Overview,User Guide",
@@ -182,7 +382,7 @@
 	{
 		"uri":"cce_10_0068.html",
 		"product_code":"cce",
-		"code":"19",
+		"code":"39",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Release Notes",
@@ -192,7 +392,7 @@
 	{
 		"uri":"cce_10_0467.html",
 		"product_code":"cce",
-		"code":"20",
+		"code":"40",
 		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.25.Kubernetes 1",
 		"doc_type":"usermanual2",
 		"kw":"CCE Kubernetes 1.25 Release Notes,Release Notes,User Guide",
@@ -202,7 +402,7 @@
 	{
 		"uri":"cce_10_0468.html",
 		"product_code":"cce",
-		"code":"21",
+		"code":"41",
 		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.23.Changes in C",
 		"doc_type":"usermanual2",
 		"kw":"CCE Kubernetes 1.23 Release Notes,Release Notes,User Guide",
@@ -212,7 +412,7 @@
 	{
 		"uri":"cce_10_0469.html",
 		"product_code":"cce",
-		"code":"22",
+		"code":"42",
 		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.21.Kubernetes 1",
 		"doc_type":"usermanual2",
 		"kw":"CCE Kubernetes 1.21 Release Notes,Release Notes,User Guide",
@@ -222,7 +422,7 @@
 	{
 		"uri":"cce_10_0470.html",
 		"product_code":"cce",
-		"code":"23",
+		"code":"43",
 		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.19.Kubernetes 1",
 		"doc_type":"usermanual2",
 		"kw":"CCE Kubernetes 1.19 Release Notes,Release Notes,User Guide",
@@ -232,7 +432,7 @@
 	{
 		"uri":"cce_10_0471.html",
 		"product_code":"cce",
-		"code":"24",
+		"code":"44",
 		"des":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.17.All resource",
 		"doc_type":"usermanual2",
 		"kw":"CCE Kubernetes 1.17 Release Notes,Release Notes,User Guide",
@@ -242,7 +442,7 @@
 	{
 		"uri":"cce_10_0298.html",
 		"product_code":"cce",
-		"code":"25",
+		"code":"45",
 		"des":"CCE Turbo clusters run on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and inte",
 		"doc_type":"usermanual2",
 		"kw":"Creating a CCE Turbo Cluster,Clusters,User Guide",
@@ -252,7 +452,7 @@
 	{
 		"uri":"cce_10_0028.html",
 		"product_code":"cce",
-		"code":"26",
+		"code":"46",
 		"des":"On the CCE console, you can easily create Kubernetes clusters. Kubernetes can manage container clusters at scale. A cluster manages a group of node resources.In CCE, you ",
 		"doc_type":"usermanual2",
 		"kw":"Creating a CCE Cluster,Clusters,User Guide",
@@ -262,7 +462,7 @@
 	{
 		"uri":"cce_10_0140.html",
 		"product_code":"cce",
-		"code":"27",
+		"code":"47",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Using kubectl to Run a Cluster",
@@ -272,7 +472,7 @@
 	{
 		"uri":"cce_10_0107.html",
 		"product_code":"cce",
-		"code":"28",
+		"code":"48",
 		"des":"This section uses a CCE cluster as an example to describe how to connect to a CCE cluster using kubectl.When you access a cluster using kubectl, CCE uses thekubeconfig.js",
 		"doc_type":"usermanual2",
 		"kw":"Connecting to a Cluster Using kubectl,Using kubectl to Run a Cluster,User Guide",
@@ -282,7 +482,7 @@
 	{
 		"uri":"cce_10_0367.html",
 		"product_code":"cce",
-		"code":"29",
+		"code":"49",
 		"des":"A Subject Alternative Name (SAN) can be signed in to a cluster server certificate. A SAN is usually used by the client to verify the server validity in TLS handshakes. Sp",
 		"doc_type":"usermanual2",
 		"kw":"Customizing a Cluster Certificate SAN,Using kubectl to Run a Cluster,User Guide",
@@ -292,7 +492,7 @@
 	{
 		"uri":"cce_10_0139.html",
 		"product_code":"cce",
-		"code":"30",
+		"code":"50",
 		"des":"getThe get command displays one or many resources of a cluster.This command prints a table of the most important information about all resources, including cluster nodes,",
 		"doc_type":"usermanual2",
 		"kw":"Common kubectl Commands,Using kubectl to Run a Cluster,User Guide",
@@ -302,7 +502,7 @@
 	{
 		"uri":"cce_10_0215.html",
 		"product_code":"cce",
-		"code":"31",
+		"code":"51",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Upgrading a Cluster",
@@ -312,7 +512,7 @@
 	{
 		"uri":"cce_10_0197.html",
 		"product_code":"cce",
-		"code":"32",
+		"code":"52",
 		"des":"To enable interoperability from one Kubernetes installation to the next, you must upgrade your Kubernetes clusters before the maintenance period ends.After the latest Kub",
 		"doc_type":"usermanual2",
 		"kw":"Upgrade Overview,Upgrading a Cluster,User Guide",
@@ -322,17 +522,97 @@
 	{
 		"uri":"cce_10_0302.html",
 		"product_code":"cce",
-		"code":"33",
+		"code":"53",
 		"des":"Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see Upgrade Overview.Upgraded clu",
 		"doc_type":"usermanual2",
 		"kw":"Before You Start,Upgrading a Cluster,User Guide",
 		"title":"Before You Start",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_10_0560.html",
+		"product_code":"cce",
+		"code":"54",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Post-Upgrade Verification",
+		"title":"Post-Upgrade Verification",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0561.html",
+		"product_code":"cce",
+		"code":"55",
+		"des":"After the cluster is upgraded, check whether the services are running normal.Different services have different verification mode. Select a suitable one and verify the ser",
+		"doc_type":"usermanual2",
+		"kw":"Service Verification,Post-Upgrade Verification,User Guide",
+		"title":"Service Verification",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0562.html",
+		"product_code":"cce",
+		"code":"56",
+		"des":"Check whether unexpected pods exist in the cluster.Check whether there are pods restart unexpectedly in the cluster.Go to the CCE console and access the cluster console. ",
+		"doc_type":"usermanual2",
+		"kw":"Pod Check,Post-Upgrade Verification,User Guide",
+		"title":"Pod Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0563.html",
+		"product_code":"cce",
+		"code":"57",
+		"des":"Check whether the nodes are running properly.Check whether the node network is normal.Check whether the container network is normal.The node status reflects whether the n",
+		"doc_type":"usermanual2",
+		"kw":"Node and Container Network Check,Post-Upgrade Verification,User Guide",
+		"title":"Node and Container Network Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0564.html",
+		"product_code":"cce",
+		"code":"58",
+		"des":"Check whether the label is lost.Check whether there are unexpected taints.Go to the CCE console, access the cluster console, and choose Nodes in the navigation pane. On t",
+		"doc_type":"usermanual2",
+		"kw":"Node Label and Taint Check,Post-Upgrade Verification,User Guide",
+		"title":"Node Label and Taint Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0565.html",
+		"product_code":"cce",
+		"code":"59",
+		"des":"Check whether nodes can be created in the cluster.Go to the CCE console and access the cluster console. Choose Nodes in the navigation pane, and click Create Node.If node",
+		"doc_type":"usermanual2",
+		"kw":"New Node Check,Post-Upgrade Verification,User Guide",
+		"title":"New Node Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0566.html",
+		"product_code":"cce",
+		"code":"60",
+		"des":"Check whether pods can be created on the existing nodes after the cluster is upgraded.Check whether pods can be created on new nodes after the cluster is upgraded.After c",
+		"doc_type":"usermanual2",
+		"kw":"New Pod Check,Post-Upgrade Verification,User Guide",
+		"title":"New Pod Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0567.html",
+		"product_code":"cce",
+		"code":"61",
+		"des":"After the cluster is upgraded, you need to reset the nodes that fail to be upgraded.Go back to the previous step or view the upgrade details on the upgrade history page t",
+		"doc_type":"usermanual2",
+		"kw":"Node Skipping Check for Reset,Post-Upgrade Verification,User Guide",
+		"title":"Node Skipping Check for Reset",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_10_0120.html",
 		"product_code":"cce",
-		"code":"34",
+		"code":"62",
 		"des":"You can upgrade your clusters to a newer Kubernetes version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgrade",
 		"doc_type":"usermanual2",
 		"kw":"Performing Replace/Rolling Upgrade,Upgrading a Cluster,User Guide",
@@ -342,7 +622,7 @@
 	{
 		"uri":"cce_10_0301.html",
 		"product_code":"cce",
-		"code":"35",
+		"code":"63",
 		"des":"You can upgrade your clusters to a newer version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what w",
 		"doc_type":"usermanual2",
 		"kw":"Performing In-place Upgrade,Upgrading a Cluster,User Guide",
@@ -352,17 +632,447 @@
 	{
 		"uri":"cce_10_0210.html",
 		"product_code":"cce",
-		"code":"36",
+		"code":"64",
 		"des":"This section describes how to migrate services from a cluster of an earlier version to a cluster of a later version in CCE.This operation is applicable when a cross-versi",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Services Across Clusters of Different Versions,Upgrading a Cluster,User Guide",
 		"title":"Migrating Services Across Clusters of Different Versions",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_10_0550.html",
+		"product_code":"cce",
+		"code":"65",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Troubleshooting for Pre-upgrade Check Exceptions",
+		"title":"Troubleshooting for Pre-upgrade Check Exceptions",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0549.html",
+		"product_code":"cce",
+		"code":"66",
+		"des":"The system performs a comprehensive pre-upgrade check before the cluster upgrade. If the cluster does not meet the pre-upgrade check conditions, the upgrade cannot contin",
+		"doc_type":"usermanual2",
+		"kw":"Performing Pre-upgrade Check,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Performing Pre-upgrade Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0431.html",
+		"product_code":"cce",
+		"code":"67",
+		"des":"Check the following aspects:Check whether the node is available.Check whether the node OS supports the upgrade.Check whether there are unexpected node pool tags in the no",
+		"doc_type":"usermanual2",
+		"kw":"Checking the Node,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Checking the Node",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0432.html",
+		"product_code":"cce",
+		"code":"68",
+		"des":"Check whether the current user is in the upgrade blocklist.CCE temporarily disables the cluster upgrade function due to the following reasons:The cluster is identified as",
+		"doc_type":"usermanual2",
+		"kw":"Checking the Blocklist,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Checking the Blocklist",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0433.html",
+		"product_code":"cce",
+		"code":"69",
+		"des":"Check the following aspects:Check whether the add-on status is normal.Check whether the add-on supports the target version.Scenario 1: The add-on status is abnormal.Log i",
+		"doc_type":"usermanual2",
+		"kw":"Checking the Add-on,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Checking the Add-on",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0434.html",
+		"product_code":"cce",
+		"code":"70",
+		"des":"Check whether the current HelmRelease record contains discarded Kubernetes APIs that are not supported by the target cluster version. If yes, the Helm chart may be unavai",
+		"doc_type":"usermanual2",
+		"kw":"Checking the Helm Chart,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Checking the Helm Chart",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0435.html",
+		"product_code":"cce",
+		"code":"71",
+		"des":"Check whether CCE can connect to your master nodes.Contact technical support.",
+		"doc_type":"usermanual2",
+		"kw":"Checking the Master Node SSH Connectivity,Troubleshooting for Pre-upgrade Check Exceptions,User Guid",
+		"title":"Checking the Master Node SSH Connectivity",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0436.html",
+		"product_code":"cce",
+		"code":"72",
+		"des":"Check the following aspects:Check the node status.Check whether the auto scaling function of the node pool is disabled.Scenario 1: The node pool status is abnormal.Log in",
+		"doc_type":"usermanual2",
+		"kw":"Checking the Node Pool,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Checking the Node Pool",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0437.html",
+		"product_code":"cce",
+		"code":"73",
+		"des":"Check whether the security group allows the master node to access nodes using ICMP.Log in to the VPC console, choose Access Control > Security Groups, and enter the targe",
+		"doc_type":"usermanual2",
+		"kw":"Checking the Security Group,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Checking the Security Group",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0439.html",
+		"product_code":"cce",
+		"code":"74",
+		"des":"Check whether the node needs to be migrated.For the 1.15 cluster that is upgraded from 1.13 in rolling mode, you need to migrate (reset or create and replace) all nodes b",
+		"doc_type":"usermanual2",
+		"kw":"To-Be-Migrated Node,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"To-Be-Migrated Node",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0440.html",
+		"product_code":"cce",
+		"code":"75",
+		"des":"Check whether there are discarded resources in the clusters.Scenario 1: The PodSecurityPolicy resource object has been discarded since clusters of v1.25.Run the kubectl g",
+		"doc_type":"usermanual2",
+		"kw":"Discarded Kubernetes Resource,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Discarded Kubernetes Resource",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0441.html",
+		"product_code":"cce",
+		"code":"76",
+		"des":"Read the version compatibility differences and ensure that they are not affected.The patch upgrade does not involve version compatibility differences.",
+		"doc_type":"usermanual2",
+		"kw":"Compatibility Risk,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Compatibility Risk",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0442.html",
+		"product_code":"cce",
+		"code":"77",
+		"des":"Check whether cce-agent on the current node is of the latest version.If cce-agent is not of the latest version, the automatic update fails. This problem is usually caused",
+		"doc_type":"usermanual2",
+		"kw":"Node CCEAgent Version,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node CCEAgent Version",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0443.html",
+		"product_code":"cce",
+		"code":"78",
+		"des":"Check whether the CPU usage of the node exceeds 90%.Upgrade the cluster during off-peak hours.Check whether too many pods are deployed on the node. If yes, reschedule pod",
+		"doc_type":"usermanual2",
+		"kw":"Node CPU Usage,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node CPU Usage",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0444.html",
+		"product_code":"cce",
+		"code":"79",
+		"des":"Check the following aspects:Check whether the key CRD packageversions.version.cce.io of the cluster is deleted.Check whether the cluster key CRD network-attachment-defini",
+		"doc_type":"usermanual2",
+		"kw":"CRD Check,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"CRD Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0445.html",
+		"product_code":"cce",
+		"code":"80",
+		"des":"Check the following aspects:Check whether the key data disks on the node meet the upgrade requirements.Check whether the /tmp directory has 500 MB available space.During ",
+		"doc_type":"usermanual2",
+		"kw":"Node Disk,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Disk",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0446.html",
+		"product_code":"cce",
+		"code":"81",
+		"des":"Check the following aspects:Check whether the DNS configuration of the current node can resolve the OBS address.Check whether the current node can access the OBS address ",
+		"doc_type":"usermanual2",
+		"kw":"Node DNS,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node DNS",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0447.html",
+		"product_code":"cce",
+		"code":"82",
+		"des":"Check whether the key directory /var/paas on the nodes contain files with abnormal owners or owner groups.CCE uses the /var/paas directory to manage nodes and store file ",
+		"doc_type":"usermanual2",
+		"kw":"Node Key Directory File Permissions,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Key Directory File Permissions",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0448.html",
+		"product_code":"cce",
+		"code":"83",
+		"des":"Check whether the kubelet on the node is running properly.Scenario 1: The kubelet status is abnormal.If the kubelet is abnormal, the node is unavailable. Restore the node",
+		"doc_type":"usermanual2",
+		"kw":"Kubelet,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Kubelet",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0449.html",
+		"product_code":"cce",
+		"code":"84",
+		"des":"Check whether the memory usage of the node exceeds 90%.Upgrade the cluster during off-peak hours.Check whether too many pods are deployed on the node. If yes, reschedule ",
+		"doc_type":"usermanual2",
+		"kw":"Node Memory,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Memory",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0450.html",
+		"product_code":"cce",
+		"code":"85",
+		"des":"Check whether the clock synchronization server ntpd or chronyd of the node is running properly.Scenario 1: ntpd is running abnormally.Log in to the node and run the syste",
+		"doc_type":"usermanual2",
+		"kw":"Node Clock Synchronization Server,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Clock Synchronization Server",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0451.html",
+		"product_code":"cce",
+		"code":"86",
+		"des":"Check whether the OS kernel version of the node is supported by CCE.Running nodes depend on the initial standard kernel version when they are created. CCE has performed c",
+		"doc_type":"usermanual2",
+		"kw":"Node OS,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node OS",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0452.html",
+		"product_code":"cce",
+		"code":"87",
+		"des":"Check whether the number of CPUs on the master node is greater than 2.If the number of CPUs on the master node is 2, contact technical support to expand the number to 4 o",
+		"doc_type":"usermanual2",
+		"kw":"Node CPU Count,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node CPU Count",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0453.html",
+		"product_code":"cce",
+		"code":"88",
+		"des":"Check whether the Python commands are available on a node.If the command output is not 0, the check fails.Install Python before the upgrade.",
+		"doc_type":"usermanual2",
+		"kw":"Node Python Command,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Python Command",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0455.html",
+		"product_code":"cce",
+		"code":"89",
+		"des":"Check whether the nodes in the cluster are ready.Scenario 1: The nodes are in the unavailable status.Log in to the CCE console and access the cluster console. Choose Node",
+		"doc_type":"usermanual2",
+		"kw":"Node Readiness,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Readiness",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0456.html",
+		"product_code":"cce",
+		"code":"90",
+		"des":"Check whether journald of a node is normal.Log in to the node and run the systemctl is-active systemd-journald command to query the running status of journald. If the com",
+		"doc_type":"usermanual2",
+		"kw":"Node journald,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node journald",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0457.html",
+		"product_code":"cce",
+		"code":"91",
+		"des":"Check whether the containerd.sock file exists on the node. This file affects the startup of container runtime in the Euler OS.Scenario: The Docker used by the node is the",
+		"doc_type":"usermanual2",
+		"kw":"containerd.sock Check,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"containerd.sock Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0458.html",
+		"product_code":"cce",
+		"code":"92",
+		"des":"Before the upgrade, check whether an internal error occurs.If this check fails, contact technical support.",
+		"doc_type":"usermanual2",
+		"kw":"Internal Error,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Internal Error",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0459.html",
+		"product_code":"cce",
+		"code":"93",
+		"des":"Check whether inaccessible mount points exist on the node.Scenario: There are inaccessible mount points on the node.If network NFS (such as OBS, SFS, and SFS) is used by ",
+		"doc_type":"usermanual2",
+		"kw":"Node Mount Point,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Mount Point",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0460.html",
+		"product_code":"cce",
+		"code":"94",
+		"des":"Check whether the taint, as shown in Table 1, exists on the node.Taint checklistNameImpactnode.kubernetes.io/upgradeNoScheduleScenario 1: The node is skipped during the c",
+		"doc_type":"usermanual2",
+		"kw":"Kubernetes Node Taint,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Kubernetes Node Taint",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0478.html",
+		"product_code":"cce",
+		"code":"95",
+		"des":"Check whether the current everest add-on has compatibility restrictions. See Table 1.The current everest add-on has compatibility restrictions and cannot be upgraded with",
+		"doc_type":"usermanual2",
+		"kw":"everest Restriction Check,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"everest Restriction Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0479.html",
+		"product_code":"cce",
+		"code":"96",
+		"des":"Check whether the current cce-controller-hpa add-on has compatibility restrictions.The current cce-controller-hpa add-on has compatibility restrictions. An add-on that ca",
+		"doc_type":"usermanual2",
+		"kw":"cce-hpa-controller Restriction Check,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"cce-hpa-controller Restriction Check",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0480.html",
+		"product_code":"cce",
+		"code":"97",
+		"des":"Check whether the current cluster version and the target version support enhanced CPU policy.Scenario: The current cluster version uses the enhanced CPU management policy",
+		"doc_type":"usermanual2",
+		"kw":"Enhanced CPU Management Policy,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Enhanced CPU Management Policy",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0484.html",
+		"product_code":"cce",
+		"code":"98",
+		"des":"Check whether the container runtime and network components on the user node are healthy.If a component is abnormal, log in to the node to check the status of the abnormal",
+		"doc_type":"usermanual2",
+		"kw":"User Node Components Health,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"User Node Components Health",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0485.html",
+		"product_code":"cce",
+		"code":"99",
+		"des":"Check whether the Kubernetes, container runtime, and network components of the controller node are healthy.If a component on the controller node is abnormal, contact tech",
+		"doc_type":"usermanual2",
+		"kw":"Controller Node Components Health,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Controller Node Components Health",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0486.html",
+		"product_code":"cce",
+		"code":"100",
+		"des":"Check whether the resources of Kubernetes components, such as etcd and kube-controller-manager, exceed the upper limit.Solution 1: Reducing Kubernetes resourcesSolution 2",
+		"doc_type":"usermanual2",
+		"kw":"Memory Resource Limit of Kubernetes Components,Troubleshooting for Pre-upgrade Check Exceptions,User",
+		"title":"Memory Resource Limit of Kubernetes Components",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0487.html",
+		"product_code":"cce",
+		"code":"101",
+		"des":"The system scans the audit logs of the past day to check whether the user calls the deprecated APIs of the target Kubernetes version.Due to the limited time range of audi",
+		"doc_type":"usermanual2",
+		"kw":"Checking Deprecated Kubernetes APIs,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Checking Deprecated Kubernetes APIs",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0488.html",
+		"product_code":"cce",
+		"code":"102",
+		"des":"If IPv6 is enabled for a CCE Turbo cluster, check whether the target cluster version supports IPv6.CCE Turbo clusters support IPv6 since v1.23. This feature is available ",
+		"doc_type":"usermanual2",
+		"kw":"IPv6 Capability of a CCE Turbo Cluster,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"IPv6 Capability of a CCE Turbo Cluster",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0489.html",
+		"product_code":"cce",
+		"code":"103",
+		"des":"Check whether NetworkManager of a node is normal.Log in to the node and run the systemctl is-active NetworkManager command to query the running status of NetworkManager. ",
+		"doc_type":"usermanual2",
+		"kw":"Node NetworkManager,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node NetworkManager",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0490.html",
+		"product_code":"cce",
+		"code":"104",
+		"des":"Check the ID file format.",
+		"doc_type":"usermanual2",
+		"kw":"Node ID File,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node ID File",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0491.html",
+		"product_code":"cce",
+		"code":"105",
+		"des":"When you upgrade a CCE cluster to v1.19 or later, the system checks whether the following configuration files have been modified in the background:/opt/cloud/cce/kubernet",
+		"doc_type":"usermanual2",
+		"kw":"Node Configuration Consistency,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Configuration Consistency",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0492.html",
+		"product_code":"cce",
+		"code":"106",
+		"des":"Check whether the configuration files of key components exist on the node.The following table lists the files to be checked.Contact technical support to restore the confi",
+		"doc_type":"usermanual2",
+		"kw":"Node Configuration File,Troubleshooting for Pre-upgrade Check Exceptions,User Guide",
+		"title":"Node Configuration File",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0493.html",
+		"product_code":"cce",
+		"code":"107",
+		"des":"Check whether the current CoreDNS key configuration Corefile is different from the Helm Release record. The difference may be overwritten during the add-on upgrade, affec",
+		"doc_type":"usermanual2",
+		"kw":"Checking CoreDNS Configuration Consistency,Troubleshooting for Pre-upgrade Check Exceptions,User Gui",
+		"title":"Checking CoreDNS Configuration Consistency",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_10_0031.html",
 		"product_code":"cce",
-		"code":"37",
+		"code":"108",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Managing a Cluster",
@@ -372,17 +1082,17 @@
 	{
 		"uri":"cce_10_0213.html",
 		"product_code":"cce",
-		"code":"38",
+		"code":"109",
 		"des":"CCE allows you to manage cluster parameters, through which you can let core components work under your very requirements.This function is supported only in clusters of v1",
 		"doc_type":"usermanual2",
-		"kw":"Managing Cluster Components,Managing a Cluster,User Guide",
-		"title":"Managing Cluster Components",
+		"kw":"Cluster Configuration Management,Managing a Cluster,User Guide",
+		"title":"Cluster Configuration Management",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0212.html",
 		"product_code":"cce",
-		"code":"39",
+		"code":"110",
 		"des":"This section describes how to delete a cluster.Deleting a cluster will delete the nodes in the cluster (excluding accepted nodes), data disks attached to the nodes, workl",
 		"doc_type":"usermanual2",
 		"kw":"Deleting a Cluster,Managing a Cluster,User Guide",
@@ -392,7 +1102,7 @@
 	{
 		"uri":"cce_10_0214.html",
 		"product_code":"cce",
-		"code":"40",
+		"code":"111",
 		"des":"If you do not need to use a cluster temporarily, you are advised to hibernate the cluster.After a cluster is hibernated, resources such as workloads cannot be created or ",
 		"doc_type":"usermanual2",
 		"kw":"Hibernating and Waking Up a Cluster,Managing a Cluster,User Guide",
@@ -402,7 +1112,7 @@
 	{
 		"uri":"cce_10_0602.html",
 		"product_code":"cce",
-		"code":"41",
+		"code":"112",
 		"des":"If overload control is enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.The c",
 		"doc_type":"usermanual2",
 		"kw":"Cluster Overload Control,Managing a Cluster,User Guide",
@@ -412,7 +1122,7 @@
 	{
 		"uri":"cce_10_0175.html",
 		"product_code":"cce",
-		"code":"42",
+		"code":"113",
 		"des":"This section describes how to obtain the cluster certificate from the console and use it to access Kubernetes clusters.The downloaded certificate contains three files: cl",
 		"doc_type":"usermanual2",
 		"kw":"Obtaining a Cluster Certificate,Clusters,User Guide",
@@ -422,7 +1132,7 @@
 	{
 		"uri":"cce_10_0403.html",
 		"product_code":"cce",
-		"code":"43",
+		"code":"114",
 		"des":"CCE allows you to change the number of nodes managed in a cluster.This function is supported for clusters of v1.15 and later versions.Starting from v1.15.11, the number o",
 		"doc_type":"usermanual2",
 		"kw":"Changing Cluster Scale,Clusters,User Guide",
@@ -432,7 +1142,7 @@
 	{
 		"uri":"cce_10_0183.html",
 		"product_code":"cce",
-		"code":"44",
+		"code":"115",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"node labels",
@@ -442,7 +1152,7 @@
 	{
 		"uri":"cce_10_0180.html",
 		"product_code":"cce",
-		"code":"45",
+		"code":"116",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Node Overview",
@@ -452,7 +1162,7 @@
 	{
 		"uri":"cce_10_0461.html",
 		"product_code":"cce",
-		"code":"46",
+		"code":"117",
 		"des":"A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (P",
 		"doc_type":"usermanual2",
 		"kw":"Precautions for Using a Node,Node Overview,User Guide",
@@ -462,7 +1172,7 @@
 	{
 		"uri":"cce_10_0462.html",
 		"product_code":"cce",
-		"code":"47",
+		"code":"118",
 		"des":"Container engines, one of the most important components of Kubernetes, manage the lifecycle of images and containers. The kubelet interacts with a container runtime throu",
 		"doc_type":"usermanual2",
 		"kw":"Container Engine,Node Overview,User Guide",
@@ -472,7 +1182,7 @@
 	{
 		"uri":"cce_10_0463.html",
 		"product_code":"cce",
-		"code":"48",
+		"code":"119",
 		"des":"The most significant difference is that each Kata container (pod) runs on an independent micro-VM, has an independent OS kernel, and is securely isolated at the virtualiz",
 		"doc_type":"usermanual2",
 		"kw":"Kata Containers and Common Containers,Node Overview,User Guide",
@@ -482,7 +1192,7 @@
 	{
 		"uri":"cce_10_0348.html",
 		"product_code":"cce",
-		"code":"49",
+		"code":"120",
 		"des":"The maximum number of pods that can be created on a node is determined by the following parameters:Number of container IP addresses that can be allocated on a node (alpha",
 		"doc_type":"usermanual2",
 		"kw":"Maximum Number of Pods That Can Be Created on a Node,Node Overview,User Guide",
@@ -492,7 +1202,7 @@
 	{
 		"uri":"cce_10_0178.html",
 		"product_code":"cce",
-		"code":"50",
+		"code":"121",
 		"des":"Some of the resources on the node need to run some necessary Kubernetes system components and resources to make the node as part of your cluster. Therefore, the total num",
 		"doc_type":"usermanual2",
 		"kw":"node,Kubernetes,Formula for Calculating the Reserved Resources of a Node,Node Overview,User Guide",
@@ -502,7 +1212,7 @@
 	{
 		"uri":"cce_10_0341.html",
 		"product_code":"cce",
-		"code":"51",
+		"code":"122",
 		"des":"This section describes how to allocate data disk space.When creating a node, you need to configure a data disk whose capacity is greater than or equal to 100GB for the no",
 		"doc_type":"usermanual2",
 		"kw":"Data Disk Space Allocation,Node Overview,User Guide",
@@ -512,7 +1222,7 @@
 	{
 		"uri":"cce_10_0363.html",
 		"product_code":"cce",
-		"code":"52",
+		"code":"123",
 		"des":"At least one cluster has been created.A key pair has been created for identity authentication upon remote node login.The node has 2-core or higher CPU, 4 GB or larger mem",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Node,Nodes,User Guide",
@@ -522,7 +1232,7 @@
 	{
 		"uri":"cce_10_0198.html",
 		"product_code":"cce",
-		"code":"53",
+		"code":"124",
 		"des":"In CCE, you can Creating a Node or add existing nodes (ECSs) into your cluster.While an ECS is being accepted into a cluster, the operating system of the ECS will be rese",
 		"doc_type":"usermanual2",
 		"kw":"Adding Nodes for Management,Nodes,User Guide",
@@ -532,7 +1242,7 @@
 	{
 		"uri":"cce_10_0338.html",
 		"product_code":"cce",
-		"code":"54",
+		"code":"125",
 		"des":"Removing a node from a cluster will re-install the node OS and clear CCE components on the node.Removing a node will not delete the server corresponding to the node. You ",
 		"doc_type":"usermanual2",
 		"kw":"Removing a Node,Nodes,User Guide",
@@ -542,7 +1252,7 @@
 	{
 		"uri":"cce_10_0003.html",
 		"product_code":"cce",
-		"code":"55",
+		"code":"126",
 		"des":"You can reset a node to modify the node configuration, such as the node OS and login mode.Resetting a node will reinstall the node OS and the Kubernetes software on the n",
 		"doc_type":"usermanual2",
 		"kw":"Resetting a Node,Nodes,User Guide",
@@ -552,7 +1262,7 @@
 	{
 		"uri":"cce_10_0185.html",
 		"product_code":"cce",
-		"code":"56",
+		"code":"127",
 		"des":"If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).Only login to a running ECS is allowed.Only the user linux can l",
 		"doc_type":"usermanual2",
 		"kw":"Logging In to a Node,Nodes,User Guide",
@@ -562,7 +1272,7 @@
 	{
 		"uri":"cce_10_0004.html",
 		"product_code":"cce",
-		"code":"57",
+		"code":"128",
 		"des":"You can add different labels to nodes and define different attributes for labels. By using these node labels, you can quickly understand the characteristics of each node.",
 		"doc_type":"usermanual2",
 		"kw":"node labels,Inherent Label of a Node,Managing Node Labels,Nodes,User Guide",
@@ -572,7 +1282,7 @@
 	{
 		"uri":"cce_10_0352.html",
 		"product_code":"cce",
-		"code":"58",
+		"code":"129",
 		"des":"Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.A taint is a key-value pair associated with an effect. The following ef",
 		"doc_type":"usermanual2",
 		"kw":"Managing Node Taints,Nodes,User Guide",
@@ -582,7 +1292,7 @@
 	{
 		"uri":"cce_10_0184.html",
 		"product_code":"cce",
-		"code":"59",
+		"code":"130",
 		"des":"Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.Some inf",
 		"doc_type":"usermanual2",
 		"kw":"Synchronizing Data with Cloud Servers,Nodes,User Guide",
@@ -592,8 +1302,8 @@
 	{
 		"uri":"cce_10_0186.html",
 		"product_code":"cce",
-		"code":"60",
-		"des":"When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.After a CCE cluster is deleted",
+		"code":"131",
+		"des":"When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.VM nodes that are being used b",
 		"doc_type":"usermanual2",
 		"kw":"Deleting a Node,Nodes,User Guide",
 		"title":"Deleting a Node",
@@ -602,7 +1312,7 @@
 	{
 		"uri":"cce_10_0036.html",
 		"product_code":"cce",
-		"code":"61",
+		"code":"132",
 		"des":"After a node in the cluster is stopped, services on the node are also stopped. Before stopping a node, ensure that discontinuity of the services on the node will not resu",
 		"doc_type":"usermanual2",
 		"kw":"Stopping a Node,Nodes,User Guide",
@@ -612,7 +1322,7 @@
 	{
 		"uri":"cce_10_0276.html",
 		"product_code":"cce",
-		"code":"62",
+		"code":"133",
 		"des":"In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. Figure 1 shows the migration process.The o",
 		"doc_type":"usermanual2",
 		"kw":"Performing Rolling Upgrade for Nodes,Nodes,User Guide",
@@ -622,7 +1332,7 @@
 	{
 		"uri":"cce_10_0035.html",
 		"product_code":"cce",
-		"code":"63",
+		"code":"134",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Node Pools",
@@ -632,7 +1342,7 @@
 	{
 		"uri":"cce_10_0081.html",
 		"product_code":"cce",
-		"code":"64",
+		"code":"135",
 		"des":"CCE introduces node pools to help you better manage nodes in Kubernetes clusters. A node pool contains one node or a group of nodes with identical configuration in a clus",
 		"doc_type":"usermanual2",
 		"kw":"Deploying a Workload in a Specified Node Pool,Node Pool Overview,Node Pools,User Guide",
@@ -642,7 +1352,7 @@
 	{
 		"uri":"cce_10_0012.html",
 		"product_code":"cce",
-		"code":"65",
+		"code":"136",
 		"des":"This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see Node Pool Overview.The autoscaler a",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Node Pool,Node Pools,User Guide",
@@ -652,17 +1362,87 @@
 	{
 		"uri":"cce_10_0222.html",
 		"product_code":"cce",
-		"code":"66",
+		"code":"137",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Managing a Node Pool",
+		"title":"Managing a Node Pool",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0652.html",
+		"product_code":"cce",
+		"code":"138",
 		"des":"The default node pool DefaultPool does not support the following management operations.CCE allows you to highly customize Kubernetes parameter settings on core components",
 		"doc_type":"usermanual2",
-		"kw":"Managing a Node Pool,Node Pools,User Guide",
-		"title":"Managing a Node Pool",
+		"kw":"Configuring a Node Pool,Managing a Node Pool,User Guide",
+		"title":"Configuring a Node Pool",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0653.html",
+		"product_code":"cce",
+		"code":"139",
+		"des":"When editing the resource tags of the node pool. The modified configuration takes effect only for new nodes. To synchronize the configuration to the existing nodes, you n",
+		"doc_type":"usermanual2",
+		"kw":"Updating a Node Pool,Managing a Node Pool,User Guide",
+		"title":"Updating a Node Pool",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0654.html",
+		"product_code":"cce",
+		"code":"140",
+		"des":"After the configuration of a node pool is updated, some configurations cannot be automatically synchronized for existing nodes. You can manually synchronize configuration",
+		"doc_type":"usermanual2",
+		"kw":"Synchronizing Node Pools,Managing a Node Pool,User Guide",
+		"title":"Synchronizing Node Pools",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0660.html",
+		"product_code":"cce",
+		"code":"141",
+		"des":"When CCE releases a new OS image, existing nodes cannot be automatically upgraded. You can manually upgrade them in batches.This operation will upgrade the OS by resettin",
+		"doc_type":"usermanual2",
+		"kw":"Upgrading the OS,Managing a Node Pool,User Guide",
+		"title":"Upgrading the OS",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0655.html",
+		"product_code":"cce",
+		"code":"142",
+		"des":"You can copy the configuration of an existing node pool to create a new node pool on the CCE console.",
+		"doc_type":"usermanual2",
+		"kw":"Copying a Node Pool,Managing a Node Pool,User Guide",
+		"title":"Copying a Node Pool",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0656.html",
+		"product_code":"cce",
+		"code":"143",
+		"des":"Nodes in a node pool can be migrated. Currently, nodes in a node pool can be migrated only to the default node pool (defaultpool) in the same cluster.The migration has no",
+		"doc_type":"usermanual2",
+		"kw":"Migrating a Node,Managing a Node Pool,User Guide",
+		"title":"Migrating a Node",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_10_0657.html",
+		"product_code":"cce",
+		"code":"144",
+		"des":"Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools.Deleting a node pool will de",
+		"doc_type":"usermanual2",
+		"kw":"Deleting a Node Pool,Managing a Node Pool,User Guide",
+		"title":"Deleting a Node Pool",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0046.html",
 		"product_code":"cce",
-		"code":"67",
+		"code":"145",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Workloads",
@@ -672,7 +1452,7 @@
 	{
 		"uri":"cce_10_0006.html",
 		"product_code":"cce",
-		"code":"68",
+		"code":"146",
 		"des":"A workload is an application running on Kubernetes. No matter how many components are there in your workload, you can run it in a group of Kubernetes pods. A workload is ",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Workloads,User Guide",
@@ -682,7 +1462,7 @@
 	{
 		"uri":"cce_10_0047.html",
 		"product_code":"cce",
-		"code":"69",
+		"code":"147",
 		"des":"Deployments are workloads (for example, Nginx) that do not store any data or status. You can create Deployments on the CCE console or by running kubectl commands.Before c",
 		"doc_type":"usermanual2",
 		"kw":"create a workload using kubectl,Creating a Deployment,Workloads,User Guide",
@@ -692,7 +1472,7 @@
 	{
 		"uri":"cce_10_0048.html",
 		"product_code":"cce",
-		"code":"70",
+		"code":"148",
 		"des":"StatefulSets are a type of workloads whose data or status is stored while they are running. For example, MySQL is a StatefulSet because it needs to store new data.A conta",
 		"doc_type":"usermanual2",
 		"kw":"Using kubectl,Creating a StatefulSet,Workloads,User Guide",
@@ -702,7 +1482,7 @@
 	{
 		"uri":"cce_10_0216.html",
 		"product_code":"cce",
-		"code":"71",
+		"code":"149",
 		"des":"CCE provides deployment and management capabilities for multiple types of containers and supports features of container workloads, including creation, configuration, moni",
 		"doc_type":"usermanual2",
 		"kw":"create a workload using kubectl,Creating a DaemonSet,Workloads,User Guide",
@@ -712,7 +1492,7 @@
 	{
 		"uri":"cce_10_0150.html",
 		"product_code":"cce",
-		"code":"72",
+		"code":"150",
 		"des":"Jobs are short-lived and run for a certain time to completion. They can be executed immediately after being deployed. It is completed after it exits normally (exit 0).A j",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Job,Workloads,User Guide",
@@ -722,7 +1502,7 @@
 	{
 		"uri":"cce_10_0151.html",
 		"product_code":"cce",
-		"code":"73",
+		"code":"151",
 		"des":"A cron job runs on a repeating schedule. You can perform time synchronization for all active nodes at a fixed time point.A cron job runs periodically at the specified tim",
 		"doc_type":"usermanual2",
 		"kw":"time synchronization,Creating a Cron Job,Workloads,User Guide",
@@ -732,7 +1512,7 @@
 	{
 		"uri":"cce_10_0007.html",
 		"product_code":"cce",
-		"code":"74",
+		"code":"152",
 		"des":"After a workload is created, you can upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.Workload/Job managementOperationDescriptionMonitor",
 		"doc_type":"usermanual2",
 		"kw":"Managing Workloads and Jobs,Workloads,User Guide",
@@ -742,7 +1522,7 @@
 	{
 		"uri":"cce_10_0130.html",
 		"product_code":"cce",
-		"code":"75",
+		"code":"153",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Configuring a Container",
@@ -752,7 +1532,7 @@
 	{
 		"uri":"cce_10_0396.html",
 		"product_code":"cce",
-		"code":"76",
+		"code":"154",
 		"des":"A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click Add Container in the upper right corner to add multiple ",
 		"doc_type":"usermanual2",
 		"kw":"Setting Basic Container Information,Configuring a Container,User Guide",
@@ -762,7 +1542,7 @@
 	{
 		"uri":"cce_10_0009.html",
 		"product_code":"cce",
-		"code":"77",
+		"code":"155",
 		"des":"CCE allows you to create workloads using images pulled from third-party image repositories.Generally, a third-party image repository can be accessed only after authentica",
 		"doc_type":"usermanual2",
 		"kw":"Using a Third-Party Image,Configuring a Container,User Guide",
@@ -772,7 +1552,7 @@
 	{
 		"uri":"cce_10_0163.html",
 		"product_code":"cce",
-		"code":"78",
+		"code":"156",
 		"des":"CCE allows you to set resource limits for added containers during workload creation. You can apply for and limit the CPU and memory quotas used by each pod in a workload.",
 		"doc_type":"usermanual2",
 		"kw":"Setting Container Specifications,Configuring a Container,User Guide",
@@ -782,7 +1562,7 @@
 	{
 		"uri":"cce_10_0105.html",
 		"product_code":"cce",
-		"code":"79",
+		"code":"157",
 		"des":"CCE provides callback functions for the lifecycle management of containerized applications. For example, if you want a container to perform a certain operation before sto",
 		"doc_type":"usermanual2",
 		"kw":"Startup Command,Post-Start,Pre-Stop,Setting Container Lifecycle Parameters,Configuring a Container,U",
@@ -792,7 +1572,7 @@
 	{
 		"uri":"cce_10_0112.html",
 		"product_code":"cce",
-		"code":"80",
+		"code":"158",
 		"des":"Health check regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect application ex",
 		"doc_type":"usermanual2",
 		"kw":"Health check,HTTP request,TCP port,CLI,Setting Health Check for a Container,Configuring a Container,",
@@ -802,7 +1582,7 @@
 	{
 		"uri":"cce_10_0113.html",
 		"product_code":"cce",
-		"code":"81",
+		"code":"159",
 		"des":"An environment variable is a variable whose value can affect the way a running container will behave. You can modify environment variables even after workloads are deploy",
 		"doc_type":"usermanual2",
 		"kw":"Setting an Environment Variable,Configuring a Container,User Guide",
@@ -812,7 +1592,7 @@
 	{
 		"uri":"cce_10_0353.html",
 		"product_code":"cce",
-		"code":"82",
+		"code":"160",
 		"des":"When a workload is created, the container image is pulled from the image repository to the node. The image is also pulled when the workload is restarted or upgraded.By de",
 		"doc_type":"usermanual2",
 		"kw":"Configuring an Image Pull Policy,Configuring a Container,User Guide",
@@ -822,7 +1602,7 @@
 	{
 		"uri":"cce_10_0354.html",
 		"product_code":"cce",
-		"code":"83",
+		"code":"161",
 		"des":"When creating a workload, you can configure containers to use the same time zone as the node. You can enable time zone synchronization when creating a workload.The time z",
 		"doc_type":"usermanual2",
 		"kw":"Configuring Time Zone Synchronization,Configuring a Container,User Guide",
@@ -832,7 +1612,7 @@
 	{
 		"uri":"cce_10_0397.html",
 		"product_code":"cce",
-		"code":"84",
+		"code":"162",
 		"des":"In actual applications, upgrade is a common operation. A Deployment, StatefulSet, or DaemonSet can easily support application upgrade.You can set different upgrade polici",
 		"doc_type":"usermanual2",
 		"kw":"Configuring the Workload Upgrade Policy,Configuring a Container,User Guide",
@@ -842,7 +1622,7 @@
 	{
 		"uri":"cce_10_0232.html",
 		"product_code":"cce",
-		"code":"85",
+		"code":"163",
 		"des":"A nodeSelector provides a very simple way to constrain pods to nodes with particular labels, as mentioned in Creating a DaemonSet. The affinity and anti-affinity feature ",
 		"doc_type":"usermanual2",
 		"kw":"Scheduling Policy (Affinity/Anti-affinity),Configuring a Container,User Guide",
@@ -852,7 +1632,7 @@
 	{
 		"uri":"cce_10_0345.html",
 		"product_code":"cce",
-		"code":"86",
+		"code":"164",
 		"des":"You can use GPUs in CCE containers.A GPU node has been created. For details, see Creating a Node.The gpu-beta add-on has been installed. During the installation, select t",
 		"doc_type":"usermanual2",
 		"kw":"GPU Scheduling,Workloads,User Guide",
@@ -862,7 +1642,7 @@
 	{
 		"uri":"cce_10_0551.html",
 		"product_code":"cce",
-		"code":"87",
+		"code":"165",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"CPU Core Binding",
@@ -872,17 +1652,27 @@
 	{
 		"uri":"cce_10_0351.html",
 		"product_code":"cce",
-		"code":"88",
+		"code":"166",
 		"des":"By default, kubelet uses CFS quotas to enforce pod CPU limits. When the node runs many CPU-bound pods, the workload can move to different CPU cores depending on whether t",
 		"doc_type":"usermanual2",
 		"kw":"Binding CPU Cores,CPU Core Binding,User Guide",
 		"title":"Binding CPU Cores",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_10_00356.html",
+		"product_code":"cce",
+		"code":"167",
+		"des":"If you encounter unexpected problems when using a container, you can log in to the container for debugging.The example output is as follows:NAME                          ",
+		"doc_type":"usermanual2",
+		"kw":"Accessing a Container,Workloads,User Guide",
+		"title":"Accessing a Container",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_10_0386.html",
 		"product_code":"cce",
-		"code":"89",
+		"code":"168",
 		"des":"CCE allows you to add annotations to a YAML file to realize some advanced pod functions. The following table describes the annotations you can add.When you create a workl",
 		"doc_type":"usermanual2",
 		"kw":"Pod Labels and Annotations,Workloads,User Guide",
@@ -892,7 +1682,7 @@
 	{
 		"uri":"cce_10_0423.html",
 		"product_code":"cce",
-		"code":"90",
+		"code":"169",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Volcano Scheduling",
@@ -902,7 +1692,7 @@
 	{
 		"uri":"cce_10_0384.html",
 		"product_code":"cce",
-		"code":"91",
+		"code":"170",
 		"des":"Jobs can be classified into online jobs and offline jobs based on whether services are always online.Online job: Such jobs run for a long time, with regular traffic surge",
 		"doc_type":"usermanual2",
 		"kw":"Hybrid Deployment of Online and Offline Jobs,Volcano Scheduling,User Guide",
@@ -912,7 +1702,7 @@
 	{
 		"uri":"cce_10_0288.html",
 		"product_code":"cce",
-		"code":"92",
+		"code":"171",
 		"des":"When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a cust",
 		"doc_type":"usermanual2",
 		"kw":"Security Group Policies,Workloads,User Guide",
@@ -922,7 +1712,7 @@
 	{
 		"uri":"cce_10_0020.html",
 		"product_code":"cce",
-		"code":"93",
+		"code":"172",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Networking",
@@ -932,7 +1722,7 @@
 	{
 		"uri":"cce_10_0010.html",
 		"product_code":"cce",
-		"code":"94",
+		"code":"173",
 		"des":"You can learn about a cluster network from the following two aspects:What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are ru",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Networking,User Guide",
@@ -942,7 +1732,7 @@
 	{
 		"uri":"cce_10_0280.html",
 		"product_code":"cce",
-		"code":"95",
+		"code":"174",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Container Network Models",
@@ -952,8 +1742,8 @@
 	{
 		"uri":"cce_10_0281.html",
 		"product_code":"cce",
-		"code":"96",
-		"des":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Tun",
+		"code":"175",
+		"des":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Con",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Container Network Models,User Guide",
 		"title":"Overview",
@@ -962,7 +1752,7 @@
 	{
 		"uri":"cce_10_0282.html",
 		"product_code":"cce",
-		"code":"97",
+		"code":"176",
 		"des":"The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet pac",
 		"doc_type":"usermanual2",
 		"kw":"Container Tunnel Network,Container Network Models,User Guide",
@@ -972,7 +1762,7 @@
 	{
 		"uri":"cce_10_0283.html",
 		"product_code":"cce",
-		"code":"98",
+		"code":"177",
 		"des":"The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes",
 		"doc_type":"usermanual2",
 		"kw":"VPC Network,Container Network Models,User Guide",
@@ -982,7 +1772,7 @@
 	{
 		"uri":"cce_10_0284.html",
 		"product_code":"cce",
-		"code":"99",
+		"code":"178",
 		"des":"Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are all",
 		"doc_type":"usermanual2",
 		"kw":"Cloud Native Network 2.0,Container Network Models,User Guide",
@@ -992,7 +1782,7 @@
 	{
 		"uri":"cce_10_0247.html",
 		"product_code":"cce",
-		"code":"100",
+		"code":"179",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Services",
@@ -1002,7 +1792,7 @@
 	{
 		"uri":"cce_10_0249.html",
 		"product_code":"cce",
-		"code":"101",
+		"code":"180",
 		"des":"After a pod is created, the following problems may occur if you directly access the pod:The pod can be deleted and recreated at any time by a controller such as a Deploym",
 		"doc_type":"usermanual2",
 		"kw":"Service Overview,Services,User Guide",
@@ -1012,7 +1802,7 @@
 	{
 		"uri":"cce_10_0011.html",
 		"product_code":"cce",
-		"code":"102",
+		"code":"181",
 		"des":"ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.The cluster-internal domain name format is <Service",
 		"doc_type":"usermanual2",
 		"kw":"Intra-Cluster Access (ClusterIP),Services,User Guide",
@@ -1022,7 +1812,7 @@
 	{
 		"uri":"cce_10_0142.html",
 		"product_code":"cce",
-		"code":"103",
+		"code":"182",
 		"des":"A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By re",
 		"doc_type":"usermanual2",
 		"kw":"NodePort,Services,User Guide",
@@ -1032,7 +1822,7 @@
 	{
 		"uri":"cce_10_0014.html",
 		"product_code":"cce",
-		"code":"104",
+		"code":"183",
 		"des":"A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.The LoadBalancer access address is in the format of <I",
 		"doc_type":"usermanual2",
 		"kw":"LoadBalancer,Services,User Guide",
@@ -1042,7 +1832,7 @@
 	{
 		"uri":"cce_10_0398.html",
 		"product_code":"cce",
-		"code":"105",
+		"code":"184",
 		"des":"The preceding types of Services allow internal and external pod access, but not the following scenarios:Accessing all pods at the same timePods in a Service accessing eac",
 		"doc_type":"usermanual2",
 		"kw":"Headless Service,Services,User Guide",
@@ -1052,17 +1842,27 @@
 	{
 		"uri":"cce_10_0385.html",
 		"product_code":"cce",
-		"code":"106",
+		"code":"185",
 		"des":"CCE allows you to add annotations to a YAML file to realize some advanced Service functions. The following table describes the annotations you can add.The annotations of ",
 		"doc_type":"usermanual2",
 		"kw":"Service Annotations,Services,User Guide",
 		"title":"Service Annotations",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_10_0684.html",
+		"product_code":"cce",
+		"code":"186",
+		"des":"The annotation field related to the health check of the LoadBalancer Service is upgraded from Kubernetes.io/elb.health-check-option to Kubernetes.io/elb.health-check-opti",
+		"doc_type":"usermanual2",
+		"kw":"Configuring Health Check for Multiple Ports,Services,User Guide",
+		"title":"Configuring Health Check for Multiple Ports",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_10_0248.html",
 		"product_code":"cce",
-		"code":"107",
+		"code":"187",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Ingresses",
@@ -1072,7 +1872,7 @@
 	{
 		"uri":"cce_10_0094.html",
 		"product_code":"cce",
-		"code":"108",
+		"code":"188",
 		"des":"A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a l",
 		"doc_type":"usermanual2",
 		"kw":"Ingress Overview,Ingresses,User Guide",
@@ -1082,7 +1882,7 @@
 	{
 		"uri":"cce_10_0251.html",
 		"product_code":"cce",
-		"code":"109",
+		"code":"189",
 		"des":"An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a workload by referring to",
 		"doc_type":"usermanual2",
 		"kw":"Using ELB Ingresses on the Console,Ingresses,User Guide",
@@ -1092,7 +1892,7 @@
 	{
 		"uri":"cce_10_0252.html",
 		"product_code":"cce",
-		"code":"110",
+		"code":"190",
 		"des":"This section uses an Nginx workload as an example to describe how to create an ELB ingress using kubectl.If no load balancer is available in the same VPC, CCE can automat",
 		"doc_type":"usermanual2",
 		"kw":"Using kubectl to Create an ELB Ingress,Ingresses,User Guide",
@@ -1102,7 +1902,7 @@
 	{
 		"uri":"cce_10_0359.html",
 		"product_code":"cce",
-		"code":"111",
+		"code":"191",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"DNS",
@@ -1112,7 +1912,7 @@
 	{
 		"uri":"cce_10_0360.html",
 		"product_code":"cce",
-		"code":"112",
+		"code":"192",
 		"des":"When you create a cluster, the coredns add-on is installed to resolve domain names in the cluster.You can view the pod of the coredns add-on in the kube-system namespace.",
 		"doc_type":"usermanual2",
 		"kw":"Overview,DNS,User Guide",
@@ -1122,7 +1922,7 @@
 	{
 		"uri":"cce_10_0365.html",
 		"product_code":"cce",
-		"code":"113",
+		"code":"193",
 		"des":"Every Kubernetes cluster has a built-in DNS add-on (Kube-DNS or CoreDNS) to provide domain name resolution for workloads in the cluster. When handling a high concurrency ",
 		"doc_type":"usermanual2",
 		"kw":"DNS Configuration,DNS,User Guide",
@@ -1132,7 +1932,7 @@
 	{
 		"uri":"cce_10_0361.html",
 		"product_code":"cce",
-		"code":"114",
+		"code":"194",
 		"des":"When using CCE, you may need to resolve custom internal domain names in the following scenarios:In the legacy code, a fixed domain name is configured for calling other in",
 		"doc_type":"usermanual2",
 		"kw":"Using CoreDNS for Custom Domain Name Resolution,DNS,User Guide",
@@ -1142,7 +1942,7 @@
 	{
 		"uri":"cce_10_0399.html",
 		"product_code":"cce",
-		"code":"115",
+		"code":"195",
 		"des":"This section describes how to access an intranet from a container (outside the cluster in a VPC), including intra-VPC access and cross-VPC access.The performance of acces",
 		"doc_type":"usermanual2",
 		"kw":"Configuring Intra-VPC Access,Networking,User Guide",
@@ -1152,7 +1952,7 @@
 	{
 		"uri":"cce_10_0400.html",
 		"product_code":"cce",
-		"code":"116",
+		"code":"196",
 		"des":"Containers can access public networks in either of the following ways:Bind a public IP address to the node where the container is located if the network model is VPC netw",
 		"doc_type":"usermanual2",
 		"kw":"Accessing Public Networks from a Container,Networking,User Guide",
@@ -1162,8 +1962,8 @@
 	{
 		"uri":"cce_10_0059.html",
 		"product_code":"cce",
-		"code":"117",
-		"des":"NetworkPolicy is a Kubernetes object used to restrict pod access. In CCE, by setting network policies, you can define ingress rules specifying the addresses to access pod",
+		"code":"197",
+		"des":"Network policies are designed by Kubernetes to restrict pod access. It is equivalent to a firewall at the application layer to enhance network security. The capabilities ",
 		"doc_type":"usermanual2",
 		"kw":"Network Policies,Networking,User Guide",
 		"title":"Network Policies",
@@ -1172,7 +1972,7 @@
 	{
 		"uri":"cce_10_0402.html",
 		"product_code":"cce",
-		"code":"118",
+		"code":"198",
 		"des":"Kubernetes allows pods to directly use the host/node network.Add hostNetwork: true to the pod definition.The configuration succeeds if the pod IP is the same as the node ",
 		"doc_type":"usermanual2",
 		"kw":"Host Network,Networking,User Guide",
@@ -1182,7 +1982,7 @@
 	{
 		"uri":"cce_10_0374.html",
 		"product_code":"cce",
-		"code":"119",
+		"code":"199",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Storage",
@@ -1192,7 +1992,7 @@
 	{
 		"uri":"cce_10_0307.html",
 		"product_code":"cce",
-		"code":"120",
+		"code":"200",
 		"des":"On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Storage,User Guide",
@@ -1202,7 +2002,7 @@
 	{
 		"uri":"cce_10_0377.html",
 		"product_code":"cce",
-		"code":"121",
+		"code":"201",
 		"des":"You can mount a file directory of the host where a container is located to a specified container path (the hostPath mode in Kubernetes) for persistent data storage. Alter",
 		"doc_type":"usermanual2",
 		"kw":"Using Local Disks as Storage Volumes,Storage,User Guide",
@@ -1212,7 +2012,7 @@
 	{
 		"uri":"cce_10_0379.html",
 		"product_code":"cce",
-		"code":"122",
+		"code":"202",
 		"des":"A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource.On the new CCE console (the cluster needs to be upgraded to v1.19.10 or",
 		"doc_type":"usermanual2",
 		"kw":"PersistentVolumes (PVs),Storage,User Guide",
@@ -1222,7 +2022,7 @@
 	{
 		"uri":"cce_10_0378.html",
 		"product_code":"cce",
-		"code":"123",
+		"code":"203",
 		"des":"A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are",
 		"doc_type":"usermanual2",
 		"kw":"PersistentVolumeClaims (PVCs),Storage,User Guide",
@@ -1232,7 +2032,7 @@
 	{
 		"uri":"cce_10_0380.html",
 		"product_code":"cce",
-		"code":"124",
+		"code":"204",
 		"des":"StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as ",
 		"doc_type":"usermanual2",
 		"kw":"StorageClass,Storage,User Guide",
@@ -1242,7 +2042,7 @@
 	{
 		"uri":"cce_10_0381.html",
 		"product_code":"cce",
-		"code":"125",
+		"code":"205",
 		"des":"CCE works with EVS to support snapshots. A snapshot is a complete copy or image of EVS disk data at a certain point of time, which can be used for data DR.You can create ",
 		"doc_type":"usermanual2",
 		"kw":"Snapshots and Backups,Storage,User Guide",
@@ -1252,7 +2052,7 @@
 	{
 		"uri":"cce_10_0336.html",
 		"product_code":"cce",
-		"code":"126",
+		"code":"206",
 		"des":"You can solve this issue by using Everest 1.2.8 and later versions to use custom access keys for different IAM users.The everest add-on version must be 1.2.8 or later.The",
 		"doc_type":"usermanual2",
 		"kw":"Using a Custom AK/SK to Mount an OBS Volume,Storage,User Guide",
@@ -1262,7 +2062,7 @@
 	{
 		"uri":"cce_10_0337.html",
 		"product_code":"cce",
-		"code":"127",
+		"code":"207",
 		"des":"You can mount cloud storage volumes to your containers and use these volumes as local directories.This section describes how to set mount options when mounting SFS and OB",
 		"doc_type":"usermanual2",
 		"kw":"Setting Mount Options,Storage,User Guide",
@@ -1272,7 +2072,7 @@
 	{
 		"uri":"cce_10_0393.html",
 		"product_code":"cce",
-		"code":"128",
+		"code":"208",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Deployment Examples",
@@ -1282,7 +2082,7 @@
 	{
 		"uri":"cce_10_0257.html",
 		"product_code":"cce",
-		"code":"129",
+		"code":"209",
 		"des":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Deployment Mounted with an EVS Volume,Deployment Examples,User Guide",
@@ -1292,8 +2092,8 @@
 	{
 		"uri":"cce_10_0269.html",
 		"product_code":"cce",
-		"code":"130",
-		"des":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
+		"code":"210",
+		"des":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a cluster and installed the CSI plug-in (everest) in the cluste",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Deployment Mounted with an OBS Volume,Deployment Examples,User Guide",
 		"title":"Creating a Deployment Mounted with an OBS Volume",
@@ -1302,8 +2102,8 @@
 	{
 		"uri":"cce_10_0268.html",
 		"product_code":"cce",
-		"code":"131",
-		"des":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.T",
+		"code":"211",
+		"des":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.You have created a cluster and installed the CSI plug-in (everest) in the cluster.The f",
 		"doc_type":"usermanual2",
 		"kw":"Creating a StatefulSet Mounted with an OBS Volume,Deployment Examples,User Guide",
 		"title":"Creating a StatefulSet Mounted with an OBS Volume",
@@ -1312,8 +2112,8 @@
 	{
 		"uri":"cce_10_0263.html",
 		"product_code":"cce",
-		"code":"132",
-		"des":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
+		"code":"212",
+		"des":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a cluster and installed the CSI plug-in (everest) in the cluste",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Deployment Mounted with an SFS Volume,Deployment Examples,User Guide",
 		"title":"Creating a Deployment Mounted with an SFS Volume",
@@ -1322,8 +2122,8 @@
 	{
 		"uri":"cce_10_0262.html",
 		"product_code":"cce",
-		"code":"133",
-		"des":"CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).You have created a CCE cluster and installed the CSI plug-in (everest) in the cluste",
+		"code":"213",
+		"des":"CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).You have created a cluster and installed the CSI plug-in (everest) in the cluster.Th",
 		"doc_type":"usermanual2",
 		"kw":"Creating a StatefulSet Mounted with an SFS Volume,Deployment Examples,User Guide",
 		"title":"Creating a StatefulSet Mounted with an SFS Volume",
@@ -1332,7 +2132,7 @@
 	{
 		"uri":"cce_10_0110.html",
 		"product_code":"cce",
-		"code":"134",
+		"code":"214",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Monitoring and Alarm",
@@ -1342,7 +2142,7 @@
 	{
 		"uri":"cce_10_0182.html",
 		"product_code":"cce",
-		"code":"135",
+		"code":"215",
 		"des":"CCE works with AOM to comprehensively monitor clusters. When a node is created, the ICAgent (the DaemonSet named icagent in the kube-system namespace of the cluster) of A",
 		"doc_type":"usermanual2",
 		"kw":"Monitoring Overview,Monitoring and Alarm,User Guide",
@@ -1352,7 +2152,7 @@
 	{
 		"uri":"cce_10_0201.html",
 		"product_code":"cce",
-		"code":"136",
+		"code":"216",
 		"des":"CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and th",
 		"doc_type":"usermanual2",
 		"kw":"Custom Monitoring,Monitoring and Alarm,User Guide",
@@ -1362,7 +2162,7 @@
 	{
 		"uri":"cce_10_0553.html",
 		"product_code":"cce",
-		"code":"137",
+		"code":"217",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Logging",
@@ -1372,7 +2172,7 @@
 	{
 		"uri":"cce_10_0557.html",
 		"product_code":"cce",
-		"code":"138",
+		"code":"218",
 		"des":"CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.Using ICAgent:By default, th",
 		"doc_type":"usermanual2",
 		"kw":"Log Management Overview,Logging,User Guide",
@@ -1382,7 +2182,7 @@
 	{
 		"uri":"cce_10_0018.html",
 		"product_code":"cce",
-		"code":"139",
+		"code":"219",
 		"des":"CCE works with AOM to collect workload logs. When creating a node, CCE installs the ICAgent for you (the DaemonSet named icagent in the kube-system namespace of the clust",
 		"doc_type":"usermanual2",
 		"kw":"Pod,Pod,Using ICAgent to Collect Container Logs,Logging,User Guide",
@@ -1392,7 +2192,7 @@
 	{
 		"uri":"cce_10_0030.html",
 		"product_code":"cce",
-		"code":"140",
+		"code":"220",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Namespaces",
@@ -1402,7 +2202,7 @@
 	{
 		"uri":"cce_10_0278.html",
 		"product_code":"cce",
-		"code":"141",
+		"code":"221",
 		"des":"A namespace is a collection of resources and objects. Multiple namespaces can be created inside a cluster and isolated from each other. This enables namespaces to share t",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Namespace,Namespaces,User Guide",
@@ -1412,7 +2212,7 @@
 	{
 		"uri":"cce_10_0285.html",
 		"product_code":"cce",
-		"code":"142",
+		"code":"222",
 		"des":"When creating a workload, you can select a namespace to isolate resources or users.When querying workloads, you can select a namespace to view all workloads in the namesp",
 		"doc_type":"usermanual2",
 		"kw":"Managing Namespaces,Namespaces,User Guide",
@@ -1422,7 +2222,7 @@
 	{
 		"uri":"cce_10_0287.html",
 		"product_code":"cce",
-		"code":"143",
+		"code":"223",
 		"des":"Namespace-level resource quotas limit the amount of resources available to teams or users when these teams or users use the same cluster. The quotas include the total num",
 		"doc_type":"usermanual2",
 		"kw":"Setting a Resource Quota,Namespaces,User Guide",
@@ -1432,67 +2232,67 @@
 	{
 		"uri":"cce_10_0045.html",
 		"product_code":"cce",
-		"code":"144",
+		"code":"224",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"environment variables,command line parameters,data volumes,data volumes,environment variables",
-		"title":"Configuration Center",
+		"title":"ConfigMaps and Secrets",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0152.html",
 		"product_code":"cce",
-		"code":"145",
+		"code":"225",
 		"des":"A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. After creating ConfigMaps, you can use them a",
 		"doc_type":"usermanual2",
-		"kw":"Creating a ConfigMap,Configuration Center,User Guide",
+		"kw":"Creating a ConfigMap,ConfigMaps and Secrets,User Guide",
 		"title":"Creating a ConfigMap",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0015.html",
 		"product_code":"cce",
-		"code":"146",
+		"code":"226",
 		"des":"After a ConfigMap is created, it can be used in three workload scenarios: environment variables, command line parameters, and data volumes.",
 		"doc_type":"usermanual2",
-		"kw":"environment variables,command line parameters,data volumes,Using a ConfigMap,Configuration Center,Us",
+		"kw":"environment variables,command line parameters,data volumes,Using a ConfigMap,ConfigMaps and Secrets,",
 		"title":"Using a ConfigMap",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0153.html",
 		"product_code":"cce",
-		"code":"147",
+		"code":"227",
 		"des":"A secret is a type of resource that holds sensitive data, such as authentication and key information. Its content is user-defined. After creating secrets, you can use the",
 		"doc_type":"usermanual2",
-		"kw":"Opaque,kubernetes.io/dockerconfigjson,IngressTLS,kubernetes.io/,Creating a Secret,Configuration Cent",
+		"kw":"Opaque,kubernetes.io/dockerconfigjson,kubernetes.io/,Opaque,kubernetes.io/dockerconfigjson,kubernete",
 		"title":"Creating a Secret",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0016.html",
 		"product_code":"cce",
-		"code":"148",
+		"code":"228",
 		"des":"After secrets are created, they can be mounted as data volumes or be exposed as environment variables to be used by a container in a pod.",
 		"doc_type":"usermanual2",
-		"kw":"data volumes,environment variables,Using a Secret,Configuration Center,User Guide",
+		"kw":"data volumes,environment variables,Using a Secret,ConfigMaps and Secrets,User Guide",
 		"title":"Using a Secret",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0388.html",
 		"product_code":"cce",
-		"code":"149",
+		"code":"229",
 		"des":"By default, CCE creates the following secrets in each namespace:default-secretpaas.elbdefault-token-xxxxx (xxxxx is a random number.)The functions of these secrets are de",
 		"doc_type":"usermanual2",
-		"kw":"Cluster Secrets,Configuration Center,User Guide",
+		"kw":"Cluster Secrets,ConfigMaps and Secrets,User Guide",
 		"title":"Cluster Secrets",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0207.html",
 		"product_code":"cce",
-		"code":"150",
+		"code":"230",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Auto Scaling",
@@ -1502,7 +2302,7 @@
 	{
 		"uri":"cce_10_0279.html",
 		"product_code":"cce",
-		"code":"151",
+		"code":"231",
 		"des":"Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.More and more applicati",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Auto Scaling,User Guide",
@@ -1512,7 +2312,7 @@
 	{
 		"uri":"cce_10_0293.html",
 		"product_code":"cce",
-		"code":"152",
+		"code":"232",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Scaling a Workload",
@@ -1522,7 +2322,7 @@
 	{
 		"uri":"cce_10_0290.html",
 		"product_code":"cce",
-		"code":"153",
+		"code":"233",
 		"des":"HPA is a controller that controls horizontal pod scaling. HPA periodically checks the pod metrics, calculates the number of replicas required to meet the target values co",
 		"doc_type":"usermanual2",
 		"kw":"Workload Scaling Mechanisms,Scaling a Workload,User Guide",
@@ -1532,7 +2332,7 @@
 	{
 		"uri":"cce_10_0208.html",
 		"product_code":"cce",
-		"code":"154",
+		"code":"234",
 		"des":"Horizontal Pod Autoscaling (HPA) in Kubernetes implements horizontal scaling of pods. In a CCE HPA policy, you can configure different cooldown time windows and scaling t",
 		"doc_type":"usermanual2",
 		"kw":"Creating an HPA Policy for Workload Auto Scaling,Scaling a Workload,User Guide",
@@ -1542,7 +2342,7 @@
 	{
 		"uri":"cce_10_0083.html",
 		"product_code":"cce",
-		"code":"155",
+		"code":"235",
 		"des":"After an HPA policy is created, you can update, clone, edit, and delete the policy, as well as edit the YAML file.You can view the rules, status, and events of an HPA pol",
 		"doc_type":"usermanual2",
 		"kw":"Managing Workload Scaling Policies,Scaling a Workload,User Guide",
@@ -1552,7 +2352,7 @@
 	{
 		"uri":"cce_10_0291.html",
 		"product_code":"cce",
-		"code":"156",
+		"code":"236",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Scaling a Node",
@@ -1562,7 +2362,7 @@
 	{
 		"uri":"cce_10_0296.html",
 		"product_code":"cce",
-		"code":"157",
+		"code":"237",
 		"des":"Kubernetes HPA is designed for pods. However, if the cluster resources are insufficient, you can only add nodes. Scaling of cluster nodes could be laborious. Now with clo",
 		"doc_type":"usermanual2",
 		"kw":"Node Scaling Mechanisms,Scaling a Node,User Guide",
@@ -1572,7 +2372,7 @@
 	{
 		"uri":"cce_10_0209.html",
 		"product_code":"cce",
-		"code":"158",
+		"code":"238",
 		"des":"CCE provides auto scaling through the autoscaler add-on. Nodes with different specifications can be automatically added across AZs on demand.If a node scaling policy and ",
 		"doc_type":"usermanual2",
 		"kw":"Creating a Node Scaling Policy,Scaling a Node,User Guide",
@@ -1582,7 +2382,7 @@
 	{
 		"uri":"cce_10_0063.html",
 		"product_code":"cce",
-		"code":"159",
+		"code":"239",
 		"des":"After a node scaling policy is created, you can delete, edit, disable, enable, or clone the policy.You can view the associated node pool, rules, and scaling history of a ",
 		"doc_type":"usermanual2",
 		"kw":"Managing Node Scaling Policies,Scaling a Node,User Guide",
@@ -1592,7 +2392,7 @@
 	{
 		"uri":"cce_10_0300.html",
 		"product_code":"cce",
-		"code":"160",
+		"code":"240",
 		"des":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
 		"doc_type":"usermanual2",
 		"kw":"Using HPA and CA for Auto Scaling of Workloads and Nodes,Auto Scaling,User Guide",
@@ -1602,7 +2402,7 @@
 	{
 		"uri":"cce_10_0064.html",
 		"product_code":"cce",
-		"code":"161",
+		"code":"241",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Add-ons",
@@ -1612,8 +2412,8 @@
 	{
 		"uri":"cce_10_0277.html",
 		"product_code":"cce",
-		"code":"162",
-		"des":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.",
+		"code":"242",
+		"des":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.CCE uses Helm templates to deploy ad",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Add-ons,User Guide",
 		"title":"Overview",
@@ -1622,7 +2422,7 @@
 	{
 		"uri":"cce_10_0129.html",
 		"product_code":"cce",
-		"code":"163",
+		"code":"243",
 		"des":"The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.coredns i",
 		"doc_type":"usermanual2",
 		"kw":"coredns (System Resource Add-On, Mandatory),Add-ons,User Guide",
@@ -1632,7 +2432,7 @@
 	{
 		"uri":"cce_10_0127.html",
 		"product_code":"cce",
-		"code":"164",
+		"code":"244",
 		"des":"storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use EVS, SFS, OBS, and SFS Turbo storage resources. By installing and upgradin",
 		"doc_type":"usermanual2",
 		"kw":"storage-driver (System Resource Add-On, Discarded),Add-ons,User Guide",
@@ -1642,7 +2442,7 @@
 	{
 		"uri":"cce_10_0066.html",
 		"product_code":"cce",
-		"code":"165",
+		"code":"245",
 		"des":"Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage",
 		"doc_type":"usermanual2",
 		"kw":"everest (System Resource Add-On, Mandatory),Add-ons,User Guide",
@@ -1652,7 +2452,7 @@
 	{
 		"uri":"cce_10_0132.html",
 		"product_code":"cce",
-		"code":"166",
+		"code":"246",
 		"des":"node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon runnin",
 		"doc_type":"usermanual2",
 		"kw":"npd,Add-ons,User Guide",
@@ -1662,7 +2462,7 @@
 	{
 		"uri":"cce_10_0154.html",
 		"product_code":"cce",
-		"code":"167",
+		"code":"247",
 		"des":"Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.When the CPU or memory usage of a microservice is too h",
 		"doc_type":"usermanual2",
 		"kw":"autoscaler,Add-ons,User Guide",
@@ -1672,7 +2472,7 @@
 	{
 		"uri":"cce_10_0205.html",
 		"product_code":"cce",
-		"code":"168",
+		"code":"248",
 		"des":"From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly a",
 		"doc_type":"usermanual2",
 		"kw":"metrics-server,Add-ons,User Guide",
@@ -1682,7 +2482,7 @@
 	{
 		"uri":"cce_10_0141.html",
 		"product_code":"cce",
-		"code":"169",
+		"code":"249",
 		"des":"gpu-beta is a device management add-on that supports GPUs in containers. If GPU nodes are used in the cluster, the gpu-beta add-on must be installed.The driver to be down",
 		"doc_type":"usermanual2",
 		"kw":"gpu-beta,Add-ons,User Guide",
@@ -1692,7 +2492,7 @@
 	{
 		"uri":"cce_10_0193.html",
 		"product_code":"cce",
-		"code":"170",
+		"code":"250",
 		"des":"Volcano is a batch processing platform based on Kubernetes. It provides a series of features required by machine learning, deep learning, bioinformatics, genomics, and ot",
 		"doc_type":"usermanual2",
 		"kw":"volcano,Add-ons,User Guide",
@@ -1702,7 +2502,7 @@
 	{
 		"uri":"cce_10_0019.html",
 		"product_code":"cce",
-		"code":"171",
+		"code":"251",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Charts",
@@ -1712,7 +2512,7 @@
 	{
 		"uri":"cce_10_0191.html",
 		"product_code":"cce",
-		"code":"172",
+		"code":"252",
 		"des":"CCE provides a console for managing Helm charts, helping you easily deploy applications using the charts and manage applications on the console.Helm is a package manager ",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Charts,User Guide",
@@ -1722,7 +2522,7 @@
 	{
 		"uri":"cce_10_0146.html",
 		"product_code":"cce",
-		"code":"173",
+		"code":"253",
 		"des":"On the CCE console, you can upload a Helm chart package, deploy it, and manage the deployed pods.The number of charts that can be uploaded by a single user is limited. Th",
 		"doc_type":"usermanual2",
 		"kw":"Deploying an Application from a Chart,Charts,User Guide",
@@ -1732,7 +2532,7 @@
 	{
 		"uri":"cce_10_0164.html",
 		"product_code":"cce",
-		"code":"174",
+		"code":"254",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Permissions Management",
@@ -1742,7 +2542,7 @@
 	{
 		"uri":"cce_10_0187.html",
 		"product_code":"cce",
-		"code":"175",
+		"code":"255",
 		"des":"CCE permissions management allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Ma",
 		"doc_type":"usermanual2",
 		"kw":"Permissions Overview,Permissions Management,User Guide",
@@ -1752,7 +2552,7 @@
 	{
 		"uri":"cce_10_0188.html",
 		"product_code":"cce",
-		"code":"176",
+		"code":"256",
 		"des":"CCE cluster-level permissions are assigned based on IAM system policies and custom policies. You can use user groups to assign permissions to IAM users.Cluster permission",
 		"doc_type":"usermanual2",
 		"kw":"Cluster Permissions (IAM-based),Permissions Management,User Guide",
@@ -1762,7 +2562,7 @@
 	{
 		"uri":"cce_10_0189.html",
 		"product_code":"cce",
-		"code":"177",
+		"code":"257",
 		"des":"You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kub",
 		"doc_type":"usermanual2",
 		"kw":"Namespace Permissions (Kubernetes RBAC-based),Permissions Management,User Guide",
@@ -1772,7 +2572,7 @@
 	{
 		"uri":"cce_10_0245.html",
 		"product_code":"cce",
-		"code":"178",
+		"code":"258",
 		"des":"The conventional distributed task scheduling mode is being replaced by Kubernetes. CCE allows you to easily deploy, manage, and scale containerized applications in the cl",
 		"doc_type":"usermanual2",
 		"kw":"Example: Designing and Configuring Permissions for Users in a Department,Permissions Management,User",
@@ -1782,7 +2582,7 @@
 	{
 		"uri":"cce_10_0190.html",
 		"product_code":"cce",
-		"code":"179",
+		"code":"259",
 		"des":"Some CCE permissions policies depend on the policies of other cloud services. To view or use other cloud resources on the CCE console, you need to enable the system polic",
 		"doc_type":"usermanual2",
 		"kw":"Permission Dependency of the CCE Console,Permissions Management,User Guide",
@@ -1792,7 +2592,7 @@
 	{
 		"uri":"cce_10_0465.html",
 		"product_code":"cce",
-		"code":"180",
+		"code":"260",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Pod Security",
@@ -1802,7 +2602,7 @@
 	{
 		"uri":"cce_10_0275.html",
 		"product_code":"cce",
-		"code":"181",
+		"code":"261",
 		"des":"A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The PodSecurityPolicy object in Kubernetes defi",
 		"doc_type":"usermanual2",
 		"kw":"Configuring a Pod Security Policy,Pod Security,User Guide",
@@ -1812,7 +2612,7 @@
 	{
 		"uri":"cce_10_0466.html",
 		"product_code":"cce",
-		"code":"182",
+		"code":"262",
 		"des":"Before using Pod Security Admission, you need to understand Kubernetes Pod Security Standards. These standards define different isolation levels for pods. They let you de",
 		"doc_type":"usermanual2",
 		"kw":"Configuring Pod Security Admission,Pod Security,User Guide",
@@ -1820,9 +2620,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_10_0477_0.html",
+		"uri":"cce_10_0477.html",
 		"product_code":"cce",
-		"code":"183",
+		"code":"263",
 		"des":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
 		"doc_type":"usermanual2",
 		"kw":"Service Account Token Security Improvement,Permissions Management,User Guide",
@@ -1832,7 +2632,7 @@
 	{
 		"uri":"cce_10_0024.html",
 		"product_code":"cce",
-		"code":"184",
+		"code":"264",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Cloud Trace Service (CTS)",
@@ -1842,7 +2642,7 @@
 	{
 		"uri":"cce_10_0025.html",
 		"product_code":"cce",
-		"code":"185",
+		"code":"265",
 		"des":"Cloud Trace Service (CTS) records operations on cloud service resources, allowing users to query, audit, and backtrack the resource operation requests initiated from the ",
 		"doc_type":"usermanual2",
 		"kw":"CCE Operations Supported by CTS,Cloud Trace Service (CTS),User Guide",
@@ -1852,7 +2652,7 @@
 	{
 		"uri":"cce_10_0026.html",
 		"product_code":"cce",
-		"code":"186",
+		"code":"266",
 		"des":"After you enable CTS, the system starts recording operations on CCE resources. Operation records of the last 7 days can be viewed on the CTS management console.Trace Sour",
 		"doc_type":"usermanual2",
 		"kw":"Querying CTS Logs,Cloud Trace Service (CTS),User Guide",
@@ -1862,27 +2662,27 @@
 	{
 		"uri":"cce_10_0305.html",
 		"product_code":"cce",
-		"code":"187",
+		"code":"267",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
-		"kw":"Storage (FlexVolume)",
-		"title":"Storage (FlexVolume)",
+		"kw":"Storage Management: FlexVolume (Deprecated)",
+		"title":"Storage Management: FlexVolume (Deprecated)",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0306.html",
 		"product_code":"cce",
-		"code":"188",
+		"code":"268",
 		"des":"In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.In CCE, container storage is backed both by Kubernet",
 		"doc_type":"usermanual2",
-		"kw":"FlexVolume Overview,Storage (FlexVolume),User Guide",
+		"kw":"FlexVolume Overview,Storage Management: FlexVolume (Deprecated),User Guide",
 		"title":"FlexVolume Overview",
 		"githuburl":""
 	},
 	{
 		"uri":"cce_10_0343.html",
 		"product_code":"cce",
-		"code":"189",
+		"code":"269",
 		"des":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?,Storage",
@@ -1892,7 +2692,7 @@
 	{
 		"uri":"cce_10_0309.html",
 		"product_code":"cce",
-		"code":"190",
+		"code":"270",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Using EVS Disks as Storage Volumes",
@@ -1902,7 +2702,7 @@
 	{
 		"uri":"cce_10_0310.html",
 		"product_code":"cce",
-		"code":"191",
+		"code":"271",
 		"des":"To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Using EVS Disks as Storage Volumes,User Guide",
@@ -1912,7 +2712,7 @@
 	{
 		"uri":"cce_10_0312.html",
 		"product_code":"cce",
-		"code":"192",
+		"code":"272",
 		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-evs-auto-example.yamlvi pvc-evs-auto-example.yamlExample YAML file for clu",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Automatically Creating an EVS Disk,Using EVS Disks as Storage Volumes,User Guide",
@@ -1922,7 +2722,7 @@
 	{
 		"uri":"cce_10_0313.html",
 		"product_code":"cce",
-		"code":"193",
+		"code":"273",
 		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-evs-example.yaml pvc-evs-example.yamlClusters from v1.11.7 to v1.13Example ",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a PV from an Existing EVS Disk,Using EVS Disks as Storage Volumes,User Guide",
@@ -1932,7 +2732,7 @@
 	{
 		"uri":"cce_10_0314.html",
 		"product_code":"cce",
-		"code":"194",
+		"code":"274",
 		"des":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a Pod Mounted with an EVS Volume,Using EVS Disks as Storage Volumes,User Guide",
@@ -1942,7 +2742,7 @@
 	{
 		"uri":"cce_10_0329.html",
 		"product_code":"cce",
-		"code":"195",
+		"code":"275",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Using SFS Turbo File Systems as Storage Volumes",
@@ -1952,7 +2752,7 @@
 	{
 		"uri":"cce_10_0330.html",
 		"product_code":"cce",
-		"code":"196",
+		"code":"276",
 		"des":"CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable fo",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Using SFS Turbo File Systems as Storage Volumes,User Guide",
@@ -1962,7 +2762,7 @@
 	{
 		"uri":"cce_10_0332.html",
 		"product_code":"cce",
-		"code":"197",
+		"code":"277",
 		"des":"CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) ",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a PV from an Existing SFS Turbo File System,Using SFS Turbo File Systems as Stora",
@@ -1972,7 +2772,7 @@
 	{
 		"uri":"cce_10_0333.html",
 		"product_code":"cce",
-		"code":"198",
+		"code":"278",
 		"des":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume,Using SFS Turbo File Systems as Sto",
@@ -1982,7 +2782,7 @@
 	{
 		"uri":"cce_10_0334.html",
 		"product_code":"cce",
-		"code":"199",
+		"code":"279",
 		"des":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch efs",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume,Using SFS Turbo File Systems as St",
@@ -1992,7 +2792,7 @@
 	{
 		"uri":"cce_10_0322.html",
 		"product_code":"cce",
-		"code":"200",
+		"code":"280",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Using OBS Buckets as Storage Volumes",
@@ -2002,7 +2802,7 @@
 	{
 		"uri":"cce_10_0323.html",
 		"product_code":"cce",
-		"code":"201",
+		"code":"281",
 		"des":"CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud w",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Using OBS Buckets as Storage Volumes,User Guide",
@@ -2012,7 +2812,7 @@
 	{
 		"uri":"cce_10_0325.html",
 		"product_code":"cce",
-		"code":"202",
+		"code":"282",
 		"des":"During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, whic",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Automatically Creating an OBS Volume,Using OBS Buckets as Storage Volumes,User Guide",
@@ -2022,7 +2822,7 @@
 	{
 		"uri":"cce_10_0326.html",
 		"product_code":"cce",
-		"code":"203",
+		"code":"283",
 		"des":"CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.The following configura",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a PV from an Existing OBS Bucket,Using OBS Buckets as Storage Volumes,User Guide",
@@ -2032,7 +2832,7 @@
 	{
 		"uri":"cce_10_0327.html",
 		"product_code":"cce",
-		"code":"204",
+		"code":"284",
 		"des":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a Deployment Mounted with an OBS Volume,Using OBS Buckets as Storage Volumes,User",
@@ -2042,7 +2842,7 @@
 	{
 		"uri":"cce_10_0328.html",
 		"product_code":"cce",
-		"code":"205",
+		"code":"285",
 		"des":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume,Using OBS Buckets as Storage Volumes,Use",
@@ -2052,7 +2852,7 @@
 	{
 		"uri":"cce_10_0315.html",
 		"product_code":"cce",
-		"code":"206",
+		"code":"286",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Using SFS File Systems as Storage Volumes",
@@ -2062,7 +2862,7 @@
 	{
 		"uri":"cce_10_0316.html",
 		"product_code":"cce",
-		"code":"207",
+		"code":"287",
 		"des":"CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWr",
 		"doc_type":"usermanual2",
 		"kw":"Overview,Using SFS File Systems as Storage Volumes,User Guide",
@@ -2072,7 +2872,7 @@
 	{
 		"uri":"cce_10_0318.html",
 		"product_code":"cce",
-		"code":"208",
+		"code":"288",
 		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-sfs-auto-example.yamlvi pvc-sfs-auto-example.yamlExample YAML file:apiVers",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Automatically Creating an SFS Volume,Using SFS File Systems as Storage Volumes,User Guide",
@@ -2082,7 +2882,7 @@
 	{
 		"uri":"cce_10_0319.html",
 		"product_code":"cce",
-		"code":"209",
+		"code":"289",
 		"des":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-sfs-example.yaml pvc-sfs-example.yamlClusters from v1.11 to v1.13Example YA",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a PV from an Existing SFS File System,Using SFS File Systems as Storage Volumes,U",
@@ -2092,7 +2892,7 @@
 	{
 		"uri":"cce_10_0320.html",
 		"product_code":"cce",
-		"code":"210",
+		"code":"290",
 		"des":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a Deployment Mounted with an SFS Volume,Using SFS File Systems as Storage Volumes",
@@ -2102,7 +2902,7 @@
 	{
 		"uri":"cce_10_0321.html",
 		"product_code":"cce",
-		"code":"211",
+		"code":"291",
 		"des":"CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
 		"doc_type":"usermanual2",
 		"kw":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume,Using SFS File Systems as Storage Volume",
@@ -2112,7 +2912,7 @@
 	{
 		"uri":"cce_faq_0083.html",
 		"product_code":"cce",
-		"code":"212",
+		"code":"292",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Reference",
@@ -2122,7 +2922,7 @@
 	{
 		"uri":"cce_01_0203.html",
 		"product_code":"cce",
-		"code":"213",
+		"code":"293",
 		"des":"When a node is added, EIP is set to Automatically assign. The node cannot be created, and a message indicating that EIPs are insufficient is displayed.Two methods are ava",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Troubleshoot Insufficient EIPs When a Node Is Added?,Reference,User Guide",
@@ -2132,7 +2932,7 @@
 	{
 		"uri":"cce_01_0204.html",
 		"product_code":"cce",
-		"code":"214",
+		"code":"294",
 		"des":"Before using command line injection, write a script that can format data disks and save it to your OBS bucket. Then, inject a command line that will automatically execute",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Format a Data Disk Using Command Line Injection?,Reference,User Guide",
@@ -2142,7 +2942,7 @@
 	{
 		"uri":"cce_01_0999.html",
 		"product_code":"cce",
-		"code":"215",
+		"code":"295",
 		"des":"After a cluster of v1.13.10 is created, you can use heapster only after rbac is enabled.kubectl delete clusterrole system:heapsterCopy the following file to a server on w",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Use heapster in Clusters of v1.13.10?,Reference,User Guide",
@@ -2152,7 +2952,7 @@
 	{
 		"uri":"cce_faq_00096.html",
 		"product_code":"cce",
-		"code":"216",
+		"code":"296",
 		"des":"Currently, private CCE clusters use Device Mapper as the Docker storage driver.Device Mapper is developed based on the kernel framework and supports many advanced volume ",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Change the Mode of the Docker Device Mapper?,Reference,User Guide",
@@ -2162,7 +2962,7 @@
 	{
 		"uri":"cce_faq_00120.html",
 		"product_code":"cce",
-		"code":"217",
+		"code":"297",
 		"des":"If the cluster status is available but some nodes in the cluster are unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Node Is ",
 		"doc_type":"usermanual2",
 		"kw":"monitrc,What Can I Do If My Cluster Status Is Available but the Node Status Is Unavailable?,Referenc",
@@ -2172,7 +2972,7 @@
 	{
 		"uri":"cce_faq_00039.html",
 		"product_code":"cce",
-		"code":"218",
+		"code":"298",
 		"des":"If the cluster is Unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Security Group Is ModifiedCheck Item 2: Whether the DHCP Fu",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Rectify the Fault When the Cluster Status Is Unavailable?,Reference,User Guide",
@@ -2182,7 +2982,7 @@
 	{
 		"uri":"cce_faq_00099.html",
 		"product_code":"cce",
-		"code":"219",
+		"code":"299",
 		"des":"This section uses the Nginx workload as an example to describe how to set the workload access type to LoadBalancer (ELB).An ELB has been created.You have connected an Ela",
 		"doc_type":"usermanual2",
 		"kw":"ECS,kubectl,How Do I Use kubectl to Set the Workload Access Type to LoadBalancer (ELB)?,Reference,Us",
@@ -2192,7 +2992,7 @@
 	{
 		"uri":"cce_faq_00190.html",
 		"product_code":"cce",
-		"code":"220",
+		"code":"300",
 		"des":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).Before using this feature, write a script that can format data disks and save it to ",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Add a Second Data Disk to a Node in a CCE Cluster?,Reference,User Guide",
@@ -2202,7 +3002,7 @@
 	{
 		"uri":"cce_faq_00029.html",
 		"product_code":"cce",
-		"code":"221",
+		"code":"301",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Workload Abnormalities",
@@ -2212,7 +3012,7 @@
 	{
 		"uri":"cce_faq_00134.html",
 		"product_code":"cce",
-		"code":"222",
+		"code":"302",
 		"des":"If a workload is running improperly, you can view events to determine the cause.On the CCE console, choose Workloads > Deployments or StatefulSets in the navigation pane ",
 		"doc_type":"usermanual2",
 		"kw":"Fault Locating and Troubleshooting for Abnormal Workloads,Workload Abnormalities,User Guide",
@@ -2222,7 +3022,7 @@
 	{
 		"uri":"cce_faq_00098.html",
 		"product_code":"cce",
-		"code":"223",
+		"code":"303",
 		"des":"Viewing K8s Event InformationCheck Item 1: Checking Whether a Node Is Available in the ClusterCheck Item 2: Checking Whether Node Resources (CPU and Memory) Are Sufficien",
 		"doc_type":"usermanual2",
 		"kw":"workload,InstanceSchedulingFailed,Failed to Schedule an Instance,Workload Abnormalities,User Guide",
@@ -2232,7 +3032,7 @@
 	{
 		"uri":"cce_faq_00015.html",
 		"product_code":"cce",
-		"code":"224",
+		"code":"304",
 		"des":"If the workload details page displays an event indicating that image pulling fails, perform the following operations to locate the fault:Check Item 1: Checking Whether im",
 		"doc_type":"usermanual2",
 		"kw":"workload,Failed to Pull an Image,Workload Abnormalities,User Guide",
@@ -2242,7 +3042,7 @@
 	{
 		"uri":"cce_faq_00018.html",
 		"product_code":"cce",
-		"code":"225",
+		"code":"305",
 		"des":"On the details page of a workload, if an event is displayed indicating that the container fails to be restarted, perform the following operations to locate the fault:Rect",
 		"doc_type":"usermanual2",
 		"kw":"Failed to Restart a Container,Workload Abnormalities,User Guide",
@@ -2252,7 +3052,7 @@
 	{
 		"uri":"cce_faq_00209.html",
 		"product_code":"cce",
-		"code":"226",
+		"code":"306",
 		"des":"Pod actions are classified into the following two types:kube-controller-manager periodically checks the status of all nodes. If a node is in the NotReady state for a peri",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If An Evicted Pod Exists?,Workload Abnormalities,User Guide",
@@ -2262,7 +3062,7 @@
 	{
 		"uri":"cce_faq_00140.html",
 		"product_code":"cce",
-		"code":"227",
+		"code":"307",
 		"des":"When a node is faulty, pods on the node are evicted to ensure workload availability. If the pods are not evicted when the node is faulty, perform the following steps:Use ",
 		"doc_type":"usermanual2",
 		"kw":"Instance Eviction Exception,Workload Abnormalities,User Guide",
@@ -2272,7 +3072,7 @@
 	{
 		"uri":"cce_faq_00210.html",
 		"product_code":"cce",
-		"code":"228",
+		"code":"308",
 		"des":"When a node is in the Unavailable state, CCE migrates container pods on the node and sets the pods running on the node to the Terminating state.After the node is restored",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If Pods in the Terminating State Cannot Be Deleted?,Workload Abnormalities,User Gui",
@@ -2282,7 +3082,7 @@
 	{
 		"uri":"cce_faq_00012.html",
 		"product_code":"cce",
-		"code":"229",
+		"code":"309",
 		"des":"The metadata.enable field in the YAML file of the workload is false. As a result, the pod of the workload is deleted and the workload is in the stopped status.The workloa",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If a Workload Is Stopped Caused by Pod Deletion?,Workload Abnormalities,User Guide",
@@ -2292,7 +3092,7 @@
 	{
 		"uri":"cce_faq_00005.html",
 		"product_code":"cce",
-		"code":"230",
+		"code":"310",
 		"des":"The pod remains in the creating state for a long time, and the sandbox-related errors are reported.Select a troubleshooting method for your cluster:Clusters of V1.13 or l",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If Sandbox-Related Errors Are Reported When the Pod Remains in the Creating State?,",
@@ -2302,7 +3102,7 @@
 	{
 		"uri":"cce_faq_00199.html",
 		"product_code":"cce",
-		"code":"231",
+		"code":"311",
 		"des":"Workload pods in the cluster fail and are being redeployed constantly.After the following command is run, the command output shows that many pods are in the evicted state",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If a Pod Is in the Evicted State?,Workload Abnormalities,User Guide",
@@ -2312,7 +3112,7 @@
 	{
 		"uri":"cce_faq_00002.html",
 		"product_code":"cce",
-		"code":"232",
+		"code":"312",
 		"des":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If the OOM Killer Is Triggered When a Container Uses Memory Resources More Than Lim",
@@ -2322,7 +3122,7 @@
 	{
 		"uri":"cce_faq_00202.html",
 		"product_code":"cce",
-		"code":"233",
+		"code":"313",
 		"des":"A workload can be accessed from public networks through a load balancer. LoadBalancer provides higher reliability than EIP-based NodePort because an EIP is no longer boun",
 		"doc_type":"usermanual2",
 		"kw":"What Should I Do If a Service Released in a Workload Cannot Be Accessed from Public Networks?,Refere",
@@ -2332,7 +3132,7 @@
 	{
 		"uri":"cce_faq_00266.html",
 		"product_code":"cce",
-		"code":"234",
+		"code":"314",
 		"des":"A VPC is similar to a private local area network (LAN) managed by a home gateway whose IP address is 192.168.0.0/16. A VPC is a private network built on the cloud and pro",
 		"doc_type":"usermanual2",
 		"kw":"VPC,cluster,nodes,What Is the Relationship Between Clusters, VPCs, and Subnets?,Reference,User Guide",
@@ -2342,7 +3142,7 @@
 	{
 		"uri":"cce_faq_00265.html",
 		"product_code":"cce",
-		"code":"235",
+		"code":"315",
 		"des":"CCE is a universal container platform. Its default security group rules apply to common scenarios. Based on security requirements, you can harden the security group rules",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Harden the VPC Security Group Rules for CCE Cluster Nodes?,Reference,User Guide",
@@ -2352,7 +3152,7 @@
 	{
 		"uri":"cce_bestpractice.html",
 		"product_code":"cce",
-		"code":"236",
+		"code":"316",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Best Practice",
@@ -2362,17 +3162,137 @@
 	{
 		"uri":"cce_bestpractice_00006.html",
 		"product_code":"cce",
-		"code":"237",
+		"code":"317",
 		"des":"Security, efficiency, stability, and availability are common requirements on all cloud services. To meet these requirements, the system availability, data reliability, an",
 		"doc_type":"usermanual2",
 		"kw":"Checklist for Deploying Containerized Applications in the Cloud,Best Practice,User Guide",
 		"title":"Checklist for Deploying Containerized Applications in the Cloud",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_bestpractice_0321.html",
+		"product_code":"cce",
+		"code":"318",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Containerization",
+		"title":"Containerization",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0001.html",
+		"product_code":"cce",
+		"code":"319",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Containerizing an Enterprise Application (ERP)",
+		"title":"Containerizing an Enterprise Application (ERP)",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0002.html",
+		"product_code":"cce",
+		"code":"320",
+		"des":"This chapter provides CCE best practices to walk you through the application containerization.A container is a lightweight high-performance resource isolation mechanism i",
+		"doc_type":"usermanual2",
+		"kw":"enterprise resource planning (ERP),Solution Overview,Containerizing an Enterprise Application (ERP),",
+		"title":"Solution Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0340.html",
+		"product_code":"cce",
+		"code":"321",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Procedure",
+		"title":"Procedure",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0003.html",
+		"product_code":"cce",
+		"code":"322",
+		"des":"This tutorial describes how to containerize an ERP system by migrating it from a VM to CCE.No recoding or re-architecting is required. You only need to pack the entire ap",
+		"doc_type":"usermanual2",
+		"kw":"Containerizing an Entire Application,Procedure,User Guide",
+		"title":"Containerizing an Entire Application",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0004.html",
+		"product_code":"cce",
+		"code":"323",
+		"des":"The following figure illustrates the process of containerizing an application.",
+		"doc_type":"usermanual2",
+		"kw":"Containerization Process,Procedure,User Guide",
+		"title":"Containerization Process",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0005.html",
+		"product_code":"cce",
+		"code":"324",
+		"des":"Before containerizing an application, you need to analyze the running environment and dependencies of the application, and get familiar with the application deployment mo",
+		"doc_type":"usermanual2",
+		"kw":"containerizing an application,Analyzing the Application,Procedure,User Guide",
+		"title":"Analyzing the Application",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0006.html",
+		"product_code":"cce",
+		"code":"325",
+		"des":"After application analysis, you have gained the understanding of the OS and runtime required for running the application. You need to make the following preparations:Inst",
+		"doc_type":"usermanual2",
+		"kw":"Preparing the Application Runtime,Procedure,User Guide",
+		"title":"Preparing the Application Runtime",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0007.html",
+		"product_code":"cce",
+		"code":"326",
+		"des":"During application containerization, you need to prepare a startup script. The method of compiling this script is the same as that of compiling a shell script. The startu",
+		"doc_type":"usermanual2",
+		"kw":"Compiling a Startup Script,Procedure,User Guide",
+		"title":"Compiling a Startup Script",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0008.html",
+		"product_code":"cce",
+		"code":"327",
+		"des":"An image is the basis of a container. A container runs based on the content defined in the image. An image has multiple layers. Each layer includes the modifications made",
+		"doc_type":"usermanual2",
+		"kw":"Compiling the Dockerfile,Procedure,User Guide",
+		"title":"Compiling the Dockerfile",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0009.html",
+		"product_code":"cce",
+		"code":"328",
+		"des":"This section describes how to build an entire application into a Docker image. After building an image, you can use the image to deploy and upgrade the application. This ",
+		"doc_type":"usermanual2",
+		"kw":"Building and Uploading an Image,Procedure,User Guide",
+		"title":"Building and Uploading an Image",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_0010.html",
+		"product_code":"cce",
+		"code":"329",
+		"des":"This section describes how to deploy a workload on CCE. When using CCE for the first time, create an initial cluster and add a node into the cluster.Containerized workloa",
+		"doc_type":"usermanual2",
+		"kw":"Creating a Container Workload,Procedure,User Guide",
+		"title":"Creating a Container Workload",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_bestpractice_00237.html",
 		"product_code":"cce",
-		"code":"238",
+		"code":"330",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Migration",
@@ -2382,7 +3302,7 @@
 	{
 		"uri":"cce_bestpractice_0306.html",
 		"product_code":"cce",
-		"code":"239",
+		"code":"331",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Migrating On-premises Kubernetes Clusters to CCE",
@@ -2392,7 +3312,7 @@
 	{
 		"uri":"cce_bestpractice_0307.html",
 		"product_code":"cce",
-		"code":"240",
+		"code":"332",
 		"des":"Containers are growing in popularity and Kubernetes simplifies containerized deployment. Many companies choose to build their own Kubernetes clusters. However, the O&M wo",
 		"doc_type":"usermanual2",
 		"kw":"Solution Overview,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
@@ -2402,7 +3322,7 @@
 	{
 		"uri":"cce_bestpractice_0308.html",
 		"product_code":"cce",
-		"code":"241",
+		"code":"333",
 		"des":"CCE allows you to customize cluster resources to meet various service requirements. Table 1 lists the key performance parameters of a cluster and provides the planned val",
 		"doc_type":"usermanual2",
 		"kw":"Planning Resources for the Target Cluster,Migrating On-premises Kubernetes Clusters to CCE,User Guid",
@@ -2412,7 +3332,7 @@
 	{
 		"uri":"cce_bestpractice_0309.html",
 		"product_code":"cce",
-		"code":"242",
+		"code":"334",
 		"des":"If your migration does not involve resources outside a cluster listed in Table 1 or you do not need to use other services to update resources after the migration, skip th",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Resources Outside a Cluster,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
@@ -2422,7 +3342,7 @@
 	{
 		"uri":"cce_bestpractice_0310.html",
 		"product_code":"cce",
-		"code":"243",
+		"code":"335",
 		"des":"Velero is an open-source backup and migration tool for Kubernetes clusters. It integrates the persistent volume (PV) data backup capability of the Restic tool and can be ",
 		"doc_type":"usermanual2",
 		"kw":"Installing the Migration Tool,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
@@ -2432,7 +3352,7 @@
 	{
 		"uri":"cce_bestpractice_0311.html",
 		"product_code":"cce",
-		"code":"244",
+		"code":"336",
 		"des":"WordPress is used as an example to describe how to migrate an application from an on-premises Kubernetes cluster to a CCE cluster. The WordPress application consists of t",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Resources in a Cluster,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
@@ -2442,7 +3362,7 @@
 	{
 		"uri":"cce_bestpractice_0312.html",
 		"product_code":"cce",
-		"code":"245",
+		"code":"337",
 		"des":"The WordPress and MySQL images used in this example can be pulled from SWR. Therefore, the image pull failure (ErrImagePull) will not occur. If the application to be migr",
 		"doc_type":"usermanual2",
 		"kw":"Updating Resources Accordingly,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
@@ -2452,7 +3372,7 @@
 	{
 		"uri":"cce_bestpractice_0313.html",
 		"product_code":"cce",
-		"code":"246",
+		"code":"338",
 		"des":"Cluster migration involves full migration of application data, which may cause intra-application adaptation problems. In this example, after the cluster is migrated, the ",
 		"doc_type":"usermanual2",
 		"kw":"Performing Additional Tasks,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
@@ -2462,7 +3382,7 @@
 	{
 		"uri":"cce_bestpractice_0314.html",
 		"product_code":"cce",
-		"code":"247",
+		"code":"339",
 		"des":"Both HostPath and Local volumes are local storage volumes. However, the Restic tool integrated in Velero cannot back up the PVs of the HostPath type and supports only the",
 		"doc_type":"usermanual2",
 		"kw":"Troubleshooting,Migrating On-premises Kubernetes Clusters to CCE,User Guide",
@@ -2472,7 +3392,7 @@
 	{
 		"uri":"cce_bestpractice_0322.html",
 		"product_code":"cce",
-		"code":"248",
+		"code":"340",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"DevOps",
@@ -2482,7 +3402,7 @@
 	{
 		"uri":"cce_bestpractice_0324.html",
 		"product_code":"cce",
-		"code":"249",
+		"code":"341",
 		"des":"GitLab is an open-source version management system developed with Ruby on Rails for Git project repository management. It supports web-based access to public and private ",
 		"doc_type":"usermanual2",
 		"kw":"Interconnecting GitLab with SWR and CCE for CI/CD,DevOps,User Guide",
@@ -2492,7 +3412,7 @@
 	{
 		"uri":"cce_bestpractice_0323.html",
 		"product_code":"cce",
-		"code":"250",
+		"code":"342",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Disaster Recovery",
@@ -2502,7 +3422,7 @@
 	{
 		"uri":"cce_bestpractice_00220.html",
 		"product_code":"cce",
-		"code":"251",
+		"code":"343",
 		"des":"To achieve high availability for your CCE containers, you can do as follows:Deploy three master nodes for the cluster.When nodes are deployed across AZs, set custom sched",
 		"doc_type":"usermanual2",
 		"kw":"Implementing High Availability for Containers in CCE,Disaster Recovery,User Guide",
@@ -2512,7 +3432,7 @@
 	{
 		"uri":"cce_bestpractice_0315.html",
 		"product_code":"cce",
-		"code":"252",
+		"code":"344",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Security",
@@ -2522,7 +3442,7 @@
 	{
 		"uri":"cce_bestpractice_0317.html",
 		"product_code":"cce",
-		"code":"253",
+		"code":"345",
 		"des":"For security purposes, you are advised to configure a cluster as follows.Kubernetes releases a major version in about four months. CCE follows the same frequency as Kuber",
 		"doc_type":"usermanual2",
 		"kw":"Cluster Security,Security,User Guide",
@@ -2532,7 +3452,7 @@
 	{
 		"uri":"cce_bestpractice_0318.html",
 		"product_code":"cce",
-		"code":"254",
+		"code":"346",
 		"des":"Do not bind an EIP to a node unless necessary to reduce the attack surface.If an EIP must be used, properly configure the firewall or security group rules to restrict acc",
 		"doc_type":"usermanual2",
 		"kw":"Node Security,Security,User Guide",
@@ -2542,7 +3462,7 @@
 	{
 		"uri":"cce_bestpractice_0319.html",
 		"product_code":"cce",
-		"code":"255",
+		"code":"347",
 		"des":"The nodeSelector or nodeAffinity is used to limit the range of nodes to which applications can be scheduled, preventing the entire cluster from being threatened due to th",
 		"doc_type":"usermanual2",
 		"kw":"Container Security,Security,User Guide",
@@ -2552,7 +3472,7 @@
 	{
 		"uri":"cce_bestpractice_0320.html",
 		"product_code":"cce",
-		"code":"256",
+		"code":"348",
 		"des":"Currently, CCE has configured static encryption for secret resources. The secrets created by users will be encrypted and stored in etcd of the CCE cluster. Secrets can be",
 		"doc_type":"usermanual2",
 		"kw":"Secret Security,Security,User Guide",
@@ -2562,7 +3482,7 @@
 	{
 		"uri":"cce_bestpractice_0090.html",
 		"product_code":"cce",
-		"code":"257",
+		"code":"349",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Auto Scaling",
@@ -2572,17 +3492,37 @@
 	{
 		"uri":"cce_bestpractice_00282.html",
 		"product_code":"cce",
-		"code":"258",
+		"code":"350",
 		"des":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
 		"doc_type":"usermanual2",
 		"kw":"Using HPA and CA for Auto Scaling of Workloads and Nodes,Auto Scaling,User Guide",
 		"title":"Using HPA and CA for Auto Scaling of Workloads and Nodes",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_bestpractice_10008.html",
+		"product_code":"cce",
+		"code":"351",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Monitoring",
+		"title":"Monitoring",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_10009.html",
+		"product_code":"cce",
+		"code":"352",
+		"des":"Generally, a user has different clusters for different purposes, such as production, testing, and development. To monitor, collect, and view metrics of these clusters, yo",
+		"doc_type":"usermanual2",
+		"kw":"Using Prometheus for Multi-cluster Monitoring,Monitoring,User Guide",
+		"title":"Using Prometheus for Multi-cluster Monitoring",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_bestpractice_0050.html",
 		"product_code":"cce",
-		"code":"259",
+		"code":"353",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Cluster",
@@ -2592,7 +3532,7 @@
 	{
 		"uri":"cce_bestpractice_00254.html",
 		"product_code":"cce",
-		"code":"260",
+		"code":"354",
 		"des":"When you have multiple CCE clusters, you may find it difficult to efficiently connect to all of them.This section describes how to configure access to multiple clusters b",
 		"doc_type":"usermanual2",
 		"kw":"Connecting to Multiple Clusters Using kubectl,Cluster,User Guide",
@@ -2602,17 +3542,27 @@
 	{
 		"uri":"cce_bestpractice_00190.html",
 		"product_code":"cce",
-		"code":"261",
+		"code":"355",
 		"des":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).When creating a node in a cluster of v1.13.10 or later, if a data disk is not manage",
 		"doc_type":"usermanual2",
 		"kw":"Adding a Second Data Disk to a Node in a CCE Cluster,Cluster,User Guide",
 		"title":"Adding a Second Data Disk to a Node in a CCE Cluster",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_bestpractice_10012.html",
+		"product_code":"cce",
+		"code":"356",
+		"des":"When a node is created, a data disk is created by default for container runtime and kubelet components to use.  The data disk used by the container runtime and kubelet co",
+		"doc_type":"usermanual2",
+		"kw":"Selecting a Data Disk for the Node,Cluster,User Guide",
+		"title":"Selecting a Data Disk for the Node",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_bestpractice_0052.html",
 		"product_code":"cce",
-		"code":"262",
+		"code":"357",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Networking",
@@ -2622,7 +3572,7 @@
 	{
 		"uri":"cce_bestpractice_00004.html",
 		"product_code":"cce",
-		"code":"263",
+		"code":"358",
 		"des":"Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.This topic",
 		"doc_type":"usermanual2",
 		"kw":"Planning CIDR Blocks for a Cluster,Networking,User Guide",
@@ -2632,8 +3582,8 @@
 	{
 		"uri":"cce_bestpractice_00162.html",
 		"product_code":"cce",
-		"code":"264",
-		"des":"CCE uses self-proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.After a cluster i",
+		"code":"359",
+		"des":"CCE uses proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.After a cluster is cre",
 		"doc_type":"usermanual2",
 		"kw":"Selecting a Network Model,Networking,User Guide",
 		"title":"Selecting a Network Model",
@@ -2642,7 +3592,7 @@
 	{
 		"uri":"cce_bestpractice_00231.html",
 		"product_code":"cce",
-		"code":"265",
+		"code":"360",
 		"des":"Session persistence is one of the most common while complex problems in load balancing.Session persistence is also called sticky sessions. After the sticky session functi",
 		"doc_type":"usermanual2",
 		"kw":"Implementing Sticky Session Through Load Balancing,Networking,User Guide",
@@ -2652,7 +3602,7 @@
 	{
 		"uri":"cce_bestpractice_00035.html",
 		"product_code":"cce",
-		"code":"266",
+		"code":"361",
 		"des":"There may be different types of proxy servers between a client and a container server. How can a container obtain the real source IP address of the client? This section d",
 		"doc_type":"usermanual2",
 		"kw":"Obtaining the Client Source IP Address for a Container,Networking,User Guide",
@@ -2662,7 +3612,7 @@
 	{
 		"uri":"cce_bestpractice_0053.html",
 		"product_code":"cce",
-		"code":"267",
+		"code":"362",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Storage",
@@ -2672,8 +3622,8 @@
 	{
 		"uri":"cce_bestpractice_00198.html",
 		"product_code":"cce",
-		"code":"268",
-		"des":"A data disk is divided depending on the container storage Rootfs:Overlayfs: No independent thin pool is allocated. Image data is stored in the dockersys disk.# lsblk\nNAME",
+		"code":"363",
+		"des":"EulerOS 2.9 is used as the sample OS. Originally, system disk /dev/vda has 50 GB and one partition (/dev/vda1), and then 50 GB is added to the disk. In this example, the ",
 		"doc_type":"usermanual2",
 		"kw":"Expanding Node Disk Capacity,Storage,User Guide",
 		"title":"Expanding Node Disk Capacity",
@@ -2682,7 +3632,7 @@
 	{
 		"uri":"cce_bestpractice_00199.html",
 		"product_code":"cce",
-		"code":"269",
+		"code":"364",
 		"des":"This section describes how to mount OBS buckets and OBS parallel file systems (preferred) of third-party tenants.The CCE cluster of a SaaS service provider needs to be mo",
 		"doc_type":"usermanual2",
 		"kw":"Mounting an Object Storage Bucket of a Third-Party Tenant,Storage,User Guide",
@@ -2690,9 +3640,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_bestpractice_00253_0.html",
+		"uri":"cce_bestpractice_00253.html",
 		"product_code":"cce",
-		"code":"270",
+		"code":"365",
 		"des":"The minimum capacity of an SFS Turbo file system is 500 GB, and the SFS Turbo file system cannot be billed by usage. By default, the root directory of an SFS Turbo file s",
 		"doc_type":"usermanual2",
 		"kw":"Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System,Storage,User Guide",
@@ -2702,7 +3652,7 @@
 	{
 		"uri":"cce_bestpractice_0107.html",
 		"product_code":"cce",
-		"code":"271",
+		"code":"366",
 		"des":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
 		"doc_type":"usermanual2",
 		"kw":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?,Storage",
@@ -2710,9 +3660,9 @@
 		"githuburl":""
 	},
 	{
-		"uri":"cce_bestpractice_00281_0.html",
+		"uri":"cce_bestpractice_00281.html",
 		"product_code":"cce",
-		"code":"272",
+		"code":"367",
 		"des":"When using storage resources in CCE, the most common method is to specify storageClassName to define the type of storage resources to be created when creating a PVC. The ",
 		"doc_type":"usermanual2",
 		"kw":"Custom Storage Classes,Storage,User Guide",
@@ -2722,7 +3672,7 @@
 	{
 		"uri":"cce_bestpractice_00284.html",
 		"product_code":"cce",
-		"code":"273",
+		"code":"368",
 		"des":"EVS disks cannot be attached across AZs. For example, EVS disks in AZ 1 cannot be attached to nodes in AZ 2.If the storage class csi-disk is used for StatefulSets, when a",
 		"doc_type":"usermanual2",
 		"kw":"Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology),St",
@@ -2732,7 +3682,7 @@
 	{
 		"uri":"cce_bestpractice_0051.html",
 		"product_code":"cce",
-		"code":"274",
+		"code":"369",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Container",
@@ -2742,7 +3692,7 @@
 	{
 		"uri":"cce_bestpractice_00002.html",
 		"product_code":"cce",
-		"code":"275",
+		"code":"370",
 		"des":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
 		"doc_type":"usermanual2",
 		"kw":"Properly Allocating Container Computing Resources,Container,User Guide",
@@ -2752,7 +3702,7 @@
 	{
 		"uri":"cce_bestpractice_00227.html",
 		"product_code":"cce",
-		"code":"276",
+		"code":"371",
 		"des":"To access a Kubernetes cluster from a client, you can use the Kubernetes command line tool kubectl.Create a DaemonSet file.vi daemonSet.yamlAn example YAML file is provid",
 		"doc_type":"usermanual2",
 		"kw":"Modifying Kernel Parameters Using a Privileged Container,Container,User Guide",
@@ -2762,7 +3712,7 @@
 	{
 		"uri":"cce_bestpractice_00228.html",
 		"product_code":"cce",
-		"code":"277",
+		"code":"372",
 		"des":"Before containers running applications are started, one or some init containers are started first. If there are multiple init containers, they will be started in the defi",
 		"doc_type":"usermanual2",
 		"kw":"Initializing a Container,Container,User Guide",
@@ -2772,7 +3722,7 @@
 	{
 		"uri":"cce_bestpractice_00226.html",
 		"product_code":"cce",
-		"code":"278",
+		"code":"373",
 		"des":"If DNS or other related settings are inappropriate, you can use hostAliases to overwrite the resolution of the host name at the pod level when adding entries to the /etc/",
 		"doc_type":"usermanual2",
 		"kw":"Using hostAliases to Configure /etc/hosts in a Pod,Container,User Guide",
@@ -2782,17 +3732,67 @@
 	{
 		"uri":"cce_bestpractice_0325.html",
 		"product_code":"cce",
-		"code":"279",
+		"code":"374",
 		"des":"Linux allows you to create a core dump file if an application crashes, which contains the data the application had in memory at the time of the crash. You can analyze the",
 		"doc_type":"usermanual2",
 		"kw":"Configuring Core Dumps,Container,User Guide",
 		"title":"Configuring Core Dumps",
 		"githuburl":""
 	},
+	{
+		"uri":"cce_bestpractice_0055.html",
+		"product_code":"cce",
+		"code":"375",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Permission",
+		"title":"Permission",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_00221.html",
+		"product_code":"cce",
+		"code":"376",
+		"des":"By default, the kubeconfig file provided by CCE for users has permissions bound to the cluster-admin role, which are equivalent to the permissions of user root. It is dif",
+		"doc_type":"usermanual2",
+		"kw":"Configuring kubeconfig for Fine-Grained Management on Cluster Resources,Permission,User Guide",
+		"title":"Configuring kubeconfig for Fine-Grained Management on Cluster Resources",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_10000.html",
+		"product_code":"cce",
+		"code":"377",
+		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"doc_type":"usermanual2",
+		"kw":"Release",
+		"title":"Release",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_10001.html",
+		"product_code":"cce",
+		"code":"378",
+		"des":"When switching between old and new services, you may be challenged in ensuring the system service continuity. If a new service version is directly released to all users a",
+		"doc_type":"usermanual2",
+		"kw":"Overview,Release,User Guide",
+		"title":"Overview",
+		"githuburl":""
+	},
+	{
+		"uri":"cce_bestpractice_10002.html",
+		"product_code":"cce",
+		"code":"379",
+		"des":"To implement grayscale release for a CCE cluster, you need to deploy other open-source tools, such as Nginx Ingress, to the cluster or deploy services to a service mesh. ",
+		"doc_type":"usermanual2",
+		"kw":"Using Services to Implement Simple Grayscale Release and Blue-Green Deployment,Release,User Guide",
+		"title":"Using Services to Implement Simple Grayscale Release and Blue-Green Deployment",
+		"githuburl":""
+	},
 	{
 		"uri":"cce_01_9999.html",
 		"product_code":"cce",
-		"code":"280",
+		"code":"380",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Data from CCE 1.0 to CCE 2.0",
@@ -2802,7 +3802,7 @@
 	{
 		"uri":"cce_01_9998.html",
 		"product_code":"cce",
-		"code":"281",
+		"code":"381",
 		"des":"CCE 2.0 inherits and modifies the features of CCE 1.0, and release new features.Modified features:Clusters in CCE 1.0 are equivalent to Hybrid clusters in CCE 2.0.CCE 2.0",
 		"doc_type":"usermanual2",
 		"kw":"Differences Between CCE 1.0 and CCE 2.0,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2812,7 +3812,7 @@
 	{
 		"uri":"cce_01_9997.html",
 		"product_code":"cce",
-		"code":"282",
+		"code":"382",
 		"des":"Migrate the images stored in the image repository of CCE 1.0 to CCE 2.0.A VM is available. The VM is bound to a public IP address and can access the Internet. Docker (ear",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Images,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2822,7 +3822,7 @@
 	{
 		"uri":"cce_01_9996.html",
 		"product_code":"cce",
-		"code":"283",
+		"code":"383",
 		"des":"Create Hybrid clusters on the CCE 2.0 console. These new Hybrid clusters should have the same specifications with those created on CCE 1.0.To create clusters using APIs, ",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Clusters,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2832,7 +3832,7 @@
 	{
 		"uri":"cce_01_9995.html",
 		"product_code":"cce",
-		"code":"284",
+		"code":"384",
 		"des":"This section describes how to create a Deployment with the same specifications as that in CCE 1.0 on the CCE 2.0 console.It is advised to delete the applications on CCE 1",
 		"doc_type":"usermanual2",
 		"kw":"Migrating Applications,Migrating Data from CCE 1.0 to CCE 2.0,User Guide",
@@ -2842,7 +3842,7 @@
 	{
 		"uri":"cce_01_0300.html",
 		"product_code":"cce",
-		"code":"285",
+		"code":"385",
 		"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"doc_type":"usermanual2",
 		"kw":"Change History,User Guide",
diff --git a/docs/cce/umn/CLASS.TXT.json b/docs/cce/umn/CLASS.TXT.json
index afd0e381..a7781fa9 100644
--- a/docs/cce/umn/CLASS.TXT.json
+++ b/docs/cce/umn/CLASS.TXT.json
@@ -1,22 +1,139 @@
 [
 	{
-		"desc":"Cloud Container Engine (CCE) provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily dep",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"What Is Cloud Container Engine?",
-		"uri":"cce_01_0091.html",
+		"title":"Service Overview",
+		"uri":"en-us_topic_0000001550437509.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
 		"code":"1"
 	},
 	{
-		"desc":"This document provides instructions for getting started with the Cloud Container Engine (CCE).Complete the following tasks to get started with CCE.The accounts have the p",
+		"desc":"Cloud Container Engine (CCE) is a scalable, enterprise-class hosted Kubernetes service. With CCE, you can easily deploy, manage, and scale containerized applications in t",
 		"product_code":"cce",
-		"title":"Instruction",
-		"uri":"cce_qs_0001.html",
+		"title":"What Is Cloud Container Engine?",
+		"uri":"cce_01_0091.html",
 		"doc_type":"usermanual2",
-		"p_code":"",
+		"p_code":"1",
 		"code":"2"
 	},
+	{
+		"desc":"CCE is a container service built on Docker and Kubernetes. A wealth of features enable you to run container clusters at scale. CCE eases containerization thanks to its re",
+		"product_code":"cce",
+		"title":"Product Advantages",
+		"uri":"cce_productdesc_0003.html",
+		"doc_type":"usermanual2",
+		"p_code":"1",
+		"code":"3"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Application Scenarios",
+		"uri":"cce_productdesc_0007.html",
+		"doc_type":"usermanual2",
+		"p_code":"1",
+		"code":"4"
+	},
+	{
+		"desc":"In CCE, you can run clusters with x86 and Arm nodes. Create and manage Kubernetes clusters. Deploy containerized applications in them. All done in CCE.Containerization re",
+		"product_code":"cce",
+		"title":"Infrastructure and Containerized Application Management",
+		"uri":"cce_productdesc_0020.html",
+		"doc_type":"usermanual2",
+		"p_code":"4",
+		"code":"5"
+	},
+	{
+		"desc":"Shopping apps and websites, especially during promotions and flash salesLive streaming, where service loads often fluctuateGames, where many players may go online in cert",
+		"product_code":"cce",
+		"title":"Auto Scaling in Seconds",
+		"uri":"cce_productdesc_0015.html",
+		"doc_type":"usermanual2",
+		"p_code":"4",
+		"code":"6"
+	},
+	{
+		"desc":"You may receive a lot feedback and requirements for your apps or services. You may want to boost user experience with new features. Continuous integration (CI) and delive",
+		"product_code":"cce",
+		"title":"DevOps and CI/CD",
+		"uri":"cce_productdesc_0017.html",
+		"doc_type":"usermanual2",
+		"p_code":"4",
+		"code":"7"
+	},
+	{
+		"desc":"Multi-cloud deployment and disaster recoveryRunning apps in containers on different clouds can ensure high availability. When a cloud is down, other clouds respond and se",
+		"product_code":"cce",
+		"title":"Hybrid Cloud Architecture",
+		"uri":"cce_productdesc_0018.html",
+		"doc_type":"usermanual2",
+		"p_code":"4",
+		"code":"8"
+	},
+	{
+		"desc":"This section describes the notes and constraints on using CCE.After a cluster is created, the following items cannot be changed:Number of master nodes. For example, you c",
+		"product_code":"cce",
+		"title":"Notes and Constraints",
+		"uri":"cce_productdesc_0005.html",
+		"doc_type":"usermanual2",
+		"p_code":"1",
+		"code":"9"
+	},
+	{
+		"desc":"CCE allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Management (IAM) and Kube",
+		"product_code":"cce",
+		"title":"Permissions",
+		"uri":"cce_productdesc_0002.html",
+		"doc_type":"usermanual2",
+		"p_code":"1",
+		"code":"10"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Basic Concepts",
+		"uri":"cce_productdesc_0004.html",
+		"doc_type":"usermanual2",
+		"p_code":"1",
+		"code":"11"
+	},
+	{
+		"desc":"CCE provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily deploy, manage, and scale co",
+		"product_code":"cce",
+		"title":"Basic Concepts",
+		"uri":"cce_productdesc_0011.html",
+		"doc_type":"usermanual2",
+		"p_code":"11",
+		"code":"12"
+	},
+	{
+		"desc":"Kubernetes (K8s) is an open-source system for automating deployment, scaling, and management of container clusters. It is a container orchestration tool and a leading sol",
+		"product_code":"cce",
+		"title":"Mappings Between CCE and Kubernetes Terms",
+		"uri":"cce_productdesc_0010.html",
+		"doc_type":"usermanual2",
+		"p_code":"11",
+		"code":"13"
+	},
+	{
+		"desc":"A region and availability zone (AZ) identify the location of a data center. You can create resources in a specific region and AZ.Regions are divided based on geographical",
+		"product_code":"cce",
+		"title":"Regions and AZs",
+		"uri":"cce_productdesc_0012.html",
+		"doc_type":"usermanual2",
+		"p_code":"11",
+		"code":"14"
+	},
+	{
+		"desc":"CCE works with the following cloud services and requires permissions to access them.",
+		"product_code":"cce",
+		"title":"Related Services",
+		"uri":"cce_productdesc_0008.html",
+		"doc_type":"usermanual2",
+		"p_code":"1",
+		"code":"15"
+	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
@@ -24,16 +141,7 @@
 		"uri":"cce_bulletin_0000.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"3"
-	},
-	{
-		"desc":"When performing operations such as creating, deleting, and scaling clusters, do not change user permission in the Identity and Access Management (IAM) console. Otherwise,",
-		"product_code":"cce",
-		"title":"Risky Operations on Cluster Nodes",
-		"uri":"cce_bulletin_0054.html",
-		"doc_type":"usermanual2",
-		"p_code":"3",
-		"code":"4"
+		"code":"16"
 	},
 	{
 		"desc":"This section explains versioning in CCE, and the policies for Kubernetes version support.Version number: The format is x.y.z, where x.y is the major version and z is the ",
@@ -41,8 +149,8 @@
 		"title":"Kubernetes Version Support Mechanism",
 		"uri":"cce_bulletin_0003.html",
 		"doc_type":"usermanual2",
-		"p_code":"3",
-		"code":"5"
+		"p_code":"16",
+		"code":"17"
 	},
 	{
 		"desc":"To ensure that stable and reliable Kubernetes versions are available during your use of CCE, CCE provides the Kubernetes version support mechanism. A new supported versio",
@@ -50,17 +158,17 @@
 		"title":"CCE Cluster Version Release Notes",
 		"uri":"cce_bulletin_0068.html",
 		"doc_type":"usermanual2",
-		"p_code":"3",
-		"code":"6"
+		"p_code":"16",
+		"code":"18"
 	},
 	{
-		"desc":"CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.The OS patches and verifica",
+		"desc":"CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9, CentOS 7.7 and Ubuntu 22.04. The following table lists the supported patches for these OSs.The OS patche",
 		"product_code":"cce",
 		"title":"OS Patch Notes for Cluster Nodes",
 		"uri":"cce_bulletin_0301.html",
 		"doc_type":"usermanual2",
-		"p_code":"3",
-		"code":"7"
+		"p_code":"16",
+		"code":"19"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -68,8 +176,8 @@
 		"title":"Security Vulnerability Responses",
 		"uri":"cce_bulletin_0169.html",
 		"doc_type":"usermanual2",
-		"p_code":"3",
-		"code":"8"
+		"p_code":"16",
+		"code":"20"
 	},
 	{
 		"desc":"High-risk vulnerabilities:CCE fixes vulnerabilities as soon as possible after the Kubernetes community detects them and releases fixing solutions. The fixing policies are",
@@ -77,8 +185,8 @@
 		"title":"Vulnerability Fixing Policies",
 		"uri":"cce_bulletin_0011.html",
 		"doc_type":"usermanual2",
-		"p_code":"8",
-		"code":"9"
+		"p_code":"20",
+		"code":"21"
 	},
 	{
 		"desc":"Recently, a security research team disclosed a privilege escalation vulnerability (CVE-2021-4034, also dubbed PwnKit) in PolKit's pkexec. Unprivileged users can gain full",
@@ -86,8 +194,8 @@
 		"title":"Linux Polkit Privilege Escalation Vulnerability (CVE-2021-4034)",
 		"uri":"CVE-2021-4034.html",
 		"doc_type":"usermanual2",
-		"p_code":"8",
-		"code":"10"
+		"p_code":"20",
+		"code":"22"
 	},
 	{
 		"desc":"The Linux Kernel SACK vulnerabilities have been fixed. This section describes the solution to these vulnerabilities.On June 18, 2019, Red Hat released a security notice, ",
@@ -95,26 +203,98 @@
 		"title":"Notice on Fixing Linux Kernel SACK Vulnerabilities",
 		"uri":"cce_bulletin_0206.html",
 		"doc_type":"usermanual2",
-		"p_code":"8",
-		"code":"11"
+		"p_code":"20",
+		"code":"23"
 	},
 	{
-		"desc":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Service Account Token Security Improvement",
-		"uri":"cce_10_0477.html",
-		"doc_type":"usermanual2",
-		"p_code":"3",
-		"code":"12"
-	},
-	{
-		"desc":"CCE works closely with multiple cloud services to support computing, storage, networking, and monitoring functions. When you log in to the CCE console for the first time,",
-		"product_code":"cce",
-		"title":"Obtaining Resource Permissions",
-		"uri":"cce_01_9994.html",
+		"title":"Getting Started",
+		"uri":"cce_qs_0000.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"13"
+		"code":"24"
+	},
+	{
+		"desc":"This section describes how to use Cloud Container Engine (CCE) and provides frequently asked questions (FAQs) to help you quickly get started with CCE.Complete the follow",
+		"product_code":"cce",
+		"title":"Introduction",
+		"uri":"cce_qs_0001.html",
+		"doc_type":"usermanual2",
+		"p_code":"24",
+		"code":"25"
+	},
+	{
+		"desc":"Before using CCE, you need to make the following preparations:Creating an IAM userObtaining Resource Permissions(Optional) Creating a VPC(Optional) Creating a Key PairIf ",
+		"product_code":"cce",
+		"title":"Preparations",
+		"uri":"cce_qs_0006.html",
+		"doc_type":"usermanual2",
+		"p_code":"24",
+		"code":"26"
+	},
+	{
+		"desc":"This section describes how to quickly create a CCE cluster. In this example, the default or simple configurations are in use.If you have not created a cluster, a wizard p",
+		"product_code":"cce",
+		"title":"Creating a Kubernetes Cluster",
+		"uri":"cce_qs_0008.html",
+		"doc_type":"usermanual2",
+		"p_code":"24",
+		"code":"27"
+	},
+	{
+		"desc":"You can use images to quickly create a single-pod workload that can be accessed from public networks. This section describes how to use CCE to quickly deploy an Nginx app",
+		"product_code":"cce",
+		"title":"Creating a Deployment (Nginx) from an Image",
+		"uri":"cce_qs_0003.html",
+		"doc_type":"usermanual2",
+		"p_code":"24",
+		"code":"28"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Deploying WordPress and MySQL That Depend on Each Other",
+		"uri":"cce_qs_0007.html",
+		"doc_type":"usermanual2",
+		"p_code":"24",
+		"code":"29"
+	},
+	{
+		"desc":"WordPress was originally a blog platform based on PHP and MySQL. It is gradually evolved into a content management system. You can set up your own blog website on any ser",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_qs_0009.html",
+		"doc_type":"usermanual2",
+		"p_code":"29",
+		"code":"30"
+	},
+	{
+		"desc":"WordPress must be used together with MySQL. WordPress runs the content management program while MySQL serves as a database to store data.The WordPress and MySQL images ha",
+		"product_code":"cce",
+		"title":"Step 1: Create a MySQL Workload",
+		"uri":"cce_qs_0004.html",
+		"doc_type":"usermanual2",
+		"p_code":"29",
+		"code":"31"
+	},
+	{
+		"desc":"WordPress was originally a blog platform based on PHP and MySQL. It is gradually evolved into a content management system. You can set up your own blog website on any ser",
+		"product_code":"cce",
+		"title":"Step 2: Create a WordPress Workload",
+		"uri":"cce_qs_0005.html",
+		"doc_type":"usermanual2",
+		"p_code":"29",
+		"code":"32"
+	},
+	{
+		"desc":"During service deployment or running, you may trigger high-risk operations at different levels, causing service faults or interruption. To help you better estimate and av",
+		"product_code":"cce",
+		"title":"High-Risk Operations and Solutions",
+		"uri":"cce_10_0054.html",
+		"doc_type":"usermanual2",
+		"p_code":"",
+		"code":"33"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -123,7 +303,7 @@
 		"uri":"cce_10_0091.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"14"
+		"code":"34"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -131,17 +311,17 @@
 		"title":"Cluster Overview",
 		"uri":"cce_10_0002.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"15"
+		"p_code":"34",
+		"code":"35"
 	},
 	{
-		"desc":"Kubernetes allows you to easily deploy and manage containerized application and facilitates container scheduling and orchestration.For developers, Kubernetes is a cluster",
+		"desc":"Kubernetes is an open source container orchestration engine for automating deployment, scaling, and management of containerized applications.For developers, Kubernetes is",
 		"product_code":"cce",
 		"title":"Basic Cluster Information",
 		"uri":"cce_10_0430.html",
 		"doc_type":"usermanual2",
-		"p_code":"15",
-		"code":"16"
+		"p_code":"35",
+		"code":"36"
 	},
 	{
 		"desc":"The following table lists the differences between CCE Turbo clusters and CCE clusters:The QingTian architecture consists of data plane (software-hardware synergy) and man",
@@ -149,8 +329,8 @@
 		"title":"CCE Turbo Clusters and CCE Clusters",
 		"uri":"cce_10_0342.html",
 		"doc_type":"usermanual2",
-		"p_code":"15",
-		"code":"17"
+		"p_code":"35",
+		"code":"37"
 	},
 	{
 		"desc":"kube-proxy is a key component of a Kubernetes cluster. It is responsible for load balancing and forwarding between a Service and its backend pod.CCE supports two forwardi",
@@ -158,8 +338,8 @@
 		"title":"Comparing iptables and IPVS",
 		"uri":"cce_10_0349.html",
 		"doc_type":"usermanual2",
-		"p_code":"15",
-		"code":"18"
+		"p_code":"35",
+		"code":"38"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -167,8 +347,8 @@
 		"title":"Release Notes",
 		"uri":"cce_10_0068.html",
 		"doc_type":"usermanual2",
-		"p_code":"15",
-		"code":"19"
+		"p_code":"35",
+		"code":"39"
 	},
 	{
 		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.25.Kubernetes 1",
@@ -176,8 +356,8 @@
 		"title":"CCE Kubernetes 1.25 Release Notes",
 		"uri":"cce_10_0467.html",
 		"doc_type":"usermanual2",
-		"p_code":"19",
-		"code":"20"
+		"p_code":"39",
+		"code":"40"
 	},
 	{
 		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.23.Changes in C",
@@ -185,8 +365,8 @@
 		"title":"CCE Kubernetes 1.23 Release Notes",
 		"uri":"cce_10_0468.html",
 		"doc_type":"usermanual2",
-		"p_code":"19",
-		"code":"21"
+		"p_code":"39",
+		"code":"41"
 	},
 	{
 		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.21.Kubernetes 1",
@@ -194,8 +374,8 @@
 		"title":"CCE Kubernetes 1.21 Release Notes",
 		"uri":"cce_10_0469.html",
 		"doc_type":"usermanual2",
-		"p_code":"19",
-		"code":"22"
+		"p_code":"39",
+		"code":"42"
 	},
 	{
 		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.19.Kubernetes 1",
@@ -203,8 +383,8 @@
 		"title":"CCE Kubernetes 1.19 Release Notes",
 		"uri":"cce_10_0470.html",
 		"doc_type":"usermanual2",
-		"p_code":"19",
-		"code":"23"
+		"p_code":"39",
+		"code":"43"
 	},
 	{
 		"desc":"CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.17.All resource",
@@ -212,8 +392,8 @@
 		"title":"CCE Kubernetes 1.17 Release Notes",
 		"uri":"cce_10_0471.html",
 		"doc_type":"usermanual2",
-		"p_code":"19",
-		"code":"24"
+		"p_code":"39",
+		"code":"44"
 	},
 	{
 		"desc":"CCE Turbo clusters run on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and inte",
@@ -221,8 +401,8 @@
 		"title":"Creating a CCE Turbo Cluster",
 		"uri":"cce_10_0298.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"25"
+		"p_code":"34",
+		"code":"45"
 	},
 	{
 		"desc":"On the CCE console, you can easily create Kubernetes clusters. Kubernetes can manage container clusters at scale. A cluster manages a group of node resources.In CCE, you ",
@@ -230,8 +410,8 @@
 		"title":"Creating a CCE Cluster",
 		"uri":"cce_10_0028.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"26"
+		"p_code":"34",
+		"code":"46"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -239,8 +419,8 @@
 		"title":"Using kubectl to Run a Cluster",
 		"uri":"cce_10_0140.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"27"
+		"p_code":"34",
+		"code":"47"
 	},
 	{
 		"desc":"This section uses a CCE cluster as an example to describe how to connect to a CCE cluster using kubectl.When you access a cluster using kubectl, CCE uses thekubeconfig.js",
@@ -248,8 +428,8 @@
 		"title":"Connecting to a Cluster Using kubectl",
 		"uri":"cce_10_0107.html",
 		"doc_type":"usermanual2",
-		"p_code":"27",
-		"code":"28"
+		"p_code":"47",
+		"code":"48"
 	},
 	{
 		"desc":"A Subject Alternative Name (SAN) can be signed in to a cluster server certificate. A SAN is usually used by the client to verify the server validity in TLS handshakes. Sp",
@@ -257,8 +437,8 @@
 		"title":"Customizing a Cluster Certificate SAN",
 		"uri":"cce_10_0367.html",
 		"doc_type":"usermanual2",
-		"p_code":"27",
-		"code":"29"
+		"p_code":"47",
+		"code":"49"
 	},
 	{
 		"desc":"getThe get command displays one or many resources of a cluster.This command prints a table of the most important information about all resources, including cluster nodes,",
@@ -266,8 +446,8 @@
 		"title":"Common kubectl Commands",
 		"uri":"cce_10_0139.html",
 		"doc_type":"usermanual2",
-		"p_code":"27",
-		"code":"30"
+		"p_code":"47",
+		"code":"50"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -275,8 +455,8 @@
 		"title":"Upgrading a Cluster",
 		"uri":"cce_10_0215.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"31"
+		"p_code":"34",
+		"code":"51"
 	},
 	{
 		"desc":"To enable interoperability from one Kubernetes installation to the next, you must upgrade your Kubernetes clusters before the maintenance period ends.After the latest Kub",
@@ -284,8 +464,8 @@
 		"title":"Upgrade Overview",
 		"uri":"cce_10_0197.html",
 		"doc_type":"usermanual2",
-		"p_code":"31",
-		"code":"32"
+		"p_code":"51",
+		"code":"52"
 	},
 	{
 		"desc":"Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see Upgrade Overview.Upgraded clu",
@@ -293,8 +473,80 @@
 		"title":"Before You Start",
 		"uri":"cce_10_0302.html",
 		"doc_type":"usermanual2",
-		"p_code":"31",
-		"code":"33"
+		"p_code":"51",
+		"code":"53"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Post-Upgrade Verification",
+		"uri":"cce_10_0560.html",
+		"doc_type":"usermanual2",
+		"p_code":"51",
+		"code":"54"
+	},
+	{
+		"desc":"After the cluster is upgraded, check whether the services are running normal.Different services have different verification mode. Select a suitable one and verify the ser",
+		"product_code":"cce",
+		"title":"Service Verification",
+		"uri":"cce_10_0561.html",
+		"doc_type":"usermanual2",
+		"p_code":"54",
+		"code":"55"
+	},
+	{
+		"desc":"Check whether unexpected pods exist in the cluster.Check whether there are pods restart unexpectedly in the cluster.Go to the CCE console and access the cluster console. ",
+		"product_code":"cce",
+		"title":"Pod Check",
+		"uri":"cce_10_0562.html",
+		"doc_type":"usermanual2",
+		"p_code":"54",
+		"code":"56"
+	},
+	{
+		"desc":"Check whether the nodes are running properly.Check whether the node network is normal.Check whether the container network is normal.The node status reflects whether the n",
+		"product_code":"cce",
+		"title":"Node and Container Network Check",
+		"uri":"cce_10_0563.html",
+		"doc_type":"usermanual2",
+		"p_code":"54",
+		"code":"57"
+	},
+	{
+		"desc":"Check whether the label is lost.Check whether there are unexpected taints.Go to the CCE console, access the cluster console, and choose Nodes in the navigation pane. On t",
+		"product_code":"cce",
+		"title":"Node Label and Taint Check",
+		"uri":"cce_10_0564.html",
+		"doc_type":"usermanual2",
+		"p_code":"54",
+		"code":"58"
+	},
+	{
+		"desc":"Check whether nodes can be created in the cluster.Go to the CCE console and access the cluster console. Choose Nodes in the navigation pane, and click Create Node.If node",
+		"product_code":"cce",
+		"title":"New Node Check",
+		"uri":"cce_10_0565.html",
+		"doc_type":"usermanual2",
+		"p_code":"54",
+		"code":"59"
+	},
+	{
+		"desc":"Check whether pods can be created on the existing nodes after the cluster is upgraded.Check whether pods can be created on new nodes after the cluster is upgraded.After c",
+		"product_code":"cce",
+		"title":"New Pod Check",
+		"uri":"cce_10_0566.html",
+		"doc_type":"usermanual2",
+		"p_code":"54",
+		"code":"60"
+	},
+	{
+		"desc":"After the cluster is upgraded, you need to reset the nodes that fail to be upgraded.Go back to the previous step or view the upgrade details on the upgrade history page t",
+		"product_code":"cce",
+		"title":"Node Skipping Check for Reset",
+		"uri":"cce_10_0567.html",
+		"doc_type":"usermanual2",
+		"p_code":"54",
+		"code":"61"
 	},
 	{
 		"desc":"You can upgrade your clusters to a newer Kubernetes version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgrade",
@@ -302,8 +554,8 @@
 		"title":"Performing Replace/Rolling Upgrade",
 		"uri":"cce_10_0120.html",
 		"doc_type":"usermanual2",
-		"p_code":"31",
-		"code":"34"
+		"p_code":"51",
+		"code":"62"
 	},
 	{
 		"desc":"You can upgrade your clusters to a newer version on the CCE console.Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what w",
@@ -311,8 +563,8 @@
 		"title":"Performing In-place Upgrade",
 		"uri":"cce_10_0301.html",
 		"doc_type":"usermanual2",
-		"p_code":"31",
-		"code":"35"
+		"p_code":"51",
+		"code":"63"
 	},
 	{
 		"desc":"This section describes how to migrate services from a cluster of an earlier version to a cluster of a later version in CCE.This operation is applicable when a cross-versi",
@@ -320,8 +572,395 @@
 		"title":"Migrating Services Across Clusters of Different Versions",
 		"uri":"cce_10_0210.html",
 		"doc_type":"usermanual2",
-		"p_code":"31",
-		"code":"36"
+		"p_code":"51",
+		"code":"64"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Troubleshooting for Pre-upgrade Check Exceptions",
+		"uri":"cce_10_0550.html",
+		"doc_type":"usermanual2",
+		"p_code":"51",
+		"code":"65"
+	},
+	{
+		"desc":"The system performs a comprehensive pre-upgrade check before the cluster upgrade. If the cluster does not meet the pre-upgrade check conditions, the upgrade cannot contin",
+		"product_code":"cce",
+		"title":"Performing Pre-upgrade Check",
+		"uri":"cce_10_0549.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"66"
+	},
+	{
+		"desc":"Check the following aspects:Check whether the node is available.Check whether the node OS supports the upgrade.Check whether there are unexpected node pool tags in the no",
+		"product_code":"cce",
+		"title":"Checking the Node",
+		"uri":"cce_10_0431.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"67"
+	},
+	{
+		"desc":"Check whether the current user is in the upgrade blocklist.CCE temporarily disables the cluster upgrade function due to the following reasons:The cluster is identified as",
+		"product_code":"cce",
+		"title":"Checking the Blocklist",
+		"uri":"cce_10_0432.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"68"
+	},
+	{
+		"desc":"Check the following aspects:Check whether the add-on status is normal.Check whether the add-on supports the target version.Scenario 1: The add-on status is abnormal.Log i",
+		"product_code":"cce",
+		"title":"Checking the Add-on",
+		"uri":"cce_10_0433.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"69"
+	},
+	{
+		"desc":"Check whether the current HelmRelease record contains discarded Kubernetes APIs that are not supported by the target cluster version. If yes, the Helm chart may be unavai",
+		"product_code":"cce",
+		"title":"Checking the Helm Chart",
+		"uri":"cce_10_0434.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"70"
+	},
+	{
+		"desc":"Check whether CCE can connect to your master nodes.Contact technical support.",
+		"product_code":"cce",
+		"title":"Checking the Master Node SSH Connectivity",
+		"uri":"cce_10_0435.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"71"
+	},
+	{
+		"desc":"Check the following aspects:Check the node status.Check whether the auto scaling function of the node pool is disabled.Scenario 1: The node pool status is abnormal.Log in",
+		"product_code":"cce",
+		"title":"Checking the Node Pool",
+		"uri":"cce_10_0436.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"72"
+	},
+	{
+		"desc":"Check whether the security group allows the master node to access nodes using ICMP.Log in to the VPC console, choose Access Control > Security Groups, and enter the targe",
+		"product_code":"cce",
+		"title":"Checking the Security Group",
+		"uri":"cce_10_0437.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"73"
+	},
+	{
+		"desc":"Check whether the node needs to be migrated.For the 1.15 cluster that is upgraded from 1.13 in rolling mode, you need to migrate (reset or create and replace) all nodes b",
+		"product_code":"cce",
+		"title":"To-Be-Migrated Node",
+		"uri":"cce_10_0439.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"74"
+	},
+	{
+		"desc":"Check whether there are discarded resources in the clusters.Scenario 1: The PodSecurityPolicy resource object has been discarded since clusters of v1.25.Run the kubectl g",
+		"product_code":"cce",
+		"title":"Discarded Kubernetes Resource",
+		"uri":"cce_10_0440.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"75"
+	},
+	{
+		"desc":"Read the version compatibility differences and ensure that they are not affected.The patch upgrade does not involve version compatibility differences.",
+		"product_code":"cce",
+		"title":"Compatibility Risk",
+		"uri":"cce_10_0441.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"76"
+	},
+	{
+		"desc":"Check whether cce-agent on the current node is of the latest version.If cce-agent is not of the latest version, the automatic update fails. This problem is usually caused",
+		"product_code":"cce",
+		"title":"Node CCEAgent Version",
+		"uri":"cce_10_0442.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"77"
+	},
+	{
+		"desc":"Check whether the CPU usage of the node exceeds 90%.Upgrade the cluster during off-peak hours.Check whether too many pods are deployed on the node. If yes, reschedule pod",
+		"product_code":"cce",
+		"title":"Node CPU Usage",
+		"uri":"cce_10_0443.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"78"
+	},
+	{
+		"desc":"Check the following aspects:Check whether the key CRD packageversions.version.cce.io of the cluster is deleted.Check whether the cluster key CRD network-attachment-defini",
+		"product_code":"cce",
+		"title":"CRD Check",
+		"uri":"cce_10_0444.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"79"
+	},
+	{
+		"desc":"Check the following aspects:Check whether the key data disks on the node meet the upgrade requirements.Check whether the /tmp directory has 500 MB available space.During ",
+		"product_code":"cce",
+		"title":"Node Disk",
+		"uri":"cce_10_0445.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"80"
+	},
+	{
+		"desc":"Check the following aspects:Check whether the DNS configuration of the current node can resolve the OBS address.Check whether the current node can access the OBS address ",
+		"product_code":"cce",
+		"title":"Node DNS",
+		"uri":"cce_10_0446.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"81"
+	},
+	{
+		"desc":"Check whether the key directory /var/paas on the nodes contain files with abnormal owners or owner groups.CCE uses the /var/paas directory to manage nodes and store file ",
+		"product_code":"cce",
+		"title":"Node Key Directory File Permissions",
+		"uri":"cce_10_0447.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"82"
+	},
+	{
+		"desc":"Check whether the kubelet on the node is running properly.Scenario 1: The kubelet status is abnormal.If the kubelet is abnormal, the node is unavailable. Restore the node",
+		"product_code":"cce",
+		"title":"Kubelet",
+		"uri":"cce_10_0448.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"83"
+	},
+	{
+		"desc":"Check whether the memory usage of the node exceeds 90%.Upgrade the cluster during off-peak hours.Check whether too many pods are deployed on the node. If yes, reschedule ",
+		"product_code":"cce",
+		"title":"Node Memory",
+		"uri":"cce_10_0449.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"84"
+	},
+	{
+		"desc":"Check whether the clock synchronization server ntpd or chronyd of the node is running properly.Scenario 1: ntpd is running abnormally.Log in to the node and run the syste",
+		"product_code":"cce",
+		"title":"Node Clock Synchronization Server",
+		"uri":"cce_10_0450.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"85"
+	},
+	{
+		"desc":"Check whether the OS kernel version of the node is supported by CCE.Running nodes depend on the initial standard kernel version when they are created. CCE has performed c",
+		"product_code":"cce",
+		"title":"Node OS",
+		"uri":"cce_10_0451.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"86"
+	},
+	{
+		"desc":"Check whether the number of CPUs on the master node is greater than 2.If the number of CPUs on the master node is 2, contact technical support to expand the number to 4 o",
+		"product_code":"cce",
+		"title":"Node CPU Count",
+		"uri":"cce_10_0452.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"87"
+	},
+	{
+		"desc":"Check whether the Python commands are available on a node.If the command output is not 0, the check fails.Install Python before the upgrade.",
+		"product_code":"cce",
+		"title":"Node Python Command",
+		"uri":"cce_10_0453.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"88"
+	},
+	{
+		"desc":"Check whether the nodes in the cluster are ready.Scenario 1: The nodes are in the unavailable status.Log in to the CCE console and access the cluster console. Choose Node",
+		"product_code":"cce",
+		"title":"Node Readiness",
+		"uri":"cce_10_0455.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"89"
+	},
+	{
+		"desc":"Check whether journald of a node is normal.Log in to the node and run the systemctl is-active systemd-journald command to query the running status of journald. If the com",
+		"product_code":"cce",
+		"title":"Node journald",
+		"uri":"cce_10_0456.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"90"
+	},
+	{
+		"desc":"Check whether the containerd.sock file exists on the node. This file affects the startup of container runtime in the Euler OS.Scenario: The Docker used by the node is the",
+		"product_code":"cce",
+		"title":"containerd.sock Check",
+		"uri":"cce_10_0457.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"91"
+	},
+	{
+		"desc":"Before the upgrade, check whether an internal error occurs.If this check fails, contact technical support.",
+		"product_code":"cce",
+		"title":"Internal Error",
+		"uri":"cce_10_0458.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"92"
+	},
+	{
+		"desc":"Check whether inaccessible mount points exist on the node.Scenario: There are inaccessible mount points on the node.If network NFS (such as OBS, SFS, and SFS) is used by ",
+		"product_code":"cce",
+		"title":"Node Mount Point",
+		"uri":"cce_10_0459.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"93"
+	},
+	{
+		"desc":"Check whether the taint, as shown in Table 1, exists on the node.Taint checklistNameImpactnode.kubernetes.io/upgradeNoScheduleScenario 1: The node is skipped during the c",
+		"product_code":"cce",
+		"title":"Kubernetes Node Taint",
+		"uri":"cce_10_0460.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"94"
+	},
+	{
+		"desc":"Check whether the current everest add-on has compatibility restrictions. See Table 1.The current everest add-on has compatibility restrictions and cannot be upgraded with",
+		"product_code":"cce",
+		"title":"everest Restriction Check",
+		"uri":"cce_10_0478.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"95"
+	},
+	{
+		"desc":"Check whether the current cce-controller-hpa add-on has compatibility restrictions.The current cce-controller-hpa add-on has compatibility restrictions. An add-on that ca",
+		"product_code":"cce",
+		"title":"cce-hpa-controller Restriction Check",
+		"uri":"cce_10_0479.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"96"
+	},
+	{
+		"desc":"Check whether the current cluster version and the target version support enhanced CPU policy.Scenario: The current cluster version uses the enhanced CPU management policy",
+		"product_code":"cce",
+		"title":"Enhanced CPU Management Policy",
+		"uri":"cce_10_0480.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"97"
+	},
+	{
+		"desc":"Check whether the container runtime and network components on the user node are healthy.If a component is abnormal, log in to the node to check the status of the abnormal",
+		"product_code":"cce",
+		"title":"User Node Components Health",
+		"uri":"cce_10_0484.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"98"
+	},
+	{
+		"desc":"Check whether the Kubernetes, container runtime, and network components of the controller node are healthy.If a component on the controller node is abnormal, contact tech",
+		"product_code":"cce",
+		"title":"Controller Node Components Health",
+		"uri":"cce_10_0485.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"99"
+	},
+	{
+		"desc":"Check whether the resources of Kubernetes components, such as etcd and kube-controller-manager, exceed the upper limit.Solution 1: Reducing Kubernetes resourcesSolution 2",
+		"product_code":"cce",
+		"title":"Memory Resource Limit of Kubernetes Components",
+		"uri":"cce_10_0486.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"100"
+	},
+	{
+		"desc":"The system scans the audit logs of the past day to check whether the user calls the deprecated APIs of the target Kubernetes version.Due to the limited time range of audi",
+		"product_code":"cce",
+		"title":"Checking Deprecated Kubernetes APIs",
+		"uri":"cce_10_0487.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"101"
+	},
+	{
+		"desc":"If IPv6 is enabled for a CCE Turbo cluster, check whether the target cluster version supports IPv6.CCE Turbo clusters support IPv6 since v1.23. This feature is available ",
+		"product_code":"cce",
+		"title":"IPv6 Capability of a CCE Turbo Cluster",
+		"uri":"cce_10_0488.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"102"
+	},
+	{
+		"desc":"Check whether NetworkManager of a node is normal.Log in to the node and run the systemctl is-active NetworkManager command to query the running status of NetworkManager. ",
+		"product_code":"cce",
+		"title":"Node NetworkManager",
+		"uri":"cce_10_0489.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"103"
+	},
+	{
+		"desc":"Check the ID file format.",
+		"product_code":"cce",
+		"title":"Node ID File",
+		"uri":"cce_10_0490.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"104"
+	},
+	{
+		"desc":"When you upgrade a CCE cluster to v1.19 or later, the system checks whether the following configuration files have been modified in the background:/opt/cloud/cce/kubernet",
+		"product_code":"cce",
+		"title":"Node Configuration Consistency",
+		"uri":"cce_10_0491.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"105"
+	},
+	{
+		"desc":"Check whether the configuration files of key components exist on the node.The following table lists the files to be checked.Contact technical support to restore the confi",
+		"product_code":"cce",
+		"title":"Node Configuration File",
+		"uri":"cce_10_0492.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"106"
+	},
+	{
+		"desc":"Check whether the current CoreDNS key configuration Corefile is different from the Helm Release record. The difference may be overwritten during the add-on upgrade, affec",
+		"product_code":"cce",
+		"title":"Checking CoreDNS Configuration Consistency",
+		"uri":"cce_10_0493.html",
+		"doc_type":"usermanual2",
+		"p_code":"65",
+		"code":"107"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -329,17 +968,17 @@
 		"title":"Managing a Cluster",
 		"uri":"cce_10_0031.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"37"
+		"p_code":"34",
+		"code":"108"
 	},
 	{
 		"desc":"CCE allows you to manage cluster parameters, through which you can let core components work under your very requirements.This function is supported only in clusters of v1",
 		"product_code":"cce",
-		"title":"Managing Cluster Components",
+		"title":"Cluster Configuration Management",
 		"uri":"cce_10_0213.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
-		"code":"38"
+		"p_code":"108",
+		"code":"109"
 	},
 	{
 		"desc":"This section describes how to delete a cluster.Deleting a cluster will delete the nodes in the cluster (excluding accepted nodes), data disks attached to the nodes, workl",
@@ -347,8 +986,8 @@
 		"title":"Deleting a Cluster",
 		"uri":"cce_10_0212.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
-		"code":"39"
+		"p_code":"108",
+		"code":"110"
 	},
 	{
 		"desc":"If you do not need to use a cluster temporarily, you are advised to hibernate the cluster.After a cluster is hibernated, resources such as workloads cannot be created or ",
@@ -356,8 +995,8 @@
 		"title":"Hibernating and Waking Up a Cluster",
 		"uri":"cce_10_0214.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
-		"code":"40"
+		"p_code":"108",
+		"code":"111"
 	},
 	{
 		"desc":"If overload control is enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.The c",
@@ -365,8 +1004,8 @@
 		"title":"Cluster Overload Control",
 		"uri":"cce_10_0602.html",
 		"doc_type":"usermanual2",
-		"p_code":"37",
-		"code":"41"
+		"p_code":"108",
+		"code":"112"
 	},
 	{
 		"desc":"This section describes how to obtain the cluster certificate from the console and use it to access Kubernetes clusters.The downloaded certificate contains three files: cl",
@@ -374,8 +1013,8 @@
 		"title":"Obtaining a Cluster Certificate",
 		"uri":"cce_10_0175.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"42"
+		"p_code":"34",
+		"code":"113"
 	},
 	{
 		"desc":"CCE allows you to change the number of nodes managed in a cluster.This function is supported for clusters of v1.15 and later versions.Starting from v1.15.11, the number o",
@@ -383,8 +1022,8 @@
 		"title":"Changing Cluster Scale",
 		"uri":"cce_10_0403.html",
 		"doc_type":"usermanual2",
-		"p_code":"14",
-		"code":"43"
+		"p_code":"34",
+		"code":"114"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -393,7 +1032,7 @@
 		"uri":"cce_10_0183.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"44"
+		"code":"115"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -401,8 +1040,8 @@
 		"title":"Node Overview",
 		"uri":"cce_10_0180.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"45"
+		"p_code":"115",
+		"code":"116"
 	},
 	{
 		"desc":"A container cluster consists of a set of worker machines, called nodes, that run containerized applications. A node can be a virtual machine (VM) or a physical machine (P",
@@ -410,8 +1049,8 @@
 		"title":"Precautions for Using a Node",
 		"uri":"cce_10_0461.html",
 		"doc_type":"usermanual2",
-		"p_code":"45",
-		"code":"46"
+		"p_code":"116",
+		"code":"117"
 	},
 	{
 		"desc":"Container engines, one of the most important components of Kubernetes, manage the lifecycle of images and containers. The kubelet interacts with a container runtime throu",
@@ -419,8 +1058,8 @@
 		"title":"Container Engine",
 		"uri":"cce_10_0462.html",
 		"doc_type":"usermanual2",
-		"p_code":"45",
-		"code":"47"
+		"p_code":"116",
+		"code":"118"
 	},
 	{
 		"desc":"The most significant difference is that each Kata container (pod) runs on an independent micro-VM, has an independent OS kernel, and is securely isolated at the virtualiz",
@@ -428,8 +1067,8 @@
 		"title":"Kata Containers and Common Containers",
 		"uri":"cce_10_0463.html",
 		"doc_type":"usermanual2",
-		"p_code":"45",
-		"code":"48"
+		"p_code":"116",
+		"code":"119"
 	},
 	{
 		"desc":"The maximum number of pods that can be created on a node is determined by the following parameters:Number of container IP addresses that can be allocated on a node (alpha",
@@ -437,8 +1076,8 @@
 		"title":"Maximum Number of Pods That Can Be Created on a Node",
 		"uri":"cce_10_0348.html",
 		"doc_type":"usermanual2",
-		"p_code":"45",
-		"code":"49"
+		"p_code":"116",
+		"code":"120"
 	},
 	{
 		"desc":"Some of the resources on the node need to run some necessary Kubernetes system components and resources to make the node as part of your cluster. Therefore, the total num",
@@ -446,8 +1085,8 @@
 		"title":"Formula for Calculating the Reserved Resources of a Node",
 		"uri":"cce_10_0178.html",
 		"doc_type":"usermanual2",
-		"p_code":"45",
-		"code":"50"
+		"p_code":"116",
+		"code":"121"
 	},
 	{
 		"desc":"This section describes how to allocate data disk space.When creating a node, you need to configure a data disk whose capacity is greater than or equal to 100GB for the no",
@@ -455,8 +1094,8 @@
 		"title":"Data Disk Space Allocation",
 		"uri":"cce_10_0341.html",
 		"doc_type":"usermanual2",
-		"p_code":"45",
-		"code":"51"
+		"p_code":"116",
+		"code":"122"
 	},
 	{
 		"desc":"At least one cluster has been created.A key pair has been created for identity authentication upon remote node login.The node has 2-core or higher CPU, 4 GB or larger mem",
@@ -464,8 +1103,8 @@
 		"title":"Creating a Node",
 		"uri":"cce_10_0363.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"52"
+		"p_code":"115",
+		"code":"123"
 	},
 	{
 		"desc":"In CCE, you can Creating a Node or add existing nodes (ECSs) into your cluster.While an ECS is being accepted into a cluster, the operating system of the ECS will be rese",
@@ -473,8 +1112,8 @@
 		"title":"Adding Nodes for Management",
 		"uri":"cce_10_0198.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"53"
+		"p_code":"115",
+		"code":"124"
 	},
 	{
 		"desc":"Removing a node from a cluster will re-install the node OS and clear CCE components on the node.Removing a node will not delete the server corresponding to the node. You ",
@@ -482,8 +1121,8 @@
 		"title":"Removing a Node",
 		"uri":"cce_10_0338.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"54"
+		"p_code":"115",
+		"code":"125"
 	},
 	{
 		"desc":"You can reset a node to modify the node configuration, such as the node OS and login mode.Resetting a node will reinstall the node OS and the Kubernetes software on the n",
@@ -491,8 +1130,8 @@
 		"title":"Resetting a Node",
 		"uri":"cce_10_0003.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"55"
+		"p_code":"115",
+		"code":"126"
 	},
 	{
 		"desc":"If you use SSH to log in to a node (an ECS), ensure that the ECS already has an EIP (a public IP address).Only login to a running ECS is allowed.Only the user linux can l",
@@ -500,8 +1139,8 @@
 		"title":"Logging In to a Node",
 		"uri":"cce_10_0185.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"56"
+		"p_code":"115",
+		"code":"127"
 	},
 	{
 		"desc":"You can add different labels to nodes and define different attributes for labels. By using these node labels, you can quickly understand the characteristics of each node.",
@@ -509,8 +1148,8 @@
 		"title":"Managing Node Labels",
 		"uri":"cce_10_0004.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"57"
+		"p_code":"115",
+		"code":"128"
 	},
 	{
 		"desc":"Taints enable a node to repel specific pods to prevent these pods from being scheduled to the node.A taint is a key-value pair associated with an effect. The following ef",
@@ -518,8 +1157,8 @@
 		"title":"Managing Node Taints",
 		"uri":"cce_10_0352.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"58"
+		"p_code":"115",
+		"code":"129"
 	},
 	{
 		"desc":"Each node in a cluster is a cloud server or physical machine. After a cluster node is created, you can change the cloud server name or specifications as required.Some inf",
@@ -527,17 +1166,17 @@
 		"title":"Synchronizing Data with Cloud Servers",
 		"uri":"cce_10_0184.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"59"
+		"p_code":"115",
+		"code":"130"
 	},
 	{
-		"desc":"When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.After a CCE cluster is deleted",
+		"desc":"When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.VM nodes that are being used b",
 		"product_code":"cce",
 		"title":"Deleting a Node",
 		"uri":"cce_10_0186.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"60"
+		"p_code":"115",
+		"code":"131"
 	},
 	{
 		"desc":"After a node in the cluster is stopped, services on the node are also stopped. Before stopping a node, ensure that discontinuity of the services on the node will not resu",
@@ -545,8 +1184,8 @@
 		"title":"Stopping a Node",
 		"uri":"cce_10_0036.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"61"
+		"p_code":"115",
+		"code":"132"
 	},
 	{
 		"desc":"In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. Figure 1 shows the migration process.The o",
@@ -554,8 +1193,8 @@
 		"title":"Performing Rolling Upgrade for Nodes",
 		"uri":"cce_10_0276.html",
 		"doc_type":"usermanual2",
-		"p_code":"44",
-		"code":"62"
+		"p_code":"115",
+		"code":"133"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -564,7 +1203,7 @@
 		"uri":"cce_10_0035.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"63"
+		"code":"134"
 	},
 	{
 		"desc":"CCE introduces node pools to help you better manage nodes in Kubernetes clusters. A node pool contains one node or a group of nodes with identical configuration in a clus",
@@ -572,8 +1211,8 @@
 		"title":"Node Pool Overview",
 		"uri":"cce_10_0081.html",
 		"doc_type":"usermanual2",
-		"p_code":"63",
-		"code":"64"
+		"p_code":"134",
+		"code":"135"
 	},
 	{
 		"desc":"This section describes how to create a node pool and perform operations on the node pool. For details about how a node pool works, see Node Pool Overview.The autoscaler a",
@@ -581,17 +1220,80 @@
 		"title":"Creating a Node Pool",
 		"uri":"cce_10_0012.html",
 		"doc_type":"usermanual2",
-		"p_code":"63",
-		"code":"65"
+		"p_code":"134",
+		"code":"136"
 	},
 	{
-		"desc":"The default node pool DefaultPool does not support the following management operations.CCE allows you to highly customize Kubernetes parameter settings on core components",
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
 		"title":"Managing a Node Pool",
 		"uri":"cce_10_0222.html",
 		"doc_type":"usermanual2",
-		"p_code":"63",
-		"code":"66"
+		"p_code":"134",
+		"code":"137"
+	},
+	{
+		"desc":"The default node pool DefaultPool does not support the following management operations.CCE allows you to highly customize Kubernetes parameter settings on core components",
+		"product_code":"cce",
+		"title":"Configuring a Node Pool",
+		"uri":"cce_10_0652.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"138"
+	},
+	{
+		"desc":"When editing the resource tags of the node pool. The modified configuration takes effect only for new nodes. To synchronize the configuration to the existing nodes, you n",
+		"product_code":"cce",
+		"title":"Updating a Node Pool",
+		"uri":"cce_10_0653.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"139"
+	},
+	{
+		"desc":"After the configuration of a node pool is updated, some configurations cannot be automatically synchronized for existing nodes. You can manually synchronize configuration",
+		"product_code":"cce",
+		"title":"Synchronizing Node Pools",
+		"uri":"cce_10_0654.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"140"
+	},
+	{
+		"desc":"When CCE releases a new OS image, existing nodes cannot be automatically upgraded. You can manually upgrade them in batches.This operation will upgrade the OS by resettin",
+		"product_code":"cce",
+		"title":"Upgrading the OS",
+		"uri":"cce_10_0660.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"141"
+	},
+	{
+		"desc":"You can copy the configuration of an existing node pool to create a new node pool on the CCE console.",
+		"product_code":"cce",
+		"title":"Copying a Node Pool",
+		"uri":"cce_10_0655.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"142"
+	},
+	{
+		"desc":"Nodes in a node pool can be migrated. Currently, nodes in a node pool can be migrated only to the default node pool (defaultpool) in the same cluster.The migration has no",
+		"product_code":"cce",
+		"title":"Migrating a Node",
+		"uri":"cce_10_0656.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"143"
+	},
+	{
+		"desc":"Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools.Deleting a node pool will de",
+		"product_code":"cce",
+		"title":"Deleting a Node Pool",
+		"uri":"cce_10_0657.html",
+		"doc_type":"usermanual2",
+		"p_code":"137",
+		"code":"144"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -600,7 +1302,7 @@
 		"uri":"cce_10_0046.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"67"
+		"code":"145"
 	},
 	{
 		"desc":"A workload is an application running on Kubernetes. No matter how many components are there in your workload, you can run it in a group of Kubernetes pods. A workload is ",
@@ -608,8 +1310,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0006.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"68"
+		"p_code":"145",
+		"code":"146"
 	},
 	{
 		"desc":"Deployments are workloads (for example, Nginx) that do not store any data or status. You can create Deployments on the CCE console or by running kubectl commands.Before c",
@@ -617,8 +1319,8 @@
 		"title":"Creating a Deployment",
 		"uri":"cce_10_0047.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"69"
+		"p_code":"145",
+		"code":"147"
 	},
 	{
 		"desc":"StatefulSets are a type of workloads whose data or status is stored while they are running. For example, MySQL is a StatefulSet because it needs to store new data.A conta",
@@ -626,8 +1328,8 @@
 		"title":"Creating a StatefulSet",
 		"uri":"cce_10_0048.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"70"
+		"p_code":"145",
+		"code":"148"
 	},
 	{
 		"desc":"CCE provides deployment and management capabilities for multiple types of containers and supports features of container workloads, including creation, configuration, moni",
@@ -635,8 +1337,8 @@
 		"title":"Creating a DaemonSet",
 		"uri":"cce_10_0216.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"71"
+		"p_code":"145",
+		"code":"149"
 	},
 	{
 		"desc":"Jobs are short-lived and run for a certain time to completion. They can be executed immediately after being deployed. It is completed after it exits normally (exit 0).A j",
@@ -644,8 +1346,8 @@
 		"title":"Creating a Job",
 		"uri":"cce_10_0150.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"72"
+		"p_code":"145",
+		"code":"150"
 	},
 	{
 		"desc":"A cron job runs on a repeating schedule. You can perform time synchronization for all active nodes at a fixed time point.A cron job runs periodically at the specified tim",
@@ -653,8 +1355,8 @@
 		"title":"Creating a Cron Job",
 		"uri":"cce_10_0151.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"73"
+		"p_code":"145",
+		"code":"151"
 	},
 	{
 		"desc":"After a workload is created, you can upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.Workload/Job managementOperationDescriptionMonitor",
@@ -662,8 +1364,8 @@
 		"title":"Managing Workloads and Jobs",
 		"uri":"cce_10_0007.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"74"
+		"p_code":"145",
+		"code":"152"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -671,8 +1373,8 @@
 		"title":"Configuring a Container",
 		"uri":"cce_10_0130.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"75"
+		"p_code":"145",
+		"code":"153"
 	},
 	{
 		"desc":"A workload is an abstract model of a group of pods. One pod can encapsulate one or more containers. You can click Add Container in the upper right corner to add multiple ",
@@ -680,8 +1382,8 @@
 		"title":"Setting Basic Container Information",
 		"uri":"cce_10_0396.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"76"
+		"p_code":"153",
+		"code":"154"
 	},
 	{
 		"desc":"CCE allows you to create workloads using images pulled from third-party image repositories.Generally, a third-party image repository can be accessed only after authentica",
@@ -689,8 +1391,8 @@
 		"title":"Using a Third-Party Image",
 		"uri":"cce_10_0009.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"77"
+		"p_code":"153",
+		"code":"155"
 	},
 	{
 		"desc":"CCE allows you to set resource limits for added containers during workload creation. You can apply for and limit the CPU and memory quotas used by each pod in a workload.",
@@ -698,8 +1400,8 @@
 		"title":"Setting Container Specifications",
 		"uri":"cce_10_0163.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"78"
+		"p_code":"153",
+		"code":"156"
 	},
 	{
 		"desc":"CCE provides callback functions for the lifecycle management of containerized applications. For example, if you want a container to perform a certain operation before sto",
@@ -707,8 +1409,8 @@
 		"title":"Setting Container Lifecycle Parameters",
 		"uri":"cce_10_0105.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"79"
+		"p_code":"153",
+		"code":"157"
 	},
 	{
 		"desc":"Health check regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect application ex",
@@ -716,8 +1418,8 @@
 		"title":"Setting Health Check for a Container",
 		"uri":"cce_10_0112.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"80"
+		"p_code":"153",
+		"code":"158"
 	},
 	{
 		"desc":"An environment variable is a variable whose value can affect the way a running container will behave. You can modify environment variables even after workloads are deploy",
@@ -725,8 +1427,8 @@
 		"title":"Setting an Environment Variable",
 		"uri":"cce_10_0113.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"81"
+		"p_code":"153",
+		"code":"159"
 	},
 	{
 		"desc":"When a workload is created, the container image is pulled from the image repository to the node. The image is also pulled when the workload is restarted or upgraded.By de",
@@ -734,8 +1436,8 @@
 		"title":"Configuring an Image Pull Policy",
 		"uri":"cce_10_0353.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"82"
+		"p_code":"153",
+		"code":"160"
 	},
 	{
 		"desc":"When creating a workload, you can configure containers to use the same time zone as the node. You can enable time zone synchronization when creating a workload.The time z",
@@ -743,8 +1445,8 @@
 		"title":"Configuring Time Zone Synchronization",
 		"uri":"cce_10_0354.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"83"
+		"p_code":"153",
+		"code":"161"
 	},
 	{
 		"desc":"In actual applications, upgrade is a common operation. A Deployment, StatefulSet, or DaemonSet can easily support application upgrade.You can set different upgrade polici",
@@ -752,8 +1454,8 @@
 		"title":"Configuring the Workload Upgrade Policy",
 		"uri":"cce_10_0397.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"84"
+		"p_code":"153",
+		"code":"162"
 	},
 	{
 		"desc":"A nodeSelector provides a very simple way to constrain pods to nodes with particular labels, as mentioned in Creating a DaemonSet. The affinity and anti-affinity feature ",
@@ -761,8 +1463,8 @@
 		"title":"Scheduling Policy (Affinity/Anti-affinity)",
 		"uri":"cce_10_0232.html",
 		"doc_type":"usermanual2",
-		"p_code":"75",
-		"code":"85"
+		"p_code":"153",
+		"code":"163"
 	},
 	{
 		"desc":"You can use GPUs in CCE containers.A GPU node has been created. For details, see Creating a Node.The gpu-beta add-on has been installed. During the installation, select t",
@@ -770,8 +1472,8 @@
 		"title":"GPU Scheduling",
 		"uri":"cce_10_0345.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"86"
+		"p_code":"145",
+		"code":"164"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -779,8 +1481,8 @@
 		"title":"CPU Core Binding",
 		"uri":"cce_10_0551.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"87"
+		"p_code":"145",
+		"code":"165"
 	},
 	{
 		"desc":"By default, kubelet uses CFS quotas to enforce pod CPU limits. When the node runs many CPU-bound pods, the workload can move to different CPU cores depending on whether t",
@@ -788,8 +1490,17 @@
 		"title":"Binding CPU Cores",
 		"uri":"cce_10_0351.html",
 		"doc_type":"usermanual2",
-		"p_code":"87",
-		"code":"88"
+		"p_code":"165",
+		"code":"166"
+	},
+	{
+		"desc":"If you encounter unexpected problems when using a container, you can log in to the container for debugging.The example output is as follows:NAME                          ",
+		"product_code":"cce",
+		"title":"Accessing a Container",
+		"uri":"cce_10_00356.html",
+		"doc_type":"usermanual2",
+		"p_code":"145",
+		"code":"167"
 	},
 	{
 		"desc":"CCE allows you to add annotations to a YAML file to realize some advanced pod functions. The following table describes the annotations you can add.When you create a workl",
@@ -797,8 +1508,8 @@
 		"title":"Pod Labels and Annotations",
 		"uri":"cce_10_0386.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"89"
+		"p_code":"145",
+		"code":"168"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -806,8 +1517,8 @@
 		"title":"Volcano Scheduling",
 		"uri":"cce_10_0423.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"90"
+		"p_code":"145",
+		"code":"169"
 	},
 	{
 		"desc":"Jobs can be classified into online jobs and offline jobs based on whether services are always online.Online job: Such jobs run for a long time, with regular traffic surge",
@@ -815,8 +1526,8 @@
 		"title":"Hybrid Deployment of Online and Offline Jobs",
 		"uri":"cce_10_0384.html",
 		"doc_type":"usermanual2",
-		"p_code":"90",
-		"code":"91"
+		"p_code":"169",
+		"code":"170"
 	},
 	{
 		"desc":"When the Cloud Native Network 2.0 model is used, pods use VPC ENIs or sub-ENIs for networking. You can directly bind security groups and EIPs to pods. CCE provides a cust",
@@ -824,8 +1535,8 @@
 		"title":"Security Group Policies",
 		"uri":"cce_10_0288.html",
 		"doc_type":"usermanual2",
-		"p_code":"67",
-		"code":"92"
+		"p_code":"145",
+		"code":"171"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -834,7 +1545,7 @@
 		"uri":"cce_10_0020.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"93"
+		"code":"172"
 	},
 	{
 		"desc":"You can learn about a cluster network from the following two aspects:What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are ru",
@@ -842,8 +1553,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0010.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"94"
+		"p_code":"172",
+		"code":"173"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -851,17 +1562,17 @@
 		"title":"Container Network Models",
 		"uri":"cce_10_0280.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"95"
+		"p_code":"172",
+		"code":"174"
 	},
 	{
-		"desc":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Tun",
+		"desc":"The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:Con",
 		"product_code":"cce",
 		"title":"Overview",
 		"uri":"cce_10_0281.html",
 		"doc_type":"usermanual2",
-		"p_code":"95",
-		"code":"96"
+		"p_code":"174",
+		"code":"175"
 	},
 	{
 		"desc":"The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet pac",
@@ -869,8 +1580,8 @@
 		"title":"Container Tunnel Network",
 		"uri":"cce_10_0282.html",
 		"doc_type":"usermanual2",
-		"p_code":"95",
-		"code":"97"
+		"p_code":"174",
+		"code":"176"
 	},
 	{
 		"desc":"The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes",
@@ -878,8 +1589,8 @@
 		"title":"VPC Network",
 		"uri":"cce_10_0283.html",
 		"doc_type":"usermanual2",
-		"p_code":"95",
-		"code":"98"
+		"p_code":"174",
+		"code":"177"
 	},
 	{
 		"desc":"Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are all",
@@ -887,8 +1598,8 @@
 		"title":"Cloud Native Network 2.0",
 		"uri":"cce_10_0284.html",
 		"doc_type":"usermanual2",
-		"p_code":"95",
-		"code":"99"
+		"p_code":"174",
+		"code":"178"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -896,8 +1607,8 @@
 		"title":"Services",
 		"uri":"cce_10_0247.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"100"
+		"p_code":"172",
+		"code":"179"
 	},
 	{
 		"desc":"After a pod is created, the following problems may occur if you directly access the pod:The pod can be deleted and recreated at any time by a controller such as a Deploym",
@@ -905,8 +1616,8 @@
 		"title":"Service Overview",
 		"uri":"cce_10_0249.html",
 		"doc_type":"usermanual2",
-		"p_code":"100",
-		"code":"101"
+		"p_code":"179",
+		"code":"180"
 	},
 	{
 		"desc":"ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.The cluster-internal domain name format is <Service",
@@ -914,8 +1625,8 @@
 		"title":"Intra-Cluster Access (ClusterIP)",
 		"uri":"cce_10_0011.html",
 		"doc_type":"usermanual2",
-		"p_code":"100",
-		"code":"102"
+		"p_code":"179",
+		"code":"181"
 	},
 	{
 		"desc":"A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By re",
@@ -923,8 +1634,8 @@
 		"title":"NodePort",
 		"uri":"cce_10_0142.html",
 		"doc_type":"usermanual2",
-		"p_code":"100",
-		"code":"103"
+		"p_code":"179",
+		"code":"182"
 	},
 	{
 		"desc":"A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.The LoadBalancer access address is in the format of <I",
@@ -932,8 +1643,8 @@
 		"title":"LoadBalancer",
 		"uri":"cce_10_0014.html",
 		"doc_type":"usermanual2",
-		"p_code":"100",
-		"code":"104"
+		"p_code":"179",
+		"code":"183"
 	},
 	{
 		"desc":"The preceding types of Services allow internal and external pod access, but not the following scenarios:Accessing all pods at the same timePods in a Service accessing eac",
@@ -941,8 +1652,8 @@
 		"title":"Headless Service",
 		"uri":"cce_10_0398.html",
 		"doc_type":"usermanual2",
-		"p_code":"100",
-		"code":"105"
+		"p_code":"179",
+		"code":"184"
 	},
 	{
 		"desc":"CCE allows you to add annotations to a YAML file to realize some advanced Service functions. The following table describes the annotations you can add.The annotations of ",
@@ -950,8 +1661,17 @@
 		"title":"Service Annotations",
 		"uri":"cce_10_0385.html",
 		"doc_type":"usermanual2",
-		"p_code":"100",
-		"code":"106"
+		"p_code":"179",
+		"code":"185"
+	},
+	{
+		"desc":"The annotation field related to the health check of the LoadBalancer Service is upgraded from Kubernetes.io/elb.health-check-option to Kubernetes.io/elb.health-check-opti",
+		"product_code":"cce",
+		"title":"Configuring Health Check for Multiple Ports",
+		"uri":"cce_10_0684.html",
+		"doc_type":"usermanual2",
+		"p_code":"179",
+		"code":"186"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -959,8 +1679,8 @@
 		"title":"Ingresses",
 		"uri":"cce_10_0248.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"107"
+		"p_code":"172",
+		"code":"187"
 	},
 	{
 		"desc":"A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a l",
@@ -968,8 +1688,8 @@
 		"title":"Ingress Overview",
 		"uri":"cce_10_0094.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"108"
+		"p_code":"187",
+		"code":"188"
 	},
 	{
 		"desc":"An ingress provides network access for backend workloads. Ensure that a workload is available in a cluster. If no workload is available, deploy a workload by referring to",
@@ -977,8 +1697,8 @@
 		"title":"Using ELB Ingresses on the Console",
 		"uri":"cce_10_0251.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"109"
+		"p_code":"187",
+		"code":"189"
 	},
 	{
 		"desc":"This section uses an Nginx workload as an example to describe how to create an ELB ingress using kubectl.If no load balancer is available in the same VPC, CCE can automat",
@@ -986,8 +1706,8 @@
 		"title":"Using kubectl to Create an ELB Ingress",
 		"uri":"cce_10_0252.html",
 		"doc_type":"usermanual2",
-		"p_code":"107",
-		"code":"110"
+		"p_code":"187",
+		"code":"190"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -995,8 +1715,8 @@
 		"title":"DNS",
 		"uri":"cce_10_0359.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"111"
+		"p_code":"172",
+		"code":"191"
 	},
 	{
 		"desc":"When you create a cluster, the coredns add-on is installed to resolve domain names in the cluster.You can view the pod of the coredns add-on in the kube-system namespace.",
@@ -1004,8 +1724,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0360.html",
 		"doc_type":"usermanual2",
-		"p_code":"111",
-		"code":"112"
+		"p_code":"191",
+		"code":"192"
 	},
 	{
 		"desc":"Every Kubernetes cluster has a built-in DNS add-on (Kube-DNS or CoreDNS) to provide domain name resolution for workloads in the cluster. When handling a high concurrency ",
@@ -1013,8 +1733,8 @@
 		"title":"DNS Configuration",
 		"uri":"cce_10_0365.html",
 		"doc_type":"usermanual2",
-		"p_code":"111",
-		"code":"113"
+		"p_code":"191",
+		"code":"193"
 	},
 	{
 		"desc":"When using CCE, you may need to resolve custom internal domain names in the following scenarios:In the legacy code, a fixed domain name is configured for calling other in",
@@ -1022,8 +1742,8 @@
 		"title":"Using CoreDNS for Custom Domain Name Resolution",
 		"uri":"cce_10_0361.html",
 		"doc_type":"usermanual2",
-		"p_code":"111",
-		"code":"114"
+		"p_code":"191",
+		"code":"194"
 	},
 	{
 		"desc":"This section describes how to access an intranet from a container (outside the cluster in a VPC), including intra-VPC access and cross-VPC access.The performance of acces",
@@ -1031,8 +1751,8 @@
 		"title":"Configuring Intra-VPC Access",
 		"uri":"cce_10_0399.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"115"
+		"p_code":"172",
+		"code":"195"
 	},
 	{
 		"desc":"Containers can access public networks in either of the following ways:Bind a public IP address to the node where the container is located if the network model is VPC netw",
@@ -1040,17 +1760,17 @@
 		"title":"Accessing Public Networks from a Container",
 		"uri":"cce_10_0400.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"116"
+		"p_code":"172",
+		"code":"196"
 	},
 	{
-		"desc":"NetworkPolicy is a Kubernetes object used to restrict pod access. In CCE, by setting network policies, you can define ingress rules specifying the addresses to access pod",
+		"desc":"Network policies are designed by Kubernetes to restrict pod access. It is equivalent to a firewall at the application layer to enhance network security. The capabilities ",
 		"product_code":"cce",
 		"title":"Network Policies",
 		"uri":"cce_10_0059.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"117"
+		"p_code":"172",
+		"code":"197"
 	},
 	{
 		"desc":"Kubernetes allows pods to directly use the host/node network.Add hostNetwork: true to the pod definition.The configuration succeeds if the pod IP is the same as the node ",
@@ -1058,8 +1778,8 @@
 		"title":"Host Network",
 		"uri":"cce_10_0402.html",
 		"doc_type":"usermanual2",
-		"p_code":"93",
-		"code":"118"
+		"p_code":"172",
+		"code":"198"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1068,7 +1788,7 @@
 		"uri":"cce_10_0374.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"119"
+		"code":"199"
 	},
 	{
 		"desc":"On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The",
@@ -1076,8 +1796,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0307.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"120"
+		"p_code":"199",
+		"code":"200"
 	},
 	{
 		"desc":"You can mount a file directory of the host where a container is located to a specified container path (the hostPath mode in Kubernetes) for persistent data storage. Alter",
@@ -1085,8 +1805,8 @@
 		"title":"Using Local Disks as Storage Volumes",
 		"uri":"cce_10_0377.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"121"
+		"p_code":"199",
+		"code":"201"
 	},
 	{
 		"desc":"A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource.On the new CCE console (the cluster needs to be upgraded to v1.19.10 or",
@@ -1094,8 +1814,8 @@
 		"title":"PersistentVolumes (PVs)",
 		"uri":"cce_10_0379.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"122"
+		"p_code":"199",
+		"code":"202"
 	},
 	{
 		"desc":"A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are",
@@ -1103,8 +1823,8 @@
 		"title":"PersistentVolumeClaims (PVCs)",
 		"uri":"cce_10_0378.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"123"
+		"p_code":"199",
+		"code":"203"
 	},
 	{
 		"desc":"StorageClass describes the storage class used in the cluster. You need to specify StorageClass when creating a PVC or PV. As of now, CCE provides storage classes such as ",
@@ -1112,8 +1832,8 @@
 		"title":"StorageClass",
 		"uri":"cce_10_0380.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"124"
+		"p_code":"199",
+		"code":"204"
 	},
 	{
 		"desc":"CCE works with EVS to support snapshots. A snapshot is a complete copy or image of EVS disk data at a certain point of time, which can be used for data DR.You can create ",
@@ -1121,8 +1841,8 @@
 		"title":"Snapshots and Backups",
 		"uri":"cce_10_0381.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"125"
+		"p_code":"199",
+		"code":"205"
 	},
 	{
 		"desc":"You can solve this issue by using Everest 1.2.8 and later versions to use custom access keys for different IAM users.The everest add-on version must be 1.2.8 or later.The",
@@ -1130,8 +1850,8 @@
 		"title":"Using a Custom AK/SK to Mount an OBS Volume",
 		"uri":"cce_10_0336.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"126"
+		"p_code":"199",
+		"code":"206"
 	},
 	{
 		"desc":"You can mount cloud storage volumes to your containers and use these volumes as local directories.This section describes how to set mount options when mounting SFS and OB",
@@ -1139,8 +1859,8 @@
 		"title":"Setting Mount Options",
 		"uri":"cce_10_0337.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"127"
+		"p_code":"199",
+		"code":"207"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1148,8 +1868,8 @@
 		"title":"Deployment Examples",
 		"uri":"cce_10_0393.html",
 		"doc_type":"usermanual2",
-		"p_code":"119",
-		"code":"128"
+		"p_code":"199",
+		"code":"208"
 	},
 	{
 		"desc":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
@@ -1157,44 +1877,44 @@
 		"title":"Creating a Deployment Mounted with an EVS Volume",
 		"uri":"cce_10_0257.html",
 		"doc_type":"usermanual2",
-		"p_code":"128",
-		"code":"129"
+		"p_code":"208",
+		"code":"209"
 	},
 	{
-		"desc":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
+		"desc":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.You have created a cluster and installed the CSI plug-in (everest) in the cluste",
 		"product_code":"cce",
 		"title":"Creating a Deployment Mounted with an OBS Volume",
 		"uri":"cce_10_0269.html",
 		"doc_type":"usermanual2",
-		"p_code":"128",
-		"code":"130"
+		"p_code":"208",
+		"code":"210"
 	},
 	{
-		"desc":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.You have created a CCE cluster and installed the CSI plug-in (everest) in the cluster.T",
+		"desc":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.You have created a cluster and installed the CSI plug-in (everest) in the cluster.The f",
 		"product_code":"cce",
 		"title":"Creating a StatefulSet Mounted with an OBS Volume",
 		"uri":"cce_10_0268.html",
 		"doc_type":"usermanual2",
-		"p_code":"128",
-		"code":"131"
+		"p_code":"208",
+		"code":"211"
 	},
 	{
-		"desc":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a CCE cluster and installed the CSI plug-in (everest) in the cl",
+		"desc":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.You have created a cluster and installed the CSI plug-in (everest) in the cluste",
 		"product_code":"cce",
 		"title":"Creating a Deployment Mounted with an SFS Volume",
 		"uri":"cce_10_0263.html",
 		"doc_type":"usermanual2",
-		"p_code":"128",
-		"code":"132"
+		"p_code":"208",
+		"code":"212"
 	},
 	{
-		"desc":"CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).You have created a CCE cluster and installed the CSI plug-in (everest) in the cluste",
+		"desc":"CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).You have created a cluster and installed the CSI plug-in (everest) in the cluster.Th",
 		"product_code":"cce",
 		"title":"Creating a StatefulSet Mounted with an SFS Volume",
 		"uri":"cce_10_0262.html",
 		"doc_type":"usermanual2",
-		"p_code":"128",
-		"code":"133"
+		"p_code":"208",
+		"code":"213"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1203,7 +1923,7 @@
 		"uri":"cce_10_0110.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"134"
+		"code":"214"
 	},
 	{
 		"desc":"CCE works with AOM to comprehensively monitor clusters. When a node is created, the ICAgent (the DaemonSet named icagent in the kube-system namespace of the cluster) of A",
@@ -1211,8 +1931,8 @@
 		"title":"Monitoring Overview",
 		"uri":"cce_10_0182.html",
 		"doc_type":"usermanual2",
-		"p_code":"134",
-		"code":"135"
+		"p_code":"214",
+		"code":"215"
 	},
 	{
 		"desc":"CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and th",
@@ -1220,8 +1940,8 @@
 		"title":"Custom Monitoring",
 		"uri":"cce_10_0201.html",
 		"doc_type":"usermanual2",
-		"p_code":"134",
-		"code":"136"
+		"p_code":"214",
+		"code":"216"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1230,7 +1950,7 @@
 		"uri":"cce_10_0553.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"137"
+		"code":"217"
 	},
 	{
 		"desc":"CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.Using ICAgent:By default, th",
@@ -1238,8 +1958,8 @@
 		"title":"Log Management Overview",
 		"uri":"cce_10_0557.html",
 		"doc_type":"usermanual2",
-		"p_code":"137",
-		"code":"138"
+		"p_code":"217",
+		"code":"218"
 	},
 	{
 		"desc":"CCE works with AOM to collect workload logs. When creating a node, CCE installs the ICAgent for you (the DaemonSet named icagent in the kube-system namespace of the clust",
@@ -1247,8 +1967,8 @@
 		"title":"Using ICAgent to Collect Container Logs",
 		"uri":"cce_10_0018.html",
 		"doc_type":"usermanual2",
-		"p_code":"137",
-		"code":"139"
+		"p_code":"217",
+		"code":"219"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1257,7 +1977,7 @@
 		"uri":"cce_10_0030.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"140"
+		"code":"220"
 	},
 	{
 		"desc":"A namespace is a collection of resources and objects. Multiple namespaces can be created inside a cluster and isolated from each other. This enables namespaces to share t",
@@ -1265,8 +1985,8 @@
 		"title":"Creating a Namespace",
 		"uri":"cce_10_0278.html",
 		"doc_type":"usermanual2",
-		"p_code":"140",
-		"code":"141"
+		"p_code":"220",
+		"code":"221"
 	},
 	{
 		"desc":"When creating a workload, you can select a namespace to isolate resources or users.When querying workloads, you can select a namespace to view all workloads in the namesp",
@@ -1274,8 +1994,8 @@
 		"title":"Managing Namespaces",
 		"uri":"cce_10_0285.html",
 		"doc_type":"usermanual2",
-		"p_code":"140",
-		"code":"142"
+		"p_code":"220",
+		"code":"222"
 	},
 	{
 		"desc":"Namespace-level resource quotas limit the amount of resources available to teams or users when these teams or users use the same cluster. The quotas include the total num",
@@ -1283,17 +2003,17 @@
 		"title":"Setting a Resource Quota",
 		"uri":"cce_10_0287.html",
 		"doc_type":"usermanual2",
-		"p_code":"140",
-		"code":"143"
+		"p_code":"220",
+		"code":"223"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Configuration Center",
+		"title":"ConfigMaps and Secrets",
 		"uri":"cce_10_0045.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"144"
+		"code":"224"
 	},
 	{
 		"desc":"A ConfigMap is a type of resource that stores configuration information required by a workload. Its content is user-defined. After creating ConfigMaps, you can use them a",
@@ -1301,8 +2021,8 @@
 		"title":"Creating a ConfigMap",
 		"uri":"cce_10_0152.html",
 		"doc_type":"usermanual2",
-		"p_code":"144",
-		"code":"145"
+		"p_code":"224",
+		"code":"225"
 	},
 	{
 		"desc":"After a ConfigMap is created, it can be used in three workload scenarios: environment variables, command line parameters, and data volumes.",
@@ -1310,8 +2030,8 @@
 		"title":"Using a ConfigMap",
 		"uri":"cce_10_0015.html",
 		"doc_type":"usermanual2",
-		"p_code":"144",
-		"code":"146"
+		"p_code":"224",
+		"code":"226"
 	},
 	{
 		"desc":"A secret is a type of resource that holds sensitive data, such as authentication and key information. Its content is user-defined. After creating secrets, you can use the",
@@ -1319,8 +2039,8 @@
 		"title":"Creating a Secret",
 		"uri":"cce_10_0153.html",
 		"doc_type":"usermanual2",
-		"p_code":"144",
-		"code":"147"
+		"p_code":"224",
+		"code":"227"
 	},
 	{
 		"desc":"After secrets are created, they can be mounted as data volumes or be exposed as environment variables to be used by a container in a pod.",
@@ -1328,8 +2048,8 @@
 		"title":"Using a Secret",
 		"uri":"cce_10_0016.html",
 		"doc_type":"usermanual2",
-		"p_code":"144",
-		"code":"148"
+		"p_code":"224",
+		"code":"228"
 	},
 	{
 		"desc":"By default, CCE creates the following secrets in each namespace:default-secretpaas.elbdefault-token-xxxxx (xxxxx is a random number.)The functions of these secrets are de",
@@ -1337,8 +2057,8 @@
 		"title":"Cluster Secrets",
 		"uri":"cce_10_0388.html",
 		"doc_type":"usermanual2",
-		"p_code":"144",
-		"code":"149"
+		"p_code":"224",
+		"code":"229"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1347,7 +2067,7 @@
 		"uri":"cce_10_0207.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"150"
+		"code":"230"
 	},
 	{
 		"desc":"Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.More and more applicati",
@@ -1355,8 +2075,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0279.html",
 		"doc_type":"usermanual2",
-		"p_code":"150",
-		"code":"151"
+		"p_code":"230",
+		"code":"231"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1364,8 +2084,8 @@
 		"title":"Scaling a Workload",
 		"uri":"cce_10_0293.html",
 		"doc_type":"usermanual2",
-		"p_code":"150",
-		"code":"152"
+		"p_code":"230",
+		"code":"232"
 	},
 	{
 		"desc":"HPA is a controller that controls horizontal pod scaling. HPA periodically checks the pod metrics, calculates the number of replicas required to meet the target values co",
@@ -1373,8 +2093,8 @@
 		"title":"Workload Scaling Mechanisms",
 		"uri":"cce_10_0290.html",
 		"doc_type":"usermanual2",
-		"p_code":"152",
-		"code":"153"
+		"p_code":"232",
+		"code":"233"
 	},
 	{
 		"desc":"Horizontal Pod Autoscaling (HPA) in Kubernetes implements horizontal scaling of pods. In a CCE HPA policy, you can configure different cooldown time windows and scaling t",
@@ -1382,8 +2102,8 @@
 		"title":"Creating an HPA Policy for Workload Auto Scaling",
 		"uri":"cce_10_0208.html",
 		"doc_type":"usermanual2",
-		"p_code":"152",
-		"code":"154"
+		"p_code":"232",
+		"code":"234"
 	},
 	{
 		"desc":"After an HPA policy is created, you can update, clone, edit, and delete the policy, as well as edit the YAML file.You can view the rules, status, and events of an HPA pol",
@@ -1391,8 +2111,8 @@
 		"title":"Managing Workload Scaling Policies",
 		"uri":"cce_10_0083.html",
 		"doc_type":"usermanual2",
-		"p_code":"152",
-		"code":"155"
+		"p_code":"232",
+		"code":"235"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1400,8 +2120,8 @@
 		"title":"Scaling a Node",
 		"uri":"cce_10_0291.html",
 		"doc_type":"usermanual2",
-		"p_code":"150",
-		"code":"156"
+		"p_code":"230",
+		"code":"236"
 	},
 	{
 		"desc":"Kubernetes HPA is designed for pods. However, if the cluster resources are insufficient, you can only add nodes. Scaling of cluster nodes could be laborious. Now with clo",
@@ -1409,8 +2129,8 @@
 		"title":"Node Scaling Mechanisms",
 		"uri":"cce_10_0296.html",
 		"doc_type":"usermanual2",
-		"p_code":"156",
-		"code":"157"
+		"p_code":"236",
+		"code":"237"
 	},
 	{
 		"desc":"CCE provides auto scaling through the autoscaler add-on. Nodes with different specifications can be automatically added across AZs on demand.If a node scaling policy and ",
@@ -1418,8 +2138,8 @@
 		"title":"Creating a Node Scaling Policy",
 		"uri":"cce_10_0209.html",
 		"doc_type":"usermanual2",
-		"p_code":"156",
-		"code":"158"
+		"p_code":"236",
+		"code":"238"
 	},
 	{
 		"desc":"After a node scaling policy is created, you can delete, edit, disable, enable, or clone the policy.You can view the associated node pool, rules, and scaling history of a ",
@@ -1427,8 +2147,8 @@
 		"title":"Managing Node Scaling Policies",
 		"uri":"cce_10_0063.html",
 		"doc_type":"usermanual2",
-		"p_code":"156",
-		"code":"159"
+		"p_code":"236",
+		"code":"239"
 	},
 	{
 		"desc":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
@@ -1436,8 +2156,8 @@
 		"title":"Using HPA and CA for Auto Scaling of Workloads and Nodes",
 		"uri":"cce_10_0300.html",
 		"doc_type":"usermanual2",
-		"p_code":"150",
-		"code":"160"
+		"p_code":"230",
+		"code":"240"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1446,16 +2166,16 @@
 		"uri":"cce_10_0064.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"161"
+		"code":"241"
 	},
 	{
-		"desc":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.",
+		"desc":"CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.CCE uses Helm templates to deploy ad",
 		"product_code":"cce",
 		"title":"Overview",
 		"uri":"cce_10_0277.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"162"
+		"p_code":"241",
+		"code":"242"
 	},
 	{
 		"desc":"The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.coredns i",
@@ -1463,8 +2183,8 @@
 		"title":"coredns (System Resource Add-On, Mandatory)",
 		"uri":"cce_10_0129.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"163"
+		"p_code":"241",
+		"code":"243"
 	},
 	{
 		"desc":"storage-driver functions as a standard Kubernetes FlexVolume plug-in to allow containers to use EVS, SFS, OBS, and SFS Turbo storage resources. By installing and upgradin",
@@ -1472,8 +2192,8 @@
 		"title":"storage-driver (System Resource Add-On, Discarded)",
 		"uri":"cce_10_0127.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"164"
+		"p_code":"241",
+		"code":"244"
 	},
 	{
 		"desc":"Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage",
@@ -1481,8 +2201,8 @@
 		"title":"everest (System Resource Add-On, Mandatory)",
 		"uri":"cce_10_0066.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"165"
+		"p_code":"241",
+		"code":"245"
 	},
 	{
 		"desc":"node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon runnin",
@@ -1490,8 +2210,8 @@
 		"title":"npd",
 		"uri":"cce_10_0132.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"166"
+		"p_code":"241",
+		"code":"246"
 	},
 	{
 		"desc":"Autoscaler is an important Kubernetes controller. It supports microservice scaling and is key to serverless design.When the CPU or memory usage of a microservice is too h",
@@ -1499,8 +2219,8 @@
 		"title":"autoscaler",
 		"uri":"cce_10_0154.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"167"
+		"p_code":"241",
+		"code":"247"
 	},
 	{
 		"desc":"From version 1.8 onwards, Kubernetes provides resource usage metrics, such as the container CPU and memory usage, through the Metrics API. These metrics can be directly a",
@@ -1508,8 +2228,8 @@
 		"title":"metrics-server",
 		"uri":"cce_10_0205.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"168"
+		"p_code":"241",
+		"code":"248"
 	},
 	{
 		"desc":"gpu-beta is a device management add-on that supports GPUs in containers. If GPU nodes are used in the cluster, the gpu-beta add-on must be installed.The driver to be down",
@@ -1517,8 +2237,8 @@
 		"title":"gpu-beta",
 		"uri":"cce_10_0141.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"169"
+		"p_code":"241",
+		"code":"249"
 	},
 	{
 		"desc":"Volcano is a batch processing platform based on Kubernetes. It provides a series of features required by machine learning, deep learning, bioinformatics, genomics, and ot",
@@ -1526,8 +2246,8 @@
 		"title":"volcano",
 		"uri":"cce_10_0193.html",
 		"doc_type":"usermanual2",
-		"p_code":"161",
-		"code":"170"
+		"p_code":"241",
+		"code":"250"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1536,7 +2256,7 @@
 		"uri":"cce_10_0019.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"171"
+		"code":"251"
 	},
 	{
 		"desc":"CCE provides a console for managing Helm charts, helping you easily deploy applications using the charts and manage applications on the console.Helm is a package manager ",
@@ -1544,8 +2264,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0191.html",
 		"doc_type":"usermanual2",
-		"p_code":"171",
-		"code":"172"
+		"p_code":"251",
+		"code":"252"
 	},
 	{
 		"desc":"On the CCE console, you can upload a Helm chart package, deploy it, and manage the deployed pods.The number of charts that can be uploaded by a single user is limited. Th",
@@ -1553,8 +2273,8 @@
 		"title":"Deploying an Application from a Chart",
 		"uri":"cce_10_0146.html",
 		"doc_type":"usermanual2",
-		"p_code":"171",
-		"code":"173"
+		"p_code":"251",
+		"code":"253"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1563,7 +2283,7 @@
 		"uri":"cce_10_0164.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"174"
+		"code":"254"
 	},
 	{
 		"desc":"CCE permissions management allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Ma",
@@ -1571,8 +2291,8 @@
 		"title":"Permissions Overview",
 		"uri":"cce_10_0187.html",
 		"doc_type":"usermanual2",
-		"p_code":"174",
-		"code":"175"
+		"p_code":"254",
+		"code":"255"
 	},
 	{
 		"desc":"CCE cluster-level permissions are assigned based on IAM system policies and custom policies. You can use user groups to assign permissions to IAM users.Cluster permission",
@@ -1580,8 +2300,8 @@
 		"title":"Cluster Permissions (IAM-based)",
 		"uri":"cce_10_0188.html",
 		"doc_type":"usermanual2",
-		"p_code":"174",
-		"code":"176"
+		"p_code":"254",
+		"code":"256"
 	},
 	{
 		"desc":"You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kub",
@@ -1589,8 +2309,8 @@
 		"title":"Namespace Permissions (Kubernetes RBAC-based)",
 		"uri":"cce_10_0189.html",
 		"doc_type":"usermanual2",
-		"p_code":"174",
-		"code":"177"
+		"p_code":"254",
+		"code":"257"
 	},
 	{
 		"desc":"The conventional distributed task scheduling mode is being replaced by Kubernetes. CCE allows you to easily deploy, manage, and scale containerized applications in the cl",
@@ -1598,8 +2318,8 @@
 		"title":"Example: Designing and Configuring Permissions for Users in a Department",
 		"uri":"cce_10_0245.html",
 		"doc_type":"usermanual2",
-		"p_code":"174",
-		"code":"178"
+		"p_code":"254",
+		"code":"258"
 	},
 	{
 		"desc":"Some CCE permissions policies depend on the policies of other cloud services. To view or use other cloud resources on the CCE console, you need to enable the system polic",
@@ -1607,8 +2327,8 @@
 		"title":"Permission Dependency of the CCE Console",
 		"uri":"cce_10_0190.html",
 		"doc_type":"usermanual2",
-		"p_code":"174",
-		"code":"179"
+		"p_code":"254",
+		"code":"259"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1616,8 +2336,8 @@
 		"title":"Pod Security",
 		"uri":"cce_10_0465.html",
 		"doc_type":"usermanual2",
-		"p_code":"174",
-		"code":"180"
+		"p_code":"254",
+		"code":"260"
 	},
 	{
 		"desc":"A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The PodSecurityPolicy object in Kubernetes defi",
@@ -1625,8 +2345,8 @@
 		"title":"Configuring a Pod Security Policy",
 		"uri":"cce_10_0275.html",
 		"doc_type":"usermanual2",
-		"p_code":"180",
-		"code":"181"
+		"p_code":"260",
+		"code":"261"
 	},
 	{
 		"desc":"Before using Pod Security Admission, you need to understand Kubernetes Pod Security Standards. These standards define different isolation levels for pods. They let you de",
@@ -1634,17 +2354,17 @@
 		"title":"Configuring Pod Security Admission",
 		"uri":"cce_10_0466.html",
 		"doc_type":"usermanual2",
-		"p_code":"180",
-		"code":"182"
+		"p_code":"260",
+		"code":"262"
 	},
 	{
 		"desc":"In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no lo",
 		"product_code":"cce",
 		"title":"Service Account Token Security Improvement",
-		"uri":"cce_10_0477_0.html",
+		"uri":"cce_10_0477.html",
 		"doc_type":"usermanual2",
-		"p_code":"174",
-		"code":"183"
+		"p_code":"254",
+		"code":"263"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1653,7 +2373,7 @@
 		"uri":"cce_10_0024.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"184"
+		"code":"264"
 	},
 	{
 		"desc":"Cloud Trace Service (CTS) records operations on cloud service resources, allowing users to query, audit, and backtrack the resource operation requests initiated from the ",
@@ -1661,8 +2381,8 @@
 		"title":"CCE Operations Supported by CTS",
 		"uri":"cce_10_0025.html",
 		"doc_type":"usermanual2",
-		"p_code":"184",
-		"code":"185"
+		"p_code":"264",
+		"code":"265"
 	},
 	{
 		"desc":"After you enable CTS, the system starts recording operations on CCE resources. Operation records of the last 7 days can be viewed on the CTS management console.Trace Sour",
@@ -1670,17 +2390,17 @@
 		"title":"Querying CTS Logs",
 		"uri":"cce_10_0026.html",
 		"doc_type":"usermanual2",
-		"p_code":"184",
-		"code":"186"
+		"p_code":"264",
+		"code":"266"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
 		"product_code":"cce",
-		"title":"Storage (FlexVolume)",
+		"title":"Storage Management: FlexVolume (Deprecated)",
 		"uri":"cce_10_0305.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"187"
+		"code":"267"
 	},
 	{
 		"desc":"In container storage, you can use different types of volumes and mount them to containers in pods as many as you want.In CCE, container storage is backed both by Kubernet",
@@ -1688,8 +2408,8 @@
 		"title":"FlexVolume Overview",
 		"uri":"cce_10_0306.html",
 		"doc_type":"usermanual2",
-		"p_code":"187",
-		"code":"188"
+		"p_code":"267",
+		"code":"268"
 	},
 	{
 		"desc":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
@@ -1697,8 +2417,8 @@
 		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
 		"uri":"cce_10_0343.html",
 		"doc_type":"usermanual2",
-		"p_code":"187",
-		"code":"189"
+		"p_code":"267",
+		"code":"269"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1706,8 +2426,8 @@
 		"title":"Using EVS Disks as Storage Volumes",
 		"uri":"cce_10_0309.html",
 		"doc_type":"usermanual2",
-		"p_code":"187",
-		"code":"190"
+		"p_code":"267",
+		"code":"270"
 	},
 	{
 		"desc":"To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is",
@@ -1715,8 +2435,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0310.html",
 		"doc_type":"usermanual2",
-		"p_code":"190",
-		"code":"191"
+		"p_code":"270",
+		"code":"271"
 	},
 	{
 		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-evs-auto-example.yamlvi pvc-evs-auto-example.yamlExample YAML file for clu",
@@ -1724,8 +2444,8 @@
 		"title":"(kubectl) Automatically Creating an EVS Disk",
 		"uri":"cce_10_0312.html",
 		"doc_type":"usermanual2",
-		"p_code":"190",
-		"code":"192"
+		"p_code":"270",
+		"code":"272"
 	},
 	{
 		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-evs-example.yaml pvc-evs-example.yamlClusters from v1.11.7 to v1.13Example ",
@@ -1733,8 +2453,8 @@
 		"title":"(kubectl) Creating a PV from an Existing EVS Disk",
 		"uri":"cce_10_0313.html",
 		"doc_type":"usermanual2",
-		"p_code":"190",
-		"code":"193"
+		"p_code":"270",
+		"code":"273"
 	},
 	{
 		"desc":"After an EVS volume is created or imported to CCE, you can mount it to a workload.EVS disks cannot be attached across AZs. Before mounting a volume, you can run the kubec",
@@ -1742,8 +2462,8 @@
 		"title":"(kubectl) Creating a Pod Mounted with an EVS Volume",
 		"uri":"cce_10_0314.html",
 		"doc_type":"usermanual2",
-		"p_code":"190",
-		"code":"194"
+		"p_code":"270",
+		"code":"274"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1751,8 +2471,8 @@
 		"title":"Using SFS Turbo File Systems as Storage Volumes",
 		"uri":"cce_10_0329.html",
 		"doc_type":"usermanual2",
-		"p_code":"187",
-		"code":"195"
+		"p_code":"267",
+		"code":"275"
 	},
 	{
 		"desc":"CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable fo",
@@ -1760,8 +2480,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0330.html",
 		"doc_type":"usermanual2",
-		"p_code":"195",
-		"code":"196"
+		"p_code":"275",
+		"code":"276"
 	},
 	{
 		"desc":"CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) ",
@@ -1769,8 +2489,8 @@
 		"title":"(kubectl) Creating a PV from an Existing SFS Turbo File System",
 		"uri":"cce_10_0332.html",
 		"doc_type":"usermanual2",
-		"p_code":"195",
-		"code":"197"
+		"p_code":"275",
+		"code":"277"
 	},
 	{
 		"desc":"After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13",
@@ -1778,8 +2498,8 @@
 		"title":"(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume",
 		"uri":"cce_10_0333.html",
 		"doc_type":"usermanual2",
-		"p_code":"195",
-		"code":"198"
+		"p_code":"275",
+		"code":"278"
 	},
 	{
 		"desc":"CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch efs",
@@ -1787,8 +2507,8 @@
 		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume",
 		"uri":"cce_10_0334.html",
 		"doc_type":"usermanual2",
-		"p_code":"195",
-		"code":"199"
+		"p_code":"275",
+		"code":"279"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1796,8 +2516,8 @@
 		"title":"Using OBS Buckets as Storage Volumes",
 		"uri":"cce_10_0322.html",
 		"doc_type":"usermanual2",
-		"p_code":"187",
-		"code":"200"
+		"p_code":"267",
+		"code":"280"
 	},
 	{
 		"desc":"CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud w",
@@ -1805,8 +2525,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0323.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"201"
+		"p_code":"280",
+		"code":"281"
 	},
 	{
 		"desc":"During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, whic",
@@ -1814,8 +2534,8 @@
 		"title":"(kubectl) Automatically Creating an OBS Volume",
 		"uri":"cce_10_0325.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"202"
+		"p_code":"280",
+		"code":"282"
 	},
 	{
 		"desc":"CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.The following configura",
@@ -1823,8 +2543,8 @@
 		"title":"(kubectl) Creating a PV from an Existing OBS Bucket",
 		"uri":"cce_10_0326.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"203"
+		"p_code":"280",
+		"code":"283"
 	},
 	{
 		"desc":"After an OBS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
@@ -1832,8 +2552,8 @@
 		"title":"(kubectl) Creating a Deployment Mounted with an OBS Volume",
 		"uri":"cce_10_0327.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"204"
+		"p_code":"280",
+		"code":"284"
 	},
 	{
 		"desc":"CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
@@ -1841,8 +2561,8 @@
 		"title":"(kubectl) Creating a StatefulSet Mounted with an OBS Volume",
 		"uri":"cce_10_0328.html",
 		"doc_type":"usermanual2",
-		"p_code":"200",
-		"code":"205"
+		"p_code":"280",
+		"code":"285"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1850,8 +2570,8 @@
 		"title":"Using SFS File Systems as Storage Volumes",
 		"uri":"cce_10_0315.html",
 		"doc_type":"usermanual2",
-		"p_code":"187",
-		"code":"206"
+		"p_code":"267",
+		"code":"286"
 	},
 	{
 		"desc":"CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWr",
@@ -1859,8 +2579,8 @@
 		"title":"Overview",
 		"uri":"cce_10_0316.html",
 		"doc_type":"usermanual2",
-		"p_code":"206",
-		"code":"207"
+		"p_code":"286",
+		"code":"287"
 	},
 	{
 		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pvc-sfs-auto-example.yamlvi pvc-sfs-auto-example.yamlExample YAML file:apiVers",
@@ -1868,8 +2588,8 @@
 		"title":"(kubectl) Automatically Creating an SFS Volume",
 		"uri":"cce_10_0318.html",
 		"doc_type":"usermanual2",
-		"p_code":"206",
-		"code":"208"
+		"p_code":"286",
+		"code":"288"
 	},
 	{
 		"desc":"The following configuration example applies to clusters of Kubernetes 1.13 or earlier.touch pv-sfs-example.yaml pvc-sfs-example.yamlClusters from v1.11 to v1.13Example YA",
@@ -1877,8 +2597,8 @@
 		"title":"(kubectl) Creating a PV from an Existing SFS File System",
 		"uri":"cce_10_0319.html",
 		"doc_type":"usermanual2",
-		"p_code":"206",
-		"code":"209"
+		"p_code":"286",
+		"code":"289"
 	},
 	{
 		"desc":"After an SFS volume is created or imported to CCE, you can mount the volume to a workload.The following configuration example applies to clusters of Kubernetes 1.13 or ea",
@@ -1886,8 +2606,8 @@
 		"title":"(kubectl) Creating a Deployment Mounted with an SFS Volume",
 		"uri":"cce_10_0320.html",
 		"doc_type":"usermanual2",
-		"p_code":"206",
-		"code":"210"
+		"p_code":"286",
+		"code":"290"
 	},
 	{
 		"desc":"CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).The following configuration example applies to clusters of Kube",
@@ -1895,8 +2615,8 @@
 		"title":"(kubectl) Creating a StatefulSet Mounted with an SFS Volume",
 		"uri":"cce_10_0321.html",
 		"doc_type":"usermanual2",
-		"p_code":"206",
-		"code":"211"
+		"p_code":"286",
+		"code":"291"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1905,7 +2625,7 @@
 		"uri":"cce_faq_0083.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"212"
+		"code":"292"
 	},
 	{
 		"desc":"When a node is added, EIP is set to Automatically assign. The node cannot be created, and a message indicating that EIPs are insufficient is displayed.Two methods are ava",
@@ -1913,8 +2633,8 @@
 		"title":"How Do I Troubleshoot Insufficient EIPs When a Node Is Added?",
 		"uri":"cce_01_0203.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"213"
+		"p_code":"292",
+		"code":"293"
 	},
 	{
 		"desc":"Before using command line injection, write a script that can format data disks and save it to your OBS bucket. Then, inject a command line that will automatically execute",
@@ -1922,8 +2642,8 @@
 		"title":"How Do I Format a Data Disk Using Command Line Injection?",
 		"uri":"cce_01_0204.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"214"
+		"p_code":"292",
+		"code":"294"
 	},
 	{
 		"desc":"After a cluster of v1.13.10 is created, you can use heapster only after rbac is enabled.kubectl delete clusterrole system:heapsterCopy the following file to a server on w",
@@ -1931,8 +2651,8 @@
 		"title":"How Do I Use heapster in Clusters of v1.13.10?",
 		"uri":"cce_01_0999.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"215"
+		"p_code":"292",
+		"code":"295"
 	},
 	{
 		"desc":"Currently, private CCE clusters use Device Mapper as the Docker storage driver.Device Mapper is developed based on the kernel framework and supports many advanced volume ",
@@ -1940,8 +2660,8 @@
 		"title":"How Do I Change the Mode of the Docker Device Mapper?",
 		"uri":"cce_faq_00096.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"216"
+		"p_code":"292",
+		"code":"296"
 	},
 	{
 		"desc":"If the cluster status is available but some nodes in the cluster are unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Node Is ",
@@ -1949,8 +2669,8 @@
 		"title":"What Can I Do If My Cluster Status Is Available but the Node Status Is Unavailable?",
 		"uri":"cce_faq_00120.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"217"
+		"p_code":"292",
+		"code":"297"
 	},
 	{
 		"desc":"If the cluster is Unavailable, perform the following operations to rectify the fault:Check Item 1: Whether the Security Group Is ModifiedCheck Item 2: Whether the DHCP Fu",
@@ -1958,8 +2678,8 @@
 		"title":"How Do I Rectify the Fault When the Cluster Status Is Unavailable?",
 		"uri":"cce_faq_00039.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"218"
+		"p_code":"292",
+		"code":"298"
 	},
 	{
 		"desc":"This section uses the Nginx workload as an example to describe how to set the workload access type to LoadBalancer (ELB).An ELB has been created.You have connected an Ela",
@@ -1967,8 +2687,8 @@
 		"title":"How Do I Use kubectl to Set the Workload Access Type to LoadBalancer (ELB)?",
 		"uri":"cce_faq_00099.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"219"
+		"p_code":"292",
+		"code":"299"
 	},
 	{
 		"desc":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).Before using this feature, write a script that can format data disks and save it to ",
@@ -1976,8 +2696,8 @@
 		"title":"How Do I Add a Second Data Disk to a Node in a CCE Cluster?",
 		"uri":"cce_faq_00190.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"220"
+		"p_code":"292",
+		"code":"300"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -1985,8 +2705,8 @@
 		"title":"Workload Abnormalities",
 		"uri":"cce_faq_00029.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"221"
+		"p_code":"292",
+		"code":"301"
 	},
 	{
 		"desc":"If a workload is running improperly, you can view events to determine the cause.On the CCE console, choose Workloads > Deployments or StatefulSets in the navigation pane ",
@@ -1994,8 +2714,8 @@
 		"title":"Fault Locating and Troubleshooting for Abnormal Workloads",
 		"uri":"cce_faq_00134.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"222"
+		"p_code":"301",
+		"code":"302"
 	},
 	{
 		"desc":"Viewing K8s Event InformationCheck Item 1: Checking Whether a Node Is Available in the ClusterCheck Item 2: Checking Whether Node Resources (CPU and Memory) Are Sufficien",
@@ -2003,8 +2723,8 @@
 		"title":"Failed to Schedule an Instance",
 		"uri":"cce_faq_00098.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"223"
+		"p_code":"301",
+		"code":"303"
 	},
 	{
 		"desc":"If the workload details page displays an event indicating that image pulling fails, perform the following operations to locate the fault:Check Item 1: Checking Whether im",
@@ -2012,8 +2732,8 @@
 		"title":"Failed to Pull an Image",
 		"uri":"cce_faq_00015.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"224"
+		"p_code":"301",
+		"code":"304"
 	},
 	{
 		"desc":"On the details page of a workload, if an event is displayed indicating that the container fails to be restarted, perform the following operations to locate the fault:Rect",
@@ -2021,8 +2741,8 @@
 		"title":"Failed to Restart a Container",
 		"uri":"cce_faq_00018.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"225"
+		"p_code":"301",
+		"code":"305"
 	},
 	{
 		"desc":"Pod actions are classified into the following two types:kube-controller-manager periodically checks the status of all nodes. If a node is in the NotReady state for a peri",
@@ -2030,8 +2750,8 @@
 		"title":"What Should I Do If An Evicted Pod Exists?",
 		"uri":"cce_faq_00209.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"226"
+		"p_code":"301",
+		"code":"306"
 	},
 	{
 		"desc":"When a node is faulty, pods on the node are evicted to ensure workload availability. If the pods are not evicted when the node is faulty, perform the following steps:Use ",
@@ -2039,8 +2759,8 @@
 		"title":"Instance Eviction Exception",
 		"uri":"cce_faq_00140.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"227"
+		"p_code":"301",
+		"code":"307"
 	},
 	{
 		"desc":"When a node is in the Unavailable state, CCE migrates container pods on the node and sets the pods running on the node to the Terminating state.After the node is restored",
@@ -2048,8 +2768,8 @@
 		"title":"What Should I Do If Pods in the Terminating State Cannot Be Deleted?",
 		"uri":"cce_faq_00210.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"228"
+		"p_code":"301",
+		"code":"308"
 	},
 	{
 		"desc":"The metadata.enable field in the YAML file of the workload is false. As a result, the pod of the workload is deleted and the workload is in the stopped status.The workloa",
@@ -2057,8 +2777,8 @@
 		"title":"What Should I Do If a Workload Is Stopped Caused by Pod Deletion?",
 		"uri":"cce_faq_00012.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"229"
+		"p_code":"301",
+		"code":"309"
 	},
 	{
 		"desc":"The pod remains in the creating state for a long time, and the sandbox-related errors are reported.Select a troubleshooting method for your cluster:Clusters of V1.13 or l",
@@ -2066,8 +2786,8 @@
 		"title":"What Should I Do If Sandbox-Related Errors Are Reported When the Pod Remains in the Creating State?",
 		"uri":"cce_faq_00005.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"230"
+		"p_code":"301",
+		"code":"310"
 	},
 	{
 		"desc":"Workload pods in the cluster fail and are being redeployed constantly.After the following command is run, the command output shows that many pods are in the evicted state",
@@ -2075,8 +2795,8 @@
 		"title":"What Should I Do If a Pod Is in the Evicted State?",
 		"uri":"cce_faq_00199.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"231"
+		"p_code":"301",
+		"code":"311"
 	},
 	{
 		"desc":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
@@ -2084,8 +2804,8 @@
 		"title":"What Should I Do If the OOM Killer Is Triggered When a Container Uses Memory Resources More Than Limited?",
 		"uri":"cce_faq_00002.html",
 		"doc_type":"usermanual2",
-		"p_code":"221",
-		"code":"232"
+		"p_code":"301",
+		"code":"312"
 	},
 	{
 		"desc":"A workload can be accessed from public networks through a load balancer. LoadBalancer provides higher reliability than EIP-based NodePort because an EIP is no longer boun",
@@ -2093,8 +2813,8 @@
 		"title":"What Should I Do If a Service Released in a Workload Cannot Be Accessed from Public Networks?",
 		"uri":"cce_faq_00202.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"233"
+		"p_code":"292",
+		"code":"313"
 	},
 	{
 		"desc":"A VPC is similar to a private local area network (LAN) managed by a home gateway whose IP address is 192.168.0.0/16. A VPC is a private network built on the cloud and pro",
@@ -2102,8 +2822,8 @@
 		"title":"What Is the Relationship Between Clusters, VPCs, and Subnets?",
 		"uri":"cce_faq_00266.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"234"
+		"p_code":"292",
+		"code":"314"
 	},
 	{
 		"desc":"CCE is a universal container platform. Its default security group rules apply to common scenarios. Based on security requirements, you can harden the security group rules",
@@ -2111,8 +2831,8 @@
 		"title":"How Do I Harden the VPC Security Group Rules for CCE Cluster Nodes?",
 		"uri":"cce_faq_00265.html",
 		"doc_type":"usermanual2",
-		"p_code":"212",
-		"code":"235"
+		"p_code":"292",
+		"code":"315"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2121,7 +2841,7 @@
 		"uri":"cce_bestpractice.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"236"
+		"code":"316"
 	},
 	{
 		"desc":"Security, efficiency, stability, and availability are common requirements on all cloud services. To meet these requirements, the system availability, data reliability, an",
@@ -2129,8 +2849,116 @@
 		"title":"Checklist for Deploying Containerized Applications in the Cloud",
 		"uri":"cce_bestpractice_00006.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"237"
+		"p_code":"316",
+		"code":"317"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Containerization",
+		"uri":"cce_bestpractice_0321.html",
+		"doc_type":"usermanual2",
+		"p_code":"316",
+		"code":"318"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Containerizing an Enterprise Application (ERP)",
+		"uri":"cce_bestpractice_0001.html",
+		"doc_type":"usermanual2",
+		"p_code":"318",
+		"code":"319"
+	},
+	{
+		"desc":"This chapter provides CCE best practices to walk you through the application containerization.A container is a lightweight high-performance resource isolation mechanism i",
+		"product_code":"cce",
+		"title":"Solution Overview",
+		"uri":"cce_bestpractice_0002.html",
+		"doc_type":"usermanual2",
+		"p_code":"319",
+		"code":"320"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Procedure",
+		"uri":"cce_bestpractice_0340.html",
+		"doc_type":"usermanual2",
+		"p_code":"319",
+		"code":"321"
+	},
+	{
+		"desc":"This tutorial describes how to containerize an ERP system by migrating it from a VM to CCE.No recoding or re-architecting is required. You only need to pack the entire ap",
+		"product_code":"cce",
+		"title":"Containerizing an Entire Application",
+		"uri":"cce_bestpractice_0003.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"322"
+	},
+	{
+		"desc":"The following figure illustrates the process of containerizing an application.",
+		"product_code":"cce",
+		"title":"Containerization Process",
+		"uri":"cce_bestpractice_0004.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"323"
+	},
+	{
+		"desc":"Before containerizing an application, you need to analyze the running environment and dependencies of the application, and get familiar with the application deployment mo",
+		"product_code":"cce",
+		"title":"Analyzing the Application",
+		"uri":"cce_bestpractice_0005.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"324"
+	},
+	{
+		"desc":"After application analysis, you have gained the understanding of the OS and runtime required for running the application. You need to make the following preparations:Inst",
+		"product_code":"cce",
+		"title":"Preparing the Application Runtime",
+		"uri":"cce_bestpractice_0006.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"325"
+	},
+	{
+		"desc":"During application containerization, you need to prepare a startup script. The method of compiling this script is the same as that of compiling a shell script. The startu",
+		"product_code":"cce",
+		"title":"Compiling a Startup Script",
+		"uri":"cce_bestpractice_0007.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"326"
+	},
+	{
+		"desc":"An image is the basis of a container. A container runs based on the content defined in the image. An image has multiple layers. Each layer includes the modifications made",
+		"product_code":"cce",
+		"title":"Compiling the Dockerfile",
+		"uri":"cce_bestpractice_0008.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"327"
+	},
+	{
+		"desc":"This section describes how to build an entire application into a Docker image. After building an image, you can use the image to deploy and upgrade the application. This ",
+		"product_code":"cce",
+		"title":"Building and Uploading an Image",
+		"uri":"cce_bestpractice_0009.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"328"
+	},
+	{
+		"desc":"This section describes how to deploy a workload on CCE. When using CCE for the first time, create an initial cluster and add a node into the cluster.Containerized workloa",
+		"product_code":"cce",
+		"title":"Creating a Container Workload",
+		"uri":"cce_bestpractice_0010.html",
+		"doc_type":"usermanual2",
+		"p_code":"321",
+		"code":"329"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2138,8 +2966,8 @@
 		"title":"Migration",
 		"uri":"cce_bestpractice_00237.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"238"
+		"p_code":"316",
+		"code":"330"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2147,8 +2975,8 @@
 		"title":"Migrating On-premises Kubernetes Clusters to CCE",
 		"uri":"cce_bestpractice_0306.html",
 		"doc_type":"usermanual2",
-		"p_code":"238",
-		"code":"239"
+		"p_code":"330",
+		"code":"331"
 	},
 	{
 		"desc":"Containers are growing in popularity and Kubernetes simplifies containerized deployment. Many companies choose to build their own Kubernetes clusters. However, the O&M wo",
@@ -2156,8 +2984,8 @@
 		"title":"Solution Overview",
 		"uri":"cce_bestpractice_0307.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"240"
+		"p_code":"331",
+		"code":"332"
 	},
 	{
 		"desc":"CCE allows you to customize cluster resources to meet various service requirements. Table 1 lists the key performance parameters of a cluster and provides the planned val",
@@ -2165,8 +2993,8 @@
 		"title":"Planning Resources for the Target Cluster",
 		"uri":"cce_bestpractice_0308.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"241"
+		"p_code":"331",
+		"code":"333"
 	},
 	{
 		"desc":"If your migration does not involve resources outside a cluster listed in Table 1 or you do not need to use other services to update resources after the migration, skip th",
@@ -2174,8 +3002,8 @@
 		"title":"Migrating Resources Outside a Cluster",
 		"uri":"cce_bestpractice_0309.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"242"
+		"p_code":"331",
+		"code":"334"
 	},
 	{
 		"desc":"Velero is an open-source backup and migration tool for Kubernetes clusters. It integrates the persistent volume (PV) data backup capability of the Restic tool and can be ",
@@ -2183,8 +3011,8 @@
 		"title":"Installing the Migration Tool",
 		"uri":"cce_bestpractice_0310.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"243"
+		"p_code":"331",
+		"code":"335"
 	},
 	{
 		"desc":"WordPress is used as an example to describe how to migrate an application from an on-premises Kubernetes cluster to a CCE cluster. The WordPress application consists of t",
@@ -2192,8 +3020,8 @@
 		"title":"Migrating Resources in a Cluster",
 		"uri":"cce_bestpractice_0311.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"244"
+		"p_code":"331",
+		"code":"336"
 	},
 	{
 		"desc":"The WordPress and MySQL images used in this example can be pulled from SWR. Therefore, the image pull failure (ErrImagePull) will not occur. If the application to be migr",
@@ -2201,8 +3029,8 @@
 		"title":"Updating Resources Accordingly",
 		"uri":"cce_bestpractice_0312.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"245"
+		"p_code":"331",
+		"code":"337"
 	},
 	{
 		"desc":"Cluster migration involves full migration of application data, which may cause intra-application adaptation problems. In this example, after the cluster is migrated, the ",
@@ -2210,8 +3038,8 @@
 		"title":"Performing Additional Tasks",
 		"uri":"cce_bestpractice_0313.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"246"
+		"p_code":"331",
+		"code":"338"
 	},
 	{
 		"desc":"Both HostPath and Local volumes are local storage volumes. However, the Restic tool integrated in Velero cannot back up the PVs of the HostPath type and supports only the",
@@ -2219,8 +3047,8 @@
 		"title":"Troubleshooting",
 		"uri":"cce_bestpractice_0314.html",
 		"doc_type":"usermanual2",
-		"p_code":"239",
-		"code":"247"
+		"p_code":"331",
+		"code":"339"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2228,8 +3056,8 @@
 		"title":"DevOps",
 		"uri":"cce_bestpractice_0322.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"248"
+		"p_code":"316",
+		"code":"340"
 	},
 	{
 		"desc":"GitLab is an open-source version management system developed with Ruby on Rails for Git project repository management. It supports web-based access to public and private ",
@@ -2237,8 +3065,8 @@
 		"title":"Interconnecting GitLab with SWR and CCE for CI/CD",
 		"uri":"cce_bestpractice_0324.html",
 		"doc_type":"usermanual2",
-		"p_code":"248",
-		"code":"249"
+		"p_code":"340",
+		"code":"341"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2246,8 +3074,8 @@
 		"title":"Disaster Recovery",
 		"uri":"cce_bestpractice_0323.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"250"
+		"p_code":"316",
+		"code":"342"
 	},
 	{
 		"desc":"To achieve high availability for your CCE containers, you can do as follows:Deploy three master nodes for the cluster.When nodes are deployed across AZs, set custom sched",
@@ -2255,8 +3083,8 @@
 		"title":"Implementing High Availability for Containers in CCE",
 		"uri":"cce_bestpractice_00220.html",
 		"doc_type":"usermanual2",
-		"p_code":"250",
-		"code":"251"
+		"p_code":"342",
+		"code":"343"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2264,8 +3092,8 @@
 		"title":"Security",
 		"uri":"cce_bestpractice_0315.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"252"
+		"p_code":"316",
+		"code":"344"
 	},
 	{
 		"desc":"For security purposes, you are advised to configure a cluster as follows.Kubernetes releases a major version in about four months. CCE follows the same frequency as Kuber",
@@ -2273,8 +3101,8 @@
 		"title":"Cluster Security",
 		"uri":"cce_bestpractice_0317.html",
 		"doc_type":"usermanual2",
-		"p_code":"252",
-		"code":"253"
+		"p_code":"344",
+		"code":"345"
 	},
 	{
 		"desc":"Do not bind an EIP to a node unless necessary to reduce the attack surface.If an EIP must be used, properly configure the firewall or security group rules to restrict acc",
@@ -2282,8 +3110,8 @@
 		"title":"Node Security",
 		"uri":"cce_bestpractice_0318.html",
 		"doc_type":"usermanual2",
-		"p_code":"252",
-		"code":"254"
+		"p_code":"344",
+		"code":"346"
 	},
 	{
 		"desc":"The nodeSelector or nodeAffinity is used to limit the range of nodes to which applications can be scheduled, preventing the entire cluster from being threatened due to th",
@@ -2291,8 +3119,8 @@
 		"title":"Container Security",
 		"uri":"cce_bestpractice_0319.html",
 		"doc_type":"usermanual2",
-		"p_code":"252",
-		"code":"255"
+		"p_code":"344",
+		"code":"347"
 	},
 	{
 		"desc":"Currently, CCE has configured static encryption for secret resources. The secrets created by users will be encrypted and stored in etcd of the CCE cluster. Secrets can be",
@@ -2300,8 +3128,8 @@
 		"title":"Secret Security",
 		"uri":"cce_bestpractice_0320.html",
 		"doc_type":"usermanual2",
-		"p_code":"252",
-		"code":"256"
+		"p_code":"344",
+		"code":"348"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2309,8 +3137,8 @@
 		"title":"Auto Scaling",
 		"uri":"cce_bestpractice_0090.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"257"
+		"p_code":"316",
+		"code":"349"
 	},
 	{
 		"desc":"The best way to handle surging traffic is to automatically adjust the number of machines based on the traffic volume or resource usage, which is called scaling.In CCE, th",
@@ -2318,8 +3146,26 @@
 		"title":"Using HPA and CA for Auto Scaling of Workloads and Nodes",
 		"uri":"cce_bestpractice_00282.html",
 		"doc_type":"usermanual2",
-		"p_code":"257",
-		"code":"258"
+		"p_code":"349",
+		"code":"350"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Monitoring",
+		"uri":"cce_bestpractice_10008.html",
+		"doc_type":"usermanual2",
+		"p_code":"316",
+		"code":"351"
+	},
+	{
+		"desc":"Generally, a user has different clusters for different purposes, such as production, testing, and development. To monitor, collect, and view metrics of these clusters, yo",
+		"product_code":"cce",
+		"title":"Using Prometheus for Multi-cluster Monitoring",
+		"uri":"cce_bestpractice_10009.html",
+		"doc_type":"usermanual2",
+		"p_code":"351",
+		"code":"352"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2327,8 +3173,8 @@
 		"title":"Cluster",
 		"uri":"cce_bestpractice_0050.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"259"
+		"p_code":"316",
+		"code":"353"
 	},
 	{
 		"desc":"When you have multiple CCE clusters, you may find it difficult to efficiently connect to all of them.This section describes how to configure access to multiple clusters b",
@@ -2336,8 +3182,8 @@
 		"title":"Connecting to Multiple Clusters Using kubectl",
 		"uri":"cce_bestpractice_00254.html",
 		"doc_type":"usermanual2",
-		"p_code":"259",
-		"code":"260"
+		"p_code":"353",
+		"code":"354"
 	},
 	{
 		"desc":"You can use the pre-installation script feature to configure CCE cluster nodes (ECSs).When creating a node in a cluster of v1.13.10 or later, if a data disk is not manage",
@@ -2345,8 +3191,17 @@
 		"title":"Adding a Second Data Disk to a Node in a CCE Cluster",
 		"uri":"cce_bestpractice_00190.html",
 		"doc_type":"usermanual2",
-		"p_code":"259",
-		"code":"261"
+		"p_code":"353",
+		"code":"355"
+	},
+	{
+		"desc":"When a node is created, a data disk is created by default for container runtime and kubelet components to use.  The data disk used by the container runtime and kubelet co",
+		"product_code":"cce",
+		"title":"Selecting a Data Disk for the Node",
+		"uri":"cce_bestpractice_10012.html",
+		"doc_type":"usermanual2",
+		"p_code":"353",
+		"code":"356"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2354,8 +3209,8 @@
 		"title":"Networking",
 		"uri":"cce_bestpractice_0052.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"262"
+		"p_code":"316",
+		"code":"357"
 	},
 	{
 		"desc":"Before creating a cluster on CCE, determine the number of VPCs, number of subnets, container CIDR blocks, and Services for access based on service requirements.This topic",
@@ -2363,17 +3218,17 @@
 		"title":"Planning CIDR Blocks for a Cluster",
 		"uri":"cce_bestpractice_00004.html",
 		"doc_type":"usermanual2",
-		"p_code":"262",
-		"code":"263"
+		"p_code":"357",
+		"code":"358"
 	},
 	{
-		"desc":"CCE uses self-proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.After a cluster i",
+		"desc":"CCE uses proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.After a cluster is cre",
 		"product_code":"cce",
 		"title":"Selecting a Network Model",
 		"uri":"cce_bestpractice_00162.html",
 		"doc_type":"usermanual2",
-		"p_code":"262",
-		"code":"264"
+		"p_code":"357",
+		"code":"359"
 	},
 	{
 		"desc":"Session persistence is one of the most common while complex problems in load balancing.Session persistence is also called sticky sessions. After the sticky session functi",
@@ -2381,8 +3236,8 @@
 		"title":"Implementing Sticky Session Through Load Balancing",
 		"uri":"cce_bestpractice_00231.html",
 		"doc_type":"usermanual2",
-		"p_code":"262",
-		"code":"265"
+		"p_code":"357",
+		"code":"360"
 	},
 	{
 		"desc":"There may be different types of proxy servers between a client and a container server. How can a container obtain the real source IP address of the client? This section d",
@@ -2390,8 +3245,8 @@
 		"title":"Obtaining the Client Source IP Address for a Container",
 		"uri":"cce_bestpractice_00035.html",
 		"doc_type":"usermanual2",
-		"p_code":"262",
-		"code":"266"
+		"p_code":"357",
+		"code":"361"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2399,17 +3254,17 @@
 		"title":"Storage",
 		"uri":"cce_bestpractice_0053.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"267"
+		"p_code":"316",
+		"code":"362"
 	},
 	{
-		"desc":"A data disk is divided depending on the container storage Rootfs:Overlayfs: No independent thin pool is allocated. Image data is stored in the dockersys disk.# lsblk\nNAME",
+		"desc":"EulerOS 2.9 is used as the sample OS. Originally, system disk /dev/vda has 50 GB and one partition (/dev/vda1), and then 50 GB is added to the disk. In this example, the ",
 		"product_code":"cce",
 		"title":"Expanding Node Disk Capacity",
 		"uri":"cce_bestpractice_00198.html",
 		"doc_type":"usermanual2",
-		"p_code":"267",
-		"code":"268"
+		"p_code":"362",
+		"code":"363"
 	},
 	{
 		"desc":"This section describes how to mount OBS buckets and OBS parallel file systems (preferred) of third-party tenants.The CCE cluster of a SaaS service provider needs to be mo",
@@ -2417,17 +3272,17 @@
 		"title":"Mounting an Object Storage Bucket of a Third-Party Tenant",
 		"uri":"cce_bestpractice_00199.html",
 		"doc_type":"usermanual2",
-		"p_code":"267",
-		"code":"269"
+		"p_code":"362",
+		"code":"364"
 	},
 	{
 		"desc":"The minimum capacity of an SFS Turbo file system is 500 GB, and the SFS Turbo file system cannot be billed by usage. By default, the root directory of an SFS Turbo file s",
 		"product_code":"cce",
 		"title":"Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System",
-		"uri":"cce_bestpractice_00253_0.html",
+		"uri":"cce_bestpractice_00253.html",
 		"doc_type":"usermanual2",
-		"p_code":"267",
-		"code":"270"
+		"p_code":"362",
+		"code":"365"
 	},
 	{
 		"desc":"In clusters later than v1.15.11-r1, CSI (the everest add-on) has taken over all functions of fuxi FlexVolume (the storage-driver add-on) for managing container storage. Y",
@@ -2435,17 +3290,17 @@
 		"title":"How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?",
 		"uri":"cce_bestpractice_0107.html",
 		"doc_type":"usermanual2",
-		"p_code":"267",
-		"code":"271"
+		"p_code":"362",
+		"code":"366"
 	},
 	{
 		"desc":"When using storage resources in CCE, the most common method is to specify storageClassName to define the type of storage resources to be created when creating a PVC. The ",
 		"product_code":"cce",
 		"title":"Custom Storage Classes",
-		"uri":"cce_bestpractice_00281_0.html",
+		"uri":"cce_bestpractice_00281.html",
 		"doc_type":"usermanual2",
-		"p_code":"267",
-		"code":"272"
+		"p_code":"362",
+		"code":"367"
 	},
 	{
 		"desc":"EVS disks cannot be attached across AZs. For example, EVS disks in AZ 1 cannot be attached to nodes in AZ 2.If the storage class csi-disk is used for StatefulSets, when a",
@@ -2453,8 +3308,8 @@
 		"title":"Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology)",
 		"uri":"cce_bestpractice_00284.html",
 		"doc_type":"usermanual2",
-		"p_code":"267",
-		"code":"273"
+		"p_code":"362",
+		"code":"368"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2462,8 +3317,8 @@
 		"title":"Container",
 		"uri":"cce_bestpractice_0051.html",
 		"doc_type":"usermanual2",
-		"p_code":"236",
-		"code":"274"
+		"p_code":"316",
+		"code":"369"
 	},
 	{
 		"desc":"If a node has sufficient memory resources, a container on this node can use more memory resources than requested, but no more than limited. If the memory allocated to a c",
@@ -2471,8 +3326,8 @@
 		"title":"Properly Allocating Container Computing Resources",
 		"uri":"cce_bestpractice_00002.html",
 		"doc_type":"usermanual2",
-		"p_code":"274",
-		"code":"275"
+		"p_code":"369",
+		"code":"370"
 	},
 	{
 		"desc":"To access a Kubernetes cluster from a client, you can use the Kubernetes command line tool kubectl.Create a DaemonSet file.vi daemonSet.yamlAn example YAML file is provid",
@@ -2480,8 +3335,8 @@
 		"title":"Modifying Kernel Parameters Using a Privileged Container",
 		"uri":"cce_bestpractice_00227.html",
 		"doc_type":"usermanual2",
-		"p_code":"274",
-		"code":"276"
+		"p_code":"369",
+		"code":"371"
 	},
 	{
 		"desc":"Before containers running applications are started, one or some init containers are started first. If there are multiple init containers, they will be started in the defi",
@@ -2489,8 +3344,8 @@
 		"title":"Initializing a Container",
 		"uri":"cce_bestpractice_00228.html",
 		"doc_type":"usermanual2",
-		"p_code":"274",
-		"code":"277"
+		"p_code":"369",
+		"code":"372"
 	},
 	{
 		"desc":"If DNS or other related settings are inappropriate, you can use hostAliases to overwrite the resolution of the host name at the pod level when adding entries to the /etc/",
@@ -2498,8 +3353,8 @@
 		"title":"Using hostAliases to Configure /etc/hosts in a Pod",
 		"uri":"cce_bestpractice_00226.html",
 		"doc_type":"usermanual2",
-		"p_code":"274",
-		"code":"278"
+		"p_code":"369",
+		"code":"373"
 	},
 	{
 		"desc":"Linux allows you to create a core dump file if an application crashes, which contains the data the application had in memory at the time of the crash. You can analyze the",
@@ -2507,8 +3362,53 @@
 		"title":"Configuring Core Dumps",
 		"uri":"cce_bestpractice_0325.html",
 		"doc_type":"usermanual2",
-		"p_code":"274",
-		"code":"279"
+		"p_code":"369",
+		"code":"374"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Permission",
+		"uri":"cce_bestpractice_0055.html",
+		"doc_type":"usermanual2",
+		"p_code":"316",
+		"code":"375"
+	},
+	{
+		"desc":"By default, the kubeconfig file provided by CCE for users has permissions bound to the cluster-admin role, which are equivalent to the permissions of user root. It is dif",
+		"product_code":"cce",
+		"title":"Configuring kubeconfig for Fine-Grained Management on Cluster Resources",
+		"uri":"cce_bestpractice_00221.html",
+		"doc_type":"usermanual2",
+		"p_code":"375",
+		"code":"376"
+	},
+	{
+		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
+		"product_code":"cce",
+		"title":"Release",
+		"uri":"cce_bestpractice_10000.html",
+		"doc_type":"usermanual2",
+		"p_code":"316",
+		"code":"377"
+	},
+	{
+		"desc":"When switching between old and new services, you may be challenged in ensuring the system service continuity. If a new service version is directly released to all users a",
+		"product_code":"cce",
+		"title":"Overview",
+		"uri":"cce_bestpractice_10001.html",
+		"doc_type":"usermanual2",
+		"p_code":"377",
+		"code":"378"
+	},
+	{
+		"desc":"To implement grayscale release for a CCE cluster, you need to deploy other open-source tools, such as Nginx Ingress, to the cluster or deploy services to a service mesh. ",
+		"product_code":"cce",
+		"title":"Using Services to Implement Simple Grayscale Release and Blue-Green Deployment",
+		"uri":"cce_bestpractice_10002.html",
+		"doc_type":"usermanual2",
+		"p_code":"377",
+		"code":"379"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2517,7 +3417,7 @@
 		"uri":"cce_01_9999.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"280"
+		"code":"380"
 	},
 	{
 		"desc":"CCE 2.0 inherits and modifies the features of CCE 1.0, and release new features.Modified features:Clusters in CCE 1.0 are equivalent to Hybrid clusters in CCE 2.0.CCE 2.0",
@@ -2525,8 +3425,8 @@
 		"title":"Differences Between CCE 1.0 and CCE 2.0",
 		"uri":"cce_01_9998.html",
 		"doc_type":"usermanual2",
-		"p_code":"280",
-		"code":"281"
+		"p_code":"380",
+		"code":"381"
 	},
 	{
 		"desc":"Migrate the images stored in the image repository of CCE 1.0 to CCE 2.0.A VM is available. The VM is bound to a public IP address and can access the Internet. Docker (ear",
@@ -2534,8 +3434,8 @@
 		"title":"Migrating Images",
 		"uri":"cce_01_9997.html",
 		"doc_type":"usermanual2",
-		"p_code":"280",
-		"code":"282"
+		"p_code":"380",
+		"code":"382"
 	},
 	{
 		"desc":"Create Hybrid clusters on the CCE 2.0 console. These new Hybrid clusters should have the same specifications with those created on CCE 1.0.To create clusters using APIs, ",
@@ -2543,8 +3443,8 @@
 		"title":"Migrating Clusters",
 		"uri":"cce_01_9996.html",
 		"doc_type":"usermanual2",
-		"p_code":"280",
-		"code":"283"
+		"p_code":"380",
+		"code":"383"
 	},
 	{
 		"desc":"This section describes how to create a Deployment with the same specifications as that in CCE 1.0 on the CCE 2.0 console.It is advised to delete the applications on CCE 1",
@@ -2552,8 +3452,8 @@
 		"title":"Migrating Applications",
 		"uri":"cce_01_9995.html",
 		"doc_type":"usermanual2",
-		"p_code":"280",
-		"code":"284"
+		"p_code":"380",
+		"code":"384"
 	},
 	{
 		"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
@@ -2562,6 +3462,6 @@
 		"uri":"cce_01_0300.html",
 		"doc_type":"usermanual2",
 		"p_code":"",
-		"code":"285"
+		"code":"385"
 	}
 ]
\ No newline at end of file
diff --git a/docs/cce/umn/cce_01_0091.html b/docs/cce/umn/cce_01_0091.html
index 8432c28a..df22ad91 100644
--- a/docs/cce/umn/cce_01_0091.html
+++ b/docs/cce/umn/cce_01_0091.html
@@ -1,9 +1,16 @@
 <a name="cce_01_0091"></a><a name="cce_01_0091"></a>
 
 <h1 class="topictitle1">What Is Cloud Container Engine?</h1>
-<div id="body0000001151475048"><p id="cce_01_0091__p828704812214">Cloud Container Engine (CCE) provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily deploy, manage, and scale containerized applications on the cloud.</p>
-<p id="cce_01_0091__p7288114822214">CCE is deeply integrated with the public cloud services, including high-performance computing (ECS), network (VPC, EIP, and ELB), and storage (EVS and SFS) services. It supports heterogeneous computing architectures such as GPU, ARM, and FPGA. By using multi-AZ and multi-region disaster recovery, CCE ensures high availability of Kubernetes clusters.</p>
-<p id="cce_01_0091__p1495073743620">You can use CCE through the console, kubectl, and <a href="https://docs.otc.t-systems.com/en-us/api2/cce/cce_02_0344.html" target="_blank" rel="noopener noreferrer">APIs</a>. Before using the CCE service, learn about the concepts related to Kubernetes. For details, see <a href="https://kubernetes.io/docs/concepts/" target="_blank" rel="noopener noreferrer">https://kubernetes.io/docs/concepts/</a>.</p>
-<ul id="cce_01_0091__ul2085315361497"><li id="cce_01_0091__li1985318365917">Junior users: You are advised to use the console. The console provides an intuitive interface for you to complete operations such as creating clusters or workloads.</li><li id="cce_01_0091__li162315481992">Advanced users: If you have experience in using kubectl, you are advised to use the kubectl, and <a href="https://docs.otc.t-systems.com/en-us/api2/cce/cce_02_0344.html" target="_blank" rel="noopener noreferrer">APIs</a> to perform operations. For details, see <a href="https://kubernetes.io/docs/concepts/overview/kubernetes-api/" target="_blank" rel="noopener noreferrer">Kubernetes APIs</a> and <a href="https://kubernetes.io/docs/reference/kubectl/overview/" target="_blank" rel="noopener noreferrer">kubectl CLI</a>.</li></ul>
+<div id="body32001227"><div class="section" id="cce_01_0091__en-us_topic_0000001499406010_section8343153913519"><h4 class="sectiontitle">Why CCE?</h4><p id="cce_01_0091__en-us_topic_0000001499406010_p72395598519">CCE is a one-stop platform integrating compute, networking, storage, and many other services. Supporting multi-AZ and multi-region disaster recovery, CCE ensures high availability of <a href="https://kubernetes.io/" target="_blank" rel="noopener noreferrer">Kubernetes</a> clusters.</p>
+<p id="cce_01_0091__en-us_topic_0000001499406010_p1220816614522">For more information, see <a href="cce_productdesc_0003.html#cce_productdesc_0003">Product Advantages</a> and <a href="cce_productdesc_0007.html#cce_productdesc_0007">Application Scenarios</a>.</p>
+</div>
+<div class="section" id="cce_01_0091__en-us_topic_0000001499406010_section14578149155310"><h4 class="sectiontitle">Accessing CCE</h4><p id="cce_01_0091__en-us_topic_0000001499406010_p124041812145418">You can use CCE via the CCE console, kubectl, or Kubernetes APIs. <a href="#cce_01_0091__en-us_topic_0000001499406010_fig3404612135411">Figure 1</a> shows the process.</p>
+<div class="fignone" id="cce_01_0091__en-us_topic_0000001499406010_fig3404612135411"><a name="cce_01_0091__en-us_topic_0000001499406010_fig3404612135411"></a><a name="en-us_topic_0000001499406010_fig3404612135411"></a><span class="figcap"><b>Figure 1 </b>Accessing CCE</span><br><span><img id="cce_01_0091__en-us_topic_0000001499406010_image104041112125417" src="en-us_image_0000001499565914.png"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000001550437509.html">Service Overview</a></div>
+</div>
 </div>
 
diff --git a/docs/cce/umn/cce_01_0300.html b/docs/cce/umn/cce_01_0300.html
index a1798429..4515f98e 100644
--- a/docs/cce/umn/cce_01_0300.html
+++ b/docs/cce/umn/cce_01_0300.html
@@ -8,7 +8,12 @@
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_01_0300__row181091826101811"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p1510922618183">2023-02-10</p>
+<tbody><tr id="cce_01_0300__row450749103813"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p195076943820">2023-05-30</p>
+</td>
+<td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul1843612311567"><li id="cce_01_0300__li14362312065">Added<a href="cce_10_0652.html">Configuring a Node Pool</a>.</li><li id="cce_01_0300__li48641237869">Added<a href="cce_10_0684.html">Configuring Health Check for Multiple Ports</a>.</li><li id="cce_01_0300__li152057919719">Updated<a href="cce_10_0363.html">Creating a Node</a>.</li><li id="cce_01_0300__li53955101178">Updated<a href="cce_10_0012.html">Creating a Node Pool</a>.</li><li id="cce_01_0300__li16648154715219">Updated<a href="cce_bulletin_0301.html">OS Patch Notes for Cluster Nodes</a>.</li><li id="cce_01_0300__li7404516102217">Updated<a href="cce_productdesc_0005.html">Notes and Constraints</a>.</li></ul>
+</td>
+</tr>
+<tr id="cce_01_0300__row181091826101811"><td class="cellrowborder" valign="top" width="19.009999999999998%" headers="mcps1.3.1.2.3.1.1 "><p id="cce_01_0300__p1510922618183">2023-02-10</p>
 </td>
 <td class="cellrowborder" valign="top" width="80.99%" headers="mcps1.3.1.2.3.1.2 "><ul id="cce_01_0300__ul262319241116"><li id="cce_01_0300__li192921356122114">Supported the creation of clusters of v1.25.</li><li id="cce_01_0300__li12638261224">Added <a href="cce_10_0466.html">Configuring Pod Security Admission</a>.</li><li id="cce_01_0300__li1238583891617">Added <a href="cce_bulletin_0011.html">Vulnerability Fixing Policies</a>.</li><li id="cce_01_0300__li1132183918530">Updated <a href="cce_10_0252.html">Using kubectl to Create an ELB Ingress</a>.</li></ul>
 </td>
diff --git a/docs/cce/umn/cce_01_9994.html b/docs/cce/umn/cce_01_9994.html
deleted file mode 100644
index 9ccffed9..00000000
--- a/docs/cce/umn/cce_01_9994.html
+++ /dev/null
@@ -1,15 +0,0 @@
-<a name="cce_01_9994"></a><a name="cce_01_9994"></a>
-
-<h1 class="topictitle1">Obtaining Resource Permissions</h1>
-<div id="body32001227"><div class="p" id="cce_01_9994__en-us_topic_0000001162706450_p8060118">CCE works closely with multiple cloud services to support computing, storage, networking, and monitoring functions. When you log in to the CCE console for the first time, CCE automatically requests permissions to access those cloud services in the region where you run your applications. Specifically:<ul id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_ul3701191818917"><li id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li10701131818911">Compute services<p id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_p1087644518126"><a name="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li10701131818911"></a><a name="en-us_topic_0000001162706450_en-us_topic_0130767462_li10701131818911"></a>When you create a node in a cluster, an ECS is created accordingly. The prerequisite is that CCE have obtained the permissions to access Elastic Cloud Service (ECS).</p>
-</li><li id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li183546439915">Storage services<p id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_p1726215716134"><a name="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li183546439915"></a><a name="en-us_topic_0000001162706450_en-us_topic_0130767462_li183546439915"></a>CCE allows you to mount storage to nodes and containers in a cluster. The prerequisite is that CCE have obtained the permissions to access services such as Elastic Volume Service (EVS), Scalable File Service (SFS), and Object Storage Service (OBS).</p>
-</li><li id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li1982014497913">Networking services<p id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_p113391343111318"><a name="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li1982014497913"></a><a name="en-us_topic_0000001162706450_en-us_topic_0130767462_li1982014497913"></a>CCE allows containers in a cluster to be published as services that can be accessed by external systems. The prerequisite is that CCE have obtained the permissions to access services such as Virtual Private Cloud (VPC) and Elastic Load Balance (ELB).</p>
-</li><li id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li1828065516916">Container and monitoring services<p id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_p99237594139"><a name="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_li1828065516916"></a><a name="en-us_topic_0000001162706450_en-us_topic_0130767462_li1828065516916"></a>CCE supports functions such as container image pulling, monitoring, and logging. The prerequisite is that CCE have obtained the permissions to access services such as SoftWare Repository for Container (SWR) and Application Operations Management (AOM).</p>
-</li></ul>
-</div>
-<p id="cce_01_9994__en-us_topic_0000001162706450_p175118118157">After you agree to delegate the permissions, an agency named <strong id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_b1568916310405">cce_admin_trust</strong> will be created for CCE in Identity and Access Management (IAM). The system account <strong id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_b48571932174019">op_svc_cce</strong> will be delegated the <strong id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_b981339420">Tenant Administrator</strong> role to perform operations on other cloud service resources. Tenant Administrator has the permissions on all cloud services except IAM, which calls the cloud services on which CCE depends. The delegation takes effect only in the current region. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/iam/iam_01_0054.html" target="_blank" rel="noopener noreferrer">Delegating Resource Access to Another Account</a>.</p>
-<p id="cce_01_9994__en-us_topic_0000001162706450_p46591740151520">To use CCE in multiple regions, you need to request cloud resource permissions in each region. You can go to the IAM console, choose <strong id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_b867181312472">Agencies</strong>, and click <strong id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_b111022114549">cce_admin_trust</strong> to view the delegation records of each region.</p>
-<div class="note" id="cce_01_9994__en-us_topic_0000001162706450_note158231511201611"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_p124671324103315">CCE may fail to run as expected if the Tenant Administrator role is not assigned. Therefore, do not delete or modify the <strong id="cce_01_9994__en-us_topic_0000001162706450_en-us_topic_0130767462_b17463155175611">cce_admin_trust</strong> agency when using CCE.</p>
-</div></div>
-</div>
-
diff --git a/docs/cce/umn/cce_01_9996.html b/docs/cce/umn/cce_01_9996.html
index 56efdeee..e8d3b66f 100644
--- a/docs/cce/umn/cce_01_9996.html
+++ b/docs/cce/umn/cce_01_9996.html
@@ -93,7 +93,7 @@
 </td>
 <td class="cellrowborder" valign="top" width="33.33666633336666%" headers="mcps1.3.3.2.2.2.2.2.4.1.2 "><p id="cce_01_9996__p1226813566192">This parameter does not exist in CCE 1.0. Set this parameter based on your requirements.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.33666633336666%" headers="mcps1.3.3.2.2.2.2.2.4.1.3 "><p id="cce_01_9996__p13737141735611">By default, <span class="uicontrol" id="cce_01_9996__uicontrol13753167101316"><b>RBAC</b></span> is selected. Read <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0189.html" target="_blank" rel="noopener noreferrer">Namespace Permissions (Kubernetes RBAC-based)</a> and select <span class="uicontrol" id="cce_01_9996__uicontrol1663915553130"><b>I am aware of the above limitations and read the CCE Role Management Instructions</b></span>.</p>
+<td class="cellrowborder" valign="top" width="33.33666633336666%" headers="mcps1.3.3.2.2.2.2.2.4.1.3 "><p id="cce_01_9996__p13737141735611">By default, <span class="uicontrol" id="cce_01_9996__uicontrol13753167101316"><b>RBAC</b></span> is selected. Read <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0189.html" target="_blank" rel="noopener noreferrer">Namespace Permissions (Kubernetes RBAC-based)</a> and select <span class="uicontrol" id="cce_01_9996__uicontrol1663915553130"><b>I am aware of the above limitations and read the CCE Role Management Instructions</b></span>.</p>
 <p id="cce_01_9996__p16141515161117">After RBAC is enabled, users access resources in the cluster according to fine-grained permissions policies.</p>
 </td>
 </tr>
@@ -101,7 +101,7 @@
 </td>
 <td class="cellrowborder" valign="top" width="33.33666633336666%" headers="mcps1.3.3.2.2.2.2.2.4.1.2 "><p id="cce_01_9996__p1214101252312">This parameter does not exist in CCE 1.0. Set this parameter based on your requirements.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.33666633336666%" headers="mcps1.3.3.2.2.2.2.2.4.1.3 "><p id="cce_01_9996__p933784218111">The authentication mechanism performs permission control on resources in a cluster. For example, you can grant user A to read and write applications in a namespace, while granting user B to only read resources in a cluster. For details about role-based permission control, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0085.html" target="_blank" rel="noopener noreferrer">Controlling Cluster Permissions</a>.</p>
+<td class="cellrowborder" valign="top" width="33.33666633336666%" headers="mcps1.3.3.2.2.2.2.2.4.1.3 "><p id="cce_01_9996__p933784218111">The authentication mechanism performs permission control on resources in a cluster. For example, you can grant user A to read and write applications in a namespace, while granting user B to only read resources in a cluster. For details about role-based permission control, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0189.html" target="_blank" rel="noopener noreferrer">Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
 <ul id="cce_01_9996__ul208851410646"><li id="cce_01_9996__li198851101547">By default, X.509 authentication instead of <span class="uicontrol" id="cce_01_9996__uicontrol1371105874614"><b>Enhanced authentication</b></span> is enabled. X.509 is a standard defining the format of public key certificates. X.509 certificates are used in many Internet protocols.</li><li id="cce_01_9996__li1033718534516">If permission control on a cluster is required, select <strong id="cce_01_9996__b1631132022213">Enhanced authentication</strong> and then <strong id="cce_01_9996__b113212042216">Authenticating Proxy</strong>.<p id="cce_01_9996__p129632614510">Click <strong id="cce_01_9996__b185463373227">Upload</strong> next to <strong id="cce_01_9996__b1354616374228">CA Root Certificate</strong> to upload a valid certificate. Select the check box to confirm that the uploaded certificate is valid.</p>
 <p id="cce_01_9996__p36719411534">If the certificate is invalid, the cluster cannot be created. The uploaded certificate file must be smaller than 1 MB and in .crt or .cer format.</p>
 </li></ul>
@@ -159,7 +159,7 @@
 <tr id="cce_01_9996__row178313381813"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.2.1.2.4.1.1 "><p id="cce_01_9996__p08318320187">OS</p>
 </td>
 <td class="cellrowborder" valign="top" headers="mcps1.3.3.2.5.2.1.2.4.1.2 "><p id="cce_01_9996__p1258174011292">Select an operating system for the node.</p>
-<p id="cce_01_9996__p47999261331">Reinstalling OSs or modifying OS configurations could make nodes unavailable. Exercise caution when performing these operations. For more information, see <a href="cce_bulletin_0054.html">Risky Operations on Cluster Nodes</a>.</p>
+<p id="cce_01_9996__p47999261331">Reinstalling OSs or modifying OS configurations could make nodes unavailable. Exercise caution when performing these operations. For more information, see <a href="cce_10_0054.html">High-Risk Operations and Solutions</a>.</p>
 </td>
 </tr>
 <tr id="cce_01_9996__row950585532910"><td class="cellrowborder" valign="top" width="22%" headers="mcps1.3.3.2.5.2.1.2.4.1.1 "><p id="cce_01_9996__p25051955142914">VPC</p>
@@ -290,7 +290,7 @@
 </table>
 </div>
 </p></li><li id="cce_01_9996__li62331449191411"><span>Click <span class="uicontrol" id="cce_01_9996__uicontrol09511938122317"><b>Next</b></span> to install add-ons.</span><p><p id="cce_01_9996__p16242151917508">System resource add-ons must be installed. Advanced functional add-ons are optional.</p>
-<p id="cce_01_9996__p987031411110">You can also install optional add-ons after the cluster is created. To do so, choose <span class="uicontrol" id="cce_01_9996__uicontrol143592045195114"><b>Add-ons</b></span> in the navigation pane of the CCE console and select the add-on you will install. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0064.html" target="_blank" rel="noopener noreferrer">Add-ons</a>.</p>
+<p id="cce_01_9996__p987031411110">You can also install optional add-ons after the cluster is created. To do so, choose <span class="uicontrol" id="cce_01_9996__uicontrol143592045195114"><b>Add-ons</b></span> in the navigation pane of the CCE console and select the add-on you will install. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0064.html" target="_blank" rel="noopener noreferrer">Add-ons</a>.</p>
 </p></li><li id="cce_01_9996__li15071642201916"><span>Click <strong id="cce_01_9996__b1627013211343">Create Now</strong>. Check all the configurations, and click <strong id="cce_01_9996__b8661184415419">Submit</strong>.</span><p><p id="cce_01_9996__p1150715424195">It takes 6 to 10 minutes to create a cluster. Information indicating the progress of the creation process will be displayed.</p>
 </p></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_10_0003.html b/docs/cce/umn/cce_10_0003.html
index 665f5868..727777ad 100644
--- a/docs/cce/umn/cce_10_0003.html
+++ b/docs/cce/umn/cce_10_0003.html
@@ -10,34 +10,34 @@
 </div>
 <div class="section" id="cce_10_0003__section13505122310576"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0003__p354415259593">The new console allows you to reset nodes in batches. You can also use private images to reset nodes in batches.</p>
 <ol id="cce_10_0003__ol19107956331"><li id="cce_10_0003__li12107195613316"><span>Log in to the CCE console.</span></li><li id="cce_10_0003__li36690501449"><span>Click the cluster name and access the cluster details page, choose <strong id="cce_10_0003__b117901137112117">Nodes</strong> in the navigation pane, and select one or multiple nodes to be reset in the list on the right. Choose <strong id="cce_10_0003__b4783174114217">More</strong> &gt; <strong id="cce_10_0003__b127830419214">Reset</strong>.</span></li><li id="cce_10_0003__li2062015811615"><span>In the displayed dialog box, click <strong id="cce_10_0003__b101006211646">Yes</strong>.</span><p><ul id="cce_10_0003__ul582555595914"><li id="cce_10_0003__li1582611556598">For nodes in the DefaultPool node pool, the parameter setting page is displayed. Set the parameters by referring to <a href="#cce_10_0003__li1646785611239">4</a>.</li><li id="cce_10_0003__li8826115511593">For a node you create in a node pool, resetting the node does not support parameter configuration. You can directly use the configuration image of the node pool to reset the node.</li></ul>
-</p></li><li id="cce_10_0003__li1646785611239"><a name="cce_10_0003__li1646785611239"></a><a name="li1646785611239"></a><span>Specify node parameters.</span><p><div class="p" id="cce_10_0003__cce_10_0198_p67901445163816"><strong id="cce_10_0003__b31796610207">Compute Settings</strong>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__cce_10_0198_table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0003__cce_10_0198_row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.3.4.2.1.2.2.3.1.1"><p id="cce_10_0003__cce_10_0198_p186688710581">Parameter</p>
+</p></li><li id="cce_10_0003__li1646785611239"><a name="cce_10_0003__li1646785611239"></a><a name="li1646785611239"></a><span>Specify node parameters.</span><p><div class="p" id="cce_10_0003__en-us_topic_0000001244141037_p67901445163816"><strong id="cce_10_0003__b31796610207">Compute Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__en-us_topic_0000001244141037_table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0003__en-us_topic_0000001244141037_row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.3.4.2.1.2.2.3.1.1"><p id="cce_10_0003__en-us_topic_0000001244141037_p186688710581">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.3.4.2.1.2.2.3.1.2"><p id="cce_10_0003__cce_10_0198_p16681570588">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.3.4.2.1.2.2.3.1.2"><p id="cce_10_0003__en-us_topic_0000001244141037_p16681570588">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0003__cce_10_0198_row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p1669177185817">Specification</p>
+<tbody><tr id="cce_10_0003__en-us_topic_0000001244141037_row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p1669177185817">Specification</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1995811631516">Node specifications cannot be modified when you reset a node.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p1995811631516">Node specifications cannot be modified when you reset a node.</p>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row20701239458"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p66685314111">Container Engine</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row20701239458"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p66685314111">Container Engine</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1015871915468">CCE clusters support Docker. </p>
-<p id="cce_10_0003__cce_10_0198_p13666533417">For a CCE Turbo cluster, both <strong id="cce_10_0003__b1631655112116">Docker</strong> and <strong id="cce_10_0003__b1032145582120">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>. </p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><div class="p" id="cce_10_0003__en-us_topic_0000001244141037_p1015871915468">CCE clusters support Docker and containerd in some scenarios.<ul id="cce_10_0003__en-us_topic_0000001199021246_ul93311957155518"><li id="cce_10_0003__en-us_topic_0000001199021246_li1770423185614">VPC network clusters of v1.23 and later versions support containerd. Container tunnel network clusters of v1.23.2-r0 and later versions support containerd.</li><li id="cce_10_0003__en-us_topic_0000001199021246_li1873025821011">For a CCE Turbo cluster, both <strong id="cce_10_0003__b3523122817451">Docker</strong> and <strong id="cce_10_0003__b1952402844514">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>.</li></ul>
+</div>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p176690785813">OS</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p176690785813">OS</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1058345314295"><strong id="cce_10_0003__b192781812223">Public image</strong>: Select an OS for the node.</p>
-<p id="cce_10_0003__cce_10_0198_p89866115220"><strong id="cce_10_0003__b46501920162212">Private image</strong>: You can use private images.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p1058345314295"><strong id="cce_10_0003__b192781812223">Public image</strong>: Select an OS for the node.</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p89866115220"><strong id="cce_10_0003__b46501920162212">Private image</strong>: You can use private images.</p>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p1917631063017">Login Mode</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p1917631063017">Login Mode</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><ul id="cce_10_0003__ul721024291810"><li id="cce_10_0003__cce_10_0363_li1857913131710"><strong id="cce_10_0003__cce_10_0363_b9138131116117">Key Pair</strong><p id="cce_10_0003__cce_10_0363_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
-<p id="cce_10_0003__cce_10_0363_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0003__cce_10_0363_cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.1.2.2.3.1.2 "><ul id="cce_10_0003__ul721024291810"><li id="cce_10_0003__en-us_topic_0000001199021246_li1857913131710"><strong id="cce_10_0003__en-us_topic_0000001199021246_b68153983718">Key Pair</strong><p id="cce_10_0003__en-us_topic_0000001199021246_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0003__en-us_topic_0000001199021246_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0003__b651819785104724">Create Key Pair</strong>.</p>
 </li></ul>
 </td>
 </tr>
@@ -45,74 +45,74 @@
 </table>
 </div>
 </div>
-<p id="cce_10_0003__cce_10_0198_p15555174812382"><strong id="cce_10_0003__b4911180152918">Storage Settings</strong></p>
-<div class="p" id="cce_10_0003__cce_10_0198_p866914735818">Configure storage resources on a node for the containers running on it.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__cce_10_0198_table56691276581" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0003__cce_10_0198_row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.3.4.2.3.1.2.3.1.1"><p id="cce_10_0003__cce_10_0198_p9669576584">Parameter</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p15555174812382"><strong id="cce_10_0003__b4911180152918">Storage Settings</strong></p>
+<div class="p" id="cce_10_0003__en-us_topic_0000001244141037_p866914735818">Configure storage resources on a node for the containers running on it.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__en-us_topic_0000001244141037_table56691276581" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0003__en-us_topic_0000001244141037_row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.4.3.4.2.3.1.2.3.1.1"><p id="cce_10_0003__en-us_topic_0000001244141037_p9669576584">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.3.4.2.3.1.2.3.1.2"><p id="cce_10_0003__cce_10_0198_p366912711589">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.4.3.4.2.3.1.2.3.1.2"><p id="cce_10_0003__en-us_topic_0000001244141037_p366912711589">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0003__cce_10_0198_row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p666916719588">System Disk</p>
+<tbody><tr id="cce_10_0003__en-us_topic_0000001244141037_row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p666916719588">System Disk</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p590942616323">Directly use the system disk of the cloud server.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p590942616323">Directly use the system disk of the cloud server.</p>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p0669147185817">Data Disk</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p0669147185817">Data Disk</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p17207615113820"><strong id="cce_10_0003__cce_10_0198_b034255085317">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0003__cce_10_0198_b1034825011538">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
-<p id="cce_10_0003__cce_10_0198_p3752312011">Click <strong id="cce_10_0003__cce_10_0198_b291501816313">Expand</strong> and select <strong id="cce_10_0003__cce_10_0198_b325193733516">Allocate Disk Space</strong> to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</p>
-<p id="cce_10_0003__cce_10_0198_p1391618153118">For other data disks, a raw disk is created without any processing by default. You can also click <strong id="cce_10_0003__cce_10_0198_b16127101911540">Expand</strong> and select <strong id="cce_10_0003__cce_10_0198_b21351519135417">Mount Disk</strong> to mount the data disk to a specified directory. </p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.3.4.2.3.1.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p17207615113820"><strong id="cce_10_0003__b1390730388104724">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0003__b1472993896104724">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p3752312011">Click <strong id="cce_10_0003__b1727123015314">Expand</strong> and select <strong id="cce_10_0003__b57272301132">Allocate Disk Space</strong> to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p1391618153118">For other data disks, a raw disk is created without any processing by default. You can also click <strong id="cce_10_0003__b1590910561034">Expand</strong> and select <strong id="cce_10_0003__b1790913563312">Mount Disk</strong> to mount the data disk to a specified directory. </p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
 </div>
-<div class="p" id="cce_10_0003__cce_10_0198_p44821251133819"><strong id="cce_10_0003__b197939372910">Advanced Settings</strong>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__cce_10_0198_table101545619373" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0003__cce_10_0198_row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.4.3.4.2.4.2.2.3.1.1"><p id="cce_10_0003__cce_10_0198_p2152561377">Parameter</p>
+<div class="p" id="cce_10_0003__en-us_topic_0000001244141037_p44821251133819"><strong id="cce_10_0003__b197939372910">Advanced Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0003__en-us_topic_0000001244141037_table101545619373" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0003__en-us_topic_0000001244141037_row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.66%" id="mcps1.3.4.3.4.2.4.2.2.3.1.1"><p id="cce_10_0003__en-us_topic_0000001244141037_p2152561377">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.4.3.4.2.4.2.2.3.1.2"><p id="cce_10_0003__cce_10_0198_p1515195616375">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="76.34%" id="mcps1.3.4.3.4.2.4.2.2.3.1.2"><p id="cce_10_0003__en-us_topic_0000001244141037_p1515195616375">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0003__cce_10_0198_row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p1253915513402">Kubernetes Label</p>
+<tbody><tr id="cce_10_0003__en-us_topic_0000001244141037_row653985164019"><td class="cellrowborder" valign="top" width="23.66%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p1253915513402">Kubernetes Label</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p11258124419136">Click <strong id="cce_10_0003__cce_10_0198_b1386891911119">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
-<p id="cce_10_0003__cce_10_0198_p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+<td class="cellrowborder" valign="top" width="76.34%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p11258124419136">Click <strong id="cce_10_0003__b20746185012415">Add</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p25391859406">Resource Tag</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row25394514014"><td class="cellrowborder" valign="top" width="23.66%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p25391859406">Resource Tag</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p14909254174019">You can add resource tags to classify resources.</p>
-<p id="cce_10_0003__cce_10_0198_p10327184710426">You can create <strong id="cce_10_0003__cce_10_0198_b1229534941117">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
-<p id="cce_10_0003__cce_10_0198_p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0003__cce_10_0198_i111451122126">node id</em>" tag.</p>
+<td class="cellrowborder" valign="top" width="76.34%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p14909254174019">You can add resource tags to classify resources.</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p10327184710426">You can create <strong id="cce_10_0003__b227314317512">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0003__i77342412810">node id</em>" tag.</p>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p55391457404">Taint</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row115391952402"><td class="cellrowborder" valign="top" width="23.66%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p55391457404">Taint</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><div class="p" id="cce_10_0003__cce_10_0198_p2875141354415">This field is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0003__cce_10_0198_ul17274222121015"><li id="cce_10_0003__cce_10_0198_li227482216106"><strong id="cce_10_0003__cce_10_0198_b315322791211">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0003__cce_10_0198_li7274112241020"><strong id="cce_10_0003__cce_10_0198_b959462991212">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0003__cce_10_0198_li2274182211010"><strong id="cce_10_0003__cce_10_0198_b1842253117126">Effect</strong>: Available options are <strong id="cce_10_0003__cce_10_0198_b18422153171218">NoSchedule</strong>, <strong id="cce_10_0003__cce_10_0198_b2042312311128">PreferNoSchedule</strong>, and <strong id="cce_10_0003__cce_10_0198_b1042343111212">NoExecute</strong>.</li></ul>
-<div class="notice" id="cce_10_0003__cce_10_0198_note77443231113"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0003__cce_10_0198_ul104271158181515"><li id="cce_10_0003__cce_10_0198_li042725811158">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-up may fail or pods cannot be scheduled onto the added nodes.</li><li id="cce_10_0003__cce_10_0198_li642712581152">After a node pool is created, you can click <strong id="cce_10_0003__cce_10_0198_b15911477124">Edit</strong> to modify its configuration. The modification will be synchronized to all nodes in the node pool.</li></ul>
+<td class="cellrowborder" valign="top" width="76.34%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><div class="p" id="cce_10_0003__en-us_topic_0000001244141037_p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0003__en-us_topic_0000001244141037_ul17274222121015"><li id="cce_10_0003__en-us_topic_0000001244141037_li227482216106"><strong id="cce_10_0003__b1830560298">Key</strong>: A key must contain 1 to 63 characters starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0003__en-us_topic_0000001244141037_li7274112241020"><strong id="cce_10_0003__b1141184392">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0003__en-us_topic_0000001244141037_li2274182211010"><strong id="cce_10_0003__b111825619918">Effect</strong>: Available options are <strong id="cce_10_0003__b191821668918">NoSchedule</strong>, <strong id="cce_10_0003__b21821662912">PreferNoSchedule</strong>, and <strong id="cce_10_0003__b101821063914">NoExecute</strong>.</li></ul>
+<div class="notice" id="cce_10_0003__en-us_topic_0000001244141037_note77443231113"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0003__en-us_topic_0000001244141037_ul104271158181515"><li id="cce_10_0003__en-us_topic_0000001244141037_li042725811158">If taints are used, you must configure tolerations in the YAML files of pods. Otherwise, scale-up may fail or pods cannot be scheduled onto the added nodes.</li><li id="cce_10_0003__en-us_topic_0000001244141037_li642712581152">After a node pool is created, you can click <strong id="cce_10_0003__b7143101213920">Edit</strong> to modify its configuration. The modification will be synchronized to all nodes in the node pool.</li></ul>
 </div></div>
 </div>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p054015516406">Max. Pods</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row155390520404"><td class="cellrowborder" valign="top" width="23.66%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p054015516406">Max. Pods</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
-<p id="cce_10_0003__cce_10_0198_p272611351429">This limit prevents the node from being overloaded with pods.</p>
+<td class="cellrowborder" valign="top" width="76.34%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p272611351429">This limit prevents the node from being overloaded with pods.</p>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p534319566391">Pre-installation Command</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row23431056203915"><td class="cellrowborder" valign="top" width="23.66%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p534319566391">Pre-installation Command</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
-<p id="cce_10_0003__cce_10_0198_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
+<td class="cellrowborder" valign="top" width="76.34%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
 </td>
 </tr>
-<tr id="cce_10_0003__cce_10_0198_row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__cce_10_0198_p18677104643916">Post-installation Command</p>
+<tr id="cce_10_0003__en-us_topic_0000001244141037_row1167794673912"><td class="cellrowborder" valign="top" width="23.66%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.1 "><p id="cce_10_0003__en-us_topic_0000001244141037_p18677104643916">Post-installation Command</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__cce_10_0198_p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
-<p id="cce_10_0003__cce_10_0198_p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
+<td class="cellrowborder" valign="top" width="76.34%" headers="mcps1.3.4.3.4.2.4.2.2.3.1.2 "><p id="cce_10_0003__en-us_topic_0000001244141037_p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0003__en-us_topic_0000001244141037_p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0006.html b/docs/cce/umn/cce_10_0006.html
index 3e407221..361fba7e 100644
--- a/docs/cce/umn/cce_10_0006.html
+++ b/docs/cce/umn/cce_10_0006.html
@@ -4,12 +4,12 @@
 <div id="body1522665832344"><p id="cce_10_0006__p11116113204610">CCE provides Kubernetes-native container deployment and management and supports lifecycle management of container workloads, including creation, configuration, monitoring, auto scaling, upgrade, uninstall, service discovery, and load balancing.</p>
 <div class="section" id="cce_10_0006__section9645114684816"><h4 class="sectiontitle">Pod</h4><p id="cce_10_0006__en-us_topic_0254767870_p356108173515">A pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. A pod encapsulates one or more containers, storage volumes, a unique network IP address, and options that govern how the containers should run.</p>
 <p id="cce_10_0006__en-us_topic_0254767870_p4629172611480">Pods can be used in either of the following ways:</p>
-<ul id="cce_10_0006__en-us_topic_0254767870_ul062982617481"><li id="cce_10_0006__en-us_topic_0254767870_li1629172611482">A container is running in a pod. This is the most common usage of pods in Kubernetes. You can view the pod as a single encapsulated container, but Kubernetes directly manages pods instead of containers.</li><li id="cce_10_0006__en-us_topic_0254767870_li1962932615480">Multiple containers that need to be coupled and share resources run in a pod. In this scenario, an application contains a main container and several sidecar containers, as shown in <a href="#cce_10_0006__en-us_topic_0254767870_fig347141918551">Figure 1</a>. For example, the main container is a web server that provides file services from a fixed directory, and a sidecar container periodically downloads files to the directory.<div class="fignone" id="cce_10_0006__en-us_topic_0254767870_fig347141918551"><a name="cce_10_0006__en-us_topic_0254767870_fig347141918551"></a><a name="en-us_topic_0254767870_fig347141918551"></a><span class="figcap"><b>Figure 1 </b>Pod</span><br><span><img id="cce_10_0006__en-us_topic_0254767870_image1835215316361" src="en-us_image_0258392378.png"></span></div>
+<ul id="cce_10_0006__en-us_topic_0254767870_ul062982617481"><li id="cce_10_0006__en-us_topic_0254767870_li1629172611482">A container is running in a pod. This is the most common usage of pods in Kubernetes. You can view the pod as a single encapsulated container, but Kubernetes directly manages pods instead of containers.</li><li id="cce_10_0006__en-us_topic_0254767870_li1962932615480">Multiple containers that need to be coupled and share resources run in a pod. In this scenario, an application contains a main container and several sidecar containers, as shown in <a href="#cce_10_0006__en-us_topic_0254767870_fig347141918551">Figure 1</a>. For example, the main container is a web server that provides file services from a fixed directory, and a sidecar container periodically downloads files to the directory.<div class="fignone" id="cce_10_0006__en-us_topic_0254767870_fig347141918551"><a name="cce_10_0006__en-us_topic_0254767870_fig347141918551"></a><a name="en-us_topic_0254767870_fig347141918551"></a><span class="figcap"><b>Figure 1 </b>Pod</span><br><span><img id="cce_10_0006__en-us_topic_0254767870_image1835215316361" src="en-us_image_0000001518222716.png"></span></div>
 </li></ul>
 <p id="cce_10_0006__en-us_topic_0254767870_p9163143619182">In Kubernetes, pods are rarely created directly. Instead, controllers such as Deployments and jobs, are used to manage pods. Controllers can create and manage multiple pods, and provide replica management, rolling upgrade, and self-healing capabilities. A controller generally uses a pod template to create corresponding pods.</p>
 </div>
 <div class="section" id="cce_10_0006__section1972719357496"><h4 class="sectiontitle">Deployment</h4><p id="cce_10_0006__en-us_topic_0249851113_p13243347131615">A pod is the smallest and simplest unit that you create or deploy in Kubernetes. It is designed to be an ephemeral, one-off entity. A pod can be evicted when node resources are insufficient and disappears along with a cluster node failure. Kubernetes provides controllers to manage pods. Controllers can create and manage pods, and provide replica management, rolling upgrade, and self-healing capabilities. The most commonly used controller is Deployment.</p>
-<div class="fignone" id="cce_10_0006__en-us_topic_0249851113_fig12546173933714"><span class="figcap"><b>Figure 2 </b>Relationship between a Deployment and pods</span><br><span><img id="cce_10_0006__en-us_topic_0249851113_image5671529113711" src="en-us_image_0258095884.png"></span></div>
+<div class="fignone" id="cce_10_0006__en-us_topic_0249851113_fig12546173933714"><span class="figcap"><b>Figure 2 </b>Relationship between a Deployment and pods</span><br><span><img id="cce_10_0006__en-us_topic_0249851113_image5671529113711" src="en-us_image_0000001569023033.png"></span></div>
 <p id="cce_10_0006__en-us_topic_0249851113_p35371248184511">A Deployment can contain one or more pods. These pods have the same role. Therefore, the system automatically distributes requests to multiple pods of a Deployment.</p>
 <p id="cce_10_0006__en-us_topic_0249851113_p11715188281">A Deployment integrates a lot of functions, including online deployment, rolling upgrade, replica creation, and restoration of online jobs. To some extent, Deployments can be used to realize unattended rollout, which greatly reduces difficulties and operation risks in the rollout process.</p>
 </div>
@@ -18,12 +18,12 @@
 <p id="cce_10_0006__en-us_topic_0249896621_p97277467269">With detailed analysis, it is found that each part of distributed stateful applications plays a different role. For example, the database nodes are deployed in active/standby mode, and pods are dependent on each other. In this case, you need to meet the following requirements for the pods:</p>
 <ul id="cce_10_0006__en-us_topic_0249896621_ul1181724132317"><li id="cce_10_0006__en-us_topic_0249896621_li10181102419231">A pod can be recognized by other pods. Therefore, a pod must have a fixed identifier.</li><li id="cce_10_0006__en-us_topic_0249896621_li81819249237">Each pod has an independent storage device. After a pod is deleted and then restored, the data read from the pod must be the same as the previous one. Otherwise, the pod status is inconsistent.</li></ul>
 <p id="cce_10_0006__en-us_topic_0249896621_p929315724313">To address the preceding requirements, Kubernetes provides StatefulSets.</p>
-<ol id="cce_10_0006__en-us_topic_0249896621_ol117020203559"><li id="cce_10_0006__en-us_topic_0249896621_li183871501692">A StatefulSet provides a fixed name for each pod following a fixed number ranging from 0 to N. After a pod is rescheduled, the pod name and the host name remain unchanged.</li><li id="cce_10_0006__en-us_topic_0249896621_li1789810518913">A StatefulSet provides a fixed access domain name for each pod through the headless Service (described in following sections).</li><li id="cce_10_0006__en-us_topic_0249896621_li43183204569">The StatefulSet creates PersistentVolumeClaims (PVCs) with fixed identifiers to ensure that pods can access the same persistent data after being rescheduled.<p id="cce_10_0006__en-us_topic_0249896621_p8536185392116"><a name="cce_10_0006__en-us_topic_0249896621_li43183204569"></a><a name="en-us_topic_0249896621_li43183204569"></a><span><img id="cce_10_0006__en-us_topic_0249896621_image9125145402111" src="en-us_image_0258203193.png"></span></p>
+<ol id="cce_10_0006__en-us_topic_0249896621_ol117020203559"><li id="cce_10_0006__en-us_topic_0249896621_li183871501692">A StatefulSet provides a fixed name for each pod following a fixed number ranging from 0 to N. After a pod is rescheduled, the pod name and the host name remain unchanged.</li><li id="cce_10_0006__en-us_topic_0249896621_li1789810518913">A StatefulSet provides a fixed access domain name for each pod through the headless Service (described in following sections).</li><li id="cce_10_0006__en-us_topic_0249896621_li43183204569">The StatefulSet creates PersistentVolumeClaims (PVCs) with fixed identifiers to ensure that pods can access the same persistent data after being rescheduled.<p id="cce_10_0006__en-us_topic_0249896621_p8536185392116"><a name="cce_10_0006__en-us_topic_0249896621_li43183204569"></a><a name="en-us_topic_0249896621_li43183204569"></a><span><img id="cce_10_0006__en-us_topic_0249896621_image9125145402111" src="en-us_image_0000001517743628.png"></span></p>
 </li></ol>
 </div>
 <div class="section" id="cce_10_0006__section7846281504"><h4 class="sectiontitle">DaemonSet</h4><p id="cce_10_0006__en-us_topic_0249851114_p441104813815">A DaemonSet runs a pod on each node in a cluster and ensures that there is only one pod. This works well for certain system-level applications, such as log collection and resource monitoring, since they must run on each node and need only a few pods. A good example is kube-proxy.</p>
 <p id="cce_10_0006__en-us_topic_0249851114_p5986375820">DaemonSets are closely related to nodes. If a node becomes faulty, the DaemonSet will not create the same pods on other nodes.</p>
-<div class="fignone" id="cce_10_0006__en-us_topic_0249851114_fig27588261914"><span class="figcap"><b>Figure 3 </b>DaemonSet</span><br><span><img id="cce_10_0006__en-us_topic_0249851114_image13336133243518" src="en-us_image_0258871213.png"></span></div>
+<div class="fignone" id="cce_10_0006__en-us_topic_0249851114_fig27588261914"><span class="figcap"><b>Figure 3 </b>DaemonSet</span><br><span><img id="cce_10_0006__en-us_topic_0249851114_image13336133243518" src="en-us_image_0000001518062772.png"></span></div>
 </div>
 <div class="section" id="cce_10_0006__section153173319578"><h4 class="sectiontitle">Job and Cron Job</h4><p id="cce_10_0006__en-us_topic_0249851115_p10889736123218">Jobs and cron jobs allow you to run short lived, one-off tasks in batch. They ensure the task pods run to completion.</p>
 <ul id="cce_10_0006__en-us_topic_0249851115_ul197714911354"><li id="cce_10_0006__en-us_topic_0249851115_li47711097352">A job is a resource object used by Kubernetes to control batch tasks. Jobs are different from long-term servo tasks (such as Deployments and StatefulSets). The former is started and terminated at specific times, while the latter runs unceasingly unless being terminated. The pods managed by a job will be automatically removed after successfully completing tasks based on user configurations.</li><li id="cce_10_0006__en-us_topic_0249851115_li249061111353">A cron job runs a job periodically on a specified schedule. A cron job object is similar to a line of a crontab file in Linux.</li></ul>
diff --git a/docs/cce/umn/cce_10_0007.html b/docs/cce/umn/cce_10_0007.html
index 3cc1f063..fe2cd9e6 100644
--- a/docs/cce/umn/cce_10_0007.html
+++ b/docs/cce/umn/cce_10_0007.html
@@ -1,10 +1,10 @@
 <a name="cce_10_0007"></a><a name="cce_10_0007"></a>
 
 <h1 class="topictitle1">Managing Workloads and Jobs</h1>
-<div id="body8662426"><div class="section" id="cce_10_0007__cce_01_0007_section430113764416"><h4 class="sectiontitle">Scenario</h4><div class="p" id="cce_10_0007__cce_01_0007_p723817425449">After a workload is created, you can upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0007__cce_01_0007_table156143911815" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Workload/Job management</caption><thead align="left"><tr id="cce_10_0007__cce_01_0007_row856143916184"><th align="left" class="cellrowborder" valign="top" width="24.610000000000003%" id="mcps1.3.1.2.1.2.3.1.1"><p id="cce_10_0007__cce_01_0007_p1571039111814">Operation</p>
+<div id="body8662426"><div class="section" id="cce_10_0007__en-us_topic_0107283638_section430113764416"><h4 class="sectiontitle">Scenario</h4><div class="p" id="cce_10_0007__en-us_topic_0107283638_p723817425449">After a workload is created, you can upgrade, monitor, roll back, or delete the workload, as well as edit its YAML file.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0007__en-us_topic_0107283638_table156143911815" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Workload/Job management</caption><thead align="left"><tr id="cce_10_0007__en-us_topic_0107283638_row856143916184"><th align="left" class="cellrowborder" valign="top" width="24.610000000000003%" id="mcps1.3.1.2.1.2.3.1.1"><p id="cce_10_0007__en-us_topic_0107283638_p1571039111814">Operation</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="75.39%" id="mcps1.3.1.2.1.2.3.1.2"><p id="cce_10_0007__cce_01_0007_p175703931816">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="75.39%" id="mcps1.3.1.2.1.2.3.1.2"><p id="cce_10_0007__en-us_topic_0107283638_p175703931816">Description</p>
 </th>
 </tr>
 </thead>
@@ -13,49 +13,49 @@
 <td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__p852495515348">You can view the CPU and memory usage of workloads and pods on the CCE console.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row75714395185"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1557739101816"><a href="#cce_10_0007__cce_01_0007_section51511928173817">View Log</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row75714395185"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p1557739101816"><a href="#cce_10_0007__en-us_topic_0107283638_section51511928173817">View Log</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p1457133921816">You can view the logs of workloads.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p1457133921816">You can view the logs of workloads.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row657239111818"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p357239201816"><a href="#cce_10_0007__cce_01_0007_section17604174417381">Upgrade</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row657239111818"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p357239201816"><a href="#cce_10_0007__en-us_topic_0107283638_section17604174417381">Upgrade</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p45783918183">You can replace images or image tags to quickly upgrade Deployments, StatefulSets, and DaemonSets without interrupting services.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p45783918183">You can replace images or image tags to quickly upgrade Deployments, StatefulSets, and DaemonSets without interrupting services.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row1657153916181"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1457639131817"><a href="#cce_10_0007__cce_01_0007_section21669213390">Edit YAML</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row1657153916181"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p1457639131817"><a href="#cce_10_0007__en-us_topic_0107283638_section21669213390">Edit YAML</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p11572397189">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p11572397189">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row1571539101815"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p105743919187"><a href="#cce_10_0007__cce_01_0007_section13324541124815">Roll Back</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row1571539101815"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p105743919187"><a href="#cce_10_0007__en-us_topic_0107283638_section13324541124815">Roll Back</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p19575392187">Only Deployments can be rolled back.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p19575392187">Only Deployments can be rolled back.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row1957163914184"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1457103915188"><a href="#cce_10_0007__section132451237607">Redeploy</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row1957163914184"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p1457103915188"><a href="#cce_10_0007__section132451237607">Redeploy</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p1457163910187">You can redeploy a workload. After the workload is redeployed, all pods in the workload will be restarted.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p1457163910187">You can redeploy a workload. After the workload is redeployed, all pods in the workload will be restarted.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row936119475198"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p183611847121911"><a href="#cce_10_0007__cce_01_0007_section12087915401">Enabling/Disabling the Upgrade</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row936119475198"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p183611847121911"><a href="#cce_10_0007__en-us_topic_0107283638_section12087915401">Enabling/Disabling the Upgrade</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p3361747151920">Only Deployments support this operation.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p3361747151920">Only Deployments support this operation.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row133611447101912"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p73613476199"><a href="#cce_10_0007__cce_01_0007_section5931193015488">Manage Label</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row133611447101912"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p73613476199"><a href="#cce_10_0007__en-us_topic_0107283638_section5931193015488">Manage Label</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p136104716195">Labels are key-value pairs and can be attached to workloads for affinity and anti-affinity scheduling. Jobs and Cron Jobs do not support this operation.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p136104716195">Labels are key-value pairs and can be attached to workloads for affinity and anti-affinity scheduling. Jobs and Cron Jobs do not support this operation.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row123611847141914"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p5361154721910"><a href="#cce_10_0007__cce_01_0007_section14423721191418">Delete</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row123611847141914"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p5361154721910"><a href="#cce_10_0007__en-us_topic_0107283638_section14423721191418">Delete</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p73612471192">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p73612471192">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered.</p>
 </td>
 </tr>
-<tr id="cce_10_0007__cce_01_0007_row62541871218"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__cce_01_0007_p1425413732116"><a href="#cce_10_0007__cce_01_0007_section1947616516301">View Events</a></p>
+<tr id="cce_10_0007__en-us_topic_0107283638_row62541871218"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__en-us_topic_0107283638_p1425413732116"><a href="#cce_10_0007__en-us_topic_0107283638_section1947616516301">View Events</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__cce_01_0007_p1725437122110">You can view event names, event types, number of occurrences, Kubernetes events, first occurrence time, and last occurrence time.</p>
+<td class="cellrowborder" valign="top" width="75.39%" headers="mcps1.3.1.2.1.2.3.1.2 "><p id="cce_10_0007__en-us_topic_0107283638_p1725437122110">You can view event names, event types, number of occurrences, Kubernetes events, first occurrence time, and last occurrence time.</p>
 </td>
 </tr>
 <tr id="cce_10_0007__row5748521152120"><td class="cellrowborder" valign="top" width="24.610000000000003%" headers="mcps1.3.1.2.1.2.3.1.1 "><p id="cce_10_0007__p137481217217">Stop/Start</p>
@@ -68,55 +68,55 @@
 </div>
 </div>
 </div>
-<div class="section" id="cce_10_0007__section7200124254011"><a name="cce_10_0007__section7200124254011"></a><a name="section7200124254011"></a><h4 class="sectiontitle">Monitoring a Workload</h4><p id="cce_10_0007__cce_01_0007_p785625243110">You can view the CPU and memory usage of Deployments and pods on the CCE console to determine the resource specifications you may need. This section uses a Deployment as an example to describe how to monitor a workload.</p>
-<ol id="cce_10_0007__cce_01_0007_ol121998089396"><li id="cce_10_0007__cce_01_0007_li9879311402"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b16451125013714">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li2774856895942"><span>Click the <strong id="cce_10_0007__b7166115916267">Deployments</strong> tab and click <span class="uicontrol" id="cce_10_0007__uicontrol791710184219"><b>Monitor</b></span> of the target workload. On the page that is displayed, you can view CPU usage and memory usage of the workload.</span></li><li id="cce_10_0007__cce_01_0007_li08455571501"><span>Click the workload name. On the <strong id="cce_10_0007__b1288064014552">Pods</strong> tab page, click the <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol594931162312"><b>Monitor</b></span> of the target pod to view its CPU and memory usage.</span></li></ol>
+<div class="section" id="cce_10_0007__section7200124254011"><a name="cce_10_0007__section7200124254011"></a><a name="section7200124254011"></a><h4 class="sectiontitle">Monitoring a Workload</h4><p id="cce_10_0007__en-us_topic_0107283638_p785625243110">You can view the CPU and memory usage of Deployments and pods on the CCE console to determine the resource specifications you may need. This section uses a Deployment as an example to describe how to monitor a workload.</p>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol121998089396"><li id="cce_10_0007__en-us_topic_0107283638_li9879311402"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b16451125013714">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li2774856895942"><span>Click the <strong id="cce_10_0007__b7166115916267">Deployments</strong> tab and click <span class="uicontrol" id="cce_10_0007__uicontrol791710184219"><b>Monitor</b></span> of the target workload. On the page that is displayed, you can view CPU usage and memory usage of the workload.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li08455571501"><span>Click the workload name. On the <strong id="cce_10_0007__b1288064014552">Pods</strong> tab page, click the <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol594931162312"><b>Monitor</b></span> of the target pod to view its CPU and memory usage.</span></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section51511928173817"><a name="cce_10_0007__cce_01_0007_section51511928173817"></a><a name="cce_01_0007_section51511928173817"></a><h4 class="sectiontitle">Viewing Logs</h4><p id="cce_10_0007__cce_01_0007_p7643185724813">You can view logs of Deployments, StatefulSets, DaemonSets, and jobs. This section uses a Deployment as an example to describe how to view logs.</p>
-<ol id="cce_10_0007__cce_01_0007_ol14644105712488"><li id="cce_10_0007__cce_01_0007_li2619151017014"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b16561443103711">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li1340513385528"><span>Click the <strong id="cce_10_0007__b1288235873716">Deployments</strong> tab and click the <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol124081538105216"><b>View Log</b></span> of the target workload.</span><p><p id="cce_10_0007__cce_01_0007_p17548132715421">On the displayed <strong id="cce_10_0007__b135652223918">View Log</strong> window, you can view logs by time.</p>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section51511928173817"><a name="cce_10_0007__en-us_topic_0107283638_section51511928173817"></a><a name="en-us_topic_0107283638_section51511928173817"></a><h4 class="sectiontitle">Viewing Logs</h4><p id="cce_10_0007__en-us_topic_0107283638_p7643185724813">You can view logs of Deployments, StatefulSets, DaemonSets, and jobs. This section uses a Deployment as an example to describe how to view logs.</p>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol14644105712488"><li id="cce_10_0007__en-us_topic_0107283638_li2619151017014"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b16561443103711">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li1340513385528"><span>Click the <strong id="cce_10_0007__b1288235873716">Deployments</strong> tab and click the <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol124081538105216"><b>View Log</b></span> of the target workload.</span><p><p id="cce_10_0007__en-us_topic_0107283638_p17548132715421">On the displayed <strong id="cce_10_0007__b135652223918">View Log</strong> window, you can view logs by time.</p>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section17604174417381"><a name="cce_10_0007__cce_01_0007_section17604174417381"></a><a name="cce_01_0007_section17604174417381"></a><h4 class="sectiontitle">Upgrading a Workload</h4><p id="cce_10_0007__cce_01_0007_p96551832133014">You quickly upgrade Deployments, StatefulSets, and DaemonSets on the CCE console.</p>
-<p id="cce_10_0007__cce_01_0007_p1243174462216">This section uses a Deployment as an example to describe how to upgrade a workload.</p>
-<p id="cce_10_0007__cce_01_0007_p15663124812311">Before replacing an image or image version, upload the new image to the SWR service.</p>
-<ol id="cce_10_0007__cce_01_0007_ol583013911434"><li id="cce_10_0007__li112420494810"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b27119519592">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li148303911437"><span>Click the <strong id="cce_10_0007__b12745715915">Deployments</strong> tab and click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol119161298236"><b>Upgrade</b></span> of the target workload.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note104981317262"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0007__cce_01_0007_ul6585203411317"><li id="cce_10_0007__cce_01_0007_li658513412313">Workloads cannot be upgraded in batches.</li><li id="cce_10_0007__cce_01_0007_li175851834193120">Before performing an in-place StatefulSet upgrade, you must manually delete old pods. Otherwise, the upgrade status is always displayed as <strong id="cce_10_0007__cce_01_0007_b340512519164">Upgrading</strong>.</li></ul>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section17604174417381"><a name="cce_10_0007__en-us_topic_0107283638_section17604174417381"></a><a name="en-us_topic_0107283638_section17604174417381"></a><h4 class="sectiontitle">Upgrading a Workload</h4><p id="cce_10_0007__en-us_topic_0107283638_p96551832133014">You quickly upgrade Deployments, StatefulSets, and DaemonSets on the CCE console.</p>
+<p id="cce_10_0007__en-us_topic_0107283638_p1243174462216">This section uses a Deployment as an example to describe how to upgrade a workload.</p>
+<p id="cce_10_0007__en-us_topic_0107283638_p15663124812311">Before replacing an image or image version, upload the new image to the SWR service.</p>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol583013911434"><li id="cce_10_0007__li112420494810"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b27119519592">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li148303911437"><span>Click the <strong id="cce_10_0007__b12745715915">Deployments</strong> tab and click <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol119161298236"><b>Upgrade</b></span> of the target workload.</span><p><div class="note" id="cce_10_0007__en-us_topic_0107283638_note104981317262"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0007__en-us_topic_0107283638_ul6585203411317"><li id="cce_10_0007__en-us_topic_0107283638_li658513412313">Workloads cannot be upgraded in batches.</li><li id="cce_10_0007__en-us_topic_0107283638_li175851834193120">Before performing an in-place StatefulSet upgrade, you must manually delete old pods. Otherwise, the upgrade status is always displayed as <strong id="cce_10_0007__en-us_topic_0107283638_b340512519164">Upgrading</strong>.</li></ul>
 </div></div>
-</p></li><li id="cce_10_0007__cce_01_0007_li8831149194314"><span>Upgrade the workload based on service requirements. The method for setting parameter is the same as that for creating a workload.</span></li><li id="cce_10_0007__cce_01_0007_li3833189134315"><span>After the update is complete, click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol8834189154313"><b>Upgrade Workload</b></span>, manually confirm the YAML file, and submit the upgrade.</span></li></ol>
+</p></li><li id="cce_10_0007__en-us_topic_0107283638_li8831149194314"><span>Upgrade the workload based on service requirements. The method for setting parameter is the same as that for creating a workload.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li3833189134315"><span>After the update is complete, click <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol8834189154313"><b>Upgrade Workload</b></span>, manually confirm the YAML file, and submit the upgrade.</span></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section21669213390"><a name="cce_10_0007__cce_01_0007_section21669213390"></a><a name="cce_01_0007_section21669213390"></a><h4 class="sectiontitle">Editing a YAML file</h4><p id="cce_10_0007__cce_01_0007_p879119319360">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded. This section uses a Deployment as an example to describe how to edit the YAML file.</p>
-<ol id="cce_10_0007__cce_01_0007_ol1879112311361"><li id="cce_10_0007__li635115103505"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b99711226311">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li1335171017509"><span>Click the <strong id="cce_10_0007__b7271634435">Deployments</strong> tab and choose <strong id="cce_10_0007__b1914134211314">More</strong> &gt; <strong id="cce_10_0007__b114612441131">Edit YAML</strong> in the <strong id="cce_10_0007__b1611811155410">Operation</strong> column of the target workload. In the dialog box that is displayed, modify the YAML file.</span></li><li id="cce_10_0007__cce_01_0007_li97921133367"><span>Click <strong id="cce_10_0007__cce_01_0007_b37471280123">Edit</strong> and then <strong id="cce_10_0007__cce_01_0007_b12759155891220">OK</strong> to save the changes.</span></li><li id="cce_10_0007__cce_01_0007_li87324268415"><span>(Optional) In the <strong id="cce_10_0007__cce_01_0007_b8257102371317">Edit YAML</strong> window, click <strong id="cce_10_0007__cce_01_0007_b13222327121315">Download</strong> to download the YAML file.</span></li></ol>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section21669213390"><a name="cce_10_0007__en-us_topic_0107283638_section21669213390"></a><a name="en-us_topic_0107283638_section21669213390"></a><h4 class="sectiontitle">Editing a YAML file</h4><p id="cce_10_0007__en-us_topic_0107283638_p879119319360">You can modify and download the YAML files of Deployments, StatefulSets, DaemonSets, and pods on the CCE console. YAML files of jobs and cron jobs can only be viewed, copied, and downloaded. This section uses a Deployment as an example to describe how to edit the YAML file.</p>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol1879112311361"><li id="cce_10_0007__li635115103505"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b99711226311">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li1335171017509"><span>Click the <strong id="cce_10_0007__b7271634435">Deployments</strong> tab and choose <strong id="cce_10_0007__b1914134211314">More</strong> &gt; <strong id="cce_10_0007__b114612441131">Edit YAML</strong> in the <strong id="cce_10_0007__b1611811155410">Operation</strong> column of the target workload. In the dialog box that is displayed, modify the YAML file.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li97921133367"><span>Click <strong id="cce_10_0007__en-us_topic_0107283638_b37471280123">Edit</strong> and then <strong id="cce_10_0007__en-us_topic_0107283638_b12759155891220">OK</strong> to save the changes.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li87324268415"><span>(Optional) In the <strong id="cce_10_0007__en-us_topic_0107283638_b8257102371317">Edit YAML</strong> window, click <strong id="cce_10_0007__en-us_topic_0107283638_b13222327121315">Download</strong> to download the YAML file.</span></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section13324541124815"><a name="cce_10_0007__cce_01_0007_section13324541124815"></a><a name="cce_01_0007_section13324541124815"></a><h4 class="sectiontitle">Rolling Back a Workload (Available Only for Deployments)</h4><p id="cce_10_0007__cce_01_0007_p252119142614">CCE records the release history of all Deployments. You can roll back a Deployment to a specified version.</p>
-<ol id="cce_10_0007__cce_01_0007_ol165211495268"><li id="cce_10_0007__cce_01_0007_li0901438403"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b795484911515">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li1254215491914"><span>Click the <strong id="cce_10_0007__b101810579516">Deployments</strong> tab, choose <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol15439491916"><b>More &gt; Roll Back</b></span> in the <strong id="cce_10_0007__b12851052966">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__cce_01_0007_li383212838"><span>Switch to the <strong id="cce_10_0007__b330495017189">Change History</strong> tab page, click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol1583332138"><b>Roll Back to This Version</b></span> of the target version, manually confirm the YAML file, and click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol255289318"><b>OK</b></span>.</span><p><p id="cce_10_0007__p119891725195220"></p>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section13324541124815"><a name="cce_10_0007__en-us_topic_0107283638_section13324541124815"></a><a name="en-us_topic_0107283638_section13324541124815"></a><h4 class="sectiontitle">Rolling Back a Workload (Available Only for Deployments)</h4><p id="cce_10_0007__en-us_topic_0107283638_p252119142614">CCE records the release history of all Deployments. You can roll back a Deployment to a specified version.</p>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol165211495268"><li id="cce_10_0007__en-us_topic_0107283638_li0901438403"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b795484911515">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li1254215491914"><span>Click the <strong id="cce_10_0007__b101810579516">Deployments</strong> tab, choose <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol15439491916"><b>More &gt; Roll Back</b></span> in the <strong id="cce_10_0007__b12851052966">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li383212838"><span>Switch to the <strong id="cce_10_0007__b330495017189">Change History</strong> tab page, click <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol1583332138"><b>Roll Back to This Version</b></span> of the target version, manually confirm the YAML file, and click <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol255289318"><b>OK</b></span>.</span><p><p id="cce_10_0007__p119891725195220"></p>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0007__section132451237607"><a name="cce_10_0007__section132451237607"></a><a name="section132451237607"></a><h4 class="sectiontitle">Redeploying a Workload</h4><p id="cce_10_0007__p15601819195812">After you redeploy a workload, all pods in the workload will be restarted. This section uses Deployments as an example to illustrate how to redeploy a workload.</p>
 <ol id="cce_10_0007__ol0529114105916"><li id="cce_10_0007__li152911415912"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b354372611238">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li2052917419597"><span>Click the <strong id="cce_10_0007__b29910305233">Deployments</strong> tab and choose <strong id="cce_10_0007__b173340152314">More</strong> &gt; <strong id="cce_10_0007__b20709174214233">Redeploy</strong> in the <strong id="cce_10_0007__b152255482410">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__li052984175917"><span>In the dialog box that is displayed, click <span class="uicontrol" id="cce_10_0007__uicontrol55291047592"><b>Yes</b></span> to redeploy the workload.</span></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section12087915401"><a name="cce_10_0007__cce_01_0007_section12087915401"></a><a name="cce_01_0007_section12087915401"></a><h4 class="sectiontitle">Disabling/Enabling Upgrade (Available Only for Deployments)</h4><p id="cce_10_0007__p209311112155710">Only Deployments support this operation.</p>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section12087915401"><a name="cce_10_0007__en-us_topic_0107283638_section12087915401"></a><a name="en-us_topic_0107283638_section12087915401"></a><h4 class="sectiontitle">Disabling/Enabling Upgrade (Available Only for Deployments)</h4><p id="cce_10_0007__p209311112155710">Only Deployments support this operation.</p>
 <ul id="cce_10_0007__ul978411517574"><li id="cce_10_0007__li177841115105714">After the upgrade is disabled, the upgrade command can be delivered but will not be applied to the pods.<p id="cce_10_0007__p28775173578"><a name="cce_10_0007__li177841115105714"></a><a name="li177841115105714"></a>If you are performing a rolling upgrade, the rolling upgrade stops after the disabling upgrade command is delivered. In this case, the new and old pods co-exist.</p>
 </li><li id="cce_10_0007__li14784141565720">If a Deployment is being upgraded, it can be upgraded or rolled back. Its pods will inherit the latest updates of the Deployment. If they are inconsistent, the pods are upgraded automatically according to the latest information of the Deployment.</li></ul>
-<div class="notice" id="cce_10_0007__cce_01_0007_note10276839151110"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0007__cce_01_0007_p17277163941114">Deployments in the disable upgrade state cannot be rolled back.</p>
+<div class="notice" id="cce_10_0007__en-us_topic_0107283638_note10276839151110"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0007__en-us_topic_0107283638_p17277163941114">Deployments in the disable upgrade state cannot be rolled back.</p>
 </div></div>
-<ol id="cce_10_0007__cce_01_0007_ol1188315418332"><li id="cce_10_0007__cce_01_0007_li1388334119335"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b12661165123017">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li1588424111338"><span>Click the <strong id="cce_10_0007__b311310115308">Deployments</strong> tab and choose <strong id="cce_10_0007__b1292342073613">More</strong> &gt; <strong id="cce_10_0007__b4531823163610">Disable/Enable Upgrade</strong> in the <strong id="cce_10_0007__b1629163073616">Operation</strong> column of the workload.</span></li><li id="cce_10_0007__cce_01_0007_li1288404118334"><span>In the dialog box that is displayed, click <strong id="cce_10_0007__b954833253613">Yes</strong>.</span></li></ol>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol1188315418332"><li id="cce_10_0007__en-us_topic_0107283638_li1388334119335"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b12661165123017">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li1588424111338"><span>Click the <strong id="cce_10_0007__b311310115308">Deployments</strong> tab and choose <strong id="cce_10_0007__b1292342073613">More</strong> &gt; <strong id="cce_10_0007__b4531823163610">Disable/Enable Upgrade</strong> in the <strong id="cce_10_0007__b1629163073616">Operation</strong> column of the workload.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li1288404118334"><span>In the dialog box that is displayed, click <strong id="cce_10_0007__b954833253613">Yes</strong>.</span></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section5931193015488"><a name="cce_10_0007__cce_01_0007_section5931193015488"></a><a name="cce_01_0007_section5931193015488"></a><h4 class="sectiontitle">Managing Labels</h4><p id="cce_10_0007__cce_01_0007_p13735621112611">Labels are key-value pairs and can be attached to workloads. Workload labels are often used for affinity and anti-affinity scheduling. You can add labels to multiple workloads or a specified workload.</p>
-<p id="cce_10_0007__cce_01_0007_p224810259211">You can manage the labels of Deployments, StatefulSets, and DaemonSets based on service requirements. This section uses Deployments as an example to describe how to manage labels.</p>
-<p id="cce_10_0007__cce_01_0007_a25e981ca77e9418595f87f7400290694">In the following figure, three labels (release, env, and role) are defined for workload APP 1, APP 2, and APP 3. The values of these labels vary with workload.</p>
-<ul id="cce_10_0007__cce_01_0007_ul7510750182517"><li id="cce_10_0007__cce_01_0007_li451085020252">Label of APP 1: [release:alpha;env:development;role:frontend]</li><li id="cce_10_0007__cce_01_0007_li168003418263">Label of APP 2: [release:beta;env:testing;role:frontend]</li><li id="cce_10_0007__cce_01_0007_li28171735122615">Label of APP 3: [release:alpha;env:production;role:backend]</li></ul>
-<p id="cce_10_0007__cce_01_0007_a3ba0363fee1e4f84a725cc485dc75fab">If you set <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol5203060593540"><b>key</b></span> to <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol1036857593540"><b>role</b></span> and <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol5756907293540"><b>value</b></span> to <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol4045549593540"><b>frontend</b></span> when using workload scheduling or another function, APP 1 and APP 2 will be selected.</p>
-<div class="fignone" id="cce_10_0007__cce_01_0007_ff50c8d071f4d462bb116f4e3d67c131c"><span class="figcap"><b>Figure 1 </b>Label example</span><br><span><img class="vsd" id="cce_10_0007__cce_01_0007_image1555172419716" src="en-us_image_0000001408895746.png"></span></div>
-<ol id="cce_10_0007__cce_01_0007_ol6251112511220"><li id="cce_10_0007__cce_01_0007_li53548551606"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b534795220364">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li22871259152611"><span>Click the <strong id="cce_10_0007__b8876856103619">Deployments</strong> tab and choose <strong id="cce_10_0007__b754745914364">More</strong> &gt; <strong id="cce_10_0007__b651528153710">Manage Label</strong> in the <strong id="cce_10_0007__b11780310143710">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__cce_01_0007_li47616189277"><span>Click <strong id="cce_10_0007__b192795402372">Add</strong>, enter a key and a value, and click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol636022132816"><b>OK</b></span>.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note163751811133416"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0007__cce_01_0007_p03751011133411">A key-value pair must contain 1 to 63 characters starting and ending with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed.</p>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section5931193015488"><a name="cce_10_0007__en-us_topic_0107283638_section5931193015488"></a><a name="en-us_topic_0107283638_section5931193015488"></a><h4 class="sectiontitle">Managing Labels</h4><p id="cce_10_0007__en-us_topic_0107283638_p13735621112611">Labels are key-value pairs and can be attached to workloads. Workload labels are often used for affinity and anti-affinity scheduling. You can add labels to multiple workloads or a specified workload.</p>
+<p id="cce_10_0007__en-us_topic_0107283638_p224810259211">You can manage the labels of Deployments, StatefulSets, and DaemonSets based on service requirements. This section uses Deployments as an example to describe how to manage labels.</p>
+<p id="cce_10_0007__en-us_topic_0107283638_a25e981ca77e9418595f87f7400290694">In the following figure, three labels (release, env, and role) are defined for workload APP 1, APP 2, and APP 3. The values of these labels vary with workload.</p>
+<ul id="cce_10_0007__en-us_topic_0107283638_ul7510750182517"><li id="cce_10_0007__en-us_topic_0107283638_li451085020252">Label of APP 1: [release:alpha;env:development;role:frontend]</li><li id="cce_10_0007__en-us_topic_0107283638_li168003418263">Label of APP 2: [release:beta;env:testing;role:frontend]</li><li id="cce_10_0007__en-us_topic_0107283638_li28171735122615">Label of APP 3: [release:alpha;env:production;role:backend]</li></ul>
+<p id="cce_10_0007__en-us_topic_0107283638_a3ba0363fee1e4f84a725cc485dc75fab">If you set <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol5203060593540"><b>key</b></span> to <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol1036857593540"><b>role</b></span> and <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol5756907293540"><b>value</b></span> to <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol4045549593540"><b>frontend</b></span> when using workload scheduling or another function, APP 1 and APP 2 will be selected.</p>
+<div class="fignone" id="cce_10_0007__en-us_topic_0107283638_ff50c8d071f4d462bb116f4e3d67c131c"><span class="figcap"><b>Figure 1 </b>Label example</span><br><span><img class="vsd" id="cce_10_0007__en-us_topic_0107283638_image1555172419716" src="en-us_image_0000001517903028.png"></span></div>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol6251112511220"><li id="cce_10_0007__en-us_topic_0107283638_li53548551606"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b534795220364">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li22871259152611"><span>Click the <strong id="cce_10_0007__b8876856103619">Deployments</strong> tab and choose <strong id="cce_10_0007__b754745914364">More</strong> &gt; <strong id="cce_10_0007__b651528153710">Manage Label</strong> in the <strong id="cce_10_0007__b11780310143710">Operation</strong> column of the target workload.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li47616189277"><span>Click <strong id="cce_10_0007__b192795402372">Add</strong>, enter a key and a value, and click <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol636022132816"><b>OK</b></span>.</span><p><div class="note" id="cce_10_0007__en-us_topic_0107283638_note163751811133416"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0007__en-us_topic_0107283638_p03751011133411">A key-value pair must contain 1 to 63 characters starting and ending with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed.</p>
 </div></div>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section14423721191418"><a name="cce_10_0007__cce_01_0007_section14423721191418"></a><a name="cce_01_0007_section14423721191418"></a><h4 class="sectiontitle">Deleting a Workload/Job</h4><p id="cce_10_0007__cce_01_0007_p44461328132920">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered. Exercise caution when you perform this operation. This section uses a Deployment as an example to describe how to delete a workload.</p>
-<ol id="cce_10_0007__cce_01_0007_ol16301162312555"><li id="cce_10_0007__li1824612582414"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b3899151143811">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__cce_01_0007_li23014231555"><span>In the same row as the workload you will delete, choose <strong id="cce_10_0007__cce_01_0007_b2032918125613">Operation</strong> &gt; <strong id="cce_10_0007__cce_01_0007_b0329141219611">More</strong> &gt; <strong id="cce_10_0007__cce_01_0007_b23291912765">Delete</strong>.</span><p><p id="cce_10_0007__cce_01_0007_p11245223162515">Read the system prompts carefully. A workload cannot be recovered after it is deleted. Exercise caution when performing this operation.</p>
-</p></li><li id="cce_10_0007__cce_01_0007_li1566102365617"><span>Click <strong id="cce_10_0007__cce_01_0007_b2297164413617">Yes</strong>.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note1933510551189"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0007__cce_01_0007_ul204031813191914"><li id="cce_10_0007__cce_01_0007_li7404151371913">If the node where the pod is located is unavailable or shut down and the workload cannot be deleted, you can forcibly delete the pod from the pod list on the workload details page.</li><li id="cce_10_0007__cce_01_0007_li10404113191914">Ensure that the storage volumes to be deleted are not used by other workloads. If these volumes are imported or have snapshots, you can only unbind them.</li></ul>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section14423721191418"><a name="cce_10_0007__en-us_topic_0107283638_section14423721191418"></a><a name="en-us_topic_0107283638_section14423721191418"></a><h4 class="sectiontitle">Deleting a Workload/Job</h4><p id="cce_10_0007__en-us_topic_0107283638_p44461328132920">You can delete a workload or job that is no longer needed. Deleted workloads or jobs cannot be recovered. Exercise caution when you perform this operation. This section uses a Deployment as an example to describe how to delete a workload.</p>
+<ol id="cce_10_0007__en-us_topic_0107283638_ol16301162312555"><li id="cce_10_0007__li1824612582414"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b3899151143811">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__en-us_topic_0107283638_li23014231555"><span>In the same row as the workload you will delete, choose <strong id="cce_10_0007__en-us_topic_0107283638_b2032918125613">Operation</strong> &gt; <strong id="cce_10_0007__en-us_topic_0107283638_b0329141219611">More</strong> &gt; <strong id="cce_10_0007__en-us_topic_0107283638_b23291912765">Delete</strong>.</span><p><p id="cce_10_0007__en-us_topic_0107283638_p11245223162515">Read the system prompts carefully. A workload cannot be recovered after it is deleted. Exercise caution when performing this operation.</p>
+</p></li><li id="cce_10_0007__en-us_topic_0107283638_li1566102365617"><span>Click <strong id="cce_10_0007__en-us_topic_0107283638_b2297164413617">Yes</strong>.</span><p><div class="note" id="cce_10_0007__en-us_topic_0107283638_note1933510551189"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0007__en-us_topic_0107283638_ul204031813191914"><li id="cce_10_0007__en-us_topic_0107283638_li7404151371913">If the node where the pod is located is unavailable or shut down and the workload cannot be deleted, you can forcibly delete the pod from the pod list on the workload details page.</li><li id="cce_10_0007__en-us_topic_0107283638_li10404113191914">Ensure that the storage volumes to be deleted are not used by other workloads. If these volumes are imported or have snapshots, you can only unbind them.</li></ul>
 </div></div>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0007__cce_01_0007_section1947616516301"><a name="cce_10_0007__cce_01_0007_section1947616516301"></a><a name="cce_01_0007_section1947616516301"></a><h4 class="sectiontitle">Viewing Events</h4><p id="cce_10_0007__p16951182315188">This section uses Deployments as an example to illustrate how to view events of a workload. To view the event of a job or cron jon, click <span class="uicontrol" id="cce_10_0007__cce_01_0007_uicontrol10969103513352"><b>View Event</b></span> in the <strong id="cce_10_0007__b515302823911">Operation</strong> column of the target workload.</p>
-<ol id="cce_10_0007__ol114609411810"><li id="cce_10_0007__li146044118811"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b126901436393">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li14460104111813"><span>On the <strong id="cce_10_0007__b9574104873918">Deployments</strong> tab page, click the target workload. In the <strong id="cce_10_0007__b9306314174612">Pods</strong> tab page, click the <span class="uicontrol" id="cce_10_0007__uicontrol41791215196"><b>View Events</b></span> to view the event name, event type, number of occurrences, Kubernetes event, first occurrence time, and last occurrence time.</span><p><div class="note" id="cce_10_0007__cce_01_0007_note645916250256"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0007__cce_01_0007_p2459102542512">Event data will be retained for one hour and then automatically deleted.</p>
+<div class="section" id="cce_10_0007__en-us_topic_0107283638_section1947616516301"><a name="cce_10_0007__en-us_topic_0107283638_section1947616516301"></a><a name="en-us_topic_0107283638_section1947616516301"></a><h4 class="sectiontitle">Viewing Events</h4><p id="cce_10_0007__p16951182315188">This section uses Deployments as an example to illustrate how to view events of a workload. To view the event of a job or cron jon, click <span class="uicontrol" id="cce_10_0007__en-us_topic_0107283638_uicontrol10969103513352"><b>View Event</b></span> in the <strong id="cce_10_0007__b515302823911">Operation</strong> column of the target workload.</p>
+<ol id="cce_10_0007__ol114609411810"><li id="cce_10_0007__li146044118811"><span>Log in to the CCE console, go to an existing cluster, and choose <strong id="cce_10_0007__b126901436393">Workloads</strong> in the navigation pane.</span></li><li id="cce_10_0007__li14460104111813"><span>On the <strong id="cce_10_0007__b9574104873918">Deployments</strong> tab page, click the target workload. In the <strong id="cce_10_0007__b9306314174612">Pods</strong> tab page, click the <span class="uicontrol" id="cce_10_0007__uicontrol41791215196"><b>View Events</b></span> to view the event name, event type, number of occurrences, Kubernetes event, first occurrence time, and last occurrence time.</span><p><div class="note" id="cce_10_0007__en-us_topic_0107283638_note645916250256"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0007__en-us_topic_0107283638_p2459102542512">Event data will be retained for one hour and then automatically deleted.</p>
 </div></div>
 </p></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_10_0010.html b/docs/cce/umn/cce_10_0010.html
index 6a672493..4ce43b33 100644
--- a/docs/cce/umn/cce_10_0010.html
+++ b/docs/cce/umn/cce_10_0010.html
@@ -4,7 +4,7 @@
 <div id="body1522665832344"><p id="cce_10_0010__p13310145119810">You can learn about a cluster network from the following two aspects:</p>
 <ul id="cce_10_0010__ul65247121891"><li id="cce_10_0010__li14524161214917">What is a cluster network like? A cluster consists of multiple nodes, and pods (or containers) are running on the nodes. Nodes and containers need to communicate with each other. For details about the cluster network types and their functions, see <a href="#cce_10_0010__section1131733719195">Cluster Network Structure</a>.</li><li id="cce_10_0010__li55241612391">How is pod access implemented in a cluster? Accessing a pod or container is a process of accessing services of a user. Kubernetes provides <a href="#cce_10_0010__section1860619221134">Service</a> and <a href="#cce_10_0010__section1248852094313">Ingress</a> to address pod access issues. This section summarizes common network access scenarios. You can select the proper scenario based on site requirements. For details about the network access scenarios, see <a href="#cce_10_0010__section1286493159">Access Scenarios</a>.</li></ul>
 <div class="section" id="cce_10_0010__section1131733719195"><a name="cce_10_0010__section1131733719195"></a><a name="section1131733719195"></a><h4 class="sectiontitle">Cluster Network Structure</h4><p id="cce_10_0010__p3299181794916">All nodes in the cluster are located in a VPC and use the VPC network. The container network is managed by dedicated network add-ons.</p>
-<p id="cce_10_0010__p452843519446"><span><img id="cce_10_0010__image94831936164418" src="en-us_image_0000001199181334.png"></span></p>
+<p id="cce_10_0010__p452843519446"><span><img id="cce_10_0010__image94831936164418" src="en-us_image_0000001518222536.png"></span></p>
 <ul id="cce_10_0010__ul1916179122617"><li id="cce_10_0010__li13455145754315"><strong id="cce_10_0010__b19468105563811">Node Network</strong><p id="cce_10_0010__p17682193014812">A node network assigns IP addresses to hosts (nodes in the figure above) in a cluster. You need to select a VPC subnet as the node network of the CCE cluster. The number of available IP addresses in a subnet determines the maximum number of nodes (including master nodes and worker nodes) that can be created in a cluster. This quantity is also affected by the container network. For details, see the container network model.</p>
 </li><li id="cce_10_0010__li16131141644715"><strong id="cce_10_0010__b1975815172433">Container Network</strong><p id="cce_10_0010__p523322010499">A container network assigns IP addresses to containers in a cluster. CCE inherits the IP-Per-Pod-Per-Network network model of Kubernetes. That is, each pod has an independent IP address on a network plane and all containers in a pod share the same network namespace. All pods in a cluster exist in a directly connected flat network. They can access each other through their IP addresses without using NAT. Kubernetes only provides a network mechanism for pods, but does not directly configure pod networks. The configuration of pod networks is implemented by specific container network add-ons. The container network add-ons are responsible for configuring networks for pods and managing container IP addresses.</p>
 <p id="cce_10_0010__p3753153443514">Currently, CCE supports the following container network models:</p>
@@ -14,20 +14,20 @@
 </li></ul>
 </div>
 <div class="section" id="cce_10_0010__section1860619221134"><a name="cce_10_0010__section1860619221134"></a><a name="section1860619221134"></a><h4 class="sectiontitle">Service</h4><p id="cce_10_0010__p314709111318">A Service is used for pod access. With a fixed IP address, a Service forwards access traffic to pods and performs load balancing for these pods.</p>
-<div class="fignone" id="cce_10_0010__en-us_topic_0249851121_fig163156154816"><span class="figcap"><b>Figure 1 </b>Accessing pods through a Service</span><br><span><img id="cce_10_0010__en-us_topic_0249851121_image1926812771312" src="en-us_image_0258889981.png"></span></div>
+<div class="fignone" id="cce_10_0010__en-us_topic_0249851121_fig163156154816"><span class="figcap"><b>Figure 1 </b>Accessing pods through a Service</span><br><span><img id="cce_10_0010__en-us_topic_0249851121_image1926812771312" src="en-us_image_0000001517743432.png"></span></div>
 <p id="cce_10_0010__p831948183818">You can configure the following types of Services:</p>
 <ul id="cce_10_0010__ul953218444116"><li id="cce_10_0010__li87791418174620">ClusterIP: used to make the Service only reachable from within a cluster.</li><li id="cce_10_0010__li17876227144612">NodePort: used for access from outside a cluster. A NodePort Service is accessed through the port on the node.</li><li id="cce_10_0010__li94953274615">LoadBalancer: used for access from outside a cluster. It is an extension of NodePort, to which a load balancer routes, and external systems only need to access the load balancer.</li></ul>
 <p id="cce_10_0010__p1677717174140">For details about the Service, see <a href="cce_10_0249.html">Service Overview</a>.</p>
 </div>
 <div class="section" id="cce_10_0010__section1248852094313"><a name="cce_10_0010__section1248852094313"></a><a name="section1248852094313"></a><h4 class="sectiontitle">Ingress</h4><p id="cce_10_0010__p96672218193">Services forward requests using layer-4 TCP and UDP protocols. Ingresses forward requests using layer-7 HTTP and HTTPS protocols. Domain names and paths can be used to achieve finer granularities.</p>
-<div class="fignone" id="cce_10_0010__fig816719454212"><span class="figcap"><b>Figure 2 </b>Ingress and Service</span><br><span><img id="cce_10_0010__en-us_topic_0249851122_image8371183511310" src="en-us_image_0258961458.png"></span></div>
+<div class="fignone" id="cce_10_0010__fig816719454212"><span class="figcap"><b>Figure 2 </b>Ingress-Service</span><br><span><img id="cce_10_0010__en-us_topic_0249851122_image8371183511310" src="en-us_image_0000001517903016.png"></span></div>
 <p id="cce_10_0010__p174691141141410">For details about the ingress, see <a href="cce_10_0094.html">Ingress Overview</a>.</p>
 </div>
 <div class="section" id="cce_10_0010__section1286493159"><a name="cce_10_0010__section1286493159"></a><a name="section1286493159"></a><h4 class="sectiontitle">Access Scenarios</h4><p id="cce_10_0010__p1558001514155">Workload access scenarios can be categorized as follows:</p>
-<ul id="cce_10_0010__ul125010117542"><li id="cce_10_0010__li1466355519018">Intra-cluster access: A ClusterIP Service is used for workloads in the same cluster to access each other.</li><li id="cce_10_0010__li1014011111110">Access from outside a cluster: A Service (NodePort or LoadBalancer type) or an ingress is recommended for a workload outside a cluster to access workloads in the cluster.<ul id="cce_10_0010__ul101426119117"><li id="cce_10_0010__li1014213113116">Access through the internet requires an EIP to be bound the node or load balancer.</li><li id="cce_10_0010__li2501311125411">Access through an intranet uses only the intranet IP address of the node or load balancer. If workloads are located in different VPCs, a peering connection is required to enable communication between different VPCs.</li></ul>
-</li><li id="cce_10_0010__li1066365520014">External access initiated by a workload:<ul id="cce_10_0010__ul17529512239"><li id="cce_10_0010__li26601017165619">Accessing an intranet: The workload accesses the intranet address, but the implementation method varies depending on container network models. Ensure that the peer security group allows the access requests from the container CIDR block. </li><li id="cce_10_0010__li8257105318237">Accessing a public network: You need to assign an EIP to the node where the workload runs (when the VPC network or tunnel network model is used), bind an EIP to the pod IP address (when the Cloud Native Network 2.0 model is used), or configure SNAT rules through the NAT gateway. For details, see <a href="cce_10_0400.html">Accessing Public Networks from a Container</a>.</li></ul>
+<ul id="cce_10_0010__ul125010117542"><li id="cce_10_0010__li1466355519018">Intra-cluster access: A ClusterIP Service is used for workloads in the same cluster to access each other.</li><li id="cce_10_0010__li1014011111110">Access from outside a cluster: A Service (NodePort or LoadBalancer type) or an ingress is recommended for a workload outside a cluster to access workloads in the cluster.<ul id="cce_10_0010__ul101426119117"><li id="cce_10_0010__li8904911447">Access through the internet requires an EIP to be bound the node or load balancer.</li><li id="cce_10_0010__li2501311125411">Access through the intranet requires an internal IP address to be bound the node or load balancer. If workloads are located in different VPCs, a peering connection is required to enable communication between different VPCs.</li></ul>
+</li><li id="cce_10_0010__li1066365520014">The workload accesses the external network.<ul id="cce_10_0010__ul17529512239"><li id="cce_10_0010__li26601017165619">Accessing an intranet: The workload accesses the intranet address, but the implementation method varies depending on container network models. Ensure that the peer security group allows the access requests from the container CIDR block. </li><li id="cce_10_0010__li8257105318237">Accessing a public network: You need to assign an EIP to the node where the workload runs (when the VPC network or tunnel network model is used), bind an EIP to the pod IP address (when the Cloud Native Network 2.0 model is used), or configure SNAT rules through the NAT gateway. For details, see <a href="cce_10_0400.html">Accessing Public Networks from a Container</a>.</li></ul>
 </li></ul>
-<div class="fignone" id="cce_10_0010__fig13795829151515"><span class="figcap"><b>Figure 3 </b>Network access diagram</span><br><span><img id="cce_10_0010__image445972519529" src="en-us_image_0000001244261169.png"></span></div>
+<div class="fignone" id="cce_10_0010__fig13795829151515"><span class="figcap"><b>Figure 3 </b>Network access diagram</span><br><span><img id="cce_10_0010__image445972519529" src="en-us_image_0000001568822741.png"></span></div>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0011.html b/docs/cce/umn/cce_10_0011.html
index 1a08ed51..e0d5cdb4 100644
--- a/docs/cce/umn/cce_10_0011.html
+++ b/docs/cce/umn/cce_10_0011.html
@@ -4,7 +4,7 @@
 <div id="body1522736584192"><div class="section" id="cce_10_0011__section13559184110492"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0011__p32401248184910">ClusterIP Services allow workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
 <p id="cce_10_0011__p653753053815">The cluster-internal domain name format is <em id="cce_10_0011__i8179113533712">&lt;Service name&gt;</em>.<em id="cce_10_0011__i14179133519374">&lt;Namespace of the workload&gt;</em><strong id="cce_10_0011__b164892813716">.svc.cluster.local:</strong><em id="cce_10_0011__i19337102815712">&lt;Port&gt;</em>, for example, <strong id="cce_10_0011__b8115811381">nginx.default.svc.cluster.local:80</strong>.</p>
 <p id="cce_10_0011__p1778412445517"><a href="#cce_10_0011__fig192245420557">Figure 1</a> shows the mapping relationships between access channels, container ports, and access ports.</p>
-<div class="fignone" id="cce_10_0011__fig192245420557"><a name="cce_10_0011__fig192245420557"></a><a name="fig192245420557"></a><span class="figcap"><b>Figure 1 </b>Intra-cluster access (ClusterIP)</span><br><span><img id="cce_10_0011__image1942163010278" src="en-us_image_0000001243981117.png"></span></div>
+<div class="fignone" id="cce_10_0011__fig192245420557"><a name="cce_10_0011__fig192245420557"></a><a name="fig192245420557"></a><span class="figcap"><b>Figure 1 </b>Intra-cluster access (ClusterIP)</span><br><span><img id="cce_10_0011__image1942163010278" src="en-us_image_0000001569023045.png"></span></div>
 </div>
 <div class="section" id="cce_10_0011__section51925078171335"><h4 class="sectiontitle">Creating a ClusterIP Service</h4><ol id="cce_10_0011__ol1321170617144"><li id="cce_10_0011__li41731123658"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0011__li836916478329"><span>Choose <strong id="cce_10_0011__b85507206148">Networking</strong> in the navigation pane and click <strong id="cce_10_0011__b1938115214148">Create Service</strong> in the upper right corner.</span></li><li id="cce_10_0011__li3476651017144"><span>Set intra-cluster access parameters.</span><p><ul id="cce_10_0011__ul4446314017144"><li id="cce_10_0011__li6462394317144"><strong id="cce_10_0011__b181470402505">Service Name</strong>: Service name, which can be the same as the workload name.</li><li id="cce_10_0011__li89543531070"><strong id="cce_10_0011__b2091115317145">Service Type</strong>: Select <strong id="cce_10_0011__b291265312145">ClusterIP</strong>.</li><li id="cce_10_0011__li4800017144"><strong id="cce_10_0011__b3997151161512">Namespace</strong>: Namespace to which the workload belongs.</li><li id="cce_10_0011__li43200017144"><strong id="cce_10_0011__b16251723161514">Selector</strong>: Add a label and click <strong id="cce_10_0011__b157041550131611">Add</strong>. A Service selects a pod based on the added label. You can also click <strong id="cce_10_0011__b796831114161">Reference Workload Label</strong> to reference the label of an existing workload. In the dialog box that is displayed, select a workload and click <strong id="cce_10_0011__b1117311264160">OK</strong>.</li><li id="cce_10_0011__li388800117144"><strong id="cce_10_0011__b150413392315954">Port Settings</strong><ul id="cce_10_0011__ul13757123384316"><li id="cce_10_0011__li475711338435"><strong id="cce_10_0011__b712192113108">Protocol</strong>: protocol used by the Service.</li><li id="cce_10_0011__li353122153610"><strong id="cce_10_0011__b2766425101013">Service Port</strong>: port used by the Service. The port number ranges from 1 to 65535.</li><li id="cce_10_0011__li177581033194316"><strong id="cce_10_0011__b2045852761014">Container Port</strong>: port on which the workload listens. For example, Nginx uses port 80 by default.</li></ul>
 </li></ul>
diff --git a/docs/cce/umn/cce_10_0012.html b/docs/cce/umn/cce_10_0012.html
index 222dec7e..ace9ae5f 100644
--- a/docs/cce/umn/cce_10_0012.html
+++ b/docs/cce/umn/cce_10_0012.html
@@ -27,7 +27,7 @@
 </td>
 <td class="cellrowborder" valign="top" width="75.44999999999999%" headers="mcps1.3.3.2.3.2.2.2.3.1.2 "><p id="cce_10_0012__p17955125762613">By default, auto scaling is disabled. </p>
 <p id="cce_10_0012__p5342422191811">Install the <a href="cce_10_0154.html">autoscaler add-on</a> to enable auto scaling.</p>
-<p id="cce_10_0012__p18904057162611">After you enable auto scaling by switching on <span><img id="cce_10_0012__image990425719266" src="en-us_image_0000001201381906.png"></span>, nodes in the node pool will be automatically created or deleted based on cluster loads.</p>
+<p id="cce_10_0012__p18904057162611">After you enable auto scaling by switching on <span><img id="cce_10_0012__image990425719266" src="en-us_image_0000001518222604.png"></span>, nodes in the node pool will be automatically created or deleted based on cluster loads.</p>
 <ul id="cce_10_0012__ul13904195742619"><li id="cce_10_0012__li99041857132619"><strong id="cce_10_0012__b18715718542">Maximum Nodes</strong> and <strong id="cce_10_0012__b107211618543">Minimum Nodes</strong>: You can set the maximum and minimum number of nodes to ensure that the number of nodes to be scaled is within a proper range.</li><li id="cce_10_0012__li29041257192613"><strong id="cce_10_0012__b7125172619">Priority</strong>: Set this parameter based on service requirements. A larger value indicates a higher priority. For example, if this parameter is set to <strong id="cce_10_0012__b175514266">1</strong> and <strong id="cce_10_0012__b47651182618">4</strong> respectively for node pools A and B, B has a higher priority than A. If the priorities of multiple node pools are set to the same value, for example, <strong id="cce_10_0012__b897815614271">2</strong>, the node pools are not prioritized and the system performs scaling based on the minimum resource waste principle.<div class="note" id="cce_10_0012__note14904175718263"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0012__p13904857192611">CCE selects a node pool for auto scaling based on the following policies:</p>
 <ol type="a" id="cce_10_0012__ol1290445752616"><li id="cce_10_0012__li19904105762615">CCE uses algorithms to determine whether a node pool meets the conditions to allow scheduling of a pod in pending state, including whether the node resources are greater than requested by the pod, and whether the nodeSelect, nodeAffinity, and taints meet the conditions. In addition, the node pools that fail to be scaled (due to insufficient resources or other reasons) and are still in the 15-minute cool-down interval are filtered.</li><li id="cce_10_0012__li390415716264">If multiple node pools meet the scaling requirements, the system checks the priority of each node pool and selects the node pool with the highest priority for scaling. The value ranges from 0 to 100 and the default priority is 0. The value 100 indicates the highest priority, and the value 0 indicates the lowest priority.</li><li id="cce_10_0012__li11904155732610">If multiple node pools have the same priority or no priority is configured for them, the system selects the node pool that will consume the least resources based on the configured VM specification.</li><li id="cce_10_0012__li4904195732619">If the VM specifications of multiple node pools are the same but the node pools are deployed in different AZs, the system randomly selects a node pool to trigger scaling.</li></ol>
 </div></div>
@@ -63,19 +63,21 @@
 </tr>
 <tr id="cce_10_0012__row1979195915497"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p18005944914">Node Type</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p17807592491">For a CCE cluster, <strong id="cce_10_0012__b19627123814106">ECS</strong> and <strong id="cce_10_0012__b5633338171014">BMS</strong> are supported.</p>
-<p id="cce_10_0012__p96493611512">CCE Turbo clusters support ECSs of the VM and physical types.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><div class="p" id="cce_10_0012__p17807592491">CCE cluster:<ul id="cce_10_0012__en-us_topic_0000001199021246_ul203199555124"><li id="cce_10_0012__en-us_topic_0000001199021246_li931925518124">ECS (VM): Containers run on ECSs.</li></ul>
+</div>
+<div class="p" id="cce_10_0012__p96493611512">CCE Turbo cluster:<ul id="cce_10_0012__en-us_topic_0000001199021246_ul8196430101511"><li id="cce_10_0012__en-us_topic_0000001199021246_li31961830141515">ECS (VM): Containers run on ECSs. Only Trunkport ECSs (models that can be bound with multiple elastic network interfaces (ENIs)) are supported.</li></ul>
+</div>
 </td>
 </tr>
 <tr id="cce_10_0012__row1394816562"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p45571547134211">Container Engine</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p1015871915468">CCE clusters support Docker. Starting from CCE 1.23, containerd is supported.</p>
-<p id="cce_10_0012__p55571047184211">For a CCE Turbo cluster, both <strong id="cce_10_0012__b157645618315">Docker</strong> and <strong id="cce_10_0012__b17765176123114">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>. </p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><div class="p" id="cce_10_0012__en-us_topic_0000001244141037_p1015871915468">CCE clusters support Docker and containerd in some scenarios.<ul id="cce_10_0012__en-us_topic_0000001199021246_ul93311957155518"><li id="cce_10_0012__en-us_topic_0000001199021246_li1770423185614">VPC network clusters of v1.23 and later versions support containerd. Container tunnel network clusters of v1.23.2-r0 and later versions support containerd.</li><li id="cce_10_0012__en-us_topic_0000001199021246_li1873025821011">For a CCE Turbo cluster, both <strong id="cce_10_0012__b67143573453">Docker</strong> and <strong id="cce_10_0012__b9714105716454">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>.</li></ul>
+</div>
 </td>
 </tr>
 <tr id="cce_10_0012__row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p1669177185817">Specifications</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p156695715814">Select node specifications that best fit your business needs.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><p id="cce_10_0012__p156695715814">Select a node specification based on service requirements. The available node specifications vary depending on regions or AZs. For details, see the CCE console.</p>
 </td>
 </tr>
 <tr id="cce_10_0012__row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p176690785813">OS</p>
@@ -87,8 +89,8 @@
 </tr>
 <tr id="cce_10_0012__row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.1 "><p id="cce_10_0012__p1917631063017">Login Mode</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><ul id="cce_10_0012__ul15041824161910"><li id="cce_10_0012__cce_10_0363_li1857913131710"><strong id="cce_10_0012__cce_10_0363_b9138131116117">Key Pair</strong><p id="cce_10_0012__cce_10_0363_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
-<p id="cce_10_0012__cce_10_0363_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.4.1.2.3.1.2 "><ul id="cce_10_0012__ul15041824161910"><li id="cce_10_0012__en-us_topic_0000001199021246_li1857913131710"><strong id="cce_10_0012__en-us_topic_0000001199021246_b68153983718">Key Pair</strong><p id="cce_10_0012__en-us_topic_0000001199021246_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0012__b1538933500104647">Create Key Pair</strong>..</p>
 </li></ul>
 </td>
 </tr>
@@ -98,32 +100,33 @@
 </div>
 <p id="cce_10_0012__p136695718581"><strong id="cce_10_0012__b1636315301685">Storage Settings</strong></p>
 <div class="p" id="cce_10_0012__p866914735818">Configure storage resources on a node for the containers running on it. Set the disk size according to site requirements.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table56691276581" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0012__cce_10_0363_row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.2.3.2.6.1.2.3.1.1"><p id="cce_10_0012__cce_10_0363_p9669576584">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table56691276581" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Parameters for storage settings</caption><thead align="left"><tr id="cce_10_0012__en-us_topic_0000001199021246_row186697710581"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.2.3.2.6.1.2.3.1.1"><p id="cce_10_0012__en-us_topic_0000001199021246_p9669576584">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.2.3.2.6.1.2.3.1.2"><p id="cce_10_0012__cce_10_0363_p366912711589">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.3.2.3.2.6.1.2.3.1.2"><p id="cce_10_0012__en-us_topic_0000001199021246_p366912711589">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0012__cce_10_0363_row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p666916719588">System Disk</p>
+<tbody><tr id="cce_10_0012__en-us_topic_0000001199021246_row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p666916719588">System Disk</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p590942616323">System disk used by the node OS. The value ranges from 40 GB to 1,024 GB. The default value is 50 GB.</p>
-<div class="p" id="cce_10_0012__cce_10_0363_cce_01_0028_p196385417139"><strong id="cce_10_0012__cce_10_0363_b136271720418">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0012__cce_10_0363_b11294425727">This function is available only in certain regions.</strong><ul id="cce_10_0012__cce_10_0363_cce_01_0028_ul6195114261211"><li id="cce_10_0012__cce_10_0363_cce_01_0028_li5195194211127"><strong id="cce_10_0012__cce_10_0363_b3414281726">Encryption</strong> is not selected by default.</li><li id="cce_10_0012__cce_10_0363_cce_01_0028_li5195184201217">After you select <strong id="cce_10_0012__cce_10_0363_b1022719341521">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0012__cce_10_0363_b1222793417213">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p590942616323">System disk used by the node OS. The value ranges from 40 GB to 1,024 GB. The default value is 50 GB.</p>
+<div class="p" id="cce_10_0012__en-us_topic_0000001199021246_en-us_topic_0107283640_p196385417139"><strong id="cce_10_0012__b2019525587104647">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0012__en-us_topic_0000001199021246_en-us_topic_0107283640_b144941934193913">This function is available only in certain regions.</strong><ul id="cce_10_0012__en-us_topic_0000001199021246_en-us_topic_0107283640_ul6195114261211"><li id="cce_10_0012__en-us_topic_0000001199021246_en-us_topic_0107283640_li5195194211127"><strong id="cce_10_0012__b1484486812104647">Encryption</strong> is not selected by default.</li><li id="cce_10_0012__en-us_topic_0000001199021246_en-us_topic_0107283640_li5195184201217">After you select <strong id="cce_10_0012__b506043402104647">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0012__b1542478104647">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
 </div>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p0669147185817">Data Disk</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p0669147185817">Data Disk</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p246755017336">Data disk used by the container runtime and kubelet on the node.  </p>
-<p id="cce_10_0012__cce_10_0363_p17207615113820"><strong id="cce_10_0012__cce_10_0363_b189421213171912">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0012__cce_10_0363_b3766102113197">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
-<p id="cce_10_0012__cce_10_0363_p3752312011">Click <strong id="cce_10_0012__cce_10_0363_b869213393116">Expand</strong> to set the following parameters:</p>
-<ul id="cce_10_0012__cce_10_0363_ul197721145155911"><li id="cce_10_0012__cce_10_0363_li12110343014"><strong id="cce_10_0012__cce_10_0363_b15422114714113">Allocate Disk Space</strong>: Select this option to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</li><li id="cce_10_0012__cce_10_0363_li1095641711169"><strong id="cce_10_0012__cce_10_0363_b3246163917219">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0012__cce_10_0363_b185315414212">This function is available only in certain regions.</strong><ul id="cce_10_0012__cce_10_0363_ul1924511512168"><li id="cce_10_0012__cce_10_0363_li4245181561611"><strong id="cce_10_0012__cce_10_0363_b166022451425">Encryption</strong> is not selected by default.</li><li id="cce_10_0012__cce_10_0363_li17245415121616">After you select <strong id="cce_10_0012__cce_10_0363_b1910517483216">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0012__cce_10_0363_b181053482219">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.2.3.2.6.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p246755017336"><strong id="cce_10_0012__b2049259350104647">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0012__b877980574104647">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<ul id="cce_10_0012__en-us_topic_0000001199021246_ul324262033711"><li id="cce_10_0012__en-us_topic_0000001199021246_li1124252010378">First data disk: used for container runtime and kubelet components. The value ranges from 20 GB to 32,768 GB. The default value is 100 GB.</li><li id="cce_10_0012__en-us_topic_0000001199021246_li6177165413374">Other data disks: You can set the data disk size to a value ranging from 10 GB to 32,768 GB. The default value is 100 GB.</li></ul>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p20408122884010"><strong id="cce_10_0012__en-us_topic_0000001199021246_b11813374011">Advanced Settings</strong></p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p3752312011">Click <strong id="cce_10_0012__b1782987679104647">Expand</strong> to set the following parameters:</p>
+<ul id="cce_10_0012__en-us_topic_0000001199021246_ul197721145155911"><li id="cce_10_0012__en-us_topic_0000001199021246_li12110343014"><strong id="cce_10_0012__b1895666278104647">Allocate Disk Space</strong>: Select this option to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</li><li id="cce_10_0012__en-us_topic_0000001199021246_li1095641711169"><strong id="cce_10_0012__b2036931200104647">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0012__en-us_topic_0000001199021246_b1124561591612">This function is available only in certain regions.</strong><ul id="cce_10_0012__en-us_topic_0000001199021246_ul1924511512168"><li id="cce_10_0012__en-us_topic_0000001199021246_li4245181561611"><strong id="cce_10_0012__b280242347104647">Encryption</strong> is not selected by default.</li><li id="cce_10_0012__en-us_topic_0000001199021246_li17245415121616">After you select <strong id="cce_10_0012__b1486690962104647">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0012__b493382017104647">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
 </li></ul>
-<p id="cce_10_0012__cce_10_0363_p1391618153118"><strong id="cce_10_0012__cce_10_0363_b112491441101918">Adding Multiple Data Disks</strong></p>
-<p id="cce_10_0012__cce_10_0363_p45741654112612">A maximum of four data disks can be added. By default, raw disks are created without any processing. You can also click <strong id="cce_10_0012__cce_10_0363_b1353214375715">Expand</strong> and select any of the following options:</p>
-<ul id="cce_10_0012__cce_10_0363_ul198131191414"><li id="cce_10_0012__cce_10_0363_li1681481912112"><strong id="cce_10_0012__cce_10_0363_b650951155715">Default</strong>: By default, a raw disk is created without any processing.</li><li id="cce_10_0012__cce_10_0363_li108141119311"><strong id="cce_10_0012__cce_10_0363_b1791414137595">Mount Disk</strong>: The data disk is attached to a specified directory.</li></ul>
-<p id="cce_10_0012__cce_10_0363_p198093910435"><strong id="cce_10_0012__cce_10_0363_b61081115114914">Local Disk Description</strong></p>
-<p id="cce_10_0012__cce_10_0363_p1962741518436">If the node flavor is disk-intensive or ultra-high I/O, one data disk can be a local disk.</p>
-<p id="cce_10_0012__cce_10_0363_p99347577438">Local disks may break down and do not ensure data reliability. It is recommended that you store service data in EVS disks, which are more reliable than local disks.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p1391618153118"><strong id="cce_10_0012__en-us_topic_0000001199021246_b2029819910344">Adding Multiple Data Disks</strong></p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p45741654112612">A maximum of four data disks can be added. By default, raw disks are created without any processing. You can also click <strong id="cce_10_0012__b1207499662104647">Expand</strong> and select any of the following options:</p>
+<ul id="cce_10_0012__en-us_topic_0000001199021246_ul198131191414"><li id="cce_10_0012__en-us_topic_0000001199021246_li1681481912112"><strong id="cce_10_0012__b1059863341104647">Default</strong>: By default, a raw disk is created without any processing.</li><li id="cce_10_0012__en-us_topic_0000001199021246_li108141119311"><strong id="cce_10_0012__b1119648107104647">Mount Disk</strong>: The data disk is attached to a specified directory.</li></ul>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p198093910435"><strong id="cce_10_0012__en-us_topic_0000001199021246_b3296145420438">Local Disk Description</strong></p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p1962741518436">If the node flavor is disk-intensive or ultra-high I/O, one data disk can be a local disk.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p99347577438">Local disks may break down and do not ensure data reliability. It is recommended that you store service data in EVS disks, which are more reliable than local disks.</p>
 </td>
 </tr>
 </tbody>
@@ -161,64 +164,64 @@
 </div>
 <p id="cce_10_0012__p151517566378"><strong id="cce_10_0012__b14306151111219">Advanced Settings</strong></p>
 <div class="p" id="cce_10_0012__p1715175643712">Configure advanced node capabilities such as labels, taints, and startup command.
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table101545619373" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0012__cce_10_0363_row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.3.2.3.2.10.1.2.3.1.1"><p id="cce_10_0012__cce_10_0363_p2152561377">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0012__table101545619373" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0012__en-us_topic_0000001199021246_row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.3.2.3.2.10.1.2.3.1.1"><p id="cce_10_0012__en-us_topic_0000001199021246_p2152561377">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.3.2.3.2.10.1.2.3.1.2"><p id="cce_10_0012__cce_10_0363_p1515195616375">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="76.32%" id="mcps1.3.3.2.3.2.10.1.2.3.1.2"><p id="cce_10_0012__en-us_topic_0000001199021246_p1515195616375">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0012__cce_10_0363_row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p1253915513402">Kubernetes Label</p>
+<tbody><tr id="cce_10_0012__en-us_topic_0000001199021246_row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p1253915513402">Kubernetes Label</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p11258124419136">Click <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b134533618313">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
-<p id="cce_10_0012__cce_10_0363_p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p11258124419136">Click <strong id="cce_10_0012__b1838751142319">Add</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p25391859406">Resource Tag</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row25394514014"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p25391859406">Resource Tag</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p14909254174019">You can add resource tags to classify resources.</p>
-<p id="cce_10_0012__cce_10_0363_p10327184710426">You can create <strong id="cce_10_0012__cce_10_0363_b37781633820">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
-<p id="cce_10_0012__cce_10_0363_p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0012__cce_10_0363_i19542542112415">node id</em>" tag.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p14909254174019">You can add resource tags to classify resources.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p10327184710426">You can create <strong id="cce_10_0012__b306734400104647">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p1738110524401">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0012__i6331396246">node id</em>" tag.</p>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p55391457404">Taint</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p55391457404">Taint</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><div class="p" id="cce_10_0012__cce_10_0363_p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0012__cce_10_0363_ul17274222121015"><li id="cce_10_0012__cce_10_0363_li227482216106"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b19270155312584">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0012__cce_10_0363_li7274112241020"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b149231210105912">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0012__cce_10_0363_li2274182211010"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b1535002716590">Effect</strong>: Available options are <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b6356142716595">NoSchedule</strong>, <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b9356327175910">PreferNoSchedule</strong>, and <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b935642719599">NoExecute</strong>.</li></ul>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><div class="p" id="cce_10_0012__en-us_topic_0000001199021246_p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0012__en-us_topic_0000001199021246_ul17274222121015"><li id="cce_10_0012__en-us_topic_0000001199021246_li227482216106"><strong id="cce_10_0012__b936519257245">Key</strong>: A key must contain 1 to 63 characters starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0012__en-us_topic_0000001199021246_li7274112241020"><strong id="cce_10_0012__b19631127122418">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0012__en-us_topic_0000001199021246_li2274182211010"><strong id="cce_10_0012__b526273022412">Effect</strong>: Available options are <strong id="cce_10_0012__b17262143016249">NoSchedule</strong>, <strong id="cce_10_0012__b5262130172413">PreferNoSchedule</strong>, and <strong id="cce_10_0012__b17262163072417">NoExecute</strong>.</li></ul>
 </div>
-<p id="cce_10_0012__cce_10_0363_p1817835834614">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
-<div class="note" id="cce_10_0012__cce_10_0363_note1344571543714"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0012__cce_10_0363_p544591520372">For a cluster of v1.19 or earlier, the workload may have been scheduled to a node before the taint is added. To avoid such a situation, select a cluster of v1.19 or later.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p1817835834614">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
+<div class="note" id="cce_10_0012__en-us_topic_0000001199021246_note1344571543714"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0012__en-us_topic_0000001199021246_p544591520372">For a cluster of v1.19 or earlier, the workload may have been scheduled to a node before the taint is added. To avoid such a situation, select a cluster of v1.19 or later.</p>
 </div></div>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p054015516406">Max. Pods</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row155390520404"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p054015516406">Max. Pods</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
-<p id="cce_10_0012__cce_10_0363_p272611351429">This limit prevents the node from being overloaded with pods.</p>
-<p id="cce_10_0012__cce_10_0363_p1462134144713">This number is also decided by other factors. For details, see <a href="cce_10_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p18611194424216">Maximum number of pods that can run on the node, including the default system pods.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p272611351429">This limit prevents the node from being overloaded with pods.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p1462134144713">This number is also decided by other factors. For details, see <a href="cce_10_0348.html">Maximum Number of Pods That Can Be Created on a Node</a>.</p>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row124141558173910"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p154141258193916">ECS Group</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row124141558173910"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p154141258193916">ECS Group</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p53431536184014">An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.</p>
-<p id="cce_10_0012__cce_10_0363_p135011254181618"><strong id="cce_10_0012__cce_10_0363_cce_01_0298_b181742121446">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</p>
-<p id="cce_10_0012__cce_10_0363_p19871173217401">Select an existing ECS group, or click <strong id="cce_10_0012__cce_10_0363_cce_01_0298_b573830128">Add ECS Group</strong> to create one. After the ECS group is created, click the refresh button.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p53431536184014">An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p135011254181618"><strong id="cce_10_0012__b479303219256">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p19871173217401">Select an existing ECS group, or click <strong id="cce_10_0012__b127641635182515">Add ECS Group</strong> to create one. After the ECS group is created, click the refresh button.</p>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p534319566391">Pre-installation Command</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p534319566391">Pre-installation Command</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
-<p id="cce_10_0012__cce_10_0363_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p11569142494118">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p03368579295">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p18677104643916">Post-installation Command</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row1167794673912"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p18677104643916">Post-installation Command</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
-<p id="cce_10_0012__cce_10_0363_p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p1114204119418">Enter commands. A maximum of 1,000 characters are allowed.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p13471136154110">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
 </td>
 </tr>
-<tr id="cce_10_0012__cce_10_0363_row3366174093118"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__cce_10_0363_p123672040183119">Agency</p>
+<tr id="cce_10_0012__en-us_topic_0000001199021246_row3366174093118"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.1 "><p id="cce_10_0012__en-us_topic_0000001199021246_p123672040183119">Agency</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__cce_10_0363_p15869944123119">An agency is created by the account administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources.</p>
-<p id="cce_10_0012__cce_10_0363_p151464163220">If no agency is available, click <strong id="cce_10_0012__cce_10_0363_b13240143311254">Create Agency</strong> on the right to create one.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.2.3.2.10.1.2.3.1.2 "><p id="cce_10_0012__en-us_topic_0000001199021246_p15869944123119">An agency is created by the account administrator on the IAM console. By creating an agency, you can share your cloud server resources with another account, or entrust a more professional person or team to manage your resources.</p>
+<p id="cce_10_0012__en-us_topic_0000001199021246_p151464163220">If no agency is available, click <strong id="cce_10_0012__b593805677104647">Create Agency</strong> on the right to create one.</p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0014.html b/docs/cce/umn/cce_10_0014.html
index 779f5bb1..3f83ff87 100644
--- a/docs/cce/umn/cce_10_0014.html
+++ b/docs/cce/umn/cce_10_0014.html
@@ -4,20 +4,20 @@
 <div id="body1522736584192"><div class="section" id="cce_10_0014__section19854101411508"><a name="cce_10_0014__section19854101411508"></a><a name="section19854101411508"></a><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0014__p1858152125017">A workload can be accessed from public networks through a load balancer, which is more secure and reliable than EIP.</p>
 <p id="cce_10_0014__p18345124185316">The LoadBalancer access address is in the format of &lt;IP address of public network load balancer&gt;:&lt;access port&gt;, for example, <strong id="cce_10_0014__b11546131414542">10.117.117.117:80</strong>.</p>
 <p id="cce_10_0014__p7801158125217">In this access mode, requests are transmitted through an ELB load balancer to a node and then forwarded to the destination pod through the Service.</p>
-<div class="fignone" id="cce_10_0014__fig1454926316508"><span class="figcap"><b>Figure 1 </b>LoadBalancer</span><br><span><img id="cce_10_0014__image846021786" src="en-us_image_0000001244141181.png"></span></div>
+<div class="fignone" id="cce_10_0014__fig1454926316508"><span class="figcap"><b>Figure 1 </b>LoadBalancer</span><br><span><img id="cce_10_0014__image846021786" src="en-us_image_0000001569022961.png"></span></div>
 <p id="cce_10_0014__p3662933103112">When <strong id="cce_10_0014__b7582529103312">CCE Turbo clusters and dedicated load balancers</strong> are used, passthrough networking is supported to reduce service latency and ensure zero performance loss.</p>
 <p id="cce_10_0014__p655815372328">External access requests are directly forwarded from a load balancer to pods. Internal access requests can be forwarded to a pod through a Service.</p>
-<div class="fignone" id="cce_10_0014__fig44531612193618"><span class="figcap"><b>Figure 2 </b>Passthrough networking</span><br><span><img id="cce_10_0014__image5485375324" src="en-us_image_0000001249073211.png"></span></div>
+<div class="fignone" id="cce_10_0014__fig44531612193618"><span class="figcap"><b>Figure 2 </b>Passthrough networking</span><br><span><img id="cce_10_0014__image5485375324" src="en-us_image_0000001517903124.png"></span></div>
 </div>
 <div class="section" id="cce_10_0014__section11642143794611"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0014__ul1801539464"><li id="cce_10_0014__li1529952816473">LoadBalancer Services allow workloads to be accessed from public networks through <strong id="cce_10_0014__b1511118124819">ELB</strong>. This access mode has the following restrictions:<ul id="cce_10_0014__ul1241483374717"><li id="cce_10_0014__li162242024131019">It is recommended that automatically created load balancers not be used by other resources. Otherwise, these load balancers cannot be completely deleted, causing residual resources.</li><li id="cce_10_0014__li1080453124610">Do not change the listener name for the load balancer in clusters of v1.15 and earlier. Otherwise, the load balancer cannot be accessed.</li></ul>
 </li><li id="cce_10_0014__li128551156114310">After a Service is created, if the affinity setting is switched from the cluster level to the node level, the connection tracing table will not be cleared. You are advised not to modify the Service affinity setting after the Service is created. If you need to modify it, create a Service again.</li><li id="cce_10_0014__li1553715571314">If the service affinity is set to the node level (that is, <strong id="cce_10_0014__b16405133417613">externalTrafficPolicy</strong> is set to <strong id="cce_10_0014__b12712364614">Local</strong>), the cluster may fail to access the Service by using the ELB address. For details, see <a href="#cce_10_0014__section52631714117">Why a Cluster Fails to Access Services by Using the ELB Address</a>.</li><li id="cce_10_0014__li62831358182017">CCE Turbo clusters support only cluster-level service affinity.</li><li id="cce_10_0014__li35821536336">Dedicated ELB load balancers can be used only in clusters of v1.17 and later.</li><li id="cce_10_0014__li188391194225">Dedicated load balancers must be the network type (TCP/UDP) supporting private networks (with a private IP). If the Service needs to support HTTP, the specifications of dedicated load balancers must use HTTP/HTTPS (application load balancing) in addition to TCP/UDP (network load balancing).</li><li id="cce_10_0014__li2627549105716">If you create a LoadBalancer Service on the CCE console, a random node port is automatically generated. If you use kubectl to create a LoadBalancer Service, a random node port is generated unless you specify one.</li><li id="cce_10_0014__li93797513138">In a CCE cluster, if the cluster-level affinity is configured for a LoadBalancer Service, requests are distributed to the node ports of each node using SNAT when entering the cluster. The number of node ports cannot exceed the number of available node ports on the node. If the Service affinity is at the node level (local), there is no such constraint. In a CCE Turbo cluster, this constraint applies to shared ELB load balancers, but not dedicated ones. You are advised to use dedicated ELB load balancers in CCE Turbo clusters.</li><li id="cce_10_0014__li1031414582416">When the cluster service forwarding (proxy) mode is IPVS, the node IP cannot be configured as the external IP of the Service. Otherwise, the node is unavailable.</li><li id="cce_10_0014__li202253469362">In a cluster using the IPVS proxy mode, if the ingress and Service use the same ELB load balancer, the ingress cannot be accessed from the nodes and containers in the cluster because kube-proxy mounts the LoadBalancer Service address to the ipvs-0 bridge. This bridge intercepts the traffic of the load balancer connected to the ingress. You are advised to use different ELB load balancers for the ingress and Service.</li></ul>
 </div>
 <div class="section" id="cce_10_0014__section1325012312139"><h4 class="sectiontitle">Creating a LoadBalancer Service</h4><ol id="cce_10_0014__ol751935681319"><li id="cce_10_0014__li41731123658"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0014__li1651955651312"><span>Choose <strong id="cce_10_0014__b20811412124117">Networking</strong> in the navigation pane and click <strong id="cce_10_0014__b4811612104119">Create Service</strong> in the upper right corner.</span></li><li id="cce_10_0014__li185190567138"><span>Set parameters.</span><p><ul id="cce_10_0014__ul4446314017144"><li id="cce_10_0014__li6462394317144"><strong id="cce_10_0014__b186253818421">Service Name</strong>: Specify a Service name, which can be the same as the workload name.</li><li id="cce_10_0014__li89543531070"><strong id="cce_10_0014__b555284112425">Access Type</strong>: Select <strong id="cce_10_0014__b655313416422">LoadBalancer</strong>.</li><li id="cce_10_0014__li4800017144"><strong id="cce_10_0014__b462512137439">Namespace</strong>: Namespace to which the workload belongs.</li><li id="cce_10_0014__li1758110116149"><strong id="cce_10_0014__b325014537434">Service Affinity</strong>: For details, see <a href="cce_10_0142.html#cce_10_0142__section18134208069">externalTrafficPolicy (Service Affinity)</a>.<ul id="cce_10_0014__ul158101161412"><li id="cce_10_0014__li105815113141"><strong id="cce_10_0014__b16659151119444">Cluster level</strong>: The IP addresses and access ports of all nodes in a cluster can be used to access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_10_0014__li185817117145"><strong id="cce_10_0014__b187631494415">Node level</strong>: Only the IP address and access port of the node where the workload is located can access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
 </li><li id="cce_10_0014__li43200017144"><strong id="cce_10_0014__b964616495410">Selector</strong>: Add a label and click <strong id="cce_10_0014__b1664616492411">Add</strong>. A Service selects a pod based on the added label. You can also click <strong id="cce_10_0014__b13284181916449">Reference Workload Label</strong> to reference the label of an existing workload. In the dialog box that is displayed, select a workload and click <strong id="cce_10_0014__b18284181915445">OK</strong>.</li><li id="cce_10_0014__li14384123818176"><strong id="cce_10_0014__b2310182654418">Load Balancer</strong><p id="cce_10_0014__p4855423189">Select the load balancer to interconnect. Only load balancers in the same VPC as the cluster are supported. If no load balancer is available, click <strong id="cce_10_0014__b1221291200">Create Load Balancer</strong> to create one on the ELB console.</p>
-<p id="cce_10_0014__p17766202114215">You can click <strong id="cce_10_0014__b135601348463">Edit</strong> and configure load balancer parameters in the <strong id="cce_10_0014__b72171221472">Load Balancer</strong> dialog box.</p>
+<p id="cce_10_0014__p17766202114215">You can click the edit icon in the row of <strong id="cce_10_0014__b4667115817168">Set ELB</strong> to configure load balancer parameters.</p>
 <ul id="cce_10_0014__ul943963914228"><li id="cce_10_0014__li8170555132211"><strong id="cce_10_0014__b169881428124716">Distribution Policy</strong>: Three algorithms are available: weighted round robin, weighted least connections algorithm, or source IP hash.<div class="note" id="cce_10_0014__note14170205516225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0014__ul1717075520227"><li id="cce_10_0014__li15170955152215"><strong id="cce_10_0014__b8139183255011">Weighted round robin</strong>: Requests are forwarded to different servers based on their weights, which indicate server processing performance. Backend servers with higher weights receive proportionately more requests, whereas equal-weighted servers receive the same number of requests. This algorithm is often used for short connections, such as HTTP services.</li><li id="cce_10_0014__li12170185532213"><strong id="cce_10_0014__b9879547125012">Weighted least connections</strong>: In addition to the weight assigned to each server, the number of connections processed by each backend server is also considered. Requests are forwarded to the server with the lowest connections-to-weight ratio. Building on <strong id="cce_10_0014__b19132751145011">least connections</strong>, the <strong id="cce_10_0014__b71328516505">weighted least connections</strong> algorithm assigns a weight to each server based on their processing capability. This algorithm is often used for persistent connections, such as database connections.</li><li id="cce_10_0014__li0170105502211"><strong id="cce_10_0014__b8109955125015">Source IP hash</strong>: The source IP address of each request is calculated using the hash algorithm to obtain a unique hash key, and all backend servers are numbered. The generated key allocates the client to a particular server. This enables requests from different clients to be distributed in load balancing mode and ensures that requests from the same client are forwarded to the same server. This algorithm applies to TCP connections without cookies.</li></ul>
 </div></div>
-</li><li id="cce_10_0014__li0170115513227"><strong id="cce_10_0014__b43411498117">Type</strong>: This function is disabled by default. You can select <strong id="cce_10_0014__b0394332121213">Source IP address</strong>. Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</li><li id="cce_10_0014__li14170655112210"><strong id="cce_10_0014__b9887155318122">Health Check</strong>: This function is disabled by default. The health check is for the load balancer. When TCP is selected during the <a href="#cce_10_0014__li388800117144">port settings</a>, you can choose either TCP or HTTP. When UDP is selected during the <a href="#cce_10_0014__li388800117144">port settings</a>, only UDP is supported.. By default, the service port (Node Port and container port of the Service) is used for health check. You can also specify another port for health check. After the port is specified, a service port named <strong id="cce_10_0014__b159511449710">cce-healthz</strong> will be added for the Service.</li></ul>
+</li><li id="cce_10_0014__li0170115513227"><strong id="cce_10_0014__b43411498117">Type</strong>: This function is disabled by default. You can select <strong id="cce_10_0014__b0394332121213">Source IP address</strong>. Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</li><li id="cce_10_0014__li14170655112210"><strong id="cce_10_0014__b166191646173">Health Check</strong>: configured for the load balancer. When TCP is selected during the <a href="#cce_10_0014__li388800117144">port settings</a>, you can choose either TCP or HTTP. When UDP is selected during the <a href="#cce_10_0014__li388800117144">port settings</a>, only UDP is supported.. By default, the service port (Node Port and container port of the Service) is used for health check. You can also specify another port for health check. After the port is specified, a service port named <strong id="cce_10_0014__b159511449710">cce-healthz</strong> will be added for the Service.</li></ul>
 </li><li id="cce_10_0014__li388800117144"><a name="cce_10_0014__li388800117144"></a><a name="li388800117144"></a><strong id="cce_10_0014__b89301584315175">Port Settings</strong><ul id="cce_10_0014__ul3499201217144"><li id="cce_10_0014__li4649265917144"><strong id="cce_10_0014__b147114610479">Protocol</strong>: protocol used by the Service.</li><li id="cce_10_0014__li353122153610"><strong id="cce_10_0014__b69812211813">Service Port</strong>: port used by the Service. The port number ranges from 1 to 65535.</li><li id="cce_10_0014__li475042104417"><strong id="cce_10_0014__b7688424818">Container Port</strong>: port on which the workload listens. For example, Nginx uses port 80 by default.</li></ul>
 </li><li id="cce_10_0014__li104962251243"><strong id="cce_10_0014__b12052012556">Annotation</strong>: The LoadBalancer Service has some advanced CCE functions, which are implemented by annotations. For details, see <a href="cce_10_0385.html">Service Annotations</a>. When you use kubectl to create a container, annotations will be used. For details, see <a href="#cce_10_0014__section1984211714368">Using kubectl to Create a Service (Using an Existing Load Balancer)</a> and <a href="#cce_10_0014__section12168131904611">Using kubectl to Create a Service (Automatically Creating a Load Balancer)</a>.</li></ul>
 </p></li><li id="cce_10_0014__li552017569135"><span>Click <strong id="cce_10_0014__b911916813568">OK</strong>.</span></li></ol>
@@ -272,11 +272,11 @@ spec:
 kubernetes   ClusterIP      10.247.0.1       &lt;none&gt;        443/TCP        3d
 <strong id="cce_10_0014__b1214411223310">nginx        LoadBalancer   10.247.130.196   10.78.42.242   80:31540/TCP   51s</strong></pre>
 </p></li><li id="cce_10_0014__li167017242"><span>Enter the URL in the address box of the browser, for example, <strong id="cce_10_0014__b842352706164951">10.78.42.242:80</strong>. <strong id="cce_10_0014__b84235270616505">10.78.42.242</strong> indicates the IP address of the load balancer, and <strong id="cce_10_0014__b842352706165024">80</strong> indicates the access port displayed on the CCE console.</span><p><p id="cce_10_0014__p167058343415">The Nginx is accessible.</p>
-<div class="fignone" id="cce_10_0014__fig1498213713356"><span class="figcap"><b>Figure 3 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_10_0014__image4983479359" src="en-us_image_0000001243981181.png"></span></div>
+<div class="fignone" id="cce_10_0014__fig1498213713356"><span class="figcap"><b>Figure 3 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_10_0014__image4983479359" src="en-us_image_0000001569182677.png"></span></div>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0014__section12168131904611"><a name="cce_10_0014__section12168131904611"></a><a name="section12168131904611"></a><h4 class="sectiontitle">Using kubectl to Create a Service (Automatically Creating a Load Balancer)</h4><p id="cce_10_0014__p1036918271467">You can add a Service when creating a workload using kubectl. This section uses an Nginx workload as an example to describe how to add a LoadBalancer Service using kubectl.</p>
-<ol id="cce_10_0014__ol1236962794610"><li id="cce_10_0014__li103401710124914"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0014__li337012724615"><span>Create and edit the <strong id="cce_10_0014__b1160504865">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b748957890">nginx-elb-svc.yaml</strong> files.</span><p><p id="cce_10_0014__p1137014271463">The file names are user-defined. <strong id="cce_10_0014__b1621345180">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b83395749">nginx-elb-svc.yaml</strong> are merely example file names.</p>
+<ol id="cce_10_0014__ol1236962794610"><li id="cce_10_0014__li103401710124914"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0014__li337012724615"><span>Create and edit the <strong id="cce_10_0014__b1606652833">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b291529992">nginx-elb-svc.yaml</strong> files.</span><p><p id="cce_10_0014__p1137014271463">The file names are user-defined. <strong id="cce_10_0014__b799277615">nginx-deployment.yaml</strong> and <strong id="cce_10_0014__b594514403">nginx-elb-svc.yaml</strong> are merely example file names.</p>
 <p id="cce_10_0014__p153702275465"><strong id="cce_10_0014__b13370127184617">vi nginx-deployment.yaml</strong></p>
 <pre class="screen" id="cce_10_0014__screen17370112710466">apiVersion: apps/v1
 kind: Deployment
@@ -381,7 +381,7 @@ spec:
 </td>
 <td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p17331169135014">Select a proper load balancer type as required.</p>
 <p id="cce_10_0014__p143311298508">The value can be:</p>
-<ul id="cce_10_0014__ul3415201212612"><li id="cce_10_0014__cce_10_0014_li735384716395"><strong id="cce_10_0014__cce_10_0014_b3322231123015">union</strong>: shared load balancer</li><li id="cce_10_0014__cce_10_0014_li1535310477392"><strong id="cce_10_0014__cce_10_0014_b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
+<ul id="cce_10_0014__ul3415201212612"><li id="cce_10_0014__en-us_topic_0000001243981073_li735384716395"><strong id="cce_10_0014__b486405467">union</strong>: shared load balancer</li><li id="cce_10_0014__en-us_topic_0000001243981073_li1535310477392"><strong id="cce_10_0014__b167451413695">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
 </td>
 </tr>
 <tr id="cce_10_0014__row790233013543"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p143324917501">kubernetes.io/elb.subnet-id</p>
@@ -422,10 +422,10 @@ spec:
 </td>
 <td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p933315995019">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p0333699508">This parameter indicates the load balancing algorithm of the backend server group. The default value is <strong id="cce_10_0014__b978088805">ROUND_ROBIN</strong>.</p>
+<td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p0333699508">This parameter indicates the load balancing algorithm of the backend server group. The default value is <strong id="cce_10_0014__b1080902346">ROUND_ROBIN</strong>.</p>
 <p id="cce_10_0014__p6333198503">Options:</p>
-<ul id="cce_10_0014__ul13337919508"><li id="cce_10_0014__li3333893501"><strong id="cce_10_0014__b917257088">ROUND_ROBIN</strong>: weighted round robin algorithm</li><li id="cce_10_0014__li93331191509"><strong id="cce_10_0014__b463671576">LEAST_CONNECTIONS</strong>: weighted least connections algorithm</li><li id="cce_10_0014__li1333379105016"><strong id="cce_10_0014__b1835281429">SOURCE_IP</strong>: source IP hash algorithm</li></ul>
-<p id="cce_10_0014__p833315910507">When the value is <strong id="cce_10_0014__b1391706822">SOURCE_IP</strong>, the weights of backend servers in the server group are invalid.</p>
+<ul id="cce_10_0014__ul13337919508"><li id="cce_10_0014__li3333893501"><strong id="cce_10_0014__b1497936315">ROUND_ROBIN</strong>: weighted round robin algorithm</li><li id="cce_10_0014__li93331191509"><strong id="cce_10_0014__b1755179996">LEAST_CONNECTIONS</strong>: weighted least connections algorithm</li><li id="cce_10_0014__li1333379105016"><strong id="cce_10_0014__b2003040388">SOURCE_IP</strong>: source IP hash algorithm</li></ul>
+<p id="cce_10_0014__p833315910507">When the value is <strong id="cce_10_0014__b346635155">SOURCE_IP</strong>, the weights of backend servers in the server group are invalid.</p>
 </td>
 </tr>
 <tr id="cce_10_0014__row1533329185018"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p1533313905015">kubernetes.io/elb.health-check-flag</p>
@@ -435,7 +435,7 @@ spec:
 <td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p16333993504">String</p>
 </td>
 <td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p1833315910509">Whether to enable the ELB health check.</p>
-<ul id="cce_10_0014__ul19333199205012"><li id="cce_10_0014__li8333109155020">Enabling health check: Leave blank this parameter or set it to <strong id="cce_10_0014__b750650087">on</strong>.</li><li id="cce_10_0014__li103330914504">Disabling health check: Set this parameter to <strong id="cce_10_0014__b2044845713">off</strong>.</li></ul>
+<ul id="cce_10_0014__ul19333199205012"><li id="cce_10_0014__li8333109155020">Enabling health check: Leave blank this parameter or set it to <strong id="cce_10_0014__b2035367413">on</strong>.</li><li id="cce_10_0014__li103330914504">Disabling health check: Set this parameter to <strong id="cce_10_0014__b522599623">off</strong>.</li></ul>
 <p id="cce_10_0014__p510323641317">If this parameter is enabled, the <a href="#cce_10_0014__table236017471397">kubernetes.io/elb.health-check-option</a> field must also be specified at the same time.</p>
 </td>
 </tr>
@@ -455,7 +455,7 @@ spec:
 <td class="cellrowborder" valign="top" width="13.639999999999999%" headers="mcps1.3.5.3.2.2.9.2.5.1.3 "><p id="cce_10_0014__p43315965016">String</p>
 </td>
 <td class="cellrowborder" valign="top" width="49.19%" headers="mcps1.3.5.3.2.2.9.2.5.1.4 "><p id="cce_10_0014__p533113915503">Listeners ensure session stickiness based on IP addresses. Requests from the same IP address will be forwarded to the same backend server.</p>
-<ul id="cce_10_0014__ul113311191508"><li id="cce_10_0014__li11331189195017">Disabling sticky session: Do not set this parameter.</li><li id="cce_10_0014__li133313914502">Enabling sticky session: Set this parameter to <strong id="cce_10_0014__b1268304995">SOURCE_IP</strong>, indicating that the sticky session is based on the source IP address.</li></ul>
+<ul id="cce_10_0014__ul113311191508"><li id="cce_10_0014__li11331189195017">Disabling sticky session: Do not set this parameter.</li><li id="cce_10_0014__li133313914502">Enabling sticky session: Set this parameter to <strong id="cce_10_0014__b1430522096">SOURCE_IP</strong>, indicating that the sticky session is based on the source IP address.</li></ul>
 </td>
 </tr>
 <tr id="cce_10_0014__row1421317512156"><td class="cellrowborder" valign="top" width="24.85%" headers="mcps1.3.5.3.2.2.9.2.5.1.1 "><p id="cce_10_0014__p12624252121514">kubernetes.io/elb.session-affinity-option</p>
@@ -633,8 +633,8 @@ spec:
 <pre class="screen" id="cce_10_0014__screen94033273464">NAME         TYPE           CLUSTER-IP       EXTERNAL-IP   PORT(S)        AGE
 kubernetes   ClusterIP      10.247.0.1       &lt;none&gt;        443/TCP        3d
 <strong id="cce_10_0014__b15405527194615">nginx        LoadBalancer   10.247.130.196   10.78.42.242   80:31540/TCP   51s</strong></pre>
-</p></li><li id="cce_10_0014__li1940672734614"><span>Enter the URL in the address box of the browser, for example, <strong id="cce_10_0014__b737105175">10.78.42.242:80</strong>. <strong id="cce_10_0014__b2104019463">10.78.42.242</strong> indicates the IP address of the load balancer, and <strong id="cce_10_0014__b1360465659">80</strong> indicates the access port displayed on the CCE console.</span><p><p id="cce_10_0014__p184066272466">The Nginx is accessible.</p>
-<div class="fignone" id="cce_10_0014__fig2406102717469"><span class="figcap"><b>Figure 4 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_10_0014__image13406827194620" src="en-us_image_0000001199021334.png"></span></div>
+</p></li><li id="cce_10_0014__li1940672734614"><span>Enter the URL in the address box of the browser, for example, <strong id="cce_10_0014__b1816549858">10.78.42.242:80</strong>. <strong id="cce_10_0014__b1608201852">10.78.42.242</strong> indicates the IP address of the load balancer, and <strong id="cce_10_0014__b152673428">80</strong> indicates the access port displayed on the CCE console.</span><p><p id="cce_10_0014__p184066272466">The Nginx is accessible.</p>
+<div class="fignone" id="cce_10_0014__fig2406102717469"><span class="figcap"><b>Figure 4 </b>Accessing Nginx through the LoadBalancer Service</span><br><span><img id="cce_10_0014__image13406827194620" src="en-us_image_0000001517743552.png"></span></div>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0014__section18120261746"><h4 class="sectiontitle">ELB Forwarding</h4><p id="cce_10_0014__p394033612383">After a Service of the LoadBalancer type is created, you can view the listener forwarding rules of the load balancer on the ELB console.</p>
@@ -651,11 +651,11 @@ kubernetes   ClusterIP      10.247.0.1       &lt;none&gt;        443/TCP
 </td>
 <td class="cellrowborder" valign="top" width="10.768923107689233%"><p id="cce_10_0014__p895021493310">Client</p>
 </td>
-<td class="cellrowborder" valign="top" width="15.608439156084392%"><p id="cce_10_0014__p7950111483311">Tunnel Network Cluster (IPVS)</p>
+<td class="cellrowborder" valign="top" width="15.608439156084392%"><p id="cce_10_0014__p7950111483311">Container Tunnel Network Cluster (IPVS)</p>
 </td>
 <td class="cellrowborder" valign="top" width="17.588241175882413%"><p id="cce_10_0014__p995011423320">VPC Network Cluster (IPVS)</p>
 </td>
-<td class="cellrowborder" valign="top" width="18.21817818218178%"><p id="cce_10_0014__p18950201416330">Tunnel Network Cluster (iptables)</p>
+<td class="cellrowborder" valign="top" width="18.21817818218178%"><p id="cce_10_0014__p18950201416330">Container Tunnel Network Cluster (iptables)</p>
 </td>
 <td class="cellrowborder" valign="top" width="19.52804719528047%"><p id="cce_10_0014__p1595151433311">VPC Network Cluster (iptables)</p>
 </td>
diff --git a/docs/cce/umn/cce_10_0015.html b/docs/cce/umn/cce_10_0015.html
index 416062e7..3b7a8919 100644
--- a/docs/cce/umn/cce_10_0015.html
+++ b/docs/cce/umn/cce_10_0015.html
@@ -10,104 +10,216 @@ metadata:
 data:
   SPECIAL_LEVEL: Hello
   SPECIAL_TYPE: CCE</pre>
-<div class="notice" id="cce_10_0015__note674103144418"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0015__p2741939443">When a ConfigMap is used in a pod, the pod and ConfigMap must be in the same cluster and namespace.</p>
+<div class="notice" id="cce_10_0015__note674103144418"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0015__ul1967711124504"><li id="cce_10_0015__li1677412155020">When a ConfigMap is used in a workload, the workload and ConfigMap must be in the same cluster and namespace.</li><li id="cce_10_0015__li1018071475018">When a ConfigMap is mounted as a data volume and is updated, Kubernetes updates the data in the data volume at the same time.<p id="cce_10_0015__p336611413509"><a name="cce_10_0015__li1018071475018"></a><a name="li1018071475018"></a>When a ConfigMap data volume mounted in <a href="https://kubernetes.io/docs/concepts/storage/volumes/#using-subpath" target="_blank" rel="noopener noreferrer">subPath</a> mode is updated, Kubernetes cannot automatically update the data in the data volume.</p>
+</li><li id="cce_10_0015__li18669525155017">When a ConfigMap is used as an environment variable, data can not be automatically updated when the ConfigMap is updated. To update the data, you need to restart the pod.</li></ul>
 </div></div>
-<div class="section" id="cce_10_0015__section1737733192813"><a name="cce_10_0015__section1737733192813"></a><a name="section1737733192813"></a><h4 class="sectiontitle">Setting Workload Environment Variables</h4><p id="cce_10_0015__p1626131323616">When creating a workload, you can use a ConfigMap to set environment variables. The <strong id="cce_10_0015__b697053174517">valueFrom</strong> parameter indicates the key-value pair to be referenced.</p>
-<pre class="screen" id="cce_10_0015__screen25322289311">apiVersion: v1
-kind: Pod
+<div class="section" id="cce_10_0015__section1737733192813"><a name="cce_10_0015__section1737733192813"></a><a name="section1737733192813"></a><h4 class="sectiontitle">Setting Workload Environment Variables</h4><p id="cce_10_0015__p1975419271338"><strong id="cce_10_0015__b1112812148274">Using the console</strong></p>
+<ol id="cce_10_0015__ol475442783311"><li id="cce_10_0015__li775432712335"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0015__li17754102763319"><span>In the navigation pane, choose <strong id="cce_10_0015__b19619171972716">Workloads</strong>. Then, click <strong id="cce_10_0015__b196191119172718">Create Workload</strong>.</span><p><p id="cce_10_0015__p1875542733312">When creating a workload, click <strong id="cce_10_0015__b15674172115272">Environment Variables</strong> in the <strong id="cce_10_0015__b367532162711">Container Settings</strong> area, and click <span><img id="cce_10_0015__image97569205395" src="en-us_image_0000001568822917.png"></span>.</p>
+<ul id="cce_10_0015__ul259911812406"><li id="cce_10_0015__li1459919185403"><strong id="cce_10_0015__b840163119279">Added from ConfigMap</strong>: Select a ConfigMap to import all of its keys as environment variables.<p id="cce_10_0015__p192283274718"></p>
+</li><li id="cce_10_0015__li12862240165014"><strong id="cce_10_0015__b7673135102713">Added from ConfigMap key</strong>: Import a key in a ConfigMap as the value of an environment variable.<ul id="cce_10_0015__ul15909447135011"><li id="cce_10_0015__li95213468509"><strong id="cce_10_0015__b71513388272">Variable Name</strong>: name of an environment variable in the workload. The name can be customized and is set to the key name selected in the ConfigMap by default.</li><li id="cce_10_0015__li591660145119"><strong id="cce_10_0015__b19516154017277">Variable Value/Reference</strong>: Select a ConfigMap and the key to be imported. The corresponding value is imported as a workload environment variable.</li></ul>
+<p id="cce_10_0015__p3488115325013">For example, after you import the value <span class="parmvalue" id="cce_10_0015__parmvalue1074124317271"><b>Hello</b></span> of <span class="parmname" id="cce_10_0015__parmname07514437275"><b>SPECIAL_LEVEL</b></span> in ConfigMap <strong id="cce_10_0015__b275124313276">cce-configmap</strong> as the value of workload environment variable <span class="parmname" id="cce_10_0015__parmname1075114362714"><b>SPECIAL_LEVEL</b></span>, an environment variable named <span class="parmname" id="cce_10_0015__parmname1175154382713"><b>SPECIAL_LEVEL</b></span> with its value <span class="parmvalue" id="cce_10_0015__parmvalue2075184320276"><b>Hello</b></span> exists in the container.</p>
+<p id="cce_10_0015__p230444935010"></p>
+</li></ul>
+</p></li><li id="cce_10_0015__li72753567401"><span>Configure other workload parameters and click <span class="uicontrol" id="cce_10_0015__uicontrol16432184610270"><b>Create Workload</b></span>.</span><p><p id="cce_10_0015__p2670183316271">After the workload runs properly, <a href="cce_10_00356.html">access the container</a> and run the following command to check whether the ConfigMap has been set as an environment variable of the workload:</p>
+<pre class="screen" id="cce_10_0015__screen15459445182819">printenv SPECIAL_LEVEL</pre>
+<p id="cce_10_0015__p45951238121710">The example output is as follows:</p>
+<pre class="screen" id="cce_10_0015__screen76458538178">Hello</pre>
+</p></li></ol>
+<p id="cce_10_0015__p2562105044215"><strong id="cce_10_0015__b12534811162916">Using kubectl</strong></p>
+<ol id="cce_10_0015__ol1392823394416"><li id="cce_10_0015__li1681024195710"><span>According to <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_10_0015__b7507113102912">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_10_0015__li1020013819415"><span>Create a file named <strong id="cce_10_0015__b3901916192912">nginx-configmap.yaml</strong> and edit it.</span><p><p id="cce_10_0015__p106999147413"><strong id="cce_10_0015__b6469155655719">vi nginx-configmap.yaml</strong></p>
+<p id="cce_10_0015__p58981554135312">Content of the YAML file:</p>
+<ul id="cce_10_0015__ul11105134234513"><li id="cce_10_0015__li6846103416564"><strong id="cce_10_0015__b54961023102919">Added from ConfigMap</strong>: To add all data in a ConfigMap to environment variables, use the <strong id="cce_10_0015__b176444616293">envFrom</strong> parameter. The keys in the ConfigMap will become names of environment variables in a pod.<pre class="screen" id="cce_10_0015__screen104944321312">apiVersion: apps/v1
+kind: Deployment
 metadata:
-  name: configmap-pod-1
+  name: nginx-configmap
 spec:
-  containers:
-    - name: test-container
-      image: busybox
-      command: [ "/bin/sh", "-c", "env" ]
-      env:
-        - name: SPECIAL_LEVEL_KEY
-          valueFrom:                             ## Use valueFrom to specify the value of the env that refers to the ConfigMap.
-            configMapKeyRef:
-              name: cce-configmap                ## Name of the referenced configuration file.
-              key: SPECIAL_LEVEL                 ## Key of the referenced ConfigMap.
-  restartPolicy: Never</pre>
-<div class="p" id="cce_10_0015__p928391718127">If you need to define the values of multiple ConfigMaps as the environment variables of the pods, add multiple environment variable parameters to the pods.<pre class="screen" id="cce_10_0015__screen659741215919">env:
-- name: SPECIAL_LEVEL_KEY
-  valueFrom:
-    configMapKeyRef:
-          name: cce-configmap
-          key: SPECIAL_LEVEL
-- name: SPECIAL_TYPE_KEY
-  valueFrom:
-    configMapKeyRef:
-          name: cce-configmap
-          key: SPECIAL_TYPE</pre>
-</div>
-<p id="cce_10_0015__p71587551910">To add all data in a ConfigMap to environment variables, use the <strong id="cce_10_0015__b65351522276">envFrom</strong> parameter. The keys in the ConfigMap will become names of environment variables in a pod.</p>
-<pre class="screen" id="cce_10_0015__screen104944321312">apiVersion: v1
-kind: Pod
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-configmap
+  template:
+    metadata:
+      labels:
+        app: nginx-configmap
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+      <strong id="cce_10_0015__b938112717301">  envFrom:</strong>                      # Use <strong id="cce_10_0015__b1138114743018">envFrom</strong> to specify a ConfigMap to be referenced by environment variables.
+<strong id="cce_10_0015__b17597191564417">        - configMapRef:</strong>
+<strong id="cce_10_0015__b1998171012303">            name: <i><span class="varname" id="cce_10_0015__varname4998810113015">cce-configmap</span></i></strong>       # Name of the referenced ConfigMap.
+      imagePullSecrets:
+      - name: default-secret</pre>
+</li><li id="cce_10_0015__li31052042124514"><strong id="cce_10_0015__b2293161612302">Added from a ConfigMap key</strong>: When creating a workload, you can use a ConfigMap to set environment variables and use the <strong id="cce_10_0015__b15294516163013">valueFrom</strong> parameter to reference the key-value pair in the ConfigMap separately.<pre class="screen" id="cce_10_0015__screen25322289311">apiVersion: apps/v1
+kind: Deployment
 metadata:
-  name: configmap-pod-2
+  name: nginx-configmap
 spec:
-  containers:
-    - name: test-container
-      image: busybox
-      command: [ "/bin/sh", "-c", "env" ]
-      envFrom:
-      - configMapRef:
-          name: cce-configmap
-  restartPolicy: Never</pre>
-</div>
-<div class="section" id="cce_10_0015__section17930105710189"><a name="cce_10_0015__section17930105710189"></a><a name="section17930105710189"></a><h4 class="sectiontitle">Setting Command Line Parameters</h4><p id="cce_10_0015__p1265811921915">You can use a ConfigMap to set commands or parameter values for a container by using the environment variable substitution syntax $(VAR_NAME). The following shows an example.</p>
-<pre class="screen" id="cce_10_0015__screen4422017182118">apiVersion: v1
-kind: Pod
-metadata:
-  name: configmap-pod-3
-spec:
-  containers:
-    - name: test-container
-      image: busybox
-      command: [ "/bin/sh", "-c", "echo $(SPECIAL_LEVEL_KEY) $(SPECIAL_TYPE_KEY)" ]
-      env:
-        - name: SPECIAL_LEVEL_KEY
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-configmap
+  template:
+    metadata:
+      labels:
+        app: nginx-configmap
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+        <strong id="cce_10_0015__b4619743162214">env:</strong>                             # Set environment variables in the workload.
+        <strong id="cce_10_0015__b0105610193110">- name: <i><span class="varname" id="cce_10_0015__varname910418105314">SPECIAL_LEVEL</span></i></strong>           # Name of the environment variable in the workload.
+          <strong id="cce_10_0015__b671371105411">valueFrom:</strong>                    # Use <strong id="cce_10_0015__b967894443113">valueFrom</strong> to specify an environment variable to reference a ConfigMap.
+            <strong id="cce_10_0015__b12349111314547">configMapKeyRef:</strong>
+              <strong id="cce_10_0015__b19684151745314">name: <i><span class="varname" id="cce_10_0015__varname6708541538">cce-configmap</span></i></strong>       # Name of the referenced ConfigMap.
+              <strong id="cce_10_0015__b0917163483213">key: <i><span class="varname" id="cce_10_0015__varname79171234193211">SPECIAL_LEVEL</span></i></strong>        # Key in the referenced ConfigMap.
+        - name: <i><span class="varname" id="cce_10_0015__varname69745223229">SPECIAL_TYPE</span></i>            # Add multiple environment variables. Multiple environment variables can be imported at the same time.
           valueFrom:
             configMapKeyRef:
-              name: cce-configmap
-              key: SPECIAL_LEVEL
-        - name: SPECIAL_TYPE_KEY
-          valueFrom:
-            configMapKeyRef:
-              name: cce-configmap
-              key: SPECIAL_TYPE
-  restartPolicy: Never</pre>
-<p id="cce_10_0015__p1515431152312">After the pod runs, the following information is displayed:</p>
+              name: <i><span class="varname" id="cce_10_0015__varname528217269220">cce-configmap</span></i>
+              key: <i><span class="varname" id="cce_10_0015__varname396372918225">SPECIAL_TYPE</span></i>
+      imagePullSecrets:
+      - name: default-secret</pre>
+</li></ul>
+</p></li><li id="cce_10_0015__li788331518303"><span>Create a workload.</span><p><p id="cce_10_0015__p3315182011255"><strong id="cce_10_0015__b56467233250">kubectl apply -f nginx-configmap.yaml</strong></p>
+</p></li><li id="cce_10_0015__li122061852125612"><span>View the environment variables in the pod.</span><p><ol type="a" id="cce_10_0015__ol15446171295717"><li id="cce_10_0015__li1467620112574">Run the following command to view the created pod:<pre class="screen" id="cce_10_0015__screen156898195914">kubectl get pod | grep nginx-configmap</pre>
+<div class="p" id="cce_10_0015__p18257204595920">Expected output:<pre class="screen" id="cce_10_0015__screen7944553592">nginx-configmap-***   1/1     Running   0              2m18s</pre>
+</div>
+</li><li id="cce_10_0015__li832105845917">Run the following command to view the environment variables in the pod:<pre class="screen" id="cce_10_0015__screen189552241955">kubectl exec <i><span class="varname" id="cce_10_0015__varname2068413126528">nginx-configmap-***</span></i> -- printenv <i><span class="varname" id="cce_10_0015__varname1974518885215">SPECIAL_LEVEL</span></i> <i><span class="varname" id="cce_10_0015__varname132191257111516">SPECIAL_TYPE</span></i></pre>
+<p id="cce_10_0015__p814820133619">Expected output:</p>
+<pre class="screen" id="cce_10_0015__screen1551814218620">Hello
+CCE</pre>
+<p id="cce_10_0015__p9262221162616">The ConfigMap has been set as an environment variable of the workload.</p>
+</li></ol>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0015__section17930105710189"><a name="cce_10_0015__section17930105710189"></a><a name="section17930105710189"></a><h4 class="sectiontitle">Setting Command Line Parameters</h4><p id="cce_10_0015__p45411930102310">You can use a ConfigMap as an environment variable to set commands or parameter values for a container by using the environment variable substitution syntax $VAR_NAME.</p>
+<p id="cce_10_0015__p5994114316458"><strong id="cce_10_0015__b15475184314357">Using the console</strong></p>
+<ol id="cce_10_0015__ol16994114312457"><li id="cce_10_0015__li6994843164519"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0015__li15994124354513"><span>In the navigation pane, choose <strong id="cce_10_0015__b2366174716356">Workloads</strong>. Then, click <strong id="cce_10_0015__b23661547163516">Create Workload</strong>.</span><p><p id="cce_10_0015__p1999444310452">When creating a workload, click <strong id="cce_10_0015__b599244919355">Environment Variables</strong> in the <strong id="cce_10_0015__b179921549133513">Container Settings</strong> area, and click <span><img id="cce_10_0015__image12994104316453" src="en-us_image_0000001568902649.png"></span>. In this example, select <strong id="cce_10_0015__b125115587353">Added from ConfigMap</strong>.</p>
+<ul id="cce_10_0015__ul699410435458"><li id="cce_10_0015__li109941843144520"><strong id="cce_10_0015__b425934263612">Added from ConfigMap</strong>: Select a ConfigMap to import all of its keys as environment variables.<p id="cce_10_0015__p1199474318454"></p>
+</li></ul>
+</p></li><li id="cce_10_0015__li109671539114618"><span>Click <strong id="cce_10_0015__b0110154613611">Lifecycle</strong> in the <strong id="cce_10_0015__b12110114617369">Container Settings</strong> area, click the <strong id="cce_10_0015__b1311064617362">Post-Start</strong> tab on the right, and set the following parameters:</span><p><ul id="cce_10_0015__ul187452564918"><li id="cce_10_0015__li28741425174912"><strong id="cce_10_0015__b46944810367">Processing Method</strong>: <strong id="cce_10_0015__b96984853616">CLI</strong></li><li id="cce_10_0015__li175584316502"><strong id="cce_10_0015__b17209851133613">Command</strong>: Enter the following three command lines. <i><span class="varname" id="cce_10_0015__varname15209251153615">SPECIAL_LEVEL</span></i> and <i><span class="varname" id="cce_10_0015__varname52101251163612">SPECIAL_TYPE</span></i> are the environment variable names in the workload, that is, the key names in the <strong id="cce_10_0015__b4210115153611">cce-configmap</strong> ConfigMap.<pre class="screen" id="cce_10_0015__screen1276011131501">/bin/bash
+-c
+echo $SPECIAL_LEVEL $SPECIAL_TYPE &gt; /usr/share/nginx/html/index.html</pre>
+</li></ul>
+<p id="cce_10_0015__p33564552509"></p>
+</p></li><li id="cce_10_0015__li7994114314516"><span>Configure other workload parameters and click <span class="uicontrol" id="cce_10_0015__uicontrol15425055163616"><b>Create Workload</b></span>.</span><p><p id="cce_10_0015__p399574314456">After the workload runs properly, <a href="cce_10_00356.html">access the container</a> and run the following command to check whether the ConfigMap has been set as an environment variable of the workload:</p>
+<pre class="screen" id="cce_10_0015__screen13995134318451">cat /usr/share/nginx/html/index.html</pre>
+<p id="cce_10_0015__p1995643134510">The example output is as follows:</p>
+<pre class="screen" id="cce_10_0015__screen9995143134514">Hello CCE</pre>
+</p></li></ol>
+<p id="cce_10_0015__p4491185413187"><strong id="cce_10_0015__b329243373710">Using kubectl</strong></p>
+<ol id="cce_10_0015__ol34911754131817"><li id="cce_10_0015__li1949135461810"><span>According to <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_10_0015__b3554183510379">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_10_0015__li94910544186"><span>Create a file named <strong id="cce_10_0015__b15407153710376">nginx-configmap.yaml</strong> and edit it.</span><p><p id="cce_10_0015__p1249155491817"><strong id="cce_10_0015__b749135421815">vi nginx-configmap.yaml</strong></p>
+<div class="p" id="cce_10_0015__p1265811921915">As shown in the following example, the <strong id="cce_10_0015__b2434131517385">cce-configmap</strong> ConfigMap is imported to the workload. <strong id="cce_10_0015__b22551437381">SPECIAL_LEVEL</strong> and <strong id="cce_10_0015__b131281846133819">SPECIAL_TYPE</strong> are environment variable names, that is, key names in the <strong id="cce_10_0015__b1183915569384">cce-configmap</strong> ConfigMap.<pre class="screen" id="cce_10_0015__screen4422017182118">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-configmap
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-configmap
+  template:
+    metadata:
+      labels:
+        app: nginx-configmap
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+        lifecycle:
+          postStart:
+            exec:
+              command: [ "/bin/sh", "-c", "echo $<i><span class="varname" id="cce_10_0015__varname18910135922214">SPECIAL_LEVEL</span></i> $<i><span class="varname" id="cce_10_0015__varname66878262311">SPECIAL_TYPE</span></i> &gt; /usr/share/nginx/html/index.html" ]
+      <strong id="cce_10_0015__b6839141263918">  envFrom:</strong>                      # Use <strong id="cce_10_0015__b6839912143916">envFrom</strong> to specify a ConfigMap to be referenced by environment variables.
+<strong id="cce_10_0015__b17338849172016">        - configMapRef:</strong>
+<strong id="cce_10_0015__b9477117143911">            name: <i><span class="varname" id="cce_10_0015__varname1147751743914">cce-configmap</span></i></strong>       # Name of the referenced ConfigMap.
+      imagePullSecrets:
+        - name: default-secret</pre>
+</div>
+</p></li><li id="cce_10_0015__li39421117570"><span>Create a workload.</span><p><p id="cce_10_0015__p119541114574"><strong id="cce_10_0015__b595191185711">kubectl apply -f nginx-configmap.yaml</strong></p>
+</p></li><li id="cce_10_0015__li06653419198"><span>After the workload runs properly, the following content is entered into the <strong id="cce_10_0015__b201549234394">/usr/share/nginx/html/index.html</strong> file in the container:</span><p><ol type="a" id="cce_10_0015__ol524017313238"><li id="cce_10_0015__li1524017319232">Run the following command to view the created pod:<pre class="screen" id="cce_10_0015__screen1324053120233">kubectl get pod | grep nginx-configmap</pre>
+<div class="p" id="cce_10_0015__p172401131112311">Expected output:<pre class="screen" id="cce_10_0015__screen1424083122310">nginx-configmap-***   1/1     Running   0              2m18s</pre>
+</div>
+</li><li id="cce_10_0015__li1424023114232">Run the following command to view the environment variables in the pod:<pre class="screen" id="cce_10_0015__screen192401631152310">kubectl exec <i><span class="varname" id="cce_10_0015__varname162406316238">nginx-configmap-***</span></i> -- cat /usr/share/nginx/html/index.html</pre>
+<p id="cce_10_0015__p82401331102313">Expected output:</p>
 <pre class="screen" id="cce_10_0015__screen2809121752318">Hello CCE</pre>
+</li></ol>
+</p></li></ol>
 </div>
-<div class="section" id="cce_10_0015__section1490261161916"><a name="cce_10_0015__section1490261161916"></a><a name="section1490261161916"></a><h4 class="sectiontitle">Attaching a ConfigMap to the Workload Data Volume</h4><p id="cce_10_0015__p1557185117240">A ConfigMap can also be used in the data volume. You only need to attach the ConfigMap to the workload when creating the workload. After the mounting is complete, a configuration file with key as the file name and value as the file content is generated.</p>
-<pre class="screen" id="cce_10_0015__screen11489958268">apiVersion: v1
-kind: Pod
+<div class="section" id="cce_10_0015__section1490261161916"><a name="cce_10_0015__section1490261161916"></a><a name="section1490261161916"></a><h4 class="sectiontitle">Attaching a ConfigMap to the Workload Data Volume</h4><p id="cce_10_0015__p192196124125">The data stored in a ConfigMap can be referenced in a volume of type ConfigMap. You can mount such a volume to a specified container path. The platform supports the separation of workload codes and configuration files. ConfigMap volumes are used to store workload configuration parameters. Before that, you need to create ConfigMaps in advance. For details, see <a href="cce_10_0152.html">Creating a ConfigMap</a>. </p>
+<p id="cce_10_0015__p1597512255182"><strong id="cce_10_0015__b376534410397">Using the console</strong></p>
+<ol id="cce_10_0015__ol1964410161043"><li id="cce_10_0015__li1179513219432"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0015__li13692141222712"><span id="cce_10_0015__p1546017299276">In the navigation pane, choose <strong id="cce_10_0015__b17954144753915">Workloads</strong>. Then, click <strong id="cce_10_0015__b129541347123911">Create Workload</strong>.</span><p><p id="cce_10_0015__p89743143278">When creating a workload, click <span class="uicontrol" id="cce_10_0015__uicontrol71717508393"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0015__uicontrol1418195016391"><b>Container Settings</b></span> area. Click <span class="uicontrol" id="cce_10_0015__uicontrol618205013392"><b>Add Volume</b></span> and select <strong id="cce_10_0015__b12187501392">ConfigMap</strong> from the drop-down list.</p>
+</p></li><li id="cce_10_0015__li6644161617412"><span>Set the local volume type to <strong id="cce_10_0015__b172715216393">ConfigMap</strong> and set parameters for adding a local volume, as shown in <a href="#cce_10_0015__table1776324831114">Table 1</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0015__table1776324831114"></a><a name="table1776324831114"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0015__table1776324831114" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Mounting a ConfigMap volume</caption><thead align="left"><tr id="cce_10_0015__row177484871120"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.4.7.4.3.2.1.2.3.1.1"><p id="cce_10_0015__p977974818111">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.4.7.4.3.2.1.2.3.1.2"><p id="cce_10_0015__p978113488113">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0015__row342915156166"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.4.7.4.3.2.1.2.3.1.1 "><p id="cce_10_0015__p17429315151617">Option</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.4.7.4.3.2.1.2.3.1.2 "><p id="cce_10_0015__p3133142513414">Select the desired ConfigMap name.</p>
+<p id="cce_10_0015__p17741424142">A ConfigMap must be created in advance. For details, see <a href="cce_10_0152.html">Creating a ConfigMap</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0015__row28091948181115"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.4.7.4.3.2.1.2.3.1.1 "><p id="cce_10_0015__p9813048191118">Add Container Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.4.7.4.3.2.1.2.3.1.2 "><div class="p" id="cce_10_0015__p6972055171410">Configure the following parameters:<ol type="a" id="cce_10_0015__ol18607172216391"><li id="cce_10_0015__li26161221390"><strong id="cce_10_0015__b125071943154010">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0015__b75072433409">/tmp</strong>.<div class="p" id="cce_10_0015__en-us_topic_0000001199341206_p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0015__b090124712409">/</strong> or <strong id="cce_10_0015__b129011447104012">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0015__en-us_topic_0000001199341206_note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0015__en-us_topic_0000001199341206_p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0015__li842512390413"><strong id="cce_10_0015__b193675412408">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0015__b1393619542402">tmp</strong>.<ul id="cce_10_0015__ul19821342112914"><li id="cce_10_0015__li12982114218296">A subpath is used to mount a local volume so that the same data volume is used in a single pod.</li><li id="cce_10_0015__li79821942142920">The subpath can be the key and value of a ConfigMap or secret. If the subpath is a key-value pair that does not exist, the data import does not take effect.</li><li id="cce_10_0015__li129821442102910">The data imported by specifying a subpath will not be updated along with the ConfigMap/secret updates.</li></ul>
+</li><li id="cce_10_0015__li126321222103912">Set the permission to <strong id="cce_10_0015__b13610195104211">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
+</div>
+<p id="cce_10_0015__p6374955151514">You can click <span><img id="cce_10_0015__image13122165318407" src="en-us_image_0000001569023025.png"></span> to add multiple paths and subpaths.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+<p id="cce_10_0015__p1578674911813"><strong id="cce_10_0015__b3220121824218">Using kubectl</strong></p>
+<ol id="cce_10_0015__ol14792145817332"><li id="cce_10_0015__li20792115815330"><span>According to <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_10_0015__b1359162516429">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_10_0015__li97921458113311"><span>Create a file named <strong id="cce_10_0015__b19460182644220">nginx-configmap.yaml</strong> and edit it.</span><p><p id="cce_10_0015__p178311975614"><strong id="cce_10_0015__b158312914569">vi nginx-configmap.yaml</strong></p>
+<p id="cce_10_0015__p19313173835612">As shown in the following example, after the ConfigMap volume is mounted, a configuration file with the key as the file name and value as the file content is generated in the <strong id="cce_10_0015__b14840153010428">/etc/config</strong> directory of the container.</p>
+<pre class="screen" id="cce_10_0015__screen11489958268">apiVersion: apps/v1
+kind: Deployment
 metadata:
-  name: configmap-pod-4
+  name: nginx-configmap
 spec:
-  containers:
-    - name: test-container
-      image: busybox
-      command: [ "/bin/sh", "-c", "ls /etc/config/" ]   ## Lists the file names in the directory.
-      volumeMounts:
-      - name: config-volume
-        mountPath: /etc/config                          ## Attaches to the /etc/config directory.
-  volumes:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-configmap
+  template:
+    metadata:
+      labels:
+        app: nginx-configmap
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+        volumeMounts:
+        - name: config-volume
+          <strong id="cce_10_0015__b121432037134216">mountPath: <i><span class="varname" id="cce_10_0015__varname1814383710422">/etc/config</span></i></strong>            # Mount to the <strong id="cce_10_0015__b7143193719428">/etc/config</strong> directory.
+          readOnly: true
+    volumes:
     - name: config-volume
       configMap:
-        name: cce-configmap
-  restartPolicy: Never</pre>
-<p id="cce_10_0015__p1070283082720">After the pod is run, the <strong id="cce_10_0015__b0879024444">SPECIAL_LEVEL</strong> and <strong id="cce_10_0015__b12918271140">SPECIAL_TYPE</strong> files are generated in the <strong id="cce_10_0015__b1668829240">/etc/config</strong> directory. The contents of the files are Hello and CCE, respectively. Also, the following file names will be displayed.</p>
-<pre class="screen" id="cce_10_0015__screen193762594281">SPECIAL_TYPE
-SPECIAL_LEVEL</pre>
-<p id="cce_10_0015__p2031118172817">To mount a ConfigMap to a data volume, you can also perform operations on the CCE console. When creating a workload, set advanced settings for the container, choose <strong id="cce_10_0015__b153181646642">Data Storage </strong>&gt;<strong id="cce_10_0015__b183196461343"> Local Volume</strong>, click <strong id="cce_10_0015__b89592043143116">Add Local Volume</strong>, and select <strong id="cce_10_0015__b10959144373116">ConfigMap</strong>. For details, see <a href="cce_10_0377.html#cce_10_0377__section18638191594712">ConfigMap</a>.</p>
+        <strong id="cce_10_0015__b19854194815519">name: </strong><strong id="cce_10_0015__b37890323556"><i><span class="varname" id="cce_10_0015__varname82649213233">cce-configmap</span></i></strong>                 # Name of the referenced ConfigMap.</pre>
+</p></li><li id="cce_10_0015__li495018318575"><span>Create a workload.</span><p><p id="cce_10_0015__p2955123118577"><strong id="cce_10_0015__b1695511311579">kubectl apply -f nginx-configmap.yaml</strong></p>
+</p></li><li id="cce_10_0015__li184269385573"><span>After the workload runs properly, the <strong id="cce_10_0015__b817116713431">SPECIAL_LEVEL</strong> and <strong id="cce_10_0015__b21712719431">SPECIAL_TYPE</strong> files are generated in the <strong id="cce_10_0015__b1617287174316">/etc/config</strong> directory. The contents of the files are <strong id="cce_10_0015__b14172167114312">Hello</strong> and <strong id="cce_10_0015__b1917316716434">CCE</strong>, respectively. </span><p><ol type="a" id="cce_10_0015__ol1763108185811"><li id="cce_10_0015__li4631187586">Run the following command to view the created pod:<pre class="screen" id="cce_10_0015__screen1263188105810">kubectl get pod | grep nginx-configmap</pre>
+<div class="p" id="cce_10_0015__p1631148185812">Expected output:<pre class="screen" id="cce_10_0015__screen1663178195820">nginx-configmap-***   1/1     Running   0              2m18s</pre>
+</div>
+</li><li id="cce_10_0015__li1863120816581">Run the following command to view the <strong id="cce_10_0015__b915931610431">SPECIAL_LEVEL</strong> or <strong id="cce_10_0015__b1916031620431">SPECIAL_TYPE</strong> file in the pod:<pre class="screen" id="cce_10_0015__screen163128105811">kubectl exec <i><span class="varname" id="cce_10_0015__varname663111814584">nginx-configmap-***</span></i> -- /etc/config/<i><span class="varname" id="cce_10_0015__varname1375216171013">SPECIAL_LEVEL</span></i></pre>
+<p id="cce_10_0015__p063138185812">Expected output:</p>
+<pre class="screen" id="cce_10_0015__screen156314885818">Hello</pre>
+</li></ol>
+</p></li></ol>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">ConfigMaps and Secrets</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0016.html b/docs/cce/umn/cce_10_0016.html
index 7c5c5744..64cbe038 100644
--- a/docs/cce/umn/cce_10_0016.html
+++ b/docs/cce/umn/cce_10_0016.html
@@ -1,10 +1,10 @@
 <a name="cce_10_0016"></a><a name="cce_10_0016"></a>
 
 <h1 class="topictitle1">Using a Secret</h1>
-<div id="body1523236302435"><div class="notice" id="cce_10_0016__note13556115019429"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0016__p39918120437">The following secrets are used by the CCE system. Do not perform any operations on them.</p>
+<div id="body1523236302435"><div class="notice" id="cce_10_0016__note13556115019429"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0016__p39918120437">Do not perform any operation on the following secrets. For details, see <a href="cce_10_0388.html">Cluster Secrets</a>.</p>
 <ul id="cce_10_0016__ul13678122414717"><li id="cce_10_0016__li19678132424718">Do not operate secrets under kube-system.</li><li id="cce_10_0016__li206781324204718">Do not operate default-secret and paas.elb in any of the namespaces. The default-secret is used to pull the private image of SWR, and the paas.elb is used to connect the service in the namespace to the ELB service.</li></ul>
 </div></div>
-<ul id="cce_10_0016__ul784252913353"><li id="cce_10_0016__li0842229163518"><a href="#cce_10_0016__section472505211214">Configuring the Data Volume of a Pod</a></li><li id="cce_10_0016__li56474053519"><a href="#cce_10_0016__section207271352141216">Setting Environment Variables of a Pod</a></li></ul>
+<ul id="cce_10_0016__ul784252913353"><li id="cce_10_0016__li56474053519"><a href="#cce_10_0016__section207271352141216">Setting Environment Variables of a Workload</a></li><li id="cce_10_0016__li0842229163518"><a href="#cce_10_0016__section472505211214">Configuring the Data Volume of a Workload</a></li></ul>
 <p id="cce_10_0016__p1119921953413">The following example shows how to use a secret.</p>
 <pre class="screen" id="cce_10_0016__screen1032654214366">apiVersion: v1
 kind: Secret
@@ -12,75 +12,190 @@ metadata:
   name: mysecret
 type: Opaque
 data:
-  username: ****** #The value must be Base64-encoded.
+  username: ******  #The value must be Base64-encoded.
   password: ******  #The value must be encoded using Base64.</pre>
-<div class="notice" id="cce_10_0016__note250219438139"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0016__p132702112389">When a secret is used in a pod, the pod and secret must be in the same cluster and namespace.</p>
+<div class="notice" id="cce_10_0016__note250219438139"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0016__ul62681041574"><li id="cce_10_0016__li19268134115715">When a secret is used in a pod, the pod and secret must be in the same cluster and namespace.</li><li id="cce_10_0016__li798813545716">When a secret is updated, Kubernetes updates the data in the data volume at the same time.<p id="cce_10_0016__p1148514398567"><a name="cce_10_0016__li798813545716"></a><a name="li798813545716"></a>However, when a secret data volume mounted in <a href="https://kubernetes.io/docs/concepts/storage/volumes/#using-subpath" target="_blank" rel="noopener noreferrer">subPath</a> mode is updated, Kubernetes cannot automatically update the data in the data volume.</p>
+</li></ul>
 </div></div>
-<div class="section" id="cce_10_0016__section472505211214"><a name="cce_10_0016__section472505211214"></a><a name="section472505211214"></a><h4 class="sectiontitle">Configuring the Data Volume of a Pod</h4><div class="p" id="cce_10_0016__p9949138153913">A secret can be used as a file in a pod. As shown in the following example, the username and password of the <strong id="cce_10_0016__b18969914308">mysecret </strong>secret are saved in the <strong id="cce_10_0016__b396199143010">/etc/foo</strong> directory as files.<pre class="screen" id="cce_10_0016__screen1237163595414">apiVersion: v1
-kind: Pod
+<div class="section" id="cce_10_0016__section207271352141216"><a name="cce_10_0016__section207271352141216"></a><a name="section207271352141216"></a><h4 class="sectiontitle">Setting Environment Variables of a Workload</h4><p id="cce_10_0016__p1975419271338"><strong id="cce_10_0016__b199831036141212">Using the console</strong></p>
+<ol id="cce_10_0016__ol475442783311"><li id="cce_10_0016__li775432712335"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0016__li17754102763319"><span>In the navigation pane, choose <strong id="cce_10_0016__b38810418127">Workloads</strong>. Then, click <strong id="cce_10_0016__b10881418122">Create Workload</strong>.</span><p><p id="cce_10_0016__p1875542733312">When creating a workload, click <strong id="cce_10_0016__b55443434128">Environment Variables</strong> in the <strong id="cce_10_0016__b1654594314127">Container Settings</strong> area, and click <span><img id="cce_10_0016__image97569205395" src="en-us_image_0000001518062644.png"></span>.</p>
+<ul id="cce_10_0016__ul259911812406"><li id="cce_10_0016__li1459919185403"><strong id="cce_10_0016__b1683115545127">Added from secret</strong>: Select a secret and import all keys in the secret as environment variables.<p id="cce_10_0016__p192283274718"></p>
+</li><li id="cce_10_0016__li12862240165014"><strong id="cce_10_0016__b16835155916124">Added from secret key</strong>: Import the value of a key in a secret as the value of an environment variable.<ul id="cce_10_0016__ul15909447135011"><li id="cce_10_0016__li95213468509"><strong id="cce_10_0016__b09515281312">Variable Name</strong>: name of an environment variable in the workload. The name can be customized and is set to the key name selected in the secret by default.</li><li id="cce_10_0016__li591660145119"><strong id="cce_10_0016__b164916405154">Variable Value/Reference</strong>: Select a secret and the key to be imported. The corresponding value is imported as a workload environment variable.</li></ul>
+<p id="cce_10_0016__p3488115325013">For example, after you import the value of <span class="parmname" id="cce_10_0016__parmname113054562156"><b>username</b></span> in secret <strong id="cce_10_0016__b5305956131518">mysecret</strong> as the value of workload environment variable <span class="parmname" id="cce_10_0016__parmname193061956101513"><b>username</b></span>, an environment variable named <span class="parmname" id="cce_10_0016__parmname5306185615157"><b>username</b></span> exists in the container.</p>
+<p id="cce_10_0016__p230444935010"></p>
+</li></ul>
+</p></li><li id="cce_10_0016__li72753567401"><span>Configure other workload parameters and click <span class="uicontrol" id="cce_10_0016__uicontrol102231469160"><b>Create Workload</b></span>.</span><p><p id="cce_10_0016__p2670183316271">After the workload runs properly, <a href="cce_10_00356.html">access the container</a> and run the following command to check whether the secret has been set as an environment variable of the workload:</p>
+<pre class="screen" id="cce_10_0016__screen15459445182819">printenv username</pre>
+<p id="cce_10_0016__p413944715257">If the output is the same as that in the secret, the secret has been set as an environment variable of the workload.</p>
+</p></li></ol>
+<p id="cce_10_0016__p2562105044215"><strong id="cce_10_0016__b186901031161810">Using kubectl</strong></p>
+<ol id="cce_10_0016__ol6921167164"><li id="cce_10_0016__li159211618168"><span>According to <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_10_0016__b10516164210188">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_10_0016__li10921362161"><span>Create a file named <strong id="cce_10_0016__b1047235001817">nginx-secret.yaml</strong> and edit it.</span><p><p id="cce_10_0016__p1492110621619"><strong id="cce_10_0016__b192116619168">vi nginx-secret.yaml</strong></p>
+<p id="cce_10_0016__p192114614169">Content of the YAML file:</p>
+<ul id="cce_10_0016__ul11105134234513"><li id="cce_10_0016__li6846103416564"><strong id="cce_10_0016__b1666733115329">Added from a secret</strong>: To add all data in a secret to environment variables, use the <strong id="cce_10_0016__b2066713314320">envFrom</strong> parameter. The keys in the ConfigMap will become names of environment variables in a workload.<pre class="screen" id="cce_10_0016__screen104944321312">apiVersion: apps/v1
+kind: Deployment
 metadata:
-  name: mypod
+  name: nginx-secret
 spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-secret
+  template:
+    metadata:
+      labels:
+        app: nginx-secret
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+      <strong id="cce_10_0016__b1852881353318">  envFrom:</strong>                 # Use <strong id="cce_10_0016__b1852819137338">envFrom</strong> to specify a secret to be referenced by environment variables.
+<strong id="cce_10_0016__b17597191564417">        - secretRef:</strong>
+<strong id="cce_10_0016__b1246617183318">            name: <i><span class="varname" id="cce_10_0016__varname11246131703318">mysecret</span></i></strong>       # Name of the referenced secret.
+      imagePullSecrets:
+      - name: default-secret</pre>
+</li><li id="cce_10_0016__li31052042124514"><strong id="cce_10_0016__b451292115336">Added from a secret key</strong>: When creating a workload, you can set a secret to set environment variables and use the <strong id="cce_10_0016__b851222120337">valueFrom</strong> parameter to reference the key-value pair in the secret separately.<pre class="screen" id="cce_10_0016__screen25322289311">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-secret
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-secret
+  template:
+    metadata:
+      labels:
+        app: nginx-secret
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+        <strong id="cce_10_0016__b4619743162214">env:</strong>                             # Set environment variables in the workload.
+        <strong id="cce_10_0016__b98576189507">- name: <i><span class="varname" id="cce_10_0016__varname385719188508">SECRET_USERNAME</span></i></strong>           # Name of the environment variable in the workload.
+          <strong id="cce_10_0016__b671371105411">valueFrom:</strong>                    # Use <strong id="cce_10_0016__b759342995114">envFrom</strong> to specify a secret to be referenced by environment variables.
+            <strong id="cce_10_0016__b12349111314547">secretKeyRef:</strong>
+              <strong id="cce_10_0016__b19684151745314">name: <i><span class="varname" id="cce_10_0016__varname6708541538">mysecret</span></i></strong>       # Name of the referenced secret.
+              <strong id="cce_10_0016__b482462135311">key: <i><span class="varname" id="cce_10_0016__varname12881456145312">username</span></i></strong>        # Name of the referenced key.
+        - name: <i><span class="varname" id="cce_10_0016__varname1146511398238">SECRET_PASSWORD</span></i>            # Add multiple environment variables. Multiple environment variables can be imported at the same time.
+          valueFrom:
+            secretKeyRef:
+              name: <i><span class="varname" id="cce_10_0016__varname239020428234">mysecret</span></i>
+              key: <i><span class="varname" id="cce_10_0016__varname71281545122319">password</span></i>
+      imagePullSecrets:
+      - name: default-secret</pre>
+</li></ul>
+</p></li><li id="cce_10_0016__li788331518303"><span>Create a workload.</span><p><p id="cce_10_0016__p3315182011255"><strong id="cce_10_0016__b56467233250">kubectl apply -f nginx-secret.yaml</strong></p>
+</p></li><li id="cce_10_0016__li122061852125612"><span>View the environment variables in the pod.</span><p><ol type="a" id="cce_10_0016__ol15446171295717"><li id="cce_10_0016__li1467620112574">Run the following command to view the created pod:<pre class="screen" id="cce_10_0016__screen156898195914">kubectl get pod | grep nginx-secret</pre>
+<div class="p" id="cce_10_0016__p18257204595920">Expected output:<pre class="screen" id="cce_10_0016__screen7944553592">nginx-secret-***   1/1     Running   0              2m18s</pre>
+</div>
+</li><li id="cce_10_0016__li832105845917">Run the following command to view the environment variables in the pod:<pre class="screen" id="cce_10_0016__screen189552241955">kubectl exec <i><span class="varname" id="cce_10_0016__varname2068413126528">nginx-secret-***</span></i> -- printenv <i><span class="varname" id="cce_10_0016__varname1974518885215">SPECIAL_USERNAME</span></i> <i><span class="varname" id="cce_10_0016__varname132191257111516">SPECIAL_PASSWORD</span></i></pre>
+<p id="cce_10_0016__p814820133619">If the output is the same as that in the secret, the secret has been set as an environment variable of the workload.</p>
+</li></ol>
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0016__section472505211214"><a name="cce_10_0016__section472505211214"></a><a name="section472505211214"></a><h4 class="sectiontitle">Configuring the Data Volume of a Workload</h4><p id="cce_10_0016__p196047901010">You can mount a secret as a volume to the specified container path. Contents in a secret are user-defined. Before that, you need to create a secret. For details, see <a href="cce_10_0153.html">Creating a Secret</a>.</p>
+<p id="cce_10_0016__p748195412417"><strong id="cce_10_0016__b389204585312">Using the console</strong></p>
+<ol id="cce_10_0016__ol668714114817"><li id="cce_10_0016__li1179513219432"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0016__li13692141222712"><span>In the navigation pane on the left, click <strong id="cce_10_0016__b15671049195314">Workloads</strong>. In the right pane, click the <strong id="cce_10_0016__b1767164985312">Deployments</strong> tab. Click <strong id="cce_10_0016__b94891455125313">Create Workload</strong> in the upper right corner.</span><p><p id="cce_10_0016__p89743143278">When creating a workload, click <span class="uicontrol" id="cce_10_0016__uicontrol972835712533"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0016__uicontrol4728105713535"><b>Container Settings</b></span> area. Click <span class="uicontrol" id="cce_10_0016__uicontrol1472935755317"><b>Add Volume</b></span> and select <strong id="cce_10_0016__b6729457135320">Secret</strong> from the drop-down list.</p>
+</p></li><li id="cce_10_0016__li06877414482"><span>Set the local volume type to <strong id="cce_10_0016__b17197020549">Secret</strong> and set parameters for adding a local volume, as shown in <a href="#cce_10_0016__table861818920109">Table 1</a>.</span><p>
+<div class="tablenoborder"><a name="cce_10_0016__table861818920109"></a><a name="table861818920109"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0016__table861818920109" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Secret</caption><thead align="left"><tr id="cce_10_0016__row1962619171020"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.4.7.4.3.2.1.2.3.1.1"><p id="cce_10_0016__p196285991018">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.4.7.4.3.2.1.2.3.1.2"><p id="cce_10_0016__p126314951020">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0016__row563713981015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.4.7.4.3.2.1.2.3.1.1 "><p id="cce_10_0016__p16638594102">Secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.4.7.4.3.2.1.2.3.1.2 "><p id="cce_10_0016__p790921317488">Select the desired secret name.</p>
+<p id="cce_10_0016__p128541638181620">A secret must be created in advance. For details, see <a href="cce_10_0153.html">Creating a Secret</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0016__row146458911015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.4.7.4.3.2.1.2.3.1.1 "><p id="cce_10_0016__p46473921020">Add Container Path</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.4.7.4.3.2.1.2.3.1.2 "><p id="cce_10_0016__p15454317176">Configure the following parameters:</p>
+<ol type="a" id="cce_10_0016__ol1365012913103"><li id="cce_10_0016__en-us_topic_0000001244141089_li26161221390"><strong id="cce_10_0016__b161351825145417">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0016__b1013516258545">/tmp</strong>.<div class="p" id="cce_10_0016__en-us_topic_0000001244141089_en-us_topic_0000001199341206_p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0016__b3471230155419">/</strong> or <strong id="cce_10_0016__b9472103017545">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0016__en-us_topic_0000001244141089_en-us_topic_0000001199341206_note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0016__en-us_topic_0000001244141089_en-us_topic_0000001199341206_p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+</div></div>
+</div>
+</li><li id="cce_10_0016__en-us_topic_0000001244141089_li842512390413"><strong id="cce_10_0016__b448183675416">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0016__b448163617546">tmp</strong>.<ul id="cce_10_0016__en-us_topic_0000001244141089_ul19821342112914"><li id="cce_10_0016__en-us_topic_0000001244141089_li12982114218296">A subpath is used to mount a local volume so that the same data volume is used in a single pod.</li><li id="cce_10_0016__en-us_topic_0000001244141089_li79821942142920">The subpath can be the key and value of a ConfigMap or secret. If the subpath is a key-value pair that does not exist, the data import does not take effect.</li><li id="cce_10_0016__en-us_topic_0000001244141089_li129821442102910">The data imported by specifying a subpath will not be updated along with the ConfigMap/secret updates.</li></ul>
+</li><li id="cce_10_0016__en-us_topic_0000001244141089_li126321222103912">Set the permission to <strong id="cce_10_0016__b12861162165516">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
+<p id="cce_10_0016__p145078478238">You can click <span><img id="cce_10_0016__image51014313412" src="en-us_image_0000001569182625.png"></span> to add multiple paths and subpaths.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li></ol>
+<p id="cce_10_0016__p146758020252"><strong id="cce_10_0016__b10859938141814">Using kubectl</strong></p>
+<ol id="cce_10_0016__ol1392823394416"><li id="cce_10_0016__li1681024195710"><span>According to <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_10_0016__b994724591817">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_10_0016__li1020013819415"><span>Create a file named <strong id="cce_10_0016__b43825156551">nginx-secret.yaml</strong> and edit it.</span><p><p id="cce_10_0016__p106999147413"><strong id="cce_10_0016__b6469155655719">vi nginx-secret.yaml</strong></p>
+<div class="p" id="cce_10_0016__p9949138153913">In the following example, the username and password in the <strong id="cce_10_0016__b1268919165519">mysecret</strong> secret are saved in the <strong id="cce_10_0016__b16831919558">/etc/foo</strong> directory as files.<pre class="screen" id="cce_10_0016__screen11489958268">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-secret
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-secret
+  template:
+    metadata:
+      labels:
+        app: nginx-secret
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+        volumeMounts:
+       - name: foo
+         <strong id="cce_10_0016__b54216251553">mountPath: <i><span class="varname" id="cce_10_0016__varname12420225175517">/etc/foo</span></i></strong>          # Mount to the <strong id="cce_10_0016__b8422132575512">/etc/foo</strong> directory.
+         readOnly: true
+    volumes:
     - name: foo
-      mountPath: "/etc/foo"
-      readOnly: true
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret</pre>
+      secret:
+        <strong id="cce_10_0016__b36219545326">secretName: <i><span class="varname" id="cce_10_0016__varname349176133315">mysecret</span></i></strong>      # Name of the referenced secret.</pre>
 </div>
-<div class="p" id="cce_10_0016__p234055713124">In addition, you can specify the directory and permission to access a secret. The username is stored in the <strong id="cce_10_0016__b5930378811228">/etc/foo/my-group/my-username</strong> directory of the container.<pre class="screen" id="cce_10_0016__screen12711144211311">apiVersion: v1
-kind: Pod
+<div class="p" id="cce_10_0016__p0584145214576">You can also use the <strong id="cce_10_0016__b155587225617">items</strong> field to control the mapping path of the secret key. For example, store the username is stored in the <strong id="cce_10_0016__b106042039105611">/etc/foo/my-group/my-username</strong> directory of the container.<div class="note" id="cce_10_0016__note24861219212"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0016__ul1161238410"><li id="cce_10_0016__li116153444">After the <strong id="cce_10_0016__b490011425717">items</strong> field is used to specify the mapping path of the secret key, the keys that are not specified will not be created as files. For example, if the password key in the following example is not specified, the file will not be created.</li><li id="cce_10_0016__li2474193111412">If you want to use all keys in a secret, you must list all keys in the <strong id="cce_10_0016__b227216205815">items</strong> field.</li><li id="cce_10_0016__li2478216656">All keys listed in the <strong id="cce_10_0016__b3409349145912">items</strong> field must exist in the corresponding secret. Otherwise, the volume is not created.</li></ul>
+</div></div>
+<pre class="screen" id="cce_10_0016__screen188391528598">apiVersion: apps/v1
+kind: Deployment
 metadata:
-  name: mypod
+  name: nginx-secret
 spec:
-  containers:
-  - name: mypod
-    image: redis
-    volumeMounts:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: nginx-secret
+  template:
+    metadata:
+      labels:
+        app: nginx-secret
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+        volumeMounts:
+       - name: foo
+         <strong id="cce_10_0016__b14829591594">mountPath: <i><span class="varname" id="cce_10_0016__varname1548275911590">/etc/foo</span></i></strong>          # Mount to the <strong id="cce_10_0016__b1748355915591">/etc/foo</strong> directory.
+         readOnly: true
+    volumes:
     - name: foo
-      mountPath: "/etc/foo"
-  volumes:
-  - name: foo
-    secret:
-      secretName: mysecret
-      items:
-      - key: username
-        path: my-group/my-username
-        mode: 511</pre>
+      secret:
+        <strong id="cce_10_0016__b6882182021120">secretName: <i><span class="varname" id="cce_10_0016__varname13881192018117">mysecret</span></i></strong>      # Name of the referenced secret.
+        <strong id="cce_10_0016__b182422491655">items:</strong>
+<strong id="cce_10_0016__b1281104895917">        - key: <i><span class="varname" id="cce_10_0016__varname378295716596">username</span></i></strong>      # Name of the referenced key.
+<strong id="cce_10_0016__b8812648175913">          path: <i><span class="varname" id="cce_10_0016__varname47351403019">my-group/my-username</span></i></strong>    # Mapping path of the secret key.</pre>
 </div>
-<p id="cce_10_0016__p2031118172817">To mount a secret to a data volume, you can also perform operations on the CCE console. When creating a workload, set advanced settings for the container, choose <strong id="cce_10_0016__b159591743143117">Data Storage &gt; Local Volume</strong>, click <strong id="cce_10_0016__b89592043143116">Add Local Volume</strong>, and select <strong id="cce_10_0016__b10959144373116">Secret</strong>. For details, see <a href="cce_10_0377.html#cce_10_0377__section10197243134710">Secret</a>.</p>
-</div>
-<div class="section" id="cce_10_0016__section207271352141216"><a name="cce_10_0016__section207271352141216"></a><a name="section207271352141216"></a><h4 class="sectiontitle">Setting Environment Variables of a Pod</h4><div class="p" id="cce_10_0016__p765814229403">A secret can be used as an environment variable of a pod. As shown in the following example, the username and password of the <strong id="cce_10_0016__b106728345329">mysecret</strong> secret are defined as an environment variable of the pod.<pre class="screen" id="cce_10_0016__screen67991151399">apiVersion: v1
-kind: Pod
-metadata:
-  name: secret-env-pod
-spec:
-  containers:
-  - name: mycontainer
-    image: redis
-    env:
-      - name: SECRET_USERNAME
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: username
-      - name: SECRET_PASSWORD
-        valueFrom:
-          secretKeyRef:
-            name: mysecret
-            key: password
-  restartPolicy: Never</pre>
+</p></li><li id="cce_10_0016__li495018318575"><span>Create a workload.</span><p><p id="cce_10_0016__p2955123118577"><strong id="cce_10_0016__b1695511311579">kubectl apply -f nginx-secret.yaml</strong></p>
+</p></li><li id="cce_10_0016__li1274142215365"><span>After the workload runs properly, the <strong id="cce_10_0016__b11136122411216">username</strong> and <strong id="cce_10_0016__b513702418122">password</strong> files are generated in the <strong id="cce_10_0016__b13137124191217">/etc/foo</strong> directory.</span><p><ol type="a" id="cce_10_0016__ol1741321912365"><li id="cce_10_0016__li144131419153619">Run the following command to view the created pod:<pre class="screen" id="cce_10_0016__screen3413111914364">kubectl get pod | grep nginx-secret</pre>
+<div class="p" id="cce_10_0016__p1641311983616">Expected output:<pre class="screen" id="cce_10_0016__screen54139198367">nginx-secret-***   1/1     Running   0              2m18s</pre>
 </div>
+</li><li id="cce_10_0016__li1341318199369">Run the following command to view the <strong id="cce_10_0016__b92351734121213">username</strong> or <strong id="cce_10_0016__b1023533421210">password</strong> file in the pod:<pre class="screen" id="cce_10_0016__screen4413161973617">kubectl exec <i><span class="varname" id="cce_10_0016__varname841331963619">nginx-secret-***</span></i> -- /etc/foo/username</pre>
+<p id="cce_10_0016__p14413141910368">The expected output is the same as that in the secret.</p>
+</li></ol>
+</p></li></ol>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">ConfigMaps and Secrets</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0018.html b/docs/cce/umn/cce_10_0018.html
index 84e7a111..f2c43131 100644
--- a/docs/cce/umn/cce_10_0018.html
+++ b/docs/cce/umn/cce_10_0018.html
@@ -4,7 +4,7 @@
 <div id="body1522667123001"><p id="cce_10_0018__p78381781804">CCE works with AOM to collect workload logs. When creating a node, CCE installs the ICAgent for you (the DaemonSet named <strong id="cce_10_0018__b3710330164314">icagent</strong> in the kube-system namespace of the cluster). After the ICAgent collects workload logs and reports them to AOM, you can view workload logs on the CCE or AOM console.</p>
 <div class="section" id="cce_10_0018__section17884754413"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0018__p23831558355">The ICAgent only collects <strong id="cce_10_0018__b39280572146">*.log</strong>, <strong id="cce_10_0018__b1793513574146">*.trace</strong>, and <strong id="cce_10_0018__b29351157191412">*.out</strong> text log files.</p>
 </div>
-<div class="section" id="cce_10_0018__section1951732710"><h4 class="sectiontitle">Using ICAgent to Collect Logs</h4><ol id="cce_10_0018__ol1253654833013"><li id="cce_10_0018__li19284854163014"><span>When <a href="cce_10_0047.html">creating a workload</a>, set logging for the container.</span></li><li id="cce_10_0018__li2427158104715"><span>Click <span><img id="cce_10_0018__image134281583473" src="en-us_image_0000001206876656.png"></span> to add a log policy.</span><p><div class="p" id="cce_10_0018__p9862125810472">The following uses Nginx as an example. Log policies vary depending on workloads.<div class="fignone" id="cce_10_0018__fig19856172153216"><span class="figcap"><b>Figure 1 </b>Adding a log policy</span><br><span><img id="cce_10_0018__image168953502558" src="en-us_image_0000001199181298.png"></span></div>
+<div class="section" id="cce_10_0018__section1951732710"><h4 class="sectiontitle">Using ICAgent to Collect Logs</h4><ol id="cce_10_0018__ol1253654833013"><li id="cce_10_0018__li19284854163014"><span>When <a href="cce_10_0047.html">creating a workload</a>, set logging for the container.</span></li><li id="cce_10_0018__li2427158104715"><span>Click <span><img id="cce_10_0018__image134281583473" src="en-us_image_0000001569182673.png"></span> to add a log policy.</span><p><div class="p" id="cce_10_0018__p9862125810472">The following uses Nginx as an example. Log policies vary depending on workloads.<div class="fignone" id="cce_10_0018__fig19856172153216"><span class="figcap"><b>Figure 1 </b>Adding a log policy</span><br><span><img id="cce_10_0018__image168953502558" src="en-us_image_0000001569022957.png"></span></div>
 </div>
 </p></li><li id="cce_10_0018__li1479392315150"><span>Set <strong id="cce_10_0018__b5461630195419">Storage Type</strong> to <span class="uicontrol" id="cce_10_0018__uicontrol105212302547"><b>Host Path</b></span> or <span class="uicontrol" id="cce_10_0018__uicontrol1752103095410"><b>Container Path</b></span>.</span><p>
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0018__table115901715550" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuring log policies</caption><thead align="left"><tr id="cce_10_0018__row45851074554"><th align="left" class="cellrowborder" valign="top" width="22.12%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_10_0018__p115843785517">Parameter</p>
@@ -135,7 +135,7 @@ spec:
 
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0018__table1332817095114" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Parameter description</caption><thead align="left"><tr id="cce_10_0018__row63291603518"><th align="left" class="cellrowborder" valign="top" width="17.06%" id="mcps1.3.4.7.2.4.1.1"><p id="cce_10_0018__p53291009514">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="19.23%" id="mcps1.3.4.7.2.4.1.2"><p id="cce_10_0018__p3329208519">Explanation</p>
+<th align="left" class="cellrowborder" valign="top" width="19.23%" id="mcps1.3.4.7.2.4.1.2"><p id="cce_10_0018__p3329208519">Description</p>
 </th>
 <th align="left" class="cellrowborder" valign="top" width="63.71%" id="mcps1.3.4.7.2.4.1.3"><p id="cce_10_0018__p93291706517">Description</p>
 </th>
@@ -146,8 +146,8 @@ spec:
 <td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_10_0018__p6329709512">Extended host path</p>
 </td>
 <td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_10_0018__p32881805119">Extended host paths contain pod IDs or container names to distinguish different containers into which the host path is mounted.</p>
-<p id="cce_10_0018__p1728888115112">A level-3 directory is added to the original volume directory/subdirectory. You can easily obtain the files output by a single <span class="keyword" id="cce_10_0018__keyword2000378939">Pod</span>.</p>
-<ul id="cce_10_0018__ul2028828105113"><li id="cce_10_0018__li428815865110"><strong id="cce_10_0018__b379208072">None</strong>: No extended path is configured. </li><li id="cce_10_0018__li62889814517"><strong id="cce_10_0018__b1336006828">PodUID</strong>: ID of a pod.</li><li id="cce_10_0018__li528818135113"><strong id="cce_10_0018__b1360762071">PodName</strong>: name of a pod.</li><li id="cce_10_0018__li62882084517"><strong id="cce_10_0018__b1925991408">PodUID/ContainerName</strong>: ID of a pod or name of a container.</li><li id="cce_10_0018__li528898175110"><strong id="cce_10_0018__b8818125942116">PodName/ContainerName</strong>: name of a pod or container.</li></ul>
+<p id="cce_10_0018__p1728888115112">A level-3 directory is added to the original volume directory/subdirectory. You can easily obtain the files output by a single <span class="keyword" id="cce_10_0018__keyword1766445251">Pod</span>.</p>
+<ul id="cce_10_0018__ul2028828105113"><li id="cce_10_0018__li428815865110"><strong id="cce_10_0018__b466439911">None</strong>: No extended path is configured. </li><li id="cce_10_0018__li62889814517"><strong id="cce_10_0018__b746148577">PodUID</strong>: ID of a pod.</li><li id="cce_10_0018__li528818135113"><strong id="cce_10_0018__b678656736">PodName</strong>: name of a pod.</li><li id="cce_10_0018__li62882084517"><strong id="cce_10_0018__b1079307725">PodUID/ContainerName</strong>: ID of a pod or name of a container.</li><li id="cce_10_0018__li528898175110"><strong id="cce_10_0018__b8818125942116">PodName/ContainerName</strong>: name of a pod or container.</li></ul>
 </td>
 </tr>
 <tr id="cce_10_0018__row732915085118"><td class="cellrowborder" valign="top" width="17.06%" headers="mcps1.3.4.7.2.4.1.1 "><p id="cce_10_0018__p17329004514">policy.logs.rotate</p>
@@ -155,7 +155,7 @@ spec:
 <td class="cellrowborder" valign="top" width="19.23%" headers="mcps1.3.4.7.2.4.1.2 "><p id="cce_10_0018__p123292055113">Log dump</p>
 </td>
 <td class="cellrowborder" valign="top" width="63.71%" headers="mcps1.3.4.7.2.4.1.3 "><p id="cce_10_0018__p1017113396539">Log dump refers to rotating log files on a local host.</p>
-<ul id="cce_10_0018__ul1617120398533"><li id="cce_10_0018__li71711639105316"><strong id="cce_10_0018__b1526956635">Enabled</strong>: AOM scans log files every minute. When a log file exceeds 50 MB, it is dumped immediately. A new <strong id="cce_10_0018__b530318652">.zip</strong> file is generated in the directory where the log file locates. For a log file, AOM stores only the latest 20 <strong id="cce_10_0018__b816695388">.zip</strong> files. When the number of <strong id="cce_10_0018__b589371906">.zip</strong> files exceeds 20, earlier <strong id="cce_10_0018__b54563225">.zip</strong> files will be deleted. After the dump is complete, the log file in AOM will be cleared.</li><li id="cce_10_0018__li817133985315"><strong id="cce_10_0018__b1482156256">Disabled</strong>: AOM does not dump log files.</li></ul>
+<ul id="cce_10_0018__ul1617120398533"><li id="cce_10_0018__li71711639105316"><strong id="cce_10_0018__b228801547">Enabled</strong>: AOM scans log files every minute. When a log file exceeds 50 MB, it is dumped immediately. A new <strong id="cce_10_0018__b618877522">.zip</strong> file is generated in the directory where the log file locates. For a log file, AOM stores only the latest 20 <strong id="cce_10_0018__b67462932">.zip</strong> files. When the number of <strong id="cce_10_0018__b478147095">.zip</strong> files exceeds 20, earlier <strong id="cce_10_0018__b1992183573">.zip</strong> files will be deleted. After the dump is complete, the log file in AOM will be cleared.</li><li id="cce_10_0018__li817133985315"><strong id="cce_10_0018__b1231713624">Disabled</strong>: AOM does not dump log files.</li></ul>
 <div class="note" id="cce_10_0018__note121711639195319"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0018__ul817183918533"><li id="cce_10_0018__li9171183945310">AOM rotates log files using copytruncate. Before enabling log dumping, ensure that log files are written in the append mode. Otherwise, file holes may occur.</li><li id="cce_10_0018__li1117153914535">Currently, mainstream log components such as Log4j and Logback support log file rotation. If you have set rotation for log files, skip the configuration. Otherwise, conflicts may occur.</li><li id="cce_10_0018__li317113915532">You are advised to configure log file rotation for your own services to flexibly control the size and number of rolled files.</li></ul>
 </div></div>
 </td>
diff --git a/docs/cce/umn/cce_10_0026.html b/docs/cce/umn/cce_10_0026.html
index cbb20eaf..152c4176 100644
--- a/docs/cce/umn/cce_10_0026.html
+++ b/docs/cce/umn/cce_10_0026.html
@@ -3,13 +3,13 @@
 <h1 class="topictitle1">Querying CTS Logs</h1>
 <div id="body1525226397666"><div class="section" id="cce_10_0026__section19908104613460"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0026__p1349415403233">After you enable CTS, the system starts recording operations on CCE resources. Operation records of the last 7 days can be viewed on the CTS management console.</p>
 </div>
-<div class="section" id="cce_10_0026__section208814582456"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0026__ol968681862911"><li id="cce_10_0026__li18356228445"><span>Log in to the management console.</span></li><li id="cce_10_0026__li14905725134512"><span>Click <span><img id="cce_10_0026__image1180502423211" src="en-us_image_0000001244141141.gif"></span> in the upper left corner and select a region.</span></li><li id="cce_10_0026__li56856187296"><span>Choose <strong id="cce_10_0026__b161841334316020">Service List</strong> from the main menu. Choose <strong id="cce_10_0026__b14174101155814">Management &amp; Deployment</strong> &gt; <strong id="cce_10_0026__b1917414113585">Cloud Trace Service</strong>.</span></li><li id="cce_10_0026__li6685018122920"><span>In the navigation pane of the CTS console, choose <strong id="cce_10_0026__b091641316584">Cloud Trace Service</strong> &gt; <strong id="cce_10_0026__b6917813165811">Trace List</strong>.</span></li><li id="cce_10_0026__li0686618152911"><span>On the <strong id="cce_10_0026__b156310494616044">Trace List</strong> page, query operation records based on the search criteria. Currently, the trace list supports trace query based on the combination of the following search criteria:</span><p><ul id="cce_10_0026__ul2686318142919"><li id="cce_10_0026__li9685018132914"><strong id="cce_10_0026__b147767585916113">Trace Source</strong>, <strong id="cce_10_0026__b33843206916113">Resource Type</strong>, and <strong id="cce_10_0026__b104136949616113">Search By</strong><p id="cce_10_0026__p068517181297">Select the search criteria from the drop-down lists. Select <strong id="cce_10_0026__b987393825817">CCE</strong> from the <strong id="cce_10_0026__b1287312387583">Trace Source</strong> drop-down list.</p>
+<div class="section" id="cce_10_0026__section208814582456"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0026__ol968681862911"><li id="cce_10_0026__li18356228445"><span>Log in to the management console.</span></li><li id="cce_10_0026__li14905725134512"><span>Click <span><img id="cce_10_0026__image1180502423211" src="en-us_image_0000001569182497.gif"></span> in the upper left corner and select a region.</span></li><li id="cce_10_0026__li56856187296"><span>Choose <strong id="cce_10_0026__b161841334316020">Service List</strong> from the main menu. Choose <strong id="cce_10_0026__b14174101155814">Management &amp; Deployment</strong> &gt; <strong id="cce_10_0026__b1917414113585">Cloud Trace Service</strong>.</span></li><li id="cce_10_0026__li6685018122920"><span>In the navigation pane of the CTS console, choose <strong id="cce_10_0026__b091641316584">Cloud Trace Service</strong> &gt; <strong id="cce_10_0026__b6917813165811">Trace List</strong>.</span></li><li id="cce_10_0026__li0686618152911"><span>On the <strong id="cce_10_0026__b156310494616044">Trace List</strong> page, query operation records based on the search criteria. Currently, the trace list supports trace query based on the combination of the following search criteria:</span><p><ul id="cce_10_0026__ul2686318142919"><li id="cce_10_0026__li9685018132914"><strong id="cce_10_0026__b147767585916113">Trace Source</strong>, <strong id="cce_10_0026__b33843206916113">Resource Type</strong>, and <strong id="cce_10_0026__b104136949616113">Search By</strong><p id="cce_10_0026__p068517181297">Select the search criteria from the drop-down lists. Select <strong id="cce_10_0026__b987393825817">CCE</strong> from the <strong id="cce_10_0026__b1287312387583">Trace Source</strong> drop-down list.</p>
 <p id="cce_10_0026__p26851618102915">If you select <strong id="cce_10_0026__b23175131216221">Trace name</strong> from the <strong id="cce_10_0026__b172899127516221">Search By</strong> drop-down list, specify the trace name.</p>
 <p id="cce_10_0026__p7685191818293">If you select <strong id="cce_10_0026__b33083335616231">Resource ID</strong> from the <strong id="cce_10_0026__b153919820216231">Search By</strong> drop-down list, select or enter a specific resource ID.</p>
 <p id="cce_10_0026__p166851718102917">If you select <strong id="cce_10_0026__b50135831116238">Resource name</strong> from the <strong id="cce_10_0026__b186507588316238">Search By</strong> drop-down list, select or enter a specific resource name.</p>
 </li><li id="cce_10_0026__li1968671815297"><strong id="cce_10_0026__b168444573616245">Operator</strong>: Select a specific operator (at user level rather than account level).</li><li id="cce_10_0026__li368641832910"><strong id="cce_10_0026__b113712261116258">Trace Status</strong>: Set this parameter to any of the following values: <strong id="cce_10_0026__b135890568716258">All trace statuses</strong>, <strong id="cce_10_0026__b192911413716258">normal</strong>, <strong id="cce_10_0026__b59570413316258">warning</strong>, and <strong id="cce_10_0026__b169117565716258">incident</strong>.</li><li id="cce_10_0026__li12686118112916">Time range: You can query traces generated during any time range in the last seven days.</li></ul>
-</p></li><li id="cce_10_0026__li01301836122914"><span>Click <span><img id="cce_10_0026__image07291172331" src="en-us_image_0000001199341250.png"></span> on the left of a trace to expand its details, as shown below.</span><p><div class="fignone" id="cce_10_0026__fig1324117817394"><span class="figcap"><b>Figure 1 </b>Expanding trace details</span><br><span><img id="cce_10_0026__image19242788396" src="en-us_image_0000001243981141.png"></span></div>
-</p></li><li id="cce_10_0026__li186863182294"><span>Click <strong id="cce_10_0026__b25871212163720">View Trace</strong> in the <strong id="cce_10_0026__b1597141217374">Operation</strong> column. The trace details are displayed.</span><p><div class="fignone" id="cce_10_0026__fig365411360512"><span class="figcap"><b>Figure 2 </b>Viewing event details</span><br><span><img id="cce_10_0026__image21436386418" src="en-us_image_0000001244141139.png"></span></div>
+</p></li><li id="cce_10_0026__li01301836122914"><span>Click <span><img id="cce_10_0026__image07291172331" src="en-us_image_0000001569182505.png"></span> on the left of a trace to expand its details, as shown below.</span><p><div class="fignone" id="cce_10_0026__fig1324117817394"><span class="figcap"><b>Figure 1 </b>Expanding trace details</span><br><span><img id="cce_10_0026__image19242788396" src="en-us_image_0000001569022781.png"></span></div>
+</p></li><li id="cce_10_0026__li186863182294"><span>Click <strong id="cce_10_0026__b25871212163720">View Trace</strong> in the <strong id="cce_10_0026__b1597141217374">Operation</strong> column. The trace details are displayed.</span><p><div class="fignone" id="cce_10_0026__fig365411360512"><span class="figcap"><b>Figure 2 </b>Viewing event details</span><br><span><img id="cce_10_0026__image21436386418" src="en-us_image_0000001517743372.png"></span></div>
 </p></li></ol>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0028.html b/docs/cce/umn/cce_10_0028.html
index 52c3ac5f..059e0b6b 100644
--- a/docs/cce/umn/cce_10_0028.html
+++ b/docs/cce/umn/cce_10_0028.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Creating a CCE Cluster</h1>
 <div id="body1505899032898"><p id="cce_10_0028__p126541913151116">On the CCE console, you can easily create Kubernetes clusters. Kubernetes can manage container clusters at scale. A cluster manages a group of node resources.</p>
 <p id="cce_10_0028__p162026117205">In CCE, you can create a CCE cluster to manage VMs. By using high-performance network models, hybrid clusters provide a multi-scenario, secure, and stable runtime environment for containers.</p>
-<div class="section" id="cce_10_0028__section1386743114294"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0028__ul686414167496"><li id="cce_10_0028__li190817135320">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0028__li124606217339">You can create a maximum of 50 clusters in a single region.</li><li id="cce_10_0028__li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_10_0028__ul1386431634910"><li id="cce_10_0028__li6864131614492">Cluster type</li><li id="cce_10_0028__li359558115311">Number of master nodes in the cluster</li><li id="cce_10_0028__li452948112016">AZ of a master node</li><li id="cce_10_0028__li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, and kube-proxy (forwarding) settings</li><li id="cce_10_0028__li1686451618494">Network model. For example, change <strong id="cce_10_0028__b16979154810810">Tunnel network</strong> to <strong id="cce_10_0028__b1297916485820">VPC network</strong>.</li></ul>
+<div class="section" id="cce_10_0028__section1386743114294"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0028__ul686414167496"><li id="cce_10_0028__li190817135320">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the DNS server address of the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0028__li124606217339">You can create a maximum of 50 clusters in a single region.</li><li id="cce_10_0028__li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_10_0028__ul1386431634910"><li id="cce_10_0028__li6864131614492">Cluster type</li><li id="cce_10_0028__li359558115311">Number of master nodes in the cluster</li><li id="cce_10_0028__li452948112016">AZ of a master node</li><li id="cce_10_0028__li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, and kube-proxy (forwarding) settings</li><li id="cce_10_0028__li1686451618494">Network model. For example, change <strong id="cce_10_0028__b16979154810810">Tunnel network</strong> to <strong id="cce_10_0028__b1297916485820">VPC network</strong>.</li></ul>
 </li></ul>
 </div>
 <div class="section" id="cce_10_0028__section176228482126"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0028__ol1233331493511"><li id="cce_10_0028__li833491416359"><span>Log in to the CCE console. Choose <strong id="cce_10_0028__b1563535515135">Clusters</strong>. On the displayed page, click <strong id="cce_10_0028__b1861116237141">Create</strong> next to <strong id="cce_10_0028__b1563618552135">CCE cluster</strong>.</span></li><li id="cce_10_0028__li1569162220359"><span>Set cluster parameters.</span><p><div class="p" id="cce_10_0028__p5653205823718"><strong id="cce_10_0028__b14641318112618">Basic Settings</strong><ul id="cce_10_0028__ul5395195853710"><li id="cce_10_0028__li1739455810379"><strong id="cce_10_0028__b15847145841720">Cluster Name</strong></li><li id="cce_10_0028__li163957587379"><strong id="cce_10_0028__b89145218188">Cluster Version</strong>: Select the Kubernetes version used by the cluster.</li><li id="cce_10_0028__li5395358163711"><strong id="cce_10_0028__b01681447141713">Cluster Scale</strong>: maximum number of nodes that can be managed by the cluster. </li><li id="cce_10_0028__li467617271013"><strong id="cce_10_0028__b1538713714413">HA</strong>: distribution mode of master nodes. By default, master nodes are randomly distributed in different AZs to improve DR capabilities.<div class="p" id="cce_10_0028__p15811036101">You can also expand advanced settings and customize the master node distribution mode. The following two modes are supported:<ul id="cce_10_0028__ul729432918812"><li id="cce_10_0028__li1529418293815"><strong id="cce_10_0028__b939210361624">Random</strong>: Master nodes are created in different AZs for DR.</li><li id="cce_10_0028__li103958393117"><strong id="cce_10_0028__b5810610331">Custom</strong>: You can determine the location of each master node.<ul id="cce_10_0028__ul1220719413117"><li id="cce_10_0028__li62941529381"><strong id="cce_10_0028__b292085817517">Host</strong>: Master nodes are created on different hosts in the same AZ.</li><li id="cce_10_0028__li32946293815"><strong id="cce_10_0028__b01923920215">Custom</strong>: You can determine the location of each master node.</li></ul>
@@ -20,12 +20,14 @@
 </div></div>
 </li></ul>
 </li><li id="cce_10_0028__li8833185203815"><strong id="cce_10_0028__b891711174919">Description</strong>: The value can contain a maximum of 200 English characters.</li></ul>
-</p></li><li id="cce_10_0028__li9641724418"><span>Click <strong id="cce_10_0028__cce_10_0298_b05029251885">Next: Add-on Configuration</strong>.</span><p><p id="cce_10_0028__cce_10_0298_p292215338261">By default, <a href="cce_10_0129.html">cordens</a> and <a href="cce_10_0066.html">everest</a> add-ons are installed.</p>
-<div class="p" id="cce_10_0028__cce_10_0298_p1042341817336"><strong id="cce_10_0028__cce_10_0298_b54341755383">Service log</strong><ul id="cce_10_0028__cce_10_0298_ul1532032363417"><li id="cce_10_0028__cce_10_0298_li078322903611"><strong id="cce_10_0028__cce_10_0298_b111439411113">ICAgent</strong>:<p id="cce_10_0028__cce_10_0298_p5238153093619">A log collector provided by Application Operations Management (AOM), reporting logs to AOM and Log Tank Service (LTS) according to the log collection rules you configured.</p>
-<p id="cce_10_0028__cce_10_0298_p161195033716">You can collect stdout logs as required.</p>
+</p></li><li id="cce_10_0028__li9641724418"><span>Click <strong id="cce_10_0028__b194907314482">Next: Add-on Configuration</strong>.</span><p><p id="cce_10_0028__en-us_topic_0000001243981077_p157905523575"><strong id="cce_10_0028__b595244015487">Domain Name Resolution</strong>: Uses the <a href="cce_10_0129.html">coredns</a> add-on, installed by default, to resolve domain names and connect to the cloud DNS server.</p>
+<p id="cce_10_0028__en-us_topic_0000001243981077_p292215338261"><strong id="cce_10_0028__b3546177134911">Container Storage</strong>: Uses the <a href="cce_10_0066.html">everest</a> add-on, installed by default, to provide container storage based on CSI and connect to cloud storage services such as EVS.</p>
+<div class="p" id="cce_10_0028__en-us_topic_0000001243981077_p1042341817336"><strong id="cce_10_0028__b078412875610">Service logs</strong><ul id="cce_10_0028__en-us_topic_0000001243981077_ul1532032363417"><li id="cce_10_0028__en-us_topic_0000001243981077_li078322903611">Using ICAgent:<p id="cce_10_0028__en-us_topic_0000001243981077_p5238153093619"><a name="cce_10_0028__en-us_topic_0000001243981077_li078322903611"></a><a name="en-us_topic_0000001243981077_li078322903611"></a>A log collector provided by Application Operations Management (AOM), reporting logs to AOM and Log Tank Service (LTS) according to the log collection rules you configured.</p>
+<p id="cce_10_0028__en-us_topic_0000001243981077_p161195033716">You can collect stdout logs as required.</p>
 </li></ul>
 </div>
-</p></li><li id="cce_10_0028__li72711456163617"><span>After the parameters are specified, click <span class="uicontrol" id="cce_10_0028__uicontrol36131794526"><b>Next: Confirm</b></span>. The cluster resource list is displayed. Confirm the information and click <span class="uicontrol" id="cce_10_0028__uicontrol1752232819449"><b>Submit</b></span>.</span><p><p id="cce_10_0028__p1020211168316">It takes about 6 to 10 minutes to create a cluster. You can click <strong id="cce_10_0028__b1712383711547">Back to Cluster List</strong> to perform other operations on the cluster or click <strong id="cce_10_0028__b3123193725416">Go to Cluster Events</strong> to view the cluster details.</p>
+<p id="cce_10_0028__en-us_topic_0000001243981077_p357714145121"><strong id="cce_10_0028__b167302337554">Overload Control</strong>: If overload control is enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.</p>
+</p></li><li id="cce_10_0028__li72711456163617"><span>After setting the parameters, click <span class="uicontrol" id="cce_10_0028__uicontrol677013344165"><b>Next: Confirm</b></span>. After confirming that the cluster configuration information is correct, select <strong id="cce_10_0028__b10770193415164">I have read and understand the preceding instructions</strong> and click <strong id="cce_10_0028__b4771183411610">Submit</strong>.</span><p><p id="cce_10_0028__p1020211168316">It takes about 6 to 10 minutes to create a cluster. You can click <strong id="cce_10_0028__b1712383711547">Back to Cluster List</strong> to perform other operations on the cluster or click <strong id="cce_10_0028__b3123193725416">Go to Cluster Events</strong> to view the cluster details.</p>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0028__section125261255139"><h4 class="sectiontitle">Related Operations</h4><ul id="cce_10_0028__ul912451119262"><li id="cce_10_0028__li1030825181117">After creating a cluster, you can use the Kubernetes command line (CLI) tool kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</li><li id="cce_10_0028__li312413114263">Add nodes to the cluster. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</li></ul>
diff --git a/docs/cce/umn/cce_10_0031.html b/docs/cce/umn/cce_10_0031.html
index a61780a4..4edbb64b 100644
--- a/docs/cce/umn/cce_10_0031.html
+++ b/docs/cce/umn/cce_10_0031.html
@@ -4,7 +4,7 @@
 <div id="body1506157580881"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_10_0213.html">Managing Cluster Components</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0213.html">Cluster Configuration Management</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0212.html">Deleting a Cluster</a></strong><br>
 </li>
diff --git a/docs/cce/umn/cce_10_00356.html b/docs/cce/umn/cce_10_00356.html
new file mode 100644
index 00000000..4c80b9eb
--- /dev/null
+++ b/docs/cce/umn/cce_10_00356.html
@@ -0,0 +1,22 @@
+<a name="cce_10_00356"></a><a name="cce_10_00356"></a>
+
+<h1 class="topictitle1">Accessing a Container</h1>
+<div id="body0000001151211236"><div class="section" id="cce_10_00356__section7379040716"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_00356__p1134114511811">If you encounter unexpected problems when using a container, you can log in to the container for debugging.</p>
+</div>
+<div class="section" id="cce_10_00356__section1293318163114"><h4 class="sectiontitle">Logging In to a Container Using kubectl</h4><ol id="cce_10_00356__ol1392823394416"><li id="cce_10_00356__li1681024195710"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_00356__li1020013819415"><span id="cce_10_00356__p49510201338">Run the following command to view the created pod:</span><p><pre class="screen" id="cce_10_00356__screen156898195914">kubectl get pod</pre>
+<div class="p" id="cce_10_00356__p18257204595920">The example output is as follows:<pre class="screen" id="cce_10_00356__screen7944553592">NAME                               READY   STATUS    RESTARTS       AGE
+nginx-59d89cb66f-mhljr             1/1     Running   0              11m</pre>
+</div>
+</p></li><li id="cce_10_00356__li356233617436"><span>Query the name of the container in the pod.</span><p><pre class="screen" id="cce_10_00356__screen5352174217439">kubectl get po <i><span class="varname" id="cce_10_00356__varname373018473433">nginx-59d89cb66f-mhljr</span></i> -o jsonpath='{range .spec.containers[*]}{.name}{end}{"\n"}'</pre>
+<div class="p" id="cce_10_00356__p3651112824414">The example output is as follows:<pre class="screen" id="cce_10_00356__screen1965142811442">container-1</pre>
+</div>
+</p></li><li id="cce_10_00356__li15567184714456"><span>Run the following command to log in to the container named <strong id="cce_10_00356__b1875816432427">container-1</strong> in <strong id="cce_10_00356__b46855020427">nginx-59d89cb66f-mhljrPod</strong>:</span><p><pre class="screen" id="cce_10_00356__screen208681724173519">kubectl exec -it <i><span class="varname" id="cce_10_00356__varname42937231455">nginx-59d89cb66f-mhljr</span></i> -c <i><span class="varname" id="cce_10_00356__varname115981226164513">container-1</span></i> -- /bin/sh</pre>
+</p></li><li id="cce_10_00356__li1582141517375"><span>To exit the container, run the <strong id="cce_10_00356__b15873927134616">exit</strong> command.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0046.html">Workloads</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0036.html b/docs/cce/umn/cce_10_0036.html
index 6c37df45..3b8fed04 100644
--- a/docs/cce/umn/cce_10_0036.html
+++ b/docs/cce/umn/cce_10_0036.html
@@ -5,7 +5,7 @@
 </div>
 <div class="section" id="cce_10_0036__section1489437103610"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0036__ul0917755162415"><li id="cce_10_0036__li1891719552246">Deleting a node will lead to pod migration, which may affect services. Therefore, delete nodes during off-peak hours.</li><li id="cce_10_0036__li791875552416">Unexpected risks may occur during node deletion. Back up related data in advance.</li><li id="cce_10_0036__li15918105582417">While the node is being deleted, the backend will set the node to the unschedulable state.</li><li id="cce_10_0036__li12918145520241">Only worker nodes can be stopped.</li></ul>
 </div>
-<div class="section" id="cce_10_0036__section14341135612442"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0036__ol5687174923613"><li id="cce_10_0036__li133915311359"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0036__li6687049203616"><span>In the navigation pane, choose <strong id="cce_10_0036__b06131727172613">Nodes</strong>. In the right pane, click the name of the node to be stopped.</span></li><li id="cce_10_0036__li117301253183717"><span>In the upper right corner of the ECS details page, click <strong id="cce_10_0036__b1247467161417">Stop</strong> in the instance status area. In the displayed dialog box, click <strong id="cce_10_0036__b12474177131414">Yes</strong>.</span><p><div class="fignone" id="cce_10_0036__fig19269101385311"><span class="figcap"><b>Figure 1 </b>ECS details page</span><br><span><img id="cce_10_0036__image6847636155" src="en-us_image_0000001244261119.png"></span></div>
+<div class="section" id="cce_10_0036__section14341135612442"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0036__ol5687174923613"><li id="cce_10_0036__li133915311359"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0036__li6687049203616"><span>In the navigation pane, choose <strong id="cce_10_0036__b06131727172613">Nodes</strong>. In the right pane, click the name of the node to be stopped.</span></li><li id="cce_10_0036__li117301253183717"><span>In the upper right corner of the ECS details page, click <strong id="cce_10_0036__b1247467161417">Stop</strong> in the instance status area. In the displayed dialog box, click <strong id="cce_10_0036__b12474177131414">Yes</strong>.</span><p><div class="fignone" id="cce_10_0036__fig19269101385311"><span class="figcap"><b>Figure 1 </b>ECS details page</span><br><span><img id="cce_10_0036__image6847636155" src="en-us_image_0000001518062704.png"></span></div>
 </p></li></ol>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0045.html b/docs/cce/umn/cce_10_0045.html
index 6ae35260..f1d3a200 100644
--- a/docs/cce/umn/cce_10_0045.html
+++ b/docs/cce/umn/cce_10_0045.html
@@ -1,6 +1,6 @@
 <a name="cce_10_0045"></a><a name="cce_10_0045"></a>
 
-<h1 class="topictitle1">Configuration Center</h1>
+<h1 class="topictitle1">ConfigMaps and Secrets</h1>
 <div id="body1507606688948"></div>
 <div>
 <ul class="ullinks">
diff --git a/docs/cce/umn/cce_10_0046.html b/docs/cce/umn/cce_10_0046.html
index 72d826dd..2173e6fd 100644
--- a/docs/cce/umn/cce_10_0046.html
+++ b/docs/cce/umn/cce_10_0046.html
@@ -24,6 +24,8 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0551.html">CPU Core Binding</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_10_00356.html">Accessing a Container</a></strong><br>
+</li>
 <li class="ulchildlink"><strong><a href="cce_10_0386.html">Pod Labels and Annotations</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0423.html">Volcano Scheduling</a></strong><br>
diff --git a/docs/cce/umn/cce_10_0047.html b/docs/cce/umn/cce_10_0047.html
index 1afbf991..26c84a51 100644
--- a/docs/cce/umn/cce_10_0047.html
+++ b/docs/cce/umn/cce_10_0047.html
@@ -7,7 +7,7 @@
 </div></div>
 </li></ul>
 </div>
-<div class="section" id="cce_10_0047__section1996635141916"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0047__ol2012902601117"><li id="cce_10_0047__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0047__li2075471341"><span>Click the cluster name to access the cluster details page, choose <strong id="cce_10_0047__b177043716583">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0047__b3710187125815">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0047__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0047__p1259466151612"><strong id="cce_10_0047__b1493704971917">Basic Info</strong><ul id="cce_10_0047__ul6954101318184"><li id="cce_10_0047__li11514131617185"><strong id="cce_10_0047__b17688966208">Workload Type</strong>: Select <strong id="cce_10_0047__b19319191110206">Deployment</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0047__li129541213101814"><strong id="cce_10_0047__b112962517203">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0047__li179541813111814"><strong id="cce_10_0047__b15588183732013">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0047__b2393134262015">default</strong>. You can also click <span class="uicontrol" id="cce_10_0047__uicontrol342862818214"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0047__li18955181315189"><strong id="cce_10_0047__b1997313316218">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0047__li11753142112539"><strong id="cce_10_0047__b1236151911112">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0047__li1295571341818"><strong id="cce_10_0047__b197683014275">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
+<div class="section" id="cce_10_0047__section1996635141916"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0047__ol2012902601117"><li id="cce_10_0047__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0047__li2075471341"><span>Click the cluster name to access the cluster details page, choose <strong id="cce_10_0047__b177043716583">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0047__b3710187125815">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0047__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0047__p1259466151612"><strong id="cce_10_0047__b1493704971917">Basic Info</strong><ul id="cce_10_0047__ul6954101318184"><li id="cce_10_0047__li11514131617185"><strong id="cce_10_0047__b17688966208">Workload Type</strong>: Select <strong id="cce_10_0047__b19319191110206">Deployment</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0047__li129541213101814"><strong id="cce_10_0047__b112962517203">Workload Name</strong>: Enter the name of the workload. Enter 1 to 63 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</li><li id="cce_10_0047__li179541813111814"><strong id="cce_10_0047__b15588183732013">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0047__b2393134262015">default</strong>. You can also click <span class="uicontrol" id="cce_10_0047__uicontrol342862818214"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0047__li18955181315189"><strong id="cce_10_0047__b1997313316218">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0047__li11753142112539"><strong id="cce_10_0047__b1236151911112">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0047__li1295571341818"><strong id="cce_10_0047__b197683014275">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
 </div>
 <div class="p" id="cce_10_0047__p206571518181616"><strong id="cce_10_0047__b062716554277">Container Settings</strong><ul id="cce_10_0047__ul42071022103320"><li id="cce_10_0047__li8770480458">Container Information<div class="p" id="cce_10_0047__p10493941854"><a name="cce_10_0047__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0047__uicontrol2024214181967"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0047__ul10714183717111"><li id="cce_10_0047__li1471463741113"><strong id="cce_10_0047__b996714571008">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0047__li127141737191112"><strong id="cce_10_0047__b854817461802">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0047__li9714123711114"><strong id="cce_10_0047__b1428584819018">Health Check</strong>: See <a href="cce_10_0112.html">Setting Health Check for a Container</a>.</li><li id="cce_10_0047__li5714123721119"><strong id="cce_10_0047__b547425013014">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0047__li571418378113"><strong id="cce_10_0047__b187511352406">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0047__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0047__p17126153413513">If the workload contains more than one pod, EVS volumes cannot be mounted.</p>
 </div></div>
diff --git a/docs/cce/umn/cce_10_0048.html b/docs/cce/umn/cce_10_0048.html
index ebe858d0..00707633 100644
--- a/docs/cce/umn/cce_10_0048.html
+++ b/docs/cce/umn/cce_10_0048.html
@@ -10,7 +10,7 @@
 </div></div>
 </li></ul>
 </div>
-<div class="section" id="cce_10_0048__section16385130102112"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0048__ol2012902601117"><li id="cce_10_0048__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0048__li2075471341"><span>Click the cluster name to access the cluster details page, choose <strong id="cce_10_0048__b12863171618585">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0048__b7869116135814">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0048__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0048__p1259466151612"><strong id="cce_10_0048__b64930521915">Basic Info</strong><ul id="cce_10_0048__ul6954101318184"><li id="cce_10_0048__li11514131617185"><strong id="cce_10_0048__b19311135410116">Workload Type</strong>: Select <strong id="cce_10_0048__b0311195410110">StatefulSet</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0048__li129541213101814"><strong id="cce_10_0048__b16758113322">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0048__li179541813111814"><strong id="cce_10_0048__b122601351320">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0048__b0261451528">default</strong>. You can also click <span class="uicontrol" id="cce_10_0048__uicontrol1319579216"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0048__li18955181315189"><strong id="cce_10_0048__b124441488216">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0048__li11753142112539"><strong id="cce_10_0048__b171946101820">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0048__li1295571341818"><strong id="cce_10_0048__b9718913120">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
+<div class="section" id="cce_10_0048__section16385130102112"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0048__ol2012902601117"><li id="cce_10_0048__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0048__li2075471341"><span>Click the cluster name to access the cluster details page, choose <strong id="cce_10_0048__b12863171618585">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0048__b7869116135814">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0048__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0048__p1259466151612"><strong id="cce_10_0048__b64930521915">Basic Info</strong><ul id="cce_10_0048__ul6954101318184"><li id="cce_10_0048__li11514131617185"><strong id="cce_10_0048__b19311135410116">Workload Type</strong>: Select <strong id="cce_10_0048__b0311195410110">StatefulSet</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0048__li129541213101814"><strong id="cce_10_0048__b16758113322">Workload Name</strong>: Enter the name of the workload. Enter 1 to 52 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</li><li id="cce_10_0048__li179541813111814"><strong id="cce_10_0048__b122601351320">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0048__b0261451528">default</strong>. You can also click <span class="uicontrol" id="cce_10_0048__uicontrol1319579216"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0048__li18955181315189"><strong id="cce_10_0048__b124441488216">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0048__li11753142112539"><strong id="cce_10_0048__b171946101820">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0048__li1295571341818"><strong id="cce_10_0048__b9718913120">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
 </div>
 <div class="p" id="cce_10_0048__p206571518181616"><strong id="cce_10_0048__b163231218124">Container Settings</strong><ul id="cce_10_0048__ul42071022103320"><li id="cce_10_0048__li8770480458">Container Information<div class="p" id="cce_10_0048__p10493941854"><a name="cce_10_0048__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0048__uicontrol75255211621"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0048__ul481018470119"><li id="cce_10_0048__li18101047191117"><strong id="cce_10_0048__b2751850468">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0048__li4810204715113"><strong id="cce_10_0048__b179585713463">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0048__li4810134791115"><strong id="cce_10_0048__b528315118462">Health Check</strong>: See <a href="cce_10_0112.html">Setting Health Check for a Container</a>.</li><li id="cce_10_0048__li1810447181110"><strong id="cce_10_0048__b14754135814516">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0048__li4810124731117"><strong id="cce_10_0048__b125710561453">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0048__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0048__ul26865762616"><li id="cce_10_0048__li4956180135815">StatefulSets support dynamically provisioned EVS volumes.<p id="cce_10_0048__p270761115810"><a name="cce_10_0048__li4956180135815"></a><a name="li4956180135815"></a>Dynamic mounting is achieved by using the <strong id="cce_10_0048__b35631133121417"><a href="https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#volume-claim-templates" target="_blank" rel="noopener noreferrer">volumeClaimTemplates</a></strong> field and depends on the dynamic creation capability of StorageClass. A StatefulSet associates each pod with a unique PVC using the <strong id="cce_10_0048__b1490093413557">volumeClaimTemplates</strong> field, and the PVCs are bound to their corresponding PVs. Therefore, after the pod is rescheduled, the original data can still be mounted thanks to the PVC.</p>
 </li><li id="cce_10_0048__li126861777269">After a workload is created, the storage that is dynamically mounted cannot be updated.</li></ul>
@@ -26,7 +26,7 @@
 <p id="cce_10_0048__p13343123113612">You can also create a Service after creating a workload. For details about the Service, see <a href="cce_10_0249.html">Service Overview</a>.</p>
 <div class="p" id="cce_10_0048__p310913521612"><strong id="cce_10_0048__b1384716276315">Advanced Settings</strong><ul id="cce_10_0048__ul142811417"><li id="cce_10_0048__li0421513417"><strong id="cce_10_0048__b6900932134716">Upgrade</strong>: See <a href="cce_10_0397.html">Configuring the Workload Upgrade Policy</a>.</li><li id="cce_10_0048__li5292111713411"><strong id="cce_10_0048__b1827703613471">Scheduling</strong>: See <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li><li id="cce_10_0048__li206428507436"><strong id="cce_10_0048__b1840219331836">Instances Management Policies</strong><p id="cce_10_0048__p151323251334">For some distributed systems, the StatefulSet sequence is unnecessary and/or should not occur. These systems require only uniqueness and identifiers.</p>
 <ul id="cce_10_0048__ul758812493316"><li id="cce_10_0048__li258832417338"><strong id="cce_10_0048__b13534251116">OrderedReady</strong>: The StatefulSet will deploy, delete, or scale pods in order and one by one. (The StatefulSet continues only after the previous pod is ready or deleted.) This is the default policy.</li><li id="cce_10_0048__li1558862416338"><strong id="cce_10_0048__b112293521039">Parallel</strong>: The StatefulSet will create pods in parallel to match the desired scale without waiting, and will delete all pods at once.</li></ul>
-</li><li id="cce_10_0048__li13285132913414"><strong id="cce_10_0048__cce_10_0047_b11222531193614">Toleration</strong>: Using both taints and tolerations allows (not forcibly) the pod to be scheduled to a node with the matching taints, and controls the pod eviction policies after the node where the pod is located is tainted. For details, see <a href="cce_10_0352.html#cce_10_0352__section2047442210417">Tolerations</a>.</li><li id="cce_10_0048__li179714209414"><strong id="cce_10_0048__b4641659154115">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0048__li1917237124111"><strong id="cce_10_0048__b18993554214">DNS</strong>: See <a href="cce_10_0365.html">DNS Configuration</a>.</li></ul>
+</li><li id="cce_10_0048__li13285132913414"><strong id="cce_10_0048__b8773133531614">Toleration</strong>: Using both taints and tolerations allows (not forcibly) the pod to be scheduled to a node with the matching taints, and controls the pod eviction policies after the node where the pod is located is tainted. For details, see <a href="cce_10_0352.html#cce_10_0352__section2047442210417">Tolerations</a>.</li><li id="cce_10_0048__li179714209414"><strong id="cce_10_0048__b4641659154115">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0048__li1917237124111"><strong id="cce_10_0048__b18993554214">DNS</strong>: See <a href="cce_10_0365.html">DNS Configuration</a>.</li></ul>
 </div>
 </p></li><li id="cce_10_0048__li01417411620"><span>Click <strong id="cce_10_0048__b2185122912413">Create Workload</strong> in the lower right corner.</span></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_10_0054.html b/docs/cce/umn/cce_10_0054.html
new file mode 100644
index 00000000..4bc4d0d1
--- /dev/null
+++ b/docs/cce/umn/cce_10_0054.html
@@ -0,0 +1,322 @@
+<a name="cce_10_0054"></a><a name="cce_10_0054"></a>
+
+<h1 class="topictitle1">High-Risk Operations and Solutions</h1>
+<div id="body1525923325040"><p id="cce_10_0054__p1390915599514">During service deployment or running, you may trigger high-risk operations at different levels, causing service faults or interruption. To help you better estimate and avoid operation risks, this section introduces the consequences and solutions of high-risk operations from multiple dimensions, such as clusters, nodes, networking, load balancing, logs, and EVS disks.</p>
+<div class="section" id="cce_10_0054__section16411195115212"><h4 class="sectiontitle">Clusters and Nodes</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0054__table12476951152111" frame="border" border="1" rules="all"><caption><b>Table 1 </b>High-risk operations and solutions</caption><thead align="left"><tr id="cce_10_0054__row047515519215"><th align="left" class="cellrowborder" valign="top" width="14.42%" id="mcps1.3.2.2.2.5.1.1"><p id="cce_10_0054__p1312082018212">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="23.72%" id="mcps1.3.2.2.2.5.1.2"><p id="cce_10_0054__p1947565112215">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="31.990000000000002%" id="mcps1.3.2.2.2.5.1.3"><p id="cce_10_0054__p14751651172117">Impact</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="29.87%" id="mcps1.3.2.2.2.5.1.4"><p id="cce_10_0054__p74752518216">Solution</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0054__row237631735617"><td class="cellrowborder" rowspan="8" valign="top" width="14.42%" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p0120420202119">Master node</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.72%" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p3644747205614">Modifying the security group of a node in a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.990000000000002%" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p16644144720565">The master node may be unavailable.</p>
+<div class="note" id="cce_10_0054__note68069412049"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0054__p6806041142">Naming rule of a master node: <em id="cce_10_0054__i1134515453299">Cluster name</em>-<strong id="cce_10_0054__b153465452297">cce-control</strong>-<em id="cce_10_0054__i16346545102917">Random number</em></p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="29.87%" headers="mcps1.3.2.2.2.5.1.4 "><p id="cce_10_0054__p11644174719568">Restore the security group by referring to the security group of the new cluster and allow traffic from the security group to pass through.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row134621215205611"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p20644144725612">Letting the node expire or destroying the node</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p164464720565">The master node will be unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p5644134716563">This operation cannot be undone.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1997752265612"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p1644104716568">Reinstalling the OS</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p364410470562">Components on the master node will be deleted.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p10644174719568">This operation cannot be undone.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row497762212560"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p264464710561">Upgrading components on the master or etcd node</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p12644124713567">The cluster may be unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p16441047185616">Roll back to the original version.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row20977132275615"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p26441347205615">Deleting or formatting core directory data such as <strong id="cce_10_0054__b10134169124">/etc/kubernetes</strong> on the node</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p186447476563">The master node will be unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p7644104715620">This operation cannot be undone.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row997772255613"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p66447470567">Changing the node IP address</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p6644184715613">The master node will be unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p1064474725617">Change the IP address back to the original one.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row89777225562"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p9644194755620">Modifying parameters of core components (such as etcd, kube-apiserver, and docker)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p1564494718563">The master node may be unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p164404719561">Restore the parameter settings to the recommended values. For details, see <a href="cce_10_0213.html">Cluster Configuration Management</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1866012145616"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p56441647145612">Replacing the master or etcd certificate</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p106441477567">The cluster may become unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p1864418479569">This operation cannot be undone.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row273482911598"><td class="cellrowborder" rowspan="13" valign="top" width="14.42%" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p13120620202119">Worker node</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.72%" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p4512165465912">Modifying the security group of a node in a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="31.990000000000002%" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p1251255455913">The node may be unavailable.</p>
+<div class="note" id="cce_10_0054__note733110531049"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0054__p153411953747">Naming rule of a worker node: <em id="cce_10_0054__i143944160222">Cluster name</em>-<strong id="cce_10_0054__b1339915165227">cce-node</strong>-<em id="cce_10_0054__i18400171662214">Random number</em></p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="29.87%" headers="mcps1.3.2.2.2.5.1.4 "><p id="cce_10_0054__p051216549594">Restore the security group by referring to <a href="cce_10_0028.html">Creating a CCE Cluster</a> and allow traffic from the security group to pass through.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row187355295597"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p14512185455918">Deleting the node</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p18512105411593">The node will become unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p14512175415592">This operation cannot be undone.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row127351729155916"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p95135548591">Reinstalling the OS</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p185132543597">Node components are deleted, and the node becomes unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p351375485914">Reset the node. For details, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1673511291596"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p18513185425915">Upgrading the node kernel</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p1251315544595">The node may be unavailable or the network may be abnormal.</p>
+<div class="note" id="cce_10_0054__note1791614419108"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0054__p17926741111013">Node running depends on the system kernel version. Do not use the <strong id="cce_10_0054__b176643391577">yum update</strong> command to update or reinstall the operating system kernel of a node unless necessary. (Reinstalling the operating system kernel using the original image or other images is a risky operation.)</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p10947153121219">For details, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row473542920590"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p3513054165919">Changing the node IP address</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p2513054165912">The node will become unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p051335445919">Change the IP address back to the original one.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row444151018147"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p1651355455918">Modifying parameters of core components (such as kubelet and kube-proxy)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p125135541599">The node may become unavailable, and components may be insecure if security-related configurations are modified.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p851395416595">Restore the parameter settings to the recommended values. For details, see <a href="cce_10_0652.html">Configuring a Node Pool</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row9442141061414"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p5513115415911">Modifying OS configuration</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p45131954175919">The node may be unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p151315416594">Restore the configuration items or reset the node. For details, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row177351629205915"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p747565111218">Deleting or modifying the <strong id="cce_10_0054__b1048652111561">/opt/cloud/cce</strong> and <strong id="cce_10_0054__b4218182519562">/var/paas</strong> directories, and delete the data disk.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p6475751102112">The node will become unready.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p3844322182018">You can reset the node. For details, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row10503172914196"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p5503929181918">Modifying the node directory permission and the container directory permission</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p750482911912">The permissions will be abnormal.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p135041829121913">You are not advised to modify the permissions. Restore the permissions if they are modified.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row125701815131514"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p5475185114211">Formatting or partitioning system disks, Docker disks, and kubelet disks on nodes.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p9475195116211">The node may be unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p16104152520201">You can reset the node. For details, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1058553375911"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p11475105116218">Installing other software on nodes</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p14751511215">This may cause exceptions on Kubernetes components installed on the node, and make the node unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p1347515142118">Uninstall the software that has been installed and restore or reset the node. For details, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row083832111910"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p208397231917">Modifying NetworkManager configurations</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p38391428195">The node will become unavailable.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p1721942415199">Reset the node. For details, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row19671655616"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.1 "><p id="cce_10_0054__p76916185616">Delete system images such as <strong id="cce_10_0054__b0734104852319">cfe-pause</strong> from the node.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.2 "><p id="cce_10_0054__p176516135618">Containers cannot be created and system images cannot be pulled.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.2.5.1.3 "><p id="cce_10_0054__p106161613562">Copy the image from another normal node for restoration.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0054__section11510112810162"><h4 class="sectiontitle">Networking and Load Balancing</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0054__table1711672820177" frame="border" border="1" rules="all"><caption><b>Table 2 </b>High-risk operations and solutions</caption><thead align="left"><tr id="cce_10_0054__row411622818173"><th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.3.2.2.4.1.1"><p id="cce_10_0054__p91178285179">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.3.2.2.4.1.2"><p id="cce_10_0054__p1511712819176">Impact</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.3.2.2.4.1.3"><p id="cce_10_0054__p1211762819175">How to Avoid/Fix</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0054__row2393154721719"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p119301558101717">Changing the value of the kernel parameter <strong id="cce_10_0054__b17916382309">net.ipv4.ip_forward</strong> to <strong id="cce_10_0054__b11937134614312">0</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p993015814173">The network becomes inaccessible.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.3 "><p id="cce_10_0054__p293055891714">Change the value to <strong id="cce_10_0054__b1871010549319">1</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1339334741717"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p893017585177">Changing the value of the kernel parameter <strong id="cce_10_0054__b12137238327">net.ipv4.tcp_tw_recycle</strong> to <strong id="cce_10_0054__b1666612483219">1</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p49306584176">The NAT service becomes abnormal.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.3 "><p id="cce_10_0054__p39301158161715">Change the value to <strong id="cce_10_0054__b151576423317">0</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row137191481634"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p97201184319">Changing the value of the kernel parameter <strong id="cce_10_0054__b272044612270">net.ipv4.tcp_tw_reuse</strong> to <strong id="cce_10_0054__b16721204622714">1</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p147208819318">The network becomes abnormal.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.3 "><p id="cce_10_0054__p107201281634">Change the value to <strong id="cce_10_0054__b992493112813">0</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row2393114714178"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p1593018587176">Not configuring the node security group to allow UDP packets to pass through port 53 of the container CIDR block</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p1393045811172">The DNS in the cluster cannot work properly.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.3 "><p id="cce_10_0054__p16261123010200">Restore the security group by referring to <a href="cce_10_0028.html">Creating a CCE Cluster</a> and allow traffic from the security group to pass through.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row171171928191712"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p1093025814179">Creating a custom listener on the ELB console for the load balancer managed by CCE</p>
+</td>
+<td class="cellrowborder" rowspan="5" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p89302585172">The modified items are reset by CCE or the ingress is faulty.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.3 "><p id="cce_10_0054__p99309586178">Use the YAML file of the Service to automatically create a listener.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row511712817171"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p17930195891719">Binding a user-defined backend on the ELB console to the load balancer managed by CCE.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p20930185831714">Do not manually bind any backend.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row71171328181712"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p693014589175">Changing the ELB certificate on the ELB console for the load balancer managed by CCE.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p89301558101717">Use the YAML file of the ingress to automatically manage certificates.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1611732813174"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p17930195817171">Changing the listener name on the ELB console for the ELB listener managed by CCE.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p493025814172">Do not change the name of the ELB listener managed by CCE.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1678312104421"><td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p578341094210">Changing the description of load balancers, listeners, and forwarding policies managed by CCE on the ELB console.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p133271834318">Do not modify the description of load balancers, listeners, or forwarding policies managed by CCE.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row1140144414619"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.1 "><p id="cce_10_0054__p137301051270">Delete CRD resources of network-attachment-definitions of default-network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.2 "><p id="cce_10_0054__p15800181115716">The container network is disconnected, or the cluster fails to be deleted.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.3.2.2.4.1.3 "><p id="cce_10_0054__p4800111112714">If the resources are deleted by mistake, use the correct configurations to create the default-network resources.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0054__section15553183761910"><h4 class="sectiontitle">Logs</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0054__table108500207" frame="border" border="1" rules="all"><caption><b>Table 3 </b>High-risk operations and solutions</caption><thead align="left"><tr id="cce_10_0054__row198190162011"><th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.4.2.2.4.1.1"><p id="cce_10_0054__p4860112019">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.4.2.2.4.1.2"><p id="cce_10_0054__p10819012011">Impact</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.4.2.2.4.1.3"><p id="cce_10_0054__p168801201">Solution</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0054__row1084072010"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.2.2.4.1.1 "><p id="cce_10_0054__p17293162716200">Deleting the <strong id="cce_10_0054__b27825316481">/tmp/ccs-log-collector/pos</strong> directory on the host machine</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.2.2.4.1.2 "><p id="cce_10_0054__p172935277201">Logs are collected repeatedly.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.2.2.4.1.3 "><p id="cce_10_0054__p1129317272200">None</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row18190152016"><td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.2.2.4.1.1 "><p id="cce_10_0054__p929316272200">Deleting the <strong id="cce_10_0054__b26771137144811">/tmp/ccs-log-collector/buffer</strong> directory of the host machine</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.2.2.4.1.2 "><p id="cce_10_0054__p629316279201">Logs are lost.</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.2.2.4.1.3 "><p id="cce_10_0054__p1029312792017">None</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0054__section71464368204"><h4 class="sectiontitle">EVS Disks</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0054__table164801549182015" frame="border" border="1" rules="all"><caption><b>Table 4 </b>High-risk operations and solutions</caption><thead align="left"><tr id="cce_10_0054__row148054942019"><th align="left" class="cellrowborder" valign="top" width="24.75752424757524%" id="mcps1.3.5.2.2.5.1.1"><p id="cce_10_0054__p848044910202">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="22.577742225777424%" id="mcps1.3.5.2.2.5.1.2"><p id="cce_10_0054__p348004915200">Impact</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.06739326067393%" id="mcps1.3.5.2.2.5.1.3"><p id="cce_10_0054__p1448012492207">Solution</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.597340265973408%" id="mcps1.3.5.2.2.5.1.4"><p id="cce_10_0054__p8603144142116">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0054__row1480164916209"><td class="cellrowborder" valign="top" width="24.75752424757524%" headers="mcps1.3.5.2.2.5.1.1 "><p id="cce_10_0054__p982473811261">Manually unmounting an EVS disk on the console</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.577742225777424%" headers="mcps1.3.5.2.2.5.1.2 "><p id="cce_10_0054__p78241738142613">An I/O error is reported when the pod data is being written into the disk.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.06739326067393%" headers="mcps1.3.5.2.2.5.1.3 "><p id="cce_10_0054__p12824338192617">Delete the mount path from the node and schedule the pod again.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.597340265973408%" headers="mcps1.3.5.2.2.5.1.4 "><p id="cce_10_0054__p1482453817267">The file in the pod records the location where files are to be collected.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row10909552192013"><td class="cellrowborder" valign="top" width="24.75752424757524%" headers="mcps1.3.5.2.2.5.1.1 "><p id="cce_10_0054__p582418382265">Unmounting the disk mount path on the node</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.577742225777424%" headers="mcps1.3.5.2.2.5.1.2 "><p id="cce_10_0054__p12824938192617">Pod data is written into a local disk.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.06739326067393%" headers="mcps1.3.5.2.2.5.1.3 "><p id="cce_10_0054__p482423817262">Remount the corresponding path to the pod.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.597340265973408%" headers="mcps1.3.5.2.2.5.1.4 "><p id="cce_10_0054__p138241838182616">The buffer contains log cache files to be consumed.</p>
+</td>
+</tr>
+<tr id="cce_10_0054__row14806495204"><td class="cellrowborder" valign="top" width="24.75752424757524%" headers="mcps1.3.5.2.2.5.1.1 "><p id="cce_10_0054__p082420381265">Operating EVS disks on the node</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.577742225777424%" headers="mcps1.3.5.2.2.5.1.2 "><p id="cce_10_0054__p2824173816267">Pod data is written into a local disk.</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.06739326067393%" headers="mcps1.3.5.2.2.5.1.3 "><p id="cce_10_0054__p1824113872619">None</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.597340265973408%" headers="mcps1.3.5.2.2.5.1.4 "><p id="cce_10_0054__p382419385263">None</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0059.html b/docs/cce/umn/cce_10_0059.html
index 0b1f95a4..0152de2d 100644
--- a/docs/cce/umn/cce_10_0059.html
+++ b/docs/cce/umn/cce_10_0059.html
@@ -1,41 +1,70 @@
 <a name="cce_10_0059"></a><a name="cce_10_0059"></a>
 
 <h1 class="topictitle1">Network Policies</h1>
-<div id="body1526883582577"><p id="cce_10_0059__p8060118">NetworkPolicy is a Kubernetes object used to restrict pod access. In CCE, by setting network policies, you can define ingress rules specifying the addresses to access pods or egress rules specifying the addresses pods can access. This is equivalent to setting up a firewall at the application layer to further ensure network security.</p>
-<p id="cce_10_0059__p114706361099">Network policies depend on the networking add-on of the cluster to which the policies apply.</p>
+<div id="body1526883582577"><p id="cce_10_0059__p8060118">Network policies are designed by Kubernetes to restrict pod access. It is equivalent to a firewall at the application layer to enhance network security. The capabilities supported by network policies depend on the capabilities of the network add-ons of the cluster.</p>
 <p id="cce_10_0059__p1599485013158">By default, if a namespace does not have any policy, pods in the namespace accept traffic from any source and send traffic to any destination.</p>
 <p id="cce_10_0059__p1463183603211">Network policy rules are classified into the following types:</p>
 <ul id="cce_10_0059__ul13161939133212"><li id="cce_10_0059__li18351124913218"><strong id="cce_10_0059__b6606312280">namespaceSelector</strong>: selects particular namespaces for which all pods should be allowed as ingress sources or egress destinations.</li><li id="cce_10_0059__li5998840163217"><strong id="cce_10_0059__b36551310112810">podSelector</strong>: selects particular pods in the same namespace as the network policy which should be allowed as ingress sources or egress destinations.</li><li id="cce_10_0059__li08641649183212"><strong id="cce_10_0059__b116215248286">ipBlock</strong>: selects particular IP blocks to allow as ingress sources or egress destinations. (Only egress rules support IP blocks.)</li></ul>
-<div class="section" id="cce_10_0059__section332285584912"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0059__ul178821748131512"><li id="cce_10_0059__li1388224818153">Only clusters that use the tunnel network model support network policies.</li><li id="cce_10_0059__li1393141012329">Network isolation is not supported for IPv6 addresses.</li><li id="cce_10_0059__cce_10_0059_li570615420397">Network policies do not support egress rules except for clusters of v1.23 or later.<p id="cce_10_0059__p27292611408"><a name="cce_10_0059__cce_10_0059_li570615420397"></a><a name="cce_10_0059_li570615420397"></a>Egress rules are supported only in the following operating systems:</p>
-<ul id="cce_10_0059__cce_10_0059_ul2065234861112"><li id="cce_10_0059__cce_10_0059_li36461462116">EulerOS 2.9: kernel version 4.18.0-147.5.1.6.h541.eulerosv2r9.x86_64</li><li id="cce_10_0059__cce_10_0059_li136497469119">CentOS 7.7: kernel version 3.10.0-1062.18.1.el7.x86_64</li><li id="cce_10_0059__cce_10_0059_li1665216460111">EulerOS 2.5: kernel version 3.10.0-862.14.1.5.h591.eulerosv2r7.x86_64</li></ul>
-</li><li id="cce_10_0059__li513145015013">If a cluster is upgraded to v1.23 in in-place mode, you cannot use egress rules because the node OS is not upgraded. In this case, reset the node.</li></ul>
+<div class="section" id="cce_10_0059__section332285584912"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0059__ul288301415253"><li id="cce_10_0059__li1188317149256">Only clusters that use the tunnel network model support network policies. Network policies are classified into the following types:<ul id="cce_10_0059__ul7256209500"><li id="cce_10_0059__li1392310594496">Ingress: All versions support this type.</li><li id="cce_10_0059__li088311144257">Egress: Only clusters of v1.23 or later support egress rules.<p id="cce_10_0059__p10883161412512"><a name="cce_10_0059__li088311144257"></a><a name="li088311144257"></a>Egress rules are supported only in the following OSs:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0059__table488371419252" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0059__row1883181402515"><th align="left" class="cellrowborder" valign="top" width="32.96%" id="mcps1.3.5.2.1.1.2.2.1.3.1.1"><p id="cce_10_0059__p1288361417255">OS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="67.04%" id="mcps1.3.5.2.1.1.2.2.1.3.1.2"><p id="cce_10_0059__p1588341414251">Verified Kernel Version</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0059__row48842014192514"><td class="cellrowborder" valign="top" width="32.96%" headers="mcps1.3.5.2.1.1.2.2.1.3.1.1 "><p id="cce_10_0059__p158847144256">CentOS</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.04%" headers="mcps1.3.5.2.1.1.2.2.1.3.1.2 "><p id="cce_10_0059__p988418140258">3.10.0-1062.18.1.el7.x86_64</p>
+<p id="cce_10_0059__p2088431462511">3.10.0-1127.19.1.el7.x86_64</p>
+<p id="cce_10_0059__p18841114112513">3.10.0-1160.25.1.el7.x86_64</p>
+<p id="cce_10_0059__p1657418192615">3.10.0-1160.76.1.el7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_10_0059__row1588401482515"><td class="cellrowborder" valign="top" width="32.96%" headers="mcps1.3.5.2.1.1.2.2.1.3.1.1 "><p id="cce_10_0059__p5884111482512">EulerOS 2.5</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.04%" headers="mcps1.3.5.2.1.1.2.2.1.3.1.2 "><p id="cce_10_0059__p1788461432515">3.10.0-862.14.1.5.h591.eulerosv2r7.x86_64</p>
+<p id="cce_10_0059__p127181426162811">3.10.0-862.14.1.5.h687.eulerosv2r7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_10_0059__row13884414192519"><td class="cellrowborder" valign="top" width="32.96%" headers="mcps1.3.5.2.1.1.2.2.1.3.1.1 "><p id="cce_10_0059__p38840146258">EulerOS 2.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.04%" headers="mcps1.3.5.2.1.1.2.2.1.3.1.2 "><p id="cce_10_0059__p088431432512">4.18.0-147.5.1.6.h541.eulerosv2r9.x86_64</p>
+<p id="cce_10_0059__p569710910298">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+</tbody>
+</table>
 </div>
-<div class="section" id="cce_10_0059__section24857465594"><h4 class="sectiontitle">Using Ingress Rules</h4><ul id="cce_10_0059__en-us_topic_0249851123_ul4805332011"><li id="cce_10_0059__en-us_topic_0249851123_li1981853162018"><strong id="cce_10_0059__en-us_topic_0249851123_b1888635215324">Using podSelector to specify the access scope</strong><pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen5967726154511">apiVersion: networking.k8s.io/v1
+</li></ul>
+</li><li id="cce_10_0059__li168841214152511">Network isolation is not supported for IPv6 addresses.</li><li id="cce_10_0059__li20884111412254">If a cluster is upgraded to v1.23 in in-place mode, you cannot use egress rules because the node OS is not upgraded. In this case, reset the node.</li></ul>
+</div>
+<div class="section" id="cce_10_0059__section24857465594"><h4 class="sectiontitle">Using Ingress Rules</h4><ul id="cce_10_0059__en-us_topic_0249851123_ul4805332011"><li id="cce_10_0059__en-us_topic_0249851123_li1981853162018"><strong id="cce_10_0059__b25455219302">Using podSelector to specify the access scope</strong><pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen5967726154511">apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
 metadata:
   name: test-network-policy
   namespace: default
 spec:
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b651195916261">role=db</strong> label.
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__b724213720306">role=db</strong> label.
     matchLabels:
       role: db
   ingress:                      #This is an ingress rule.
   - from:
-    - podSelector:              #Only traffic from the pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b5774142342718">role=frontend</strong> label is allowed.
+    - podSelector:              #Only traffic from the pods with the "role=frontend" label is allowed.
         matchLabels:
           role: frontend
     ports:                      #Only TCP can be used to access port 6379.
     - protocol: TCP
       port: 6379</pre>
-<p id="cce_10_0059__en-us_topic_0249851123_p88888434711">Diagram:</p>
-<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig139410543444"><span class="figcap"><b>Figure 1 </b>podSelector</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image185021946194414" src="en-us_image_0259557735.png"></span></div>
+<p id="cce_10_0059__en-us_topic_0249851123_p88888434711">See the following figure.</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig139410543444"><span class="figcap"><b>Figure 1 </b>podSelector</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image185021946194414" src="en-us_image_0000001518062636.png"></span></div>
 </li></ul>
-<ul id="cce_10_0059__en-us_topic_0249851123_ul68309714213"><li id="cce_10_0059__en-us_topic_0249851123_li1283027192120"><strong id="cce_10_0059__en-us_topic_0249851123_b2544223134019">Using namespaceSelector to specify the access scope</strong><pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen18399134874818">apiVersion: networking.k8s.io/v1
+<ul id="cce_10_0059__en-us_topic_0249851123_ul68309714213"><li id="cce_10_0059__en-us_topic_0249851123_li1283027192120"><strong id="cce_10_0059__b11209155212301">Using namespaceSelector to specify the access scope</strong><pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen18399134874818">apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
 metadata:
   name: test-network-policy
 spec:
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b667880142713">role=db</strong> label.
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__b15599415173013">role=db</strong> label.
     matchLabels:
       role: db
   ingress:                      #This is an ingress rule.
@@ -46,8 +75,8 @@ spec:
     ports:                      #Only TCP can be used to access port 6379.
     - protocol: TCP
       port: 6379</pre>
-<p id="cce_10_0059__en-us_topic_0249851123_p3874718155019"><a href="#cce_10_0059__en-us_topic_0249851123_fig127351855617">Figure 2</a> shows how namespaceSelector selects ingress sources.</p>
-<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig127351855617"><a name="cce_10_0059__en-us_topic_0249851123_fig127351855617"></a><a name="en-us_topic_0249851123_fig127351855617"></a><span class="figcap"><b>Figure 2 </b>namespaceSelector</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image141441335560" src="en-us_image_0259558489.png"></span></div>
+<p id="cce_10_0059__en-us_topic_0249851123_p3874718155019">See the following figure.</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig127351855617"><span class="figcap"><b>Figure 2 </b>namespaceSelector</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image141441335560" src="en-us_image_0000001518222592.png"></span></div>
 </li></ul>
 </div>
 <div class="section" id="cce_10_0059__section20486817707"><h4 class="sectiontitle">Using Egress Rules</h4><p id="cce_10_0059__en-us_topic_0249851123_p1311606618">Egress supports not only podSelector and namespaceSelector, but also ipBlock.</p>
@@ -61,7 +90,7 @@ metadata:
 spec:
   policyTypes:                  # Must be specified for an egress rule.
     - Egress
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b26884016271">role=db</strong> label.
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__b45751598319">role=db</strong> label.
     matchLabels:
       role: db
   egress:                       # Egress rule
@@ -69,9 +98,9 @@ spec:
     - ipBlock:
         cidr: 172.16.0.16/16    # Allow access to this CIDR block.
         except:
-        - 172.16.0.40/32        # This CIDR block cannot be accessed. This value must fall within the range specified by <strong id="cce_10_0059__en-us_topic_0249851123_b9998156103415">cidr</strong>.</pre>
-<p id="cce_10_0059__en-us_topic_0249851123_p3245846202818">Diagram:</p>
-<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig15678132552812"><span class="figcap"><b>Figure 3 </b>ipBlock</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image6270134419182" src="en-us_image_0000001340138373.png"></span></div>
+        - 172.16.0.40/32        # This CIDR block cannot be accessed. This value must fall within the range specified by <strong id="cce_10_0059__b8799164313112">cidr</strong>.</pre>
+<p id="cce_10_0059__en-us_topic_0249851123_p3245846202818">The following figure shows how to use ingress and egress together.</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig15678132552812"><span class="figcap"><b>Figure 3 </b>ipBlock</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image6270134419182" src="en-us_image_0000001517743496.png"></span></div>
 <p id="cce_10_0059__en-us_topic_0249851123_p1260313810298">You can define ingress and egress in the same rule.</p>
 <pre class="screen" id="cce_10_0059__en-us_topic_0249851123_screen235835922918">apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
@@ -82,7 +111,7 @@ spec:
   policyTypes:
   - Ingress
   - Egress
-  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b136942042718">role=db</strong> label.
+  podSelector:                  # The rule takes effect for pods with the <strong id="cce_10_0059__b62205312322">role=db</strong> label.
     matchLabels:
       role: db
   ingress:                      # Ingress rule
@@ -95,64 +124,64 @@ spec:
       port: 6379
   egress:                       # Egress rule
   - to:
-    - podSelector:              # Only pods with the <strong id="cce_10_0059__en-us_topic_0249851123_b153994603718">role=web</strong> label can be accessed.
+    - podSelector:              # Only pods with the <strong id="cce_10_0059__b5778114253213">role=web</strong> label can be accessed.
         matchLabels:
           role: web</pre>
-<p id="cce_10_0059__en-us_topic_0249851123_p17239137193116">Diagram:</p>
-<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig14112102353618"><span class="figcap"><b>Figure 4 </b>Using both ingress and egress</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image103563915919" src="en-us_image_0000001287883210.png"></span></div>
+<p id="cce_10_0059__en-us_topic_0249851123_p17239137193116">The following figure shows how to use ingress and egress together.</p>
+<div class="fignone" id="cce_10_0059__en-us_topic_0249851123_fig14112102353618"><span class="figcap"><b>Figure 4 </b>Using both ingress and egress</span><br><span><img id="cce_10_0059__en-us_topic_0249851123_image103563915919" src="en-us_image_0000001568902533.png"></span></div>
 </div>
-<div class="section" id="cce_10_0059__section349662212313"><h4 class="sectiontitle">Creating a Network Policy on the Console</h4><ol id="cce_10_0059__ol10753729162012"><li id="cce_10_0059__li67621546123813"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0059__li275310297205"><span>Choose <strong id="cce_10_0059__b1684093473514">Networking</strong> in the navigation pane, click the <span class="uicontrol" id="cce_10_0059__uicontrol8840143418354"><b>Network Policies</b></span> tab, and click <strong id="cce_10_0059__b1684043412358">Create Network Policy</strong> in the upper right corner.</span><p><ul id="cce_10_0059__ul1275420367216"><li id="cce_10_0059__li207540368218"><strong id="cce_10_0059__b5858127617589">Policy Name</strong>: Specify a network policy name.</li><li id="cce_10_0059__li86551950162110"><strong id="cce_10_0059__b2485142065319">Namespace</strong>: Select a namespace in which the network policy is applied.</li><li id="cce_10_0059__li1811145118419"><strong id="cce_10_0059__b1082493183618">Selector</strong>: Enter a label, select the pod to be associated, and click <strong id="cce_10_0059__b39962039143613">Add</strong>. You can also click <span class="uicontrol" id="cce_10_0059__uicontrol127315410439"><b>Reference Workload Label</b></span> to reference the label of an existing workload.</li><li id="cce_10_0059__li20288331248"><strong id="cce_10_0059__b288315258371">Inbound Rule</strong>: Click <span><img id="cce_10_0059__image297081312440" src="en-us_image_0000001251716033.png"></span> to add an inbound rule. For details about parameter settings, see <a href="#cce_10_0059__table166419994515">Table 1</a>.<p id="cce_10_0059__p13464141094517"></p>
-<div class="p" id="cce_10_0059__p1251071818275"><span><img id="cce_10_0059__image3789195442716" src="en-us_image_0000001533585325.png"></span>
-<div class="tablenoborder"><a name="cce_10_0059__table166419994515"></a><a name="table166419994515"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0059__table166419994515" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Adding an inbound rule</caption><thead align="left"><tr id="cce_10_0059__row186401397458"><th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1"><p id="cce_10_0059__p163919913452">Parameter</p>
+<div class="section" id="cce_10_0059__section349662212313"><h4 class="sectiontitle">Creating a Network Policy on the Console</h4><ol id="cce_10_0059__ol10753729162012"><li id="cce_10_0059__li67621546123813"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0059__li275310297205"><span>Choose <strong id="cce_10_0059__b1684093473514">Networking</strong> in the navigation pane, click the <span class="uicontrol" id="cce_10_0059__uicontrol8840143418354"><b>Network Policies</b></span> tab, and click <strong id="cce_10_0059__b1684043412358">Create Network Policy</strong> in the upper right corner.</span><p><ul id="cce_10_0059__ul1275420367216"><li id="cce_10_0059__li207540368218"><strong id="cce_10_0059__b5858127617589">Policy Name</strong>: Specify a network policy name.</li><li id="cce_10_0059__li86551950162110"><strong id="cce_10_0059__b2485142065319">Namespace</strong>: Select a namespace in which the network policy is applied.</li><li id="cce_10_0059__li1811145118419"><strong id="cce_10_0059__b1082493183618">Selector</strong>: Enter a label, select the pod to be associated, and click <strong id="cce_10_0059__b39962039143613">Add</strong>. You can also click <span class="uicontrol" id="cce_10_0059__uicontrol127315410439"><b>Reference Workload Label</b></span> to reference the label of an existing workload.</li><li id="cce_10_0059__li20288331248"><strong id="cce_10_0059__b288315258371">Inbound Rule</strong>: Click <span><img id="cce_10_0059__image297081312440" src="en-us_image_0000001568822793.png"></span> to add an inbound rule. For details about parameter settings, see <a href="#cce_10_0059__table166419994515">Table 1</a>.<p id="cce_10_0059__p13464141094517"></p>
+<div class="p" id="cce_10_0059__p1251071818275"><span><img id="cce_10_0059__image3789195442716" src="en-us_image_0000001569022905.png"></span>
+<div class="tablenoborder"><a name="cce_10_0059__table166419994515"></a><a name="table166419994515"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0059__table166419994515" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Adding an inbound rule</caption><thead align="left"><tr id="cce_10_0059__row186401397458"><th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.1"><p id="cce_10_0059__p163919913452">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="85%" id="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2"><p id="cce_10_0059__p9639394455">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="85%" id="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.2"><p id="cce_10_0059__p9639394455">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0059__row13640129124519"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p5640395455">Protocol &amp; Port</p>
+<tbody><tr id="cce_10_0059__row13640129124519"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p5640395455">Protocol &amp; Port</p>
 </td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p1864016912457">Select the protocol type and port. Currently, TCP and UDP are supported.</p>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p1864016912457">Select the protocol type and port. Currently, TCP and UDP are supported.</p>
 </td>
 </tr>
-<tr id="cce_10_0059__row1164011917451"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p66400984510">Source Namespace</p>
+<tr id="cce_10_0059__row1164011917451"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p66400984510">Source Namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p164014916457">Select a namespace whose objects can be accessed. If this parameter is not specified, the source object belongs to the same namespace as the current policy.</p>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p164014916457">Select a namespace whose objects can be accessed. If this parameter is not specified, the object belongs to the same namespace as the current policy.</p>
 </td>
 </tr>
-<tr id="cce_10_0059__row1564115912452"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p8640792450">Source Pod Label</p>
+<tr id="cce_10_0059__row1564115912452"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.1 "><p id="cce_10_0059__p8640792450">Source Pod Label</p>
 </td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p590912241576">Allow access to the pods with this label, if not specified, all pods in the namespace can be accessed.</p>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.2.2.1.4.5.2.2.3.1.2 "><p id="cce_10_0059__p590912241576">Allow accessing the pods with this label. If this parameter is not specified, all pods in the namespace can be accessed.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
 </div>
-</li><li id="cce_10_0059__li208969565264"><strong id="cce_10_0059__b13933104315451">Outbound Rule</strong>: Click <span><img id="cce_10_0059__image190375162714" src="en-us_image_0000001533586881.png"></span> to add an outbound rule. For details about parameter settings, see <a href="#cce_10_0059__table166419994515">Table 1</a>.<div class="p" id="cce_10_0059__p475815292283"><span><img id="cce_10_0059__image10587182118298" src="en-us_image_0000001482546084.png"></span>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0059__table940510264284" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Adding an outbound rule</caption><thead align="left"><tr id="cce_10_0059__row15405182632814"><th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1"><p id="cce_10_0059__p34051926152811">Parameter</p>
+</li><li id="cce_10_0059__li208969565264"><strong id="cce_10_0059__b13933104315451">Outbound Rule</strong>: Click <span><img id="cce_10_0059__image190375162714" src="en-us_image_0000001517903064.png"></span> to add an outbound rule. For details about parameter settings, see <a href="#cce_10_0059__table166419994515">Table 1</a>.<div class="p" id="cce_10_0059__p475815292283"><span><img id="cce_10_0059__image10587182118298" src="en-us_image_0000001517903068.png"></span>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0059__table940510264284" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Adding an outbound rule</caption><thead align="left"><tr id="cce_10_0059__row15405182632814"><th align="left" class="cellrowborder" valign="top" width="15%" id="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.1"><p id="cce_10_0059__p34051926152811">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="85%" id="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2"><p id="cce_10_0059__p5405172618286">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="85%" id="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.2"><p id="cce_10_0059__p5405172618286">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0059__row340518261282"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p124050268283">Protocol &amp; Port</p>
+<tbody><tr id="cce_10_0059__row340518261282"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p124050268283">Protocol &amp; Port</p>
 </td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p7405112611287">Select the protocol type and port. Currently, TCP and UDP are supported. If this parameter is not specified, the protocol type is not limited.</p>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p7405112611287">Select the protocol type and port. Currently, TCP and UDP are supported. If this parameter is not specified, the protocol type is not limited.</p>
 </td>
 </tr>
-<tr id="cce_10_0059__row246674113303"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p87424719349">Destination CIDR Block</p>
+<tr id="cce_10_0059__row246674113303"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p87424719349">Destination CIDR Block</p>
 </td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p16363814123411">Allows requests to be routed to a specified CIDR block (and not to the exception CIDR blocks). Separate the destination and exception CIDR blocks by vertical bars (|), and separate multiple exception CIDR blocks by commas (,). For example, 172.17.0.0/16|172.17.1.0/24,172.17.2.0/24 indicates that 172.17.0.0/16 is accessible, but not for 172.17.1.0/24 or 172.17.2.0/24.</p>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p16363814123411">Allows requests to be routed to a specified CIDR block (and not to the exception CIDR blocks). Separate the destination and exception CIDR blocks by vertical bars (|), and separate multiple exception CIDR blocks by commas (,). For example, 172.17.0.0/16|172.17.1.0/24,172.17.2.0/24 indicates that 172.17.0.0/16 is accessible, but not for 172.17.1.0/24 or 172.17.2.0/24.</p>
 </td>
 </tr>
-<tr id="cce_10_0059__row16405162652812"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p14405526192819">Destination Namespace</p>
+<tr id="cce_10_0059__row16405162652812"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p14405526192819">Destination Namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p14053266284">Select a namespace whose objects can be accessed. If this parameter is not specified, the source object belongs to the same namespace as the current policy.</p>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p14053266284">Select a namespace whose objects can be accessed. If this parameter is not specified, the object belongs to the same namespace as the current policy.</p>
 </td>
 </tr>
-<tr id="cce_10_0059__row2405102622812"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p84052266289">Destination Pod Label</p>
+<tr id="cce_10_0059__row2405102622812"><td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.1 "><p id="cce_10_0059__p84052266289">Destination Pod Label</p>
 </td>
-<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.9.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p114051126172816">Allow access to the pods with this label, if not specified, all pods in the namespace can be accessed.</p>
+<td class="cellrowborder" valign="top" width="85%" headers="mcps1.3.8.2.2.2.1.5.4.2.2.3.1.2 "><p id="cce_10_0059__p114051126172816">Allow accessing the pods with this label. If this parameter is not specified, all pods in the namespace can be accessed.</p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0063.html b/docs/cce/umn/cce_10_0063.html
index 606aaad6..cc6e8c60 100644
--- a/docs/cce/umn/cce_10_0063.html
+++ b/docs/cce/umn/cce_10_0063.html
@@ -4,7 +4,7 @@
 <div id="body8662426"><div class="section" id="cce_10_0063__section127666327248"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0063__p192873216229">After a node scaling policy is created, you can delete, edit, disable, enable, or clone the policy.</p>
 </div>
 <div class="section" id="cce_10_0063__section102878407207"><h4 class="sectiontitle">Viewing a Node Scaling Policy</h4><p id="cce_10_0063__p713741135215">You can view the associated node pool, rules, and scaling history of a node scaling policy and rectify faults according to the error information displayed.</p>
-<ol id="cce_10_0063__ol17409123885219"><li id="cce_10_0063__li148293318248"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0063__li3967519744"><span>Choose <strong id="cce_10_0063__b75474128512">Node Scaling</strong> in the navigation pane and click <span><img id="cce_10_0063__image1254712122518" src="en-us_image_0000001244261161.png"></span> in front of the policy to be viewed.</span></li><li id="cce_10_0063__li641003813527"><span>In the expanded area, the <span class="uicontrol" id="cce_10_0063__uicontrol864413924614"><b>Associated Node Pools</b></span>, <span class="uicontrol" id="cce_10_0063__uicontrol1164419910465"><b>Rules</b></span>, and <span class="uicontrol" id="cce_10_0063__uicontrol1964516974613"><b>Scaling History</b></span> tab pages are displayed. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_10_0063__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0063__p268214718213">You can also disable or enable auto scaling on the <strong id="cce_10_0063__b57750163232">Node Pools</strong> page.</p>
+<ol id="cce_10_0063__ol17409123885219"><li id="cce_10_0063__li148293318248"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0063__li3967519744"><span>Choose <strong id="cce_10_0063__b75474128512">Node Scaling</strong> in the navigation pane and click <span><img id="cce_10_0063__image1254712122518" src="en-us_image_0000001517743464.png"></span> in front of the policy to be viewed.</span></li><li id="cce_10_0063__li641003813527"><span>In the expanded area, the <span class="uicontrol" id="cce_10_0063__uicontrol864413924614"><b>Associated Node Pools</b></span>, <span class="uicontrol" id="cce_10_0063__uicontrol1164419910465"><b>Rules</b></span>, and <span class="uicontrol" id="cce_10_0063__uicontrol1964516974613"><b>Scaling History</b></span> tab pages are displayed. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_10_0063__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0063__p268214718213">You can also disable or enable auto scaling on the <strong id="cce_10_0063__b57750163232">Node Pools</strong> page.</p>
 <ol type="a" id="cce_10_0063__ol15169162582120"><li id="cce_10_0063__li13169425162117">Log in to the CCE console and access the cluster console.</li><li id="cce_10_0063__li716942518219">In the navigation pane, choose <strong id="cce_10_0063__b189612560310">Nodes</strong> and switch to the <strong id="cce_10_0063__b19818721244">Node Pools</strong> tab page.</li><li id="cce_10_0063__li2016919259214">Click <span class="uicontrol" id="cce_10_0063__uicontrol1689716319372"><b>Edit</b></span> of the node pool to be operated. In the <span class="uicontrol" id="cce_10_0063__uicontrol3989194019311"><b>Edit Node Pool</b></span> dialog box that is displayed, set the limits of the number of nodes.</li></ol>
 </div></div>
 </p></li></ol>
diff --git a/docs/cce/umn/cce_10_0066.html b/docs/cce/umn/cce_10_0066.html
index 05b49acb..6c31dbac 100644
--- a/docs/cce/umn/cce_10_0066.html
+++ b/docs/cce/umn/cce_10_0066.html
@@ -14,6 +14,7 @@
 </div></div>
 </li></ul>
 </div>
+</p></li><li id="cce_10_0066__li921715919291"><span>Whether to deploy the add-on instance across multiple AZs.</span><p><ul id="cce_10_0066__ul4214181752714"><li id="cce_10_0066__en-us_topic_0000001199341168_li5214161718270"><strong id="cce_10_0066__b12879443056025">Preferred</strong>: Deployment pods of the add-on are preferentially scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, the pods are scheduled to a single AZ.</li><li id="cce_10_0066__en-us_topic_0000001199341168_li4214917142716"><strong id="cce_10_0066__b3515872306111">Required</strong>: Deployment pods of the add-on are forcibly scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, not all pods can run.</li></ul>
 </p></li><li id="cce_10_0066__li1188334214330"><span>Set related parameters.</span><p><div class="p" id="cce_10_0066__p11883194243320">In everest 1.2.26 or later, the performance of attaching a large number of EVS volumes is optimized. The following three parameters are provided:<ul id="cce_10_0066__ul68831142163317"><li id="cce_10_0066__li17883174214333"><strong id="cce_10_0066__b143976403492">csi_attacher_worker_threads</strong>: number of workers that can concurrently mount EVS volumes. The default value is <strong id="cce_10_0066__b1666753135014">60</strong>.</li><li id="cce_10_0066__li9883114223314"><strong id="cce_10_0066__b1573145185014">csi_attacher_detach_worker_threads</strong>: number of workers that can concurrently unmount EVS volumes. The default value is <strong id="cce_10_0066__b11574452507">60</strong>.</li><li id="cce_10_0066__li14883742193315"><strong id="cce_10_0066__b42378570502">volume_attaching_flow_ctrl</strong>: maximum number of EVS volumes that can be mounted by the everest add-on within one minute. The default value is <strong id="cce_10_0066__b111476236513">0</strong>, indicating that the EVS volume mounting performance is determined by the underlying storage resources.</li></ul>
 </div>
 <p id="cce_10_0066__p1088304217337">The preceding three parameters are associated with each other and are constrained by the underlying storage resources in the region where the cluster is located. If you want to mount a large number of volumes (more than 500 EVS volumes per minute), you can contact the customer service personnel and configure the parameters under their guidance to prevent the everest add-on from running abnormally due to improper parameter settings.</p>
diff --git a/docs/cce/umn/cce_10_0083.html b/docs/cce/umn/cce_10_0083.html
index ab9defe2..68cd8616 100644
--- a/docs/cce/umn/cce_10_0083.html
+++ b/docs/cce/umn/cce_10_0083.html
@@ -4,7 +4,7 @@
 <div id="body1508729244098"><div class="section" id="cce_10_0083__section11873141710246"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0083__p799618243249">After an HPA policy is created, you can update, clone, edit, and delete the policy, as well as edit the YAML file.</p>
 </div>
 <div class="section" id="cce_10_0083__section14993443181414"><h4 class="sectiontitle">Checking an HPA Policy</h4><p id="cce_10_0083__p713741135215">You can view the rules, status, and events of an HPA policy and handle exceptions based on the error information displayed.</p>
-<ol id="cce_10_0083__ol17409123885219"><li id="cce_10_0083__li754610559213"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0083__li4409153817525"><span>In the navigation pane, choose <strong id="cce_10_0083__b9595121512611">Workload Scaling</strong>. On the <span class="uicontrol" id="cce_10_0083__uicontrol124101738135219"><b>HPA Policies</b></span> tab page, click <span><img id="cce_10_0083__image1569143785619" src="en-us_image_0000001244261103.png"></span> next to the target HPA policy.</span></li><li id="cce_10_0083__li641003813527"><span>In the expanded area, you can view the <span class="uicontrol" id="cce_10_0083__uicontrol783043616"><b>Rules</b></span>, <span class="uicontrol" id="cce_10_0083__uicontrol79110193616"><b>Status</b></span>, and <span class="uicontrol" id="cce_10_0083__uicontrol897073610"><b>Events</b></span> tab pages. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_10_0083__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0083__p1793618441931">You can also view the created HPA policy on the workload details page.</p>
+<ol id="cce_10_0083__ol17409123885219"><li id="cce_10_0083__li754610559213"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0083__li4409153817525"><span>In the navigation pane, choose <strong id="cce_10_0083__b9595121512611">Workload Scaling</strong>. On the <span class="uicontrol" id="cce_10_0083__uicontrol124101738135219"><b>HPA Policies</b></span> tab page, click <span><img id="cce_10_0083__image1569143785619" src="en-us_image_0000001568902521.png"></span> next to the target HPA policy.</span></li><li id="cce_10_0083__li641003813527"><span>In the expanded area, you can view the <span class="uicontrol" id="cce_10_0083__uicontrol783043616"><b>Rules</b></span>, <span class="uicontrol" id="cce_10_0083__uicontrol79110193616"><b>Status</b></span>, and <span class="uicontrol" id="cce_10_0083__uicontrol897073610"><b>Events</b></span> tab pages. If the policy is abnormal, locate and rectify the fault based on the error information.</span><p><div class="note" id="cce_10_0083__note13404926203311"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0083__p1793618441931">You can also view the created HPA policy on the workload details page.</p>
 <ol type="a" id="cce_10_0083__ol1691347738"><li id="cce_10_0083__li5468556932">Log in to the CCE console and access the cluster console.</li><li id="cce_10_0083__li87313521749">In the navigation pane, choose <strong id="cce_10_0083__b01748420311">Workloads</strong>. Click the workload name to view its details.</li><li id="cce_10_0083__li1769110474318">On the workload details page, swich to the <strong id="cce_10_0083__b3716156354">Auto Scaling</strong> tab page to view the HPA policies. You can also view the scaling policies you configured in <strong id="cce_10_0083__b81591132105417">Workload Scaling</strong>.</li></ol>
 </div></div>
 
diff --git a/docs/cce/umn/cce_10_0094.html b/docs/cce/umn/cce_10_0094.html
index eb548c61..4b033a72 100644
--- a/docs/cce/umn/cce_10_0094.html
+++ b/docs/cce/umn/cce_10_0094.html
@@ -3,14 +3,14 @@
 <h1 class="topictitle1">Ingress Overview</h1>
 <div id="body0000001159453456"><div class="section" id="cce_10_0094__section17868123416122"><h4 class="sectiontitle">Why We Need Ingresses</h4><p id="cce_10_0094__p19813582419">A Service is generally used to forward access requests based on TCP and UDP and provide layer-4 load balancing for clusters. However, in actual scenarios, if there is a large number of HTTP/HTTPS access requests on the application layer, the Service cannot meet the forwarding requirements. Therefore, the Kubernetes cluster provides an HTTP-based access mode, that is, ingress.</p>
 <p id="cce_10_0094__p168757241679">An ingress is an independent resource in the Kubernetes cluster and defines rules for forwarding external access traffic. As shown in <a href="#cce_10_0094__fig18155819416">Figure 1</a>, you can customize forwarding rules based on domain names and URLs to implement fine-grained distribution of access traffic.</p>
-<div class="fignone" id="cce_10_0094__fig18155819416"><a name="cce_10_0094__fig18155819416"></a><a name="fig18155819416"></a><span class="figcap"><b>Figure 1 </b>Ingress diagram</span><br><span><img class="eddx" id="cce_10_0094__image98185817414" src="en-us_image_0000001243981115.png"></span></div>
+<div class="fignone" id="cce_10_0094__fig18155819416"><a name="cce_10_0094__fig18155819416"></a><a name="fig18155819416"></a><span class="figcap"><b>Figure 1 </b>Ingress diagram</span><br><span><img class="eddx" id="cce_10_0094__image98185817414" src="en-us_image_0000001517903200.png"></span></div>
 <p id="cce_10_0094__p128258846">The following describes the ingress-related definitions:</p>
 <ul id="cce_10_0094__ul2875811411"><li id="cce_10_0094__li78145815413">Ingress object: a set of access rules that forward requests to specified Services based on domain names or URLs. It can be added, deleted, modified, and queried by calling APIs.</li><li id="cce_10_0094__li148115817417">Ingress Controller: an executor for request forwarding. It monitors the changes of resource objects such as ingresses, Services, endpoints, secrets (mainly TLS certificates and keys), nodes, and ConfigMaps in real time, parses rules defined by ingresses, and forwards requests to the corresponding backend Services.</li></ul>
 </div>
 <div class="section" id="cce_10_0094__section162271821192312"><h4 class="sectiontitle">Working Principle of ELB Ingress Controller</h4><p id="cce_10_0094__p172542048121220">ELB Ingress Controller developed by CCE implements layer-7 network access for the internet and intranet (in the same VPC) based on ELB and distributes access traffic to the corresponding Services using different URLs.</p>
 <p id="cce_10_0094__p4254124831218">ELB Ingress Controller is deployed on the master node and bound to the load balancer in the VPC where the cluster resides. Different domain names, ports, and forwarding policies can be configured for the same load balancer (with the same IP address). <a href="#cce_10_0094__fig122542486129">Figure 2</a> shows the working principle of ELB Ingress Controller.</p>
 <ol id="cce_10_0094__ol525410483123"><li id="cce_10_0094__li8254184813127">A user creates an ingress object and configures a traffic access rule in the ingress, including the load balancer, URL, SSL, and backend service port.</li><li id="cce_10_0094__li1225474817126">When Ingress Controller detects that the ingress object changes, it reconfigures the listener and backend server route on the ELB side according to the traffic access rule.</li><li id="cce_10_0094__li115615167193">When a user accesses a workload, the traffic is forwarded to the corresponding backend service port based on the forwarding policy configured on ELB, and then forwarded to each associated workload through the Service.</li></ol>
-<div class="fignone" id="cce_10_0094__fig122542486129"><a name="cce_10_0094__fig122542486129"></a><a name="fig122542486129"></a><span class="figcap"><b>Figure 2 </b>Working principle of ELB Ingress Controller</span><br><span><img class="eddx" id="cce_10_0094__image725424815120" src="en-us_image_0000001199501200.png"></span></div>
+<div class="fignone" id="cce_10_0094__fig122542486129"><a name="cce_10_0094__fig122542486129"></a><a name="fig122542486129"></a><span class="figcap"><b>Figure 2 </b>Working principle of ELB Ingress Controller</span><br><span><img class="eddx" id="cce_10_0094__image725424815120" src="en-us_image_0000001568822925.png"></span></div>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0107.html b/docs/cce/umn/cce_10_0107.html
index c4a99c05..b99f471b 100644
--- a/docs/cce/umn/cce_10_0107.html
+++ b/docs/cce/umn/cce_10_0107.html
@@ -12,15 +12,18 @@
 </li></ul>
 </div>
 <p id="cce_10_0107__p2842139103716">Download kubectl and the configuration file. Copy the file to your client, and configure kubectl. After the configuration is complete, you can access your Kubernetes clusters. Procedure:</p>
-<ol id="cce_10_0107__ol6469105613170"><li id="cce_10_0107__li194691356201712"><a name="cce_10_0107__li194691356201712"></a><a name="li194691356201712"></a><span>Download kubectl.</span><p><div class="p" id="cce_10_0107__p1828181171820">On the <a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/README.md" target="_blank" rel="noopener noreferrer">Kubernetes release</a> page, click the corresponding link based on the cluster version, click <strong id="cce_10_0107__b1450212240525">Client Binaries</strong>, and download the corresponding platform software package. Alternatively, you can install kubectl with curl following the guide in <a href="https://kubernetes.io/docs/tasks/tools/#kubectl" target="_blank" rel="noopener noreferrer">Install Tools</a>.<div class="fignone" id="cce_10_0107__fig978018401170"><span class="figcap"><b>Figure 1 </b>Downloading kubectl</span><br><span><img id="cce_10_0107__image17910133212172" src="en-us_image_0000001336475537.png"></span></div>
-</div>
+<ol id="cce_10_0107__ol6469105613170"><li id="cce_10_0107__li194691356201712"><span>Download kubectl.</span><p><p id="cce_10_0107__p53069487256">Prepare a computer that can access the public network and install kubectl in CLI mode. You can run the <strong id="cce_10_0107__b188225352515">kubectl version</strong> command to check whether kubectl has been installed. If kubectl has been installed, skip this step.</p>
+<p id="cce_10_0107__p125851851153510">This section uses the Linux environment as an example to describe how to install and configure kubectl. For details, see <a href="https://kubernetes.io/docs/tasks/tools/#kubectl" target="_blank" rel="noopener noreferrer">Installing kubectl</a>.</p>
+<ol type="a" id="cce_10_0107__ol735517018289"><li id="cce_10_0107__li551132463520">Log in to your client and download kubectl.<pre class="screen" id="cce_10_0107__screen8511142418352">cd /home
+curl -LO https://dl.k8s.io/release/<em id="cce_10_0107__i13511182443516">{v1.25.0}</em>/bin/linux/amd64/kubectl</pre>
+<p id="cce_10_0107__p6511924173518"><em id="cce_10_0107__i1251116243353"><strong id="cce_10_0107__b3575202815342">{v1.25.0}</strong></em> specifies the version number. Replace it as required.</p>
+</li><li id="cce_10_0107__li1216814211286">Install kubectl.<pre class="screen" id="cce_10_0107__screen16892115815271">chmod +x kubectl
+mv -f kubectl /usr/local/bin</pre>
+</li></ol>
 </p></li><li id="cce_10_0107__li34691156151712"><a name="cce_10_0107__li34691156151712"></a><a name="li34691156151712"></a><span>Obtain the kubectl configuration file (kubeconfig).</span><p><p id="cce_10_0107__p1295818109256">On the <strong id="cce_10_0107__b450013549611">Connection Information</strong> pane on the cluster details page, click <strong id="cce_10_0107__b136512181078">Learn more</strong> next to <strong id="cce_10_0107__b177317221173">kubectl</strong>. On the window displayed, download the configuration file.</p>
 <div class="note" id="cce_10_0107__note191638104210"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0107__ul795610485546"><li id="cce_10_0107__li495634817549">The kubectl configuration file <strong id="cce_10_0107__b11741123981418">kubeconfig.json</strong> is used for cluster authentication. If the file is leaked, your clusters may be attacked.</li><li id="cce_10_0107__li62692399615">By default, two-way authentication is disabled for domain names in the current cluster. You can run the <strong id="cce_10_0107__b76312129249">kubectl config use-context externalTLSVerify</strong> command to enable two-way authentication. For details, see <a href="#cce_10_0107__section1559919152711">Two-Way Authentication for Domain Names</a>. For a cluster that has been bound to an EIP, if the authentication fails (x509: certificate is valid) when two-way authentication is used, you need to bind the EIP again and download <strong id="cce_10_0107__b940713611819">kubeconfig.json</strong> again.</li><li id="cce_10_0107__li16956194817544">The Kubernetes permissions assigned by the configuration file downloaded by IAM users are the same as those assigned to the IAM users on the CCE console.</li><li id="cce_10_0107__li1537643019239">If the KUBECONFIG environment variable is configured in the Linux OS, kubectl preferentially loads the KUBECONFIG environment variable instead of <strong id="cce_10_0107__b5859154717398">$home/.kube/config</strong>.</li></ul>
 </div></div>
-</p></li><li id="cce_10_0107__li25451059122317"><span>Configure kubectl.</span><p><div class="p" id="cce_10_0107__p109826082413">Install and configure kubectl (A Linux OS is used as an example).<ol type="a" id="cce_10_0107__ol2291154772010"><li id="cce_10_0107__li102911547102012">Copy the kubectl downloaded in <a href="#cce_10_0107__li194691356201712">1</a> and the configuration file downloaded in <a href="#cce_10_0107__li34691156151712">2</a> to the <strong id="cce_10_0107__b1554218410219">/home</strong> directory on your client.</li><li id="cce_10_0107__li1484374852013">Log in to your client and configure kubectl. If you have installed kubectl, skip this step.<pre class="screen" id="cce_10_0107__screen14487191815222">cd /home
-chmod +x kubectl
-mv -f kubectl /usr/local/bin</pre>
-</li><li id="cce_10_0107__li114766383477">Log in to your client and configure the kubeconfig file.<pre class="screen" id="cce_10_0107__screen849155210477">cd /home
+</p></li><li id="cce_10_0107__li25451059122317"><a name="cce_10_0107__li25451059122317"></a><a name="li25451059122317"></a><span>Configure kubectl.</span><p><div class="p" id="cce_10_0107__p109826082413">Configure kubectl (A Linux OS is used).<ol type="a" id="cce_10_0107__ol2291154772010"><li id="cce_10_0107__li102911547102012">Log in to your client and copy the kubeconfig.json configuration file downloaded in <a href="#cce_10_0107__li34691156151712">2</a> to the <strong id="cce_10_0107__b13872204384014">/home</strong> directory on your client.</li><li id="cce_10_0107__li114766383477">Configure the kubectl authentication file.<pre class="screen" id="cce_10_0107__screen849155210477">cd /home
 mkdir -p $HOME/.kube
 mv -f kubeconfig.json $HOME/.kube/config</pre>
 </li><li id="cce_10_0107__li1480512253214">Switch the kubectl access mode based on service scenarios.<ul id="cce_10_0107__ul91037595229"><li id="cce_10_0107__li5916145112313">Run this command to enable intra-VPC access:<pre class="screen" id="cce_10_0107__screen279213242247">kubectl config use-context internal</pre>
@@ -33,12 +36,16 @@ mv -f kubeconfig.json $HOME/.kube/config</pre>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0107__section1559919152711"><a name="cce_10_0107__section1559919152711"></a><a name="section1559919152711"></a><h4 class="sectiontitle">Two-Way Authentication for Domain Names</h4><p id="cce_10_0107__p138948491274">Currently, CCE supports two-way authentication for domain names.</p>
-<ul id="cce_10_0107__ul88981331482"><li id="cce_10_0107__li1705116151915">Two-way authentication is disabled for domain names by default. You can run the <strong id="cce_10_0107__b198732542582">kubectl config use-context externalTLSVerify</strong> command to switch to the externalTLSVerify context to enable it.</li><li id="cce_10_0107__li1807459174818">When an EIP is bound to or unbound from a cluster, or a custom domain name is configured or updated, the cluster server certificate will be added the latest cluster access address (including the EIP bound to the cluster and all custom domain names configured for the cluster).</li><li id="cce_10_0107__li17898153310483">Asynchronous cluster synchronization takes about 5 to 10 minutes. You can view the synchronization result in <strong id="cce_10_0107__b196404619200">Synchronize Certificate</strong> in <strong id="cce_10_0107__b364620682012">Operation Records</strong>.</li><li id="cce_10_0107__li614337712">For a cluster that has been bound to an EIP, if the authentication fails (x509: certificate is valid) when two-way authentication is used, you need to bind the EIP again and download <strong id="cce_10_0107__b121611451417">kubeconfig.json</strong> again.</li><li id="cce_10_0107__li5950658165414">If the domain name two-way authentication is not supported, <strong id="cce_10_0107__b56091346184712">kubeconfig.json</strong> contains the <strong id="cce_10_0107__b1961534614476">"insecure-skip-tls-verify": true</strong> field, as shown in <a href="#cce_10_0107__fig1941342411">Figure 2</a>. To use two-way authentication, you can download the <strong id="cce_10_0107__b549311585216">kubeconfig.json</strong> file again and enable two-way authentication for the domain names.<div class="fignone" id="cce_10_0107__fig1941342411"><a name="cce_10_0107__fig1941342411"></a><a name="fig1941342411"></a><span class="figcap"><b>Figure 2 </b>Two-way authentication disabled for domain names</span><br><span><img id="cce_10_0107__image3414621613" src="en-us_image_0000001199021320.png"></span></div>
+<ul id="cce_10_0107__ul88981331482"><li id="cce_10_0107__li1705116151915">Two-way authentication is disabled for domain names by default. You can run the <strong id="cce_10_0107__b198732542582">kubectl config use-context externalTLSVerify</strong> command to switch to the externalTLSVerify context to enable it.</li><li id="cce_10_0107__li1807459174818">When an EIP is bound to or unbound from a cluster, or a custom domain name is configured or updated, the cluster server certificate will be added the latest cluster access address (including the EIP bound to the cluster and all custom domain names configured for the cluster).</li><li id="cce_10_0107__li17898153310483">Asynchronous cluster synchronization takes about 5 to 10 minutes. You can view the synchronization result in <strong id="cce_10_0107__b196404619200">Synchronize Certificate</strong> in <strong id="cce_10_0107__b364620682012">Operation Records</strong>.</li><li id="cce_10_0107__li614337712">For a cluster that has been bound to an EIP, if the authentication fails (x509: certificate is valid) when two-way authentication is used, you need to bind the EIP again and download <strong id="cce_10_0107__b121611451417">kubeconfig.json</strong> again.</li><li id="cce_10_0107__li5950658165414">If the domain name two-way authentication is not supported, <strong id="cce_10_0107__b56091346184712">kubeconfig.json</strong> contains the <strong id="cce_10_0107__b1961534614476">"insecure-skip-tls-verify": true</strong> field, as shown in <a href="#cce_10_0107__fig1941342411">Figure 1</a>. To use two-way authentication, you can download the <strong id="cce_10_0107__b549311585216">kubeconfig.json</strong> file again and enable two-way authentication for the domain names.<div class="fignone" id="cce_10_0107__fig1941342411"><a name="cce_10_0107__fig1941342411"></a><a name="fig1941342411"></a><span class="figcap"><b>Figure 1 </b>Two-way authentication disabled for domain names</span><br><span><img id="cce_10_0107__image3414621613" src="en-us_image_0000001568822965.png"></span></div>
 </li></ul>
 </div>
-<div class="section" id="cce_10_0107__section1628510591883"><h4 class="sectiontitle">Common Issue (Error from server Forbidden)</h4><p id="cce_10_0107__p75241832114916">When you use kubectl to create or query Kubernetes resources, the following output is returned:</p>
-<p id="cce_10_0107__p581934618458"># kubectl get deploy Error from server (Forbidden): deployments.apps is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "deployments" in API group "apps" in the namespace "default"</p>
+<div class="section" id="cce_10_0107__section1628510591883"><h4 class="sectiontitle">Common Issues</h4><ul id="cce_10_0107__ul1374831051115"><li id="cce_10_0107__li4748810121112"><strong id="cce_10_0107__b456677171119">Error from server Forbidden</strong><p id="cce_10_0107__p75241832114916">When you use kubectl to create or query Kubernetes resources, the following output is returned:</p>
+<pre class="screen" id="cce_10_0107__screen5530165114117"># kubectl get deploy Error from server (Forbidden): deployments.apps is forbidden: User "0c97ac3cb280f4d91fa7c0096739e1f8" cannot list resource "deployments" in API group "apps" in the namespace "default"</pre>
 <p id="cce_10_0107__p1418636115119">The cause is that the user does not have the permissions to operate the Kubernetes resources. For details about how to assign permissions, see <a href="cce_10_0189.html">Namespace Permissions (Kubernetes RBAC-based)</a>.</p>
+</li><li id="cce_10_0107__li0365152110"><strong id="cce_10_0107__b1829619716131">The connection to the server localhost:8080 was refused</strong><p id="cce_10_0107__p1776396131212">When you use kubectl to create or query Kubernetes resources, the following output is returned:</p>
+<pre class="screen" id="cce_10_0107__screen197636617124">The connection to the server localhost:8080 was refused - did you specify the right host or port?</pre>
+<p id="cce_10_0107__p87631764129">The cause is that cluster authentication is not configured for the kubectl client. For details, see <a href="#cce_10_0107__li25451059122317">3</a>.</p>
+</li></ul>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0112.html b/docs/cce/umn/cce_10_0112.html
index 3634d501..ebd4ffe8 100644
--- a/docs/cce/umn/cce_10_0112.html
+++ b/docs/cce/umn/cce_10_0112.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Setting Health Check for a Container</h1>
 <div id="body1512535109871"><div class="section" id="cce_10_0112__section1731112174912"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0112__p8242924192"><span class="keyword" id="cce_10_0112__keyword22817116429">Health check</span> regularly checks the health status of containers during container running. If the health check function is not configured, a pod cannot detect application exceptions or automatically restart the application to restore it. This will result in a situation where the pod status is normal but the application in the pod is abnormal.</p>
 <p id="cce_10_0112__a77e71e69afde4757ab0ef6087b2e30de">Kubernetes provides the following health check probes:</p>
-<ul id="cce_10_0112__ul1867812287915"><li id="cce_10_0112__li574951765020"><strong id="cce_10_0112__b1209722181417">Liveness probe</strong> (livenessProbe): checks whether a container is still alive. It is similar to the <strong id="cce_10_0112__b1821422218147">ps</strong> command that checks whether a process exists. If the liveness check of a container fails, the cluster restarts the container. If the liveness check is successful, no operation is executed.</li><li id="cce_10_0112__li36781028792"><strong id="cce_10_0112__b1729242134220">Readiness probe</strong> (readinessProbe): checks whether a container is ready to process user requests. Upon that the container is detected unready, service traffic will not be directed to the container. It may take a long time for some applications to start up before they can provide services. This is because that they need to load disk data or rely on startup of an external module. In this case, the application process is running, but the application cannot provide services. To address this issue, this health check probe is used. If the container readiness check fails, the cluster masks all requests sent to the container. If the container readiness check is successful, the container can be accessed. </li><li id="cce_10_0112__li142001552181016"><strong id="cce_10_0112__b86001053354">Startup probe</strong> (startupProbe): checks when a container application has started. If such a probe is configured, it disables liveness and readiness checks until it succeeds, ensuring that those probes do not interfere with the application startup. This can be used to adopt liveness checks on slow starting containers, avoiding them getting killed by the kubelet before they are started.</li></ul>
+<ul id="cce_10_0112__ul1867812287915"><li id="cce_10_0112__li574951765020"><strong id="cce_10_0112__b125689275012">Liveness probe</strong> (livenessProbe): checks whether a container is still alive. It is similar to the <strong id="cce_10_0112__b17568627507">ps</strong> command that checks whether a process exists. If the liveness check of a container fails, the cluster restarts the container. If the liveness check is successful, no operation is executed.</li><li id="cce_10_0112__li36781028792"><strong id="cce_10_0112__b1729242134220">Readiness probe</strong> (readinessProbe): checks whether a container is ready to process user requests. Upon that the container is detected unready, service traffic will not be directed to the container. It may take a long time for some applications to start up before they can provide services. This is because that they need to load disk data or rely on startup of an external module. In this case, the application process is running, but the application cannot provide services. To address this issue, this health check probe is used. If the container readiness check fails, the cluster masks all requests sent to the container. If the container readiness check is successful, the container can be accessed. </li><li id="cce_10_0112__li142001552181016"><strong id="cce_10_0112__b86001053354">Startup probe</strong> (startupProbe): checks when a container application has started. If such a probe is configured, it disables liveness and readiness checks until it succeeds, ensuring that those probes do not interfere with the application startup. This can be used to adopt liveness checks on slow starting containers, avoiding them getting terminated by the kubelet before they are started.</li></ul>
 </div>
 <div class="section" id="cce_10_0112__section476025319384"><h4 class="sectiontitle">Check Method</h4><ul id="cce_10_0112__ul2492162133910"><li id="cce_10_0112__li19505918465"><strong id="cce_10_0112__b84235270695216"><span class="keyword" id="cce_10_0112__keyword122935940517318">HTTP request</span></strong><p id="cce_10_0112__p17738122617398">This health check mode is applicable to containers that provide HTTP/HTTPS services. The cluster periodically initiates an HTTP/HTTPS GET request to such containers. If the return code of the HTTP/HTTPS response is within 200–399, the probe is successful. Otherwise, the probe fails. In this health check mode, you must specify a container listening port and an HTTP/HTTPS request path.</p>
 <p id="cce_10_0112__p051511331505">For example, for a container that provides HTTP services, the HTTP check path is <strong id="cce_10_0112__b2043313277265">/health-check</strong>, the port is 80, and the host address is optional (which defaults to the container IP address). Here, 172.16.0.186 is used as an example, and we can get such a request: GET http://172.16.0.186:80/health-check. The cluster periodically initiates this request to the container. You can also add one or more headers to an HTTP request. For example, set the request header name to <strong id="cce_10_0112__b1372104918911">Custom-Header</strong> and the corresponding value to <strong id="cce_10_0112__b9755554916">example</strong>.</p>
@@ -11,9 +11,9 @@
 <p id="cce_10_0112__p1525113371164">For example, if you have a Nginx container with service port 80, after you specify TCP port 80 for container listening, the cluster will periodically initiate a TCP connection to port 80 of the container. If the connection is successful, the probe is successful. Otherwise, the probe fails.</p>
 </li><li id="cce_10_0112__li104061647154310"><strong id="cce_10_0112__b84235270695818"><span class="keyword" id="cce_10_0112__keyword1395397266173145">CLI</span></strong><p id="cce_10_0112__p105811510164113">CLI is an efficient tool for health check. When using the CLI, you must specify an executable command in a container. The cluster periodically runs the command in the container. If the command output is 0, the health check is successful. Otherwise, the health check fails.</p>
 <p id="cce_10_0112__p1658131014413">The CLI mode can be used to replace the HTTP request-based and TCP port-based health check.</p>
-<ul id="cce_10_0112__ul16409174744313"><li id="cce_10_0112__li7852728174119">For a TCP port, you can write a program script to connect to a container port. If the connection is successful, the script returns <strong id="cce_10_0112__b11599347141615">0</strong>. Otherwise, the script returns <strong id="cce_10_0112__b11599443121612">–1</strong>.</li><li id="cce_10_0112__li241104715431">For an HTTP request, you can write a program script to run the <strong id="cce_10_0112__b1767410318172">wget</strong> command for a container.<p id="cce_10_0112__p16488203413413"><strong id="cce_10_0112__b422541134110">wget http://127.0.0.1:80/health-check</strong></p>
+<ul id="cce_10_0112__ul16409174744313"><li id="cce_10_0112__li7852728174119">For a TCP port, you can use a program script to connect to a container port. If the connection is successful, the script returns <strong id="cce_10_0112__b167704361017">0</strong>. Otherwise, the script returns <strong id="cce_10_0112__b177010361817">–1</strong>.</li><li id="cce_10_0112__li241104715431">For an HTTP request, you can use the script command to run the <strong id="cce_10_0112__b18539192117411">wget</strong> command to detect the container.<p id="cce_10_0112__p16488203413413"><strong id="cce_10_0112__b422541134110">wget http://127.0.0.1:80/health-check</strong></p>
 <p id="cce_10_0112__p13488133464119">Check the return code of the response. If the return code is within 200–399, the script returns <strong id="cce_10_0112__b14498132912217">0</strong>. Otherwise, the script returns <strong id="cce_10_0112__b427293111227">–1</strong>. </p>
-<div class="notice" id="cce_10_0112__note124141947164311"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0112__ul7414047164318"><li id="cce_10_0112__li81561727181416">Put the program to be executed in the container image so that the program can be executed. </li><li id="cce_10_0112__li204153475437">If the command to be executed is a shell script, do not directly specify the script as the command, but add a script parser. For example, if the script is <strong id="cce_10_0112__b842352706102616">/data/scripts/health_check.sh</strong>, you must specify <strong id="cce_10_0112__b842352706102629">sh/data/scripts/health_check.sh</strong> for command execution. The reason is that the cluster is not in the terminal environment when executing programs in a container. </li></ul>
+<div class="notice" id="cce_10_0112__note124141947164311"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0112__ul7414047164318"><li id="cce_10_0112__li81561727181416">Put the program to be executed in the container image so that the program can be executed. </li><li id="cce_10_0112__li204153475437">If the command to be executed is a shell script, do not directly specify the script as the command, but add a script parser. For example, if the script is <strong id="cce_10_0112__b1134963416348">/data/scripts/health_check.sh</strong>, you must specify <strong id="cce_10_0112__b183492034173418">sh/data/scripts/health_check.sh</strong> for command execution. The reason is that the cluster is not in the terminal environment when executing programs in a container. </li></ul>
 </div></div>
 </li></ul>
 </li><li id="cce_10_0112__li198471623132818"><strong id="cce_10_0112__b51081513324">gRPC Check</strong><div class="p" id="cce_10_0112__p489181312320">gRPC checks can configure startup, liveness, and readiness probes for your gRPC application without exposing any HTTP endpoint, nor do you need an executable. Kubernetes can connect to your workload via gRPC and query its status.<div class="notice" id="cce_10_0112__note621111643611"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0112__ul7170123014392"><li id="cce_10_0112__li6171630113911">The gRPC check is supported only in CCE clusters of v1.25 or later.</li><li id="cce_10_0112__li0171193083917">To use gRPC for check, your application must support the <a href="https://github.com/grpc/grpc/blob/master/doc/health-checking.md" target="_blank" rel="noopener noreferrer">gRPC health checking protocol</a>.</li><li id="cce_10_0112__li8171163015392">Similar to HTTP and TCP probes, if the port is incorrect or the application does not support the health checking protocol, the check fails.</li></ul>
diff --git a/docs/cce/umn/cce_10_0113.html b/docs/cce/umn/cce_10_0113.html
index c8a6d5fe..95bcbc99 100644
--- a/docs/cce/umn/cce_10_0113.html
+++ b/docs/cce/umn/cce_10_0113.html
@@ -9,7 +9,7 @@
 <p id="cce_10_0113__p78261119155911">Environment variables can be set in the following modes:</p>
 <ul id="cce_10_0113__ul1669104610598"><li id="cce_10_0113__li266913468594"><strong id="cce_10_0113__b116911771613">Custom</strong></li><li id="cce_10_0113__li13148164912599"><strong id="cce_10_0113__b151552136536">Added from ConfigMap</strong>: Import all keys in a ConfigMap as environment variables.</li><li id="cce_10_0113__li1855315291026"><strong id="cce_10_0113__b5398577535">Added from ConfigMap key</strong>: Import a key in a ConfigMap as the value of an environment variable. For example, if you import <strong id="cce_10_0113__b766612214405">configmap_value</strong> of <strong id="cce_10_0113__b1650503044013">configmap_key</strong> in a ConfigMap as the value of environment variable <strong id="cce_10_0113__b1518565015405">key1</strong>, an environment variable named <strong id="cce_10_0113__b434614560403">key1</strong> with its value <strong id="cce_10_0113__b215043504113">is configmap_value</strong> exists in the container.</li><li id="cce_10_0113__li1727795616592"><strong id="cce_10_0113__b675162614437">Added from secret</strong>: Import all keys in a secret as environment variables.</li><li id="cce_10_0113__li93353201773"><strong id="cce_10_0113__b0483141614480">Added from secret key</strong>: Import the value of a key in a secret as the value of an environment variable. For example, if you import <strong id="cce_10_0113__b20412138105018">secret_value</strong> of <strong id="cce_10_0113__b1248714112506">secret_key</strong> in secret <strong id="cce_10_0113__b2010675411500">secret-example</strong> as the value of environment variable <strong id="cce_10_0113__b1260612005113">key2</strong>, an environment variable named <strong id="cce_10_0113__b2906162410511">key2</strong> with its value <strong id="cce_10_0113__b26293438519">secret_value</strong> exists in the container.</li><li id="cce_10_0113__li1749760535"><strong id="cce_10_0113__b31881558104120">Variable value/reference</strong>: Use the field defined by a pod as the value of the environment variable, for example, the pod name.</li><li id="cce_10_0113__li16129071317"><strong id="cce_10_0113__b11429919184010">Resource Reference</strong>: Use the field defined by a container as the value of the environment variable, for example, the CPU limit of the container.</li></ul>
 </div>
-<div class="section" id="cce_10_0113__section13829152011595"><h4 class="sectiontitle">Adding Environment Variables</h4><ol id="cce_10_0113__ol4904646935"><li id="cce_10_0113__li190412461831"><span>Log in to the CCE console. When creating a workload, select <strong id="cce_10_0113__b23218253516">Environment Variables</strong> under <strong id="cce_10_0113__b1763818524318">Container Settings</strong>.</span></li><li id="cce_10_0113__li468251942720"><span>Set environment variables.</span><p><p id="cce_10_0113__p886115513386"><span><img id="cce_10_0113__image486125516381" src="en-us_image_0000001247802971.png"></span></p>
+<div class="section" id="cce_10_0113__section13829152011595"><h4 class="sectiontitle">Adding Environment Variables</h4><ol id="cce_10_0113__ol4904646935"><li id="cce_10_0113__li190412461831"><span>Log in to the CCE console. When creating a workload, select <strong id="cce_10_0113__b23218253516">Environment Variables</strong> under <strong id="cce_10_0113__b1763818524318">Container Settings</strong>.</span></li><li id="cce_10_0113__li468251942720"><span>Set environment variables.</span><p><p id="cce_10_0113__p886115513386"><span><img id="cce_10_0113__image486125516381" src="en-us_image_0000001569022913.png"></span></p>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0113__section19591158201313"><h4 class="sectiontitle">YAML Example</h4><pre class="screen" id="cce_10_0113__screen1034117614147">apiVersion: apps/v1
diff --git a/docs/cce/umn/cce_10_0129.html b/docs/cce/umn/cce_10_0129.html
index 5f1cac2e..f2835375 100644
--- a/docs/cce/umn/cce_10_0129.html
+++ b/docs/cce/umn/cce_10_0129.html
@@ -31,6 +31,11 @@
 <td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><p id="cce_10_0129__p93701640145120">Number of pods that will be created to match the selected add-on specifications.</p>
 </td>
 </tr>
+<tr id="cce_10_0129__row158631947192617"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.2.2.1.2.3.1.1 "><p id="cce_10_0129__p15864134742615">Multi AZ</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><ul id="cce_10_0129__ul4214181752714"><li id="cce_10_0129__li5214161718270"><strong id="cce_10_0129__b14832131496">Preferred</strong>: Deployment pods of the add-on are preferentially scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, the pods are scheduled to a single AZ.</li><li id="cce_10_0129__li4214917142716"><strong id="cce_10_0129__b821216403910">Required</strong>: Deployment pods of the add-on are forcibly scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, not all pods can run.</li></ul>
+</td>
+</tr>
 <tr id="cce_10_0129__row4370840165119"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.2.2.1.2.3.1.1 "><p id="cce_10_0129__p937054045117">Containers</p>
 </td>
 <td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><p id="cce_10_0129__p1437014065110">CPU and memory quotas of the container allowed for the selected add-on specifications.</p>
@@ -39,7 +44,7 @@
 <tr id="cce_10_0129__row53701440125116"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.3.3.2.2.1.2.3.1.1 "><p id="cce_10_0129__p8370124035118">Parameters</p>
 </td>
 <td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.3.3.2.2.1.2.3.1.2 "><ul id="cce_10_0129__ul221832131618"><li id="cce_10_0129__li12588227858"><strong id="cce_10_0129__b192571453114019">parameterSyncStrategy</strong>: indicates whether to configure consistency check when an add-on is upgraded.<ul id="cce_10_0129__ul9522414615"><li id="cce_10_0129__li19121561511"><strong id="cce_10_0129__b690911564401">ensureConsistent</strong>: indicates that the configuration consistency check is enabled. If the configuration recorded in the cluster is inconsistent with the actual configuration, the add-on cannot be upgraded.</li><li id="cce_10_0129__li119784364"><strong id="cce_10_0129__b13174144274110">force</strong>: indicates that the configuration consistency check is ignored during an upgrade. Ensure that the current effective configuration is the same as the original configuration. After the add-on is upgraded, restore the value of <strong id="cce_10_0129__b4346786426">parameterSyncStrategy</strong> to <strong id="cce_10_0129__b1024311118426">ensureConsistent</strong> and enable the configuration consistency check again.</li></ul>
-</li><li id="cce_10_0129__li132885218163"><strong id="cce_10_0129__b234014615612">stub_domains</strong>: A domain name server for a user-defined domain name. The format is a key-value pair. The key is a suffix of DNS domain name, and the value is one or more DNS IP addresses.</li><li id="cce_10_0129__li1821862111168"><strong id="cce_10_0129__b2047082195610">upstream_nameservers</strong>: IP address of the upstream DNS server.</li><li id="cce_10_0129__li93661612125"><strong id="cce_10_0129__b14453761447">servers</strong>: The servers configuration is available since coredns 1.23.1. You can customize the servers configuration. For details, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/dns-custom-nameservers/" target="_blank" rel="noopener noreferrer">dns-custom-nameservers</a>. <strong id="cce_10_0129__b1485722511299">plugins</strong> indicates the configuration of each component in coredns (https://coredns.io/manual/plugins/). You are advised to retain the default configurations in common scenarios to prevent CoreDNS from being unavailable due to configuration errors. Each plugin component contains <strong id="cce_10_0129__b18101940181616">name</strong>, <strong id="cce_10_0129__b9211944201611">parameters</strong> (optional), and <strong id="cce_10_0129__b19277104816161">configBlock</strong> (optional). The format of the generated Corefile is as follows:<p id="cce_10_0129__p17731113172317">$name  $parameters {</p>
+</li><li id="cce_10_0129__li132885218163"><strong id="cce_10_0129__b234014615612">stub_domains</strong>: A domain name server for a user-defined domain name. The format is a key-value pair. The key is a suffix of DNS domain name, and the value is one or more DNS IP addresses.</li><li id="cce_10_0129__li1821862111168"><strong id="cce_10_0129__b2047082195610">upstream_nameservers</strong>: IP address of the upstream DNS server.</li><li id="cce_10_0129__li93661612125"><strong id="cce_10_0129__b16664191691620">servers</strong>: The servers configuration is available since coredns 1.23.1. You can customize the servers configuration. For details, see <a href="https://kubernetes.io/docs/tasks/administer-cluster/dns-custom-nameservers/" target="_blank" rel="noopener noreferrer">dns-custom-nameservers</a>. <strong id="cce_10_0129__b116642016121614">plugins</strong> indicates the configuration of each component in coredns (https://coredns.io/manual/plugins/). You are advised to retain the default configurations in common scenarios to prevent CoreDNS from being unavailable due to configuration errors. Each plugin component contains <strong id="cce_10_0129__b116641916181618">name</strong>, <strong id="cce_10_0129__b466431611161">parameters</strong> (optional), and <strong id="cce_10_0129__b36641716161612">configBlock</strong> (optional). The format of the generated Corefile is as follows:<p id="cce_10_0129__p17731113172317">$name  $parameters {</p>
 <p id="cce_10_0129__p1122616245232">$configBlock</p>
 <p id="cce_10_0129__p2035773019227">}</p>
 <p id="cce_10_0129__p187693475389"><a href="#cce_10_0129__table1420814384015">Table 2</a> describes common plugins.</p>
@@ -178,7 +183,7 @@
 <ol id="cce_10_0129__ol1895815493314"><li id="cce_10_0129__li29576413330">The query is first sent to the DNS caching layer in coredns.</li><li id="cce_10_0129__li79589463318">From the caching layer, the suffix of the request is examined and then the request is forwarded to the corresponding DNS:<ul id="cce_10_0129__ul29582417338"><li id="cce_10_0129__li495814453313">Names with the cluster suffix, for example, <strong id="cce_10_0129__b11610940133413">.cluster.local</strong>: The request is sent to coredns.</li></ul>
 <ul id="cce_10_0129__ul189581349330"><li id="cce_10_0129__li169582413313">Names with the stub domain suffix, for example, <strong id="cce_10_0129__b208218633511">.acme.local</strong>: The request is sent to the configured custom DNS resolver that listens, for example, on 1.2.3.4.</li><li id="cce_10_0129__li195815453320">Names that do not match the suffix (for example, <strong id="cce_10_0129__b13519452133513">widget.com</strong>): The request is forwarded to the upstream DNS.</li></ul>
 </li></ol>
-<div class="fignone" id="cce_10_0129__fig7582181514118"><span class="figcap"><b>Figure 1 </b>Routing</span><br><span><img id="cce_10_0129__image23305161015" src="en-us_image_0000001199021308.png"></span></div>
+<div class="fignone" id="cce_10_0129__fig7582181514118"><span class="figcap"><b>Figure 1 </b>Routing</span><br><span><img id="cce_10_0129__image23305161015" src="en-us_image_0000001568902577.png"></span></div>
 </div>
 <div>
 <div class="familylinks">
diff --git a/docs/cce/umn/cce_10_0132.html b/docs/cce/umn/cce_10_0132.html
index 6e6ab49e..4e752a09 100644
--- a/docs/cce/umn/cce_10_0132.html
+++ b/docs/cce/umn/cce_10_0132.html
@@ -1,330 +1,373 @@
 <a name="cce_10_0132"></a><a name="cce_10_0132"></a>
 
 <h1 class="topictitle1">npd</h1>
-<div id="body1544406897523"><div class="section" id="cce_10_0132__section173631312185614"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0132__p37354218618">node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon running on each node. It collects node issues from different daemons and reports them to the API server. The npd add-on can run as a DaemonSet or a daemon.</p>
-<p id="cce_10_0132__p152804433415">For more information, see <a href="https://github.com/kubernetes/node-problem-detector" target="_blank" rel="noopener noreferrer">node-problem-detector</a>.</p>
+<div id="body1544406897523"><div class="section" id="cce_10_0132__en-us_topic_0000001244261007_section173631312185614"><h4 class="sectiontitle">Introduction</h4><p id="cce_10_0132__en-us_topic_0000001244261007_p37354218618">node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon running on each node. It collects node issues from different daemons and reports them to the API server. The npd add-on can run as a DaemonSet or a daemon.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p152804433415">For more information, see <a href="https://github.com/kubernetes/node-problem-detector" target="_blank" rel="noopener noreferrer">node-problem-detector</a>.</p>
 </div>
-<div class="section" id="cce_10_0132__section119671349192611"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0132__ul55121521141010"><li id="cce_10_0132__li8512142151010">When using this add-on, do not format or partition node disks.</li><li id="cce_10_0132__li151217213101">Each npd process occupies 30 mCPU and 100 MB memory.</li></ul>
+<div class="section" id="cce_10_0132__en-us_topic_0000001244261007_section119671349192611"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0132__en-us_topic_0000001244261007_ul55121521141010"><li id="cce_10_0132__en-us_topic_0000001244261007_li8512142151010">When using this add-on, do not format or partition node disks.</li><li id="cce_10_0132__en-us_topic_0000001244261007_li151217213101">Each npd process occupies 30 mCPU and 100 MB memory.</li></ul>
 </div>
-<div class="section" id="cce_10_0132__section158021093142"><h4 class="sectiontitle">Permission Description</h4><p id="cce_10_0132__p17541021171417">To monitor kernel logs, the npd add-on needs to read the host <strong id="cce_10_0132__b96321135103716">/dev/kmsg</strong>. Therefore, the privileged mode must be enabled. For details, see <a href="https://kubernetes.io/docs/concepts/policy/pod-security-policy/#privileged" target="_blank" rel="noopener noreferrer">privileged</a>.</p>
-<p id="cce_10_0132__p1992131751419">In addition, CCE mitigates risks according to the least privilege principle. Only the following privileges are available for npd running:</p>
-<ul id="cce_10_0132__ul57753573145"><li id="cce_10_0132__li077514576147">cap_dac_read_search: permission to access <strong id="cce_10_0132__b183144419493">/run/log/journal</strong>.</li><li id="cce_10_0132__li15775205761415">cap_sys_admin: permission to access <strong id="cce_10_0132__b173812584913">/dev/kmsg</strong>.</li></ul>
+<div class="section" id="cce_10_0132__en-us_topic_0000001244261007_section158021093142"><h4 class="sectiontitle">Permission Description</h4><p id="cce_10_0132__en-us_topic_0000001244261007_p17541021171417">To monitor kernel logs, the npd add-on needs to read the host <strong id="cce_10_0132__en-us_topic_0000001244261007_b96321135103716">/dev/kmsg</strong>. Therefore, the privileged mode must be enabled. For details, see <a href="https://kubernetes.io/docs/concepts/policy/pod-security-policy/#privileged" target="_blank" rel="noopener noreferrer">privileged</a>.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1992131751419">In addition, CCE mitigates risks according to the least privilege principle. Only the following privileges are available for npd running:</p>
+<ul id="cce_10_0132__en-us_topic_0000001244261007_ul57753573145"><li id="cce_10_0132__en-us_topic_0000001244261007_li077514576147">cap_dac_read_search: permission to access <strong id="cce_10_0132__en-us_topic_0000001244261007_b183144419493">/run/log/journal</strong>.</li><li id="cce_10_0132__en-us_topic_0000001244261007_li15775205761415">cap_sys_admin: permission to access <strong id="cce_10_0132__en-us_topic_0000001244261007_b173812584913">/dev/kmsg</strong>.</li></ul>
 </div>
-<div class="section" id="cce_10_0132__section189463341114"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0132__ol13949124616422"><li id="cce_10_0132__li13183153352515"><span>Log in to the CCE console, click the cluster name, and access the cluster console. Choose <span class="uicontrol" id="cce_10_0132__uicontrol18362548121"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0132__b1236844171210">npd</strong> on the right, and click <strong id="cce_10_0132__b23681045129">Install</strong>.</span></li><li id="cce_10_0132__li15556183414307"><span>On the <strong id="cce_10_0132__b12656142319553">Install Add-on</strong> page, select the add-on specifications and set related parameters.</span><p><ul id="cce_10_0132__ul773111493313"><li id="cce_10_0132__li873131443310"><strong id="cce_10_0132__b062121155616">Pods</strong>: Set the number of pods based on service requirements.</li><li id="cce_10_0132__li145013474339"><strong id="cce_10_0132__b51930191576">Containers</strong>: Select a proper container quota based on service requirements.</li></ul>
-</p></li><li id="cce_10_0132__li067573965518"><span>Set the parameters according to the following table and click <strong id="cce_10_0132__b64961027104816">Install</strong>.</span><p><p id="cce_10_0132__p138409149261">Only 1.16.0 and later versions support the configurations.</p>
-<p id="cce_10_0132__p128021213162617"><strong id="cce_10_0132__b1913732412588">npc.enable</strong>: indicates whether to enable <a href="#cce_10_0132__section1471610580474">Node-problem-controller</a>.</p>
+<div class="section" id="cce_10_0132__en-us_topic_0000001244261007_section189463341114"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0132__en-us_topic_0000001244261007_ol13949124616422"><li id="cce_10_0132__en-us_topic_0000001244261007_li13183153352515"><span>Log in to the CCE console and access the cluster console. Choose <span class="uicontrol" id="cce_10_0132__en-us_topic_0000001244261007_uicontrol18362548121"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0132__en-us_topic_0000001244261007_b1236844171210">npd</strong> on the right, and click <strong id="cce_10_0132__en-us_topic_0000001244261007_b23681045129">Install</strong>.</span></li><li id="cce_10_0132__en-us_topic_0000001244261007_li15556183414307"><span>On the <strong id="cce_10_0132__en-us_topic_0000001244261007_b12656142319553">Install Add-on</strong> page, select the add-on specifications and set related parameters.</span><p><ul id="cce_10_0132__en-us_topic_0000001244261007_ul773111493313"><li id="cce_10_0132__en-us_topic_0000001244261007_li873131443310"><strong id="cce_10_0132__en-us_topic_0000001244261007_b062121155616">Pods</strong>: Set the number of pods based on service requirements.</li><li id="cce_10_0132__en-us_topic_0000001244261007_li145013474339"><strong id="cce_10_0132__en-us_topic_0000001244261007_b51930191576">Containers</strong>: Select a proper container quota based on service requirements.</li></ul>
+</p></li><li id="cce_10_0132__en-us_topic_0000001244261007_li067573965518"><span>Set the npd parameters and click <strong id="cce_10_0132__en-us_topic_0000001244261007_b18332104901720">Install</strong>.</span><p><p id="cce_10_0132__en-us_topic_0000001244261007_p138409149261">The parameters are configurable only in 1.16.0 and later versions. For details, see <a href="#cce_10_0132__en-us_topic_0000001244261007_table205378534248">Table 7</a>.</p>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0132__section69115153399"><h4 class="sectiontitle">npd Check Items</h4><div class="note" id="cce_10_0132__note173963403394"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__p5396184020391">Check items are supported only in 1.16.0 and later versions.</p>
+<div class="section" id="cce_10_0132__en-us_topic_0000001244261007_section69115153399"><h4 class="sectiontitle">npd Check Items</h4><div class="note" id="cce_10_0132__en-us_topic_0000001244261007_note173963403394"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__en-us_topic_0000001244261007_p5396184020391">Check items are supported only in 1.16.0 and later versions.</p>
 </div></div>
-<p id="cce_10_0132__p4958134764017">Check items cover events and statuses.</p>
-<ul id="cce_10_0132__ul1699482505"><li id="cce_10_0132__li20691448115014">Event-related<p id="cce_10_0132__p9338344194514"><a name="cce_10_0132__li20691448115014"></a><a name="li20691448115014"></a>For event-related check items, when a problem occurs, npd reports an event to the API server. The event type can be <strong id="cce_10_0132__b0674907539">Normal</strong> (normal event) or <strong id="cce_10_0132__b264113215531">Warning</strong> (abnormal event).</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p4958134764017">Check items cover events and statuses.</p>
+<ul id="cce_10_0132__en-us_topic_0000001244261007_ul1699482505"><li id="cce_10_0132__en-us_topic_0000001244261007_li20691448115014">Event-related<p id="cce_10_0132__en-us_topic_0000001244261007_p9338344194514"><a name="cce_10_0132__en-us_topic_0000001244261007_li20691448115014"></a><a name="en-us_topic_0000001244261007_li20691448115014"></a>For event-related check items, when a problem occurs, npd reports an event to the API server. The event type can be <strong id="cce_10_0132__en-us_topic_0000001244261007_b0674907539">Normal</strong> (normal event) or <strong id="cce_10_0132__en-us_topic_0000001244261007_b264113215531">Warning</strong> (abnormal event).</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table14820155834010" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Event-related check items</caption><thead align="left"><tr id="cce_10_0132__row1287205884012"><th align="left" class="cellrowborder" valign="top" width="22.55%" id="mcps1.3.5.4.1.2.2.4.1.1"><p id="cce_10_0132__p7872185819403">Check Item</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__en-us_topic_0000001244261007_table14820155834010" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Event-related check items</caption><thead align="left"><tr id="cce_10_0132__en-us_topic_0000001244261007_row1287205884012"><th align="left" class="cellrowborder" valign="top" width="22.55%" id="mcps1.3.5.4.1.2.2.4.1.1"><p id="cce_10_0132__en-us_topic_0000001244261007_p7872185819403">Check Item</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="40.88%" id="mcps1.3.5.4.1.2.2.4.1.2"><p id="cce_10_0132__p1887295816407">Function</p>
+<th align="left" class="cellrowborder" valign="top" width="40.88%" id="mcps1.3.5.4.1.2.2.4.1.2"><p id="cce_10_0132__en-us_topic_0000001244261007_p1887295816407">Function</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="36.57%" id="mcps1.3.5.4.1.2.2.4.1.3"><p id="cce_10_0132__p1287215814401">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="36.57%" id="mcps1.3.5.4.1.2.2.4.1.3"><p id="cce_10_0132__en-us_topic_0000001244261007_p1287215814401">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0132__row19872758194019"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p17872858134019">OOMKilling</p>
+<tbody><tr id="cce_10_0132__en-us_topic_0000001244261007_row19872758194019"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p17872858134019">OOMKilling</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p1987215816404">Check whether OOM events occur and are reported.</p>
+<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1987215816404">Listen to the kernel logs and check whether OOM events occur and are reported.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p160216314713">Typical scenario: When the memory usage of a process in a container exceeds the limit, OOM is triggered and the process is terminated.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p487265818405">Warning event</p>
+<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p487265818405">Warning event</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p12872117515">Listening object: <strong id="cce_10_0132__en-us_topic_0000001244261007_b137891565425">/dev/kmsg</strong></p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p6872710520">Matching rule: "Killed process \\d+ (.+) total-vm:\\d+kB, anon-rss:\\d+kB, file-rss:\\d+kB.*"</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row2087225814405"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p1387245820403">TaskHung</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row2087225814405"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1387245820403">TaskHung</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p18872155844013">Check whether taskHung events occur and are reported.</p>
+<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p18872155844013">Listen to the kernel logs and check whether taskHung events occur and are reported.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p2317112419618">Typical scenario: Disk I/O suspension causes process suspension.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p16872758114011">Warning event</p>
+<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p16872758114011">Warning event</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p173071159247">Listening object: <strong id="cce_10_0132__en-us_topic_0000001244261007_b693685434">/dev/kmsg</strong></p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p153079591241">Matching rule: "task \\S+:\\w+ blocked for more than \\w+ seconds\\."</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row3872758184011"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p19872195818404">KernelOops</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row137852513316"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p147857511316">ReadonlyFilesystem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p19872165813403">Check kernel nil pointer panic errors.</p>
+<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1434416191840">Check whether the <strong id="cce_10_0132__en-us_topic_0000001244261007_b1150242118561">Remount root filesystem read-only</strong> error occurs in the system kernel by listening to the kernel logs.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p15344719349">Typical scenario: A user detaches a data disk from a node by mistake on the ECS, and applications continuously write data to the mount point of the data disk. As a result, an I/O error occurs in the kernel and the disk is remounted as a read-only disk.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p087295824013">Warning event</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row18729588401"><td class="cellrowborder" valign="top" width="22.55%" headers="mcps1.3.5.4.1.2.2.4.1.1 "><p id="cce_10_0132__p58721558194015">ConntrackFull</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.88%" headers="mcps1.3.5.4.1.2.2.4.1.2 "><p id="cce_10_0132__p1687225864011">Check whether the conntrack table is full.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__p168721758104010">Warning event</p>
-<p id="cce_10_0132__p12872105854016">Interval: 30 seconds</p>
-<p id="cce_10_0132__p487213584402">Threshold: 80%</p>
+<td class="cellrowborder" valign="top" width="36.57%" headers="mcps1.3.5.4.1.2.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p944535317711">Warning event</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p183981710948">Listening object: <strong id="cce_10_0132__en-us_topic_0000001244261007_b759948019">/dev/kmsg</strong></p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p83993101042">Matching rule: <strong id="cce_10_0132__en-us_topic_0000001244261007_b15200817134219">Remounting filesystem read-only</strong></p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-</li><li id="cce_10_0132__li29881573504">Status-related<p id="cce_10_0132__p2700175815517"><a name="cce_10_0132__li29881573504"></a><a name="li29881573504"></a>For status-related check items, when a problem occurs, npd reports an event to the API server and changes the node status synchronously. This function can be used together with <a href="#cce_10_0132__section1471610580474">Node-problem-controller fault isolation</a> to isolate nodes.</p>
-<p id="cce_10_0132__p123464919476"><strong id="cce_10_0132__b289275011010">If the check period is not specified in the following check items, the default period is 30 seconds.</strong></p>
+</li><li id="cce_10_0132__en-us_topic_0000001244261007_li29881573504">Status-related<p id="cce_10_0132__en-us_topic_0000001244261007_p2700175815517"><a name="cce_10_0132__en-us_topic_0000001244261007_li29881573504"></a><a name="en-us_topic_0000001244261007_li29881573504"></a>For status-related check items, when a problem occurs, npd reports an event to the API server and changes the node status synchronously. This function can be used together with <a href="#cce_10_0132__en-us_topic_0000001244261007_section1471610580474">Node-problem-controller fault isolation</a> to isolate nodes.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p123464919476"><strong id="cce_10_0132__en-us_topic_0000001244261007_b289275011010">If the check period is not specified in the following check items, the default period is 30 seconds.</strong></p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table5966193210414" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Application and OS check items</caption><thead align="left"><tr id="cce_10_0132__row1439833124119"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.3.2.4.1.1"><p id="cce_10_0132__p039183318412">Check Item</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__en-us_topic_0000001244261007_table5966193210414" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Checking system components</caption><thead align="left"><tr id="cce_10_0132__en-us_topic_0000001244261007_row1439833124119"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.3.2.4.1.1"><p id="cce_10_0132__en-us_topic_0000001244261007_p039183318412">Check Item</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.3.2.4.1.2"><p id="cce_10_0132__p8397332416">Function</p>
+<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.3.2.4.1.2"><p id="cce_10_0132__en-us_topic_0000001244261007_p8397332416">Function</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.3.2.4.1.3"><p id="cce_10_0132__p153920338415">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.3.2.4.1.3"><p id="cce_10_0132__en-us_topic_0000001244261007_p153920338415">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0132__row133983316414"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p20391433124114">FrequentKubeletRestart</p>
+<tbody><tr id="cce_10_0132__en-us_topic_0000001244261007_row43634312108"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p230684616478">Container network component error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p85821221101410">CNIProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1939133114115">Check whether kubelet restarts frequently by listening to journald logs.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p2182113131012">Check the status of the CNI components (container network components).</p>
 </td>
-<td class="cellrowborder" rowspan="3" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul15361156122"><li id="cce_10_0132__li536175121216">Interval: 5 minutes</li><li id="cce_10_0132__li1436115171210">Backtracking: 10 minutes</li><li id="cce_10_0132__li14361515126">Threshold: 10 times<p id="cce_10_0132__p9122024101116"><a name="cce_10_0132__li14361515126"></a><a name="li14361515126"></a>If the system restarts for 10 times within the backtracking period, it indicates that the system restarts frequently and a fault alarm is generated.</p>
-</li><li id="cce_10_0132__li33695151213">Listening object: logs in the <strong id="cce_10_0132__b745058162910">/run/log/journal</strong> directory</li></ul>
-<div class="note" id="cce_10_0132__note755113461253"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__p159646492519">The Ubuntu OS does not support the preceding check items due to incompatible log formats.</p>
-</div></div>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p10182183131016">None</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row639103354117"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p239433204111">FrequentDockerRestart</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row1832083812107"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p192511642175119">Container runtime component error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p189016404149">CRIProblem</p>
 </td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p939933174112">Check whether Docker restarts frequently by listening to journald logs.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p19541247101019">Check the status of Docker and containerd of the CRI components (container runtime components).</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1954154717105">Check object: Docker or containerd</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row839733124114"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p43993394113">FrequentContainerdRestart</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row133983316414"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1273874481418">Frequent restarts of Kubelet</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p260214517150">FrequentKubeletRestart</p>
 </td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p139433114116">Check whether containerd restarts frequently by listening to journald logs.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p187251156226">Periodically backtrack system logs to check whether the key component Kubelet restarts frequently.</p>
+</td>
+<td class="cellrowborder" rowspan="3" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul15361156122"><li id="cce_10_0132__en-us_topic_0000001244261007_li14361515126">Default threshold: 10 restarts within 10 minutes<p id="cce_10_0132__en-us_topic_0000001244261007_p9122024101116"><a name="cce_10_0132__en-us_topic_0000001244261007_li14361515126"></a><a name="en-us_topic_0000001244261007_li14361515126"></a>If Kubelet restarts for 10 times within 10 minutes, it indicates that the system restarts frequently and a fault alarm is generated.</p>
+</li><li id="cce_10_0132__en-us_topic_0000001244261007_li33695151213">Listening object: logs in the <strong id="cce_10_0132__en-us_topic_0000001244261007_b745058162910">/run/log/journal</strong> directory</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0132__row83953384115"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p18392033174112">CRIProblem</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row639103354117"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p14986347185113">Frequent restarts of Docker</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p194684577142">FrequentDockerRestart</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1839633124112">Check the CRI component status.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p139113344118">Check object: Docker or containerd</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p939933174112">Periodically backtrack system logs to check whether the container runtime Docker restarts frequently.</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row639123312418"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p14391332415">KUBELETProblem</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row839733124114"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p184432453516">Frequent restarts of containerd</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1447913571273">FrequentContainerdRestart</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1639233134114">Check the kubelet status.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p1239133334118">None</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p193311313312">Periodically backtrack system logs to check whether the container runtime containerd restarts frequently.</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row183933318415"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p839933124112">NTPProblem</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row639123312418"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1237611179529">kubelet error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p59951012101515">KubeletProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p183915331414">Check the NTP and Chrony service status.</p>
-<p id="cce_10_0132__p18855192918461">Check whether the node clock offsets.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1639233134114">Check the status of the key component Kubelet.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p133913384112">Threshold of the clock offset: 8000 ms</p>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1239133334118">None</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row164010332413"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p14043334110">PIDProblem</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row6215145918531"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p6413139195215">kube-proxy error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p181881518181514">KubeProxyProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p144033304112">Check whether PIDs are sufficient.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p41511802546">Check the status of the key component kube-proxy.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul1659995115108"><li id="cce_10_0132__li059975119103">Threshold: 90%</li><li id="cce_10_0132__li195999518108">Usage: nr_threads in /proc/loadavg</li><li id="cce_10_0132__li359916518104">Maximum value: smaller value between <strong id="cce_10_0132__b51811252332">/proc/sys/kernel/pid_max</strong> and <strong id="cce_10_0132__b16653128163312">/proc/sys/kernel/threads-max</strong>.</li></ul>
-</td>
-</tr>
-<tr id="cce_10_0132__row6405332419"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p94073320410">FDProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p154063319411">Check whether file handles are sufficient.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul64455521018"><li id="cce_10_0132__li1644655201015">Threshold: 90%</li><li id="cce_10_0132__li244145521010">Usage: the first value in <strong id="cce_10_0132__b19956519133313">/proc/sys/fs/file-nr</strong></li><li id="cce_10_0132__li5442551103">Maximum value: the third value in <strong id="cce_10_0132__b1671227113313">/proc/sys/fs/file-nr</strong></li></ul>
-</td>
-</tr>
-<tr id="cce_10_0132__row64014332413"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p17401333114117">MemoryProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1640203324119">Check whether the overall node memory is sufficient.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><ul id="cce_10_0132__ul27222057111018"><li id="cce_10_0132__li572235781012">Threshold: 90%</li><li id="cce_10_0132__li13722185741017">Usage: <strong id="cce_10_0132__b471916287359">MemTotal-MemAvailable</strong> in <strong id="cce_10_0132__b46373110357">/proc/meminfo</strong></li><li id="cce_10_0132__li17723157111015">Maximum value: <strong id="cce_10_0132__b1280119350352">MemTotal</strong> in <strong id="cce_10_0132__b19312153853515">/proc/meminfo</strong></li></ul>
-</td>
-</tr>
-<tr id="cce_10_0132__row842872572120"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p5429192512117">ResolvConfFileProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p6146106165011">Check whether the ResolvConf file is lost.</p>
-<p id="cce_10_0132__p19339341185711">Check whether the ResolvConf file is normal.</p>
-<p id="cce_10_0132__p89770167317">Exception definition: No upstream domain name resolution server (nameserver) is included.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p12429132511214">Object: <strong id="cce_10_0132__b83131505377">/etc/resolv.conf</strong></p>
-</td>
-</tr>
-<tr id="cce_10_0132__row585811410415"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p5858111411415">ProcessD</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p1858414164117">Check whether there is a process D on the node.</p>
-</td>
-<td class="cellrowborder" rowspan="2" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p154096566548">Source:</p>
-<ul id="cce_10_0132__ul1932205835415"><li id="cce_10_0132__li33235885415">/proc/{PID}/stat</li><li id="cce_10_0132__li122716596542">Alternately, you can run <strong id="cce_10_0132__b731118224388">ps aux</strong>.</li></ul>
-<p id="cce_10_0132__p108581214164119">Exception scenario: ProcessD ignores the resident processes (heartbeat and update) that are in the D state that the SDI driver on the BMS node depends on.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row96053367426"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p166051236124213">ProcessZ</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p96052363427">Check whether the node has processes in Z state.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row672417443520"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.3.2.4.1.1 "><p id="cce_10_0132__p1272554412517">ScheduledEvent</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.3.2.4.1.2 "><p id="cce_10_0132__p372514449517">Check whether host plan events exist on the node.</p>
-<p id="cce_10_0132__p185205331978">Typical scenario: The host is faulty, for example, the fan is damaged or the disk has bad sectors. As a result, cold and live migration is triggered for VMs.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__p189815212231">Source:</p>
-<ul id="cce_10_0132__ul58642322314"><li id="cce_10_0132__li686419342315">http://169.254.169.254/meta-data/latest/events/scheduled</li></ul>
-<p id="cce_10_0132__p13725114412511">This check item is an Alpha feature and is disabled by default.</p>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.3.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1115120155419">None</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table493185102713" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Network connection check items</caption><thead align="left"><tr id="cce_10_0132__row6932155122711"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.4.2.4.1.1"><p id="cce_10_0132__p159321857271">Check Item</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__en-us_topic_0000001244261007_table493185102713" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Checking system metrics</caption><thead align="left"><tr id="cce_10_0132__en-us_topic_0000001244261007_row6932155122711"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.4.2.4.1.1"><p id="cce_10_0132__en-us_topic_0000001244261007_p159321857271">Check Item</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.4.2.4.1.2"><p id="cce_10_0132__p593216512271">Function</p>
+<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.4.2.4.1.2"><p id="cce_10_0132__en-us_topic_0000001244261007_p593216512271">Function</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.4.2.4.1.3"><p id="cce_10_0132__p1293212516270">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.4.2.4.1.3"><p id="cce_10_0132__en-us_topic_0000001244261007_p1293212516270">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0132__row993310517276"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__p2933145142717">CNIProblem</p>
+<tbody><tr id="cce_10_0132__en-us_topic_0000001244261007_row18250140195913"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p8306646174712">Conntrack table full</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p141952518172">ConntrackFullProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__p39331562712">Check whether the CNI component is running properly.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1715712185912">Check whether the conntrack table is full.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><p id="cce_10_0132__p129331582720">None</p>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul15378114164118"><li id="cce_10_0132__en-us_topic_0000001244261007_li937854144118">Default threshold: 90%</li></ul>
+<ul id="cce_10_0132__en-us_topic_0000001244261007_ul137698406424"><li id="cce_10_0132__en-us_topic_0000001244261007_li6769104014425">Usage: <strong id="cce_10_0132__en-us_topic_0000001244261007_b136551027115912">nf_conntrack_count</strong></li><li id="cce_10_0132__en-us_topic_0000001244261007_li676944064214">Maximum value: <strong id="cce_10_0132__en-us_topic_0000001244261007_b198361535135914">nf_conntrack_max</strong></li></ul>
 </td>
 </tr>
-<tr id="cce_10_0132__row2093412502714"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__p593413502718">KUBEPROXYProblem</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row1950431814401"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p36813213539">Insufficient disk resources</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p42911646121819">DiskProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__p2093412517278">Check whether kube-proxy is running properly.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p17441915115519">Check the usage of the system disk and CCE data disks (including the CRI logical disk and kubelet logical disk) on the node.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><p id="cce_10_0132__p39346514277">None</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table24948715278" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Storage check items</caption><thead align="left"><tr id="cce_10_0132__row94951770273"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.5.2.4.1.1"><p id="cce_10_0132__p34951715272">Check Item</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.5.2.4.1.2"><p id="cce_10_0132__p164953713276">Function</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.5.2.4.1.3"><p id="cce_10_0132__p174955714276">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0132__row114962070274"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p2496476277">ReadonlyFilesystem</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p31281447165616">Check whether the <strong id="cce_10_0132__b17061209018">Remount root filesystem read-only</strong> error occurs in the system kernel by listening to the kernel logs.</p>
-<p id="cce_10_0132__p7141134415613">Typical scenario: A user detaches a data disk from a node by mistake on the ECS, and applications continuously write data to the mount point of the data disk. As a result, an I/O error occurs in the kernel and the disk is reattached as a read-only disk.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__p34961676273">Listening object: <strong id="cce_10_0132__b137891565425">/dev/kmsg</strong></p>
-<p id="cce_10_0132__p14288214850">Matching rule: <strong id="cce_10_0132__b15200817134219">Remounting filesystem read-only</strong></p>
-</td>
-</tr>
-<tr id="cce_10_0132__row34978752711"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p1749707152710">DiskReadonly</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p249713713271">Check whether the system disk, Docker disk, and kubelet disk are read-only.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__p164974742711">Detection paths:</p>
-<ul id="cce_10_0132__ul15871334132818"><li id="cce_10_0132__li19587234112815">/mnt/paas/kubernetes/kubelet/</li><li id="cce_10_0132__li19808033154415">/var/lib/docker/</li><li id="cce_10_0132__li1232314353441">/var/lib/containerd/</li><li id="cce_10_0132__li445844115448">/var/paas/sys/log/cceaddon-npd/</li></ul>
-<p id="cce_10_0132__p925152084514">The temporary file <strong id="cce_10_0132__b6967103431319">npd-disk-write-ping</strong> is generated in the detection path.</p>
-<p id="cce_10_0132__p17833111174618">Currently, additional data disks are not supported.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row1749757112713"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p114973716277">DiskProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p4497771279">Check the usage of the system disk, Docker disk, and kubelet disk.</p>
-<p id="cce_10_0132__p049717719277"></p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul848018237225"><li id="cce_10_0132__li1748012237221">Threshold: 80%</li><li id="cce_10_0132__li448082318227">Source:<pre class="screen" id="cce_10_0132__screen15718171814229">df -h</pre>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul4388122614120"><li id="cce_10_0132__en-us_topic_0000001244261007_li16388126201219">Default threshold: 90%</li><li id="cce_10_0132__en-us_topic_0000001244261007_li123880266127">Source:<pre class="screen" id="cce_10_0132__en-us_topic_0000001244261007_screen18388426171216">df -h</pre>
 </li></ul>
-<p id="cce_10_0132__p357833584613">Currently, additional data disks are not supported.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p5388226151218">Currently, additional data disks are not supported.</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row652213985816"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p19824134712129">EmptyDirVolumeGroupStatusError</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row7349154113409"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p793565214526">Insufficient file handles</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p052091171916">FDProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p45224397584">Check whether the ephemeral volume group on the node is normal.</p>
-<p id="cce_10_0132__p1964614101539">Impact: The pod that depends on the storage pool cannot write data to the temporary volume. The temporary volume is remounted as a read-only file system by the kernel due to an I/O error.</p>
-<p id="cce_10_0132__p1649544615344">Typical scenario: When creating a node, a user configures two data disks as a temporary volume storage pool. The user deletes some data disks by mistake. As a result, the storage pool becomes abnormal.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p8441131525518">Check whether FD file handles are used up.</p>
 </td>
-<td class="cellrowborder" rowspan="2" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul694675316171"><li id="cce_10_0132__li294635331719">Detection period: 60s</li><li id="cce_10_0132__li1194655311712">Source:<pre class="screen" id="cce_10_0132__screen1730112457179">vgs -o vg_name, vg_attr</pre>
-</li><li id="cce_10_0132__li179461853101720">Principle: Check whether the VG (storage pool) is in the P state. If yes, some PVs (data disks) are lost.</li><li id="cce_10_0132__li6946145317178">Joint scheduling: The scheduler can automatically identify an abnormal node and prevent pods that depend on the storage pool from being scheduled to the node.</li><li id="cce_10_0132__li1194619530173">Exception scenario: The npd add-on cannot detect the loss of all PVs (data disks), resulting in the loss of VGs (storage pools). In this case, kubelet automatically isolates the node, detects the loss of VGs (storage pools), and updates the corresponding resources in <strong id="cce_10_0132__b17637957111913">nodestatus.allocatable</strong> to <strong id="cce_10_0132__b1086015931917">0</strong>. This prevents pods that depend on the storage pool from being scheduled to the node. The damage of a single PV cannot be detected. In this case, the ReadonlyFilesystem detection is abnormal.</li></ul>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul1622954025812"><li id="cce_10_0132__en-us_topic_0000001244261007_li92294407583">Default threshold: 90%</li><li id="cce_10_0132__en-us_topic_0000001244261007_li12298402586">Usage: the first value in <strong id="cce_10_0132__en-us_topic_0000001244261007_b19956519133313">/proc/sys/fs/file-nr</strong></li><li id="cce_10_0132__en-us_topic_0000001244261007_li11229104019586">Maximum value: the third value in <strong id="cce_10_0132__en-us_topic_0000001244261007_b1671227113313">/proc/sys/fs/file-nr</strong></li></ul>
 </td>
 </tr>
-<tr id="cce_10_0132__row102785374911"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p207911347151214">LocalPvVolumeGroupStatusError</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row4860175711407"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p46795813527">Insufficient node memory</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p971762919196">MemoryProblem</p>
 </td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p027916334910">Check the PV group on the node.</p>
-<p id="cce_10_0132__p063762014315">Impact: Pods that depend on the storage pool cannot write data to the persistent volume. The persistent volume is remounted as a read-only file system by the kernel due to an I/O error.</p>
-<p id="cce_10_0132__p5448583352">Typical scenario: When creating a node, a user configures two data disks as a persistent volume storage pool. Some data disks are deleted by mistake.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p24411015115516">Check whether memory is used up.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul1031348901"><li id="cce_10_0132__en-us_topic_0000001244261007_li133131781208">Default threshold: 80%</li><li id="cce_10_0132__en-us_topic_0000001244261007_li14313281409">Usage: <strong id="cce_10_0132__en-us_topic_0000001244261007_b471916287359">MemTotal-MemAvailable</strong> in <strong id="cce_10_0132__en-us_topic_0000001244261007_b46373110357">/proc/meminfo</strong></li><li id="cce_10_0132__en-us_topic_0000001244261007_li1131319819010">Maximum value: <strong id="cce_10_0132__en-us_topic_0000001244261007_b1280119350352">MemTotal</strong> in <strong id="cce_10_0132__en-us_topic_0000001244261007_b19312153853515">/proc/meminfo</strong></li></ul>
 </td>
 </tr>
-<tr id="cce_10_0132__row846942934417"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p154691829104415">MountPointProblem</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row11292101316587"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p79371748105318">Insufficient process resources</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p7989035121918">PIDProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p1747082915445">Check the mount point on the node.</p>
-<p id="cce_10_0132__p1528212414385">Exception definition: You cannot access the mount point by running the <strong id="cce_10_0132__b1364375693213">cd</strong> command.</p>
-<p id="cce_10_0132__p11881753183217">Typical scenario: Network File System (NFS), for example, obsfs and s3fs is mounted to a node. When the connection is abnormal due to network or peer NFS server exceptions, all processes that access the mount point are suspended. For example, during a cluster upgrade, a kubelet is restarted, and all mount points are scanned. If the abnormal mount point is detected, the upgrade fails.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1244141515511">Check whether PID process resources are exhausted.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__p141531643143416">Alternatively, you can run the following command:</p>
-<pre class="screen" id="cce_10_0132__screen83631028111316">for dir in `df -h | grep -v "Mounted on" | awk "{print \\$NF}"`;do cd $dir; done &amp;&amp; echo "ok"</pre>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.4.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul20671412580"><li id="cce_10_0132__en-us_topic_0000001244261007_li1611143589">Default threshold: 90%</li><li id="cce_10_0132__en-us_topic_0000001244261007_li5651445818">Usage: <strong id="cce_10_0132__en-us_topic_0000001244261007_b1861118191124">nr_threads in /proc/loadavg</strong></li><li id="cce_10_0132__en-us_topic_0000001244261007_li16619146580">Maximum value: smaller value between <strong id="cce_10_0132__en-us_topic_0000001244261007_b51811252332">/proc/sys/kernel/pid_max</strong> and <strong id="cce_10_0132__en-us_topic_0000001244261007_b16653128163312">/proc/sys/kernel/threads-max</strong>.</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0132__row12162627450"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p1516219213453">DiskHung</p>
-</td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p1162182184513">Check whether I/O faults occur on the disk of the node.</p>
-<p id="cce_10_0132__p76931555500">Definition of I/O faults: The system does not respond to disk I/O requests, and some processes are in the D state.</p>
-<p id="cce_10_0132__p8166365514">Typical Scenario: Disks cannot respond due to abnormal OS hard disk drivers or severe faults on the underlying network.</p>
-</td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul44097139534"><li id="cce_10_0132__li178071253283">Check object: all data disks</li><li id="cce_10_0132__li7807165162812">Source:<p id="cce_10_0132__p72111118317"><a name="cce_10_0132__li7807165162812"></a><a name="li7807165162812"></a>/proc/diskstat</p>
-<div class="p" id="cce_10_0132__p15201512173110">Alternatively, you can run the following command:<pre class="screen" id="cce_10_0132__screen59331319172519">iostat -xmt 1</pre>
+</tbody>
+</table>
 </div>
-</li><li id="cce_10_0132__li1880718514285">Threshold:<ul id="cce_10_0132__ul268520417114"><li id="cce_10_0132__li1068554191110">Average usage. The value of ioutil is greater than or equal to 0.99.</li><li id="cce_10_0132__li659354341220">Average I/O queue length. avgqu-sz &gt;=1</li><li id="cce_10_0132__li463526172812">Average I/O transfer volume, iops (w/s) + ioth (wMB/s) &lt; = 1</li></ul>
-<div class="note" id="cce_10_0132__note10906163042814"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__p0853240102816">In some OSs, no data changes during I/O. In this case, calculate the CPU I/O time usage. The value of iowait is greater than 0.8.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__en-us_topic_0000001244261007_table24948715278" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Checking the storage</caption><thead align="left"><tr id="cce_10_0132__en-us_topic_0000001244261007_row94951770273"><th align="left" class="cellrowborder" valign="top" width="22.93%" id="mcps1.3.5.4.2.5.2.4.1.1"><p id="cce_10_0132__en-us_topic_0000001244261007_p34951715272">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.82%" id="mcps1.3.5.4.2.5.2.4.1.2"><p id="cce_10_0132__en-us_topic_0000001244261007_p164953713276">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.25%" id="mcps1.3.5.4.2.5.2.4.1.3"><p id="cce_10_0132__en-us_topic_0000001244261007_p174955714276">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__en-us_topic_0000001244261007_row34978752711"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1520151125414">Disk read-only</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p13529143342016">DiskReadonly</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p249713713271">Periodically perform read and write tests on the system disk and CCE data disks (including the CRI logical disk and Kubelet logical disk) of the node to check the availability of key disks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p164974742711">Detection paths:</p>
+<ul id="cce_10_0132__en-us_topic_0000001244261007_ul15871334132818"><li id="cce_10_0132__en-us_topic_0000001244261007_li19587234112815">/mnt/paas/kubernetes/kubelet/</li><li id="cce_10_0132__en-us_topic_0000001244261007_li19808033154415">/var/lib/docker/</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1232314353441">/var/lib/containerd/</li><li id="cce_10_0132__en-us_topic_0000001244261007_li445844115448">/var/paas/sys/log/cceaddon-npd/</li></ul>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p925152084514">The temporary file <strong id="cce_10_0132__en-us_topic_0000001244261007_b6967103431319">npd-disk-write-ping</strong> is generated in the detection path.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p17833111174618">Currently, additional data disks are not supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row1749757112713"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p2028912816177">Insufficient disk resources</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p114973716277">DiskProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p4497771279">Check the usage of the system disk and CCE data disks (including the CRI logical disk and kubelet logical disk) on the node.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p049717719277"></p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul848018237225"><li id="cce_10_0132__en-us_topic_0000001244261007_li1748012237221">Default threshold: 90%</li><li id="cce_10_0132__en-us_topic_0000001244261007_li448082318227">Source:<pre class="screen" id="cce_10_0132__en-us_topic_0000001244261007_screen15718171814229">df -h</pre>
+</li></ul>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p357833584613">Currently, additional data disks are not supported.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row652213985816"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1661435411711">emptyDir storage pool error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p19824134712129">EmptyDirVolumeGroupStatusError</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p45224397584">Check whether the ephemeral volume group on the node is normal.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1964614101539">Impact: The pod that depends on the storage pool cannot write data to the temporary volume. The temporary volume is remounted as a read-only file system by the kernel due to an I/O error.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1649544615344">Typical scenario: When creating a node, a user configures two data disks as a temporary volume storage pool. The user deletes some data disks by mistake. As a result, the storage pool becomes abnormal.</p>
+</td>
+<td class="cellrowborder" rowspan="2" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul694675316171"><li id="cce_10_0132__en-us_topic_0000001244261007_li294635331719">Detection period: 30s</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1194655311712">Source:<pre class="screen" id="cce_10_0132__en-us_topic_0000001244261007_screen1730112457179">vgs -o vg_name, vg_attr</pre>
+</li><li id="cce_10_0132__en-us_topic_0000001244261007_li179461853101720">Principle: Check whether the VG (storage pool) is in the P state. If yes, some PVs (data disks) are lost.</li><li id="cce_10_0132__en-us_topic_0000001244261007_li6946145317178">Joint scheduling: The scheduler can automatically identify a PV storage pool error and prevent pods that depend on the storage pool from being scheduled to the node.</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1194619530173">Exceptional scenario: The npd add-on cannot detect the loss of all PVs (data disks), resulting in the loss of VGs (storage pools). In this case, kubelet automatically isolates the node, detects the loss of VGs (storage pools), and updates the corresponding resources in <strong id="cce_10_0132__en-us_topic_0000001244261007_b17637957111913">nodestatus.allocatable</strong> to <strong id="cce_10_0132__en-us_topic_0000001244261007_b1086015931917">0</strong>. This prevents pods that depend on the storage pool from being scheduled to the node. The damage of a single PV cannot be detected by this check item, but by the ReadonlyFilesystem check item.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row102785374911"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p8529108185">PV storage pool error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p207911347151214">LocalPvVolumeGroupStatusError</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p027916334910">Check the PV group on the node.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p063762014315">Impact: Pods that depend on the storage pool cannot write data to the persistent volume. The persistent volume is remounted as a read-only file system by the kernel due to an I/O error.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p5448583352">Typical scenario: When creating a node, a user configures two data disks as a persistent volume storage pool. Some data disks are deleted by mistake.</p>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row846942934417"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p18192172115182">Mount point error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p154691829104415">MountPointProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1747082915445">Check the mount point on the node.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1528212414385">Exceptional definition: You cannot access the mount point by running the <strong id="cce_10_0132__en-us_topic_0000001244261007_b1364375693213">cd</strong> command.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p11881753183217">Typical scenario: Network File System (NFS), for example, obsfs and s3fs is mounted to a node. When the connection is abnormal due to network or peer NFS server exceptions, all processes that access the mount point are suspended. For example, during a cluster upgrade, a kubelet is restarted, and all mount points are scanned. If the abnormal mount point is detected, the upgrade fails.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p141531643143416">Alternatively, you can run the following command:</p>
+<pre class="screen" id="cce_10_0132__en-us_topic_0000001244261007_screen83631028111316">for dir in `df -h | grep -v "Mounted on" | awk "{print \\$NF}"`;do cd $dir; done &amp;&amp; echo "ok"</pre>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row12162627450"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p106116421182">Suspended disk I/O</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1516219213453">DiskHung</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1162182184513">Check whether I/O suspension occurs on all disks on the node, that is, whether I/O read and write operations are not responded.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p76931555500">Definition of I/O suspension: The system does not respond to disk I/O requests, and some processes are in the D state.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p8166365514">Typical scenario: Disks cannot respond due to abnormal OS hard disk drivers or severe faults on the underlying network.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul44097139534"><li id="cce_10_0132__en-us_topic_0000001244261007_li178071253283">Check object: all data disks</li><li id="cce_10_0132__en-us_topic_0000001244261007_li7807165162812">Source:<p id="cce_10_0132__en-us_topic_0000001244261007_p72111118317"><a name="cce_10_0132__en-us_topic_0000001244261007_li7807165162812"></a><a name="en-us_topic_0000001244261007_li7807165162812"></a>/proc/diskstat</p>
+<div class="p" id="cce_10_0132__en-us_topic_0000001244261007_p15201512173110">Alternatively, you can run the following command:<pre class="screen" id="cce_10_0132__en-us_topic_0000001244261007_screen59331319172519">iostat -xmt 1</pre>
+</div>
+</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1880718514285">Threshold:<ul id="cce_10_0132__en-us_topic_0000001244261007_ul268520417114"><li id="cce_10_0132__en-us_topic_0000001244261007_li1068554191110">Average usage: ioutil &gt;= 0.99</li><li id="cce_10_0132__en-us_topic_0000001244261007_li659354341220">Average I/O queue length: avgqu-sz &gt;= 1</li><li id="cce_10_0132__en-us_topic_0000001244261007_li463526172812">Average I/O transfer volume: iops (w/s) + ioth (wMB/s) &lt;= 1</li></ul>
+<div class="note" id="cce_10_0132__en-us_topic_0000001244261007_note10906163042814"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__en-us_topic_0000001244261007_p0853240102816">In some OSs, no data changes during I/O. In this case, calculate the CPU I/O time usage. The value of iowait should be greater than 0.8.</p>
 </div></div>
 </li></ul>
 </td>
 </tr>
-<tr id="cce_10_0132__row3985171574511"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__p69851115204518">DiskSlow</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row3985171574511"><td class="cellrowborder" valign="top" width="22.93%" headers="mcps1.3.5.4.2.5.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p159915595188">Slow disk I/O</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p69851115204518">DiskSlow</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__p1398571574515">Check whether slow I/O occurs on the disk of the node.</p>
-<p id="cce_10_0132__p691133195212">Definition of slow I/O: The average response time exceeds the threshold.</p>
-<p id="cce_10_0132__p8921802560">Typical scenario: EVS disks have slow I/Os due to network fluctuation.</p>
+<td class="cellrowborder" valign="top" width="40.82%" headers="mcps1.3.5.4.2.5.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1398571574515">Check whether all disks on the node have slow I/Os, that is, whether I/Os respond slowly.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p8921802560">Typical scenario: EVS disks have slow I/Os due to network fluctuation.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__ul6519330155316"><li id="cce_10_0132__li128591254132810">Check object: all data disks</li><li id="cce_10_0132__li1285912549289">Source:<p id="cce_10_0132__p1748722411311"><a name="cce_10_0132__li1285912549289"></a><a name="li1285912549289"></a>/proc/diskstat</p>
-<div class="p" id="cce_10_0132__p1029519252314">Alternatively, you can run the following command:<pre class="screen" id="cce_10_0132__screen168915347212">iostat -xmt 1</pre>
+<td class="cellrowborder" valign="top" width="36.25%" headers="mcps1.3.5.4.2.5.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul6519330155316"><li id="cce_10_0132__en-us_topic_0000001244261007_li128591254132810">Check object: all data disks</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1285912549289">Source:<p id="cce_10_0132__en-us_topic_0000001244261007_p1748722411311"><a name="cce_10_0132__en-us_topic_0000001244261007_li1285912549289"></a><a name="en-us_topic_0000001244261007_li1285912549289"></a>/proc/diskstat</p>
+<div class="p" id="cce_10_0132__en-us_topic_0000001244261007_p1029519252314">Alternatively, you can run the following command:<pre class="screen" id="cce_10_0132__en-us_topic_0000001244261007_screen168915347212">iostat -xmt 1</pre>
 </div>
-</li><li id="cce_10_0132__li1785935492816">Threshold:<p id="cce_10_0132__p6917738102914"><a name="cce_10_0132__li1785935492816"></a><a name="li1785935492816"></a>Average I/O latency: await &gt; = 5000 ms</p>
+</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1785935492816">Default threshold:<p id="cce_10_0132__en-us_topic_0000001244261007_p6917738102914"><a name="cce_10_0132__en-us_topic_0000001244261007_li1785935492816"></a><a name="en-us_topic_0000001244261007_li1785935492816"></a>Average I/O latency: await &gt;= 5000 ms</p>
 </li></ul>
-<div class="note" id="cce_10_0132__note15410023122915"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__p178314521752">If I/O requests are not responded and the <strong id="cce_10_0132__b230416205719">await</strong> data is not updated. In this case, this check item is invalid.</p>
+<div class="note" id="cce_10_0132__en-us_topic_0000001244261007_note15410023122915"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0132__en-us_topic_0000001244261007_p178314521752">If I/O requests are not responded and the <strong id="cce_10_0132__en-us_topic_0000001244261007_b230416205719">await</strong> data is not updated, this check item is invalid.</p>
 </div></div>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-<p id="cce_10_0132__p1141153045812">The kubelet component has the following default check items, which have bugs or defects. You can fix them by upgrading the cluster or using npd.</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table195521452174319" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Default kubelet check items</caption><thead align="left"><tr id="cce_10_0132__row25985528436"><th align="left" class="cellrowborder" valign="top" width="23.112311231123112%" id="mcps1.3.5.4.2.7.2.4.1.1"><p id="cce_10_0132__p1059895213434">Check Item</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__en-us_topic_0000001244261007_table991817246551" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Other check items</caption><thead align="left"><tr id="cce_10_0132__en-us_topic_0000001244261007_row17919924115518"><th align="left" class="cellrowborder" valign="top" width="23.112311231123112%" id="mcps1.3.5.4.2.6.2.4.1.1"><p id="cce_10_0132__en-us_topic_0000001244261007_p1891915245556">Check Item</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="40.49404940494049%" id="mcps1.3.5.4.2.7.2.4.1.2"><p id="cce_10_0132__p659835218435">Function</p>
+<th align="left" class="cellrowborder" valign="top" width="40.49404940494049%" id="mcps1.3.5.4.2.6.2.4.1.2"><p id="cce_10_0132__en-us_topic_0000001244261007_p69192249556">Function</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="36.393639363936394%" id="mcps1.3.5.4.2.7.2.4.1.3"><p id="cce_10_0132__p6598135254318">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="36.393639363936394%" id="mcps1.3.5.4.2.6.2.4.1.3"><p id="cce_10_0132__en-us_topic_0000001244261007_p89196249551">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0132__row859855216439"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.7.2.4.1.1 "><p id="cce_10_0132__p115986525437">PIDPressure</p>
+<tbody><tr id="cce_10_0132__en-us_topic_0000001244261007_row8192230115610"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.6.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p3451528191910">Abnormal NTP</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1211593117560">NTPProblem</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.7.2.4.1.2 "><p id="cce_10_0132__p19598185213439">Check whether PIDs are sufficient.</p>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.6.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p311543119562">Check whether the node clock synchronization service ntpd or chronyd is running properly and whether a system time drift is caused.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.7.2.4.1.3 "><ul id="cce_10_0132__ul10652201210213"><li id="cce_10_0132__li16652812162116">Interval: 10 seconds</li><li id="cce_10_0132__li146526128212">Threshold: 90%</li><li id="cce_10_0132__li1165261219211">Defect: In community version 1.23.1 and earlier versions, this check item becomes invalid when over 65535 PIDs are used. For details, see <a href="https://github.com/kubernetes/kubernetes/issues/107107" target="_blank" rel="noopener noreferrer">issue 107107</a>. In community version 1.24 and earlier versions, thread-max is not considered in this check item.</li></ul>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.6.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p10115123114567">Default clock offset threshold: 8000 ms</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row1759895214432"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.7.2.4.1.1 "><p id="cce_10_0132__p159855217436">MemoryPressure</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row1931541391210"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.6.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1254725281912">Process D error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p23709741314">ProcessD</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.7.2.4.1.2 "><p id="cce_10_0132__p18598115210439">Check whether the allocable memory for the containers is sufficient.</p>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.6.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p73701476137">Check whether there is a process D on the node.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.7.2.4.1.3 "><ul id="cce_10_0132__ul182919104218"><li id="cce_10_0132__li16291104219">Interval: 10 seconds</li><li id="cce_10_0132__li1029110182115">Threshold: Max. 100 MiB</li><li id="cce_10_0132__li9291310112110">Allocable = Total memory of a node – Reserved memory of a node</li><li id="cce_10_0132__li12913101213">Defect: This check item checks only the memory consumed by containers, and does not consider that consumed by other elements on the node.</li></ul>
+<td class="cellrowborder" rowspan="2" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.6.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p18976103221315">Default threshold: 10 abnormal processes detected for three consecutive times</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p173704791313">Source:</p>
+<ul id="cce_10_0132__en-us_topic_0000001244261007_ul1737010716138"><li id="cce_10_0132__en-us_topic_0000001244261007_li137012741320">/proc/{PID}/stat</li><li id="cce_10_0132__en-us_topic_0000001244261007_li83707781318">Alternately, you can run the <strong id="cce_10_0132__en-us_topic_0000001244261007_b731118224388">ps aux</strong> command.</li></ul>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p73703718137">Exceptional scenario: ProcessD ignores the resident D processes (heartbeat and update) on which the SDI driver on the BMS node depends.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1860519498129"></p>
 </td>
 </tr>
-<tr id="cce_10_0132__row11598185264317"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.7.2.4.1.1 "><p id="cce_10_0132__p359855212431">DiskPressure</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row0605114920127"><td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.6.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p13814149206">Process Z error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1832332111319">ProcessZ</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.7.2.4.1.2 "><p id="cce_10_0132__p25986526438">Check the disk usage and inodes usage of the kubelet and Docker disks.</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.5.4.2.6.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p932392141311">Check whether the node has processes in Z state.</p>
 </td>
-<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.7.2.4.1.3 "><p id="cce_10_0132__p2598152174319">Interval: 10 seconds</p>
-<p id="cce_10_0132__p1059835264318">Threshold: 90%</p>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row161198651218"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.6.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p12496026172018">ResolvConf error</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p123412751218">ResolvConfFileProblem</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.6.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p2034187111218">Check whether the ResolvConf file is lost.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p734137101215">Check whether the ResolvConf file is normal.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p123413711218">Exceptional definition: No upstream domain name resolution server (nameserver) is included.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.6.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p5347713123">Object: <strong id="cce_10_0132__en-us_topic_0000001244261007_b83131505377">/etc/resolv.conf</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row164381610111213"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.6.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p9227173419208">Existing scheduled event</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p12438141013123">ScheduledEvent</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.6.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p164381010121213">Check whether scheduled live migration events exist on the node. A live migration plan event is usually triggered by a hardware fault and is an automatic fault rectification method at the IaaS layer.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p35542221815">Typical scenario: The host is faulty. For example, the fan is damaged or the disk has bad sectors. As a result, live migration is triggered for VMs.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.6.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p20500123151810">Source:</p>
+<ul id="cce_10_0132__en-us_topic_0000001244261007_ul175001023151816"><li id="cce_10_0132__en-us_topic_0000001244261007_li450022312185">http://169.254.169.254/meta-data/latest/events/scheduled</li></ul>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1050112238180">This check item is an Alpha feature and is disabled by default.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1141153045812">The kubelet component has the following default check items, which have bugs or defects. You can fix them by upgrading the cluster or using npd.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__en-us_topic_0000001244261007_table195521452174319" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Default kubelet check items</caption><thead align="left"><tr id="cce_10_0132__en-us_topic_0000001244261007_row25985528436"><th align="left" class="cellrowborder" valign="top" width="23.112311231123112%" id="mcps1.3.5.4.2.8.2.4.1.1"><p id="cce_10_0132__en-us_topic_0000001244261007_p1059895213434">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="40.49404940494049%" id="mcps1.3.5.4.2.8.2.4.1.2"><p id="cce_10_0132__en-us_topic_0000001244261007_p659835218435">Function</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.393639363936394%" id="mcps1.3.5.4.2.8.2.4.1.3"><p id="cce_10_0132__en-us_topic_0000001244261007_p6598135254318">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0132__en-us_topic_0000001244261007_row859855216439"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.8.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p48922169211">Insufficient PID resources</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p115986525437">PIDPressure</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.8.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p19598185213439">Check whether PIDs are sufficient.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.8.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul10652201210213"><li id="cce_10_0132__en-us_topic_0000001244261007_li16652812162116">Interval: 10 seconds</li><li id="cce_10_0132__en-us_topic_0000001244261007_li146526128212">Threshold: 90%</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1165261219211">Defect: In community version 1.23.1 and earlier versions, this check item becomes invalid when over 65535 PIDs are used. For details, see <a href="https://github.com/kubernetes/kubernetes/issues/107107" target="_blank" rel="noopener noreferrer">issue 107107</a>. In community version 1.24 and earlier versions, thread-max is not considered in this check item.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row1759895214432"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.8.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p6932102810213">Insufficient memory</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p159855217436">MemoryPressure</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.8.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p18598115210439">Check whether the allocable memory for the containers is sufficient.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.8.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul182919104218"><li id="cce_10_0132__en-us_topic_0000001244261007_li16291104219">Interval: 10 seconds</li><li id="cce_10_0132__en-us_topic_0000001244261007_li1029110182115">Threshold: max. 100 MiB</li><li id="cce_10_0132__en-us_topic_0000001244261007_li9291310112110">Allocable = Total memory of a node – Reserved memory of a node</li><li id="cce_10_0132__en-us_topic_0000001244261007_li12913101213">Defect: This check item checks only the memory consumed by containers, and does not consider that consumed by other elements on the node.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row11598185264317"><td class="cellrowborder" valign="top" width="23.112311231123112%" headers="mcps1.3.5.4.2.8.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p173361134192113">Insufficient disk resources</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p359855212431">DiskPressure</p>
+</td>
+<td class="cellrowborder" valign="top" width="40.49404940494049%" headers="mcps1.3.5.4.2.8.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p25986526438">Check the disk usage and inodes usage of the kubelet and Docker disks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.393639363936394%" headers="mcps1.3.5.4.2.8.2.4.1.3 "><ul id="cce_10_0132__en-us_topic_0000001244261007_ul18127142317248"><li id="cce_10_0132__en-us_topic_0000001244261007_li612762313240">Interval: 10 seconds</li><li id="cce_10_0132__en-us_topic_0000001244261007_li940617271242">Threshold: 90%</li></ul>
 </td>
 </tr>
 </tbody>
@@ -332,177 +375,53 @@
 </div>
 </li></ul>
 </div>
-<div class="section" id="cce_10_0132__section1471610580474"><a name="cce_10_0132__section1471610580474"></a><a name="section1471610580474"></a><h4 class="sectiontitle">Node-problem-controller Fault Isolation</h4><div class="note" id="cce_10_0132__note57048194567"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__p07047195569">Fault isolation is supported only by add-ons of 1.16.0 and later versions.</p>
-<p id="cce_10_0132__p186734461784">When installing the npd add-on, set <strong id="cce_10_0132__b9462014175915">npc.enable</strong> to <strong id="cce_10_0132__b8471114125910">true</strong> to deploy dual Node-problem-controller (NPC). You can deploy NPC as single-instance but such NPC does not ensure high availability.</p>
-<p id="cce_10_0132__p14519162082">By default, if multiple nodes become faulty, NPC adds taints to only one node. You can set <strong id="cce_10_0132__b12512420324">npc.maxTaintedNode</strong> to increase the threshold. When the fault is rectified, NPC is not running and taints remain. You need to manually clear the taints or start NPC.</p>
+<div class="section" id="cce_10_0132__en-us_topic_0000001244261007_section1471610580474"><a name="cce_10_0132__en-us_topic_0000001244261007_section1471610580474"></a><a name="en-us_topic_0000001244261007_section1471610580474"></a><h4 class="sectiontitle">Node-problem-controller Fault Isolation</h4><div class="note" id="cce_10_0132__en-us_topic_0000001244261007_note57048194567"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__en-us_topic_0000001244261007_p07047195569">Fault isolation is supported only by add-ons of 1.16.0 and later versions.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p14519162082">By default, if multiple nodes become faulty, NPC adds taints to up to 10% of the nodes. You can set <strong id="cce_10_0132__en-us_topic_0000001244261007_b13370194181513">npc.maxTaintedNode</strong> to increase the threshold.</p>
 </div></div>
-<p id="cce_10_0132__p321713044916">The open source NPD plug-in provides fault detection but not fault isolation. CCE enhances the node-problem-controller (NPC) based on the open source NPD. This component is implemented based on the Kubernetes <a href="https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/#taint-based-evictions" target="_blank" rel="noopener noreferrer">node controller</a>. For faults reported by NPD, NPC automatically adds taints to nodes for node fault isolation.</p>
-<p id="cce_10_0132__p746334873319">You can modify <strong id="cce_10_0132__b1196310595418">add-onnpc.customConditionToTaint</strong> according to the following table to configure fault isolation rules.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p321713044916">The open source NPD plug-in provides fault detection but not fault isolation. CCE enhances the node-problem-controller (NPC) based on the open source NPD. This component is implemented based on the Kubernetes <a href="https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/#taint-based-evictions" target="_blank" rel="noopener noreferrer">node controller</a>. For faults reported by NPD, NPC automatically adds taints to nodes for node fault isolation.</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table205378534248" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Parameters</caption><thead align="left"><tr id="cce_10_0132__row6537185313242"><th align="left" class="cellrowborder" valign="top" width="32.690000000000005%" id="mcps1.3.6.5.2.4.1.1"><p id="cce_10_0132__p105372053142420">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0132__en-us_topic_0000001244261007_table205378534248"></a><a name="en-us_topic_0000001244261007_table205378534248"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__en-us_topic_0000001244261007_table205378534248" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Parameters</caption><thead align="left"><tr id="cce_10_0132__en-us_topic_0000001244261007_row6537185313242"><th align="left" class="cellrowborder" valign="top" width="32.690000000000005%" id="mcps1.3.6.4.2.4.1.1"><p id="cce_10_0132__en-us_topic_0000001244261007_p105372053142420">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="34.300000000000004%" id="mcps1.3.6.5.2.4.1.2"><p id="cce_10_0132__p135371653202410">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="34.300000000000004%" id="mcps1.3.6.4.2.4.1.2"><p id="cce_10_0132__en-us_topic_0000001244261007_p135371653202410">Description</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="33.01%" id="mcps1.3.6.5.2.4.1.3"><p id="cce_10_0132__p0537353162412">Default</p>
+<th align="left" class="cellrowborder" valign="top" width="33.01%" id="mcps1.3.6.4.2.4.1.3"><p id="cce_10_0132__en-us_topic_0000001244261007_p0537353162412">Default</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0132__row25375532245"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p05371853192416">npc.enable</p>
+<tbody><tr id="cce_10_0132__en-us_topic_0000001244261007_row25375532245"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p05371853192416">npc.enable</p>
 </td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p6537155372414">Whether to enable NPC</p>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p6537155372414">Whether to enable NPC</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p1260511032812">NPC cannot be disabled in 1.18.0 or later versions.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p1353716531240">true</p>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.4.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p1353716531240">true</p>
 </td>
 </tr>
-<tr id="cce_10_0132__row1453705322418"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p853718533245">npc.customCondtionToTaint</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row12539185322410"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p053910538244">npc. maxTaintedNode</p>
 </td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p1453718538242">Fault isolation rules</p>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p15539105352410">Check how many nodes can npc add taints to for mitigating the impact when a single fault occurs on multiple nodes.</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p9569114524816">The int format and percentage format are supported.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p1053885342417">See <a href="#cce_10_0132__table147438134911">Table 7</a>.</p>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.4.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p653945332418">10%</p>
+<p id="cce_10_0132__en-us_topic_0000001244261007_p7505142243916">Value range:</p>
+<ul id="cce_10_0132__en-us_topic_0000001244261007_ul932916246394"><li id="cce_10_0132__en-us_topic_0000001244261007_li1360112793913">The value is in int format and ranges from 1 to infinity.</li><li id="cce_10_0132__en-us_topic_0000001244261007_li5330102473914">The value ranges from 1% to 100%, in percentage. The minimum value of this parameter multiplied by the number of cluster nodes is 1.</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0132__row2538115312420"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p8538753112412">npc.customConditionToTaint[i]</p>
+<tr id="cce_10_0132__en-us_topic_0000001244261007_row8539553142410"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.4.2.4.1.1 "><p id="cce_10_0132__en-us_topic_0000001244261007_p12539145352419">npc.affinity</p>
 </td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p6538653122419">Fault isolation rule items</p>
+<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.4.2.4.1.2 "><p id="cce_10_0132__en-us_topic_0000001244261007_p85394532241">Node affinity of the controller</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p3538185322412">N/A</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row15538165316247"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p5538653202411">npc.customConditionToTaint[i].</p>
-<p id="cce_10_0132__p1853820539245">condition.status</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p1053825315249">Fault status</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p175381953132412">true</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row1653815536240"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p12538153152412">npc.customConditionToTaint[i].</p>
-<p id="cce_10_0132__p25381153112414">condition.type</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p4538195310249">Fault type</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p17538175316246">N/A</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row185381753102412"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p953865316248">npc.customConditionToTaint[i].</p>
-<p id="cce_10_0132__p125389534245">enable</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p35381853172414">Whether to enable the fault isolation rule.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p15538135310245">false</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row145382531245"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p1553819539249">npc.customConditionToTaint[i].</p>
-<p id="cce_10_0132__p18538195316242">.taint.effect</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p1653814531242">Fault isolation effect</p>
-<p id="cce_10_0132__p953919533245">NoSchedule, PreferNoSchedule, or NoExecute</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p6539115342418">NoSchedule</p>
-<p id="cce_10_0132__p1653955311248">Value options: <strong id="cce_10_0132__b794502819414">NoSchedule</strong>, <strong id="cce_10_0132__b12522309420">PreferNoSchedule</strong>, and <strong id="cce_10_0132__b5405113218416">NoExecute</strong></p>
-</td>
-</tr>
-<tr id="cce_10_0132__row12539185322410"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p053910538244">npc. maxTaintedNode</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p15539105352410">Number of nodes in a cluster that can be tainted by NPC</p>
-<p id="cce_10_0132__p9569114524816">The int format and percentage format are supported.</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p653945332418">1</p>
-<p id="cce_10_0132__p7505142243916">Values:</p>
-<ul id="cce_10_0132__ul932916246394"><li id="cce_10_0132__li1360112793913">The value is in int format and ranges from 1 to infinity.</li><li id="cce_10_0132__li5330102473914">The value ranges from 1% to 100%, in percentage. The minimum value of this parameter multiplied by the number of cluster nodes is 1.</li></ul>
-</td>
-</tr>
-<tr id="cce_10_0132__row8539553142410"><td class="cellrowborder" valign="top" width="32.690000000000005%" headers="mcps1.3.6.5.2.4.1.1 "><p id="cce_10_0132__p12539145352419">Npc.affinity</p>
-</td>
-<td class="cellrowborder" valign="top" width="34.300000000000004%" headers="mcps1.3.6.5.2.4.1.2 "><p id="cce_10_0132__p85394532241">Node affinity of the controller</p>
-</td>
-<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.5.2.4.1.3 "><p id="cce_10_0132__p155391653132410">N/A</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><a name="cce_10_0132__table147438134911"></a><a name="table147438134911"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0132__table147438134911" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Fault isolation rule configuration</caption><thead align="left"><tr id="cce_10_0132__row1213216804910"><th align="left" class="cellrowborder" valign="top" width="24.84751524847515%" id="mcps1.3.6.6.2.4.1.1"><p id="cce_10_0132__p1513238104914">Fault</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30.4969503049695%" id="mcps1.3.6.6.2.4.1.2"><p id="cce_10_0132__p213210819494">Fault Details</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="44.65553444655534%" id="mcps1.3.6.6.2.4.1.3"><p id="cce_10_0132__p1613317854912">Taint</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0132__row1413388114912"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p1713315810491">DiskReadonly</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p1913348174911">Disk read-only</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p191338820498"><strong id="cce_10_0132__b17304602590">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row81335844916"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p1813317814496">DiskProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p413311874918">The disk space is insufficient, and key logical disks are detached.</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p4133581497"><strong id="cce_10_0132__b69508015916">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row713313824914"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p11133128124913">FrequentKubeletRestart</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p19133086491">kubelet restarts frequently.</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p413318874919"><strong id="cce_10_0132__b895219013596">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row1213311824920"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p16133118184914">FrequentDockerRestart</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p1413388164914">Docker restarts frequently.</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p1313315804919"><strong id="cce_10_0132__b1095570115917">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row71336824918"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p4133148114916">FrequentContainerdRestart</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p16133687494">containerd restarts frequently.</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p14133168134917"><strong id="cce_10_0132__b39572065913">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row19133198164912"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p1013318820496">KUBEPROXYProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p15133198144914">kube-proxy is abnormal.</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p61331989495"><strong id="cce_10_0132__b1195911012592">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row131333804918"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p513308144915">PIDProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p113318824915">Insufficient PIDs</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p713314816496"><strong id="cce_10_0132__b1296111016597">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row1913318819495"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p113319834920">FDProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p91331882491">Insufficient file handles</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p151331984493"><strong id="cce_10_0132__b49635018595">NoSchedule</strong>: No new pods allowed.</p>
-</td>
-</tr>
-<tr id="cce_10_0132__row3133584499"><td class="cellrowborder" valign="top" width="24.84751524847515%" headers="mcps1.3.6.6.2.4.1.1 "><p id="cce_10_0132__p13133148194911">MemoryProblem</p>
-</td>
-<td class="cellrowborder" valign="top" width="30.4969503049695%" headers="mcps1.3.6.6.2.4.1.2 "><p id="cce_10_0132__p41341588495">Insufficient node memory</p>
-</td>
-<td class="cellrowborder" valign="top" width="44.65553444655534%" headers="mcps1.3.6.6.2.4.1.3 "><p id="cce_10_0132__p6134686499"><strong id="cce_10_0132__b896520105910">NoSchedule</strong>: No new pods allowed.</p>
+<td class="cellrowborder" valign="top" width="33.01%" headers="mcps1.3.6.4.2.4.1.3 "><p id="cce_10_0132__en-us_topic_0000001244261007_p155391653132410">N/A</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
 </div>
-<div class="section" id="cce_10_0132__section1424163811319"><h4 class="sectiontitle">Collecting Prometheus Metrics</h4><p id="cce_10_0132__p1278014271146">The NPD daemon pod exposes Prometheus metric data on port 19901. By default, the NPD pod is added with the annotation <strong id="cce_10_0132__b370543615145">metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"prometheus","path":"/metrics","port":"19901","names":""}]'</strong>. You can build a Prometheus collector to identify and obtain NPD metrics from <strong id="cce_10_0132__b944214591169">http://{{NpdPodIP}}:{{NpdPodPort}}/metrics</strong>.</p>
-<div class="note" id="cce_10_0132__note103331531195320"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__p1733593118531">If the npd add-on version is earlier than 1.16.5, the exposed port of Prometheus metrics is <strong id="cce_10_0132__b176723287178">20257</strong>.</p>
+<div class="section" id="cce_10_0132__en-us_topic_0000001244261007_section1424163811319"><h4 class="sectiontitle">Collecting Prometheus Metrics</h4><p id="cce_10_0132__en-us_topic_0000001244261007_p1278014271146">The NPD daemon pod exposes Prometheus metric data on port 19901. By default, the NPD pod is added with the annotation <strong id="cce_10_0132__en-us_topic_0000001244261007_b370543615145">metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"prometheus","path":"/metrics","port":"19901","names":""}]'</strong>. You can build a Prometheus collector to identify and obtain NPD metrics from <strong id="cce_10_0132__en-us_topic_0000001244261007_b944214591169">http://{{NpdPodIP}}:{{NpdPodPort}}/metrics</strong>.</p>
+<div class="note" id="cce_10_0132__en-us_topic_0000001244261007_note103331531195320"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0132__en-us_topic_0000001244261007_p1733593118531">If the npd add-on version is earlier than 1.16.5, the exposed port of Prometheus metrics is <strong id="cce_10_0132__en-us_topic_0000001244261007_b176723287178">20257</strong>.</p>
 </div></div>
-<p id="cce_10_0132__p207808271140">Currently, the metric data includes <strong id="cce_10_0132__b129718519273">problem_counter</strong> and <strong id="cce_10_0132__b826910717274">problem_gauge</strong>, as shown below.</p>
-<pre class="screen" id="cce_10_0132__screen1898505318417"># HELP problem_counter Number of times a specific type of problem have occurred.
+<p id="cce_10_0132__en-us_topic_0000001244261007_p207808271140">Currently, the metric data includes <strong id="cce_10_0132__en-us_topic_0000001244261007_b129718519273">problem_counter</strong> and <strong id="cce_10_0132__en-us_topic_0000001244261007_b826910717274">problem_gauge</strong>, as shown below.</p>
+<pre class="screen" id="cce_10_0132__en-us_topic_0000001244261007_screen1898505318417"># HELP problem_counter Number of times a specific type of problem have occurred.
 # TYPE problem_counter counter
 problem_counter{reason="DockerHung"} 0
 problem_counter{reason="DockerStart"} 0
diff --git a/docs/cce/umn/cce_10_0139.html b/docs/cce/umn/cce_10_0139.html
index cf5ed78e..df93bcee 100644
--- a/docs/cce/umn/cce_10_0139.html
+++ b/docs/cce/umn/cce_10_0139.html
@@ -146,7 +146,7 @@ kubectl exec -it podname -c containername bash</pre>
 <div class="notice" id="cce_10_0139__note10339910193519"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0139__p133911104351">Resource names cannot be updated.</p>
 </div></div>
 <p id="cce_10_0139__p17348134894517"><strong id="cce_10_0139__b1687517815316">apply*</strong></p>
-<p id="cce_10_0139__p19348174824514">The <strong id="cce_10_0139__b1921172612543">apply</strong> command provides a more strict control on resource updating than <strong id="cce_10_0139__b12982204475517">patch</strong> and <strong id="cce_10_0139__b16365194710554">edit</strong> commands. The <strong id="cce_10_0139__b165890325617">apply</strong> command applies a configuration to a resource and maintains a set of configuration files in source control. Whenever there is an update, the configuration file is pushed to the server, and then the kubectl <strong id="cce_10_0139__b3271623145917">apply</strong> command applies the latest configuration to the resource. The Kubernetes compares the new configuration file with the original one and updates only the changed configuration instead of the whole file. The configuration that is not contained in the <strong id="cce_10_0139__b20182121210106">-f</strong> flag will remain unchanged. Unlike the <strong id="cce_10_0139__b1230317108526">replace</strong> command which deletes the resource and creates a new one, the <strong id="cce_10_0139__b133041210175212">apply</strong> command directly updates the original resource. Similar to the git operation, the <strong id="cce_10_0139__b1586387101315">apply</strong> command adds an annotation to the resource to mark the current apply.</p>
+<p id="cce_10_0139__p19348174824514">The <strong id="cce_10_0139__b1921172612543">apply</strong> command provides a more strict control on resource updating than <strong id="cce_10_0139__b12982204475517">patch</strong> and <strong id="cce_10_0139__b16365194710554">edit</strong> commands. The <strong id="cce_10_0139__b165890325617">apply</strong> command applies a configuration to a resource and maintains a set of configuration files in source control. Whenever there is an update, the configuration file is pushed to the server, and then the kubectl <strong id="cce_10_0139__b8568153011477">apply</strong> command applies the latest configuration to the resource. The Kubernetes compares the new configuration file with the original one and updates only the changed configuration instead of the whole file. The configuration that is not contained in the <strong id="cce_10_0139__b20182121210106">-f</strong> flag will remain unchanged. Unlike the <strong id="cce_10_0139__b1230317108526">replace</strong> command which deletes the resource and creates a new one, the <strong id="cce_10_0139__b133041210175212">apply</strong> command directly updates the original resource. Similar to the git operation, the <strong id="cce_10_0139__b1586387101315">apply</strong> command adds an annotation to the resource to mark the current apply.</p>
 <pre class="screen" id="cce_10_0139__screen2875112953610">kubectl apply -f</pre>
 <p id="cce_10_0139__p23488489456"><strong id="cce_10_0139__b1122801693111">patch</strong></p>
 <p id="cce_10_0139__p1234884824518">If you want to modify attributes of a running container without first deleting the container or using the <strong id="cce_10_0139__b116294617221">replace</strong> command, the <strong id="cce_10_0139__b11555328102214">patch</strong> command is to the rescue. The <strong id="cce_10_0139__b9307161152315">patch</strong> command updates field(s) of a resource using strategic merge patch, a JSON merge patch, or a JSON patch. For example, to change a pod label from <strong id="cce_10_0139__b1895214246257">app=nginx1</strong> to <strong id="cce_10_0139__b8964637172517">app=nginx2</strong> while the pod is running, use the following command:</p>
diff --git a/docs/cce/umn/cce_10_0141.html b/docs/cce/umn/cce_10_0141.html
index 71492b27..db6c148b 100644
--- a/docs/cce/umn/cce_10_0141.html
+++ b/docs/cce/umn/cce_10_0141.html
@@ -15,11 +15,11 @@
 <p id="cce_10_0141__p1428853218123">Container:</p>
 <pre class="screen" id="cce_10_0141__screen11900202601214">cd /usr/local/nvidia/bin &amp;&amp; ./nvidia-smi</pre>
 <p id="cce_10_0141__p7254950101912">If GPU information is returned, the device is available and the add-on is successfully installed.</p>
-<p id="cce_10_0141__p78452015208"><span><img id="cce_10_0141__image5372171217135" src="en-us_image_0000001238225460.png"></span></p>
+<p id="cce_10_0141__p78452015208"><span><img id="cce_10_0141__image5372171217135" src="en-us_image_0000001518062812.png"></span></p>
 </div>
-<div class="section" id="cce_10_0141__section95451728192112"><a name="cce_10_0141__section95451728192112"></a><a name="section95451728192112"></a><h4 class="sectiontitle">Obtaining the Driver Link from Public Network</h4><ol id="cce_10_0141__ol1138125974915"><li id="cce_10_0141__li19138125912498"><span>Log in to the CCE console.</span></li><li id="cce_10_0141__li111387599493"><span>Click <strong id="cce_10_0141__b7473141016405">Create Node</strong> and select the GPU node to be created in the <strong id="cce_10_0141__b13473161014016">Specifications</strong> area. The GPU card model of the node is displayed in the lower part of the page.</span></li></ol><ol start="3" id="cce_10_0141__ol195031456154814"><li id="cce_10_0141__li165032056184815"><span>Visit <em id="cce_10_0141__i2070996145418"><a href="https://www.nvidia.com/Download/Find.aspx?lang=en" target="_blank" rel="noopener noreferrer">https://www.nvidia.com/Download/Find.aspx?lang=en</a></em>.</span></li><li id="cce_10_0141__li16232124410505"><span>Select the driver information on the <span class="uicontrol" id="cce_10_0141__uicontrol1291212498541"><b>NVIDIA Driver Downloads</b></span> page, as shown in <a href="#cce_10_0141__fig11696366517">Figure 1</a>. <span class="uicontrol" id="cce_10_0141__uicontrol1650164444518"><b>Operating System</b></span> must be <strong id="cce_10_0141__b10981947121910">Linux 64-bit</strong>.</span><p><div class="fignone" id="cce_10_0141__fig11696366517"><a name="cce_10_0141__fig11696366517"></a><a name="fig11696366517"></a><span class="figcap"><b>Figure 1 </b>Setting parameters</span><br><span><img id="cce_10_0141__image18514163918398" src="en-us_image_0000001531533921.png"></span></div>
-</p></li><li id="cce_10_0141__li1682301014493"><span>After confirming the driver information, click <span class="uicontrol" id="cce_10_0141__uicontrol1411775314551"><b>SEARCH</b></span>. A page is displayed, showing the driver information, as shown in <a href="#cce_10_0141__fig7873421145213">Figure 2</a>. Click <span class="uicontrol" id="cce_10_0141__uicontrol163131533185618"><b>DOWNLOAD</b></span>.</span><p><div class="fignone" id="cce_10_0141__fig7873421145213"><a name="cce_10_0141__fig7873421145213"></a><a name="fig7873421145213"></a><span class="figcap"><b>Figure 2 </b>Driver information</span><br><span><img id="cce_10_0141__image6928629163818" src="en-us_image_0000001531373685.png"></span></div>
-</p></li><li id="cce_10_0141__li624514474513"><span>Obtain the driver link in either of the following ways:</span><p><ul id="cce_10_0141__ul18225815213"><li id="cce_10_0141__li68351817115313">Method 1: As shown in <a href="#cce_10_0141__fig5901194614534">Figure 3</a>, find <em id="cce_10_0141__i964302410817">url=/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run</em> in the browser address box. Then, supplement it to obtain the driver link <a href="https://us.download.nvidia.com/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run" target="_blank" rel="noopener noreferrer">https://us.download.nvidia.com/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run</a>. By using this method, you must bind an EIP to each GPU node.</li><li id="cce_10_0141__li193423205231">Method 2: As shown in <a href="#cce_10_0141__fig5901194614534">Figure 3</a>, click <span class="uicontrol" id="cce_10_0141__uicontrol1435254915542"><b>AGREE &amp; DOWNLOAD</b></span> to download the driver. Then, upload the driver to OBS and record the OBS URL. By using this method, you do not need to bind an EIP to GPU nodes.<div class="fignone" id="cce_10_0141__fig5901194614534"><a name="cce_10_0141__fig5901194614534"></a><a name="fig5901194614534"></a><span class="figcap"><b>Figure 3 </b>Obtaining the link</span><br><span><img id="cce_10_0141__image293362819366" src="en-us_image_0000001531533045.png"></span></div>
+<div class="section" id="cce_10_0141__section95451728192112"><a name="cce_10_0141__section95451728192112"></a><a name="section95451728192112"></a><h4 class="sectiontitle">Obtaining the Driver Link from Public Network</h4><ol id="cce_10_0141__ol1138125974915"><li id="cce_10_0141__li19138125912498"><span>Log in to the CCE console.</span></li><li id="cce_10_0141__li111387599493"><span>Click <strong id="cce_10_0141__b7473141016405">Create Node</strong> and select the GPU node to be created in the <strong id="cce_10_0141__b13473161014016">Specifications</strong> area. The GPU card model of the node is displayed in the lower part of the page.</span></li></ol><ol start="3" id="cce_10_0141__ol195031456154814"><li id="cce_10_0141__li165032056184815"><span>Visit <em id="cce_10_0141__i2070996145418"><a href="https://www.nvidia.com/Download/Find.aspx?lang=en" target="_blank" rel="noopener noreferrer">https://www.nvidia.com/Download/Find.aspx?lang=en</a></em>.</span></li><li id="cce_10_0141__li16232124410505"><span>Select the driver information on the <span class="uicontrol" id="cce_10_0141__uicontrol1291212498541"><b>NVIDIA Driver Downloads</b></span> page, as shown in <a href="#cce_10_0141__fig11696366517">Figure 1</a>. <span class="uicontrol" id="cce_10_0141__uicontrol1650164444518"><b>Operating System</b></span> must be <strong id="cce_10_0141__b10981947121910">Linux 64-bit</strong>.</span><p><div class="fignone" id="cce_10_0141__fig11696366517"><a name="cce_10_0141__fig11696366517"></a><a name="fig11696366517"></a><span class="figcap"><b>Figure 1 </b>Setting parameters</span><br><span><img id="cce_10_0141__image18514163918398" src="en-us_image_0000001518062808.png"></span></div>
+</p></li><li id="cce_10_0141__li1682301014493"><span>After confirming the driver information, click <span class="uicontrol" id="cce_10_0141__uicontrol1411775314551"><b>SEARCH</b></span>. A page is displayed, showing the driver information, as shown in <a href="#cce_10_0141__fig7873421145213">Figure 2</a>. Click <span class="uicontrol" id="cce_10_0141__uicontrol163131533185618"><b>DOWNLOAD</b></span>.</span><p><div class="fignone" id="cce_10_0141__fig7873421145213"><a name="cce_10_0141__fig7873421145213"></a><a name="fig7873421145213"></a><span class="figcap"><b>Figure 2 </b>Driver information</span><br><span><img id="cce_10_0141__image6928629163818" src="en-us_image_0000001517743660.png"></span></div>
+</p></li><li id="cce_10_0141__li624514474513"><span>Obtain the driver link in either of the following ways:</span><p><ul id="cce_10_0141__ul18225815213"><li id="cce_10_0141__li68351817115313">Method 1: As shown in <a href="#cce_10_0141__fig5901194614534">Figure 3</a>, find <em id="cce_10_0141__i964302410817">url=/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run</em> in the browser address box. Then, supplement it to obtain the driver link <a href="https://us.download.nvidia.com/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run" target="_blank" rel="noopener noreferrer">https://us.download.nvidia.com/tesla/470.103.01/NVIDIA-Linux-x86_64-470.103.01.run</a>. By using this method, you must bind an EIP to each GPU node.</li><li id="cce_10_0141__li193423205231">Method 2: As shown in <a href="#cce_10_0141__fig5901194614534">Figure 3</a>, click <span class="uicontrol" id="cce_10_0141__uicontrol1435254915542"><b>AGREE &amp; DOWNLOAD</b></span> to download the driver. Then, upload the driver to OBS and record the OBS URL. By using this method, you do not need to bind an EIP to GPU nodes.<div class="fignone" id="cce_10_0141__fig5901194614534"><a name="cce_10_0141__fig5901194614534"></a><a name="fig5901194614534"></a><span class="figcap"><b>Figure 3 </b>Obtaining the link</span><br><span><img id="cce_10_0141__image293362819366" src="en-us_image_0000001517903240.png"></span></div>
 </li></ul>
 </p></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_10_0142.html b/docs/cce/umn/cce_10_0142.html
index 988a1f98..3914fdb6 100644
--- a/docs/cce/umn/cce_10_0142.html
+++ b/docs/cce/umn/cce_10_0142.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">NodePort</h1>
 <div id="body1553224785332"><div class="section" id="cce_10_0142__section13654155944916"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0142__p028915126124">A Service is exposed on each node's IP address at a static port (NodePort). A ClusterIP Service, to which the NodePort Service will route, is automatically created. By requesting &lt;NodeIP&gt;:&lt;NodePort&gt;, you can access a NodePort Service from outside the cluster.</p>
-<div class="fignone" id="cce_10_0142__fig6819133414131"><span class="figcap"><b>Figure 1 </b>NodePort access</span><br><span><img id="cce_10_0142__image10510139711" src="en-us_image_0000001199501230.png"></span></div>
+<div class="fignone" id="cce_10_0142__fig6819133414131"><span class="figcap"><b>Figure 1 </b>NodePort access</span><br><span><img id="cce_10_0142__image10510139711" src="en-us_image_0000001517743380.png"></span></div>
 </div>
 <div class="section" id="cce_10_0142__section8501151104219"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0142__ul1685519569431"><li id="cce_10_0142__li1585575616436">By default, a NodePort Service is accessed within a VPC. If you need to use an EIP to access a NodePort Service through public networks, bind an EIP to the node in the cluster in advance.</li><li id="cce_10_0142__li128551156114310">After a Service is created, if the affinity setting is switched from the cluster level to the node level, the connection tracing table will not be cleared. You are advised not to modify the Service affinity setting after the Service is created. If you need to modify it, create a Service again.</li><li id="cce_10_0142__li62831358182017">CCE Turbo clusters support only cluster-level service affinity.</li><li id="cce_10_0142__li217783916207">In VPC network mode, when container A is published through a NodePort service and the service affinity is set to the node level (that is, <strong id="cce_10_0142__b6606348122314">externalTrafficPolicy</strong> is set to <strong id="cce_10_0142__b1893585192319">local</strong>), container B deployed on the same node cannot access container A through the node IP address and NodePort service.</li><li id="cce_10_0142__li14613571073">When a NodePort service is created in a cluster of v1.21.7 or later, the port on the node is not displayed using <strong id="cce_10_0142__b9614551172511">netstat</strong> by default. If the cluster forwarding mode is <strong id="cce_10_0142__b1668514182617">iptables</strong>, run the <strong id="cce_10_0142__b17716161211103">iptables -t nat -L</strong> command to view the port. If the cluster forwarding mode is <strong id="cce_10_0142__b1037289122614">ipvs</strong>, run the <strong id="cce_10_0142__b23917223106">ipvsadm -nL</strong> command to view the port.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0146.html b/docs/cce/umn/cce_10_0146.html
index e18d05cd..9c06932c 100644
--- a/docs/cce/umn/cce_10_0146.html
+++ b/docs/cce/umn/cce_10_0146.html
@@ -33,7 +33,7 @@
 </td>
 <td class="cellrowborder" valign="top" width="78%" headers="mcps1.3.3.3.2.4.2.2.3.1.2 "><p id="cce_10_0146__p1678472115013">Describes configuration parameters required by templates.</p>
 <div class="notice" id="cce_10_0146__note11415171194911"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0146__p394216481648">Make sure that the image address set in the <strong id="cce_10_0146__b169837156417">values.yaml</strong> file is the same as the image address in the container image repository. Otherwise, an exception occurs when you create a workload, and the system displays a message indicating that the image fails to be pulled.</p>
-<p id="cce_10_0146__p04177113498">To obtain the image address, perform the following operations: Log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0146__b860412174116">Image Repository</strong> to access the SWR console. Choose <strong id="cce_10_0146__b10171926114117">My Images</strong> &gt; <strong id="cce_10_0146__b12372684119">Private Images</strong> and click the name of the uploaded image. On the <strong id="cce_10_0146__b223726104111">Image Tags</strong> tab page, obtain the image address from the pull command. You can click <span><img id="cce_10_0146__image292113414153" src="en-us_image_0000001206959574.png"></span> to copy the command in the <strong id="cce_10_0146__b723192619418">Image Pull Command</strong> column.</p>
+<p id="cce_10_0146__p04177113498">To obtain the image address, perform the following operations: Log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0146__b860412174116">Image Repository</strong> to access the SWR console. Choose <strong id="cce_10_0146__b10171926114117">My Images</strong> &gt; <strong id="cce_10_0146__b12372684119">Private Images</strong> and click the name of the uploaded image. On the <strong id="cce_10_0146__b223726104111">Image Tags</strong> tab page, obtain the image address from the pull command. You can click <span><img id="cce_10_0146__image292113414153" src="en-us_image_0000001517743456.png"></span> to copy the command in the <strong id="cce_10_0146__b723192619418">Image Pull Command</strong> column.</p>
 </div></div>
 </td>
 </tr>
diff --git a/docs/cce/umn/cce_10_0150.html b/docs/cce/umn/cce_10_0150.html
index e9bc8369..2cefd9aa 100644
--- a/docs/cce/umn/cce_10_0150.html
+++ b/docs/cce/umn/cce_10_0150.html
@@ -8,7 +8,7 @@
 </div>
 <div class="section" id="cce_10_0150__s50bf087555b1437aa249c1259138706c"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0150__p1695632510556">Resources have been created. For details, see <a href="cce_10_0363.html">Creating a Node</a>. If clusters and nodes are available, you need not create them again.</p>
 </div>
-<div class="section" id="cce_10_0150__sb8a02965b2624dbbabab320046ca4973"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0150__ol2012902601117"><li id="cce_10_0150__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0150__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0150__b94442390613">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0150__b1844413910614">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0150__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0150__p1259466151612"><strong id="cce_10_0150__b784105815422">Basic Info</strong><ul id="cce_10_0150__ul6954101318184"><li id="cce_10_0150__li11514131617185"><strong id="cce_10_0150__b188592071436">Workload Type</strong>: Select <strong id="cce_10_0150__b117010384313">Job</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0150__li129541213101814"><strong id="cce_10_0150__b92691311154315">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0150__li179541813111814"><strong id="cce_10_0150__b187251219436">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0150__b98729126437">default</strong>. You can also click <span class="uicontrol" id="cce_10_0150__uicontrol7512314164311"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0150__li18955181315189"><strong id="cce_10_0150__b1692581513436">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0150__li11753142112539"><strong id="cce_10_0150__b52461818134319">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li></ul>
+<div class="section" id="cce_10_0150__sb8a02965b2624dbbabab320046ca4973"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0150__ol2012902601117"><li id="cce_10_0150__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0150__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0150__b94442390613">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0150__b1844413910614">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0150__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0150__p1259466151612"><strong id="cce_10_0150__b784105815422">Basic Info</strong><ul id="cce_10_0150__ul6954101318184"><li id="cce_10_0150__li11514131617185"><strong id="cce_10_0150__b188592071436">Workload Type</strong>: Select <strong id="cce_10_0150__b117010384313">Job</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0150__li129541213101814"><strong id="cce_10_0150__b92691311154315">Workload Name</strong>: Enter the name of the workload. Enter 1 to 63 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</li><li id="cce_10_0150__li179541813111814"><strong id="cce_10_0150__b187251219436">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0150__b98729126437">default</strong>. You can also click <span class="uicontrol" id="cce_10_0150__uicontrol7512314164311"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0150__li18955181315189"><strong id="cce_10_0150__b1692581513436">Pods</strong>: Enter the number of pods.</li><li id="cce_10_0150__li11753142112539"><strong id="cce_10_0150__b52461818134319">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li></ul>
 </div>
 <div class="p" id="cce_10_0150__p206571518181616"><strong id="cce_10_0150__b855213715437">Container Settings</strong><ul id="cce_10_0150__ul42071022103320"><li id="cce_10_0150__li8770480458">Container Information<div class="p" id="cce_10_0150__p10493941854"><a name="cce_10_0150__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0150__uicontrol1760133894311"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0150__ul3107134161216"><li id="cce_10_0150__li310624131220"><strong id="cce_10_0150__b16677312174910">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0150__li51065491219"><strong id="cce_10_0150__b214013152497">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0150__li9107648124"><strong id="cce_10_0150__b145617174914">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0150__li16107114201215"><strong id="cce_10_0150__b298814182495">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0150__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0150__p17126153413513">If the workload contains more than one pod, EVS volumes cannot be mounted.</p>
 </div></div>
diff --git a/docs/cce/umn/cce_10_0151.html b/docs/cce/umn/cce_10_0151.html
index f599f983..18bc9b2d 100644
--- a/docs/cce/umn/cce_10_0151.html
+++ b/docs/cce/umn/cce_10_0151.html
@@ -9,7 +9,7 @@
 </div>
 <div class="section" id="cce_10_0151__s50bf087555b1437aa249c1259138706c"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0151__p777418357559">Resources have been created. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</p>
 </div>
-<div class="section" id="cce_10_0151__section345135735520"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0151__ol2012902601117"><li id="cce_10_0151__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0151__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0151__b1885417579613">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0151__b1685418571868">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0151__li67891737151520"><span>Set basic information about the workload.</span><p><div class="p" id="cce_10_0151__p1259466151612"><strong id="cce_10_0151__b12586554174511">Basic Info</strong><ul id="cce_10_0151__ul6954101318184"><li id="cce_10_0151__li11514131617185"><strong id="cce_10_0151__b011355684516">Workload Type</strong>: Select <strong id="cce_10_0151__b8113135614512">Cron Job</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0151__li129541213101814"><strong id="cce_10_0151__b144732064465">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0151__li179541813111814"><strong id="cce_10_0151__b13284275464">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0151__b228411710464">default</strong>. You can also click <span class="uicontrol" id="cce_10_0151__uicontrol2139109154616"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0151__li11753142112539"><strong id="cce_10_0151__b5332810174614">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li></ul>
+<div class="section" id="cce_10_0151__section345135735520"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0151__ol2012902601117"><li id="cce_10_0151__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0151__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0151__b1885417579613">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0151__b1685418571868">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0151__li67891737151520"><span>Set basic information about the workload.</span><p><div class="p" id="cce_10_0151__p1259466151612"><strong id="cce_10_0151__b12586554174511">Basic Info</strong><ul id="cce_10_0151__ul6954101318184"><li id="cce_10_0151__li11514131617185"><strong id="cce_10_0151__b011355684516">Workload Type</strong>: Select <strong id="cce_10_0151__b8113135614512">Cron Job</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0151__li129541213101814"><strong id="cce_10_0151__b144732064465">Workload Name</strong>: Enter the name of the workload. Enter 1 to 52 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</li><li id="cce_10_0151__li179541813111814"><strong id="cce_10_0151__b13284275464">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0151__b228411710464">default</strong>. You can also click <span class="uicontrol" id="cce_10_0151__uicontrol2139109154616"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0151__li11753142112539"><strong id="cce_10_0151__b5332810174614">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li></ul>
 </div>
 <div class="p" id="cce_10_0151__p206571518181616"><strong id="cce_10_0151__b101031654614">Container Settings</strong><ul id="cce_10_0151__ul42071022103320"><li id="cce_10_0151__li8770480458">Container Information<div class="p" id="cce_10_0151__p10493941854"><a name="cce_10_0151__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0151__uicontrol127468176466"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0151__ul3659182116126"><li id="cce_10_0151__li106592216120"><strong id="cce_10_0151__b20340145912491">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0151__li1865942191210"><strong id="cce_10_0151__b198848416507">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0151__li365922119124"><strong id="cce_10_0151__b1468148185018">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0152.html b/docs/cce/umn/cce_10_0152.html
index faea51a6..5acf05ce 100644
--- a/docs/cce/umn/cce_10_0152.html
+++ b/docs/cce/umn/cce_10_0152.html
@@ -6,37 +6,39 @@
 <p id="cce_10_0152__p310975192519">Benefits of ConfigMaps:</p>
 <ul id="cce_10_0152__ul198841451945"><li id="cce_10_0152__li1729651412510">Manage configurations of different environments and services.</li><li id="cce_10_0152__li1029613148252">Deploy workloads in different environments. Multiple versions are supported for configuration files so that you can update and roll back workloads easily.</li><li id="cce_10_0152__li5885853411">Quickly import configurations in the form of files to containers.</li></ul>
 </div>
+<div class="section" id="cce_10_0152__section66903416102"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0152__ul1690112481415"><li id="cce_10_0152__li490120485413">The size of a ConfigMap resource file cannot exceed 2 MB.</li><li id="cce_10_0152__li1890154814415">ConfigMaps cannot be used in <a href="https://kubernetes.io/docs/tasks/configure-pod-container/static-pod/" target="_blank" rel="noopener noreferrer">static pods</a>.</li></ul>
+</div>
 <div class="section" id="cce_10_0152__section18512531861"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0152__ol18179910114616"><li id="cce_10_0152__li635713242020"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0152__li20395342103020"><span>Choose <span class="uicontrol" id="cce_10_0152__uicontrol19468432182014"><b>ConfigMaps and Secrets</b></span> in the navigation pane and click <span class="uicontrol" id="cce_10_0152__uicontrol6170157575"><b>Create ConfigMap</b></span> in the upper right corner.</span></li><li id="cce_10_0152__li6634857171419"><span>Set parameters.</span><p>
-<div class="tablenoborder"><a name="cce_10_0152__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0152__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a ConfigMap</caption><thead align="left"><tr id="cce_10_0152__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.3.2.1.2.3.1.1"><p id="cce_10_0152__p43211725338">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0152__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0152__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a ConfigMap</caption><thead align="left"><tr id="cce_10_0152__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_10_0152__p43211725338">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.2.2.3.2.1.2.3.1.2"><p id="cce_10_0152__p0322102516320">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_10_0152__p0322102516320">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0152__row163229255313"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p1232219251339">Name</p>
+<tbody><tr id="cce_10_0152__row163229255313"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p1232219251339">Name</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p173227259312">Name of a ConfigMap, which must be unique in a namespace.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p173227259312">Name of a ConfigMap, which must be unique in a namespace.</p>
 </td>
 </tr>
-<tr id="cce_10_0152__row111551253912"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p51551451293">Namespace</p>
+<tr id="cce_10_0152__row111551253912"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p51551451293">Namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p216414418190">Namespace to which the ConfigMap belongs. If you do not specify this parameter, the value <strong id="cce_10_0152__b485211104463">default</strong> is used by default.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p216414418190">Namespace to which the ConfigMap belongs. If you do not specify this parameter, the value <strong id="cce_10_0152__b485211104463">default</strong> is used by default.</p>
 </td>
 </tr>
-<tr id="cce_10_0152__row1535723154615"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p83591731124620">Description</p>
+<tr id="cce_10_0152__row1535723154615"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p83591731124620">Description</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p1736012314462">Description of the ConfigMap.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p1736012314462">Description of the ConfigMap.</p>
 </td>
 </tr>
-<tr id="cce_10_0152__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p23228259314">Data</p>
+<tr id="cce_10_0152__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p23228259314">Data</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p085820352295">Data of a ConfigMap, in the key-value pair format.</p>
-<p id="cce_10_0152__p15328144616261">Click <span><img id="cce_10_0152__image12816235293" src="en-us_image_0000001205757902.png"></span> to add data. The value can be in string, JSON, or YAML format.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p085820352295">Data of a ConfigMap, in the key-value pair format.</p>
+<p id="cce_10_0152__p15328144616261">Click <span><img id="cce_10_0152__image12816235293" src="en-us_image_0000001568902541.png"></span> to add data. The value can be in string, JSON, or YAML format.</p>
 </td>
 </tr>
-<tr id="cce_10_0152__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p17322225134">Label</p>
+<tr id="cce_10_0152__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0152__p17322225134">Label</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p055041093119">Label of the ConfigMap. Enter a key-value pair and click <strong id="cce_10_0152__b1027145220482">Add</strong>.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0152__p055041093119">Label of the ConfigMap. Enter a key-value pair and click <strong id="cce_10_0152__b1027145220482">Add</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -45,16 +47,6 @@
 </p></li><li id="cce_10_0152__li11187141015461"><span>After the configuration is complete, click <span class="uicontrol" id="cce_10_0152__uicontrol424264973103651"><b>OK</b></span>.</span><p><p id="cce_10_0152__p018781015461">The new ConfigMap is displayed in the ConfigMap list.</p>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0152__section66903416102"><h4 class="sectiontitle">ConfigMap Requirements</h4><p id="cce_10_0152__p44144616106">A ConfigMap resource file must be in YAML format, and the file size cannot exceed 2 MB.</p>
-<div class="p" id="cce_10_0152__p615908129">The file name is <strong id="cce_10_0152__b206395112113">configmap.yaml</strong> and the following shows a configuration example.<pre class="screen" id="cce_10_0152__screen156291559131119">apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: test-configmap
-data:
-  data-1: value-1
-  data-2: value-2</pre>
-</div>
-</div>
 <div class="section" id="cce_10_0152__section639712716372"><h4 class="sectiontitle">Creating a ConfigMap Using kubectl</h4><ol id="cce_10_0152__ol4681114115209"><li id="cce_10_0152__li1681024195710"><span>Configure the <strong id="cce_10_0152__b107571340111220">kubectl</strong> command to connect an ECS to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0152__li1020013819415"><span>Create and edit the <strong id="cce_10_0152__b4906313131317">cce-configmap.yaml</strong> file.</span><p><p id="cce_10_0152__p106999147413"><strong id="cce_10_0152__b6469155655719">vi cce-configmap.yaml</strong></p>
 <pre class="screen" id="cce_10_0152__screen1245419316221">apiVersion: v1
 kind: ConfigMap
@@ -63,15 +55,45 @@ metadata:
 data:
   SPECIAL_LEVEL: Hello
   SPECIAL_TYPE: CCE</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0152__table12719161619361" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Key parameters</caption><thead align="left"><tr id="cce_10_0152__row3720131620366"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.4.2.2.2.3.2.3.1.1"><p id="cce_10_0152__p18720131623617">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.4.2.2.2.3.2.3.1.2"><p id="cce_10_0152__p17720121653614">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0152__row8720916133613"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.1 "><p id="cce_10_0152__p772021653614">apiVersion</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.2 "><p id="cce_10_0152__p147201516103614">The value is fixed at <strong id="cce_10_0152__b18367125116241">v1</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row1720161615364"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.1 "><p id="cce_10_0152__p1772071616363">kind</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.2 "><p id="cce_10_0152__p197201616143611">The value is fixed at <strong id="cce_10_0152__b816414418256">ConfigMap</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row1672081618369"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.1 "><p id="cce_10_0152__p572019167368">metadata.name</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.2 "><p id="cce_10_0152__p4720161673614">ConfigMap name, which can be customized.</p>
+</td>
+</tr>
+<tr id="cce_10_0152__row2720191653616"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.1 "><p id="cce_10_0152__p372051610367">data</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.4.2.2.2.3.2.3.1.2 "><p id="cce_10_0152__p1156792763711">ConfigMap data. The value must be key-value pairs.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
 </p></li><li id="cce_10_0152__li788331518303"><span>Run the following commands to create a ConfigMap.</span><p><p id="cce_10_0152__p3315182011255"><strong id="cce_10_0152__b56467233250">kubectl create -f cce-configmap.yaml</strong></p>
+<p id="cce_10_0152__p19951259123710">Run the following commands to view the created ConfigMap:</p>
 <p id="cce_10_0152__p11761214251"><strong id="cce_10_0152__b96501723152519">kubectl get cm</strong></p>
 <pre class="screen" id="cce_10_0152__screen47118476349">NAME               DATA            AGE
-cce-configmap      3               3h
-cce-configmap1     3               7m</pre>
+cce-configmap      3               7m</pre>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0152__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_10_0152__p98641861268">After creating a configuration item, you can update or delete it as described in <a href="#cce_10_0152__table1619535674020">Table 2</a>.
-<div class="tablenoborder"><a name="cce_10_0152__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0152__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Related operations</caption><thead align="left"><tr id="cce_10_0152__row16740630125918"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.5.2.2.2.3.1.1"><p id="cce_10_0152__p17740730115914">Operation</p>
+<div class="section" id="cce_10_0152__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_10_0152__p98641861268">After creating a configuration item, you can update or delete it as described in <a href="#cce_10_0152__table1619535674020">Table 3</a>.
+<div class="tablenoborder"><a name="cce_10_0152__table1619535674020"></a><a name="table1619535674020"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0152__table1619535674020" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Related operations</caption><thead align="left"><tr id="cce_10_0152__row16740630125918"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.5.2.2.2.3.1.1"><p id="cce_10_0152__p17740730115914">Operation</p>
 </th>
 <th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.5.2.2.2.3.1.2"><p id="cce_10_0152__p1574018303592">Description</p>
 </th>
@@ -101,7 +123,7 @@ cce-configmap1     3               7m</pre>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">ConfigMaps and Secrets</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0153.html b/docs/cce/umn/cce_10_0153.html
index 23205a40..1cd31dab 100644
--- a/docs/cce/umn/cce_10_0153.html
+++ b/docs/cce/umn/cce_10_0153.html
@@ -3,45 +3,47 @@
 <h1 class="topictitle1">Creating a Secret</h1>
 <div id="body1517812850363"><div class="section" id="cce_10_0153__section86141233649"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0153__p134369401414">A secret is a type of resource that holds sensitive data, such as authentication and key information. Its content is user-defined. After creating secrets, you can use them as files or environment variables in a containerized workload.</p>
 </div>
+<div class="section" id="cce_10_0153__section66903416102"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0153__p191601042194217">Secrets cannot be used in <a href="https://kubernetes.io/docs/tasks/configure-pod-container/static-pod/" target="_blank" rel="noopener noreferrer">static pods</a>.</p>
+</div>
 <div class="section" id="cce_10_0153__section18512531861"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0153__ol18179910114616"><li id="cce_10_0153__li13839221133416"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0153__li20395342103020"><span>Choose <span class="uicontrol" id="cce_10_0153__uicontrol2866154416546"><b>ConfigMaps and Secrets</b></span> in the navigation pane, click the <span class="uicontrol" id="cce_10_0153__uicontrol1586616444544"><b>Secrets</b></span> tab, and click <span class="uicontrol" id="cce_10_0153__uicontrol14866944125413"><b>Create Secret</b></span> in the upper right corner.</span></li><li id="cce_10_0153__li1931813575710"><span>Set parameters.</span><p>
-<div class="tablenoborder"><a name="cce_10_0153__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0153__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a secret</caption><thead align="left"><tr id="cce_10_0153__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.3.2.1.2.3.1.1"><p id="cce_10_0153__p43211725338">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0153__table16321825732"></a><a name="table16321825732"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0153__table16321825732" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a secret</caption><thead align="left"><tr id="cce_10_0153__row173212251235"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.1.2.3.1.1"><p id="cce_10_0153__p43211725338">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.2.2.3.2.1.2.3.1.2"><p id="cce_10_0153__p0322102516320">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.1.2.3.1.2"><p id="cce_10_0153__p0322102516320">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0153__row1752613417216"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p360313397217">Name</p>
+<tbody><tr id="cce_10_0153__row1752613417216"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p360313397217">Name</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p1161911390211">Name of the secret you create, which must be unique.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p1161911390211">Name of the secret you create, which must be unique.</p>
 </td>
 </tr>
-<tr id="cce_10_0153__row11291645181017"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p16293114519103">Namespace</p>
+<tr id="cce_10_0153__row11291645181017"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p16293114519103">Namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p129384511101">Namespace to which the secret belongs. If you do not specify this parameter, the value <strong id="cce_10_0153__b48091053154018">default</strong> is used by default.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p129384511101">Namespace to which the secret belongs. If you do not specify this parameter, the value <strong id="cce_10_0153__b48091053154018">default</strong> is used by default.</p>
 </td>
 </tr>
-<tr id="cce_10_0153__row1984015472115"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p815351112212">Description</p>
+<tr id="cce_10_0153__row1984015472115"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p815351112212">Description</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p5153121142219">Description of a secret.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p5153121142219">Description of a secret.</p>
 </td>
 </tr>
-<tr id="cce_10_0153__row1541115718414"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p14412774420">Type</p>
+<tr id="cce_10_0153__row1541115718414"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p14412774420">Type</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p1441319714414">Type of the secret you create.</p>
-<ul id="cce_10_0153__ul4570185817249"><li id="cce_10_0153__li15570185816249"><span class="keyword" id="cce_10_0153__keyword30498699141939">Opaque</span>: common secret.</li><li id="cce_10_0153__li10947145315265"><span class="keyword" id="cce_10_0153__keyword980727399141941">kubernetes.io/dockerconfigjson</span>: a secret that stores the authentication information required for pulling images from a private repository.</li><li id="cce_10_0153__li14121828172716"><span class="keyword" id="cce_10_0153__keyword580479947141945">IngressTLS</span>: a secret that stores the certificate required by ingresses (layer-7 load balancing Services).</li><li id="cce_10_0153__li119892492817">Other: another type of secret, which is specified manually.</li></ul>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p1441319714414">Type of the secret you create.</p>
+<ul id="cce_10_0153__ul4570185817249"><li id="cce_10_0153__li15570185816249"><span class="keyword" id="cce_10_0153__keyword30498699141939">Opaque</span>: common secret.</li><li id="cce_10_0153__li10947145315265"><span class="keyword" id="cce_10_0153__keyword980727399141941">kubernetes.io/dockerconfigjson</span>: a secret that stores the authentication information required for pulling images from a private repository.</li><li id="cce_10_0153__li6612102834420"><strong id="cce_10_0153__b1231163814468">kubernetes.io/tls</strong>: Kubernetes TLS secret, which is used to store the certificate required by layer-7 load balancing Services.</li><li id="cce_10_0153__li14121828172716"><strong id="cce_10_0153__b185304410462">IngressTLS</strong>: TLS secret provided by CCE to store the certificate required by layer-7 load balancing Services.</li><li id="cce_10_0153__li119892492817">Other: another type of secret, which is specified manually.</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0153__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p23228259314">Secret Data</p>
+<tr id="cce_10_0153__row133224252315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p23228259314">Secret Data</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p133223251335">Workload secret data can be used in containers.</p>
-<ul id="cce_10_0153__ul180611337469"><li id="cce_10_0153__li108069333468">If <strong id="cce_10_0153__b10282732165415">Secret Type</strong> is <strong id="cce_10_0153__b1449613357547">Opaque</strong>, click <span><img id="cce_10_0153__image12816235293" src="en-us_image_0000001249958645.png"></span>. In the dialog box displayed, enter a key-value pair and select <strong id="cce_10_0153__b31811921195517">Auto Base64 Encoding</strong>.</li><li id="cce_10_0153__li1536053764716">If the secret type is <span class="keyword" id="cce_10_0153__keyword9993330195113">kubernetes.io/</span>dockerconfigjson, enter the account and password of the private image repository.</li><li id="cce_10_0153__li17736104214478">If the secret type is IngressTLS, upload the certificate file and private key file.<div class="note" id="cce_10_0153__note1890215211325"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0153__ul1280017919332"><li id="cce_10_0153__li14977104417334">A certificate is a self-signed or CA-signed credential used for identity authentication.</li><li id="cce_10_0153__li6236332143310">A certificate request is a request for a signature with a private key.</li></ul>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p133223251335">Workload secret data can be used in containers.</p>
+<ul id="cce_10_0153__ul180611337469"><li id="cce_10_0153__li108069333468">If <strong id="cce_10_0153__b10282732165415">Secret Type</strong> is <strong id="cce_10_0153__b1449613357547">Opaque</strong>, click <span><img id="cce_10_0153__image12816235293" src="en-us_image_0000001518222636.png"></span>. In the dialog box displayed, enter a key-value pair and select <strong id="cce_10_0153__b31811921195517">Auto Base64 Encoding</strong>.</li><li id="cce_10_0153__li1536053764716">If the secret type is <span class="keyword" id="cce_10_0153__keyword9993330195113">kubernetes.io/</span>dockerconfigjson, enter the account and password of the private image repository.</li><li id="cce_10_0153__li17736104214478">If <strong id="cce_10_0153__b20319347204613">Secret Type</strong> is <strong id="cce_10_0153__b831934713464">kubernetes.io/tls</strong> or <strong id="cce_10_0153__b163201475469">IngressTLS</strong>, upload the certificate file and private key file.<div class="note" id="cce_10_0153__note1890215211325"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="cce_10_0153__ul1280017919332"><li id="cce_10_0153__li14977104417334">A certificate is a self-signed or CA-signed credential used for identity authentication.</li><li id="cce_10_0153__li6236332143310">A certificate request is a request for a signature with a private key.</li></ul>
 </div></div>
 </li></ul>
 </td>
 </tr>
-<tr id="cce_10_0153__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p17322225134">Secret Label</p>
+<tr id="cce_10_0153__row123142814330"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.3.1.1 "><p id="cce_10_0153__p17322225134">Secret Label</p>
 </td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p055041093119">Label of the secret. Enter a key-value pair and click <strong id="cce_10_0153__b161531566532">Add</strong>.</p>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.3.1.2 "><p id="cce_10_0153__p055041093119">Label of the secret. Enter a key-value pair and click <strong id="cce_10_0153__b161531566532">Add</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -50,64 +52,102 @@
 </p></li><li id="cce_10_0153__li11187141015461"><span>After the configuration is complete, click <strong id="cce_10_0153__b1887486251104639">OK</strong>.</span><p><p id="cce_10_0153__p018781015461">The new secret is displayed in the key list.</p>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0153__section187197531454"><h4 class="sectiontitle">Secret Resource File Configuration</h4><p id="cce_10_0153__p2086031095117">This section describes configuration examples of secret resource description files.</p>
-<p id="cce_10_0153__p34594241969">For example, you can retrieve the username and password for a workload through a secret.</p>
-<ul id="cce_10_0153__ul98374131156"><li id="cce_10_0153__li283771391512">YAML format<p id="cce_10_0153__p104653241962"><a name="cce_10_0153__li283771391512"></a><a name="li283771391512"></a>The <strong id="cce_10_0153__b10887327235">secret.yaml</strong> file is defined as shown below. The value must be based on the Base64 coding method. For details about the method, see <a href="#cce_10_0153__section175000605919">Base64 Encoding</a>.</p>
+<div class="section" id="cce_10_0153__section187197531454"><a name="cce_10_0153__section187197531454"></a><a name="section187197531454"></a><h4 class="sectiontitle">Secret Resource File Configuration</h4><p id="cce_10_0153__p2086031095117">This section describes configuration examples of secret resource description files.</p>
+<ul id="cce_10_0153__ul98374131156"><li id="cce_10_0153__li283771391512"><span class="keyword" id="cce_10_0153__keyword4971418111413">Opaque</span><p id="cce_10_0153__p104653241962">The <strong id="cce_10_0153__b10887327235">secret.yaml</strong> file is defined as shown below. The <strong id="cce_10_0153__b116621962474">data</strong> field is filled in as a key-value pair, and the <strong id="cce_10_0153__b866206194716">value</strong> field must be encoded using Base64. For details about the Base64 encoding method, see <a href="#cce_10_0153__section175000605919">Base64 Encoding</a>.</p>
 <pre class="screen" id="cce_10_0153__screen2846173513513">apiVersion: v1
 kind: Secret
 metadata:
   name: mysecret           #Secret name
   namespace: default       #Namespace. The default value is <strong id="cce_10_0153__b842352706165921">default</strong>.
 data:
-  username: ******  #The value must be Base64-encoded.
-  password: ******  #The value must be encoded using Base64.
-type: Opaque     #You are advised not to change this parameter value.</pre>
+  <strong id="cce_10_0153__b1744162494713"><i><span class="varname" id="cce_10_0153__varname04352474715">&lt;your_key&gt;</span></i>: <i><span class="varname" id="cce_10_0153__varname4439245472">&lt;your_value&gt;</span></i></strong>  # Enter a key-value pair. The value must be encoded using Base64.
+<strong id="cce_10_0153__b1865712414205">type: Opaque</strong></pre>
+</li><li id="cce_10_0153__li1178914253147"><span class="keyword" id="cce_10_0153__keyword20707432171419">kubernetes.io/dockerconfigjson</span><p id="cce_10_0153__p192619102272">The <strong id="cce_10_0153__b10365163510473">secret.yaml</strong> file is defined as shown below. The value of <strong id="cce_10_0153__b1557620428477">.dockerconfigjson</strong> must be encoded using Base64. For details, see <a href="#cce_10_0153__section175000605919">Base64 Encoding</a>.</p>
+<pre class="screen" id="cce_10_0153__screen980210615156">apiVersion: v1
+kind: Secret
+metadata:
+  name: mysecret           #Secret name
+  namespace: default       #Namespace. The default value is <strong id="cce_10_0153__b1083576862">default</strong>.
+data:
+  <strong id="cce_10_0153__b13613154714718">.dockerconfigjson: eyJh</strong><strong id="cce_10_0153__b1261384712472">*****</strong>    # Content encoded using Base64.
+<strong id="cce_10_0153__b18496153310233">type: kubernetes.io/dockerconfigjson</strong></pre>
+<p id="cce_10_0153__p7733255143113">To obtain the <strong id="cce_10_0153__b6930125017470">.dockerconfigjson</strong> content, perform the following steps:</p>
+<ol id="cce_10_0153__ol6261351113320"><li id="cce_10_0153__li279611343415">Obtain the login information of the image repository.<ul id="cce_10_0153__ul75924182344"><li id="cce_10_0153__li65922018193415">Image repository address: The section uses <em id="cce_10_0153__i17365397481">address</em> as an example. Replace it with the actual address.</li><li id="cce_10_0153__li913814208346">Username: The section uses <em id="cce_10_0153__i111153125485">username</em> as an example. Replace it with the actual username.</li><li id="cce_10_0153__li4879162443411">Password: The section uses <em id="cce_10_0153__i6282046164815">password</em> as an example. Replace it with the actual password.</li></ul>
+</li><li id="cce_10_0153__li1425171823615">Use Base64 to encode the key-value pair <strong id="cce_10_0153__b937321204913">username:password</strong> and fill the encoded content in step <a href="#cce_10_0153__li157901847113720">3</a>.<pre class="screen" id="cce_10_0153__screen19278135783712">echo -n "<i><span class="varname" id="cce_10_0153__varname89741718193812">username:password</span></i>" | base64</pre>
+<p id="cce_10_0153__p108321734154813">Command output:</p>
+<pre class="screen" id="cce_10_0153__screen711317448485">dXNlcm5hbWU6cGFzc3dvcmQ=</pre>
+</li><li id="cce_10_0153__li157901847113720"><a name="cce_10_0153__li157901847113720"></a><a name="li157901847113720"></a>Use Base64 to encode the following JSON content:<pre class="screen" id="cce_10_0153__screen20790154712372">echo -n '{"auths":{"<strong id="cce_10_0153__b1279044711379"><i><span class="varname" id="cce_10_0153__varname13584130184112">address</span></i></strong>":{"username":"<strong id="cce_10_0153__b13790547103711"><i><span class="varname" id="cce_10_0153__varname73095406391">username</span></i></strong>","password":"<strong id="cce_10_0153__b187901476379"><i><span class="varname" id="cce_10_0153__varname19274104583916">password</span></i></strong>","auth":"<strong id="cce_10_0153__b125394198498"><i><span class="varname" id="cce_10_0153__varname13477734154919">dXNlcm5hbWU6cGFzc3dvcmQ=</span></i></strong>"}}}' | base64</pre>
+<p id="cce_10_0153__p1377608145013">Command output:</p>
+<pre class="screen" id="cce_10_0153__screen864111895012">eyJhdXRocyI6eyJhZGRyZXNzIjp7InVzZXJuYW1lIjoidXNlcm5hbWUiLCJwYXNzd29yZCI6InBhc3N3b3JkIiwiYXV0aCI6ImRYTmxjbTVoYldVNmNHRnpjM2R2Y21RPSJ9fX0=</pre>
+<p id="cce_10_0153__p776619499404">The encoded content is the <strong id="cce_10_0153__b589193916918">.dockerconfigjson</strong> content.</p>
+</li></ol>
+</li></ul>
+<ul id="cce_10_0153__ul47948409361"><li id="cce_10_0153__li2794104073618"><span class="keyword" id="cce_10_0153__keyword197941840143616">kubernetes.io/tls</span><div class="p" id="cce_10_0153__p379434013364">The value of <strong id="cce_10_0153__b618983013918">tls.crt</strong> and <strong id="cce_10_0153__b51891630797">tls.key</strong> must be encoded using Base64. For details, see <a href="#cce_10_0153__section175000605919">Base64 Encoding</a>.<pre class="screen" id="cce_10_0153__screen17794640153619">kind: Secret
+apiVersion: v1
+metadata:
+  name: mysecret           #Secret name
+  namespace: default       #Namespace. The default value is <strong id="cce_10_0153__b259852744">default</strong>.
+data:
+  tls.crt: <strong id="cce_10_0153__b15274191961112">LS0tLS1CRU*****FURS0tLS0t</strong>  # Certificate content, which must be encoded using Base64.
+  tls.key: <strong id="cce_10_0153__b73711223119">LS0tLS1CRU*****VZLS0tLS0=</strong>  # Private key content, which must be encoded using Base64.
+<strong id="cce_10_0153__b5794154023613">type: kubernetes.io/tls</strong></pre>
+</div>
+</li><li id="cce_10_0153__li17794140193617"><span class="keyword" id="cce_10_0153__keyword17794134053617">IngressTLS</span><div class="p" id="cce_10_0153__p379484011363">The value of <strong id="cce_10_0153__b4872143661118">tls.crt</strong> and <strong id="cce_10_0153__b4872103611114">tls.key</strong> must be encoded using Base64. For details, see <a href="#cce_10_0153__section175000605919">Base64 Encoding</a>.<pre class="screen" id="cce_10_0153__screen179454033611">kind: Secret
+apiVersion: v1
+metadata:
+  name: mysecret           #Secret name
+  namespace: default       #Namespace. The default value is <strong id="cce_10_0153__b2042427623">default</strong>.
+data:
+  tls.crt: <strong id="cce_10_0153__b1453324118115">LS0tLS1CRU*****FURS0tLS0t</strong>  # Certificate content, which must be encoded using Base64.
+  tls.key: <strong id="cce_10_0153__b29061343141111">LS0tLS1CRU*****VZLS0tLS0=</strong>  # Private key content, which must be encoded using Base64.
+<strong id="cce_10_0153__b979444017367">type: IngressTLS</strong></pre>
+</div>
 </li></ul>
 </div>
 <div class="section" id="cce_10_0153__section821112149514"><h4 class="sectiontitle">Creating a Secret Using kubectl</h4><ol id="cce_10_0153__ol4681114115209"><li id="cce_10_0153__li1681024195710"><span>According to <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>, configure the <strong id="cce_10_0153__b72241535102516">kubectl</strong> command to connect an ECS to the cluster.</span></li><li id="cce_10_0153__li198031614164419"><span>Create and edit the Base64-encoded <strong id="cce_10_0153__b3176599254">cce-secret.yaml</strong> file.</span><p><pre class="screen" id="cce_10_0153__screen1658792012013"># echo -n "<em id="cce_10_0153__i25185217413">content to be encoded</em>" | base64
 ******</pre>
 <p id="cce_10_0153__p19354756165916"><strong id="cce_10_0153__b1577616471020">vi cce-secret.yaml</strong></p>
+<p id="cce_10_0153__p19299131315315">The following YAML file uses the Opaque type as an example. For details about other types, see <a href="#cce_10_0153__section187197531454">Secret Resource File Configuration</a>.</p>
 <pre class="screen" id="cce_10_0153__screen1530717111302">apiVersion: v1
 kind: Secret
 metadata:
   name: mysecret
 type: Opaque
 data:
-  username: ******
-  password: ******</pre>
+  <strong id="cce_10_0153__b9470135211119"><i><span class="varname" id="cce_10_0153__varname12469852171110">&lt;your_key&gt;</span></i>: <i><span class="varname" id="cce_10_0153__varname14703520116">&lt;your_value&gt;</span></i></strong>  # Enter a key-value pair. The value must be encoded using Base64.</pre>
 </p></li><li id="cce_10_0153__li788331518303"><span>Create a secret.</span><p><p id="cce_10_0153__p3315182011255"><strong id="cce_10_0153__b56467233250">kubectl create -f cce-secret.yaml</strong></p>
 <p id="cce_10_0153__p2239132312114">You can query the secret after creation.</p>
-<p id="cce_10_0153__p11761214251"><strong id="cce_10_0153__b96501723152519">kubectl get secret</strong></p>
+<p id="cce_10_0153__p11761214251"><strong id="cce_10_0153__b96501723152519">kubectl get secret -n default</strong></p>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0153__section359413445405"><h4 class="sectiontitle">Related Operations</h4><div class="p" id="cce_10_0153__p1010361816508">After creating a secret, you can update or delete it as described in <a href="#cce_10_0153__table555785274319">Table 2</a>.<div class="note" id="cce_10_0153__note1655192725017"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0153__p10656327115010">The secret list contains system secret resources that can be queried only. The system secret resources cannot be updated or deleted.</p>
 </div></div>
 
-<div class="tablenoborder"><a name="cce_10_0153__table555785274319"></a><a name="table555785274319"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0153__table555785274319" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Related Operations</caption><thead align="left"><tr id="cce_10_0153__row19412155014112"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.5.2.3.2.3.1.1"><p id="cce_10_0153__p154122501516">Operation</p>
+<div class="tablenoborder"><a name="cce_10_0153__table555785274319"></a><a name="table555785274319"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0153__table555785274319" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Related Operations</caption><thead align="left"><tr id="cce_10_0153__row19412155014112"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.6.2.3.2.3.1.1"><p id="cce_10_0153__p154122501516">Operation</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.5.2.3.2.3.1.2"><p id="cce_10_0153__p94129501313">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="68%" id="mcps1.3.6.2.3.2.3.1.2"><p id="cce_10_0153__p94129501313">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0153__row155037195247"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p163331851201">Editing a YAML file</p>
+<tbody><tr id="cce_10_0153__row155037195247"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_10_0153__p163331851201">Editing a YAML file</p>
 </td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><p id="cce_10_0153__p1633314512016">Click <strong id="cce_10_0153__b29872035151519">Edit YAML</strong> in the row where the target secret resides to edit its YAML file.</p>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><p id="cce_10_0153__p1633314512016">Click <strong id="cce_10_0153__b29872035151519">Edit YAML</strong> in the row where the target secret resides to edit its YAML file.</p>
 </td>
 </tr>
-<tr id="cce_10_0153__row8412185010116"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p1541213501611">Updating a secret</p>
+<tr id="cce_10_0153__row8412185010116"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_10_0153__p1541213501611">Updating a secret</p>
 </td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><ol id="cce_10_0153__ol1341225020114"><li id="cce_10_0153__li74121507113">Select the name of the secret to be updated and click <strong id="cce_10_0153__b842352706114220">Update</strong>.</li><li id="cce_10_0153__li104127501214">Modify the secret data. For more information, see <a href="#cce_10_0153__table16321825732">Table 1</a>.</li><li id="cce_10_0153__li184127501617">Click <strong id="cce_10_0153__b462312572612">OK</strong>.</li></ol>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><ol id="cce_10_0153__ol1341225020114"><li id="cce_10_0153__li74121507113">Select the name of the secret to be updated and click <strong id="cce_10_0153__b842352706114220">Update</strong>.</li><li id="cce_10_0153__li104127501214">Modify the secret data. For more information, see <a href="#cce_10_0153__table16321825732">Table 1</a>.</li><li id="cce_10_0153__li184127501617">Click <strong id="cce_10_0153__b462312572612">OK</strong>.</li></ol>
 </td>
 </tr>
-<tr id="cce_10_0153__row1541219508112"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p141245010120">Deleting a secret</p>
+<tr id="cce_10_0153__row1541219508112"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_10_0153__p141245010120">Deleting a secret</p>
 </td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><p id="cce_10_0153__p241218502119">Select the secret you want to delete and click <strong id="cce_10_0153__b84235270613133">Delete</strong>.</p>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><p id="cce_10_0153__p241218502119">Select the secret you want to delete and click <strong id="cce_10_0153__b84235270613133">Delete</strong>.</p>
 <p id="cce_10_0153__p18412195016114">Follow the prompts to delete the secret.</p>
 </td>
 </tr>
-<tr id="cce_10_0153__row24121750518"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.5.2.3.2.3.1.1 "><p id="cce_10_0153__p841215015117">Deleting secrets in batches</p>
+<tr id="cce_10_0153__row24121750518"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.6.2.3.2.3.1.1 "><p id="cce_10_0153__p841215015117">Deleting secrets in batches</p>
 </td>
-<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.5.2.3.2.3.1.2 "><ol id="cce_10_0153__ol8412145016116"><li id="cce_10_0153__li1441265019117">Select the secrets to be deleted.</li><li id="cce_10_0153__li1841210501111">Click <strong id="cce_10_0153__b1131863179">Delete</strong> above the secret list.</li><li id="cce_10_0153__li1841245011114">Follow the prompts to delete the secrets.</li></ol>
+<td class="cellrowborder" valign="top" width="68%" headers="mcps1.3.6.2.3.2.3.1.2 "><ol id="cce_10_0153__ol8412145016116"><li id="cce_10_0153__li1441265019117">Select the secrets to be deleted.</li><li id="cce_10_0153__li1841210501111">Click <strong id="cce_10_0153__b1131863179">Delete</strong> above the secret list.</li><li id="cce_10_0153__li1841245011114">Follow the prompts to delete the secrets.</li></ol>
 </td>
 </tr>
 </tbody>
@@ -122,7 +162,7 @@ data:
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">ConfigMaps and Secrets</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0154.html b/docs/cce/umn/cce_10_0154.html
index 81b1e509..48309e14 100644
--- a/docs/cce/umn/cce_10_0154.html
+++ b/docs/cce/umn/cce_10_0154.html
@@ -34,6 +34,11 @@
 <ul id="cce_10_0154__ul1634319358233"><li id="cce_10_0154__li2343135152319"><strong id="cce_10_0154__b15151353408">Single</strong>: The add-on is deployed with only one pod.</li><li id="cce_10_0154__li33431235192311"><strong id="cce_10_0154__b4574123141513">HA50</strong>: The add-on is deployed with two pods, serving a cluster with 50 nodes and ensuring high availability.</li><li id="cce_10_0154__li482912427514"><strong id="cce_10_0154__b1411151181815">HA200</strong>: The add-on is deployed with two pods, serving a cluster with 50 nodes and ensuring high availability. Each pod uses more resources than those of the <strong id="cce_10_0154__b2191221161916">HA50</strong> specification.</li><li id="cce_10_0154__li7281273523"><strong id="cce_10_0154__b42561826161918">Custom</strong>: You can customize the number of pods and specifications as required.</li></ul>
 </td>
 </tr>
+<tr id="cce_10_0154__row881114426378"><td class="cellrowborder" valign="top" width="22.89%" headers="mcps1.3.4.2.2.2.1.2.3.1.1 "><p id="cce_10_0154__p15864134742615">Multi AZ</p>
+</td>
+<td class="cellrowborder" valign="top" width="77.11%" headers="mcps1.3.4.2.2.2.1.2.3.1.2 "><ul id="cce_10_0154__ul4214181752714"><li id="cce_10_0154__en-us_topic_0000001199341168_li5214161718270"><strong id="cce_10_0154__b4856778946027">Preferred</strong>: Deployment pods of the add-on are preferentially scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, the pods are scheduled to a single AZ.</li><li id="cce_10_0154__en-us_topic_0000001199341168_li4214917142716"><strong id="cce_10_0154__b3983534296113">Required</strong>: Deployment pods of the add-on are forcibly scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, not all pods can run.</li></ul>
+</td>
+</tr>
 </tbody>
 </table>
 </div>
diff --git a/docs/cce/umn/cce_10_0164.html b/docs/cce/umn/cce_10_0164.html
index de65027f..3724fdfb 100644
--- a/docs/cce/umn/cce_10_0164.html
+++ b/docs/cce/umn/cce_10_0164.html
@@ -16,7 +16,7 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0465.html">Pod Security</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_10_0477_0.html">Service Account Token Security Improvement</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_10_0477.html">Service Account Token Security Improvement</a></strong><br>
 </li>
 </ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0175.html b/docs/cce/umn/cce_10_0175.html
index 08b1c73c..30b0a052 100644
--- a/docs/cce/umn/cce_10_0175.html
+++ b/docs/cce/umn/cce_10_0175.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Obtaining a Cluster Certificate</h1>
 <div id="body1556615866530"><div class="section" id="cce_10_0175__section160213214302"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0175__p1840111417517">This section describes how to obtain the cluster certificate from the console and use it to access Kubernetes clusters.</p>
 </div>
-<div class="section" id="cce_10_0175__section1590914113306"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0175__ol898314521505"><li id="cce_10_0175__li4829928181812"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0175__li179831852301"><span>Choose <strong id="cce_10_0175__b1998785317534">Cluster Information</strong> from the navigation pane and click <strong id="cce_10_0175__b18988553105313">Download</strong> next to <strong id="cce_10_0175__b1398875317539">Authentication Mode</strong> in the <strong id="cce_10_0175__b169881453125311">Connection Information</strong> area.</span></li><li id="cce_10_0175__li1979910715109"><span>In the <span class="uicontrol" id="cce_10_0175__uicontrol13516511412"><b>Download X.509 Certificate</b></span> dialog box displayed, select the certificate expiration time and download the X.509 certificate of the cluster as prompted.</span><p><div class="fignone" id="cce_10_0175__fig873583013712"><span class="figcap"><b>Figure 1 </b>Downloading a certificate</span><br><span><img id="cce_10_0175__image282017212710" src="en-us_image_0000001199181228.png"></span></div>
+<div class="section" id="cce_10_0175__section1590914113306"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0175__ol898314521505"><li id="cce_10_0175__li4829928181812"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0175__li179831852301"><span>Choose <strong id="cce_10_0175__b1998785317534">Cluster Information</strong> from the navigation pane and click <strong id="cce_10_0175__b18988553105313">Download</strong> next to <strong id="cce_10_0175__b1398875317539">Authentication Mode</strong> in the <strong id="cce_10_0175__b169881453125311">Connection Information</strong> area.</span></li><li id="cce_10_0175__li1979910715109"><span>In the <span class="uicontrol" id="cce_10_0175__uicontrol13516511412"><b>Download X.509 Certificate</b></span> dialog box displayed, select the certificate expiration time and download the X.509 certificate of the cluster as prompted.</span><p><div class="fignone" id="cce_10_0175__fig873583013712"><span class="figcap"><b>Figure 1 </b>Downloading a certificate</span><br><span><img id="cce_10_0175__image282017212710" src="en-us_image_0000001568822637.png"></span></div>
 <div class="notice" id="cce_10_0175__note21816913343"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0175__ul45041635102414"><li id="cce_10_0175__li050403542411">The downloaded certificate contains three files: <strong id="cce_10_0175__b1790092752911">client.key</strong>, <strong id="cce_10_0175__b990002710298">client.crt</strong>, and <strong id="cce_10_0175__b690015272292">ca.crt</strong>. Keep these files secure.</li><li id="cce_10_0175__li150414359248">Certificates are not required for mutual access between containers in a cluster.</li></ul>
 </div></div>
 </p></li></ol>
diff --git a/docs/cce/umn/cce_10_0178.html b/docs/cce/umn/cce_10_0178.html
index b3fda086..3a82c057 100644
--- a/docs/cce/umn/cce_10_0178.html
+++ b/docs/cce/umn/cce_10_0178.html
@@ -1,14 +1,14 @@
 <a name="cce_10_0178"></a><a name="cce_10_0178"></a>
 
 <h1 class="topictitle1">Formula for Calculating the Reserved Resources of a Node</h1>
-<div id="body1524713564673"><p id="cce_10_0178__p591031155413">Some of the resources on the <span class="keyword" id="cce_10_0178__span2167926204817">node</span> need to run some necessary <span class="keyword" id="cce_10_0178__span416772624814">Kubernetes</span> system components and resources to make the node as part of your cluster. Therefore, the total number of node resources and the number of assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, Kubernetes needs to reserve more resources.</p>
+<div id="body1524713564673"><p id="cce_10_0178__p591031155413">Some of the resources on the <span class="keyword" id="cce_10_0178__span2167926204817">node</span> need to run some necessary <span class="keyword" id="cce_10_0178__span416772624814">Kubernetes</span> system components and resources to make the node as part of your cluster. Therefore, the total number of node resources and the number of assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, more node resources need to be reserved to run Kubernetes components.</p>
 <p id="cce_10_0178__p9278143105716">To ensure node stability, a certain amount of CCE node resources will be reserved for Kubernetes components (such as kubelet, kube-proxy, and docker) based on the node specifications.</p>
 <p id="cce_10_0178__p169111185415">CCE calculates the resources that can be allocated to user nodes as follows:</p>
 <p id="cce_10_0178__p15911151155419"><strong id="cce_10_0178__b1713634541010">Allocatable resources = Total amount - Reserved amount - Eviction threshold</strong></p>
 <p id="cce_10_0178__p16231944205019"> The memory eviction threshold is fixed at 100 MB.</p>
 <p id="cce_10_0178__p20379184215543">When the memory consumed by all pods on a node increases, the following behaviors may occur:</p>
-<ol id="cce_10_0178__ol17831358175420"><li id="cce_10_0178__li20783658135414">If the memory is greater than or equal to the allocatable amount on the node, kubelet is triggered to evict pods.</li><li id="cce_10_0178__li167841588547">When the memory approaches the allocatable amount and eviction threshold (total minus reserved), OS OOM is triggered.</li></ol>
-<div class="section" id="cce_10_0178__section16856143934620"><h4 class="sectiontitle">Rules for Reserving Node Memory </h4><p id="cce_10_0178__p671312452573">You can use the following formula calculate how much memory you should reserve for running containers on a node:</p>
+<ol id="cce_10_0178__ol17831358175420"><li id="cce_10_0178__li20783658135414">When the available memory on a node is lower than the eviction threshold, kubelet is triggered to evict pods. For details about Kubernetes eviction threshold, see <a href="https://kubernetes.io/docs/concepts/scheduling-eviction/node-pressure-eviction" target="_blank" rel="noopener noreferrer">Node-pressure Eviction</a>.</li><li id="cce_10_0178__li167841588547">If a node triggers an OS Out-Of-Memory (OOM) event before kubelet reclaims memory, the system terminates the container. However, kubelet does not evict the pod, but restarts the container based on the RestartPolicy of the pod.</li></ol>
+<div class="section" id="cce_10_0178__section16856143934620"><h4 class="sectiontitle">Rules for Reserving Node Memory</h4><p id="cce_10_0178__p671312452573">You can use the following formula calculate how much memory you should reserve for running containers on a node:</p>
 <p id="cce_10_0178__p1695774420316">Total reserved amount = Reserved memory for system components + Reserved memory for kubelet to manage pods</p>
 
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0178__table19962121035915" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Reservation rules for system components</caption><thead align="left"><tr id="cce_10_0178__row15963910105914"><th align="left" class="cellrowborder" valign="top" width="34.61%" id="mcps1.3.8.4.2.3.1.1"><p id="cce_10_0178__p1696331012593">Total Memory (TM)</p>
diff --git a/docs/cce/umn/cce_10_0184.html b/docs/cce/umn/cce_10_0184.html
index 03f8377b..14a5a411 100644
--- a/docs/cce/umn/cce_10_0184.html
+++ b/docs/cce/umn/cce_10_0184.html
@@ -7,7 +7,7 @@
 <div class="section" id="cce_10_0184__section299918342346"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0184__ul121015107312"><li id="cce_10_0184__li3101810193119">Data, including the VM status, ECS names, number of CPUs, size of memory, ECS specifications, and public IP addresses, can be synchronized.<p id="cce_10_0184__p2901244183112"><a name="cce_10_0184__li3101810193119"></a><a name="li3101810193119"></a>If an ECS name is specified as the Kubernetes node name, the change of the ECS name cannot be synchronized to the CCE console.</p>
 </li><li id="cce_10_0184__li8102110103118">Data, such as the OS and image ID, cannot be synchronized. (Such parameters cannot be modified on the ECS console.)</li></ul>
 </div>
-<div class="section" id="cce_10_0184__section2076543461216"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0184__ol1882502762811"><li id="cce_10_0184__li849281818811"><span>Log in to the CCE console.</span></li><li id="cce_10_0184__li13907715194011"><span>Click the cluster name to access the cluster console. Choose <span class="uicontrol" id="cce_10_0184__uicontrol1346492517398"><b>Nodes</b></span> in the navigation pane.</span></li><li id="cce_10_0184__li1382582719286"><span>Choose <strong id="cce_10_0184__b19930131353810">More</strong> &gt; <strong id="cce_10_0184__b398116376321">Sync Server Data</strong> next to the node.</span><p><div class="fignone" id="cce_10_0184__fig983933294015"><span class="figcap"><b>Figure 1 </b>Synchronizing server data</span><br><span><img id="cce_10_0184__image3503275220" src="en-us_image_0000001243981203.png"></span></div>
+<div class="section" id="cce_10_0184__section2076543461216"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0184__ol1882502762811"><li id="cce_10_0184__li849281818811"><span>Log in to the CCE console.</span></li><li id="cce_10_0184__li13907715194011"><span>Click the cluster name to access the cluster console. Choose <span class="uicontrol" id="cce_10_0184__uicontrol1346492517398"><b>Nodes</b></span> in the navigation pane.</span></li><li id="cce_10_0184__li1382582719286"><span>Choose <strong id="cce_10_0184__b19930131353810">More</strong> &gt; <strong id="cce_10_0184__b398116376321">Sync Server Data</strong> next to the node.</span><p><div class="fignone" id="cce_10_0184__fig983933294015"><span class="figcap"><b>Figure 1 </b>Synchronizing server data</span><br><span><img id="cce_10_0184__image3503275220" src="en-us_image_0000001517743520.png"></span></div>
 <p id="cce_10_0184__p17635154314012">After the synchronization is complete, the <strong id="cce_10_0184__b64827914309">ECS data synchronization requested</strong> message is displayed in the upper right corner.</p>
 </p></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_10_0186.html b/docs/cce/umn/cce_10_0186.html
index d7eb7267..e761b993 100644
--- a/docs/cce/umn/cce_10_0186.html
+++ b/docs/cce/umn/cce_10_0186.html
@@ -3,9 +3,7 @@
 <h1 class="topictitle1">Deleting a Node</h1>
 <div id="body1559203372010"><div class="section" id="cce_10_0186__section748912450371"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0186__p19987354135915">When a node in a CCE cluster is deleted, services running on the node will also be deleted. Exercise caution when performing this operation.</p>
 </div>
-<div class="section" id="cce_10_0186__section1999130951"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0186__ul1687437184518"><li id="cce_10_0186__li450618444619">After a CCE cluster is deleted, the ECS nodes in the cluster are also deleted.</li><li id="cce_10_0186__li2755131805912"><div class="notice" id="cce_10_0186__note151271315132912"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0186__p1614541592911">For clusters of v1.17.11 or later, after a VM is deleted on the ECS console, the corresponding node in the CCE cluster is automatically deleted.</p>
-</div></div>
-</li></ul>
+<div class="section" id="cce_10_0186__section1999130951"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0186__ul1687437184518"><li id="cce_10_0186__li1927258101220">VM nodes that are being used by CCE do not support deletion on the ECS page.</li></ul>
 </div>
 <div class="section" id="cce_10_0186__section83421713122615"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0186__ul189321612123615"><li id="cce_10_0186__li159325122367">Deleting a node will lead to pod migration, which may affect services. Perform this operation during off-peak hours.</li><li id="cce_10_0186__li29322128366">Unexpected risks may occur during the operation. Back up related data in advance.</li><li id="cce_10_0186__li893261218365">During the operation, the backend will set the node to the unschedulable state.</li><li id="cce_10_0186__li139331412133615">Only worker nodes can be deleted.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0187.html b/docs/cce/umn/cce_10_0187.html
index 7393d70a..d46c4e6c 100644
--- a/docs/cce/umn/cce_10_0187.html
+++ b/docs/cce/umn/cce_10_0187.html
@@ -10,7 +10,7 @@
 </li></ul>
 </div>
 <p id="cce_10_0187__p7261627145419">In general, you configure CCE permissions in two scenarios. The first is creating and managing clusters and related resources, such as nodes. The second is creating and using Kubernetes resources in the cluster, such as workloads and Services.</p>
-<div class="fignone" id="cce_10_0187__fig11818185173613"><span class="figcap"><b>Figure 1 </b>Illustration on CCE permissions</span><br><span><img id="cce_10_0187__image77663013375" src="en-us_image_0000001199181266.png"></span></div>
+<div class="fignone" id="cce_10_0187__fig11818185173613"><span class="figcap"><b>Figure 1 </b>Illustration on CCE permissions</span><br><span><img id="cce_10_0187__image77663013375" src="en-us_image_0000001569182621.png"></span></div>
 <p id="cce_10_0187__p791472435616">These permissions allow you to manage resource users at a finer granularity.</p>
 </div>
 <div class="section" id="cce_10_0187__section1464135853519"><a name="cce_10_0187__section1464135853519"></a><a name="section1464135853519"></a><h4 class="sectiontitle">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_10_0187__p5275251191113">Users with different cluster permissions (assigned using IAM) have different namespace permissions (assigned using Kubernetes RBAC). <a href="#cce_10_0187__table886210176509">Table 1</a> lists the namespace permissions of different users.</p>
diff --git a/docs/cce/umn/cce_10_0188.html b/docs/cce/umn/cce_10_0188.html
index 72c4cb06..be0f7bce 100644
--- a/docs/cce/umn/cce_10_0188.html
+++ b/docs/cce/umn/cce_10_0188.html
@@ -8,7 +8,7 @@
 </div>
 <div class="section" id="cce_10_0188__section638994317105"><h4 class="sectiontitle">Configuration</h4><p id="cce_10_0188__p686525014420">On the CCE console, when you choose <strong id="cce_10_0188__b197085371453">Permissions</strong> &gt; <strong id="cce_10_0188__b525314581453">Cluster-Level Permissions</strong> to create a user group, you will be directed to the IAM console to complete the process. After the user group is created and its permissions are configured, you can view the information on the <strong id="cce_10_0188__b78091143115016">Cluster-Level Permissions</strong> tab page. This section describes the operations in IAM.</p>
 </div>
-<div class="section" id="cce_10_0188__section1189416161520"><h4 class="sectiontitle">Process Flow</h4><div class="fignone" id="cce_10_0188__fig1351611812271"><span class="figcap"><b>Figure 1 </b>Process of assigning CCE permissions</span><br><span><img id="cce_10_0188__image35161382273" src="en-us_image_0000001244261073.png"></span></div>
+<div class="section" id="cce_10_0188__section1189416161520"><h4 class="sectiontitle">Process Flow</h4><div class="fignone" id="cce_10_0188__fig1351611812271"><span class="figcap"><b>Figure 1 </b>Process of assigning CCE permissions</span><br><span><img id="cce_10_0188__image35161382273" src="en-us_image_0000001517743544.png"></span></div>
 <p id="cce_10_0188__p19791446201511"></p>
 <ol id="cce_10_0188__ol10176191312813"><li id="cce_10_0188__li10176121316284"><a name="cce_10_0188__li10176121316284"></a><a name="li10176121316284"></a>Create a user group and assign permissions to it.<p id="cce_10_0188__p41762137286"><a name="cce_10_0188__li10176121316284"></a><a name="li10176121316284"></a>Create a user group on the IAM console, and assign CCE permissions, for example, the <strong id="cce_10_0188__b64401620459">CCEReadOnlyAccess</strong> policy to the group.</p>
 <div class="note" id="cce_10_0188__note967150181611"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0188__p96817061620">CCE is deployed by region. On the IAM console, select <strong id="cce_10_0188__b1458741724518">Region-specific projects</strong> when assigning CCE permissions.</p>
@@ -82,7 +82,7 @@
 </li></ul>
 </div></div>
 <p id="cce_10_0188__p141675017814">When RBAC and IAM policies co-exist, the backend authentication logic for open APIs or console operations on CCE is as follows:</p>
-<p id="cce_10_0188__p176112191411"><span><img id="cce_10_0188__image8173102012117" src="en-us_image_0000001244101107.png"></span></p>
+<p id="cce_10_0188__p176112191411"><span><img id="cce_10_0188__image8173102012117" src="en-us_image_0000001518062684.png"></span></p>
 <div class="caution" id="cce_10_0188__note72065369315"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0188__p426512507111">Certain CCE APIs involve namespace-level permissions or key operations and therefore, they require special permissions:</p>
 <p id="cce_10_0188__p020616363316">Using clusterCert to obtain the cluster kubeconfig: cceadm/teadmin</p>
 </div></div>
diff --git a/docs/cce/umn/cce_10_0189.html b/docs/cce/umn/cce_10_0189.html
index 47eca800..86719700 100644
--- a/docs/cce/umn/cce_10_0189.html
+++ b/docs/cce/umn/cce_10_0189.html
@@ -4,36 +4,36 @@
 <div id="body1556099896059"><div class="section" id="cce_10_0189__section54736241399"><h4 class="sectiontitle">Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_10_0189__en-us_topic_0084600596_p293018587113">You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kubernetes objects: Role, ClusterRole, RoleBinding, and ClusterRoleBinding, which are described as follows:</p>
 <ul id="cce_10_0189__en-us_topic_0084600596_ul1051101311020"><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li1481515491386">Role: defines a set of rules for accessing Kubernetes resources in a namespace.</li><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li1224120528819">RoleBinding: defines the relationship between users and roles.</li><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li11770153233818">ClusterRole: defines a set of rules for accessing Kubernetes resources in a cluster (including all namespaces).</li><li id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_li15813127781">ClusterRoleBinding: defines the relationship between users and cluster roles.</li></ul>
 <p id="cce_10_0189__en-us_topic_0084600596_p13511813111010">Role and ClusterRole specify actions that can be performed on specific resources. RoleBinding and ClusterRoleBinding bind roles to specific users, user groups, or ServiceAccounts. Illustration:</p>
-<div class="fignone" id="cce_10_0189__en-us_topic_0084600596_fig1751131311103"><span class="figcap"><b>Figure 1 </b>Role binding</span><br><span><img id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_image19499911182110" src="en-us_image_0000001244261071.png"></span></div>
+<div class="fignone" id="cce_10_0189__en-us_topic_0084600596_fig1751131311103"><span class="figcap"><b>Figure 1 </b>Role binding</span><br><span><img id="cce_10_0189__en-us_topic_0084600596_en-us_topic_0249851132_image19499911182110" src="en-us_image_0000001517743636.png"></span></div>
 <p id="cce_10_0189__en-us_topic_0084600596_p18544162681014">On the CCE console, you can assign permissions to a user or user group to access resources in one or multiple namespaces. By default, the CCE console provides the following ClusterRoles:</p>
-<ul id="cce_10_0189__en-us_topic_0084600596_ul12544126191012"><li id="cce_10_0189__en-us_topic_0084600596_li1754413268102">view (read-only): read-only permission on most resources in all or selected namespaces.</li><li id="cce_10_0189__en-us_topic_0084600596_li15545182611109">edit (development): read and write permissions on most resources in all or selected namespaces. If this ClusterRole is configured for all namespaces, its capability is the same as the O&amp;M permission.</li><li id="cce_10_0189__en-us_topic_0084600596_li14545926101013">admin (O&amp;M): read and write permissions on most resources in all namespaces, and read-only permission on nodes, storage volumes, namespaces, and quota management.</li><li id="cce_10_0189__en-us_topic_0084600596_li10545926201011">cluster-admin (administrator): read and write permissions on all resources in all namespaces.</li></ul>
+<ul id="cce_10_0189__en-us_topic_0084600596_ul12544126191012"><li id="cce_10_0189__en-us_topic_0084600596_li1754413268102">view (read-only): read-only permission on most resources in all or selected namespaces.</li><li id="cce_10_0189__en-us_topic_0084600596_li15545182611109">edit (development): read and write permissions on most resources in all or selected namespaces. If this ClusterRole is configured for all namespaces, its capability is the same as the O&amp;M permission.</li><li id="cce_10_0189__en-us_topic_0084600596_li14545926101013">admin (O&amp;M): read and write permissions on most resources in all namespaces, and read-only permission on nodes, storage volumes, namespaces, and quota management.</li><li id="cce_10_0189__en-us_topic_0084600596_li10545926201011">cluster-admin (administrator): read and write permissions on all resources in all namespaces.</li><li id="cce_10_0189__li19771313143717">drainage-editor: drain a node.</li><li id="cce_10_0189__li20758163163711">drainage-viewer: view the nodal drainage status but cannot drain a node.</li></ul>
 </div>
-<div class="section" id="cce_10_0189__section207514572488"><a name="cce_10_0189__section207514572488"></a><a name="section207514572488"></a><h4 class="sectiontitle">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_10_0189__cce_10_0187_p5275251191113">Users with different cluster permissions (assigned using IAM) have different namespace permissions (assigned using Kubernetes RBAC). <a href="#cce_10_0189__cce_10_0187_table886210176509">Table 1</a> lists the namespace permissions of different users.</p>
+<div class="section" id="cce_10_0189__section207514572488"><a name="cce_10_0189__section207514572488"></a><a name="section207514572488"></a><h4 class="sectiontitle">Cluster Permissions (IAM-based) and Namespace Permissions (Kubernetes RBAC-based)</h4><p id="cce_10_0189__en-us_topic_0000001199181174_p5275251191113">Users with different cluster permissions (assigned using IAM) have different namespace permissions (assigned using Kubernetes RBAC). <a href="#cce_10_0189__en-us_topic_0000001199181174_table886210176509">Table 1</a> lists the namespace permissions of different users.</p>
 
-<div class="tablenoborder"><a name="cce_10_0189__cce_10_0187_table886210176509"></a><a name="cce_10_0187_table886210176509"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0189__cce_10_0187_table886210176509" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Differences in namespace permissions</caption><thead align="left"><tr id="cce_10_0189__cce_10_0187_row14863201719502"><th align="left" class="cellrowborder" valign="top" width="46.54%" id="mcps1.3.2.3.2.3.1.1"><p id="cce_10_0189__cce_10_0187_p14863111718502">User</p>
+<div class="tablenoborder"><a name="cce_10_0189__en-us_topic_0000001199181174_table886210176509"></a><a name="en-us_topic_0000001199181174_table886210176509"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0189__en-us_topic_0000001199181174_table886210176509" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Differences in namespace permissions</caption><thead align="left"><tr id="cce_10_0189__en-us_topic_0000001199181174_row14863201719502"><th align="left" class="cellrowborder" valign="top" width="46.54%" id="mcps1.3.2.3.2.3.1.1"><p id="cce_10_0189__en-us_topic_0000001199181174_p14863111718502">User</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="53.459999999999994%" id="mcps1.3.2.3.2.3.1.2"><p id="cce_10_0189__cce_10_0187_p10295153183913">Clusters of v1.13 and Later</p>
+<th align="left" class="cellrowborder" valign="top" width="53.459999999999994%" id="mcps1.3.2.3.2.3.1.2"><p id="cce_10_0189__en-us_topic_0000001199181174_p10295153183913">Clusters of v1.13 and Later</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0189__cce_10_0187_row138631617185012"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p1787744075015">User with the Tenant Administrator permissions</p>
+<tbody><tr id="cce_10_0189__en-us_topic_0000001199181174_row138631617185012"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__en-us_topic_0000001199181174_p1787744075015">User with the Tenant Administrator permissions</p>
 </td>
-<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p1829523133913">All namespace permissions</p>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__en-us_topic_0000001199181174_p1829523133913">All namespace permissions</p>
 </td>
 </tr>
-<tr id="cce_10_0189__cce_10_0187_row138631317205019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p3878104075018">IAM user with the CCE Administrator role</p>
+<tr id="cce_10_0189__en-us_topic_0000001199181174_row138631317205019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__en-us_topic_0000001199181174_p3878104075018">IAM user with the CCE Administrator role</p>
 </td>
-<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p172951435393">All namespace permissions</p>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__en-us_topic_0000001199181174_p172951435393">All namespace permissions</p>
 </td>
 </tr>
-<tr id="cce_10_0189__cce_10_0187_row1386412176506"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p187854025013">IAM user with the CCE FullAccess or CCE ReadOnlyAccess role</p>
+<tr id="cce_10_0189__en-us_topic_0000001199181174_row1386412176506"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__en-us_topic_0000001199181174_p187854025013">IAM user with the CCE FullAccess or CCE ReadOnlyAccess role</p>
 </td>
-<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p7321956194312">Requires Kubernetes RBAC authorization.</p>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__en-us_topic_0000001199181174_p7321956194312">Requires Kubernetes RBAC authorization.</p>
 </td>
 </tr>
-<tr id="cce_10_0189__cce_10_0187_row28641117145019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__cce_10_0187_p11879440195014">IAM user with the Tenant Guest role</p>
+<tr id="cce_10_0189__en-us_topic_0000001199181174_row28641117145019"><td class="cellrowborder" valign="top" width="46.54%" headers="mcps1.3.2.3.2.3.1.1 "><p id="cce_10_0189__en-us_topic_0000001199181174_p11879440195014">IAM user with the Tenant Guest role</p>
 </td>
-<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__cce_10_0187_p1932115664317">Requires Kubernetes RBAC authorization.</p>
+<td class="cellrowborder" valign="top" width="53.459999999999994%" headers="mcps1.3.2.3.2.3.1.2 "><p id="cce_10_0189__en-us_topic_0000001199181174_p1932115664317">Requires Kubernetes RBAC authorization.</p>
 </td>
 </tr>
 </tbody>
@@ -80,7 +80,7 @@ subjects:
   name: 0c97ac3cb280f4d91fa7c0096739e1f8 # User ID of the user-example
   apiGroup: rbac.authorization.k8s.io</pre>
 <p id="cce_10_0189__p195507214188">The <strong id="cce_10_0189__b158631241144713">subjects</strong> section binds a Role with an IAM user so that the IAM user can obtain the permissions defined in the Role, as shown in the following figure.</p>
-<div class="fignone" id="cce_10_0189__fig9473195372813"><span class="figcap"><b>Figure 2 </b>A RoleBinding binds the Role to the user.</span><br><span><img id="cce_10_0189__en-us_topic_0249851132_image35211083405" src="en-us_image_0262051194.png"></span></div>
+<div class="fignone" id="cce_10_0189__fig9473195372813"><span class="figcap"><b>Figure 2 </b>A RoleBinding binds the Role to the user.</span><br><span><img id="cce_10_0189__en-us_topic_0249851132_image35211083405" src="en-us_image_0000001518222732.png"></span></div>
 <p id="cce_10_0189__p430545215225">You can also specify a user group in the <strong id="cce_10_0189__b193732864815">subjects</strong> section. In this case, all users in the user group obtain the permissions defined in the Role.</p>
 <pre class="screen" id="cce_10_0189__screen2269203813232">subjects:
 - kind: Group
diff --git a/docs/cce/umn/cce_10_0190.html b/docs/cce/umn/cce_10_0190.html
index d73afefd..ba88a18f 100644
--- a/docs/cce/umn/cce_10_0190.html
+++ b/docs/cce/umn/cce_10_0190.html
@@ -67,7 +67,7 @@
 <td class="cellrowborder" valign="top" width="28.672867286728675%" headers="mcps1.3.3.4.2.4.1.2 "><p id="cce_10_0190__p116411756133813">Object Storage Service (OBS)</p>
 <p id="cce_10_0190__p126411556163811">Scalable File Service (SFS)</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><ul id="cce_10_0190__ul146023714385"><li id="cce_10_0190__li161173711383">To use OBS, you must have OBS Administrator globally assigned.<div class="note" id="cce_10_0190__cce_10_0190_note1215220141518"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0190__cce_10_0190_p0153120121518">Because of the cache, it takes about 13 minutes for the RBAC policy to take effect after being granted to users, enterprise projects, and user groups. After an OBS-related system policy is granted, it takes about 5 minutes for the policy to take effect.</p>
+<td class="cellrowborder" valign="top" width="49.45494549454945%" headers="mcps1.3.3.4.2.4.1.3 "><ul id="cce_10_0190__ul146023714385"><li id="cce_10_0190__li161173711383">To use OBS, you must have OBS Administrator globally assigned.<div class="note" id="cce_10_0190__en-us_topic_0000001244101055_note1215220141518"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0190__en-us_topic_0000001244101055_p0153120121518">Because of the cache, it takes about 13 minutes for the RBAC policy to take effect after being granted to users, enterprise projects, and user groups. After an OBS-related system policy is granted, it takes about 5 minutes for the policy to take effect.</p>
 </div></div>
 </li><li id="cce_10_0190__li1461183713810">To use SFS, you must have SFS FullAccess assigned.</li></ul>
 <p id="cce_10_0190__p533161762815">The CCE Administrator role is required for importing storage devices.</p>
diff --git a/docs/cce/umn/cce_10_0191.html b/docs/cce/umn/cce_10_0191.html
index 4c033d54..e3f23d0a 100644
--- a/docs/cce/umn/cce_10_0191.html
+++ b/docs/cce/umn/cce_10_0191.html
@@ -6,7 +6,7 @@
 <p id="cce_10_0191__en-us_topic_0226102212_p138031436191716">The relationship between Helm and Kubernetes is as follows:</p>
 <ul id="cce_10_0191__ul1633161218346"><li id="cce_10_0191__li83311212113414">Helm &lt;–&gt; Kubernetes</li><li id="cce_10_0191__li13315123347">Apt &lt;–&gt; Ubuntu</li><li id="cce_10_0191__li1833131283412">Yum &lt;–&gt; CentOS</li><li id="cce_10_0191__li7331131233420">Pip &lt;–&gt; Python</li></ul>
 <p id="cce_10_0191__p177984213343">The following figure shows the solution architecture:</p>
-<p id="cce_10_0191__p794155619355"><span><img id="cce_10_0191__image4804826181816" src="en-us_image_0000001325364477.png"></span></p>
+<p id="cce_10_0191__p794155619355"><span><img id="cce_10_0191__image4804826181816" src="en-us_image_0000001518062492.png"></span></p>
 <p id="cce_10_0191__p95091655535">Helm can help application orchestration for Kubernetes:</p>
 <ul id="cce_10_0191__ul75096515315"><li id="cce_10_0191__li950913516539">Manages, edits, and updates a large number of Kubernetes configuration files.</li><li id="cce_10_0191__li4509459535">Deploys a complex Kubernetes application that contains a large number of configuration files.</li><li id="cce_10_0191__li1750905155317">Shares and reuses Kubernetes configurations and applications.</li><li id="cce_10_0191__li450920514533">Supports multiple environments with parameter-based configuration templates.</li><li id="cce_10_0191__li13509115105313">Manages the release of applications, including rolling back the application, finding differences (using the <strong id="cce_10_0191__b1236505916344">diff</strong> command), and viewing the release history.</li><li id="cce_10_0191__li7509125125311">Controls phases in a deployment cycle.</li><li id="cce_10_0191__li19509115195314">Tests and verifies the released version.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0193.html b/docs/cce/umn/cce_10_0193.html
index b375076e..c294de2d 100644
--- a/docs/cce/umn/cce_10_0193.html
+++ b/docs/cce/umn/cce_10_0193.html
@@ -80,7 +80,8 @@
 </table>
 </div>
 </li></ul>
-</p></li><li id="cce_10_0193__li2600538163517"><span>Parameters of the volcano default scheduler. For details, see <a href="#cce_10_0193__table562185146">Table 2</a>.</span><p><pre class="screen" id="cce_10_0193__screen1160010383352">ca_cert: ''
+</p></li><li id="cce_10_0193__li921715919291"><span>Select whether to deploy the add-on pods across multiple AZs.</span><p><ul id="cce_10_0193__ul4214181752714"><li id="cce_10_0193__en-us_topic_0000001199341168_li5214161718270"><strong id="cce_10_0193__b1337546229111046">Preferred</strong>: Deployment pods of the add-on are preferentially scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, the pods are scheduled to a single AZ.</li><li id="cce_10_0193__en-us_topic_0000001199341168_li4214917142716"><strong id="cce_10_0193__b155092274411134">Required</strong>: Deployment pods of the add-on are forcibly scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, not all pods can run.</li></ul>
+</p></li><li id="cce_10_0193__li2600538163517"><span>Parameters of the volcano default scheduler. For details, see <a href="#cce_10_0193__table562185146">Table 2</a>.</span><p><pre class="screen" id="cce_10_0193__screen1160010383352">colocation_enable: ''
 default_scheduler_conf:
   actions: 'allocate, backfill'
   tiers:
@@ -100,27 +101,25 @@ default_scheduler_conf:
         - name: 'nodelocalvolume'
         - name: 'nodeemptydirvolume'
         - name: 'nodeCSIscheduling'
-        - name: 'networkresource'
-server_cert: ''
-server_key: ''</pre>
+        - name: 'networkresource'</pre>
 
-<div class="tablenoborder"><a name="cce_10_0193__table562185146"></a><a name="table562185146"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0193__table562185146" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Volcano Plugins</caption><thead align="left"><tr id="cce_10_0193__row1161711510412"><th align="left" class="cellrowborder" valign="top" width="12.778722127787221%" id="mcps1.3.2.2.3.2.2.2.5.1.1"><p id="cce_10_0193__p1861712513416">Add-on</p>
+<div class="tablenoborder"><a name="cce_10_0193__table562185146"></a><a name="table562185146"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0193__table562185146" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Volcano Plugins</caption><thead align="left"><tr id="cce_10_0193__row1161711510412"><th align="left" class="cellrowborder" valign="top" width="12.778722127787221%" id="mcps1.3.2.2.4.2.2.2.5.1.1"><p id="cce_10_0193__p1861712513416">Add-on</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="22.4977502249775%" id="mcps1.3.2.2.3.2.2.2.5.1.2"><p id="cce_10_0193__p56171511414">Function</p>
+<th align="left" class="cellrowborder" valign="top" width="22.4977502249775%" id="mcps1.3.2.2.4.2.2.2.5.1.2"><p id="cce_10_0193__p56171511414">Function</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="33.38666133386661%" id="mcps1.3.2.2.3.2.2.2.5.1.3"><p id="cce_10_0193__p19617157416">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="33.38666133386661%" id="mcps1.3.2.2.4.2.2.2.5.1.3"><p id="cce_10_0193__p19617157416">Description</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="31.336866313368667%" id="mcps1.3.2.2.3.2.2.2.5.1.4"><p id="cce_10_0193__p13617195947">Demonstration</p>
+<th align="left" class="cellrowborder" valign="top" width="31.336866313368667%" id="mcps1.3.2.2.4.2.2.2.5.1.4"><p id="cce_10_0193__p13617195947">Demonstration</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0193__row9618157412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p06171553418">binpack</p>
+<tbody><tr id="cce_10_0193__row9618157412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p06171553418">binpack</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p136171657420">The binpack plugin schedules pods to nodes with high resource utilization to reduce resource fragments.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p136171657420">Schedules pods to nodes with high resource utilization to reduce resource fragments.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><ul id="cce_10_0193__ul8870121613411"><li id="cce_10_0193__li187011617415"><strong id="cce_10_0193__b207143623242447">binpack.weight</strong>: Weight of the binpack plugin.</li><li id="cce_10_0193__li1187011161944"><strong id="cce_10_0193__b124611952122219">binpack.cpu</strong>: Ratio of CPU resources to all resources. Defaults to <strong id="cce_10_0193__b046135292211">1</strong>.</li><li id="cce_10_0193__li198711016945"><strong id="cce_10_0193__b16938118239">binpack.memory</strong>: Ratio of memory resources to all resources. Defaults to <strong id="cce_10_0193__b29351132317">1</strong>.</li><li id="cce_10_0193__li887117162043">binpack.resources:</li></ul>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><ul id="cce_10_0193__ul8870121613411"><li id="cce_10_0193__li187011617415"><strong id="cce_10_0193__b207143623242447">binpack.weight</strong>: Weight of the binpack plugin.</li><li id="cce_10_0193__li1187011161944"><strong id="cce_10_0193__b1542765716313">binpack.cpu</strong>: ratio of CPU resources to all resources. Defaults to <strong id="cce_10_0193__b44281570319">1</strong>.</li><li id="cce_10_0193__li198711016945"><strong id="cce_10_0193__b16938118239">binpack.memory</strong>: Ratio of memory resources to all resources. Defaults to <strong id="cce_10_0193__b29351132317">1</strong>.</li><li id="cce_10_0193__li887117162043"><strong id="cce_10_0193__b780016315418">binpack.resources</strong>: resource type.</li></ul>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen4192214191819">- plugins:
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen4192214191819">- plugins:
   - name: binpack
     arguments:
       binpack.weight: 10
@@ -131,70 +130,70 @@ server_key: ''</pre>
       binpack.resources.example.com/foo: 3</pre>
 </td>
 </tr>
-<tr id="cce_10_0193__row13618357412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p86181651146">conformance</p>
+<tr id="cce_10_0193__row13618357412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p86181651146">conformance</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p16188516417">The conformance plugin considers that the tasks in namespace <strong id="cce_10_0193__b47148763742516">kube-system</strong> have a higher priority. These tasks will not be preempted.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p16188516417">The conformance plugin considers that the tasks in namespace <strong id="cce_10_0193__b47148763742516">kube-system</strong> have a higher priority. These tasks will not be preempted.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p86181515412">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p86181515412">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p16618851346">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p16618851346">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row1761812517413"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p161811515419">gang</p>
+<tr id="cce_10_0193__row1761812517413"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p161811515419">gang</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p7618125943">The gang plugin considers a group of pods as a whole to allocate resources.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p7618125943">The gang plugin considers a group of pods as a whole to allocate resources.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p16181759415">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p16181759415">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p196181751145">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p196181751145">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row1661811514419"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p1361814510419">priority</p>
+<tr id="cce_10_0193__row1661811514419"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p1361814510419">priority</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p96181251748">The priority plugin schedules pods based on the custom workload priority.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p96181251748">The priority plugin schedules pods based on the custom workload priority.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p76181151248">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p76181151248">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p14618253419">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p14618253419">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row5618351648"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p16181751412">overcommit</p>
+<tr id="cce_10_0193__row5618351648"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p16181751412">overcommit</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p176181757410">Resources in a cluster are scheduled after being accumulated in a certain multiple to improve the workload enqueuing efficiency. If all workloads are Deployments, remove this plugin or set the raising factor to <strong id="cce_10_0193__b159954622942558">2.0</strong>.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p176181757410">Resources in a cluster are scheduled after being accumulated in a certain multiple to improve the workload enqueuing efficiency. If all workloads are Deployments, remove this plugin or set the raising factor to <strong id="cce_10_0193__b159954622942558">2.0</strong>.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p146188516411"><strong id="cce_10_0193__b3061031494268">overcommit-factor</strong>: Raising factor. Defaults to <strong id="cce_10_0193__b3270523314268">1.2</strong>.</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p146188516411"><strong id="cce_10_0193__b3061031494268">overcommit-factor</strong>: Raising factor. Defaults to <strong id="cce_10_0193__b3270523314268">1.2</strong>.</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen1943123716187">- plugins:
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen1943123716187">- plugins:
   - name: overcommit
     arguments:
       overcommit-factor: 2.0</pre>
 </td>
 </tr>
-<tr id="cce_10_0193__row10618105849"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p9618952417">drf</p>
+<tr id="cce_10_0193__row10618105849"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p9618952417">drf</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p4618652418">The DRF plugin schedules resources based on the container group Domaint Resource. The smallest Domaint Resource would be selected for priority scheduling.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p4618652418">The DRF plugin schedules resources based on the container group Domaint Resource. The smallest Domaint Resource would be selected for priority scheduling.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p46181351549">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p46181351549">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p11618355418">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p11618355418">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row2618251544"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p5618551445">predicates</p>
+<tr id="cce_10_0193__row2618251544"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p5618551445">predicates</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p166184512417">Determines whether a task is bound to a node by using a series of evaluation algorithms, such as node/pod affinity, taint tolerance, node port repetition, volume limits, and volume zone matching.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p166184512417">Determines whether a task is bound to a node by using a series of evaluation algorithms, such as node/pod affinity, taint tolerance, node port repetition, volume limits, and volume zone matching.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p18618105642">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p18618105642">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p12618659419">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p12618659419">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row14619155343"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p7619151411">nodeorder</p>
+<tr id="cce_10_0193__row14619155343"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p7619151411">nodeorder</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p361975849">The nodeorder plugin scores all nodes for a task by using a series of scoring algorithms.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p361975849">The nodeorder plugin scores all nodes for a task by using a series of scoring algorithms.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><ul id="cce_10_0193__ul1127020488717"><li id="cce_10_0193__li1127014810719"><strong id="cce_10_0193__b202507265242655">nodeaffinity.weight</strong>: Pods are scheduled based on the node affinity. Defaults to <strong id="cce_10_0193__b9523119842655">1</strong>.</li><li id="cce_10_0193__li32701348977"><strong id="cce_10_0193__b2305621664275">podaffinity.weight</strong>: Pods are scheduled based on the pod affinity. Defaults to <strong id="cce_10_0193__b2523397624275">1</strong>.</li><li id="cce_10_0193__li162701248374"><strong id="cce_10_0193__b42769641742714">leastrequested.weight</strong>: Pods are scheduled to the node with the least resources. Defaults to <strong id="cce_10_0193__b201873097842714">1</strong>.</li><li id="cce_10_0193__li527012481179"><strong id="cce_10_0193__b136116848842725">balancedresource.weight</strong>: Pods are scheduled to the node with balanced resource. Defaults to <strong id="cce_10_0193__b211551392442725">1</strong>.</li><li id="cce_10_0193__li9270948670"><strong id="cce_10_0193__b167593168642737">mostrequested.weight</strong>: Pods are scheduled to the node with the most requested resources. Defaults to <strong id="cce_10_0193__b58636053242737">0</strong>.</li><li id="cce_10_0193__li42703481973"><strong id="cce_10_0193__b182899724342747">tainttoleration.weight</strong>: Pods are scheduled to the node with a high taint tolerance. Defaults to <strong id="cce_10_0193__b68931403942747">1</strong>.</li><li id="cce_10_0193__li427094816710"><strong id="cce_10_0193__b125110500242758">imagelocality.weight</strong>: Pods are scheduled to the node where the required images exist. Defaults to <strong id="cce_10_0193__b106348447042758">1</strong>.</li><li id="cce_10_0193__li13270948177"><strong id="cce_10_0193__b10668722594289">selectorspread.weight</strong>: Pods are evenly scheduled to different nodes. Defaults to <strong id="cce_10_0193__b11973613734289">0</strong>.</li><li id="cce_10_0193__li7270948875"><strong id="cce_10_0193__b119998610442819">volumebinding.weight</strong>: Pods are scheduled to the node with the local PV delayed binding policy. Defaults to <strong id="cce_10_0193__b30967323642819">1</strong>.</li><li id="cce_10_0193__li927017481271"><strong id="cce_10_0193__b156729846042830">podtopologyspread.weight</strong>: Pods are scheduled based on the pod topology. Defaults to <strong id="cce_10_0193__b44035366942830">2</strong>.</li></ul>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><ul id="cce_10_0193__ul1127020488717"><li id="cce_10_0193__li1127014810719"><strong id="cce_10_0193__b202507265242655">nodeaffinity.weight</strong>: Pods are scheduled based on the node affinity. Defaults to <strong id="cce_10_0193__b9523119842655">1</strong>.</li><li id="cce_10_0193__li32701348977"><strong id="cce_10_0193__b2305621664275">podaffinity.weight</strong>: Pods are scheduled based on the pod affinity. Defaults to <strong id="cce_10_0193__b2523397624275">1</strong>.</li><li id="cce_10_0193__li162701248374"><strong id="cce_10_0193__b42769641742714">leastrequested.weight</strong>: Pods are scheduled to the node with the least resources. Defaults to <strong id="cce_10_0193__b201873097842714">1</strong>.</li><li id="cce_10_0193__li527012481179"><strong id="cce_10_0193__b136116848842725">balancedresource.weight</strong>: Pods are scheduled to the node with balanced resource. Defaults to <strong id="cce_10_0193__b211551392442725">1</strong>.</li><li id="cce_10_0193__li9270948670"><strong id="cce_10_0193__b167593168642737">mostrequested.weight</strong>: Pods are scheduled to the node with the most requested resources. Defaults to <strong id="cce_10_0193__b58636053242737">0</strong>.</li><li id="cce_10_0193__li42703481973"><strong id="cce_10_0193__b182899724342747">tainttoleration.weight</strong>: Pods are scheduled to the node with a high taint tolerance. Defaults to <strong id="cce_10_0193__b68931403942747">1</strong>.</li><li id="cce_10_0193__li427094816710"><strong id="cce_10_0193__b125110500242758">imagelocality.weight</strong>: Pods are scheduled to the node where the required images exist. Defaults to <strong id="cce_10_0193__b106348447042758">1</strong>.</li><li id="cce_10_0193__li13270948177"><strong id="cce_10_0193__b10668722594289">selectorspread.weight</strong>: Pods are evenly scheduled to different nodes. Defaults to <strong id="cce_10_0193__b11973613734289">0</strong>.</li><li id="cce_10_0193__li7270948875"><strong id="cce_10_0193__b119998610442819">volumebinding.weight</strong>: Pods are scheduled to the node with the local PV delayed binding policy. Defaults to <strong id="cce_10_0193__b30967323642819">1</strong>.</li><li id="cce_10_0193__li927017481271"><strong id="cce_10_0193__b156729846042830">podtopologyspread.weight</strong>: Pods are scheduled based on the pod topology. Defaults to <strong id="cce_10_0193__b44035366942830">2</strong>.</li></ul>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen1171374419183">- plugins:
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><pre class="screen" id="cce_10_0193__screen1171374419183">- plugins:
   - name: nodeorder
     arguments:
       leastrequested.weight: 1
@@ -208,76 +207,76 @@ server_key: ''</pre>
       podtopologyspread.weight: 2</pre>
 </td>
 </tr>
-<tr id="cce_10_0193__row156191958412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p17619551441">cce-gpu-topology-predicate</p>
+<tr id="cce_10_0193__row156191958412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p17619551441">cce-gpu-topology-predicate</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p176191252412">GPU-topology scheduling preselection algorithm</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p176191252412">GPU-topology scheduling preselection algorithm</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p161965649">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p161965649">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p10619115447">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p10619115447">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row10619851748"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p11619151648">cce-gpu-topology-priority</p>
+<tr id="cce_10_0193__row10619851748"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p11619151648">cce-gpu-topology-priority</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p161925843">GPU-topology scheduling priority algorithm</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p161925843">GPU-topology scheduling priority algorithm</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p10619752413">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p10619752413">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p19619185844">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p19619185844">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row146201351747"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p11619851345">cce-gpu</p>
+<tr id="cce_10_0193__row146201351747"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p11619851345">cce-gpu</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p56191451643">Works with the gpu add-on of CCE to support GPU resource allocation and decimal GPU configuration.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p56191451643">Works with the gpu add-on of CCE to support GPU resource allocation and decimal GPU configuration.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p3619185643">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p14426105924116">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p136201553415">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p136201553415">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row96201451643"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p2620175142">numaaware</p>
+<tr id="cce_10_0193__row96201451643"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p2620175142">numaaware</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p1062055244">NUMA topology scheduling</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p1062055244">NUMA topology scheduling</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p6620552412">weight: Weight of the numa-aware plugin.</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p6620552412">weight: Weight of the numa-aware plugin.</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p3620135947">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p3620135947">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row5620125141"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p18620251413">networkresource</p>
+<tr id="cce_10_0193__row5620125141"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p18620251413">networkresource</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p17620651046">The ENI requirement node can be preselected and filtered. The parameters are transferred by CCE and do not need to be manually configured.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p17620651046">The ENI requirement node can be preselected and filtered. The parameters are transferred by CCE and do not need to be manually configured.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p1762035945">NetworkType: Network type (eni or vpc-router).</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p1762035945">NetworkType: Network type (eni or vpc-router).</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p106208519410">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p106208519410">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row1562017510417"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p1762035443">nodelocalvolume</p>
+<tr id="cce_10_0193__row1562017510417"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p1762035443">nodelocalvolume</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p66201557413">The nodelocalvolume plugin filters out nodes that do not meet local volume requirements can be filtered out.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p66201557413">The nodelocalvolume plugin filters out nodes that do not meet local volume requirements can be filtered out.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p7620357412">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p7620357412">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p116203518416">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p116203518416">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row86211951949"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p0621145648">nodeemptydirvolume</p>
+<tr id="cce_10_0193__row86211951949"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p0621145648">nodeemptydirvolume</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p186219515411">The nodeemptydirvolume plugin filters out nodes that do not meet the emptyDir requirements.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p186219515411">The nodeemptydirvolume plugin filters out nodes that do not meet the emptyDir requirements.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p12621351147">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p12621351147">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p106211151845">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p106211151845">-</p>
 </td>
 </tr>
-<tr id="cce_10_0193__row15621957412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.3.2.2.2.5.1.1 "><p id="cce_10_0193__p126218515417">nodeCSIscheduling</p>
+<tr id="cce_10_0193__row15621957412"><td class="cellrowborder" valign="top" width="12.778722127787221%" headers="mcps1.3.2.2.4.2.2.2.5.1.1 "><p id="cce_10_0193__p126218515417">nodeCSIscheduling</p>
 </td>
-<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.3.2.2.2.5.1.2 "><p id="cce_10_0193__p46211852047">The nodeCSIscheduling plugin filters out nodes that have the everest component exception.</p>
+<td class="cellrowborder" valign="top" width="22.4977502249775%" headers="mcps1.3.2.2.4.2.2.2.5.1.2 "><p id="cce_10_0193__p46211852047">The nodeCSIscheduling plugin filters out nodes that have the everest component exception.</p>
 </td>
-<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.3.2.2.2.5.1.3 "><p id="cce_10_0193__p12621105844">-</p>
+<td class="cellrowborder" valign="top" width="33.38666133386661%" headers="mcps1.3.2.2.4.2.2.2.5.1.3 "><p id="cce_10_0193__p12621105844">-</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.3.2.2.2.5.1.4 "><p id="cce_10_0193__p362113515411">-</p>
+<td class="cellrowborder" valign="top" width="31.336866313368667%" headers="mcps1.3.2.2.4.2.2.2.5.1.4 "><p id="cce_10_0193__p362113515411">-</p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0197.html b/docs/cce/umn/cce_10_0197.html
index 1c7b8d84..f0b34d82 100644
--- a/docs/cce/umn/cce_10_0197.html
+++ b/docs/cce/umn/cce_10_0197.html
@@ -7,47 +7,56 @@
 <p id="cce_10_0197__p077764404910">An upgrade flag will be displayed on the cluster card view if there is a new version for the cluster to upgrade.</p>
 <p id="cce_10_0197__p19160184914478"><strong id="cce_10_0197__b1142012715314">How to check:</strong></p>
 <p id="cce_10_0197__p5663154019473">Log in to the CCE console and check whether the message "New version available" is displayed in the lower left corner of the cluster. If yes, the cluster can be upgraded. If no, the cluster cannot be upgraded.</p>
-<div class="fignone" id="cce_10_0197__fig121651550142417"><span class="figcap"><b>Figure 1 </b>Cluster with the upgrade flag</span><br><span><img id="cce_10_0197__image18285182115388" src="en-us_image_0000001482796460.png"></span></div>
+<div class="fignone" id="cce_10_0197__fig121651550142417"><span class="figcap"><b>Figure 1 </b>Cluster with the upgrade flag</span><br><span><img id="cce_10_0197__image18285182115388" src="en-us_image_0000001568902653.png"></span></div>
 <div class="section" id="cce_10_0197__section19981121648"><a name="cce_10_0197__section19981121648"></a><a name="section19981121648"></a><h4 class="sectiontitle">Cluster Upgrade</h4><p id="cce_10_0197__p1493653516466">The following table describes the target version to which each cluster version can be upgraded, the supported upgrade modes, and upgrade impacts.</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0197__table8890112518476" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster upgrade paths and impacts</caption><thead align="left"><tr id="cce_10_0197__row089172514470"><th align="left" class="cellrowborder" valign="top" width="16.13%" id="mcps1.3.8.3.2.5.1.1"><p id="cce_10_0197__p13891182554711">Source Version</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0197__table8890112518476" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster upgrade paths and impacts</caption><thead align="left"><tr id="cce_10_0197__row089172514470"><th align="left" class="cellrowborder" valign="top" width="29.150000000000002%" id="mcps1.3.8.3.2.4.1.1"><p id="cce_10_0197__p13891182554711">Source Version</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="24.32%" id="mcps1.3.8.3.2.5.1.2"><p id="cce_10_0197__p108911425144718">Target Version</p>
+<th align="left" class="cellrowborder" valign="top" width="37.870000000000005%" id="mcps1.3.8.3.2.4.1.2"><p id="cce_10_0197__p108911425144718">Target Version</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="11.16%" id="mcps1.3.8.3.2.5.1.3"><p id="cce_10_0197__p489119252474">Upgrade Modes</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="48.39%" id="mcps1.3.8.3.2.5.1.4"><p id="cce_10_0197__p68915253479">Impacts</p>
+<th align="left" class="cellrowborder" valign="top" width="32.980000000000004%" id="mcps1.3.8.3.2.4.1.3"><p id="cce_10_0197__p489119252474">Upgrade Modes</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0197__row19924194410388"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_10_0197__p199161534183911">v1.19</p>
+<tbody><tr id="cce_10_0197__row96949306153"><td class="cellrowborder" valign="top" width="29.150000000000002%" headers="mcps1.3.8.3.2.4.1.1 "><p id="cce_10_0197__p4694193041510">v1.23</p>
 </td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_10_0197__p109249445384">v1.21</p>
+<td class="cellrowborder" valign="top" width="37.870000000000005%" headers="mcps1.3.8.3.2.4.1.2 "><p id="cce_10_0197__p169443011513">v1.25</p>
 </td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_10_0197__p892544412383">In-place upgrade</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_10_0197__p1925104493814">You need to learn about the differences between versions. For details, see <a href="#cce_10_0197__section191131551162610">Precautions for Major Version Upgrade</a>.</p>
+<td class="cellrowborder" valign="top" width="32.980000000000004%" headers="mcps1.3.8.3.2.4.1.3 "><p id="cce_10_0197__p6402151191615">In-place upgrade</p>
 </td>
 </tr>
-<tr id="cce_10_0197__row241985117714"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_10_0197__p11301919817">v1.17</p>
+<tr id="cce_10_0197__row108843492147"><td class="cellrowborder" valign="top" width="29.150000000000002%" headers="mcps1.3.8.3.2.4.1.1 "><p id="cce_10_0197__p56321144193920">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.870000000000005%" headers="mcps1.3.8.3.2.4.1.2 "><p id="cce_10_0197__p7264149181">v1.25</p>
+<p id="cce_10_0197__p176321844193918">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" width="32.980000000000004%" headers="mcps1.3.8.3.2.4.1.3 "><p id="cce_10_0197__p5964181015717">In-place upgrade</p>
+</td>
+</tr>
+<tr id="cce_10_0197__row19924194410388"><td class="cellrowborder" valign="top" width="29.150000000000002%" headers="mcps1.3.8.3.2.4.1.1 "><p id="cce_10_0197__p199161534183911">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.870000000000005%" headers="mcps1.3.8.3.2.4.1.2 "><p id="cce_10_0197__p95441920378">v1.23</p>
+<p id="cce_10_0197__p151832212158">v1.21</p>
+<p id="cce_10_0197__p109249445384"></p>
+</td>
+<td class="cellrowborder" valign="top" width="32.980000000000004%" headers="mcps1.3.8.3.2.4.1.3 "><p id="cce_10_0197__p892544412383">In-place upgrade</p>
+</td>
+</tr>
+<tr id="cce_10_0197__row241985117714"><td class="cellrowborder" valign="top" width="29.150000000000002%" headers="mcps1.3.8.3.2.4.1.1 "><p id="cce_10_0197__p11301919817">v1.17</p>
 <p id="cce_10_0197__p1834222343618">v1.15</p>
 </td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_10_0197__p13301121885">v1.19</p>
+<td class="cellrowborder" valign="top" width="37.870000000000005%" headers="mcps1.3.8.3.2.4.1.2 "><p id="cce_10_0197__p13301121885">v1.19</p>
 </td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_10_0197__p1330116118818">In-place upgrade</p>
-</td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><p id="cce_10_0197__p103011712816">You need to learn about the differences between versions. For details, see <a href="#cce_10_0197__section191131551162610">Precautions for Major Version Upgrade</a>.</p>
+<td class="cellrowborder" valign="top" width="32.980000000000004%" headers="mcps1.3.8.3.2.4.1.3 "><p id="cce_10_0197__p1330116118818">In-place upgrade</p>
 </td>
 </tr>
-<tr id="cce_10_0197__row8891122514474"><td class="cellrowborder" valign="top" width="16.13%" headers="mcps1.3.8.3.2.5.1.1 "><p id="cce_10_0197__p16913174345011">v1.13</p>
+<tr id="cce_10_0197__row8891122514474"><td class="cellrowborder" valign="top" width="29.150000000000002%" headers="mcps1.3.8.3.2.4.1.1 "><p id="cce_10_0197__p16913174345011">v1.13</p>
 </td>
-<td class="cellrowborder" valign="top" width="24.32%" headers="mcps1.3.8.3.2.5.1.2 "><p id="cce_10_0197__p0911343135016">v1.15</p>
+<td class="cellrowborder" valign="top" width="37.870000000000005%" headers="mcps1.3.8.3.2.4.1.2 "><p id="cce_10_0197__p0911343135016">v1.15</p>
 </td>
-<td class="cellrowborder" valign="top" width="11.16%" headers="mcps1.3.8.3.2.5.1.3 "><p id="cce_10_0197__p147801018192410">Rolling upgrade</p>
+<td class="cellrowborder" valign="top" width="32.980000000000004%" headers="mcps1.3.8.3.2.4.1.3 "><p id="cce_10_0197__p147801018192410">Rolling upgrade</p>
 <p id="cce_10_0197__p1091144355018">Replace upgrade</p>
 </td>
-<td class="cellrowborder" valign="top" width="48.39%" headers="mcps1.3.8.3.2.5.1.4 "><ul id="cce_10_0197__ul93384752413"><li id="cce_10_0197__li1433134720247"><strong id="cce_10_0197__b178083817819">proxy</strong> in the coredns add-on cannot be configured and needs to be replaced with <strong id="cce_10_0197__b188063811812">forward</strong>.</li><li id="cce_10_0197__li1033154702417">The storage add-on is changed from storage-driver to everest.</li></ul>
-</td>
 </tr>
 </tbody>
 </table>
@@ -99,78 +108,6 @@
 </table>
 </div>
 </div>
-<div class="section" id="cce_10_0197__section191131551162610"><a name="cce_10_0197__section191131551162610"></a><a name="section191131551162610"></a><h4 class="sectiontitle">Precautions for Major Version Upgrade</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0197__table117860195275" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0197__row5786131912271"><th align="left" class="cellrowborder" valign="top" width="12.6%" id="mcps1.3.10.2.1.4.1.1"><p id="cce_10_0197__p664432214415">Upgrade Path</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="42.370000000000005%" id="mcps1.3.10.2.1.4.1.2"><p id="cce_10_0197__p1778611912715">Difference</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="45.03%" id="mcps1.3.10.2.1.4.1.3"><p id="cce_10_0197__p1378618194277">Self-Check</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0197__row976811212456"><td class="cellrowborder" rowspan="2" valign="top" width="12.6%" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p995916289455">v1.19 to v1.21</p>
-</td>
-<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p183801149459">The bug of <strong id="cce_10_0197__b5363111110127">exec probe timeouts</strong> is fixed in Kubernetes 1.21. Before this bug fix, the exec probe does not consider the <strong id="cce_10_0197__b136431120121">timeoutSeconds</strong> field. Instead, the probe will run indefinitely, even beyond its configured deadline. It will stop until the result is returned. If this field is not specified, the default value <strong id="cce_10_0197__b6503101241313">1</strong> is used. This field takes effect after the upgrade. If the probe runs over 1 second, the application health check may fail and the application may restart frequently.</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.10.2.1.4.1.3 "><p id="cce_10_0197__p1638021424519">Before the upgrade, check whether the timeout is properly set for the exec probe.</p>
-</td>
-</tr>
-<tr id="cce_10_0197__row129432109456"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p11380131412451">kube-apiserver of CCE 1.19 or later requires that the Subject Alternative Names (SANs) field be configured for the certificate of your webhook server. Otherwise, kube-apiserver fails to call the webhook server after the upgrade, and containers cannot be started properly.</p>
-<p id="cce_10_0197__p3380181414515">Root cause: X.509 <a href="https://golang.google.cn/doc/go1.15#commonname" target="_blank" rel="noopener noreferrer">CommonName</a> is discarded in Go 1.15. kube-apiserver of CCE 1.19 is compiled using Go 1.15. If your webhook certificate does not have SANs, kube-apiserver does not process the <strong id="cce_10_0197__b5961742201319">CommonName</strong> field of the X.509 certificate as the host name by default. As a result, the authentication fails.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p838171454512">Before the upgrade, check whether the SAN field is configured in the certificate of your webhook server.</p>
-<ul id="cce_10_0197__ul6381101434513"><li id="cce_10_0197__li10381131494516">If you do not have your own webhook server, you can skip this check.</li><li id="cce_10_0197__li20381191424513">If the field is not set, you are advised to use the SAN field to specify the IP address and domain name supported by the certificate.</li></ul>
-</td>
-</tr>
-<tr id="cce_10_0197__row37702011134510"><td class="cellrowborder" rowspan="4" valign="top" width="12.6%" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p16885172015465">v1.15 to v1.19</p>
-</td>
-<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p1332891194611">The control plane of CCE 1.19 is incompatible with Kubelet 1.15. If the master node fails to be upgraded or the node to be upgraded restarts after the master node is successfully upgraded, there is a high probability that the node is in the <strong id="cce_10_0197__b193891345201513">NotReady</strong> status.</p>
-<p id="cce_10_0197__p163281511144611">There is a high probability that kubelet restarts on the node that fails to be upgraded, triggering the node registration process. The default registration labels of kubelet 1.15 (<strong id="cce_10_0197__b9869121212119">failure-domain.beta.kubernetes.io/is-baremetal</strong> and <strong id="cce_10_0197__b5978171582114">kubernetes.io/availablezone</strong>) are regarded as an invalid label by kube-apiserver 1.19.</p>
-<p id="cce_10_0197__p13281811164612">The valid labels in v1.19 are <strong id="cce_10_0197__b135215338224">node.kubernetes.io/baremetal</strong> and <strong id="cce_10_0197__b91732036182216">failure-domain.beta.kubernetes.io/zone</strong>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.10.2.1.4.1.3 "><ol id="cce_10_0197__ol6328121174611"><li id="cce_10_0197__li6328131194611">In normal cases, this scenario is not triggered.</li><li id="cce_10_0197__li63281311194611">After the master node is upgraded, do not suspend the upgrade. Upgrade the node quickly.</li><li id="cce_10_0197__li1632821114619">If a node fails to be upgraded and cannot be restored, evict applications on the node as soon as possible. Contact technical support and skip the node upgrade. After the upgrade is complete, reset the node.</li></ol>
-</td>
-</tr>
-<tr id="cce_10_0197__row71567126452"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p1432891124613">In CCE 1.15 and 1.19 clusters, the Docker storage driver file system is switched from XFS to Ext4. As a result, the import package sequence in the pods of the upgraded Java application may be abnormal, causing pod exceptions.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p18328111174613">Before the upgrade, check the Docker configuration file <strong id="cce_10_0197__b1820571616257">/etc/docker/daemon.json</strong> on the node. Check whether the value of <strong id="cce_10_0197__b11640123416255">dm.fs</strong> is <strong id="cce_10_0197__b186411234142510">xfs</strong>.</p>
-<ul id="cce_10_0197__ul18328141164618"><li id="cce_10_0197__li1832871134620">If the value is <strong id="cce_10_0197__b1959536102514">ext4</strong> or the storage driver is Overlay, you can skip the next steps.</li><li id="cce_10_0197__li183281311114620">If the value is <strong id="cce_10_0197__b1191204142517">xfs</strong>, you are advised to deploy applications in the cluster of the new version in advance to test whether the applications are compatible with the new cluster version.</li></ul>
-<pre class="screen" id="cce_10_0197__screen20328211104610">{
-      "storage-driver": "devicemapper",
-      "storage-opts": [
-      "dm.thinpooldev=/dev/mapper/vgpaas-thinpool",
-      "dm.use_deferred_removal=true",
-      "dm.fs=xfs",
-      "dm.use_deferred_deletion=true"
-      ]
-}</pre>
-</td>
-</tr>
-<tr id="cce_10_0197__row1456761216454"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p732916111466">kube-apiserver of CCE 1.19 or later requires that the Subject Alternative Names (SANs) field be configured for the certificate of your webhook server. Otherwise, kube-apiserver fails to call the webhook server after the upgrade, and containers cannot be started properly.</p>
-<p id="cce_10_0197__p16329131117466">Root cause: X.509 <a href="https://golang.google.cn/doc/go1.15#commonname" target="_blank" rel="noopener noreferrer">CommonName</a> is discarded in Go 1.15. kube-apiserver of CCE 1.19 is compiled using Go 1.15. The <strong id="cce_10_0197__b1633316322611">CommonName</strong> field is processed as the host name. As a result, the authentication fails.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p532981113466">Before the upgrade, check whether the SAN field is configured in the certificate of your webhook server.</p>
-<ul id="cce_10_0197__ul03291711184620"><li id="cce_10_0197__li163292113465">If you do not have your own webhook server, you can skip this check.</li><li id="cce_10_0197__li15329111194610">If the field is not set, you are advised to use the SAN field to specify the IP address and domain name supported by the certificate.</li></ul>
-<div class="notice" id="cce_10_0197__note13297117462"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0197__p14329151154616">To mitigate the impact of version differences on cluster upgrade, CCE performs special processing during the upgrade from 1.15 to 1.19 and still supports certificates without SANs. However, no special processing is required for subsequent upgrades. You are advised to rectify your certificate as soon as possible.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_10_0197__row109371087465"><td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p532919114464">In clusters of v1.17.17 and later, CCE automatically creates pod security policies (PSPs) for you, which restrict the creation of pods with unsafe configurations, for example, pods for which <strong id="cce_10_0197__b137991220142616">net.core.somaxconn</strong> under a sysctl is configured in the security context.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p14329131144614">After an upgrade, you can allow insecure system configurations as required. For details, see <a href="cce_10_0275.html">Configuring a Pod Security Policy</a>.</p>
-</td>
-</tr>
-<tr id="cce_10_0197__row1635249104620"><td class="cellrowborder" valign="top" width="12.6%" headers="mcps1.3.10.2.1.4.1.1 "><p id="cce_10_0197__p1535484014613">v1.13 to v1.15</p>
-</td>
-<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.10.2.1.4.1.2 "><p id="cce_10_0197__p1887274811466">After a VPC network cluster is upgraded, the master node occupies an extra CIDR block due to the upgrade of network components. If no container CIDR block is available for the new node, the pod scheduled to the node cannot run.</p>
-</td>
-<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.10.2.1.4.1.3 "><p id="cce_10_0197__p1487219485469">Generally, this problem occurs when the nodes in the cluster are about to fully occupy the container CIDR block. For example, the container CIDR block is 10.0.0.0/16, the number of available IP addresses is 65,536, and the VPC network is allocated a CIDR block with the fixed size (using the mask to determine the maximum number of container IP addresses allocated to each node). If the upper limit is 128, the cluster supports a maximum of 512 (65536/128) nodes, including the three master nodes. After the cluster is upgraded, each of the three master nodes occupies one CIDR block. As a result, 506 nodes are supported.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
 </div>
 <div>
 <div class="familylinks">
diff --git a/docs/cce/umn/cce_10_0198.html b/docs/cce/umn/cce_10_0198.html
index 711b41f2..7e57d1af 100644
--- a/docs/cce/umn/cce_10_0198.html
+++ b/docs/cce/umn/cce_10_0198.html
@@ -27,8 +27,8 @@
 </tr>
 <tr id="cce_10_0198__row20701239458"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.2.2.3.1.1 "><p id="cce_10_0198__p66685314111">Container Engine</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><p id="cce_10_0198__p1015871915468">CCE clusters support Docker. Starting from CCE 1.23, containerd is supported.</p>
-<p id="cce_10_0198__p13666533417">For a CCE Turbo cluster, both <strong id="cce_10_0198__b730204645315">Docker</strong> and <strong id="cce_10_0198__b730315464538">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><div class="p" id="cce_10_0198__p1015871915468">CCE clusters support Docker and containerd in some scenarios.<ul id="cce_10_0198__en-us_topic_0000001199021246_ul93311957155518"><li id="cce_10_0198__en-us_topic_0000001199021246_li1770423185614">VPC network clusters of v1.23 and later versions support containerd. Container tunnel network clusters of v1.23.2-r0 and later versions support containerd.</li><li id="cce_10_0198__en-us_topic_0000001199021246_li1873025821011">For a CCE Turbo cluster, both <strong id="cce_10_0198__b158441624511">Docker</strong> and <strong id="cce_10_0198__b1184415611455">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>.</li></ul>
+</div>
 </td>
 </tr>
 <tr id="cce_10_0198__row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.2.2.3.1.1 "><p id="cce_10_0198__p176690785813">OS</p>
@@ -39,8 +39,8 @@
 </tr>
 <tr id="cce_10_0198__row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.4.2.3.2.2.2.3.1.1 "><p id="cce_10_0198__p1917631063017">Login Mode</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><ul id="cce_10_0198__ul158051525184"><li id="cce_10_0198__cce_10_0363_li1857913131710"><strong id="cce_10_0198__cce_10_0363_b9138131116117">Key Pair</strong><p id="cce_10_0198__cce_10_0363_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
-<p id="cce_10_0198__cce_10_0363_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0198__cce_10_0363_cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.4.2.3.2.2.2.3.1.2 "><ul id="cce_10_0198__ul158051525184"><li id="cce_10_0198__en-us_topic_0000001199021246_li1857913131710"><strong id="cce_10_0198__en-us_topic_0000001199021246_b68153983718">Key Pair</strong><p id="cce_10_0198__en-us_topic_0000001199021246_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0198__en-us_topic_0000001199021246_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0198__b1145495717594">Create Key Pair</strong>.</p>
 </li></ul>
 </td>
 </tr>
diff --git a/docs/cce/umn/cce_10_0201.html b/docs/cce/umn/cce_10_0201.html
index f3e7f52e..d2f00e07 100644
--- a/docs/cce/umn/cce_10_0201.html
+++ b/docs/cce/umn/cce_10_0201.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Custom Monitoring</h1>
 <div id="body0000001176124020"><p id="cce_10_0201__p8060118">CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and then uploads the data to AOM.</p>
-<p id="cce_10_0201__p12375759104015"><span><img id="cce_10_0201__image15650732403" src="en-us_image_0000001199501262.png"></span></p>
+<p id="cce_10_0201__p12375759104015"><span><img id="cce_10_0201__image15650732403" src="en-us_image_0000001517743384.png"></span></p>
 <p id="cce_10_0201__p1649415194016">The custom metric API of a workload can be configured when the workload is created. This section uses an Nginx application as an example to describe how to report custom metrics to AOM.</p>
 <div class="section" id="cce_10_0201__section11634016215"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0201__ul066520226214"><li id="cce_10_0201__li1935518502212">The ICAgent is compatible with the monitoring data specifications of <a href="https://prometheus.io/" target="_blank" rel="noopener noreferrer">Prometheus</a>. The custom metrics provided by pods can be collected by the ICAgent only when they meet the monitoring data specifications of Prometheus.</li><li id="cce_10_0201__li84311436320">The ICAgent supports only <a href="https://prometheus.io/docs/concepts/metric_types/" target="_blank" rel="noopener noreferrer">Gauge</a> metrics.</li><li id="cce_10_0201__li35904504518">The interval for the ICAgent to call the custom metric API is 1 minute, which cannot be changed.</li></ul>
 </div>
@@ -64,7 +64,7 @@ server accepts handled requests
 Reading: 0 Writing: 1 Waiting: 2</pre>
 </div>
 <div class="section" id="cce_10_0201__section1539954011362"><h4 class="sectiontitle">Deploying an Application</h4><p id="cce_10_0201__p13696165713362">The data format of the monitoring data provided by <strong id="cce_10_0201__b248994731115">nginx:exporter</strong> does not meet the requirements of Prometheus. You need to convert the data format to the format required by Prometheus. To convert the format of Nginx metrics, use <a href="https://github.com/nginxinc/nginx-prometheus-exporter" target="_blank" rel="noopener noreferrer"><strong id="cce_10_0201__b24336402133">nginx-prometheus-exporter</strong></a>, as shown in the following figure.</p>
-<p id="cce_10_0201__p12976173915814"><span><img id="cce_10_0201__image11567167161312" src="en-us_image_0000001243981177.png"></span></p>
+<p id="cce_10_0201__p12976173915814"><span><img id="cce_10_0201__image11567167161312" src="en-us_image_0000001568822693.png"></span></p>
 <p id="cce_10_0201__p13391926836">Deploy <strong id="cce_10_0201__b15666153321316">nginx:exporter</strong> and <strong id="cce_10_0201__b1324493616133">nginx-prometheus-exporter</strong> in the same pod.</p>
 <pre class="screen" id="cce_10_0201__screen726020139814">kind: Deployment
 apiVersion: apps/v1
diff --git a/docs/cce/umn/cce_10_0205.html b/docs/cce/umn/cce_10_0205.html
index 6515a048..e6897fad 100644
--- a/docs/cce/umn/cce_10_0205.html
+++ b/docs/cce/umn/cce_10_0205.html
@@ -5,7 +5,9 @@
 <p id="cce_10_0205__p183161841122110">metrics-server is an aggregator for monitoring data of core cluster resources. You can quickly install this add-on on the CCE console.</p>
 <p id="cce_10_0205__p136871139141318">After metrics-server is installed, you can create an HPA policy on the <strong id="cce_10_0205__b93481922984">Workload Scaling</strong> tab page of the <strong id="cce_10_0205__b1534812214813">Auto Scaling</strong> page. For details, see <a href="cce_10_0208.html">Creating an HPA Policy for Workload Auto Scaling</a>.</p>
 <p id="cce_10_0205__p185802028346">The official community project and documentation are available at <a href="https://github.com/kubernetes-sigs/metrics-server" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes-sigs/metrics-server</a>.</p>
-<div class="section" id="cce_10_0205__section1962241123816"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0205__ol13949124616422"><li id="cce_10_0205__li13183153352515"><span>Log in to the CCE console and access the cluster console. Choose <span class="uicontrol" id="cce_10_0205__uicontrol165791523193718"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0205__b1958032353717">metrics-server</strong> on the right, and click <strong id="cce_10_0205__b1558032343718">Install</strong>.</span></li><li id="cce_10_0205__li9455819152615"><span>Select <strong id="cce_10_0205__b14135172111218">Single</strong> or <strong id="cce_10_0205__b19549182318122">HA</strong> for <strong id="cce_10_0205__b14659192661212">Add-on Specifications</strong>, and click <strong id="cce_10_0205__b14102184123">Install</strong>.</span></li></ol>
+<div class="section" id="cce_10_0205__section1962241123816"><h4 class="sectiontitle">Installing the Add-on</h4><ol id="cce_10_0205__ol13949124616422"><li id="cce_10_0205__li13183153352515"><span>Log in to the CCE console and access the cluster console. Choose <span class="uicontrol" id="cce_10_0205__uicontrol165791523193718"><b>Add-ons</b></span> in the navigation pane, locate <strong id="cce_10_0205__b1958032353717">metrics-server</strong> on the right, and click <strong id="cce_10_0205__b1558032343718">Install</strong>.</span></li><li id="cce_10_0205__li38575246395"><span>Select <span class="uicontrol" id="cce_10_0205__uicontrol8521154418422"><b>Single</b></span>, <strong id="cce_10_0205__b7522194474215">Custom</strong>, or <span class="uicontrol" id="cce_10_0205__uicontrol1552219445427"><b>HA</b></span> for <strong id="cce_10_0205__b19522174474210">Add-on Specifications</strong>.</span><p><ul id="cce_10_0205__ul773111493313"><li id="cce_10_0205__li873131443310"><strong id="cce_10_0205__b411534794210">Pods</strong>: Set the number of pods based on service requirements.</li><li id="cce_10_0205__li921715919291"><strong id="cce_10_0205__b172734057161042">Multi AZ</strong>:<ul id="cce_10_0205__ul4214181752714"><li id="cce_10_0205__en-us_topic_0000001199341168_li5214161718270"><strong id="cce_10_0205__b531188486030">Preferred</strong>: Deployment pods of the add-on are preferentially scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, the pods are scheduled to a single AZ.</li><li id="cce_10_0205__en-us_topic_0000001199341168_li4214917142716"><strong id="cce_10_0205__b17235514876116">Required</strong>: Deployment pods of the add-on are forcibly scheduled to nodes in different AZs. If the nodes in the cluster do not meet the requirements of multiple AZs, not all pods can run.</li></ul>
+</li><li id="cce_10_0205__li145013474339"><strong id="cce_10_0205__b6280205616421">Containers</strong>: Set a proper container quota based on service requirements.</li></ul>
+</p></li><li id="cce_10_0205__li9455819152615"><span>Click <span class="uicontrol" id="cce_10_0205__uicontrol9868591422"><b>Install</b></span>.</span></li></ol>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0209.html b/docs/cce/umn/cce_10_0209.html
index 7bac77d6..431a120f 100644
--- a/docs/cce/umn/cce_10_0209.html
+++ b/docs/cce/umn/cce_10_0209.html
@@ -4,16 +4,12 @@
 <div id="body1569380890256"><p id="cce_10_0209__p582015413249">CCE provides auto scaling through the <a href="cce_10_0154.html">autoscaler</a> add-on. Nodes with different specifications can be automatically added across AZs on demand.</p>
 <p id="cce_10_0209__en-us_topic_0000001137107909_p22999573442">If a node scaling policy and the configuration in the autoscaler add-on take effect at the same time, for example, there are pods that cannot be scheduled and the value of a metric reaches the threshold at the same time, scale-out is performed first for the unschedulable pods.</p>
 <ul id="cce_10_0209__en-us_topic_0000001137107909_ul8955200154519"><li id="cce_10_0209__en-us_topic_0000001137107909_li8405131518335">If the scale-out succeeds for the unschedulable pods, the system skips the metric-based rule logic and enters the next loop.</li><li id="cce_10_0209__en-us_topic_0000001137107909_li7203193203618">If the scale-out fails for the unschedulable pods, the metric-based rule is executed.</li></ul>
-<div class="section" id="cce_10_0209__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0209__p4299242191311">Before using the node scaling function, you must install the <a href="cce_10_0154.html">autoscaler</a> add-on of v1.13.8 or later.</p>
+<div class="section" id="cce_10_0209__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0209__p3631319122812">Before using the node scaling function, you must install the <a href="cce_10_0154.html">autoscaler</a> add-on of v1.13.8 or later in the cluster.</p>
 </div>
 <div class="section" id="cce_10_0209__section154671161116"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0209__ul198142618377"><li id="cce_10_0209__li15355154373715">Auto scaling policies apply to node pools. When the number of nodes in a node pool is 0 and the scaling policy is based on CPU or memory usage, node scaling is not triggered.</li></ul>
 </div>
 <div class="section" id="cce_10_0209__section4444195220142"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0209__ol29784442018"><li id="cce_10_0209__li148293318248"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0209__li3967519744"><span>Choose <strong id="cce_10_0209__b17415920121417">Node Scaling</strong> in the navigation pane.</span><p><ul id="cce_10_0209__ul2895102913469"><li id="cce_10_0209__li10895529174618">If <span class="uicontrol" id="cce_10_0209__uicontrol178213815103"><b>Uninstalled</b></span> is displayed next to the add-on name, click <strong id="cce_10_0209__b58853891018">Install</strong>, set add-on parameters as required, and click <strong id="cce_10_0209__b689338151015">Install</strong> to install the add-on.</li><li id="cce_10_0209__li389532914466">If <span class="uicontrol" id="cce_10_0209__uicontrol415614446107"><b>Installed</b></span> is displayed next to the add-on name, the add-on has been installed.</li></ul>
-</p></li><li id="cce_10_0209__li1233834472"><span>Click <strong id="cce_10_0209__b1735993131112">Create Node Scaling Policy</strong> in the upper right corner and set the parameters as follows:</span><p><ul id="cce_10_0209__ul17966105632820"><li id="cce_10_0209__li1396619568287"><strong id="cce_10_0209__b3656118114412">Policy Name</strong>: name of the policy to be created, which can be customized.</li><li id="cce_10_0209__li179668567286"><strong id="cce_10_0209__b19311184991110">Associated Node Pools</strong>: Select the node pool to be associated. You can associate multiple node pools to use the same scaling policy.<div class="note" id="cce_10_0209__note1789113162816"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_p198781922578">Priority is now supported for node pools. CCE will select a node pool for auto scaling based on the following policies:</p>
-<ol type="a" id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_ol133814916283"><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li14381899286">CCE uses algorithms to determine whether a node pool meets the conditions to allow scheduling of a pod in pending state, including whether the node resources are greater than requested by the pod, and whether the nodeSelect, nodeAffinity, and taints meet the conditions. In addition, the node pools that fail to be scaled (due to insufficient resources or other reasons) and are still in the 15-minute cool-down interval are filtered.</li><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li8388918282">If multiple node pools meet the scaling requirements, the system checks the priority of each node pool and selects the node pool with the highest priority for scaling. The value ranges from 0 to 100 and the default priority is 0. The value 100 indicates the highest priority, and the value 0 indicates the lowest priority.</li><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li1338189132818">If multiple node pools have the same priority or no priority is configured for them, the system selects the node pool that will consume the least resources based on the configured VM specification.</li><li id="cce_10_0209__en-us_topic_0000001137107909_en-us_topic_0254866626_li0382910282">If the VM specifications of multiple node pools are the same but the node pools are deployed in different AZs, the system randomly selects a node pool to trigger scaling.</li><li id="cce_10_0209__li663914474548">If the resources of the preferred node pool are insufficient, the system automatically selects next node pool based on the priority.</li></ol>
-<p id="cce_10_0209__p07014364305">For details about the node pool priority, see <a href="cce_10_0012.html">Creating a Node Pool</a>.</p>
-</div></div>
-</li><li id="cce_10_0209__li39669567288"><strong id="cce_10_0209__b13105141142720">Rules</strong>: Click <strong id="cce_10_0209__b53511037117">Add Rule</strong>. In the dialog box displayed, set the following parameters:<p id="cce_10_0209__p1971102016286"><strong id="cce_10_0209__b46681421144">Rule Name</strong>: Enter a rule name.</p>
+</p></li><li id="cce_10_0209__li1233834472"><span>Click <strong id="cce_10_0209__b1735993131112">Create Node Scaling Policy</strong> in the upper right corner and set the parameters as follows:</span><p><ul id="cce_10_0209__ul17966105632820"><li id="cce_10_0209__li1396619568287"><strong id="cce_10_0209__b3656118114412">Policy Name</strong>: name of the policy to be created, which can be customized.</li><li id="cce_10_0209__li179668567286"><strong id="cce_10_0209__b19311184991110">Associated Node Pools</strong>: Select the node pool to be associated. You can associate multiple node pools to use the same scaling policy.</li><li id="cce_10_0209__li39669567288"><strong id="cce_10_0209__b13105141142720">Rules</strong>: Click <strong id="cce_10_0209__b53511037117">Add Rule</strong>. In the dialog box displayed, set the following parameters:<p id="cce_10_0209__p1971102016286"><strong id="cce_10_0209__b46681421144">Rule Name</strong>: Enter a rule name.</p>
 <p id="cce_10_0209__p129711920172811"><strong id="cce_10_0209__b18955153710117">Rule Type</strong>: You can select <strong id="cce_10_0209__b959911421113">Metric-based</strong> or <strong id="cce_10_0209__b17771245817">Periodic</strong>. The differences between the two types are as follows:</p>
 <ul id="cce_10_0209__ul1597352072812"><li id="cce_10_0209__li1397213202289"><strong id="cce_10_0209__b1598011319536">Metric-based</strong>:<div class="p" id="cce_10_0209__p1817714544282"><strong id="cce_10_0209__b1268835520117">Condition</strong>: Select <strong id="cce_10_0209__b10461001029">CPU allocation rate</strong> or <strong id="cce_10_0209__b1947947211">Memory allocation rate</strong> and enter a value. The value must be greater than the scale-in percentage configured in the autoscaler add-on.<div class="note" id="cce_10_0209__note17972182052813"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0209__ul85014395310"><li id="cce_10_0209__li350103953119">Resource allocation (%) = Resources requested by pods in the node pool/Resources allocatable to pods in the node pool</li><li id="cce_10_0209__li1650118397311"><strong id="cce_10_0209__b15142105410618">If multiple rules meet the conditions, the rules are executed in either of the following modes:</strong><p id="cce_10_0209__p31941933210">If rules based on the <strong id="cce_10_0209__b924072417145">CPU allocation rate</strong> and <strong id="cce_10_0209__b1624015249145">memory allocation rate</strong> are configured and two or more rules meet the scale-out conditions, the rule that will add the most nodes will be executed.</p>
 <p id="cce_10_0209__p8194179193215">If a rule based on the <strong id="cce_10_0209__b1555416281348">CPU allocation rate</strong> and <strong id="cce_10_0209__b456013281845">a periodic rule</strong> are configured and they both meet the scale-out conditions, one of them will be executed randomly. The rule executed first (rule A) changes the node pool to the scaling state. As a result, the other rule (rule B) cannot be executed. After rule A is executed and the node pool status becomes normal, rule B will not be executed.</p>
diff --git a/docs/cce/umn/cce_10_0212.html b/docs/cce/umn/cce_10_0212.html
index a88c3403..bb2be494 100644
--- a/docs/cce/umn/cce_10_0212.html
+++ b/docs/cce/umn/cce_10_0212.html
@@ -7,7 +7,7 @@
 </div>
 </li><li id="cce_10_0212__li4571923155519">A hibernated cluster cannot be deleted. Wake up the cluster and try again.</li><li id="cce_10_0212__li13277132995711">If a cluster whose status is Unavailable is deleted, some storage resources of the cluster may need to be manually deleted.</li></ul>
 </div>
-<div class="section" id="cce_10_0212__section66361189212"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0212__ol186094278570"><li id="cce_10_0212__li36092279576"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0212__uicontrol3766181561"><b>Clusters</b></span>.</span></li><li id="cce_10_0212__li6610192715714"><span>Click <span><img id="cce_10_0212__image186171558366" src="en-us_image_0000001244997085.png"></span> next to the cluster to be deleted.</span></li><li id="cce_10_0212__li1794418536121"><span>In the displayed <span class="uicontrol" id="cce_10_0212__uicontrol36639302117"><b>Delete Cluster</b></span> dialog box, select the resources to be released.</span><p><ul id="cce_10_0212__ul19051037105013"><li id="cce_10_0212__li1990515375502">Delete cloud storage resources attached to workloads in the cluster.<div class="note" id="cce_10_0212__note219391785220"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0212__p1470481715212">Before you delete the PVCs and volumes, pay attention to the following rules:</p>
+<div class="section" id="cce_10_0212__section66361189212"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0212__ol186094278570"><li id="cce_10_0212__li36092279576"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0212__uicontrol3766181561"><b>Clusters</b></span>.</span></li><li id="cce_10_0212__li6610192715714"><span>Click <span><img id="cce_10_0212__image186171558366" src="en-us_image_0000001569023085.png"></span> next to the cluster to be deleted.</span></li><li id="cce_10_0212__li1794418536121"><span>In the displayed <span class="uicontrol" id="cce_10_0212__uicontrol36639302117"><b>Delete Cluster</b></span> dialog box, select the resources to be released.</span><p><ul id="cce_10_0212__ul19051037105013"><li id="cce_10_0212__li1990515375502">Delete cloud storage resources attached to workloads in the cluster.<div class="note" id="cce_10_0212__note219391785220"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0212__p1470481715212">Before you delete the PVCs and volumes, pay attention to the following rules:</p>
 <ul id="cce_10_0212__ul57041617175211"><li id="cce_10_0212__li9704121711525">The underlying storage resources are deleted according to the reclaim policy you defined.</li><li id="cce_10_0212__li8704171715529">If there are a large number of files (more than 1,000) in the OBS bucket, manually clear the files and then delete the cluster. </li></ul>
 </div></div>
 </li><li id="cce_10_0212__li136857512513">Delete networking resources, such as load balancers in a cluster. (Only automatically created load balancers can be deleted.)</li></ul>
diff --git a/docs/cce/umn/cce_10_0213.html b/docs/cce/umn/cce_10_0213.html
index eed9b36b..e4d391ee 100644
--- a/docs/cce/umn/cce_10_0213.html
+++ b/docs/cce/umn/cce_10_0213.html
@@ -1,11 +1,11 @@
 <a name="cce_10_0213"></a><a name="cce_10_0213"></a>
 
-<h1 class="topictitle1">Managing Cluster Components</h1>
+<h1 class="topictitle1">Cluster Configuration Management</h1>
 <div id="body1569380890256"><div class="section" id="cce_10_0213__section1055218393273"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0213__p149661516162511">CCE allows you to manage cluster parameters, through which you can let core components work under your very requirements.</p>
 </div>
 <div class="section" id="cce_10_0213__section12438124825414"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0213__p442175495411">This function is supported only in clusters of <strong id="cce_10_0213__b1963285592415">v1.15 and later</strong>. It is not displayed for versions earlier than v1.15.</p>
 </div>
-<div class="section" id="cce_10_0213__section186921921195519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0213__ol186094278570"><li id="cce_10_0213__li114312175131"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0213__uicontrol8506153142816"><b>Clusters</b></span>.</span></li><li id="cce_10_0213__li6610192715714"><span>Click <span><img id="cce_10_0213__image1651517417146" src="en-us_image_0000001199757520.png"></span> next to the target cluster.</span></li><li id="cce_10_0213__li10118171017510"><span>On the <span class="uicontrol" id="cce_10_0213__uicontrol165520251126"><b>Manage Component</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p><div class="p" id="cce_10_0213__p6437121432414">
+<div class="section" id="cce_10_0213__section186921921195519"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0213__ol186094278570"><li id="cce_10_0213__li114312175131"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0213__uicontrol8506153142816"><b>Clusters</b></span>.</span></li><li id="cce_10_0213__li6610192715714"><span>Click <span><img id="cce_10_0213__image1651517417146" src="en-us_image_0000001517903048.png"></span> next to the target cluster.</span></li><li id="cce_10_0213__li10118171017510"><span>On the <span class="uicontrol" id="cce_10_0213__uicontrol165520251126"><b>Manage Component</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p><div class="p" id="cce_10_0213__p6437121432414">
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0213__table158253508558" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Extended controller parameters</caption><thead align="left"><tr id="cce_10_0213__row1782665095518"><th align="left" class="cellrowborder" valign="top" width="34.77%" id="mcps1.3.3.2.3.2.1.1.2.4.1.1"><p id="cce_10_0213__p6826185014554">Parameter</p>
 </th>
 <th align="left" class="cellrowborder" valign="top" width="44.14%" id="mcps1.3.3.2.3.2.1.1.2.4.1.2"><p id="cce_10_0213__p1982645016556">Description</p>
@@ -52,25 +52,23 @@
 </td>
 <td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p1390617136244">Maximum number of concurrent mutating requests. When the value of this parameter is exceeded, the server rejects requests.</p>
 <p id="cce_10_0213__p890641322416">The value <strong id="cce_10_0213__b389319593475">0</strong> indicates no limitation.</p>
-<p id="cce_10_0213__p11906121342418">Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.</p>
-<ul id="cce_10_0213__ul1906171317249"><li id="cce_10_0213__li1490612138248"><strong id="cce_10_0213__b209548461298">200</strong> for clusters with 50 or 200 nodes</li><li id="cce_10_0213__li10906313152419"><strong id="cce_10_0213__b12677624181019">500</strong> for clusters with 1,000 nodes</li><li id="cce_10_0213__li6906161382412"><strong id="cce_10_0213__b4703240141015">1000</strong> for clusters with 2,000 nodes</li></ul>
 </td>
-<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p89061613182410">Default: 1000</p>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p828616533519">Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.</p>
+<ul id="cce_10_0213__ul10286550357"><li id="cce_10_0213__li728625123514"><strong id="cce_10_0213__b209548461298">200</strong> for clusters with 50 or 200 nodes</li><li id="cce_10_0213__li1328614519359"><strong id="cce_10_0213__b12677624181019">500</strong> for clusters with 1,000 nodes</li><li id="cce_10_0213__li82861950358"><strong id="cce_10_0213__b8709142814176">1000</strong> for clusters with 2,000 nodes</li></ul>
 </td>
 </tr>
 <tr id="cce_10_0213__row2907181302414"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p18907171317248">max-requests-inflight</p>
 </td>
 <td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p390717131244">Maximum number of concurrent non-mutating requests. When the value of this parameter is exceeded, the server rejects requests.</p>
-<p id="cce_10_0213__p169071513192417">The value <strong id="cce_10_0213__b1818774791">0</strong> indicates no limitation.</p>
-<p id="cce_10_0213__p10907161302416">Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.</p>
-<ul id="cce_10_0213__ul4907161372410"><li id="cce_10_0213__li139071713182414"><strong id="cce_10_0213__b560914712107">400</strong> for clusters with 50 or 200 nodes</li><li id="cce_10_0213__li290721372413"><strong id="cce_10_0213__b1733775131015">1000</strong> for clusters with 1,000 nodes</li><li id="cce_10_0213__li2907161332417"><strong id="cce_10_0213__b17328175617103">2000</strong> for clusters with 2,000 nodes</li></ul>
+<p id="cce_10_0213__p169071513192417">The value <strong id="cce_10_0213__b140004459">0</strong> indicates no limitation.</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p119071813142412">Default: 2000</p>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p188920206358">Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.</p>
+<ul id="cce_10_0213__ul138912015351"><li id="cce_10_0213__li48918204358"><strong id="cce_10_0213__b560914712107">400</strong> for clusters with 50 or 200 nodes</li><li id="cce_10_0213__li118910208354"><strong id="cce_10_0213__b1733775131015">1000</strong> for clusters with 1,000 nodes</li><li id="cce_10_0213__li8905206358"><strong id="cce_10_0213__b164717326171">2000</strong> for clusters with 2,000 nodes</li></ul>
 </td>
 </tr>
 <tr id="cce_10_0213__row15907181352414"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.1 "><p id="cce_10_0213__p890712137246">service-node-port-range</p>
 </td>
-<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p1490717139244">Range of node port numbers.</p>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.2 "><p id="cce_10_0213__p1490717139244">NodePort port range. After changing the value, you need to go to the security group page to change the TCP/UDP port range of node security groups 30000 to 32767. Otherwise, ports other than the default port cannot be accessed externally.</p>
 </td>
 <td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.1.2.2.4.1.3 "><p id="cce_10_0213__p17907713132416">Default:</p>
 <p id="cce_10_0213__p16907313132418">30000-32767</p>
@@ -172,10 +170,21 @@
 <tr id="cce_10_0213__row1799817495255"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p14998649142519">concurrent_rc_syncs</p>
 </td>
 <td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p129981496252">Number of replication controllers that are allowed to synchronize concurrently.</p>
+<div class="note" id="cce_10_0213__note10537735151317"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0213__p9823181716610">This parameter is used only in clusters of v1.19 or earlier.</p>
+</div></div>
 </td>
 <td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p109982049132516">Default: 5</p>
 </td>
 </tr>
+<tr id="cce_10_0213__row1246811151555"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p246818158515">concurrent-rc-syncs</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p021912491063">Number of replication controllers that are allowed to synchronize concurrently.</p>
+<div class="note" id="cce_10_0213__note12601250101318"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0213__p261105061314">This parameter is used only in clusters of v1.21 to v1.23. In clusters of v1.25 and later, this parameter is deprecated (officially deprecated from v1.25.3-r0 on).</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="21.09%" headers="mcps1.3.3.2.3.2.2.2.4.1.3 "><p id="cce_10_0213__p5895183741011">Default: 5</p>
+</td>
+</tr>
 <tr id="cce_10_0213__row899894932519"><td class="cellrowborder" valign="top" width="34.77%" headers="mcps1.3.3.2.3.2.2.2.4.1.1 "><p id="cce_10_0213__p15998174913252">horizontal-pod-autoscaler-sync-period</p>
 </td>
 <td class="cellrowborder" valign="top" width="44.14%" headers="mcps1.3.3.2.3.2.2.2.4.1.2 "><p id="cce_10_0213__p1399854922511">How often HPA audits metrics in a cluster.</p>
@@ -273,7 +282,7 @@
 </tr>
 <tr id="cce_10_0213__row199209349270"><td class="cellrowborder" valign="top" width="34.949999999999996%" headers="mcps1.3.3.2.3.2.4.2.4.1.1 "><p id="cce_10_0213__p5920153402717">prebound-subeni-percentage</p>
 </td>
-<td class="cellrowborder" valign="top" width="43.79%" headers="mcps1.3.3.2.3.2.4.2.4.1.2 "><p id="cce_10_0213__p7920193432714">Low threshold of the number of bound ENIs:High threshold of the number of bound ENIs</p>
+<td class="cellrowborder" valign="top" width="43.79%" headers="mcps1.3.3.2.3.2.4.2.4.1.2 "><p id="cce_10_0213__p7920193432714">Low threshold of the number of bound ENIs : High threshold of the number of bound ENIs</p>
 <div class="note" id="cce_10_0213__note769833818137"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0213__p1698138141315">This parameter is discarded. Use the other four dynamic preheating parameters of the ENI.</p>
 </div></div>
 </td>
@@ -285,7 +294,7 @@
 </div>
 </p></li><li id="cce_10_0213__li206411338151114"><span>Click <strong id="cce_10_0213__b1685222213336">OK</strong>.</span></li></ol>
 </div>
-<div class="section" id="cce_10_0213__section185642613239"><h4 class="sectiontitle">References</h4><ul id="cce_10_0213__ul14570193142510"><li id="cce_10_0213__li1997622382510"><a href="https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kube-apiserver/" target="_blank" rel="noopener noreferrer">kube-apiserver</a></li><li id="cce_10_0213__li557010302511"><a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kube-controller-manager/" target="_blank" rel="noopener noreferrer">kube-controller-manager</a></li><li id="cce_10_0213__li145701334252"><a href="https://kubernetes.io/zh/docs/reference/command-line-tools-reference/kube-scheduler/" target="_blank" rel="noopener noreferrer">kube-scheduler</a></li></ul>
+<div class="section" id="cce_10_0213__section185642613239"><h4 class="sectiontitle">References</h4><ul id="cce_10_0213__ul14570193142510"><li id="cce_10_0213__li1997622382510"><a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kube-apiserver/" target="_blank" rel="noopener noreferrer">kube-apiserver</a></li><li id="cce_10_0213__li557010302511"><a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kube-controller-manager/" target="_blank" rel="noopener noreferrer">kube-controller-manager</a></li><li id="cce_10_0213__li145701334252"><a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kube-scheduler/" target="_blank" rel="noopener noreferrer">kube-scheduler</a></li></ul>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0214.html b/docs/cce/umn/cce_10_0214.html
index 6b4b34c0..c4ae67c3 100644
--- a/docs/cce/umn/cce_10_0214.html
+++ b/docs/cce/umn/cce_10_0214.html
@@ -7,9 +7,9 @@
 </div>
 <div class="section" id="cce_10_0214__section1677181718181"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0214__p178192273412">During cluster wakeup, the master node may fail to be started due to insufficient resources. As a result, the cluster fails to be woken up. Wait for a while and wake up the cluster again.</p>
 </div>
-<div class="section" id="cce_10_0214__section1033214207131"><h4 class="sectiontitle">Hibernating a Cluster</h4><ol id="cce_10_0214__ol6530151295410"><li id="cce_10_0214__li1253017127545"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0214__uicontrol16209155719587"><b>Clusters</b></span>.</span></li><li id="cce_10_0214__li11530101235412"><span>Click <span><img id="cce_10_0214__image124421819185210" src="en-us_image_0000001236562704.png"></span> next to the cluster to be hibernated.</span></li><li id="cce_10_0214__li65781125195915"><span>In the dialog box displayed, check the precautions and click <strong id="cce_10_0214__b17836812428">Yes</strong>. Wait until the cluster is hibernated.</span></li></ol>
+<div class="section" id="cce_10_0214__section1033214207131"><h4 class="sectiontitle">Hibernating a Cluster</h4><ol id="cce_10_0214__ol6530151295410"><li id="cce_10_0214__li1253017127545"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0214__uicontrol16209155719587"><b>Clusters</b></span>.</span></li><li id="cce_10_0214__li11530101235412"><span>Click <span><img id="cce_10_0214__image124421819185210" src="en-us_image_0000001517743460.png"></span> next to the cluster to be hibernated.</span></li><li id="cce_10_0214__li65781125195915"><span>In the dialog box displayed, check the precautions and click <strong id="cce_10_0214__b17836812428">Yes</strong>. Wait until the cluster is hibernated.</span></li></ol>
 </div>
-<div class="section" id="cce_10_0214__section53339203136"><h4 class="sectiontitle">Waking Up a Cluster</h4><ol id="cce_10_0214__ol3963342135713"><li id="cce_10_0214__li59639423578"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0214__uicontrol16245125642112"><b>Clusters</b></span>.</span></li><li id="cce_10_0214__li9963742175711"><span>Click <span><img id="cce_10_0214__image16569828201020" src="en-us_image_0000001225747980.png"></span> next to the cluster to be woken up.</span></li><li id="cce_10_0214__li112592262039"><span>When the cluster status changes from <span class="uicontrol" id="cce_10_0214__uicontrol13292817311"><b>Waking</b></span> to <span class="uicontrol" id="cce_10_0214__uicontrol032132811313"><b>Running</b></span>, the cluster is woken up. It takes about 3 to 5 minutes to wake up the cluster.</span></li></ol>
+<div class="section" id="cce_10_0214__section53339203136"><h4 class="sectiontitle">Waking Up a Cluster</h4><ol id="cce_10_0214__ol3963342135713"><li id="cce_10_0214__li59639423578"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0214__uicontrol16245125642112"><b>Clusters</b></span>.</span></li><li id="cce_10_0214__li9963742175711"><span>Click <span><img id="cce_10_0214__image16569828201020" src="en-us_image_0000001569182589.png"></span> next to the cluster to be woken up.</span></li><li id="cce_10_0214__li112592262039"><span>When the cluster status changes from <span class="uicontrol" id="cce_10_0214__uicontrol13292817311"><b>Waking</b></span> to <span class="uicontrol" id="cce_10_0214__uicontrol032132811313"><b>Running</b></span>, the cluster is woken up. It takes about 3 to 5 minutes to wake up the cluster.</span></li></ol>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0215.html b/docs/cce/umn/cce_10_0215.html
index 9e1c9cbc..213539a7 100644
--- a/docs/cce/umn/cce_10_0215.html
+++ b/docs/cce/umn/cce_10_0215.html
@@ -8,12 +8,16 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0302.html">Before You Start</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_10_0560.html">Post-Upgrade Verification</a></strong><br>
+</li>
 <li class="ulchildlink"><strong><a href="cce_10_0120.html">Performing Replace/Rolling Upgrade</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0301.html">Performing In-place Upgrade</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0210.html">Migrating Services Across Clusters of Different Versions</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></strong><br>
+</li>
 </ul>
 
 <div class="familylinks">
diff --git a/docs/cce/umn/cce_10_0216.html b/docs/cce/umn/cce_10_0216.html
index c0c4c3ac..242320e7 100644
--- a/docs/cce/umn/cce_10_0216.html
+++ b/docs/cce/umn/cce_10_0216.html
@@ -9,7 +9,7 @@
 </div>
 <div class="section" id="cce_10_0216__section7271245481"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0216__p1195519514554">You must have one cluster available before creating a DaemonSet. For details on how to create a cluster, see <a href="cce_10_0028.html">Creating a CCE Cluster</a>.</p>
 </div>
-<div class="section" id="cce_10_0216__section1160483214207"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0216__ol2012902601117"><li id="cce_10_0216__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0216__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0216__b1421120185819">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0216__b139221951155717">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0216__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0216__p1259466151612"><strong id="cce_10_0216__b27161120952">Basic Info</strong><ul id="cce_10_0216__ul6954101318184"><li id="cce_10_0216__li11514131617185"><strong id="cce_10_0216__b494072815518">Workload Type</strong>: Select <strong id="cce_10_0216__b1776518313510">DaemonSet</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0216__li129541213101814"><strong id="cce_10_0216__b12465144313510">Workload Name</strong>: Enter the name of the workload.</li><li id="cce_10_0216__li179541813111814"><strong id="cce_10_0216__b20501185611511">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0216__b1508155615514">default</strong>. You can also click <span class="uicontrol" id="cce_10_0216__uicontrol114986014619"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0216__li11753142112539"><strong id="cce_10_0216__b1111971612">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0216__li1295571341818"><strong id="cce_10_0216__b4596419068">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
+<div class="section" id="cce_10_0216__section1160483214207"><h4 class="sectiontitle">Using the CCE Console</h4><ol id="cce_10_0216__ol2012902601117"><li id="cce_10_0216__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0216__li2075471341"><span>Click the cluster name to go to the cluster console, choose <strong id="cce_10_0216__b1421120185819">Workloads</strong> in the navigation pane, and click the <strong id="cce_10_0216__b139221951155717">Create Workload</strong> in the upper right corner.</span></li><li id="cce_10_0216__li67891737151520"><span>Set basic information about the workload. </span><p><div class="p" id="cce_10_0216__p1259466151612"><strong id="cce_10_0216__b27161120952">Basic Info</strong><ul id="cce_10_0216__ul6954101318184"><li id="cce_10_0216__li11514131617185"><strong id="cce_10_0216__b494072815518">Workload Type</strong>: Select <strong id="cce_10_0216__b1776518313510">DaemonSet</strong>. For details about workload types, see <a href="cce_10_0006.html">Overview</a>.</li><li id="cce_10_0216__li129541213101814"><strong id="cce_10_0216__b12465144313510">Workload Name</strong>: Enter the name of the workload. Enter 1 to 63 characters starting with a lowercase letter and ending with a letter or digit. Only lowercase letters, digits, and hyphens (-) are allowed.</li><li id="cce_10_0216__li179541813111814"><strong id="cce_10_0216__b20501185611511">Namespace</strong>: Select the namespace of the workload. The default value is <strong id="cce_10_0216__b1508155615514">default</strong>. You can also click <span class="uicontrol" id="cce_10_0216__uicontrol114986014619"><b>Create Namespace</b></span> to create one. For details, see <a href="cce_10_0278.html">Creating a Namespace</a>.</li><li id="cce_10_0216__li11753142112539"><strong id="cce_10_0216__b1111971612">Container Runtime</strong>: A CCE cluster uses runC by default, whereas a CCE Turbo cluster supports both runC and Kata. For details about the differences between runC and Kata, see <a href="cce_10_0463.html">Kata Containers and Common Containers</a>.</li><li id="cce_10_0216__li1295571341818"><strong id="cce_10_0216__b4596419068">Time Zone Synchronization</strong>: Specify whether to enable time zone synchronization. After time zone synchronization is enabled, the container and node use the same time zone. The time zone synchronization function depends on the local disk mounted to the container. Do not modify or delete the time zone. For details, see <a href="cce_10_0354.html">Configuring Time Zone Synchronization</a>.</li></ul>
 </div>
 <div class="p" id="cce_10_0216__p206571518181616"><strong id="cce_10_0216__b348216241165">Container Settings</strong><ul id="cce_10_0216__ul42071022103320"><li id="cce_10_0216__li8770480458">Container Information<div class="p" id="cce_10_0216__p10493941854"><a name="cce_10_0216__li8770480458"></a><a name="li8770480458"></a>Multiple containers can be configured in a pod. You can click <span class="uicontrol" id="cce_10_0216__uicontrol14558426767"><b>Add Container</b></span> on the right to configure multiple containers for the pod.<ul id="cce_10_0216__ul153491055201112"><li id="cce_10_0216__li53489554115"><strong id="cce_10_0216__b746052194614">Basic Info</strong>: See <a href="cce_10_0396.html">Setting Basic Container Information</a>.</li><li id="cce_10_0216__li23485559118"><strong id="cce_10_0216__b34691748194614">Lifecycle</strong>: See <a href="cce_10_0105.html">Setting Container Lifecycle Parameters</a>.</li><li id="cce_10_0216__li1834811551114"><strong id="cce_10_0216__b91087469469">Health Check</strong>: See <a href="cce_10_0112.html">Setting Health Check for a Container</a>.</li><li id="cce_10_0216__li203481155181114"><strong id="cce_10_0216__b10507124244614">Environment Variables</strong>: See <a href="cce_10_0113.html">Setting an Environment Variable</a>.</li><li id="cce_10_0216__li173487556119"><strong id="cce_10_0216__b1882893994611">Data Storage</strong>: See <a href="cce_10_0307.html">Overview</a>.<div class="note" id="cce_10_0216__note101269342356"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0216__p17126153413513">If the workload contains more than one pod, EVS volumes cannot be mounted.</p>
 </div></div>
@@ -20,7 +20,7 @@
 <p id="cce_10_0216__p1447162741615"><strong id="cce_10_0216__b183874491969">Service Settings</strong></p>
 <p id="cce_10_0216__p102354303348">A Service is used for pod access. With a fixed IP address, a Service forwards access traffic to pods and performs load balancing for these pods.</p>
 <p id="cce_10_0216__p13343123113612">You can also create a Service after creating a workload. For details about the Service, see <a href="cce_10_0249.html">Service Overview</a>.</p>
-<div class="p" id="cce_10_0216__p310913521612"><strong id="cce_10_0216__b148945537613">Advanced Settings</strong><ul id="cce_10_0216__ul142811417"><li id="cce_10_0216__li0421513417"><strong id="cce_10_0216__b46043811467">Upgrade</strong>: See <a href="cce_10_0397.html">Configuring the Workload Upgrade Policy</a>.</li><li id="cce_10_0216__li5292111713411"><strong id="cce_10_0216__b704174465">Scheduling</strong>: See <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li><li id="cce_10_0216__li179714209414"><strong id="cce_10_0216__b52111221164619">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0216__li13285132913414"><strong id="cce_10_0216__cce_10_0047_b11222531193614">Toleration</strong>: Using both taints and tolerations allows (not forcibly) the pod to be scheduled to a node with the matching taints, and controls the pod eviction policies after the node where the pod is located is tainted. For details, see <a href="cce_10_0352.html#cce_10_0352__section2047442210417">Tolerations</a>.</li><li id="cce_10_0216__li1917237124111"><strong id="cce_10_0216__b051181704711">DNS</strong>: See <a href="cce_10_0365.html">DNS Configuration</a>.</li></ul>
+<div class="p" id="cce_10_0216__p310913521612"><strong id="cce_10_0216__b148945537613">Advanced Settings</strong><ul id="cce_10_0216__ul142811417"><li id="cce_10_0216__li0421513417"><strong id="cce_10_0216__b46043811467">Upgrade</strong>: See <a href="cce_10_0397.html">Configuring the Workload Upgrade Policy</a>.</li><li id="cce_10_0216__li5292111713411"><strong id="cce_10_0216__b704174465">Scheduling</strong>: See <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a>.</li><li id="cce_10_0216__li179714209414"><strong id="cce_10_0216__b52111221164619">Labels and Annotations</strong>: See <a href="cce_10_0386.html">Pod Labels and Annotations</a>.</li><li id="cce_10_0216__li13285132913414"><strong id="cce_10_0216__b575813518173">Toleration</strong>: Using both taints and tolerations allows (not forcibly) the pod to be scheduled to a node with the matching taints, and controls the pod eviction policies after the node where the pod is located is tainted. For details, see <a href="cce_10_0352.html#cce_10_0352__section2047442210417">Tolerations</a>.</li><li id="cce_10_0216__li1917237124111"><strong id="cce_10_0216__b051181704711">DNS</strong>: See <a href="cce_10_0365.html">DNS Configuration</a>.</li></ul>
 </div>
 </p></li><li id="cce_10_0216__li01417411620"><span>Click <strong id="cce_10_0216__b5824103317919">Create Workload</strong> in the lower right corner.</span></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_10_0222.html b/docs/cce/umn/cce_10_0222.html
index cbe4ccd7..2d5bab8e 100644
--- a/docs/cce/umn/cce_10_0222.html
+++ b/docs/cce/umn/cce_10_0222.html
@@ -1,409 +1,25 @@
 <a name="cce_10_0222"></a><a name="cce_10_0222"></a>
 
 <h1 class="topictitle1">Managing a Node Pool</h1>
-<div id="body1570701009069"><div class="section" id="cce_10_0222__section2858332152410"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0222__p2827196112510">The default node pool DefaultPool does not support the following management operations.</p>
-</div>
-<div class="section" id="cce_10_0222__section34573421435"><h4 class="sectiontitle">Configuring Kubernetes Parameters</h4><p id="cce_10_0222__p143621952143410">CCE allows you to highly customize Kubernetes parameter settings on core components in a cluster. For more information, see <a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/" target="_blank" rel="noopener noreferrer">kubelet</a>.</p>
-<p id="cce_10_0222__p19591154615282">This function is supported only in clusters of <strong id="cce_10_0222__b114111442163">v1.15 and later</strong>. It is not displayed for clusters earlier than v1.15.</p>
-<ol id="cce_10_0222__ol14922951130"><li id="cce_10_0222__li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li2075471341"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol11924193611121"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b14929136121214">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li4919175839"><span>Choose <strong id="cce_10_0222__b5599109121312">More</strong> &gt; <strong id="cce_10_0222__b14325144615259">Manage</strong> next to the node pool name.</span></li><li id="cce_10_0222__li20922452316"><span>On the <span class="uicontrol" id="cce_10_0222__uicontrol6836923125811"><b>Manage Component</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table39227516315" frame="border" border="1" rules="all"><caption><b>Table 1 </b>kubelet</caption><thead align="left"><tr id="cce_10_0222__row59201451536"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.1.2.5.1.1"><p id="cce_10_0222__p199191758311">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.1.2.5.1.2"><p id="cce_10_0222__p09208511315">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.1.2.5.1.3"><p id="cce_10_0222__p69201514317">Default Value</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.1.2.5.1.4"><p id="cce_10_0222__p123651546173612">Remarks</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0222__row11921251238"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p20921756312">cpu-manager-policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p17921952039">Specifies the CPU core binding configuration. For details, see <a href="cce_10_0551.html">CPU Core Binding</a>.</p>
-<ul id="cce_10_0222__ul25409302147"><li id="cce_10_0222__li1054043061419"><strong id="cce_10_0222__b17614473461">none</strong>: disables pods from exclusively occupying CPUs. Select this value if you want a large pool of shareable CPU cores.</li><li id="cce_10_0222__li954016300142"><strong id="cce_10_0222__b10647612184715">static</strong>: enables pods to exclusively occupy CPUs. Select this value if your workload is sensitive to latency in CPU cache and scheduling.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p992175733">none</p>
-</td>
-<td class="cellrowborder" rowspan="8" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p3365646173618">The values can be modified during the node pool lifecycle.</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row192120517312"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p1292113519312">kube-api-qps</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p1392155933">Query per second (QPS) to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p192125435">100</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row189211251930"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p179211857313">kube-api-burst</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p14921205536">Burst to use while talking with kube-apiserver.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p17921951232">100</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row1992115514319"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p199211558318">max-pods</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p139211750310">Maximum number of pods managed by kubelet.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p792112514314">40</p>
-<p id="cce_10_0222__p15336122815358">20</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row1423519271022"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p1424218271326">pod-pids-limit</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p72425271023">PID limit in Kubernetes</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p2024282719213">-1</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row139221751031"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p39211451232">with-local-dns</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p11922155317">Whether to use the local IP address as the ClusterDNS of the node.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p159222510310">false</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row1016115483359"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p2036473943312">event-qps</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p183642398336">QPS limit for event creation</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1336453943317">5</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row119221051531"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p392225737">allowed-unsafe-sysctls</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p292218515312">Insecure system configuration allowed.</p>
-<p id="cce_10_0222__p1255654524218">Starting from <strong id="cce_10_0222__b364452812182">v1.17.17</strong>, CCE enables pod security policies for kube-apiserver. You need to add corresponding configurations to <strong id="cce_10_0222__b1486018719195">allowedUnsafeSysctls</strong> of a pod security policy to make the policy take effect. (This configuration is not required for clusters earlier than v1.17.17.) For details, see <a href="cce_10_0275.html#cce_10_0275__section155111941177">Example of Enabling Unsafe Sysctls in Pod Security Policy</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p79221551538">[]</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row12311326570"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p137161681620">over-subscription-resource</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p19712016121614">Whether to enable node oversubscription.</p>
-<p id="cce_10_0222__p2083075010179">If this parameter is set to <strong id="cce_10_0222__b11113448194819">true</strong>, the node oversubscription feature is enabled. For details, see <a href="cce_10_0384.html">Hybrid Deployment of Online and Offline Jobs</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1339317196101">true</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p1071816111618">-</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row12765512616"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p11357434195317">colocation</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p1735793485317">Whether to enable node hybrid deployment.</p>
-<p id="cce_10_0222__p1664918289104">If this parameter is set to <strong id="cce_10_0222__b9328929125010">true</strong>, the node hybrid deployment feature is enabled. For details, see <a href="cce_10_0384.html">Hybrid Deployment of Online and Offline Jobs</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1235713343536">true</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p835714349538">-</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row362443718199"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p1362593715194">kube-reserved-mem</p>
-<p id="cce_10_0222__p17130736112118">system-reserved-mem</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p6625153710197">Reserved node memory.</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p1625193751919">Depends on node specifications. For details, see <a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p5625123701913">The sum of kube-reserved-mem and system-reserved-mem is less than half of the memory.</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row0769163972815"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p187704396286">topology-manager-policy</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p194194963117">Set the topology management policy.</p>
-<p id="cce_10_0222__p180294523117">Valid values are as follows:</p>
-<ul id="cce_10_0222__ul9802545113118"><li id="cce_10_0222__li280214514318"><strong id="cce_10_0222__b683681415119">restricted</strong>: kubelet accepts only pods that achieve optimal NUMA alignment on the requested resources.</li><li id="cce_10_0222__li88031945143113"><strong id="cce_10_0222__b849151795120">best-effort</strong>: kubelet preferentially selects pods that implement NUMA alignment on CPU and device resources.</li><li id="cce_10_0222__li168031045123113"><strong id="cce_10_0222__b3186182155119">none</strong> (default): The topology management policy is disabled.</li><li id="cce_10_0222__li02141356163216"><strong id="cce_10_0222__b1636224135113">single-numa-node</strong>: kubelet allows only pods that are aligned to the same NUMA node in terms of CPU and device resources.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p477010397282">none</p>
-</td>
-<td class="cellrowborder" rowspan="2" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p18868132111335">The values can be modified during the node pool lifecycle.</p>
-<div class="notice" id="cce_10_0222__note89763063412"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0222__p521818615343">Exercise caution when modifying topology-manager-policy and topology-manager-scope will restart kubelet and recalculate the resource allocation of pods based on the modified policy. As a result, running pods may restart or even fail to receive any resources.</p>
-<p id="cce_10_0222__p169763011340"></p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_10_0222__row363114444281"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p4631124411282">topology-manager-scope</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p183841836183219">Set the resource alignment granularity of the topology management policy. Valid values are as follows:</p>
-<ul id="cce_10_0222__ul3384836153218"><li id="cce_10_0222__li038413613218"><strong id="cce_10_0222__b14220143820516">container</strong> (default)</li><li id="cce_10_0222__li13216195983210"><strong id="cce_10_0222__b206331542155113">pod</strong></li></ul>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p136311744192811">container</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row111258127710"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0222__p149731155143115">resolv-conf</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0222__p1097385593111">DNS resolution configuration file specified by the container</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0222__p69731755173113">The default value is null.</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0222__p15764161811394">-</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table1571891811414" frame="border" border="1" rules="all"><caption><b>Table 2 </b>kube-proxy</caption><thead align="left"><tr id="cce_10_0222__row167189181747"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.2.2.5.1.1"><p id="cce_10_0222__p107181181415">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.2.2.5.1.2"><p id="cce_10_0222__p87185181642">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.2.2.5.1.3"><p id="cce_10_0222__p37181188420">Default Value</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.2.2.5.1.4"><p id="cce_10_0222__p1471881813414">Remarks</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0222__row207193186419"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.1 "><p id="cce_10_0222__p8845421957">conntrack-min</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.2 "><p id="cce_10_0222__p148451227515">sysctl -w net.nf_conntrack_max</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.3 "><p id="cce_10_0222__p18456215515">131072</p>
-</td>
-<td class="cellrowborder" rowspan="2" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.4 "><p id="cce_10_0222__p27191618446">The values can be modified during the node pool lifecycle.</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row6523175217418"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.2.2.5.1.1 "><p id="cce_10_0222__p1984513217519">conntrack-tcp-timeout-close-wait</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.2.2.5.1.2 "><p id="cce_10_0222__p128459215512">sysctl -w net.netfilter.nf_conntrack_tcp_timeout_close_wait</p>
-</td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.2.2.5.1.3 "><p id="cce_10_0222__p9845132753">1h0m0s</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table191081201418" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Network components (available only for CCE Turbo clusters)</caption><thead align="left"><tr id="cce_10_0222__row1410911019116"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.3.2.5.1.1"><p id="cce_10_0222__p41091501917">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.3.2.5.1.2"><p id="cce_10_0222__p6109140914">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.3.2.5.1.3"><p id="cce_10_0222__p5109130310">Default Value</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.3.2.5.1.4"><p id="cce_10_0222__p2109803111">Remarks</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0222__row6109501911"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p83386191515">nic-threshold</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p1338181913113">Low threshold of the number of bound ENIs:High threshold of the number of bound ENIs</p>
-<div class="note" id="cce_10_0222__note33382191715"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p103387191618">This parameter is being discarded. Use the dynamic pre-binding parameters of the other four ENIs.</p>
-</div></div>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p633820191315">Default: 0:0</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p8110201815">-</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row113597313118"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p193381519112">nic-minimum-target</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p16339131911115">Minimum number of ENIs bound to the nodes in the node pool</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p033918197116">Default: 10</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p936113216">-</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row1330911415115"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p933916192120">nic-maximum-target</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p143398192110">Maximum number of ENIs pre-bound to a node at the node pool level</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p13339819513">Default: 0</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p1331017416118">-</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row48521749118"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p233910191217">nic-warm-target</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p1233918192111">Number of ENIs pre-bound to a node at the node pool level</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p11339919410">Default: 2</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p1853140119">-</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row10457153114"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0222__p73391219914">nic-max-above-warm-target</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0222__p033941919119">Reclaim number of ENIs pre-bound to a node at the node pool level</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0222__p833919195115">Default: 2</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0222__p11457125513">-</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table154151221155917" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Pod security group in a node pool (available only for CCE Turbo clusters)</caption><thead align="left"><tr id="cce_10_0222__row10416122195916"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.4.2.5.1.1"><p id="cce_10_0222__p0416142185919">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.4.2.5.1.2"><p id="cce_10_0222__p17416821175918">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.4.2.5.1.3"><p id="cce_10_0222__p1241616210595">Default Value</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.4.2.5.1.4"><p id="cce_10_0222__p741692165912">Remarks</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0222__row104166213595"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.4.2.5.1.1 "><p id="cce_10_0222__p34194417595">security_groups_for_nodepool</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.4.2.5.1.2 "><ul id="cce_10_0222__ul1641174410590"><li id="cce_10_0222__li114114443592">Default security group used by pods in a node pool. You can enter the security group ID. If this parameter is not set, the default security group of the cluster container network is used. A maximum of five security group IDs can be specified at the same time, separated by semicolons (;).</li><li id="cce_10_0222__li4419444591">The priority of the security group is lower than that of the security group configured for the <a href="cce_10_0288.html">SecurityGroup</a> resource object.</li></ul>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.4.2.5.1.3 "><p id="cce_10_0222__p114116445597">-</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.4.2.5.1.4 "><p id="cce_10_0222__p1541944135919">-</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table36626237217" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Docker (available only for node pools that use Docker)</caption><thead align="left"><tr id="cce_10_0222__row1066210231324"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.5.2.5.1.1"><p id="cce_10_0222__p9662182318210">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.5.2.5.1.2"><p id="cce_10_0222__p466218231720">Description</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.5.2.5.1.3"><p id="cce_10_0222__p186628235215">Default Value</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.5.2.5.1.4"><p id="cce_10_0222__p1766213231829">Remarks</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0222__row46629235211"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p11685711317">native-umask</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p1616857733">`--exec-opt native.umask</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p3168137134">normal</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p111684711314">Cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row106633238210"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p17168971837">docker-base-size</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p6168671733">`--storage-opts dm.basesize</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p616816719313">0</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p18168170310">Cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row866332311214"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p101688716312">insecure-registry</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p19168476317">Address of an insecure image registry</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p9168197739">false</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p121688713318">Cannot be changed.</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row174045431722"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p171685712315">limitcore</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p1292464083115">Maximum size of a core file in a container. The unit is byte.</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p1116997338">5368709120</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p4169274317">-</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row14622447029"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0222__p20169570312">default-ulimit-nofile</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0222__p5169127934">Limit on the number of handles in a container</p>
-</td>
-<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0222__p916918717314">{soft}:{hard}</p>
-</td>
-<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0222__p91697713315">The value cannot exceed the value of the kernel parameter <strong id="cce_10_0222__b10341949704">nr_open</strong> and cannot be a negative number.</p>
-<p id="cce_10_0222__p18169271534">You can run the following command to obtain the kernel parameter <strong id="cce_10_0222__b1060217181719">nr_open</strong>:</p>
-<pre class="screen" id="cce_10_0222__screen716912711319">sysctl -a | grep nr_open</pre>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</p></li><li id="cce_10_0222__li1092210513312"><span>Click <strong id="cce_10_0222__b39759371215">OK</strong>.</span></li></ol>
-</div>
-<div class="section" id="cce_10_0222__section359343125016"><h4 class="sectiontitle">Editing a Node Pool</h4><ol id="cce_10_0222__ol87116345495"><li id="cce_10_0222__li095292023413"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li3952220173414"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol5229158131515"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b023545817153">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li128412475118"><span>Click <strong id="cce_10_0222__b157451843191518">Edit</strong> next to the name of the node pool you will edit. In the <strong id="cce_10_0222__b15577259141511">Edit Node Pool</strong> page, edit the following parameters:</span><p><div class="p" id="cce_10_0222__p118166389258"><strong id="cce_10_0222__b2052072818498">Basic Settings</strong>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table6454152183120" frame="border" border="1" rules="all"><caption><b>Table 6 </b>Basic settings</caption><thead align="left"><tr id="cce_10_0222__row194522023319"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.1.2.2.3.1.1"><p id="cce_10_0222__p1452192133119">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.1.2.2.3.1.2"><p id="cce_10_0222__p114521229312">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0222__row164535216319"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_10_0222__p18452325317">Node Pool Name</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_10_0222__p1345314243116">Name of the node pool.</p>
-</td>
-</tr>
-<tr id="cce_10_0222__row545316217315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.1 "><p id="cce_10_0222__p10453162193118">Auto Scaling</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.1.2.2.3.1.2 "><p id="cce_10_0222__p2045322133110">By default, this parameter is disabled.</p>
-<p id="cce_10_0222__p94531624314">After you enable autoscaler by clicking <span><img id="cce_10_0222__image164531263118" src="en-us_image_0000001528627005.png"></span>, nodes in the node pool are automatically created or deleted based on service requirements.</p>
-<ul id="cce_10_0222__ul11453322315"><li id="cce_10_0222__li1453326312"><strong id="cce_10_0222__b33221567500">Maximum Nodes</strong> and <strong id="cce_10_0222__b2032275614509">Minimum Nodes</strong>: You can set the maximum and minimum number of nodes to ensure that the number of nodes to be scaled is within a proper range.</li><li id="cce_10_0222__li84536212313"><strong id="cce_10_0222__b731522510111">Priority</strong>: A larger value indicates a higher priority. For example, if this parameter is set to <strong id="cce_10_0222__b1132032551117">1</strong> and <strong id="cce_10_0222__b19321925191115">4</strong> respectively for node pools A and B, B has a higher priority than A, and auto scaling is first triggered for B. If the priorities of multiple node pools are set to the same value, for example, <strong id="cce_10_0222__b13780179155114">2</strong>, the node pools are not prioritized and the system performs scaling based on the minimum resource waste principle.</li><li id="cce_10_0222__li94531923318"><strong id="cce_10_0222__b42361920165114">Cooldown Period</strong>: Required. The unit is minute. This parameter indicates the interval between the previous scale-out action and the next scale-in action.</li></ul>
-<p id="cce_10_0222__p645312233113">If the <strong id="cce_10_0222__b66651050185114">Autoscaler</strong> field is set to on, install the <a href="cce_10_0154.html">autoscaler add-on</a> to use the autoscaler feature.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div class="p" id="cce_10_0222__p63204532313"><strong id="cce_10_0222__b153134535712">Advanced Settings</strong>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0222__table1388513493324" frame="border" border="1" rules="all"><caption><b>Table 7 </b>Advanced settings</caption><thead align="left"><tr id="cce_10_0222__row1886164917324"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.3.2.3.2.2.2.2.3.1.1"><p id="cce_10_0222__p20886649143214">Parameter</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.3.2.3.2.2.2.2.3.1.2"><p id="cce_10_0222__p1188694963213">Description</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_10_0222__row1888624910324"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p688619499325">K8s label</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0222__p1588624993215">Click <strong id="cce_10_0222__b939758105810">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
-<p id="cce_10_0222__p388612497324">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
-<div class="note" id="cce_10_0222__note72401322193313"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p20240422183311">After a <span class="parmname" id="cce_10_0222__parmname1164228174412"><b>K8s label</b></span> is modified, the inventory nodes in the node pool are updated synchronously.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_10_0222__row10887134923219"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p888714923217">Resource Tag</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0222__p16887144933210">You can add resource tags to classify resources.</p>
-<p id="cce_10_0222__p18871349143217">You can create <strong id="cce_10_0222__b1827121301619">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
-<p id="cce_10_0222__p18887649123215">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0222__i10583350145811">node id</em>" tag.</p>
-<div class="note" id="cce_10_0222__note076235953416"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p1976265917345">After a <span class="parmname" id="cce_10_0222__parmname4487625174410"><b>resource tag</b></span> is modified, the modification automatically takes effect when a node is added. For existing nodes, you need to manually reset the nodes for the modification to take effect.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_10_0222__row3887849173215"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p19887164914326">Taint</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><div class="p" id="cce_10_0222__p18870496323">This field is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0222__ul188871749133213"><li id="cce_10_0222__li198871349123212"><strong id="cce_10_0222__b138225358187">Key</strong>: A key must contain 1 to 63 characters starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0222__li188871549153212"><strong id="cce_10_0222__b172009380180">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0222__li1988734917326"><strong id="cce_10_0222__b20244184015182">Effect</strong>: Available options are <strong id="cce_10_0222__b19246154041816">NoSchedule</strong>, <strong id="cce_10_0222__b824764019183">PreferNoSchedule</strong>, and <strong id="cce_10_0222__b624994001818">NoExecute</strong>.</li></ul>
-</div>
-<p id="cce_10_0222__p1188713495328">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
-<div class="note" id="cce_10_0222__note0631151634312"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p1263111644312">After a <span class="parmname" id="cce_10_0222__parmname66671618134415"><b>taint</b></span> is modified, the inventory nodes in the node pool are updated synchronously.</p>
-</div></div>
-</td>
-</tr>
-<tr id="cce_10_0222__row105511962411"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0222__p15520615414">Edit Key pair</p>
-</td>
-<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.3.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0222__p10552156947">Only node pools that use key pairs for login support key pair editing. You can select another key pair.</p>
-<div class="note" id="cce_10_0222__note528463510616"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0222__p1528512351611">The edited key pair automatically takes effect when a node is added. For existing nodes, you need to manually reset the nodes for the key pair to take effect.</p>
-</div></div>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-</p></li><li id="cce_10_0222__li12598104717491"><span>Click <span class="uicontrol" id="cce_10_0222__uicontrol203921431163"><b>OK</b></span>.</span><p><p id="cce_10_0222__p17311940154315">In the node pool list, the node pool status becomes <strong id="cce_10_0222__b16788571549">Scaling</strong>. After the status changes to <strong id="cce_10_0222__b124741019555">Completed</strong>, the node pool parameters are modified successfully. The modified configuration will be synchronized to all nodes in the node pool.</p>
-</p></li></ol>
-</div>
-<div class="section" id="cce_10_0222__section135941731115017"><h4 class="sectiontitle">Deleting a Node Pool</h4><p id="cce_10_0222__p63181335329">Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools. If pods in the node pool have a specific node selector and none of the other nodes in the cluster satisfies the node selector, the pods will become unschedulable.</p>
-<ol id="cce_10_0222__ol19318113515214"><li id="cce_10_0222__li626314228364"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li152641222183610"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol151105317337"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b85155312331">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li1896716618513"><span>Choose <span class="uicontrol" id="cce_10_0222__uicontrol596810675118"><b>More &gt; Delete</b></span> next to a node pool name to delete the node pool.</span></li><li id="cce_10_0222__li883285012530"><span>Read the precautions in the <span class="uicontrol" id="cce_10_0222__uicontrol783245095319"><b>Delete Node Pool</b></span> dialog box.</span></li><li id="cce_10_0222__li131704612145"><span>In the text box, click <span class="uicontrol" id="cce_10_0222__uicontrol3404931191915"><b>Yes</b></span> to confirm that you want to continue the deletion.</span></li></ol>
-</div>
-<div class="section" id="cce_10_0222__section550619571556"><a name="cce_10_0222__section550619571556"></a><a name="section550619571556"></a><h4 class="sectiontitle">Copying a Node Pool</h4><p id="cce_10_0222__p050645718552">You can copy the configuration of an existing node pool to create a new node pool on the CCE console.</p>
-<ol id="cce_10_0222__ol12506185710555"><li id="cce_10_0222__li11561534103619"><span>Log in to the CCE console.</span></li><li id="cce_10_0222__li16561134183613"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0222__uicontrol20263122721118"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0222__b026322716114">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0222__li55061457115511"><span>Choose <span class="uicontrol" id="cce_10_0222__uicontrol09861940292"><b>More &gt; Copy</b></span> next to a node pool name to copy the node pool.</span></li><li id="cce_10_0222__li0507185735518"><span>The configurations of the selected node pool are replicated to the <span class="uicontrol" id="cce_10_0222__uicontrol32610193313"><b>Clone Node Pool</b></span> page. You can edit the configurations as required and click <span class="uicontrol" id="cce_10_0222__uicontrol18262151919311"><b>Next: Confirm</b></span>.</span></li><li id="cce_10_0222__li19507165717559"><span>On the <span class="uicontrol" id="cce_10_0222__uicontrol12198116121716"><b>Confirm</b></span> page, confirm the node pool configuration and click <span class="uicontrol" id="cce_10_0222__uicontrol10204171681716"><b>Create Now</b></span>. Then, a new node pool is created based on the edited configuration.</span></li></ol>
-</div>
-<div class="section" id="cce_10_0222__section8215206283"><h4 class="sectiontitle">Migrating a Node</h4><p id="cce_10_0222__p773035719282">Nodes in a node pool can be migrated. Currently, nodes in a node pool can be migrated only to the default node pool (defaultpool) in the same cluster.</p>
-<ol id="cce_10_0222__ol5730185713281"><li id="cce_10_0222__li20851203991514"><span>Log in to the CCE console and click the cluster name to access the cluster.</span></li><li id="cce_10_0222__li1673005710288"><span>In the navigation pane, choose <span class="uicontrol" id="cce_10_0222__uicontrol17730135714286"><b>Nodes</b></span> and switch to the <span class="uicontrol" id="cce_10_0222__uicontrol19561181611510"><b>Node Pools</b></span> tab page.</span></li><li id="cce_10_0222__li7730165772816"><span>Click <span class="uicontrol" id="cce_10_0222__uicontrol127301057172819"><b>View Node</b></span> in the <strong id="cce_10_0222__b10521123712510">Operation</strong> column of the node pool to be migrated.</span></li><li id="cce_10_0222__li1969510121085"><span>Select the nodes to be migrated and choose <strong id="cce_10_0222__b211368172613">More</strong> &gt; <strong id="cce_10_0222__b11872413132613">Migrate</strong> to migrate the nodes to the default node pool in batches.</span><p><p id="cce_10_0222__p19900192812184">You can also choose <strong id="cce_10_0222__b13855419275">More</strong> &gt; <strong id="cce_10_0222__b385775616279">Migrate</strong> in the <strong id="cce_10_0222__b1031695918274">Operation</strong> column of a single node to migrate the node.</p>
-<p id="cce_10_0222__p133352287184"></p>
-</p></li><li id="cce_10_0222__li187591229173716"><span>In the displayed <span class="uicontrol" id="cce_10_0222__uicontrol198741318123818"><b>Migrate Node</b></span> window, confirm the information.</span><p><div class="note" id="cce_10_0222__note182620211405"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0222__p19251111615611">The migration has no impacts on the original resource tags, Kubernetes labels, and taints of the node.</p>
-</div></div>
-</p></li></ol>
-</div>
-</div>
+<div id="body1570701009069"></div>
 <div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0652.html">Configuring a Node Pool</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0653.html">Updating a Node Pool</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0654.html">Synchronizing Node Pools</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0660.html">Upgrading the OS</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0655.html">Copying a Node Pool</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0656.html">Migrating a Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0657.html">Deleting a Node Pool</a></strong><br>
+</li>
+</ul>
+
 <div class="familylinks">
 <div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0035.html">Node Pools</a></div>
 </div>
diff --git a/docs/cce/umn/cce_10_0232.html b/docs/cce/umn/cce_10_0232.html
index 28cd9a17..00ec365e 100644
--- a/docs/cce/umn/cce_10_0232.html
+++ b/docs/cce/umn/cce_10_0232.html
@@ -174,7 +174,7 @@ gpu-585455d466-t56cm   1/1     Running   0          2m29s   172.16.0.64   192.16
 gpu-585455d466-t5w5x   1/1     Running   0          2m29s   172.16.0.41   192.168.0.212</pre>
 </div>
 <p id="cce_10_0232__p92179105145">In the preceding example, the node scheduling priority is as follows. Nodes with both <strong id="cce_10_0232__b16521734123815">SSD</strong> and <strong id="cce_10_0232__b3581134193816">gpu=true</strong> labels have the highest priority. Nodes with the <strong id="cce_10_0232__b195843443814">SSD</strong> label but no <strong id="cce_10_0232__b1258434143815">gpu=true</strong> label have the second priority (weight: 80). Nodes with the <strong id="cce_10_0232__b14581034133813">gpu=true</strong> label but no <strong id="cce_10_0232__b65883463817">SSD</strong> label have the third priority. Nodes without any of these two labels have the lowest priority.</p>
-<div class="fignone" id="cce_10_0232__fig1074885585814"><span class="figcap"><b>Figure 1 </b>Scheduling priority</span><br><span><img id="cce_10_0232__image1950520111683" src="en-us_image_0000001202101148.png"></span></div>
+<div class="fignone" id="cce_10_0232__fig1074885585814"><span class="figcap"><b>Figure 1 </b>Scheduling priority</span><br><span><img id="cce_10_0232__image1950520111683" src="en-us_image_0000001569022881.png"></span></div>
 <div class="section" id="cce_10_0232__section3218151791419"><h4 class="sectiontitle">Workload Affinity (podAffinity)</h4><p id="cce_10_0232__p9807315182015">Node affinity rules affect only the affinity between pods and nodes. Kubernetes also supports configuring inter-pod affinity rules. For example, the frontend and backend of an application can be deployed together on one node to reduce access latency. There are also two types of inter-pod affinity rules: <strong id="cce_10_0232__b217612455407">requiredDuringSchedulingIgnoredDuringExecution</strong> and <strong id="cce_10_0232__b17176194574018">preferredDuringSchedulingIgnoredDuringExecution</strong>.</p>
 <p id="cce_10_0232__p19665519228">Assume that the backend of an application has been created and has the <strong id="cce_10_0232__b67051008411">app=backend</strong> label.</p>
 <pre class="screen" id="cce_10_0232__screen0560223122512">$ kubectl get po -o wide
@@ -229,7 +229,7 @@ backend-658f6cb858-dlrz8    1/1     Running   0          5m38s   172.16.0.67   1
 frontend-67ff9b7b97-dsqzn   1/1     Running   0          6s      172.16.0.70   192.168.0.100
 frontend-67ff9b7b97-hxm5t   1/1     Running   0          6s      172.16.0.71   192.168.0.100
 frontend-67ff9b7b97-z8pdb   1/1     Running   0          6s      172.16.0.72   192.168.0.100</pre>
-<p id="cce_10_0232__p12885183116411">The <strong id="cce_10_0232__b11928182514117">topologyKey</strong> field specifies the selection range. The scheduler selects nodes within the range based on the affinity rule defined. The effect of <strong id="cce_10_0232__b18748184215413">topologyKey</strong> is not fully demonstrated in the preceding example because all the nodes have the <strong id="cce_10_0232__b774884217412">kubernetes.io/hostname</strong> label, that is, all the nodes are within the range.</p>
+<p id="cce_10_0232__p12885183116411">The <strong id="cce_10_0232__b11571381999">topologyKey</strong> field specifies the selection range. The scheduler selects nodes within the range based on the affinity rule defined. The effect of <strong id="cce_10_0232__b18748184215413">topologyKey</strong> is not fully demonstrated in the preceding example because all the nodes have the <strong id="cce_10_0232__b774884217412">kubernetes.io/hostname</strong> label, that is, all the nodes are within the range.</p>
 <p id="cce_10_0232__p49155814502">To see how <strong id="cce_10_0232__b12680174454114">topologyKey</strong> works, assume that the backend of the application has two pods, which are running on different nodes.</p>
 <pre class="screen" id="cce_10_0232__screen152291428165020">$ kubectl get po -o wide
 NAME                       READY   STATUS    RESTARTS   AGE     IP            NODE         
@@ -247,7 +247,7 @@ NAME            STATUS   ROLES    AGE   VERSION                            PREFE
 192.168.0.212   Ready    &lt;none&gt;   91m   v1.15.6-r1-20.3.0.2.B001-15.30.2   
 192.168.0.94    Ready    &lt;none&gt;   91m   v1.15.6-r1-20.3.0.2.B001-15.30.2   true
 192.168.0.97    Ready    &lt;none&gt;   91m   v1.15.6-r1-20.3.0.2.B001-15.30.2   true</pre>
-<p id="cce_10_0232__p82371197529">Define <strong id="cce_10_0232__b226612577417">topologyKey</strong> in the <strong id="cce_10_0232__b5266857174110">podAffinity</strong> section as <strong id="cce_10_0232__b13266757194119">prefer</strong>.</p>
+<p id="cce_10_0232__p82371197529">Define <strong id="cce_10_0232__b1461418549481">topologyKey</strong> in the <strong id="cce_10_0232__b88888583488">podAffinity</strong> section as <strong id="cce_10_0232__b114321621499">prefer</strong>. The node topology domains are divided as shown in <a href="#cce_10_0232__fig511152614544">Figure 2</a>.</p>
 <pre class="screen" id="cce_10_0232__screen14634134685215">      affinity:
         podAffinity:
           requiredDuringSchedulingIgnoredDuringExecution:
@@ -258,7 +258,8 @@ NAME            STATUS   ROLES    AGE   VERSION                            PREFE
                 operator: In 
                 values: 
                 - backend</pre>
-<p id="cce_10_0232__p885461775317">The scheduler recognizes the nodes with the <strong id="cce_10_0232__b315871114211">prefer</strong> label, that is, <strong id="cce_10_0232__b101644134211">192.168.0.97</strong> and <strong id="cce_10_0232__b1016413112425">192.168.0.94</strong>, and then find the pods with the <strong id="cce_10_0232__b3164111104218">app=backend</strong> label. In this way, all frontend pods are deployed onto <strong id="cce_10_0232__b616431114210">192.168.0.97</strong>.</p>
+<div class="fignone" id="cce_10_0232__fig511152614544"><a name="cce_10_0232__fig511152614544"></a><a name="fig511152614544"></a><span class="figcap"><b>Figure 2 </b>Topology domain example</span><br><span><img class="eddx" id="cce_10_0232__image41112625415" src="en-us_image_0000001517903036.png"></span></div>
+<p id="cce_10_0232__p885461775317">During scheduling, node topology domains are divided based on the <strong id="cce_10_0232__b664184395017">prefer</strong> label. In this example, <strong id="cce_10_0232__b189591946175015">192.168.0.97</strong> and <strong id="cce_10_0232__b488054818507">192.168.0.94</strong> are divided into the same topology domain. If pods with the <strong id="cce_10_0232__b6689154935212">app=backend</strong> label run in <strong id="cce_10_0232__b102815010543">192.168.0.97</strong>, all frontend pods are deployed onto <strong id="cce_10_0232__b18833723155415">192.168.0.97</strong> or <strong id="cce_10_0232__b1315031545510">192.168.0.94</strong>.</p>
 <pre class="screen" id="cce_10_0232__screen11211143375517">$ kubectl create -f affinity3.yaml 
 deployment.apps/frontend created
 
@@ -271,7 +272,7 @@ frontend-67ff9b7b97-hxm5t   1/1     Running   0          6s      172.16.0.71   1
 frontend-67ff9b7b97-z8pdb   1/1     Running   0          6s      172.16.0.72   192.168.0.97</pre>
 </div>
 <div class="section" id="cce_10_0232__section59542620588"><h4 class="sectiontitle">Workload Anti-Affinity (podAntiAffinity)</h4><p id="cce_10_0232__p1837112018595">Unlike the scenarios in which pods are preferred to be scheduled onto the same node, sometimes, it could be the exact opposite. For example, if certain pods are deployed together, they will affect the performance.</p>
-<p id="cce_10_0232__p660518191831">The following example defines an inter-pod anti-affinity rule, which specifies that pods must not be scheduled to nodes that already have pods with the <strong id="cce_10_0232__b1294051894217">app=frontend</strong> label, that is, to deploy the pods of the frontend to different nodes with each node has only one replica.</p>
+<p id="cce_10_0232__p660518191831">In the following example, an anti-affinity rule is defined. This rule indicates that node topology domains are divided based on the <strong id="cce_10_0232__b6477643195513">kubernetes.io/hostname</strong> label. If a pod with the <strong id="cce_10_0232__b9284175315512">app=frontend</strong> label already exists on a node in the topology domain, pods with the same label cannot be scheduled to other nodes in the topology domain.</p>
 <pre class="screen" id="cce_10_0232__screen204251341745">apiVersion: apps/v1
 kind: Deployment
 metadata:
@@ -303,21 +304,21 @@ spec:
       affinity:
         podAntiAffinity:
           requiredDuringSchedulingIgnoredDuringExecution:
-          - topologyKey: kubernetes.io/hostname
-            labelSelector:
+          - topologyKey: kubernetes.io/hostname    # Node topology domain
+            labelSelector:    # Pod label matching rule
               matchExpressions: 
               - key: app
                 operator: In 
                 values: 
                 - frontend</pre>
-<p id="cce_10_0232__p5965143131410">Deploy the frontend and query the deployment results. You can find that each node has only one frontend pod and one pod of the Deployment is <strong id="cce_10_0232__b0841427104217">Pending</strong>. This is because when the scheduler is deploying the fifth pod, all nodes already have one pod with the <strong id="cce_10_0232__b108411827144217">app=frontend</strong> label on them. There is no available node. Therefore, the fifth pod will remain in the <strong id="cce_10_0232__b15841192744210">Pending</strong> status.</p>
+<p id="cce_10_0232__p198751421002">Create an anti-affinity rule and view the deployment result. In the example, node topology domains are divided by the <strong id="cce_10_0232__b155461256108">kubernetes.io/hostname</strong> label. Among nodes with the <strong id="cce_10_0232__b35468569015">kubernetes.io/hostname</strong> label, the label value of each node is different. Therefore, there is only one node in a topology domain. If a frontend pod already exists in a topology (a node in this example), the same pods will not be scheduled to this topology. In this example, there are only four nodes. Therefore, another pod is pending and cannot be scheduled.</p>
 <pre class="screen" id="cce_10_0232__screen74071719171410">$ kubectl create -f affinity4.yaml 
 deployment.apps/frontend created
 
 $ kubectl get po -o wide
 NAME                        READY   STATUS    RESTARTS   AGE   IP            NODE         
 frontend-6f686d8d87-8dlsc   1/1     Running   0          18s   172.16.0.76   192.168.0.100
-frontend-6f686d8d87-d6l8p   0/1     Pending   0          18s   &lt;none&gt;        &lt;none&gt;       
+frontend-6f686d8d87-d6l8p   0/1     Pending   0          18s   &lt;none&gt;        &lt;none&gt;
 frontend-6f686d8d87-hgcq2   1/1     Running   0          18s   172.16.0.54   192.168.0.97 
 frontend-6f686d8d87-q7cfq   1/1     Running   0          18s   172.16.0.47   192.168.0.212
 frontend-6f686d8d87-xl8hx   1/1     Running   0          18s   172.16.0.23   192.168.0.94 </pre>
@@ -342,7 +343,7 @@ frontend-6f686d8d87-xl8hx   1/1     Running   0          18s   172.16.0.23   192
 </tbody>
 </table>
 </div>
-</p></li><li id="cce_10_0232__li442203101314"><span>Under <strong id="cce_10_0232__b1059013572035">Node Affinity</strong>, <strong id="cce_10_0232__b292410716410">Workload Affinity</strong>, and <strong id="cce_10_0232__b3235121110415">Workload Anti-Affinity</strong>, click <span><img id="cce_10_0232__image684513499489" src="en-us_image_0000001203031716.png"></span> to add scheduling policies. In the dialog box displayed, add a policy directly or by specifying a node or an AZ.</span><p><div class="p" id="cce_10_0232__p17631515161414">Specifying a node or an AZ is essentially implemented through labels. The <strong id="cce_10_0232__b71812191020">kubernetes.io/hostname</strong> label is used when you specify a node, and the <strong id="cce_10_0232__b1310915241324">failure-domain.beta.kubernetes.io/zone</strong> label is used when you specify an AZ.
+</p></li><li id="cce_10_0232__li442203101314"><span>Under <strong id="cce_10_0232__b1059013572035">Node Affinity</strong>, <strong id="cce_10_0232__b292410716410">Workload Affinity</strong>, and <strong id="cce_10_0232__b3235121110415">Workload Anti-Affinity</strong>, click <span><img id="cce_10_0232__image684513499489" src="en-us_image_0000001518062612.png"></span> to add scheduling policies. In the dialog box displayed, add a policy directly or by specifying a node or an AZ.</span><p><div class="p" id="cce_10_0232__p17631515161414">Specifying a node or an AZ is essentially implemented through labels. The <strong id="cce_10_0232__b71812191020">kubernetes.io/hostname</strong> label is used when you specify a node, and the <strong id="cce_10_0232__b1310915241324">failure-domain.beta.kubernetes.io/zone</strong> label is used when you specify an AZ.
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0232__table723331051417" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Scheduling policy configuration</caption><thead align="left"><tr id="cce_10_0232__row102330108147"><th align="left" class="cellrowborder" valign="top" width="23.95%" id="mcps1.3.9.2.3.2.1.3.2.3.1.1"><p id="cce_10_0232__p1423201015144">Parameter</p>
 </th>
 <th align="left" class="cellrowborder" valign="top" width="76.05%" id="mcps1.3.9.2.3.2.1.3.2.3.1.2"><p id="cce_10_0232__p20232151015147">Description</p>
diff --git a/docs/cce/umn/cce_10_0245.html b/docs/cce/umn/cce_10_0245.html
index 6bffd14f..f89b3667 100644
--- a/docs/cce/umn/cce_10_0245.html
+++ b/docs/cce/umn/cce_10_0245.html
@@ -9,7 +9,7 @@
 <div class="section" id="cce_10_0245__section196214519418"><h4 class="sectiontitle">Permission Design</h4><p id="cce_10_0245__p18926715212">The following uses company X as an example.</p>
 <p id="cce_10_0245__p69182284289">Generally, a company has multiple departments or projects, and each department has multiple members. Therefore, you need to design how permissions are to be assigned to different groups and projects, and set a user name for each member to facilitate subsequent user group and permissions configuration.</p>
 <p id="cce_10_0245__p188921873212">The following figure shows the organizational structure of a department in a company and the permissions to be assigned to each member:</p>
-<p id="cce_10_0245__p19583156113816"><span><img id="cce_10_0245__image11583661383" src="en-us_image_0000001256348238.jpg"></span></p>
+<p id="cce_10_0245__p19583156113816"><span><img id="cce_10_0245__image11583661383" src="en-us_image_0000001569182569.jpg"></span></p>
 </div>
 <div class="section" id="cce_10_0245__section592371519"><h4 class="sectiontitle">Director: David</h4><p id="cce_10_0245__p47251055054">David is a department director of company X. To assign him all CCE permissions (both cluster and namespace permissions), you need to create the <strong id="cce_10_0245__b58606133510">cce-admin</strong> user group for David on the IAM console and assign the CCE Administrator role.</p>
 <div class="note" id="cce_10_0245__note182032022465"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0245__p6726165517519"><strong id="cce_10_0245__b1440736141020">CCE Administrator</strong>: This role has all CCE permissions. You do not need to assign other permissions.</p>
@@ -17,11 +17,11 @@
 </div></div>
 </div>
 <div class="section" id="cce_10_0245__section1584012497910"><h4 class="sectiontitle">O&amp;M Leader: James</h4><p id="cce_10_0245__p969815111105">James is the O&amp;M team leader of the department. He needs the cluster permissions for all projects and the read-only permissions for all namespaces.</p>
-<p id="cce_10_0245__p269811141013">To assign the permissions, create a user group named <strong id="cce_10_0245__b159218711188">cce-sre</strong> on the IAM console and add James to this user group. Then, assign CCE FullAccess to the user group <strong id="cce_10_0245__b2528155111205">cce-sre</strong> to allow it to perform operations on clusters in all projects.</p>
+<p id="cce_10_0245__p269811141013">To assign the permissions, create a user group named <strong id="cce_10_0245__b16310129193317">cce-sre</strong> on the IAM console and add James to this user group. Then, assign CCE FullAccess to the user group <strong id="cce_10_0245__b12310112919339">cce-sre</strong> to allow it to perform operations on clusters in all projects.</p>
 <p id="cce_10_0245__p1013716010147"><strong id="cce_10_0245__b1772554911265">Assigning Read-only Permissions on All Clusters and Namespaces to All Team Leaders and Engineers</strong></p>
-<p id="cce_10_0245__p14948181201410">You can create a read-only user group named <strong id="cce_10_0245__b1181612120272">read_only</strong> on the IAM console and add users to the user group.</p>
-<ul id="cce_10_0245__ul1364135011435"><li id="cce_10_0245__li1664135017439">Although the development engineers Linda and Peter do not require cluster management permissions, they still need to view data on the CCE console. Therefore, the read-only cluster permission is required.</li><li id="cce_10_0245__li166411750114319">For the O&amp;M engineer William, assign the read-only permission on clusters to him in this step.</li><li id="cce_10_0245__li564116501433">The O&amp;M team leader James already has the management permissions on all clusters. You can add him to the <strong id="cce_10_0245__b17809230174913">read_only</strong> user group to assign the read-only permission on clusters to him.</li></ul>
-<p id="cce_10_0245__p19912119144510">Users James, Robert, William, Linda, and Peter are added to the <strong id="cce_10_0245__b7809331155010">read_only</strong> user group.</p>
+<p id="cce_10_0245__p14948181201410">You can create a read-only user group named <strong id="cce_10_0245__b18911163483320">read_only</strong> on the IAM console and add users to the user group.</p>
+<ul id="cce_10_0245__ul1364135011435"><li id="cce_10_0245__li1664135017439">Although the development engineers Linda and Peter do not require cluster management permissions, they still need to view data on the CCE console. Therefore, the read-only cluster permission is required.</li><li id="cce_10_0245__li166411750114319">For the O&amp;M engineer William, assign the read-only permission on clusters to him in this step.</li><li id="cce_10_0245__li564116501433">The O&amp;M team leader James already has the management permissions on all clusters. You can add him to the <strong id="cce_10_0245__b78623556335">read_only</strong> user group to assign the read-only permission on clusters to him.</li></ul>
+<p id="cce_10_0245__p19912119144510">Users James, Robert, William, Linda, and Peter are added to the <strong id="cce_10_0245__b197632543467">read_only</strong> user group.</p>
 <p id="cce_10_0245__p3430239154616">Assign the read-only permission on clusters to the user group <strong id="cce_10_0245__b96645278589">read_only</strong>.</p>
 <p id="cce_10_0245__p94525469481">Return to the CCE console, and add the read-only permission on namespaces to the user group <strong id="cce_10_0245__b43811566417">read_only</strong> to which the five users belong. Choose <strong id="cce_10_0245__b116471216341">Permissions</strong> on the CCE console, and assign the read-only policy to the user group <strong id="cce_10_0245__b1248358141710">read_only</strong> for each cluster.</p>
 <p id="cce_10_0245__p11335185085015">After the setting is complete, James has the cluster management permissions for all projects and the read-only permissions on all namespaces, and the Robert, William, Linda, and Peter have the read-only permission on all clusters and namespaces.</p>
diff --git a/docs/cce/umn/cce_10_0247.html b/docs/cce/umn/cce_10_0247.html
index f1bd7ceb..ecfb0343 100644
--- a/docs/cce/umn/cce_10_0247.html
+++ b/docs/cce/umn/cce_10_0247.html
@@ -20,6 +20,8 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_10_0385.html">Service Annotations</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_10_0684.html">Configuring Health Check for Multiple Ports</a></strong><br>
+</li>
 </ul>
 
 <div class="familylinks">
diff --git a/docs/cce/umn/cce_10_0249.html b/docs/cce/umn/cce_10_0249.html
index f4c02e32..91ee12bb 100644
--- a/docs/cce/umn/cce_10_0249.html
+++ b/docs/cce/umn/cce_10_0249.html
@@ -4,11 +4,11 @@
 <div id="body1599887621732"><div class="section" id="cce_10_0249__section674023294115"><h4 class="sectiontitle">Direct Access to a Pod</h4><p id="cce_10_0249__en-us_topic_0249851121_p182313125309">After a pod is created, the following problems may occur if you directly access the pod:</p>
 <ul id="cce_10_0249__en-us_topic_0249851121_ul15494121517303"><li id="cce_10_0249__en-us_topic_0249851121_li10494815133012">The pod can be deleted and recreated at any time by a controller such as a Deployment, and the result of accessing the pod becomes unpredictable.</li><li id="cce_10_0249__en-us_topic_0249851121_li20826546103110">The IP address of the pod is allocated only after the pod is started. Before the pod is started, the IP address of the pod is unknown.</li><li id="cce_10_0249__en-us_topic_0249851121_li1452731723014">An application is usually composed of multiple pods that run the same image. Accessing pods one by one is not efficient.</li></ul>
 <p id="cce_10_0249__en-us_topic_0249851121_p191728509184">For example, an application uses Deployments to create the frontend and backend. The frontend calls the backend for computing, as shown in <a href="#cce_10_0249__en-us_topic_0249851121_fig2173165051811">Figure 1</a>. Three pods are running in the backend, which are independent and replaceable. When a backend pod is re-created, the new pod is assigned with a new IP address, of which the frontend pod is unaware.</p>
-<div class="fignone" id="cce_10_0249__en-us_topic_0249851121_fig2173165051811"><a name="cce_10_0249__en-us_topic_0249851121_fig2173165051811"></a><a name="en-us_topic_0249851121_fig2173165051811"></a><span class="figcap"><b>Figure 1 </b>Inter-pod access</span><br><span><img id="cce_10_0249__en-us_topic_0249851121_image178354246205" src="en-us_image_0258894622.png"></span></div>
+<div class="fignone" id="cce_10_0249__en-us_topic_0249851121_fig2173165051811"><a name="cce_10_0249__en-us_topic_0249851121_fig2173165051811"></a><a name="en-us_topic_0249851121_fig2173165051811"></a><span class="figcap"><b>Figure 1 </b>Inter-pod access</span><br><span><img id="cce_10_0249__en-us_topic_0249851121_image178354246205" src="en-us_image_0000001517743624.png"></span></div>
 </div>
 <div class="section" id="cce_10_0249__section84961935194115"><h4 class="sectiontitle">Using Services for Pod Access</h4><p id="cce_10_0249__en-us_topic_0249851121_p173502035163111">Kubernetes Services are used to solve the preceding pod access problems. A Service has a fixed IP address. (When a CCE cluster is created, a Service CIDR block is set, which is used to allocate IP addresses to Services.) A Service forwards requests accessing the Service to pods based on labels, and at the same time, perform load balancing for these pods.</p>
 <p id="cce_10_0249__en-us_topic_0249851121_p1359552620518">In the preceding example, a Service is added for the frontend pod to access the backend pods. In this way, the frontend pod does not need to be aware of the changes on backend pods, as shown in <a href="#cce_10_0249__en-us_topic_0249851121_fig163156154816">Figure 2</a>.</p>
-<div class="fignone" id="cce_10_0249__en-us_topic_0249851121_fig163156154816"><a name="cce_10_0249__en-us_topic_0249851121_fig163156154816"></a><a name="en-us_topic_0249851121_fig163156154816"></a><span class="figcap"><b>Figure 2 </b>Accessing pods through a Service</span><br><span><img id="cce_10_0249__en-us_topic_0249851121_image1926812771312" src="en-us_image_0258889981.png"></span></div>
+<div class="fignone" id="cce_10_0249__en-us_topic_0249851121_fig163156154816"><a name="cce_10_0249__en-us_topic_0249851121_fig163156154816"></a><a name="en-us_topic_0249851121_fig163156154816"></a><span class="figcap"><b>Figure 2 </b>Accessing pods through a Service</span><br><span><img id="cce_10_0249__en-us_topic_0249851121_image1926812771312" src="en-us_image_0000001517743432.png"></span></div>
 </div>
 <div class="section" id="cce_10_0249__section12500411413"><h4 class="sectiontitle">Service Types</h4><p id="cce_10_0249__p133861126184815">Kubernetes allows you to specify a Service of a required type. The values and actions of different types of Services are as follows:</p>
 <ul id="cce_10_0249__ul2038619263488"><li id="cce_10_0249__li1538812624817"><a href="cce_10_0011.html">ClusterIP</a><p id="cce_10_0249__p183102423381">A ClusterIP Service allows workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
diff --git a/docs/cce/umn/cce_10_0251.html b/docs/cce/umn/cce_10_0251.html
index 82ed2b1b..458b2cc4 100644
--- a/docs/cce/umn/cce_10_0251.html
+++ b/docs/cce/umn/cce_10_0251.html
@@ -8,7 +8,7 @@
 <div class="section" id="cce_10_0251__section19352112471617"><h4 class="sectiontitle">Adding an ELB Ingress</h4><p id="cce_10_0251__p010013275811">This section uses an Nginx workload as an example to describe how to add an ELB ingress.</p>
 <ol id="cce_10_0251__ol19575164212915"><li id="cce_10_0251__li8689349417"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0251__li012894520229"><span>Choose <strong id="cce_10_0251__b1285218419423">Networking</strong> in the navigation pane, click the <span class="uicontrol" id="cce_10_0251__uicontrol453134544719"><b>Ingresses</b></span> tab, and click <strong id="cce_10_0251__b14852114134215">Create Service</strong> in the upper right corner.</span></li><li id="cce_10_0251__li14953111716915"><span>Set ingress parameters.</span><p><ul id="cce_10_0251__ul14861918192"><li id="cce_10_0251__li54691630184812"><strong id="cce_10_0251__b12457195413429">Name</strong>: Specify a name of an ingress, for example, <strong id="cce_10_0251__b104634543425">ingress-demo</strong>.</li><li id="cce_10_0251__li14384123818176"><strong id="cce_10_0251__b132107218451">Load Balancer</strong><p id="cce_10_0251__p4855423189">Select the load balancer to interconnect. Only load balancers in the same VPC as the cluster are supported. If no load balancer is available, click <span class="uicontrol" id="cce_10_0251__uicontrol17519115116464"><b>Create Load Balancer</b></span> to create one on the ELB console.</p>
 <p id="cce_10_0251__p6788462284">Dedicated load balancers must support HTTP and the network type must support private networks.</p>
-</li><li id="cce_10_0251__li6851318392"><strong id="cce_10_0251__b29552108271">Listener Configuration</strong>: Ingress configures a listener for the load balancer, which listens to requests from the load balancer and distributes traffic. After the configuration is complete, a listener is created on the load balancer. The default listener name is <em id="cce_10_0251__i12144307313">k8s__&lt;Protocol type&gt;_&lt;Port number&gt;</em>, for example, <em id="cce_10_0251__i1453831916301">k8s_HTTP_80</em>.<ul id="cce_10_0251__ul98515181097"><li id="cce_10_0251__li128514181093"><strong id="cce_10_0251__b121551828142814">Front-End Protocol</strong>: <strong id="cce_10_0251__b1016142862813">HTTP</strong> and <strong id="cce_10_0251__b016102822819">HTTPS</strong> are available.</li><li id="cce_10_0251__li128531815910"><strong id="cce_10_0251__b614751917275">External Port</strong>: Port number that is open to the ELB service address. The port number can be specified randomly.</li><li id="cce_10_0251__li17853181895"><strong id="cce_10_0251__b81461344202720">Server Certificate</strong>: When an HTTPS listener is created for a load balancer, you need to bind a certificate to the load balancer to support encrypted authentication for HTTPS data transmission.<div class="note" id="cce_10_0251__note1381944192911"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0251__p5381104492915">If there is already an HTTPS ingress for the chosen port on the load balancer, the certificate of the new HTTPS ingress must be the same as the certificate of the existing ingress. This means that a listener has only one certificate. If two certificates, each with a different ingress, are added to the same listener of the same load balancer, only the certificate added earliest takes effect on the load balancer.</p>
+</li><li id="cce_10_0251__li6851318392"><a name="cce_10_0251__li6851318392"></a><a name="li6851318392"></a><strong id="cce_10_0251__b29552108271">Listener</strong>: Ingress configures a listener for the load balancer, which listens to requests from the load balancer and distributes traffic. After the configuration is complete, a listener is created on the load balancer. The default listener name is <em id="cce_10_0251__i12144307313">k8s__&lt;Protocol type&gt;_&lt;Port number&gt;</em>, for example, <em id="cce_10_0251__i1453831916301">k8s_HTTP_80</em>.<ul id="cce_10_0251__ul98515181097"><li id="cce_10_0251__li128514181093"><strong id="cce_10_0251__b121551828142814">Front-End Protocol</strong>: <strong id="cce_10_0251__b1016142862813">HTTP</strong> and <strong id="cce_10_0251__b016102822819">HTTPS</strong> are available.</li><li id="cce_10_0251__li128531815910"><strong id="cce_10_0251__b614751917275">External Port</strong>: Port number that is open to the ELB service address. The port number can be specified randomly.</li><li id="cce_10_0251__li17853181895"><strong id="cce_10_0251__b81461344202720">Server Certificate</strong>: When an HTTPS listener is created for a load balancer, you need to bind a certificate to the load balancer to support encrypted authentication for HTTPS data transmission.<div class="note" id="cce_10_0251__note1381944192911"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0251__p5381104492915">If there is already an HTTPS ingress for the chosen port on the load balancer, the certificate of the new HTTPS ingress must be the same as the certificate of the existing ingress. This means that a listener has only one certificate. If two certificates, each with a different ingress, are added to the same listener of the same load balancer, only the certificate added earliest takes effect on the load balancer.</p>
 </div></div>
 </li><li id="cce_10_0251__li7651155094013"><strong id="cce_10_0251__b581435815219">SNI</strong>: Server Name Indication (SNI) is an extended protocol of TLS. It allows multiple TLS-based access domain names to be provided for external systems using the same IP address and port. Different domain names can use different security certificates. After SNI is enabled, the client is allowed to submit the requested domain name when initiating a TLS handshake request. After receiving the TLS request, the load balancer searches for the certificate based on the domain name in the request. If the certificate corresponding to the domain name is found, the load balancer returns the certificate for authorization. Otherwise, the default certificate (server certificate) is returned for authorization.<div class="note" id="cce_10_0251__note59161057134120"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0251__ul341785816517"><li id="cce_10_0251__li1541715805115">The <strong id="cce_10_0251__b17512414311">SNI</strong> option is available only when <strong id="cce_10_0251__b77525411312">HTTPS</strong> is selected.</li></ul>
 <ul id="cce_10_0251__ul2041716583512"><li id="cce_10_0251__li541725835112">This function is supported only for clusters of v1.15.11 and later.</li><li id="cce_10_0251__li1265688165219">Specify the domain name for the SNI certificate. Only one domain name can be specified for each certificate. Wildcard-domain certificates are supported.</li></ul>
@@ -16,20 +16,22 @@
 </li><li id="cce_10_0251__li58516183919"><strong id="cce_10_0251__b1962254816312">Security Policy</strong>: combinations of different TLS versions and supported cipher suites available to HTTPS listeners.<p id="cce_10_0251__p15856189913">For details about security policies, see ELB User Guide.</p>
 <div class="note" id="cce_10_0251__note885111811917"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0251__ul6851018492"><li id="cce_10_0251__li15851118697"><strong id="cce_10_0251__b145331732163211">Security Policy</strong> is available only when <strong id="cce_10_0251__b7534173216327">HTTPS</strong> is selected.</li><li id="cce_10_0251__li285171815918">This function is supported only for clusters of v1.17.9 and later.</li></ul>
 </div></div>
+</li><li id="cce_10_0251__li03351122552">Backend protocol<p id="cce_10_0251__p53133720554"><a name="cce_10_0251__li03351122552"></a><a name="li03351122552"></a>If the <a href="#cce_10_0251__li6851318392">listener</a> uses HTTP, only <strong id="cce_10_0251__b2035144410574">HTTP</strong> can be selected.</p>
+<p id="cce_10_0251__p5316376559">If the <a href="#cce_10_0251__li6851318392">listener</a> uses HTTPS, you can select <strong id="cce_10_0251__b21781423155815">HTTP</strong> or <strong id="cce_10_0251__b104265324587">HTTPS</strong>.</p>
 </li></ul>
-</li><li id="cce_10_0251__li78601812913"><strong id="cce_10_0251__b186201409327">Forwarding Policies</strong>: When the access address of a request matches the forwarding policy (a forwarding policy consists of a domain name and URL, for example, 10.117.117.117:80/helloworld), the request is forwarded to the corresponding target Service for processing. Click <span class="uicontrol" id="cce_10_0251__uicontrol17947248330"><b>Add Forwarding Policies</b></span> to add multiple forwarding policies.<ul id="cce_10_0251__ul486131819915"><li id="cce_10_0251__li3858186912"><strong id="cce_10_0251__b17856971330">Domain Name</strong>: actual domain name. Ensure that the domain name has been registered and archived. Once a domain name rule is configured, you must use the domain name for access.</li><li id="cce_10_0251__li2086218897"><strong id="cce_10_0251__b85451726254">URL Matching Rule</strong>:<ul id="cce_10_0251__ul5861518393"><li id="cce_10_0251__li168511815919"><strong id="cce_10_0251__b2029617457339">Prefix match</strong>: If the URL is set to <strong id="cce_10_0251__b1329618455339">/healthz</strong>, the URL that meets the prefix can be accessed. For example, <strong id="cce_10_0251__b16184165019335">/healthz/v1</strong> and <strong id="cce_10_0251__b118495019332">/healthz/v2</strong>.</li><li id="cce_10_0251__li14861818798"><strong id="cce_10_0251__b19144235496">Exact match</strong>: The URL can be accessed only when it is fully matched. For example, if the URL is set to <strong id="cce_10_0251__b18474185653313">/healthz</strong>, only /healthz can be accessed.</li><li id="cce_10_0251__li108612185917"><strong id="cce_10_0251__b365113814616">Regular expression</strong>: The URL is matched based on the regular expression. For example, if the regular expression is <strong id="cce_10_0251__b88616181699">/[A-Za-z0-9_.-]+/test</strong>, all URLs that comply with this rule can be accessed, for example, <strong id="cce_10_0251__b340611323410">/abcA9/test</strong> and <strong id="cce_10_0251__b1940610303419">/v1-Ab/test</strong>. Two regular expression standards are supported: POSIX and Perl.</li></ul>
+</li><li id="cce_10_0251__li78601812913"><strong id="cce_10_0251__b186201409327">Forwarding Policies</strong>: When the access address of a request matches the forwarding policy (a forwarding policy consists of a domain name and URL, for example, 10.117.117.117:80/helloworld), the request is forwarded to the corresponding target Service for processing. Click <span><img id="cce_10_0251__image39697437278" src="en-us_image_0000001568822825.png"></span> to add multiple forwarding policies.<ul id="cce_10_0251__ul486131819915"><li id="cce_10_0251__li3858186912"><strong id="cce_10_0251__b17856971330">Domain Name</strong>: actual domain name. Ensure that the domain name has been registered and archived. Once a domain name rule is configured, you must use the domain name for access.</li><li id="cce_10_0251__li2086218897"><strong id="cce_10_0251__b85451726254">URL Matching Rule</strong>:<ul id="cce_10_0251__ul5861518393"><li id="cce_10_0251__li168511815919"><strong id="cce_10_0251__b2029617457339">Prefix match</strong>: If the URL is set to <strong id="cce_10_0251__b1329618455339">/healthz</strong>, the URL that meets the prefix can be accessed. For example, <strong id="cce_10_0251__b16184165019335">/healthz/v1</strong> and <strong id="cce_10_0251__b118495019332">/healthz/v2</strong>.</li><li id="cce_10_0251__li14861818798"><strong id="cce_10_0251__b19144235496">Exact match</strong>: The URL can be accessed only when it is fully matched. For example, if the URL is set to <strong id="cce_10_0251__b18474185653313">/healthz</strong>, only /healthz can be accessed.</li><li id="cce_10_0251__li108612185917"><strong id="cce_10_0251__b365113814616">Regular expression</strong>: The URL is matched based on the regular expression. For example, if the regular expression is <strong id="cce_10_0251__b88616181699">/[A-Za-z0-9_.-]+/test</strong>, all URLs that comply with this rule can be accessed, for example, <strong id="cce_10_0251__b340611323410">/abcA9/test</strong> and <strong id="cce_10_0251__b1940610303419">/v1-Ab/test</strong>. Two regular expression standards are supported: POSIX and Perl.</li></ul>
 </li><li id="cce_10_0251__li188619181495"><strong id="cce_10_0251__b1031418943419">URL</strong>: access path to be registered, for example, <strong id="cce_10_0251__b731413963417">/healthz</strong>.<div class="note" id="cce_10_0251__note17563145615169"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0251__p103613018260">The URL added here must exist in the backend application. Otherwise, the forwarding fails.</p>
 <p id="cce_10_0251__p15563156181615">For example, the default access URL of the Nginx application is <strong id="cce_10_0251__b18177105042919">/usr/share/nginx/html</strong>. When adding <strong id="cce_10_0251__b184859149335">/test</strong> to the ingress forwarding policy, ensure that your Nginx application contains the same URL, that is, <strong id="cce_10_0251__b96142203911">/usr/share/nginx/html/test</strong>, otherwise, 404 is returned.</p>
 </div></div>
-</li><li id="cce_10_0251__li386818791"><strong id="cce_10_0251__b1345062315414">Destination Service</strong>: Select an existing Service or create a Service. Services that do not meet search criteria are automatically filtered out.</li><li id="cce_10_0251__li118614181492"><a name="cce_10_0251__li118614181492"></a><a name="li118614181492"></a><strong id="cce_10_0251__b156361728154114">Destination Service Port</strong>: Select the access port of the destination Service.</li><li id="cce_10_0251__li213801420376"><strong id="cce_10_0251__b4249181516256">Set ELB</strong>:<ul id="cce_10_0251__ul98568563812"><li id="cce_10_0251__li8170555132211"><strong id="cce_10_0251__cce_10_0014_b169881428124716">Distribution Policy</strong>: Three algorithms are available: weighted round robin, weighted least connections algorithm, or source IP hash.<div class="note" id="cce_10_0251__cce_10_0014_note14170205516225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0251__cce_10_0014_ul1717075520227"><li id="cce_10_0251__cce_10_0014_li15170955152215"><strong id="cce_10_0251__cce_10_0014_b8139183255011">Weighted round robin</strong>: Requests are forwarded to different servers based on their weights, which indicate server processing performance. Backend servers with higher weights receive proportionately more requests, whereas equal-weighted servers receive the same number of requests. This algorithm is often used for short connections, such as HTTP services.</li><li id="cce_10_0251__cce_10_0014_li12170185532213"><strong id="cce_10_0251__cce_10_0014_b9879547125012">Weighted least connections</strong>: In addition to the weight assigned to each server, the number of connections processed by each backend server is also considered. Requests are forwarded to the server with the lowest connections-to-weight ratio. Building on <strong id="cce_10_0251__cce_10_0014_b19132751145011">least connections</strong>, the <strong id="cce_10_0251__cce_10_0014_b71328516505">weighted least connections</strong> algorithm assigns a weight to each server based on their processing capability. This algorithm is often used for persistent connections, such as database connections.</li><li id="cce_10_0251__cce_10_0014_li0170105502211"><strong id="cce_10_0251__cce_10_0014_b8109955125015">Source IP hash</strong>: The source IP address of each request is calculated using the hash algorithm to obtain a unique hash key, and all backend servers are numbered. The generated key allocates the client to a particular server. This enables requests from different clients to be distributed in load balancing mode and ensures that requests from the same client are forwarded to the same server. This algorithm applies to TCP connections without cookies.</li></ul>
+</li><li id="cce_10_0251__li386818791"><strong id="cce_10_0251__b1345062315414">Destination Service</strong>: Select an existing Service or create a Service. Services that do not meet search criteria are automatically filtered out.</li><li id="cce_10_0251__li118614181492"><a name="cce_10_0251__li118614181492"></a><a name="li118614181492"></a><strong id="cce_10_0251__b156361728154114">Destination Service Port</strong>: Select the access port of the destination Service.</li><li id="cce_10_0251__li213801420376"><strong id="cce_10_0251__b4249181516256">Set ELB</strong>:<ul id="cce_10_0251__ul98568563812"><li id="cce_10_0251__li8170555132211"><strong id="cce_10_0251__b1114419291869">Distribution Policy</strong>: Three algorithms are available: weighted round robin, weighted least connections algorithm, or source IP hash.<div class="note" id="cce_10_0251__en-us_topic_0000001243981073_note14170205516225"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0251__en-us_topic_0000001243981073_ul1717075520227"><li id="cce_10_0251__en-us_topic_0000001243981073_li15170955152215"><strong id="cce_10_0251__b153004474817">Weighted round robin</strong>: Requests are forwarded to different servers based on their weights, which indicate server processing performance. Backend servers with higher weights receive proportionately more requests, whereas equal-weighted servers receive the same number of requests. This algorithm is often used for short connections, such as HTTP services.</li><li id="cce_10_0251__en-us_topic_0000001243981073_li12170185532213"><strong id="cce_10_0251__b1944345119917">Weighted least connections</strong>: In addition to the weight assigned to each server, the number of connections processed by each backend server is also considered. Requests are forwarded to the server with the lowest connections-to-weight ratio. Building on <strong id="cce_10_0251__b1218795141314">least connections</strong>, the <strong id="cce_10_0251__b318810515138">weighted least connections</strong> algorithm assigns a weight to each server based on their processing performance. This algorithm is often used for persistent connections, such as database connections.</li><li id="cce_10_0251__en-us_topic_0000001243981073_li0170105502211"><strong id="cce_10_0251__b5312172261311">Source IP hash</strong>: The source IP address of each request is calculated using the hash algorithm to obtain a unique hash key, and all backend servers are numbered. The generated key allocates the client to a particular server. This allows requests from different clients to be routed based on source IP addresses and ensures that a client is directed to the same server as always. This algorithm applies to TCP connections without cookies.</li></ul>
 </div></div>
-</li><li id="cce_10_0251__li0170115513227"><strong id="cce_10_0251__b8118183013563">Type</strong>: This function is disabled by default. You can select <strong id="cce_10_0251__b1295823925617">Load balancer cookie</strong>.</li><li id="cce_10_0251__li14170655112210"><strong id="cce_10_0251__b165081043175616">Health Check</strong>: This function is disabled by default. The health check is for the load balancer. When TCP is selected during the <a href="#cce_10_0251__li118614181492">port settings</a>, you can choose either TCP or HTTP. Currently, UDP is not supported. By default, the service port (Node Port and container port of the Service) is used for health check. You can also specify another port for health check. After the port is specified, a service port named <strong id="cce_10_0251__b2955125104120">cce-healthz</strong> will be added for the Service.</li></ul>
+</li><li id="cce_10_0251__li0170115513227"><strong id="cce_10_0251__b8118183013563">Type</strong>: This function is disabled by default. You can select <strong id="cce_10_0251__b1295823925617">Load balancer cookie</strong>.</li><li id="cce_10_0251__li14170655112210"><strong id="cce_10_0251__b616105052715">Health Check</strong>: configured for the load balancer. When TCP is selected during the <a href="#cce_10_0251__li118614181492">port settings</a>, you can choose either TCP or HTTP. Currently, UDP is not supported. By default, the service port (Node Port and container port of the Service) is used for health check. You can also specify another port for health check. After the port is specified, a service port named <strong id="cce_10_0251__b2955125104120">cce-healthz</strong> will be added for the Service.</li></ul>
 </li><li id="cce_10_0251__li18862184917"><strong id="cce_10_0251__b171876474359">Operation</strong>: Click <span class="uicontrol" id="cce_10_0251__uicontrol161881147113516"><b>Delete</b></span> to delete the configuration.</li></ul>
 </li><li id="cce_10_0251__li104962251243"><strong id="cce_10_0251__b1562322564416">Annotation</strong>: Ingresses provide some advanced CCE functions, which are implemented by annotations. When you use kubectl to create a container, annotations will be used. For details, see <a href="cce_10_0252.html#cce_10_0252__section3675115714214">Creating an Ingress - Automatically Creating a Load Balancer</a> and <a href="cce_10_0252.html#cce_10_0252__section32300431736">Creating an Ingress - Interconnecting with an Existing Load Balancer</a>.</li></ul>
 </p></li><li id="cce_10_0251__li151183363920"><span>After the configuration is complete, click <strong id="cce_10_0251__b419231418398">OK</strong>. After the ingress is created, it is displayed in the ingress list.</span><p><p id="cce_10_0251__p22726310146">On the ELB console, you can view the ELB automatically created through CCE. The default name is <span class="parmvalue" id="cce_10_0251__parmvalue153432710593"><b>cce-lb-ingress.UID</b></span>. Click the ELB name to access its details page. On the<strong id="cce_10_0251__b16444435134117"> Listeners</strong> tab page, view the route settings of the ingress, including the URL, listener port, and backend server group port.</p>
 <div class="notice" id="cce_10_0251__note1849713206344"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0251__p151493617349">After the ingress is created, upgrade and maintain the selected load balancer on the CCE console. Do not maintain the load balancer on the ELB console. Otherwise, the ingress service may be abnormal.</p>
 </div></div>
-</p></li><li id="cce_10_0251__li9993123518163"><span>Access the /healthz interface of the workload, for example, workload <strong id="cce_10_0251__b16997141953610">defaultbackend</strong>.</span><p><ol type="a" id="cce_10_0251__ol17405113342712"><li id="cce_10_0251__li94051633182711">Obtain the access address of the <span class="filepath" id="cce_10_0251__filepath18129215123717"><b>/healthz</b></span> interface of the workload. The access address consists of the load balancer IP address, external port, and mapping URL, for example, 10.**.**.**:80/healthz.</li><li id="cce_10_0251__li14181114162720">Enter the URL of the /healthz interface, for example, http://10.**.**.**:80/healthz, in the address box of the browser to access the workload, as shown in <a href="#cce_10_0251__fig17115192714367">Figure 1</a>.<div class="fignone" id="cce_10_0251__fig17115192714367"><a name="cce_10_0251__fig17115192714367"></a><a name="fig17115192714367"></a><span class="figcap"><b>Figure 1 </b>Accessing the /healthz interface of defaultbackend</span><br><span><img id="cce_10_0251__image9587202217261" src="en-us_image_0000001199181230.png"></span></div>
+</p></li><li id="cce_10_0251__li9993123518163"><span>Access the /healthz interface of the workload, for example, workload <strong id="cce_10_0251__b16997141953610">defaultbackend</strong>.</span><p><ol type="a" id="cce_10_0251__ol17405113342712"><li id="cce_10_0251__li94051633182711">Obtain the access address of the <span class="filepath" id="cce_10_0251__filepath18129215123717"><b>/healthz</b></span> interface of the workload. The access address consists of the load balancer IP address, external port, and mapping URL, for example, 10.**.**.**:80/healthz.</li><li id="cce_10_0251__li14181114162720">Enter the URL of the /healthz interface, for example, http://10.**.**.**:80/healthz, in the address box of the browser to access the workload, as shown in <a href="#cce_10_0251__fig17115192714367">Figure 1</a>.<div class="fignone" id="cce_10_0251__fig17115192714367"><a name="cce_10_0251__fig17115192714367"></a><a name="fig17115192714367"></a><span class="figcap"><b>Figure 1 </b>Accessing the /healthz interface of defaultbackend</span><br><span><img id="cce_10_0251__image9587202217261" src="en-us_image_0000001518062672.png"></span></div>
 </li></ol>
 </p></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_10_0252.html b/docs/cce/umn/cce_10_0252.html
index db0da4fc..c1f6c3be 100644
--- a/docs/cce/umn/cce_10_0252.html
+++ b/docs/cce/umn/cce_10_0252.html
@@ -10,7 +10,7 @@
 <p id="cce_10_0252__p20567113755215">Compared with v1beta1, v1 has the following differences in parameters:</p>
 <ul id="cce_10_0252__ul1047013217172"><li id="cce_10_0252__li10471183221719">The ingress type is changed from <strong id="cce_10_0252__b09161540125811">kubernetes.io/ingress.class</strong> in <strong id="cce_10_0252__b738654512582">annotations</strong> to <strong id="cce_10_0252__b541984935818">spec.ingressClassName</strong>.</li><li id="cce_10_0252__li7135111819196">The format of <strong id="cce_10_0252__b571072213484">backend</strong> is changed.</li><li id="cce_10_0252__li10689134614221">The <strong id="cce_10_0252__b1783119292013">pathType</strong> parameter must be specified for each path. The options are as follows:<ul id="cce_10_0252__ul3253194702213"><li id="cce_10_0252__li456213366269"><strong id="cce_10_0252__b958119196203">ImplementationSpecific</strong>: The matching method depends on Ingress Controller. The matching method defined by <strong id="cce_10_0252__b1683113113519">ingress.beta.kubernetes.io/url-match-mode</strong> is used in CCE, which is the same as v1beta1.</li><li id="cce_10_0252__li5172153972613"><strong id="cce_10_0252__b19854141864510">Exact</strong>: exact matching of the URL, which is case-sensitive.</li><li id="cce_10_0252__li584094916222"><strong id="cce_10_0252__b0441291458">Prefix</strong>: matching based on the URL prefix separated by a slash (/). The match is case-sensitive, and elements in the path are matched one by one. A path element refers to a list of labels in the path separated by a slash (/).</li></ul>
 </li></ul>
-<p id="cce_10_0252__p656120413137"><span><img id="cce_10_0252__image1480624572814" src="en-us_image_0000001276433425.png"></span></p>
+<p id="cce_10_0252__p656120413137"><span><img id="cce_10_0252__image1480624572814" src="en-us_image_0000001569022977.png"></span></p>
 </div>
 <div class="section" id="cce_10_0252__section3675115714214"><a name="cce_10_0252__section3675115714214"></a><a name="section3675115714214"></a><h4 class="sectiontitle">Creating an Ingress - Automatically Creating a Load Balancer</h4><p id="cce_10_0252__p9677555226">The following describes how to run the kubectl command to automatically create a load balancer when creating an ingress.</p>
 <ol id="cce_10_0252__ol6677955226"><li id="cce_10_0252__li367719515229"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0252__li767713516221"><span>Create a YAML file named <strong id="cce_10_0252__b567711592218">ingress-test.yaml</strong>. The file name can be customized.</span><p><p id="cce_10_0252__p1367718512222"><strong id="cce_10_0252__b2067775112212">vi ingress-test.yaml</strong></p>
@@ -189,7 +189,7 @@ spec:
 </td>
 <td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p10321194372811">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p1139112482917"><strong id="cce_10_0252__b1943380093">cce</strong>: The self-developed ELB ingress is used.</p>
+<td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p1139112482917"><strong id="cce_10_0252__b1249887780">cce</strong>: The self-developed ELB ingress is used.</p>
 <p id="cce_10_0252__p101391724122916">This parameter is mandatory when an ingress is created by calling the API.</p>
 </td>
 </tr>
@@ -281,7 +281,7 @@ spec:
 <td class="cellrowborder" valign="top" width="17.461746174617463%" headers="mcps1.3.4.3.2.2.7.2.5.1.3 "><p id="cce_10_0252__p188278815467">String</p>
 </td>
 <td class="cellrowborder" valign="top" width="43.66436643664366%" headers="mcps1.3.4.3.2.2.7.2.5.1.4 "><p id="cce_10_0252__p1489918544469">Path type. This field is supported only by clusters of v1.23 or later.</p>
-<ul id="cce_10_0252__ul513514415472"><li id="cce_10_0252__li81351544144712"><strong id="cce_10_0252__b1761018581175">ImplementationSpecific</strong>: The matching method depends on Ingress Controller. The matching method defined by <strong id="cce_10_0252__b107391649151017">ingress.beta.kubernetes.io/url-match-mode</strong> is used in CCE.</li><li id="cce_10_0252__li3135194474711"><strong id="cce_10_0252__b1860512115115">Exact</strong>: exact matching of the URL, which is case-sensitive.</li><li id="cce_10_0252__li1613519446477"><strong id="cce_10_0252__b854868180">Prefix</strong>: matching based on the URL prefix separated by a slash (/). The match is case-sensitive, and elements in the path are matched one by one. A path element refers to a list of labels in the path separated by a slash (/).</li></ul>
+<ul id="cce_10_0252__ul513514415472"><li id="cce_10_0252__li81351544144712"><strong id="cce_10_0252__b1761018581175">ImplementationSpecific</strong>: The matching method depends on Ingress Controller. The matching method defined by <strong id="cce_10_0252__b107391649151017">ingress.beta.kubernetes.io/url-match-mode</strong> is used in CCE.</li><li id="cce_10_0252__li3135194474711"><strong id="cce_10_0252__b1860512115115">Exact</strong>: exact matching of the URL, which is case-sensitive.</li><li id="cce_10_0252__li1613519446477"><strong id="cce_10_0252__b604426009">Prefix</strong>: matching based on the URL prefix separated by a slash (/). The match is case-sensitive, and elements in the path are matched one by one. A path element refers to a list of labels in the path separated by a slash (/).</li></ul>
 </td>
 </tr>
 </tbody>
@@ -387,7 +387,7 @@ ingress-test     *         121.**.**.**     80      10s</pre>
 <div class="section" id="cce_10_0252__section32300431736"><a name="cce_10_0252__section32300431736"></a><a name="section32300431736"></a><h4 class="sectiontitle">Creating an Ingress - Interconnecting with an Existing Load Balancer</h4><div class="p" id="cce_10_0252__p1642165110712">CCE allows you to connect to an existing load balancer when creating an ingress.<div class="note" id="cce_10_0252__note1992012366590"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0252__ul1892013362598"><li id="cce_10_0252__li7341191122314">Existing dedicated load balancers must be the application type (HTTP/HTTPS) supporting private networks (with a private IP).</li></ul>
 </div></div>
 </div>
-<div class="p" id="cce_10_0252__p169201236125919"><strong id="cce_10_0252__b10747178102613">If the cluster version is 1.23 or earlier, the YAML file configuration is as follows:</strong><pre class="screen" id="cce_10_0252__screen3921193613592">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b68113533216">v1</strong>
+<div class="p" id="cce_10_0252__p169201236125919"><strong id="cce_10_0252__b10747178102613">If the cluster version is 1.23 or later, the YAML file configuration is as follows:</strong><pre class="screen" id="cce_10_0252__screen3921193613592">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b68113533216">v1</strong>
 kind: Ingress 
 metadata: 
   name: ingress-test
@@ -411,14 +411,14 @@ spec:
         pathType: ImplementationSpecific
   <strong id="cce_10_0252__b33752172411">ingressClassName: cce</strong>               </pre>
 </div>
-<p id="cce_10_0252__p16819191515239"><strong id="cce_10_0252__b795951805211">If the cluster version is 1.21 or later, the YAML file configuration is as follows:</strong></p>
+<p id="cce_10_0252__p16819191515239"><strong id="cce_10_0252__b795951805211">If the cluster version is 1.21 or earlier, the YAML file configuration is as follows:</strong></p>
 <pre class="screen" id="cce_10_0252__screen781910150236">apiVersion: networking.k8s.io/<strong id="cce_10_0252__b93781457102919">v1beta1</strong>
 kind: Ingress 
 metadata: 
   name: ingress-test
   annotations: 
-    kubernetes.io/elb.id: <strong id="cce_10_0252__b1062818853">&lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.</strong>
-    kubernetes.io/elb.ip: &lt;<strong id="cce_10_0252__b360459412">your_elb_ip&gt;  # Replace it with your existing load balancer IP.</strong>
+    kubernetes.io/elb.id: <strong id="cce_10_0252__b1123983214">&lt;your_elb_id&gt;  # Replace it with the ID of your existing load balancer.</strong>
+    kubernetes.io/elb.ip: &lt;<strong id="cce_10_0252__b286086169">your_elb_ip&gt;  # Replace it with your existing load balancer IP.</strong>
     kubernetes.io/elb.port: '80'
     <strong id="cce_10_0252__b1482031582313">kubernetes.io/ingress.class: cce</strong>
 spec:
@@ -685,7 +685,7 @@ spec:
           servicePort: 80                   # Replace it with the port number of your target Service.
         property:
           ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
-<div class="p" id="cce_10_0252__p1536343117411"><strong id="cce_10_0252__b913624082">For clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen15915183187">apiVersion: networking.k8s.io/v1
+<div class="p" id="cce_10_0252__p1536343117411"><strong id="cce_10_0252__b946582990">For clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen15915183187">apiVersion: networking.k8s.io/v1
 kind: Ingress 
 metadata: 
   name: ingress-test
@@ -782,7 +782,7 @@ spec:
         property:
           ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
 </div>
-<div class="p" id="cce_10_0252__p1838216369266"><strong id="cce_10_0252__b1244655636">For clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen10223183922611">apiVersion: networking.k8s.io/v1
+<div class="p" id="cce_10_0252__p1838216369266"><strong id="cce_10_0252__b1433550391">For clusters of v1.23 or later:</strong><pre class="screen" id="cce_10_0252__screen10223183922611">apiVersion: networking.k8s.io/v1
 kind: Ingress 
 metadata: 
   name: ingress-test
@@ -803,10 +803,10 @@ spec:
 <strong id="cce_10_0252__b112912020112711">  tls: </strong>
 <strong id="cce_10_0252__b729162017271">  - </strong>secretName: ingress-test-secret
   <strong id="cce_10_0252__b92911120172714">- hosts:</strong>
-<strong id="cce_10_0252__b1235496786">      - example.top</strong>  # Domain name specified a certificate is issued
+<strong id="cce_10_0252__b1893237253">      - example.top</strong>  # Domain name specified a certificate is issued
 <strong id="cce_10_0252__b529132016274">    secretName: sni-test-secret-1</strong>  
 <strong id="cce_10_0252__b162913206279">  - hosts:</strong>
-<strong id="cce_10_0252__b1569568721">      - example.com</strong>  # Domain name specified a certificate is issued
+<strong id="cce_10_0252__b1864521316">      - example.com</strong>  # Domain name specified a certificate is issued
 <strong id="cce_10_0252__b22911120162715">    secretName: sni-test-secret-2</strong>
   rules: 
   - host: ''
@@ -854,6 +854,40 @@ spec:
         property:
           ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH</pre>
 </div>
+<div class="section" id="cce_10_0252__section286262052815"><h4 class="sectiontitle">Interconnecting with HTTPS Backend Services</h4><p id="cce_10_0252__p17862192012281">Ingress can interconnect with backend services of different protocols. By default, the backend proxy channel of an ingress is an HTTP channel. To create an HTTPS channel, add the following configuration to the <strong id="cce_10_0252__b14426821043">annotations</strong> field:</p>
+<pre class="codeblock" id="cce_10_0252__codeblock12862122016289">kubernetes.io/elb.pool-protocol: https</pre>
+<div class="notice" id="cce_10_0252__note191546531103"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0252__ul1430918431129"><li id="cce_10_0252__li695918216176">This feature only applies to clusters of v1.23.8, v1.25.3, and later.</li><li id="cce_10_0252__li1631004316127">Ingress can interconnect with HTTPS backend services only when dedicated load balancers are used.</li><li id="cce_10_0252__li58124518123">When interconnecting with HTTPS backend services, set <strong id="cce_10_0252__b75561411848">Client Protocol</strong> of ingress to <strong id="cce_10_0252__b1455719116415">HTTPS</strong>.</li></ul>
+</div></div>
+<p id="cce_10_0252__p28621020172820">An ingress configuration example is as follows:</p>
+<pre class="screen" id="cce_10_0252__screen1086242019288">apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: ingress-test
+  namespace: default
+  annotations:
+    kubernetes.io/elb.port: '443'
+    kubernetes.io/elb.id: <i><span class="varname" id="cce_10_0252__varname154701194412">&lt;your_elb_id&gt;</span></i>    # In this example, an existing dedicated load balancer is used. Replace its ID with the ID of your dedicated load balancer.
+    kubernetes.io/elb.class: performance
+    <strong id="cce_10_0252__b17461522648">kubernetes.io/elb.pool-protocol: https</strong>  # Interconnected HTTPS backend service
+    kubernetes.io/elb.tls-ciphers-policy: tls-1-2
+spec:
+  tls: 
+    - secretName: ingress-test-secret
+  rules:
+    - host: ''
+      http:
+        paths:
+          - path: '/'
+            backend:
+              service:
+                name: <i><span class="varname" id="cce_10_0252__varname13885027644">&lt;your_service_name&gt;</span></i>  # Replace it with the name of your target Service.
+                port:
+                  number: 80
+            property:
+              ingress.beta.kubernetes.io/url-match-mode: STARTS_WITH
+            pathType: ImplementationSpecific
+  ingressClassName: cce</pre>
+</div>
 </div>
 <div>
 <div class="familylinks">
diff --git a/docs/cce/umn/cce_10_0257.html b/docs/cce/umn/cce_10_0257.html
index 9d30d728..91786143 100644
--- a/docs/cce/umn/cce_10_0257.html
+++ b/docs/cce/umn/cce_10_0257.html
@@ -5,7 +5,7 @@
 <div class="notice" id="cce_10_0257__note151273161411"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0257__p1812771181417">EVS disks cannot be attached across AZs. Before mounting a volume, you can run the <strong id="cce_10_0257__b1476484310226">kubectl get pvc</strong> command to query the available PVCs in the AZ where the current cluster is located.</p>
 </div></div>
 </div>
-<div class="section" id="cce_10_0257__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0257__p832165917321">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+<div class="section" id="cce_10_0257__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0257__p832165917321">You have created a cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
 </div>
 <div class="section" id="cce_10_0257__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0257__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0262.html b/docs/cce/umn/cce_10_0262.html
index 76210b9c..806b4c6a 100644
--- a/docs/cce/umn/cce_10_0262.html
+++ b/docs/cce/umn/cce_10_0262.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Creating a StatefulSet Mounted with an SFS Volume</h1>
 <div id="body1599890253478"><div class="section" id="cce_10_0262__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0262__p11734132718149">CCE allows you to use an existing SGS volume to create a StatefulSet (by using a PVC).</p>
 </div>
-<div class="section" id="cce_10_0262__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0262__p457511329362">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+<div class="section" id="cce_10_0262__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0262__p457511329362">You have created a cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
 </div>
 <div class="section" id="cce_10_0262__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0262__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0263.html b/docs/cce/umn/cce_10_0263.html
index 5e18dd25..986d92be 100644
--- a/docs/cce/umn/cce_10_0263.html
+++ b/docs/cce/umn/cce_10_0263.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Creating a Deployment Mounted with an SFS Volume</h1>
 <div id="body1599890253478"><div class="section" id="cce_10_0263__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0263__p0780175013561">After an SFS volume is created or imported to CCE, you can mount the volume to a workload.</p>
 </div>
-<div class="section" id="cce_10_0263__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0263__p1023472118366">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+<div class="section" id="cce_10_0263__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0263__p1023472118366">You have created a cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
 </div>
 <div class="section" id="cce_10_0263__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0263__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0268.html b/docs/cce/umn/cce_10_0268.html
index 1eea4642..eae9c0b8 100644
--- a/docs/cce/umn/cce_10_0268.html
+++ b/docs/cce/umn/cce_10_0268.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Creating a StatefulSet Mounted with an OBS Volume</h1>
 <div id="body1599890911520"><div class="section" id="cce_10_0268__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0268__p417532394118">CCE allows you to use an existing OBS volume to create a StatefulSet through a PVC.</p>
 </div>
-<div class="section" id="cce_10_0268__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0268__p159115509349">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+<div class="section" id="cce_10_0268__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0268__p159115509349">You have created a cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
 </div>
 <div class="section" id="cce_10_0268__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0268__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0269.html b/docs/cce/umn/cce_10_0269.html
index f4bf2f66..631658da 100644
--- a/docs/cce/umn/cce_10_0269.html
+++ b/docs/cce/umn/cce_10_0269.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Creating a Deployment Mounted with an OBS Volume</h1>
 <div id="body1599890911520"><div class="section" id="cce_10_0269__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0269__p13415181285914">After an OBS volume is created or imported to CCE, you can mount the volume to a workload.</p>
 </div>
-<div class="section" id="cce_10_0269__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0269__p1860619396347">You have created a CCE cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
+<div class="section" id="cce_10_0269__section13181839131510"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0269__p1860619396347">You have created a cluster and installed the CSI plug-in (<a href="cce_10_0066.html">everest</a>) in the cluster.</p>
 </div>
 <div class="section" id="cce_10_0269__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0269__p426111300137">The following configuration example applies to clusters of Kubernetes 1.15 or later.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0275.html b/docs/cce/umn/cce_10_0275.html
index 8e4ab6e0..6f4a1efb 100644
--- a/docs/cce/umn/cce_10_0275.html
+++ b/docs/cce/umn/cce_10_0275.html
@@ -1,7 +1,7 @@
 <a name="cce_10_0275"></a><a name="cce_10_0275"></a>
 
 <h1 class="topictitle1">Configuring a Pod Security Policy</h1>
-<div id="body1601191578280"><p id="cce_10_0275__p8060118">A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The <a href="https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.19/#podsecuritypolicy-v1beta1-policy" target="_blank" rel="noopener noreferrer">PodSecurityPolicy</a> object in Kubernetes defines a group of conditions that a pod must comply with to be accepted by the system, as well as the default values of related fields.</p>
+<div id="body1601191578280"><p id="cce_10_0275__p8060118">A pod security policy (PSP) is a cluster-level resource that controls sensitive security aspects of the pod specification. The PodSecurityPolicy object in Kubernetes defines a group of conditions that a pod must comply with to be accepted by the system, as well as the default values of related fields.</p>
 <p id="cce_10_0275__p15443152313332">By default, the PSP access control component is enabled for clusters of v1.17.17 and a global default PSP named <strong id="cce_10_0275__b8435103585816">psp-global</strong> is created. You can modify the default policy (but not delete it). You can also create a PSP and bind it to the RBAC configuration.</p>
 <div class="note" id="cce_10_0275__note24713853517"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0275__ul1488124019228"><li id="cce_10_0275__li1648864011223">In addition to the global default PSP, the system configures independent PSPs for system components in namespace kube-system. Modifying the psp-global configuration does not affect pod creation in namespace kube-system.</li><li id="cce_10_0275__li16223542142211">In Kubernetes 1.25, PSP has been removed and replaced by Pod Security Admission. For details, see <a href="cce_10_0466.html">Configuring Pod Security Admission</a>.</li></ul>
 </div></div>
diff --git a/docs/cce/umn/cce_10_0276.html b/docs/cce/umn/cce_10_0276.html
index 90f83f0e..06e55d2d 100644
--- a/docs/cce/umn/cce_10_0276.html
+++ b/docs/cce/umn/cce_10_0276.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Performing Rolling Upgrade for Nodes</h1>
 <div id="body1606373496987"><div class="section" id="cce_10_0276__section7545132016522"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0276__p3561320115214">In a rolling upgrade, a new node is created, existing workloads are migrated to the new node, and then the old node is deleted. <a href="#cce_10_0276__fig1689610598118">Figure 1</a> shows the migration process.</p>
-<div class="fignone" id="cce_10_0276__fig1689610598118"><a name="cce_10_0276__fig1689610598118"></a><a name="fig1689610598118"></a><span class="figcap"><b>Figure 1 </b>Workload migration</span><br><span><img id="cce_10_0276__image16106881602" src="en-us_image_0000001199181340.png"></span></div>
+<div class="fignone" id="cce_10_0276__fig1689610598118"><a name="cce_10_0276__fig1689610598118"></a><a name="fig1689610598118"></a><span class="figcap"><b>Figure 1 </b>Workload migration</span><br><span><img id="cce_10_0276__image16106881602" src="en-us_image_0000001568822733.png"></span></div>
 </div>
 <div class="section" id="cce_10_0276__section668916271621"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0276__ul27507271222"><li id="cce_10_0276__li147502271326">The original node and the target node to which the workload is to be migrated must be in the same cluster.</li><li id="cce_10_0276__li1750227021">The cluster must be of v1.13.10 or later.</li><li id="cce_10_0276__li7750152710218">The default node pool DefaultPool does not support this configuration.</li></ul>
 </div>
@@ -20,7 +20,7 @@
 </p></li></ol><ol start="5" id="cce_10_0276__ol16514499211"><li id="cce_10_0276__li4513497213"><span>Delete the original node.</span><p><p id="cce_10_0276__p15104916211">After the workload is successfully migrated and runs properly, delete the original node.</p>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0276__section7773102119320"><h4 class="sectiontitle">Scenario 2: The Original Node Is Not in DefaultPool</h4><ol id="cce_10_0276__ol892652113314"><li id="cce_10_0276__li1992616214312"><a name="cce_10_0276__li1992616214312"></a><a name="li1992616214312"></a><span>Copy the node pool and add nodes to it. For details, see <a href="cce_10_0222.html#cce_10_0222__section550619571556">Copying a Node Pool</a>.</span></li><li id="cce_10_0276__li6330155162917"><span>Click <strong id="cce_10_0276__b182958597261">View Node</strong> in the <strong id="cce_10_0276__b16296115972617">Operation</strong> column of the node pool. The IP address of the new node is displayed in the node list.</span></li></ol><ol start="3" id="cce_10_0276__ol1592715215317"><li id="cce_10_0276__li79274211437"><span>Migrate the workload.</span><p><ol type="a" id="cce_10_0276__ol492714214310"><li id="cce_10_0276__li8927321039">Click <strong id="cce_10_0276__b31451941418">Edit</strong> on the right of original node pool and set <strong id="cce_10_0276__b13146141942">Taints</strong>.</li><li id="cce_10_0276__li292713211031">Enter the key and value of the taint. The options of <strong id="cce_10_0276__b151677389326">Effect</strong> are <strong id="cce_10_0276__b13607540193215">NoSchedule</strong>, <strong id="cce_10_0276__b16834184283219">PreferNoSchedule</strong>, and <strong id="cce_10_0276__b18296545143217">NoExecute</strong>. Select <strong id="cce_10_0276__b385014477325">NoExecute</strong> and click <strong id="cce_10_0276__b13225350193213">confirm to add</strong>.<ul id="cce_10_0276__ul69271221137"><li id="cce_10_0276__li14927102119319"><strong id="cce_10_0276__b7392301549">NoSchedule</strong>: Pods that do not tolerate this taint are not scheduled on the node; existing pods are not evicted from the node.</li><li id="cce_10_0276__li99271321938"><strong id="cce_10_0276__b20801632747">PreferNoSchedule</strong>: Kubernetes tries to avoid scheduling pods that do not tolerate this taint onto the node.</li><li id="cce_10_0276__li292712111319"><strong id="cce_10_0276__b24305329413">NoExecute</strong>: A pod is evicted from the node if it is already running on the node, and is not scheduled onto the node if it is not yet running on the node.</li></ul>
+<div class="section" id="cce_10_0276__section7773102119320"><h4 class="sectiontitle">Scenario 2: The Original Node Is Not in DefaultPool</h4><ol id="cce_10_0276__ol892652113314"><li id="cce_10_0276__li1992616214312"><a name="cce_10_0276__li1992616214312"></a><a name="li1992616214312"></a><span>Copy the node pool and add nodes to it. For details, see <a href="cce_10_0655.html">Copying a Node Pool</a>.</span></li><li id="cce_10_0276__li6330155162917"><span>Click <strong id="cce_10_0276__b182958597261">View Node</strong> in the <strong id="cce_10_0276__b16296115972617">Operation</strong> column of the node pool. The IP address of the new node is displayed in the node list.</span></li></ol><ol start="3" id="cce_10_0276__ol1592715215317"><li id="cce_10_0276__li79274211437"><span>Migrate the workload.</span><p><ol type="a" id="cce_10_0276__ol492714214310"><li id="cce_10_0276__li8927321039">Click <strong id="cce_10_0276__b31451941418">Edit</strong> on the right of original node pool and set <strong id="cce_10_0276__b13146141942">Taints</strong>.</li><li id="cce_10_0276__li292713211031">Enter the key and value of the taint. The options of <strong id="cce_10_0276__b151677389326">Effect</strong> are <strong id="cce_10_0276__b13607540193215">NoSchedule</strong>, <strong id="cce_10_0276__b16834184283219">PreferNoSchedule</strong>, and <strong id="cce_10_0276__b18296545143217">NoExecute</strong>. Select <strong id="cce_10_0276__b385014477325">NoExecute</strong> and click <strong id="cce_10_0276__b13225350193213">confirm to add</strong>.<ul id="cce_10_0276__ul69271221137"><li id="cce_10_0276__li14927102119319"><strong id="cce_10_0276__b7392301549">NoSchedule</strong>: Pods that do not tolerate this taint are not scheduled on the node; existing pods are not evicted from the node.</li><li id="cce_10_0276__li99271321938"><strong id="cce_10_0276__b20801632747">PreferNoSchedule</strong>: Kubernetes tries to avoid scheduling pods that do not tolerate this taint onto the node.</li><li id="cce_10_0276__li292712111319"><strong id="cce_10_0276__b24305329413">NoExecute</strong>: A pod is evicted from the node if it is already running on the node, and is not scheduled onto the node if it is not yet running on the node.</li></ul>
 <div class="note" id="cce_10_0276__note37771921331"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0276__p592762114314">If you need to reset the taint, delete the configured taint.</p>
 </div></div>
 </li><li id="cce_10_0276__li492712115318">Click <strong id="cce_10_0276__b208153920332">OK</strong>.</li><li id="cce_10_0276__li76429518311">In the navigation pane of the CCE console, choose <strong id="cce_10_0276__b194859381949">Workloads</strong> &gt; <strong id="cce_10_0276__b64856381146">Deployments</strong>. In the workload list, the status of the workload to be migrated changes from <strong id="cce_10_0276__b1962913393414">Running</strong> to <strong id="cce_10_0276__b16292391411">Unready</strong>. If the workload status changes to <strong id="cce_10_0276__b92370401741">Running</strong> again, the migration is successful.</li></ol>
diff --git a/docs/cce/umn/cce_10_0277.html b/docs/cce/umn/cce_10_0277.html
index e2fea603..306e9b72 100644
--- a/docs/cce/umn/cce_10_0277.html
+++ b/docs/cce/umn/cce_10_0277.html
@@ -2,51 +2,53 @@
 
 <h1 class="topictitle1">Overview</h1>
 <div id="body1606958290664"><p id="cce_10_0277__p8060118">CCE provides multiple types of add-ons to extend cluster functions and meet feature requirements. You can install add-ons as required.</p>
+<div class="notice" id="cce_10_0277__note35842016203312"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0277__p14584171618333">CCE uses Helm templates to deploy add-ons. To modify or upgrade an add-on, perform operations on the <strong id="cce_10_0277__b5642184161612">Add-ons</strong> page or use open APIs. Do not directly modify resources related to add-ons in the background. Otherwise, add-on exceptions or other unexpected problems may occur.</p>
+</div></div>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0277__table1129717261200" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Add-on list</caption><thead align="left"><tr id="cce_10_0277__row11298112612016"><th align="left" class="cellrowborder" valign="top" width="23.34%" id="mcps1.3.2.2.3.1.1"><p id="cce_10_0277__p12986266201">Add-on Name</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0277__table1129717261200" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Add-on list</caption><thead align="left"><tr id="cce_10_0277__row11298112612016"><th align="left" class="cellrowborder" valign="top" width="23.34%" id="mcps1.3.3.2.3.1.1"><p id="cce_10_0277__p12986266201">Add-on Name</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="76.66%" id="mcps1.3.2.2.3.1.2"><p id="cce_10_0277__p42981926122014">Introduction</p>
+<th align="left" class="cellrowborder" valign="top" width="76.66%" id="mcps1.3.3.2.3.1.2"><p id="cce_10_0277__p42981926122014">Introduction</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0277__row729811268202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p329812632011"><a href="cce_10_0129.html">coredns (System Resource Add-On, Mandatory)</a></p>
+<tbody><tr id="cce_10_0277__row729811268202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p329812632011"><a href="cce_10_0129.html">coredns (System Resource Add-On, Mandatory)</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p12981726192017">The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p12981726192017">The coredns add-on is a DNS server that provides domain name resolution services for Kubernetes clusters. coredns chains plug-ins to provide additional features.</p>
 </td>
 </tr>
-<tr id="cce_10_0277__row1729822612200"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p929842682017"><a href="cce_10_0127.html">storage-driver (System Resource Add-On, Discarded)</a></p>
+<tr id="cce_10_0277__row1729822612200"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p929842682017"><a href="cce_10_0127.html">storage-driver (System Resource Add-On, Discarded)</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p0298122602020">storage-driver is a FlexVolume driver used to support IaaS storage services such as EVS, SFS, and OBS.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p0298122602020">storage-driver is a FlexVolume driver used to support IaaS storage services such as EVS, SFS, and OBS.</p>
 </td>
 </tr>
-<tr id="cce_10_0277__row1129818265202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p172981226192012"><a href="cce_10_0066.html">everest (System Resource Add-On, Mandatory)</a></p>
+<tr id="cce_10_0277__row1129818265202"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p172981226192012"><a href="cce_10_0066.html">everest (System Resource Add-On, Mandatory)</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p17298172618205">Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage services.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p17298172618205">Everest is a cloud native container storage system. Based on the Container Storage Interface (CSI), clusters of Kubernetes v1.15.6 or later obtain access to cloud storage services.</p>
 </td>
 </tr>
-<tr id="cce_10_0277__row82981726162015"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p19298172662014"><a href="cce_10_0132.html">npd</a></p>
+<tr id="cce_10_0277__row82981726162015"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p19298172662014"><a href="cce_10_0132.html">npd</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p0298202672017">node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon running on each node. It collects node issues from different daemons and reports them to the API server. The npd add-on can run as a DaemonSet or a daemon.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p0298202672017">node-problem-detector (npd for short) is an add-on that monitors abnormal events of cluster nodes and connects to a third-party monitoring platform. It is a daemon running on each node. It collects node issues from different daemons and reports them to the API server. The npd add-on can run as a DaemonSet or a daemon.</p>
 </td>
 </tr>
-<tr id="cce_10_0277__row517991010214"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p818051013218"><a href="cce_10_0154.html">autoscaler</a></p>
+<tr id="cce_10_0277__row517991010214"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p818051013218"><a href="cce_10_0154.html">autoscaler</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p33062213567">The autoscaler add-on resizes a cluster based on pod scheduling status and resource usage.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p33062213567">The autoscaler add-on resizes a cluster based on pod scheduling status and resource usage.</p>
 </td>
 </tr>
-<tr id="cce_10_0277__row718031012117"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p1718012101214"><a href="cce_10_0205.html">metrics-server</a></p>
+<tr id="cce_10_0277__row718031012117"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p1718012101214"><a href="cce_10_0205.html">metrics-server</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p8803328425">metrics-server is an aggregator for monitoring data of core cluster resources.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p8803328425">metrics-server is an aggregator for monitoring data of core cluster resources.</p>
 </td>
 </tr>
-<tr id="cce_10_0277__row2256219162517"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p182565193254"><a href="cce_10_0141.html">gpu-beta</a></p>
+<tr id="cce_10_0277__row2256219162517"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p182565193254"><a href="cce_10_0141.html">gpu-beta</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p12273103844718">gpu-beta is a device management add-on that supports GPUs in containers. It supports only NVIDIA drivers.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p12273103844718">gpu-beta is a device management add-on that supports GPUs in containers. It supports only NVIDIA drivers.</p>
 </td>
 </tr>
-<tr id="cce_10_0277__row1525615191253"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0277__p1725617192257"><a href="cce_10_0193.html">volcano</a></p>
+<tr id="cce_10_0277__row1525615191253"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_10_0277__p1725617192257"><a href="cce_10_0193.html">volcano</a></p>
 </td>
-<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0277__p7256161917253">Volcano provides general-purpose, high-performance computing capabilities, such as job scheduling, heterogeneous chip management, and job running management, serving end users through computing frameworks for different industries, such as AI, big data, gene sequencing, and rendering.</p>
+<td class="cellrowborder" valign="top" width="76.66%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_10_0277__p7256161917253">Volcano provides general-purpose, high-performance computing capabilities, such as job scheduling, heterogeneous chip management, and job running management, serving end users through computing frameworks for different industries, such as AI, big data, gene sequencing, and rendering.</p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0281.html b/docs/cce/umn/cce_10_0281.html
index 473f5557..84a4039d 100644
--- a/docs/cce/umn/cce_10_0281.html
+++ b/docs/cce/umn/cce_10_0281.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Overview</h1>
 <div id="body0000001116232773"><p id="cce_10_0281__en-us_topic_0146398798_p17435959114810">The container network assigns IP addresses to pods in a cluster and provides networking services. In CCE, you can select the following network models for your cluster:</p>
-<ul id="cce_10_0281__ul37951512175314"><li id="cce_10_0281__li87958124539"><a href="cce_10_0282.html">Tunnel network</a></li><li id="cce_10_0281__li16698131917531"><a href="cce_10_0283.html">VPC network</a></li><li id="cce_10_0281__li51085248531"><a href="cce_10_0284.html">Cloud Native Network 2.0</a></li></ul>
+<ul id="cce_10_0281__ul37951512175314"><li id="cce_10_0281__li87958124539"><a href="cce_10_0282.html">Container tunnel network</a></li><li id="cce_10_0281__li16698131917531"><a href="cce_10_0283.html">VPC network</a></li><li id="cce_10_0281__li51085248531"><a href="cce_10_0284.html">Cloud Native Network 2.0</a></li></ul>
 <div class="section" id="cce_10_0281__section15922428693"><h4 class="sectiontitle">Network Model Comparison</h4><p id="cce_10_0281__en-us_topic_0146398798_p1057652712256"><a href="#cce_10_0281__en-us_topic_0146398798_table715802210336">Table 1</a> describes the differences of network models supported by CCE.</p>
 <div class="caution" id="cce_10_0281__note15146173219330"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_10_0281__p8146183233312">After a cluster is created, the network model cannot be changed.</p>
 </div></div>
@@ -10,7 +10,7 @@
 
 <div class="tablenoborder"><a name="cce_10_0281__en-us_topic_0146398798_table715802210336"></a><a name="en-us_topic_0146398798_table715802210336"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0281__en-us_topic_0146398798_table715802210336" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Network model comparison</caption><thead align="left"><tr id="cce_10_0281__en-us_topic_0146398798_row015822213316"><th align="left" class="cellrowborder" valign="top" width="15.951595159515952%" id="mcps1.3.4.2.5.1.1"><p id="cce_10_0281__en-us_topic_0146398798_p1715813225335"><strong id="cce_10_0281__b41731716123514">Dimension</strong></p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="26.082608260826078%" id="mcps1.3.4.2.5.1.2"><p id="cce_10_0281__en-us_topic_0146398798_p1015919220339"><strong id="cce_10_0281__b1193717182352">Tunnel Network</strong></p>
+<th align="left" class="cellrowborder" valign="top" width="26.082608260826078%" id="mcps1.3.4.2.5.1.2"><p id="cce_10_0281__en-us_topic_0146398798_p1015919220339"><strong id="cce_10_0281__b1193717182352">Container Tunnel Network</strong></p>
 </th>
 <th align="left" class="cellrowborder" valign="top" width="29.002900290029%" id="mcps1.3.4.2.5.1.3"><p id="cce_10_0281__en-us_topic_0146398798_p5158192253312"><strong id="cce_10_0281__b16166921123511">VPC Network</strong></p>
 </th>
diff --git a/docs/cce/umn/cce_10_0282.html b/docs/cce/umn/cce_10_0282.html
index 3ff4cca1..9ad9ebf9 100644
--- a/docs/cce/umn/cce_10_0282.html
+++ b/docs/cce/umn/cce_10_0282.html
@@ -1,7 +1,7 @@
 <a name="cce_10_0282"></a><a name="cce_10_0282"></a>
 
 <h1 class="topictitle1">Container Tunnel Network</h1>
-<div id="body0000001116449815"><div class="section" id="cce_10_0282__section12281724511"><h4 class="sectiontitle">Container Tunnel Network Model</h4><div class="p" id="cce_10_0282__p128621429104410">The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet packets into UDP packets and transmits them in tunnels. Open vSwitch serves as the backend virtual switch. Though at some costs of performance, packet encapsulation and tunnel transmission enable higher interoperability and compatibility with advanced features (such as network policy-based isolation) for most common scenarios.<div class="fignone" id="cce_10_0282__en-us_topic_0146398798_fig119421248102318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_10_0282__image1052320276130" src="en-us_image_0000001199341330.png"></span></div>
+<div id="body0000001116449815"><div class="section" id="cce_10_0282__section12281724511"><h4 class="sectiontitle">Container Tunnel Network Model</h4><div class="p" id="cce_10_0282__p128621429104410">The container tunnel network is constructed on but independent of the node network through tunnel encapsulation. This network model uses VXLAN to encapsulate Ethernet packets into UDP packets and transmits them in tunnels. Open vSwitch serves as the backend virtual switch. Though at some costs of performance, packet encapsulation and tunnel transmission enable higher interoperability and compatibility with advanced features (such as network policy-based isolation) for most common scenarios.<div class="fignone" id="cce_10_0282__en-us_topic_0146398798_fig119421248102318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_10_0282__image1052320276130" src="en-us_image_0000001518222740.png"></span></div>
 </div>
 <p id="cce_10_0282__p1595093112523"><strong id="cce_10_0282__b1747574215205">Pod-to-pod communication</strong></p>
 <ul id="cce_10_0282__ul14388192911477"><li id="cce_10_0282__li1638816295478">On the same node: Packets are directly forwarded via the OVS bridge on the node.</li><li id="cce_10_0282__li279114194714">Across nodes: Packets are encapsulated in the OVS bridge and then forwarded to the peer node.</li></ul>
@@ -15,7 +15,7 @@
 </div>
 <div class="section" id="cce_10_0282__section182851515105616"><h4 class="sectiontitle">Container IP Address Management</h4><p id="cce_10_0282__p281322175914">The container tunnel network allocates container IP addresses according to the following rules:</p>
 <ul id="cce_10_0282__ul958419581574"><li id="cce_10_0282__li14584185875713">The container CIDR block is allocated separately, which is irrelevant to the node CIDR block.</li><li id="cce_10_0282__li125841058135712">IP addresses are allocated by node. One or more CIDR blocks with a fixed size (16 by default) are allocated to each node in a cluster from the container CIDR block.</li><li id="cce_10_0282__li4584058165712">When the IP addresses on a node are used up, you can apply for a new CIDR block.</li><li id="cce_10_0282__li155841158155716">The container CIDR block cyclically allocates CIDR blocks to new nodes or existing nodes in sequence.</li><li id="cce_10_0282__li1058455813579">Pods scheduled to a node are cyclically allocated IP addresses from one or more CIDR blocks allocated to the node.</li></ul>
-<div class="fignone" id="cce_10_0282__fig964351910578"><span class="figcap"><b>Figure 2 </b>IP address allocation of the container tunnel network</span><br><span><img id="cce_10_0282__image116431919125712" src="en-us_image_0000001244141217.png"></span></div>
+<div class="fignone" id="cce_10_0282__fig964351910578"><span class="figcap"><b>Figure 2 </b>IP address allocation of the container tunnel network</span><br><span><img id="cce_10_0282__image116431919125712" src="en-us_image_0000001569182773.png"></span></div>
 <p id="cce_10_0282__p14511937472">Maximum number of nodes that can be created in the cluster using the container tunnel network = Number of IP addresses in the container CIDR block / Size of the IP CIDR block allocated to the node by the container CIDR block at a time (16 by default)</p>
 <p id="cce_10_0282__p202791444191414">For example, if the container CIDR block is 172.16.0.0/16, the number of IP addresses is 65536. If 16 IP addresses are allocated to a node at a time, a maximum of 4096 (65536/16) nodes can be created in the cluster. This is an extreme case. If 4096 nodes are created, a maximum of 16 pods can be created for each node because only 16 IP CIDR block\s are allocated to each node. In addition, the number of nodes that can be created in a cluster also depends on the node network and cluster scale.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0283.html b/docs/cce/umn/cce_10_0283.html
index 3794d3e5..6b3b6783 100644
--- a/docs/cce/umn/cce_10_0283.html
+++ b/docs/cce/umn/cce_10_0283.html
@@ -1,7 +1,7 @@
 <a name="cce_10_0283"></a><a name="cce_10_0283"></a>
 
 <h1 class="topictitle1">VPC Network</h1>
-<div id="body0000001116449817"><div class="section" id="cce_10_0283__section1747411510358"><h4 class="sectiontitle">Model Definition</h4><div class="p" id="cce_10_0283__p1872194515461">The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the VPC route quota. Each node is assigned a CIDR block of a fixed size. This networking model is free from tunnel encapsulation overhead and outperforms the container tunnel network model. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in a cluster can be directly accessed from outside the cluster.<div class="fignone" id="cce_10_0283__en-us_topic_0146398798_fig105374614243"><span class="figcap"><b>Figure 1 </b>VPC network model</span><br><span><img id="cce_10_0283__en-us_topic_0146398798_image757734312392" src="en-us_image_0000001199181338.png"></span></div>
+<div id="body0000001116449817"><div class="section" id="cce_10_0283__section1747411510358"><h4 class="sectiontitle">Model Definition</h4><div class="p" id="cce_10_0283__p1872194515461">The VPC network uses VPC routing to integrate with the underlying network. This network model is suitable for performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the VPC route quota. Each node is assigned a CIDR block of a fixed size. This networking model is free from tunnel encapsulation overhead and outperforms the container tunnel network model. In addition, as VPC routing includes routes to node IP addresses and the container CIDR block, container pods in a cluster can be directly accessed from outside the cluster.<div class="fignone" id="cce_10_0283__en-us_topic_0146398798_fig105374614243"><span class="figcap"><b>Figure 1 </b>VPC network model</span><br><span><img id="cce_10_0283__en-us_topic_0146398798_image757734312392" src="en-us_image_0000001568822773.png"></span></div>
 </div>
 <p id="cce_10_0283__p1239017542469"><strong id="cce_10_0283__b1743713301235">Pod-to-pod communication</strong></p>
 <ul id="cce_10_0283__ul16721757114818"><li id="cce_10_0283__li87315713480">On the same node: Packets are directly forwarded through IPVlan.</li><li id="cce_10_0283__li473175794820">Across nodes: Packets are forwarded to the default gateway through default routes, and then to the peer node via the VPC routes.</li></ul>
@@ -15,7 +15,7 @@
 </div>
 <div class="section" id="cce_10_0283__section1574982552114"><a name="cce_10_0283__section1574982552114"></a><a name="section1574982552114"></a><h4 class="sectiontitle">Container IP Address Management</h4><p id="cce_10_0283__p281322175914">The VPC network allocates container IP addresses according to the following rules:</p>
 <ul id="cce_10_0283__ul191475312218"><li id="cce_10_0283__li2014713112214">The container CIDR block is allocated separately.</li><li id="cce_10_0283__li181471314228">IP addresses are allocated by node. One CIDR block with a fixed size (which is configurable) is allocated to each node in a cluster from the container CIDR block.</li><li id="cce_10_0283__li1414773162216">The container CIDR block cyclically allocates CIDR blocks to new nodes in sequence.</li><li id="cce_10_0283__li131471362219">Pods scheduled to a node are cyclically allocated IP addresses from CIDR blocks allocated to the node.</li></ul>
-<div class="fignone" id="cce_10_0283__fig790744862219"><span class="figcap"><b>Figure 2 </b>IP address management of the VPC network</span><br><span><img id="cce_10_0283__image390717485223" src="en-us_image_0000001244261173.png"></span></div>
+<div class="fignone" id="cce_10_0283__fig790744862219"><span class="figcap"><b>Figure 2 </b>IP address management of the VPC network</span><br><span><img id="cce_10_0283__image390717485223" src="en-us_image_0000001569022889.png"></span></div>
 <p id="cce_10_0283__p14511937472">Maximum number of nodes that can be created in the cluster using the VPC network = Number of IP addresses in the container CIDR block /Number of IP addresses in the CIDR block allocated to the node by the container CIDR block</p>
 <p id="cce_10_0283__p202791444191414">For example, if the container CIDR block is 172.16.0.0/16, the number of IP addresses is 65536. The mask of the container CIDR block allocated to the node is 25. That is, the number of container IP addresses on each node is 128. Therefore, a maximum of 512 (65536/128) nodes can be created. In addition, the number of nodes that can be created in a cluster also depends on the node network and cluster scale.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0284.html b/docs/cce/umn/cce_10_0284.html
index cf1b4c20..b36abe20 100644
--- a/docs/cce/umn/cce_10_0284.html
+++ b/docs/cce/umn/cce_10_0284.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Cloud Native Network 2.0</h1>
 <div id="body0000001116514283"><div class="section" id="cce_10_0284__section18112145311217"><h4 class="sectiontitle">Model Definition</h4><p id="cce_10_0284__p12850493413">Developed by CCE, Cloud Native Network 2.0 deeply integrates Elastic Network Interfaces (ENIs) and sub-ENIs of Virtual Private Cloud (VPC). Container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and elastic IPs (EIPs) are bound to deliver high performance.</p>
-<div class="fignone" id="cce_10_0284__en-us_topic_0146398798_fig117435555917"><span class="figcap"><b>Figure 1 </b>Cloud Native Network 2.0</span><br><span><img id="cce_10_0284__image46261543153113" src="en-us_image_0000001199181336.png"></span></div>
+<div class="fignone" id="cce_10_0284__en-us_topic_0146398798_fig117435555917"><span class="figcap"><b>Figure 1 </b>Cloud Native Network 2.0</span><br><span><img id="cce_10_0284__image46261543153113" src="en-us_image_0000001568822717.png"></span></div>
 <p id="cce_10_0284__p1239017542469"><strong id="cce_10_0284__b6980183903918">Pod-to-pod communication</strong></p>
 <ul id="cce_10_0284__ul123731243121119"><li id="cce_10_0284__li54221332105816">Pods on BMS nodes use ENIs, whereas pods on ECS nodes use Sub-ENIs. Sub-ENIs are attached to ENIs through VLAN sub-interfaces.</li><li id="cce_10_0284__li8373134371116">On the same node: Packets are forwarded through the VPC ENI or sub-ENI.</li><li id="cce_10_0284__li837364311113">Across nodes: Packets are forwarded through the VPC ENI or sub-ENI.</li></ul>
 </div>
@@ -18,7 +18,7 @@
 </li></ul>
 <p id="cce_10_0284__p61461628194919">In the Cloud Native Network 2.0 model, the container CIDR block and node CIDR block share the network addresses in a VPC. It is recommended that the container subnet and node subnet not use the same subnet. Otherwise, containers or nodes may fail to be created due to insufficient IP resources.</p>
 <p id="cce_10_0284__p176491216405">In addition, a subnet can be added to the container CIDR block after a cluster is created to increase the number of available IP addresses. In this case, ensure that the added subnet does not conflict with other subnets in the container CIDR block.</p>
-<div class="fignone" id="cce_10_0284__fig1793613585217"><span class="figcap"><b>Figure 2 </b>Configuring CIDR blocks</span><br><span><img id="cce_10_0284__image105281151192111" src="en-us_image_0000001244261171.png"></span></div>
+<div class="fignone" id="cce_10_0284__fig1793613585217"><span class="figcap"><b>Figure 2 </b>Configuring CIDR blocks</span><br><span><img id="cce_10_0284__image105281151192111" src="en-us_image_0000001569182549.png"></span></div>
 </div>
 <div class="section" id="cce_10_0284__section161713314914"><h4 class="sectiontitle">Example of Cloud Native Network 2.0 Access </h4><p id="cce_10_0284__p251120493913">Create a CCE Turbo cluster, which contains three ECS nodes.</p>
 <p id="cce_10_0284__p13854155435315">Access the details page of one node. You can see that the node has one primary NIC and one extended NIC, and both of them are ENIs. The extended NIC belongs to the container CIDR block and is used to mount a sub-ENI to the pod.</p>
diff --git a/docs/cce/umn/cce_10_0285.html b/docs/cce/umn/cce_10_0285.html
index b9561a15..6176fe06 100644
--- a/docs/cce/umn/cce_10_0285.html
+++ b/docs/cce/umn/cce_10_0285.html
@@ -7,10 +7,10 @@
 <ul id="cce_10_0285__ul16449133320528"><li id="cce_10_0285__li73965319525">Group them in different clusters for different environments.<p id="cce_10_0285__p481677539"><a name="cce_10_0285__li73965319525"></a><a name="li73965319525"></a>Resources cannot be shared among different clusters. In addition, services in different environments can access each other only through load balancing.</p>
 </li><li id="cce_10_0285__li17416104210525">Group them in different namespaces for different environments.<p id="cce_10_0285__p1741564245215"><a name="cce_10_0285__li17416104210525"></a><a name="li17416104210525"></a>Workloads in the same namespace can be mutually accessed by using the Service name. Cross-namespace access can be implemented by using the Service name or namespace name.</p>
 <p id="cce_10_0285__p12415124285217">The following figure shows namespaces created for the development, joint debugging, and testing environments, respectively.</p>
-<div class="fignone" id="cce_10_0285__fig741584216524"><span class="figcap"><b>Figure 1 </b>One namespace for one environment</span><br><span><img id="cce_10_0285__image992612283400" src="en-us_image_0000001199021298.png"></span></div>
+<div class="fignone" id="cce_10_0285__fig741584216524"><span class="figcap"><b>Figure 1 </b>One namespace for one environment</span><br><span><img id="cce_10_0285__image992612283400" src="en-us_image_0000001569182513.png"></span></div>
 </li></ul>
 </li><li id="cce_10_0285__li0262174297"><strong id="cce_10_0285__b181141219121411">Isolating namespaces by application</strong><p id="cce_10_0285__p1065383143011">You are advised to use this method if a large number of workloads are deployed in the same environment. For example, in the following figure, different namespaces (APP1 and APP2) are created to logically manage workloads as different groups. Workloads in the same namespace access each other using the Service name, and workloads in different namespaces access each other using the Service name or namespace name.</p>
-<div class="fignone" id="cce_10_0285__fig11187114614422"><span class="figcap"><b>Figure 2 </b>Grouping workloads into different namespaces</span><br><span><img id="cce_10_0285__image0620749113912" src="en-us_image_0000001243981147.png"></span></div>
+<div class="fignone" id="cce_10_0285__fig11187114614422"><span class="figcap"><b>Figure 2 </b>Grouping workloads into different namespaces</span><br><span><img id="cce_10_0285__image0620749113912" src="en-us_image_0000001569022797.png"></span></div>
 </li></ul>
 </div>
 <div class="section" id="cce_10_0285__section149711133124913"><h4 class="sectiontitle">Deleting a Namespace</h4><p id="cce_10_0285__p3802082534">If a namespace is deleted, all resources (such as workloads, jobs, and ConfigMaps) in this namespace will also be deleted. Exercise caution when deleting a namespace. </p>
diff --git a/docs/cce/umn/cce_10_0287.html b/docs/cce/umn/cce_10_0287.html
index 089f9393..32a9f7c3 100644
--- a/docs/cce/umn/cce_10_0287.html
+++ b/docs/cce/umn/cce_10_0287.html
@@ -36,7 +36,7 @@
 </tbody>
 </table>
 </div>
-<p id="cce_10_0287__p23884611431">Starting from clusters of v1.21 and later, the default <a href="https://kubernetes.io/docs/concepts/policy/resource-quotas/?spm=a2c4g.11186623.2.8.d882712bd1i8ae" target="_blank" rel="noopener noreferrer">Resource Quotas</a> are created when a namespace is created if you have enabled <strong id="cce_10_0287__b1575120543510">enable-resource-quota</strong> in <a href="cce_10_0213.html">Managing Cluster Components</a>. <a href="#cce_10_0287__table371165714613">Table 1</a> lists the resource quotas based on cluster specifications. You can modify them according to your service requirements.</p>
+<p id="cce_10_0287__p23884611431">Starting from clusters of v1.21 and later, the default <a href="https://kubernetes.io/docs/concepts/policy/resource-quotas/?spm=a2c4g.11186623.2.8.d882712bd1i8ae" target="_blank" rel="noopener noreferrer">Resource Quotas</a> are created when a namespace is created if you have enabled <strong id="cce_10_0287__b1575120543510">enable-resource-quota</strong> in <a href="cce_10_0213.html">Cluster Configuration Management</a>. <a href="#cce_10_0287__table371165714613">Table 1</a> lists the resource quotas based on cluster specifications. You can modify them according to your service requirements.</p>
 
 <div class="tablenoborder"><a name="cce_10_0287__table371165714613"></a><a name="table371165714613"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0287__table371165714613" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Default resource quotas</caption><thead align="left"><tr id="cce_10_0287__row371135714462"><th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.2.8.2.7.1.1"><p id="cce_10_0287__p2741101516471">Cluster Scale</p>
 </th>
diff --git a/docs/cce/umn/cce_10_0288.html b/docs/cce/umn/cce_10_0288.html
index 302830b6..5a6ed8d4 100644
--- a/docs/cce/umn/cce_10_0288.html
+++ b/docs/cce/umn/cce_10_0288.html
@@ -26,7 +26,7 @@
 </td>
 <td class="cellrowborder" valign="top" width="38.943894389438945%" headers="mcps1.3.3.2.4.2.1.2.4.1.2 "><p id="cce_10_0288__p1328632118575">The selected security group will be bound to the ENI or supplementary ENI of the selected workload. A maximum of five security groups can be selected from the drop-down list. You must select one or multiple security groups to create a SecurityGroup.</p>
 <p id="cce_10_0288__p147335320917">If no security group has not been created, click <strong id="cce_10_0288__b14281251122811">Create Security Group</strong>. After the security group is created, click the refresh button.</p>
-<div class="notice" id="cce_10_0288__note1159255716127"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0288__ul1543718137385"><li id="cce_10_0288__li2437913113810">A maximum of 5 security groups can be selected.</li><li id="cce_10_0288__li141331916103820">Hover the cursor on <span><img id="cce_10_0288__image1788617020404" src="en-us_image_0000001414561076.png"></span> next to the security group name, and you can view details about the security group.</li></ul>
+<div class="notice" id="cce_10_0288__note1159255716127"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0288__ul1543718137385"><li id="cce_10_0288__li2437913113810">A maximum of 5 security groups can be selected.</li><li id="cce_10_0288__li141331916103820">Hover the cursor on <span><img id="cce_10_0288__image1788617020404" src="en-us_image_0000001569182661.png"></span> next to the security group name, and you can view details about the security group.</li></ul>
 </div></div>
 </td>
 <td class="cellrowborder" valign="top" width="33.563356335633564%" headers="mcps1.3.3.2.4.2.1.2.4.1.3 "><p id="cce_10_0288__p62971643205712">64566556-bd6f-48fb-b2c6-df8f44617953</p>
diff --git a/docs/cce/umn/cce_10_0296.html b/docs/cce/umn/cce_10_0296.html
index 26efeae2..161f6944 100644
--- a/docs/cce/umn/cce_10_0296.html
+++ b/docs/cce/umn/cce_10_0296.html
@@ -6,13 +6,13 @@
 <div class="section" id="cce_10_0296__section194973810277"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_10_0296__p4299242191311">Before using the node scaling function, you must install the <a href="cce_10_0154.html">autoscaler</a> add-on of v1.13.8 or later.</p>
 </div>
 <div class="section" id="cce_10_0296__section15550647155618"><h4 class="sectiontitle">How autoscaler Works</h4><p id="cce_10_0296__en-us_topic_0000001134985539_p108861830195320">The cluster autoscaler (CA) goes through two processes.</p>
-<ul id="cce_10_0296__en-us_topic_0000001134985539_ul1225194595312"><li id="cce_10_0296__en-us_topic_0000001134985539_li12229204575311">Scale-out: The CA checks all unschedulable pods every 10 seconds and selects a node group that meets the requirements for scale-out based on the policy you set.</li><li id="cce_10_0296__en-us_topic_0000001134985539_li1722954585310">Scale-in: The CA scans all nodes every 10 seconds. If the number of pod requests on a node is less than the user-defined percentage for scale-in, the CA simulates whether the pods on the node can be migrated to other nodes. If yes, the node will be removed after an idle time window.</li></ul>
+<ul id="cce_10_0296__en-us_topic_0000001134985539_ul1225194595312"><li id="cce_10_0296__en-us_topic_0000001134985539_li12229204575311">Scale-out: The CA checks all unschedulable pods every 10 seconds and selects a node pool that meets the requirements for scale-out based on the policy you set.</li><li id="cce_10_0296__en-us_topic_0000001134985539_li1722954585310">Scale-in: The CA scans all nodes every 10 seconds. If the number of pod requests on a node is less than the user-defined percentage for scale-in, the CA simulates whether the pods on the node can be migrated to other nodes. If yes, the node will be removed after an idle time window.</li></ul>
 <p id="cce_10_0296__p5564125663811">As described above, if a cluster node is idle for a period of time (10 minutes by default), scale-in is triggered, and the idle node is removed.</p>
 <p id="cce_10_0296__p10927740113817">However, a node cannot be removed from a cluster if the following pods exist:</p>
-<ol id="cce_10_0296__ol19081274511"><li id="cce_10_0296__li193436816395">Pods that do not meet specific requirements set in PodDisruptionBudget</li><li id="cce_10_0296__li93432819399">Pods that cannot be scheduled to other nodes due to constraints such as affinity and anti-affinity policies</li><li id="cce_10_0296__li19343168153916">Pods that have the <strong id="cce_10_0296__b13761122434">"cluster-autoscaler.kubernetes.io/safe-to-evict": "false"</strong> annotation</li><li id="cce_10_0296__li5343187394">Pods (except those created by kube-system DaemonSet) that exist in the kube-system namespace on the node</li><li id="cce_10_0296__li91151244512">Pods that are not created by the controller (Deployment/ReplicaSet/job/StatefulSet)</li></ol>
+<ol id="cce_10_0296__ol19081274511"><li id="cce_10_0296__li193436816395">Pods that do not meet specific requirements set in PodDisruptionBudget</li><li id="cce_10_0296__li93432819399">Pods that cannot be scheduled to other nodes due to constraints such as affinity and anti-affinity policies</li><li id="cce_10_0296__li19343168153916">Pods that have the <strong id="cce_10_0296__b7970124471316">"cluster-autoscaler.kubernetes.io/safe-to-evict": "false"</strong> annotation</li><li id="cce_10_0296__li5343187394">Pods (except those created by DaemonSets in the kube-system namespace) that exist in the kube-system namespace on the node</li><li id="cce_10_0296__li91151244512">Pods that are not created by the controller (Deployment/ReplicaSet/job/StatefulSet)</li></ol>
 </div>
 <div class="section" id="cce_10_0296__section1937355015712"><h4 class="sectiontitle">autoscaler Architecture</h4><p id="cce_10_0296__p19483175016574"><a href="#cce_10_0296__fig114831750115719">Figure 1</a> shows the autoscaler architecture and its core modules:</p>
-<div class="fignone" id="cce_10_0296__fig114831750115719"><a name="cce_10_0296__fig114831750115719"></a><a name="fig114831750115719"></a><span class="figcap"><b>Figure 1 </b>autoscaler architecture</span><br><span><img id="cce_10_0296__image1311110330342" src="en-us_image_0000001199501290.png"></span></div>
+<div class="fignone" id="cce_10_0296__fig114831750115719"><a name="cce_10_0296__fig114831750115719"></a><a name="fig114831750115719"></a><span class="figcap"><b>Figure 1 </b>autoscaler architecture</span><br><span><img id="cce_10_0296__image1311110330342" src="en-us_image_0000001569182553.png"></span></div>
 <p id="cce_10_0296__p848317504572"><strong id="cce_10_0296__b124012214506">Description</strong></p>
 <ul id="cce_10_0296__ul848495025713"><li id="cce_10_0296__li184831850135719"><strong id="cce_10_0296__b2014431111413">Estimator</strong>: Evaluates the number of nodes to be added to each node pool to host unschedulable pods.</li><li id="cce_10_0296__li164832501576"><strong id="cce_10_0296__b182541915201411">Simulator</strong>: Finds the nodes that meet the scale-in conditions in the scale-in scenario.</li><li id="cce_10_0296__li12484150145717"><strong id="cce_10_0296__b96391717101419">Expander</strong>: Selects an optimal node from the node pool picked out by the Estimator based on the user-defined policy in the scale-out scenario. Currently, the Expander has the following policies:<ul id="cce_10_0296__ul15484145025716"><li id="cce_10_0296__li1848355055712"><strong id="cce_10_0296__b149572010145">Random</strong>: Selects a node pool randomly. If you have not specified a policy, <strong id="cce_10_0296__b10695175815301">Random</strong> is set by default.</li><li id="cce_10_0296__li1948395085715"><strong id="cce_10_0296__b0886923181418">most-Pods</strong>: Selects the node pool that can host the largest number of unschedulable pods after the scale-out. If multiple node pools meet the requirement, a random node pool will be selected.</li><li id="cce_10_0296__li1948315013576"><strong id="cce_10_0296__b5768228131412">least-waste</strong>: Selects the node pool that has the least CPU or memory resource waste after scale-out.</li><li id="cce_10_0296__li16484125075714"><strong id="cce_10_0296__b13641631171413">price</strong>: Selects the node pool in which the to-be-added nodes cost least for scale-out.</li><li id="cce_10_0296__li16484135065716"><strong id="cce_10_0296__b172453361411">priority</strong>: Selects the node pool with the highest weight. The weights are user-defined.</li></ul>
 </li></ul>
diff --git a/docs/cce/umn/cce_10_0298.html b/docs/cce/umn/cce_10_0298.html
index 350af8eb..116f4731 100644
--- a/docs/cce/umn/cce_10_0298.html
+++ b/docs/cce/umn/cce_10_0298.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Creating a CCE Turbo Cluster</h1>
 <div id="body0000001138502763"><p id="cce_10_0298__p1734813518288">CCE Turbo clusters run on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and intelligent scheduling.</p>
 <p id="cce_10_0298__p115071022112020">CCE Turbo clusters are paired with the Cloud Native Network 2.0 model for large-scale, high-performance container deployment. Containers are assigned IP addresses from the VPC CIDR block. Containers and nodes can belong to different subnets. Access requests from external networks in a VPC can be directly routed to container IP addresses, which greatly improves networking performance. <strong id="cce_10_0298__b83411556181619">It is recommended</strong> that you go through <a href="cce_10_0284.html">Cloud Native Network 2.0</a> to understand the features and network planning of each CIDR block of Cloud Native Network 2.0.</p>
-<div class="section" id="cce_10_0298__section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0298__ul129132199018"><li id="cce_10_0298__li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0298__li138561244112310">You can create a maximum of 50 clusters in a single region.</li><li id="cce_10_0298__li137951846406">CCE Turbo clusters support only Cloud Native Network 2.0. For details about this network model, see <a href="cce_10_0284.html">Cloud Native Network 2.0</a>.</li><li id="cce_10_0298__li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_10_0298__ul1386431634910"><li id="cce_10_0298__li6864131614492">Cluster type</li><li id="cce_10_0298__li359558115311">Number of master nodes in the cluster</li><li id="cce_10_0298__li452948112016">AZ of a master node</li><li id="cce_10_0298__li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, and kube-proxy (forwarding) settings.</li><li id="cce_10_0298__li1686451618494">Network model. For example, change <strong id="cce_10_0298__b1795202020576">Tunnel network</strong> to <strong id="cce_10_0298__b1380111204575">VPC network</strong>.</li></ul>
+<div class="section" id="cce_10_0298__section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0298__ul129132199018"><li id="cce_10_0298__li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the DNS server address of the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0298__li138561244112310">You can create a maximum of 50 clusters in a single region.</li><li id="cce_10_0298__li137951846406">CCE Turbo clusters support only Cloud Native Network 2.0. For details about this network model, see <a href="cce_10_0284.html">Cloud Native Network 2.0</a>.</li><li id="cce_10_0298__li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_10_0298__ul1386431634910"><li id="cce_10_0298__li6864131614492">Cluster type</li><li id="cce_10_0298__li359558115311">Number of master nodes in the cluster</li><li id="cce_10_0298__li452948112016">AZ of a master node</li><li id="cce_10_0298__li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, and kube-proxy (forwarding) settings.</li><li id="cce_10_0298__li1686451618494">Network model. For example, change <strong id="cce_10_0298__b1795202020576">Tunnel network</strong> to <strong id="cce_10_0298__b1380111204575">VPC network</strong>.</li></ul>
 </li></ul>
 </div>
 <div class="section" id="cce_10_0298__section030713544344"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0298__ol1233331493511"><li id="cce_10_0298__li833491416359"><span>Log in to the CCE console. Choose <strong id="cce_10_0298__b1752612013181">Clusters</strong>. On the displayed page, click <strong id="cce_10_0298__b125542040810">Create</strong> next to <strong id="cce_10_0298__b152615016185">CCE Turbo cluster</strong>.</span></li><li id="cce_10_0298__li1569162220359"><span>Specify cluster parameters.</span><p><div class="p" id="cce_10_0298__p5653205823718"><strong id="cce_10_0298__b565819129219">Basic Settings</strong><ul id="cce_10_0298__ul5395195853710"><li id="cce_10_0298__li1739455810379"><strong id="cce_10_0298__b1949862010292">Cluster Name</strong></li><li id="cce_10_0298__li163957587379"><strong id="cce_10_0298__b1950176172918">Cluster Version</strong>: Select the Kubernetes version used by the cluster.</li><li id="cce_10_0298__li5395358163711"><strong id="cce_10_0298__b576218102916">Cluster Scale</strong>: Select the maximum number of nodes that can be managed by the cluster. After the creation is complete, only scale-out is supported, but not scale-in.</li><li id="cce_10_0298__li467617271013"><strong id="cce_10_0298__b4471430184715">HA</strong>: distribution mode of master nodes. By default, master nodes are randomly distributed in different AZs to improve DR capabilities.<div class="p" id="cce_10_0298__p15811036101">You can also expand advanced settings and customize the master node distribution mode. The following modes are supported:<ul id="cce_10_0298__ul729432918812"><li id="cce_10_0298__li62941529381"><strong id="cce_10_0298__b6880036182814">Host</strong>: Master nodes are created on different hosts in the same AZ.</li><li id="cce_10_0298__li32946293815"><strong id="cce_10_0298__b15899949410">Custom</strong>: You can determine the location of each master node.</li></ul>
@@ -16,20 +16,22 @@
 <p id="cce_10_0298__p3866175612467"><strong id="cce_10_0298__b15331920152716">Advanced Settings</strong></p>
 <ul id="cce_10_0298__ul89571727475"><li id="cce_10_0298__li1895772174715"><strong id="cce_10_0298__b1578422152710">Request Forwarding</strong>: The IPVS and iptables modes are supported. For details, see <a href="cce_10_0349.html">Comparing iptables and IPVS</a>.</li><li id="cce_10_0298__li1736133045414"><strong id="cce_10_0298__b1162418367277">CPU Manager</strong>: For details, see <a href="cce_10_0351.html">Binding CPU Cores</a>.</li><li id="cce_10_0298__li086416351551"><strong id="cce_10_0298__b89152399275">Resource Tag</strong>:<p id="cce_10_0298__p1352104214110">You can add resource tags to classify resources.</p>
 <p id="cce_10_0298__p20521942101117">You can create <strong id="cce_10_0298__b3105324195610">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use predefined tags to improve tag creation and resource migration efficiency. </p>
-</li><li id="cce_10_0298__li12346444135511"><strong id="cce_10_0298__cce_10_0028_b6538204304212">Certificate Authentication</strong>:<ul id="cce_10_0298__cce_10_0028_ul8453616205317"><li id="cce_10_0298__cce_10_0028_li104539168533"><strong id="cce_10_0298__cce_10_0028_b220412510445">Default</strong>: The X509-based authentication mode is enabled by default. X509 is a commonly used certificate format.</li><li id="cce_10_0298__cce_10_0028_li8453141615535"><strong id="cce_10_0298__cce_10_0028_b16300163832117">Custom:</strong> The cluster can identify users based on the header in the request body for authentication. <p id="cce_10_0298__cce_10_0028_p184531416105312">You need to upload your <strong id="cce_10_0298__cce_10_0028_b845836182415">CA root certificate</strong>, <strong id="cce_10_0298__cce_10_0028_b164583622416">client certificate</strong>, and <strong id="cce_10_0298__cce_10_0028_b194581169243">private key</strong> of the client certificate.</p>
-<div class="caution" id="cce_10_0298__cce_10_0028_note13453101613535"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_10_0298__cce_10_0028_ul34531816155312"><li id="cce_10_0298__cce_10_0028_li114531516195313">Upload a file <strong id="cce_10_0298__cce_10_0028_b199411240122414">smaller than 1 MB</strong>. The CA certificate and client certificate can be in <strong id="cce_10_0298__cce_10_0028_b1195014407247">.crt</strong> or <strong id="cce_10_0298__cce_10_0028_b15950140182418">.cer</strong> format. The private key of the client certificate can only be uploaded <strong id="cce_10_0298__cce_10_0028_b199501540102417">unencrypted</strong>.</li><li id="cce_10_0298__cce_10_0028_li18453516185319">The validity period of the client certificate must be longer than five years.</li><li id="cce_10_0298__cce_10_0028_li104531916125318">The uploaded CA certificate is used for both the authentication proxy and the kube-apiserver aggregation layer configuration. <strong id="cce_10_0298__cce_10_0028_b19737142016505">If the certificate is invalid, the cluster cannot be created</strong>.</li><li id="cce_10_0298__cce_10_0028_li6694716185918">Starting from v1.25, Kubernetes no longer supports certificate authentication generated using the SHA1WithRSA or ECDSAWithSHA1 algorithm. You are advised to use the SHA256 algorithm.</li></ul>
+</li><li id="cce_10_0298__li12346444135511"><strong id="cce_10_0298__b431514161519">Certificate Authentication</strong>:<ul id="cce_10_0298__en-us_topic_0000001199341190_ul8453616205317"><li id="cce_10_0298__en-us_topic_0000001199341190_li104539168533"><strong id="cce_10_0298__b1677417193116">Default</strong>: The X509-based authentication mode is enabled by default. X509 is a commonly used certificate format.</li><li id="cce_10_0298__en-us_topic_0000001199341190_li8453141615535"><strong id="cce_10_0298__b1233252111116">Custom:</strong> The cluster can identify users based on the header in the request body for authentication. <p id="cce_10_0298__en-us_topic_0000001199341190_p184531416105312">You need to upload your <strong id="cce_10_0298__b135223235112">CA root certificate</strong>, <strong id="cce_10_0298__b16523152318119">client certificate</strong>, and <strong id="cce_10_0298__b1652314231614">private key</strong> of the client certificate.</p>
+<div class="caution" id="cce_10_0298__en-us_topic_0000001199341190_note13453101613535"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_10_0298__en-us_topic_0000001199341190_ul34531816155312"><li id="cce_10_0298__en-us_topic_0000001199341190_li114531516195313">Upload a file <strong id="cce_10_0298__b11802142510114">smaller than 1 MB</strong>. The CA certificate and client certificate can be in <strong id="cce_10_0298__b6802162519120">.crt</strong> or <strong id="cce_10_0298__b58031625212">.cer</strong> format. The private key of the client certificate can only be uploaded <strong id="cce_10_0298__b3803192513120">unencrypted</strong>.</li><li id="cce_10_0298__en-us_topic_0000001199341190_li18453516185319">The validity period of the client certificate must be longer than five years.</li><li id="cce_10_0298__en-us_topic_0000001199341190_li104531916125318">The uploaded CA certificate is used for both the authentication proxy and the kube-apiserver aggregation layer configuration. <strong id="cce_10_0298__b133821233319">If the certificate is invalid, the cluster cannot be created</strong>.</li><li id="cce_10_0298__en-us_topic_0000001199341190_li6694716185918">Starting from v1.25, Kubernetes no longer supports certificate authentication generated using the SHA1WithRSA or ECDSAWithSHA1 algorithm. You are advised to use the SHA256 algorithm.</li></ul>
 </div></div>
 </li></ul>
 </li><li id="cce_10_0298__li8833185203815"><strong id="cce_10_0298__b79311941114614">Description</strong>: The value can contain a maximum of 200 English characters.</li></ul>
-</p></li><li id="cce_10_0298__li1464011219269"><span>Click <strong id="cce_10_0298__b05029251885">Next: Add-on Configuration</strong>.</span><p><p id="cce_10_0298__p292215338261">By default, <a href="cce_10_0129.html">cordens</a> and <a href="cce_10_0066.html">everest</a> add-ons are installed.</p>
+</p></li><li id="cce_10_0298__li1464011219269"><span>Click <strong id="cce_10_0298__b05029251885">Next: Add-on Configuration</strong>.</span><p><p id="cce_10_0298__p157905523575"><strong id="cce_10_0298__b198295275214">Domain Name Resolution</strong>: Uses the <a href="cce_10_0129.html">coredns</a> add-on, installed by default, to resolve domain names and connect to the cloud DNS server.</p>
+<p id="cce_10_0298__p292215338261"><strong id="cce_10_0298__b1833535210298">Container Storage</strong>: The <a href="cce_10_0066.html">everest</a> add-on is installed by default to provide container storage based on CSI and connect to cloud storage services such as EVS.</p>
 <div class="p" id="cce_10_0298__p1042341817336"><strong id="cce_10_0298__b54341755383">Service log</strong><ul id="cce_10_0298__ul1532032363417"><li id="cce_10_0298__li078322903611"><strong id="cce_10_0298__b111439411113">ICAgent</strong>:<p id="cce_10_0298__p5238153093619">A log collector provided by Application Operations Management (AOM), reporting logs to AOM and Log Tank Service (LTS) according to the log collection rules you configured.</p>
 <p id="cce_10_0298__p161195033716">You can collect stdout logs as required.</p>
 </li></ul>
 </div>
+<p id="cce_10_0298__p357714145121"><strong id="cce_10_0298__b1273121213233">Overload Control</strong>: If overload control is enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available.</p>
 </p></li><li id="cce_10_0298__li72711456163617"><span>After configuring the parameters, click <span class="uicontrol" id="cce_10_0298__uicontrol36131794526"><b>Next: Confirm</b></span>.</span><p><p id="cce_10_0298__p1020211168316">It takes about 6 to 10 minutes to create a cluster. You can click <strong id="cce_10_0298__b789018411284">Back to Cluster List</strong> to perform other operations on the cluster or click <strong id="cce_10_0298__b20890174162816">Go to Cluster Events</strong> to view the cluster details.</p>
 </p></li></ol>
 </div>
-<div class="section" id="cce_10_0298__section473818525817"><h4 class="sectiontitle">Related Operations</h4><ul id="cce_10_0298__cce_01_0028_ul912451119262"><li id="cce_10_0298__cce_01_0028_li1030825181117">Using kubectl to connect to the cluster: <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a></li><li id="cce_10_0298__cce_01_0028_li71881616124815">Add nodes to the cluster. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</li></ul>
+<div class="section" id="cce_10_0298__section473818525817"><h4 class="sectiontitle">Related Operations</h4><ul id="cce_10_0298__en-us_topic_0107283640_ul912451119262"><li id="cce_10_0298__en-us_topic_0107283640_li1030825181117">Using kubectl to connect to the cluster: <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a></li><li id="cce_10_0298__en-us_topic_0107283640_li71881616124815">Add nodes to the cluster. For details, see <a href="cce_10_0363.html">Creating a Node</a>.</li></ul>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0300.html b/docs/cce/umn/cce_10_0300.html
index d21f0ee9..bc335bfc 100644
--- a/docs/cce/umn/cce_10_0300.html
+++ b/docs/cce/umn/cce_10_0300.html
@@ -6,7 +6,7 @@
 </div>
 <div class="section" id="cce_10_0300__cce_bestpractice_00282_section751193618161"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0300__cce_bestpractice_00282_p54049588619">Two major auto scaling policies are HPA (Horizontal Pod Autoscaling) and CA (Cluster AutoScaling). HPA is for workload auto scaling and CA is for node auto scaling.</p>
 <p id="cce_10_0300__cce_bestpractice_00282_p2041919560611">HPA and CA work with each other. HPA requires sufficient cluster resources for successful scaling. When the cluster resources are insufficient, CA is needed to add nodes. If HPA reduces workloads, the cluster will have a large number of idle resources. In this case, CA needs to release nodes to avoid resource waste.</p>
-<div class="p" id="cce_10_0300__cce_bestpractice_00282_p11357173063211">As shown in <a href="#cce_10_0300__cce_bestpractice_00282_fig6540132372015">Figure 1</a>, HPA performs scale-out based on the monitoring metrics. When cluster resources are insufficient, newly created pods are in Pending state. CA then checks these pending pods and selects the most appropriate node pool based on the configured scaling policy to scale out the node pool. <div class="fignone" id="cce_10_0300__cce_bestpractice_00282_fig6540132372015"><a name="cce_10_0300__cce_bestpractice_00282_fig6540132372015"></a><a name="cce_bestpractice_00282_fig6540132372015"></a><span class="figcap"><b>Figure 1 </b>HPA and CA working flows</span><br><span><img id="cce_10_0300__cce_bestpractice_00282_image1927651124120" src="en-us_image_0000001290111529.png"></span></div>
+<div class="p" id="cce_10_0300__cce_bestpractice_00282_p11357173063211">As shown in <a href="#cce_10_0300__cce_bestpractice_00282_fig6540132372015">Figure 1</a>, HPA performs scale-out based on the monitoring metrics. When cluster resources are insufficient, newly created pods are in Pending state. CA then checks these pending pods and selects the most appropriate node pool based on the configured scaling policy to scale out the node pool. <div class="fignone" id="cce_10_0300__cce_bestpractice_00282_fig6540132372015"><a name="cce_10_0300__cce_bestpractice_00282_fig6540132372015"></a><a name="cce_bestpractice_00282_fig6540132372015"></a><span class="figcap"><b>Figure 1 </b>HPA and CA working flows</span><br><span><img id="cce_10_0300__cce_bestpractice_00282_image1927651124120" src="en-us_image_0000001518222708.png"></span></div>
 </div>
 <p id="cce_10_0300__cce_bestpractice_00282_p1825146105817">Using HPA and CA can easily implement auto scaling in most scenarios. In addition, the scaling process of nodes and pods can be easily observed.</p>
 <p id="cce_10_0300__cce_bestpractice_00282_p489214412525">This section uses an example to describe the auto scaling process using HPA and CA policies together.</p>
@@ -29,7 +29,7 @@ RUN chmod a+rx index.php</pre>
 </div>
 </li><li id="cce_10_0300__cce_bestpractice_00282_li41280467810">Run the following command to build an image named <strong id="cce_10_0300__cce_bestpractice_00282_b1440401514159">hpa-example</strong> with the tag <strong id="cce_10_0300__cce_bestpractice_00282_b590893213151">latest</strong>.<pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen16152457980">docker build -t hpa-example:latest .</pre>
 </li><li id="cce_10_0300__cce_bestpractice_00282_li108181514125"><a name="cce_10_0300__cce_bestpractice_00282_li108181514125"></a><a name="cce_bestpractice_00282_li108181514125"></a>(Optional) Log in to the SWR console, choose <strong id="cce_10_0300__cce_bestpractice_00282_b14859418103912">Organization Management</strong> in the navigation pane, and click <strong id="cce_10_0300__cce_bestpractice_00282_b1645414239391">Create Organization</strong> in the upper right corner to create an organization.<p id="cce_10_0300__cce_bestpractice_00282_p1343919314125">Skip this step if you already have an organization.</p>
-</li><li id="cce_10_0300__cce_bestpractice_00282_li187221141362"><a name="cce_10_0300__cce_bestpractice_00282_li187221141362"></a><a name="cce_bestpractice_00282_li187221141362"></a>In the navigation pane, choose <strong id="cce_10_0300__cce_bestpractice_00282_b7491242144012">My Images</strong> and then click <strong id="cce_10_0300__cce_bestpractice_00282_b1013965224014">Upload Through Client</strong>. On the page displayed, click <strong id="cce_10_0300__cce_bestpractice_00282_b129802010104113">Generate a temporary login command</strong> and click <span><img id="cce_10_0300__cce_bestpractice_00282_image18751161714" src="en-us_image_0000001360670117.png"></span> to copy the command.</li><li id="cce_10_0300__cce_bestpractice_00282_li4452185981216">Run the login command copied in the previous step on the cluster node. If the login is successful, the message "Login Succeeded" is displayed.</li><li id="cce_10_0300__cce_bestpractice_00282_li195318131144">Tag the hpa-example image.<p id="cce_10_0300__cce_bestpractice_00282_p11924913171417"><a name="cce_10_0300__cce_bestpractice_00282_li195318131144"></a><a name="cce_bestpractice_00282_li195318131144"></a><strong id="cce_10_0300__cce_bestpractice_00282_b41232567411">docker tag </strong><strong id="cce_10_0300__cce_bestpractice_00282_b1112316568416"><em id="cce_10_0300__cce_bestpractice_00282_i1494375004119">[Image name 1</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b10123556154113">:</strong><strong id="cce_10_0300__cce_bestpractice_00282_b1912345644114"><em id="cce_10_0300__cce_bestpractice_00282_i994419503416">Tag 1]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1512335684112"> </strong><strong id="cce_10_0300__cce_bestpractice_00282_b161231556164113"><em id="cce_10_0300__cce_bestpractice_00282_i1294445014114">[Image repository address]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1123105615413">/</strong><strong id="cce_10_0300__cce_bestpractice_00282_b181236568414"><em id="cce_10_0300__cce_bestpractice_00282_i294405074115">[Organization name]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1123756204114">/</strong><strong id="cce_10_0300__cce_bestpractice_00282_b312315614411"><em id="cce_10_0300__cce_bestpractice_00282_i1944195015417">[Image name 2</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b19123115614120">:</strong><strong id="cce_10_0300__cce_bestpractice_00282_b412375604119"><em id="cce_10_0300__cce_bestpractice_00282_i10944850144119">Tag 2]</em></strong></p>
+</li><li id="cce_10_0300__cce_bestpractice_00282_li187221141362"><a name="cce_10_0300__cce_bestpractice_00282_li187221141362"></a><a name="cce_bestpractice_00282_li187221141362"></a>In the navigation pane, choose <strong id="cce_10_0300__cce_bestpractice_00282_b7491242144012">My Images</strong> and then click <strong id="cce_10_0300__cce_bestpractice_00282_b1013965224014">Upload Through Client</strong>. On the page displayed, click <strong id="cce_10_0300__cce_bestpractice_00282_b129802010104113">Generate a temporary login command</strong> and click <span><img id="cce_10_0300__cce_bestpractice_00282_image18751161714" src="en-us_image_0000001518222700.png"></span> to copy the command.</li><li id="cce_10_0300__cce_bestpractice_00282_li4452185981216">Run the login command copied in the previous step on the cluster node. If the login is successful, the message "Login Succeeded" is displayed.</li><li id="cce_10_0300__cce_bestpractice_00282_li195318131144">Tag the hpa-example image.<p id="cce_10_0300__cce_bestpractice_00282_p11924913171417"><a name="cce_10_0300__cce_bestpractice_00282_li195318131144"></a><a name="cce_bestpractice_00282_li195318131144"></a><strong id="cce_10_0300__cce_bestpractice_00282_b41232567411">docker tag </strong><strong id="cce_10_0300__cce_bestpractice_00282_b1112316568416"><em id="cce_10_0300__cce_bestpractice_00282_i1494375004119">[Image name 1</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b10123556154113">:</strong><strong id="cce_10_0300__cce_bestpractice_00282_b1912345644114"><em id="cce_10_0300__cce_bestpractice_00282_i994419503416">Tag 1]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1512335684112"> </strong><strong id="cce_10_0300__cce_bestpractice_00282_b161231556164113"><em id="cce_10_0300__cce_bestpractice_00282_i1294445014114">[Image repository address]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1123105615413">/</strong><strong id="cce_10_0300__cce_bestpractice_00282_b181236568414"><em id="cce_10_0300__cce_bestpractice_00282_i294405074115">[Organization name]</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b1123756204114">/</strong><strong id="cce_10_0300__cce_bestpractice_00282_b312315614411"><em id="cce_10_0300__cce_bestpractice_00282_i1944195015417">[Image name 2</em></strong><strong id="cce_10_0300__cce_bestpractice_00282_b19123115614120">:</strong><strong id="cce_10_0300__cce_bestpractice_00282_b412375604119"><em id="cce_10_0300__cce_bestpractice_00282_i10944850144119">Tag 2]</em></strong></p>
 <ul id="cce_10_0300__cce_bestpractice_00282_ul763321831715"><li id="cce_10_0300__cce_bestpractice_00282_li460317260171"><strong id="cce_10_0300__cce_bestpractice_00282_b1150611814214">[Image name 1:Tag 1]</strong>: name and tag of the local image to be uploaded.</li><li id="cce_10_0300__cce_bestpractice_00282_li1060312611712"><strong id="cce_10_0300__cce_bestpractice_00282_b19464224104213">[Image repository address]</strong>: The domain name at the end of the login command in  <a href="#cce_10_0300__cce_bestpractice_00282_li187221141362">5</a> is the image repository address, which can be obtained on the SWR console.</li><li id="cce_10_0300__cce_bestpractice_00282_li14603122611175"><strong id="cce_10_0300__cce_bestpractice_00282_b953652265613">[Organization name]</strong>: name of the organization created in <a href="#cce_10_0300__cce_bestpractice_00282_li108181514125">4</a>.</li><li id="cce_10_0300__cce_bestpractice_00282_li14603112631714"><strong id="cce_10_0300__cce_bestpractice_00282_b1458315379569">[Image name 2:Tag 2]</strong>: desired image name and tag to be displayed on the SWR console.</li></ul>
 <p id="cce_10_0300__cce_bestpractice_00282_p4355540101419">Example:</p>
 <p id="cce_10_0300__cce_bestpractice_00282_p027419151243"><strong id="cce_10_0300__cce_bestpractice_00282_b17681119162411">docker tag hpa-example:latest swr.eu-de.otc.t-systems.com/group/hpa-example:latest</strong></p>
@@ -49,11 +49,11 @@ latest: digest: sha256:eb7e3bbd*** size: **</pre>
 <p id="cce_10_0300__cce_bestpractice_00282_p1285517159277">Retain the defaults for other parameters. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0012.html" target="_blank" rel="noopener noreferrer">Creating a Node Pool</a>.</p>
 <p id="cce_10_0300__cce_bestpractice_00282_p138552015132714"></p>
 </p></li><li id="cce_10_0300__cce_bestpractice_00282_li1527517223212"><span>Click <strong id="cce_10_0300__cce_bestpractice_00282_b1649233712">Add-ons</strong> on the left of the cluster console, click <strong id="cce_10_0300__cce_bestpractice_00282_b163304361179">Edit</strong> under the autoscaler add-on, modify the add-on configuration, enable <strong id="cce_10_0300__cce_bestpractice_00282_b1581011521493">Auto node scale-in</strong>, and configure scale-in parameters. For example, trigger scale-in when the node resource utilization is less than 50%.</span><p><p id="cce_10_0300__cce_bestpractice_00282_p10165154173117"></p>
-<p id="cce_10_0300__cce_bestpractice_00282_p888735143116"><span><img id="cce_10_0300__cce_bestpractice_00282_image867395994818" src="en-us_image_0000001533181077.png"></span></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p888735143116"><span><img id="cce_10_0300__cce_bestpractice_00282_image867395994818" src="en-us_image_0000001568902661.png"></span></p>
 <p id="cce_10_0300__cce_bestpractice_00282_p5804654163410">After the preceding configurations, scale-out is performed based on the pending status of the pod and scale-in is triggered when the node resource utilization decreases.</p>
 </p></li><li id="cce_10_0300__cce_bestpractice_00282_li1126822017585"><span>Click <strong id="cce_10_0300__cce_bestpractice_00282_b1168112406129">Node Scaling</strong> on the left of the cluster console and click <strong id="cce_10_0300__cce_bestpractice_00282_b10655553121218">Create Node Scaling Policy</strong> in the upper right corner. Node scaling policies added here trigger scale-out based on the CPU/memory allocation rate or periodically.</span><p><p id="cce_10_0300__cce_bestpractice_00282_p1695512314355">As shown in the following figure, when the cluster CPU allocation rate is greater than 70%, one node will be added. A node scaling policy needs to be associated with a node pool. Multiple node pools can be associated. When you need to scale nodes, node with proper specifications will be added or reduced from the node pool based on the minimum waste principle. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0209.html" target="_blank" rel="noopener noreferrer">Creating a Node Scaling Policy</a>.</p>
 <p id="cce_10_0300__cce_bestpractice_00282_p1060995123612"></p>
-<p id="cce_10_0300__cce_bestpractice_00282_p1184913610364"><span><img id="cce_10_0300__cce_bestpractice_00282_image862291620537" src="en-us_image_0000001482541956.png"></span></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p1184913610364"><span><img id="cce_10_0300__cce_bestpractice_00282_image862291620537" src="en-us_image_0000001569182741.png"></span></p>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0300__cce_bestpractice_00282_section57571151111612"><h4 class="sectiontitle">Creating a Workload</h4><p id="cce_10_0300__cce_bestpractice_00282_p147957471717">Use the hpa-example image to create a Deployment with one replica. The image path is related to the organization uploaded to the SWR repository and needs to be replaced with the actual value.</p>
@@ -122,7 +122,7 @@ spec:
         targetAverageUtilization: 50</pre>
 <p id="cce_10_0300__cce_bestpractice_00282_p196461938154111">Set the parameters as follows if you are using the console.</p>
 <p id="cce_10_0300__cce_bestpractice_00282_p536510019427"></p>
-<p id="cce_10_0300__cce_bestpractice_00282_p198996511846"><span><img id="cce_10_0300__cce_bestpractice_00282_image18106194295711" src="en-us_image_0000001482701968.png"></span></p>
+<p id="cce_10_0300__cce_bestpractice_00282_p198996511846"><span><img id="cce_10_0300__cce_bestpractice_00282_image18106194295711" src="en-us_image_0000001569023029.png"></span></p>
 </div>
 <div class="section" id="cce_10_0300__cce_bestpractice_00282_section16503511256"><h4 class="sectiontitle">Observing the Auto Scaling Process</h4><ol id="cce_10_0300__cce_bestpractice_00282_ol17709912133114"><li id="cce_10_0300__cce_bestpractice_00282_li37091512193117"><span>Check the cluster node status. In the following example, there are two nodes.</span><p><pre class="screen" id="cce_10_0300__cce_bestpractice_00282_screen179458561066"># kubectl get node
 NAME            STATUS   ROLES    AGE     VERSION
diff --git a/docs/cce/umn/cce_10_0301.html b/docs/cce/umn/cce_10_0301.html
index 4b761d90..2e9c98bd 100644
--- a/docs/cce/umn/cce_10_0301.html
+++ b/docs/cce/umn/cce_10_0301.html
@@ -1,141 +1,35 @@
 <a name="cce_10_0301"></a><a name="cce_10_0301"></a>
 
 <h1 class="topictitle1">Performing In-place Upgrade</h1>
-<div id="body0000001110681922">
-    <div class="section" id="cce_10_0301__section10924122311617">
-        <h4 class="sectiontitle">Scenario</h4>
-        <p id="cce_10_0301__p19245829101612">You can upgrade your clusters to a newer version on the CCE console.</p>
-        <p id="cce_10_0301__p10143161620134">Before the upgrade, learn about the target version to which each CCE
-            cluster can be upgraded in what ways, and the upgrade impacts. For details, see <a
-                href="cce_10_0197.html">Upgrade Overview</a> and <a href="cce_10_0302.html">Before You Start</a>.</p>
-    </div>
-    <div class="section" id="cce_10_0301__section2070072554817">
-        <h4 class="sectiontitle">Description</h4>
-        <ul id="cce_10_0301__ul3828175415018">
-            <li id="cce_10_0301__li982819549505">An in-place upgrade updates the Kubernetes components on cluster nodes,
-                without changing their OS version. </li>
-            <li id="cce_10_0301__li12829175411509">Data plane nodes are upgraded in batches. By default, they are
-                prioritized based on their CPU, memory, and <a
-                    href="https://kubernetes.io/docs/tasks/run-application/configure-pdb/" target="_blank"
-                    rel="noopener noreferrer">PodDisruptionBudgets (PDBs)</a>. You can also set the priorities according
-                to your service requirements.</li>
-        </ul>
-    </div>
-    <div class="section" id="cce_10_0301__section1919918391549">
-        <h4 class="sectiontitle">Precautions</h4>
-        <ul id="cce_10_0301__ul19491118352">
-            <li id="cce_10_0301__li194914183512">During the cluster upgrade, the system will automatically upgrade
-                add-ons to a version compatible with the target cluster version. Do not uninstall or reinstall add-ons
-                during the cluster upgrade.</li>
-            <li id="cce_10_0301__li449141819517">Before the upgrade, ensure that all add-ons are running. If an add-on
-                fails to be upgraded, rectify the fault and try again.</li>
-            <li id="cce_10_0301__li754953003010">During the upgrade, CCE checks the add-on running status. Some add-ons
-                (such as coredns) require at least two nodes to run normally. In this case, at least two nodes must be
-                available for the upgrade.</li>
-        </ul>
-        <p id="cce_10_0301__p12755105115414">For more information, see <a href="cce_10_0302.html">Before You Start</a>.
-        </p>
-    </div>
-    <div class="section" id="cce_10_0301__section1687417142026">
-        <h4 class="sectiontitle">Procedure</h4>
-        <p id="cce_10_0301__p1371062222518">This section describes how to upgrade a CCE cluster of v1.15 or later. For
-            other versions, see <a href="cce_10_0120.html">Performing Replace/Rolling Upgrade</a>.</p>
-        <ol id="cce_10_0301__ol226615082711">
-            <li id="cce_10_0301__li172448111993"><span>Log in to the CCE console and click the cluster name to access
-                    the cluster.</span></li>
-            <li id="cce_10_0301__li1524420111793"><span>In the navigation pane, choose <strong
-                        id="cce_10_0301__b1348251612555">Cluster Upgrade</strong>. You can view the new version
-                    available for upgrade on the right.</span>
-                <p>
-                <p id="cce_10_0301__p09562431410">Check the version information, last update/upgrade time, available
-                    upgrade version, and upgrade history of the current cluster.</p>
-                <p id="cce_10_0301__p12122131411">The cluster upgrade goes through pre-upgrade check, add-on
-                    upgrade/uninstallation, master node upgrade, worker node upgrade, and post-upgrade processing.</p>
-                <div class="note" id="cce_10_0301__note1122114205144"><img
-                        src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span>
-                    <div class="notebody">
-                        <ul id="cce_10_0301__ul1322132019147">
-                            <li id="cce_10_0301__li18221120171411">If your cluster version is up-to-date, the <strong
-                                    id="cce_10_0301__b5689758191218">Upgrade</strong> button is grayed out.</li>
-                            <li id="cce_10_0301__li22211720141413">If your cluster status is abnormal or there are
-                                abnormal add-ons, the <strong id="cce_10_0301__b5242902029">Upgrade</strong> button is
-                                dimmed. Perform a check by referring to <a href="cce_10_0302.html">Before You Start</a>.
-                            </li>
-                        </ul>
-                    </div>
-                </div>
-                </p>
-            </li>
-            <li id="cce_10_0301__li984983714109"><span>Click <strong id="cce_10_0301__b111315443241">Upgrade</strong> or <strong id="cce_10_0301__b15358185672520">Install Patch</strong> on
-                    the right. Set the upgrade parameters.</span>
-                <p>
-                <ul id="cce_10_0301__ul178452043143016">
-                    <li id="cce_10_0301__li78451143153020"><strong id="cce_10_0301__b12119145820111">New
-                            Version</strong>: Select the Kubernetes version to which the cluster can be upgraded.</li>
-                    <li id="cce_10_0301__li19219343511">(Optional) <strong id="cce_10_0301__b65418411058">Cluster
-                            Backup</strong>: Determine whether to back up the entire master node. This backup mode is
-                        recommended.<p id="cce_10_0301__p1647478566">A manual confirmation is required for backing up
-                            the entire master node. The backup process uses the Cloud Backup and Recovery (CBR) service
-                            and takes about 20 minutes. If there are many cloud backup tasks at the current site, the
-                            backup time may be prolonged. You are advised to back up the master node.</p>
-                    </li>
-                    <li id="cce_10_0301__li7676104618303"><strong id="cce_10_0301__b127845449212">Add-on Upgrade
-                            Configuration</strong>: Add-ons that have been installed in your cluster are listed. During
-                        the cluster upgrade, the system automatically upgrades the add-ons to be compatible with the
-                        target cluster version. You can click <strong id="cce_10_0301__b12141811531">Set</strong> to
-                        re-define the add-on parameters.<div class="note" id="cce_10_0301__note1131413214018"><img
-                                src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span>
-                            <div class="notebody">
-                                <p id="cce_10_0301__p969682654414">If a red dot <span><img
-                                            id="cce_10_0301__image202911371135"
-                                            src="en-us_image_0000001244101223.png"></span> is displayed on the right of
-                                    an add-on, the add-on is incompatible with the target cluster version. During the
-                                    upgrade, the add-on will be uninstalled and then re-installed. Ensure that the
-                                    add-on parameters are correctly configured.</p>
-                            </div>
-                        </div>
-                    </li>
-                    <li id="cce_10_0301__li1915055743018"><strong id="cce_10_0301__b1295375252">Node Upgrade
-                            Configuration</strong>: Before setting the node upgrade priority, you need to select a node
-                        pool. Nodes and node pools will be upgraded according to the priorities you specify. You can set
-                        the maximum number of nodes to be upgraded in a batch, or set priorities for nodes to be
-                        upgraded. If you do not set this parameter, the system will determine the nodes to upgrade in
-                        batches based on specific conditions.<ul id="cce_10_0301__ul48277236304">
-                            <li id="cce_10_0301__li1014817517255"><strong id="cce_10_0301__b956717611">Add Upgrade
-                                    Priority</strong>: Add upgrade priorities for node pools.</li>
-                            <li id="cce_10_0301__li1357212559289"><strong id="cce_10_0301__b1293814317714">Add Node
-                                    Priority</strong>: After adding a node pool priority, you can set the upgrade
-                                sequence of nodes in the node pool. The system upgrades nodes in the sequence you
-                                specify. If you skip this setting, the system upgrades nodes based on the default
-                                policy.</li>
-                        </ul>
-                    </li>
-                </ul>
-                </p>
-            </li>
-            <li id="cce_10_0301__li10560105618205"><span>Read the upgrade instructions carefully, and select <strong
-                        id="cce_10_0301__b17774421491">I have read and agree to Upgrade Precautions</strong>. Click
-                    <strong id="cce_10_0301__b191816471994">Upgrade</strong>.</span></li>
-            <li id="cce_10_0301__li716763219239"><span>After you click <strong
-                        id="cce_10_0301__b16125132413119">Upgrade</strong>, the cluster upgrade starts. You can view the
-                    upgrade process in the lower part of the page.</span>
-                <p>
-                <p id="cce_10_0301__p17419642610">During the upgrade, you can click <strong
-                        id="cce_10_0301__b1726946131116">Suspend</strong> on the right to suspend the cluster upgrade.
-                    To continue the upgrade, click <strong id="cce_10_0301__b82644641119">Continue</strong>.</p>
-                <p id="cce_10_0301__p5985504584">If an upgrade failure message is displayed during the cluster upgrade,
-                    rectify the fault as prompted and try again.</p>
-                </p>
-            </li>
-            <li id="cce_10_0301__li365851731914"><span>When the upgrade progress reaches 100%, the cluster is upgraded.
-                    The version information will be properly displayed, and no upgrade is required.</span></li>
-            <li id="cce_10_0301__li24618207291"><span>After the upgrade is complete, verify the cluster Kubernetes
-                    version on the <strong id="cce_10_0301__b18871244162219">Clusters</strong> page.</span></li>
-        </ol>
-    </div>
+<div id="body0000001110681922"><div class="section" id="cce_10_0301__section10924122311617"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0301__p19245829101612">You can upgrade your clusters to a newer version on the CCE console.</p>
+<p id="cce_10_0301__p10143161620134">Before the upgrade, learn about the target version to which each CCE cluster can be upgraded in what ways, and the upgrade impacts. For details, see <a href="cce_10_0197.html">Upgrade Overview</a> and <a href="cce_10_0302.html">Before You Start</a>.</p>
+</div>
+<div class="section" id="cce_10_0301__section2070072554817"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0301__ul3828175415018"><li id="cce_10_0301__li982819549505">An in-place upgrade updates the Kubernetes components on cluster nodes, without changing their OS version. </li><li id="cce_10_0301__li12829175411509">Data plane nodes are upgraded in batches. By default, they are prioritized based on their CPU, memory, and <a href="https://kubernetes.io/docs/tasks/run-application/configure-pdb/" target="_blank" rel="noopener noreferrer">PodDisruptionBudgets (PDBs)</a>. You can also set the priorities according to your service requirements.</li></ul>
+</div>
+<div class="section" id="cce_10_0301__section1919918391549"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0301__ul19491118352"><li id="cce_10_0301__li194914183512">During the cluster upgrade, the system will automatically upgrade add-ons to a version compatible with the target cluster version. Do not uninstall or reinstall add-ons during the cluster upgrade.</li><li id="cce_10_0301__li449141819517">Before the upgrade, ensure that all add-ons are running. If an add-on fails to be upgraded, rectify the fault and try again.</li><li id="cce_10_0301__li754953003010">During the upgrade, CCE checks the add-on running status. Some add-ons (such as coredns) require at least two nodes to run normally. In this case, at least two nodes must be available for the upgrade.</li></ul>
+<p id="cce_10_0301__p12755105115414">For more information, see <a href="cce_10_0302.html">Before You Start</a>.</p>
+</div>
+<div class="section" id="cce_10_0301__section197801055113120"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0301__p6521635124316">The cluster upgrade goes through check, backup, configuration and upgrade, and verification.</p>
+<ol id="cce_10_0301__ol1335910963217"><li id="cce_10_0301__li143596918329"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0301__li73591195325"><span>In the navigation pane, choose <strong id="cce_10_0301__b353117280173">Cluster Upgrade</strong>. You can view the recommended version on the right.</span></li><li id="cce_10_0301__li12573623173819"><span>Select the cluster version to be upgraded and click <strong id="cce_10_0301__b15328164615229">Check</strong>.</span><p><div class="note" id="cce_10_0301__note635914911327"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0301__ul7797114420192"><li id="cce_10_0301__li1190914541912">If your cluster has a new minor version, you do not need to select the cluster version. The latest minor version is used by default.</li><li id="cce_10_0301__li1429417284209">If your cluster has a new major version, you can select a version as required.</li><li id="cce_10_0301__li7797134416191">If your cluster is of the latest version, the check entry will be hidden.</li></ul>
+</div></div>
+<p id="cce_10_0301__p62475819218"></p>
+</p></li><li id="cce_10_0301__li10420821442"><span>Click <span class="uicontrol" id="cce_10_0301__uicontrol8362102314444"><b>Start Check</b></span> and confirm the check. If there are abnormal or risky items in the cluster, handle the exceptions based on the check results displayed on the page and check again.</span><p><ul id="cce_10_0301__ul23811510154720"><li id="cce_10_0301__li1038113100475"><strong id="cce_10_0301__b64991528172814">Exceptions</strong>: View the solution displayed on the page, handle the exceptions and check again.</li><li id="cce_10_0301__li18381121013477"><strong id="cce_10_0301__b8837153152814">Risk Items</strong>: may affect the cluster upgrade. Check the risk description and see whether you may be impacted. If no risk exists, click <strong id="cce_10_0301__b129614233307">OK</strong> next to the risk item to manually skip this risk item and check again.</li></ul>
+<p id="cce_10_0301__p1334514551213">After the check is passed, click <strong id="cce_10_0301__b13419829163116">Next: Back Up</strong>.</p>
+<p id="cce_10_0301__p10105104984617"></p>
+</p></li><li id="cce_10_0301__li1743471484617"><span>(Optional) Manually back up the data. Data is backed up during the upgrade following a default policy. You can click <strong id="cce_10_0301__b07648474471">Back Up</strong> to manually back up data. If you do not need to manually back up data, click <span class="uicontrol" id="cce_10_0301__uicontrol2069810331259"><b>Next: Configure &amp; Upgrade</b></span>.</span></li><li id="cce_10_0301__li97425134119"><span>Configure the upgrade parameters.</span><p><ul id="cce_10_0301__ul107528131911"><li id="cce_10_0301__li175231317120"><strong id="cce_10_0301__b112171855101115">Add-on Upgrade Configuration</strong>: Add-ons that have been installed in your cluster are listed. During the cluster upgrade, the system automatically upgrades the add-ons to be compatible with the target cluster version. You can click <strong id="cce_10_0301__b6464185202317">Set</strong> to re-define the add-on parameters.<div class="note" id="cce_10_0301__note1175217131110"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0301__p167525131118">If a red dot <span><img id="cce_10_0301__image1375214131415" src="en-us_image_0000001517743672.png"></span> is displayed on the right of an add-on, the add-on is incompatible with the target cluster version. During the upgrade, the add-on will be uninstalled and then re-installed. Ensure that the add-on parameters are correctly configured.</p>
+</div></div>
+</li><li id="cce_10_0301__li3752513915"><strong id="cce_10_0301__b98962483123">Node Upgrade Configuration:</strong> You can set the maximum number of nodes to be upgraded in a batch.</li><li id="cce_10_0301__li9690310271"><strong id="cce_10_0301__b8659132431317">Node Priority:</strong> You can set priorities for nodes to be upgraded. If you do not set this parameter, the system will determine the nodes to upgrade in batches based on specific conditions. Before setting the node upgrade priority, you need to select a node pool. Nodes and node pools will be upgraded according to the priorities you specify.<ul id="cce_10_0301__ul1169016101779"><li id="cce_10_0301__li469071019717"><strong id="cce_10_0301__b166831510111415">Add Upgrade Priority</strong>: Add upgrade priorities for node pools.</li><li id="cce_10_0301__li1969021015717"><strong id="cce_10_0301__b1748161414144">Add Node Priority</strong>: After adding a node pool priority, you can set the upgrade sequence of nodes in the node pool. The system upgrades nodes in the sequence you specify. If you skip this setting, the system upgrades nodes based on the default policy.</li></ul>
+</li></ul>
+</p></li><li id="cce_10_0301__li979772620170"><span>After the configuration is complete, click <span class="uicontrol" id="cce_10_0301__uicontrol1797122618173"><b>Upgrade</b></span> and confirm the upgrade. The cluster starts to be upgraded. You can view the process in the lower part of the page.</span><p><p id="cce_10_0301__p1248492716170">During the upgrade, you can click <strong id="cce_10_0301__b1551315592817">Suspend</strong> on the right to suspend the cluster upgrade. To continue the upgrade, click <strong id="cce_10_0301__b1551455122811">Continue</strong>. When the progress bar reaches 100%, the cluster upgrade is complete.</p>
+<div class="note" id="cce_10_0301__note578881111618"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0301__p2036014919324">If an upgrade failure message is displayed during the cluster upgrade, rectify the fault as prompted and try again.</p>
+</div></div>
+</p></li><li id="cce_10_0301__li9804142141616"><span>After the upgrade is complete, click <span class="uicontrol" id="cce_10_0301__uicontrol1794616302169"><b>Next: Verify</b></span>. Verify the upgrade based on the displayed check items. After confirming that all check items are normal, click <span class="uicontrol" id="cce_10_0301__uicontrol149928437562"><b>Complete</b></span> and confirm that the post-upgrade check is complete.</span><p><p id="cce_10_0301__p938212210165">You can verify the cluster Kubernetes version on the <strong id="cce_10_0301__b956664512281">Clusters</strong> page.</p>
+</p></li></ol>
+</div>
 </div>
 <div>
-    <div class="familylinks">
-        <div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
-    </div>
-</div>
\ No newline at end of file
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0302.html b/docs/cce/umn/cce_10_0302.html
index acbcbe16..61529b00 100644
--- a/docs/cce/umn/cce_10_0302.html
+++ b/docs/cce/umn/cce_10_0302.html
@@ -4,97 +4,97 @@
 <div id="body0000001157002327"><p id="cce_10_0302__p34419457476">Before the upgrade, you can check whether your cluster can be upgraded and which versions are available on the CCE console. For details, see <a href="cce_10_0197.html">Upgrade Overview</a>.</p>
 <div class="section" id="cce_10_0302__section16520163082115"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0302__ul10508151218313"><li id="cce_10_0302__li132762210555"><strong id="cce_10_0302__b3961612125514">Upgraded clusters cannot be rolled back. Therefore, perform the upgrade during off-peak hours to minimize the impact on your services.</strong></li><li id="cce_10_0302__li189442024405">Do not <strong id="cce_10_0302__b92016251345">shut down, restart, or delete nodes</strong> during cluster upgrade. Otherwise, the upgrade fails.</li><li id="cce_10_0302__li108483591008">Before upgrading a cluster, <strong id="cce_10_0302__b1781554833416">disable auto scaling policies</strong> to prevent node scaling during the upgrade. Otherwise, the upgrade fails.</li><li id="cce_10_0302__li103137272012">If you locally modify the configuration of a cluster node, the cluster upgrade may fail or the configuration may be lost after the upgrade. Therefore, modify the configurations on the CCE console (cluster or node pool list page) so that they will be automatically inherited during the upgrade.</li><li id="cce_10_0302__li172416189312">During the cluster upgrade, the running workload services will not be interrupted, but access to the API server will be temporarily interrupted.</li><li id="cce_10_0302__li750198619">Before upgrading the cluster, check whether the cluster is healthy. </li><li id="cce_10_0302__li97621713480">To ensure data security, you are advised to back up data before upgrading the cluster. During the upgrade, you are not advised to perform any operations on the cluster.</li><li id="cce_10_0302__li6288174774019">During the cluster upgrade, the <span class="parmname" id="cce_10_0302__parmname086473264112"><b>node.kubernetes.io/upgrade</b></span> taint (the effect is <span class="parmname" id="cce_10_0302__parmname164081438124217"><b>NoSchedule</b></span>) is added to the node. After the cluster upgrade is complete, the taint is removed. Do not add taints with the same key name on the node. Even if the taints have different effects, they may be deleted by the system by mistake after the upgrade.</li></ul>
 </div>
-<div class="section" id="cce_10_0302__section28396102210"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0302__ul197771983210"><li id="cce_10_0302__li77774983217">Currently, only CCE clusters consisting of VM nodes can be upgraded.</li><li id="cce_10_0302__li15441741102515">After the cluster is upgraded, if the containerd vulnerability of the container engine is fixed in <a href="cce_10_0068.html">Cluster Version Release Notes</a>, you need to manually restart containerd for the upgrade to take effect. The same applies to the existing pods.</li><li id="cce_10_0302__li11907171333211">If initContainer or Istio is used in the in-place upgrade of a cluster of v1.15, pay attention to the following restrictions:<p id="cce_10_0302__p429993018385"><a name="cce_10_0302__li11907171333211"></a><a name="li11907171333211"></a>In kubelet 1.16 and later versions, <a href="https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/" target="_blank" rel="noopener noreferrer">QoS classes</a> are different from those in earlier versions. In kubelet 1.15 and earlier versions, only containers in <strong id="cce_10_0302__b132555619306">spec.containers</strong> are counted. In kubelet 1.16 and later versions, containers in both <strong id="cce_10_0302__b1635316653118">spec.containers</strong> and <strong id="cce_10_0302__b636919893112">spec.initContainers</strong> are counted. The QoS class of a pod will change after the upgrade. As a result, the container in the pod restarts. You are advised to modify the QoS class of the service container before the upgrade to avoid this problem. For details, see <a href="#cce_10_0302__table10713231143911">Table 1</a>.</p>
+<div class="section" id="cce_10_0302__section28396102210"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0302__ul197771983210"><li id="cce_10_0302__li153361729154914">Currently, only CCE clusters consisting of VM nodes and CCE Turbo clusters can be upgraded. </li><li id="cce_10_0302__li77774983217">Currently, clusters using private images cannot be upgraded.</li><li id="cce_10_0302__li15441741102515">After the cluster is upgraded, if the containerd vulnerability of the container engine is fixed in <a href="cce_10_0068.html">Cluster Version Release Notes</a>, you need to manually restart containerd for the upgrade to take effect. The same applies to the existing pods.</li><li id="cce_10_0302__li11907171333211">If initContainer or Istio is used in the in-place upgrade of a cluster of v1.15, pay attention to the following restrictions:<p id="cce_10_0302__p429993018385"><a name="cce_10_0302__li11907171333211"></a><a name="li11907171333211"></a>In kubelet 1.16 and later versions, <a href="https://kubernetes.io/docs/tasks/configure-pod-container/quality-service-pod/" target="_blank" rel="noopener noreferrer">QoS classes</a> are different from those in earlier versions. In kubelet 1.15 and earlier versions, only containers in <strong id="cce_10_0302__b132555619306">spec.containers</strong> are counted. In kubelet 1.16 and later versions, containers in both <strong id="cce_10_0302__b1635316653118">spec.containers</strong> and <strong id="cce_10_0302__b636919893112">spec.initContainers</strong> are counted. The QoS class of a pod will change after the upgrade. As a result, the container in the pod restarts. You are advised to modify the QoS class of the service container before the upgrade to avoid this problem. For details, see <a href="#cce_10_0302__table10713231143911">Table 1</a>.</p>
 
-<div class="tablenoborder"><a name="cce_10_0302__table10713231143911"></a><a name="table10713231143911"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0302__table10713231143911" frame="border" border="1" rules="all"><caption><b>Table 1 </b>QoS class changes before and after the upgrade</caption><thead align="left"><tr id="cce_10_0302__row15872113111394"><th align="left" class="cellrowborder" valign="top" width="21.029999999999998%" id="mcps1.3.3.2.3.2.2.5.1.1"><p id="cce_10_0302__p1187243114398">Init Container (Calculated Based on spec.initContainers)</p>
+<div class="tablenoborder"><a name="cce_10_0302__table10713231143911"></a><a name="table10713231143911"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0302__table10713231143911" frame="border" border="1" rules="all"><caption><b>Table 1 </b>QoS class changes before and after the upgrade</caption><thead align="left"><tr id="cce_10_0302__row15872113111394"><th align="left" class="cellrowborder" valign="top" width="21.029999999999998%" id="mcps1.3.3.2.4.2.2.5.1.1"><p id="cce_10_0302__p1187243114398">Init Container (Calculated Based on spec.initContainers)</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="32.029999999999994%" id="mcps1.3.3.2.3.2.2.5.1.2"><p id="cce_10_0302__p2872103117391">Service Container (Calculated Based on spec.containers)</p>
+<th align="left" class="cellrowborder" valign="top" width="32.029999999999994%" id="mcps1.3.3.2.4.2.2.5.1.2"><p id="cce_10_0302__p2872103117391">Service Container (Calculated Based on spec.containers)</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="25.77%" id="mcps1.3.3.2.3.2.2.5.1.3"><p id="cce_10_0302__p1872103123910">Pod (Calculated Based on spec.containers and spec.initContainers)</p>
+<th align="left" class="cellrowborder" valign="top" width="25.77%" id="mcps1.3.3.2.4.2.2.5.1.3"><p id="cce_10_0302__p1872103123910">Pod (Calculated Based on spec.containers and spec.initContainers)</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="21.17%" id="mcps1.3.3.2.3.2.2.5.1.4"><p id="cce_10_0302__p15662458395">Impacted or Not</p>
+<th align="left" class="cellrowborder" valign="top" width="21.17%" id="mcps1.3.3.2.4.2.2.5.1.4"><p id="cce_10_0302__p15662458395">Impacted or Not</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0302__row8873163113399"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1487312310395">Guaranteed</p>
+<tbody><tr id="cce_10_0302__row8873163113399"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p1487312310395">Guaranteed</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p1887343143917">Besteffort</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p1887343143917">Besteffort</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p12873123123916">Burstable</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p12873123123916">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p1566134512392">Yes</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p1566134512392">Yes</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row187318311393"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1873133113918">Guaranteed</p>
+<tr id="cce_10_0302__row187318311393"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p1873133113918">Guaranteed</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p9873143117395">Burstable</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p9873143117395">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p11873123119398">Burstable</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p11873123119398">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p15661145143916">No</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p15661145143916">No</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row98731931173919"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p198731231103911">Guaranteed</p>
+<tr id="cce_10_0302__row98731931173919"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p198731231103911">Guaranteed</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p1587363111395">Guaranteed</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p1587363111395">Guaranteed</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p19873193193910">Guaranteed</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p19873193193910">Guaranteed</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p16153160406">No</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p16153160406">No</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row38731931163912"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1873731173913">Besteffort</p>
+<tr id="cce_10_0302__row38731931163912"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p1873731173913">Besteffort</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p14873173163917">Besteffort</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p14873173163917">Besteffort</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p178735312393">Besteffort</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p178735312393">Besteffort</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p16211416114014">No</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p16211416114014">No</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row13873103103915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p13873133114399">Besteffort</p>
+<tr id="cce_10_0302__row13873103103915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p13873133114399">Besteffort</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p4873123173916">Burstable</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p4873123173916">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p1787315314391">Burstable</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p1787315314391">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p52715163404">No</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p52715163404">No</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row138731031183915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p187393113399">Besteffort</p>
+<tr id="cce_10_0302__row138731031183915"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p187393113399">Besteffort</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p887383163919">Guaranteed</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p887383163919">Guaranteed</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p88732031133915">Burstable</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p88732031133915">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p7954610164017">Yes</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p7954610164017">Yes</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row19873153163914"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p287313311399">Burstable</p>
+<tr id="cce_10_0302__row19873153163914"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p287313311399">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p17873153183912">Besteffort</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p17873153183912">Besteffort</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p1612015308455">Burstable</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p1612015308455">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p5357101016408">Yes</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p5357101016408">Yes</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row087316312398"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1587383119390">Burstable</p>
+<tr id="cce_10_0302__row087316312398"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p1587383119390">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p2873131163913">Burstable</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p2873131163913">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p013073012452">Burstable</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p013073012452">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p277154516391">No</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p277154516391">No</p>
 </td>
 </tr>
-<tr id="cce_10_0302__row087311312391"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.3.2.2.5.1.1 "><p id="cce_10_0302__p1087313153916">Burstable</p>
+<tr id="cce_10_0302__row087311312391"><td class="cellrowborder" valign="top" width="21.029999999999998%" headers="mcps1.3.3.2.4.2.2.5.1.1 "><p id="cce_10_0302__p1087313153916">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.3.2.2.5.1.2 "><p id="cce_10_0302__p12873103193912">Guaranteed</p>
+<td class="cellrowborder" valign="top" width="32.029999999999994%" headers="mcps1.3.3.2.4.2.2.5.1.2 "><p id="cce_10_0302__p12873103193912">Guaranteed</p>
 </td>
-<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.3.2.2.5.1.3 "><p id="cce_10_0302__p121379308456">Burstable</p>
+<td class="cellrowborder" valign="top" width="25.77%" headers="mcps1.3.3.2.4.2.2.5.1.3 "><p id="cce_10_0302__p121379308456">Burstable</p>
 </td>
-<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.3.2.2.5.1.4 "><p id="cce_10_0302__p360315910408">Yes</p>
+<td class="cellrowborder" valign="top" width="21.17%" headers="mcps1.3.3.2.4.2.2.5.1.4 "><p id="cce_10_0302__p360315910408">Yes</p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0305.html b/docs/cce/umn/cce_10_0305.html
index d236fb11..1181c559 100644
--- a/docs/cce/umn/cce_10_0305.html
+++ b/docs/cce/umn/cce_10_0305.html
@@ -1,6 +1,6 @@
 <a name="cce_10_0305"></a><a name="cce_10_0305"></a>
 
-<h1 class="topictitle1">Storage (FlexVolume)</h1>
+<h1 class="topictitle1">Storage Management: FlexVolume (Deprecated)</h1>
 <div id="body0000001113882212"><p id="cce_10_0305__p8060118"></p>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0306.html b/docs/cce/umn/cce_10_0306.html
index c3741037..419beaf9 100644
--- a/docs/cce/umn/cce_10_0306.html
+++ b/docs/cce/umn/cce_10_0306.html
@@ -11,48 +11,48 @@
 <div class="section" id="cce_10_0306__section366174392017"><h4 class="sectiontitle">Checking Storage Add-ons</h4><ol id="cce_10_0306__ol235517511467"><li id="cce_10_0306__li183555515614"><span>Log in to the CCE console.</span></li><li id="cce_10_0306__li1333875311614"><span>In the navigation tree on the left, click <strong id="cce_10_0306__b179577122116">Add-ons</strong>.</span></li><li id="cce_10_0306__li12239545772"><span>Click the <strong id="cce_10_0306__b2392191441118">Add-on Instance</strong> tab.</span></li><li id="cce_10_0306__li86216391082"><span>Select a cluster in the upper right corner. The default storage add-on installed during cluster creation is displayed.</span></li></ol>
 </div>
 <div class="section" id="cce_10_0306__section135901429195719"><h4 class="sectiontitle">Differences Between CSI and FlexVolume Plug-ins</h4>
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0306__cce_10_0307_table9704165418310" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CSI and FlexVolume</caption><thead align="left"><tr id="cce_10_0306__cce_10_0307_row1757135413114"><th align="left" class="cellrowborder" valign="top" width="16.520000000000003%" id="mcps1.3.7.2.2.5.1.1"><p id="cce_10_0306__cce_10_0307_p177571954173119">Kubernetes Solution</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0306__en-us_topic_0000001199181198_table9704165418310" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CSI and FlexVolume</caption><thead align="left"><tr id="cce_10_0306__en-us_topic_0000001199181198_row1757135413114"><th align="left" class="cellrowborder" valign="top" width="16.520000000000003%" id="mcps1.3.7.2.2.5.1.1"><p id="cce_10_0306__en-us_topic_0000001199181198_p177571954173119">Kubernetes Solution</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="13.450000000000001%" id="mcps1.3.7.2.2.5.1.2"><p id="cce_10_0306__cce_10_0307_p105501460334">CCE Add-on</p>
+<th align="left" class="cellrowborder" valign="top" width="13.450000000000001%" id="mcps1.3.7.2.2.5.1.2"><p id="cce_10_0306__en-us_topic_0000001199181198_p105501460334">CCE Add-on</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="38.57%" id="mcps1.3.7.2.2.5.1.3"><p id="cce_10_0306__cce_10_0307_p575715443110">Feature</p>
+<th align="left" class="cellrowborder" valign="top" width="38.57%" id="mcps1.3.7.2.2.5.1.3"><p id="cce_10_0306__en-us_topic_0000001199181198_p575715443110">Feature</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="31.46%" id="mcps1.3.7.2.2.5.1.4"><p id="cce_10_0306__cce_10_0307_p97571054183119">Recommendation</p>
+<th align="left" class="cellrowborder" valign="top" width="31.46%" id="mcps1.3.7.2.2.5.1.4"><p id="cce_10_0306__en-us_topic_0000001199181198_p97571054183119">Recommendation</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0306__cce_10_0307_row5119842113215"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.7.2.2.5.1.1 "><p id="cce_10_0306__cce_10_0307_p97574546316">CSI</p>
+<tbody><tr id="cce_10_0306__en-us_topic_0000001199181198_row5119842113215"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.7.2.2.5.1.1 "><p id="cce_10_0306__en-us_topic_0000001199181198_p97574546316">CSI</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.7.2.2.5.1.2 "><p id="cce_10_0306__cce_10_0307_p0550106143311">Everest</p>
+<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.7.2.2.5.1.2 "><p id="cce_10_0306__en-us_topic_0000001199181198_p0550106143311">Everest</p>
 </td>
-<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.7.2.2.5.1.3 "><p id="cce_10_0306__cce_10_0307_p137578549318">CSI was developed as a standard for exposing arbitrary block and file storage storage systems to containerized workloads. Using CSI, third-party storage providers can deploy plugins exposing new storage systems in Kubernetes without having to touch the core Kubernetes code. In CCE, the everest add-on is installed by default in clusters of Kubernetes v1.15 and later to connect to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
-<p id="cce_10_0306__cce_10_0307_p11757754123115">The everest add-on consists of two parts:</p>
-<ul id="cce_10_0306__cce_10_0307_ul6619114334611"><li id="cce_10_0306__cce_10_0307_li1961910436465"><strong id="cce_10_0306__cce_10_0307_b5589145713475">everest-csi-controller</strong> for storage volume creation, deletion, capacity expansion, and cloud disk snapshots</li><li id="cce_10_0306__cce_10_0307_li7619154310461"><strong id="cce_10_0306__cce_10_0307_b283716015485">everest-csi-driver</strong> for mounting, unmounting, and formatting storage volumes on nodes</li></ul>
-<p id="cce_10_0306__cce_10_0307_p1387091118582">For details, see <a href="cce_10_0066.html">everest</a>.</p>
+<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.7.2.2.5.1.3 "><p id="cce_10_0306__en-us_topic_0000001199181198_p137578549318">CSI was developed as a standard for exposing arbitrary block and file storage storage systems to containerized workloads. Using CSI, third-party storage providers can deploy plugins exposing new storage systems in Kubernetes without having to touch the core Kubernetes code. In CCE, the everest add-on is installed by default in clusters of Kubernetes v1.15 and later to connect to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
+<p id="cce_10_0306__en-us_topic_0000001199181198_p11757754123115">The everest add-on consists of two parts:</p>
+<ul id="cce_10_0306__en-us_topic_0000001199181198_ul6619114334611"><li id="cce_10_0306__en-us_topic_0000001199181198_li1961910436465"><strong id="cce_10_0306__en-us_topic_0000001199181198_b5589145713475">everest-csi-controller</strong> for storage volume creation, deletion, capacity expansion, and cloud disk snapshots</li><li id="cce_10_0306__en-us_topic_0000001199181198_li7619154310461"><strong id="cce_10_0306__en-us_topic_0000001199181198_b283716015485">everest-csi-driver</strong> for mounting, unmounting, and formatting storage volumes on nodes</li></ul>
+<p id="cce_10_0306__en-us_topic_0000001199181198_p1387091118582">For details, see <a href="cce_10_0066.html">everest</a>.</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.7.2.2.5.1.4 "><p id="cce_10_0306__cce_10_0307_p516783510588">The <a href="cce_10_0066.html">everest</a> add-on is installed by default in clusters of <strong id="cce_10_0306__cce_10_0307_b473519624815">v1.15 and later</strong>. CCE will mirror the Kubernetes community by providing continuous support for updated CSI capabilities.</p>
+<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.7.2.2.5.1.4 "><p id="cce_10_0306__en-us_topic_0000001199181198_p516783510588">The <a href="cce_10_0066.html">everest</a> add-on is installed by default in clusters of <strong id="cce_10_0306__en-us_topic_0000001199181198_b473519624815">v1.15 and later</strong>. CCE will mirror the Kubernetes community by providing continuous support for updated CSI capabilities.</p>
 </td>
 </tr>
-<tr id="cce_10_0306__cce_10_0307_row4757195473110"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.7.2.2.5.1.1 "><p id="cce_10_0306__cce_10_0307_p1175710548316">Flexvolume</p>
+<tr id="cce_10_0306__en-us_topic_0000001199181198_row4757195473110"><td class="cellrowborder" valign="top" width="16.520000000000003%" headers="mcps1.3.7.2.2.5.1.1 "><p id="cce_10_0306__en-us_topic_0000001199181198_p1175710548316">Flexvolume</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.7.2.2.5.1.2 "><p id="cce_10_0306__cce_10_0307_p45508612335">storage-driver</p>
+<td class="cellrowborder" valign="top" width="13.450000000000001%" headers="mcps1.3.7.2.2.5.1.2 "><p id="cce_10_0306__en-us_topic_0000001199181198_p45508612335">storage-driver</p>
 </td>
-<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.7.2.2.5.1.3 "><p id="cce_10_0306__cce_10_0307_p19757145483115">FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes since version 1.2 (before CSI). CCE provided FlexVolume volumes through the storage-driver add-on installed in clusters of Kubernetes v1.13 and earlier versions. This add-on connects clusters to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
-<p id="cce_10_0306__cce_10_0307_p16757654153113">For details, see <a href="cce_10_0127.html">storage-driver</a>.</p>
+<td class="cellrowborder" valign="top" width="38.57%" headers="mcps1.3.7.2.2.5.1.3 "><p id="cce_10_0306__en-us_topic_0000001199181198_p19757145483115">FlexVolume is an out-of-tree plugin interface that has existed in Kubernetes since version 1.2 (before CSI). CCE provided FlexVolume volumes through the storage-driver add-on installed in clusters of Kubernetes v1.13 and earlier versions. This add-on connects clusters to storage services (EVS, OBS, SFS, and SFS Turbo).</p>
+<p id="cce_10_0306__en-us_topic_0000001199181198_p16757654153113">For details, see <a href="cce_10_0127.html">storage-driver</a>.</p>
 </td>
-<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.7.2.2.5.1.4 "><p id="cce_10_0306__cce_10_0307_p18569134265811">For the created clusters of <strong id="cce_10_0306__cce_10_0307_b13864151019332">v1.13 or earlier</strong>, the installed FlexVolume plug-in (CCE add-on <a href="cce_10_0127.html">storage-driver</a>) can still be used. CCE stops providing update support for this add-on, and you are advised to <a href="cce_10_0197.html">upgrade these clusters</a>.</p>
+<td class="cellrowborder" valign="top" width="31.46%" headers="mcps1.3.7.2.2.5.1.4 "><p id="cce_10_0306__en-us_topic_0000001199181198_p18569134265811">For the created clusters of <strong id="cce_10_0306__en-us_topic_0000001199181198_b13864151019332">v1.13 or earlier</strong>, the installed FlexVolume plug-in (CCE add-on <a href="cce_10_0127.html">storage-driver</a>) can still be used. CCE stops providing update support for this add-on, and you are advised to <a href="cce_10_0197.html">upgrade these clusters</a>.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
-<div class="note" id="cce_10_0306__cce_10_0307_note838817912503"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0306__cce_10_0307_ul1596014104509"><li id="cce_10_0306__cce_10_0307_li1796017103508">A cluster can use only one type of storage plug-ins.</li><li id="cce_10_0306__cce_10_0307_li10960910135015">The FlexVolume plug-in cannot be replaced by the CSI plug-in in clusters of v1.13 or earlier. You can only upgrade these clusters. For details, see <a href="cce_10_0197.html#cce_10_0197__section19981121648">Cluster Upgrade</a>.</li></ul>
+<div class="note" id="cce_10_0306__en-us_topic_0000001199181198_note838817912503"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0306__en-us_topic_0000001199181198_ul1596014104509"><li id="cce_10_0306__en-us_topic_0000001199181198_li1796017103508">A cluster can use only one type of storage plug-ins.</li><li id="cce_10_0306__en-us_topic_0000001199181198_li10960910135015">The FlexVolume plug-in cannot be replaced by the CSI plug-in in clusters of v1.13 or earlier. You can only upgrade these clusters. For details, see <a href="cce_10_0197.html#cce_10_0197__section19981121648">Cluster Upgrade</a>.</li></ul>
 </div></div>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage Management: FlexVolume (Deprecated)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0307.html b/docs/cce/umn/cce_10_0307.html
index 4acf97a4..259dfcf5 100644
--- a/docs/cce/umn/cce_10_0307.html
+++ b/docs/cce/umn/cce_10_0307.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Overview</h1>
 <div id="body0000001160442125"><div class="section" id="cce_10_0307__section5296105719142"><h4 class="sectiontitle">Volume</h4><p id="cce_10_0307__p1388234820249">On-disk files in a container are ephemeral, which will be lost when the container crashes and are difficult to be shared between containers running together in a pod. The Kubernetes volume abstraction solves both of these problems. Volumes cannot be independently created, but defined in the pod spec. All containers in a pod can access its volumes, but the volumes must have been mounted to any directory in a container.</p>
 <p id="cce_10_0307__p1271419187710">The following figure shows how a storage volume is used between containers in a pod.</p>
-<p id="cce_10_0307__p9405145214716"><span><img id="cce_10_0307__image1835215316361" src="en-us_image_0000001199501276.png"></span></p>
+<p id="cce_10_0307__p9405145214716"><span><img id="cce_10_0307__image1835215316361" src="en-us_image_0000001517903088.png"></span></p>
 <p id="cce_10_0307__p1371417181574">A volume will no longer exist if the pod to which it is mounted does not exist. However, files in the volume may outlive the volume, depending on the volume type.</p>
 </div>
 <div class="section" id="cce_10_0307__section16559121287"><a name="cce_10_0307__section16559121287"></a><a name="section16559121287"></a><h4 class="sectiontitle">Volume Types</h4><p id="cce_10_0307__p171441813712">Volumes can be classified into local volumes and cloud volumes.</p>
@@ -19,7 +19,7 @@
 <div class="section" id="cce_10_0307__section1181185971610"><h4 class="sectiontitle">PV and PVC</h4><p id="cce_10_0307__p188370425547">Kubernetes provides PersistentVolumes (PVs) and PersistentVolumeClaims (PVCs) to abstract details of how storage is provided from how it is consumed. You can request specific size of storage when needed, just like pods can request specific levels of resources (CPU and memory).</p>
 <ul id="cce_10_0307__ul167231941316"><li id="cce_10_0307__li1672316411914">PV: A PV is a persistent storage volume in a cluster. Same as a node, a PV is a cluster-level resource. </li><li id="cce_10_0307__li1872304120111">PVC: A PVC describes a workload's request for storage resources. This request consumes existing PVs in the cluster. If there is no PV available, underlying storage and PVs are dynamically created. When creating a PVC, you need to describe the attributes of the requested persistent storage, such as the size of the volume and the read/write permissions.</li></ul>
 <p id="cce_10_0307__p46895594259">You can bind PVCs to PVs in a pod so that the pod can use storage resources. The following figure shows the relationship between PVs and PVCs.</p>
-<div class="fignone" id="cce_10_0307__fig149881117222"><span class="figcap"><b>Figure 1 </b>PVC-to-PV binding</span><br><span><img id="cce_10_0307__image48944742212" src="en-us_image_0000001244141191.png"></span></div>
+<div class="fignone" id="cce_10_0307__fig149881117222"><span class="figcap"><b>Figure 1 </b>PVC-to-PV binding</span><br><span><img id="cce_10_0307__image48944742212" src="en-us_image_0000001518222608.png"></span></div>
 <p id="cce_10_0307__p55089134460">PVs describes storage resources in the cluster. PVCs are requests for those resources. The following sections will describe how to use kubectl to connect to storage resources.</p>
 <p id="cce_10_0307__p670213323418">If you do not want to create storage resources or PVs manually, you can use <a href="#cce_10_0307__section19926174743310">StorageClasses</a>.</p>
 </div>
@@ -34,7 +34,7 @@ csi-obs             everest-csi-provisioner         17d          # Storage class
 <p id="cce_10_0307__p1348743213278">After a StorageClass is set, PVs can be automatically created and maintained. You only need to specify the StorageClass when creating a PVC, which greatly reduces the workload.</p>
 </div>
 <div class="section" id="cce_10_0307__section326216625217"><h4 class="sectiontitle">Cloud Services for Container Storage</h4><p id="cce_10_0307__p1633317483117">CCE allows you to mount local and cloud storage volumes listed in <a href="cce_10_0307.html#cce_10_0307__section16559121287">Volume Types</a> to your pods. Their features are described below.</p>
-<div class="fignone" id="cce_10_0307__fig128444399616"><span class="figcap"><b>Figure 2 </b>Volume types supported by CCE</span><br><span><img id="cce_10_0307__image165014415108" src="en-us_image_0000001203385342.png"></span></div>
+<div class="fignone" id="cce_10_0307__fig128444399616"><span class="figcap"><b>Figure 2 </b>Volume types supported by CCE</span><br><span><img id="cce_10_0307__image165014415108" src="en-us_image_0000001568902557.png"></span></div>
 
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0307__table1381911241505" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Detailed description of cloud storage services</caption><thead align="left"><tr id="cce_10_0307__row681972410017"><th align="left" class="cellrowborder" valign="top" width="12.2%" id="mcps1.3.6.4.2.6.1.1"><p id="cce_10_0307__p1182114718218">Dimension</p>
 </th>
diff --git a/docs/cce/umn/cce_10_0309.html b/docs/cce/umn/cce_10_0309.html
index 162fc2e9..0a3dfac7 100644
--- a/docs/cce/umn/cce_10_0309.html
+++ b/docs/cce/umn/cce_10_0309.html
@@ -15,7 +15,7 @@
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage Management: FlexVolume (Deprecated)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0310.html b/docs/cce/umn/cce_10_0310.html
index 4c4ebe24..5d193bf0 100644
--- a/docs/cce/umn/cce_10_0310.html
+++ b/docs/cce/umn/cce_10_0310.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Overview</h1>
 <div id="body8662426"><p id="cce_10_0310__en-us_topic_0000001244141077_p52224919455">To achieve persistent storage, CCE allows you to mount the storage volumes created from Elastic Volume Service (EVS) disks to a path of a container. When the container is migrated, the mounted EVS volumes are also migrated. By using EVS volumes, you can mount the remote file directory of storage system into a container so that data in the data volume is permanently preserved even when the container is deleted.</p>
-<div class="fignone" id="cce_10_0310__en-us_topic_0000001244141077_fig11623870218"><span class="figcap"><b>Figure 1 </b>Mounting EVS volumes to CCE</span><br><span><img id="cce_10_0310__en-us_topic_0000001244141077_image1162318782111" src="en-us_image_0000001248663503.png"></span></div>
+<div class="fignone" id="cce_10_0310__en-us_topic_0000001244141077_fig11623870218"><span class="figcap"><b>Figure 1 </b>Mounting EVS volumes to CCE</span><br><span><img id="cce_10_0310__en-us_topic_0000001244141077_image1162318782111" src="en-us_image_0000001517903060.png"></span></div>
 <div class="section" id="cce_10_0310__en-us_topic_0000001244141077_section729922716246"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0310__en-us_topic_0000001244141077_ul8811135132413"><li id="cce_10_0310__en-us_topic_0000001244141077_li1231485215191"><strong id="cce_10_0310__b1621414568346">User-friendly</strong>: Similar to formatting disks for on-site servers in traditional layouts, you can format block storage (disks) mounted to cloud servers, and create file systems on them.</li><li id="cce_10_0310__en-us_topic_0000001244141077_li1469314546190"><strong id="cce_10_0310__b5310124734017">Data isolation</strong>: Each server uses an independent block storage device (disk).</li><li id="cce_10_0310__en-us_topic_0000001244141077_li14729557151916"><strong id="cce_10_0310__b422439184118">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_10_0310__en-us_topic_0000001244141077_li12294201200"><strong id="cce_10_0310__b1649517362468">Capacity and performance</strong>: The capacity of a single volume is limited (TB-level), but the performance is excellent (ms-level read/write I/O latency).</li><li id="cce_10_0310__en-us_topic_0000001244141077_li733884793118"><strong id="cce_10_0310__b18677134312474">Restriction</strong>: EVS disks that have partitions or have non-ext4 file systems cannot be imported.</li><li id="cce_10_0310__en-us_topic_0000001244141077_li1896911521515"><strong id="cce_10_0310__b156774455114">Applications</strong>: HPC, enterprise core applications running in clusters, enterprise application systems, and development and testing. These volumes are often used by single-pod Deployments and jobs, or exclusively by each pod in a StatefulSet. EVS disks are non-shared storage and cannot be attached to multiple nodes at the same time. If two pods are configured to use the same EVS disk and the two pods are scheduled to different nodes, one pod cannot be started because the EVS disk cannot be attached to it.</li></ul>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0313.html b/docs/cce/umn/cce_10_0313.html
index 4aca363c..d6217c8b 100644
--- a/docs/cce/umn/cce_10_0313.html
+++ b/docs/cce/umn/cce_10_0313.html
@@ -1,7 +1,7 @@
 <a name="cce_10_0313"></a><a name="cce_10_0313"></a>
 
 <h1 class="topictitle1">(kubectl) Creating a PV from an Existing EVS Disk</h1>
-<div id="body0000001113882218"><div class="section" id="cce_10_0313__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0313__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div id="body0000001113882218"><div class="section" id="cce_10_0313__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0313__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0313__section265070105619"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0313__ol168961948163115"><li id="cce_10_0313__li147842268487"><span>Log in to the EVS console, create an EVS disk, and record the volume ID, capacity, and disk type of the EVS disk.</span></li><li id="cce_10_0313__li2705143583215"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0313__li149938217378"><span>Create two YAML files for creating the PersistentVolume (PV) and PersistentVolumeClaim (PVC). Assume that the file names are <strong id="cce_10_0313__b10731184951014">pv-evs-example.yaml</strong> and <strong id="cce_10_0313__b197322495106">pvc-evs-example.yaml</strong>.</span><p><p id="cce_10_0313__p291112919387"><strong id="cce_10_0313__b169111499381">touch pv-evs-example.yaml</strong> <strong id="cce_10_0313__b757265317402">pvc-evs-example.yaml</strong></p>
 
@@ -240,7 +240,7 @@ spec:
 </tr>
 <tr id="cce_10_0313__row5900205455714"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p2900105485718">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p14900354135717">EVS disk type. Supported values: <span id="cce_10_0313__cce_10_0313_text1523372214318">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)</span></p>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.2 "><p id="cce_10_0313__p14900354135717">EVS disk type. Supported values: <span id="cce_10_0313__en-us_topic_0000001244101083_text1523372214318">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)</span></p>
 </td>
 </tr>
 <tr id="cce_10_0313__row11900354155717"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.6.1.3.2.3.1.1 "><p id="cce_10_0313__p14900175410578">driver</p>
@@ -372,7 +372,7 @@ spec:
 </tr>
 <tr id="cce_10_0313__row913114238296"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p51311223182911">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p1213192316299">EVS disk type. Supported values: <span id="cce_10_0313__cce_10_0313_text1523372214318_1">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)</span></p>
+<td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.2 "><p id="cce_10_0313__p1213192316299">EVS disk type. Supported values: <span id="cce_10_0313__en-us_topic_0000001244101083_text1523372214318_1">Common I/O (SATA), High I/O (SAS), and Ultra-high I/O (SSD)</span></p>
 </td>
 </tr>
 <tr id="cce_10_0313__row1813272362913"><td class="cellrowborder" valign="top" width="43.81%" headers="mcps1.3.2.2.3.2.8.1.3.2.3.1.1 "><p id="cce_10_0313__p71311323132913">driver</p>
diff --git a/docs/cce/umn/cce_10_0314.html b/docs/cce/umn/cce_10_0314.html
index eb8d01df..a1bec27a 100644
--- a/docs/cce/umn/cce_10_0314.html
+++ b/docs/cce/umn/cce_10_0314.html
@@ -1,11 +1,11 @@
 <a name="cce_10_0314"></a><a name="cce_10_0314"></a>
 
 <h1 class="topictitle1">(kubectl) Creating a Pod Mounted with an EVS Volume</h1>
-<div id="body0000001113722322"><div class="section" id="cce_10_0314__section1789161805617"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0314__cce_10_0257_p19113471414">After an EVS volume is created or imported to CCE, you can mount it to a workload.</p>
-<div class="notice" id="cce_10_0314__cce_10_0257_note151273161411"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0314__cce_10_0257_p1812771181417">EVS disks cannot be attached across AZs. Before mounting a volume, you can run the <strong id="cce_10_0314__cce_10_0257_b1476484310226">kubectl get pvc</strong> command to query the available PVCs in the AZ where the current cluster is located.</p>
+<div id="body0000001113722322"><div class="section" id="cce_10_0314__section1789161805617"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0314__en-us_topic_0000001243981075_p19113471414">After an EVS volume is created or imported to CCE, you can mount it to a workload.</p>
+<div class="notice" id="cce_10_0314__en-us_topic_0000001243981075_note151273161411"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0314__en-us_topic_0000001243981075_p1812771181417">EVS disks cannot be attached across AZs. Before mounting a volume, you can run the <strong id="cce_10_0314__en-us_topic_0000001243981075_b1476484310226">kubectl get pvc</strong> command to query the available PVCs in the AZ where the current cluster is located.</p>
 </div></div>
 </div>
-<div class="section" id="cce_10_0314__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0314__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0314__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0314__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0314__section421772310564"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0314__ol49241352137"><li id="cce_10_0314__li251694784112"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0314__li109251156137"><span>Run the following commands to configure the <strong id="cce_10_0314__b194574162918">evs-deployment-example.yaml</strong> file, which is used to create a Deployment.</span><p><p id="cce_10_0314__p5929195141316"><strong id="cce_10_0314__b193391624515">touch evs-deployment-example.yaml</strong></p>
 <p id="cce_10_0314__p17933254133"><strong id="cce_10_0314__b1595201624516">vi evs-deployment-example.yaml</strong></p>
diff --git a/docs/cce/umn/cce_10_0315.html b/docs/cce/umn/cce_10_0315.html
index 135337a9..61481623 100644
--- a/docs/cce/umn/cce_10_0315.html
+++ b/docs/cce/umn/cce_10_0315.html
@@ -17,7 +17,7 @@
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage Management: FlexVolume (Deprecated)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0316.html b/docs/cce/umn/cce_10_0316.html
index 7004742a..c4259a8b 100644
--- a/docs/cce/umn/cce_10_0316.html
+++ b/docs/cce/umn/cce_10_0316.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Overview</h1>
 <div id="body8662426"><p id="cce_10_0316__en-us_topic_0000001199021180_p4264101318317">CCE allows you to mount a volume created from a Scalable File Service (SFS) file system to a container to store data persistently. SFS volumes are commonly used in ReadWriteMany scenarios, such as media processing, content management, big data analysis, and workload process analysis.</p>
-<div class="fignone" id="cce_10_0316__en-us_topic_0000001199021180_fig1743195012373"><span class="figcap"><b>Figure 1 </b>Mounting SFS volumes to CCE</span><br><span><img id="cce_10_0316__en-us_topic_0000001199021180_image114311750193716" src="en-us_image_0000001201823500.png"></span></div>
+<div class="fignone" id="cce_10_0316__en-us_topic_0000001199021180_fig1743195012373"><span class="figcap"><b>Figure 1 </b>Mounting SFS volumes to CCE</span><br><span><img id="cce_10_0316__en-us_topic_0000001199021180_image114311750193716" src="en-us_image_0000001568822709.png"></span></div>
 <div class="section" id="cce_10_0316__en-us_topic_0000001199021180_section313719276380"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0316__en-us_topic_0000001199021180_ul10598125623816"><li id="cce_10_0316__en-us_topic_0000001199021180_li3598556163813"><strong id="cce_10_0316__b8472174211615">Standard file protocols</strong>: You can mount file systems as volumes to servers, the same as using local directories.</li><li id="cce_10_0316__en-us_topic_0000001199021180_li45981656153819"><strong id="cce_10_0316__b14430648762">Data sharing</strong>: The same file system can be mounted to multiple servers, so that data can be shared.</li><li id="cce_10_0316__en-us_topic_0000001199021180_li1859895616386"><strong id="cce_10_0316__b391211521667">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_10_0316__en-us_topic_0000001199021180_li1359865617380"><strong id="cce_10_0316__b10709601472">Capacity and performance</strong>: The capacity of a single file system is high (PB level) and the performance is excellent (ms-level read/write I/O latency).</li><li id="cce_10_0316__en-us_topic_0000001199021180_li953501813619"><strong id="cce_10_0316__b12109155410712">Use cases</strong>: Deployments/StatefulSets in the ReadWriteMany mode and jobs created for high-performance computing (HPC), media processing, content management, web services, big data analysis, and workload process analysis</li></ul>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0318.html b/docs/cce/umn/cce_10_0318.html
index f2957fa0..1a9ba0f3 100644
--- a/docs/cce/umn/cce_10_0318.html
+++ b/docs/cce/umn/cce_10_0318.html
@@ -1,7 +1,7 @@
 <a name="cce_10_0318"></a><a name="cce_10_0318"></a>
 
 <h1 class="topictitle1">(kubectl) Automatically Creating an SFS Volume</h1>
-<div id="body0000001113722324"><div class="section" id="cce_10_0318__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0318__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div id="body0000001113722324"><div class="section" id="cce_10_0318__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0318__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0318__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0318__ol1685919529594"><li id="cce_10_0318__li158591052155914"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0318__li138592521596"><span>Run the following commands to configure the <strong id="cce_10_0318__b18317185754417">pvc-sfs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_10_0318__p12859155220599"><b><span class="cmdname" id="cce_10_0318__cmdname836284582311">touch pvc-sfs-auto-example.yaml</span></b></p>
 <p id="cce_10_0318__p1585925265913"><b><span class="cmdname" id="cce_10_0318__cmdname5363345162311">vi pvc-sfs-auto-example.yaml</span></b></p>
diff --git a/docs/cce/umn/cce_10_0319.html b/docs/cce/umn/cce_10_0319.html
index 8069d6cd..b5c75a50 100644
--- a/docs/cce/umn/cce_10_0319.html
+++ b/docs/cce/umn/cce_10_0319.html
@@ -1,7 +1,7 @@
 <a name="cce_10_0319"></a><a name="cce_10_0319"></a>
 
 <h1 class="topictitle1">(kubectl) Creating a PV from an Existing SFS File System</h1>
-<div id="body0000001160442133"><div class="section" id="cce_10_0319__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0319__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div id="body0000001160442133"><div class="section" id="cce_10_0319__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0319__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0319__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0319__ol17848656773"><li id="cce_10_0319__li12896194833111"><span>Log in to the SFS console, create a file system, and record the file system ID, shared path, and capacity.</span></li><li id="cce_10_0319__li2705143583215"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0319__li149938217378"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_10_0319__b11861877583">pv-sfs-example.yaml</strong> and <strong id="cce_10_0319__b1586137165813">pvc-sfs-example.yaml</strong>.</span><p><p id="cce_10_0319__p13633619911"><strong id="cce_10_0319__b1267361291">touch pv-sfs-example.yaml</strong> <strong id="cce_10_0319__b10457202293811">pvc-sfs-example.yaml</strong></p>
 
diff --git a/docs/cce/umn/cce_10_0320.html b/docs/cce/umn/cce_10_0320.html
index e8605db3..68063f6e 100644
--- a/docs/cce/umn/cce_10_0320.html
+++ b/docs/cce/umn/cce_10_0320.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an SFS Volume</h1>
 <div id="body0000001160562123"><div class="section" id="cce_10_0320__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0320__p0780175013561">After an SFS volume is created or imported to CCE, you can mount the volume to a workload.</p>
 </div>
-<div class="section" id="cce_10_0320__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0320__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0320__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0320__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0320__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0320__ol05361840142120"><li id="cce_10_0320__li1210641545116"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0320__li3590240112114"><span>Run the following commands to configure the <strong id="cce_10_0320__b14221145814352">sfs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_10_0320__p459116406215"><strong id="cce_10_0320__b18593740162114"><em id="cce_10_0320__i18593440172118">touch sfs-deployment-example.yaml</em></strong></p>
 <p id="cce_10_0320__p859584012117"><strong id="cce_10_0320__b14595540112113"><em id="cce_10_0320__i10597104012120">vi sfs-deployment-example.yaml</em></strong></p>
diff --git a/docs/cce/umn/cce_10_0321.html b/docs/cce/umn/cce_10_0321.html
index cc566cc8..4ff7dd8c 100644
--- a/docs/cce/umn/cce_10_0321.html
+++ b/docs/cce/umn/cce_10_0321.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an SFS Volume</h1>
 <div id="body0000001113882224"><div class="section" id="cce_10_0321__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0321__p11734132718149">CCE allows you to use an existing SFS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).</p>
 </div>
-<div class="section" id="cce_10_0321__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0321__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0321__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0321__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0321__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0321__ol1350515318149"><li id="cce_10_0321__li85058532149"><span>Create an SFS volume by referring to <a href="cce_10_0318.html">(kubectl) Automatically Creating an SFS Volume</a> and record the volume name.</span></li><li id="cce_10_0321__li7504151211813"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0321__li8612171441813"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0321__b825271183913">sfs-statefulset-example</strong>.<strong id="cce_10_0321__b11253121133914">yaml</strong>.</span><p><p id="cce_10_0321__p13379173818187"><strong id="cce_10_0321__b18379538171814">touch sfs-statefulset-example.yaml</strong></p>
 <p id="cce_10_0321__p3379203871816"><strong id="cce_10_0321__b2037953881811">vi sfs-statefulset-example.yaml</strong></p>
diff --git a/docs/cce/umn/cce_10_0322.html b/docs/cce/umn/cce_10_0322.html
index 9b022042..2baca946 100644
--- a/docs/cce/umn/cce_10_0322.html
+++ b/docs/cce/umn/cce_10_0322.html
@@ -17,7 +17,7 @@
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage Management: FlexVolume (Deprecated)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0323.html b/docs/cce/umn/cce_10_0323.html
index ad8c21d3..d5f71ee4 100644
--- a/docs/cce/umn/cce_10_0323.html
+++ b/docs/cce/umn/cce_10_0323.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Overview</h1>
 <div id="body8662426"><p id="cce_10_0323__en-us_topic_0000001244101063_p178793583820">CCE allows you to mount a volume created from an Object Storage Service (OBS) bucket to a container to store data persistently. Object storage is commonly used in cloud workloads, data analysis, content analysis, and hotspot objects.</p>
-<div class="fignone" id="cce_10_0323__en-us_topic_0000001244101063_fig93521319153910"><span class="figcap"><b>Figure 1 </b>Mounting OBS volumes to CCE</span><br><span><img id="cce_10_0323__en-us_topic_0000001244101063_image3353111953912" src="en-us_image_0000001249023453.png"></span></div>
+<div class="fignone" id="cce_10_0323__en-us_topic_0000001244101063_fig93521319153910"><span class="figcap"><b>Figure 1 </b>Mounting OBS volumes to CCE</span><br><span><img id="cce_10_0323__en-us_topic_0000001244101063_image3353111953912" src="en-us_image_0000001517743540.png"></span></div>
 <div class="section" id="cce_10_0323__en-us_topic_0000001244101063_section1432613347151"><h4 class="sectiontitle">Storage Class</h4><p id="cce_10_0323__en-us_topic_0000001244101063_p855403534318">Object storage offers three storage classes, Standard, Infrequent Access, and Archive, to satisfy different requirements for storage performance and costs.</p>
 <ul id="cce_10_0323__en-us_topic_0000001244101063_ul473211719441"><li id="cce_10_0323__en-us_topic_0000001244101063_li117324720445">The Standard storage class features low access latency and high throughput. It is therefore applicable to storing a large number of hot files (frequently accessed every month) or small files (less than 1 MB). The application scenarios include big data analytics, mobile apps, hot videos, and picture processing on social media.</li><li id="cce_10_0323__en-us_topic_0000001244101063_li4732372445">The Infrequent Access storage class is ideal for storing data that is semi-frequently accessed (less than 12 times a year), with requirements for quick response. The application scenarios include file synchronization or sharing, and enterprise-level backup. It provides the same durability, access latency, and throughput as the Standard storage class but at a lower cost. However, the Infrequent Access storage class has lower availability than the Standard storage class.</li><li id="cce_10_0323__en-us_topic_0000001244101063_li473213711447">The Archive storage class is suitable for archiving data that is rarely-accessed (averagely once a year). The application scenarios include data archiving and long-term data backup. The Archive storage class is secure and durable at an affordable low cost, which can be used to replace tape libraries. However, it may take hours to restore data from the Archive storage class.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0325.html b/docs/cce/umn/cce_10_0325.html
index c89ffb46..29e2c7b0 100644
--- a/docs/cce/umn/cce_10_0325.html
+++ b/docs/cce/umn/cce_10_0325.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Automatically Creating an OBS Volume</h1>
 <div id="body0000001113882226"><div class="section" id="cce_10_0325__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0325__p144041821719">During the use of OBS, expected OBS buckets can be automatically created and mounted as volumes. Currently, standard and infrequent access OBS buckets are supported, which correspond to <strong id="cce_10_0325__b11119257183915">obs-standard</strong> and <strong id="cce_10_0325__b811985718395">obs-standard-ia</strong>, respectively.</p>
 </div>
-<div class="section" id="cce_10_0325__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0325__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0325__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0325__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0325__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0325__ol141112211118"><li id="cce_10_0325__li128662616503"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0325__li840720210114"><span>Run the following commands to configure the <strong id="cce_10_0325__b10123151994019">pvc-obs-auto-example.yaml</strong> file, which is used to create a PVC.</span><p><p id="cce_10_0325__p1040552117118"><strong id="cce_10_0325__b1140517211618">touch pvc-obs-auto-example.yaml</strong></p>
 <p id="cce_10_0325__p1640515212119"><strong id="cce_10_0325__b184051421619">vi pvc-obs-auto-example.yaml</strong></p>
diff --git a/docs/cce/umn/cce_10_0326.html b/docs/cce/umn/cce_10_0326.html
index cd4f804a..f7f2bb7c 100644
--- a/docs/cce/umn/cce_10_0326.html
+++ b/docs/cce/umn/cce_10_0326.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a PV from an Existing OBS Bucket</h1>
 <div id="body0000001113722330"><div class="section" id="cce_10_0326__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0326__p0191112112620">CCE allows you to use an existing OBS bucket to create a PersistentVolume (PV). You can create a PersistentVolumeClaim (PVC) and bind it to the PV.</p>
 </div>
-<div class="section" id="cce_10_0326__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0326__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0326__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0326__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0326__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0326__ol195789327269"><li id="cce_10_0326__li1757810328267"><span>Log in to the OBS console, create an OBS bucket, and record the bucket name and storage class.</span></li><li id="cce_10_0326__li1225213417279"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0326__li147207192281"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_10_0326__b1272522465">pv-obs-example.yaml</strong> and <strong id="cce_10_0326__b13719529462">pvc-obs-example.yaml</strong>.</span><p><p id="cce_10_0326__p171322115295"><strong id="cce_10_0326__b213211152911">touch pv-obs-example.yaml</strong> <strong id="cce_10_0326__b15874182919519">pvc-obs-example.yaml</strong></p>
 
diff --git a/docs/cce/umn/cce_10_0327.html b/docs/cce/umn/cce_10_0327.html
index 53ced888..8311cdc8 100644
--- a/docs/cce/umn/cce_10_0327.html
+++ b/docs/cce/umn/cce_10_0327.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an OBS Volume</h1>
 <div id="body0000001160442137"><div class="section" id="cce_10_0327__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0327__p13415181285914">After an OBS volume is created or imported to CCE, you can mount the volume to a workload.</p>
 </div>
-<div class="section" id="cce_10_0327__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0327__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0327__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0327__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0327__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0327__ol1367331010214"><li id="cce_10_0327__li19130164216502"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0327__li13722131012216"><span>Run the following commands to configure the <strong id="cce_10_0327__b126172437519">obs-deployment-example.yaml</strong> file, which is used to create a pod.</span><p><p id="cce_10_0327__p9724141011211"><strong id="cce_10_0327__b64921215152512">touch obs-deployment-example.yaml</strong></p>
 <p id="cce_10_0327__p19726151015213"><strong id="cce_10_0327__b1762182312513">vi obs-deployment-example.yaml</strong></p>
diff --git a/docs/cce/umn/cce_10_0328.html b/docs/cce/umn/cce_10_0328.html
index 8dac0ed4..c3472671 100644
--- a/docs/cce/umn/cce_10_0328.html
+++ b/docs/cce/umn/cce_10_0328.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an OBS Volume</h1>
 <div id="body0000001160562129"><div class="section" id="cce_10_0328__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0328__p417532394118">CCE allows you to use an existing OBS volume to create a StatefulSet through a PersistentVolumeClaim (PVC).</p>
 </div>
-<div class="section" id="cce_10_0328__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0328__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0328__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0328__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0328__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0328__ol15239131281911"><li id="cce_10_0328__li823912124195"><span>Create an OBS volume by referring to <a href="cce_10_0325.html">(kubectl) Automatically Creating an OBS Volume</a> and obtain the PVC name.</span></li><li id="cce_10_0328__li169971354185015"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0328__li17489105723120"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0328__b14643102042813">obs-statefulset-example.yaml</strong>.</span><p><p id="cce_10_0328__p3653181443819"><strong id="cce_10_0328__b166535149387">touch obs-statefulset-example.yaml</strong></p>
 <p id="cce_10_0328__p16534140382"><strong id="cce_10_0328__b765381423813">vi obs-statefulset-example.yaml</strong></p>
diff --git a/docs/cce/umn/cce_10_0329.html b/docs/cce/umn/cce_10_0329.html
index e5bfba0d..e228da1b 100644
--- a/docs/cce/umn/cce_10_0329.html
+++ b/docs/cce/umn/cce_10_0329.html
@@ -15,7 +15,7 @@
 </ul>
 
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage Management: FlexVolume (Deprecated)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0330.html b/docs/cce/umn/cce_10_0330.html
index 1a935be8..b4bf1923 100644
--- a/docs/cce/umn/cce_10_0330.html
+++ b/docs/cce/umn/cce_10_0330.html
@@ -2,7 +2,7 @@
 
 <h1 class="topictitle1">Overview</h1>
 <div id="body8662426"><p id="cce_10_0330__en-us_topic_0000001199181200_p398114244394">CCE allows you to mount a volume created from an SFS Turbo file system to a container to store data persistently. Provisioned on demand and fast, SFS Turbo is suitable for DevOps, container microservices, and enterprise OA scenarios.</p>
-<div class="fignone" id="cce_10_0330__en-us_topic_0000001199181200_fig1837231912417"><span class="figcap"><b>Figure 1 </b>Mounting SFS Turbo volumes to CCE</span><br><span><img id="cce_10_0330__en-us_topic_0000001199181200_image8372161911411" src="en-us_image_0000001202103502.png"></span></div>
+<div class="fignone" id="cce_10_0330__en-us_topic_0000001199181200_fig1837231912417"><span class="figcap"><b>Figure 1 </b>Mounting SFS Turbo volumes to CCE</span><br><span><img id="cce_10_0330__en-us_topic_0000001199181200_image8372161911411" src="en-us_image_0000001568902669.png"></span></div>
 <div class="section" id="cce_10_0330__en-us_topic_0000001199181200_section16125104115411"><h4 class="sectiontitle">Description</h4><ul id="cce_10_0330__en-us_topic_0000001199181200_ul222119314424"><li id="cce_10_0330__en-us_topic_0000001199181200_li82215317429"><strong id="cce_10_0330__b62803516222">Standard file protocols</strong>: You can mount file systems as volumes to servers, the same as using local directories.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li522115314210"><strong id="cce_10_0330__b13263155815232">Data sharing</strong>: The same file system can be mounted to multiple servers, so that data can be shared.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li422120318427"><strong id="cce_10_0330__b183071519112418">Private network</strong>: User can access data only in private networks of data centers.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li202212036421"><strong id="cce_10_0330__b1443654292420">Data isolation</strong>: The on-cloud storage service provides exclusive cloud file storage, which delivers data isolation and ensures IOPS performance.</li><li id="cce_10_0330__en-us_topic_0000001199181200_li122283134215"><strong id="cce_10_0330__b1641217962810">Use cases</strong>: Deployments/StatefulSets in the ReadWriteMany mode, DaemonSets, and jobs created for high-traffic websites, log storage, DevOps, and enterprise OA applications</li></ul>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0332.html b/docs/cce/umn/cce_10_0332.html
index 4d37c897..c6f4c8ef 100644
--- a/docs/cce/umn/cce_10_0332.html
+++ b/docs/cce/umn/cce_10_0332.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a PV from an Existing SFS Turbo File System</h1>
 <div id="body0000001160562131"><div class="section" id="cce_10_0332__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0332__p1738118119414">CCE allows you to use an existing SFS Turbo file system to create a PersistentVolume (PV). After the creation is successful, you can create a PersistentVolumeClaim (PVC) and bind it to the PV.</p>
 </div>
-<div class="section" id="cce_10_0332__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0332__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0332__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0332__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0332__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0332__ol6381151110418"><li id="cce_10_0332__li7381101104115"><span>Log in to the SFS console, create a file system, and record the file system ID, shared path, and capacity.</span></li><li id="cce_10_0332__li14405185119498"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0332__li33811611154115"><span>Create two YAML files for creating the PV and PVC. Assume that the file names are <strong id="cce_10_0332__b15773888301">pv-efs-example.yaml</strong> and <strong id="cce_10_0332__b677310843013">pvc-efs-example.yaml</strong>.</span><p><p id="cce_10_0332__p1638141111418"><strong id="cce_10_0332__b19381101114115">touch pv-efs-example.yaml</strong> <strong id="cce_10_0332__b1084211115106">pvc-efs-example.yaml</strong></p>
 <ul id="cce_10_0332__ul1957616471105"><li id="cce_10_0332__li17576947171010"><strong id="cce_10_0332__b886431003017">Example YAML file for the PV:</strong><pre class="screen" id="cce_10_0332__screen85741747141015">apiVersion: v1 
diff --git a/docs/cce/umn/cce_10_0333.html b/docs/cce/umn/cce_10_0333.html
index 4fd3b8d4..db3135c9 100644
--- a/docs/cce/umn/cce_10_0333.html
+++ b/docs/cce/umn/cce_10_0333.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a Deployment Mounted with an SFS Turbo Volume</h1>
 <div id="body0000001113882232"><div class="section" id="cce_10_0333__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0333__p13415181285914">After an SFS Turbo volume is created or imported to CCE, you can mount the volume to a workload.</p>
 </div>
-<div class="section" id="cce_10_0333__section1349262916461"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0333__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0333__section1349262916461"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0333__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0333__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0333__ol8551750135510"><li id="cce_10_0333__li18480358134919"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0333__li1355135045513"><span>Run the following commands to configure the <strong id="cce_10_0333__b1436216344">efs-deployment-example.yaml</strong> file, which is used to create a Deployment:</span><p><p id="cce_10_0333__p20551165012555"><strong id="cce_10_0333__b45511650175517"><em id="cce_10_0333__i1555135045514">touch efs-deployment-example.yaml</em></strong></p>
 <p id="cce_10_0333__p185516509554"><strong id="cce_10_0333__b19551450125514"><em id="cce_10_0333__i7551250175516">vi efs-deployment-example.yaml</em></strong></p>
diff --git a/docs/cce/umn/cce_10_0334.html b/docs/cce/umn/cce_10_0334.html
index 0e81efd3..a40fd04d 100644
--- a/docs/cce/umn/cce_10_0334.html
+++ b/docs/cce/umn/cce_10_0334.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">(kubectl) Creating a StatefulSet Mounted with an SFS Turbo Volume</h1>
 <div id="body0000001113722334"><div class="section" id="cce_10_0334__section1062914713566"><h4 class="sectiontitle">Scenario</h4><p id="cce_10_0334__p8619171413523">CCE allows you to use an existing SFS Turbo volume to create a StatefulSet.</p>
 </div>
-<div class="section" id="cce_10_0334__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0334__cce_10_0312_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
+<div class="section" id="cce_10_0334__section946015116135"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0334__en-us_topic_0000001244101033_p426111300137">The following configuration example applies to clusters of Kubernetes 1.13 or earlier.</p>
 </div>
 <div class="section" id="cce_10_0334__section1530655595611"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0334__ol661917142523"><li id="cce_10_0334__li176191814195219"><span>Create an SFS Turbo volume and record the volume name.</span></li><li id="cce_10_0334__li1163755011"><span>Use kubectl to connect to the cluster. For details, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0334__li061981475210"><span>Create a YAML file for creating the workload. Assume that the file name is <strong id="cce_10_0334__b18231174684410">efs-statefulset-example.yaml</strong>.</span><p><p id="cce_10_0334__p2619014165213"><strong id="cce_10_0334__b16619314205216">touch efs-statefulset-example.yaml</strong></p>
 <p id="cce_10_0334__p9619151414527"><strong id="cce_10_0334__b146196149526">vi efs-statefulset-example.yaml</strong></p>
diff --git a/docs/cce/umn/cce_10_0336.html b/docs/cce/umn/cce_10_0336.html
index 5e271acd..57a81e49 100644
--- a/docs/cce/umn/cce_10_0336.html
+++ b/docs/cce/umn/cce_10_0336.html
@@ -13,11 +13,12 @@
 </div></div>
 <p id="cce_10_0336__p6511171951913"><strong id="cce_10_0336__b1479092017563">kubectl edit ds everest-csi-driver -nkube-system</strong></p>
 <p id="cce_10_0336__p33191134303">Search for <strong id="cce_10_0336__b1434271975315">disable-auto-mount-secret</strong> and set it to <strong id="cce_10_0336__b18853123105311">true</strong>.</p>
-<p id="cce_10_0336__p4978205865511"><span><img id="cce_10_0336__image397885885519" src="en-us_image_0000001199181232.png"></span></p>
+<p id="cce_10_0336__p4978205865511"><span><img id="cce_10_0336__image397885885519" src="en-us_image_0000001569182645.png"></span></p>
 <p id="cce_10_0336__p6152891328">Run <strong id="cce_10_0336__b1368954213536">:wq</strong> to save the settings and exit. Wait until the pod is restarted.</p>
 </div>
-<div class="section" id="cce_10_0336__section12416824164618"><h4 class="sectiontitle">Creating a Secret Using an Access Key</h4><ol id="cce_10_0336__ol2051283471018"><li id="cce_10_0336__li45111634121014"><span>Obtain an access key.</span><p><p id="cce_10_0336__p17511193419108">For details, see <a href="https://docs.otc.t-systems.com/usermanual/obs/obs_03_0405.html " target="_blank" rel="noopener noreferrer">Creating Access Keys (AK and SK)</a>.</p>
-</p></li><li id="cce_10_0336__li751113431018"><span>Encode the keys using Base64. (Assume that the AK is xxx and the SK is yyy.)</span><p><p id="cce_10_0336__p1851103412100"><strong id="cce_10_0336__b13798260171">echo -n xxx|base64</strong></p>
+<div class="section" id="cce_10_0336__section4633162355911"><h4 class="sectiontitle">Obtaining an Access Key</h4><ol id="cce_10_0336__ol481110401303"><li id="cce_10_0336__li481114401906"><span>Log in to the console.</span></li><li id="cce_10_0336__li2811184014010"><span>Hover the cursor over the username in the upper right corner and choose <strong id="cce_10_0336__b5828225201217">My Credentials</strong> from the drop-down list.</span></li><li id="cce_10_0336__li68111402005"><span>In the navigation pane, choose <strong id="cce_10_0336__b612017294126">Access Keys</strong>.</span></li><li id="cce_10_0336__li28119401016"><span>Click <strong id="cce_10_0336__b194083251210">Create Access Key</strong>. The <strong id="cce_10_0336__b14412324125">Create Access Key</strong> dialog box is displayed.</span></li><li id="cce_10_0336__li1381116402013"><span>Click <strong id="cce_10_0336__b1514253551217">OK</strong> to download the AK/SK.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0336__section12416824164618"><h4 class="sectiontitle">Creating a Secret Using an Access Key</h4><ol id="cce_10_0336__ol2051283471018"><li id="cce_10_0336__li45111634121014"><span>Obtain an access key.</span></li><li id="cce_10_0336__li751113431018"><span>Encode the keys using Base64. (Assume that the AK is xxx and the SK is yyy.)</span><p><p id="cce_10_0336__p1851103412100"><strong id="cce_10_0336__b13798260171">echo -n xxx|base64</strong></p>
 <p id="cce_10_0336__p65114348105"><strong id="cce_10_0336__b118017261171">echo -n yyy|base64</strong></p>
 <p id="cce_10_0336__p95111934171018">Record the encoded AK and SK.</p>
 </p></li><li id="cce_10_0336__li155129343104"><span>Create a YAML file for the secret, for example, <strong id="cce_10_0336__b8910163895518">test-user.yaml</strong>.</span><p><pre class="screen" id="cce_10_0336__screen2051217347105">apiVersion: v1
@@ -33,40 +34,40 @@ metadata:
 type: cfe/secure-opaque</pre>
 <p id="cce_10_0336__p10512934101016">Specifically:</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table551243410100" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row951223481012"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.5.2.3.2.3.1.3.1.1"><p id="cce_10_0336__p55121341100">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table551243410100" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row951223481012"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.6.2.3.2.3.1.3.1.1"><p id="cce_10_0336__p55121341100">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.5.2.3.2.3.1.3.1.2"><p id="cce_10_0336__p451233461016">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.6.2.3.2.3.1.3.1.2"><p id="cce_10_0336__p451233461016">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0336__row551203451016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p13512734101015">access.key</p>
+<tbody><tr id="cce_10_0336__row551203451016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p13512734101015">access.key</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p451213342102">Base64-encoded AK.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p451213342102">Base64-encoded AK.</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row5512123420106"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p6512143431020">secret.key</p>
+<tr id="cce_10_0336__row5512123420106"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p6512143431020">secret.key</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p115121434121020">Base64-encoded SK.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p115121434121020">Base64-encoded SK.</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row7512834131017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p25121534181016">name</p>
+<tr id="cce_10_0336__row7512834131017"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p25121534181016">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p251233441019">Secret name.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p251233441019">Secret name.</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row95121534191014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p16512834121016">namespace</p>
+<tr id="cce_10_0336__row95121534191014"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p16512834121016">namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p551243461015">Namespace of the secret.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p551243461015">Namespace of the secret.</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row16799198182814"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p0245182232816">secret.kubernetes.io/used-by: csi</p>
+<tr id="cce_10_0336__row16799198182814"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p0245182232816">secret.kubernetes.io/used-by: csi</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p380018122814">You need to add this label in the YAML file if you want to make it available on the CCE console when you create an OBS PV/PVC.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p380018122814">You need to add this label in the YAML file if you want to make it available on the CCE console when you create an OBS PV/PVC.</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row1451283421016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.5.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p25121234161018">type</p>
+<tr id="cce_10_0336__row1451283421016"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.2.3.2.3.1.3.1.1 "><p id="cce_10_0336__p25121234161018">type</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.5.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p851212346102">Secret type. The value must be <strong id="cce_10_0336__b815416175542">cfe/secure-opaque</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.2.3.2.3.1.3.1.2 "><p id="cce_10_0336__p851212346102">Secret type. The value must be <strong id="cce_10_0336__b815416175542">cfe/secure-opaque</strong>.</p>
 <p id="cce_10_0336__p4512334141012">When this type is used, the data entered by users is automatically encrypted.</p>
 </td>
 </tr>
@@ -103,26 +104,26 @@ spec:
   persistentVolumeReclaimPolicy: Delete
   storageClassName: csi-obs</pre>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table6615161819296" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row1361531813296"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.6.3.2.2.3.1.3.1.1"><p id="cce_10_0336__p5615151822915">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table6615161819296" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row1361531813296"><th align="left" class="cellrowborder" valign="top" width="26.43%" id="mcps1.3.7.3.2.2.3.1.3.1.1"><p id="cce_10_0336__p5615151822915">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.6.3.2.2.3.1.3.1.2"><p id="cce_10_0336__p461519185298">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.57000000000001%" id="mcps1.3.7.3.2.2.3.1.3.1.2"><p id="cce_10_0336__p461519185298">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0336__row12615101802919"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p96441230162919">nodePublishSecretRef</p>
+<tbody><tr id="cce_10_0336__row12615101802919"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p96441230162919">nodePublishSecretRef</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p26152189295">Secret specified during the mounting.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p26152189295">Secret specified during the mounting.</p>
 <ul id="cce_10_0336__ul1061862010115"><li id="cce_10_0336__li186183201911"><strong id="cce_10_0336__b32593613239">name</strong>: name of the secret</li><li id="cce_10_0336__li1261818209118"><strong id="cce_10_0336__b086871616235">namespace</strong>: namespace of the secret</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0336__row17768552185616"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p98321261573">fsType</p>
+<tr id="cce_10_0336__row17768552185616"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p98321261573">fsType</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p168323610576">File type. The value can be <strong id="cce_10_0336__b10357101624410">obsfs</strong> or <strong id="cce_10_0336__b1935821619441">s3fs</strong>. If the value is <strong id="cce_10_0336__b1935819166444">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_10_0336__b1360116104410">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. You are advised to set this field to <strong id="cce_10_0336__b1236016168442">obsfs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p168323610576">File type. The value can be <strong id="cce_10_0336__b10357101624410">obsfs</strong> or <strong id="cce_10_0336__b1935821619441">s3fs</strong>. If the value is <strong id="cce_10_0336__b1935819166444">s3fs</strong>, an OBS bucket is created and mounted using s3fs. If the value is <strong id="cce_10_0336__b1360116104410">obsfs</strong>, an OBS parallel file system is created and mounted using obsfs. You are advised to set this field to <strong id="cce_10_0336__b1236016168442">obsfs</strong>.</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row78891119135511"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.6.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p17889141914554">volumeHandle</p>
+<tr id="cce_10_0336__row78891119135511"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.3.2.2.3.1.3.1.1 "><p id="cce_10_0336__p17889141914554">volumeHandle</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.6.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p12890141918554">OBS bucket name.</p>
+<td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.3.2.2.3.1.3.1.2 "><p id="cce_10_0336__p12890141918554">OBS bucket name.</p>
 </td>
 </tr>
 </tbody>
@@ -151,20 +152,20 @@ spec:
   storageClassName: csi-obs
   volumeName: pv-obs-example</pre>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table36670218280" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row166713212813"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.6.3.4.2.3.1.3.1.1"><p id="cce_10_0336__p16675202812">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table36670218280" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row166713212813"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.7.3.4.2.3.1.3.1.1"><p id="cce_10_0336__p16675202812">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.6.3.4.2.3.1.3.1.2"><p id="cce_10_0336__p156674217284">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.7.3.4.2.3.1.3.1.2"><p id="cce_10_0336__p156674217284">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0336__row866717219285"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.6.3.4.2.3.1.3.1.1 "><p id="cce_10_0336__p196674219287">csi.storage.k8s.io/node-publish-secret-name</p>
+<tbody><tr id="cce_10_0336__row866717219285"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.4.2.3.1.3.1.1 "><p id="cce_10_0336__p196674219287">csi.storage.k8s.io/node-publish-secret-name</p>
 </td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.6.3.4.2.3.1.3.1.2 "><p id="cce_10_0336__p1466715214280">Name of the secret</p>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.4.2.3.1.3.1.2 "><p id="cce_10_0336__p1466715214280">Name of the secret</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row1966762142811"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.6.3.4.2.3.1.3.1.1 "><p id="cce_10_0336__p866718272816">csi.storage.k8s.io/node-publish-secret-namespace</p>
+<tr id="cce_10_0336__row1966762142811"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.4.2.3.1.3.1.1 "><p id="cce_10_0336__p866718272816">csi.storage.k8s.io/node-publish-secret-namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.6.3.4.2.3.1.3.1.2 "><p id="cce_10_0336__p11667142182814">Namespace of the secret</p>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.4.2.3.1.3.1.2 "><p id="cce_10_0336__p11667142182814">Namespace of the secret</p>
 </td>
 </tr>
 </tbody>
@@ -193,20 +194,20 @@ spec:
       storage: 1Gi
   storageClassName: csi-obs</pre>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table1911916210118" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row711972201120"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.7.3.1.2.2.1.3.1.1"><p id="cce_10_0336__p15120821110">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0336__table1911916210118" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0336__row711972201120"><th align="left" class="cellrowborder" valign="top" width="44.89%" id="mcps1.3.8.3.1.2.2.1.3.1.1"><p id="cce_10_0336__p15120821110">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.7.3.1.2.2.1.3.1.2"><p id="cce_10_0336__p71209271119">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="55.11000000000001%" id="mcps1.3.8.3.1.2.2.1.3.1.2"><p id="cce_10_0336__p71209271119">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0336__row1112012271110"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.1.2.2.1.3.1.1 "><p id="cce_10_0336__p61203218111">csi.storage.k8s.io/node-publish-secret-name</p>
+<tbody><tr id="cce_10_0336__row1112012271110"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.8.3.1.2.2.1.3.1.1 "><p id="cce_10_0336__p61203218111">csi.storage.k8s.io/node-publish-secret-name</p>
 </td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.1.2.2.1.3.1.2 "><p id="cce_10_0336__p2120122121114">Name of the secret</p>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.8.3.1.2.2.1.3.1.2 "><p id="cce_10_0336__p2120122121114">Name of the secret</p>
 </td>
 </tr>
-<tr id="cce_10_0336__row266117185118"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.7.3.1.2.2.1.3.1.1 "><p id="cce_10_0336__p1662151891115">csi.storage.k8s.io/node-publish-secret-namespace</p>
+<tr id="cce_10_0336__row266117185118"><td class="cellrowborder" valign="top" width="44.89%" headers="mcps1.3.8.3.1.2.2.1.3.1.1 "><p id="cce_10_0336__p1662151891115">csi.storage.k8s.io/node-publish-secret-namespace</p>
 </td>
-<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.7.3.1.2.2.1.3.1.2 "><p id="cce_10_0336__p12662131811118">Namespace of the secret</p>
+<td class="cellrowborder" valign="top" width="55.11000000000001%" headers="mcps1.3.8.3.1.2.2.1.3.1.2 "><p id="cce_10_0336__p12662131811118">Namespace of the secret</p>
 </td>
 </tr>
 </tbody>
@@ -224,8 +225,8 @@ spec:
 <p id="cce_10_0336__p667716518493">Expected outputs:</p>
 <pre class="screen" id="cce_10_0336__screen14869155884916">touch: setting times of '/temp/test': No such file or directory
 command terminated with exit code 1</pre>
-</li><li id="cce_10_0336__li1375318184504">Set the read/write permissions for the IAM user who mounted the OBS volume by referring to the bucket policy configuration.<p id="cce_10_0336__p7818145635018"><a name="cce_10_0336__li1375318184504"></a><a name="li1375318184504"></a><span><img id="cce_10_0336__image91425562247" src="en-us_image_0000001244141105.png"></span></p>
-<p id="cce_10_0336__p163431053616"><span><img id="cce_10_0336__image17701961669" src="en-us_image_0000001244261069.png"></span></p>
+</li><li id="cce_10_0336__li1375318184504">Set the read/write permissions for the IAM user who mounted the OBS volume by referring to the bucket policy configuration.<p id="cce_10_0336__p7818145635018"><a name="cce_10_0336__li1375318184504"></a><a name="li1375318184504"></a><span><img id="cce_10_0336__image91425562247" src="en-us_image_0000001568822821.png"></span></p>
+<p id="cce_10_0336__p163431053616"><span><img id="cce_10_0336__image17701961669" src="en-us_image_0000001569022933.png"></span></p>
 </li><li id="cce_10_0336__li3633175615112">Write data into the mouth path again. In this example, the write operation succeeded.<p id="cce_10_0336__p147671620145213"><a name="cce_10_0336__li3633175615112"></a><a name="li3633175615112"></a><strong id="cce_10_0336__b16269111110403">kubectl exec obs-secret-5cd558f76f-vxslv -- touch /temp/test</strong></p>
 </li><li id="cce_10_0336__li185365479522">Check the mount path in the container to see whether the data is successfully written.<p id="cce_10_0336__p879715312525"><a name="cce_10_0336__li185365479522"></a><a name="li185365479522"></a><strong id="cce_10_0336__b695501514018">kubectl exec obs-secret-5cd558f76f-vxslv -- ls -l /temp/</strong></p>
 <p id="cce_10_0336__p1123745195313">Expected outputs:</p>
diff --git a/docs/cce/umn/cce_10_0337.html b/docs/cce/umn/cce_10_0337.html
index dada39f1..45ea515a 100644
--- a/docs/cce/umn/cce_10_0337.html
+++ b/docs/cce/umn/cce_10_0337.html
@@ -124,7 +124,7 @@
 </div>
 <div class="section" id="cce_10_0337__section6456132219344"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0337__p1869352683414">Mount options cannot be configured for secure containers.</p>
 </div>
-<div class="section" id="cce_10_0337__section846811715589"><h4 class="sectiontitle">Setting Mount Options in a PV</h4><p id="cce_10_0337__p1070219443123">You can use the <strong id="cce_10_0337__b1768712683112">mountOptions</strong> field to set mount options in a PV. The options you can configure in <strong id="cce_10_0337__b10717142133513">mountOptions</strong> are listed in <a href="#cce_10_0337__section14888047833">SFS Volume Mount Options</a> and <a href="#cce_10_0337__section1254912109811">OBS Volume Mount Options</a>.</p>
+<div class="section" id="cce_10_0337__section846811715589"><h4 class="sectiontitle">Setting Mount Options in a PV</h4><p id="cce_10_0337__p1070219443123">You can use the <strong id="cce_10_0337__b95361449192117">mountOptions</strong> field to set mount options in a PV. The options you can configure in <strong id="cce_10_0337__b1053614492211">mountOptions</strong> are listed in <a href="#cce_10_0337__section14888047833">SFS Volume Mount Options</a> and <a href="#cce_10_0337__section1254912109811">OBS Volume Mount Options</a>.</p>
 <pre class="screen" id="cce_10_0337__screen1647520711160">apiVersion: v1
 kind: PersistentVolume
 metadata:
@@ -157,7 +157,7 @@ spec:
   storageClassName: csi-obs</pre>
 <p id="cce_10_0337__p58371937174114">After a PV is created, you can create a PVC and bind it to the PV, and then mount the PV to the container in the workload.</p>
 </div>
-<div class="section" id="cce_10_0337__section14845171205813"><h4 class="sectiontitle">Setting Mount Options in a StorageClass</h4><p id="cce_10_0337__p09111331124418">You can use the <strong id="cce_10_0337__b1035845733512">mountOptions</strong> field to set mount options in a StorageClass. The options you can configure in <strong id="cce_10_0337__b2365757163511">mountOptions</strong> are listed in <a href="#cce_10_0337__section14888047833">SFS Volume Mount Options</a> and <a href="#cce_10_0337__section1254912109811">OBS Volume Mount Options</a>.</p>
+<div class="section" id="cce_10_0337__section14845171205813"><h4 class="sectiontitle">Setting Mount Options in a StorageClass</h4><p id="cce_10_0337__p09111331124418">You can use the <strong id="cce_10_0337__b138281727122210">mountOptions</strong> field to set mount options in a StorageClass. The options you can configure in <strong id="cce_10_0337__b13828142782219">mountOptions</strong> are listed in <a href="#cce_10_0337__section14888047833">SFS Volume Mount Options</a> and <a href="#cce_10_0337__section1254912109811">OBS Volume Mount Options</a>.</p>
 <pre class="screen" id="cce_10_0337__screen164701419172012">apiVersion: storage.k8s.io/v1
 kind: StorageClass
 metadata:
diff --git a/docs/cce/umn/cce_10_0341.html b/docs/cce/umn/cce_10_0341.html
index 078a4ab0..161a694f 100644
--- a/docs/cce/umn/cce_10_0341.html
+++ b/docs/cce/umn/cce_10_0341.html
@@ -19,10 +19,10 @@ Storage Driver: devicemapper</pre>
 <ul id="cce_10_0341__ul20369135562510"><li id="cce_10_0341__li7709101613457"><strong id="cce_10_0341__b3645191661515">Rootfs (Device Mapper)</strong><div class="p" id="cce_10_0341__p269110559348">By default, 90% of the data disk is the container engine and container image space, which can be divided into the following two parts:<ul id="cce_10_0341__ul129621654173420"><li id="cce_10_0341__li1796075493411">The <strong id="cce_10_0341__b1960410329431">/var/lib/docker</strong> directory is the Docker working directory and occupies 20% of the container runtime space by default. (Space size of the <strong id="cce_10_0341__b1360433210433">/var/lib/docker</strong> directory = <strong id="cce_10_0341__b18981345194320">Data disk space x 90% x 20%</strong>)</li><li id="cce_10_0341__li1596055410343">The thin pool stores container image data, image metadata, and container data, and occupies 80% of the container runtime space by default. (Thin pool space = <strong id="cce_10_0341__b579915551432">Data disk space x 90% x 80%</strong>)<p id="cce_10_0341__p1996075413345">The thin pool is dynamically mounted. You can view it by running the <strong id="cce_10_0341__b16273758244">lsblk</strong> command on a node, but not the <strong id="cce_10_0341__b13637955182316">df -h</strong> command.</p>
 </li></ul>
 </div>
-<p id="cce_10_0341__p396210546347"><span><img id="cce_10_0341__image187589441557" src="en-us_image_0000001199021278.png"></span></p>
+<p id="cce_10_0341__p396210546347"><span><img id="cce_10_0341__image187589441557" src="en-us_image_0000001517902940.png"></span></p>
 </li></ul>
 <ul id="cce_10_0341__ul20849165711250"><li id="cce_10_0341__li162571641195915"><strong id="cce_10_0341__b32761419101513">Rootfs (OverlayFS)</strong><p id="cce_10_0341__p98354212596">No separate thin pool. The entire container engine and container image space (90% of the data disk by default) are in the <strong id="cce_10_0341__b460816824418">/var/lib/docker</strong> directory.</p>
-<p id="cce_10_0341__p78987371501"><span><img id="cce_10_0341__image154991612555" src="en-us_image_0000001244101121.png"></span></p>
+<p id="cce_10_0341__p78987371501"><span><img id="cce_10_0341__image154991612555" src="en-us_image_0000001517743364.png"></span></p>
 </li></ul>
 <div class="p" id="cce_10_0341__p16515912192615">Using rootfs for container storage in CCE<ul id="cce_10_0341__ul197101852142618"><li id="cce_10_0341__li328233311815">CCE cluster: EulerOS 2.5 nodes use Device Mapper and EulerOS 2.9 nodes use OverlayFS. CentOS 7.x nodes in clusters earlier than v1.19.16 use Device Mapper, and use OverlayFS in clusters of v1.19.16 and later. </li><li id="cce_10_0341__li10902655122612">CCE Turbo cluster: BMSs use Device Mapper. ECSs use OverlayFS.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0342.html b/docs/cce/umn/cce_10_0342.html
index 6b620951..710fc178 100644
--- a/docs/cce/umn/cce_10_0342.html
+++ b/docs/cce/umn/cce_10_0342.html
@@ -7,9 +7,9 @@
 </th>
 <th align="left" class="cellrowborder" valign="top" width="12.218778122187782%" id="mcps1.3.1.3.2.5.1.2"><p id="cce_10_0342__en-us_topic_0000001151389047_p17232141414127">Sub-dimension</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="40.965903409659035%" id="mcps1.3.1.3.2.5.1.3"><p id="cce_10_0342__en-us_topic_0000001151389047_p101992815291">CCE Turbo Cluster</p>
+<th align="left" class="cellrowborder" valign="top" width="40.925907409259075%" id="mcps1.3.1.3.2.5.1.3"><p id="cce_10_0342__en-us_topic_0000001151389047_p101992815291">CCE Turbo cluster</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="37.11628837116288%" id="mcps1.3.1.3.2.5.1.4"><p id="cce_10_0342__en-us_topic_0000001151389047_p4289544222">CCE Cluster</p>
+<th align="left" class="cellrowborder" valign="top" width="37.15628437156284%" id="mcps1.3.1.3.2.5.1.4"><p id="cce_10_0342__en-us_topic_0000001151389047_p4289544222">CCE cluster</p>
 </th>
 </tr>
 </thead>
@@ -17,30 +17,30 @@
 </td>
 <td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p4966548153013">Positioning</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p123785538299">Next-gen container cluster, with accelerated computing, networking, and scheduling. Designed for Cloud Native 2.0</p>
+<td class="cellrowborder" valign="top" width="40.925907409259075%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p123785538299">Next-gen container cluster, with accelerated computing, networking, and scheduling. Designed for Cloud Native 2.0</p>
 </td>
-<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p153781053122917">Standard cluster for common commercial use</p>
+<td class="cellrowborder" valign="top" width="37.15628437156284%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p153781053122917">Standard cluster for common commercial use</p>
 </td>
 </tr>
 <tr id="cce_10_0342__en-us_topic_0000001151389047_row132892412218"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p136288022711">Node type</p>
 </td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p11199184296">Hybrid deployment of VMs and bare-metal servers</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p11199184296">Deployment of VMs</p>
 </td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p11340151510272">Hybrid deployment of VMs</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p11340151510272">Hybrid deployment of VMs and bare metal servers</p>
 </td>
 </tr>
-<tr id="cce_10_0342__en-us_topic_0000001151389047_row19562502266"><td class="cellrowborder" rowspan="3" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p1356550102618">Networking</p>
+<tr id="cce_10_0342__en-us_topic_0000001151389047_row19562502266"><td class="cellrowborder" rowspan="3" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p1356550102618">Network</p>
 </td>
 <td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p76288082716">Model</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p101999842920"><strong id="cce_10_0342__en-us_topic_0000001151389047_b5222152982410">Cloud Native Network 2.0</strong>: applies to large-scale and high-performance scenarios.</p>
+<td class="cellrowborder" valign="top" width="40.925907409259075%" headers="mcps1.3.1.3.2.5.1.3 "><p id="cce_10_0342__en-us_topic_0000001151389047_p101999842920"><strong id="cce_10_0342__b107759233485">Cloud Native Network 2.0</strong>: applies to large-scale and high-performance scenarios.</p>
 <p id="cce_10_0342__en-us_topic_0000001151389047_p74677316335">Max networking scale: 2,000 nodes</p>
 </td>
-<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p1734061519273"><strong id="cce_10_0342__en-us_topic_0000001151389047_b3481929453">Cloud-native network 1.0</strong>: applies to common, smaller-scale scenarios.</p>
-<ul id="cce_10_0342__en-us_topic_0000001151389047_ul2055005123618"><li id="cce_10_0342__en-us_topic_0000001151389047_li10550155114368">Tunnel network model</li><li id="cce_10_0342__en-us_topic_0000001151389047_li9550551123616">VPC network model</li></ul>
+<td class="cellrowborder" valign="top" width="37.15628437156284%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p1734061519273"><strong id="cce_10_0342__b208545299485">Cloud-native network 1.0</strong>: applies to common, smaller-scale scenarios.</p>
+<ul id="cce_10_0342__en-us_topic_0000001151389047_ul2055005123618"><li id="cce_10_0342__en-us_topic_0000001151389047_li10550155114368">Container tunnel network model</li><li id="cce_10_0342__en-us_topic_0000001151389047_li9550551123616">VPC network model</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0342__en-us_topic_0000001151389047_row133581631175511"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p2800173617559">Performance</p>
+<tr id="cce_10_0342__en-us_topic_0000001151389047_row133581631175511"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p2800173617559">Network performance</p>
 </td>
 <td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p219913817299">Flattens the VPC network and container network into one. No performance loss.</p>
 </td>
@@ -51,24 +51,24 @@
 </td>
 <td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p519910842911">Associates pods with security groups. Unifies security isolation in and out the cluster via security groups' network policies.</p>
 </td>
-<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_10_0342__en-us_topic_0000001151389047_ul29571941173617"><li id="cce_10_0342__en-us_topic_0000001151389047_li1595716411365">Tunnel network model: supports network policies for intra-cluster communications.</li><li id="cce_10_0342__en-us_topic_0000001151389047_li16957541123611">VPC network model: supports no isolation.</li></ul>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_10_0342__en-us_topic_0000001151389047_ul29571941173617"><li id="cce_10_0342__en-us_topic_0000001151389047_li1595716411365">Container tunnel network model: supports network policies for intra-cluster communications.</li><li id="cce_10_0342__en-us_topic_0000001151389047_li16957541123611">VPC network model: supports no isolation.</li></ul>
 </td>
 </tr>
 <tr id="cce_10_0342__en-us_topic_0000001151389047_row17290144506"><td class="cellrowborder" valign="top" width="9.699030096990302%" headers="mcps1.3.1.3.2.5.1.1 "><p id="cce_10_0342__en-us_topic_0000001151389047_p85985184509">Security</p>
 </td>
 <td class="cellrowborder" valign="top" width="12.218778122187782%" headers="mcps1.3.1.3.2.5.1.2 "><p id="cce_10_0342__en-us_topic_0000001151389047_p959891855012">Isolation</p>
 </td>
-<td class="cellrowborder" valign="top" width="40.965903409659035%" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_10_0342__en-us_topic_0000001151389047_ul125981418125012"><li id="cce_10_0342__en-us_topic_0000001151389047_li159814182503">Physical machine: runs Kata containers, allowing VM-level isolation.</li><li id="cce_10_0342__en-us_topic_0000001151389047_li1759813188506">VM: runs common containers.</li></ul>
+<td class="cellrowborder" valign="top" width="40.925907409259075%" headers="mcps1.3.1.3.2.5.1.3 "><ul id="cce_10_0342__en-us_topic_0000001151389047_ul125981418125012"><li id="cce_10_0342__en-us_topic_0000001151389047_li1759813188506">VM: runs common containers, isolated by cgroups.</li></ul>
 </td>
-<td class="cellrowborder" valign="top" width="37.11628837116288%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p16598131835011">Runs common containers, isolated by cgroups.</p>
+<td class="cellrowborder" valign="top" width="37.15628437156284%" headers="mcps1.3.1.3.2.5.1.4 "><p id="cce_10_0342__en-us_topic_0000001151389047_p16598131835011">Common containers are deployed and isolated by cgroups.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
 </div>
-<div class="section" id="cce_10_0342__section4862101115511"><h4 class="sectiontitle">QingTian Architecture</h4><p id="cce_10_0342__cce_01_0342_p3849111653112"><span><img id="cce_10_0342__cce_01_0342_image148501216123112" src="en-us_image_0000001212924318.png"></span></p>
-<p id="cce_10_0342__cce_01_0342_p1185011160316">The QingTian architecture consists of data plane (software-hardware synergy) and management plane (Alkaid Smart Cloud Brain). The data plane innovates in five dimensions: simplified data center, diversified computing power, QingTian cards, ultra-fast engines, and simplified virtualization, to fully offload and accelerate compute, storage, networking, and security components. VMs, bare metal servers, and containers can run together. As a distributed operating system, the Alkaid Smart Cloud Brain focuses on the cloud, AI, and 5G, and provide all-domain scheduling to achieve cloud-edge-device collaboration and governance.</p>
+<div class="section" id="cce_10_0342__section4862101115511"><h4 class="sectiontitle">QingTian Architecture</h4><p id="cce_10_0342__en-us_topic_0000001176699695_p3849111653112"><span><img id="cce_10_0342__en-us_topic_0000001176699695_image148501216123112" src="en-us_image_0000001517743452.png"></span></p>
+<p id="cce_10_0342__en-us_topic_0000001176699695_p1185011160316">The QingTian architecture consists of data plane (software-hardware synergy) and management plane (Alkaid Smart Cloud Brain). The data plane innovates in five dimensions: simplified data center, diversified computing power, QingTian cards, ultra-fast engines, and simplified virtualization, to fully offload and accelerate compute, storage, networking, and security components. VMs, bare metal servers, and containers can run together. As a distributed operating system, the Alkaid Smart Cloud Brain focuses on the cloud, AI, and 5G, and provide all-domain scheduling to achieve cloud-edge-device collaboration and governance.</p>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0343.html b/docs/cce/umn/cce_10_0343.html
index 21b20726..583409be 100644
--- a/docs/cce/umn/cce_10_0343.html
+++ b/docs/cce/umn/cce_10_0343.html
@@ -84,7 +84,7 @@ spec:
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row153610571511"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p03614576517">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b25261158105018">csi-disk</strong> for EVS disks.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b178186575356">csi-disk</strong> for EVS disks.</p>
 </td>
 </tr>
 </tbody>
@@ -147,7 +147,7 @@ spec:
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row5860143317914"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p178608331994">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b1398782915210">csi-nas</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b384216614366">csi-nas</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -221,7 +221,7 @@ spec:
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row197641935171213"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p576413351125">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b184161337594">csi-obs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b99771619123610">csi-obs</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -284,7 +284,7 @@ spec:
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row12603415203"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p11879153915225">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b92392161313">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b057131163615">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
 </td>
 </tr>
 </tbody>
@@ -359,7 +359,7 @@ spec:
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row18815102892413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p8310164517245">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b595416107185">csi-disk</strong> for EVS disks.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b1460943817368">csi-disk</strong> for EVS disks.</p>
 </td>
 </tr>
 </tbody>
@@ -472,7 +472,7 @@ spec:
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row19543858172911"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p185431558192914">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b55964491456">csi-obs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b1113154916369">csi-obs</strong>.</p>
 </td>
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row1577494282811"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p169043554284">volumeName</p>
@@ -520,7 +520,7 @@ spec:
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row10712132133110"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p193419653113">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b205679596525">csi-sfsturbo</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_10_0343__cce_bestpractice_0107_p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_10_0343__cce_bestpractice_0107_b18465105517360">csi-sfsturbo</strong>.</p>
 </td>
 </tr>
 <tr id="cce_10_0343__cce_bestpractice_0107_row97131621319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_10_0343__cce_bestpractice_0107_p11933106203116">storage</p>
@@ -549,7 +549,7 @@ spec:
 <div class="note" id="cce_10_0343__cce_bestpractice_0107_note1366820421907"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p1766874218020">Replace the example file name <strong id="cce_10_0343__cce_bestpractice_0107_b2077273716181">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a> and <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
 </div></div>
 </li><li id="cce_10_0343__cce_bestpractice_0107_li467218817397">Run the <strong id="cce_10_0343__cce_bestpractice_0107_b591655819185">kubectl edit</strong> command to edit the StatefulSet and use the newly created PVC.<p id="cce_10_0343__cce_bestpractice_0107_p3883848805"><strong id="cce_10_0343__cce_bestpractice_0107_b8480926155211">kubectl edit sts sts-example -n</strong> xxx</p>
-<p id="cce_10_0343__cce_bestpractice_0107_p1047514291298"><span><img id="cce_10_0343__cce_bestpractice_0107_image1089813263010" src="en-us_image_0000001097062729.png"></span></p>
+<p id="cce_10_0343__cce_bestpractice_0107_p1047514291298"><span><img id="cce_10_0343__cce_bestpractice_0107_image1089813263010" src="en-us_image_0000001518062756.png"></span></p>
 <div class="note" id="cce_10_0343__cce_bestpractice_0107_note1646111820116"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p74619186120">Replace <strong id="cce_10_0343__cce_bestpractice_0107_b137451618206">sts-example</strong> in the preceding command with the actual name of the StatefulSet to upgrade. <strong id="cce_10_0343__cce_bestpractice_0107_b11603328217">xxx</strong> indicates the namespace to which the StatefulSet belongs.</p>
 </div></div>
 </li><li id="cce_10_0343__cce_bestpractice_0107_li182243184017">Wait until the pods are running.</li></ol>
@@ -563,7 +563,7 @@ spec:
 <div class="note" id="cce_10_0343__cce_bestpractice_0107_note1984317491325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p884394916216">Replace the example file name <strong id="cce_10_0343__cce_bestpractice_0107_b63634327258">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_10_0343__cce_bestpractice_0107_li1219802032512">2</a> and <a href="#cce_10_0343__cce_bestpractice_0107_li1710710385418">3</a>.</p>
 </div></div>
 </li><li id="cce_10_0343__cce_bestpractice_0107_li416917424">Change the number of pods back to the original value and wait until the pods are running.</li></ol>
-<div class="note" id="cce_10_0343__cce_bestpractice_0107_note16369154924218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p193690499421">The dynamic allocation of storage for StatefulSets is achieved by using <strong id="cce_10_0343__cce_bestpractice_0107_b718174012716">volumeClaimTemplates</strong>. This field cannot be modified by Kubernetes. Therefore, data cannot be migrated by using a new PVC.</p>
+<div class="note" id="cce_10_0343__cce_bestpractice_0107_note16369154924218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0343__cce_bestpractice_0107_p193690499421">The dynamic allocation of storage for StatefulSets is achieved by using <strong id="cce_10_0343__cce_bestpractice_0107_b18281421379">volumeClaimTemplates</strong>. This field cannot be modified by Kubernetes. Therefore, data cannot be migrated by using a new PVC.</p>
 <p id="cce_10_0343__cce_bestpractice_0107_p191911444124512">The PVC naming rule of the <strong id="cce_10_0343__cce_bestpractice_0107_b586438122911">volumeClaimTemplates</strong> is fixed. When a PVC that meets the naming rule exists, this PVC is used.</p>
 <p id="cce_10_0343__cce_bestpractice_0107_p226010117479">Therefore, disassociate the original PVC first, and then create a PVC with the same name in the CSI format.</p>
 </div></div>
@@ -639,7 +639,7 @@ spec:
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage (FlexVolume)</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0305.html">Storage Management: FlexVolume (Deprecated)</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0345.html b/docs/cce/umn/cce_10_0345.html
index ec10e4c0..e8dca82e 100644
--- a/docs/cce/umn/cce_10_0345.html
+++ b/docs/cce/umn/cce_10_0345.html
@@ -45,7 +45,7 @@ spec:
 <p id="cce_10_0345__p07594391651">After <strong id="cce_10_0345__b1376335518534">nvidia.com/gpu</strong> is specified, workloads will not be scheduled to nodes without GPUs. If the node is GPU-starved, Kubernetes events similar to the following are reported:</p>
 <ul id="cce_10_0345__ul939111995913"><li id="cce_10_0345__li1839213935912">0/2 nodes are available: 2 Insufficient nvidia.com/gpu.</li><li id="cce_10_0345__li1392179165916">0/4 nodes are available: 1 InsufficientResourceOnSingleGPU, 3 Insufficient nvidia.com/gpu.</li></ul>
 <p id="cce_10_0345__p15516871416">To use GPUs on the CCE console, select the GPU quota and specify the percentage of GPUs reserved for the container when creating a workload.</p>
-<div class="fignone" id="cce_10_0345__fig348242715203"><span class="figcap"><b>Figure 1 </b>Using GPUs</span><br><span><img id="cce_10_0345__image291913517439" src="en-us_image_0000001397733101.png"></span></div>
+<div class="fignone" id="cce_10_0345__fig348242715203"><span class="figcap"><b>Figure 1 </b>Using GPUs</span><br><span><img id="cce_10_0345__image291913517439" src="en-us_image_0000001569022929.png"></span></div>
 </div>
 <div class="section" id="cce_10_0345__section1869217223111"><h4 class="sectiontitle">GPU Node Labels</h4><p id="cce_10_0345__p17881183210116">CCE will label GPU-enabled nodes after they are created. Different types of GPU-enabled nodes have different labels.</p>
 <pre class="screen" id="cce_10_0345__screen942724902">$ kubectl get node -L accelerator
diff --git a/docs/cce/umn/cce_10_0348.html b/docs/cce/umn/cce_10_0348.html
index 798d9c12..387f20b0 100644
--- a/docs/cce/umn/cce_10_0348.html
+++ b/docs/cce/umn/cce_10_0348.html
@@ -6,10 +6,10 @@
 <p id="cce_10_0348__p18604173662514">The maximum number of pods that can be created on a node depends on the minimum value of these parameters.</p>
 <ul id="cce_10_0348__ul1792348152514"><li id="cce_10_0348__li1179213481256">For a cluster using the container tunnel network model, the value depends only on <a href="#cce_10_0348__section16296174054019">the maximum number of pods on a node</a>.</li><li id="cce_10_0348__li67512318260">For a cluster using the VPC network model, the value depends on the minimum value between <a href="#cce_10_0348__section16296174054019">the maximum number of pods on a node</a> and <a href="#cce_10_0348__section10770192193714">the number of container IP addresses that can be allocated to a node</a>, that is, min(maximum number of pods on a node, number of container IP addresses that can be allocated to a node).</li><li id="cce_10_0348__li1484192016275">For a cluster (CCE Turbo cluster) using the Cloud Native Network 2.0 model, the value depends on <a href="#cce_10_0348__section16296174054019">the maximum number of pods on a node</a> and <a href="#cce_10_0348__li5286959123611">the number of NICs on a CCE Turbo cluster node</a>.</li></ul>
 <div class="section" id="cce_10_0348__section12428143711548"><h4 class="sectiontitle">Container Network vs. Host Network</h4><p id="cce_10_0348__p94989483544">When creating a pod, you can select the container network or host network for the pod.</p>
-<ul id="cce_10_0348__ul373982665917"><li id="cce_10_0348__li13739132619599">Container network (default): <strong id="cce_10_0348__b433319515920">Each pod is assigned an IP address by the cluster networking add-ons, which occupies the IP addresses of the container network</strong>.</li><li id="cce_10_0348__li13752132911597">Host network: The pod uses the host network (<strong id="cce_10_0348__b4625914564">hostNetwork: true</strong> needs to be configured for the pod) and occupies the host port. The pod IP address is the host IP address. The pod does not occupy the IP addresses of the container network. To use the host network, you must confirm whether the container ports conflict with the host ports. Do not use the host network unless you know exactly which host port is used by which container.</li></ul>
+<ul id="cce_10_0348__ul373982665917"><li id="cce_10_0348__li13739132619599"><a name="cce_10_0348__li13739132619599"></a><a name="li13739132619599"></a>Container network (default): <strong id="cce_10_0348__b433319515920">Each pod is assigned an IP address by the cluster networking add-ons, which occupies the IP addresses of the container network</strong>.</li><li id="cce_10_0348__li13752132911597">Host network: The pod uses the host network (<strong id="cce_10_0348__b4625914564">hostNetwork: true</strong> needs to be configured for the pod) and occupies the host port. The pod IP address is the host IP address. The pod does not occupy the IP addresses of the container network. To use the host network, you must confirm whether the container ports conflict with the host ports. Do not use the host network unless you know exactly which host port is used by which container.</li></ul>
 </div>
 <div class="section" id="cce_10_0348__section10770192193714"><a name="cce_10_0348__section10770192193714"></a><a name="section10770192193714"></a><h4 class="sectiontitle">Number of Container IP Addresses That Can Be Allocated on a Node</h4><p id="cce_10_0348__p8060118">If you select <span class="uicontrol" id="cce_10_0348__uicontrol214931162912"><b>VPC network</b></span> for <strong id="cce_10_0348__b1878943932511">Network Model</strong> when creating a CCE cluster, you also need to set the number of container IP addresses that can be allocated to each node.</p>
-<p id="cce_10_0348__p36341919183012">This parameter affects the maximum number of pods that can be created on a node. Each pod occupies an IP address (when the container network is used). If the number of available IP addresses is insufficient, pods cannot be created.</p>
+<p id="cce_10_0348__p36341919183012">This parameter affects the maximum number of pods that can be created on a node. Each pod occupies an IP address (when the <a href="#cce_10_0348__li13739132619599">container network</a> is used). If the number of available IP addresses is insufficient, pods cannot be created.</p>
 <p id="cce_10_0348__p1931471918459"></p>
 <p id="cce_10_0348__p18181516161419">By default, a node occupies three container IP addresses (network address, gateway address, and broadcast address). Therefore, the number of container IP addresses that can be allocated to a node equals the number of selected container IP addresses minus 3. For example, in the preceding figure, <strong id="cce_10_0348__b880185251115">the number of container IP addresses that can be allocated to a node is 125 (128 – 3)</strong>.</p>
 </div>
diff --git a/docs/cce/umn/cce_10_0351.html b/docs/cce/umn/cce_10_0351.html
index 185ae921..99ebd9ea 100644
--- a/docs/cce/umn/cce_10_0351.html
+++ b/docs/cce/umn/cce_10_0351.html
@@ -5,13 +5,13 @@
 <ul id="cce_10_0351__ul144721771494"><li id="cce_10_0351__li8472377496">CPU throttling</li><li id="cce_10_0351__li547213710498">Context switching</li><li id="cce_10_0351__li54722078499">Processor cache misses</li><li id="cce_10_0351__li20472127184918">Cross-socket memory access</li><li id="cce_10_0351__li647211754916">Hyperthreads that are expected to run on the same physical CPU card</li></ul>
 <p id="cce_10_0351__p84721273491">If your workloads are sensitive to any of these items and CPU cache affinity and scheduling latency significantly affect workload performance, kubelet allows alternative CPU management policies to determine some placement preferences on the node. The CPU manager preferentially allocates resources on a socket and full physical cores to avoid interference.</p>
 <div class="section" id="cce_10_0351__section1211174714517"><h4 class="sectiontitle">Binding CPU Cores to a Pod</h4><p id="cce_10_0351__p4433121318521">Prerequisites:</p>
-<ul id="cce_10_0351__ul19547351195214"><li id="cce_10_0351__li135471451175216">The static core binding policy is enabled on the node. For details, see <a href="#cce_10_0351__section173918176434">Enabling the CPU Management Policy</a>.</li><li id="cce_10_0351__li954705117523">Both <strong id="cce_10_0351__b8483152174710">requests</strong> and <strong id="cce_10_0351__b24451423124712">limits</strong> must be set in the pod definition and their values must be the same.</li><li id="cce_10_0351__li165471151185214">The value of <strong id="cce_10_0351__b1366342114814">requests</strong> must be an integer for the container.</li><li id="cce_10_0351__li33251114537">For an init container, it is recommended that you set its <strong id="cce_10_0351__b3453173712483">requests</strong> to the same as that of the service container. Otherwise, the service container does not inherit the CPU allocation result of the init container, and the CPU manager reserves more CPU resources than supposed. For more information, see <a href="https://github.com/kubernetes/kubernetes/issues/94220#issuecomment-868489201" target="_blank" rel="noopener noreferrer">App Containers can't inherit Init Containers CPUs - CPU Manager Static Policy</a>.</li></ul>
+<ul id="cce_10_0351__ul19547351195214"><li id="cce_10_0351__li135471451175216">The static core binding policy is enabled on the node. For details, see <a href="#cce_10_0351__section173918176434">Enabling the CPU Management Policy</a>.</li><li id="cce_10_0351__li954705117523">Both <strong id="cce_10_0351__b8483152174710">requests</strong> and <strong id="cce_10_0351__b24451423124712">limits</strong> must be set in the pod definition and their values must be the same.</li><li id="cce_10_0351__li165471151185214">The value of <strong id="cce_10_0351__b1366342114814">requests</strong> must be an integer for the container.</li><li id="cce_10_0351__li33251114537">For an init container, it is recommended that you set its <strong id="cce_10_0351__b2044020321953">requests</strong> to the same as that of the service container. Otherwise, the service container does not inherit the CPU allocation result of the init container, and the CPU manager reserves more CPU resources than supposed. For more information, see <a href="https://github.com/kubernetes/kubernetes/issues/94220#issuecomment-868489201" target="_blank" rel="noopener noreferrer">App Containers can't inherit Init Containers CPUs - CPU Manager Static Policy</a>.</li></ul>
 <p id="cce_10_0351__p66846381129">You can use <a href="cce_10_0232.html">Scheduling Policy (Affinity/Anti-affinity)</a> to schedule the configured pods to the nodes where the static CPU policy is enabled. In this way, cores can be bound.</p>
 </div>
 <div class="section" id="cce_10_0351__section173918176434"><a name="cce_10_0351__section173918176434"></a><a name="section173918176434"></a><h4 class="sectiontitle">Enabling the CPU Management Policy</h4><p id="cce_10_0351__p2030652012167">A <a href="https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/" target="_blank" rel="noopener noreferrer">CPU management policy</a> is specified by the kubelet flag <strong id="cce_10_0351__b184452047165113">--cpu-manager-policy</strong>. The following policies are supported:</p>
 <ul id="cce_10_0351__ul830614202161"><li id="cce_10_0351__li43061320161619">Disabled (<strong id="cce_10_0351__b645432675210">none</strong>): the default policy. The <strong id="cce_10_0351__b7454122605213">none</strong> policy explicitly enables the existing default CPU affinity scheme, providing no affinity beyond what the OS scheduler does automatically.</li><li id="cce_10_0351__li16306112010160">Enabled (<strong id="cce_10_0351__b724483319522">static</strong>): The <strong id="cce_10_0351__b1724411332524">static</strong> policy allows containers in <strong id="cce_10_0351__b3244113365214">Guaranteed</strong> pods with integer CPU requests to be granted increased CPU affinity and exclusivity on the node.</li></ul>
 <p id="cce_10_0351__p1340113963619">When creating a cluster, you can configure the CPU management policy in <strong id="cce_10_0351__b19314131913552">Advanced Settings</strong>, as shown in the following figure.</p>
-<p id="cce_10_0351__p124711122433"><span><img id="cce_10_0351__image1951371204318" src="en-us_image_0000001244261055.png"></span></p>
+<p id="cce_10_0351__p124711122433"><span><img id="cce_10_0351__image1951371204318" src="en-us_image_0000001569022837.png"></span></p>
 <p id="cce_10_0351__p5974134104311">You can also configure the policy in a node pool. The configuration will change the kubelet flag <strong id="cce_10_0351__b209314149569">--cpu-manager-policy</strong> on the node. Log in to the CCE console, click the cluster name, access the cluster details page, and choose <strong id="cce_10_0351__b129714201506">Nodes</strong> in the navigation pane. On the page displayed, click the <strong id="cce_10_0351__b192976201701">Node Pools</strong> tab. Choose <strong id="cce_10_0351__b1029818201107">More</strong> &gt; <strong id="cce_10_0351__b8298520209">Manage</strong> in the <strong id="cce_10_0351__b1359213121634">Operation</strong> column of the target node pool, and change the value of <strong id="cce_10_0351__b02991720203">cpu-manager-policy</strong> to <strong id="cce_10_0351__b122991520305">static</strong>.</p>
 </div>
 <div class="section" id="cce_10_0351__section193243402534"><h4 class="sectiontitle">Pod Configuration</h4><p id="cce_10_0351__p20744312541">For CPU, both <strong id="cce_10_0351__b48614497594">requests</strong> and <strong id="cce_10_0351__b188611449185916">limits</strong> must be set to the same, and <strong id="cce_10_0351__b86921281802">requests</strong> must be an integer.</p>
diff --git a/docs/cce/umn/cce_10_0360.html b/docs/cce/umn/cce_10_0360.html
index 918f84d1..60b05f9f 100644
--- a/docs/cce/umn/cce_10_0360.html
+++ b/docs/cce/umn/cce_10_0360.html
@@ -21,7 +21,7 @@ nameserver 10.247.3.10
 search default.svc.cluster.local svc.cluster.local cluster.local
 options ndots:5 timeout single-request-reopen</pre>
 <p id="cce_10_0360__p5191714112818">When a user accesses the <em id="cce_10_0360__i1747192920485">Service name:Port</em> of the Nginx pod, the IP address of the Nginx Service is resolved from CoreDNS, and then the IP address of the Nginx Service is accessed. In this way, the user can access the backend Nginx pod.</p>
-<div class="fignone" id="cce_10_0360__fig56221517187"><span class="figcap"><b>Figure 1 </b>Example of domain name resolution in a cluster</span><br><span><img id="cce_10_0360__image13391194511278" src="en-us_image_0000001244261167.png"></span></div>
+<div class="fignone" id="cce_10_0360__fig56221517187"><span class="figcap"><b>Figure 1 </b>Example of domain name resolution in a cluster</span><br><span><img id="cce_10_0360__image13391194511278" src="en-us_image_0000001568822905.png"></span></div>
 </div>
 <div class="section" id="cce_10_0360__section15985263473"><h4 class="sectiontitle">Related Operations</h4><p id="cce_10_0360__p558816715366">You can also configure DNS in a workload. For details, see <a href="cce_10_0365.html">DNS Configuration</a>.</p>
 <p id="cce_10_0360__p1283117309440">You can also use coredns to implement user-defined domain name resolution. For details, see <a href="cce_10_0361.html">Using CoreDNS for Custom Domain Name Resolution</a>.</p>
diff --git a/docs/cce/umn/cce_10_0361.html b/docs/cce/umn/cce_10_0361.html
index de760df9..5fa44037 100644
--- a/docs/cce/umn/cce_10_0361.html
+++ b/docs/cce/umn/cce_10_0361.html
@@ -13,8 +13,8 @@
 <p id="cce_10_0361__p158773611266">Assume that a cluster administrator has a Consul DNS server located at 10.150.0.1 and all Consul domain names have the suffix <strong id="cce_10_0361__b681346115619">.consul.local</strong>.</p>
 <ol id="cce_10_0361__ol1778824143115"><li id="cce_10_0361__li9788194173111"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0361__li299924911324"><span>In the navigation pane, choose <strong id="cce_10_0361__b13315751713">Add-ons</strong>. On the displayed page, click <strong id="cce_10_0361__b715116171012">Edit</strong> under CoreDNS.</span></li><li id="cce_10_0361__li11849287364"><span>Add a stub domain in the <span class="uicontrol" id="cce_10_0361__uicontrol137160301244"><b>Parameters</b></span> area.</span><p><div class="p" id="cce_10_0361__p38296222412">Modify the <strong id="cce_10_0361__b8893111101617">stub_domains</strong> parameter in the format of a key-value pair. The key is a DNS suffix domain name, and the value is a DNS IP address or a group of DNS IP addresses.<pre class="screen" id="cce_10_0361__screen1471417401301">{
 	"stub_domains": {
-                "consul.local": [
-			"10.150.0.1"
+                "<i><span class="varname" id="cce_10_0361__varname114581141271">consul.local</span></i>": [
+			"<i><span class="varname" id="cce_10_0361__varname98931852719">10.150.0.1</span></i>"
 		]
 	},
 	"upstream_nameservers": []
@@ -22,6 +22,8 @@
 </div>
 </p></li><li id="cce_10_0361__li33368168390"><span>Click <strong id="cce_10_0361__b072990412">OK</strong>.</span></li></ol>
 <p id="cce_10_0361__p1037819711349">You can also modify the ConfigMap as follows:</p>
+<div class="notice" id="cce_10_0361__note46582017266"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_10_0361__p116672052616">The parameter values in red in the example can only be modified and cannot be deleted.</p>
+</div></div>
 <pre class="screen" id="cce_10_0361__screen4171155193418">$ kubectl edit configmap coredns -n kube-system
 apiVersion: v1
 data:
@@ -43,11 +45,11 @@ data:
         reload
     }
 
-    consul.local:5353 {
+    <i><span class="varname" id="cce_10_0361__varname188199265259">consul.local</span></i>:5353 {
         bind {$POD_IP}
         errors
         cache 30
-        forward . 10.150.0.1
+        forward . <i><span class="varname" id="cce_10_0361__varname1940718314256">10.150.0.1</span></i>
     }
 kind: ConfigMap
 metadata:
diff --git a/docs/cce/umn/cce_10_0363.html b/docs/cce/umn/cce_10_0363.html
index 44f8d147..afef62b0 100644
--- a/docs/cce/umn/cce_10_0363.html
+++ b/docs/cce/umn/cce_10_0363.html
@@ -3,10 +3,10 @@
 <h1 class="topictitle1">Creating a Node</h1>
 <div id="body8662426"><div class="section" id="cce_10_0363__section103205496263"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_10_0363__ul1074615557447"><li id="cce_10_0363__li474645512448">At least one cluster has been created.</li><li id="cce_10_0363__li1919515393327">A key pair has been created for identity authentication upon remote node login.</li></ul>
 </div>
-<div class="section" id="cce_10_0363__cce_01_0298_section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0363__cce_01_0298_ul129132199018"><li id="cce_10_0363__li103127381647">The node has 2-core or higher CPU, 4 GB or larger memory.</li><li id="cce_10_0363__li372583115367">To ensure node stability, a certain amount of CCE node resources will be reserved for Kubernetes components (such as kubelet, kube-proxy, and docker) based on the node specifications. Therefore, the total number of node resources and assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, more node resources need to be reserved to run Kubernetes components. For details, see <a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</li><li id="cce_10_0363__li375224163611">The node networking (such as the VM networking and container networking) is taken over by CCE. You are not allowed to add and delete NICs or change routes. If you modify the networking configuration, the availability of CCE may be affected. For example, the NIC named <strong id="cce_10_0363__b11775111413426">gw_11cbf51a@eth0</strong> on the node is the container network gateway and cannot be modified.</li><li id="cce_10_0363__cce_01_0298_li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0363__li1164034982716">Once a node is created, its AZ cannot be changed.</li></ul>
+<div class="section" id="cce_10_0363__en-us_topic_0000001138502763_section1675221242512"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0363__en-us_topic_0000001138502763_ul129132199018"><li id="cce_10_0363__li103127381647">The node has 2-core or higher CPU, 4 GB or larger memory.</li><li id="cce_10_0363__li372583115367">To ensure node stability, a certain amount of CCE node resources will be reserved for Kubernetes components (such as kubelet, kube-proxy, and docker) based on the node specifications. Therefore, the total number of node resources and assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, more node resources need to be reserved to run Kubernetes components. For details, see <a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</li><li id="cce_10_0363__li375224163611">The node networking (such as the VM networking and container networking) is taken over by CCE. You are not allowed to add and delete NICs or change routes. If you modify the networking configuration, the availability of CCE may be affected. For example, the NIC named <strong id="cce_10_0363__b11775111413426">gw_11cbf51a@eth0</strong> on the node is the container network gateway and cannot be modified.</li><li id="cce_10_0363__en-us_topic_0000001138502763_li1695123091913">During the node creation, software packages are downloaded from OBS using the domain name. You need to use a private DNS server to resolve the OBS domain name, and configure the DNS server address of the subnet where the node resides with a private DNS server address. When you create a subnet, the private DNS server is used by default. If you change the subnet DNS, ensure that the DNS server in use can resolve the OBS domain name.</li><li id="cce_10_0363__li1164034982716">Once a node is created, its AZ cannot be changed.</li></ul>
 </div>
-<div class="section" id="cce_10_0363__cce_01_0298_section13305183010495"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0363__p46648386490">After a cluster is created, you can create nodes for the cluster.</p>
-<ol id="cce_10_0363__ol778663545319"><li id="cce_10_0363__li1353715161746"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0363__b2071892118317">Clusters</strong>. Click the target cluster name to access its details page.</span></li><li id="cce_10_0363__li178653514531"><span>In the navigation pane on the left, choose <strong id="cce_10_0363__b571665718317">Nodes</strong>. On the page displayed, click <strong id="cce_10_0363__b77441273411">Create Node</strong>. In the <strong id="cce_10_0363__b172353310516">Node Settings</strong> step, set node parameters by referring to the following table.</span><p><p id="cce_10_0363__p1466807105817"><strong id="cce_10_0363__cce_01_0298_b369382154816">Compute Settings</strong></p>
+<div class="section" id="cce_10_0363__en-us_topic_0000001138502763_section13305183010495"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0363__p46648386490">After a cluster is created, you can create nodes for the cluster.</p>
+<ol id="cce_10_0363__ol778663545319"><li id="cce_10_0363__li1353715161746"><span>Log in to the CCE console. In the navigation pane, choose <strong id="cce_10_0363__b2071892118317">Clusters</strong>. Click the target cluster name to access its details page.</span></li><li id="cce_10_0363__li178653514531"><span>In the navigation pane on the left, choose <strong id="cce_10_0363__b571665718317">Nodes</strong>. On the page displayed, click <strong id="cce_10_0363__b77441273411">Create Node</strong>. In the <strong id="cce_10_0363__b172353310516">Node Settings</strong> step, set node parameters by referring to the following table.</span><p><p id="cce_10_0363__p1466807105817"><strong id="cce_10_0363__en-us_topic_0000001138502763_b369382154816">Compute Settings</strong></p>
 <div class="p" id="cce_10_0363__p1666817710586">You can configure the specifications and OS of a cloud server, on which your containerized applications run.
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0363__table0668137185810" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuration parameters</caption><thead align="left"><tr id="cce_10_0363__row46680715812"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.3.3.2.2.2.1.2.3.1.1"><p id="cce_10_0363__p186688710581">Parameter</p>
 </th>
@@ -17,20 +17,22 @@
 <tbody><tr id="cce_10_0363__row1666817718587"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p13216122213017">AZ</p>
 </td>
 <td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p4383635121713">AZ where the node is located. Nodes in a cluster can be created in different AZs for higher reliability. The value cannot be changed after the node is created.</p>
-<p id="cce_10_0363__p13307144019185">You are advised to select <strong id="cce_10_0363__cce_01_0298_b280055945418">Random</strong> to deploy your node in a random AZ based on the selected node flavor.</p>
+<p id="cce_10_0363__p13307144019185">You are advised to select <strong id="cce_10_0363__en-us_topic_0000001138502763_b280055945418">Random</strong> to deploy your node in a random AZ based on the selected node flavor.</p>
 <p id="cce_10_0363__p4786153575318">An AZ is a physical region where resources use independent power supply and networks. AZs are physically isolated but interconnected through an internal network. To enhance workload availability, create nodes in different AZs.</p>
 </td>
 </tr>
 <tr id="cce_10_0363__row1979195915497"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p18005944914">Node Type</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p17807592491">CCE clusters support Elastic Cloud Servers (ECSs).</p>
-<p id="cce_10_0363__p96493611512">CCE Turbo clusters support Elastic Cloud Servers (ECSs) and bare metal servers (BMSs).</p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><div class="p" id="cce_10_0363__p9807113741217">CCE cluster:<ul id="cce_10_0363__ul203199555124"><li id="cce_10_0363__li931925518124">ECS (VM): Containers run on ECSs.</li></ul>
+</div>
+<div class="p" id="cce_10_0363__p7961688151">CCE Turbo cluster:<ul id="cce_10_0363__ul8196430101511"><li id="cce_10_0363__li31961830141515">ECS (VM): Containers run on ECSs. Only Trunkport ECSs (models that can be bound with multiple elastic network interfaces) are supported.</li></ul>
+</div>
 </td>
 </tr>
 <tr id="cce_10_0363__row1394816562"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p11464820561">Container Engine</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p192017281555">CCE clusters support Docker and containerd in some scenarios.</p>
-<ul id="cce_10_0363__ul93311957155518"><li id="cce_10_0363__li1770423185614">VPC network clusters of v1.23 and later versions support containerd. Container tunnel network clusters of v1.23.2-r0 and later versions support containerd.</li><li id="cce_10_0363__li1873025821011">For a CCE Turbo cluster, both <strong id="cce_10_0363__b1832101213569">Docker</strong> and <strong id="cce_10_0363__b432231216566">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>. </li></ul>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><div class="p" id="cce_10_0363__p192017281555">CCE clusters support Docker and containerd in some scenarios.<ul id="cce_10_0363__ul93311957155518"><li id="cce_10_0363__li1770423185614">VPC network clusters of v1.23 and later versions support containerd. Container tunnel network clusters of v1.23.2-r0 and later versions support containerd.</li><li id="cce_10_0363__li1873025821011">For a CCE Turbo cluster, both <strong id="cce_10_0363__b1832101213569">Docker</strong> and <strong id="cce_10_0363__b432231216566">containerd</strong> are supported. For details, see <a href="cce_10_0462.html#cce_10_0462__section159298451879">Mapping between Node OSs and Container Engines</a>.</li></ul>
+</div>
 </td>
 </tr>
 <tr id="cce_10_0363__row156691178589"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p1669177185817">Specifications</p>
@@ -41,7 +43,7 @@
 <tr id="cce_10_0363__row146695755817"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p176690785813">OS</p>
 </td>
 <td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><p id="cce_10_0363__p872401816306">Select an OS type. Different types of nodes support different OSs.</p>
-<p id="cce_10_0363__p1058345314295"><strong id="cce_10_0363__cce_01_0298_b182401825201815">Public image</strong>: Select an OS for the node.</p>
+<p id="cce_10_0363__p1058345314295"><strong id="cce_10_0363__en-us_topic_0000001138502763_b182401825201815">Public image</strong>: Select an OS for the node.</p>
 <p id="cce_10_0363__p89866115220"><strong id="cce_10_0363__b685216581971">Private image</strong>: You can use private images. </p>
 </td>
 </tr>
@@ -55,7 +57,7 @@
 <tr id="cce_10_0363__row6176410173016"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.1 "><p id="cce_10_0363__p1917631063017">Login Mode</p>
 </td>
 <td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.2.1.2.3.1.2 "><ul id="cce_10_0363__ul77401618191712"><li id="cce_10_0363__li1857913131710"><strong id="cce_10_0363__b9138131116117">Key Pair</strong><p id="cce_10_0363__p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
-<p id="cce_10_0363__p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0363__cce_01_0298_b1784085011374">Create Key Pair</strong>.</p>
+<p id="cce_10_0363__p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0363__en-us_topic_0000001138502763_b1784085011374">Create Key Pair</strong>.</p>
 </li></ul>
 </td>
 </tr>
@@ -74,14 +76,15 @@
 <tbody><tr id="cce_10_0363__row5669170585"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.1 "><p id="cce_10_0363__p666916719588">System Disk</p>
 </td>
 <td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.2 "><p id="cce_10_0363__p590942616323">System disk used by the node OS. The value ranges from 40 GB to 1,024 GB. The default value is 50 GB.</p>
-<div class="p" id="cce_10_0363__cce_01_0028_p196385417139"><strong id="cce_10_0363__b136271720418">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0363__b11294425727">This function is available only in certain regions.</strong><ul id="cce_10_0363__cce_01_0028_ul6195114261211"><li id="cce_10_0363__cce_01_0028_li5195194211127"><strong id="cce_10_0363__b3414281726">Encryption</strong> is not selected by default.</li><li id="cce_10_0363__cce_01_0028_li5195184201217">After you select <strong id="cce_10_0363__b1022719341521">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0363__b1222793417213">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
+<div class="p" id="cce_10_0363__en-us_topic_0107283640_p196385417139"><strong id="cce_10_0363__b1459132515920">Encryption</strong>: System disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0363__b11294425727">This function is available only in certain regions.</strong><ul id="cce_10_0363__en-us_topic_0107283640_ul6195114261211"><li id="cce_10_0363__en-us_topic_0107283640_li5195194211127"><strong id="cce_10_0363__b3414281726">Encryption</strong> is not selected by default.</li><li id="cce_10_0363__en-us_topic_0107283640_li5195184201217">After you select <strong id="cce_10_0363__b1022719341521">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0363__b1222793417213">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
 </div>
 </td>
 </tr>
 <tr id="cce_10_0363__row1966913718588"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.1 "><p id="cce_10_0363__p0669147185817">Data Disk</p>
 </td>
-<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.2 "><p id="cce_10_0363__p246755017336">Data disk used by the container runtime and kubelet on the node.  </p>
-<p id="cce_10_0363__p17207615113820"><strong id="cce_10_0363__b189421213171912">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0363__b3766102113197">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.4.1.2.3.1.2 "><p id="cce_10_0363__p246755017336"><strong id="cce_10_0363__b1825531184915">At least one data disk is required</strong> for the container runtime and kubelet. <strong id="cce_10_0363__b2025163119498">The data disk cannot be deleted or uninstalled. Otherwise, the node will be unavailable.</strong></p>
+<ul id="cce_10_0363__ul324262033711"><li id="cce_10_0363__li1124252010378">First data disk: used for container runtime and kubelet components. The value ranges from 20 GB to 32,768 GB. The default value is 100 GB.</li><li id="cce_10_0363__li6177165413374">Other data disks: You can set the data disk size to a value ranging from 10 GB to 32,768 GB. The default value is 100 GB.</li></ul>
+<p id="cce_10_0363__p20408122884010"><strong id="cce_10_0363__b11813374011">Advanced Settings</strong></p>
 <p id="cce_10_0363__p3752312011">Click <strong id="cce_10_0363__b869213393116">Expand</strong> to set the following parameters:</p>
 <ul id="cce_10_0363__ul197721145155911"><li id="cce_10_0363__li12110343014"><strong id="cce_10_0363__b15422114714113">Allocate Disk Space</strong>: Select this option to define the disk space occupied by the container runtime to store the working directories, container image data, and image metadata. For details about how to allocate data disk space, see <a href="cce_10_0341.html">Data Disk Space Allocation</a>.</li><li id="cce_10_0363__li1095641711169"><strong id="cce_10_0363__b3246163917219">Encryption</strong>: Data disk encryption safeguards your data. Snapshots generated from encrypted disks and disks created using these snapshots automatically inherit the encryption function. <strong id="cce_10_0363__b185315414212">This function is available only in certain regions.</strong><ul id="cce_10_0363__ul1924511512168"><li id="cce_10_0363__li4245181561611"><strong id="cce_10_0363__b166022451425">Encryption</strong> is not selected by default.</li><li id="cce_10_0363__li17245415121616">After you select <strong id="cce_10_0363__b1910517483216">Encryption</strong>, you can select an existing key in the displayed dialog box. If no key is available, click <strong id="cce_10_0363__b181053482219">View Key List</strong> to create a key. After the key is created, click the refresh icon.</li></ul>
 </li></ul>
@@ -115,11 +118,17 @@
 <td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.6.1.2.3.1.2 "><p id="cce_10_0363__p192521838115318">IP address of the specified node. By default, the value is randomly allocated.</p>
 </td>
 </tr>
+<tr id="cce_10_0363__row16331275416"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.3.3.2.2.6.1.2.3.1.1 "><p id="cce_10_0363__p133313714414">EIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.3.3.2.2.6.1.2.3.1.2 "><p id="cce_10_0363__p16787135519418">A cloud server without an EIP cannot access public networks or be accessed by public networks.</p>
+<p id="cce_10_0363__p113317704113">The default value is <strong id="cce_10_0363__b391913110568">Do not use</strong>. <strong id="cce_10_0363__b154901113155711">Use existing</strong> and <strong id="cce_10_0363__b202561516185712">Auto create</strong> are supported.</p>
+</td>
+</tr>
 </tbody>
 </table>
 </div>
 </div>
-<p id="cce_10_0363__p151517566378"><strong id="cce_10_0363__cce_01_0298_b1479511744511">Advanced Settings</strong></p>
+<p id="cce_10_0363__p151517566378"><strong id="cce_10_0363__en-us_topic_0000001138502763_b1479511744511">Advanced Settings</strong></p>
 <div class="p" id="cce_10_0363__p1715175643712">Configure advanced node capabilities such as labels, taints, and startup command.
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0363__table101545619373" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Advanced configuration parameters</caption><thead align="left"><tr id="cce_10_0363__row115205619372"><th align="left" class="cellrowborder" valign="top" width="23.68%" id="mcps1.3.3.3.2.2.8.1.2.3.1.1"><p id="cce_10_0363__p2152561377">Parameter</p>
 </th>
@@ -129,7 +138,7 @@
 </thead>
 <tbody><tr id="cce_10_0363__row653985164019"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p1253915513402">Kubernetes Label</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p11258124419136">Click <strong id="cce_10_0363__cce_01_0298_b134533618313">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p11258124419136">Click <strong id="cce_10_0363__en-us_topic_0000001138502763_b134533618313">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
 <p id="cce_10_0363__p1442572821211">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
 </td>
 </tr>
@@ -142,7 +151,7 @@
 </tr>
 <tr id="cce_10_0363__row115391952402"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p55391457404">Taint</p>
 </td>
-<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><div class="p" id="cce_10_0363__p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0363__ul17274222121015"><li id="cce_10_0363__li227482216106"><strong id="cce_10_0363__cce_01_0298_b19270155312584">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0363__li7274112241020"><strong id="cce_10_0363__cce_01_0298_b149231210105912">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0363__li2274182211010"><strong id="cce_10_0363__cce_01_0298_b1535002716590">Effect</strong>: Available options are <strong id="cce_10_0363__cce_01_0298_b6356142716595">NoSchedule</strong>, <strong id="cce_10_0363__cce_01_0298_b9356327175910">PreferNoSchedule</strong>, and <strong id="cce_10_0363__cce_01_0298_b935642719599">NoExecute</strong>.</li></ul>
+<td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><div class="p" id="cce_10_0363__p2875141354415">This parameter is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0363__ul17274222121015"><li id="cce_10_0363__li227482216106"><strong id="cce_10_0363__en-us_topic_0000001138502763_b19270155312584">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0363__li7274112241020"><strong id="cce_10_0363__en-us_topic_0000001138502763_b149231210105912">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0363__li2274182211010"><strong id="cce_10_0363__en-us_topic_0000001138502763_b1535002716590">Effect</strong>: Available options are <strong id="cce_10_0363__en-us_topic_0000001138502763_b6356142716595">NoSchedule</strong>, <strong id="cce_10_0363__en-us_topic_0000001138502763_b9356327175910">PreferNoSchedule</strong>, and <strong id="cce_10_0363__en-us_topic_0000001138502763_b935642719599">NoExecute</strong>.</li></ul>
 </div>
 <p id="cce_10_0363__p1817835834614">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
 <div class="note" id="cce_10_0363__note1344571543714"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0363__p544591520372">For a cluster of v1.19 or earlier, the workload may have been scheduled to a node before the taint is added. To avoid such a situation, select a cluster of v1.19 or later.</p>
@@ -159,8 +168,8 @@
 <tr id="cce_10_0363__row124141558173910"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p154141258193916">ECS Group</p>
 </td>
 <td class="cellrowborder" valign="top" width="76.32%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.2 "><p id="cce_10_0363__p53431536184014">An ECS group logically groups ECSs. The ECSs in the same ECS group comply with the same policy associated with the ECS group.</p>
-<p id="cce_10_0363__p135011254181618"><strong id="cce_10_0363__cce_01_0298_b181742121446">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</p>
-<p id="cce_10_0363__p19871173217401">Select an existing ECS group, or click <strong id="cce_10_0363__cce_01_0298_b573830128">Add ECS Group</strong> to create one. After the ECS group is created, click the refresh button.</p>
+<p id="cce_10_0363__p135011254181618"><strong id="cce_10_0363__en-us_topic_0000001138502763_b181742121446">Anti-affinity</strong>: ECSs in an ECS group are deployed on different physical hosts to improve service reliability.</p>
+<p id="cce_10_0363__p19871173217401">Select an existing ECS group, or click <strong id="cce_10_0363__en-us_topic_0000001138502763_b573830128">Add ECS Group</strong> to create one. After the ECS group is created, click the refresh button.</p>
 </td>
 </tr>
 <tr id="cce_10_0363__row23431056203915"><td class="cellrowborder" valign="top" width="23.68%" headers="mcps1.3.3.3.2.2.8.1.2.3.1.1 "><p id="cce_10_0363__p534319566391">Pre-installation Command</p>
@@ -185,7 +194,7 @@
 </table>
 </div>
 </div>
-</p></li><li id="cce_10_0363__li10191721165313"><span>Click <strong id="cce_10_0363__b175017184413">Next: Confirm</strong>. Confirm the configured parameters, specifications. </span></li><li id="cce_10_0363__li742974974510"><span>Click <strong id="cce_10_0363__cce_01_0298_b19330133916119">Submit</strong>.</span><p><p id="cce_10_0363__p1582601641210">The node list page is displayed. If the node status is <strong id="cce_10_0363__cce_01_0298_b343891612121">Running</strong>, the node is created successfully. It takes about 6 to 10 minutes to create a node.</p>
+</p></li><li id="cce_10_0363__li10191721165313"><span>Click <strong id="cce_10_0363__b175017184413">Next: Confirm</strong>. Confirm the configured parameters, specifications. </span></li><li id="cce_10_0363__li742974974510"><span>Click <strong id="cce_10_0363__en-us_topic_0000001138502763_b19330133916119">Submit</strong>.</span><p><p id="cce_10_0363__p1582601641210">The node list page is displayed. If the node status is <strong id="cce_10_0363__en-us_topic_0000001138502763_b343891612121">Running</strong>, the node is created successfully. It takes about 6 to 10 minutes to create a node.</p>
 </p></li><li id="cce_10_0363__li8393044161317"><span>Click <strong id="cce_10_0363__b1679124911319">Back to Node List</strong>. The node is created successfully if it changes to the <strong id="cce_10_0363__b158544910312">Running</strong> state.</span></li></ol>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0367.html b/docs/cce/umn/cce_10_0367.html
index 843f653e..3f1fd956 100644
--- a/docs/cce/umn/cce_10_0367.html
+++ b/docs/cce/umn/cce_10_0367.html
@@ -6,8 +6,8 @@
 </div>
 <div class="section" id="cce_10_0367__section1830417304596"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0367__p743513488317">This feature is available only to clusters of v1.19 and later.</p>
 </div>
-<div class="section" id="cce_10_0367__section13739162465410"><h4 class="sectiontitle">Customizing a SAN</h4><ol id="cce_10_0367__ol14222161910276"><li id="cce_10_0367__li522271918277"><span>Log in to the CCE console.</span></li><li id="cce_10_0367__li88264265271"><span>Click the target cluster in the cluster list to go to the cluster details page.</span></li><li id="cce_10_0367__li1942836112713"><span>In the <strong id="cce_10_0367__b11906134417264">Connection Information</strong> area, click <span><img id="cce_10_0367__image194171230112913" src="en-us_image_0000001199341268.png"></span> next to <strong id="cce_10_0367__b04361849172613">Custom SAN</strong>. In the dialog box displayed, add the IP address or domain name and click <strong id="cce_10_0367__b1062916962814">Save</strong>.</span><p><p id="cce_10_0367__p465614114287"></p>
-<div class="note" id="cce_10_0367__note182701752173012"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0367__p19655105393012">1. This operation will restart kube-apiserver and update the <strong id="cce_10_0367__b18757175662916">kubeconfig.json</strong> file for a short period of time. Do not perform operations on the cluster during this period.</p>
+<div class="section" id="cce_10_0367__section13739162465410"><h4 class="sectiontitle">Customizing a SAN</h4><ol id="cce_10_0367__ol14222161910276"><li id="cce_10_0367__li522271918277"><span>Log in to the CCE console.</span></li><li id="cce_10_0367__li88264265271"><span>Click the target cluster in the cluster list to go to the cluster details page.</span></li><li id="cce_10_0367__li1942836112713"><span>In the <strong id="cce_10_0367__b11906134417264">Connection Information</strong> area, click <span><img id="cce_10_0367__image194171230112913" src="en-us_image_0000001517743644.png"></span> next to <strong id="cce_10_0367__b04361849172613">Custom SAN</strong>. In the dialog box displayed, add the IP address or domain name and click <strong id="cce_10_0367__b1062916962814">Save</strong>.</span><p><p id="cce_10_0367__p465614114287"></p>
+<div class="note" id="cce_10_0367__note182701752173012"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0367__p19655105393012">1. This operation will restart kube-apiserver and update the <strong id="cce_10_0367__b16261939981">kubeconfig.json</strong> file for a short period of time. Do not perform operations on the cluster during this period.</p>
 <p id="cce_10_0367__p66551353183015">2. A maximum of 128 domain names or IP addresses, separated by commas (,), are allowed.</p>
 <p id="cce_10_0367__p1865625323020">3. If a custom domain name needs to be bound to an EIP, ensure that an EIP has been configured.</p>
 </div></div>
diff --git a/docs/cce/umn/cce_10_0377.html b/docs/cce/umn/cce_10_0377.html
index 6c3b3b9b..5d35c3e4 100644
--- a/docs/cce/umn/cce_10_0377.html
+++ b/docs/cce/umn/cce_10_0377.html
@@ -38,7 +38,7 @@
 </div>
 </li><li id="cce_10_0377__li3356824413">Permission<ul id="cce_10_0377__ul3352818447"><li id="cce_10_0377__li1351488444"><strong id="cce_10_0377__b1561171095419">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_10_0377__li535148164412"><strong id="cce_10_0377__b20905191114541">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
 </li></ol>
-<p id="cce_10_0377__p156433043">You can click <span><img id="cce_10_0377__image75256391391" src="en-us_image_0000001465197524.png"></span> to add multiple paths and subpaths.</p>
+<p id="cce_10_0377__p156433043">You can click <span><img id="cce_10_0377__image75256391391" src="en-us_image_0000001568902637.png"></span> to add multiple paths and subpaths.</p>
 </td>
 </tr>
 </tbody>
@@ -69,13 +69,13 @@
 <tr id="cce_10_0377__row10674101084717"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.8.3.2.1.2.3.1.1 "><p id="cce_10_0377__p96728108473">Add Container Path</p>
 </td>
 <td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.8.3.2.1.2.3.1.2 "><p id="cce_10_0377__p18708203013719">Configure the following parameters:</p>
-<ol type="a" id="cce_10_0377__ol76839501038"><li id="cce_10_0377__cce_10_0377_li81991024215"><strong id="cce_10_0377__cce_10_0377_b457724713533">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__cce_10_0377_b1557718476536">tmp</strong>.<p id="cce_10_0377__cce_10_0377_p183671375216">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
-</li><li id="cce_10_0377__cce_10_0377_li1498071020210"><strong id="cce_10_0377__cce_10_0377_b122452553539">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__cce_10_0377_b3252185515539">/tmp</strong>.<div class="p" id="cce_10_0377__cce_10_0377_p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__cce_10_0377_b1887395915531">/</strong> or <strong id="cce_10_0377__cce_10_0377_b88791559175320">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__cce_10_0377_note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__cce_10_0377_p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+<ol type="a" id="cce_10_0377__ol76839501038"><li id="cce_10_0377__en-us_topic_0000001199341206_li81991024215"><strong id="cce_10_0377__b265882361">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__b725805190">tmp</strong>.<p id="cce_10_0377__en-us_topic_0000001199341206_p183671375216">A subpath is used to mount a local disk so that the same data volume is used in a single pod. If this parameter is left blank, the root path is used by default.</p>
+</li><li id="cce_10_0377__en-us_topic_0000001199341206_li1498071020210"><strong id="cce_10_0377__b1184163167">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__b1059021621">/tmp</strong>.<div class="p" id="cce_10_0377__en-us_topic_0000001199341206_p5157313628">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__b1449289863">/</strong> or <strong id="cce_10_0377__b1517282812">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__en-us_topic_0000001199341206_note235158114415"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__en-us_topic_0000001199341206_p22751516234">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
 </div></div>
 </div>
-</li><li id="cce_10_0377__cce_10_0377_li3356824413">Permission<ul id="cce_10_0377__cce_10_0377_ul3352818447"><li id="cce_10_0377__cce_10_0377_li1351488444"><strong id="cce_10_0377__cce_10_0377_b1561171095419">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_10_0377__cce_10_0377_li535148164412"><strong id="cce_10_0377__cce_10_0377_b20905191114541">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
+</li><li id="cce_10_0377__en-us_topic_0000001199341206_li3356824413">Permission<ul id="cce_10_0377__en-us_topic_0000001199341206_ul3352818447"><li id="cce_10_0377__en-us_topic_0000001199341206_li1351488444"><strong id="cce_10_0377__b815591711">Read-only</strong>: You can only read the data volumes mounted to the path.</li><li id="cce_10_0377__en-us_topic_0000001199341206_li535148164412"><strong id="cce_10_0377__b1453962518331">Read/Write</strong>: You can modify the data volumes mounted to the path. Newly written data is not migrated if the container is migrated, which may cause a data loss.</li></ul>
 </li></ol>
-<p id="cce_10_0377__p443859151014">You can click <span><img id="cce_10_0377__image1259138194019" src="en-us_image_0000001515917789.png"></span> to add multiple paths and subpaths.</p>
+<p id="cce_10_0377__p443859151014">You can click <span><img id="cce_10_0377__image1259138194019" src="en-us_image_0000001517903168.png"></span> to add multiple paths and subpaths.</p>
 </td>
 </tr>
 </tbody>
@@ -83,69 +83,69 @@
 </div>
 </p></li></ol>
 <div class="section" id="cce_10_0377__section18638191594712"><a name="cce_10_0377__section18638191594712"></a><a name="section18638191594712"></a><h4 class="sectiontitle">ConfigMap</h4><p id="cce_10_0377__p192196124125">The data stored in a ConfigMap can be referenced in a volume of type ConfigMap. You can mount such a volume to a specified container path. The platform supports the separation of workload codes and configuration files. ConfigMap volumes are used to store workload configuration parameters. Before that, you need to create ConfigMaps in advance. For details, see <a href="cce_10_0152.html">Creating a ConfigMap</a>. </p>
-</div>
 <ol id="cce_10_0377__ol1964410161043"><li id="cce_10_0377__li597113523117"><span>Log in to the CCE console.</span></li><li id="cce_10_0377__li0971752112"><span>When creating a workload, click <span class="uicontrol" id="cce_10_0377__uicontrol132721717322"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0377__uicontrol827121723215"><b>Container Settings</b></span>. Click <span class="uicontrol" id="cce_10_0377__uicontrol20764123243219"><b>Add Volume</b></span> and choose <strong id="cce_10_0377__b127641132113219">ConfigMap</strong> from the drop-down list.</span></li><li id="cce_10_0377__li6644161617412"><span>Set the local volume type to <strong id="cce_10_0377__b1887350153410">ConfigMap</strong> and set parameters for adding a local volume, as shown in <a href="#cce_10_0377__table1776324831114">Table 3</a>.</span><p>
-<div class="tablenoborder"><a name="cce_10_0377__table1776324831114"></a><a name="table1776324831114"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table1776324831114" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Setting parameters for mounting a ConfigMap volume</caption><thead align="left"><tr id="cce_10_0377__row177484871120"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.10.3.2.1.2.3.1.1"><p id="cce_10_0377__p977974818111">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0377__table1776324831114"></a><a name="table1776324831114"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table1776324831114" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Setting parameters for mounting a ConfigMap volume</caption><thead align="left"><tr id="cce_10_0377__row177484871120"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.9.3.3.2.1.2.3.1.1"><p id="cce_10_0377__p977974818111">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.10.3.2.1.2.3.1.2"><p id="cce_10_0377__p978113488113">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.9.3.3.2.1.2.3.1.2"><p id="cce_10_0377__p978113488113">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0377__row20785144820118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_10_0377__p197881548171117">Storage Type</p>
+<tbody><tr id="cce_10_0377__row20785144820118"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.9.3.3.2.1.2.3.1.1 "><p id="cce_10_0377__p197881548171117">Storage Type</p>
 </td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_10_0377__p479110483117">Select <strong id="cce_10_0377__b5198113819364">ConfigMap</strong>.</p>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.9.3.3.2.1.2.3.1.2 "><p id="cce_10_0377__p479110483117">Select <strong id="cce_10_0377__b5198113819364">ConfigMap</strong>.</p>
 </td>
 </tr>
-<tr id="cce_10_0377__row342915156166"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_10_0377__p17429315151617">Option</p>
+<tr id="cce_10_0377__row342915156166"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.9.3.3.2.1.2.3.1.1 "><p id="cce_10_0377__p17429315151617">Option</p>
 </td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_10_0377__p3133142513414">Select the desired ConfigMap name.</p>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.9.3.3.2.1.2.3.1.2 "><p id="cce_10_0377__p3133142513414">Select the desired ConfigMap name.</p>
 <p id="cce_10_0377__p17741424142">A ConfigMap must be created in advance. For details, see <a href="cce_10_0152.html">Creating a ConfigMap</a>.</p>
 </td>
 </tr>
-<tr id="cce_10_0377__row28091948181115"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.10.3.2.1.2.3.1.1 "><p id="cce_10_0377__p9813048191118">Add Container Path</p>
+<tr id="cce_10_0377__row28091948181115"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.9.3.3.2.1.2.3.1.1 "><p id="cce_10_0377__p9813048191118">Add Container Path</p>
 </td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.10.3.2.1.2.3.1.2 "><p id="cce_10_0377__p6972055171410">Configure the following parameters:</p>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.9.3.3.2.1.2.3.1.2 "><p id="cce_10_0377__p6972055171410">Configure the following parameters:</p>
 <ol type="a" id="cce_10_0377__ol18607172216391"><li id="cce_10_0377__li842512390413"><strong id="cce_10_0377__b8317182411262">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__b16317192411269">tmp</strong>.<ul id="cce_10_0377__ul19821342112914"><li id="cce_10_0377__li12982114218296">A subpath is used to mount a local volume so that the same data volume is used in a single pod.</li><li id="cce_10_0377__li79821942142920">The subpath can be the key and value of a ConfigMap or secret. If the subpath is a key-value pair that does not exist, the data import does not take effect.</li><li id="cce_10_0377__li129821442102910">The data imported by specifying a subpath will not be updated along with the ConfigMap/secret updates.</li></ul>
-</li><li id="cce_10_0377__li26161221390"><strong id="cce_10_0377__cce_10_0377_b122452553539_1">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__cce_10_0377_b3252185515539_1">/tmp</strong>.<div class="p" id="cce_10_0377__cce_10_0377_p5157313628_1">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__cce_10_0377_b1887395915531_1">/</strong> or <strong id="cce_10_0377__cce_10_0377_b88791559175320_1">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__cce_10_0377_note235158114415_1"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__cce_10_0377_p22751516234_1">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+</li><li id="cce_10_0377__li26161221390"><strong id="cce_10_0377__b17423128203317">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__b142382810332">/tmp</strong>.<div class="p" id="cce_10_0377__p1972102441">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__b980139061">/</strong> or <strong id="cce_10_0377__b1516037583">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__note1462480049"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__p1793345798">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
 </div></div>
 </div>
 </li><li id="cce_10_0377__li126321222103912">Set the permission to <strong id="cce_10_0377__b10399165510382">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
-<p id="cce_10_0377__p6374955151514">You can click <span><img id="cce_10_0377__image13122165318407" src="en-us_image_0000001464878016.png"></span> to add multiple paths and subpaths.</p>
+<p id="cce_10_0377__p6374955151514">You can click <span><img id="cce_10_0377__image13122165318407" src="en-us_image_0000001517743600.png"></span> to add multiple paths and subpaths.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
 </p></li></ol>
+</div>
 <div class="section" id="cce_10_0377__section10197243134710"><a name="cce_10_0377__section10197243134710"></a><a name="section10197243134710"></a><h4 class="sectiontitle">Secret</h4><p id="cce_10_0377__p196047901010">You can mount a secret as a volume to the specified container path. Contents in a secret are user-defined. Before that, you need to create a secret. For details, see <a href="cce_10_0153.html">Creating a Secret</a>.</p>
 </div>
 <ol id="cce_10_0377__ol668714114817"><li id="cce_10_0377__li5675379212"><span>Log in to the CCE console.</span></li><li id="cce_10_0377__li176751271627"><span>When creating a workload, click <span class="uicontrol" id="cce_10_0377__uicontrol046084443218"><b>Data Storage</b></span> in the <span class="uicontrol" id="cce_10_0377__uicontrol14466114423216"><b>Container Settings</b></span>. Click <span class="uicontrol" id="cce_10_0377__uicontrol18169142610332"><b>Add Volume</b></span> and choose <strong id="cce_10_0377__b16169226173314">Secret</strong> from the drop-down list.</span></li><li id="cce_10_0377__li06877414482"><span>Set the local volume type to <strong id="cce_10_0377__b112241816123918">Secret</strong> and set parameters for adding a local volume, as shown in <a href="#cce_10_0377__table861818920109">Table 4</a>.</span><p>
-<div class="tablenoborder"><a name="cce_10_0377__table861818920109"></a><a name="table861818920109"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table861818920109" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Setting parameters for mounting a secret volume</caption><thead align="left"><tr id="cce_10_0377__row1962619171020"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.12.3.2.1.2.3.1.1"><p id="cce_10_0377__p196285991018">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0377__table861818920109"></a><a name="table861818920109"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table861818920109" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Setting parameters for mounting a secret volume</caption><thead align="left"><tr id="cce_10_0377__row1962619171020"><th align="left" class="cellrowborder" valign="top" width="24%" id="mcps1.3.11.3.2.1.2.3.1.1"><p id="cce_10_0377__p196285991018">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.12.3.2.1.2.3.1.2"><p id="cce_10_0377__p126314951020">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.11.3.2.1.2.3.1.2"><p id="cce_10_0377__p126314951020">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0377__row20632792101"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_10_0377__p56341798108">Storage Type</p>
+<tbody><tr id="cce_10_0377__row20632792101"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.11.3.2.1.2.3.1.1 "><p id="cce_10_0377__p56341798108">Storage Type</p>
 </td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_10_0377__p206363911018">Select <strong id="cce_10_0377__b8430441113918">Secret</strong>.</p>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.11.3.2.1.2.3.1.2 "><p id="cce_10_0377__p206363911018">Select <strong id="cce_10_0377__b8430441113918">Secret</strong>.</p>
 </td>
 </tr>
-<tr id="cce_10_0377__row563713981015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_10_0377__p16638594102">Secret</p>
+<tr id="cce_10_0377__row563713981015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.11.3.2.1.2.3.1.1 "><p id="cce_10_0377__p16638594102">Secret</p>
 </td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_10_0377__p790921317488">Select the desired secret name.</p>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.11.3.2.1.2.3.1.2 "><p id="cce_10_0377__p790921317488">Select the desired secret name.</p>
 <p id="cce_10_0377__p128541638181620">A secret must be created in advance. For details, see <a href="cce_10_0153.html">Creating a Secret</a>.</p>
 </td>
 </tr>
-<tr id="cce_10_0377__row146458911015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.12.3.2.1.2.3.1.1 "><p id="cce_10_0377__p46473921020">Add Container Path</p>
+<tr id="cce_10_0377__row146458911015"><td class="cellrowborder" valign="top" width="24%" headers="mcps1.3.11.3.2.1.2.3.1.1 "><p id="cce_10_0377__p46473921020">Add Container Path</p>
 </td>
-<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.12.3.2.1.2.3.1.2 "><p id="cce_10_0377__p15454317176">Configure the following parameters:</p>
-<ol type="a" id="cce_10_0377__ol1365012913103"><li id="cce_10_0377__li106519951015"><strong id="cce_10_0377__cce_10_0377_b8317182411262">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__cce_10_0377_b16317192411269">tmp</strong>.<ul id="cce_10_0377__cce_10_0377_ul19821342112914"><li id="cce_10_0377__cce_10_0377_li12982114218296">A subpath is used to mount a local volume so that the same data volume is used in a single pod.</li><li id="cce_10_0377__cce_10_0377_li79821942142920">The subpath can be the key and value of a ConfigMap or secret. If the subpath is a key-value pair that does not exist, the data import does not take effect.</li><li id="cce_10_0377__cce_10_0377_li129821442102910">The data imported by specifying a subpath will not be updated along with the ConfigMap/secret updates.</li></ul>
-</li><li id="cce_10_0377__li865414941020"><strong id="cce_10_0377__cce_10_0377_b122452553539_2">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__cce_10_0377_b3252185515539_2">/tmp</strong>.<div class="p" id="cce_10_0377__cce_10_0377_p5157313628_2">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__cce_10_0377_b1887395915531_2">/</strong> or <strong id="cce_10_0377__cce_10_0377_b88791559175320_2">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__cce_10_0377_note235158114415_2"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__cce_10_0377_p22751516234_2">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.11.3.2.1.2.3.1.2 "><p id="cce_10_0377__p15454317176">Configure the following parameters:</p>
+<ol type="a" id="cce_10_0377__ol1365012913103"><li id="cce_10_0377__li106519951015"><strong id="cce_10_0377__b1486761556">subPath</strong>: Enter a subpath, for example, <strong id="cce_10_0377__b1967701006">tmp</strong>.<ul id="cce_10_0377__en-us_topic_0000001199341206_ul19821342112914"><li id="cce_10_0377__en-us_topic_0000001199341206_li12982114218296">A subpath is used to mount a local volume so that the same data volume is used in a single pod.</li><li id="cce_10_0377__en-us_topic_0000001199341206_li79821942142920">The subpath can be the key and value of a ConfigMap or secret. If the subpath is a key-value pair that does not exist, the data import does not take effect.</li><li id="cce_10_0377__en-us_topic_0000001199341206_li129821442102910">The data imported by specifying a subpath will not be updated along with the ConfigMap/secret updates.</li></ul>
+</li><li id="cce_10_0377__li865414941020"><strong id="cce_10_0377__b1692423314337">Container Path</strong>: Enter the path of the container, for example, <strong id="cce_10_0377__b7924163313315">/tmp</strong>.<div class="p" id="cce_10_0377__p60823228">This parameter indicates the container path to which a data volume will be mounted. Do not mount the volume to a system directory such as <strong id="cce_10_0377__b1155576487">/</strong> or <strong id="cce_10_0377__b182812254">/var/run</strong>; this action may cause container errors. You are advised to mount the container to an empty directory. If the directory is not empty, ensure that there are no files affecting container startup in the directory. Otherwise, such files will be replaced, resulting in failures to start the container and create the workload.<div class="notice" id="cce_10_0377__note2133164247"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0377__p1586693859">When the container is mounted to a high-risk directory, you are advised to use an account with minimum permissions to start the container; otherwise, high-risk files on the host machine may be damaged.</p>
 </div></div>
 </div>
 </li><li id="cce_10_0377__li1666210911012">Set the permission to <strong id="cce_10_0377__b614195817399">Read-only</strong>. Data volumes in the path are read-only.</li></ol>
-<p id="cce_10_0377__p145078478238">You can click <span><img id="cce_10_0377__image51014313412" src="en-us_image_0000001515838557.png"></span> to add multiple paths and subpaths.</p>
+<p id="cce_10_0377__p145078478238">You can click <span><img id="cce_10_0377__image51014313412" src="en-us_image_0000001569023013.png"></span> to add multiple paths and subpaths.</p>
 </td>
 </tr>
 </tbody>
@@ -185,20 +185,20 @@ spec:
         hostPath: 
           path: /tmp/test</pre>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Local disk storage dependency parameters</caption><thead align="left"><tr id="cce_10_0377__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.13.3.2.2.5.2.3.1.1"><p id="cce_10_0377__p18191161619356">Parameter</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0377__table1819001615355" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Local disk storage dependency parameters</caption><thead align="left"><tr id="cce_10_0377__row1519121663519"><th align="left" class="cellrowborder" valign="top" width="26.1%" id="mcps1.3.12.3.2.2.5.2.3.1.1"><p id="cce_10_0377__p18191161619356">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.13.3.2.2.5.2.3.1.2"><p id="cce_10_0377__p1919116161353">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="73.9%" id="mcps1.3.12.3.2.2.5.2.3.1.2"><p id="cce_10_0377__p1919116161353">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0377__row2318123021219"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.13.3.2.2.5.2.3.1.1 "><p id="cce_10_0377__p9319103017129">mountPath</p>
+<tbody><tr id="cce_10_0377__row2318123021219"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.12.3.2.2.5.2.3.1.1 "><p id="cce_10_0377__p9319103017129">mountPath</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.13.3.2.2.5.2.3.1.2 "><p id="cce_10_0377__p1631923081216">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_10_0377__b53751640134019">/tmp</strong> directory.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.12.3.2.2.5.2.3.1.2 "><p id="cce_10_0377__p1631923081216">Mount path of the container. In this example, the volume is mounted to the <strong id="cce_10_0377__b53751640134019">/tmp</strong> directory.</p>
 </td>
 </tr>
-<tr id="cce_10_0377__row163191830121220"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.13.3.2.2.5.2.3.1.1 "><p id="cce_10_0377__p14319143031212">hostPath</p>
+<tr id="cce_10_0377__row163191830121220"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.12.3.2.2.5.2.3.1.1 "><p id="cce_10_0377__p14319143031212">hostPath</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.13.3.2.2.5.2.3.1.2 "><p id="cce_10_0377__p18319530131211">Host path. In this example, the host path is <strong id="cce_10_0377__b189589425404">/tmp/test</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.12.3.2.2.5.2.3.1.2 "><p id="cce_10_0377__p18319530131211">Host path. In this example, the host path is <strong id="cce_10_0377__b189589425404">/tmp/test</strong>.</p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0378.html b/docs/cce/umn/cce_10_0378.html
index b15c9794..29138377 100644
--- a/docs/cce/umn/cce_10_0378.html
+++ b/docs/cce/umn/cce_10_0378.html
@@ -118,7 +118,7 @@
 <div class="section" id="cce_10_0378__section155911631134310"><h4 class="sectiontitle">Using a Storage Class to Create a PVC</h4><p id="cce_10_0378__p9806175313430">StorageClass describes the storage class used in the cluster. You need to specify StorageClass to dynamically create PVs and underlying storage resources when creating a PVC.</p>
 <p id="cce_10_0378__p1814111468317"><strong id="cce_10_0378__b149616359506">Using the CCE Console</strong></p>
 <ol id="cce_10_0378__ol1579572174320"><li id="cce_10_0378__li1179513219432"><span>Log in to the CCE console.</span></li><li id="cce_10_0378__li3574131225117"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0378__b7460541049">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0378__b13472541549">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_10_0378__li84178566546"><span>Click <strong id="cce_10_0378__b257061514129">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_10_0378__ul65541240105712"><li id="cce_10_0378__li871083119597"><strong id="cce_10_0378__b122496324913">Storage Volume Claim Type</strong>: Select a storage type as required.</li><li id="cce_10_0378__li79551012165515"><strong id="cce_10_0378__b119820111173">PVC Name</strong>: Enter a PVC name.</li><li id="cce_10_0378__li201219334507"><strong id="cce_10_0378__b03011917104">Creation Method</strong>: Select <span class="uicontrol" id="cce_10_0378__uicontrol026114820551"><b>Dynamic creation</b></span>.</li><li id="cce_10_0378__li101354814553"><strong id="cce_10_0378__b1710110531270">Storage Classes</strong>: Select the required storage class. The following storage resources can be dynamically provisioned:<ul id="cce_10_0378__ul756519426562"><li id="cce_10_0378__li4796104055617"><strong id="cce_10_0378__b188621174917">csi-disk</strong>: EVS disk.</li><li id="cce_10_0378__li157685016562"><strong id="cce_10_0378__b91214156163">csi-nas</strong>: SFS Capacity-Oriented file storage.</li><li id="cce_10_0378__li5481205435613"><strong id="cce_10_0378__b16356104221018">csi-obs</strong>: OBS bucket.</li></ul>
-</li><li id="cce_10_0378__li19689536844"><strong id="cce_10_0378__b1264433419112">AZ</strong> (supported only by EVS): Select the AZ where the EVS disk is located.</li><li id="cce_10_0378__li11271134215416"><strong id="cce_10_0378__b189489272187">Disk Type</strong> (supported only by EVS disks): Select an EVS disk type as required. EVS disk types vary in different regions.<ul id="cce_10_0378__cce_10_0378_ul161367711350"><li id="cce_10_0378__li1216105512268">Common I/O</li><li id="cce_10_0378__cce_10_0378_li19136197193514">High I/O</li><li id="cce_10_0378__cce_10_0378_li613613717357">Ultra-high I/O</li></ul>
+</li><li id="cce_10_0378__li19689536844"><strong id="cce_10_0378__b1264433419112">AZ</strong> (supported only by EVS): Select the AZ where the EVS disk is located.</li><li id="cce_10_0378__li11271134215416"><strong id="cce_10_0378__b189489272187">Disk Type</strong> (supported only by EVS disks): Select an EVS disk type as required. EVS disk types vary in different regions.<ul id="cce_10_0378__en-us_topic_0000001199501146_ul161367711350"><li id="cce_10_0378__li1216105512268">Common I/O</li><li id="cce_10_0378__en-us_topic_0000001199501146_li19136197193514">High I/O</li><li id="cce_10_0378__en-us_topic_0000001199501146_li613613717357">Ultra-high I/O</li></ul>
 </li><li id="cce_10_0378__li36181046115814"><strong id="cce_10_0378__b42952016447">Access Mode</strong>: <strong id="cce_10_0378__b7449371141">ReadWriteOnce</strong> and <strong id="cce_10_0378__b896919391840">ReadWriteMany</strong> are supported. For details, see <a href="#cce_10_0378__section43881411172418">Volume Access Modes</a>.</li><li id="cce_10_0378__li73361425175819"><strong id="cce_10_0378__b13562541043">Capacity (GiB)</strong> (only EVS and SFS are supported): storage capacity. This parameter is not available for OBS.</li><li id="cce_10_0378__li1233257917"><strong id="cce_10_0378__b515331016181">Encryption</strong> (supported only for EVS and SFS): Select <strong id="cce_10_0378__b14774947205218">Encryption</strong>. After selecting this option, you need to select a key.</li><li id="cce_10_0378__li1595213531529"><strong id="cce_10_0378__b895518512511">Secret</strong> (supported only for OBS): Select an access key for OBS. For details, see <a href="cce_10_0336.html">Using a Custom AK/SK to Mount an OBS Volume</a>.</li></ul>
 </p></li><li id="cce_10_0378__li164393175720"><span>Click <strong id="cce_10_0378__b0200411262">Create</strong>.</span></li></ol>
 <p id="cce_10_0378__p1591216145220"><strong id="cce_10_0378__b135191451068">Using YAML</strong></p>
@@ -184,10 +184,10 @@ spec:
 <p id="cce_10_0378__p326513510362"><strong id="cce_10_0378__b930094518414">Using the CCE Console</strong></p>
 <ol id="cce_10_0378__ol126520513363"><li id="cce_10_0378__li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_10_0378__li14265165103610"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0378__b510716121074">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0378__b13115112272">PersistentVolumeClaims (PVCs)</strong> tab.</span></li><li id="cce_10_0378__li42661759363"><span>Click <strong id="cce_10_0378__b1932214131761">Create PVC</strong> in the upper right corner. In the dialog box displayed, set the PVC parameters.</span><p><ul id="cce_10_0378__ul2026615203615"><li id="cce_10_0378__li1516061012110"><strong id="cce_10_0378__b71801311114">Storage Volume Claim Type</strong>: Select a storage type as required.</li><li id="cce_10_0378__li22055148111"><strong id="cce_10_0378__b12926914141115">PVC Name</strong>: name of a PVC.</li><li id="cce_10_0378__li1426615103615"><strong id="cce_10_0378__b247117258719">Creation Method</strong>: Select <span class="uicontrol" id="cce_10_0378__uicontrol1147220251073"><b>Existing storage volume</b></span>.</li><li id="cce_10_0378__li202662051369"><strong id="cce_10_0378__b1342813319920">PV</strong>: Select the volume to be associated, that is, the PV.</li></ul>
 </p></li><li id="cce_10_0378__li10266451367"><span>Click <strong id="cce_10_0378__b6143445864">Create</strong>.</span></li></ol>
-<p id="cce_10_0378__p7439164710549"><strong id="cce_10_0378__b56823306">Using YAML</strong></p>
+<p id="cce_10_0378__p7439164710549"><strong id="cce_10_0378__b320189021">Using YAML</strong></p>
 <p id="cce_10_0378__p12978164617616">Example YAML for EVS</p>
-<ul id="cce_10_0378__ul17488175512616"><li id="cce_10_0378__cce_10_0378_li5731205521320"><strong id="cce_10_0378__cce_10_0378_b1794815519710">failure-domain.beta.kubernetes.io/region</strong>: region where the cluster is located.<p id="cce_10_0378__cce_10_0378_p92141648132614">For details about the value of <strong id="cce_10_0378__cce_10_0378_b2712171851210">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
-</li><li id="cce_10_0378__cce_10_0378_li11731175541310"><strong id="cce_10_0378__cce_10_0378_b480954810718">failure-domain.beta.kubernetes.io/zone</strong>: AZ where the EVS volume is created. It must be the same as the AZ planned for the workload. <p id="cce_10_0378__cce_10_0378_p11213204892611">For details about the value of <strong id="cce_10_0378__cce_10_0378_b138791842579">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+<ul id="cce_10_0378__ul17488175512616"><li id="cce_10_0378__en-us_topic_0000001199501146_li5731205521320"><strong id="cce_10_0378__b639646233">failure-domain.beta.kubernetes.io/region</strong>: region where the cluster is located.<p id="cce_10_0378__en-us_topic_0000001199501146_p92141648132614">For details about the value of <strong id="cce_10_0378__b1789059687">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</li><li id="cce_10_0378__en-us_topic_0000001199501146_li11731175541310"><strong id="cce_10_0378__b126584540">failure-domain.beta.kubernetes.io/zone</strong>: AZ where the EVS volume is created. It must be the same as the AZ planned for the workload. <p id="cce_10_0378__en-us_topic_0000001199501146_p11213204892611">For details about the value of <strong id="cce_10_0378__b13172119134314">zone</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
 </li></ul>
 <pre class="screen" id="cce_10_0378__screen102203545714">apiVersion: v1
 kind: PersistentVolumeClaim
@@ -264,11 +264,11 @@ spec:
   volumeName: pv-sfsturbo-test         # PV name.</pre>
 </div>
 </div>
-<div class="section" id="cce_10_0378__section181681453141710"><h4 class="sectiontitle">Using a Snapshot to Creating a PVC</h4><p id="cce_10_0378__cce_10_0381_p614685193310">The disk type, encryption setting, and disk mode of the created EVS PVC are consistent with those of the snapshot's source EVS disk.</p>
-<p id="cce_10_0378__cce_10_0381_p326513510362"><strong id="cce_10_0378__cce_10_0381_b11698411123514">Using the CCE Console</strong></p>
-<ol id="cce_10_0378__cce_10_0381_ol126520513363"><li id="cce_10_0378__cce_10_0381_li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_10_0378__cce_10_0381_li14265165103610"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0378__cce_10_0381_b79941532173015">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0378__cce_10_0381_b19994132133020">Snapshots and Backups</strong> tab.</span></li><li id="cce_10_0378__cce_10_0381_li42661759363"><span>Locate the snapshot for which you want to create a PVC, click <span class="uicontrol" id="cce_10_0378__cce_10_0381_uicontrol4916544164518"><b>Create PVC</b></span>, and specify the PVC name in the displayed dialog box.</span></li><li id="cce_10_0378__cce_10_0381_li10266451367"><span>Click <strong id="cce_10_0378__cce_10_0381_b22763361837">Create</strong>.</span></li></ol>
-<p id="cce_10_0378__cce_10_0381_p7439164710549"><strong id="cce_10_0378__cce_10_0381_b923212304347">Creating from YAML</strong></p>
-<pre class="screen" id="cce_10_0378__cce_10_0381_screen12534181311281">apiVersion: v1
+<div class="section" id="cce_10_0378__section181681453141710"><h4 class="sectiontitle">Using a Snapshot to Creating a PVC</h4><p id="cce_10_0378__en-us_topic_0000001199021196_p614685193310">The disk type, encryption setting, and disk mode of the created EVS PVC are consistent with those of the snapshot's source EVS disk.</p>
+<p id="cce_10_0378__en-us_topic_0000001199021196_p326513510362"><strong id="cce_10_0378__b179691625174310">Using the CCE Console</strong></p>
+<ol id="cce_10_0378__en-us_topic_0000001199021196_ol126520513363"><li id="cce_10_0378__en-us_topic_0000001199021196_li4265165173611"><span>Log in to the CCE console.</span></li><li id="cce_10_0378__en-us_topic_0000001199021196_li14265165103610"><span>Click the cluster name and go to the cluster console. Choose <strong id="cce_10_0378__b159993313430">Storage</strong> from the navigation pane, and click the <strong id="cce_10_0378__b6999183119437">Snapshots and Backups</strong> tab.</span></li><li id="cce_10_0378__en-us_topic_0000001199021196_li42661759363"><span>Locate the snapshot that you want to use for creating a PVC, click <span class="uicontrol" id="cce_10_0378__uicontrol2424133974320"><b>Create PVC</b></span>, and specify the PVC name in the displayed dialog box.</span></li><li id="cce_10_0378__en-us_topic_0000001199021196_li10266451367"><span>Click <strong id="cce_10_0378__b135419367431">Create</strong>.</span></li></ol>
+<p id="cce_10_0378__en-us_topic_0000001199021196_p7439164710549"><strong id="cce_10_0378__b1869443174317">Creating from YAML</strong></p>
+<pre class="screen" id="cce_10_0378__en-us_topic_0000001199021196_screen12534181311281">apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
   name: pvc-test
@@ -276,7 +276,7 @@ metadata:
   annotations:
     everest.io/disk-volume-type: SSD     # EVS disk type, which must be the same as that of the source EVS disk of the snapshot.
   labels:
-    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0378__cce_10_0381_text52766166259">eu-de</span>
+    failure-domain.beta.kubernetes.io/region: <span id="cce_10_0378__en-us_topic_0000001199021196_text52766166259">eu-de</span>
     failure-domain.beta.kubernetes.io/zone: 
 spec:
   accessModes:
diff --git a/docs/cce/umn/cce_10_0379.html b/docs/cce/umn/cce_10_0379.html
index 6da88d0d..47858f2c 100644
--- a/docs/cce/umn/cce_10_0379.html
+++ b/docs/cce/umn/cce_10_0379.html
@@ -133,7 +133,7 @@ spec:
 <td class="cellrowborder" valign="top" width="56.19%" headers="mcps1.3.5.7.2.3.1.2 "><p id="cce_10_0379__p29951981584">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
 <p id="cce_10_0379__p1995198389">The Delete and Retain policies are supported.</p>
 <p id="cce_10_0379__p139951481289"><strong id="cce_10_0379__b10742153312475">Delete</strong>:</p>
-<ul id="cce_10_0379__ul1999516818817"><li id="cce_10_0379__li179951481089">If <strong id="cce_10_0379__b12454191784810">everest.io/reclaim-policy</strong> is not specified, both the PV and EVS disk are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1399528980">If <strong id="cce_10_0379__b10124152310482">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b1512416231481">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the EVS resources are retained.</li></ul>
+<ul id="cce_10_0379__ul1999516818817"><li id="cce_10_0379__li179951481089">If <strong id="cce_10_0379__b12454191784810">everest.io/reclaim-policy</strong> is not specified, both the PV and EVS disk are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1399528980">If <strong id="cce_10_0379__b10124152310482">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b1512416231481">retain-volume-only</strong>, when a PVC is deleted, the PV is deleted but the EVS resources are retained.</li></ul>
 <p id="cce_10_0379__p1099515819810"><strong id="cce_10_0379__b1911716468486">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
 <p id="cce_10_0379__p1849613104811">If high data security is required, you are advised to select <strong id="cce_10_0379__b9484012155617">Retain</strong> to prevent data from being deleted by mistake.</p>
 </td>
@@ -217,7 +217,7 @@ spec:
 <td class="cellrowborder" valign="top" width="67.5%" headers="mcps1.3.6.7.2.3.1.2 "><p id="cce_10_0379__p5540154712308">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
 <p id="cce_10_0379__p1154016478304">The options are as follows:</p>
 <p id="cce_10_0379__p11540124713309"><strong id="cce_10_0379__b168481115016">Delete</strong>:</p>
-<ul id="cce_10_0379__ul35408479304"><li id="cce_10_0379__li165401147123011">If <strong id="cce_10_0379__b443455145219">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1954054743014">If <strong id="cce_10_0379__b328165111520">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b5281512522">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the file storage resources are retained.</li></ul>
+<ul id="cce_10_0379__ul35408479304"><li id="cce_10_0379__li165401147123011">If <strong id="cce_10_0379__b443455145219">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1954054743014">If <strong id="cce_10_0379__b328165111520">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b5281512522">retain-volume-only</strong>, when a PVC is deleted, the PV is deleted but the file storage resources are retained.</li></ul>
 <p id="cce_10_0379__p105411447133020"><strong id="cce_10_0379__b5414545203415">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
 <p id="cce_10_0379__p5668154145019">If high data security is required, you are advised to select <strong id="cce_10_0379__b15311756143410">Retain</strong> to prevent data from being deleted by mistake.</p>
 </td>
@@ -292,7 +292,7 @@ spec:
 <tr id="cce_10_0379__row12975850123614"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p17975150193613">everest.io/region</p>
 </td>
 <td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p8485153732813">Region where the OBS bucket is deployed.</p>
-<p id="cce_10_0379__p10975150173615">For details about the value of <strong id="cce_10_0379__en-us_topic_0276664174_b696918577012">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+<p id="cce_10_0379__p10975150173615">For details about the value of <strong id="cce_10_0379__b84710917380">region</strong>, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
 </td>
 </tr>
 <tr id="cce_10_0379__row169751506362"><td class="cellrowborder" valign="top" width="26.43%" headers="mcps1.3.7.7.2.3.1.1 "><p id="cce_10_0379__p1362313208576">nodePublishSecretRef</p>
@@ -310,7 +310,7 @@ spec:
 <td class="cellrowborder" valign="top" width="73.57000000000001%" headers="mcps1.3.7.7.2.3.1.2 "><p id="cce_10_0379__p1074616532313">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
 <p id="cce_10_0379__p10746105353119">The Delete and Retain policies are supported.</p>
 <p id="cce_10_0379__p147461153173114"><strong id="cce_10_0379__b1217715293503">Delete</strong>:</p>
-<ul id="cce_10_0379__ul14746853183117"><li id="cce_10_0379__li6746145317316">If <strong id="cce_10_0379__b14482181215481">everest.io/reclaim-policy</strong> is not specified, both the PV and OBS volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1874685393111">If <strong id="cce_10_0379__b178031918398">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b10264730133913">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the object storage resources are retained.</li></ul>
+<ul id="cce_10_0379__ul14746853183117"><li id="cce_10_0379__li6746145317316">If <strong id="cce_10_0379__b14482181215481">everest.io/reclaim-policy</strong> is not specified, both the PV and OBS volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li1874685393111">If <strong id="cce_10_0379__b178031918398">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b10264730133913">retain-volume-only</strong>, when a PVC is deleted, the PV is deleted but the object storage resources are retained.</li></ul>
 <p id="cce_10_0379__p137462053133111"><strong id="cce_10_0379__b1818615163618">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
 <p id="cce_10_0379__p778102518503">If high data security is required, you are advised to select <strong id="cce_10_0379__b183971221163613">Retain</strong> to prevent data from being deleted by mistake.</p>
 </td>
@@ -380,7 +380,7 @@ spec:
 <td class="cellrowborder" valign="top" width="64.11%" headers="mcps1.3.8.7.2.3.1.2 "><p id="cce_10_0379__p146171913195219">A reclaim policy is supported when the cluster version is equal to or later than 1.19.10 and the everest version is equal to or later than 1.2.9.</p>
 <p id="cce_10_0379__p1661719131526">The Delete and Retain policies are supported.</p>
 <p id="cce_10_0379__p261701305213"><strong id="cce_10_0379__b1861731316521">Delete</strong>:</p>
-<ul id="cce_10_0379__ul86171313175216"><li id="cce_10_0379__li661721310522">If <strong id="cce_10_0379__b4216103123615">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS Turbo volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li961781395213">If <strong id="cce_10_0379__b1417394393610">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b2173164333616">retain-volume-only set</strong>, when a PVC is deleted, the PV is deleted but the SFF Turbo resources are retained.</li></ul>
+<ul id="cce_10_0379__ul86171313175216"><li id="cce_10_0379__li661721310522">If <strong id="cce_10_0379__b4216103123615">everest.io/reclaim-policy</strong> is not specified, both the PV and SFS Turbo volume are deleted when a PVC is deleted.</li><li id="cce_10_0379__li961781395213">If <strong id="cce_10_0379__b1417394393610">everest.io/reclaim-policy</strong> is set to <strong id="cce_10_0379__b2173164333616">retain-volume-only</strong>, when a PVC is deleted, the PV is deleted but the SFF Turbo resources are retained.</li></ul>
 <p id="cce_10_0379__p261761313522"><strong id="cce_10_0379__b38127815379">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the Released state and cannot be bound to the PVC again.</p>
 <p id="cce_10_0379__p1361771316526">If high data security is required, you are advised to select <strong id="cce_10_0379__b2849435105615">Retain</strong> to prevent data from being deleted by mistake.</p>
 </td>
diff --git a/docs/cce/umn/cce_10_0380.html b/docs/cce/umn/cce_10_0380.html
index 857d6b61..c368928f 100644
--- a/docs/cce/umn/cce_10_0380.html
+++ b/docs/cce/umn/cce_10_0380.html
@@ -10,8 +10,8 @@ csi-nas             everest-csi-provisioner         17d          # Storage class
 csi-obs             everest-csi-provisioner         17d          # Storage class for OBS buckets</pre>
 <p id="cce_10_0380__p1348743213278">After a StorageClass is set, PVs can be automatically created and maintained. You only need to specify the StorageClass when creating a PVC, which greatly reduces the workload.</p>
 <p id="cce_10_0380__p17360330819">In addition to the predefined storage classes provided by CCE, you can also customize storage classes. The following sections describe the application status, solutions, and methods of customizing storage classes.</p>
-<div class="section" id="cce_10_0380__section18703932139"><h4 class="sectiontitle">Challenges</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p19810642103411">When using storage resources in CCE, the most common method is to specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b1439518042014">storageClassName</strong> to define the type of storage resources to be created when creating a PVC. The following configuration shows how to use a PVC to apply for an SAS (high I/O) EVS disk (block storage).</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen146941631606">apiVersion: v1
+<div class="section" id="cce_10_0380__section18703932139"><h4 class="sectiontitle">Challenges</h4><p id="cce_10_0380__cce_bestpractice_00281_p19810642103411">When using storage resources in CCE, the most common method is to specify <strong id="cce_10_0380__b1759115423441">storageClassName</strong> to define the type of storage resources to be created when creating a PVC. The following configuration shows how to use a PVC to apply for an SAS (high I/O) EVS disk (block storage).</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen146941631606">apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
   name: pvc-evs-example
@@ -25,13 +25,13 @@ spec:
     requests:
       storage: 10Gi
   storageClassName: csi-disk</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p10416164023811">If you need to specify the EVS disk type, you can set the <strong id="cce_10_0380__cce_bestpractice_00281_0_b1327345035413">everest.io/disk-volume-type</strong> field. The value <strong id="cce_10_0380__cce_bestpractice_00281_0_b1527965015414">SAS</strong> is used as an example here, indicating the high I/O EVS disk type. Or you can choose <strong id="cce_10_0380__cce_bestpractice_00281_0_b18796143718507">SATA</strong> (common I/O) and <strong id="cce_10_0380__cce_bestpractice_00281_0_b5279250115416">SSD</strong> (ultra-high I/O).</p>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p1992812244296">This configuration method may not work if you want to:</p>
-<ul id="cce_10_0380__cce_bestpractice_00281_0_ul1666681113305"><li id="cce_10_0380__cce_bestpractice_00281_0_li26671211203012">Set <strong id="cce_10_0380__cce_bestpractice_00281_0_b19384122374818">storageClassName</strong> only, which is simpler than specifying the EVS disk type by using <strong id="cce_10_0380__cce_bestpractice_00281_0_b1043282143520">everest.io/disk-volume-type</strong>.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li1430122517314">Avoid modifying YAML files or Helm charts. Some users switch from self-built or other Kubernetes services to CCE and have written YAML files of many applications. In these YAML files, different types of storage resources are specified by different StorageClassNames. When using CCE, they need to modify a large number of YAML files or Helm charts to use storage resources, which is labor-consuming and error-prone.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li6714783711">Set the default <strong id="cce_10_0380__cce_bestpractice_00281_0_b3414714817">storageClassName</strong> for all applications to use the default storage class. In this way, you can create storage resources of the default type without needing to specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b15163103104815">storageClassName</strong> in the YAML file.</li></ul>
+<p id="cce_10_0380__cce_bestpractice_00281_p10416164023811">If you need to specify the EVS disk type, you can set the <strong id="cce_10_0380__b15215172581116">everest.io/disk-volume-type</strong> field. The value <strong id="cce_10_0380__b021562510114">SAS</strong> is used as an example here, indicating the high I/O EVS disk type. Or you can choose <strong id="cce_10_0380__b8215025161113">SATA</strong> (common I/O) and <strong id="cce_10_0380__b152161225141113">SSD</strong> (ultra-high I/O).</p>
+<p id="cce_10_0380__cce_bestpractice_00281_p1992812244296">This configuration method may not work if you want to:</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_ul1666681113305"><li id="cce_10_0380__cce_bestpractice_00281_li26671211203012">Set <strong id="cce_10_0380__b2478112901115">storageClassName</strong> only, which is simpler than specifying the EVS disk type by using <strong id="cce_10_0380__b12478162961111">everest.io/disk-volume-type</strong>.</li><li id="cce_10_0380__cce_bestpractice_00281_li1430122517314">Avoid modifying YAML files or Helm charts. Some users switch from self-built or other Kubernetes services to CCE and have written YAML files of many applications. In these YAML files, different types of storage resources are specified by different StorageClassNames. When using CCE, they need to modify a large number of YAML files or Helm charts to use storage resources, which is labor-consuming and error-prone.</li><li id="cce_10_0380__cce_bestpractice_00281_li6714783711">Set the default <strong id="cce_10_0380__b1476710336112">storageClassName</strong> for all applications to use the default storage class. In this way, you can create storage resources of the default type without needing to specify <strong id="cce_10_0380__b19767133314111">storageClassName</strong> in the YAML file.</li></ul>
 </div>
-<div class="section" id="cce_10_0380__section1520511451"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p33361127181019">This section describes how to set a custom storage class in CCE and how to set the default storage class. You can specify different types of storage resources by setting <strong id="cce_10_0380__cce_bestpractice_00281_0_b15705152195010">storageClassName</strong>.</p>
-<ul id="cce_10_0380__cce_bestpractice_00281_0_ul1394816541798"><li id="cce_10_0380__cce_bestpractice_00281_0_li1494865412920">For the first scenario, you can define custom storageClassNames for SAS and SSD EVS disks. For example, define a storage class named <strong id="cce_10_0380__cce_bestpractice_00281_0_b11954204618017">csi-disk-sas</strong> for creating SAS disks. The following figure shows the differences before and after you use a custom storage class.<p id="cce_10_0380__cce_bestpractice_00281_0_p1639843625220"><span><img id="cce_10_0380__cce_bestpractice_00281_0_image62065521613" src="en-us_image_0000001102275444.png"></span></p>
-</li><li id="cce_10_0380__cce_bestpractice_00281_0_li112521973108">For the second scenario, you can define a storage class with the same name as that in the existing YAML file without needing to modify <strong id="cce_10_0380__cce_bestpractice_00281_0_b13346387104">storageClassName</strong> in the YAML file.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li595443471215">For the third scenario, you can set the default storage class as described below to create storage resources without specifying <strong id="cce_10_0380__cce_bestpractice_00281_0_b863812014124">storageClassName</strong> in YAML files.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen22067304183">apiVersion: v1
+<div class="section" id="cce_10_0380__section1520511451"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0380__cce_bestpractice_00281_p33361127181019">This section describes how to set a custom storage class in CCE and how to set the default storage class. You can specify different types of storage resources by setting <strong id="cce_10_0380__b6367143818112">storageClassName</strong>.</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_ul1394816541798"><li id="cce_10_0380__cce_bestpractice_00281_li1494865412920">For the first scenario, you can define custom storageClassNames for SAS and SSD EVS disks. For example, define a storage class named <strong id="cce_10_0380__b3230124011117">csi-disk-sas</strong> for creating SAS disks. The following figure shows the differences before and after you use a custom storage class.<p id="cce_10_0380__cce_bestpractice_00281_p1639843625220"><span><img id="cce_10_0380__cce_bestpractice_00281_image62065521613" src="en-us_image_0000001517903252.png"></span></p>
+</li><li id="cce_10_0380__cce_bestpractice_00281_li112521973108">For the second scenario, you can define a storage class with the same name as that in the existing YAML file without needing to modify <strong id="cce_10_0380__b3711443101110">storageClassName</strong> in the YAML file.</li><li id="cce_10_0380__cce_bestpractice_00281_li595443471215">For the third scenario, you can set the default storage class as described below to create storage resources without specifying <strong id="cce_10_0380__b173594512117">storageClassName</strong> in YAML files.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen22067304183">apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
   name: pvc-evs-example
@@ -44,8 +44,8 @@ spec:
       storage: 10Gi</pre>
 </li></ul>
 </div>
-<div class="section" id="cce_10_0380__section92221021258"><h4 class="sectiontitle">Custom Storage Classes</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p9601335151617">You can customize a high I/O storage class in a YAML file. For example, the name <strong id="cce_10_0380__cce_bestpractice_00281_0_b186185811594">csi-disk-sas</strong> indicates that the disk type is SAS (high I/O).</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen659210819391">apiVersion: storage.k8s.io/v1
+<div class="section" id="cce_10_0380__section92221021258"><h4 class="sectiontitle">Custom Storage Class</h4><p id="cce_10_0380__cce_bestpractice_00281_p9601335151617">You can customize a high I/O storage class in a YAML file. For example, the name <strong id="cce_10_0380__b315613471473">csi-disk-sas</strong> indicates that the disk type is SAS (high I/O).</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen659210819391">apiVersion: storage.k8s.io/v1
 kind: StorageClass
 metadata:
   name: csi-disk-sas                          # Name of the high I/O storage class, which can be customized.
@@ -57,9 +57,9 @@ parameters:
 provisioner: everest-csi-provisioner
 reclaimPolicy: Delete
 volumeBindingMode: Immediate
-allowVolumeExpansion: true                    # <strong id="cce_10_0380__cce_bestpractice_00281_0_b148711949142017">true</strong> indicates that capacity expansion is allowed.</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p1281618138471">For an ultra-high I/O storage class, you can set the class name to <strong id="cce_10_0380__cce_bestpractice_00281_0_b722754812">csi-disk-ssd</strong> to create SSD EVS disk (ultra-high I/O).</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen199713432478">apiVersion: storage.k8s.io/v1
+allowVolumeExpansion: true                    # <strong id="cce_10_0380__b163919519485">true</strong> indicates that capacity expansion is allowed.</pre>
+<p id="cce_10_0380__cce_bestpractice_00281_p1281618138471">For an ultra-high I/O storage class, you can set the class name to <strong id="cce_10_0380__b1629535894810">csi-disk-ssd</strong> to create SSD EVS disk (ultra-high I/O).</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen199713432478">apiVersion: storage.k8s.io/v1
 kind: StorageClass
 metadata:
   name: csi-disk-ssd                       # Name of the ultra-high I/O storage class, which can be customized.
@@ -72,18 +72,18 @@ provisioner: everest-csi-provisioner
 reclaimPolicy: Delete
 volumeBindingMode: Immediate
 allowVolumeExpansion: true</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p146067122106"><strong id="cce_10_0380__cce_bestpractice_00281_0_b69321846286">reclaimPolicy</strong>: indicates the recycling policies of the underlying cloud storage. The value can be <strong id="cce_10_0380__cce_bestpractice_00281_0_b9392322125012">Delete</strong> or <strong id="cce_10_0380__cce_bestpractice_00281_0_b91651126105014">Retain</strong>.</p>
-<ul id="cce_10_0380__cce_bestpractice_00281_0_ul42481619111116"><li id="cce_10_0380__cce_bestpractice_00281_0_li1624871911111"><strong id="cce_10_0380__cce_bestpractice_00281_0_b1313332805014">Delete</strong>: When a PVC is deleted, both the PV and the EVS disk are deleted.</li><li id="cce_10_0380__cce_bestpractice_00281_0_li9248141919118"><strong id="cce_10_0380__cce_bestpractice_00281_0_b26601433105212">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the <strong id="cce_10_0380__cce_bestpractice_00281_0_b1956334045518">Released</strong> state and cannot be bound to the PVC again.</li></ul>
-<div class="note" id="cce_10_0380__cce_bestpractice_00281_0_note8801953114018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0380__cce_bestpractice_00281_0_p178035314020">The reclamation policy set here has no impact on the SFS Turbo storage. Therefore, the yearly/monthly SFS Turbo resources will not be reclaimed when the cluster or PVC is deleted.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_p146067122106"><strong id="cce_10_0380__b737634084916">reclaimPolicy</strong>: indicates the reclaim policies of the underlying cloud storage. The value can be <strong id="cce_10_0380__b6376144024914">Delete</strong> or <strong id="cce_10_0380__b9376144034919">Retain</strong>.</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_ul42481619111116"><li id="cce_10_0380__cce_bestpractice_00281_li1624871911111"><strong id="cce_10_0380__b11951843124915">Delete</strong>: When a PVC is deleted, both the PV and the EVS disk are deleted.</li><li id="cce_10_0380__cce_bestpractice_00281_li9248141919118"><strong id="cce_10_0380__b1353310455492">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After a PVC is deleted, the PV resource is in the Released state and cannot be bound to the PVC again.</li></ul>
+<div class="note" id="cce_10_0380__cce_bestpractice_00281_note8801953114018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0380__cce_bestpractice_00281_p178035314020">The reclamation policy set here has no impact on the SFS Turbo storage.</p>
 </div></div>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p778102518503">If high data security is required, you are advised to select <strong id="cce_10_0380__cce_bestpractice_00281_0_b1478374995218">Retain</strong> to prevent data from being deleted by mistake.</p>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p824713561207">After the definition is complete, run the <strong id="cce_10_0380__cce_bestpractice_00281_0_b14281158232">kubectl create</strong> commands to create storage resources.</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen164494218115"># kubectl create -f sas.yaml
+<p id="cce_10_0380__cce_bestpractice_00281_p778102518503">If high data security is required, you are advised to select <strong id="cce_10_0380__b1283752713710">Retain</strong> to prevent data from being deleted by mistake.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_p824713561207">After the definition is complete, run the <strong id="cce_10_0380__b51641231776">kubectl create</strong> commands to create storage resources.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen164494218115"># kubectl create -f sas.yaml
 storageclass.storage.k8s.io/csi-disk-sas created
 # kubectl create -f ssd.yaml
 storageclass.storage.k8s.io/csi-disk-ssd created</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p1412183715488">Query the storage class again. Two more types of storage classes are displayed in the command output, as shown below.</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen13784148495"># kubectl get sc
+<p id="cce_10_0380__cce_bestpractice_00281_p1412183715488">Query the storage class again. Two more types of storage classes are displayed in the command output, as shown below.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen13784148495"># kubectl get sc
 NAME                PROVISIONER                     AGE
 csi-disk            everest-csi-provisioner         17d
 csi-disk-sas        everest-csi-provisioner         2m28s
@@ -92,8 +92,8 @@ csi-disk-topology   everest-csi-provisioner         17d
 csi-nas             everest-csi-provisioner         17d
 csi-obs             everest-csi-provisioner         17d
 csi-sfsturbo        everest-csi-provisioner         17d</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p05291082227">Other types of storage resources can be defined in the similar way. You can use kubectl to obtain the YAML file and modify it as required.</p>
-<ul id="cce_10_0380__cce_bestpractice_00281_0_ul38311130152115"><li id="cce_10_0380__cce_bestpractice_00281_0_li18831113072113">File storage<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen181646213295"># kubectl get sc csi-nas -oyaml
+<p id="cce_10_0380__cce_bestpractice_00281_p05291082227">Other types of storage resources can be defined in the similar way. You can use kubectl to obtain the YAML file and modify it as required.</p>
+<ul id="cce_10_0380__cce_bestpractice_00281_ul38311130152115"><li id="cce_10_0380__cce_bestpractice_00281_li18831113072113">File Storage<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen181646213295"># kubectl get sc csi-nas -oyaml
 kind: StorageClass
 apiVersion: storage.k8s.io/v1
 metadata:
@@ -109,7 +109,7 @@ parameters:
 reclaimPolicy: Delete
 allowVolumeExpansion: true
 volumeBindingMode: Immediate</pre>
-</li><li id="cce_10_0380__cce_bestpractice_00281_0_li4390135712118">Object storage<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen1745353552911"># kubectl get sc csi-obs -oyaml
+</li><li id="cce_10_0380__cce_bestpractice_00281_li4390135712118">Object storage<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen1745353552911"># kubectl get sc csi-obs -oyaml
 kind: StorageClass
 apiVersion: storage.k8s.io/v1
 metadata:
@@ -117,15 +117,15 @@ metadata:
 provisioner: everest-csi-provisioner
 parameters:
   csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
-  csi.storage.k8s.io/fstype: s3fs           # Object storage type. <strong id="cce_10_0380__cce_bestpractice_00281_0_b581916217422">s3fs</strong> indicates an object bucket, and <strong id="cce_10_0380__cce_bestpractice_00281_0_b19130111019424">obsfs</strong> indicates a parallel file system.
+  csi.storage.k8s.io/fstype: s3fs           # Object storage type. <strong id="cce_10_0380__b166762716810">s3fs</strong> indicates an object bucket, and <strong id="cce_10_0380__b76682271687">obsfs</strong> indicates a parallel file system.
   everest.io/obs-volume-type: STANDARD      # Storage class of the OBS bucket
 reclaimPolicy: Delete
 volumeBindingMode: Immediate</pre>
 </li></ul>
 </div>
-<div class="section" id="cce_10_0380__section9720192252"><h4 class="sectiontitle">Setting a Default Storage Class</h4><p id="cce_10_0380__cce_bestpractice_00281_0_p163571329132111">You can specify a storage class as the default class. In this way, if you do not specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b133883591469">storageClassName</strong> when creating a PVC, the PVC is created using the default storage class.</p>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p1435710291217">For example, to specify <strong id="cce_10_0380__cce_bestpractice_00281_0_b1964515812715">csi-disk-ssd</strong> as the default storage class, edit your YAML file as follows:</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen5357429172112">apiVersion: storage.k8s.io/v1
+<div class="section" id="cce_10_0380__section9720192252"><h4 class="sectiontitle">Setting a Default Storage Class</h4><p id="cce_10_0380__cce_bestpractice_00281_p163571329132111">You can specify a storage class as the default class. In this way, if you do not specify <strong id="cce_10_0380__b186921911396">storageClassName</strong> when creating a PVC, the PVC is created using the default storage class.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_p1435710291217">For example, to specify <strong id="cce_10_0380__b32158143915">csi-disk-ssd</strong> as the default storage class, edit your YAML file as follows:</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen5357429172112">apiVersion: storage.k8s.io/v1
 kind: StorageClass
 metadata:
   name: csi-disk-ssd
@@ -140,8 +140,8 @@ provisioner: everest-csi-provisioner
 reclaimPolicy: Delete
 volumeBindingMode: Immediate
 allowVolumeExpansion: true</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p1135711298213">Delete the created csi-disk-ssd disk, run the <strong id="cce_10_0380__cce_bestpractice_00281_0_b152561717817">kubectl create</strong> command to create a csi-disk-ssd disk again, and then query the storage class. The following information is displayed.</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen135872982120"># kubectl delete sc csi-disk-ssd
+<p id="cce_10_0380__cce_bestpractice_00281_p1135711298213">Delete the created csi-disk-ssd disk, run the <strong id="cce_10_0380__b1940512183920">kubectl create</strong> command to create a csi-disk-ssd disk again, and then query the storage class. The following information is displayed.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen135872982120"># kubectl delete sc csi-disk-ssd
 storageclass.storage.k8s.io "csi-disk-ssd" deleted
 # kubectl create -f ssd.yaml
 storageclass.storage.k8s.io/csi-disk-ssd created
@@ -155,7 +155,7 @@ csi-nas                  everest-csi-provisioner         17d
 csi-obs                  everest-csi-provisioner         17d
 csi-sfsturbo             everest-csi-provisioner         17d</pre>
 </div>
-<div class="section" id="cce_10_0380__section147641081060"><h4 class="sectiontitle">Verification</h4><ul id="cce_10_0380__cce_bestpractice_00281_0_ul326513332433"><li id="cce_10_0380__cce_bestpractice_00281_0_li1426593312439">Use <strong id="cce_10_0380__cce_bestpractice_00281_0_b72318715919">csi-disk-sas</strong> to create a PVC.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen164121655153014">apiVersion: v1
+<div class="section" id="cce_10_0380__section147641081060"><h4 class="sectiontitle">Verification</h4><ul id="cce_10_0380__cce_bestpractice_00281_ul326513332433"><li id="cce_10_0380__cce_bestpractice_00281_li1426593312439">Use <strong id="cce_10_0380__b116361922293">csi-disk-sas</strong> to create a PVC.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen164121655153014">apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
   name:  sas-disk
@@ -166,8 +166,8 @@ spec:
     requests:
       storage: 10Gi
   storageClassName: csi-disk-sas</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p1331523183215">Create a storage class and view its details. As shown below, the object can be created and the value of <strong id="cce_10_0380__cce_bestpractice_00281_0_b2841103141010">STORAGECLASS</strong> is <strong id="cce_10_0380__cce_bestpractice_00281_0_b1290115143103">csi-disk-sas</strong>.</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen3819181515400"># kubectl create -f sas-disk.yaml 
+<p id="cce_10_0380__cce_bestpractice_00281_p1331523183215">Create a storage class and view its details. As shown below, the object can be created and the value of <strong id="cce_10_0380__b68731324491">STORAGECLASS</strong> is <strong id="cce_10_0380__b187317248916">csi-disk-sas</strong>.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen3819181515400"># kubectl create -f sas-disk.yaml 
 persistentvolumeclaim/sas-disk created
 # kubectl get pvc
 NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
@@ -175,9 +175,9 @@ sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO
 # kubectl get pv
 NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
 pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            30s</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p296654417436">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is high I/O.</p>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p1365215405213"></p>
-</li><li id="cce_10_0380__cce_bestpractice_00281_0_li16722125154315">If <strong id="cce_10_0380__cce_bestpractice_00281_0_b53910164176">storageClassName</strong> is not specified, the default configuration is used, as shown below.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen623034510524">apiVersion: v1
+<p id="cce_10_0380__cce_bestpractice_00281_p296654417436">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is high I/O.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_p1365215405213"></p>
+</li><li id="cce_10_0380__cce_bestpractice_00281_li16722125154315">If <strong id="cce_10_0380__b911830291">storageClassName</strong> is not specified, the default configuration is used, as shown below.<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen623034510524">apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
   name:  ssd-disk
@@ -187,8 +187,8 @@ spec:
   resources:
     requests:
       storage: 10Gi</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p14101131875619">Create and view the storage resource. You can see that the storage class of PVC ssd-disk is csi-disk-ssd, indicating that csi-disk-ssd is used by default.</p>
-<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_0_screen133543256569"># kubectl create -f ssd-disk.yaml 
+<p id="cce_10_0380__cce_bestpractice_00281_p14101131875619">Create and view the storage resource. You can see that the storage class of PVC ssd-disk is csi-disk-ssd, indicating that csi-disk-ssd is used by default.</p>
+<pre class="screen" id="cce_10_0380__cce_bestpractice_00281_screen133543256569"># kubectl create -f ssd-disk.yaml 
 persistentvolumeclaim/ssd-disk created
 # kubectl get pvc
 NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
@@ -198,8 +198,8 @@ ssd-disk   Bound    pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO
 NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
 pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            Delete           Bound       default/ssd-disk          csi-disk-ssd            15s
 pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            17m</pre>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p14639104411583">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is ultra-high I/O.</p>
-<p id="cce_10_0380__cce_bestpractice_00281_0_p76651917155918"></p>
+<p id="cce_10_0380__cce_bestpractice_00281_p14639104411583">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is ultra-high I/O.</p>
+<p id="cce_10_0380__cce_bestpractice_00281_p76651917155918"></p>
 </li></ul>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0384.html b/docs/cce/umn/cce_10_0384.html
index cacb3a4c..f2a8c26a 100644
--- a/docs/cce/umn/cce_10_0384.html
+++ b/docs/cce/umn/cce_10_0384.html
@@ -1,321 +1,129 @@
 <a name="cce_10_0384"></a><a name="cce_10_0384"></a>
 
 <h1 class="topictitle1">Hybrid Deployment of Online and Offline Jobs</h1>
-<div id="body0000001223887231">
-  <div class="section" id="cce_10_0384__section37571116112019">
-    <h4 class="sectiontitle">Online and Offline Jobs</h4>
-    <p id="cce_10_0384__p98401338182019">Jobs can be classified into online jobs and offline jobs based on whether
-      services are always online.</p>
-    <ul id="cce_10_0384__ul14442134602013">
-      <li id="cce_10_0384__li1644334662019"><strong id="cce_10_0384__b974314933413">Online job</strong>: Such jobs run
-        for a long time, with regular traffic surges, tidal resource requests, and high requirements on SLA, such as
-        advertising and e-commerce services.</li>
-      <li id="cce_10_0384__li54435468203"><strong id="cce_10_0384__b1786718118466">Offline jobs</strong>: Such jobs run
-        for a short time, have high computing requirements, and can tolerate high latency, such as AI and big data
-        services.</li>
-    </ul>
-  </div>
-  <div class="section" id="cce_10_0384__section79851928172111">
-    <h4 class="sectiontitle">Resource Oversubscription and Hybrid Deployment</h4>
-    <p id="cce_10_0384__p85737368395">Many services see surges in traffic. To ensure performance and stability,
-      resources are often requested at the maximum needed. However, the surges may ebb very shortly and resources, if
-      not released, are wasted in non-peak hours. Especially for online jobs that request a large quantity of resources
-      to ensure SLA, resource utilization can be as low as it gets.</p>
-    <p id="cce_10_0384__p109101627142814">Resource oversubscription is the process of making use of idle requested
-      resources. Oversubscribed resources are suitable for deploying offline jobs, which focus on throughput but have
-      low SLA requirements and can tolerate certain failures.</p>
-    <p id="cce_10_0384__p783132619158">Hybrid deployment of online and offline jobs in a cluster can better utilize
-      cluster resources.</p>
-    <div class="fignone" id="cce_10_0384__fig49992297287"><span class="figcap"><b>Figure 1 </b>Resource
-        oversubscription</span><br><span><img id="cce_10_0384__image108031910281"
-          src="en-us_image_0000001378942548.png"></span></div>
-  </div>
-  <div class="section" id="cce_10_0384__section134433136240">
-    <h4 class="sectiontitle">Oversubscription for Hybrid Deployment</h4>
-    <p id="cce_10_0384__p314884410243">Hybrid deployment is supported, and CPU and memory resources can be
-      oversubscribed. The key features are as follows:</p>
-    <ul id="cce_10_0384__ul31481544132411">
-      <li id="cce_10_0384__li1314874417243">Offline jobs preferentially run on oversubscribed nodes.<p
-          id="cce_10_0384__p3148744132416"><a name="cce_10_0384__li1314874417243"></a><a name="li1314874417243"></a>If
-          both oversubscribed and non-oversubscribed nodes exist, the former will score higher than the latter and
-          offline jobs are preferentially scheduled to oversubscribed nodes.</p>
-      </li>
-    </ul>
-    <ul id="cce_10_0384__ul1514834492416">
-      <li id="cce_10_0384__li1314884452410">Online jobs can use only non-oversubscribed resources if scheduled to an
-        oversubscribed node.<p id="cce_10_0384__p131487442243"><a name="cce_10_0384__li1314884452410"></a><a
-            name="li1314884452410"></a>Offline jobs can use both oversubscribed and non-oversubscribed resources of an
-          oversubscribed node.</p>
-      </li>
-    </ul>
-    <ul id="cce_10_0384__ul214864442411">
-      <li id="cce_10_0384__li16148134492413">In the same scheduling period, online jobs take precedence over offline
-        jobs.<p id="cce_10_0384__p91481144122419"><a name="cce_10_0384__li16148134492413"></a><a
-            name="li16148134492413"></a>If both online and offline jobs exist, online jobs are scheduled first. When the
-          node resource usage exceeds the upper limit and the node requests exceed 100%, offline jobs will be evicted.
-        </p>
-      </li>
-      <li id="cce_10_0384__li1822019482511">CPU/memory isolation is provided by kernels.<p
-          id="cce_10_0384__p15253145256"><a name="cce_10_0384__li1822019482511"></a><a name="li1822019482511"></a>CPU
-          isolation: Online jobs can quickly preempt CPU resources of offline jobs and suppress the CPU usage of the
-          offline jobs.</p>
-        <p id="cce_10_0384__p172530412256">Memory isolation: When system memory resources are used up and OOM Kill is
-          triggered, the kernel evicts offline jobs first.</p>
-      </li>
-      <li id="cce_10_0384__li98521216131611">kubelet offline jobs admission rules:<p id="cce_10_0384__p449363091616"><a
-            name="cce_10_0384__li98521216131611"></a><a name="li98521216131611"></a>After the the pod is scheduled to a
-          node, kubelet starts the pod only when the node resources can meet the pod request
-          (predicateAdmitHandler.Admit). kubelet starts the pod when both of the following conditions are met:</p>
-        <ul id="cce_10_0384__ul46524681611">
-          <li id="cce_10_0384__li1523284401610">The total request of pods to be started and online running jobs &lt;
-            allocatable nodes</li>
-          <li id="cce_10_0384__li11164552161617">The total request of pods to be started and online/offline running job
-            &lt; allocatable nodes+oversubscribed nodes</li>
-        </ul>
-      </li>
-      <li id="cce_10_0384__li12611173113324">Resource oversubscription and hybrid deployment:<p
-          id="cce_10_0384__p15341242113210"><a name="cce_10_0384__li12611173113324"></a><a
-            name="li12611173113324"></a>If only hybrid deployment is used, you need to configure the label <strong
-            id="cce_10_0384__b97841542438">volcano.sh/colocation=true</strong> for the node and delete the node label
-          <strong id="cce_10_0384__b1026420984217">volcano.sh/oversubscription</strong> or set its value to <strong
-            id="cce_10_0384__b17808132124215">false</strong>.</p>
-        <div class="p" id="cce_10_0384__p1123473213323">If the label <strong
-            id="cce_10_0384__b168216507436">volcano.sh/colocation=true</strong> is configured for a node, hybrid
-          deployment is enabled. If the label <strong
-            id="cce_10_0384__b758355819442">volcano.sh/oversubscription=true</strong> is configured, resource
-          oversubscription is enabled. The following table lists the available feature combinations after hybrid
-          deployment or resource oversubscription is enabled.
-          <div class="tablenoborder">
-            <table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table92167243324" frame="border"
-              border="1" rules="all">
-              <thead align="left">
-                <tr id="cce_10_0384__row526532483213">
-                  <th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.1">
-                    <p id="cce_10_0384__p126522453215">Hybrid Deployment Enabled (<strong
-                        id="cce_10_0384__b1578918489483">volcano.sh/colocation=true</strong>)</p>
-                  </th>
-                  <th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.2">
-                    <p id="cce_10_0384__p426532463215">Resource oversubscription Enabled (<strong
-                        id="cce_10_0384__b1563752011494">volcano.sh/oversubscription=true</strong>)</p>
-                  </th>
-                  <th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.3">
-                    <p id="cce_10_0384__p11265024153212">Use Oversubscribed Resources?</p>
-                  </th>
-                  <th align="left" class="cellrowborder" valign="top" width="25.27%" id="mcps1.3.3.5.4.2.3.1.5.1.4">
-                    <p id="cce_10_0384__p16265142413213">Conditions for Evicting Offline Pods</p>
-                  </th>
-                </tr>
-              </thead>
-              <tbody>
-                <tr id="cce_10_0384__row5265132483216">
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
-                    <p id="cce_10_0384__p4265724113217">No</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
-                    <p id="cce_10_0384__p9265112413324">No</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
-                    <p id="cce_10_0384__p3265182423218">No</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
-                    <p id="cce_10_0384__p1926614244327">None</p>
-                  </td>
-                </tr>
-                <tr id="cce_10_0384__row9266124193219">
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
-                    <p id="cce_10_0384__p42669244322">Yes</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
-                    <p id="cce_10_0384__p14266724193217">No</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
-                    <p id="cce_10_0384__p192668244321">No</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
-                    <p id="cce_10_0384__p1726602413321">The node resource usage exceeds the high threshold.</p>
-                  </td>
-                </tr>
-                <tr id="cce_10_0384__row826612414327">
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
-                    <p id="cce_10_0384__p152661024193220">No</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
-                    <p id="cce_10_0384__p8266132443211">Yes</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
-                    <p id="cce_10_0384__p162661424193210">Yes</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
-                    <p id="cce_10_0384__p7266122443215">The node resource usage exceeds the high threshold, and the node
-                      request exceeds 100%.</p>
-                  </td>
-                </tr>
-                <tr id="cce_10_0384__row1926612244320">
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 ">
-                    <p id="cce_10_0384__p1226612410323">Yes</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 ">
-                    <p id="cce_10_0384__p82661624153214">Yes</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 ">
-                    <p id="cce_10_0384__p10266112416327">Yes</p>
-                  </td>
-                  <td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 ">
-                    <p id="cce_10_0384__p1826682419329">The node resource usage exceeds the high threshold.</p>
-                  </td>
-                </tr>
-              </tbody>
-            </table>
-          </div>
-        </div>
-      </li>
-    </ul>
-  </div>
-  <div class="section" id="cce_10_0384__section102385261413">
-    <h4 class="sectiontitle">Notes and Constraints</h4>
-    <div class="p" id="cce_10_0384__p10679133852220"><strong id="cce_10_0384__b1912720762219">Specifications</strong>
-      <ul id="cce_10_0384__ul19383164411191">
-        <li id="cce_10_0384__li10766125111429">Kubernetes version:<ul id="cce_10_0384__ul62201752154212">
-            <li id="cce_10_0384__li1532115594220">1.19: 1.19.16-r4 or later</li>
-            <li id="cce_10_0384__li3107145714213">1.21: 1.21.7-r0 or later</li>
-            <li id="cce_10_0384__li15200194771716">1.23: 1.23.5-r0 or later</li>
-          </ul>
-        </li>
-        <li id="cce_10_0384__li4200184712177">Cluster Type: CCE or CCE Turbo</li>
-        <li id="cce_10_0384__li132001147111715">Node OS: EulerOS 2.9 (kernel-4.18.0-147.5.1.6.h729.6.eulerosv2r9.x86_64)</li>
-        <li id="cce_10_0384__li9200947201717">Node Type: ECS</li>
-        <li id="cce_10_0384__li10364142632218">The volcano add-on version: 1.7.0 or later</li>
-      </ul>
-    </div>
-    <div class="p" id="cce_10_0384__p0806142992218"><strong id="cce_10_0384__b1989171172917">Constraints</strong>
-      <ul id="cce_10_0384__ul5279171104212">
-        <li id="cce_10_0384__li1741118264206">Before enabling the volcano oversubscription plug-in, ensure that the
-          overcommit plug-in is not enabled.</li>
-        <li id="cce_10_0384__li3852121519212">Modifying the label of an oversubscribed node does not affect the running
-          pods.</li>
-        <li id="cce_10_0384__li269881617214">Running pods cannot be converted between online and offline services. To
-          convert services, you need to rebuild pods.</li>
-        <li id="cce_10_0384__li1149628182118">If the label <strong
-            id="cce_10_0384__b17494172396">volcano.sh/oversubscription=true</strong> is configured for a node in the
-          cluster, the <strong id="cce_10_0384__b74947711399">oversubscription</strong> configuration must be added to
-          the volcano add-on. Otherwise, the scheduling of oversubscribed nodes will be abnormal. Ensure that you have
-          correctly configure labels because the scheduler does not check the add-on and node configurations. For
-          details about the labels, see <a href="#cce_10_0384__section1940910414220">Configuring Oversubscription Labels
-            for Scheduling</a>.</li>
-        <li id="cce_10_0384__li49631856162112">To disable oversubscription, perform the following operations:<ul
-            id="cce_10_0384__ul1112232242215">
-            <li id="cce_10_0384__li12124162022210">Remove the <strong
-                id="cce_10_0384__b29051026184010">volcano.sh/oversubscription</strong> label from the oversubscribed
-              node.</li>
-            <li id="cce_10_0384__li91251620132217">Set <strong
-                id="cce_10_0384__b19244951411">over-subscription-resource</strong> to <strong
-                id="cce_10_0384__b158914764118">false</strong>.</li>
-            <li id="cce_10_0384__li12125420162210">Modify the configmap of the volcano scheduler named <strong
-                id="cce_10_0384__b163264240414">volcano-scheduler-configmap</strong> and remove the oversubscription
-              add-on.</li>
-          </ul>
-        </li>
-        <li id="cce_10_0384__li8879133410365">If <strong id="cce_10_0384__b610611461371">cpu-manager-policy</strong> is
-          set to static core binding on a node, do not assign the QoS class of Guaranteed to offline pods. If core
-          binding is required, change the pods to online pods. Otherwise, offline pods may occupy the CPUs of online
-          pods, causing online pod startup failures, and offline pods fail to be started although they are successfully
-          scheduled.</li>
-        <li id="cce_10_0384__li1223404614368">If <strong id="cce_10_0384__b69171513282">cpu-manager-policy</strong> is
-          set to static core binding on a node, do not bind cores to all online pods. Otherwise, online pods occupy all
-          CPU or memory resources, leaving a small number of oversubscribed resources.</li>
-      </ul>
-    </div>
-  </div>
-  <div class="section" id="cce_10_0384__section1940910414220"><a name="cce_10_0384__section1940910414220"></a><a
-      name="section1940910414220"></a>
-    <h4 class="sectiontitle">Configuring Oversubscription Labels for Scheduling</h4>
-    <p id="cce_10_0384__p742917132313">If the label <strong
-        id="cce_10_0384__b171792617431">volcano.sh/oversubscription=true</strong> is configured for a node in the
-      cluster, the <strong id="cce_10_0384__b142923516434">oversubscription</strong> configuration must be added to the
-      volcano add-on. Otherwise, the scheduling of oversubscribed nodes will be abnormal. For details about the related
-      configuration, see <a href="#cce_10_0384__table152481219311">Table 1</a>.</p>
-    <div class="p" id="cce_10_0384__p2798039318">Ensure that you have correctly configure labels because the scheduler
-      does not check the add-on and node configurations.
-      <div class="tablenoborder"><a name="cce_10_0384__table152481219311"></a><a name="table152481219311"></a>
-        <table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table152481219311" frame="border" border="1"
-          rules="all">
-          <caption><b>Table 1 </b>Configuring oversubscription labels for scheduling</caption>
-          <thead align="left">
-            <tr id="cce_10_0384__row13248611314">
-              <th align="left" class="cellrowborder" valign="top" width="23.32%" id="mcps1.3.5.3.1.2.4.1.1">
-                <p id="cce_10_0384__p1824814115313">Oversubscription in Add-on</p>
-              </th>
-              <th align="left" class="cellrowborder" valign="top" width="23.32%" id="mcps1.3.5.3.1.2.4.1.2">
-                <p id="cce_10_0384__p124801530">Oversubscription Label on Node</p>
-              </th>
-              <th align="left" class="cellrowborder" valign="top" width="53.36%" id="mcps1.3.5.3.1.2.4.1.3">
-                <p id="cce_10_0384__p82481611537">Scheduling</p>
-              </th>
-            </tr>
-          </thead>
-          <tbody>
-            <tr id="cce_10_0384__row1024811633">
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
-                <p id="cce_10_0384__p32481911317">Yes</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
-                <p id="cce_10_0384__p72483119318">Yes</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
-                <p id="cce_10_0384__p15248413313">Triggered by oversubscription</p>
-              </td>
-            </tr>
-            <tr id="cce_10_0384__row1324819110312">
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
-                <p id="cce_10_0384__p182491411939">Yes</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
-                <p id="cce_10_0384__p102491411135">No</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
-                <p id="cce_10_0384__p20249517310">Triggered</p>
-              </td>
-            </tr>
-            <tr id="cce_10_0384__row162491815313">
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
-                <p id="cce_10_0384__p524911113316">No</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
-                <p id="cce_10_0384__p1249513311">No</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
-                <p id="cce_10_0384__p142491810318">Triggered</p>
-              </td>
-            </tr>
-            <tr id="cce_10_0384__row1824961238">
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 ">
-                <p id="cce_10_0384__p1724951432">No</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 ">
-                <p id="cce_10_0384__p19249141338">Yes</p>
-              </td>
-              <td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 ">
-                <p id="cce_10_0384__p132491117313">Not triggered or failed. Avoid this configuration.</p>
-              </td>
-            </tr>
-          </tbody>
-        </table>
-      </div>
-    </div>
-  </div>
-  <div class="section" id="cce_10_0384__section1425191115439">
-    <h4 class="sectiontitle">Using Hybrid Deployment</h4>
-    <ol id="cce_10_0384__ol1169011275438">
-      <li id="cce_10_0384__li7690162711431"><span>Configure the volcano add-on.</span>
-        <p>
-        <ol type="a" id="cce_10_0384__ol52248364158">
-          <li id="cce_10_0384__li19225133651519">Use kubectl to connect to the cluster.</li>
-          <li id="cce_10_0384__li1225173611152">Install the volcano plug-in and add the <strong
-              id="cce_10_0384__b131290157581">oversubscription</strong> plug-in to <strong
-              id="cce_10_0384__b1775324565716">volcano-scheduler-configmap</strong>. Ensure that the plug-in
-            configuration does not contain the <strong id="cce_10_0384__b98657015516">overcommit</strong> plug-in. If
-            <strong id="cce_10_0384__b139215266510">- name: overcommit</strong> exists, delete this configuration.
-            <pre class="screen" id="cce_10_0384__screen935710443148"># kubectl edit cm volcano-scheduler-configmap -n kube-system
+<div id="body0000001223887231"><div class="section" id="cce_10_0384__section37571116112019"><h4 class="sectiontitle">Online and Offline Jobs</h4><p id="cce_10_0384__p98401338182019">Jobs can be classified into online jobs and offline jobs based on whether services are always online.</p>
+<ul id="cce_10_0384__ul14442134602013"><li id="cce_10_0384__li1644334662019"><strong id="cce_10_0384__b974314933413">Online job</strong>: Such jobs run for a long time, with regular traffic surges, tidal resource requests, and high requirements on SLA, such as advertising and e-commerce services.</li><li id="cce_10_0384__li54435468203"><strong id="cce_10_0384__b1786718118466">Offline jobs</strong>: Such jobs run for a short time, have high computing requirements, and can tolerate high latency, such as AI and big data services.</li></ul>
+</div>
+<div class="section" id="cce_10_0384__section79851928172111"><h4 class="sectiontitle">Resource Oversubscription and Hybrid Deployment</h4><p id="cce_10_0384__p85737368395">Many services see surges in traffic. To ensure performance and stability, resources are often requested at the maximum needed. However, the surges may ebb very shortly and resources, if not released, are wasted in non-peak hours. Especially for online jobs that request a large quantity of resources to ensure SLA, resource utilization can be as low as it gets.</p>
+<p id="cce_10_0384__p109101627142814">Resource oversubscription is the process of making use of idle requested resources. Oversubscribed resources are suitable for deploying offline jobs, which focus on throughput but have low SLA requirements and can tolerate certain failures.</p>
+<p id="cce_10_0384__p783132619158">Hybrid deployment of online and offline jobs in a cluster can better utilize cluster resources.</p>
+<div class="fignone" id="cce_10_0384__fig49992297287"><span class="figcap"><b>Figure 1 </b>Resource oversubscription</span><br><span><img id="cce_10_0384__image108031910281" src="en-us_image_0000001568902489.png"></span></div>
+</div>
+<div class="section" id="cce_10_0384__section134433136240"><h4 class="sectiontitle">Oversubscription for Hybrid Deployment</h4><p id="cce_10_0384__p314884410243">Hybrid deployment is supported, and CPU and memory resources can be oversubscribed. The key features are as follows:</p>
+<ul id="cce_10_0384__ul31481544132411"><li id="cce_10_0384__li1314874417243">Offline jobs preferentially run on oversubscribed nodes.<p id="cce_10_0384__p3148744132416"><a name="cce_10_0384__li1314874417243"></a><a name="li1314874417243"></a>If both oversubscribed and non-oversubscribed nodes exist, the former will score higher than the latter and offline jobs are preferentially scheduled to oversubscribed nodes.</p>
+</li></ul>
+<ul id="cce_10_0384__ul1514834492416"><li id="cce_10_0384__li1314884452410">Online jobs can use only non-oversubscribed resources if scheduled to an oversubscribed node.<p id="cce_10_0384__p131487442243"><a name="cce_10_0384__li1314884452410"></a><a name="li1314884452410"></a>Offline jobs can use both oversubscribed and non-oversubscribed resources of an oversubscribed node.</p>
+</li></ul>
+<ul id="cce_10_0384__ul214864442411"><li id="cce_10_0384__li16148134492413">In the same scheduling period, online jobs take precedence over offline jobs.<p id="cce_10_0384__p91481144122419"><a name="cce_10_0384__li16148134492413"></a><a name="li16148134492413"></a>If both online and offline jobs exist, online jobs are scheduled first. When the node resource usage exceeds the upper limit and the node requests exceed 100%, offline jobs will be evicted.</p>
+</li><li id="cce_10_0384__li1822019482511">CPU/memory isolation is provided by kernels.<p id="cce_10_0384__p15253145256"><a name="cce_10_0384__li1822019482511"></a><a name="li1822019482511"></a>CPU isolation: Online jobs can quickly preempt CPU resources of offline jobs and suppress the CPU usage of the offline jobs.</p>
+<p id="cce_10_0384__p172530412256">Memory isolation: When system memory resources are used up and OOM Kill is triggered, the kernel evicts offline jobs first.</p>
+</li><li id="cce_10_0384__li98521216131611">kubelet offline jobs admission rules:<p id="cce_10_0384__p449363091616"><a name="cce_10_0384__li98521216131611"></a><a name="li98521216131611"></a>After the the pod is scheduled to a node, kubelet starts the pod only when the node resources can meet the pod request (predicateAdmitHandler.Admit). kubelet starts the pod when both of the following conditions are met:</p>
+<ul id="cce_10_0384__ul46524681611"><li id="cce_10_0384__li1523284401610">The total request of pods to be started and online running jobs &lt; allocatable nodes</li><li id="cce_10_0384__li11164552161617">The total request of pods to be started and online/offline running job &lt; allocatable nodes+oversubscribed nodes</li></ul>
+</li><li id="cce_10_0384__li12611173113324">Resource oversubscription and hybrid deployment:<p id="cce_10_0384__p15341242113210"><a name="cce_10_0384__li12611173113324"></a><a name="li12611173113324"></a>If only hybrid deployment is used, you need to configure the label <strong id="cce_10_0384__b97841542438">volcano.sh/colocation=true</strong> for the node and delete the node label <strong id="cce_10_0384__b1026420984217">volcano.sh/oversubscription</strong> or set its value to <strong id="cce_10_0384__b17808132124215">false</strong>.</p>
+<div class="p" id="cce_10_0384__p1123473213323">If the label <strong id="cce_10_0384__b98297917612">volcano.sh/colocation=true</strong> is configured for a node, hybrid deployment is enabled. If the label <strong id="cce_10_0384__b188298916619">volcano.sh/oversubscription=true</strong> is configured, resource oversubscription is enabled. The following table lists the available feature combinations after hybrid deployment or resource oversubscription is enabled.
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table92167243324" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0384__row526532483213"><th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.1"><p id="cce_10_0384__p126522453215">Hybrid Deployment Enabled (<strong id="cce_10_0384__b1578918489483">volcano.sh/colocation=true</strong>)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.2"><p id="cce_10_0384__p426532463215">Resource oversubscription Enabled (<strong id="cce_10_0384__b1563752011494">volcano.sh/oversubscription=true</strong>)</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="24.91%" id="mcps1.3.3.5.4.2.3.1.5.1.3"><p id="cce_10_0384__p11265024153212">Use Oversubscribed Resources?</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.27%" id="mcps1.3.3.5.4.2.3.1.5.1.4"><p id="cce_10_0384__p16265142413213">Conditions for Evicting Offline Pods</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0384__row5265132483216"><td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 "><p id="cce_10_0384__p4265724113217">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 "><p id="cce_10_0384__p9265112413324">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 "><p id="cce_10_0384__p3265182423218">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 "><p id="cce_10_0384__p1926614244327">None</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row9266124193219"><td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 "><p id="cce_10_0384__p42669244322">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 "><p id="cce_10_0384__p14266724193217">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 "><p id="cce_10_0384__p192668244321">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 "><p id="cce_10_0384__p1726602413321">The node resource usage exceeds the high threshold.</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row826612414327"><td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 "><p id="cce_10_0384__p152661024193220">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 "><p id="cce_10_0384__p8266132443211">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 "><p id="cce_10_0384__p162661424193210">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 "><p id="cce_10_0384__p7266122443215">The node resource usage exceeds the high threshold, and the node request exceeds 100%.</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row1926612244320"><td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.1 "><p id="cce_10_0384__p1226612410323">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.2 "><p id="cce_10_0384__p82661624153214">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="24.91%" headers="mcps1.3.3.5.4.2.3.1.5.1.3 "><p id="cce_10_0384__p10266112416327">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.27%" headers="mcps1.3.3.5.4.2.3.1.5.1.4 "><p id="cce_10_0384__p1826682419329">The node resource usage exceeds the high threshold.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</li></ul>
+</div>
+<div class="section" id="cce_10_0384__section102385261413"><h4 class="sectiontitle">Notes and Constraints</h4><div class="p" id="cce_10_0384__p10679133852220"><strong id="cce_10_0384__b1912720762219">Specifications</strong><ul id="cce_10_0384__ul19383164411191"><li id="cce_10_0384__li10766125111429">Kubernetes version:<ul id="cce_10_0384__ul62201752154212"><li id="cce_10_0384__li1532115594220">v1.19: v1.19.16-r4 or later</li><li id="cce_10_0384__li3107145714213">v1.21: v1.21.7-r0 or later</li><li id="cce_10_0384__li15200194771716">v1.23: v1.23.5-r0 or later</li><li id="cce_10_0384__li514922914311">v1.25 or later</li></ul>
+</li><li id="cce_10_0384__li4200184712177">Cluster type: CCE or CCE Turbo</li><li id="cce_10_0384__li132001147111715">Node OS: EulerOS 2.9 (kernel-4.18.0-147.5.1.6.h729.6.eulerosv2r9.x86_64)</li><li id="cce_10_0384__li9200947201717">Node type: ECS</li><li id="cce_10_0384__li10364142632218">volcano add-on version: 1.7.0 or later</li></ul>
+</div>
+<div class="p" id="cce_10_0384__p0806142992218"><strong id="cce_10_0384__b1989171172917">Constraints</strong><ul id="cce_10_0384__ul5279171104212"><li id="cce_10_0384__li1741118264206">Before enabling the volcano oversubscription plug-in, ensure that the overcommit plug-in is not enabled.</li><li id="cce_10_0384__li3852121519212">Modifying the label of an oversubscribed node does not affect the running pods.</li><li id="cce_10_0384__li269881617214">Running pods cannot be converted between online and offline services. To convert services, you need to rebuild pods.</li><li id="cce_10_0384__li1149628182118">If the label <strong id="cce_10_0384__b17494172396">volcano.sh/oversubscription=true</strong> is configured for a node in the cluster, the <strong id="cce_10_0384__b74947711399">oversubscription</strong> configuration must be added to the volcano add-on. Otherwise, the scheduling of oversubscribed nodes will be abnormal. Ensure that you have correctly configure labels because the scheduler does not check the add-on and node configurations. For details about the labels, see <a href="#cce_10_0384__section1940910414220">Configuring Oversubscription Labels for Scheduling</a>.</li><li id="cce_10_0384__li49631856162112">To disable oversubscription, perform the following operations:<ul id="cce_10_0384__ul1112232242215"><li id="cce_10_0384__li12124162022210">Remove the <strong id="cce_10_0384__b29051026184010">volcano.sh/oversubscription</strong> label from the oversubscribed node.</li><li id="cce_10_0384__li91251620132217">Set <strong id="cce_10_0384__b19244951411">over-subscription-resource</strong> to <strong id="cce_10_0384__b158914764118">false</strong>.</li><li id="cce_10_0384__li12125420162210">Modify the configmap of the volcano scheduler named <strong id="cce_10_0384__b163264240414">volcano-scheduler-configmap</strong> and remove the oversubscription add-on.</li></ul>
+</li><li id="cce_10_0384__li8879133410365">If <strong id="cce_10_0384__b610611461371">cpu-manager-policy</strong> is set to static core binding on a node, do not assign the QoS class of Guaranteed to offline pods. If core binding is required, change the pods to online pods. Otherwise, offline pods may occupy the CPUs of online pods, causing online pod startup failures, and offline pods fail to be started although they are successfully scheduled.</li><li id="cce_10_0384__li1223404614368">If <strong id="cce_10_0384__b69171513282">cpu-manager-policy</strong> is set to static core binding on a node, do not bind cores to all online pods. Otherwise, online pods occupy all CPU or memory resources, leaving a small number of oversubscribed resources.</li></ul>
+</div>
+</div>
+<div class="section" id="cce_10_0384__section1940910414220"><a name="cce_10_0384__section1940910414220"></a><a name="section1940910414220"></a><h4 class="sectiontitle">Configuring Oversubscription Labels for Scheduling</h4><p id="cce_10_0384__p742917132313">If the label <strong id="cce_10_0384__b171792617431">volcano.sh/oversubscription=true</strong> is configured for a node in the cluster, the <strong id="cce_10_0384__b142923516434">oversubscription</strong> configuration must be added to the volcano add-on. Otherwise, the scheduling of oversubscribed nodes will be abnormal. For details about the related configuration, see <a href="#cce_10_0384__table152481219311">Table 1</a>.</p>
+<div class="p" id="cce_10_0384__p2798039318">Ensure that you have correctly configure labels because the scheduler does not check the add-on and node configurations.
+<div class="tablenoborder"><a name="cce_10_0384__table152481219311"></a><a name="table152481219311"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table152481219311" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Configuring oversubscription labels for scheduling</caption><thead align="left"><tr id="cce_10_0384__row13248611314"><th align="left" class="cellrowborder" valign="top" width="23.32%" id="mcps1.3.5.3.1.2.4.1.1"><p id="cce_10_0384__p1824814115313">Oversubscription in Add-on</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="23.32%" id="mcps1.3.5.3.1.2.4.1.2"><p id="cce_10_0384__p124801530">Oversubscription Label on Node</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="53.36%" id="mcps1.3.5.3.1.2.4.1.3"><p id="cce_10_0384__p82481611537">Scheduling</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0384__row1024811633"><td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 "><p id="cce_10_0384__p32481911317">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 "><p id="cce_10_0384__p72483119318">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 "><p id="cce_10_0384__p15248413313">Triggered by oversubscription</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row1324819110312"><td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 "><p id="cce_10_0384__p182491411939">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 "><p id="cce_10_0384__p102491411135">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 "><p id="cce_10_0384__p20249517310">Triggered</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row162491815313"><td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 "><p id="cce_10_0384__p524911113316">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 "><p id="cce_10_0384__p1249513311">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 "><p id="cce_10_0384__p142491810318">Triggered</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row1824961238"><td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.1 "><p id="cce_10_0384__p1724951432">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="23.32%" headers="mcps1.3.5.3.1.2.4.1.2 "><p id="cce_10_0384__p19249141338">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.36%" headers="mcps1.3.5.3.1.2.4.1.3 "><p id="cce_10_0384__p132491117313">Not triggered or failed. Avoid this configuration.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div class="section" id="cce_10_0384__section1425191115439"><h4 class="sectiontitle">Using Hybrid Deployment</h4><ol id="cce_10_0384__ol1169011275438"><li id="cce_10_0384__li7690162711431"><span>Configure the volcano add-on.</span><p><ol type="a" id="cce_10_0384__ol52248364158"><li id="cce_10_0384__li19225133651519">Use kubectl to connect to the cluster.</li><li id="cce_10_0384__li1225173611152">Install the volcano plug-in and add the <strong id="cce_10_0384__b131290157581">oversubscription</strong> plug-in to <strong id="cce_10_0384__b1775324565716">volcano-scheduler-configmap</strong>. Ensure that the plug-in configuration does not contain the <strong id="cce_10_0384__b98657015516">overcommit</strong> plug-in. If <strong id="cce_10_0384__b139215266510">- name: overcommit</strong> exists, delete this configuration.<pre class="screen" id="cce_10_0384__screen935710443148"># kubectl edit cm volcano-scheduler-configmap -n kube-system
 apiVersion: v1
 data:
   volcano-scheduler.conf: |
@@ -335,45 +143,16 @@ data:
       - name: cce-gpu-topology-predicate
       - name: cce-gpu-topology-priority
       - name: cce-gpu</pre>
-          </li>
-        </ol>
-        </p>
-      </li>
-      <li id="cce_10_0384__li11364155010439"><span>Enable the node oversubscription feature.</span>
-        <p>
-        <p id="cce_10_0384__p1958412304184">A label can be configured to use oversubscribed resources only after the
-          oversubscription feature is enabled for a node. Related nodes can be created only in a node pool. To enable
-          the oversubscription feature, perform the following steps:</p>
-        <ol type="a" id="cce_10_0384__ol181230455528">
-          <li id="cce_10_0384__li15123445115219">Create a node pool.</li>
-          <li id="cce_10_0384__li512314518521">Choose <strong id="cce_10_0384__b067725222512">More</strong> &gt; <strong
-              id="cce_10_0384__b4647152217310">Manage</strong> in the <strong
-              id="cce_10_0384__b120101615277">Operation</strong> column of the created node pool.</li>
-          <li id="cce_10_0384__li111231945135219">In the <strong id="cce_10_0384__b4902182482616">Manage
-              Component</strong> window that is displayed, set <strong
-              id="cce_10_0384__b189811236132611">over-subscription-resource</strong> under <strong
-              id="cce_10_0384__b217205052715">kubelet</strong> to <strong id="cce_10_0384__b999644092613">true</strong>
-            and click <strong id="cce_10_0384__b157015448266">OK</strong>.</li>
-        </ol>
-        <p id="cce_10_0384__p19727583819"><span><img id="cce_10_0384__image17744105621315"
-              src="en-us_image_0000001207511384.png"></span></p>
-        </p>
-      </li>
-      <li id="cce_10_0384__li182861216174415"><span>Set the node oversubscription label.</span>
-        <p>
-        <p id="cce_10_0384__p15827102792019">The <strong
-            id="cce_10_0384__b176001451961">volcano.sh/oversubscription</strong> label needs to be configured for an
-          oversubscribed node. If this label is set for a node and the value is <strong
-            id="cce_10_0384__b6944921463">true</strong>, the node is an oversubscribed node. Otherwise, the node is not
-          an oversubscribed node.</p>
-        <pre class="screen"
-          id="cce_10_0384__screen4181417171812">kubectl label node 192.168.0.0 volcano.sh/oversubscription=true</pre>
-        <p id="cce_10_0384__p1172017528912">An oversubscribed node also supports the oversubscription thresholds, as
-          listed in <a href="#cce_10_0384__table1853397191112">Table 2</a>. For example:</p>
-        <pre class="screen"
-          id="cce_10_0384__screen344613013257">kubectl annotate node 192.168.0.0 volcano.sh/evicting-cpu-high-watermark=70</pre>
-        <p id="cce_10_0384__p1072018388253">Querying the node information</p>
-        <pre class="screen" id="cce_10_0384__screen146893231812"># kubectl describe node 192.168.0.0
+</li></ol>
+</p></li><li id="cce_10_0384__li11364155010439"><span>Enable the node oversubscription feature.</span><p><p id="cce_10_0384__p1958412304184">A label can be configured to use oversubscribed resources only after the oversubscription feature is enabled for a node. Related nodes can be created only in a node pool. To enable the oversubscription feature, perform the following steps:</p>
+<ol type="a" id="cce_10_0384__ol181230455528"><li id="cce_10_0384__li15123445115219">Create a node pool.</li><li id="cce_10_0384__li512314518521">Choose <strong id="cce_10_0384__b067725222512">More</strong> &gt; <strong id="cce_10_0384__b4647152217310">Manage</strong> in the <strong id="cce_10_0384__b120101615277">Operation</strong> column of the created node pool.</li><li id="cce_10_0384__li111231945135219">In the <strong id="cce_10_0384__b4902182482616">Manage Component</strong> window that is displayed, set <strong id="cce_10_0384__b189811236132611">over-subscription-resource</strong> under <strong id="cce_10_0384__b217205052715">kubelet</strong> to <strong id="cce_10_0384__b999644092613">true</strong> and click <strong id="cce_10_0384__b157015448266">OK</strong>.</li></ol>
+<p id="cce_10_0384__p19727583819"><span><img id="cce_10_0384__image17744105621315" src="en-us_image_0000001518062608.png"></span></p>
+</p></li><li id="cce_10_0384__li182861216174415"><span>Set the node oversubscription label.</span><p><p id="cce_10_0384__p15827102792019">The <strong id="cce_10_0384__b176001451961">volcano.sh/oversubscription</strong> label needs to be configured for an oversubscribed node. If this label is set for a node and the value is <strong id="cce_10_0384__b6944921463">true</strong>, the node is an oversubscribed node. Otherwise, the node is not an oversubscribed node.</p>
+<pre class="screen" id="cce_10_0384__screen4181417171812">kubectl label node 192.168.0.0 volcano.sh/oversubscription=true</pre>
+<p id="cce_10_0384__p1172017528912">An oversubscribed node also supports the oversubscription thresholds, as listed in <a href="#cce_10_0384__table1853397191112">Table 2</a>. For example:</p>
+<pre class="screen" id="cce_10_0384__screen344613013257">kubectl annotate node 192.168.0.0 volcano.sh/evicting-cpu-high-watermark=70</pre>
+<p id="cce_10_0384__p1072018388253">Querying the node information</p>
+<pre class="screen" id="cce_10_0384__screen146893231812"># kubectl describe node 192.168.0.0
 Name:             192.168.0.0
 Roles:              &lt;none&gt;
 Labels:           ...
@@ -381,108 +160,51 @@ Labels:           ...
 Annotations:      ...
                   volcano.sh/evicting-cpu-high-watermark: 70</pre>
 
-        <div class="tablenoborder"><a name="cce_10_0384__table1853397191112"></a><a name="table1853397191112"></a>
-          <table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table1853397191112" frame="border"
-            border="1" rules="all">
-            <caption><b>Table 2 </b>Node oversubscription annotations</caption>
-            <thead align="left">
-              <tr id="cce_10_0384__row105951715118">
-                <th align="left" class="cellrowborder" valign="top" width="48%" id="mcps1.3.6.2.3.2.7.2.3.1.1">
-                  <p id="cce_10_0384__p185951711115">Name</p>
-                </th>
-                <th align="left" class="cellrowborder" valign="top" width="52%" id="mcps1.3.6.2.3.2.7.2.3.1.2">
-                  <p id="cce_10_0384__p259510717114">Description</p>
-                </th>
-              </tr>
-            </thead>
-            <tbody>
-              <tr id="cce_10_0384__row45951176117">
-                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
-                  <p id="cce_10_0384__p259557171110">volcano.sh/evicting-cpu-high-watermark</p>
-                </td>
-                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
-                  <p id="cce_10_0384__p41092413154">When the CPU usage of a node exceeds the specified value, offline
-                    job eviction is triggered and the node becomes unschedulable.</p>
-                  <p id="cce_10_0384__p259511741114">The default value is <strong
-                      id="cce_10_0384__b44974543419">80</strong>, indicating that offline job eviction is triggered when
-                    the CPU usage of a node exceeds 80%.</p>
-                </td>
-              </tr>
-              <tr id="cce_10_0384__row11595577116">
-                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
-                  <p id="cce_10_0384__p1859513716115">volcano.sh/evicting-cpu-low-watermark</p>
-                </td>
-                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
-                  <p id="cce_10_0384__p17595137161114">After eviction is triggered, the scheduling starts again when the
-                    CPU usage of a node is lower than the specified value.</p>
-                  <p id="cce_10_0384__p16595197161115">The default value is <strong
-                      id="cce_10_0384__b1914818330384">30</strong>, indicating that scheduling starts again when the CPU
-                    usage of a node is lower than 30%.</p>
-                </td>
-              </tr>
-              <tr id="cce_10_0384__row17595167181110">
-                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
-                  <p id="cce_10_0384__p1459517791112">volcano.sh/evicting-memory-high-watermark</p>
-                </td>
-                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
-                  <p id="cce_10_0384__p13595770114">When the memory usage of a node exceeds the specified value, offline
-                    job eviction is triggered and the node becomes unschedulable.</p>
-                  <p id="cce_10_0384__p125952715117">The default value is <strong
-                      id="cce_10_0384__b2040511225392">60</strong>, indicating that offline job eviction is triggered
-                    when the memory usage of a node exceeds 60%.</p>
-                </td>
-              </tr>
-              <tr id="cce_10_0384__row45958731118">
-                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
-                  <p id="cce_10_0384__p105958710119">volcano.sh/evicting-memory-low-watermark</p>
-                </td>
-                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
-                  <p id="cce_10_0384__p10595197171117">After eviction is triggered, the scheduling starts again when the
-                    memory usage of a node is lower than the specified value.</p>
-                  <p id="cce_10_0384__p1259519712115">The default value is <strong
-                      id="cce_10_0384__b176291225104013">30</strong>, indicating that the scheduling starts again when
-                    the memory usage of a node is less than 30%.</p>
-                </td>
-              </tr>
-              <tr id="cce_10_0384__row25953771110">
-                <td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 ">
-                  <p id="cce_10_0384__p19595974119">volcano.sh/oversubscription-types</p>
-                </td>
-                <td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 ">
-                  <p id="cce_10_0384__p1359567101115">Oversubscribed resource type. The options are as follows:</p>
-                  <ul id="cce_10_0384__ul440551111316">
-                    <li id="cce_10_0384__li34075114137">CPU (oversubscribed CPU)</li>
-                    <li id="cce_10_0384__li14401151191319">memory (oversubscribed memory)</li>
-                    <li id="cce_10_0384__li240551141315">cpu,memory (oversubscribed CPU and memory)</li>
-                  </ul>
-                  <p id="cce_10_0384__p175951741117">The default value is <strong
-                      id="cce_10_0384__b1181107142511">cpu,memory</strong>.</p>
-                </td>
-              </tr>
-            </tbody>
-          </table>
-        </div>
-        </p>
-      </li>
-      <li id="cce_10_0384__li8503750144419"><span>Deploy online and offline jobs.</span>
-        <p>
-        <p id="cce_10_0384__p16825144217223">The <strong id="cce_10_0384__b56664173114">volcano.sh/qos-level</strong>
-          label needs to be added to annotation to distinguish offline jobs. The value is an integer ranging from -7 to
-          7. If the value is less than 0, the job is an offline job. If the value is greater than or equal to 0, the job
-          is a high-priority job, that is, online job. You do not need to set this label for online jobs. For both
-          online and offline jobs, set <strong id="cce_10_0384__b1638944418447">schedulerName</strong> to <strong
-            id="cce_10_0384__b1525118474441">volcano</strong> to enable the Volcano scheduler.</p>
-        <div class="note" id="cce_10_0384__note881010430447"><img src="public_sys-resources/note_3.0-en-us.png"><span
-            class="notetitle"> </span>
-          <div class="notebody">
-            <p id="cce_10_0384__p7811184318442">The priorities of online/online and offline/offline jobs are not
-              differentiated, and the value validity is not verified. If the value of <strong
-                id="cce_10_0384__b1185815543911">volcano.sh/qos-level</strong> of an offline job is not a negative
-              integer ranging from -7 to 0, the job is processed as an online job.</p>
-          </div>
-        </div>
-        <p id="cce_10_0384__p84551082233">For an offline job:</p>
-        <pre class="screen" id="cce_10_0384__screen152641472313">kind: Deployment
+<div class="tablenoborder"><a name="cce_10_0384__table1853397191112"></a><a name="table1853397191112"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table1853397191112" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Node oversubscription annotations</caption><thead align="left"><tr id="cce_10_0384__row105951715118"><th align="left" class="cellrowborder" valign="top" width="48%" id="mcps1.3.6.2.3.2.7.2.3.1.1"><p id="cce_10_0384__p185951711115">Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="52%" id="mcps1.3.6.2.3.2.7.2.3.1.2"><p id="cce_10_0384__p259510717114">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0384__row45951176117"><td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 "><p id="cce_10_0384__p259557171110">volcano.sh/evicting-cpu-high-watermark</p>
+</td>
+<td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 "><p id="cce_10_0384__p41092413154">When the CPU usage of a node exceeds the specified value, offline job eviction is triggered and the node becomes unschedulable.</p>
+<p id="cce_10_0384__p259511741114">The default value is <strong id="cce_10_0384__b44974543419">80</strong>, indicating that offline job eviction is triggered when the CPU usage of a node exceeds 80%.</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row11595577116"><td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 "><p id="cce_10_0384__p1859513716115">volcano.sh/evicting-cpu-low-watermark</p>
+</td>
+<td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 "><p id="cce_10_0384__p17595137161114">After eviction is triggered, the scheduling starts again when the CPU usage of a node is lower than the specified value.</p>
+<p id="cce_10_0384__p16595197161115">The default value is <strong id="cce_10_0384__b1914818330384">30</strong>, indicating that scheduling starts again when the CPU usage of a node is lower than 30%.</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row17595167181110"><td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 "><p id="cce_10_0384__p1459517791112">volcano.sh/evicting-memory-high-watermark</p>
+</td>
+<td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 "><p id="cce_10_0384__p13595770114">When the memory usage of a node exceeds the specified value, offline job eviction is triggered and the node becomes unschedulable.</p>
+<p id="cce_10_0384__p125952715117">The default value is <strong id="cce_10_0384__b2040511225392">60</strong>, indicating that offline job eviction is triggered when the memory usage of a node exceeds 60%.</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row45958731118"><td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 "><p id="cce_10_0384__p105958710119">volcano.sh/evicting-memory-low-watermark</p>
+</td>
+<td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 "><p id="cce_10_0384__p10595197171117">After eviction is triggered, the scheduling starts again when the memory usage of a node is lower than the specified value.</p>
+<p id="cce_10_0384__p1259519712115">The default value is <strong id="cce_10_0384__b176291225104013">30</strong>, indicating that the scheduling starts again when the memory usage of a node is less than 30%.</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row25953771110"><td class="cellrowborder" valign="top" width="48%" headers="mcps1.3.6.2.3.2.7.2.3.1.1 "><p id="cce_10_0384__p19595974119">volcano.sh/oversubscription-types</p>
+</td>
+<td class="cellrowborder" valign="top" width="52%" headers="mcps1.3.6.2.3.2.7.2.3.1.2 "><p id="cce_10_0384__p1359567101115">Oversubscribed resource type. The options are as follows:</p>
+<ul id="cce_10_0384__ul440551111316"><li id="cce_10_0384__li34075114137">CPU (oversubscribed CPU)</li><li id="cce_10_0384__li14401151191319">memory (oversubscribed memory)</li><li id="cce_10_0384__li240551141315">cpu,memory (oversubscribed CPU and memory)</li></ul>
+<p id="cce_10_0384__p175951741117">The default value is <strong id="cce_10_0384__b1181107142511">cpu,memory</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0384__li8503750144419"><span>Deploy online and offline jobs.</span><p><p id="cce_10_0384__p16825144217223">The <strong id="cce_10_0384__b56664173114">volcano.sh/qos-level</strong> label needs to be added to annotation to distinguish offline jobs. The value is an integer ranging from -7 to 7. If the value is less than 0, the job is an offline job. If the value is greater than or equal to 0, the job is a high-priority job, that is, online job. You do not need to set this label for online jobs. For both online and offline jobs, set <strong id="cce_10_0384__b1638944418447">schedulerName</strong> to <strong id="cce_10_0384__b1525118474441">volcano</strong> to enable the Volcano scheduler.</p>
+<div class="note" id="cce_10_0384__note881010430447"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0384__p7811184318442">The priorities of online/online and offline/offline jobs are not differentiated, and the value validity is not verified. If the value of <strong id="cce_10_0384__b1185815543911">volcano.sh/qos-level</strong> of an offline job is not a negative integer ranging from -7 to 0, the job is processed as an online job.</p>
+</div></div>
+<p id="cce_10_0384__p84551082233">For an offline job:</p>
+<pre class="screen" id="cce_10_0384__screen152641472313">kind: Deployment
 apiVersion: apps/v1
 spec:
   replicas: 4
@@ -494,8 +216,8 @@ spec:
     spec:
       schedulerName: volcano             # The Volcano scheduler is used.
       ...</pre>
-        <p id="cce_10_0384__p76818266236">For an online job:</p>
-        <pre class="screen" id="cce_10_0384__screen6550173472317">kind: Deployment
+<p id="cce_10_0384__p76818266236">For an online job:</p>
+<pre class="screen" id="cce_10_0384__screen6550173472317">kind: Deployment
 apiVersion: apps/v1
 spec:
   replicas: 4
@@ -506,14 +228,8 @@ spec:
     spec:
       schedulerName: volcano          # The Volcano scheduler is used.
       ...</pre>
-        </p>
-      </li>
-      <li id="cce_10_0384__li13682193413597"><span>Run the following command to check the number of oversubscribed
-          resources and the resource usage:</span>
-        <p>
-        <p id="cce_10_0384__p763544410597">kubectl describe node <em id="cce_10_0384__i17334612013">&lt;nodeIP&gt;</em>
-        </p>
-        <pre class="screen" id="cce_10_0384__screen118601312303"># kubectl describe node 192.168.0.0
+</p></li><li id="cce_10_0384__li13682193413597"><span>Run the following command to check the number of oversubscribed resources and the resource usage:</span><p><p id="cce_10_0384__p763544410597">kubectl describe node <em id="cce_10_0384__i17334612013">&lt;nodeIP&gt;</em></p>
+<pre class="screen" id="cce_10_0384__screen118601312303"># kubectl describe node 192.168.0.0
 Name:             192.168.0.0
 Roles:              &lt;none&gt;
 Labels:           ...
@@ -530,41 +246,21 @@ Allocated resources:
   --------           --------      ------
   cpu                 4950m (126%)  4950m (126%)
   memory             1712Mi (27%)  1712Mi (27%)</pre>
-        </p>
-      </li>
-    </ol>
-  </div>
-  <div class="section" id="cce_10_0384__section20146113631217">
-    <h4 class="sectiontitle">Hybrid Deployment Example</h4>
-    <p id="cce_10_0384__p937932519339">The following uses an example to describe how to deploy online and offline jobs
-      in hybrid mode.</p>
-    <ol id="cce_10_0384__ol39002575313">
-      <li id="cce_10_0384__li090115511531"><span>Assume that a cluster has two nodes: one oversubscribed node and one
-          non-oversubscribed node.</span>
-        <p>
-        <pre class="screen" id="cce_10_0384__screen1752292953315"># kubectl get node
+</p></li></ol>
+</div>
+<div class="section" id="cce_10_0384__section20146113631217"><h4 class="sectiontitle">Hybrid Deployment Example</h4><p id="cce_10_0384__p937932519339">The following uses an example to describe how to deploy online and offline jobs in hybrid mode.</p>
+<ol id="cce_10_0384__ol39002575313"><li id="cce_10_0384__li090115511531"><span>Assume that a cluster has two nodes: one oversubscribed node and one non-oversubscribed node.</span><p><pre class="screen" id="cce_10_0384__screen1752292953315"># kubectl get node
 NAME           STATUS   ROLES    AGE    VERSION
 192.168.0.173   Ready    &lt;none&gt;   4h58m   v1.19.16-r2-CCE22.5.1
 192.168.0.3     Ready    &lt;none&gt;   148m    v1.19.16-r2-CCE22.5.1</pre>
-        <ul id="cce_10_0384__ul165291105544">
-          <li id="cce_10_0384__li452912016542">192.168.0.173 is an oversubscribed node (with the <strong
-              id="cce_10_0384__b228320422472">volcano.sh/oversubscirption=true</strong> label).</li>
-          <li id="cce_10_0384__li85291007543">192.168.0.3 is a non-oversubscribed node (without the <strong
-              id="cce_10_0384__b1985814634812">volcano.sh/oversubscirption=true</strong> label).</li>
-        </ul>
-        <pre class="screen" id="cce_10_0384__screen59401542193813"># kubectl describe node 192.168.0.173
+<ul id="cce_10_0384__ul165291105544"><li id="cce_10_0384__li452912016542">192.168.0.173 is an oversubscribed node (with the <strong id="cce_10_0384__b228320422472">volcano.sh/oversubscirption=true</strong> label).</li><li id="cce_10_0384__li85291007543">192.168.0.3 is a non-oversubscribed node (without the <strong id="cce_10_0384__b1985814634812">volcano.sh/oversubscirption=true</strong> label).</li></ul>
+<pre class="screen" id="cce_10_0384__screen59401542193813"># kubectl describe node 192.168.0.173
 Name:               192.168.0.173
 Roles:              &lt;none&gt;
 Labels:             beta.kubernetes.io/arch=amd64
                     ...
                     volcano.sh/oversubscription=true</pre>
-        </p>
-      </li>
-      <li id="cce_10_0384__li1690112512532"><span>Submit offline job creation requests. If resources are sufficient, all
-          offline jobs will be scheduled to the oversubscribed node.</span>
-        <p>
-        <div class="p" id="cce_10_0384__p999651055412">The offline job template is as follows:
-          <pre class="screen" id="cce_10_0384__screen753415113407">apiVersion: apps/v1
+</p></li><li id="cce_10_0384__li1690112512532"><span>Submit offline job creation requests. If resources are sufficient, all offline jobs will be scheduled to the oversubscribed node.</span><p><div class="p" id="cce_10_0384__p999651055412">The offline job template is as follows:<pre class="screen" id="cce_10_0384__screen753415113407">apiVersion: apps/v1
 kind: Deployment
 metadata:
   name: offline
@@ -595,20 +291,13 @@ spec:
               memory: 512Mi
       imagePullSecrets:
         - name: default-secret</pre>
-        </div>
-        <div class="p" id="cce_10_0384__p9291118135718">Offline jobs are scheduled to the oversubscribed node.
-          <pre class="screen" id="cce_10_0384__screen665518432405"># kubectl get pod -o wide
+</div>
+<div class="p" id="cce_10_0384__p9291118135718">Offline jobs are scheduled to the oversubscribed node.<pre class="screen" id="cce_10_0384__screen665518432405"># kubectl get pod -o wide
 NAME                      READY   STATUS   RESTARTS  AGE     IP             NODE 
 offline-69cdd49bf4-pmjp8   1/1    Running   0         5s    192.168.10.178   192.168.0.173
 offline-69cdd49bf4-z8kxh   1/1    Running   0         5s    192.168.10.131   192.168.0.173</pre>
-        </div>
-        </p>
-      </li>
-      <li id="cce_10_0384__li17902650535"><span>Submit online job creation requests. If resources are sufficient, the
-          online jobs will be scheduled to the non-oversubscribed node.</span>
-        <p>
-        <div class="p" id="cce_10_0384__p19861847115710">The online job template is as follows:
-          <pre class="screen" id="cce_10_0384__screen16642755144114">apiVersion: apps/v1
+</div>
+</p></li><li id="cce_10_0384__li17902650535"><span>Submit online job creation requests. If resources are sufficient, the online jobs will be scheduled to the non-oversubscribed node.</span><p><div class="p" id="cce_10_0384__p19861847115710">The online job template is as follows:<pre class="screen" id="cce_10_0384__screen16642755144114">apiVersion: apps/v1
 kind: Deployment
 metadata:
   name: online
@@ -637,20 +326,13 @@ spec:
               memory: 512Mi
       imagePullSecrets:
         - name: default-secret</pre>
-        </div>
-        <div class="p" id="cce_10_0384__p10664161345820">Online jobs are scheduled to the non-oversubscribed node.
-          <pre class="screen" id="cce_10_0384__screen0561994514"># kubectl get pod -o wide
+</div>
+<div class="p" id="cce_10_0384__p10664161345820">Online jobs are scheduled to the non-oversubscribed node.<pre class="screen" id="cce_10_0384__screen0561994514"># kubectl get pod -o wide
 NAME                   READY   STATUS   RESTARTS  AGE     IP             NODE 
 online-ffb46f656-4mwr6  1/1    Running   0         5s    192.168.10.146   192.168.0.3
 online-ffb46f656-dqdv2   1/1    Running   0         5s    192.168.10.67   192.168.0.3</pre>
-        </div>
-        </p>
-      </li>
-      <li id="cce_10_0384__li5902153538"><span>Improve the resource usage of the oversubscribed node and observe whether
-          offline job eviction is triggered.</span>
-        <p>
-        <div class="p" id="cce_10_0384__p107753012711">Deploy online jobs to the oversubscribed node (192.168.0.173).
-          <pre class="screen" id="cce_10_0384__screen3995115914266">apiVersion: apps/v1
+</div>
+</p></li><li id="cce_10_0384__li5902153538"><span>Improve the resource usage of the oversubscribed node and observe whether offline job eviction is triggered.</span><p><div class="p" id="cce_10_0384__p107753012711">Deploy online jobs to the oversubscribed node (192.168.0.173).<pre class="screen" id="cce_10_0384__screen3995115914266">apiVersion: apps/v1
 kind: Deployment
 metadata:
   name: online
@@ -688,19 +370,15 @@ spec:
               memory: 512Mi
       imagePullSecrets:
         - name: default-secret</pre>
-        </div>
-        <div class="p" id="cce_10_0384__p499525952619">Submit the online or offline jobs to the oversubscribed node
-          (192.168.0.173) at the same time.
-          <pre class="screen" id="cce_10_0384__screen1299516595261"># kubectl get pod -o wide
+</div>
+<div class="p" id="cce_10_0384__p499525952619">Submit the online or offline jobs to the oversubscribed node (192.168.0.173) at the same time.<pre class="screen" id="cce_10_0384__screen1299516595261"># kubectl get pod -o wide
 NAME                     READY   STATUS   RESTARTS  AGE     IP             NODE 
 offline-69cdd49bf4-pmjp8  1/1     Running    0      13m   192.168.10.178   192.168.0.173 
 offline-69cdd49bf4-z8kxh  1/1     Running     0      13m   192.168.10.131   192.168.0.173 
 online-6f44bb68bd-b8z9p  1/1     Running     0     3m4s   192.168.10.18   192.168.0.173 
 online-6f44bb68bd-g6xk8  1/1     Running     0     3m12s   192.168.10.69   192.168.0.173</pre>
-        </div>
-        <div class="p" id="cce_10_0384__p17995259182613">Observe the oversubscribed node (192.168.0.173). You can find
-          that oversubscribed resources exist and the CPU allocation rate exceeds 100%.
-          <pre class="screen" id="cce_10_0384__screen399518598261"># kubectl describe node 192.168.0.173
+</div>
+<div class="p" id="cce_10_0384__p17995259182613">Observe the oversubscribed node (192.168.0.173). You can find that oversubscribed resources exist and the CPU allocation rate exceeds 100%.<pre class="screen" id="cce_10_0384__screen399518598261"># kubectl describe node 192.168.0.173
 Name:              192.168.0.173
 Roles:              &lt;none&gt;
 Labels:              …
@@ -716,10 +394,8 @@ Allocated resources:
   cpu                    4750m (121%)  7350m (187%)
   memory                 3760Mi (61%)  4660Mi (76%)
                          …</pre>
-        </div>
-        <div class="p" id="cce_10_0384__p99950591263">Increase the CPU usage of online jobs on the node. Offline job
-          eviction is triggered.
-          <pre class="screen" id="cce_10_0384__screen1299518590268"># kubectl get pod -o wide
+</div>
+<div class="p" id="cce_10_0384__p99950591263">Increase the CPU usage of online jobs on the node. Offline job eviction is triggered.<pre class="screen" id="cce_10_0384__screen1299518590268"># kubectl get pod -o wide
 NAME                     READY   STATUS   RESTARTS  AGE     IP             NODE 
 offline-69cdd49bf4-bwdm7  1/1    Running   0       11m   192.168.10.208  192.168.0.3 
 offline-69cdd49bf4-pmjp8   0/1    Evicted    0       26m   &lt;none&gt;         192.168.0.173
@@ -727,34 +403,160 @@ offline-69cdd49bf4-qpdss   1/1     Running   0       11m   192.168.10.174  192.1
 offline-69cdd49bf4-z8kxh   0/1     Evicted    0       26m   &lt;none&gt;        192.168.0.173
 online-6f44bb68bd-b8z9p   1/1     Running   0       24m   192.168.10.18  192.168.0.173
 online-6f44bb68bd-g6xk8   1/1     Running   0       24m   192.168.10.69  192.168.0.173</pre>
-        </div>
-        </p>
-      </li>
-    </ol>
-  </div>
-  <div class="section" id="cce_10_0384__section441525519717">
-    <h4 class="sectiontitle">Handling Suggestions</h4>
-    <ul id="cce_10_0384__ul674900188">
-      <li id="cce_10_0384__li14749203818">After kubelet of the oversubscribed node is restarted, the resource view of
-        the Volcano scheduler is not synchronized with that of kubelet. As a result, OutOfCPU occurs in some newly
-        scheduled jobs, which is normal. After a period of time, the Volcano scheduler can properly schedule online and
-        offline jobs.</li>
-      <li id="cce_10_0384__li187491801281">After online and offline jobs are submitted, you are not advised to
-        dynamically change the job type (adding or deleting annotation volcano.sh/qos-level: "-1") because the current
-        kernel does not support the change of an offline job to an online job.</li>
-      <li id="cce_10_0384__li87492020815">CCE collects the resource usage (CPU/memory) of all pods running on a node
-        based on the status information in the cgroups system. The resource usage may be different from the monitored
-        resource usage, for example, the resource statistics displayed by running the <strong
-          id="cce_10_0384__b1847916172319">top</strong> command.</li>
-      <li id="cce_10_0384__li9731645142617">You can add oversubscribed resources (such as CPU and memory) at any time.<p
-          id="cce_10_0384__p1229754519266"><a name="cce_10_0384__li9731645142617"></a><a name="li9731645142617"></a>You
-          can reduce the oversubscribed resource types only when the resource allocation rate does not exceed 100%.</p>
-      </li>
-    </ul>
-  </div>
+</div>
+</p></li></ol>
+</div>
+<ol id="cce_10_0384__ol78418204812"><li id="cce_10_0384__li1386164315813"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0384__li7725113016447"><span>In the navigation pane on the left, choose <strong id="cce_10_0384__b176661427162419">Nodes</strong>. Click the <strong id="cce_10_0384__b18666152714244">Node Pools</strong> tab. When creating or updating a node pool, enable hybrid deployment of online and offline services in <strong id="cce_10_0384__b166671227182414">Advanced Settings</strong>.</span><p><p id="cce_10_0384__p77463816448"></p>
+</p></li><li id="cce_10_0384__li128712438810"><span>In the navigation pane on the left, choose <strong id="cce_10_0384__b8148141713261">Add-ons</strong>. Click <strong id="cce_10_0384__b81481917152616">Install</strong> under volcano. In the <strong id="cce_10_0384__b11498177262">Advanced Settings</strong> area, set <strong id="cce_10_0384__b18149217182610">colocation_enable</strong> to <strong id="cce_10_0384__b514914178266">true</strong> to enable hybrid deployment of online and offline services. For details about the installation, see <a href="cce_10_0193.html">volcano</a>.</span><p><p id="cce_10_0384__p188717431785">If the volcano add-on has been installed, click <strong id="cce_10_0384__b76275142514">Edit</strong> to view or modify the parameter <strong id="cce_10_0384__b11623532517">colocation_enable</strong>.</p>
+<p id="cce_10_0384__p118715430818"></p>
+</p></li><li id="cce_10_0384__li15509139199"><span>Enable CPU Burst.</span><p><div class="p" id="cce_10_0384__p18509173191915">After confirming that the volcano add-on is working, run the following command to edit the parameter <strong id="cce_10_0384__b1330016919254">configmap</strong> of <strong id="cce_10_0384__b7301896255">volcano-agent-configuration</strong> in the namespace <strong id="cce_10_0384__b33013982511">kube-system</strong>. If <strong id="cce_10_0384__b153011698258">enable</strong> is set to <strong id="cce_10_0384__b1730110952511">true</strong>, CPU Burst is enabled. If <strong id="cce_10_0384__b5301189202510">enable</strong> is set to <strong id="cce_10_0384__b5301995253">false</strong>, CPU Burst is disabled.<pre class="screen" id="cce_10_0384__screen15509133131910">kubectl edit configmap -nkube-system volcano-agent-configuration</pre>
+</div>
+<p id="cce_10_0384__p55101316194">Example:</p>
+<pre class="screen" id="cce_10_0384__screen35103341910">cpuBurstConfig: 
+  enable: true</pre>
+</p></li><li id="cce_10_0384__li9498145417817"><span>Deploy a workload in a node pool where hybrid deployment has been enabled. Take Nginx as an example. Set <strong id="cce_10_0384__b623122718296">cpu</strong> under <strong id="cce_10_0384__b158435416285">requests</strong> to <strong id="cce_10_0384__b1585454112813">2</strong> and <strong id="cce_10_0384__b164141406293">cpu</strong> under <strong id="cce_10_0384__b11585105414289">limits</strong> to <strong id="cce_10_0384__b558535412819">4</strong>, and create a Service that can be accessed in the cluster for the workload.</span><p><pre class="screen" id="cce_10_0384__screen1321285812108">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx
+  namespace: default
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+      <strong id="cce_10_0384__b20268112716498">annotations: </strong>
+        <strong id="cce_10_0384__b291818186497"><i><span class="varname" id="cce_10_0384__varname182659270499">volcano.sh/enable-quota-burst=true</span></i></strong>
+        <strong id="cce_10_0384__b439213237501"><i><span class="varname" id="cce_10_0384__varname689516209502">volcano.sh/quota-burst-time=200000</span></i></strong>
+    spec:
+      containers:
+      - name: container-1
+        image: nginx:latest
+        resources:
+          limits:
+            cpu: "4"
+          requests:
+            cpu: "2"
+      imagePullSecrets:
+        - name: default-secret
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: nginx
+  namespace: default
+  labels:
+    app: nginx
+spec:
+  selector:
+    app: nginx
+  ports:
+    - name: cce-service-0
+      targetPort: 80
+      nodePort: 0
+      port: 80
+      protocol: TCP
+  type: ClusterIP</pre>
+<div class="p" id="cce_10_0384__p89982705116">
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table17203133317509" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0384__row6203133115014"><th align="left" class="cellrowborder" valign="top" width="32.34323432343235%" id="mcps1.3.8.5.2.2.1.1.4.1.1"><p id="cce_10_0384__p2203233205012">Annotation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="14.271427142714272%" id="mcps1.3.8.5.2.2.1.1.4.1.2"><p id="cce_10_0384__p220353316501">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="53.385338533853385%" id="mcps1.3.8.5.2.2.1.1.4.1.3"><p id="cce_10_0384__p14203933125019">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0384__row8203633145013"><td class="cellrowborder" valign="top" width="32.34323432343235%" headers="mcps1.3.8.5.2.2.1.1.4.1.1 "><p id="cce_10_0384__p1072915219504">volcano.sh/enable-quota-burst=true</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.271427142714272%" headers="mcps1.3.8.5.2.2.1.1.4.1.2 "><p id="cce_10_0384__p720343345015">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.385338533853385%" headers="mcps1.3.8.5.2.2.1.1.4.1.3 "><p id="cce_10_0384__p7203133385013">CPU Burst is enabled for the workload.</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row42031733145012"><td class="cellrowborder" valign="top" width="32.34323432343235%" headers="mcps1.3.8.5.2.2.1.1.4.1.1 "><p id="cce_10_0384__p9209193785111">volcano.sh/quota-burst-time=200000</p>
+</td>
+<td class="cellrowborder" valign="top" width="14.271427142714272%" headers="mcps1.3.8.5.2.2.1.1.4.1.2 "><p id="cce_10_0384__p172031133135015">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="53.385338533853385%" headers="mcps1.3.8.5.2.2.1.1.4.1.3 "><p id="cce_10_0384__p3788114535210">To ensure CPU scheduling stability and reduce contention when multiple containers encounter CPU bursts at the same time, the default <strong id="cce_10_0384__b620731793013">CPU Burst</strong> value is the same as the <strong id="cce_10_0384__b12207717193014">CPU Quota</strong> value. That is, a container can use a maximum of twice the <strong id="cce_10_0384__b920751714301">CPU Limit</strong> value. By default, <strong id="cce_10_0384__b8208201753013">CPU Burst</strong> is set for all service containers in a pod.</p>
+<p id="cce_10_0384__p9203193395013">In this example, the <strong id="cce_10_0384__b763747132513">CPU Limit</strong> of the container is <strong id="cce_10_0384__b1963194722519">4</strong>, that is, the default value is <strong id="cce_10_0384__b136454772512">400,000</strong> (1 core = 100,000), indicating that a maximum of four additional cores can be used after the <strong id="cce_10_0384__b26464732513">CPU Limit</strong> value is reached.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0384__li105210242134"><span>Verify CPU Burst.</span><p><p id="cce_10_0384__p1786972813385">You can use the wrk tool to increase load of the workload and observe the service latency, traffic limiting, and CPU limit exceeding when CPU Burst is enabled and disabled, respectively.</p>
+<ol type="a" id="cce_10_0384__ol18579184113917"><li id="cce_10_0384__li1265775175615">Run the following command to increase load of the pod. <em id="cce_10_0384__i960418586255">$service_ip</em> indicates the service IP address associated with the pod.<pre class="screen" id="cce_10_0384__screen114501459195620"># You need to download and install the wrk tool on the node.
+# The Gzip compression module is enabled in the Apache configuration to simulate the computing logic for the server to process requests.
+# Run the following command to increase the load. Note that you need to change the IP address of the target application.
+wrk -H "Accept-Encoding: deflate, gzip" -t 4 -c 28 -d 120  --latency --timeout 2s http://<i><span class="varname" id="cce_10_0384__varname1489811555714">$service_ip</span></i></pre>
+</li><li id="cce_10_0384__li85809483917">Obtain the pod ID.<pre class="screen" id="cce_10_0384__screen986882817381">kubectl get pods -n <i><span class="varname" id="cce_10_0384__varname5511144323916">&lt;namespace&gt;</span></i> <i><span class="varname" id="cce_10_0384__varname63461740143914">&lt;pod-name&gt;</span></i> -o jsonpath='{.metadata.uid}'</pre>
+</li><li id="cce_10_0384__li856917953912">You can run the following command on the node to view the traffic limiting status and CPU limit exceeding status. In the command, <em id="cce_10_0384__i520141142616">$PodID</em> indicates the pod ID.<pre class="screen" id="cce_10_0384__screen1166121201813">$cat /sys/fs/cgroup/cpuacct/kubepods/<i><span class="varname" id="cce_10_0384__varname201321448123913">$PodID</span></i>/cpu.stat
+nr_periods 0  # Number of scheduling periods
+nr_throttled 0  # Traffic limiting times
+throttled_time 0  # Traffic limiting duration (ns)
+nr_bursts 0 # CPU Limit exceeding times
+burst_time 0 # Total Limit exceeding duration</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0384__table6428344155713" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Result summary in this example</caption><thead align="left"><tr id="cce_10_0384__row1542910445576"><th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.8.6.2.2.3.3.2.7.1.1"><p id="cce_10_0384__p2429344105710">CPU Burst</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.8.6.2.2.3.3.2.7.1.2"><p id="cce_10_0384__p3429944165713">P99 Latency</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.8.6.2.2.3.3.2.7.1.3"><p id="cce_10_0384__p6798620145914">nr_throttled</p>
+<p id="cce_10_0384__p184293446575">Traffic Limiting Times</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.8.6.2.2.3.3.2.7.1.4"><p id="cce_10_0384__p19187122925918">throttled_time</p>
+<p id="cce_10_0384__p942944425714">Traffic Limiting Duration</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.8.6.2.2.3.3.2.7.1.5"><p id="cce_10_0384__p1376637165919">nr_bursts</p>
+<p id="cce_10_0384__p54296443573">Limit Exceeding Times</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="16.666666666666664%" id="mcps1.3.8.6.2.2.3.3.2.7.1.6"><p id="cce_10_0384__p11177194914597">bursts_time</p>
+<p id="cce_10_0384__p0764174035912">Total Limit Exceeding Duration</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0384__row15429044195716"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.1 "><p id="cce_10_0384__p19429944155712">CPU Burst not enabled</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.2 "><p id="cce_10_0384__p1242934495713">2.96 ms</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.3 "><p id="cce_10_0384__p9429644195716">986</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.4 "><p id="cce_10_0384__p184298445572">14.3s</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.5 "><p id="cce_10_0384__p114291644135717">0</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.6 "><p id="cce_10_0384__p107646409591">0</p>
+</td>
+</tr>
+<tr id="cce_10_0384__row442924417579"><td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.1 "><p id="cce_10_0384__p2429344165718">CPU Burst enabled</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.2 "><p id="cce_10_0384__p1942964416571">456 &micro;s</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.3 "><p id="cce_10_0384__p17429164411574">0</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.4 "><p id="cce_10_0384__p1942911441574">0</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.5 "><p id="cce_10_0384__p4429134410574">469</p>
+</td>
+<td class="cellrowborder" valign="top" width="16.666666666666664%" headers="mcps1.3.8.6.2.2.3.3.2.7.1.6 "><p id="cce_10_0384__p1276474055914">3.7s</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li></ol>
+</p></li></ol>
+<div class="section" id="cce_10_0384__section441525519717"><h4 class="sectiontitle">Handling Suggestions</h4><ul id="cce_10_0384__ul674900188"><li id="cce_10_0384__li14749203818">After kubelet of the oversubscribed node is restarted, the resource view of the Volcano scheduler is not synchronized with that of kubelet. As a result, OutOfCPU occurs in some newly scheduled jobs, which is normal. After a period of time, the Volcano scheduler can properly schedule online and offline jobs.</li><li id="cce_10_0384__li187491801281">After online and offline jobs are submitted, you are not advised to dynamically change the job type (adding or deleting annotation volcano.sh/qos-level: "-1") because the current kernel does not support the change of an offline job to an online job.</li><li id="cce_10_0384__li87492020815">CCE collects the resource usage (CPU/memory) of all pods running on a node based on the status information in the cgroups system. The resource usage may be different from the monitored resource usage, for example, the resource statistics displayed by running the <strong id="cce_10_0384__b1847916172319">top</strong> command.</li><li id="cce_10_0384__li9731645142617">You can add oversubscribed resources (such as CPU and memory) at any time.<p id="cce_10_0384__p1229754519266"><a name="cce_10_0384__li9731645142617"></a><a name="li9731645142617"></a>You can reduce the oversubscribed resource types only when the resource allocation rate does not exceed 100%.</p>
+</li></ul>
+</div>
 </div>
 <div>
-  <div class="familylinks">
-    <div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0423.html">Volcano Scheduling</a></div>
-  </div>
-</div>
\ No newline at end of file
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0423.html">Volcano Scheduling</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0385.html b/docs/cce/umn/cce_10_0385.html
index 5754de66..b4520445 100644
--- a/docs/cce/umn/cce_10_0385.html
+++ b/docs/cce/umn/cce_10_0385.html
@@ -22,7 +22,7 @@
 </td>
 <td class="cellrowborder" valign="top" width="35.44%" headers="mcps1.3.3.2.6.1.3 "><p id="cce_10_0385__p17331169135014">Select a proper load balancer type.</p>
 <p id="cce_10_0385__p143311298508">The value can be:</p>
-<ul id="cce_10_0385__ul3415201212612"><li id="cce_10_0385__cce_10_0014_li735384716395"><strong id="cce_10_0385__cce_10_0014_b3322231123015">union</strong>: shared load balancer</li><li id="cce_10_0385__cce_10_0014_li1535310477392"><strong id="cce_10_0385__cce_10_0014_b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
+<ul id="cce_10_0385__ul3415201212612"><li id="cce_10_0385__en-us_topic_0000001243981073_li735384716395"><strong id="cce_10_0385__en-us_topic_0000001243981073_b3322231123015">union</strong>: shared load balancer</li><li id="cce_10_0385__en-us_topic_0000001243981073_li1535310477392"><strong id="cce_10_0385__en-us_topic_0000001243981073_b1118173493014">performance</strong>: dedicated load balancer, which can be used only in clusters of v1.17 and later.</li></ul>
 </td>
 <td class="cellrowborder" valign="top" width="19.53%" headers="mcps1.3.3.2.6.1.4 "><p id="cce_10_0385__p598114218226">performance</p>
 </td>
@@ -149,127 +149,127 @@
 </table>
 </div>
 
-<div class="tablenoborder"><a name="cce_10_0385__table148341447193017"></a><a name="table148341447193017"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table148341447193017" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data structure of the elb.autocreate field</caption><thead align="left"><tr id="cce_10_0385__cce_10_0014_row183958279468"><th align="left" class="cellrowborder" valign="top" width="26.96%" id="mcps1.3.4.2.5.1.1"><p id="cce_10_0385__cce_10_0014_p439572712466">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0385__table148341447193017"></a><a name="table148341447193017"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table148341447193017" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Data structure of the elb.autocreate field</caption><thead align="left"><tr id="cce_10_0385__en-us_topic_0000001243981073_row183958279468"><th align="left" class="cellrowborder" valign="top" width="26.96%" id="mcps1.3.4.2.5.1.1"><p id="cce_10_0385__en-us_topic_0000001243981073_p439572712466">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="12.08%" id="mcps1.3.4.2.5.1.2"><p id="cce_10_0385__cce_10_0014_p5395162716461">Mandatory</p>
+<th align="left" class="cellrowborder" valign="top" width="12.08%" id="mcps1.3.4.2.5.1.2"><p id="cce_10_0385__en-us_topic_0000001243981073_p5395162716461">Mandatory</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="13.25%" id="mcps1.3.4.2.5.1.3"><p id="cce_10_0385__cce_10_0014_p1839522764612">Type</p>
+<th align="left" class="cellrowborder" valign="top" width="13.25%" id="mcps1.3.4.2.5.1.3"><p id="cce_10_0385__en-us_topic_0000001243981073_p1839522764612">Type</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="47.71%" id="mcps1.3.4.2.5.1.4"><p id="cce_10_0385__cce_10_0014_p13395182713462">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="47.71%" id="mcps1.3.4.2.5.1.4"><p id="cce_10_0385__en-us_topic_0000001243981073_p13395182713462">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0385__cce_10_0014_row17395132744615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p239612715462">name</p>
+<tbody><tr id="cce_10_0385__en-us_topic_0000001243981073_row17395132744615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p239612715462">name</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p939602714615">No</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p939602714615">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p039672712468">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p039672712468">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p1939611278467">Name of the load balancer that is automatically created.</p>
-<p id="cce_10_0385__cce_10_0014_p1339672794620">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
-<p id="cce_10_0385__cce_10_0014_p1039616277465">Default: <strong id="cce_10_0385__cce_10_0014_b4743102120314">cce-lb+service.UID</strong></p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1939611278467">Name of the load balancer that is automatically created.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p1339672794620">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p1039616277465">Default: <strong id="cce_10_0385__en-us_topic_0000001243981073_b4743102120314">cce-lb+service.UID</strong></p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row153968276468"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1939617273464">type</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row153968276468"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1939617273464">type</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1739622713461">No</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1739622713461">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p16396102784619">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p16396102784619">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p14396172764615">Network type of the load balancer.</p>
-<ul id="cce_10_0385__cce_10_0014_ul23961827154617"><li id="cce_10_0385__cce_10_0014_li8396127154616"><strong id="cce_10_0385__cce_10_0014_b1121645643414">public</strong>: public network load balancer</li><li id="cce_10_0385__cce_10_0014_li73971827184618"><strong id="cce_10_0385__cce_10_0014_b383111529316">inner</strong>: private network load balancer</li></ul>
-<p id="cce_10_0385__cce_10_0014_p539752754611">Default: <strong id="cce_10_0385__cce_10_0014_b64071431273">inner</strong></p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p14396172764615">Network type of the load balancer.</p>
+<ul id="cce_10_0385__en-us_topic_0000001243981073_ul23961827154617"><li id="cce_10_0385__en-us_topic_0000001243981073_li8396127154616"><strong id="cce_10_0385__en-us_topic_0000001243981073_b1121645643414">public</strong>: public network load balancer</li><li id="cce_10_0385__en-us_topic_0000001243981073_li73971827184618"><strong id="cce_10_0385__en-us_topic_0000001243981073_b383111529316">inner</strong>: private network load balancer</li></ul>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p539752754611">Default: <strong id="cce_10_0385__en-us_topic_0000001243981073_b64071431273">inner</strong></p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row2397927194613"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p12397122718464">bandwidth_name</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row2397927194613"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p12397122718464">bandwidth_name</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1129745332217">Yes for public network load balancers</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1129745332217">Yes for public network load balancers</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p16397182734610">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p16397182734610">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p113972278461">Bandwidth name. The default value is <strong id="cce_10_0385__cce_10_0014_b10901181916366">cce-bandwidth-******</strong>.</p>
-<p id="cce_10_0385__cce_10_0014_p1439717273462">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p113972278461">Bandwidth name. The default value is <strong id="cce_10_0385__en-us_topic_0000001243981073_b10901181916366">cce-bandwidth-******</strong>.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p1439717273462">Value range: 1 to 64 characters, including lowercase letters, digits, and underscores (_). The value must start with a lowercase letter and end with a lowercase letter or digit.</p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row1439722794619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p7397182720466">bandwidth_chargemode</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row1439722794619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p7397182720466">bandwidth_chargemode</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p71019556225">No</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p71019556225">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p193974278460">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p193974278460">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p83981227124616">Bandwidth mode.</p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p83981227124616">Bandwidth mode.</p>
 
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row19398122716461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p739892794619">bandwidth_size</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row19398122716461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p739892794619">bandwidth_size</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p639862719463">Yes for public network load balancers</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p639862719463">Yes for public network load balancers</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p439882734619">Integer</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p439882734619">Integer</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p14398927134615">Bandwidth size. The default value is 1 to 2000 Mbit/s. Set this parameter based on the bandwidth range allowed in your region.</p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p14398927134615">Bandwidth size. The default value is 1 to 2000 Mbit/s. Set this parameter based on the bandwidth range allowed in your region.</p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row193991627164615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p15399627174614">bandwidth_sharetype</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row193991627164615"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p15399627174614">bandwidth_sharetype</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1239962754620">Yes for public network load balancers</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1239962754620">Yes for public network load balancers</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p4399327124618">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p4399327124618">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p6399227154620">Bandwidth sharing mode.</p>
-<ul id="cce_10_0385__cce_10_0014_ul1539932712464"><li id="cce_10_0385__cce_10_0014_li163992272465"><strong id="cce_10_0385__cce_10_0014_b1753918428519">PER</strong>: dedicated bandwidth</li></ul>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p6399227154620">Bandwidth sharing mode.</p>
+<ul id="cce_10_0385__en-us_topic_0000001243981073_ul1539932712464"><li id="cce_10_0385__en-us_topic_0000001243981073_li163992272465"><strong id="cce_10_0385__en-us_topic_0000001243981073_b1753918428519">PER</strong>: dedicated bandwidth</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row139952712463"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1139952764611">eip_type</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row139952712463"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1139952764611">eip_type</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p266247192314">Yes for public network load balancers</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p266247192314">Yes for public network load balancers</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p84001027124612">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p84001027124612">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p440013273464">EIP type.</p>
-<ul id="cce_10_0385__cce_10_0014_ul18765175214406"><li id="cce_10_0385__cce_10_0014_li27656521408"><strong id="cce_10_0385__cce_10_0014_b572720271246">5_bgp</strong>: dynamic BGP</li><li id="cce_10_0385__cce_10_0014_li676505212409"><strong id="cce_10_0385__cce_10_0014_b94671311140">5_sbgp</strong>: static BGP</li></ul>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p440013273464">EIP type.</p>
+<ul id="cce_10_0385__en-us_topic_0000001243981073_ul18765175214406"><li id="cce_10_0385__en-us_topic_0000001243981073_li27656521408"><strong id="cce_10_0385__en-us_topic_0000001243981073_b572720271246">5_bgp</strong>: dynamic BGP</li><li id="cce_10_0385__en-us_topic_0000001243981073_li676505212409"><strong id="cce_10_0385__en-us_topic_0000001243981073_b94671311140">5_sbgp</strong>: static BGP</li></ul>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row20400102713466"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p140015271469">available_zone</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row20400102713466"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p140015271469">available_zone</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p15400727164618">Yes</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p15400727164618">Yes</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p04001927144618">Array of strings</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p04001927144618">Array of strings</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p64001827194610">AZ where the load balancer is located.</p>
-<p id="cce_10_0385__cce_10_0014_p2040082784615">This parameter is available only for dedicated load balancers.</p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p64001827194610">AZ where the load balancer is located.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p2040082784615">This parameter is available only for dedicated load balancers.</p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row12400122734616"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p040102718464">l4_flavor_name</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row12400122734616"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p040102718464">l4_flavor_name</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p74011327184614">Yes</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p74011327184614">Yes</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p4401227124615">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p4401227124615">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p3911190135911">Flavor name of the layer-4 load balancer.</p>
-<p id="cce_10_0385__cce_10_0014_p16615412105">This parameter is available only for dedicated load balancers.</p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p3911190135911">Flavor name of the layer-4 load balancer.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p16615412105">This parameter is available only for dedicated load balancers.</p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row64018274461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p94015275467">l7_flavor_name</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row64018274461"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p94015275467">l7_flavor_name</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p1840182714466">No</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1840182714466">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p5401132754612">String</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p5401132754612">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p540115278464">Flavor name of the layer-7 load balancer.</p>
-<p id="cce_10_0385__cce_10_0014_p439195851013">This parameter is available only for dedicated load balancers.</p>
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p540115278464">Flavor name of the layer-7 load balancer.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p439195851013">This parameter is available only for dedicated load balancers.</p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row17401027104619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p2040112275467">elb_virsubnet_ids</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row17401027104619"><td class="cellrowborder" valign="top" width="26.96%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p2040112275467">elb_virsubnet_ids</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p040262754619">No</p>
+<td class="cellrowborder" valign="top" width="12.08%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p040262754619">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p1540222710464">Array of strings</p>
+<td class="cellrowborder" valign="top" width="13.25%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1540222710464">Array of strings</p>
 </td>
-<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p1840292719463">Subnet where the backend server of the load balancer is located. If this parameter is left blank, the default cluster subnet is used. Load balancers occupy different number of subnet IP addresses based on their specifications. Therefore, you are not advised to use the subnet CIDR blocks of other resources (such as clusters and nodes) as the load balancer CIDR block.</p>
-<p id="cce_10_0385__cce_10_0014_p3476173161118">This parameter is available only for dedicated load balancers.</p>
-<p id="cce_10_0385__cce_10_0014_p6628139141015">Example:</p>
-<pre class="screen" id="cce_10_0385__cce_10_0014_screen18587145018263">"elb_virsubnet_ids": [
+<td class="cellrowborder" valign="top" width="47.71%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1840292719463">Subnet where the backend server of the load balancer is located. If this parameter is left blank, the default cluster subnet is used. Load balancers occupy different number of subnet IP addresses based on their specifications. Therefore, you are not advised to use the subnet CIDR blocks of other resources (such as clusters and nodes) as the load balancer CIDR block.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p3476173161118">This parameter is available only for dedicated load balancers.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p6628139141015">Example:</p>
+<pre class="screen" id="cce_10_0385__en-us_topic_0000001243981073_screen18587145018263">"elb_virsubnet_ids": [
    "14567f27-8ae4-42b8-ae47-9f847a4690dd"
  ]</pre>
 </td>
@@ -278,90 +278,90 @@
 </table>
 </div>
 
-<div class="tablenoborder"><a name="cce_10_0385__table19192143412319"></a><a name="table19192143412319"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table19192143412319" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Data structure description of the <strong id="cce_10_0385__cce_10_0014_b209486325462">elb.health-check-option</strong> field</caption><thead align="left"><tr id="cce_10_0385__cce_10_0014_row336018475396"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.5.2.5.1.1"><p id="cce_10_0385__cce_10_0014_p15360184723911">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0385__table19192143412319"></a><a name="table19192143412319"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table19192143412319" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Data structure description of the <strong id="cce_10_0385__en-us_topic_0000001243981073_b209486325462">elb.health-check-option</strong> field</caption><thead align="left"><tr id="cce_10_0385__en-us_topic_0000001243981073_row336018475396"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.5.2.5.1.1"><p id="cce_10_0385__en-us_topic_0000001243981073_p15360184723911">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.5.2.5.1.2"><p id="cce_10_0385__cce_10_0014_p139932420145">Mandatory</p>
+<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.5.2.5.1.2"><p id="cce_10_0385__en-us_topic_0000001243981073_p139932420145">Mandatory</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="13.5%" id="mcps1.3.5.2.5.1.3"><p id="cce_10_0385__cce_10_0014_p1036074715392">Type</p>
+<th align="left" class="cellrowborder" valign="top" width="13.5%" id="mcps1.3.5.2.5.1.3"><p id="cce_10_0385__en-us_topic_0000001243981073_p1036074715392">Type</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="49.230000000000004%" id="mcps1.3.5.2.5.1.4"><p id="cce_10_0385__cce_10_0014_p036084733912">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="49.230000000000004%" id="mcps1.3.5.2.5.1.4"><p id="cce_10_0385__en-us_topic_0000001243981073_p036084733912">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0385__cce_10_0014_row1136012478397"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1736074717393">delay</p>
+<tbody><tr id="cce_10_0385__en-us_topic_0000001243981073_row1136012478397"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1736074717393">delay</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p2099132416147">No</p>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p2099132416147">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p1360144773911">String</p>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1360144773911">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p7361154710397">Initial waiting time (in seconds) for starting the health check.</p>
-<p id="cce_10_0385__cce_10_0014_p17361184715394">Value range: 1 to 50. Default value: <strong id="cce_10_0385__cce_10_0014_b0772113914818">5</strong></p>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p7361154710397">Initial waiting time (in seconds) for starting the health check.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p17361184715394">Value range: 1 to 50. Default value: <strong id="cce_10_0385__en-us_topic_0000001243981073_b0772113914818">5</strong></p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row163618473395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p636114763916">timeout</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row163618473395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p636114763916">timeout</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p69919246147">No</p>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p69919246147">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p103611347123914">String</p>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p103611347123914">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p113611447183912">Health check timeout, in seconds.</p>
-<p id="cce_10_0385__cce_10_0014_p143612047133913">Value range: 1 to 50. Default value: <strong id="cce_10_0385__cce_10_0014_b166661875494">10</strong></p>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p113611447183912">Health check timeout, in seconds.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p143612047133913">Value range: 1 to 50. Default value: <strong id="cce_10_0385__en-us_topic_0000001243981073_b166661875494">10</strong></p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row18361154723913"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p136144716396">max_retries</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row18361154723913"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p136144716396">max_retries</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p166343581149">No</p>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p166343581149">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p17361114717395">String</p>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p17361114717395">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p14361114712397">Maximum number of health check retries.</p>
-<p id="cce_10_0385__cce_10_0014_p6361114733910">Value range: 1 to 10. Default value: <strong id="cce_10_0385__cce_10_0014_b940918204498">3</strong></p>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p14361114712397">Maximum number of health check retries.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p6361114733910">Value range: 1 to 10. Default value: <strong id="cce_10_0385__en-us_topic_0000001243981073_b940918204498">3</strong></p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row9361104720394"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1636111476395">protocol</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row9361104720394"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1636111476395">protocol</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p763495881417">No</p>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p763495881417">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p14361144716395">String</p>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p14361144716395">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p15361164723916">Health check protocol.</p>
-<p id="cce_10_0385__cce_10_0014_p2361204719390">Default value: protocol of the associated Service</p>
-<p id="cce_10_0385__cce_10_0014_p143617474391">Value options: TCP, UDP, or HTTP</p>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p15361164723916">Health check protocol.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p2361204719390">Default value: protocol of the associated Service</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p143617474391">Value options: TCP, UDP, or HTTP</p>
 </td>
 </tr>
-<tr id="cce_10_0385__cce_10_0014_row036113475395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p93612047133915">path</p>
+<tr id="cce_10_0385__en-us_topic_0000001243981073_row036113475395"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.5.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p93612047133915">path</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p159952471418">No</p>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.5.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p159952471418">No</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p13361747173915">String</p>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.5.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p13361747173915">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p6361647183913">Health check URL. This parameter needs to be configured when the protocol is HTTP.</p>
-<p id="cce_10_0385__cce_10_0014_p636184753911">Default value: <strong id="cce_10_0385__cce_10_0014_b2032803325105021">/</strong></p>
-<p id="cce_10_0385__cce_10_0014_p8361847153910">The value can contain 1 to 10,000 characters.</p>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.5.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p6361647183913">Health check URL. This parameter needs to be configured when the protocol is HTTP.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p636184753911">Default value: <strong id="cce_10_0385__en-us_topic_0000001243981073_b2032803325105021">/</strong></p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p8361847153910">The value can contain 1 to 10,000 characters.</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
 
-<div class="tablenoborder"><a name="cce_10_0385__table3340195463412"></a><a name="table3340195463412"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table3340195463412" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Data structure of the elb.session-affinity-option field</caption><thead align="left"><tr id="cce_10_0385__cce_10_0014_row23591547163913"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.6.2.5.1.1"><p id="cce_10_0385__cce_10_0014_p6359124763911">Parameter</p>
+<div class="tablenoborder"><a name="cce_10_0385__table3340195463412"></a><a name="table3340195463412"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0385__table3340195463412" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Data structure of the elb.session-affinity-option field</caption><thead align="left"><tr id="cce_10_0385__en-us_topic_0000001243981073_row23591547163913"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.6.2.5.1.1"><p id="cce_10_0385__en-us_topic_0000001243981073_p6359124763911">Parameter</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="12.139999999999999%" id="mcps1.3.6.2.5.1.2"><p id="cce_10_0385__cce_10_0014_p8442205011314">Mandatory</p>
+<th align="left" class="cellrowborder" valign="top" width="12.139999999999999%" id="mcps1.3.6.2.5.1.2"><p id="cce_10_0385__en-us_topic_0000001243981073_p8442205011314">Mandatory</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="13.69%" id="mcps1.3.6.2.5.1.3"><p id="cce_10_0385__cce_10_0014_p23601947173914">Type</p>
+<th align="left" class="cellrowborder" valign="top" width="13.69%" id="mcps1.3.6.2.5.1.3"><p id="cce_10_0385__en-us_topic_0000001243981073_p23601947173914">Type</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="49.220000000000006%" id="mcps1.3.6.2.5.1.4"><p id="cce_10_0385__cce_10_0014_p19360647113911">Description</p>
+<th align="left" class="cellrowborder" valign="top" width="49.220000000000006%" id="mcps1.3.6.2.5.1.4"><p id="cce_10_0385__en-us_topic_0000001243981073_p19360647113911">Description</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0385__cce_10_0014_row1236084719399"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.6.2.5.1.1 "><p id="cce_10_0385__cce_10_0014_p1636019470393">persistence_timeout</p>
+<tbody><tr id="cce_10_0385__en-us_topic_0000001243981073_row1236084719399"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.6.2.5.1.1 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1636019470393">persistence_timeout</p>
 </td>
-<td class="cellrowborder" valign="top" width="12.139999999999999%" headers="mcps1.3.6.2.5.1.2 "><p id="cce_10_0385__cce_10_0014_p164427503134">Yes</p>
+<td class="cellrowborder" valign="top" width="12.139999999999999%" headers="mcps1.3.6.2.5.1.2 "><p id="cce_10_0385__en-us_topic_0000001243981073_p164427503134">Yes</p>
 </td>
-<td class="cellrowborder" valign="top" width="13.69%" headers="mcps1.3.6.2.5.1.3 "><p id="cce_10_0385__cce_10_0014_p1236084793919">String</p>
+<td class="cellrowborder" valign="top" width="13.69%" headers="mcps1.3.6.2.5.1.3 "><p id="cce_10_0385__en-us_topic_0000001243981073_p1236084793919">String</p>
 </td>
-<td class="cellrowborder" valign="top" width="49.220000000000006%" headers="mcps1.3.6.2.5.1.4 "><p id="cce_10_0385__cce_10_0014_p12360147143917">Sticky session timeout, in minutes. This parameter is valid only when <strong id="cce_10_0385__cce_10_0014_b1651462119461">elb.session-affinity-mode</strong> is set to <strong id="cce_10_0385__cce_10_0014_b973718232469">SOURCE_IP</strong>.</p>
-<p id="cce_10_0385__cce_10_0014_p0360204713398">Value range: 1 to 60. Default value: <strong id="cce_10_0385__cce_10_0014_b83331032104616">60</strong></p>
+<td class="cellrowborder" valign="top" width="49.220000000000006%" headers="mcps1.3.6.2.5.1.4 "><p id="cce_10_0385__en-us_topic_0000001243981073_p12360147143917">Sticky session timeout, in minutes. This parameter is valid only when <strong id="cce_10_0385__en-us_topic_0000001243981073_b1651462119461">elb.session-affinity-mode</strong> is set to <strong id="cce_10_0385__en-us_topic_0000001243981073_b973718232469">SOURCE_IP</strong>.</p>
+<p id="cce_10_0385__en-us_topic_0000001243981073_p0360204713398">Value range: 1 to 60. Default value: <strong id="cce_10_0385__en-us_topic_0000001243981073_b83331032104616">60</strong></p>
 </td>
 </tr>
 </tbody>
diff --git a/docs/cce/umn/cce_10_0388.html b/docs/cce/umn/cce_10_0388.html
index cd534ae4..42e2def0 100644
--- a/docs/cce/umn/cce_10_0388.html
+++ b/docs/cce/umn/cce_10_0388.html
@@ -57,7 +57,7 @@ Events:              &lt;none&gt;</pre>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">Configuration Center</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0045.html">ConfigMaps and Secrets</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0400.html b/docs/cce/umn/cce_10_0400.html
index 69b75ac7..3b74e67f 100644
--- a/docs/cce/umn/cce_10_0400.html
+++ b/docs/cce/umn/cce_10_0400.html
@@ -1,23 +1,23 @@
 <a name="cce_10_0400"></a><a name="cce_10_0400"></a>
 
 <h1 class="topictitle1">Accessing Public Networks from a Container</h1>
-<div id="body8662426"><p id="cce_10_0400__cce_bestpractice_00274_0_p115941804492">Containers can access public networks in either of the following ways:</p>
-<ul id="cce_10_0400__cce_bestpractice_00274_0_ul54621241165111"><li id="cce_10_0400__cce_bestpractice_00274_0_li1646213417511">Bind a public IP address to the node where the container is located if the network model is VPC network or tunnel network.</li><li id="cce_10_0400__cce_bestpractice_00274_0_li21559167208">Bind a public IP address to the pod. (When the Cloud Native Network 2.0 model is used, manually bind an EIP to the ENI or sub-ENI of the pod on the VPC console. This method is not recommended because the IP address of a pod changes after the pod is rescheduled. As a result, the new pod cannot access the public network.)</li><li id="cce_10_0400__cce_bestpractice_00274_0_li54626419513">Configure SNAT rules through NAT Gateway.</li></ul>
-<p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p8060118">You can use NAT Gateway to enable container pods in a VPC to access public networks. NAT Gateway provides source network address translation (SNAT), which translates private IP addresses to a public IP address by binding an elastic IP address (EIP) to the gateway, providing secure and efficient access to the Internet. <a href="#cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619">Figure 1</a> shows the SNAT architecture. The SNAT function allows the container pods in a VPC to access the Internet without being bound to an EIP. SNAT supports a large number of concurrent connections, which makes it suitable for applications involving a large number of requests and connections.</p>
-<div class="fignone" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"><a name="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"></a><a name="cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"></a><span class="figcap"><b>Figure 1 </b>SNAT</span><br><span><img id="cce_10_0400__cce_bestpractice_00274_0_image5903131018582" src="en-us_image_0000001192028618.png"></span></div>
-<p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p195351309390">To enable a container pod to access the Internet, perform the following steps:</p>
-<ol id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol193061718104012"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li3306151811401"><span>Assign an EIP.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol1653535472210"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li19535175412226">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1353565412213">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0226102195_en-us_topic_0213478735_en-us_topic_0118066459_image153181912216" src="en-us_image_0275445566.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li7535145442211">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_image069119812416" src="en-us_image_0261818893.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b17538433191214">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1354993301211">Elastic IP</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li19535195413229">On the <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b148879106514">EIPs</strong> page, click <strong id="cce_10_0400__cce_bestpractice_00274_0_b1074015412595"></strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b207402041205917">Create</strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b1674013418593"> EIP</strong>.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1153595412218">Set parameters as required.<div class="note" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_note14643013113817"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p064611343811">Set <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1492418419227">Region</strong> to the region where container pods are located.</p>
+<div id="body8662426"><p id="cce_10_0400__cce_bestpractice_00274_p115941804492">Containers can access public networks in either of the following ways:</p>
+<ul id="cce_10_0400__cce_bestpractice_00274_ul54621241165111"><li id="cce_10_0400__cce_bestpractice_00274_li1646213417511">Bind a public IP address to the node where the container is located if the network model is VPC network or tunnel network.</li><li id="cce_10_0400__cce_bestpractice_00274_li21559167208">Bind a public IP address to the pod. (When the Cloud Native Network 2.0 model is used, manually bind an EIP to the ENI or sub-ENI of the pod on the VPC console. This method is not recommended because the IP address of a pod changes after the pod is rescheduled. As a result, the new pod cannot access the public network.)</li><li id="cce_10_0400__cce_bestpractice_00274_li54626419513">Configure SNAT rules through NAT Gateway.</li></ul>
+<p id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_p8060118">You can use NAT Gateway to enable container pods in a VPC to access public networks. NAT Gateway provides source network address translation (SNAT), which translates private IP addresses to a public IP address by binding an elastic IP address (EIP) to the gateway, providing secure and efficient access to the Internet. <a href="#cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619">Figure 1</a> shows the SNAT architecture. The SNAT function allows the container pods in a VPC to access the Internet without being bound to an EIP. SNAT supports a large number of concurrent connections, which makes it suitable for applications involving a large number of requests and connections.</p>
+<div class="fignone" id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"><a name="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"></a><a name="cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_fig34611314153619"></a><span class="figcap"><b>Figure 1 </b>SNAT</span><br><span><img id="cce_10_0400__cce_bestpractice_00274_image5903131018582" src="en-us_image_0000001569182781.png"></span></div>
+<p id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_p195351309390">To enable a container pod to access the Internet, perform the following steps:</p>
+<ol id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_ol193061718104012"><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li3306151811401"><span>Assign an EIP.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_ol1653535472210"><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li19535175412226">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li1353565412213">Click <span><img id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0226102195_en-us_topic_0213478735_en-us_topic_0118066459_image153181912216" src="en-us_image_0000001568822961.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li7535145442211">Click <span><img id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_image069119812416" src="en-us_image_0000001518062796.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b17538433191214">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b1354993301211">Elastic IP</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li19535195413229">On the <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b148879106514">EIPs</strong> page, click <strong id="cce_10_0400__cce_bestpractice_00274_b1074015412595"></strong><strong id="cce_10_0400__cce_bestpractice_00274_b207402041205917">Create</strong><strong id="cce_10_0400__cce_bestpractice_00274_b1674013418593"> EIP</strong>.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li1153595412218">Set parameters as required.<div class="note" id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_note14643013113817"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_p064611343811">Set <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b1492418419227">Region</strong> to the region where container pods are located.</p>
 </div></div>
 </li></ol>
-</p></li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li73624518417"><span>Create a NAT gateway.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol16568135313263"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li19568185313261">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1933722072119">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_image11509111112222" src="en-us_image_0275445543.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li1162619102717">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_image2573122211715" src="en-us_image_0261818896.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1279217292252">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b10793152992519">NAT Gateway</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li362121920273">On the displayed page, click <strong id="cce_10_0400__cce_bestpractice_00274_0_b3505181312120"></strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b150571314114">Create</strong><strong id="cce_10_0400__cce_bestpractice_00274_0_b1950515131118"> Public NAT Gateway</strong> in the upper right corner.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li10966453202717">Set parameters as required.<div class="note" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_note134945524260"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p44943521266">Select the same VPC.</p>
+</p></li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li73624518417"><span>Create a NAT gateway.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_ol16568135313263"><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li19568185313261">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li1933722072119">Click <span><img id="cce_10_0400__cce_bestpractice_00274_image11509111112222" src="en-us_image_0000001517743652.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li1162619102717">Click <span><img id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_image2573122211715" src="en-us_image_0000001568902689.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b1279217292252">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b10793152992519">NAT Gateway</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li362121920273">On the displayed page, click <strong id="cce_10_0400__cce_bestpractice_00274_b3505181312120"></strong><strong id="cce_10_0400__cce_bestpractice_00274_b150571314114">Create</strong><strong id="cce_10_0400__cce_bestpractice_00274_b1950515131118"> Public NAT Gateway</strong> in the upper right corner.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li10966453202717">Set parameters as required.<div class="note" id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_note134945524260"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_p44943521266">Select the same VPC.</p>
 </div></div>
 </li></ol>
-</p></li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li5124338104217"><span>Configure an SNAT rule and bind the EIP to the subnet.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_ol12907104842817"><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li119074484286">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li12981824132210">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_image8287172122614" src="en-us_image_0275452681.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li9908124813283">Click <span><img id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_image7626391277" src="en-us_image_0261818899.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b850612479357">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b1950794703510">NAT Gateway</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li9838182315292">On the page displayed, click the name of the NAT gateway for which you want to add the SNAT rule.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li86338159294">On the <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b37032365364">SNAT Rules</strong> tab page, click <strong id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_b07089369365">Add SNAT Rule</strong>.</li><li id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_li179090487287">Set parameters as required.</li></ol>
-<div class="note" id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_note12381948172810"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_0_p1140519565386">SNAT rules take effect by CIDR block. As different container network models use different communication modes, the subnet needs to be selected according to the following rules:</p>
-<ul id="cce_10_0400__cce_bestpractice_00274_0_ul15248410114411"><li id="cce_10_0400__cce_bestpractice_00274_0_li8248101044414">Tunnel network and VPC network: Select the subnet where the node is located, that is, the subnet selected during node creation.</li></ul>
-<p id="cce_10_0400__cce_bestpractice_00274_0_p621313311074">If there are multiple CIDR blocks, you can create multiple SNAT rules or customize a CIDR block as long as the CIDR block contains the node subnet.</p>
+</p></li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li5124338104217"><span>Configure an SNAT rule and bind the EIP to the subnet.</span><p><ol type="a" id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_ol12907104842817"><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li119074484286">Log in to the management console.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li12981824132210">Click <span><img id="cce_10_0400__cce_bestpractice_00274_image8287172122614" src="en-us_image_0000001569023069.png"></span> in the upper left corner of the management console and select a region and a project.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li9908124813283">Click <span><img id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_image7626391277" src="en-us_image_0000001568822957.png"></span> at the upper left corner and choose <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b850612479357">Networking</strong> &gt; <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b1950794703510">NAT Gateway</strong> in the expanded list.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li9838182315292">On the page displayed, click the name of the NAT gateway for which you want to add the SNAT rule.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li86338159294">On the <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b37032365364">SNAT Rules</strong> tab page, click <strong id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_b07089369365">Add SNAT Rule</strong>.</li><li id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_li179090487287">Set parameters as required.</li></ol>
+<div class="note" id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_note12381948172810"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0400__cce_bestpractice_00274_p1140519565386">SNAT rules take effect by CIDR block. As different container network models use different communication modes, the subnet needs to be selected according to the following rules:</p>
+<ul id="cce_10_0400__cce_bestpractice_00274_ul15248410114411"><li id="cce_10_0400__cce_bestpractice_00274_li8248101044414">Tunnel network and VPC network: Select the subnet where the node is located, that is, the subnet selected during node creation.</li></ul>
+<p id="cce_10_0400__cce_bestpractice_00274_p621313311074">If there are multiple CIDR blocks, you can create multiple SNAT rules or customize a CIDR block as long as the CIDR block contains the node subnet.</p>
 </div></div>
-<p id="cce_10_0400__cce_bestpractice_00274_0_en-us_topic_0241700138_en-us_topic_0144420145_p19486202224014">After the SNAT rule is configured, workloads can access public networks from the container. Public networks can be pinged from the container.</p>
+<p id="cce_10_0400__cce_bestpractice_00274_en-us_topic_0241700138_en-us_topic_0144420145_p19486202224014">After the SNAT rule is configured, workloads can access public networks from the container. Public networks can be pinged from the container.</p>
 </p></li></ol>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0403.html b/docs/cce/umn/cce_10_0403.html
index 51c352b8..48a5d546 100644
--- a/docs/cce/umn/cce_10_0403.html
+++ b/docs/cce/umn/cce_10_0403.html
@@ -5,7 +5,7 @@
 </div>
 <div class="section" id="cce_10_0403__section15358134114117"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_10_0403__ul36851344171417"><li id="cce_10_0403__li2686194471411">This function is supported for clusters of v1.15 and later versions.</li><li id="cce_10_0403__li83941825889">Starting from v1.15.11, the number of nodes in a cluster can be changed to 2000. The number of nodes in a single master node cannot be changed to 1000 or more.</li><li id="cce_10_0403__li03738710586">Currently, a cluster can only be scaled out to a larger specification, but cannot be scaled in.</li><li id="cce_10_0403__li126841917336">During the specifications change, master nodes will be powered off and on, and the cluster cannot run properly. Perform the change during off-peak hours.</li><li id="cce_10_0403__li95462472323">Changing the cluster scale does not affect the services running in the cluster. However, the control plane (master nodes) will be interrupted for a short period of time. You are advised not to perform any other operations (such as creating workloads) during the change.</li><li id="cce_10_0403__li20214141744">Change failures will trigger a cluster rollback to the normal state. If the rollback fails, submit a service ticket.</li></ul>
 </div>
-<div class="section" id="cce_10_0403__section1832111264289"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0403__ol10323172610285"><li id="cce_10_0403__li179831852301"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0403__uicontrol15332131717263"><b>Clusters</b></span>.</span></li><li id="cce_10_0403__li169841352902"><span>Click <span><img id="cce_10_0403__image98281624206" src="en-us_image_0000001236723668.png"></span> next to the cluster whose specifications need to be changed.</span></li><li id="cce_10_0403__li2941172833118"><span>On the page displayed, select a new flavor for <strong id="cce_10_0403__b6972823515">Target Flavor</strong> as required.</span></li><li id="cce_10_0403__li1891072315334"><span>Click <strong id="cce_10_0403__b090824933113">OK</strong>.</span><p><p id="cce_10_0403__p1680761618408">You can click <strong id="cce_10_0403__b0756112592417">Operation Records</strong> in the upper left corner to view the cluster change history. The status changes from <strong id="cce_10_0403__b175950360241">Executing</strong> to <strong id="cce_10_0403__b3595143618248">Successful</strong>, indicating that the cluster specifications are successfully changed.</p>
+<div class="section" id="cce_10_0403__section1832111264289"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0403__ol10323172610285"><li id="cce_10_0403__li179831852301"><span>Log in to the CCE console. In the navigation pane, choose <span class="uicontrol" id="cce_10_0403__uicontrol15332131717263"><b>Clusters</b></span>.</span></li><li id="cce_10_0403__li169841352902"><span>Click <span><img id="cce_10_0403__image98281624206" src="en-us_image_0000001518062664.png"></span> next to the cluster whose specifications need to be changed.</span></li><li id="cce_10_0403__li2941172833118"><span>On the page displayed, select a new flavor for <strong id="cce_10_0403__b6972823515">Target Flavor</strong> as required.</span></li><li id="cce_10_0403__li1891072315334"><span>Click <strong id="cce_10_0403__b090824933113">OK</strong>.</span><p><p id="cce_10_0403__p1680761618408">You can click <strong id="cce_10_0403__b0756112592417">Operation Records</strong> in the upper left corner to view the cluster change history. The status changes from <strong id="cce_10_0403__b175950360241">Executing</strong> to <strong id="cce_10_0403__b3595143618248">Successful</strong>, indicating that the cluster specifications are successfully changed.</p>
 </p></li></ol>
 </div>
 </div>
diff --git a/docs/cce/umn/cce_10_0430.html b/docs/cce/umn/cce_10_0430.html
index 15d8d07a..94c0ce34 100644
--- a/docs/cce/umn/cce_10_0430.html
+++ b/docs/cce/umn/cce_10_0430.html
@@ -1,17 +1,19 @@
 <a name="cce_10_0430"></a><a name="cce_10_0430"></a>
 
 <h1 class="topictitle1">Basic Cluster Information</h1>
-<div id="body0000001439287493"><p id="cce_10_0430__p923425843412"><a href="https://kubernetes.io/" target="_blank" rel="noopener noreferrer">Kubernetes</a> allows you to easily deploy and manage containerized application and facilitates container scheduling and orchestration.</p>
+<div id="body0000001439287493"><p id="cce_10_0430__p923425843412"><a href="https://kubernetes.io/" target="_blank" rel="noopener noreferrer">Kubernetes</a> is an open source container orchestration engine for automating deployment, scaling, and management of containerized applications.</p>
 <p id="cce_10_0430__p087617574435">For developers, Kubernetes is a cluster operating system. Kubernetes provides service discovery, scaling, load balancing, self-healing, and even leader election, freeing developers from infrastructure-related configurations.</p>
 <p id="cce_10_0430__p11204125211240">When using Kubernetes, it is like you run a large number of servers as one and the method for deploying applications in Kubernetes is always the same.</p>
-<div class="section" id="cce_10_0430__section1865552014316"><h4 class="sectiontitle">Kubernetes Cluster Architecture</h4><p id="cce_10_0430__en-us_topic_0249851107_p989413913431">A Kubernetes cluster consists of master nodes (Masters) and worker nodes (Nodes). Applications are deployed on worker nodes, and you can specify the nodes for deployment.</p>
+<div class="section" id="cce_10_0430__section1865552014316"><h4 class="sectiontitle">Kubernetes Cluster Architecture</h4><p id="cce_10_0430__en-us_topic_0249851107_p19319524154214">A Kubernetes cluster consists of master nodes (Masters) and worker nodes (Nodes). Applications are deployed on worker nodes, and you can specify the nodes for deployment.</p>
+<div class="note" id="cce_10_0430__en-us_topic_0249851107_note1131682416427"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0430__en-us_topic_0249851107_p989413913431">For a cluster created on CCE, the master node is hosted by CCE. You only need to create a node.</p>
+</div></div>
 <p id="cce_10_0430__en-us_topic_0249851107_p177913134514">The following figure shows the architecture of a Kubernetes cluster.</p>
-<div class="fignone" id="cce_10_0430__en-us_topic_0249851107_fig1124035552814"><span class="figcap"><b>Figure 1 </b>Kubernetes cluster architecture</span><br><span><img id="cce_10_0430__en-us_topic_0249851107_image91201347266" src="en-us_image_0267028603.png"></span></div>
-<p id="cce_10_0430__en-us_topic_0249851107_p1679744211105"><strong id="cce_10_0430__en-us_topic_0249851107_b115641204135">Master node</strong></p>
+<div class="fignone" id="cce_10_0430__en-us_topic_0249851107_fig1124035552814"><span class="figcap"><b>Figure 1 </b>Kubernetes cluster architecture</span><br><span><img id="cce_10_0430__en-us_topic_0249851107_image91201347266" src="en-us_image_0000001568822869.png"></span></div>
+<p id="cce_10_0430__en-us_topic_0249851107_p1679744211105"><strong id="cce_10_0430__b1424311710486">Master node</strong></p>
 <p id="cce_10_0430__en-us_topic_0249851107_p16688915171213">A master node is the machine where the control plane components run, including API server, Scheduler, Controller manager, and etcd.</p>
 <ul id="cce_10_0430__en-us_topic_0249851107_ul36981436204616"><li id="cce_10_0430__en-us_topic_0249851107_li15698173615464">API server: functions as a transit station for components to communicate with each other, receives external requests, and writes information to etcd.</li><li id="cce_10_0430__en-us_topic_0249851107_li6698183610466">Controller manager: performs cluster-level functions, such as component replication, node tracing, and node fault fixing.</li><li id="cce_10_0430__en-us_topic_0249851107_li8698173674618">Scheduler: schedules containers to nodes based on various conditions (such as available resources and node affinity).</li><li id="cce_10_0430__en-us_topic_0249851107_li6698173684613">etcd: serves as a distributed data storage component that stores cluster configuration information.</li></ul>
 <p id="cce_10_0430__en-us_topic_0249851107_p84384449512">In a production environment, multiple master nodes are deployed to ensure high cluster availability. For example, you can deploy three master nodes for your CCE cluster.</p>
-<p id="cce_10_0430__en-us_topic_0249851107_p691416554116"><strong id="cce_10_0430__en-us_topic_0249851107_b9975345122">Worker node</strong></p>
+<p id="cce_10_0430__en-us_topic_0249851107_p691416554116"><strong id="cce_10_0430__b1515120916498">Worker node</strong></p>
 <p id="cce_10_0430__en-us_topic_0249851107_p18205041220">A worker node is a compute node in a cluster, that is, a node running containerized applications. A worker node has the following components:</p>
 <ul id="cce_10_0430__en-us_topic_0249851107_ul19181255131118"><li id="cce_10_0430__en-us_topic_0249851107_li59181055191113">kubelet: communicates with the container runtime, interacts with the API server, and manages containers on the node.</li><li id="cce_10_0430__en-us_topic_0249851107_li191820550116">kube-proxy: serves as an access proxy between application components.</li><li id="cce_10_0430__en-us_topic_0249851107_li9918205591116">Container runtime: functions as the software for running containers. You can download images to build your container runtime, such as Docker.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0431.html b/docs/cce/umn/cce_10_0431.html
new file mode 100644
index 00000000..ca22ece5
--- /dev/null
+++ b/docs/cce/umn/cce_10_0431.html
@@ -0,0 +1,49 @@
+<a name="cce_10_0431"></a><a name="cce_10_0431"></a>
+
+<h1 class="topictitle1">Checking the Node</h1>
+<div id="body0000001442493101"><div class="section" id="cce_10_0431__section1956755419593"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0431__p6857185644115">Check the following aspects:</p>
+<ul id="cce_10_0431__ul531713489117"><li id="cce_10_0431__li1731711484111">Check whether the node is available. </li><li id="cce_10_0431__li1364454101210">Check whether the node OS supports the upgrade.</li><li id="cce_10_0431__li2075366171711">Check whether there are unexpected node pool tags in the node.</li><li id="cce_10_0431__li933265192411">Check whether the Kubernetes node name is consistent with the ECS name.</li></ul>
+</div>
+<div class="section" id="cce_10_0431__section81891269015"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0431__ul16683527246"><li id="cce_10_0431__li1068315271042"><strong id="cce_10_0431__b433411401605">Scenario 1: The node is unavailable.</strong><p id="cce_10_0431__p2506181322315">Log in to the CCE console and access the cluster console. Choose <strong id="cce_10_0431__b436414343416">Nodes</strong> in the navigation pane and check the node status. Ensure that the node is in the <strong id="cce_10_0431__b415519463411">Running</strong> status. A node in the <strong id="cce_10_0431__b153665165516">Installing</strong> or <strong id="cce_10_0431__b1978982219518">Deleting</strong> status cannot be upgraded.</p>
+<p id="cce_10_0431__p39781513026">If the node status is abnormal, restore the node by referring to  and retry the check task.</p>
+<p id="cce_10_0431__p7258193085411"></p>
+</li><li id="cce_10_0431__li8664123119420"><strong id="cce_10_0431__b1558111371611">Scenario 2: The node OS does not support the upgrade.</strong><p id="cce_10_0431__p14859202212133">The following table lists the node OSs that support the upgrade. You can reset the node OS to an available OS in the list.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0431__table11695826532" frame="border" border="1" rules="all"><caption><b>Table 1 </b>OSs that support the upgrade</caption><thead align="left"><tr id="cce_10_0431__row16695202616314"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.2.2.2.3.2.3.1.1"><p id="cce_10_0431__p665517531578">OS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.2.2.2.3.2.3.1.2"><p id="cce_10_0431__p069572618316">Restriction</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0431__row31724525816"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.2.2.3.2.3.1.1 "><p id="cce_10_0431__p5112124911587">EulerOS 2.5/2.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.2.2.3.2.3.1.2 "><p id="cce_10_0431__p11121349135818">None</p>
+</td>
+</tr>
+<tr id="cce_10_0431__row1169511261039"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.2.2.3.2.3.1.1 "><p id="cce_10_0431__p97601633140">CentOS 7.7</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.2.2.3.2.3.1.2 "><p id="cce_10_0431__p176951926438">None</p>
+</td>
+</tr>
+<tr id="cce_10_0431__row106651128111"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.2.2.3.2.3.1.1 "><p id="cce_10_0431__p1466518121019">Ubuntu 22.04</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.2.2.3.2.3.1.2 "><p id="cce_10_0431__p56651312810">Some sites cannot perform upgrade. If the check result shows the upgrade is not supported, contact technical support.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_10_0431__li1672413412047"><strong id="cce_10_0431__b12154145712112">Scenario 3: There are unexpected node pool tags in the node.</strong><p id="cce_10_0431__p1343675112311">If a node is migrated from a node pool to the default node pool, the node pool label <strong id="cce_10_0431__b1020248155310">cce.cloud.com/cce-nodepool</strong> is retained, affecting cluster upgrade. Check whether the load scheduling on the node depends on the label.</p>
+<ul id="cce_10_0431__ul12694201117249"><li id="cce_10_0431__li469461142410">If there is no dependency, delete the tag.</li><li id="cce_10_0431__li1819311592411">If yes, modify the load balancing policy, remove the dependency, and then delete the tag.</li></ul>
+</li><li id="cce_10_0431__li57244296245"><strong id="cce_10_0431__b572482952414">Scenario 4: The Kubernetes node name is consistent with the ECS name.</strong><p id="cce_10_0431__p1579625415314">Kubernetes node name, which defaults to the node's private IP. If you select a cloud server name as the node name, the cluster cannot be upgraded.</p>
+<p id="cce_10_0431__p5793844145614">Log in to the CCE console and access the cluster console. Choose <strong id="cce_10_0431__b1752746475">Nodes</strong> in the navigation pane, view the node label, and check whether the value of <strong id="cce_10_0431__b21522317819">kubernetes.io/hostname</strong> is consistent with the ECS name. If they are the same, remove the node before the cluster upgrade.</p>
+<p id="cce_10_0431__p9495173214302"><span><img id="cce_10_0431__image47241218135618" src="en-us_image_0000001517903020.png"></span></p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0432.html b/docs/cce/umn/cce_10_0432.html
new file mode 100644
index 00000000..d5ad977e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0432.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0432"></a><a name="cce_10_0432"></a>
+
+<h1 class="topictitle1">Checking the Blocklist</h1>
+<div id="body0000001442772681"><div class="section" id="cce_10_0432__section1774419364218"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0432__p6857185644115">Check whether the current user is in the upgrade blocklist.</p>
+</div>
+<div class="section" id="cce_10_0432__section26849113312"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0432__p1126672218330">CCE temporarily disables the cluster upgrade function due to the following reasons:</p>
+<ul id="cce_10_0432__ul1169386354"><li id="cce_10_0432__li512482010442">The cluster is identified as the core production cluster.</li><li id="cce_10_0432__li1922401233519">Other O&amp;M tasks are being or will be performed to improve cluster stability, for example, 3AZ reconstruction of the master node.</li></ul>
+<p id="cce_10_0432__p2397135717294">You can contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0433.html b/docs/cce/umn/cce_10_0433.html
new file mode 100644
index 00000000..32c05e93
--- /dev/null
+++ b/docs/cce/umn/cce_10_0433.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0433"></a><a name="cce_10_0433"></a>
+
+<h1 class="topictitle1">Checking the Add-on</h1>
+<div id="body0000001442652721"><div class="section" id="cce_10_0433__section157446411535"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0433__p6857185644115">Check the following aspects:</p>
+<ul id="cce_10_0433__ul531713489117"><li id="cce_10_0433__li1731711484111">Check whether the add-on status is normal.</li><li id="cce_10_0433__li18535185255019">Check whether the add-on supports the target version.</li></ul>
+</div>
+<div class="section" id="cce_10_0433__section11370621343"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0433__ul184298521641"><li id="cce_10_0433__li242920521541"><strong id="cce_10_0433__b1075010263">Scenario 1: The add-on status is abnormal.</strong><p id="cce_10_0433__p11890132917514">Log in to the CCE console and go to the target cluster. Choose <strong id="cce_10_0433__b14289854411">O&amp;M</strong> &gt; <strong id="cce_10_0433__b710512201946">Add-ons</strong> to view and handle the abnormal add-on.</p>
+<p id="cce_10_0433__p236219191833"></p>
+</li><li id="cce_10_0433__li1655512591247"><strong id="cce_10_0433__b148459614615">Scenario 2: The target version does not support the current add-on.</strong><p id="cce_10_0433__p58675118556">The add-on cannot be automatically upgraded with the cluster. Log in to the CCE console and go to the target cluster. Choose <strong id="cce_10_0433__b485243497">O&amp;M</strong> &gt; <strong id="cce_10_0433__b148517437920">Add-ons</strong> to manually upgrade the add-on.</p>
+<p id="cce_10_0433__p156951232797"></p>
+</li><li id="cce_10_0433__li1826718380516"><strong id="cce_10_0433__b186320383105">Scenario 3: The add-on does not support the target cluster even if the add-on is upgraded to the latest version. In this case, go to the cluster console and choose Cluster Information &gt; O&amp;M &gt; Add-ons in the navigation pane to manually uninstall the add-on.</strong><p id="cce_10_0433__p72911895307">For details about the supported add-on versions and replacement solutions, see the <a href="cce_10_0277.html">help document</a>.</p>
+<p id="cce_10_0433__p4148882306"></p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0434.html b/docs/cce/umn/cce_10_0434.html
new file mode 100644
index 00000000..4f6f5053
--- /dev/null
+++ b/docs/cce/umn/cce_10_0434.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0434"></a><a name="cce_10_0434"></a>
+
+<h1 class="topictitle1">Checking the Helm Chart</h1>
+<div id="body0000001392253950"><div class="section" id="cce_10_0434__section114556206613"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0434__p6857185644115">Check whether the current HelmRelease record contains discarded Kubernetes APIs that are not supported by the target cluster version. If yes, the Helm chart may be unavailable after the upgrade.</p>
+</div>
+<div class="section" id="cce_10_0434__section13127211472"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0434__p8719171381519">Convert the discarded Kubernetes APIs to APIs that are compatible with both the source and target versions.</p>
+<div class="note" id="cce_10_0434__note36571910374"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0434__p116571310677">This item has been automatically processed in the upgrade process. You can ignore this item.</p>
+</div></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0435.html b/docs/cce/umn/cce_10_0435.html
new file mode 100644
index 00000000..75196496
--- /dev/null
+++ b/docs/cce/umn/cce_10_0435.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0435"></a><a name="cce_10_0435"></a>
+
+<h1 class="topictitle1">Checking the Master Node SSH Connectivity</h1>
+<div id="body0000001392413474"><div class="section" id="cce_10_0435__section10606429876"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0435__p6857185644115">Check whether CCE can connect to your master nodes.</p>
+</div>
+<div class="section" id="cce_10_0435__section12561223685"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0435__p2397135717294">Contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0436.html b/docs/cce/umn/cce_10_0436.html
new file mode 100644
index 00000000..c5c31218
--- /dev/null
+++ b/docs/cce/umn/cce_10_0436.html
@@ -0,0 +1,30 @@
+<a name="cce_10_0436"></a><a name="cce_10_0436"></a>
+
+<h1 class="topictitle1">Checking the Node Pool</h1>
+<div id="body0000001442412949"><div class="section" id="cce_10_0436__section6011419815"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0436__p6857185644115">Check the following aspects:</p>
+<ul id="cce_10_0436__ul125736219184"><li id="cce_10_0436__li1657315271810">Check the node status.</li><li id="cce_10_0436__li174171868202">Check whether the auto scaling function of the node pool is disabled.</li></ul>
+</div>
+<div class="section" id="cce_10_0436__section92883871715"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0436__ul1388985301717"><li id="cce_10_0436__li288995315177"><strong id="cce_10_0436__b105991322111820">Scenario 1: The node pool status is abnormal.</strong><p id="cce_10_0436__p987215284245">Log in to the CCE console, go to the target cluster and choose <strong id="cce_10_0436__b1680944171816">Nodes</strong>. On the displayed page, click <strong id="cce_10_0436__b14889124017196">Node Pools</strong> tab and check the node pool status. If the node pool is being scaled, wait until the scaling is complete, and disable the auto scaling function by referring to <a href="#cce_10_0436__li2791152121810">Scenario 2</a>.</p>
+<p id="cce_10_0436__p1493462262110"></p>
+</li><li id="cce_10_0436__li2791152121810"><a name="cce_10_0436__li2791152121810"></a><a name="li2791152121810"></a><strong id="cce_10_0436__b8102142511187">Scenario 2: The auto scaling function of the node pool is enabled.</strong><p id="cce_10_0436__p1726671119405"><strong id="cce_10_0436__b1780741794019">Solution 1 (Recommended)</strong></p>
+<p id="cce_10_0436__p761615575273">Log in to the CCE console and go to the target cluster. Choose <strong id="cce_10_0436__b10981110142912">O&amp;M</strong> &gt; <strong id="cce_10_0436__b10171313132913">Add-ons</strong> and uninstall the autoscaler add-on.</p>
+<p id="cce_10_0436__p117361215163412"></p>
+<div class="note" id="cce_10_0436__note205950712269"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0436__p1759547182612">Before uninstalling the autoscaler add-on, click <span class="uicontrol" id="cce_10_0436__uicontrol1488516113288"><b>Upgrade</b></span> to back up the configuration so that the add-on configuration can be restored during reinstallation.</p>
+<p id="cce_10_0436__p2436123345010">Before uninstalling the autoscaler add-on, choose <strong id="cce_10_0436__b103226163387">O&amp;M</strong> &gt; <strong id="cce_10_0436__b773991823813">Node Scaling</strong> and back up the current scaling policies so that they can be restored during reinstallation. These policies will be deleted when the autoscaler add-on is uninstalled.</p>
+</div></div>
+<p id="cce_10_0436__p1392761105412">Obtain and back up the node scaling policy by clicking <strong id="cce_10_0436__b10168161683912">Edit</strong>.</p>
+<p id="cce_10_0436__p344316114534"></p>
+<p id="cce_10_0436__p8321162419409"><strong id="cce_10_0436__b2801023113920">Solution 2</strong></p>
+<p id="cce_10_0436__p181486238409">If you do not want to uninstall the autoscaler add-on, log in to the CCE console and access the cluster detail page. Choose <strong id="cce_10_0436__b206261916105111">Nodes</strong> in the navigation pane. On the displayed page, click the <strong id="cce_10_0436__b16271616175115">Node Pools</strong> tab and click <strong id="cce_10_0436__b16277161519">Edit</strong> of the corresponding node pool to disable the auto scaling function.</p>
+<p id="cce_10_0436__p162955428275"></p>
+<div class="note" id="cce_10_0436__note4295204215273"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0436__p129504218276">Before disabling the auto scaling function, back up the autoscaling configuration so that the configuration can be restored when the function is enabled.</p>
+</div></div>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0437.html b/docs/cce/umn/cce_10_0437.html
new file mode 100644
index 00000000..f1615be9
--- /dev/null
+++ b/docs/cce/umn/cce_10_0437.html
@@ -0,0 +1,22 @@
+<a name="cce_10_0437"></a><a name="cce_10_0437"></a>
+
+<h1 class="topictitle1">Checking the Security Group</h1>
+<div id="body0000001392253028"><div class="section" id="cce_10_0437__section172388277293"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0437__p6857185644115">Check whether the security group allows the master node to access nodes using ICMP.</p>
+</div>
+<div class="section" id="cce_10_0437__section6698843142917"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0437__p197371845115111">Log in to the VPC console, choose <strong id="cce_10_0437__b11444163174517">Access Control</strong> &gt; <strong id="cce_10_0437__b105133390451">Security Groups</strong>, and enter the target cluster name in the search box. Two security groups are displayed:</p>
+<ul id="cce_10_0437__ul438219188589"><li id="cce_10_0437__li138211811587">The security group name is <strong id="cce_10_0437__b834242684615">cluster name-node-<em id="cce_10_0437__i1829134318465">xxx</em></strong>. This security group is associated with the user nodes.</li><li id="cce_10_0437__li1897616279582">The security group name is <strong id="cce_10_0437__b8429181616471">cluster name-control-<em id="cce_10_0437__i20460111918477">xxx</em></strong>. This security group is associated with the master nodes.</li></ul>
+<p id="cce_10_0437__p991311534563"></p>
+</div>
+<p id="cce_10_0437__p164931027010">Click the security group of the node user and ensure that the following rules are configured to allow the master node to access the node using <strong id="cce_10_0437__b113912494390">ICMP</strong>.</p>
+<p id="cce_10_0437__p5453542014"></p>
+<p id="cce_10_0437__p112181739123"></p>
+<p id="cce_10_0437__p13773915163113"></p>
+<p id="cce_10_0437__p17034267315">Otherwise, add a rule to the node security group. Set <strong id="cce_10_0437__b14843734446">Source</strong> to <strong id="cce_10_0437__b1160218451147">Security group</strong>.</p>
+<p id="cce_10_0437__p151071512847"></p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0439.html b/docs/cce/umn/cce_10_0439.html
new file mode 100644
index 00000000..744f8516
--- /dev/null
+++ b/docs/cce/umn/cce_10_0439.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0439"></a><a name="cce_10_0439"></a>
+
+<h1 class="topictitle1">To-Be-Migrated Node</h1>
+<div id="body0000001442493105"><div class="section" id="cce_10_0439__section6248164443418"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0439__p2933344204613">Check whether the node needs to be migrated.</p>
+</div>
+<div class="section" id="cce_10_0439__section1174314565344"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0439__p1521792351820">For the 1.15 cluster that is upgraded from 1.13 in rolling mode, you need to migrate (reset or create and replace) all nodes before performing the upgrade again.</p>
+<p id="cce_10_0439__p15653135293916"><strong id="cce_10_0439__b14174832561">Solution 1</strong></p>
+<p id="cce_10_0439__p9138125183912">Go the CCE console and access the cluster console. Choose <strong id="cce_10_0439__b9591124021718">Nodes</strong> in the navigation pane and click <strong id="cce_10_0439__b1814135613179">More</strong> &gt; <strong id="cce_10_0439__b825218411811">Reset Node</strong> in the <strong id="cce_10_0439__b167366617185">Operation</strong> column of the corresponding node. For details, see <a href="cce_10_0003.html">Resetting a Node</a>. After the node is reset, retry the check task.</p>
+<p id="cce_10_0439__p143393043511"></p>
+<div class="note" id="cce_10_0439__note145269352413"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0439__p1043323053519">Resetting a node will reset all node labels, which may affect workload scheduling. Before resetting a node, check and retain the labels that you have manually added to the node.</p>
+</div></div>
+<p id="cce_10_0439__p67094195412"><strong id="cce_10_0439__b088154373012">Solution 2</strong></p>
+<p id="cce_10_0439__p4264014194118">After creating a node, delete the faulty node.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0440.html b/docs/cce/umn/cce_10_0440.html
new file mode 100644
index 00000000..f9c0d4d0
--- /dev/null
+++ b/docs/cce/umn/cce_10_0440.html
@@ -0,0 +1,21 @@
+<a name="cce_10_0440"></a><a name="cce_10_0440"></a>
+
+<h1 class="topictitle1">Discarded Kubernetes Resource</h1>
+<div id="body0000001442772685"><div class="section" id="cce_10_0440__section452111525415"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0440__p2933344204613">Check whether there are discarded resources in the clusters.</p>
+</div>
+<div class="section" id="cce_10_0440__section2361137184215"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0440__p8936102534212"><strong id="cce_10_0440__b14589501497">Scenario 1: The PodSecurityPolicy resource object has been discarded since clusters of v1.25.</strong></p>
+</div>
+<p id="cce_10_0440__p1632073415428"><span><img id="cce_10_0440__image1032093416422" src="en-us_image_0000001569022901.png"></span></p>
+<p id="cce_10_0440__p1685145004213">Run the <strong id="cce_10_0440__b128525084213">kubectl get psp -A</strong> command in the cluster to obtain the existing PSP object.</p>
+<p id="cce_10_0440__p6505142214718">If these two objects are not used, skip the check. Otherwise, upgrade the corresponding functions to PodSecurity by referring to <a href="cce_10_0465.html">Pod Security</a>.</p>
+<p id="cce_10_0440__p13111452162612"><strong id="cce_10_0440__b32611030131216">Scenario 2: The discarded annotation (tolerate-unready-endpoints) exists in Services in clusters of 1.25 or later.</strong></p>
+<p id="cce_10_0440__p888961032720"><span><img id="cce_10_0440__image94891330162718" src="en-us_image_0000001517903056.png"></span></p>
+<p id="cce_10_0440__p10301546172711">Check whether the Service in the log information contains the annotation <strong id="cce_10_0440__b11267163771713">tolerate-unready-endpoints</strong>. If yes, delete the annotation and add the following field to the spec of the corresponding Service to replace the annotation:</p>
+<pre class="screen" id="cce_10_0440__screen1075213587913">publishNotReadyAddresses: true</pre>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0441.html b/docs/cce/umn/cce_10_0441.html
new file mode 100644
index 00000000..fecf4a91
--- /dev/null
+++ b/docs/cce/umn/cce_10_0441.html
@@ -0,0 +1,90 @@
+<a name="cce_10_0441"></a><a name="cce_10_0441"></a>
+
+<h1 class="topictitle1">Compatibility Risk</h1>
+<div id="body0000001442652725"><div class="section" id="cce_10_0441__section02471314164418"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0441__p15464201194">Read the version compatibility differences and ensure that they are not affected.</p>
+<p id="cce_10_0441__p13467204916">The patch upgrade does not involve version compatibility differences.</p>
+</div>
+<div class="section" id="cce_10_0441__section191131551162610"><h4 class="sectiontitle">Version compatibility</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0441__table117860195275" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0441__row5786131912271"><th align="left" class="cellrowborder" valign="top" width="12.6%" id="mcps1.3.2.2.1.4.1.1"><p id="cce_10_0441__p664432214415">Major Version Upgrade Path</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="42.370000000000005%" id="mcps1.3.2.2.1.4.1.2"><p id="cce_10_0441__p1778611912715">Precaution</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="45.03%" id="mcps1.3.2.2.1.4.1.3"><p id="cce_10_0441__p1378618194277">Self-Check</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0441__row976811212456"><td class="cellrowborder" rowspan="3" valign="top" width="12.6%" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p995916289455">Upgrade from v1.19 to v1.21 or v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p183801149459">The bug of <strong id="cce_10_0441__b86861939101812">exec probe timeouts</strong> is fixed in Kubernetes 1.21. Before this bug fix, the exec probe does not consider the <strong id="cce_10_0441__b146861039131819">timeoutSeconds</strong> field. Instead, the probe will run indefinitely, even beyond its configured deadline. It will stop until the result is returned. If this field is not specified, the default value <strong id="cce_10_0441__b610915315181">1</strong> is used. This field takes effect after the upgrade. If the probe runs over 1 second, the application health check may fail and the application may restart frequently.</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.2.2.1.4.1.3 "><p id="cce_10_0441__p1638021424519">Before the upgrade, check whether the timeout is properly set for the exec probe.</p>
+</td>
+</tr>
+<tr id="cce_10_0441__row129432109456"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p11380131412451">kube-apiserver of CCE 1.19 or later requires that the Subject Alternative Names (SANs) field be configured for the certificate of your webhook server. Otherwise, kube-apiserver fails to call the webhook server after the upgrade, and containers cannot be started properly.</p>
+<p id="cce_10_0441__p3380181414515">Root cause: X.509 <a href="https://golang.google.cn/doc/go1.15#commonname" target="_blank" rel="noopener noreferrer">CommonName</a> is discarded in Go 1.15. kube-apiserver of CCE 1.19 is compiled using Go 1.15. If your webhook certificate does not have SANs, kube-apiserver does not process the <strong id="cce_10_0441__b162656813191">CommonName</strong> field of the X.509 certificate as the host name by default. As a result, the authentication fails.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p838171454512">Before the upgrade, check whether the SAN field is configured in the certificate of your webhook server.</p>
+<ul id="cce_10_0441__ul6381101434513"><li id="cce_10_0441__li10381131494516">If you do not have your own webhook server, you can skip this check.</li><li id="cce_10_0441__li20381191424513">If the field is not set, you are advised to use the SAN field to specify the IP address and domain name supported by the certificate.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0441__row1734771104518"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p238131414512">Arm nodes are not supported in clusters of v1.21 and later.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p183811914104513">Check whether your services will be affected if Arm nodes cannot be used.</p>
+</td>
+</tr>
+<tr id="cce_10_0441__row37702011134510"><td class="cellrowborder" rowspan="4" valign="top" width="12.6%" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p16885172015465">Upgrade from v1.15 to v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p1332891194611">The control plane of in the clusters v1.19 is incompatible with kubelet v1.15. If a node fails to be upgraded or the node to be upgraded restarts after the master node is successfully upgraded, there is a high probability that the node is in the <strong id="cce_10_0441__b193267468461">NotReady</strong> status.</p>
+<p id="cce_10_0441__p163281511144611">This is because the node failed to be upgraded restarts the kubelet and trigger the node registration. In clusters of v1.15, the default registration tags (<strong id="cce_10_0441__b5465105005717">failure-domain.beta.kubernetes.io/is-baremetal</strong> and <strong id="cce_10_0441__b116615544571">kubernetes.io/availablezone</strong>) are regarded as invalid tags by the clusters of v1.19.</p>
+<p id="cce_10_0441__p13281811164612">The valid tags in the clusters of v1.19 are <strong id="cce_10_0441__b15869006595">node.kubernetes.io/baremetal</strong> and <strong id="cce_10_0441__b1175114155919">failure-domain.beta.kubernetes.io/zone</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.2.2.1.4.1.3 "><ol id="cce_10_0441__ol6328121174611"><li id="cce_10_0441__li6328131194611">In normal cases, this scenario is not triggered.</li><li id="cce_10_0441__li63281311194611">After the master node is upgraded, do not suspend the upgrade so the node can be quickly upgraded.</li><li id="cce_10_0441__li1632821114619">If a node fails to be upgraded and cannot be restored, evict applications on the node as soon as possible. Contact technical support and skip the node upgrade. After the upgrade is complete, reset the node.</li></ol>
+</td>
+</tr>
+<tr id="cce_10_0441__row71567126452"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p1432891124613">In CCE 1.15 and 1.19 clusters, the Docker storage driver file system is switched from XFS to Ext4. As a result, the import package sequence in the pods of the upgraded Java application may be abnormal, causing pod exceptions.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p18328111174613">Before the upgrade, check the Docker configuration file <strong id="cce_10_0441__b498792613320">/etc/docker/daemon.json</strong> on the node. Check whether the value of <strong id="cce_10_0441__b37311429335">dm.fs</strong> is <strong id="cce_10_0441__b67319291134">xfs</strong>.</p>
+<ul id="cce_10_0441__ul18328141164618"><li id="cce_10_0441__li1832871134620">If the value is <strong id="cce_10_0441__b1752883412317">ext4</strong> or the storage driver is Overlay, you can skip the next steps.</li><li id="cce_10_0441__li183281311114620">If the value is <strong id="cce_10_0441__b3155153819316">xfs</strong>, you are advised to deploy applications in the cluster of the new version in advance to test whether the applications are compatible with the new cluster version.</li></ul>
+<pre class="screen" id="cce_10_0441__screen20328211104610">{
+      "storage-driver": "devicemapper",
+      "storage-opts": [
+      "dm.thinpooldev=/dev/mapper/vgpaas-thinpool",
+      "dm.use_deferred_removal=true",
+      "dm.fs=xfs",
+      "dm.use_deferred_deletion=true"
+      ]
+}</pre>
+</td>
+</tr>
+<tr id="cce_10_0441__row1456761216454"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p732916111466">kube-apiserver of CCE 1.19 or later requires that the Subject Alternative Names (SANs) field be configured for the certificate of your webhook server. Otherwise, kube-apiserver fails to call the webhook server after the upgrade, and containers cannot be started properly.</p>
+<p id="cce_10_0441__p16329131117466">Root cause: X.509 <a href="https://golang.google.cn/doc/go1.15#commonname" target="_blank" rel="noopener noreferrer">CommonName</a> is discarded in Go 1.15. kube-apiserver of CCE 1.19 is compiled using Go 1.15. The <strong id="cce_10_0441__b77225587315">CommonName</strong> field is processed as the host name. As a result, the authentication fails.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p532981113466">Before the upgrade, check whether the SAN field is configured in the certificate of your webhook server.</p>
+<ul id="cce_10_0441__ul03291711184620"><li id="cce_10_0441__li163292113465">If you do not have your own webhook server, you can skip this check.</li><li id="cce_10_0441__li15329111194610">If the field is not set, you are advised to use the SAN field to specify the IP address and domain name supported by the certificate.</li></ul>
+<div class="notice" id="cce_10_0441__note13297117462"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0441__p14329151154616">To mitigate the impact of version differences on cluster upgrade, CCE performs special processing during the upgrade from 1.15 to 1.19 and still supports certificates without SANs. However, no special processing is required for subsequent upgrades. You are advised to rectify your certificate as soon as possible.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0441__row109371087465"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p532919114464">In clusters of v1.17.17 and later, CCE automatically creates pod security policies (PSPs) for you, which restrict the creation of pods with unsafe configurations, for example, pods for which <strong id="cce_10_0441__b214815160419">net.core.somaxconn</strong> under a sysctl is configured in the security context.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p14329131144614">After an upgrade, you can allow insecure system configurations as required. For details, see <a href="cce_10_0275.html">Configuring a Pod Security Policy</a>.</p>
+</td>
+</tr>
+<tr id="cce_10_0441__row1635249104620"><td class="cellrowborder" valign="top" width="12.6%" headers="mcps1.3.2.2.1.4.1.1 "><p id="cce_10_0441__p1535484014613">Upgrade from v1.13 to v1.15</p>
+</td>
+<td class="cellrowborder" valign="top" width="42.370000000000005%" headers="mcps1.3.2.2.1.4.1.2 "><p id="cce_10_0441__p1887274811466">After a VPC network cluster is upgraded, the master node occupies an extra CIDR block due to the upgrade of network components. If no container CIDR block is available for the new node, the pod scheduled to the node cannot run.</p>
+</td>
+<td class="cellrowborder" valign="top" width="45.03%" headers="mcps1.3.2.2.1.4.1.3 "><p id="cce_10_0441__p1487219485469">This problem occurs when almost all CIDR blocks are occupied. For example, the container CIDR block is 10.0.0.0/16, the number of available IP addresses is 65,536, and the VPC network is allocated a CIDR block with the fixed size (using the mask to determine the maximum number of container IP addresses allocated to each node). If the upper limit is 128, the cluster supports a maximum of 512 (65536/128) nodes, including the three master nodes. After the cluster is upgraded, each of the three master nodes occupies one CIDR block. As a result, 506 nodes are supported.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0442.html b/docs/cce/umn/cce_10_0442.html
new file mode 100644
index 00000000..f76b8dfe
--- /dev/null
+++ b/docs/cce/umn/cce_10_0442.html
@@ -0,0 +1,26 @@
+<a name="cce_10_0442"></a><a name="cce_10_0442"></a>
+
+<h1 class="topictitle1">Node CCEAgent Version</h1>
+<div id="body0000001392253954"><div class="section" id="cce_10_0442__section02471314164418"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0442__p2861201514153">Check whether cce-agent on the current node is of the latest version.</p>
+</div>
+<div class="section" id="cce_10_0442__section17382153594420"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0442__p18341119121520">If cce-agent is not of the latest version, the automatic update fails. This problem is usually caused by invalid OBS address or the version of the component is outdated.</p>
+<ol id="cce_10_0442__ol182471115124515"><li id="cce_10_0442__li749413516455"><span>Log in to a normal node that passes the check, obtain the path of the cce-agent configuration file, and check the OBS address.</span><p><pre class="screen" id="cce_10_0442__screen1266961719468">cat `ps aux | grep cce-agent | grep -v grep | awk -F '-f ''{print $2}'`</pre>
+<p id="cce_10_0442__p18473121313413">The OBS configuration address field in the configuration file is <strong id="cce_10_0442__b871465314111">packageFrom.addr</strong>.</p>
+<p id="cce_10_0442__p8461918193217"><span><img id="cce_10_0442__image133529113349" src="en-us_image_0000001629186693.png"></span></p>
+</p></li><li id="cce_10_0442__li1824731524518"><span>Log in to an abnormal node where the check fails, obtain the OBS address again by referring to the previous step, and check whether the OBS address is consistent. If they are different, change the OBS address of the abnormal node to the correct address.</span></li><li id="cce_10_0442__li93881413171917"><span>Run the following commands to download the latest binary file:</span><p><ul id="cce_10_0442__ul1931116744811"><li id="cce_10_0442__li669181610481">ARM<pre class="screen" id="cce_10_0442__screen15257133511485">curl -k "https://{<em id="cce_10_0442__i67081414146">OBS address you have obtained</em>}/cluster-versions/base/cce-agent-arm" &gt; /tmp/cce-agent-arm</pre>
+</li></ul>
+</p></li><li id="cce_10_0442__li19619204910416"><span>Replace the original cce-agent binary file.</span><p><ul id="cce_10_0442__ul8332201194914"><li id="cce_10_0442__li136481912104915">ARM<pre class="screen" id="cce_10_0442__screen733981813492">mv -f /tmp/cce-agent-arm /usr/local/bin/cce-agent-arm
+chmod 750 /usr/local/bin/cce-agent-arm
+chown root:root /usr/local/bin/cce-agent-arm</pre>
+</li></ul>
+</p></li><li id="cce_10_0442__li523254615425"><span>Restart cce-agent.</span><p><pre class="screen" id="cce_10_0442__screen16273126134913">systemctl restart cce-agent</pre>
+<p id="cce_10_0442__p1123611165141">If you have any questions about the preceding operations, contact technical support.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0443.html b/docs/cce/umn/cce_10_0443.html
new file mode 100644
index 00000000..25de7bab
--- /dev/null
+++ b/docs/cce/umn/cce_10_0443.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0443"></a><a name="cce_10_0443"></a>
+
+<h1 class="topictitle1">Node CPU Usage</h1>
+<div id="body0000001392413478"><div class="section" id="cce_10_0443__section10131847104917"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0443__p321195515155">Check whether the CPU usage of the node exceeds 90%.</p>
+</div>
+<div class="section" id="cce_10_0443__section1184817616502"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0443__ul1579011319366"><li id="cce_10_0443__li182171756388"><strong id="cce_10_0443__b83491855113512">Upgrade the cluster during off-peak hours.</strong></li><li id="cce_10_0443__li2790143115368">Check whether too many pods are deployed on the node. If yes, reschedule pods to other idle nodes.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0444.html b/docs/cce/umn/cce_10_0444.html
new file mode 100644
index 00000000..8bba4c72
--- /dev/null
+++ b/docs/cce/umn/cce_10_0444.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0444"></a><a name="cce_10_0444"></a>
+
+<h1 class="topictitle1">CRD Check</h1>
+<div id="body0000001442412953"><div class="section" id="cce_10_0444__section11962185916508"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0444__p321195515155">Check the following aspects:</p>
+<ul id="cce_10_0444__ul419914124164"><li id="cce_10_0444__li7487191111576">Check whether the key CRD <strong id="cce_10_0444__b747175931616">packageversions.version.cce.io</strong> of the cluster is deleted.</li><li id="cce_10_0444__li10951173491510">Check whether the cluster key CRD <strong id="cce_10_0444__b73319108179">network-attachment-definitions.k8s.cni.cncf.io</strong> is deleted.</li></ul>
+</div>
+<div class="section" id="cce_10_0444__section20710519205113"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0444__p11279151181614">If check results are abnormal, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0445.html b/docs/cce/umn/cce_10_0445.html
new file mode 100644
index 00000000..c4d17ce3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0445.html
@@ -0,0 +1,24 @@
+<a name="cce_10_0445"></a><a name="cce_10_0445"></a>
+
+<h1 class="topictitle1">Node Disk</h1>
+<div id="body0000001392253032"><div class="section" id="cce_10_0445__section538415161524"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0445__p321195515155">Check the following aspects:</p>
+<ul id="cce_10_0445__ul419914124164"><li id="cce_10_0445__li7487191111576">Check whether the key data disks on the node meet the upgrade requirements.</li><li id="cce_10_0445__li18768031175711">Check whether the <strong id="cce_10_0445__b1128216151819">/tmp</strong> directory has 500 MB available space.</li></ul>
+</div>
+<div class="section" id="cce_10_0445__section1474192815210"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0445__p1530074865718">During the node upgrade, the key disks store the upgrade component package, and the <strong id="cce_10_0445__b18393144211184">/tmp</strong> directory stores temporary files.</p>
+</div>
+<ul id="cce_10_0445__ul1698842748"><li id="cce_10_0445__li85971437115212"><strong id="cce_10_0445__b198392325102">Scenario 1: Check whether the disk meets the upgrade requirements.</strong><p id="cce_10_0445__p1249716414521">Run the following command to check the usage of each key disk. After ensuring that the available space meets the requirements and check again. If the space of the master node is insufficient, contact technical support.</p>
+<ul id="cce_10_0445__ul6804131345320"><li id="cce_10_0445__li1448353815316">Disk partition of Docker: 2 GB for master nodes and 1 GB for worker nodes<pre class="screen" id="cce_10_0445__screen1678774111538">df -h /var/lib/docker</pre>
+</li><li id="cce_10_0445__li14581104355311">Disk partition of containerd: 2 GB for master nodes and 1 GB for worker nodes<pre class="screen" id="cce_10_0445__screen17243846155315">df -h /var/lib/containerd</pre>
+</li><li id="cce_10_0445__li159817485539">Disk partition of kubelet: 2 GB for master nodes and 1 GB for worker nodes<pre class="screen" id="cce_10_0445__screen1180715117534">df -h /var/lib/docker</pre>
+</li><li id="cce_10_0445__li77351653165320">System disk: 10 GB for master nodes and 2 GB for worker nodes<pre class="screen" id="cce_10_0445__screen1382459115317">df -h /</pre>
+</li></ul>
+</li><li id="cce_10_0445__li12597123712524"><strong id="cce_10_0445__b1366415919521">Scenario 2: The /tmp directory space is insufficient.</strong><p id="cce_10_0445__p169686463527">Run the following command to check the space usage of the file system where the /tmp directory is located. Ensure that the space is greater than 500 MB and check again.</p>
+<pre class="screen" id="cce_10_0445__screen85402517547">df -h /tmp</pre>
+</li></ul>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0446.html b/docs/cce/umn/cce_10_0446.html
new file mode 100644
index 00000000..048fb378
--- /dev/null
+++ b/docs/cce/umn/cce_10_0446.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0446"></a><a name="cce_10_0446"></a>
+
+<h1 class="topictitle1">Node DNS</h1>
+<div id="body0000001392133068"><div class="section" id="cce_10_0446__section7323124417546"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0446__p321195515155">Check the following aspects:</p>
+<ul id="cce_10_0446__ul419914124164"><li id="cce_10_0446__li15855291891">Check whether the DNS configuration of the current node can resolve the OBS address.</li><li id="cce_10_0446__li31994128165">Check whether the current node can access the OBS address of the storage upgrade component package.</li></ul>
+</div>
+<div class="section" id="cce_10_0446__section112795645412"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0446__p661762815511">During the node upgrade, you need to obtain the upgrade component package from OBS. If this check fails, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0447.html b/docs/cce/umn/cce_10_0447.html
new file mode 100644
index 00000000..a9a81d05
--- /dev/null
+++ b/docs/cce/umn/cce_10_0447.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0447"></a><a name="cce_10_0447"></a>
+
+<h1 class="topictitle1">Node Key Directory File Permissions</h1>
+<div id="body0000001442493109"><div class="section" id="cce_10_0447__section1249107165514"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0447__p263771514555">Check whether the key directory <strong id="cce_10_0447__b53969463245">/var/paas</strong> on the nodes contain files with abnormal owners or owner groups.</p>
+</div>
+<div class="section" id="cce_10_0447__section77761310175513"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0447__p661762815511">CCE uses the <strong id="cce_10_0447__b412665913245">/var/paas</strong> directory to manage nodes and store file data whose owner and owner group are both paas.</p>
+<p id="cce_10_0447__p5585618164912">During the current cluster upgrade, the owner and owner group of the files in the <strong id="cce_10_0447__b17971136182520">/var/paas</strong> directory are reset to paas.</p>
+<p id="cce_10_0447__p3371623174817">Check whether file data is stored in the <strong id="cce_10_0447__b1771144919254">/var/paas</strong> directory. If yes, do not use this directory, remove abnormal files from this directory, and check again. Otherwise, the upgrade is prohibited.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0448.html b/docs/cce/umn/cce_10_0448.html
new file mode 100644
index 00000000..33ab136d
--- /dev/null
+++ b/docs/cce/umn/cce_10_0448.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0448"></a><a name="cce_10_0448"></a>
+
+<h1 class="topictitle1">Kubelet</h1>
+<div id="body0000001442772689"><div class="section" id="cce_10_0448__section696875418551"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0448__p27076479552">Check whether the kubelet on the node is running properly.</p>
+</div>
+<div class="section" id="cce_10_0448__section10591195810550"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0448__ul129151053174618"><li id="cce_10_0448__li109151353184617"><strong id="cce_10_0448__b20144713104514">Scenario 1: The kubelet status is abnormal.</strong><p id="cce_10_0448__p56083471425">If the kubelet is abnormal, the node is unavailable. Restore the node by following the instructions provided in  and check again.</p>
+</li><li id="cce_10_0448__li1030210423169"><strong id="cce_10_0448__b195183123810">Scenario 2: The cce-pause version is abnormal.</strong><p id="cce_10_0448__p174461085552">The version of the pause container image on which kubelet depends is not cce-pause:3.1. If you continue the upgrade, pods will restart in batches. Currently, the upgrade is not supported. Contact technical support.</p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0449.html b/docs/cce/umn/cce_10_0449.html
new file mode 100644
index 00000000..c7a63119
--- /dev/null
+++ b/docs/cce/umn/cce_10_0449.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0449"></a><a name="cce_10_0449"></a>
+
+<h1 class="topictitle1">Node Memory</h1>
+<div id="body0000001442652729"><div class="section" id="cce_10_0449__section83246499566"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0449__p321195515155">Check whether the memory usage of the node exceeds 90%.</p>
+</div>
+<div class="section" id="cce_10_0449__section19491725578"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0449__ul1579011319366"><li id="cce_10_0449__li182171756388"><strong id="cce_10_0449__b83491855113512">Upgrade the cluster during off-peak hours.</strong></li><li id="cce_10_0449__li2790143115368">Check whether too many pods are deployed on the node. If yes, reschedule pods to other idle nodes.</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0450.html b/docs/cce/umn/cce_10_0450.html
new file mode 100644
index 00000000..8bf36073
--- /dev/null
+++ b/docs/cce/umn/cce_10_0450.html
@@ -0,0 +1,22 @@
+<a name="cce_10_0450"></a><a name="cce_10_0450"></a>
+
+<h1 class="topictitle1">Node Clock Synchronization Server</h1>
+<div id="body0000001392253958"><div class="section" id="cce_10_0450__section1138613535147"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0450__p1870701016158">Check whether the clock synchronization server ntpd or chronyd of the node is running properly.</p>
+</div>
+<div class="section" id="cce_10_0450__section0998115171511"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0450__ul564183261510"><li id="cce_10_0450__li166411032101514"><strong id="cce_10_0450__b119217465151">Scenario 1: ntpd is running abnormally.</strong><p id="cce_10_0450__p8590236181515">Log in to the node and run the <strong id="cce_10_0450__b10950852795">systemctl status ntpd</strong> command to query the running status of ntpd. If the command output is abnormal, run the <strong id="cce_10_0450__b131915553919">systemctl restart ntpd</strong> command and query the status again.</p>
+<p id="cce_10_0450__p4590133661514">The normal command output is as follows:</p>
+<p id="cce_10_0450__p1659043691512"><span><img id="cce_10_0450__image15831112142415" src="en-us_image_0000001568902509.png"></span></p>
+<p id="cce_10_0450__p1659023601520">If the problem persists after ntpd is restarted, contact technical support.</p>
+</li><li id="cce_10_0450__li17641532181516"><strong id="cce_10_0450__b1097475110156">Scenario 2: chronyd is running abnormally.</strong><p id="cce_10_0450__p01991041131516">Log in to the node and run the <strong id="cce_10_0450__b761512591599">systemctl status chronyd</strong> command to query the running status of chronyd. If the command output is abnormal, run the <strong id="cce_10_0450__b1283915119106">systemctl restart chronyd</strong> command and query the status again.</p>
+<p id="cce_10_0450__p8199541171510">The normal command output is as follows:</p>
+<p id="cce_10_0450__p1119954118157"><span><img id="cce_10_0450__image9248173318281" src="en-us_image_0000001518062624.png"></span></p>
+<p id="cce_10_0450__p13199941151513">If the problem persists after chronyd is restarted, contact technical support.</p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0451.html b/docs/cce/umn/cce_10_0451.html
new file mode 100644
index 00000000..5085fc9b
--- /dev/null
+++ b/docs/cce/umn/cce_10_0451.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0451"></a><a name="cce_10_0451"></a>
+
+<h1 class="topictitle1">Node OS</h1>
+<div id="body0000001392413482"><div class="section" id="cce_10_0451__section535865817178"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0451__p321195515155">Check whether the OS kernel version of the node is supported by CCE.</p>
+</div>
+<div class="section" id="cce_10_0451__section1166823141811"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0451__p91111756181819">Running nodes depend on the initial standard kernel version when they are created. CCE has performed comprehensive compatibility tests based on this kernel version. A non-standard kernel version may cause unexpected compatibility issues during node upgrade and the node upgrade may fail. For details, see <a href="cce_10_0054.html">High-Risk Operations and Solutions</a>.</p>
+<p id="cce_10_0451__p37038434419">Currently, this type of nodes should not be upgraded. You are advised to reset the node to the standard kernel version before the upgrade by following the instructions in <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0452.html b/docs/cce/umn/cce_10_0452.html
new file mode 100644
index 00000000..13004fc2
--- /dev/null
+++ b/docs/cce/umn/cce_10_0452.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0452"></a><a name="cce_10_0452"></a>
+
+<h1 class="topictitle1">Node CPU Count</h1>
+<div id="body0000001442412957"><div class="section" id="cce_10_0452__section0617132211218"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0452__p321195515155">Check whether the number of CPUs on the master node is greater than 2.</p>
+</div>
+<div class="section" id="cce_10_0452__section426012117229"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0452__p1890915305588">If the number of CPUs on the master node is 2, contact technical support to expand the number to 4 or more.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0453.html b/docs/cce/umn/cce_10_0453.html
new file mode 100644
index 00000000..d7a9670e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0453.html
@@ -0,0 +1,18 @@
+<a name="cce_10_0453"></a><a name="cce_10_0453"></a>
+
+<h1 class="topictitle1">Node Python Command</h1>
+<div id="body0000001392253036"><div class="section" id="cce_10_0453__section895718513223"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0453__p321195515155">Check whether the Python commands are available on a node.</p>
+</div>
+<div class="section" id="cce_10_0453__section122623290238"><h4 class="sectiontitle">Check Method</h4><pre class="screen" id="cce_10_0453__screen11506173510231">/usr/bin/python --version
+echo $?</pre>
+<p id="cce_10_0453__p195894752019">If the command output is not 0, the check fails.</p>
+</div>
+<div class="section" id="cce_10_0453__section209489126236"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0453__p19270184512220">Install Python before the upgrade.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0455.html b/docs/cce/umn/cce_10_0455.html
new file mode 100644
index 00000000..2c4b9f43
--- /dev/null
+++ b/docs/cce/umn/cce_10_0455.html
@@ -0,0 +1,18 @@
+<a name="cce_10_0455"></a><a name="cce_10_0455"></a>
+
+<h1 class="topictitle1">Node Readiness</h1>
+<div id="body0000001392255538"><div class="section" id="cce_10_0455__section4309457255"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0455__p0322285235">Check whether the nodes in the cluster are ready.</p>
+</div>
+<div class="section" id="cce_10_0455__section5587191111250"><h4 class="sectiontitle">Solution</h4><ul id="cce_10_0455__ul1254752813010"><li id="cce_10_0455__li125471289011"><strong id="cce_10_0455__b136464311108">Scenario 1: The nodes are in the unavailable status.</strong><p id="cce_10_0455__p104591241183510">Log in to the CCE console and access the cluster console. Choose <strong id="cce_10_0455__b19509199144815">Nodes</strong> in the navigation pane and filter out unavailable nodes, rectify the faulty nodes by referring to the suggestions provided by the console, and check again.</p>
+</li></ul>
+<ul id="cce_10_0455__ul864414351701"><li id="cce_10_0455__li664410358018"><strong id="cce_10_0455__b1241415401822">Scenario 2: The displayed node status is inconsistent with the actual status.</strong><p id="cce_10_0455__p1218844617444">The possible causes are as follows:</p>
+<ol id="cce_10_0455__ol138010403014"><li id="cce_10_0455__li1880204010017">The node status is normal on the nodes page, but the check result shows that the node is not ready. Check again.</li><li id="cce_10_0455__li6802104011014">The node is not found on the nodes page, but the check result shows that the node is in the cluster. Contact technical support.</li></ol>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0456.html b/docs/cce/umn/cce_10_0456.html
new file mode 100644
index 00000000..1e36983f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0456.html
@@ -0,0 +1,17 @@
+<a name="cce_10_0456"></a><a name="cce_10_0456"></a>
+
+<h1 class="topictitle1">Node journald</h1>
+<div id="body0000001392415062"><div class="section" id="cce_10_0456__section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0456__p12632171523915">Check whether journald of a node is normal.</p>
+</div>
+<div class="section" id="cce_10_0456__section14292182710397"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0456__p8590236181515">Log in to the node and run the <strong id="cce_10_0456__b49510214813">systemctl is-active systemd-journald</strong> command to query the running status of journald. If the command output is abnormal, run the <strong id="cce_10_0456__b18729891713">systemctl restart systemd-journald</strong> command and query the status again.</p>
+<p id="cce_10_0456__p4590133661514">The normal command output is as follows:</p>
+<p id="cce_10_0456__p1659043691512"><span><img id="cce_10_0456__image36491643151919" src="en-us_image_0000001517903128.png"></span></p>
+<p id="cce_10_0456__p1659023601520">If the problem persists after journald is restarted, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0457.html b/docs/cce/umn/cce_10_0457.html
new file mode 100644
index 00000000..7c86849c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0457.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0457"></a><a name="cce_10_0457"></a>
+
+<h1 class="topictitle1">containerd.sock Check</h1>
+<div id="body0000001442774261"><div class="section" id="cce_10_0457__section9430173019423"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0457__p6857185644115">Check whether the containerd.sock file exists on the node. This file affects the startup of container runtime in the Euler OS.</p>
+</div>
+<div class="section" id="cce_10_0457__section1616565816422"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0457__p12347102917421"><strong id="cce_10_0457__b5699185394219">Scenario: The Docker used by the node is the customized Euler-docker.</strong></p>
+<ol id="cce_10_0457__ol13752184114315"><li id="cce_10_0457__li178011304317"><span>Log in to the node.</span></li><li id="cce_10_0457__li27521404314"><span>Run the <strong id="cce_10_0457__b14202152415431">rpm -qa | grep docker | grep euleros</strong> command. If the command output is not empty, the Docker used on the node is Euler-docker.</span></li><li id="cce_10_0457__li3752164174317"><span>Run the <strong id="cce_10_0457__b82211046124314">ls /run/containerd/containerd.sock</strong> command. If the file exists, Docker fails to be started.</span></li><li id="cce_10_0457__li14752124154319"><span>Run the <strong id="cce_10_0457__b75501465445">rm -rf /run/containerd/containerd.sock</strong> command and perform the cluster upgrade check again.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0458.html b/docs/cce/umn/cce_10_0458.html
new file mode 100644
index 00000000..6ab0018a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0458.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0458"></a><a name="cce_10_0458"></a>
+
+<h1 class="topictitle1">Internal Error</h1>
+<div id="body0000001442654321"><div class="section" id="cce_10_0458__section2069913581447"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0458__p16105382453">Before the upgrade, check whether an internal error occurs.</p>
+</div>
+<div class="section" id="cce_10_0458__section162661321104510"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0458__p1866524104512">If this check fails, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0459.html b/docs/cce/umn/cce_10_0459.html
new file mode 100644
index 00000000..8d59f255
--- /dev/null
+++ b/docs/cce/umn/cce_10_0459.html
@@ -0,0 +1,22 @@
+<a name="cce_10_0459"></a><a name="cce_10_0459"></a>
+
+<h1 class="topictitle1">Node Mount Point</h1>
+<div id="body0000001392574642"><div class="section" id="cce_10_0459__section3864119472"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0459__p6857185644115">Check whether inaccessible mount points exist on the node.</p>
+</div>
+<div class="section" id="cce_10_0459__section17171192114478"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0459__p12347102917421"><strong id="cce_10_0459__b13455338104711">Scenario: There are inaccessible mount points on the node.</strong></p>
+<p id="cce_10_0459__p4758132612331">If network NFS (such as OBS, SFS, and SFS) is used by the node and the node is disconnected with the NFS server, the mount point would be inaccessible and all processes that access this mount point are suspended.</p>
+<ol id="cce_10_0459__ol128313612273"><li id="cce_10_0459__li14354104216277"><span>Log in to the node.</span></li><li id="cce_10_0459__li38310365270"><span>Run the following commands on the node in sequence:</span><p><pre class="screen" id="cce_10_0459__screen6122195717476">- df -h
+- for dir in `df -h | grep -v "Mounted on" | awk "{print \\$NF}"`;do cd $dir; done &amp;&amp; echo "ok"</pre>
+</p></li><li id="cce_10_0459__li98320364277"><span>If <strong id="cce_10_0459__b156221647152018">ok</strong> is returned, no problem occurs.</span><p><div class="p" id="cce_10_0459__p4560185262711">Otherwise, start another terminal and run the following command to check whether the previous command is in the D state:<pre class="screen" id="cce_10_0459__screen7287383200">- ps aux | grep "D "</pre>
+</div>
+</p></li><li id="cce_10_0459__li1283133614279"><span>If a process is in the D state, the problem occurs.You can only reset the node to solve the problem. Reset the node and upgrade the cluster again. For details about how to reset a node, see <a href="cce_10_0003.html">Resetting a Node</a>.</span><p><div class="note" id="cce_10_0459__note145269352413"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0459__p1043323053519">Resetting a node will reset all node labels, which may affect workload scheduling. Before resetting a node, check and retain the labels that you have manually added to the node.</p>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0460.html b/docs/cce/umn/cce_10_0460.html
new file mode 100644
index 00000000..c3851634
--- /dev/null
+++ b/docs/cce/umn/cce_10_0460.html
@@ -0,0 +1,34 @@
+<a name="cce_10_0460"></a><a name="cce_10_0460"></a>
+
+<h1 class="topictitle1">Kubernetes Node Taint</h1>
+<div id="body0000001421540694"><div class="section" id="cce_10_0460__section4114162915484"><h4 class="sectiontitle">Check Item</h4><div class="p" id="cce_10_0460__p12867143304817">Check whether the taint, as shown in <a href="#cce_10_0460__table1126154011128">Table 1</a>, exists on the node.
+<div class="tablenoborder"><a name="cce_10_0460__table1126154011128"></a><a name="table1126154011128"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0460__table1126154011128" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Taint checklist</caption><thead align="left"><tr id="cce_10_0460__row22744011127"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.2.2.2.3.1.1"><p id="cce_10_0460__p13276406121">Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.2.2.2.3.1.2"><p id="cce_10_0460__p162754014120">Impact</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0460__row12271140101216"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.2.2.2.3.1.1 "><p id="cce_10_0460__p1027114013124">node.kubernetes.io/upgrade</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.2.2.2.3.1.2 "><p id="cce_10_0460__p92754021217">NoSchedule</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div class="section" id="cce_10_0460__section1881014184913"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0460__p794253010297">Scenario 1: The node is skipped during the cluster upgrade.</p>
+<ol id="cce_10_0460__ol178220196494"><li id="cce_10_0460__li540162154917"><span>For details about how to configure kubectl, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0460__li1178291934910"><span>Check the kubelet version of the corresponding node. If the following information is expected:</span><p><p id="cce_10_0460__p181990121633"><span><img id="cce_10_0460__image177931712637" src="en-us_image_0000001568902601.png"></span></p>
+<p id="cce_10_0460__p777864971316">If the version of the node is different from that of other nodes, the node is skipped during the upgrade. Reset the node and upgrade the cluster again. For details about how to reset a node, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+<div class="note" id="cce_10_0460__note145269352413"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0460__p1043323053519">Resetting a node will reset all node labels, which may affect workload scheduling. Before resetting a node, check and retain the labels that you have manually added to the node.</p>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0462.html b/docs/cce/umn/cce_10_0462.html
index a91b6cda..dab6fa72 100644
--- a/docs/cce/umn/cce_10_0462.html
+++ b/docs/cce/umn/cce_10_0462.html
@@ -52,6 +52,18 @@
 <td class="cellrowborder" valign="top" width="15.32%" headers="mcps1.3.2.2.2.6.1.5 "><p id="cce_10_0462__p161312057089">runC</p>
 </td>
 </tr>
+<tr id="cce_10_0462__row978215434455"><td class="cellrowborder" valign="top" width="23.34%" headers="mcps1.3.2.2.2.6.1.1 "><p id="cce_10_0462__p17755508451">Ubuntu 22.04</p>
+</td>
+<td class="cellrowborder" valign="top" width="11.87%" headers="mcps1.3.2.2.2.6.1.2 "><p id="cce_10_0462__p37615074519">4.x</p>
+</td>
+<td class="cellrowborder" valign="top" width="15%" headers="mcps1.3.2.2.2.6.1.3 "><p id="cce_10_0462__p77620503456">Docker</p>
+<p id="cce_10_0462__p9381925184614">containerd</p>
+</td>
+<td class="cellrowborder" valign="top" width="34.47%" headers="mcps1.3.2.2.2.6.1.4 "><p id="cce_10_0462__p19761350184517">OverlayFS</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.32%" headers="mcps1.3.2.2.2.6.1.5 "><p id="cce_10_0462__p147615064510">runC</p>
+</td>
+</tr>
 </tbody>
 </table>
 </div>
@@ -70,10 +82,12 @@
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_10_0462__row385510159718"><td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p138551215976">Elastic Cloud Server (VM)</p>
+<tbody><tr id="cce_10_0462__row385510159718"><td class="cellrowborder" rowspan="4" valign="top" width="16.16%" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p138551215976">Elastic Cloud Server (VM)</p>
+<p id="cce_10_0462__p19304824144614"></p>
+<p id="cce_10_0462__p3361719164615"></p>
+<p id="cce_10_0462__p22013734619"></p>
 </td>
 <td class="cellrowborder" valign="top" width="19.68%" headers="mcps1.3.2.3.2.7.1.2 "><p id="cce_10_0462__p78552151270">CentOS 7.x</p>
-<p id="cce_10_0462__p1120818541420">EulerOS 2.9</p>
 </td>
 <td class="cellrowborder" valign="top" width="14.399999999999999%" headers="mcps1.3.2.3.2.7.1.3 "><p id="cce_10_0462__p17855131519719">3.x</p>
 </td>
@@ -84,17 +98,39 @@
 <td class="cellrowborder" valign="top" width="15.2%" headers="mcps1.3.2.3.2.7.1.6 "><p id="cce_10_0462__p085514150718">runC</p>
 </td>
 </tr>
-<tr id="cce_10_0462__row1485531515716"><td class="cellrowborder" valign="top" width="16.16%" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p198554151379">Elastic Cloud Server (physical machine)</p>
+<tr id="cce_10_0462__row7303924184611"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p18304224184620">EulerOS 2.5</p>
 </td>
-<td class="cellrowborder" valign="top" width="19.68%" headers="mcps1.3.2.3.2.7.1.2 "><p id="cce_10_0462__p1885521519716">EulerOS 2.9</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.2 "><p id="cce_10_0462__p1381714540466">3.x</p>
 </td>
-<td class="cellrowborder" valign="top" width="14.399999999999999%" headers="mcps1.3.2.3.2.7.1.3 "><p id="cce_10_0462__p148551515174">4.x</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.3 "><p id="cce_10_0462__p48172540465">Docker</p>
 </td>
-<td class="cellrowborder" valign="top" width="15.24%" headers="mcps1.3.2.3.2.7.1.4 "><p id="cce_10_0462__p685591513715">containerd</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.4 "><p id="cce_10_0462__p68171954114615">OverlayFS</p>
 </td>
-<td class="cellrowborder" valign="top" width="19.32%" headers="mcps1.3.2.3.2.7.1.5 "><p id="cce_10_0462__p1485511151072">Device Mapper</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.5 "><p id="cce_10_0462__p1681755424619">runC</p>
 </td>
-<td class="cellrowborder" valign="top" width="15.2%" headers="mcps1.3.2.3.2.7.1.6 "><p id="cce_10_0462__p485519152719">Kata</p>
+</tr>
+<tr id="cce_10_0462__row153681915463"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p1436019174615">EulerOS 2.9</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.2 "><p id="cce_10_0462__p55391791484">4.x</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.3 "><p id="cce_10_0462__p653979154816">Docker</p>
+<p id="cce_10_0462__p195398984812">Clusters of v1.23 and later support containerd.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.4 "><p id="cce_10_0462__p1400155717464">OverlayFS</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.5 "><p id="cce_10_0462__p94001557104620">runC</p>
+</td>
+</tr>
+<tr id="cce_10_0462__row3201776461"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.1 "><p id="cce_10_0462__p1620278460">Ubuntu 22.04</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.2 "><p id="cce_10_0462__p1953818321484">4.x</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.3 "><p id="cce_10_0462__p75381732154815">Docker</p>
+<p id="cce_10_0462__p753823284811">containerd</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.4 "><p id="cce_10_0462__p3011362487">OverlayFS</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.7.1.5 "><p id="cce_10_0462__p140136184816">runC</p>
 </td>
 </tr>
 </tbody>
@@ -107,8 +143,10 @@
 </li></ul>
 <p id="cce_10_0462__p94517125362">Although Docker has added functions such as swarm cluster, docker build, and Docker APIs, it also introduces bugs. Compared with containerd, Docker has one more layer of calling. <strong id="cce_10_0462__b1399119182517">Therefore, containerd is more resource-saving and secure.</strong></p>
 </div>
-<div class="section" id="cce_10_0462__section14430187154416"><h4 class="sectiontitle">Container Engine Version Description</h4><ul id="cce_10_0462__ul16192131615441"><li id="cce_10_0462__li147394435210">Docker<ul id="cce_10_0462__ul15372112405214"><li id="cce_10_0462__li191921116174416">EulerOS/CentOS: docker-engine 18.9.0, a Docker version customized for CCE. Security vulnerabilities will be fixed in a timely manner.</li></ul>
-</li><li id="cce_10_0462__li18953141119523">containerd: 1.4.1</li></ul>
+<div class="section" id="cce_10_0462__section14430187154416"><h4 class="sectiontitle">Container Engine Version Description</h4><ul id="cce_10_0462__ul16192131615441"><li id="cce_10_0462__li147394435210">Docker<ul id="cce_10_0462__ul15372112405214"><li id="cce_10_0462__li191921116174416">EulerOS/CentOS: docker 18.9.0, a Docker version customized for CCE. Security vulnerabilities will be fixed in a timely manner.</li><li id="cce_10_0462__li208855301529">Ubuntu 22.04: docker-ce 20.10.21 (community version).</li></ul>
+<div class="note" id="cce_10_0462__note1854021815531"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_10_0462__ul163201377561"><li id="cce_10_0462__li53201378566">You are advised to use the containerd engine for Ubuntu nodes.</li><li id="cce_10_0462__li1532015725613">The open source docker-ce of the Ubuntu 18.04 node may trigger bugs when concurrent exec operations are performed (for example, multiple exec probes are configured). You are advised to use HTTP/TCP probes.</li></ul>
+</div></div>
+</li><li id="cce_10_0462__li18953141119523">containerd: 1.6.14</li></ul>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_10_0468.html b/docs/cce/umn/cce_10_0468.html
index f2fd49d2..2c2092a6 100644
--- a/docs/cce/umn/cce_10_0468.html
+++ b/docs/cce/umn/cce_10_0468.html
@@ -2,12 +2,12 @@
 
 <h1 class="topictitle1">CCE Kubernetes 1.23 Release Notes</h1>
 <div id="body8662426"><p id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_p8060118">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.23.</p>
-<div class="section" id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><p id="cce_10_0468__en-us_topic_0000001212381758_p201411481102"><strong id="cce_10_0468__en-us_topic_0000001212381758_b1544395317457">Changes in CCE 1.23</strong></p>
-<ul id="cce_10_0468__en-us_topic_0000001212381758_ul135518561105"><li id="cce_10_0468__en-us_topic_0000001212381758_li03551856702">The web-terminal add-on is no longer supported. Use CloudShell or kubectl instead.</li></ul>
-<p id="cce_10_0468__en-us_topic_0000001212381758_p1185317533351"><strong id="cce_10_0468__en-us_topic_0000001212381758_b14388042103914">Kubernetes 1.23 Release Notes</strong></p>
+<div class="section" id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><p id="cce_10_0468__en-us_topic_0000001212381758_p201411481102"><strong id="cce_10_0468__b16200103713126">Changes in CCE 1.23</strong></p>
+<ul id="cce_10_0468__en-us_topic_0000001212381758_ul135518561105"><li id="cce_10_0468__en-us_topic_0000001212381758_li03551856702">The web-terminal add-on is no longer supported. Use kubectl instead.</li></ul>
+<p id="cce_10_0468__en-us_topic_0000001212381758_p1185317533351"><strong id="cce_10_0468__b188881239181214">Kubernetes 1.23 Release Notes</strong></p>
 <ul id="cce_10_0468__en-us_topic_0000001212381758_ul14465512152614"><li id="cce_10_0468__en-us_topic_0000001212381758_li194651912162616">FlexVolume is deprecated. Use CSI.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li1513453601318">HorizontalPodAutoscaler v2 is promoted to GA, and HorizontalPodAutoscaler API v2 is gradually stable in version 1.23. The HorizontalPodAutoscaler v2beta2 API is not recommended. Use the v2 API.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li868648161616"><a href="https://kubernetes.io/docs/concepts/security/pod-security-admission/" target="_blank" rel="noopener noreferrer">PodSecurity</a> moves to beta, replacing the deprecated PodSecurityPolicy. PodSecurity is an admission controller that enforces pod security standards on pods in the namespace based on specific namespace labels that set the enforcement level. PodSecurity is enabled by default in version 1.23.</li></ul>
-<p id="cce_10_0468__en-us_topic_0000001212381758_p10214233152815"><strong id="cce_10_0468__en-us_topic_0000001212381758_b6988723114812">Kubernetes 1.22 Release Notes</strong></p>
-<ul id="cce_10_0468__en-us_topic_0000001212381758_ul4368918102916"><li id="cce_10_0468__en-us_topic_0000001212381758_li15362335212">Ingresses no longer support networking.k8s.io/v1beta1 and extensions/v1beta1 APIs. If you use the API of an earlier version to manage ingresses, an application cannot be exposed to external services. Use networking.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li790410319228">CustomResourceDefinitions no longer support the apiextensions.k8s.io/v1beta1 API. If you use the API of an earlier version to create a CRD, the creation will fail, which affects the controller that reconciles this CRD. Use apiextensions.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li1473132516568">ClusterRoles, ClusterRoleBindings, Roles, and RoleBindings no longer support the rbac.authorization.k8s.io/v1beta1 API. If you use the API of an earlier version to manage RBAC resources, application permissions control is affected and even cannot work in the cluster. Use rbac.authorization.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li138559548225">The Kubernetes release cycle is changed from four releases a year to three releases a year.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li14384229999">StatefulSets support <strong id="cce_10_0468__en-us_topic_0000001212381758_b171761433531">minReadySeconds</strong>.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li632585119">During scale-in, pods are randomly selected and deleted based on the pod UID by default (LogarithmicScaleDown). This feature enhances the randomness of the pods to be deleted and alleviates the problems caused by pod topology spread constraints. For more information, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/2185-random-pod-select-on-replicaset-downscale" target="_blank" rel="noopener noreferrer">KEP-2185</a> and <a href="https://github.com/kubernetes/kubernetes/issues/96748?spm=a2c4g.11186623.0.0.1de23edc3yorUN" target="_blank" rel="noopener noreferrer">issue 96748</a>.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li618011428113">The <a href="https://kubernetes.io/en-us/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature is stable. This feature improves the token security of the service account and changes the method of mounting tokens to pods. Kubernetes clusters of v1.21 and later enable this approach by default.<p id="cce_10_0468__en-us_topic_0000001212381758_p2180842161113"></p>
+<p id="cce_10_0468__en-us_topic_0000001212381758_p10214233152815"><strong id="cce_10_0468__b1348205811220">Kubernetes 1.22 Release Notes</strong></p>
+<ul id="cce_10_0468__en-us_topic_0000001212381758_ul4368918102916"><li id="cce_10_0468__en-us_topic_0000001212381758_li15362335212">Ingresses no longer support networking.k8s.io/v1beta1 and extensions/v1beta1 APIs. If you use the API of an earlier version to manage ingresses, an application cannot be exposed to external services. Use networking.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li790410319228">CustomResourceDefinitions no longer support the apiextensions.k8s.io/v1beta1 API. If you use the API of an earlier version to create a CRD, the creation will fail, which affects the controller that reconciles this CRD. Use apiextensions.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li1473132516568">ClusterRoles, ClusterRoleBindings, Roles, and RoleBindings no longer support the rbac.authorization.k8s.io/v1beta1 API. If you use the API of an earlier version to manage RBAC resources, application permissions control is affected and even cannot work in the cluster. Use rbac.authorization.k8s.io/v1.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li138559548225">The Kubernetes release cycle is changed from four releases a year to three releases a year.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li14384229999">StatefulSets support <strong id="cce_10_0468__b1489243137">minReadySeconds</strong>.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li632585119">During scale-in, pods are randomly selected and deleted based on the pod UID by default (LogarithmicScaleDown). This feature enhances the randomness of the pods to be deleted and alleviates the problems caused by pod topology spread constraints. For more information, see <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/2185-random-pod-select-on-replicaset-downscale" target="_blank" rel="noopener noreferrer">KEP-2185</a> and <a href="https://github.com/kubernetes/kubernetes/issues/96748?spm=a2c4g.11186623.0.0.1de23edc3yorUN" target="_blank" rel="noopener noreferrer">issue 96748</a>.</li><li id="cce_10_0468__en-us_topic_0000001212381758_li618011428113">The<a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer"> BoundServiceAccountTokenVolume</a> feature is stable. This feature improves the token security of the service account and changes the method of mounting tokens to pods. Kubernetes clusters of v1.21 and later enable this approach by default.<p id="cce_10_0468__en-us_topic_0000001212381758_p2180842161113"></p>
 </li></ul>
 </div>
 <div class="section" id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_section1272182810583"><h4 class="sectiontitle">References</h4><p id="cce_10_0468__en-us_topic_0000001212381758_en-us_topic_0000001072975092_p15127239183119">For more details about the performance comparison and function evolution between Kubernetes 1.23 and other versions, see the following documents:</p>
diff --git a/docs/cce/umn/cce_10_0469.html b/docs/cce/umn/cce_10_0469.html
index 5e120710..6ec5816a 100644
--- a/docs/cce/umn/cce_10_0469.html
+++ b/docs/cce/umn/cce_10_0469.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">CCE Kubernetes 1.21 Release Notes</h1>
 <div id="body8662426"><p id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_en-us_topic_0261805759_en-us_topic_0261793154_p8060118">CCE has passed the Certified Kubernetes Conformance Program and is a certified Kubernetes offering. This section describes the updates in CCE Kubernetes 1.21.</p>
 <div class="section" id="cce_10_0469__en-us_topic_0000001177935088_en-us_topic_0000001072975092_section51381161799"><h4 class="sectiontitle">Resource Changes and Deprecations</h4><p id="cce_10_0469__en-us_topic_0000001177935088_p1185317533351"><strong id="cce_10_0469__en-us_topic_0000001177935088_b696619014173">Kubernetes 1.21 Release Notes</strong></p>
-<ul id="cce_10_0469__en-us_topic_0000001177935088_ul14465512152614"><li id="cce_10_0469__en-us_topic_0000001177935088_li2053973382610">CronJob is now in the stable state, and the version number changes to batch/v1.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li15465141215268">The immutable Secret and ConfigMap have now been upgraded to the stable state. A new immutable field is added to these objects to reject changes. The rejection protects clusters from accidental updates that may cause application outages. As these resources are immutable, kubelet does not monitor or poll for changes. This reduces the load of kube-apiserver and improves scalability and performance of your clusters. For more information, see <a href="https://kubernetes.io/docs/concepts/configuration/configmap/#configmap-immutable" target="_blank" rel="noopener noreferrer">Immutable ConfigMaps</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li9465101232612">Graceful node shutdown has been upgraded to the test state. With this update, kubelet can detect that a node is shut down and gracefully terminate the pods on the node. Prior to this update, when the node was shut down, its pod did not follow the expected termination lifecycle, which caused workload problems. Now kubelet can use systemd to detect the systems that are about to be shut down and notify the running pods to terminate them gracefully.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li1846531220264">For a pod with multiple containers, you can use <strong id="cce_10_0469__en-us_topic_0000001177935088_b1441123519305">kubectl.kubernetes.io/</strong> to pre-select containers.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li194651912162616">PodSecurityPolicy is deprecated. For details, see <a href="https://kubernetes.io/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/" target="_blank" rel="noopener noreferrer">https://kubernetes.io/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li143841433920">The <a href="https://kubernetes.io/en-us/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature has entered the beta test. This feature improves the token security of the service account and changes the method of mounting tokens to pods. Kubernetes clusters of v1.21 and later enable this approach by default.</li></ul>
+<ul id="cce_10_0469__en-us_topic_0000001177935088_ul14465512152614"><li id="cce_10_0469__en-us_topic_0000001177935088_li2053973382610">CronJob is now in the stable state, and the version number changes to batch/v1.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li15465141215268">The immutable Secret and ConfigMap have now been upgraded to the stable state. A new immutable field is added to these objects to reject changes. The rejection protects clusters from accidental updates that may cause application outages. As these resources are immutable, kubelet does not monitor or poll for changes. This reduces the load of kube-apiserver and improves scalability and performance of your clusters. For more information, see <a href="https://kubernetes.io/docs/concepts/configuration/configmap/#configmap-immutable" target="_blank" rel="noopener noreferrer">Immutable ConfigMaps</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li9465101232612">Graceful node shutdown has been upgraded to the test state. With this update, kubelet can detect that a node is shut down and gracefully terminate the pods on the node. Prior to this update, when the node was shut down, its pod did not follow the expected termination lifecycle, which caused workload problems. Now kubelet can use systemd to detect the systems that are about to be shut down and notify the running pods to terminate them gracefully.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li1846531220264">For a pod with multiple containers, you can use <strong id="cce_10_0469__en-us_topic_0000001177935088_b1441123519305">kubectl.kubernetes.io/</strong> to pre-select containers.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li194651912162616">PodSecurityPolicy is deprecated. For details, see <a href="https://kubernetes.io/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/" target="_blank" rel="noopener noreferrer">https://kubernetes.io/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li143841433920">The<a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer"> BoundServiceAccountTokenVolume</a> feature has entered the beta test. This feature improves the token security of the service account and changes the method of mounting tokens to pods. Kubernetes clusters of v1.21 and later enable this approach by default.</li></ul>
 <p id="cce_10_0469__en-us_topic_0000001177935088_p10214233152815"><strong id="cce_10_0469__en-us_topic_0000001177935088_b153181215261">Kubernetes 1.20 Release Notes</strong></p>
 <ul id="cce_10_0469__en-us_topic_0000001177935088_ul4368918102916"><li id="cce_10_0469__en-us_topic_0000001177935088_li736851882915">The API priority and fairness have reached the test state and are enabled by default. This allows kube-apiserver to classify incoming requests by priority. For more information, see <a href="https://kubernetes.io/docs/concepts/cluster-administration/flow-control/" target="_blank" rel="noopener noreferrer">API Priority and Fairness</a>.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li19204736191216">The bug of <strong id="cce_10_0469__en-us_topic_0000001177935088_b1246518301279">exec probe timeouts</strong> is fixed. Before this bug is fixed, the exec probe does not consider the <strong id="cce_10_0469__en-us_topic_0000001177935088_b923318463279">timeoutSeconds</strong> field. Instead, the probe will run indefinitely, even beyond its configured deadline. It will stop until the result is returned. Now, if no value is specified, the default value is used, that is, one second. If the detection time exceeds one second, the application health check may fail. Update the <strong id="cce_10_0469__en-us_topic_0000001177935088_b1177265114294">timeoutSeconds</strong> field for the applications that use this feature during the upgrade. The repair provided by the newly introduced ExecProbeTimeout feature gating enables the cluster operator to restore the previous behavior, but this behavior will be locked and removed in later versions.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li14382105113017">RuntimeClass enters the stable state. RuntimeClass provides a mechanism to support multiple runtimes in a cluster and expose information about the container runtime to the control plane.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li138419519302">kubectl debugging has reached the test state. kubectl debugging provides support for common debugging workflows.</li><li id="cce_10_0469__en-us_topic_0000001177935088_li153851151173010">Dockershim was marked as deprecated in Kubernetes 1.20. Currently, you can continue to use Docker in the cluster. This change is irrelevant to the container image used by clusters. You can still use Docker to build your images. For more information, see <a href="https://kubernetes.io/blog/2020/12/02/dockershim-faq/" target="_blank" rel="noopener noreferrer">Dockershim Deprecation FAQ</a>.</li></ul>
 </div>
diff --git a/docs/cce/umn/cce_10_0477.html b/docs/cce/umn/cce_10_0477.html
index e2153637..1c833e3c 100644
--- a/docs/cce/umn/cce_10_0477.html
+++ b/docs/cce/umn/cce_10_0477.html
@@ -1,23 +1,23 @@
 <a name="cce_10_0477"></a><a name="cce_10_0477"></a>
 
 <h1 class="topictitle1">Service Account Token Security Improvement</h1>
-<div id="body32001227"><p id="cce_10_0477__cce_10_0477_0_p101581459141715">In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no longer recommended starting from version 1.21. Service accounts will stop auto creating secrets in clusters from version 1.25.</p>
-<p id="cce_10_0477__cce_10_0477_0_p238119179114">In clusters of version 1.21 or later, you can use the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API to obtain the token and use the projected volume to mount the token to the pod. Such tokens are valid for a fixed period (one hour by default). Before expiration, Kubelet refreshes the token to ensure that the pod always uses a valid token. When the mounting pod is deleted, the token automatically becomes invalid. This approach is implemented by the <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature to improve the token security of the service account. Kubernetes clusters of v1.21 and later enables this approach by default.</p>
-<p id="cce_10_0477__cce_10_0477_0_p477395017368">For smooth transition, the community extends the token validity period to one year by default. After one year, the token becomes invalid, and clients that do not support certificate reloading cannot access the API server. It is recommended that clients of earlier versions be upgraded as soon as possible. Otherwise, service faults may occur.</p>
-<p id="cce_10_0477__cce_10_0477_0_p1624471113010">If you use a Kubernetes client of a to-be-outdated version, the certificate reloading may fail. Versions of officially supported Kubernetes client libraries able to reload tokens are as follows:</p>
-<ul id="cce_10_0477__cce_10_0477_0_ul102441419306"><li id="cce_10_0477__cce_10_0477_0_li624481103011">Go: &gt;= v0.15.7</li><li id="cce_10_0477__cce_10_0477_0_li172444113016">Python: &gt;= v12.0.0</li><li id="cce_10_0477__cce_10_0477_0_li15244814308">Java: &gt;= v9.0.0</li><li id="cce_10_0477__cce_10_0477_0_li22441215300">Javascript: &gt;= v0.10.3</li><li id="cce_10_0477__cce_10_0477_0_li122446112304">Ruby: master branch</li><li id="cce_10_0477__cce_10_0477_0_li42441116306">Haskell: v0.3.0.0</li><li id="cce_10_0477__cce_10_0477_0_li1772914471366">C#: &gt;= 7.0.5</li></ul>
-<p id="cce_10_0477__cce_10_0477_0_p172441718308">For details, visit <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens</a>.</p>
-<div class="note" id="cce_10_0477__cce_10_0477_0_note088612571761"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0477__cce_10_0477_0_p14870184852411">If you need a token that never expires, you can also <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#manual-secret-management-for-serviceaccounts" target="_blank" rel="noopener noreferrer">manually manage secrets for service accounts</a>. Although a permanent service account token can be manually created, you are advised to use a short-lived token by calling the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API for higher security.</p>
+<div id="body0000001452648473"><p id="cce_10_0477__p101581459141715">In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no longer recommended starting from version 1.21. Service accounts will stop auto creating secrets in clusters from version 1.25.</p>
+<p id="cce_10_0477__p238119179114">In clusters of version 1.21 or later, you can use the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API to obtain the token and use the projected volume to mount the token to the pod. Such tokens are valid for a fixed period (one hour by default). Before expiration, Kubelet refreshes the token to ensure that the pod always uses a valid token. When the mounting pod is deleted, the token automatically becomes invalid. This approach is implemented by the <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature to improve the token security of the service account. Kubernetes clusters of v1.21 and later enables this approach by default.</p>
+<p id="cce_10_0477__p477395017368">For smooth transition, the community extends the token validity period to one year by default. After one year, the token becomes invalid, and clients that do not support certificate reloading cannot access the API server. It is recommended that clients of earlier versions be upgraded as soon as possible. Otherwise, service faults may occur.</p>
+<p id="cce_10_0477__p1624471113010">If you use a Kubernetes client of a to-be-outdated version, the certificate reloading may fail. Versions of officially supported Kubernetes client libraries able to reload tokens are as follows:</p>
+<ul id="cce_10_0477__ul102441419306"><li id="cce_10_0477__li624481103011">Go: &gt;= v0.15.7</li><li id="cce_10_0477__li172444113016">Python: &gt;= v12.0.0</li><li id="cce_10_0477__li15244814308">Java: &gt;= v9.0.0</li><li id="cce_10_0477__li22441215300">Javascript: &gt;= v0.10.3</li><li id="cce_10_0477__li122446112304">Ruby: master branch</li><li id="cce_10_0477__li42441116306">Haskell: v0.3.0.0</li><li id="cce_10_0477__li1772914471366">C#: &gt;= 7.0.5</li></ul>
+<p id="cce_10_0477__p172441718308">For details, visit <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens</a>.</p>
+<div class="note" id="cce_10_0477__note088612571761"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0477__p14870184852411">If you need a token that never expires, you can also <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#manual-secret-management-for-serviceaccounts" target="_blank" rel="noopener noreferrer">manually manage secrets for service accounts</a>. Although a permanent service account token can be manually created, you are advised to use a short-lived token by calling the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API for higher security.</p>
 </div></div>
-<div class="section" id="cce_10_0477__cce_10_0477_0_section153991573316"><h4 class="sectiontitle">Diagnosis</h4><p id="cce_10_0477__cce_10_0477_0_p1624414193019">Run the following steps to check your CCE clusters of v1.21 and later:</p>
-<ol id="cce_10_0477__cce_10_0477_0_ol824418111301"><li id="cce_10_0477__cce_10_0477_0_li113851727203515">Use kubectl to connect to the cluster and run the <b><span class="cmdname" id="cce_10_0477__cce_10_0477_0_cmdname43875277355">kubectl get --raw "/metrics" | grep stale</span></b> command to query the metrics. Check the metric named <strong id="cce_10_0477__cce_10_0477_0_b85724131906">serviceaccount_stale_tokens_total</strong>.<p id="cce_10_0477__cce_10_0477_0_p4867227113517">If the value is greater than 0, some workloads in the cluster may be using an earlier client-go version. In this case, check whether this problem occurs in your deployed applications. If yes, upgrade client-go to the version specified by the community as soon as possible. The version must be at least two major versions of the CCE cluster. For example, if your cluster version is 1.23, the Kubernetes dependency library version must be at least 1.19.</p>
-<p id="cce_10_0477__cce_10_0477_0_p1916154083416"><span><img id="cce_10_0477__cce_10_0477_0_image1120284118341" src="en-us_image_0000001402494682.png"></span></p>
+<div class="section" id="cce_10_0477__section153991573316"><h4 class="sectiontitle">Diagnosis</h4><p id="cce_10_0477__p1624414193019">Run the following steps to check your CCE clusters of v1.21 and later:</p>
+<ol id="cce_10_0477__ol824418111301"><li id="cce_10_0477__li113851727203515">Use kubectl to connect to the cluster and run the <b><span class="cmdname" id="cce_10_0477__cmdname43875277355">kubectl get --raw "/metrics" | grep stale</span></b> command to query the metrics. Check the metric named <strong id="cce_10_0477__b85724131906">serviceaccount_stale_tokens_total</strong>.<p id="cce_10_0477__p4867227113517">If the value is greater than 0, some workloads in the cluster may be using an earlier client-go version. In this case, check whether this problem occurs in your deployed applications. If yes, upgrade client-go to the version specified by the community as soon as possible. The version must be at least two major versions of the CCE cluster. For example, if your cluster version is 1.23, the Kubernetes dependency library version must be at least 1.19.</p>
+<p id="cce_10_0477__p1916154083416"><span><img id="cce_10_0477__image1120284118341" src="en-us_image_0000001518062816.png"></span></p>
 </li></ol>
 </div>
 </div>
 <div>
 <div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
 </div>
 </div>
 
diff --git a/docs/cce/umn/cce_10_0477_0.html b/docs/cce/umn/cce_10_0477_0.html
deleted file mode 100644
index 53c90ce8..00000000
--- a/docs/cce/umn/cce_10_0477_0.html
+++ /dev/null
@@ -1,23 +0,0 @@
-<a name="cce_10_0477_0"></a><a name="cce_10_0477_0"></a>
-
-<h1 class="topictitle1">Service Account Token Security Improvement</h1>
-<div id="body0000001452648473"><p id="cce_10_0477_0__p101581459141715">In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no longer recommended starting from version 1.21. Service accounts will stop auto creating secrets in clusters from version 1.25.</p>
-<p id="cce_10_0477_0__p238119179114">In clusters of version 1.21 or later, you can use the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API to obtain the token and use the projected volume to mount the token to the pod. Such tokens are valid for a fixed period (one hour by default). Before expiration, Kubelet refreshes the token to ensure that the pod always uses a valid token. When the mounting pod is deleted, the token automatically becomes invalid. This approach is implemented by the <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">BoundServiceAccountTokenVolume</a> feature to improve the token security of the service account. Kubernetes clusters of v1.21 and later enables this approach by default.</p>
-<p id="cce_10_0477_0__p477395017368">For smooth transition, the community extends the token validity period to one year by default. After one year, the token becomes invalid, and clients that do not support certificate reloading cannot access the API server. It is recommended that clients of earlier versions be upgraded as soon as possible. Otherwise, service faults may occur.</p>
-<p id="cce_10_0477_0__p1624471113010">If you use a Kubernetes client of a to-be-outdated version, the certificate reloading may fail. Versions of officially supported Kubernetes client libraries able to reload tokens are as follows:</p>
-<ul id="cce_10_0477_0__ul102441419306"><li id="cce_10_0477_0__li624481103011">Go: &gt;= v0.15.7</li><li id="cce_10_0477_0__li172444113016">Python: &gt;= v12.0.0</li><li id="cce_10_0477_0__li15244814308">Java: &gt;= v9.0.0</li><li id="cce_10_0477_0__li22441215300">Javascript: &gt;= v0.10.3</li><li id="cce_10_0477_0__li122446112304">Ruby: master branch</li><li id="cce_10_0477_0__li42441116306">Haskell: v0.3.0.0</li><li id="cce_10_0477_0__li1772914471366">C#: &gt;= 7.0.5</li></ul>
-<p id="cce_10_0477_0__p172441718308">For details, visit <a href="https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens" target="_blank" rel="noopener noreferrer">https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/1205-bound-service-account-tokens</a>.</p>
-<div class="note" id="cce_10_0477_0__note088612571761"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0477_0__p14870184852411">If you need a token that never expires, you can also <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#manual-secret-management-for-serviceaccounts" target="_blank" rel="noopener noreferrer">manually manage secrets for service accounts</a>. Although a permanent service account token can be manually created, you are advised to use a short-lived token by calling the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API for higher security.</p>
-</div></div>
-<div class="section" id="cce_10_0477_0__section153991573316"><h4 class="sectiontitle">Diagnosis</h4><p id="cce_10_0477_0__p1624414193019">Run the following steps to check your CCE clusters of v1.21 and later:</p>
-<ol id="cce_10_0477_0__ol824418111301"><li id="cce_10_0477_0__li113851727203515">Use kubectl to connect to the cluster and run the <b><span class="cmdname" id="cce_10_0477_0__cmdname43875277355">kubectl get --raw "/metrics" | grep stale</span></b> command to query the metrics. Check the metric named <strong id="cce_10_0477_0__b85724131906">serviceaccount_stale_tokens_total</strong>.<p id="cce_10_0477_0__p4867227113517">If the value is greater than 0, some workloads in the cluster may be using an earlier client-go version. In this case, check whether this problem occurs in your deployed applications. If yes, upgrade client-go to the version specified by the community as soon as possible. The version must be at least two major versions of the CCE cluster. For example, if your cluster version is 1.23, the Kubernetes dependency library version must be at least 1.19.</p>
-<p id="cce_10_0477_0__p1916154083416"><span><img id="cce_10_0477_0__image1120284118341" src="en-us_image_0000001402494682.png"></span></p>
-</li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0164.html">Permissions Management</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_10_0478.html b/docs/cce/umn/cce_10_0478.html
new file mode 100644
index 00000000..9cc6e37c
--- /dev/null
+++ b/docs/cce/umn/cce_10_0478.html
@@ -0,0 +1,30 @@
+<a name="cce_10_0478"></a><a name="cce_10_0478"></a>
+
+<h1 class="topictitle1">everest Restriction Check</h1>
+<div id="body0000001421541302"><div class="section" id="cce_10_0478__section186091328195119"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0478__p1921219259514">Check whether the current everest add-on has compatibility restrictions. See <a href="#cce_10_0478__table1126154011128">Table 1</a>.</p>
+
+<div class="tablenoborder"><a name="cce_10_0478__table1126154011128"></a><a name="table1126154011128"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0478__table1126154011128" frame="border" border="1" rules="all"><caption><b>Table 1 </b>List of everest add-on versions that have compatibility restrictions</caption><thead align="left"><tr id="cce_10_0478__row22744011127"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.3.2.3.1.1"><p id="cce_10_0478__p13276406121">Add-on Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.3.2.3.1.2"><p id="cce_10_0478__p04038311241">Versions Involved</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0478__row12271140101216"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_10_0478__p1027114013124">everest</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_10_0478__p92754021217">v1.0.2-v1.0.7</p>
+<p id="cce_10_0478__p1574255517510">v1.1.1-v1.1.5</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0478__section5783448526"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0478__p78851421857">The current everest add-on has compatibility restrictions and cannot be upgraded with the cluster upgrade. Contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0479.html b/docs/cce/umn/cce_10_0479.html
new file mode 100644
index 00000000..d44a8267
--- /dev/null
+++ b/docs/cce/umn/cce_10_0479.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0479"></a><a name="cce_10_0479"></a>
+
+<h1 class="topictitle1">cce-hpa-controller Restriction Check</h1>
+<div id="body0000001421382006"><div class="section" id="cce_10_0479__section28521495319"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0479__p112379577523">Check whether the current cce-controller-hpa add-on has compatibility restrictions.</p>
+</div>
+<div class="section" id="cce_10_0479__section13523191085314"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0479__p13956103481011">The current cce-controller-hpa add-on has compatibility restrictions. An add-on that can provide metric APIs, for example, metric-server, must be installed in the cluster.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0480.html b/docs/cce/umn/cce_10_0480.html
new file mode 100644
index 00000000..cbdd9ea3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0480.html
@@ -0,0 +1,45 @@
+<a name="cce_10_0480"></a><a name="cce_10_0480"></a>
+
+<h1 class="topictitle1">Enhanced CPU Management Policy</h1>
+<div id="body0000001471341089"><div class="section" id="cce_10_0480__en-us_topic_0000001471341089_section1019843555318"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0480__en-us_topic_0000001471341089_p6857185644115">Check whether the current cluster version and the target version support enhanced CPU policy.</p>
+</div>
+<div class="section" id="cce_10_0480__en-us_topic_0000001471341089_section14051648155312"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0480__en-us_topic_0000001471341089_p12347102917421"><strong id="cce_10_0480__b06331623182313">Scenario</strong>: The current cluster version uses the enhanced CPU management policy, but the target cluster version does not support the enhanced CPU management policy.</p>
+<p id="cce_10_0480__en-us_topic_0000001471341089_p39944562228">Upgrade the cluster to a version that supports the enhanced CPU management policy. The following table lists the cluster versions that support the enhanced CPU management policy.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0480__en-us_topic_0000001471341089_table15309124815237" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Cluster versions that support the enhanced CPU policy</caption><thead align="left"><tr id="cce_10_0480__en-us_topic_0000001471341089_row93097486233"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.2.4.2.3.1.1"><p id="cce_10_0480__en-us_topic_0000001471341089_p03097483232">Cluster Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.2.4.2.3.1.2"><p id="cce_10_0480__en-us_topic_0000001471341089_p19309174882313">Enhanced CPU Policy Supported</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0480__en-us_topic_0000001471341089_row1130910487236"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.1 "><p id="cce_10_0480__en-us_topic_0000001471341089_p4309948162315">v1.17 or earlier</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.2 "><p id="cce_10_0480__en-us_topic_0000001471341089_p930964842317">No</p>
+</td>
+</tr>
+<tr id="cce_10_0480__en-us_topic_0000001471341089_row14309448152315"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.1 "><p id="cce_10_0480__en-us_topic_0000001471341089_p930904832318">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.2 "><p id="cce_10_0480__en-us_topic_0000001471341089_p23091748162314">No</p>
+</td>
+</tr>
+<tr id="cce_10_0480__en-us_topic_0000001471341089_row193096485232"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.1 "><p id="cce_10_0480__en-us_topic_0000001471341089_p14309104810233">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.2 "><p id="cce_10_0480__en-us_topic_0000001471341089_p1730984862311">No</p>
+</td>
+</tr>
+<tr id="cce_10_0480__en-us_topic_0000001471341089_row530994872317"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.1 "><p id="cce_10_0480__en-us_topic_0000001471341089_p23091948182311">v1.23 or later</p>
+</td>
+<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.2.4.2.3.1.2 "><p id="cce_10_0480__en-us_topic_0000001471341089_p7309948112310">Yes</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0484.html b/docs/cce/umn/cce_10_0484.html
new file mode 100644
index 00000000..569832c6
--- /dev/null
+++ b/docs/cce/umn/cce_10_0484.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0484"></a><a name="cce_10_0484"></a>
+
+<h1 class="topictitle1">User Node Components Health</h1>
+<div id="body0000001421064718"><div class="section" id="cce_10_0484__en-us_topic_0000001421064718_section28521495319"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0484__en-us_topic_0000001421064718_p112379577523">Check whether the container runtime and network components on the user node are healthy.</p>
+</div>
+<div class="section" id="cce_10_0484__en-us_topic_0000001421064718_section13523191085314"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0484__en-us_topic_0000001421064718_p13956103481011">If a component is abnormal, log in to the node to check the status of the abnormal component and rectify the fault.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0485.html b/docs/cce/umn/cce_10_0485.html
new file mode 100644
index 00000000..1eaa0fba
--- /dev/null
+++ b/docs/cce/umn/cce_10_0485.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0485"></a><a name="cce_10_0485"></a>
+
+<h1 class="topictitle1">Controller Node Components Health</h1>
+<div id="body0000001456366278"><div class="section" id="cce_10_0485__en-us_topic_0000001456366278_section28521495319"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0485__en-us_topic_0000001456366278_p112379577523">Check whether the Kubernetes, container runtime, and network components of the controller node are healthy.</p>
+</div>
+<div class="section" id="cce_10_0485__en-us_topic_0000001456366278_section13523191085314"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0485__en-us_topic_0000001456366278_p13956103481011">If a component on the controller node is abnormal, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0486.html b/docs/cce/umn/cce_10_0486.html
new file mode 100644
index 00000000..ddf59ece
--- /dev/null
+++ b/docs/cce/umn/cce_10_0486.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0486"></a><a name="cce_10_0486"></a>
+
+<h1 class="topictitle1">Memory Resource Limit of Kubernetes Components</h1>
+<div id="body0000001506086757"><div class="section" id="cce_10_0486__en-us_topic_0000001506086757_section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0486__en-us_topic_0000001506086757_p12632171523915">Check whether the resources of Kubernetes components, such as etcd and kube-controller-manager, exceed the upper limit.</p>
+</div>
+<div class="section" id="cce_10_0486__en-us_topic_0000001506086757_section14292182710397"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0486__en-us_topic_0000001506086757_p1659023601520">Solution 1: Reducing Kubernetes resources</p>
+<p id="cce_10_0486__en-us_topic_0000001506086757_p373615122345">Solution 2: <a href="cce_10_0403.html">Expanding cluster scale</a></p>
+<p id="cce_10_0486__en-us_topic_0000001506086757_p778042617294"><span><img id="cce_10_0486__en-us_topic_0000001506086757_image810652093515" src="en-us_image_0000001579008782.png"></span></p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0487.html b/docs/cce/umn/cce_10_0487.html
new file mode 100644
index 00000000..a5ec31af
--- /dev/null
+++ b/docs/cce/umn/cce_10_0487.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0487"></a><a name="cce_10_0487"></a>
+
+<h1 class="topictitle1">Checking Deprecated Kubernetes APIs</h1>
+<div id="body0000001406793148"><div class="section" id="cce_10_0487__en-us_topic_0000001406793148_section76841181396"><h4 class="sectiontitle">Check Item</h4><div class="p" id="cce_10_0487__en-us_topic_0000001406793148_p12632171523915">The system scans the audit logs of the past day to check whether the user calls the deprecated APIs of the target Kubernetes version.<div class="note" id="cce_10_0487__en-us_topic_0000001406793148_note6323103931015"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0487__en-us_topic_0000001406793148_p16420444101011">Due to the limited time range of audit logs, this check item is only an auxiliary method. APIs to be deprecated may have been used in the cluster, but their usage is not included in the audit logs of the past day. Check the API usage carefully.</p>
+</div></div>
+</div>
+</div>
+<div class="section" id="cce_10_0487__en-us_topic_0000001406793148_section14292182710397"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0487__en-us_topic_0000001406793148_p516617193915"><strong id="cce_10_0487__en-us_topic_0000001406793148_b22911733402">Description</strong></p>
+<p id="cce_10_0487__en-us_topic_0000001406793148_p125202026123410">The check result shows that your cluster calls a deprecated API of the target cluster version through kubectl or other applications. You can rectify the fault before the upgrade. Otherwise, the API will be intercepted by kube-apiserver after the upgrade. For details about each deprecated API, see <a href="https://kubernetes.io/docs/reference/using-api/deprecation-guide/" target="_blank" rel="noopener noreferrer">Deprecated API Migration Guide</a>.</p>
+<p id="cce_10_0487__en-us_topic_0000001406793148_p174661246183711"><strong id="cce_10_0487__en-us_topic_0000001406793148_b1043611324015">Cases</strong></p>
+<p id="cce_10_0487__en-us_topic_0000001406793148_p3772333195314">Ingresses of extensions/v1beta1 and networking.k8s.io/v1beta1 API are deprecated in clusters of v1.22. If you upgrade a CCE cluster from v1.19 or v1.21 to v1.23, existing resources are not affected, but the v1beta1 API version may be intercepted in the creation and editing scenarios.</p>
+<p id="cce_10_0487__en-us_topic_0000001406793148_p1794910675219">For details about the YAML configuration structure changes, see <a href="cce_10_0252.html">Using kubectl to Create an ELB Ingress</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0488.html b/docs/cce/umn/cce_10_0488.html
new file mode 100644
index 00000000..28a4c8db
--- /dev/null
+++ b/docs/cce/umn/cce_10_0488.html
@@ -0,0 +1,16 @@
+<a name="cce_10_0488"></a><a name="cce_10_0488"></a>
+
+<h1 class="topictitle1">IPv6 Capability of a CCE Turbo Cluster</h1>
+<div id="body0000001531416145"><div class="section" id="cce_10_0488__en-us_topic_0000001531416145_section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0488__en-us_topic_0000001531416145_p12632171523915">If IPv6 is enabled for a CCE Turbo cluster, check whether the target cluster version supports IPv6.</p>
+</div>
+<div class="section" id="cce_10_0488__en-us_topic_0000001531416145_section14292182710397"><h4 class="sectiontitle">Solution</h4><div class="p" id="cce_10_0488__en-us_topic_0000001531416145_p5446131013397">CCE Turbo clusters support IPv6 since v1.23. This feature is available in the following versions:<ul id="cce_10_0488__en-us_topic_0000001531416145_ul17471124273911"><li id="cce_10_0488__en-us_topic_0000001531416145_li247117423391">v1.23: 1.23.8-r0 or later</li><li id="cce_10_0488__en-us_topic_0000001531416145_li17471842133916">v1.25: 1.25.3-r0 or later</li><li id="cce_10_0488__en-us_topic_0000001531416145_li75601371462">v1.25 or later</li></ul>
+</div>
+<p id="cce_10_0488__en-us_topic_0000001531416145_p1659023601520">If IPv6 has been enabled in the cluster before the upgrade, the target cluster version must also support IPv6. Select a proper cluster version.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0489.html b/docs/cce/umn/cce_10_0489.html
new file mode 100644
index 00000000..f079e3f0
--- /dev/null
+++ b/docs/cce/umn/cce_10_0489.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0489"></a><a name="cce_10_0489"></a>
+
+<h1 class="topictitle1">Node NetworkManager</h1>
+<div id="body0000001547970917"><div class="section" id="cce_10_0489__en-us_topic_0000001547970917_section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0489__en-us_topic_0000001547970917_p1626132391110">Check whether NetworkManager of a node is normal.</p>
+</div>
+<div class="section" id="cce_10_0489__en-us_topic_0000001547970917_section14292182710397"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0489__en-us_topic_0000001547970917_p8590236181515">Log in to the node and run the <strong id="cce_10_0489__en-us_topic_0000001547970917_b21591834317">systemctl is-active NetworkManager</strong> command to query the running status of NetworkManager. If the command output is abnormal, run the <strong id="cce_10_0489__en-us_topic_0000001547970917_b125451835134314">systemctl restart NetworkManager</strong> command and query the status again.</p>
+<p id="cce_10_0489__en-us_topic_0000001547970917_p619195261111">If the problem persists after NetworkManager is restarted, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0490.html b/docs/cce/umn/cce_10_0490.html
new file mode 100644
index 00000000..d7d0f8f9
--- /dev/null
+++ b/docs/cce/umn/cce_10_0490.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0490"></a><a name="cce_10_0490"></a>
+
+<h1 class="topictitle1">Node ID File</h1>
+<div id="body0000001548050945"><div class="section" id="cce_10_0490__en-us_topic_0000001548050945_section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0490__en-us_topic_0000001548050945_p12632171523915">Check the ID file format.</p>
+</div>
+<div class="section" id="cce_10_0490__en-us_topic_0000001548050945_section14292182710397"><h4 class="sectiontitle">Solution</h4><ol id="cce_10_0490__en-us_topic_0000001548050945_ol14466172171919"><li id="cce_10_0490__en-us_topic_0000001548050945_li17466021171912"><span>On the <strong id="cce_10_0490__en-us_topic_0000001548050945_b154451657144520">Nodes</strong> page of the CCE console, click the name of the abnormal node to go to the ECS page.</span><p><p id="cce_10_0490__en-us_topic_0000001548050945_p182041458134420"><span><img id="cce_10_0490__en-us_topic_0000001548050945_image77103481257" src="en-us_image_0000001504661902.png"></span></p>
+</p></li><li id="cce_10_0490__en-us_topic_0000001548050945_li1073333962011"><span>Copy the node ID and save it to the local host.</span><p><p id="cce_10_0490__en-us_topic_0000001548050945_p1020412583444"><span><img id="cce_10_0490__en-us_topic_0000001548050945_image5828172172612" src="en-us_image_0000001504821802.png"></span></p>
+</p></li><li id="cce_10_0490__en-us_topic_0000001548050945_li21282377202"><span>Log in to the abnormal node and back up files.</span><p><pre class="screen" id="cce_10_0490__en-us_topic_0000001548050945_screen5638340125319">cp /var/lib/cloud/data/instance-id /tmp/instance-id
+cp /var/paas/conf/server.conf /tmp/server.conf</pre>
+</p></li><li id="cce_10_0490__en-us_topic_0000001548050945_li41394131816"><span>Log in to the abnormal node and write the obtained node ID to the file.</span><p><pre class="screen" id="cce_10_0490__en-us_topic_0000001548050945_screen1581564515532">echo "Node ID" &gt;&gt; /var/lib/cloud/data/instance-id
+echo "Node ID" &gt;&gt; /var/paas/conf/server.conf</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0491.html b/docs/cce/umn/cce_10_0491.html
new file mode 100644
index 00000000..e615c8f9
--- /dev/null
+++ b/docs/cce/umn/cce_10_0491.html
@@ -0,0 +1,132 @@
+<a name="cce_10_0491"></a><a name="cce_10_0491"></a>
+
+<h1 class="topictitle1">Node Configuration Consistency</h1>
+<div id="body0000001548875345"><div class="section" id="cce_10_0491__en-us_topic_0000001548875345_section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0491__en-us_topic_0000001548875345_p1160121220265">When you upgrade a CCE cluster to v1.19 or later, the system checks whether the following configuration files have been modified in the background:</p>
+<ul id="cce_10_0491__en-us_topic_0000001548875345_ul18239212142119"><li id="cce_10_0491__en-us_topic_0000001548875345_li13239161219211">/opt/cloud/cce/kubernetes/kubelet/kubelet</li><li id="cce_10_0491__en-us_topic_0000001548875345_li048201419219">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</li><li id="cce_10_0491__en-us_topic_0000001548875345_li12186102010214">/opt/cloud/cce/kubernetes/kube-proxy/kube-proxy</li><li id="cce_10_0491__en-us_topic_0000001548875345_li186514348219">/etc/containerd/default_runtime_spec.json</li><li id="cce_10_0491__en-us_topic_0000001548875345_li185541631191417">/etc/sysconfig/docker</li><li id="cce_10_0491__en-us_topic_0000001548875345_li9601194210146">/etc/default/docker</li><li id="cce_10_0491__en-us_topic_0000001548875345_li10453164722112">/etc/docker/daemon.json</li></ul>
+<p id="cce_10_0491__en-us_topic_0000001548875345_p6832242194017">If you modify some parameters in these files, the cluster upgrade may fail or services may be abnormal after the upgrade. If you confirm that the modification does not affect services, continue the upgrade.</p>
+<div class="note" id="cce_10_0491__en-us_topic_0000001548875345_note1412755951020"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0491__en-us_topic_0000001548875345_p86683322344">CCE uses the standard image script to check node configuration consistency. If you use other custom images, the check may fail.</p>
+</div></div>
+<p id="cce_10_0491__en-us_topic_0000001548875345_p1396935032119">The expected modification will not be intercepted. The following table lists the parameters that can be modified.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0491__en-us_topic_0000001548875345_table116020496297" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters that can be modified</caption><thead align="left"><tr id="cce_10_0491__en-us_topic_0000001548875345_row2161154902910"><th align="left" class="cellrowborder" valign="top" width="12.559999999999999%" id="mcps1.3.1.7.2.5.1.1"><p id="cce_10_0491__en-us_topic_0000001548875345_p1416104916296">Component</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="47.17%" id="mcps1.3.1.7.2.5.1.2"><p id="cce_10_0491__en-us_topic_0000001548875345_p1016111496290">Configuration File</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25.169999999999998%" id="mcps1.3.1.7.2.5.1.3"><p id="cce_10_0491__en-us_topic_0000001548875345_p1016194913294">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="15.1%" id="mcps1.3.1.7.2.5.1.4"><p id="cce_10_0491__en-us_topic_0000001548875345_p171617496292">Upgrade Version</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0491__en-us_topic_0000001548875345_row2161349102916"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p616114913299">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p316112497291">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p18161649102910">cpuManagerPolicy</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p5161549152910">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row15161194992918"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p116119494292">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p141611649172916">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1016164902917">maxPods</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p592441516335">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row11983113163313"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p89831831163315">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p143651656173316">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1198363173313">kubeAPIQPS</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p17314191243514">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row15830163653315"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p198304363334">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p3158757163316">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p15830123613332">kubeAPIBurst</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p7769201273516">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row1154742153315"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p12154154214337">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1478215571331">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1415474215331">podPidsLimit</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p527612131352">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row5412204553313"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p14413174563312">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p15368191345">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p14413164517330">topologyManagerPolicy</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p592213134353">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row8173105018335"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1017335073318">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p589715813512">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1517315505331">resolvConf</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p8456161411353">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row1334211145346"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1834221415344">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p12600164853511">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p11343111443417">eventRecordQPS</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p14343111483411">Later than v1.21</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row1677691815357"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p117763184353">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1789164912355">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p187761518183515">topologyManagerScope</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p20776018133516">Later than v1.21</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row22981429102813"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p82981929162815">kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p52981829112816">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p10298142992811">allowedUnsafeSysctls</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1729832914285">Later than v1.19</p>
+</td>
+</tr>
+<tr id="cce_10_0491__en-us_topic_0000001548875345_row1742921473616"><td class="cellrowborder" valign="top" width="12.559999999999999%" headers="mcps1.3.1.7.2.5.1.1 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1342911443616">Docker</p>
+</td>
+<td class="cellrowborder" valign="top" width="47.17%" headers="mcps1.3.1.7.2.5.1.2 "><p id="cce_10_0491__en-us_topic_0000001548875345_p642931413618">/etc/docker/daemon.json</p>
+</td>
+<td class="cellrowborder" valign="top" width="25.169999999999998%" headers="mcps1.3.1.7.2.5.1.3 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1342901463614">dm.basesize</p>
+</td>
+<td class="cellrowborder" valign="top" width="15.1%" headers="mcps1.3.1.7.2.5.1.4 "><p id="cce_10_0491__en-us_topic_0000001548875345_p1942971419366">Later than v1.19</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0491__en-us_topic_0000001548875345_section14292182710397"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0491__en-us_topic_0000001548875345_p5446131013397">If you modify some parameters in these files, exceptions may occur after the upgrade. If you are not sure whether the modified parameters will affect the upgrade, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0492.html b/docs/cce/umn/cce_10_0492.html
new file mode 100644
index 00000000..ee9be906
--- /dev/null
+++ b/docs/cce/umn/cce_10_0492.html
@@ -0,0 +1,62 @@
+<a name="cce_10_0492"></a><a name="cce_10_0492"></a>
+
+<h1 class="topictitle1">Node Configuration File</h1>
+<div id="body0000001548635517"><div class="section" id="cce_10_0492__en-us_topic_0000001548635517_section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0492__en-us_topic_0000001548635517_p1849191374417">Check whether the configuration files of key components exist on the node.</p>
+<p id="cce_10_0492__en-us_topic_0000001548635517_p1269132254417">The following table lists the files to be checked.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0492__en-us_topic_0000001548635517_table189501151101317" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0492__en-us_topic_0000001548635517_row29508512139"><th align="left" class="cellrowborder" valign="top" width="38.213821382138214%" id="mcps1.3.1.4.1.4.1.1"><p id="cce_10_0492__en-us_topic_0000001548635517_p795035171311">File Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="28.45284528452845%" id="mcps1.3.1.4.1.4.1.2"><p id="cce_10_0492__en-us_topic_0000001548635517_p1995014513139">File Content</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.1.4.1.4.1.3"><p id="cce_10_0492__en-us_topic_0000001548635517_p17950115111136">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0492__en-us_topic_0000001548635517_row16950185171315"><td class="cellrowborder" valign="top" width="38.213821382138214%" headers="mcps1.3.1.4.1.4.1.1 "><p id="cce_10_0492__en-us_topic_0000001548635517_p119507511136">/opt/cloud/cce/kubernetes/kubelet/kubelet</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.45284528452845%" headers="mcps1.3.1.4.1.4.1.2 "><p id="cce_10_0492__en-us_topic_0000001548635517_p9950751131315">kubelet command line startup parameters</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.1.4.1.4.1.3 "><p id="cce_10_0492__en-us_topic_0000001548635517_p295045119131">-</p>
+</td>
+</tr>
+<tr id="cce_10_0492__en-us_topic_0000001548635517_row347403091814"><td class="cellrowborder" valign="top" width="38.213821382138214%" headers="mcps1.3.1.4.1.4.1.1 "><p id="cce_10_0492__en-us_topic_0000001548635517_p1147411308180">/opt/cloud/cce/kubernetes/kubelet/kubelet_config.yaml</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.45284528452845%" headers="mcps1.3.1.4.1.4.1.2 "><p id="cce_10_0492__en-us_topic_0000001548635517_p4474183019181">kubelet startup parameters</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.1.4.1.4.1.3 "><p id="cce_10_0492__en-us_topic_0000001548635517_p0474183011185">-</p>
+</td>
+</tr>
+<tr id="cce_10_0492__en-us_topic_0000001548635517_row5669114311141"><td class="cellrowborder" valign="top" width="38.213821382138214%" headers="mcps1.3.1.4.1.4.1.1 "><p id="cce_10_0492__en-us_topic_0000001548635517_p466924371417">/opt/cloud/cce/kubernetes/kube-proxy/kube-proxy</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.45284528452845%" headers="mcps1.3.1.4.1.4.1.2 "><p id="cce_10_0492__en-us_topic_0000001548635517_p14367182302712">kube-proxy command line startup parameters</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.1.4.1.4.1.3 "><p id="cce_10_0492__en-us_topic_0000001548635517_p1866974313148">-</p>
+</td>
+</tr>
+<tr id="cce_10_0492__en-us_topic_0000001548635517_row189298480141"><td class="cellrowborder" valign="top" width="38.213821382138214%" headers="mcps1.3.1.4.1.4.1.1 "><p id="cce_10_0492__en-us_topic_0000001548635517_p19929154819143">/etc/sysconfig/docker</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.45284528452845%" headers="mcps1.3.1.4.1.4.1.2 "><p id="cce_10_0492__en-us_topic_0000001548635517_p411311453150">Docker configuration file</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.1.4.1.4.1.3 "><p id="cce_10_0492__en-us_topic_0000001548635517_p17929948191417">Not checked when containerd or the Debain-Group machine is used.</p>
+</td>
+</tr>
+<tr id="cce_10_0492__en-us_topic_0000001548635517_row187732053171417"><td class="cellrowborder" valign="top" width="38.213821382138214%" headers="mcps1.3.1.4.1.4.1.1 "><p id="cce_10_0492__en-us_topic_0000001548635517_p3773185311415">/etc/default/docker</p>
+</td>
+<td class="cellrowborder" valign="top" width="28.45284528452845%" headers="mcps1.3.1.4.1.4.1.2 "><p id="cce_10_0492__en-us_topic_0000001548635517_p1061514282710">Docker configuration file</p>
+</td>
+<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.1.4.1.4.1.3 "><p id="cce_10_0492__en-us_topic_0000001548635517_p877335341413">Not checked when containerd or the Centos-Group machine is used.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_10_0492__en-us_topic_0000001548635517_section14292182710397"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0492__en-us_topic_0000001548635517_p5446131013397">Contact technical support to restore the configuration file and then perform the upgrade.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0493.html b/docs/cce/umn/cce_10_0493.html
new file mode 100644
index 00000000..3c591a76
--- /dev/null
+++ b/docs/cce/umn/cce_10_0493.html
@@ -0,0 +1,39 @@
+<a name="cce_10_0493"></a><a name="cce_10_0493"></a>
+
+<h1 class="topictitle1">Checking CoreDNS Configuration Consistency</h1>
+<div id="body0000001548755413"><div class="section" id="cce_10_0493__en-us_topic_0000001548755413_section76841181396"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0493__en-us_topic_0000001548755413_p12632171523915">Check whether the current CoreDNS key configuration Corefile is different from the Helm Release record. The difference may be overwritten during the add-on upgrade, affecting domain name resolution in the cluster.</p>
+</div>
+<div class="section" id="cce_10_0493__en-us_topic_0000001548755413_section14292182710397"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0493__en-us_topic_0000001548755413_p119841437165420">You can upgrade the coredns add-on separately after confirming the configuration differences.</p>
+<ol id="cce_10_0493__en-us_topic_0000001548755413_ol178220196494"><li id="cce_10_0493__en-us_topic_0000001548755413_li540162154917"><span>For details about how to configure kubectl, see <a href="cce_10_0107.html">Connecting to a Cluster Using kubectl</a>.</span></li><li id="cce_10_0493__en-us_topic_0000001548755413_li1178291934910"><a name="cce_10_0493__en-us_topic_0000001548755413_li1178291934910"></a><a name="en-us_topic_0000001548755413_li1178291934910"></a><span>Obtain the Corefile that takes effect currently.</span><p><pre class="screen" id="cce_10_0493__en-us_topic_0000001548755413_screen1963843572011">kubectl get cm -nkube-system coredns -o jsonpath='{.data.Corefile}' &gt; corefile_now.txt
+cat corefile_now.txt</pre>
+</p></li><li id="cce_10_0493__en-us_topic_0000001548755413_li111544111811"><a name="cce_10_0493__en-us_topic_0000001548755413_li111544111811"></a><a name="en-us_topic_0000001548755413_li111544111811"></a><span>Obtain the Corefile in the Helm Release record (depending on Python 3).</span><p><pre class="screen" id="cce_10_0493__en-us_topic_0000001548755413_screen17156112315346">latest_release=`kubectl get secret -nkube-system -l owner=helm -l name=cceaddon-coredns --sort-by=.metadata.creationTimestamp | awk 'END{print $1}'`
+kubectl get secret -nkube-system $latest_release -o jsonpath='{.data.release}' | base64 -d | base64 -d | gzip -d | python -m json.tool | python -c "
+import json,sys,re,yaml;
+manifests = json.load(sys.stdin)['manifest']
+files = re.split('(?:^|\s*\n)---\s*',manifests)
+for file in files:
+    if 'coredns/templates/configmap.yaml' in file and 'Corefile' in file:
+      corefile = yaml.safe_load(file)['data']['Corefile']
+      print(corefile,end='')
+      exit(0);
+print('error')
+exit(1);
+" &gt; corefile_record.txt
+cat corefile_record.txt
+</pre>
+</p></li><li id="cce_10_0493__en-us_topic_0000001548755413_li7156123103417"><span>Compare the output information of <a href="#cce_10_0493__en-us_topic_0000001548755413_li1178291934910">2</a> and <a href="#cce_10_0493__en-us_topic_0000001548755413_li111544111811">3</a>.</span><p><pre class="screen" id="cce_10_0493__en-us_topic_0000001548755413_screen3155221615">diff corefile_now.txt corefile_record.txt -y;</pre>
+<p id="cce_10_0493__en-us_topic_0000001548755413_p029519565189"><span><img id="cce_10_0493__en-us_topic_0000001548755413_image979245162116" src="en-us_image_0000001628843805.png"></span></p>
+</p></li><li id="cce_10_0493__en-us_topic_0000001548755413_li201143594158"><span>Return to the CCE console and click the cluster name to go to the cluster console. On the <strong id="cce_10_0493__b4691023192020">Add-ons</strong> page, select the coredns add-on and click <strong id="cce_10_0493__b08311338102112">Upgrade</strong>.</span><p><div class="p" id="cce_10_0493__en-us_topic_0000001548755413_p12887105912154">To retain the differentiated configurations, use either of the following methods:<ul id="cce_10_0493__en-us_topic_0000001548755413_ul6442194635311"><li id="cce_10_0493__en-us_topic_0000001548755413_li154421846145313">Set <strong id="cce_10_0493__b835162232218">parameterSyncStrategy</strong> to <strong id="cce_10_0493__b174395251229">force</strong>. You need to manually enter the differentiated configurations. For details, see <a href="cce_10_0129.html">coredns (System Resource Add-On, Mandatory)</a>.</li><li id="cce_10_0493__en-us_topic_0000001548755413_li13909194810534">If <strong id="cce_10_0493__b15394145632214">parameterSyncStrategy</strong> is set to <strong id="cce_10_0493__b19922758162210">inherit</strong>, differentiated configurations are automatically inherited. The system automatically parses, identifies, and inherits differentiated parameters.</li></ul>
+</div>
+<p id="cce_10_0493__en-us_topic_0000001548755413_p147401599279"><span><img id="cce_10_0493__en-us_topic_0000001548755413_image5347121013273" src="en-us_image_0000001578443828.png"></span></p>
+</p></li><li id="cce_10_0493__en-us_topic_0000001548755413_li011313119354"><span>Click <strong id="cce_10_0493__b18457114641716">OK</strong>. After the add-on upgrade is complete, check whether all CoreDNS instances are available and whether the Corefile meets the expectation.</span><p><pre class="screen" id="cce_10_0493__en-us_topic_0000001548755413_screen10462191415385">kubectl get cm -nkube-system coredns -o jsonpath='{.data.Corefile}'</pre>
+</p></li><li id="cce_10_0493__en-us_topic_0000001548755413_li7624173504010"><span>Change the value of <strong id="cce_10_0493__b1632917202183">parameterSyncStrategy</strong> to <strong id="cce_10_0493__b14785330101811">ensureConsistent</strong> to enable configuration consistency verification.</span><p><p id="cce_10_0493__en-us_topic_0000001548755413_p1534254310401">Use the parameter configuration function of CCE add-on management to modify the Corefile configuration to avoid differences.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0549.html b/docs/cce/umn/cce_10_0549.html
new file mode 100644
index 00000000..efbfe901
--- /dev/null
+++ b/docs/cce/umn/cce_10_0549.html
@@ -0,0 +1,226 @@
+<a name="cce_10_0549"></a><a name="cce_10_0549"></a>
+
+<h1 class="topictitle1">Performing Pre-upgrade Check</h1>
+<div id="body0000001451598884"><p id="cce_10_0549__en-us_topic_0000001451598884_p247012273613">The system performs a comprehensive pre-upgrade check before the cluster upgrade. If the cluster does not meet the pre-upgrade check conditions, the upgrade cannot continue. To prevent upgrade risks, you can perform pre-upgrade check according to the check items provided by this section.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0549__en-us_topic_0000001451598884_table1129717261200" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Check items</caption><thead align="left"><tr id="cce_10_0549__en-us_topic_0000001451598884_row11298112612016"><th align="left" class="cellrowborder" valign="top" width="29.349999999999998%" id="mcps1.3.2.2.3.1.1"><p id="cce_10_0549__en-us_topic_0000001451598884_p12986266201">Check Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="70.65%" id="mcps1.3.2.2.3.1.2"><p id="cce_10_0549__en-us_topic_0000001451598884_p42981926122014">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0549__en-us_topic_0000001451598884_row729811268202"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p329812632011"><a href="cce_10_0431.html">Checking the Node</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><ul id="cce_10_0549__en-us_topic_0000001451598884_ul531713489117"><li id="cce_10_0549__en-us_topic_0000001442493101_li1731711484111">Check whether the node is available. </li><li id="cce_10_0549__en-us_topic_0000001442493101_li1364454101210">Check whether the node OS supports the upgrade.</li><li id="cce_10_0549__en-us_topic_0000001442493101_li2075366171711">Check whether there are unexpected node pool tags in the node.</li><li id="cce_10_0549__en-us_topic_0000001442493101_li933265192411">Check whether the Kubernetes node name is consistent with the ECS name.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row158046315397"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p16311151819393"><a href="cce_10_0432.html">Checking the Blocklist</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p180410333912">Check whether the current user is in the upgrade blocklist.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1024414261391"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p52441926183916"><a href="cce_10_0433.html">Checking the Add-on</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><ul id="cce_10_0549__en-us_topic_0000001451598884_ul77233579398"><li id="cce_10_0549__en-us_topic_0000001442652721_li1731711484111">Check whether the add-on status is normal.</li><li id="cce_10_0549__en-us_topic_0000001442652721_li18535185255019">Check whether the add-on support the target version.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row17513311399"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p175173111399"><a href="cce_10_0434.html">Checking the Helm Chart</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p6857185644115">Check whether the current HelmRelease record contains discarded Kubernetes APIs that are not supported by the target cluster version. If yes, the Helm chart may be unavailable after the upgrade.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row15154133333915"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p2154133363918"><a href="cce_10_0435.html">Checking the Master Node SSH Connectivity</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1733314174016">Check whether CCE can connect to your master nodes.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row438316586399"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p938365893917"><a href="cce_10_0436.html">Checking the Node Pool</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><ul id="cce_10_0549__en-us_topic_0000001451598884_ul125736219184"><li id="cce_10_0549__en-us_topic_0000001442412949_li1657315271810">Check the node status.</li><li id="cce_10_0549__en-us_topic_0000001442412949_li174171868202">Check whether the auto scaling function of the node pool is disabled.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1124315983920"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1224325919390"><a href="cce_10_0437.html">Checking the Security Group</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p253445164013">Check whether the security group allows the master node to access nodes using ICMP.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row108546593396"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p12854195963917"><a href="cce_10_0439.html">To-Be-Migrated Node</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p2933344204613">Check whether the node needs to be migrated.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row9914155917399"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p13914359133914"><a href="cce_10_0440.html">Discarded Kubernetes Resource</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p7194161154112">Check whether there are discarded resources in the clusters.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row09788598396"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p179781959173917"><a href="cce_10_0441.html">Compatibility Risk</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p15464201194">Read the version compatibility differences and ensure that they are not affected.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row174414011406"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p6444014405"><a href="cce_10_0442.html">Node CCEAgent Version</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p2861201514153">Check whether cce-agent on the current node is of the latest version.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row31069019409"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1410690184016"><a href="cce_10_0443.html">Node CPU Usage</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p810614015407">Check whether the CPU usage of the node exceeds 90%.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row619220154016"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p219217010407"><a href="cce_10_0444.html">CRD Check</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><ul id="cce_10_0549__en-us_topic_0000001451598884_ul419914124164"><li id="cce_10_0549__en-us_topic_0000001442412953_li7487191111576">Check whether the key CRD <strong id="cce_10_0549__en-us_topic_0000001442412953_b747175931616">packageversions.version.cce.io</strong> of the cluster is deleted.</li><li id="cce_10_0549__en-us_topic_0000001442412953_li10951173491510">Check whether the cluster key CRD <strong id="cce_10_0549__en-us_topic_0000001442412953_b73319108179">network-attachment-definitions.k8s.cni.cncf.io</strong> is deleted.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row132592012403"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1325917015407"><a href="cce_10_0445.html">Node Disk</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><ul id="cce_10_0549__en-us_topic_0000001451598884_ul114629285423"><li id="cce_10_0549__en-us_topic_0000001392253032_li7487191111576">Check whether the key data disks on the node meet the upgrade requirements.</li><li id="cce_10_0549__en-us_topic_0000001392253032_li18768031175711">Check whether the <strong id="cce_10_0549__en-us_topic_0000001392253032_b1128216151819">/tmp</strong> directory has 500 MB available space.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row4327180184016"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1328160194020"><a href="cce_10_0446.html">Node DNS</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><ul id="cce_10_0549__en-us_topic_0000001451598884_ul1468843584217"><li id="cce_10_0549__en-us_topic_0000001392133068_li15855291891">Check whether the DNS configuration of the current node can resolve the OBS address.</li><li id="cce_10_0549__en-us_topic_0000001392133068_li31994128165">Check whether the current node can access the OBS address of the storage upgrade component package.</li></ul>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row122583334425"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p5258183313426"><a href="cce_10_0447.html">Node Key Directory File Permissions</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p263771514555">Check whether the key directory <strong id="cce_10_0549__en-us_topic_0000001442493109_b53969463245">/var/paas</strong> on the nodes contain files with abnormal owners or owner groups.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row141824819427"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p141844844213"><a href="cce_10_0448.html">Kubelet</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p418204884213">Check whether the kubelet on the node is running properly.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row848834812422"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p104881488423"><a href="cce_10_0449.html">Node Memory</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p321195515155">Check whether the memory usage of the node exceeds 90%.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row13774114816422"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p9774104816425"><a href="cce_10_0450.html">Node Clock Synchronization Server</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1870701016158">Check whether the clock synchronization server ntpd or chronyd of the node is running properly.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row19579132524311"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p205791625164320"><a href="cce_10_0451.html">Node OS</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p460310512439">Check whether the OS kernel version of the node is supported by CCE.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row6852534144316"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p0852103414431"><a href="cce_10_0452.html">Node CPU Count</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p779571034317">Check whether the number of CPUs on the master node is greater than 2.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1519713516430"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p16197173584311"><a href="cce_10_0453.html">Node Python Command</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p69201618144316">Check whether the Python commands are available on a node.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1080713514313"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p5807163594310"><a href="cce_10_0455.html">Node Readiness</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p188071835154320">Check whether the nodes in the cluster are ready.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row158731935134316"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1687315351435"><a href="cce_10_0456.html">Node journald</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p128731435174317">Check whether journald of a node is normal.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row10937183544314"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p3937163524311"><a href="cce_10_0457.html">containerd.sock Check</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p123584511438">Check whether the containerd.sock file exists on the node. This file affects the startup of container runtime in the Euler OS.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1899993510434"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p3999183584318"><a href="cce_10_0458.html">Internal Error</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p16105382453">Before the upgrade, check whether an internal error occurs.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row582123664318"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p7821636174312"><a href="cce_10_0459.html">Node Mount Point</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1284433124416">Check whether inaccessible mount points exist on the node.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1415573614314"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p815503610431"><a href="cce_10_0460.html">Kubernetes Node Taint</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__p13965351162718">Check whether the taint needed for cluster upgrade exists on the node.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row4226836174320"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1022610361437"><a href="cce_10_0478.html">everest Restriction Check</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__p925811347299">Check whether the current everest add-on has compatibility restrictions.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row182921336194312"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p529233617434"><a href="cce_10_0479.html">cce-hpa-controller Restriction Check</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p629293664318">Check whether the current cce-controller-hpa add-on has compatibility restrictions.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row163631236124314"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1736393654310"><a href="cce_10_0480.html">Enhanced CPU Management Policy</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__p3492134784018">Check whether the current cluster version and the target version support enhanced CPU policy.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row17207243174510"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p11761850104513"><a href="cce_10_0484.html">User Node Components Health</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p112379577523">Check whether the container runtime and network components on the user node are healthy.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row184931437451"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p135571950144520"><a href="cce_10_0485.html">Controller Node Components Health</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1190662411452">Check whether the Kubernetes, container runtime, and network components of the controller node are healthy.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row2777184311453"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p11824511459"><a href="cce_10_0486.html">Memory Resource Limit of Kubernetes Components</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p16777243174513">Check whether the resources of Kubernetes components, such as etcd and kube-controller-manager, exceed the upper limit.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row147061839144617"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p1706539104616"><a href="cce_10_0487.html">Checking Deprecated Kubernetes APIs</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p12632171523915">Check whether the called API has been discarded in the target Kubernetes version.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1349084004618"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p5490124013464"><a href="cce_10_0488.html">IPv6 Capability of a CCE Turbo Cluster</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p4415052154517">If IPv6 is enabled for a CCE Turbo cluster, check whether the target cluster version supports IPv6.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row872644019465"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p137261140134610"><a href="cce_10_0489.html">Node NetworkManager</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p15726104034618">Check whether NetworkManager of a node is normal.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row2392144194617"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p739213418463"><a href="cce_10_0490.html">Node ID File</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p128700811463">Check the ID file format.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row1574604184620"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p5746841124613"><a href="cce_10_0491.html">Node Configuration Consistency</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p974610411460">When you upgrade a CCE cluster to v1.19 or later, the system checks whether the following configuration files have been modified in the background:</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row179364424714"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p7793164494718"><a href="cce_10_0492.html">Node Configuration File</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p179374414479">Check whether the configuration files of key components exist on the node.</p>
+</td>
+</tr>
+<tr id="cce_10_0549__en-us_topic_0000001451598884_row2473181194818"><td class="cellrowborder" valign="top" width="29.349999999999998%" headers="mcps1.3.2.2.3.1.1 "><p id="cce_10_0549__en-us_topic_0000001451598884_p124730115482"><a href="cce_10_0493.html">Checking CoreDNS Configuration Consistency</a></p>
+</td>
+<td class="cellrowborder" valign="top" width="70.65%" headers="mcps1.3.2.2.3.1.2 "><p id="cce_10_0549__en-us_topic_0000001451598884_p167857555465">Check whether the current CoreDNS key configuration Corefile is different from the Helm release record. The difference may be overwritten during the add-on upgrade, <strong id="cce_10_0549__en-us_topic_0000001548755413_b38403204218">affecting domain name resolution in the cluster</strong>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0550.html">Troubleshooting for Pre-upgrade Check Exceptions</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0550.html b/docs/cce/umn/cce_10_0550.html
new file mode 100644
index 00000000..961e2919
--- /dev/null
+++ b/docs/cce/umn/cce_10_0550.html
@@ -0,0 +1,98 @@
+<a name="cce_10_0550"></a><a name="cce_10_0550"></a>
+
+<h1 class="topictitle1">Troubleshooting for Pre-upgrade Check Exceptions</h1>
+<div id="body0000001392133060"><p id="cce_10_0550__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0549.html">Performing Pre-upgrade Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0431.html">Checking the Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0432.html">Checking the Blocklist</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0433.html">Checking the Add-on</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0434.html">Checking the Helm Chart</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0435.html">Checking the Master Node SSH Connectivity</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0436.html">Checking the Node Pool</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0437.html">Checking the Security Group</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0439.html">To-Be-Migrated Node</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0440.html">Discarded Kubernetes Resource</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0441.html">Compatibility Risk</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0442.html">Node CCEAgent Version</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0443.html">Node CPU Usage</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0444.html">CRD Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0445.html">Node Disk</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0446.html">Node DNS</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0447.html">Node Key Directory File Permissions</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0448.html">Kubelet</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0449.html">Node Memory</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0450.html">Node Clock Synchronization Server</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0451.html">Node OS</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0452.html">Node CPU Count</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0453.html">Node Python Command</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0455.html">Node Readiness</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0456.html">Node journald</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0457.html">containerd.sock Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0458.html">Internal Error</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0459.html">Node Mount Point</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0460.html">Kubernetes Node Taint</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0478.html">everest Restriction Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0479.html">cce-hpa-controller Restriction Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0480.html">Enhanced CPU Management Policy</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0484.html">User Node Components Health</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0485.html">Controller Node Components Health</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0486.html">Memory Resource Limit of Kubernetes Components</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0487.html">Checking Deprecated Kubernetes APIs</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0488.html">IPv6 Capability of a CCE Turbo Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0489.html">Node NetworkManager</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0490.html">Node ID File</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0491.html">Node Configuration Consistency</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0492.html">Node Configuration File</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0493.html">Checking CoreDNS Configuration Consistency</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0560.html b/docs/cce/umn/cce_10_0560.html
new file mode 100644
index 00000000..4f0fab10
--- /dev/null
+++ b/docs/cce/umn/cce_10_0560.html
@@ -0,0 +1,28 @@
+<a name="cce_10_0560"></a><a name="cce_10_0560"></a>
+
+<h1 class="topictitle1">Post-Upgrade Verification</h1>
+<div id="body0000001426015842"><p id="cce_10_0560__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_10_0561.html">Service Verification</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0562.html">Pod Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0563.html">Node and Container Network Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0564.html">Node Label and Taint Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0565.html">New Node Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0566.html">New Pod Check</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_10_0567.html">Node Skipping Check for Reset</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0215.html">Upgrading a Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0561.html b/docs/cce/umn/cce_10_0561.html
new file mode 100644
index 00000000..f2717379
--- /dev/null
+++ b/docs/cce/umn/cce_10_0561.html
@@ -0,0 +1,18 @@
+<a name="cce_10_0561"></a><a name="cce_10_0561"></a>
+
+<h1 class="topictitle1">Service Verification</h1>
+<div id="body0000001475535329"><div class="section" id="cce_10_0561__section108726316515"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0561__p8658190173814">After the cluster is upgraded, check whether the services are running normal.</p>
+</div>
+<div class="section" id="cce_10_0561__section1893454111418"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0561__p2093420411847">Different services have different verification mode. Select a suitable one and verify the service before and after the upgrade.</p>
+<p id="cce_10_0561__p493414410417">You can verify the service from the following aspects:</p>
+<ul id="cce_10_0561__ul1793424120412"><li id="cce_10_0561__li99342418417">The service page is available.</li><li id="cce_10_0561__li193417411447">No alarm or event is generated on the normal platform.</li><li id="cce_10_0561__li893494118418">No error log is generated for key processes.</li><li id="cce_10_0561__li593419411748">The API dialing test is normal.</li></ul>
+</div>
+<div class="section" id="cce_10_0561__section944363664"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0561__p730634716397">If your online services are abnormal after the cluster upgrade, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0560.html">Post-Upgrade Verification</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0562.html b/docs/cce/umn/cce_10_0562.html
new file mode 100644
index 00000000..bcd613dd
--- /dev/null
+++ b/docs/cce/umn/cce_10_0562.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0562"></a><a name="cce_10_0562"></a>
+
+<h1 class="topictitle1">Pod Check</h1>
+<div id="body0000001475655297"><div class="section" id="cce_10_0562__section16493580139"><h4 class="sectiontitle">Check Item</h4><ul id="cce_10_0562__ul7790856519"><li id="cce_10_0562__li187915519516">Check whether unexpected pods exist in the cluster.</li><li id="cce_10_0562__li141083716511">Check whether there are pods restart unexpectedly in the cluster.</li></ul>
+</div>
+<div class="section" id="cce_10_0562__section199314152131"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0562__p42442165017">Go to the CCE console and access the cluster console. Choose <strong id="cce_10_0562__b16864195311106">Workloads</strong> in the navigation pane. On the displayed page, switch to the <strong id="cce_10_0562__b146920565142">Pods</strong> tab page. Select <strong id="cce_10_0562__b982103319163">All namespaces</strong>, click <strong id="cce_10_0562__b4670670160">Status</strong>, and check whether abnormal pods exist.</p>
+<p id="cce_10_0562__p11289195814918"><span><img id="cce_10_0562__image13423163213509" src="en-us_image_0000001518222492.png"></span></p>
+<p id="cce_10_0562__p552020351529">View the <strong id="cce_10_0562__b4483737181816">Restarts</strong> column to check whether there are pods that are restarted abnormally.</p>
+<p id="cce_10_0562__p112266916524"><span><img id="cce_10_0562__image17998114812553" src="en-us_image_0000001518062540.png"></span></p>
+</div>
+<div class="section" id="cce_10_0562__section436859111310"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0562__p1776821611489">If there are abnormal pods in your cluster after the cluster upgrade, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0560.html">Post-Upgrade Verification</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0563.html b/docs/cce/umn/cce_10_0563.html
new file mode 100644
index 00000000..f8787dce
--- /dev/null
+++ b/docs/cce/umn/cce_10_0563.html
@@ -0,0 +1,135 @@
+<a name="cce_10_0563"></a><a name="cce_10_0563"></a>
+
+<h1 class="topictitle1">Node and Container Network Check</h1>
+<div id="body0000001426015838"><div class="section" id="cce_10_0563__section15759131454110"><h4 class="sectiontitle">Check Item</h4><ul id="cce_10_0563__ul98041619134118"><li id="cce_10_0563__li1536618477406">Check whether the nodes are running properly.</li><li id="cce_10_0563__li1115628111419">Check whether the node network is normal.</li><li id="cce_10_0563__li12804019114119">Check whether the container network is normal.</li></ul>
+</div>
+<div class="section" id="cce_10_0563__section18223323124115"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0563__p6387848101619">The node status reflects whether the node component or network is normal.</p>
+<p id="cce_10_0563__p2506181322315">Go to the CCE console and access the cluster console. Choose <strong id="cce_10_0563__b7259205642216">Nodes</strong> in the navigation pane. You can filter node status by status to check whether there are abnormal nodes.</p>
+<p id="cce_10_0563__p7258193085411"><span><img id="cce_10_0563__image853591865010" src="en-us_image_0000001518062524.png"></span></p>
+<p id="cce_10_0563__p4697535125012">The container network affects services. Check whether your services are available.</p>
+</div>
+<div class="section" id="cce_10_0563__section1211214242509"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0563__p8110224185010">If the node status is abnormal, contact technical support.</p>
+<p id="cce_10_0563__p6577753115017">If the container network is abnormal and your services are affected, contact technical support and confirm the abnormal network access path.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0563__table2011152455016" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0563__row11101624195016"><th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.3.4.1.5.1.1"><p id="cce_10_0563__p15110182414501">Source</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.3.4.1.5.1.2"><p id="cce_10_0563__p511014241509">Destination</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.3.4.1.5.1.3"><p id="cce_10_0563__p11110152410503">Destination Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="25%" id="mcps1.3.3.4.1.5.1.4"><p id="cce_10_0563__p15110192419506">Possible Fault</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0563__row3110152410501"><td class="cellrowborder" rowspan="14" valign="top" width="25%" headers="mcps1.3.3.4.1.5.1.1 "><ul id="cce_10_0563__ul16651458125219"><li id="cce_10_0563__li1365112587528">Pods (inside a cluster)</li><li id="cce_10_0563__li11651858125214">Nodes (inside a cluster)</li><li id="cce_10_0563__li46511858105211">Nodes in the same VPC (outside a cluster)</li><li id="cce_10_0563__li10651145855210">Third-party clouds</li></ul>
+<p id="cce_10_0563__p3110524195014"></p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p211092410503">Public IP address of Service ELB</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p131107246509">Cluster traffic load balancing entry</p>
+</td>
+<td class="cellrowborder" valign="top" width="25%" headers="mcps1.3.3.4.1.5.1.4 "><p id="cce_10_0563__p4110424105019">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row31101924195015"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p6110102419509">Private IP address of Service ELB</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p13110112485020">Cluster traffic load balancing entry</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p15110162413501">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row9110132455013"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p6110424175020">Public IP address of ingress ELB</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p1411022416505">Cluster traffic load balancing entry</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p1211015240508">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row2011182418507"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p1411072415502">Private IP address of ingress ELB</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p1011142415507">Cluster traffic load balancing entry</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p12111224175010">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row1311116248504"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p10111192485017">Public IP address of NodePort Service</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p141112243507">Cluster traffic entry</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p411113242504">The kube proxy configuration is overwritten. This fault has been rectified in the upgrade process.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row31111224115015"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p9111324125019">Private IP address of NodePort Service</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p3111142415010">Cluster traffic entry</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p16111192465013">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row151114244503"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p13111122435011">ClusterIP Service</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p8111102411508">Service network plane</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p1511112245503">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row1311172419507"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p151111240506">Non NodePort Service port</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p18111124145017">Container network</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p1811117244507">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row1611112247507"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p911119241505">Cross-node pods</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p11111192415502">Container network plane</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p1011192455015">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row511116242508"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p13111152415501">Pods on the same node</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p17111924185018">Container network plane</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p111172455012">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row211162416502"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p16111182415504">Service and pod domain names are resolved by CoreDNS.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p191116249503">Domain name resolution</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p611192415501">No record.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row10111824105013"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p7111024175011">External domain names are resolved based on the CoreDNS hosts configuration.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p1311142475010">Domain name resolution</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p10111162411505">After the coredns add-on is upgraded, the configuration is overwritten. This fault has been rectified in the add-on upgrade process.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row1611112425018"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p8111324115017">External domain names are resolved based on the CoreDNS upstream server.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p181111324195015">Domain name resolution</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p6111424175015">After the coredns add-on is upgraded, the configuration is overwritten. This fault has been rectified in the add-on upgrade process.</p>
+</td>
+</tr>
+<tr id="cce_10_0563__row161111524125011"><td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.1 "><p id="cce_10_0563__p141116246505">External domain names are not resolved by CoreDNS.</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.2 "><p id="cce_10_0563__p101111424205018">Domain name resolution</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.3.4.1.5.1.3 "><p id="cce_10_0563__p5111152419508">No record.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0560.html">Post-Upgrade Verification</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0564.html b/docs/cce/umn/cce_10_0564.html
new file mode 100644
index 00000000..15c8e73f
--- /dev/null
+++ b/docs/cce/umn/cce_10_0564.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0564"></a><a name="cce_10_0564"></a>
+
+<h1 class="topictitle1">Node Label and Taint Check</h1>
+<div id="body0000001475415569"><div class="section" id="cce_10_0564__section1186016333197"><h4 class="sectiontitle">Check Item</h4><ul id="cce_10_0564__ul7790856519"><li id="cce_10_0564__li187915519516">Check whether the label is lost.</li><li id="cce_10_0564__li141083716511">Check whether there are unexpected taints.</li></ul>
+</div>
+<div class="section" id="cce_10_0564__section1343762620224"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0564__p4901151981814">Go to the CCE console, access the cluster console, and choose <strong id="cce_10_0564__b7831210101">Nodes</strong> in the navigation pane. On the displayed page, click the <strong id="cce_10_0564__b6687026191012">Nodes</strong> tab, select all nodes, and click <strong id="cce_10_0564__b156245651013">Manage Labels and Taints</strong> to view the labels and taints of the current node.</p>
+<p id="cce_10_0564__p172619531229"></p>
+<p id="cce_10_0564__p17397823173520"></p>
+</div>
+<div class="section" id="cce_10_0564__section9342143019353"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0564__p11287203453518">User labels are not changed during the cluster upgrade. If you find that labels are lost or added abnormally, contact technical support.</p>
+<p id="cce_10_0564__p1770115113511">If you find a new taint (<strong id="cce_10_0564__b6298834101313">node.kubernetes.io/upgrade</strong>) on a node, the node may be skipped during the upgrade. For details, see <a href="cce_10_0567.html">Node Skipping Check for Reset</a>.</p>
+<p id="cce_10_0564__p184141432173814">If you find that other taints are added to the node, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0560.html">Post-Upgrade Verification</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0565.html b/docs/cce/umn/cce_10_0565.html
new file mode 100644
index 00000000..4e41622a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0565.html
@@ -0,0 +1,17 @@
+<a name="cce_10_0565"></a><a name="cce_10_0565"></a>
+
+<h1 class="topictitle1">New Node Check</h1>
+<div id="body0000001475735841"><div class="section" id="cce_10_0565__section108041221122216"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0565__p1710142513227">Check whether nodes can be created in the cluster.</p>
+</div>
+<div class="section" id="cce_10_0565__section1629016474222"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0565__p15493145783311">Go to the CCE console and access the cluster console. Choose <strong id="cce_10_0565__b53631118164">Nodes</strong> in the navigation pane, and click <span class="uicontrol" id="cce_10_0565__uicontrol4877194712592"><b>Create Node</b></span>.</p>
+<p id="cce_10_0565__p15920163032319"></p>
+</div>
+<div class="section" id="cce_10_0565__section423713110235"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0565__p5177614142313">If nodes cannot be created in your cluster after the cluster is upgraded, contact technical support.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0560.html">Post-Upgrade Verification</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0566.html b/docs/cce/umn/cce_10_0566.html
new file mode 100644
index 00000000..49d8c00e
--- /dev/null
+++ b/docs/cce/umn/cce_10_0566.html
@@ -0,0 +1,51 @@
+<a name="cce_10_0566"></a><a name="cce_10_0566"></a>
+
+<h1 class="topictitle1">New Pod Check</h1>
+<div id="body0000001425538986"><div class="section" id="cce_10_0566__section357419312215"><h4 class="sectiontitle">Check Item</h4><ul id="cce_10_0566__ul8871556132311"><li id="cce_10_0566__li98719561237">Check whether pods can be created on the existing nodes after the cluster is upgraded.</li><li id="cce_10_0566__li26832613247">Check whether pods can be created on new nodes after the cluster is upgraded.</li></ul>
+</div>
+<div class="section" id="cce_10_0566__section109817185576"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0566__p546413612412">After creating a node based on <a href="cce_10_0565.html">New Node Check</a>, create a DaemonSet workload to create pods on each node.</p>
+<p id="cce_10_0566__p1727033711413">Go to the CCE console, access the cluster console, and choose <strong id="cce_10_0566__b766795771812">Workloads</strong> in the navigation pane. On the displayed page, switch to the <strong id="cce_10_0566__b15494102192">DaemonSets</strong> tab page and click <strong id="cce_10_0566__b393918274195">Create Workload</strong> or <strong id="cce_10_0566__b9196204031912">Create from YAML</strong> in the upper right corner.</p>
+<p id="cce_10_0566__p432212141614"></p>
+<p id="cce_10_0566__p176936422392">You are advised to use the image for routine tests as the base image. You can deploy a pod by referring to the following YAML file.</p>
+<div class="note" id="cce_10_0566__note176019511378"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0566__p6606513712">In this test, YAML deploys DaemonSet in the default namespace, uses <strong id="cce_10_0566__b34848218453">ngxin:perl</strong> as the base image, requests 10 MB CPU and 10 Mi memory, and limits 100 MB CPU and 50 Mi memory.</p>
+</div></div>
+<pre class="screen" id="cce_10_0566__screen43262015101610">apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: post-upgrade-check
+  namespace: default
+spec:
+  selector:
+    matchLabels:
+      app: post-upgrade-check
+      version: v1
+  template:
+    metadata:
+      labels:
+        app: post-upgrade-check
+        version: v1
+    spec:
+      containers:
+        - name: container-1
+          image: nginx:perl
+          imagePullPolicy: IfNotPresent
+          resources:
+            requests:
+              cpu: 10m
+              memory: 10Mi
+            limits:
+              cpu: 100m
+              memory: 50Mi</pre>
+<p id="cce_10_0566__p1118140171617">After the workload is created, check whether the pod status of the workload is normal.</p>
+<p id="cce_10_0566__p778217490182">After the check is complete, go to the CCE console and access the cluster console. Choose <strong id="cce_10_0566__b1340220479538">Workloads</strong> in the navigation pane. On the displayed page, switch to the <strong id="cce_10_0566__b18546155265319">DaemonSets</strong> tab page, choose <strong id="cce_10_0566__b1178814455416">More</strong> &gt; <strong id="cce_10_0566__b83361735416">Delete</strong> in the <strong id="cce_10_0566__b1363124895411">Operation</strong> column of the <strong id="cce_10_0566__b8416135914546">post-upgrade-check</strong> workload to delete the test workload.</p>
+<p id="cce_10_0566__p195182282319"></p>
+</div>
+<div class="section" id="cce_10_0566__section4404132201910"><h4 class="sectiontitle">Solution</h4><p id="cce_10_0566__p462735171914">If the pod cannot be created or the pod status is abnormal, contact technical support and specify whether the exception occurs on new nodes or existing nodes.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0560.html">Post-Upgrade Verification</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0567.html b/docs/cce/umn/cce_10_0567.html
new file mode 100644
index 00000000..7097d0fe
--- /dev/null
+++ b/docs/cce/umn/cce_10_0567.html
@@ -0,0 +1,20 @@
+<a name="cce_10_0567"></a><a name="cce_10_0567"></a>
+
+<h1 class="topictitle1">Node Skipping Check for Reset</h1>
+<div id="body0000001425698954"><div class="section" id="cce_10_0567__section16578202142017"><h4 class="sectiontitle">Check Item</h4><p id="cce_10_0567__p5640153113129">After the cluster is upgraded, you need to reset the nodes that fail to be upgraded.</p>
+</div>
+<div class="section" id="cce_10_0567__section17313652114"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0567__p4466101610219">Go back to the previous step or view the upgrade details on the upgrade history page to view the nodes that are skipped during the upgrade.</p>
+</div>
+<p id="cce_10_0567__p19256131510318"></p>
+<p id="cce_10_0567__p734141116491"></p>
+<p id="cce_10_0567__p1529716298332">The skipped nodes are displayed on the upgrade details page. Reset the skipped nodes after the upgrade is complete. For details about how to reset a node, see <a href="cce_10_0003.html">Resetting a Node</a>.</p>
+<p id="cce_10_0567__p1645815344217"></p>
+<div class="note" id="cce_10_0567__note145269352413"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0567__p1043323053519">Resetting a node will reset all node labels, which may affect workload scheduling. Before resetting a node, check and retain the labels that you have manually added to the node.</p>
+</div></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0560.html">Post-Upgrade Verification</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0602.html b/docs/cce/umn/cce_10_0602.html
index 4e68567a..efd78f0d 100644
--- a/docs/cce/umn/cce_10_0602.html
+++ b/docs/cce/umn/cce_10_0602.html
@@ -9,7 +9,7 @@
 <p id="cce_10_0602__p18443112903018">When creating a cluster of v1.23 or later, you can enable overload control during the cluster creation.</p>
 <p id="cce_10_0602__p1420532722311"></p>
 <p id="cce_10_0602__p871324410308"><strong id="cce_10_0602__b102672423224">Method 2: Enabling it in an existing cluster</strong></p>
-<ol id="cce_10_0602__ol1912211373118"><li id="cce_10_0602__cce_01_0007_li9879311402"><span>Log in to the CCE console and go to an existing cluster whose version is v1.23 or later.</span></li><li id="cce_10_0602__li10442205019333"><span>On the cluster information page, view the master node information. If overload control is not enabled, a message is displayed. You can click <strong id="cce_10_0602__b734791010406">Enable</strong> to enable the function.</span><p><p id="cce_10_0602__p496815743318"></p>
+<ol id="cce_10_0602__ol1912211373118"><li id="cce_10_0602__en-us_topic_0107283638_li9879311402"><span>Log in to the CCE console and go to an existing cluster whose version is v1.23 or later.</span></li><li id="cce_10_0602__li10442205019333"><span>On the cluster information page, view the master node information. If overload control is not enabled, a message is displayed. You can click <strong id="cce_10_0602__b734791010406">Enable</strong> to enable the function.</span><p><p id="cce_10_0602__p496815743318"></p>
 </p></li></ol>
 </div>
 <div class="section" id="cce_10_0602__section282685364919"><h4 class="sectiontitle">Disabling Cluster Overload Control</h4><ol id="cce_10_0602__ol20569143416503"><li id="cce_10_0602__li16569163465018"><span>Log in to the CCE console and go to an existing cluster whose version is v1.23 or later.</span></li><li id="cce_10_0602__li856933418505"><span>On the <strong id="cce_10_0602__b36261210161715">Cluster Information</strong> page, click <strong id="cce_10_0602__b698716494169">Manage</strong> in the upper right corner.</span></li><li id="cce_10_0602__li1739312010510"><span>Set <strong id="cce_10_0602__b57041690184">support-overload</strong> to <strong id="cce_10_0602__b15571920181810">false</strong> under <strong id="cce_10_0602__b11800102412187">kube-apiserver</strong>.</span></li><li id="cce_10_0602__li183566272524"><span>Click <span class="uicontrol" id="cce_10_0602__uicontrol137951638181810"><b>OK</b></span>.</span></li></ol>
diff --git a/docs/cce/umn/cce_10_0652.html b/docs/cce/umn/cce_10_0652.html
new file mode 100644
index 00000000..6bbfa8d6
--- /dev/null
+++ b/docs/cce/umn/cce_10_0652.html
@@ -0,0 +1,359 @@
+<a name="cce_10_0652"></a><a name="cce_10_0652"></a>
+
+<h1 class="topictitle1">Configuring a Node Pool</h1>
+<div id="body0000001513278792"><div class="section" id="cce_10_0652__en-us_topic_0000001513278792_section2858332152410"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_10_0652__en-us_topic_0000001513278792_p2827196112510">The default node pool DefaultPool does not support the following management operations.</p>
+</div>
+<div class="section" id="cce_10_0652__en-us_topic_0000001513278792_section137378218278"><h4 class="sectiontitle">Configuring Kubernetes Parameters</h4><p id="cce_10_0652__en-us_topic_0000001513278792_p143621952143410">CCE allows you to highly customize Kubernetes parameter settings on core components in a cluster. For more information, see <a href="https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/" target="_blank" rel="noopener noreferrer">kubelet</a>.</p>
+<p id="cce_10_0652__en-us_topic_0000001513278792_p19591154615282">This function is supported only in clusters of <strong id="cce_10_0652__b1383213125407">v1.15 and later</strong>. It is not displayed for clusters earlier than v1.15.</p>
+<ol id="cce_10_0652__en-us_topic_0000001513278792_ol14922951130"><li id="cce_10_0652__en-us_topic_0000001513278792_li330462393220"><span>Log in to the CCE console.</span></li><li id="cce_10_0652__en-us_topic_0000001513278792_li2075471341"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0652__uicontrol112322774018"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0652__b121234279407">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0652__en-us_topic_0000001513278792_li4919175839"><span>Choose <strong id="cce_10_0652__b738816064115">More</strong> &gt; <strong id="cce_10_0652__b938890174116">Manage</strong> next to the node pool name.</span></li><li id="cce_10_0652__en-us_topic_0000001513278792_li20922452316"><span>On the <span class="uicontrol" id="cce_10_0652__uicontrol1771376124112"><b>Manage Component</b></span> page on the right, change the values of the following Kubernetes parameters:</span><p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0652__en-us_topic_0000001513278792_table39227516315" frame="border" border="1" rules="all"><caption><b>Table 1 </b>kubelet</caption><thead align="left"><tr id="cce_10_0652__en-us_topic_0000001513278792_row59201451536"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.1.2.5.1.1"><p id="cce_10_0652__en-us_topic_0000001513278792_p199191758311">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.1.2.5.1.2"><p id="cce_10_0652__en-us_topic_0000001513278792_p09208511315">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.1.2.5.1.3"><p id="cce_10_0652__en-us_topic_0000001513278792_p69201514317">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.1.2.5.1.4"><p id="cce_10_0652__en-us_topic_0000001513278792_p123651546173612">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0652__en-us_topic_0000001513278792_row11921251238"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p20921756312">cpu-manager-policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p17921952039">CPU management policy configuration. For details, see <a href="cce_10_0551.html">CPU Core Binding</a>.</p>
+<ul id="cce_10_0652__en-us_topic_0000001513278792_ul25409302147"><li id="cce_10_0652__en-us_topic_0000001513278792_li1054043061419"><strong id="cce_10_0652__b73541461426">none</strong>: disables pods from exclusively occupying CPUs. Select this value if you want a large pool of shareable CPU cores.</li><li id="cce_10_0652__en-us_topic_0000001513278792_li954016300142"><strong id="cce_10_0652__b17570193611420">static</strong>: enables pods to exclusively occupy CPUs. Select this value if your workload is sensitive to latency in CPU cache and scheduling.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p992175733">none</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p3365646173618">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row192120517312"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1292113519312">kube-api-qps</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1392155933">Query per second (QPS) to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p192125435">100</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p2399129670">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row189211251930"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p179211857313">kube-api-burst</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p14921205536">Burst to use while talking with kube-apiserver.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p17921951232">100</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p15400129275">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row1992115514319"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p199211558318">max-pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p139211750310">Maximum number of pods managed by kubelet.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p792112514314">40</p>
+<p id="cce_10_0652__en-us_topic_0000001513278792_p15336122815358">20</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1400397719">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row1423519271022"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1424218271326">pod-pids-limit</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p72425271023">PID limit in Kubernetes</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p2024282719213">-1</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p16400690715">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row139221751031"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p39211451232">with-local-dns</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p11922155317">Whether to use the local IP address as the ClusterDNS of the node.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p159222510310">false</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p8400199577">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row1016115483359"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p2036473943312">event-qps</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p183642398336">QPS limit for event creation</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1336453943317">5</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p940011920710">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row119221051531"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p392225737">allowed-unsafe-sysctls</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p292218515312">Insecure system configuration allowed.</p>
+<p id="cce_10_0652__en-us_topic_0000001513278792_p1255654524218">Starting from <strong id="cce_10_0652__b772163719432">v1.17.17</strong>, CCE enables pod security policies for kube-apiserver. You need to add corresponding configurations to <strong id="cce_10_0652__b67213718437">allowedUnsafeSysctls</strong> of a pod security policy to make the policy take effect. (This configuration is not required for clusters earlier than v1.17.17.) For details, see <a href="cce_10_0275.html#cce_10_0275__section155111941177">Example of Enabling Unsafe Sysctls in Pod Security Policy</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p79221551538">[]</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p44001791776">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row362443718199"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1362593715194">kube-reserved-mem</p>
+<p id="cce_10_0652__en-us_topic_0000001513278792_p17130736112118">system-reserved-mem</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p6625153710197">Reserved node memory.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1625193751919">Depends on node specifications. For details, see <a href="cce_10_0178.html">Formula for Calculating the Reserved Resources of a Node</a>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p5625123701913">The sum of kube-reserved-mem and system-reserved-mem is less than half of the memory.</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row0769163972815"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p187704396286">topology-manager-policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p194194963117">Set the topology management policy.</p>
+<p id="cce_10_0652__en-us_topic_0000001513278792_p180294523117">Valid values are as follows:</p>
+<ul id="cce_10_0652__en-us_topic_0000001513278792_ul9802545113118"><li id="cce_10_0652__en-us_topic_0000001513278792_li280214514318"><strong id="cce_10_0652__b721423019445">restricted</strong>: kubelet accepts only pods that achieve optimal NUMA alignment on the requested resources.</li><li id="cce_10_0652__en-us_topic_0000001513278792_li88031945143113"><strong id="cce_10_0652__b19851354114418">best-effort</strong>: kubelet preferentially selects pods that implement NUMA alignment on CPU and device resources.</li><li id="cce_10_0652__en-us_topic_0000001513278792_li168031045123113"><strong id="cce_10_0652__b13695162911458">none</strong> (default): The topology management policy is disabled.</li><li id="cce_10_0652__en-us_topic_0000001513278792_li02141356163216"><strong id="cce_10_0652__b13271649144511">single-numa-node</strong>: kubelet allows only pods that are aligned to the same NUMA node in terms of CPU and device resources.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p477010397282">none</p>
+</td>
+<td class="cellrowborder" rowspan="2" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p18868132111335">The values can be modified during the node pool lifecycle.</p>
+<div class="notice" id="cce_10_0652__en-us_topic_0000001513278792_note89763063412"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><p id="cce_10_0652__en-us_topic_0000001513278792_p521818615343">Exercise caution when modifying topology-manager-policy and topology-manager-scope will restart kubelet and recalculate the resource allocation of pods based on the modified policy. As a result, running pods may restart or even fail to receive any resources.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row363114444281"><td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p4631124411282">topology-manager-scope</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p183841836183219">Set the resource alignment granularity of the topology management policy. Valid values are as follows:</p>
+<ul id="cce_10_0652__en-us_topic_0000001513278792_ul3384836153218"><li id="cce_10_0652__en-us_topic_0000001513278792_li038413613218"><strong id="cce_10_0652__b186071628144618">container</strong> (default)</li><li id="cce_10_0652__en-us_topic_0000001513278792_li13216195983210"><strong id="cce_10_0652__b57915322462">pod</strong></li></ul>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p136311744192811">Container</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row111258127710"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p149731155143115">resolv-conf</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1097385593111">DNS resolution configuration file specified by a container</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p69731755173113">The default value is null.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p15764161811394">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row2451815662"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p64518151167">runtime-request-timeout</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p14511215662">Timeout interval of all runtime requests except long-running requests (pull, logs, exec, and attach).</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p878113511866">The default value is <strong id="cce_10_0652__b10557134484720">2m0s</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p2451151519617">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row1358811815619"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p105891918568">registry-pull-qps</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1558920181968">Maximum number of image pulls per second.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p6589418563">The default value is <strong id="cce_10_0652__b9836115154717">5</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p644418247817">The value ranges from 1 to 50.</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row84242191465"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p5424121916619">registry-burst</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p134241919966">Maximum number of burst image pulls.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p9229163589">The default value is <strong id="cce_10_0652__b7410636482">10</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1145211241483">The value ranges from 1 to 100 and must be greater than or equal to the value of <strong id="cce_10_0652__b52961716489">registry-pull-qps</strong>.</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row10556103612614"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p855614361065">serialize-image-pulls</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p05568361868">When this function is enabled, kubelet is notified to pull only one image at a time.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.1.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p105561336569">The default value is <strong id="cce_10_0652__b842352706145855_5">true</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.1.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p84605241582">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0652__en-us_topic_0000001513278792_table1571891811414" frame="border" border="1" rules="all"><caption><b>Table 2 </b>kube-proxy</caption><thead align="left"><tr id="cce_10_0652__en-us_topic_0000001513278792_row167189181747"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.2.2.5.1.1"><p id="cce_10_0652__en-us_topic_0000001513278792_p107181181415">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.2.2.5.1.2"><p id="cce_10_0652__en-us_topic_0000001513278792_p87185181642">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.2.2.5.1.3"><p id="cce_10_0652__en-us_topic_0000001513278792_p37181188420">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.2.2.5.1.4"><p id="cce_10_0652__en-us_topic_0000001513278792_p1471881813414">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0652__en-us_topic_0000001513278792_row207193186419"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p8845421957">conntrack-min</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p148451227515">sysctl -w net.nf_conntrack_max</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p18456215515">131072</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p27191618446">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row6523175217418"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1984513217519">conntrack-tcp-timeout-close-wait</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p128459215512">sysctl -w net.netfilter.nf_conntrack_tcp_timeout_close_wait</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.2.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p9845132753">1h0m0s</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.2.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p9585154914198">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0652__en-us_topic_0000001513278792_table191081201418" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Network components (available only for CCE Turbo clusters)</caption><thead align="left"><tr id="cce_10_0652__en-us_topic_0000001513278792_row1410911019116"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.3.2.5.1.1"><p id="cce_10_0652__en-us_topic_0000001513278792_p41091501917">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.3.2.5.1.2"><p id="cce_10_0652__en-us_topic_0000001513278792_p6109140914">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.3.2.5.1.3"><p id="cce_10_0652__en-us_topic_0000001513278792_p5109130310">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.3.2.5.1.4"><p id="cce_10_0652__en-us_topic_0000001513278792_p2109803111">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0652__en-us_topic_0000001513278792_row6109501911"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p83386191515">nic-threshold</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1338181913113">Low threshold of the number of bound ENIs:High threshold of the number of bound ENIs</p>
+<div class="note" id="cce_10_0652__en-us_topic_0000001513278792_note33382191715"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0652__en-us_topic_0000001513278792_p103387191618">This parameter is being discarded. Use the dynamic pre-binding parameters of the other four ENIs.</p>
+</div></div>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p633820191315">Default: <strong id="cce_10_0652__b954883910508">0:0</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p8110201815">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row113597313118"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p193381519112">nic-minimum-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p16339131911115">Minimum number of ENIs bound to a node at the node pool level</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p033918197116">Default: <strong id="cce_10_0652__b157421335145017">10</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p936113216">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row1330911415115"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p933916192120">nic-maximum-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p143398192110">Maximum number of ENIs pre-bound to a node at the node pool level</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p13339819513">Default: <strong id="cce_10_0652__b5974175120506">0</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1331017416118">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row48521749118"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p233910191217">nic-warm-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1233918192111">Number of ENIs pre-bound to a node at the node pool level</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p11339919410">Default: <strong id="cce_10_0652__b87521830514">2</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1853140119">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row10457153114"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p73391219914">nic-max-above-warm-target</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p033941919119">Reclaim number of ENIs pre-bound to a node at the node pool level</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.3.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p833919195115">Default: <strong id="cce_10_0652__b17293171635110">2</strong></p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.3.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p11457125513">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0652__en-us_topic_0000001513278792_table154151221155917" frame="border" border="1" rules="all"><caption><b>Table 4 </b>Pod security group in a node pool (available only for CCE Turbo clusters)</caption><thead align="left"><tr id="cce_10_0652__en-us_topic_0000001513278792_row10416122195916"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.4.2.5.1.1"><p id="cce_10_0652__en-us_topic_0000001513278792_p0416142185919">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.4.2.5.1.2"><p id="cce_10_0652__en-us_topic_0000001513278792_p17416821175918">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.4.2.5.1.3"><p id="cce_10_0652__en-us_topic_0000001513278792_p1241616210595">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.4.2.5.1.4"><p id="cce_10_0652__en-us_topic_0000001513278792_p741692165912">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0652__en-us_topic_0000001513278792_row104166213595"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.4.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p34194417595">security_groups_for_nodepool</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.4.2.5.1.2 "><ul id="cce_10_0652__en-us_topic_0000001513278792_ul1641174410590"><li id="cce_10_0652__en-us_topic_0000001513278792_li114114443592">Default security group used by pods in a node pool. You can enter the security group ID. If this parameter is not set, the default security group of the cluster container network is used. A maximum of five security group IDs can be specified at the same time, separated by semicolons (;).</li><li id="cce_10_0652__en-us_topic_0000001513278792_li4419444591">The priority of the security group is lower than that of the security group configured for <a href="cce_10_0288.html">Security Groups</a>.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.4.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p114116445597">-</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.4.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1541944135919">-</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0652__en-us_topic_0000001513278792_table36626237217" frame="border" border="1" rules="all"><caption><b>Table 5 </b>Docker (available only for node pools that use Docker)</caption><thead align="left"><tr id="cce_10_0652__en-us_topic_0000001513278792_row1066210231324"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.5.2.5.1.1"><p id="cce_10_0652__en-us_topic_0000001513278792_p9662182318210">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.5.2.5.1.2"><p id="cce_10_0652__en-us_topic_0000001513278792_p466218231720">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.2.4.4.2.5.2.5.1.3"><p id="cce_10_0652__en-us_topic_0000001513278792_p186628235215">Default Value</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30%" id="mcps1.3.2.4.4.2.5.2.5.1.4"><p id="cce_10_0652__en-us_topic_0000001513278792_p1766213231829">Remarks</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0652__en-us_topic_0000001513278792_row46629235211"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p11685711317">native-umask</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1616857733">`--exec-opt native.umask</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p3168137134">normal</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p111684711314">Cannot be changed.</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row106633238210"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p17168971837">docker-base-size</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p6168671733">`--storage-opts dm.basesize</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p616816719313">0</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p18168170310">Cannot be changed.</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row866332311214"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p101688716312">insecure-registry</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p19168476317">Address of an insecure image registry</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p9168197739">false</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p121688713318">Cannot be changed.</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row174045431722"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p171685712315">limitcore</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p61761055465">Maximum size of a core file in a container. The unit is byte.</p>
+<p id="cce_10_0652__en-us_topic_0000001513278792_p1292464083115">If not specified, the value is <strong id="cce_10_0652__b17607203755312">infinity</strong>.</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p1116997338">5368709120</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p4169274317">-</p>
+</td>
+</tr>
+<tr id="cce_10_0652__en-us_topic_0000001513278792_row14622447029"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.1 "><p id="cce_10_0652__en-us_topic_0000001513278792_p20169570312">default-ulimit-nofile</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.2 "><p id="cce_10_0652__en-us_topic_0000001513278792_p5169127934">Limit on the number of handles in a container</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.2.4.4.2.5.2.5.1.3 "><p id="cce_10_0652__en-us_topic_0000001513278792_p916918717314">{soft}:{hard}</p>
+</td>
+<td class="cellrowborder" valign="top" width="30%" headers="mcps1.3.2.4.4.2.5.2.5.1.4 "><p id="cce_10_0652__en-us_topic_0000001513278792_p91697713315">The value cannot exceed the value of the kernel parameter <strong id="cce_10_0652__b11355165217532">nr_open</strong> and cannot be a negative number.</p>
+<p id="cce_10_0652__en-us_topic_0000001513278792_p18169271534">You can run the following command to obtain the kernel parameter <strong id="cce_10_0652__b20650131515545">nr_open</strong>:</p>
+<pre class="screen" id="cce_10_0652__en-us_topic_0000001513278792_screen716912711319">sysctl -a | grep nr_open</pre>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_10_0652__en-us_topic_0000001513278792_li1092210513312"><span>Click <strong id="cce_10_0652__b10729194918555">OK</strong>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0222.html">Managing a Node Pool</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0653.html b/docs/cce/umn/cce_10_0653.html
new file mode 100644
index 00000000..60434d07
--- /dev/null
+++ b/docs/cce/umn/cce_10_0653.html
@@ -0,0 +1,89 @@
+<a name="cce_10_0653"></a><a name="cce_10_0653"></a>
+
+<h1 class="topictitle1">Updating a Node Pool</h1>
+<div id="body0000001564478021"><div class="section" id="cce_10_0653__en-us_topic_0000001564478021_section1475835710275"><h4 class="sectiontitle">Constraints</h4><ul id="cce_10_0653__en-us_topic_0000001564478021_ul8569611122818"><li id="cce_10_0653__en-us_topic_0000001564478021_li1743542655118">When editing the resource tags of the node pool. The modified configuration takes effect only for new nodes. To synchronize the configuration to the existing nodes, you need to manually reset the existing nodes.</li><li id="cce_10_0653__en-us_topic_0000001564478021_li756951114281">Updates of kubernetes labels and taints are automatically synchronized to existing nodes. You do not need to reset nodes.</li></ul>
+</div>
+<div class="section" id="cce_10_0653__en-us_topic_0000001564478021_section1456114772713"><h4 class="sectiontitle">Updating a Node Pool</h4><ol id="cce_10_0653__en-us_topic_0000001564478021_ol87116345495"><li id="cce_10_0653__en-us_topic_0000001564478021_li095292023413"><span>Log in to the CCE console.</span></li><li id="cce_10_0653__en-us_topic_0000001564478021_li3952220173414"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0653__en-us_topic_0000001564478021_uicontrol10087227064234"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0653__en-us_topic_0000001564478021_b9525506504234">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0653__en-us_topic_0000001564478021_li128412475118"><span>Click <strong id="cce_10_0653__en-us_topic_0000001564478021_b17365195512175">Update</strong> next to the name of the node pool you will edit. Configure the parameters in the displayed <strong id="cce_10_0653__en-us_topic_0000001564478021_b1236520553177">Update Node Pool</strong> page.</span><p><div class="p" id="cce_10_0653__en-us_topic_0000001564478021_p118166389258"><strong id="cce_10_0653__en-us_topic_0000001564478021_b45514591171">Basic Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0653__en-us_topic_0000001564478021_table6454152183120" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic settings</caption><thead align="left"><tr id="cce_10_0653__en-us_topic_0000001564478021_row194522023319"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.3.2.1.2.2.3.1.1"><p id="cce_10_0653__en-us_topic_0000001564478021_p1452192133119">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.2.2.3.2.1.2.2.3.1.2"><p id="cce_10_0653__en-us_topic_0000001564478021_p114521229312">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0653__en-us_topic_0000001564478021_row164535216319"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.2.3.1.1 "><p id="cce_10_0653__en-us_topic_0000001564478021_p18452325317">Node Pool Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.2.3.1.2 "><p id="cce_10_0653__en-us_topic_0000001564478021_p1345314243116">Name of the node pool.</p>
+</td>
+</tr>
+<tr id="cce_10_0653__en-us_topic_0000001564478021_row1245342103115"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.2.3.1.1 "><p id="cce_10_0653__en-us_topic_0000001564478021_p7453142133115">Nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.2.3.1.2 "><p id="cce_10_0653__en-us_topic_0000001564478021_p945302153119">Modify the number of nodes based on service requirements.</p>
+</td>
+</tr>
+<tr id="cce_10_0653__en-us_topic_0000001564478021_row545316217315"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.1.2.2.3.1.1 "><p id="cce_10_0653__en-us_topic_0000001564478021_p10453162193118">Auto Scaling</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.1.2.2.3.1.2 "><p id="cce_10_0653__en-us_topic_0000001564478021_p2045322133110">By default, this parameter is disabled.</p>
+<p id="cce_10_0653__en-us_topic_0000001564478021_p94531624314">After you enable autoscaler by clicking <span><img id="cce_10_0653__en-us_topic_0000001564478021_image164531263118" src="en-us_image_0000001629926113.png"></span>, nodes in the node pool are automatically created or deleted based on service requirements.</p>
+<ul id="cce_10_0653__en-us_topic_0000001564478021_ul11453322315"><li id="cce_10_0653__en-us_topic_0000001564478021_li1453326312"><strong id="cce_10_0653__en-us_topic_0000001564478021_b136545591182">Maximum Nodes</strong> and <strong id="cce_10_0653__en-us_topic_0000001564478021_b126551259191812">Minimum Nodes</strong>: You can set the maximum and minimum number of nodes to ensure that the number of nodes to be scaled is within a proper range.</li><li id="cce_10_0653__en-us_topic_0000001564478021_li84536212313"><strong id="cce_10_0653__en-us_topic_0000001564478021_b10372261919">Priority</strong>: A larger value indicates a higher priority. For example, if this parameter is set to <strong id="cce_10_0653__en-us_topic_0000001564478021_b637162201911">1</strong> and <strong id="cce_10_0653__en-us_topic_0000001564478021_b16381251913">4</strong> respectively for node pools A and B, B has a higher priority than A, and auto scaling is first triggered for B. If the priorities of multiple node pools are set to the same value, for example, <strong id="cce_10_0653__en-us_topic_0000001564478021_b692033171911">2</strong>, the node pools are not prioritized and the system performs scaling based on the minimum resource waste principle.<p id="cce_10_0653__en-us_topic_0000001564478021_p1987941965911">After the priority is updated, the configuration takes effect within 1 minute.</p>
+</li><li id="cce_10_0653__en-us_topic_0000001564478021_li94531923318"><strong id="cce_10_0653__en-us_topic_0000001564478021_b172691134196">Cooldown Period</strong>: Enter a period, in minutes. This field indicates the period during which the nodes added in the current node pool cannot be scaled in.</li></ul>
+<p id="cce_10_0653__en-us_topic_0000001564478021_p645312233113">If the <strong id="cce_10_0653__en-us_topic_0000001564478021_b324781811913">Autoscaler</strong> field is set to on, install the <a href="cce_10_0154.html">autoscaler add-on</a> to use the autoscaler feature.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="p" id="cce_10_0653__en-us_topic_0000001564478021_p63204532313"><strong id="cce_10_0653__en-us_topic_0000001564478021_b1832015353119">Advanced Settings</strong>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0653__en-us_topic_0000001564478021_table1388513493324" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Advanced settings</caption><thead align="left"><tr id="cce_10_0653__en-us_topic_0000001564478021_row1886164917324"><th align="left" class="cellrowborder" valign="top" width="28.000000000000004%" id="mcps1.3.2.2.3.2.2.2.2.3.1.1"><p id="cce_10_0653__en-us_topic_0000001564478021_p20886649143214">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="72%" id="mcps1.3.2.2.3.2.2.2.2.3.1.2"><p id="cce_10_0653__en-us_topic_0000001564478021_p1188694963213">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0653__en-us_topic_0000001564478021_row1888624910324"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0653__en-us_topic_0000001564478021_p688619499325">Kubernetes Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0653__en-us_topic_0000001564478021_p1588624993215">Click <strong id="cce_10_0653__en-us_topic_0000001564478021_b10863105282215">Add Label</strong> to set the key-value pair attached to the Kubernetes objects (such as pods). A maximum of 20 labels can be added.</p>
+<p id="cce_10_0653__en-us_topic_0000001564478021_p388612497324">Labels can be used to distinguish nodes. With workload affinity settings, container pods can be scheduled to a specified node. For more information, see <a href="https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/" target="_blank" rel="noopener noreferrer">Labels and Selectors</a>.</p>
+<div class="note" id="cce_10_0653__en-us_topic_0000001564478021_note72401322193313"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0653__en-us_topic_0000001564478021_p20240422183311">After a <span class="parmname" id="cce_10_0653__en-us_topic_0000001564478021_parmname4728187112316"><b>Kubernetes label</b></span> is modified, the inventory nodes in the node pool are updated synchronously.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0653__en-us_topic_0000001564478021_row10887134923219"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0653__en-us_topic_0000001564478021_p888714923217">Resource Tag</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0653__en-us_topic_0000001564478021_p16887144933210">You can add resource tags to classify resources.</p>
+<p id="cce_10_0653__en-us_topic_0000001564478021_p18871349143217">You can create <strong id="cce_10_0653__en-us_topic_0000001564478021_b148051013102319">predefined tags</strong> in Tag Management Service (TMS). Predefined tags are visible to all service resources that support the tagging function. You can use these tags to improve tagging and resource migration efficiency. </p>
+<p id="cce_10_0653__en-us_topic_0000001564478021_p18887649123215">CCE will automatically create the "CCE-Dynamic-Provisioning-Node=<em id="cce_10_0653__en-us_topic_0000001564478021_i1499251618242">node id</em>" tag.</p>
+<div class="note" id="cce_10_0653__en-us_topic_0000001564478021_note076235953416"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0653__en-us_topic_0000001564478021_p1976265917345">After a <span class="parmname" id="cce_10_0653__en-us_topic_0000001564478021_parmname4878518102415"><b>resource tag</b></span> is modified, the modification automatically takes effect when a node is added. For existing nodes, you need to manually reset the nodes for the modification to take effect.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0653__en-us_topic_0000001564478021_row3887849173215"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0653__en-us_topic_0000001564478021_p19887164914326">Taint</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.2 "><div class="p" id="cce_10_0653__en-us_topic_0000001564478021_p18870496323">This field is left blank by default. You can add taints to set anti-affinity for the node. A maximum of 10 taints are allowed for each node. Each taint contains the following parameters:<ul id="cce_10_0653__en-us_topic_0000001564478021_ul188871749133213"><li id="cce_10_0653__en-us_topic_0000001564478021_li198871349123212"><strong id="cce_10_0653__en-us_topic_0000001564478021_b1355092720245">Key</strong>: A key must contain 1 to 63 characters, starting with a letter or digit. Only letters, digits, hyphens (-), underscores (_), and periods (.) are allowed. A DNS subdomain name can be used as the prefix of a key.</li><li id="cce_10_0653__en-us_topic_0000001564478021_li188871549153212"><strong id="cce_10_0653__en-us_topic_0000001564478021_b1652412914244">Value</strong>: A value must start with a letter or digit and can contain a maximum of 63 characters, including letters, digits, hyphens (-), underscores (_), and periods (.).</li><li id="cce_10_0653__en-us_topic_0000001564478021_li1988734917326"><strong id="cce_10_0653__en-us_topic_0000001564478021_b4677131102416">Effect</strong>: Available options are <strong id="cce_10_0653__en-us_topic_0000001564478021_b1667833172417">NoSchedule</strong>, <strong id="cce_10_0653__en-us_topic_0000001564478021_b1367823132415">PreferNoSchedule</strong>, and <strong id="cce_10_0653__en-us_topic_0000001564478021_b1667833122412">NoExecute</strong>.</li></ul>
+</div>
+<p id="cce_10_0653__en-us_topic_0000001564478021_p1188713495328">For details, see <a href="cce_10_0352.html">Managing Node Taints</a>.</p>
+<div class="note" id="cce_10_0653__en-us_topic_0000001564478021_note0631151634312"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0653__en-us_topic_0000001564478021_p1263111644312">After a <span class="parmname" id="cce_10_0653__en-us_topic_0000001564478021_parmname1660324116245"><b>taint</b></span> is modified, the inventory nodes in the node pool are updated synchronously.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0653__en-us_topic_0000001564478021_row105511962411"><td class="cellrowborder" valign="top" width="28.000000000000004%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.1 "><p id="cce_10_0653__en-us_topic_0000001564478021_p15520615414">Edit Key pair</p>
+</td>
+<td class="cellrowborder" valign="top" width="72%" headers="mcps1.3.2.2.3.2.2.2.2.3.1.2 "><p id="cce_10_0653__en-us_topic_0000001564478021_p10552156947">Only node pools that use key pairs for login support key pair editing. You can select another key pair.</p>
+<div class="note" id="cce_10_0653__en-us_topic_0000001564478021_note528463510616"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0653__en-us_topic_0000001564478021_p1528512351611">The edited key pair automatically takes effect when a node is added. For existing nodes, you need to manually reset the nodes for the key pair to take effect.</p>
+</div></div>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_10_0653__en-us_topic_0000001564478021_li12598104717491"><span>When the configuration is complete, click <strong id="cce_10_0653__en-us_topic_0000001564478021_b2017073816288">OK</strong>.</span><p><p id="cce_10_0653__en-us_topic_0000001564478021_p365717537538">After the node pool parameters are updated, go to the <span class="uicontrol" id="cce_10_0653__en-us_topic_0000001564478021_uicontrol83924102919"><b>Nodes</b></span> page to check whether the node to which the node pool belongs is updated. You can reset the node to synchronize the configuration updates for the node pool.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0222.html">Managing a Node Pool</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0654.html b/docs/cce/umn/cce_10_0654.html
new file mode 100644
index 00000000..9c8a6730
--- /dev/null
+++ b/docs/cce/umn/cce_10_0654.html
@@ -0,0 +1,19 @@
+<a name="cce_10_0654"></a><a name="cce_10_0654"></a>
+
+<h1 class="topictitle1">Synchronizing Node Pools</h1>
+<div id="body0000001564597921"><p id="cce_10_0654__en-us_topic_0000001564597921_p12532332101219">After the configuration of a node pool is updated, some configurations cannot be automatically synchronized for existing nodes. You can manually synchronize configurations for these nodes.</p>
+<div class="notice" id="cce_10_0654__en-us_topic_0000001564597921_note417219165143"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0654__en-us_topic_0000001564597921_ul43215297206"><li id="cce_10_0654__en-us_topic_0000001564597921_li7321192972015">Do not delete or reset nodes during batch synchronization. Otherwise, the synchronization of node pool configuration may fail.</li><li id="cce_10_0654__en-us_topic_0000001564597921_li166402302204">This operation involves resetting nodes. <strong id="cce_10_0654__en-us_topic_0000001564597921_b93441952155516">Workload services running on the nodes may be interrupted due to single-instance deployment or insufficient schedulable resources.</strong> Evaluate the upgrade risks and perform the upgrade during off-peak hours. You can also <a href="https://kubernetes.io/docs/tasks/run-application/configure-pdb/" target="_blank" rel="noopener noreferrer">specify a disruption budget for your application</a>) to ensure the availability of key services during the upgrade.</li><li id="cce_10_0654__en-us_topic_0000001564597921_li121201213155914">During configuration synchronization for existing nodes, the system disk and data disk will be cleared. Back up important data before the synchronization.</li><li id="cce_10_0654__en-us_topic_0000001564597921_li1906164412547">Only some node pool parameters can be synchronized by resetting nodes. The constraints are as follows:<ul id="cce_10_0654__en-us_topic_0000001564597921_ul1983773019558"><li id="cce_10_0654__en-us_topic_0000001564597921_en-us_topic_0000001564478021_li1743542655118">When editing the resource tags of the node pool. The modified configuration takes effect only for new nodes. To synchronize the configuration to the existing nodes, you need to manually reset the existing nodes.</li><li id="cce_10_0654__en-us_topic_0000001564597921_en-us_topic_0000001564478021_li756951114281">Updates of kubernetes labels and taints are automatically synchronized to existing nodes. You do not need to reset nodes.</li></ul>
+</li></ul>
+</div></div>
+<div class="section" id="cce_10_0654__en-us_topic_0000001564597921_section7681224173015"><h4 class="sectiontitle">Synchronizing a Single Node</h4><ol id="cce_10_0654__en-us_topic_0000001564597921_ol3210234114416"><li id="cce_10_0654__en-us_topic_0000001564597921_li19210034174416"><span>Log in to the CCE console.</span></li><li id="cce_10_0654__en-us_topic_0000001564597921_li2210103415443"><span>Access the cluster console, choose <span class="uicontrol" id="cce_10_0654__en-us_topic_0000001564597921_uicontrol81723683495515"><b>Nodes</b></span> in the navigation pane, and click the <span class="uicontrol" id="cce_10_0654__en-us_topic_0000001564597921_uicontrol30734145395515"><b>Node Pools</b></span> tab on the right.</span></li><li id="cce_10_0654__en-us_topic_0000001564597921_li18131106184816"><span><strong id="cce_10_0654__en-us_topic_0000001564597921_b112264518538">upgrade</strong> is displayed in the <strong id="cce_10_0654__en-us_topic_0000001564597921_b106689567532">Node Pool</strong> column of the existing nodes in the node pool.</span></li><li id="cce_10_0654__en-us_topic_0000001564597921_li1021017348444"><span>Click <span class="uicontrol" id="cce_10_0654__en-us_topic_0000001564597921_uicontrol5210133411445"><b>update</b></span>. In the dialog box that is displayed, confirm whether to reset the node immediately.</span></li></ol>
+</div>
+<div class="section" id="cce_10_0654__en-us_topic_0000001564597921_section185910414306"><h4 class="sectiontitle">Batch Synchronization</h4><ol id="cce_10_0654__en-us_topic_0000001564597921_ol2073011220179"><li id="cce_10_0654__en-us_topic_0000001564597921_li18281961715"><span>Log in to the CCE console.</span></li><li id="cce_10_0654__en-us_topic_0000001564597921_li18289971715"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0654__en-us_topic_0000001564597921_uicontrol20700584744235"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0654__en-us_topic_0000001564597921_b15184805584235">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0654__en-us_topic_0000001564597921_li11298919177"><span>Choose <span class="uicontrol" id="cce_10_0654__en-us_topic_0000001564597921_uicontrol22014550995515"><b>More &gt; Synchronize</b></span> in the <strong id="cce_10_0654__en-us_topic_0000001564597921_b10711937165513">Operation</strong> column of the target node pool.</span></li><li id="cce_10_0654__en-us_topic_0000001564597921_li1429169191711"><span>In the <span class="uicontrol" id="cce_10_0654__en-us_topic_0000001564597921_uicontrol14298971715"><b>Batch Synchronization</b></span> window, set the synchronization parameters.</span><p><ul id="cce_10_0654__en-us_topic_0000001564597921_ul02959141715"><li id="cce_10_0654__en-us_topic_0000001564597921_li7746112161318"><strong id="cce_10_0654__en-us_topic_0000001564597921_b0114105810218">Synchronization Policy</strong>: <strong id="cce_10_0654__en-us_topic_0000001564597921_b1278941602216">Node Reset</strong> is supported.</li><li id="cce_10_0654__en-us_topic_0000001564597921_li3295911174"><strong id="cce_10_0654__en-us_topic_0000001564597921_b127635538227">Max. Nodes for Batch Synchronize</strong>: Nodes will be unavailable during synchronization in <strong id="cce_10_0654__en-us_topic_0000001564597921_b143842334232">Node Reset</strong> mode. Set this parameter properly to prevent pod scheduling failures caused by too many unavailable nodes in the cluster.</li></ul>
+</p></li><li id="cce_10_0654__en-us_topic_0000001564597921_li7291091174"><span>In the node list, select the nodes to be synchronized and click <span class="uicontrol" id="cce_10_0654__en-us_topic_0000001564597921_uicontrol4298918179"><b>OK</b></span> to start the synchronization.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0222.html">Managing a Node Pool</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0655.html b/docs/cce/umn/cce_10_0655.html
new file mode 100644
index 00000000..a70a8950
--- /dev/null
+++ b/docs/cce/umn/cce_10_0655.html
@@ -0,0 +1,12 @@
+<a name="cce_10_0655"></a><a name="cce_10_0655"></a>
+
+<h1 class="topictitle1">Copying a Node Pool</h1>
+<div id="body0000001513438388"><p id="cce_10_0655__en-us_topic_0000001513438388_p050645718552">You can copy the configuration of an existing node pool to create a new node pool on the CCE console.</p>
+<ol id="cce_10_0655__en-us_topic_0000001513438388_ol12506185710555"><li id="cce_10_0655__en-us_topic_0000001513438388_li11561534103619"><span>Log in to the CCE console.</span></li><li id="cce_10_0655__en-us_topic_0000001513438388_li16561134183613"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0655__en-us_topic_0000001513438388_uicontrol21163371564236"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0655__en-us_topic_0000001513438388_b2499882104236">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0655__en-us_topic_0000001513438388_li55061457115511"><span>Choose <span class="uicontrol" id="cce_10_0655__en-us_topic_0000001513438388_uicontrol595745220259"><b>More &gt; Copy</b></span> next to a node pool name to copy the node pool.</span></li><li id="cce_10_0655__en-us_topic_0000001513438388_li9918142223519"><span>The configurations of the selected node pool are replicated to the <span class="uicontrol" id="cce_10_0655__uicontrol1812982113226"><b>Clone Node Pool</b></span> page. You can edit the configurations as required. For details about configuration items, see <a href="cce_10_0012.html">Creating a Node Pool</a>. After confirming the configuration, click <span class="uicontrol" id="cce_10_0655__en-us_topic_0000001513438388_uicontrol1372065613013"><b>Next: Confirm</b></span>.</span></li><li id="cce_10_0655__en-us_topic_0000001513438388_li19507165717559"><span>On the <span class="uicontrol" id="cce_10_0655__en-us_topic_0000001513438388_uicontrol157922032321"><b>Confirm</b></span> page, confirm the node pool configuration and click <span class="uicontrol" id="cce_10_0655__en-us_topic_0000001513438388_uicontrol379314316327"><b>Submit</b></span>. Then, a new node pool is created based on the edited configuration.</span></li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0222.html">Managing a Node Pool</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0656.html b/docs/cce/umn/cce_10_0656.html
new file mode 100644
index 00000000..2a284daf
--- /dev/null
+++ b/docs/cce/umn/cce_10_0656.html
@@ -0,0 +1,14 @@
+<a name="cce_10_0656"></a><a name="cce_10_0656"></a>
+
+<h1 class="topictitle1">Migrating a Node</h1>
+<div id="body0000001513649030"><p id="cce_10_0656__en-us_topic_0000001513649030_p773035719282">Nodes in a node pool can be migrated. Currently, nodes in a node pool can be migrated only to the default node pool (defaultpool) in the same cluster.</p>
+<ol id="cce_10_0656__en-us_topic_0000001513649030_ol5730185713281"><li id="cce_10_0656__en-us_topic_0000001513649030_li20851203991514"><span>Log in to the CCE console and access the cluster console.</span></li><li id="cce_10_0656__en-us_topic_0000001513649030_li1673005710288"><span>In the navigation pane, choose <span class="uicontrol" id="cce_10_0656__en-us_topic_0000001513649030_uicontrol116503213249"><b>Nodes</b></span> and switch to the <span class="uicontrol" id="cce_10_0656__en-us_topic_0000001513649030_uicontrol4650162114249"><b>Node Pools</b></span> tab page.</span></li><li id="cce_10_0656__en-us_topic_0000001513649030_li7730165772816"><span>Click <span class="uicontrol" id="cce_10_0656__en-us_topic_0000001513649030_uicontrol3958202532413"><b>View Node</b></span> in the <strong id="cce_10_0656__en-us_topic_0000001513649030_b295819256249">Operation</strong> column of the node pool to be migrated.</span></li><li id="cce_10_0656__en-us_topic_0000001513649030_li1969510121085"><span>Click <strong id="cce_10_0656__en-us_topic_0000001513649030_b3714830182414">More</strong> &gt; <strong id="cce_10_0656__en-us_topic_0000001513649030_b07144305240">Migrate</strong> in the <strong id="cce_10_0656__en-us_topic_0000001513649030_b1871420300244">Operation</strong> column of the target node to migrate the node.</span></li><li id="cce_10_0656__en-us_topic_0000001513649030_li187591229173716"><span>In the displayed <span class="uicontrol" id="cce_10_0656__en-us_topic_0000001513649030_uicontrol175022018182515"><b>Migrate Node</b></span> window, confirm the information.</span><p><div class="note" id="cce_10_0656__en-us_topic_0000001513649030_note182620211405"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0656__en-us_topic_0000001513649030_p19251111615611">The migration has no impacts on the original resource tags, Kubernetes labels, and taints of the node.</p>
+</div></div>
+</p></li></ol>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0222.html">Managing a Node Pool</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0657.html b/docs/cce/umn/cce_10_0657.html
new file mode 100644
index 00000000..ed54344a
--- /dev/null
+++ b/docs/cce/umn/cce_10_0657.html
@@ -0,0 +1,15 @@
+<a name="cce_10_0657"></a><a name="cce_10_0657"></a>
+
+<h1 class="topictitle1">Deleting a Node Pool</h1>
+<div id="body0000001513808970"><p id="cce_10_0657__en-us_topic_0000001513808970_p63181335329">Deleting a node pool will delete nodes in the pool. Pods on these nodes will be automatically migrated to available nodes in other node pools.</p>
+<div class="section" id="cce_10_0657__en-us_topic_0000001513808970_section345361204117"><h4 class="sectiontitle">Precautions</h4><ul id="cce_10_0657__en-us_topic_0000001513808970_ul189321612123615"><li id="cce_10_0657__en-us_topic_0000001513808970_li68082150435">Deleting a node pool will delete all nodes in the node pool. Back up data in a timely manner to prevent data loss.</li><li id="cce_10_0657__en-us_topic_0000001513808970_li159325122367">Deleting a node will lead to pod migration, which may affect services. Perform this operation during off-peak hours. If pods in the node pool have a specific node selector and none of the other nodes in the cluster satisfies the node selector, the pods will become unschedulable.</li><li id="cce_10_0657__en-us_topic_0000001513808970_li893261218365">When deleting a node pool, the system sets all nodes in the current node pool to the unschedulable state.</li></ul>
+</div>
+<div class="section" id="cce_10_0657__en-us_topic_0000001513808970_section1755315539412"><h4 class="sectiontitle">Procedure</h4><ol id="cce_10_0657__en-us_topic_0000001513808970_ol19318113515214"><li id="cce_10_0657__en-us_topic_0000001513808970_li626314228364"><span>Log in to the CCE console.</span></li><li id="cce_10_0657__en-us_topic_0000001513808970_li152641222183610"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0657__en-us_topic_0000001513808970_uicontrol2735018994237"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0657__en-us_topic_0000001513808970_b8624353114237">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0657__en-us_topic_0000001513808970_li1896716618513"><span>Choose <span class="uicontrol" id="cce_10_0657__en-us_topic_0000001513808970_uicontrol19937142662310"><b>More &gt; Delete</b></span> next to a node pool name to delete the node pool.</span></li><li id="cce_10_0657__en-us_topic_0000001513808970_li883285012530"><span>Read the precautions in the <span class="uicontrol" id="cce_10_0657__en-us_topic_0000001513808970_uicontrol76161330172315"><b>Delete Node Pool</b></span> dialog box.</span></li><li id="cce_10_0657__en-us_topic_0000001513808970_li131704612145"><span>In the text box, click <span class="uicontrol" id="cce_10_0657__en-us_topic_0000001513808970_uicontrol20775163314235"><b>Yes</b></span> to confirm that you want to continue the deletion.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0222.html">Managing a Node Pool</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0660.html b/docs/cce/umn/cce_10_0660.html
new file mode 100644
index 00000000..9a5544b4
--- /dev/null
+++ b/docs/cce/umn/cce_10_0660.html
@@ -0,0 +1,25 @@
+<a name="cce_10_0660"></a><a name="cce_10_0660"></a>
+
+<h1 class="topictitle1">Upgrading the OS</h1>
+<div id="body8662426"><p id="cce_10_0660__en-us_topic_0000001570036861_p8060118">When CCE releases a new OS image, existing nodes cannot be automatically upgraded. You can manually upgrade them in batches.</p>
+<div class="notice" id="cce_10_0660__en-us_topic_0000001570036861_note14463617195"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ul id="cce_10_0660__en-us_topic_0000001570036861_ul11451181920417"><li id="cce_10_0660__en-us_topic_0000001570036861_li3451151918416">This operation will upgrade the OS by resetting the node. <strong id="cce_10_0660__en-us_topic_0000001570036861_b1741434155612">Workloads running on the node may be interrupted due to single-instance deployment or insufficient schedulable resources.</strong> Evaluate the upgrade risks and upgrade the OS during off-peak hours, you can also set the Pod Disruption Budget (PDB, that is <a href="https://kubernetes.io/docs/tasks/run-application/configure-pdb/" target="_blank" rel="noopener noreferrer">disruption budget</a>) policy for important applications to ensure their availability.</li><li id="cce_10_0660__en-us_topic_0000001570036861_li10451101912411">Nodes that use private images cannot be upgraded.</li></ul>
+</div></div>
+<div class="section" id="cce_10_0660__en-us_topic_0000001570036861_section65171448102314"><h4 class="sectiontitle">Procedure</h4><p id="cce_10_0660__en-us_topic_0000001570036861_p8907123413266"><strong id="cce_10_0660__en-us_topic_0000001570036861_b3907203417261">Default node pool</strong></p>
+<ol id="cce_10_0660__en-us_topic_0000001570036861_ol690714340265"><li id="cce_10_0660__en-us_topic_0000001570036861_li890763482614"><span>Log in to the CCE console.</span></li><li id="cce_10_0660__en-us_topic_0000001570036861_li390715342262"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0660__en-us_topic_0000001570036861_uicontrol46901314598"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0660__en-us_topic_0000001570036861_b1569016314596">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0660__en-us_topic_0000001570036861_li2090813422613"><span>Click <strong id="cce_10_0660__en-us_topic_0000001570036861_b171021722437">Upgrade</strong> next to the default node pool</span></li><li id="cce_10_0660__en-us_topic_0000001570036861_li1890883432618"><span>In the displayed <span class="uicontrol" id="cce_10_0660__en-us_topic_0000001570036861_uicontrol6908123442611"><b>Operating system upgrade</b></span> window, set upgrade parameters.</span><p><ul id="cce_10_0660__en-us_topic_0000001570036861_ul199081734122616"><li id="cce_10_0660__en-us_topic_0000001570036861_li590893472617"><strong id="cce_10_0660__en-us_topic_0000001570036861_b118137591171">Max. Unavailable Nodes</strong>: specifies the maximum number of unavailable nodes during node synchronization.</li><li id="cce_10_0660__en-us_topic_0000001570036861_li021512316285"><strong id="cce_10_0660__en-us_topic_0000001570036861_b767115592719">Target Operating System</strong>: You do not need to set this parameter. It is used to display the image information of the target version.</li><li id="cce_10_0660__en-us_topic_0000001570036861_li16908193416261"><strong id="cce_10_0660__en-us_topic_0000001570036861_b5766181217289">Node List</strong>: Select the nodes to be upgraded.</li><li id="cce_10_0660__en-us_topic_0000001570036861_li5811112816290">Login Mode:<ul id="cce_10_0660__en-us_topic_0000001570036861_ul172978013013"><li id="cce_10_0660__en-us_topic_0000001570036861_en-us_topic_0000001199021246_li1857913131710"><strong id="cce_10_0660__en-us_topic_0000001570036861_en-us_topic_0000001199021246_b9138131116117">Key Pair</strong><p id="cce_10_0660__en-us_topic_0000001570036861_en-us_topic_0000001199021246_p587565283619">Select the key pair used to log in to the node. You can select a shared key.</p>
+<p id="cce_10_0660__en-us_topic_0000001570036861_en-us_topic_0000001199021246_p667584474613">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_10_0660__en-us_topic_0000001570036861_en-us_topic_0000001199021246_en-us_topic_0000001138502763_b1784085011374">Create Key Pair</strong>.</p>
+</li></ul>
+</li><li id="cce_10_0660__en-us_topic_0000001570036861_li75021441143012"><strong id="cce_10_0660__en-us_topic_0000001570036861_b550123792815">Pre-installation Command</strong>: Enter a maximum of 1,000 characters.<p id="cce_10_0660__en-us_topic_0000001570036861_p10228151763116">The script will be executed before Kubernetes software is installed. Note that if the script is incorrect, Kubernetes software may fail to be installed.</p>
+</li><li id="cce_10_0660__en-us_topic_0000001570036861_li2519103819316"><strong id="cce_10_0660__en-us_topic_0000001570036861_b659817110294">Post-installation Command</strong>: Enter a maximum of 1,000 characters.<p id="cce_10_0660__en-us_topic_0000001570036861_p10591113843112">The script will be executed after Kubernetes software is installed and will not affect the installation.</p>
+</li></ul>
+</p></li><li id="cce_10_0660__en-us_topic_0000001570036861_li119081234192612"><span>Click <span class="uicontrol" id="cce_10_0660__en-us_topic_0000001570036861_uicontrol6908143462612"><b>OK</b></span>.</span></li></ol>
+<p id="cce_10_0660__en-us_topic_0000001570036861_p168468011268"><strong id="cce_10_0660__en-us_topic_0000001570036861_b36991111263">Non-default node pool</strong></p>
+<ol id="cce_10_0660__en-us_topic_0000001570036861_ol2073011220179"><li id="cce_10_0660__en-us_topic_0000001570036861_li18281961715"><span>Log in to the CCE console.</span></li><li id="cce_10_0660__en-us_topic_0000001570036861_li18289971715"><span>Click the cluster name and access the cluster console. Choose <span class="uicontrol" id="cce_10_0660__en-us_topic_0000001570036861_uicontrol157342373295"><b>Nodes</b></span> in the navigation pane and click the <strong id="cce_10_0660__en-us_topic_0000001570036861_b16735637202910">Node Pools</strong> tab on the right.</span></li><li id="cce_10_0660__en-us_topic_0000001570036861_li11298919177"><span>Choose <span class="uicontrol" id="cce_10_0660__en-us_topic_0000001570036861_uicontrol4225139182914"><b>More &gt; Synchronize</b></span> next to a node pool name.</span></li><li id="cce_10_0660__en-us_topic_0000001570036861_li1429169191711"><span>In the displayed <span class="uicontrol" id="cce_10_0660__en-us_topic_0000001570036861_uicontrol14298971715"><b>Batch synchronization</b></span> dialog box, set upgrade parameters.</span><p><ul id="cce_10_0660__en-us_topic_0000001570036861_ul02959141715"><li id="cce_10_0660__en-us_topic_0000001570036861_li3295911174"><strong id="cce_10_0660__en-us_topic_0000001570036861_b1410213716317">Max. Unavailable Nodes</strong>: specifies the maximum number of unavailable nodes during node synchronization.</li><li id="cce_10_0660__en-us_topic_0000001570036861_li182916911713"><strong id="cce_10_0660__en-us_topic_0000001570036861_b83261224133111">Node List</strong>: This parameter cannot be set. By default, nodes that can be upgraded are selected.</li></ul>
+</p></li><li id="cce_10_0660__en-us_topic_0000001570036861_li7291091174"><span>Click <span class="uicontrol" id="cce_10_0660__en-us_topic_0000001570036861_uicontrol4298918179"><b>OK</b></span>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0222.html">Managing a Node Pool</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_10_0684.html b/docs/cce/umn/cce_10_0684.html
new file mode 100644
index 00000000..fdd323a3
--- /dev/null
+++ b/docs/cce/umn/cce_10_0684.html
@@ -0,0 +1,133 @@
+<a name="cce_10_0684"></a><a name="cce_10_0684"></a>
+
+<h1 class="topictitle1">Configuring Health Check for Multiple Ports</h1>
+<div id="body8662426"><p id="cce_10_0684__en-us_topic_0000001533375802_p12979154015247">The annotation field related to the health check of the LoadBalancer Service is upgraded from <strong id="cce_10_0684__en-us_topic_0000001533375802_b57048584974926">Kubernetes.io/elb.health-check-option</strong> to <strong id="cce_10_0684__en-us_topic_0000001533375802_b84206467474926">Kubernetes.io/elb.health-check-options</strong>. Each Service port can be configured separately, and you can configure only some ports. If the port protocol does not need to be configured separately, the original annotation field is still available and does not need to be modified.</p>
+<div class="section" id="cce_10_0684__en-us_topic_0000001533375802_section156302884918"><h4 class="sectiontitle">Constraints</h4><ul id="cce_10_0684__en-us_topic_0000001533375802_ul2732797387"><li id="cce_10_0684__en-us_topic_0000001533375802_li1193592633115">This feature takes effect only in the following versions:<ul id="cce_10_0684__en-us_topic_0000001533375802_ul62201752154212"><li id="cce_10_0684__en-us_topic_0000001533375802_li1532115594220">v1.19: v1.19.16-r5 or later</li><li id="cce_10_0684__en-us_topic_0000001533375802_li3107145714213">v1.21: v1.21.8-r0 or later</li><li id="cce_10_0684__en-us_topic_0000001533375802_li15200194771716">v1.23: v1.23.6-r0 or later</li><li id="cce_10_0684__en-us_topic_0000001533375802_li948418343411">v1.25: v1.25.2-r0 or later</li></ul>
+</li><li id="cce_10_0684__en-us_topic_0000001533375802_li1889473215330"><strong id="cce_10_0684__en-us_topic_0000001533375802_b162032323474926">kubernetes.io/elb.health-check-option</strong> and <strong id="cce_10_0684__en-us_topic_0000001533375802_b66615404174926">kubernetes.io/elb.health-check-options</strong> cannot be configured at the same time.</li><li id="cce_10_0684__en-us_topic_0000001533375802_li0894123273320">The <strong id="cce_10_0684__en-us_topic_0000001533375802_b144374645674926">target_service_port</strong> field is mandatory and must be unique.</li><li id="cce_10_0684__en-us_topic_0000001533375802_li989463273316">For a TCP port, the health check protocol can only be TCP or HTTP. For a UDP port, the health check protocol must be UDP.</li></ul>
+</div>
+<div class="section" id="cce_10_0684__en-us_topic_0000001533375802_section17793442104914"><h4 class="sectiontitle">Procedure</h4><div class="p" id="cce_10_0684__en-us_topic_0000001533375802_p1113422471117">The following is an example of using the <strong id="cce_10_0684__en-us_topic_0000001533375802_b6797754132617">kubernetes.io/elb.health-check-options</strong> annotation:<pre class="screen" id="cce_10_0684__en-us_topic_0000001533375802_screen202710361236">apiVersion: v1
+kind: Service
+metadata:
+  name: nginx
+  namespace: default
+  labels: {}
+  annotations:
+    kubernetes.io/elb.class: union
+    kubernetes.io/elb.id: 038ffbda-bd3a-48bb-8b8c-a8582601fd97
+    kubernetes.io/elb.lb-algorithm: ROUND_ROBIN
+    kubernetes.io/elb.health-check-flag: 'on'
+    kubernetes.io/elb.health-check-options: '{
+    "target_service_port": "TCP:80", // (Mandatory) Port for health check specified by spec.ports. The value consists of the protocol and port number, for example, TCP:80.
+    "monitor_port": "",        // (Optional) Re-specified port for health check. If this parameter is not specified, the service port is used by default. Ensure that the port is in the listening state on the node where the pod is located. Otherwise, the health check result will be affected.
+    "protocol":"TCP",
+    "delay":"5",
+    "timeout":"10",
+    "max_retries":"3",
+    "path":"/"
+    }'
+spec:
+  selector: {}
+  externalTrafficPolicy: Cluster
+  ports:
+    - name: cce-service-0
+      targetPort: 80
+      nodePort: 0
+      port: 80
+      protocol: TCP
+  type: LoadBalancer
+  loadBalancerIP: **.**.**.**</pre>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0684__en-us_topic_0000001533375802_table33328411456" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Data structure description of the <strong id="cce_10_0684__en-us_topic_0000001533375802_b1816892720296">elb.health-check-options</strong> field</caption><thead align="left"><tr id="cce_10_0684__en-us_topic_0000001533375802_row8332174116451"><th align="left" class="cellrowborder" valign="top" width="24.95%" id="mcps1.3.3.2.3.2.5.1.1"><p id="cce_10_0684__en-us_topic_0000001533375802_p15332341134519">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="12.32%" id="mcps1.3.3.2.3.2.5.1.2"><p id="cce_10_0684__en-us_topic_0000001533375802_p1433224113458">Mandatory</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.5%" id="mcps1.3.3.2.3.2.5.1.3"><p id="cce_10_0684__en-us_topic_0000001533375802_p1333264119451">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="49.230000000000004%" id="mcps1.3.3.2.3.2.5.1.4"><p id="cce_10_0684__en-us_topic_0000001533375802_p133321541104515">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_10_0684__en-us_topic_0000001533375802_row9970134616453"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.3.2.3.2.5.1.1 "><p id="cce_10_0684__en-us_topic_0000001533375802_p9970174614451">target_service_port</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.3.2.3.2.5.1.2 "><p id="cce_10_0684__en-us_topic_0000001533375802_p139702465450">Yes</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.3.2.3.2.5.1.3 "><p id="cce_10_0684__en-us_topic_0000001533375802_p20970194610452">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.3.2.3.2.5.1.4 "><p id="cce_10_0684__en-us_topic_0000001533375802_p17970104664515">Port for health check specified by spec.ports. The value consists of the protocol and port number, for example, TCP:80.</p>
+</td>
+</tr>
+<tr id="cce_10_0684__en-us_topic_0000001533375802_row95025954512"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.3.2.3.2.5.1.1 "><p id="cce_10_0684__en-us_topic_0000001533375802_p150145934517">monitor_port</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.3.2.3.2.5.1.2 "><p id="cce_10_0684__en-us_topic_0000001533375802_p16504596451">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.3.2.3.2.5.1.3 "><p id="cce_10_0684__en-us_topic_0000001533375802_p15509590453">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.3.2.3.2.5.1.4 "><p id="cce_10_0684__en-us_topic_0000001533375802_p4507598455">Re-specified port for health check. If this parameter is not specified, the service port is used by default.</p>
+<div class="note" id="cce_10_0684__en-us_topic_0000001533375802_note97001514120"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_10_0684__en-us_topic_0000001533375802_p470010520123">Ensure that the port is in the listening state on the node where the pod is located. Otherwise, the health check result will be affected.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_10_0684__en-us_topic_0000001533375802_row9332341104516"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.3.2.3.2.5.1.1 "><p id="cce_10_0684__en-us_topic_0000001533375802_p2332204117454">delay</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.3.2.3.2.5.1.2 "><p id="cce_10_0684__en-us_topic_0000001533375802_p8332341134515">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.3.2.3.2.5.1.3 "><p id="cce_10_0684__en-us_topic_0000001533375802_p183321041114516">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.3.2.3.2.5.1.4 "><p id="cce_10_0684__en-us_topic_0000001533375802_p8333741184515">Initial waiting time (in seconds) for starting the health check.</p>
+<p id="cce_10_0684__en-us_topic_0000001533375802_p933344117450">Value range: 1 to 50. Default value: <strong id="cce_10_0684__en-us_topic_0000001533375802_b107100245974926">5</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0684__en-us_topic_0000001533375802_row10333041134513"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.3.2.3.2.5.1.1 "><p id="cce_10_0684__en-us_topic_0000001533375802_p1233334115456">timeout</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.3.2.3.2.5.1.2 "><p id="cce_10_0684__en-us_topic_0000001533375802_p18333194144514">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.3.2.3.2.5.1.3 "><p id="cce_10_0684__en-us_topic_0000001533375802_p8333124164514">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.3.2.3.2.5.1.4 "><p id="cce_10_0684__en-us_topic_0000001533375802_p1633304114451">Health check timeout, in seconds.</p>
+<p id="cce_10_0684__en-us_topic_0000001533375802_p333316412452">Value range: 1 to 50. Default value: <strong id="cce_10_0684__en-us_topic_0000001533375802_b99665329474926">10</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0684__en-us_topic_0000001533375802_row14333164115455"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.3.2.3.2.5.1.1 "><p id="cce_10_0684__en-us_topic_0000001533375802_p7333194115454">max_retries</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.3.2.3.2.5.1.2 "><p id="cce_10_0684__en-us_topic_0000001533375802_p1933364120456">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.3.2.3.2.5.1.3 "><p id="cce_10_0684__en-us_topic_0000001533375802_p1333311419450">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.3.2.3.2.5.1.4 "><p id="cce_10_0684__en-us_topic_0000001533375802_p633384164514">Maximum number of health check retries.</p>
+<p id="cce_10_0684__en-us_topic_0000001533375802_p633394113453">Value range: 1 to 10. Default value: <strong id="cce_10_0684__en-us_topic_0000001533375802_b159485746874926">3</strong></p>
+</td>
+</tr>
+<tr id="cce_10_0684__en-us_topic_0000001533375802_row1533313416459"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.3.2.3.2.5.1.1 "><p id="cce_10_0684__en-us_topic_0000001533375802_p1133319414454">protocol</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.3.2.3.2.5.1.2 "><p id="cce_10_0684__en-us_topic_0000001533375802_p20333144117453">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.3.2.3.2.5.1.3 "><p id="cce_10_0684__en-us_topic_0000001533375802_p63331941164511">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.3.2.3.2.5.1.4 "><p id="cce_10_0684__en-us_topic_0000001533375802_p43331841104517">Health check protocol.</p>
+<p id="cce_10_0684__en-us_topic_0000001533375802_p13335417459">Default value: protocol of the associated Service</p>
+<p id="cce_10_0684__en-us_topic_0000001533375802_p333316417453">Value options: TCP, UDP, or HTTP</p>
+</td>
+</tr>
+<tr id="cce_10_0684__en-us_topic_0000001533375802_row5333241174516"><td class="cellrowborder" valign="top" width="24.95%" headers="mcps1.3.3.2.3.2.5.1.1 "><p id="cce_10_0684__en-us_topic_0000001533375802_p8333184124517">path</p>
+</td>
+<td class="cellrowborder" valign="top" width="12.32%" headers="mcps1.3.3.2.3.2.5.1.2 "><p id="cce_10_0684__en-us_topic_0000001533375802_p833310419455">No</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.5%" headers="mcps1.3.3.2.3.2.5.1.3 "><p id="cce_10_0684__en-us_topic_0000001533375802_p13333741174519">String</p>
+</td>
+<td class="cellrowborder" valign="top" width="49.230000000000004%" headers="mcps1.3.3.2.3.2.5.1.4 "><p id="cce_10_0684__en-us_topic_0000001533375802_p433334154520">Health check URL. This parameter needs to be configured when the protocol is HTTP.</p>
+<p id="cce_10_0684__en-us_topic_0000001533375802_p1133324134511">Default value: <strong id="cce_10_0684__en-us_topic_0000001533375802_b86129216374926">/</strong></p>
+<p id="cce_10_0684__en-us_topic_0000001533375802_p33337418453">The value can contain 1 to 10,000 characters.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0247.html">Services</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice.html b/docs/cce/umn/cce_bestpractice.html
index 73105f9e..86035399 100644
--- a/docs/cce/umn/cce_bestpractice.html
+++ b/docs/cce/umn/cce_bestpractice.html
@@ -10,6 +10,8 @@
 <ul class="ullinks">
 <li class="ulchildlink"><strong><a href="cce_bestpractice_00006.html">Checklist for Deploying Containerized Applications in the Cloud</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0321.html">Containerization</a></strong><br>
+</li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_00237.html">Migration</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_0322.html">DevOps</a></strong><br>
@@ -20,6 +22,8 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_0090.html">Auto Scaling</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_10008.html">Monitoring</a></strong><br>
+</li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_0050.html">Cluster</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_0052.html">Networking</a></strong><br>
@@ -28,6 +32,10 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_0051.html">Container</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0055.html">Permission</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_10000.html">Release</a></strong><br>
+</li>
 </ul>
 </div>
 
diff --git a/docs/cce/umn/cce_bestpractice_00004.html b/docs/cce/umn/cce_bestpractice_00004.html
index 9780e5bb..2449c71c 100644
--- a/docs/cce/umn/cce_bestpractice_00004.html
+++ b/docs/cce/umn/cce_bestpractice_00004.html
@@ -17,40 +17,40 @@
 </li></ul>
 </div>
 <div class="section" id="cce_bestpractice_00004__en-us_topic_0099587154_section176413381249"><h4 class="sectiontitle">Single-VPC Single-Cluster Scenarios</h4><div class="p" id="cce_bestpractice_00004__p1465393382815"><strong id="cce_bestpractice_00004__b073783814597">CCE Clusters</strong>: include clusters in VPC network model and container tunnel network model. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920">Figure 2</a> shows the CIDR block planning of a cluster.<ul id="cce_bestpractice_00004__ul1765416399218"><li id="cce_bestpractice_00004__li1833617374211">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li133373379218">Subnet CIDR Block: specifies the subnet CIDR block where the node in the cluster resides. The subnet CIDR block is included in the VPC CIDR block. Different nodes in the same cluster can be allocated to different subnet CIDR blocks.</li><li id="cce_bestpractice_00004__li315115092119">Container CIDR Block: cannot overlap with the subnet CIDR block.</li><li id="cce_bestpractice_00004__li6749956172118">Service CIDR Block: cannot overlap with the subnet CIDR block or the container CIDR block.</li></ul>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920"><a name="cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920"></a><a name="en-us_topic_0099587154_fig15791152874920"></a><span class="figcap"><b>Figure 2 </b>Network CIDR block planning in the single-VPC single-cluster scenario (CCE cluster)</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image839131719109" src="en-us_image_0000001392318380.png"></span></div>
+<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920"><a name="cce_bestpractice_00004__en-us_topic_0099587154_fig15791152874920"></a><a name="en-us_topic_0099587154_fig15791152874920"></a><span class="figcap"><b>Figure 2 </b>Network CIDR block planning in single-VPC single-cluster scenarios (CCE cluster)</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image839131719109" src="en-us_image_0000001392318380.png"></span></div>
 </div>
-<div class="p" id="cce_bestpractice_00004__p1373718535281"><a href="#cce_bestpractice_00004__fig19746213285">Figure 3</a> shows the CIDR block planning for a <strong id="cce_bestpractice_00004__b131718432615">CCE Turbo cluster</strong> (cloud native network 2.0).<ul id="cce_bestpractice_00004__ul16961327152214"><li id="cce_bestpractice_00004__li19611827192217">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li1961182782214">Subnet CIDR Block: specifies the subnet CIDR block where the node in the cluster resides. The subnet CIDR block is included in the VPC CIDR block. Different nodes in the same cluster can be allocated to different subnet CIDR blocks.</li><li id="cce_bestpractice_00004__li15961132710225">Container Subnet CIDR Block: The container subnet is included in the VPC CIDR block and can overlap with the subnet CIDR block or even be the same as the subnet CIDR block. Note that the container subnet size determines the maximum number of containers in the cluster because IP addresses in the VPC are directly allocated to containers. After a cluster is created, you can only add container subnets but cannot delete them. You are advised to set a larger IP address segment for the container subnet to prevent insufficient container IP addresses.</li><li id="cce_bestpractice_00004__li129612271220">Service CIDR Block: cannot overlap with the subnet CIDR block or the container CIDR block.</li></ul>
-<div class="fignone" id="cce_bestpractice_00004__fig19746213285"><a name="cce_bestpractice_00004__fig19746213285"></a><a name="fig19746213285"></a><span class="figcap"><b>Figure 3 </b>CIDR block planning in the single-VPC single-cluster scenario (CCE Turbo cluster)</span><br><span><img class="eddx" id="cce_bestpractice_00004__image12974112122817" src="en-us_image_0000001392280374.png"></span></div>
+<div class="p" id="cce_bestpractice_00004__p1373718535281"><a href="#cce_bestpractice_00004__fig19746213285">Figure 3</a> shows the CIDR block planning for a <strong id="cce_bestpractice_00004__b131718432615">CCE Turbo cluster</strong> (Cloud Native Network 2.0).<ul id="cce_bestpractice_00004__ul16961327152214"><li id="cce_bestpractice_00004__li19611827192217">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li1961182782214">Subnet CIDR Block: specifies the subnet CIDR block where the node in the cluster resides. The subnet CIDR block is included in the VPC CIDR block. Different nodes in the same cluster can be allocated to different subnet CIDR blocks.</li><li id="cce_bestpractice_00004__li15961132710225">Container Subnet CIDR Block: The container subnet is included in the VPC CIDR block and can overlap with the subnet CIDR block or even be the same as the subnet CIDR block. Note that the container subnet size determines the maximum number of containers in the cluster because IP addresses in the VPC are directly allocated to containers. After a cluster is created, you can only add container subnets but cannot delete them. You are advised to set a larger IP address segment for the container subnet to prevent insufficient container IP addresses.</li><li id="cce_bestpractice_00004__li129612271220">Service CIDR Block: cannot overlap with the subnet CIDR block or the container CIDR block.</li></ul>
+<div class="fignone" id="cce_bestpractice_00004__fig19746213285"><a name="cce_bestpractice_00004__fig19746213285"></a><a name="fig19746213285"></a><span class="figcap"><b>Figure 3 </b>Network CIDR block planning in single-VPC single-cluster scenarios (CCE Turbo cluster)</span><br><span><img class="eddx" id="cce_bestpractice_00004__image12974112122817" src="en-us_image_0000001392280374.png"></span></div>
 </div>
 </div>
-<div class="section" id="cce_bestpractice_00004__section158285913212"><h4 class="sectiontitle"><strong id="cce_bestpractice_00004__b57645130912">Single-VPC Multi-Cluster Scenarios</strong></h4><p id="cce_bestpractice_00004__p92201520336"><strong id="cce_bestpractice_00004__b193873301795">VPC network model</strong></p>
-<div class="p" id="cce_bestpractice_00004__en-us_topic_0099587154_p2017890132517">Pod packets are forwarded through VPC routes. CCE automatically configures a routing table on the VPC routes to each container CIDR block. The network scale is limited by the VPC route table. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig69527530400">Figure 4</a> shows the CIDR block planning of the cluster.<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul882015557241"><li id="cce_bestpractice_00004__li790154610251">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li20845848142312">Subnet CIDR Block: The subnet CIDR block in each cluster cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li13820185572420">Container CIDR Block: If multiple VPC network model clusters exist in a single VPC, the container CIDR blocks of all clusters cannot overlap because the clusters use the same routing table. In this case, CCE clusters are partially interconnected. A pod of a cluster can directly access the pods of another cluster, but cannot access the Services of the cluster.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li198211055182410">Service CIDR Block: can be used only in clusters. Therefore, the service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster to which the clusters belong.</li></ul>
+<div class="section" id="cce_bestpractice_00004__section158285913212"><h4 class="sectiontitle">Single-VPC Multi-Cluster Scenarios</h4><p id="cce_bestpractice_00004__p92201520336"><strong id="cce_bestpractice_00004__b193873301795">VPC network model</strong></p>
+<div class="p" id="cce_bestpractice_00004__en-us_topic_0099587154_p2017890132517">Pod packets are forwarded through VPC routes. CCE automatically configures a routing table on the VPC routes to each container CIDR block. The network scale is limited by the VPC route table. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig69527530400">Figure 4</a> shows the CIDR block planning of the cluster.<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul882015557241"><li id="cce_bestpractice_00004__li790154610251">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li20845848142312">Subnet CIDR Block: The subnet CIDR block in each cluster cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li13820185572420">Container CIDR Block: If multiple VPC network model clusters exist in a single VPC, the container CIDR blocks of all clusters cannot overlap because the clusters use the same routing table. In this case, CCE clusters are partially interconnected. A pod of a cluster can directly access the pods of another cluster, but cannot access the Services of the cluster.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li198211055182410">Service CIDR Block: can be used only in clusters. Therefore, the Service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster.</li></ul>
 <div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig69527530400"><a name="cce_bestpractice_00004__en-us_topic_0099587154_fig69527530400"></a><a name="en-us_topic_0099587154_fig69527530400"></a><span class="figcap"><b>Figure 4 </b>VPC network - multi-cluster scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image2088115717617" src="en-us_image_0261818824.png"></span></div>
 </div>
 <p id="cce_bestpractice_00004__p137155120316"><strong id="cce_bestpractice_00004__b9885618151210">Tunnel Network</strong></p>
-<div class="p" id="cce_bestpractice_00004__en-us_topic_0099587154_p2895124762317">Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig8672112184219">Figure 5</a> shows the CIDR block planning of the cluster.<ul id="cce_bestpractice_00004__ul2493220356"><li id="cce_bestpractice_00004__li24632163511">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li154193263512">Subnet CIDR Block: The subnet CIDR block in each cluster cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__li1941632203519">Container CIDR Block: The container CIDR blocks of all clusters can overlap. In this case, pods in different clusters cannot be directly accessed using IP addresses. It is recommended that ELB be used for the cross-cluster access between containers.</li><li id="cce_bestpractice_00004__li16433293512">Service CIDR Block: can be used only in clusters. Therefore, the service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster to which the clusters belong.</li></ul>
+<div class="p" id="cce_bestpractice_00004__en-us_topic_0099587154_p2895124762317">Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications. <a href="#cce_bestpractice_00004__en-us_topic_0099587154_fig8672112184219">Figure 5</a> shows the CIDR block planning of the cluster.<ul id="cce_bestpractice_00004__ul2493220356"><li id="cce_bestpractice_00004__li24632163511">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. The size of this CIDR block affects the maximum number of nodes that can be created in the cluster.</li><li id="cce_bestpractice_00004__li154193263512">Subnet CIDR Block: The subnet CIDR block in each cluster cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__li1941632203519">Container CIDR Block: The container CIDR blocks of all clusters can overlap. In this case, pods in different clusters cannot be directly accessed using IP addresses. It is recommended that ELB be used for the cross-cluster access between containers.</li><li id="cce_bestpractice_00004__li16433293512">Service CIDR Block: can be used only in clusters. Therefore, the Service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster.</li></ul>
 <div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig8672112184219"><a name="cce_bestpractice_00004__en-us_topic_0099587154_fig8672112184219"></a><a name="en-us_topic_0099587154_fig8672112184219"></a><span class="figcap"><b>Figure 5 </b>Tunnel network - multi-cluster scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image14998656164117" src="en-us_image_0261818885.png"></span></div>
 </div>
-<p id="cce_bestpractice_00004__p63888102047"><strong id="cce_bestpractice_00004__b13940172119169">Cloud native network 2.0 network model</strong> (CCE Turbo cluster)</p>
-<div class="p" id="cce_bestpractice_00004__p6708838144310">In this mode, container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and multiple types of VPC networks can be bound to deliver high performance.<ul id="cce_bestpractice_00004__ul1354819545457"><li id="cce_bestpractice_00004__li18548454104515">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. In a CCE Turbo cluster, the CIDR block size affects the total number of nodes and containers that can be created in the cluster.</li><li id="cce_bestpractice_00004__li1254820544457">Subnet CIDR Block: There is no special restriction on the subnet CIDR blocks in CCE Turbo clusters.</li><li id="cce_bestpractice_00004__li1254815415457">Container Subnet: The CIDR block of the container subnet is included in the VPC CIDR block. Container subnets in different clusters can overlap with each other or overlap with the subnet CIDR block. However, you are advised to stagger the container CIDR blocks of different clusters and ensure that the container subnet CIDR blocks have sufficient IP addresses. In this case, pods in different clusters can directly access each other through IP addresses.</li><li id="cce_bestpractice_00004__li1354945412456">Service CIDR Block: can be used only in clusters. Therefore, the service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block or container CIDR block.</li></ul>
-<div class="fignone" id="cce_bestpractice_00004__fig1881152517391"><span class="figcap"><b>Figure 6 </b>Cloud native network 2.0 network model - multi-cluster scenario</span><br><span><img class="eddx" id="cce_bestpractice_00004__image988282523911" src="en-us_image_0000001392259910.png"></span></div>
+<p id="cce_bestpractice_00004__p63888102047"><strong id="cce_bestpractice_00004__b13940172119169">Cloud Native Network 2.0 Model</strong> (CCE Turbo cluster)</p>
+<div class="p" id="cce_bestpractice_00004__p6708838144310">In this mode, container IP addresses are allocated from the VPC CIDR block. ELB passthrough networking is supported to direct access requests to containers. Security groups and multiple types of VPC networks can be bound to deliver high performance.<ul id="cce_bestpractice_00004__ul1354819545457"><li id="cce_bestpractice_00004__li18548454104515">VPC CIDR Block: specifies the VPC CIDR block where the cluster resides. In a CCE Turbo cluster, the CIDR block size affects the total number of nodes and containers that can be created in the cluster.</li><li id="cce_bestpractice_00004__li1254820544457">Subnet CIDR Block: There is no special restriction on the subnet CIDR blocks in CCE Turbo clusters.</li><li id="cce_bestpractice_00004__li1254815415457">Container Subnet: The CIDR block of the container subnet is included in the VPC CIDR block. Container subnets in different clusters can overlap with each other or overlap with the subnet CIDR block. However, you are advised to stagger the container CIDR blocks of different clusters and ensure that the container subnet CIDR blocks have sufficient IP addresses. In this case, pods in different clusters can directly access each other through IP addresses.</li><li id="cce_bestpractice_00004__li1354945412456">Service CIDR Block: can be used only in clusters. Therefore, the Service CIDR blocks of different clusters can overlap, but cannot overlap with the subnet CIDR block and container subnet CIDR block of the cluster.</li></ul>
+<div class="fignone" id="cce_bestpractice_00004__fig1881152517391"><span class="figcap"><b>Figure 6 </b>Cloud Native Network 2.0 - multi-cluster scenario</span><br><span><img class="eddx" id="cce_bestpractice_00004__image988282523911" src="en-us_image_0000001392259910.png"></span></div>
 </div>
 <p id="cce_bestpractice_00004__p330710143563"><strong id="cce_bestpractice_00004__b2733618145620">Coexistence of Clusters in Multi-Network</strong></p>
 <p id="cce_bestpractice_00004__p1863711518564">When a VPC contains clusters created with different network models, comply with the following rules when creating a cluster:</p>
-<ul id="cce_bestpractice_00004__ul151475497118"><li id="cce_bestpractice_00004__li91473495115">VPC CIDR Block: In this scenario, all clusters are located in the same VPC CIDR block. Ensure that there are sufficient available IP addresses in the VPC.</li><li id="cce_bestpractice_00004__li18147204901112">Subnet CIDR Block: Ensure that the subnet CIDR block does not overlap with the container CIDR block. Even in some scenarios (for example, coexistence with CCE Turbo clusters), the subnet CIDR block can overlap with the container (subnet) CIDR block. However, this is not recommended.</li><li id="cce_bestpractice_00004__li4147649131112">Container CIDR Block: Ensure that the container CIDR blocks of clusters in <strong id="cce_bestpractice_00004__b34461031473">VPC network model</strong> do not overlap.</li><li id="cce_bestpractice_00004__li11147204915115">Service CIDR Block: The service CIDR blocks of all clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster.</li></ul>
+<ul id="cce_bestpractice_00004__ul151475497118"><li id="cce_bestpractice_00004__li91473495115">VPC CIDR Block: In this scenario, all clusters are located in the same VPC CIDR block. Ensure that there are sufficient available IP addresses in the VPC.</li><li id="cce_bestpractice_00004__li18147204901112">Subnet CIDR Block: Ensure that the subnet CIDR block does not overlap with the container CIDR block. Even in some scenarios (for example, coexistence with CCE Turbo clusters), the subnet CIDR block can overlap with the container (subnet) CIDR block. However, this is not recommended.</li><li id="cce_bestpractice_00004__li4147649131112">Container CIDR Block: Ensure that the container CIDR blocks of clusters in <strong id="cce_bestpractice_00004__b34461031473">VPC network model</strong> do not overlap.</li><li id="cce_bestpractice_00004__li11147204915115">Service CIDR Block: The Service CIDR blocks of all clusters can overlap, but cannot overlap with the subnet CIDR block and container CIDR block of the cluster.</li></ul>
 </div>
 <div class="section" id="cce_bestpractice_00004__section14417155019213"><h4 class="sectiontitle">Cross-VPC Cluster Interconnection</h4><p id="cce_bestpractice_00004__en-us_topic_0099587154_p164027122611">When two VPC networks are interconnected, you can configure the packets to be sent to the peer VPC in the route table.</p>
 <p id="cce_bestpractice_00004__en-us_topic_0099587154_p84981130122719">In the VPC network model, after creating a peering connection, you need to add routes for the peering connection to enable communication between the two VPCs.</p>
-<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig5812933155410"><span class="figcap"><b>Figure 7 </b>VPC Network - VPC interconnection scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image196453652114" src="en-us_image_0261818886.png"></span></div>
+<div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig5812933155410"><span class="figcap"><b>Figure 7 </b>VPC network - VPC interconnection scenario</span><br><span><img id="cce_bestpractice_00004__en-us_topic_0099587154_image196453652114" src="en-us_image_0261818886.png"></span></div>
 <p id="cce_bestpractice_00004__en-us_topic_0099587154_p73783692817">When creating a VPC peering connection between containers across VPCs, pay attention to the following points:</p>
-<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul18682114711291"><li id="cce_bestpractice_00004__en-us_topic_0099587154_li4682184718299">The VPC to which the clusters belong must not overlap. In each cluster, the subnet CIDR block cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li86822047152916">The container CIDR blocks of clusters cannot overlap, but the Service CIDR blocks can.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li206821447202916">You need to add not only the peer VPC CIDR block but also the peer container CIDR block to the VPC routing tables at both ends. Note that this operation must be performed in the VPC route tables of the clusters.</li></ul>
+<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul18682114711291"><li id="cce_bestpractice_00004__en-us_topic_0099587154_li4682184718299">The VPC to which the clusters belong must not overlap. In each cluster, the subnet CIDR block cannot overlap with the container CIDR block.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li86822047152916">The container CIDR blocks of clusters at both ends cannot overlap, but the Service CIDR blocks can.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li206821447202916">You need to add not only the peer VPC CIDR block but also the peer container CIDR block to the VPC routing tables at both ends. Note that this operation must be performed in the VPC route tables of the clusters.</li></ul>
 <p id="cce_bestpractice_00004__en-us_topic_0099587154_p11808133173211">In the tunnel network model, after creating a peering connection, you need to add routes for the peering connection to enable communication between the two VPCs.</p>
 <div class="fignone" id="cce_bestpractice_00004__en-us_topic_0099587154_fig751481973514"><span class="figcap"><b>Figure 8 </b>Tunnel network - VPC interconnection scenario</span><br><span><img id="cce_bestpractice_00004__image12344161803817" src="en-us_image_0000001082048529.png"></span></div>
 <p id="cce_bestpractice_00004__en-us_topic_0099587154_p15295194916354">Pay attention to the following:</p>
-<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul62952049133517"><li id="cce_bestpractice_00004__en-us_topic_0099587154_li132959494355">The VPC of the clusters must not overlap.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li10295134911351">The container CIDR blocks of all clusters can overlap, so do the Service CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li1329524983512">Add the peer subnet CIDR block to the route table of the VPC peering connection.</li></ul>
-<p id="cce_bestpractice_00004__p1397317227577">In <span class="uicontrol" id="cce_bestpractice_00004__uicontrol1186282345715"><b>Cloud Native Network 2.0</b></span> mode, after creating a VPC peering connection, you only need to add routes for the VPC peering connection to enable communication between the two VPCs. Ensure that the VPC of the clusters does not overlap.</p>
+<ul id="cce_bestpractice_00004__en-us_topic_0099587154_ul62952049133517"><li id="cce_bestpractice_00004__en-us_topic_0099587154_li132959494355">The VPCs of the clusters must not overlap.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li10295134911351">The container CIDR blocks of all clusters can overlap, so do the Service CIDR blocks.</li><li id="cce_bestpractice_00004__en-us_topic_0099587154_li1329524983512">Add the peer subnet CIDR block to the route table of the VPC peering connection.</li></ul>
+<p id="cce_bestpractice_00004__p1397317227577">In <span class="uicontrol" id="cce_bestpractice_00004__uicontrol1186282345715"><b>Cloud Native Network 2.0</b></span> mode, after creating a VPC peering connection, you only need to add routes for the VPC peering connection to enable communication between the two VPCs. Ensure that the VPCs of the clusters do not overlap.</p>
 </div>
-<div class="section" id="cce_bestpractice_00004__section292112285216"><h4 class="sectiontitle"><strong id="cce_bestpractice_00004__b119061350558">VPC-IDC Scenarios</strong></h4><p id="cce_bestpractice_00004__en-us_topic_0099587154_p989813311959">Similar to the VPC interconnection scenario, some CIDR blocks in the VPC are routed to the IDC. The pod IP addresses of CCE clusters cannot overlap with the addresses within these CIDR blocks. To access the pod IP addresses in the cluster in the IDC, you need to configure the route table to the private line VBR on the IDC.</p>
+<div class="section" id="cce_bestpractice_00004__section292112285216"><h4 class="sectiontitle">VPC-IDC Scenarios</h4><p id="cce_bestpractice_00004__en-us_topic_0099587154_p989813311959">Similar to the VPC interconnection scenario, some CIDR blocks in the VPC are routed to the IDC. The pod IP addresses of CCE clusters cannot overlap with the addresses within these CIDR blocks. To access the pod IP addresses in the cluster in the IDC, you need to configure the route table to the private line VBR on the IDC.</p>
 </div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_bestpractice_00006.html b/docs/cce/umn/cce_bestpractice_00006.html
index 171079eb..bc521340 100644
--- a/docs/cce/umn/cce_bestpractice_00006.html
+++ b/docs/cce/umn/cce_bestpractice_00006.html
@@ -1,7 +1,7 @@
 <a name="cce_bestpractice_00006"></a><a name="cce_bestpractice_00006"></a>
 
 <h1 class="topictitle1">Checklist for Deploying Containerized Applications in the Cloud</h1>
-<div id="body8662426"><div class="section" id="cce_bestpractice_00006__en-us_topic_0196818704_section277217531231"><h4 class="sectiontitle">Overview</h4><p id="cce_bestpractice_00006__en-us_topic_0196818704_p156732719517">Security, efficiency, stability, and availability are common requirements on all cloud services. To meet these requirements, the system availability, data reliability, and O&amp;M stability must be perfectly coordinated. This checklist describes the check items for deploying containerized applications on the cloud to help you efficiently migrate services to CCE, reducing potential cluster or application exceptions caused by improper use.</p>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00006__en-us_topic_0196818704_section277217531231"><h4 class="sectiontitle">Overview</h4><p id="cce_bestpractice_00006__en-us_topic_0196818704_p156732719517">Security, efficiency, stability, and availability are common requirements on all cloud services. To meet these requirements, the system availability, data reliability, and O&amp;M stability must be coordinated. This checklist describes the check items for deploying containerized applications on the cloud to help you efficiently migrate services to CCE, reducing potential cluster or application exceptions caused by improper use.</p>
 </div>
 <div class="section" id="cce_bestpractice_00006__en-us_topic_0196818704_section182281181291"><h4 class="sectiontitle">Check Items</h4>
 <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_00006__en-us_topic_0196818704_table164991312201710" frame="border" border="1" rules="all"><caption><b>Table 1 </b>System availability</caption><thead align="left"><tr id="cce_bestpractice_00006__en-us_topic_0196818704_row135006125171"><th align="left" class="cellrowborder" valign="top" width="12.70372526193248%" id="mcps1.3.2.2.2.5.1.1"><p id="cce_bestpractice_00006__en-us_topic_0196818704_p75001612181713">Category</p>
@@ -166,7 +166,8 @@
 </tr>
 <tr id="cce_bestpractice_00006__en-us_topic_0196818704_row8780182974617"><td class="cellrowborder" valign="top" width="12.66686012768427%" headers="mcps1.3.2.4.2.5.1.1 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p978082984614">Proactive O&amp;M</p>
 </td>
-<td class="cellrowborder" valign="top" width="38.015089959373185%" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p778002974612">CCE provides multi-dimensional monitoring and alarm reporting functions, and supports basic resource monitoring based on fine-grained metrics by interconnecting with Application Operations Management (AOM). Alarms allow users to locate and rectify faults as soon as possible.</p>
+<td class="cellrowborder" valign="top" width="38.015089959373185%" headers="mcps1.3.2.4.2.5.1.2 "><p id="cce_bestpractice_00006__p102179148283">CCE provides multi-dimensional monitoring and alarm reporting functions, allowing users to locate and rectify faults as soon as possible.</p>
+<ul id="cce_bestpractice_00006__ul19129011102911"><li id="cce_bestpractice_00006__li21293116298">Application Operations Management (AOM): The default basic resource monitoring of CCE covers detailed container-related metrics and provides alarm reporting functions.</li><li id="cce_bestpractice_00006__li9129151113296">Open source Prometheus: A monitoring tool for cloud native applications. It integrates an independent alarm system to provide more flexible monitoring and alarm reporting functions.</li></ul>
 </td>
 <td class="cellrowborder" valign="top" width="11.012768427161927%" headers="mcps1.3.2.4.2.5.1.3 "><p id="cce_bestpractice_00006__en-us_topic_0196818704_p4780192914467">Monitoring</p>
 </td>
diff --git a/docs/cce/umn/cce_bestpractice_0001.html b/docs/cce/umn/cce_bestpractice_0001.html
new file mode 100644
index 00000000..8efcb8ac
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0001.html
@@ -0,0 +1,17 @@
+<a name="cce_bestpractice_0001"></a><a name="cce_bestpractice_0001"></a>
+
+<h1 class="topictitle1">Containerizing an Enterprise Application (ERP)</h1>
+<div id="body1513917418808"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0002.html">Solution Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0340.html">Procedure</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0321.html">Containerization</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0002.html b/docs/cce/umn/cce_bestpractice_0002.html
new file mode 100644
index 00000000..a5942f13
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0002.html
@@ -0,0 +1,61 @@
+<a name="cce_bestpractice_0002"></a><a name="cce_bestpractice_0002"></a>
+
+<h1 class="topictitle1">Solution Overview</h1>
+<div id="body1516177775191"><p id="cce_bestpractice_0002__p920211499364">This chapter provides CCE best practices to walk you through the application containerization.</p>
+<div class="section" id="cce_bestpractice_0002__section66068439173"><h4 class="sectiontitle">What Is a Container?</h4><p id="cce_bestpractice_0002__p320234616177">A container is a lightweight high-performance resource isolation mechanism implemented based on the Linux kernel. It is a built-in capability of the operating system (OS) kernel. </p>
+<p id="cce_bestpractice_0002__p664104814396">CCE is an enterprise-class container service based on open-source Kubernetes. It is a high-performance and high-reliability service through which enterprises can manage containerized applications. CCE supports native Kubernetes applications and tools, allowing you to easily set up a container runtime in the cloud.</p>
+</div>
+<div class="section" id="cce_bestpractice_0002__section122378443188"><h4 class="sectiontitle">Why Is a Container Preferred?</h4><ul id="cce_bestpractice_0002__ul9969105534714"><li id="cce_bestpractice_0002__li12718112319514">More efficient use of system resources<p id="cce_bestpractice_0002__p311515249513"><a name="cce_bestpractice_0002__li12718112319514"></a><a name="li12718112319514"></a>A container does not require extra costs such as fees for hardware virtualization and those for running a complete OS. Therefore, a container has higher resource usage. Compared with a VM with the same configurations, a container can run more applications. </p>
+</li><li id="cce_bestpractice_0002__li147221753174814">Faster startup<p id="cce_bestpractice_0002__p7417121320521"><a name="cce_bestpractice_0002__li147221753174814"></a><a name="li147221753174814"></a>A container directly runs on the host kernel and does not need to start a complete OS. Therefore, a container can be started within seconds or even milliseconds, greatly saving the development, testing, and deployment time. </p>
+</li><li id="cce_bestpractice_0002__li149717577482">Consistent runtime environment<p id="cce_bestpractice_0002__p153471738155218"><a name="cce_bestpractice_0002__li149717577482"></a><a name="li149717577482"></a>A container image provides a complete runtime environment to ensure environment consistency. In this case, problems (for example, some code runs properly on machine A but fails to run on machine B) will not occur.</p>
+</li><li id="cce_bestpractice_0002__li779216134917">Easier application migration, maintenance, and scaling<p id="cce_bestpractice_0002__p92817417553"><a name="cce_bestpractice_0002__li779216134917"></a><a name="li779216134917"></a>A consistent runtime environment makes application migration easier. In addition, the in-use storage and image technologies facilitate the reuse of repeated applications and simplifies the expansion of images based on base images.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0002__section8614155910185"><h4 class="sectiontitle">Containerization Modes</h4><p id="cce_bestpractice_0002__p148171440122014">The following modes are available for containerizing applications:</p>
+</div>
+<ul id="cce_bestpractice_0002__ul129911175213"><li id="cce_bestpractice_0002__li1699183510217">Mode 1: Containerize a single application as a whole. Application code and architecture remain unchanged.</li><li id="cce_bestpractice_0002__li129311033229">Mode 2: Separate the components that are frequently upgraded or have high requirements on auto scaling from an application, and then containerize these components.</li><li id="cce_bestpractice_0002__li499111702119">Mode 3: Transform an application to microservices and then containerize the microservices one by one.</li></ul>
+<p id="cce_bestpractice_0002__p1426912570270"><a href="#cce_bestpractice_0002__table955211293219">Table 1</a> lists the advantages and disadvantages of the three modes.</p>
+
+<div class="tablenoborder"><a name="cce_bestpractice_0002__table955211293219"></a><a name="table955211293219"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0002__table955211293219" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Containerization modes</caption><thead align="left"><tr id="cce_bestpractice_0002__row155521214326"><th align="left" class="cellrowborder" valign="top" width="32%" id="mcps1.3.7.2.4.1.1"><p id="cce_bestpractice_0002__p355211212321">Containerization Mode</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="35%" id="mcps1.3.7.2.4.1.2"><p id="cce_bestpractice_0002__p05521923323">Advantage</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="33%" id="mcps1.3.7.2.4.1.3"><p id="cce_bestpractice_0002__p20552192123219">Disadvantage</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0002__row1355362113213"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.4.1.1 "><p id="cce_bestpractice_0002__p11207192664313">Method 1:</p>
+<p id="cce_bestpractice_0002__p10553192133216">Containerize a single application as a whole.</p>
+</td>
+<td class="cellrowborder" valign="top" width="35%" headers="mcps1.3.7.2.4.1.2 "><ul id="cce_bestpractice_0002__ul64802012113410"><li id="cce_bestpractice_0002__li248051223410">Zero modification on services: The application architecture and code require no change. </li><li id="cce_bestpractice_0002__li1586172713417">The deployment and upgrade efficiency is improved. Applications can be packed as container images to ensure application environment consistency and improve deployment efficiency.</li><li id="cce_bestpractice_0002__li6738109774">Reduce resource costs: Containers use system resources more efficiently. Compared with a VM with the same configurations, a container can run more applications. </li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.7.2.4.1.3 "><ul id="cce_bestpractice_0002__ul1564312318912"><li id="cce_bestpractice_0002__li66439312913">Difficult to expand the entire architecture of an application. As the code size increases, code update and maintenance would be complicated.</li><li id="cce_bestpractice_0002__li68992117310">Difficult to launch new functions, languages, frameworks, and technologies.</li></ul>
+</td>
+</tr>
+<tr id="cce_bestpractice_0002__row165537253220"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.4.1.1 "><p id="cce_bestpractice_0002__p67111323431">Method 2:</p>
+<p id="cce_bestpractice_0002__p85533263219">Containerize first the application components that are frequently updated or have high requirements on auto scaling.</p>
+</td>
+<td class="cellrowborder" valign="top" width="35%" headers="mcps1.3.7.2.4.1.2 "><ul id="cce_bestpractice_0002__ul1280851191115"><li id="cce_bestpractice_0002__li1380841181118">Progressive transformation: Reconstructing the entire architecture involves a heavy workload. This mode containerizes only a part of components, which is easy to accept for customers.</li><li id="cce_bestpractice_0002__li11804143615569">Flexible scaling: Application components that have high requirements on auto scaling are containerized. When the application needs to be scaled, you only need to scale the containers, which is flexible and reduces the required system resources.</li><li id="cce_bestpractice_0002__li15688112855714">Faster rollout of new features: Application components that are frequently upgraded are containerized. In subsequent upgrades, only these containers need to be upgraded. This shortens the time to market (TTM) of new features.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.7.2.4.1.3 "><p id="cce_bestpractice_0002__p13852164219715">Need to decouple some services.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0002__row131251157201917"><td class="cellrowborder" valign="top" width="32%" headers="mcps1.3.7.2.4.1.1 "><p id="cce_bestpractice_0002__p12134204215435">Method 3:</p>
+<p id="cce_bestpractice_0002__p612613571195">Transform an application to microservices and then containerize the microservices one by one.</p>
+</td>
+<td class="cellrowborder" valign="top" width="35%" headers="mcps1.3.7.2.4.1.2 "><ul id="cce_bestpractice_0002__ul073215355315"><li id="cce_bestpractice_0002__li57327351133">Independent scaling: After an application is split into microservices, you can independently increase or decrease the number of instances for each microservice.</li><li id="cce_bestpractice_0002__li79101418519">Increased development speed: Microservices are decoupled from one another. Code development of a microservice does not affect other microservices.</li><li id="cce_bestpractice_0002__li16687112016512">Security assurance through isolation: For an overall application, if a security vulnerability exists, attackers can use this vulnerability to obtain the permission to all functions of the application. However, in a microservice architecture, if a service is attacked, attackers can only obtain the access permission to this service, but cannot intrude other services.</li><li id="cce_bestpractice_0002__li4465152720513">Breakdown isolation: If one microservice breaks down, other microservices can still run properly.</li></ul>
+</td>
+<td class="cellrowborder" valign="top" width="33%" headers="mcps1.3.7.2.4.1.3 "><p id="cce_bestpractice_0002__p59346441719">Need to transform the application to microservices, which involves a large number of changes.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_bestpractice_0002__p179141159143510"><span class="uicontrol" id="cce_bestpractice_0002__uicontrol855893009114624"><b>Mode 1</b></span> is used as an example in this tutorial to illustrate how to containerize an <span class="keyword" id="cce_bestpractice_0002__keyword1882482315219">enterprise resource planning (ERP)</span> system.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0001.html">Containerizing an Enterprise Application (ERP)</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0003.html b/docs/cce/umn/cce_bestpractice_0003.html
new file mode 100644
index 00000000..5785e5f6
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0003.html
@@ -0,0 +1,60 @@
+<a name="cce_bestpractice_0003"></a><a name="cce_bestpractice_0003"></a>
+
+<h1 class="topictitle1">Containerizing an Entire Application</h1>
+<div id="body1513917418808"><p id="cce_bestpractice_0003__p12700181618115">This tutorial describes how to containerize an ERP system by migrating it from a VM to CCE.</p>
+<p id="cce_bestpractice_0003__p9741112611219">No recoding or re-architecting is required. You only need to pack the entire application into a container image and deploy the container image on CCE.</p>
+<div class="section" id="cce_bestpractice_0003__section162176531261"><h4 class="sectiontitle">Introduction</h4><p id="cce_bestpractice_0003__p144592417364">In this example, the <span class="uicontrol" id="cce_bestpractice_0003__uicontrol114568127895852"><b>enterprise management application</b></span> is developed by enterprise A. This application is provided for third-party enterprises for use, and enterprise A is responsible for application maintenance.</p>
+<p id="cce_bestpractice_0003__p154911228173318">When a third-party enterprise needs to use this application, a suit of <span class="uicontrol" id="cce_bestpractice_0003__uicontrol194621116394"><b>Tomcat application</b></span> and <span class="uicontrol" id="cce_bestpractice_0003__uicontrol1337122510911"><b>MongoDB database</b></span> must be deployed for the third-party enterprise. The MySQL database, used to store data of third-party enterprises, is provided by enterprise A.</p>
+<div class="fignone" id="cce_bestpractice_0003__fig78809934014"><a name="cce_bestpractice_0003__fig78809934014"></a><a name="fig78809934014"></a><span class="figcap"><b>Figure 1 </b>Application architecture</span><br><span><img class="vsd" id="cce_bestpractice_0003__image087553211216" src="en-us_image_0166039537.png"></span></div>
+<p id="cce_bestpractice_0003__p57605308298">As shown in <a href="#cce_bestpractice_0003__fig78809934014">Figure 1</a>, the application is a standard Tomcat application, and its backend interconnects with MongoDB and MySQL databases. For this type of applications, there is no need to split the architecture. The entire application is built as an image, and the MongoDB database is deployed in the same image as the Tomcat application. In this way, the application can be deployed or upgraded through the image.</p>
+<ul id="cce_bestpractice_0003__ul99852318293"><li id="cce_bestpractice_0003__li20537103562913">Interconnecting with the MongoDB database for storing user files.</li><li id="cce_bestpractice_0003__li15091358153219">Interconnecting with the MySQL database for storing third-party enterprise data. The MySQL database is an external cloud database.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0003__section15798151011249"><h4 class="sectiontitle">Benefits</h4><p id="cce_bestpractice_0003__p666041353118">In this example, the application was deployed on a VM. During application deployment and upgrade, a series of problems is encountered, but application containerization has solved these problems.</p>
+<p id="cce_bestpractice_0003__p12574171343216">By using containers, you can easily pack application code, configurations, and dependencies and convert them into easy-to-use building blocks. This achieves the environmental consistency and version management, as well as improves the development and operation efficiency. Containers ensure quick, reliable, and consistent deployment of applications and prevent applications from being affected by deployment environment.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0003__table349616204372" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Comparison between the two deployment modes</caption><thead align="left"><tr id="cce_bestpractice_0003__row18497202053716"><th align="left" class="cellrowborder" valign="top" width="16%" id="mcps1.3.4.4.2.4.1.1"><p id="cce_bestpractice_0003__p10896134318384">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="38%" id="mcps1.3.4.4.2.4.1.2"><p id="cce_bestpractice_0003__p1749714207376">Before: Application Deployment on VM</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="46%" id="mcps1.3.4.4.2.4.1.3"><p id="cce_bestpractice_0003__p849772083717">After: Application Deployment Using Containers</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0003__row1249762010375"><td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.4.2.4.1.1 "><p id="cce_bestpractice_0003__p1789764318387">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="38%" headers="mcps1.3.4.4.2.4.1.2 "><p id="cce_bestpractice_0003__p18586947142115">High deployment cost.</p>
+<p id="cce_bestpractice_0003__p1851782102014">A VM is required for deploying a system for a customer.</p>
+</td>
+<td class="cellrowborder" valign="top" width="46%" headers="mcps1.3.4.4.2.4.1.3 "><p id="cce_bestpractice_0003__p18497122063720">More than 50% cost reduced.</p>
+<p id="cce_bestpractice_0003__p3379185317201">Container services achieve multi-tenant isolation, which allows you to deploy systems for different enterprises on the same VM.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0003__row204971520193719"><td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.4.2.4.1.1 "><p id="cce_bestpractice_0003__p9897943133813">Upgrade</p>
+</td>
+<td class="cellrowborder" valign="top" width="38%" headers="mcps1.3.4.4.2.4.1.2 "><p id="cce_bestpractice_0003__p61906812213">Low upgrade efficiency.</p>
+<p id="cce_bestpractice_0003__p1649819207370">During version upgrades, you need to log in to VMs one by one and manually configure the upgrades, which is inefficient and error-prone.</p>
+</td>
+<td class="cellrowborder" valign="top" width="46%" headers="mcps1.3.4.4.2.4.1.3 "><p id="cce_bestpractice_0003__p66881228172215">Per-second level upgrade.</p>
+<p id="cce_bestpractice_0003__p156241728163913">Version upgrades can be completed within seconds by replacing the image tag. In addition, CCE provides rolling updates, ensuring zero service downtime during upgrades.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0003__row13162748112611"><td class="cellrowborder" valign="top" width="16%" headers="mcps1.3.4.4.2.4.1.1 "><p id="cce_bestpractice_0003__p181621148122620">Operation and maintenance (O&amp;M)</p>
+</td>
+<td class="cellrowborder" valign="top" width="38%" headers="mcps1.3.4.4.2.4.1.2 "><p id="cce_bestpractice_0003__p14156193914228">High O&amp;M cost.</p>
+<p id="cce_bestpractice_0003__p171631148102619">As the number of applications deployed for customer grows, the number of VMs that need to be maintained increases accordingly, which requires a large sum of maintenance cost.</p>
+</td>
+<td class="cellrowborder" valign="top" width="46%" headers="mcps1.3.4.4.2.4.1.3 "><p id="cce_bestpractice_0003__p20411442202215">Automatic O&amp;M</p>
+<p id="cce_bestpractice_0003__p10163104822611">Enterprises can focus on service development without paying attention to VM maintenance.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00035.html b/docs/cce/umn/cce_bestpractice_00035.html
index 6446f86d..d8f06177 100644
--- a/docs/cce/umn/cce_bestpractice_00035.html
+++ b/docs/cce/umn/cce_bestpractice_00035.html
@@ -22,7 +22,8 @@
 <p id="cce_bestpractice_00035__p101483813463"><strong id="cce_bestpractice_00035__b94263121219">VPC and Container Tunnel Network Models</strong></p>
 <p id="cce_bestpractice_00035__p420914396245">To obtain source IP addresses, perform the following steps:</p>
 <ol id="cce_bestpractice_00035__ol1477712543620"><li id="cce_bestpractice_00035__li12777454962"><span>When creating a LoadBalancer Service on the CCE console, set <strong id="cce_bestpractice_00035__b1745114210315">Service Affinity</strong> to <strong id="cce_bestpractice_00035__b9844491834">Node level</strong> instead of <strong id="cce_bestpractice_00035__b1631105614320">Cluster level</strong>.</span><p><p id="cce_bestpractice_00035__p07779548616"></p>
-</p></li><li id="cce_bestpractice_00035__li1777795419614"><span>Go to the ELB console and enable the function of obtaining the client IP address of the listener corresponding to the load balancer. <strong id="cce_bestpractice_00035__b670319210497">Transparent transmission of source IP addresses is enabled for dedicated load balancers by default. You do not need to manually enable this function.</strong></span><p><ol type="a" id="cce_bestpractice_00035__ol167779541767"><li id="cce_bestpractice_00035__li11777154764">Log in to the ELB console.</li><li id="cce_bestpractice_00035__li187771754967">Click <span><img id="cce_bestpractice_00035__image1677716541169" src="en-us_image_0000001221501677.png"></span> in the upper left corner to select the desired region and project.</li><li id="cce_bestpractice_00035__li17777145417611">Click <strong id="cce_bestpractice_00035__b11958203315514">Service List</strong>. Under <strong id="cce_bestpractice_00035__b1096313310516">Networking</strong>, click <strong id="cce_bestpractice_00035__b1396312337513">Elastic Load Balance</strong>.</li><li id="cce_bestpractice_00035__li877713542067">On the <strong id="cce_bestpractice_00035__b7806736153212">Load Balancers</strong> page, click the name of the load balancer.</li><li id="cce_bestpractice_00035__li17771254563">Click <strong id="cce_bestpractice_00035__b113891339173212">Listeners</strong>.</li><li id="cce_bestpractice_00035__li377745418611">To add a listener, click <strong id="cce_bestpractice_00035__b972114414517">Add Listener</strong>.</li><li id="cce_bestpractice_00035__li07777540611">To modify a listener, locate the listener and click <span><img id="cce_bestpractice_00035__image107771654368" src="en-us_image_0000001221820189.png"></span> on the right of its name.</li><li id="cce_bestpractice_00035__li477720541864">Enable <strong id="cce_bestpractice_00035__b207848511656">Obtain Client IP Address</strong>.</li></ol>
+</p></li><li id="cce_bestpractice_00035__li1777795419614"><span>Go to the ELB console and enable the function of obtaining the client IP address of the listener corresponding to the load balancer. <strong id="cce_bestpractice_00035__b670319210497">Transparent transmission of source IP addresses is enabled for dedicated load balancers by default. You do not need to manually enable this function.</strong></span><p><ol type="a" id="cce_bestpractice_00035__ol167779541767"><li id="cce_bestpractice_00035__li11777154764">Log in to the ELB console.</li><li id="cce_bestpractice_00035__li187771754967">Click <span><img id="cce_bestpractice_00035__image1677716541169" src="en-us_image_0000001221501677.png"></span> in the upper left corner to select the desired region and project.</li><li id="cce_bestpractice_00035__li17777145417611">Click <strong id="cce_bestpractice_00035__b11958203315514">Service List</strong>. Under <strong id="cce_bestpractice_00035__b1096313310516">Networking</strong>, click <strong id="cce_bestpractice_00035__b1396312337513">Elastic Load Balance</strong>.</li><li id="cce_bestpractice_00035__li877713542067">On the <strong id="cce_bestpractice_00035__b7806736153212">Load Balancers</strong> page, click the name of the load balancer.</li><li id="cce_bestpractice_00035__li17771254563">Click <strong id="cce_bestpractice_00035__b113891339173212">Listeners</strong>.<ul id="cce_bestpractice_00035__ul13241558155819"><li id="cce_bestpractice_00035__li1824195818588">To add a listener, click <strong id="cce_bestpractice_00035__b1683483713133">Add Listener</strong>.</li><li id="cce_bestpractice_00035__li1124116587582">To modify a listener, locate the listener and click the edit button on the right of its name.</li></ul>
+</li><li id="cce_bestpractice_00035__li477720541864">Enable <strong id="cce_bestpractice_00035__b207848511656">Obtain Client IP Address</strong>.</li></ol>
 </p></li></ol>
 <p id="cce_bestpractice_00035__p59816519"></p>
 </div>
diff --git a/docs/cce/umn/cce_bestpractice_0004.html b/docs/cce/umn/cce_bestpractice_0004.html
new file mode 100644
index 00000000..4f79707f
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0004.html
@@ -0,0 +1,12 @@
+<a name="cce_bestpractice_0004"></a><a name="cce_bestpractice_0004"></a>
+
+<h1 class="topictitle1">Containerization Process</h1>
+<div id="body1514960117705"><p id="cce_bestpractice_0004__p1354251751618">The following figure illustrates the process of containerizing an application.</p>
+<div class="fignone" id="cce_bestpractice_0004__fig101821045193212"><span class="figcap"><b>Figure 1 </b>Process of containerizing an application</span><br><span><img id="cce_bestpractice_0004__image16258141117210" src="en-us_image_0264626618.png"></span></div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0005.html b/docs/cce/umn/cce_bestpractice_0005.html
new file mode 100644
index 00000000..99806a54
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0005.html
@@ -0,0 +1,67 @@
+<a name="cce_bestpractice_0005"></a><a name="cce_bestpractice_0005"></a>
+
+<h1 class="topictitle1">Analyzing the Application</h1>
+<div id="body1513917418808"><p id="cce_bestpractice_0005__p8060118">Before <span class="keyword" id="cce_bestpractice_0005__keyword132451812102113">containerizing an application</span>, you need to analyze the running environment and dependencies of the application, and get familiar with the application deployment mode. For details, see <a href="#cce_bestpractice_0005__table1893834493714">Table 1</a>.</p>
+
+<div class="tablenoborder"><a name="cce_bestpractice_0005__table1893834493714"></a><a name="table1893834493714"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0005__table1893834493714" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Application environment</caption><thead align="left"><tr id="cce_bestpractice_0005__row593904483713"><th align="left" class="cellrowborder" valign="top" width="11%" id="mcps1.3.2.2.4.1.1"><p id="cce_bestpractice_0005__p2074218527373">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13%" id="mcps1.3.2.2.4.1.2"><p id="cce_bestpractice_0005__p189447258171">Sub-category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="76%" id="mcps1.3.2.2.4.1.3"><p id="cce_bestpractice_0005__p4939194410377">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0005__row179391644203716"><td class="cellrowborder" rowspan="3" valign="top" width="11%" headers="mcps1.3.2.2.4.1.1 "><p id="cce_bestpractice_0005__p8869141912385">Runtime environment</p>
+</td>
+<td class="cellrowborder" valign="top" width="13%" headers="mcps1.3.2.2.4.1.2 "><p id="cce_bestpractice_0005__p7939154419371">OS</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.2.2.4.1.3 "><p id="cce_bestpractice_0005__p5939044133715">OS that the application runs on, such as CentOS or Ubuntu.</p>
+<p id="cce_bestpractice_0005__p211952911413">In this example, the application runs on CentOS 7.1.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0005__row18939244183713"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.1.1 "><p id="cce_bestpractice_0005__p13939154415374">Runtime environment</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.1.2 "><p id="cce_bestpractice_0005__p10939174483714">The Java application requires Java Development Kit (JDK), the Go language requires GoLang, the web application requires Tomcat environment, and the corresponding version number needs to be confirmed.</p>
+<p id="cce_bestpractice_0005__p14948450164115">In this example, the web application of the Tomcat type is used. This application requires the runtime environment of Tomcat 7.0, and Tomcat requires JDK 1.8.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0005__row1093944413377"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.1.1 "><p id="cce_bestpractice_0005__p109391444173713">Dependency package</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.1.2 "><p id="cce_bestpractice_0005__p99391844133710">Understand required dependency packages, such as OpenSSL and other system software, and their version numbers.</p>
+<p id="cce_bestpractice_0005__p56992919427">In this example, no dependency package is required.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0005__row11939134412377"><td class="cellrowborder" rowspan="3" valign="top" width="11%" headers="mcps1.3.2.2.4.1.1 "><p id="cce_bestpractice_0005__p16309414123819">Deployment mode</p>
+</td>
+<td class="cellrowborder" rowspan="2" valign="top" width="13%" headers="mcps1.3.2.2.4.1.2 "><p id="cce_bestpractice_0005__p139421428234">Peripheral configurations</p>
+</td>
+<td class="cellrowborder" valign="top" width="76%" headers="mcps1.3.2.2.4.1.3 "><p id="cce_bestpractice_0005__p39418289320">MongoDB database: In this example, the MongoDB database and Tomcat application are deployed on the same server. Therefore, their configurations can be fixed and there is no need to extract their configurations.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0005__row11397617131"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.1.1 "><p id="cce_bestpractice_0005__p11940144183717">External services with which the application needs to interconnect, such as databases and file systems.</p>
+<p id="cce_bestpractice_0005__p15834112174617">These configurations need to be manually configured each time you deploy an application on a VM. However, through containerized deployment, environment variables can be injected into a container, facilitating deployment.</p>
+<p id="cce_bestpractice_0005__p17414165124510">In this example, the application needs to interconnect with the MySQL database. You need to obtain the database configuration file. The server address, database name, database login username, and database login password are injected through environment variables.</p>
+<pre class="screen" id="cce_bestpractice_0005__screen1332672212474">url=jdbc:mysql://<em id="cce_bestpractice_0005__i842352697151740">Server address</em>/<em id="cce_bestpractice_0005__i842352697151746">Database name</em>        #Database connection URL
+username=****                         #Username for logging in to the database
+password=****                         #Password for logging in to the database</pre>
+</td>
+</tr>
+<tr id="cce_bestpractice_0005__row694016448378"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.1.1 "><p id="cce_bestpractice_0005__p994074418375">Application configurations</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.1.2 "><p id="cce_bestpractice_0005__p10505932155117">You need to sort out the configuration parameters, such as configurations that need to be modified frequently and those remain unchanged during the running of the application.</p>
+<p id="cce_bestpractice_0005__p11626163311515">In this example, no application configurations need to be extracted.</p>
+<div class="note" id="cce_bestpractice_0005__note75161827153918"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_bestpractice_0005__p12307185114018">To avoid frequent image replacement, you are advised to classify configurations of the application.</p>
+<ul id="cce_bestpractice_0005__ul248373719393"><li id="cce_bestpractice_0005__li638716244598">For the configurations (such as peripheral interconnection information and log levels) that are frequently changed, you are advised to configure them as environment variables.</li><li id="cce_bestpractice_0005__li207809531599">For the configurations that remain unchanged, directly write them into images.</li></ul>
+</div></div>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0006.html b/docs/cce/umn/cce_bestpractice_0006.html
new file mode 100644
index 00000000..460892e0
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0006.html
@@ -0,0 +1,51 @@
+<a name="cce_bestpractice_0006"></a><a name="cce_bestpractice_0006"></a>
+
+<h1 class="topictitle1">Preparing the Application Runtime</h1>
+<div id="body1513920519450"><p id="cce_bestpractice_0006__p1876119217415">After application analysis, you have gained the understanding of the OS and runtime required for running the application. You need to make the following preparations:</p>
+<ul id="cce_bestpractice_0006__ul5419185114438"><li id="cce_bestpractice_0006__li030420315314"><a href="#cce_bestpractice_0006__section411319276259">Installing Docker</a>: During application containerization, you need to build a container image. To do so, you have to prepare a PC and install Docker on it.</li><li id="cce_bestpractice_0006__li6419551124313"><a href="#cce_bestpractice_0006__section7944139145718">Obtaining the base image tag</a>: Determine the base image based on the OS on which the application runs. In this example, the application runs on CentOS 7.1 and the base image can be obtained from an open-source image repository.</li><li id="cce_bestpractice_0006__li1021595644310"><a href="#cce_bestpractice_0006__section44401821348">Obtaining the runtime</a>: Obtain the runtime of the application and the MongoDB database with which the application interconnects.</li></ul>
+<div class="section" id="cce_bestpractice_0006__section411319276259"><a name="cce_bestpractice_0006__section411319276259"></a><a name="section411319276259"></a><h4 class="sectiontitle">Installing Docker</h4><p id="cce_bestpractice_0006__p42063811352">Docker is compatible with almost all operating systems. Select a Docker version that best suits your needs.</p>
+<div class="note" id="cce_bestpractice_0006__note52212683315"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0006__p622216123312">SWR uses Docker 1.11.2 or later to upload images. </p>
+<p id="cce_bestpractice_0006__p1988211483713">You are advised to install Docker and build images as user <strong id="cce_bestpractice_0006__b6889455231">root</strong>. Obtain the password of user <strong id="cce_bestpractice_0006__b2541181315286">root</strong> of the host where Docker is to be installed in advance.</p>
+</div></div>
+<ol id="cce_bestpractice_0006__ol2641214343"><li id="cce_bestpractice_0006__li36432111347"><span>Log in as user <strong id="cce_bestpractice_0006__b927994211590">root</strong> to the device on which Docker is about to be installed.</span></li><li id="cce_bestpractice_0006__li168147577340"><span>Run the following commands to quickly install Docker on the device running Linux: </span><p><p id="cce_bestpractice_0006__p1612016158363"><strong id="cce_bestpractice_0006__b1990133420368">curl -fsSL get.docker.com -o get-docker.sh</strong></p>
+<p id="cce_bestpractice_0006__p17133152319369"><strong id="cce_bestpractice_0006__b1999273453619">sh get-docker.sh</strong></p>
+</p></li><li id="cce_bestpractice_0006__li1345359153715"><span>Run the following command to query the Docker version:</span><p><div class="p" id="cce_bestpractice_0006__p20723585307"><strong id="cce_bestpractice_0006__b12635134113713">docker version</strong><pre class="screen" id="cce_bestpractice_0006__screen9836172713719">Client:
+<strong id="cce_bestpractice_0006__b575232115612">Version: 17.12.0-ce</strong>
+API Version:1.35
+...</pre>
+</div>
+<p id="cce_bestpractice_0006__p10725201012383"><strong id="cce_bestpractice_0006__b137991814537">Version</strong> indicates the version number. </p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0006__section7944139145718"><a name="cce_bestpractice_0006__section7944139145718"></a><a name="section7944139145718"></a><h4 class="sectiontitle">Obtaining the Base Image Tag</h4><p id="cce_bestpractice_0006__p152721651175710">Determine the base image based on the OS on which the application runs. In this example, the application runs on CentOS 7.1 and the base image can be obtained from an open-source image repository.</p>
+<div class="note" id="cce_bestpractice_0006__note7386131471320"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0006__p15386181491311">Search for the image tag based on the OS on which the application runs.</p>
+</div></div>
+<ol id="cce_bestpractice_0006__ol13116785815"><li id="cce_bestpractice_0006__li163117785818"><span>Visit the Docker website.</span></li><li id="cce_bestpractice_0006__li657419331408"><span>Search for CentOS. The image corresponding to CentOS 7.1 is <strong id="cce_bestpractice_0006__b12557428627">centos7.1.1503</strong>. You need to use this image name when compiling the Dockerfile.</span><p><div class="fignone" id="cce_bestpractice_0006__fig683828716"><span class="figcap"><b>Figure 1 </b>Obtaining the CentOS version</span><br><span><img id="cce_bestpractice_0006__image1283912811113" src="en-us_image_0091280734.png"></span></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0006__section44401821348"><a name="cce_bestpractice_0006__section44401821348"></a><a name="section44401821348"></a><h4 class="sectiontitle">Obtaining the Runtime</h4><p id="cce_bestpractice_0006__p171821930192710">In this example, the web application of the Tomcat type is used. This application requires the runtime of Tomcat 7.0, and Tomcat requires JDK 1.8. In addition, the application must interconnect with the MongoDB database in advance.</p>
+<div class="note" id="cce_bestpractice_0006__note89901713101415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0006__p1991131361419">Download the environment required by the application.</p>
+</div></div>
+<ol id="cce_bestpractice_0006__ol173142620419"><li id="cce_bestpractice_0006__li1774314119619"><span>Download Tomcat, JDK, and MongoDB installation packages of the specific versions.</span><p><ol type="a" id="cce_bestpractice_0006__ol1766215521666"><li id="cce_bestpractice_0006__li14463415333">Download JDK 1.8.<p id="cce_bestpractice_0006__p12862174218338"><a name="cce_bestpractice_0006__li14463415333"></a><a name="li14463415333"></a>Download address: <a href="https://www.oracle.com/java/technologies/jdk8-downloads.html" target="_blank" rel="noopener noreferrer">https://www.oracle.com/java/technologies/jdk8-downloads.html</a>.</p>
+</li><li id="cce_bestpractice_0006__li4766155315518">Download Tomcat 7.0 from http://archive.apache.org/dist/tomcat/tomcat-7/v7.0.82/bin/apache-tomcat-7.0.82.tar.gz.</li><li id="cce_bestpractice_0006__li15306161318614">Download MongoDB 3.2 from https://fastdl.mongodb.org/linux/mongodb-linux-x86_64-rhel70-3.2.9.tgz.</li></ol>
+</p></li><li id="cce_bestpractice_0006__li4699271588"><span>Log in as user <strong id="cce_bestpractice_0006__b7490132544418">root</strong> to the device running Docker.</span></li><li id="cce_bestpractice_0006__li5541955"><span>Run the following commands to create the directory where the application is to be stored: For example, set the directory to <strong id="cce_bestpractice_0006__b16506121810401">apptest</strong>.</span><p><p id="cce_bestpractice_0006__p1543624854918"><strong id="cce_bestpractice_0006__b192895317179">mkdir apptest</strong></p>
+<p id="cce_bestpractice_0006__p164638508496"><strong id="cce_bestpractice_0006__b10292203111172">cd apptest</strong></p>
+</p></li><li id="cce_bestpractice_0006__li9663957664"><span>Use Xshell to save the downloaded dependency files to the <strong id="cce_bestpractice_0006__b1322811288407">apptest</strong> directory.</span></li><li id="cce_bestpractice_0006__li2046116913533"><span>Run the following commands to decompress the dependency files:</span><p><p id="cce_bestpractice_0006__p1647617536536"><strong id="cce_bestpractice_0006__b1447514329544">tar -zxf apache-tomcat-7.0.82.tar.gz</strong></p>
+<p id="cce_bestpractice_0006__p144279565533"><strong id="cce_bestpractice_0006__b1847623211543">tar -zxf jdk-8u151-linux-x64.tar.gz</strong></p>
+<p id="cce_bestpractice_0006__p1471595125317"><strong id="cce_bestpractice_0006__b174775326548">tar -zxf mongodb-linux-x86_64-rhel70-3.2.9.tgz</strong></p>
+</p></li><li id="cce_bestpractice_0006__li15362115311206"><span>Save the enterprise application (for example, <strong id="cce_bestpractice_0006__b842352706172352">apptest.war</strong>) in the <strong id="cce_bestpractice_0006__b881016816537">webapps/apptest</strong> directory of the Tomcat runtime environment.</span><p><div class="note" id="cce_bestpractice_0006__note17371546141413"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0006__p1381446151420"><strong id="cce_bestpractice_0006__b658985375311">apptest.war</strong> is used as an example only. Use your own application for actual configuration.</p>
+</div></div>
+<p id="cce_bestpractice_0006__p1570653292311"><strong id="cce_bestpractice_0006__b19467948182319">mkdir -p apache-tomcat-7.0.82/webapps/app<strong id="cce_bestpractice_0006__b19922431202615">test</strong></strong></p>
+<p id="cce_bestpractice_0006__p19802133614234"><strong id="cce_bestpractice_0006__b746944842310">cp apptest.war apache-tomcat-7.0.82/webapps/<strong id="cce_bestpractice_0006__b178901625122410">app<strong id="cce_bestpractice_0006__b194901336112616">test</strong></strong></strong></p>
+<p id="cce_bestpractice_0006__p7903440172313"><strong id="cce_bestpractice_0006__b84711248192316">cd apache-tomcat-7.0.82/webapps/<strong id="cce_bestpractice_0006__b731315281244">app<strong id="cce_bestpractice_0006__b1489344119266">test</strong></strong></strong></p>
+<p id="cce_bestpractice_0006__p96029435238"><strong id="cce_bestpractice_0006__b17472194814239">./../../../jdk1.8.0_151/bin/jar -xf <strong id="cce_bestpractice_0006__b87007317245">app</strong><strong id="cce_bestpractice_0006__b354064782617">test</strong>.war</strong></p>
+<p id="cce_bestpractice_0006__p18405171910227"><strong id="cce_bestpractice_0006__b124736480237">rm -rf apptest.war</strong></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0007.html b/docs/cce/umn/cce_bestpractice_0007.html
new file mode 100644
index 00000000..59cf1e3c
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0007.html
@@ -0,0 +1,30 @@
+<a name="cce_bestpractice_0007"></a><a name="cce_bestpractice_0007"></a>
+
+<h1 class="topictitle1">Compiling a Startup Script</h1>
+<div id="body1514888645779"><p id="cce_bestpractice_0007__p11680173855217">During application containerization, you need to prepare a startup script. The method of compiling this script is the same as that of compiling a shell script. The startup script is used to:</p>
+<ul id="cce_bestpractice_0007__ul108719233164"><li id="cce_bestpractice_0007__li17871723131610">Start up the software on which the application depends.</li><li id="cce_bestpractice_0007__li66702333163">Set the configurations that need to be changed as the environment variables.</li></ul>
+<div class="note" id="cce_bestpractice_0007__note1175919268159"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0007__p3759226201510">Startup scripts vary according to applications. You need to compile the script based on your service requirements.</p>
+</div></div>
+<div class="section" id="cce_bestpractice_0007__section614193211244"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_0007__ol12691427986"><li id="cce_bestpractice_0007__li4699271588"><span>Log in as user <strong id="cce_bestpractice_0007__b437941010111">root</strong> to the device running Docker.</span></li><li id="cce_bestpractice_0007__li5541955"><span>Run the following commands to create the directory where the application is to be stored:</span><p><p id="cce_bestpractice_0007__p1543624854918"><strong id="cce_bestpractice_0007__b19359102434716">mkdir apptest</strong></p>
+<p id="cce_bestpractice_0007__p164638508496"><strong id="cce_bestpractice_0007__b16360162410473">cd apptest</strong></p>
+</p></li><li id="cce_bestpractice_0007__li12314175319811"><a name="cce_bestpractice_0007__li12314175319811"></a><a name="li12314175319811"></a><span>Compile a script file. The name and content of the script file vary according to applications. You need to compile the script file based on your application. The following example is only for your reference. </span><p><div class="p" id="cce_bestpractice_0007__p1356504517243"><strong id="cce_bestpractice_0007__b66258351139">vi </strong><strong id="cce_bestpractice_0007__b1626123514132">start_tomcat_and_mongo.sh</strong><pre class="screen" id="cce_bestpractice_0007__screen1620995616122">#!/bin/bash
+# Load system environment variables.
+source  /etc/profile
+# Start MongoDB. The data is stored in <strong id="cce_bestpractice_0007__b144241927145017">/usr/local/mongodb/data</strong>.
+./usr/local/mongodb/bin/mongod --dbpath=<strong id="cce_bestpractice_0007__b32821271555">/usr/local/mongodb/data</strong> --logpath=/usr/local/mongodb/logs --port=27017 –fork
+# These three script commands indicate that the contents related to the MySQL database in the environment variables are written into the configuration file when Docker is started.
+sed -i "s|mysql://.*/awcp_crmtile|mysql://$<strong id="cce_bestpractice_0007__b11772153512546">MYSQL_URL/$MYSQL_DB</strong>|g" /root/apache-tomcat-7.0.82/webapps/awcp/WEB-INF/classes/conf/jdbc.properties
+sed -i "s|username=.*|username=$<strong id="cce_bestpractice_0007__b19591183905414">MYSQL_USER</strong>|g" /root/apache-tomcat-7.0.82/webapps/awcp/WEB-INF/classes/conf/jdbc.properties
+sed -i "s|password=.*|password=$<strong id="cce_bestpractice_0007__b91944414548">MYSQL_PASSWORD</strong>|g" /root/apache-tomcat-7.0.82/webapps/awcp/WEB-INF/classes/conf/jdbc.properties
+# Start Tomcat.
+bash /root/apache-tomcat-7.0.82/bin/catalina.sh run</pre>
+</div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0008.html b/docs/cce/umn/cce_bestpractice_0008.html
new file mode 100644
index 00000000..2e998828
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0008.html
@@ -0,0 +1,48 @@
+<a name="cce_bestpractice_0008"></a><a name="cce_bestpractice_0008"></a>
+
+<h1 class="topictitle1">Compiling the Dockerfile</h1>
+<div id="body1513917418808"><p id="cce_bestpractice_0008__p1898619481286">An image is the basis of a container. A container runs based on the content defined in the image. An image has multiple layers. Each layer includes the modifications made based on the previous layer.</p>
+<p id="cce_bestpractice_0008__p8713444275">Generally, Dockerfiles are used to customize images. Dockerfile is a text file and contains various instructions. Each instruction is used to build an image layer. That is, each instruction describes how to build an image layer.</p>
+<p id="cce_bestpractice_0008__p8060118">This section describes how to compile a Dockerfile file.</p>
+<div class="note" id="cce_bestpractice_0008__note5662131212173"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0008__p14662151213179">Dockerfiles vary according to applications. Dockerfiles need to be compiled based on actual service requirements.</p>
+</div></div>
+<div class="section" id="cce_bestpractice_0008__section0594336273"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_0008__ol76434436274"><li id="cce_bestpractice_0008__li864354352711"><span>Log in as the <strong>root</strong> user to the device running Docker.</span></li><li id="cce_bestpractice_0008__li1072615513149"><span>Write a Dockerfile.</span><p><p class="litext" id="cce_bestpractice_0008__p57888614204620"><strong id="cce_bestpractice_0008__b35812198204933">vi Dockerfile</strong></p>
+<p id="cce_bestpractice_0008__p6888865204937">The following provides an example Dockerfile:</p>
+<pre class="screen" id="cce_bestpractice_0008__screen20151151891616"># Centos:7.1.1503 is used as the base image.
+FROM centos:7.1.1503   <strong id="cce_bestpractice_0008__b11393124325319">                 </strong> 
+# Create a folder to store data and dependency files. You are advised to write multiple commands into one line to reduce the image size.
+RUN mkdir -p /usr/local/mongodb/data \   
+ &amp;&amp; mkdir -p /usr/local/mongodb/bin \ 
+ &amp;&amp; mkdir -p /root/apache-tomcat-7.0.82 \ 
+ &amp;&amp; mkdir -p /root/jdk1.8.0_151
+
+# Copy the files in the apache-tomcat-7.0.82 directory to the container path.
+COPY ./apache-tomcat-7.0.82 /root/apache-tomcat-7.0.82
+# Copy the files in the jdk1.8.0_151 directory to the container path.
+COPY ./jdk1.8.0_151 /root/jdk1.8.0_151                 
+# Copy the files in the mongodb-linux-x86_64-rhel70-3.2.9 directory to the container path.
+COPY ./mongodb-linux-x86_64-rhel70-3.2.9/bin /usr/local/mongodb/bin 
+# Copy start_tomcat_and_mongo.sh to the /root directory of the container.
+COPY ./start_tomcat_and_mongo.sh /root/                
+
+# Enter Java environment variables.
+RUN chown root:root -R /root \               <strong id="cce_bestpractice_0008__b1311123194419">     </strong>
+ &amp;&amp; echo "JAVA_HOME=/root/jdk1.8.0_151 " &gt;&gt; /etc/profile  \     
+ &amp;&amp; echo "PATH=\$JAVA_HOME/bin:$PATH " &gt;&gt; /etc/profile  \ 
+ &amp;&amp; echo "CLASSPATH=.:\$JAVA_HOME/lib/dt.jar:\$JAVA_HOME/lib/tools.jar" &gt;&gt; /etc/profile  \ 
+ &amp;&amp; chmod +x /root \ 
+ &amp;&amp; chmod +x /root/start_tomcat_and_mongo.sh
+
+# When the container is started, commands in <strong id="cce_bestpractice_0008__b0682115672818">start_tomcat_and_mongo.sh</strong> are automatically run. The file can be one or more commands, or a script.
+ENTRYPOINT ["/root/start_tomcat_and_mongo.sh"]    </pre>
+<p id="cce_bestpractice_0008__p18409771">In the preceding information:</p>
+<ul id="cce_bestpractice_0008__ul31470215"><li id="cce_bestpractice_0008__li14796483"><strong>FROM</strong> statement: indicates that <strong>centos:7.1.1503</strong> is used as the base image.</li><li id="cce_bestpractice_0008__li66059488"><strong id="cce_bestpractice_0008__b842352706195452">Run</strong> statement: indicates that a shell command is executed in the container.</li><li id="cce_bestpractice_0008__li57664488"><strong id="cce_bestpractice_0008__b842352706195531">Copy</strong> statement: indicates that files in the local computer are copied to the container.</li><li id="cce_bestpractice_0008__li11833133083019"><strong id="cce_bestpractice_0008__b842352706195635">ENTRYPOINT</strong> statement: indicates the commands that are run after the container is started.</li></ul>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0009.html b/docs/cce/umn/cce_bestpractice_0009.html
new file mode 100644
index 00000000..bc25d004
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0009.html
@@ -0,0 +1,24 @@
+<a name="cce_bestpractice_0009"></a><a name="cce_bestpractice_0009"></a>
+
+<h1 class="topictitle1">Building and Uploading an Image</h1>
+<div id="body1513917418808"><p id="cce_bestpractice_0009__p14142101965116">This section describes how to build an entire application into a Docker image. After building an image, you can use the image to deploy and upgrade the application. This reduces manual configuration and improves efficiency.</p>
+<div class="note" id="cce_bestpractice_0009__note13775132212511"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0009__p19776172211513">When building an image, ensure that files used to build the image are stored in the same directory.</p>
+</div></div>
+<div class="section" id="cce_bestpractice_0009__section18117257514"><h4 class="sectiontitle">Required Cloud Services</h4><p id="cce_bestpractice_0009__p105233334515">SoftWare Repository for Container (SWR) provides easy, secure, and reliable management over container images throughout their lifecycle, facilitating the deployment of containerized services.</p>
+</div>
+<div class="section" id="cce_bestpractice_0009__section11535414121813"><h4 class="sectiontitle">Basic Concepts</h4><ul id="cce_bestpractice_0009__ul155866715214"><li id="cce_bestpractice_0009__li65863710521">Image: A Docker image is a special file system that includes everything needed to run containers: programs, libraries, resources, settings, and so on. It also includes corresponding configuration parameters (such as anonymous volumes, environment variables, and users) required within a container runtime. An image does not contain any dynamic data, and its content remains unchanged after being built.</li><li id="cce_bestpractice_0009__li188759145210">Container: Images become containers at runtime, that is, containers are created from images. A container can be created, started, stopped, deleted, or suspended.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0009__section66849244816"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_0009__ol572167134816"><li id="cce_bestpractice_0009__li1272116711480"><span>Log in as the <strong id="cce_bestpractice_0009__b1061612185127">root</strong> user to the device running Docker.</span></li><li id="cce_bestpractice_0009__li1419112894819"><span>Enter the <strong id="cce_bestpractice_0009__b11617111817123">apptest</strong> directory.</span><p><p id="cce_bestpractice_0009__p156915110210"><strong id="cce_bestpractice_0009__b1221818261732">cd apptest</strong></p>
+<p id="cce_bestpractice_0009__p56739521729"><strong id="cce_bestpractice_0009__b22209266312">ll</strong></p>
+<p id="cce_bestpractice_0009__p1467525318212">Ensure that files used to build the image are stored in the same directory.</p>
+<p id="cce_bestpractice_0009__p209091014932"><span><img id="cce_bestpractice_0009__image16908101419319" src="en-us_image_0091292713.png"></span></p>
+</p></li><li id="cce_bestpractice_0009__li13440153875210"><span>Build an image.</span><p><p id="cce_bestpractice_0009__p785619535521"><strong id="cce_bestpractice_0009__b659517574527">docker build -t apptest .</strong></p>
+</p></li><li id="cce_bestpractice_0009__li1284619016533"><span>Upload the image to the SWR service. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/swr/swr_01_0011.html" target="_blank" rel="noopener noreferrer">Uploading an Image Through the Client</a>.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0010.html b/docs/cce/umn/cce_bestpractice_0010.html
new file mode 100644
index 00000000..06aecdbe
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0010.html
@@ -0,0 +1,99 @@
+<a name="cce_bestpractice_0010"></a><a name="cce_bestpractice_0010"></a>
+
+<h1 class="topictitle1">Creating a Container Workload</h1>
+<div id="body1514888645779"><p id="cce_bestpractice_0010__p148771646679">This section describes how to deploy a workload on CCE. When using CCE for the first time, create an initial cluster and add a node into the cluster.</p>
+<div class="note" id="cce_bestpractice_0010__note364316610194"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0010__p59989122181241">Containerized workloads are deployed in a similar way. The difference lies in:</p>
+<ul id="cce_bestpractice_0010__ul22147669181314"><li id="cce_bestpractice_0010__li43949925181314">Whether environment variables need to be set.</li><li id="cce_bestpractice_0010__li40425758181317">Whether cloud storage is used.</li></ul>
+</div></div>
+<div class="section" id="cce_bestpractice_0010__section18618481919"><h4 class="sectiontitle">Required Cloud Services</h4><ul id="cce_bestpractice_0010__ul831765024713"><li id="cce_bestpractice_0010__li331715010479">Cloud Container Engine (CCE): a highly reliable and high-performance service that allows enterprises to manage containerized applications. With support for Kubernetes-native applications and tools, CCE makes it simple to set up an environment for running containers in the cloud.</li><li id="cce_bestpractice_0010__li157091053114715">Elastic Cloud Server (ECS): a scalable and on-demand cloud server. It helps you to efficiently set up reliable, secure, and flexible application environments, ensuring stable service running and improving O&amp;M efficiency.</li><li id="cce_bestpractice_0010__li17687259154720">Virtual Private Cloud (VPC): an isolated and private virtual network environment that users apply for in the cloud. You can configure the IP address ranges, subnets, and security groups, as well as assign elastic IP addresses and allocate bandwidth in a VPC.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0010__section1482961017910"><h4 class="sectiontitle">Basic Concepts</h4><ul id="cce_bestpractice_0010__ul168011281394"><li id="cce_bestpractice_0010__li16680122819916">A cluster is a collection of computing resources, including a group of node resources. A container runs on a node. Before creating a containerized application, you must have an available cluster.</li><li id="cce_bestpractice_0010__li27531231895">A node is a virtual or physical machine that provides computing resources. You must have sufficient node resources to ensure successful operations such as creating applications. </li><li id="cce_bestpractice_0010__li98986331920">A workload indicates a group of container pods running on CCE. CCE supports third-party application hosting and provides the full lifecycle (from deployment to O&amp;M) management for applications. This section describes how to use a container image to create a workload.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_0010__section188985251214"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_0010__ol1825663213218"><li id="cce_bestpractice_0010__li1025612329217"><a name="cce_bestpractice_0010__li1025612329217"></a><a name="li1025612329217"></a><span>Prepare the environment as described in <a href="#cce_bestpractice_0010__table1399518309317">Table 1</a>.</span><p>
+<div class="tablenoborder"><a name="cce_bestpractice_0010__table1399518309317"></a><a name="table1399518309317"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0010__table1399518309317" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Preparing the environment</caption><thead align="left"><tr id="cce_bestpractice_0010__row1199703093116"><th align="left" class="cellrowborder" valign="top" width="7.920000000000001%" id="mcps1.3.5.2.1.2.1.2.4.1.1"><p id="cce_bestpractice_0010__p1081951683215">No.</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="18.81%" id="mcps1.3.5.2.1.2.1.2.4.1.2"><p id="cce_bestpractice_0010__p16997430173115">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73.27%" id="mcps1.3.5.2.1.2.1.2.4.1.3"><p id="cce_bestpractice_0010__p20997230103114">Procedure</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0010__row20997183017319"><td class="cellrowborder" valign="top" width="7.920000000000001%" headers="mcps1.3.5.2.1.2.1.2.4.1.1 "><p id="cce_bestpractice_0010__p11819171623218">1</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.81%" headers="mcps1.3.5.2.1.2.1.2.4.1.2 "><p id="cce_bestpractice_0010__p1099715308314">Creating a VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.27%" headers="mcps1.3.5.2.1.2.1.2.4.1.3 "><p id="cce_bestpractice_0010__p12251621155413">Create a VPC before you create a cluster. A VPC provides an isolated, configurable, and manageable virtual network environment for CCE clusters.</p>
+<p id="cce_bestpractice_0010__p385164035818">If you have a VPC already, skip to the next task.</p>
+<ol type="a" id="cce_bestpractice_0010__ol727042112539"><li id="cce_bestpractice_0010__li1753852319535">Log in to the management console.</li><li id="cce_bestpractice_0010__li14696132515314">In the service list, choose <strong id="cce_bestpractice_0010__b129561340125715">Networking</strong> &gt; <strong id="cce_bestpractice_0010__b124713438579">Virtual Private Cloud</strong>.</li><li id="cce_bestpractice_0010__li8532162717530">On the <strong id="cce_bestpractice_0010__b842352706104051">Dashboard</strong> page, click <strong id="cce_bestpractice_0010__b2081831956103631">Create VPC</strong>.</li><li id="cce_bestpractice_0010__li10270821135314">Follow the instructions to create a VPC. Retain default settings for parameters unless otherwise specified.</li></ol>
+</td>
+</tr>
+<tr id="cce_bestpractice_0010__row95361512153317"><td class="cellrowborder" valign="top" width="7.920000000000001%" headers="mcps1.3.5.2.1.2.1.2.4.1.1 "><p id="cce_bestpractice_0010__p1353661215330">2</p>
+</td>
+<td class="cellrowborder" valign="top" width="18.81%" headers="mcps1.3.5.2.1.2.1.2.4.1.2 "><p id="cce_bestpractice_0010__p5536612103314">Creating a key pair</p>
+</td>
+<td class="cellrowborder" valign="top" width="73.27%" headers="mcps1.3.5.2.1.2.1.2.4.1.3 "><p id="cce_bestpractice_0010__p1270061211540">Create a key pair before you create a containerized application. Key pairs are used for identity authentication during remote login to a node. If you have a key pair already, skip this task. </p>
+<ol type="a" id="cce_bestpractice_0010__ol1142165117537"><li id="cce_bestpractice_0010__li19932548531">Log in to the management console.</li><li id="cce_bestpractice_0010__li180105665319">In the service list, choose <strong id="cce_bestpractice_0010__b1928103072812">Data Encryption Workshop</strong> under <strong id="cce_bestpractice_0010__b392873014286">Security &amp; Compliance</strong>.</li><li id="cce_bestpractice_0010__li1480815710536">In the navigation pane, choose <strong id="cce_bestpractice_0010__b149854893918">Key Pair Service</strong>. On the <strong id="cce_bestpractice_0010__b14656112406">Private Key Pairs</strong> tab page, click <strong id="cce_bestpractice_0010__b1948231764017">Create Key Pair</strong>.</li><li id="cce_bestpractice_0010__li378118594537">Enter a key pair name, select <span class="uicontrol" id="cce_bestpractice_0010__uicontrol241535474412"><b>I agree to have the private key managed on the cloud</b></span> and <span class="uicontrol" id="cce_bestpractice_0010__uicontrol429491914518"><b>I have read and agree to the Key Pair Service Disclaimer</b></span>, and click <strong id="cce_bestpractice_0010__b2094719520566">OK</strong>.</li><li id="cce_bestpractice_0010__li914295117530">In the dialog box displayed, click <strong id="cce_bestpractice_0010__b11447735587">OK</strong>.<p id="cce_bestpractice_0010__en-us_topic_0053516957_p124778182714">View and save the key pair. For security purposes, a key pair can be downloaded only once. Keep it secure to ensure successful login. </p>
+</li></ol>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</p></li><li id="cce_bestpractice_0010__li75761023464"><span>Create a cluster and a node.</span><p><ol type="a" id="cce_bestpractice_0010__ol11431934869"><li id="cce_bestpractice_0010__li16388123263">Log in to the CCE console. Choose <strong id="cce_bestpractice_0010__b5509202214549">Clusters</strong>. On the displayed page, select the type of the cluster to be created and click Create.<p id="cce_bestpractice_0010__p1484994563810">Configure cluster parameters and select the VPC created in <a href="#cce_bestpractice_0010__li1025612329217">1</a>. </p>
+</li><li id="cce_bestpractice_0010__li15999122053815">Buy a node and select the key pair created in <a href="#cce_bestpractice_0010__li1025612329217">1</a> as the login mode. </li></ol>
+</p></li><li id="cce_bestpractice_0010__li8541912061"><span>Deploy a workload on CCE.</span><p><ol type="a" id="cce_bestpractice_0010__ol1610710121778"><li id="cce_bestpractice_0010__li836398383">Log in to the CCE console, click the created cluster, choose <strong id="cce_bestpractice_0010__b1953510514717">Workloads</strong> in the navigation pane, and click <strong id="cce_bestpractice_0010__b19689194810714">Create Workload</strong> in the upper right corner.</li><li id="cce_bestpractice_0010__li15350526133620">Set the following parameters, and retain the default settings for other parameters:<ul id="cce_bestpractice_0010__ul159377554014"><li id="cce_bestpractice_0010__li1393685144017"><strong id="cce_bestpractice_0010__b1073684553419">Workload Name</strong>: Set it to <strong id="cce_bestpractice_0010__b84235270611610">apptest</strong>.</li><li id="cce_bestpractice_0010__li59372518408"><strong id="cce_bestpractice_0010__b2773131575412">Pods</strong>: Set it to <strong id="cce_bestpractice_0010__b4773115185413">1</strong>.</li></ul>
+</li><li id="cce_bestpractice_0010__li182796474816">In the <span class="wintitle" id="cce_bestpractice_0010__wintitle12171855142114"><b>Container Settings</b></span> area, select the image uploaded in <a href="cce_bestpractice_0009.html">Building and Uploading an Image</a>.</li><li id="cce_bestpractice_0010__li15286167143415">In the <span class="wintitle" id="cce_bestpractice_0010__wintitle933831014418"><b>Container Settings</b></span> area, choose <span class="uicontrol" id="cce_bestpractice_0010__uicontrol11754894110"><b>Environment Variables</b></span> and add environment variables for interconnecting with the MySQL database. The environment variables are set in the <a href="cce_bestpractice_0007.html#cce_bestpractice_0007__li12314175319811">startup script</a>.<div class="note" id="cce_bestpractice_0010__note1582132112018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0010__p15821232162017">In this example, interconnection with the MySQL database is implemented through configuring the environment variables. Determine whether to use environment variables based on your service requirements.</p>
+</div></div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bestpractice_0010__table1965105283411" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Configuring environment variables</caption><thead align="left"><tr id="cce_bestpractice_0010__row8651152183412"><th align="left" class="cellrowborder" valign="top" width="27%" id="mcps1.3.5.2.3.2.1.4.5.2.3.1.1"><p id="cce_bestpractice_0010__p76645263416">Variable Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="73%" id="mcps1.3.5.2.3.2.1.4.5.2.3.1.2"><p id="cce_bestpractice_0010__p666175216342">Variable Value/Variable Reference</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bestpractice_0010__row1066135263416"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.1 "><p id="cce_bestpractice_0010__p196645220344">MYSQL_DB</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.2 "><p id="cce_bestpractice_0010__p96645210347">Database name.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0010__row196635217344"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.1 "><p id="cce_bestpractice_0010__p066115223412">MYSQL_URL</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.2 "><p id="cce_bestpractice_0010__p866155263415">IP address and port number of the database.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0010__row96605212344"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.1 "><p id="cce_bestpractice_0010__p1366152133414">MYSQL_USER</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.2 "><p id="cce_bestpractice_0010__p1366125215343">Database username.</p>
+</td>
+</tr>
+<tr id="cce_bestpractice_0010__row535273615352"><td class="cellrowborder" valign="top" width="27%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.1 "><p id="cce_bestpractice_0010__p535219361350">MYSQL_PASSWORD</p>
+</td>
+<td class="cellrowborder" valign="top" width="73%" headers="mcps1.3.5.2.3.2.1.4.5.2.3.1.2 "><p id="cce_bestpractice_0010__p1235293611356">Database user password.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_bestpractice_0010__li8246122043610">In the <span class="wintitle" id="cce_bestpractice_0010__wintitle14868145994820"><b>Container Settings</b></span> area, choose <strong id="cce_bestpractice_0010__b84235270615853">Data Storage</strong> and configure cloud storage for persistent data storage.<div class="note" id="cce_bestpractice_0010__note63639952216"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0010__p1136412915225">In this example, the MongoDB database is used and persistent data storage is also needed, so you need to configure cloud storage. Determine whether to use cloud storage based on your service requirements.</p>
+</div></div>
+<p id="cce_bestpractice_0010__p1839731763716">The mounted path must be the same as the MongoDB storage path in the Docker startup script. For details, see the <a href="cce_bestpractice_0007.html#cce_bestpractice_0007__li12314175319811">startup script</a>. In this example, the path is <strong id="cce_bestpractice_0010__b32821271555">/usr/local/mongodb/data</strong>.</p>
+</li><li id="cce_bestpractice_0010__li19999112310401">In the <span class="wintitle" id="cce_bestpractice_0010__wintitle552012364410"><b>Service Settings</b></span> area, click <span><img id="cce_bestpractice_0010__image688482275220" src="en-us_image_0000001244128658.png"></span> to add a service, configure workload access parameters, and click <span class="uicontrol" id="cce_bestpractice_0010__uicontrol552711812214"><b>OK</b></span>.<div class="note" id="cce_bestpractice_0010__note24721959165213"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0010__p24731559195216">In this example, the application will be accessible from public networks by using an elastic IP address.</p>
+</div></div>
+<ul id="cce_bestpractice_0010__ul69064431389"><li id="cce_bestpractice_0010__li1190616434813"><strong id="cce_bestpractice_0010__b27709281524">Service Name</strong>: name of the application that can be accessed externally. In this example, this parameter is set to <strong id="cce_bestpractice_0010__b8423527069017">apptest</strong>.</li><li id="cce_bestpractice_0010__li139217252466"><strong id="cce_bestpractice_0010__b144941850115212">Service Type</strong>: In this example, select <strong id="cce_bestpractice_0010__b10497155005216">NodePort</strong>.</li><li id="cce_bestpractice_0010__li195904442002"><strong id="cce_bestpractice_0010__b7882121610567">Service Affinity</strong><ul id="cce_bestpractice_0010__ul10852651217"><li id="cce_bestpractice_0010__li17623100818"><strong id="cce_bestpractice_0010__b209201053523">Cluster-level</strong>: The IP addresses and access ports of all nodes in a cluster can be used to access the workload associated with the Service. Service access will cause performance loss due to route redirection, and the source IP address of the client cannot be obtained.</li><li id="cce_bestpractice_0010__li54538251119"><strong id="cce_bestpractice_0010__b1365143120314">Node-level</strong>: Only the IP address and access port of the node where the workload is located can be used to access the workload associated with the Service. Service access will not cause performance loss due to route redirection, and the source IP address of the client can be obtained.</li></ul>
+</li><li id="cce_bestpractice_0010__li12615121100"><strong id="cce_bestpractice_0010__b549615410415">Port</strong><ul id="cce_bestpractice_0010__ul1181916301503"><li id="cce_bestpractice_0010__li44712813299"><strong id="cce_bestpractice_0010__b138355191115">Protocol</strong>: Set it to <strong id="cce_bestpractice_0010__b91501927514">TCP</strong>.</li><li id="cce_bestpractice_0010__li184881041124713"><strong id="cce_bestpractice_0010__b113321858165714">Service Port</strong>: port for accessing the Service.</li><li id="cce_bestpractice_0010__li121111217296"><strong id="cce_bestpractice_0010__b1243017571444">Container Port</strong>: port that the application will listen on the container. In this example, this parameter is set to <strong id="cce_bestpractice_0010__b842352706153430">8080</strong>.</li><li id="cce_bestpractice_0010__li11119112582916"><strong id="cce_bestpractice_0010__b17579455671">Node Port</strong>: Set it to <strong id="cce_bestpractice_0010__b4592055878">Auto</strong>. The system automatically opens a real port on all nodes in the current cluster and then maps the port number to the container port.</li></ul>
+</li></ul>
+</li><li id="cce_bestpractice_0010__li151183363920">Click <span class="uicontrol" id="cce_bestpractice_0010__uicontrol151411332096"><b>Create Workload</b></span>.<p id="cce_bestpractice_0010__p1128618537422">After the workload is created, you can view the running workload in the workload list.</p>
+</li></ol>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_0010__section1923817572133"><h4 class="sectiontitle">Verifying a Workload</h4><p id="cce_bestpractice_0010__p1678914614142">After a workload is created, you can access the workload to check whether the deployment is successful.</p>
+<p id="cce_bestpractice_0010__p0756143914148">In the preceding configuration, the NodePort mode is selected to access the workload by using <span class="uicontrol" id="cce_bestpractice_0010__uicontrol149141659181716"><b>IP address:Port number</b></span>. If the access is successful, the workload is successfully deployed.</p>
+<p id="cce_bestpractice_0010__p1870515317189">You can obtain the access mode from the <strong id="cce_bestpractice_0010__b32061864455">Access Mode</strong> tab page on the workload details page.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0340.html">Procedure</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00162.html b/docs/cce/umn/cce_bestpractice_00162.html
index e29f7a89..218d2f77 100644
--- a/docs/cce/umn/cce_bestpractice_00162.html
+++ b/docs/cce/umn/cce_bestpractice_00162.html
@@ -1,12 +1,12 @@
 <a name="cce_bestpractice_00162"></a><a name="cce_bestpractice_00162"></a>
 
 <h1 class="topictitle1">Selecting a Network Model</h1>
-<div id="body8662426"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p17435959114810">CCE uses self-proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.</p>
+<div id="body8662426"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p17435959114810">CCE uses proprietary, high-performance container networking add-ons to support the tunnel network, Cloud Native Network 2.0, and VPC network models.</p>
 <div class="caution" id="cce_bestpractice_00162__en-us_topic_0146398798_note16210116164920"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_00162__en-us_topic_0146398798_p13210161634911">After a cluster is created, the network model cannot be changed. Exercise caution when selecting a network model.</p>
 </div></div>
-<ul id="cce_bestpractice_00162__en-us_topic_0146398798_ul19705159132810"><li id="cce_bestpractice_00162__en-us_topic_0146398798_li13471796331"><strong id="cce_bestpractice_00162__en-us_topic_0146398798_b1464918596228">Tunnel network</strong>: The container network is an overlay tunnel network on top of a VPC network and uses the VXLAN technology. This network model is applicable when there is no high requirements on performance. VXLAN encapsulates Ethernet packets as UDP packets for tunnel transmission. Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications.<div class="fignone" id="cce_bestpractice_00162__fig14516205351318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_bestpractice_00162__image185161053141319" src="en-us_image_0000001145545261.png"></span></div>
+<ul id="cce_bestpractice_00162__en-us_topic_0146398798_ul19705159132810"><li id="cce_bestpractice_00162__en-us_topic_0146398798_li13471796331"><strong id="cce_bestpractice_00162__b175141321153213">Tunnel network</strong>: The container network is an overlay tunnel network on top of a VPC network and uses the VXLAN technology. This network model is applicable when there is no high requirements on performance. VXLAN encapsulates Ethernet packets as UDP packets for tunnel transmission. Though at some cost of performance, the tunnel encapsulation enables higher interoperability and compatibility with advanced features (such as network policy-based isolation), meeting the requirements of most applications.<div class="fignone" id="cce_bestpractice_00162__fig14516205351318"><span class="figcap"><b>Figure 1 </b>Container tunnel network</span><br><span><img id="cce_bestpractice_00162__image185161053141319" src="en-us_image_0000001145545261.png"></span></div>
 </li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li12415181582811"><strong id="cce_bestpractice_00162__en-us_topic_0146398798_b474220128312">VPC network</strong>: The container network uses VPC routing to integrate with the underlying network. This network model is applicable to performance-intensive scenarios. The maximum number of nodes allowed in a cluster depends on the route quota in a VPC network. Each node is assigned a CIDR block of a fixed size. VPC networks are free from tunnel encapsulation overhead and outperform container tunnel networks. In addition, as VPC routing includes routes to node IP addresses and container network segment, container pods in the cluster can be directly accessed from outside the cluster.<div class="fignone" id="cce_bestpractice_00162__en-us_topic_0146398798_fig105374614243"><span class="figcap"><b>Figure 2 </b>VPC network</span><br><span><img id="cce_bestpractice_00162__en-us_topic_0146398798_image757734312392" src="en-us_image_0261818875.png"></span></div>
-</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li165814075311"><strong id="cce_bestpractice_00162__b1599116212174">Cloud Native Network 2.0</strong>: The container network deeply integrates the elastic network interface (ENI) capability of VPC, uses the VPC CIDR block to allocate container addresses, and supports passthrough networking to containers through a load balancer.<div class="fignone" id="cce_bestpractice_00162__en-us_topic_0146398798_fig117435555917"><span class="figcap"><b>Figure 3 </b>Cloud Native Network 2.0</span><br><span><img id="cce_bestpractice_00162__cce_01_0284_image46261543153113" src="en-us_image_0000001352539924.png"></span></div>
+</li><li id="cce_bestpractice_00162__en-us_topic_0146398798_li165814075311"><strong id="cce_bestpractice_00162__b1599116212174">Cloud Native Network 2.0</strong>: The container network deeply integrates the elastic network interface (ENI) capability of VPC, uses the VPC CIDR block to allocate container addresses, and supports passthrough networking to containers through a load balancer.<div class="fignone" id="cce_bestpractice_00162__en-us_topic_0146398798_fig117435555917"><span class="figcap"><b>Figure 3 </b>Cloud Native Network 2.0</span><br><span><img id="cce_bestpractice_00162__en-us_topic_0000001116514283_image46261543153113" src="en-us_image_0000001352539924.png"></span></div>
 </li></ul>
 <p id="cce_bestpractice_00162__en-us_topic_0146398798_p1057652712256">The following table lists the differences between the network models.</p>
 
@@ -96,7 +96,7 @@
 </tbody>
 </table>
 </div>
-<div class="notice" id="cce_bestpractice_00162__en-us_topic_0146398798_note514622713155"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ol id="cce_bestpractice_00162__cce_01_0281_en-us_topic_0146398798_ol4704115561518"><li id="cce_bestpractice_00162__cce_01_0281_en-us_topic_0146398798_li97047554152">The scale of a cluster that uses the VPC network model is limited by the custom routes of the VPC. Therefore, you need to estimate the number of required nodes before creating a cluster.</li><li id="cce_bestpractice_00162__cce_01_0281_li12128141818386">The scale of a cluster that uses the Cloud Native Network 2.0 model depends on the size of the VPC subnet CIDR block selected for the network attachment definition. Before creating a cluster, evaluate the scale of your cluster.</li><li id="cce_bestpractice_00162__cce_01_0281_en-us_topic_0146398798_li18704355101514">By default, VPC routing network supports direct communication between containers and hosts in the same VPC. If a peering connection policy is configured between the VPC and another VPC, the containers can directly communicate with hosts on the peer VPC. In addition, in hybrid networking scenarios such as Direct Connect and VPN, communication between containers and hosts on the peer end can also be achieved with proper planning.</li></ol>
+<div class="notice" id="cce_bestpractice_00162__en-us_topic_0146398798_note514622713155"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><ol id="cce_bestpractice_00162__en-us_topic_0000001116232773_en-us_topic_0146398798_ol4704115561518"><li id="cce_bestpractice_00162__en-us_topic_0000001116232773_en-us_topic_0146398798_li97047554152">The scale of a cluster that uses the VPC network model is limited by the custom routes of the VPC. Therefore, you need to estimate the number of required nodes before creating a cluster.</li><li id="cce_bestpractice_00162__en-us_topic_0000001116232773_li12128141818386">The scale of a cluster that uses the Cloud Native Network 2.0 model depends on the size of the VPC subnet CIDR block selected for the network attachment definition. Before creating a cluster, evaluate the scale of your cluster.</li><li id="cce_bestpractice_00162__en-us_topic_0000001116232773_en-us_topic_0146398798_li18704355101514">By default, VPC routing network supports direct communication between containers and hosts in the same VPC. If a peering connection policy is configured between the VPC and another VPC, the containers can directly communicate with hosts on the peer VPC. In addition, in hybrid networking scenarios such as Direct Connect and VPN, communication between containers and hosts on the peer end can also be achieved with proper planning.</li></ol>
 </div></div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_bestpractice_00190.html b/docs/cce/umn/cce_bestpractice_00190.html
index 68748bbb..583c1c89 100644
--- a/docs/cce/umn/cce_bestpractice_00190.html
+++ b/docs/cce/umn/cce_bestpractice_00190.html
@@ -1,16 +1,16 @@
 <a name="cce_bestpractice_00190"></a><a name="cce_bestpractice_00190"></a>
 
 <h1 class="topictitle1">Adding a Second Data Disk to a Node in a CCE Cluster</h1>
-<div id="body32001227"><p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_p288973420553">You can use the pre-installation script feature to configure CCE cluster nodes (ECSs). </p>
-<div class="note" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_note187118299010"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_ul148441643567"><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_li78443455617">When creating a node in a cluster of v1.13.10 or later, if a data disk is not managed by LVM, follow instructions in this section to format the data disk before adding the disk. Otherwise, the data disk will still be managed by LVM.</li><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_li284412417565">When creating a node in a cluster earlier than v1.13.10, you must format the data disks that are not managed by LVM. Otherwise, either these data disks or the first data disk will be managed by LVM.</li></ul>
+<div id="body32001227"><p id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_p288973420553">You can use the pre-installation script feature to configure CCE cluster nodes (ECSs). </p>
+<div class="note" id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_note187118299010"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_ul148441643567"><li id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_li78443455617">When creating a node in a cluster of v1.13.10 or later, if a data disk is not managed by LVM, follow instructions in this section to format the data disk before adding the disk. Otherwise, the data disk will still be managed by LVM.</li><li id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_li284412417565">When creating a node in a cluster earlier than v1.13.10, you must format the data disks that are not managed by LVM. Otherwise, either these data disks or the first data disk will be managed by LVM.</li></ul>
 </div></div>
-<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p1015225014282">Before using this feature, write a script that can format data disks and save it to your OBS bucket. This script must be executed by user <strong id="cce_bestpractice_00190__cce_01_0344_b12368487253">root</strong>.</p>
-<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p14797151002918"><strong id="cce_bestpractice_00190__cce_01_0344_b8735151412269">Input Parameters</strong></p>
-<ol id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_ol2479194612293"><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_li1184816446266">Set the script name to <strong id="cce_bestpractice_00190__cce_01_0344_b11895918132610">formatdisk.sh</strong>, save the script to your OBS bucket, and obtain the address of the script in OBS.</li><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_li4843193873011">You need to specify the size of the Docker data disk (the data disk managed by LVM is called the Docker data disk). The size of the Docker disk must be different from that of the second disk. For example, the Docker data disk is 100 GB and the new disk is 110 GB.</li><li id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_li414717519311">Set the mount path of the second data disk, for example, <strong id="cce_bestpractice_00190__cce_01_0344_b161641838172615">/data/code</strong>.</li></ol>
-<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p1055181511314">Run the following command in the pre-installation script to format the disk:</p>
-<pre class="screen" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_screen758171514537">cd /tmp;curl -k -X GET <strong id="cce_bestpractice_00190__cce_01_0344_b1875314503263"><em id="cce_bestpractice_00190__cce_01_0344_i67471850122614">OBS bucket address</em></strong> /formatdisk.sh -1 -O;fdisk -l;sleep 30;bash -x formatdisk.sh <strong id="cce_bestpractice_00190__cce_01_0344_b37531350142614">100</strong> <strong id="cce_bestpractice_00190__cce_01_0344_b197531450132610">/data/code</strong>;fdisk -l</pre>
-<p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_p44543285525">Example script (<strong id="cce_bestpractice_00190__cce_01_0344_b1719855415266">formatdisk.sh</strong>):</p>
-<pre class="screen" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_en-us_topic_0176300808_screen669716413522">dockerdisksize=$1
+<p id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_p1015225014282">Before using this feature, write a script that can format data disks and save it to your OBS bucket. This script must be executed by user <strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b12368487253">root</strong>.</p>
+<p id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_p14797151002918"><strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b8735151412269">Input Parameters</strong></p>
+<ol id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_ol2479194612293"><li id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_li1184816446266">Set the script name to <strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b11895918132610">formatdisk.sh</strong>, save the script to your OBS bucket, and obtain the address of the script in OBS.</li><li id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_li4843193873011">You need to specify the size of the Docker data disk (the data disk managed by LVM is called the Docker data disk). The size of the Docker disk must be different from that of the second disk. For example, the Docker data disk is 100 GB and the new disk is 110 GB.</li><li id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_li414717519311">Set the mount path of the second data disk, for example, <strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b161641838172615">/data/code</strong>.</li></ol>
+<p id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_p1055181511314">Run the following command in the pre-installation script to format the disk:</p>
+<pre class="screen" id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_screen758171514537">cd /tmp;curl -k -X GET <strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b1875314503263"><em id="cce_bestpractice_00190__en-us_topic_0000001142141260_i67471850122614">OBS bucket address</em></strong> /formatdisk.sh -1 -O;fdisk -l;sleep 30;bash -x formatdisk.sh <strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b37531350142614">100</strong> <strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b197531450132610">/data/code</strong>;fdisk -l</pre>
+<p id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_p44543285525">Example script (<strong id="cce_bestpractice_00190__en-us_topic_0000001142141260_b1719855415266">formatdisk.sh</strong>):</p>
+<pre class="screen" id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_en-us_topic_0176300808_screen669716413522">dockerdisksize=$1
 mountdir=$2
 systemdisksize=40
 i=0
@@ -77,7 +77,7 @@ w
         mount $mountdir
     fi
 done</pre>
-<div class="note" id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_note129708364117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00190__cce_01_0344_en-us_topic_0261817664_p1897163671118">If the preceding example cannot be executed, use the dos2unix tool to convert the format.</p>
+<div class="note" id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_note129708364117"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00190__en-us_topic_0000001142141260_en-us_topic_0261817664_p1897163671118">If the preceding example cannot be executed, use the dos2unix tool to convert the format.</p>
 </div></div>
 </div>
 <div>
diff --git a/docs/cce/umn/cce_bestpractice_00198.html b/docs/cce/umn/cce_bestpractice_00198.html
index b4384058..f4932c5f 100644
--- a/docs/cce/umn/cce_bestpractice_00198.html
+++ b/docs/cce/umn/cce_bestpractice_00198.html
@@ -1,7 +1,76 @@
 <a name="cce_bestpractice_00198"></a><a name="cce_bestpractice_00198"></a>
 
 <h1 class="topictitle1">Expanding Node Disk Capacity</h1>
-<div id="body8662426"><div class="section" id="cce_bestpractice_00198__en-us_topic_0196817407_section9671812194910"><h4 class="sectiontitle">System Disk</h4><ol id="cce_bestpractice_00198__en-us_topic_0196817407_ol336654010496"><li id="cce_bestpractice_00198__en-us_topic_0196817407_li11366940174919"><span>Expand the capacity of the system disk on the EVS console.</span></li><li id="cce_bestpractice_00198__en-us_topic_0196817407_li116943521116"><span>Restart the node on the ECS console.</span></li><li id="cce_bestpractice_00198__li849281818811"><span>Log in to the CCE console and click the cluster. In the navigation pane, choose <strong id="cce_bestpractice_00198__b1050033133713">Nodes</strong>. Click <strong id="cce_bestpractice_00198__b87062132381">More</strong> &gt; <strong id="cce_bestpractice_00198__b335101614382">Sync Server Data</strong> at the row containing the target node.</span></li></ol>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00198__en-us_topic_0196817407_section9671812194910"><h4 class="sectiontitle">System Disk</h4><p id="cce_bestpractice_00198__p123331632121216">EulerOS 2.9 is used as the sample OS. Originally, system disk <strong id="cce_bestpractice_00198__b09267469278">/dev/vda</strong> has 50 GB and one partition (<strong id="cce_bestpractice_00198__b16926134672715">/dev/vda1</strong>), and then 50 GB is added to the disk. In this example, the additional 50 GB is allocated to the existing <strong id="cce_bestpractice_00198__b1629914115299">/dev/vda1</strong> partition.</p>
+<ol id="cce_bestpractice_00198__en-us_topic_0196817407_ol336654010496"><li id="cce_bestpractice_00198__en-us_topic_0196817407_li11366940174919"><span>Expand the capacity of the system disk on the EVS console.</span></li><li id="cce_bestpractice_00198__en-us_topic_0196817407_li116943521116"><span>Log in to the node and run the <strong id="cce_bestpractice_00198__b1477102513304">growpart</strong> command to check whether growpart has been installed.</span><p><p id="cce_bestpractice_00198__p149881945121718">If the tool operation guide is displayed, the tool has been installed. Otherwise, run the following command to install it:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen15904115011181">yum install cloud-utils-growpart</pre>
+</p></li><li id="cce_bestpractice_00198__li12528258171818"><span>Run the following command to view the total capacity of the system disk <strong id="cce_bestpractice_00198__b1514594320319">/dev/vda</strong>:</span><p><pre class="screen" id="cce_bestpractice_00198__screen142914415194">fdisk -l</pre>
+<p id="cce_bestpractice_00198__p441672315475">The following information is displayed, indicating that the total capacity of system disk <strong id="cce_bestpractice_00198__b4381557153118">/dev/vda</strong> is 100 GiB:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen166071332203">[root@test-48162 ~]# fdisk -l
+<strong id="cce_bestpractice_00198__b14238983341">Disk /dev/vda: 100 GiB, 107374182400 bytes, 209715200 sectors</strong>
+Units: sectors of 1 * 512 = 512 bytes
+Sector size (logical/physical): 512 bytes / 512 bytes
+I/O size (minimum/optimal): 512 bytes / 512 bytes
+Disklabel type: dos
+Disk identifier: 0x78d88f0b
+
+Device     Boot Start       End   Sectors Size Id Type
+/dev/vda1  *     2048 104857566 104855519  50G 83 Linux
+
+Disk /dev/vdb: 100 GiB, 107374182400 bytes, 209715200 sectors
+Units: sectors of 1 * 512 = 512 bytes
+Sector size (logical/physical): 512 bytes / 512 bytes
+I/O size (minimum/optimal): 512 bytes / 512 bytes
+
+Disk /dev/mapper/vgpaas-dockersys: 90 GiB, 96632569856 bytes, 188735488 sectors
+Units: sectors of 1 * 512 = 512 bytes
+Sector size (logical/physical): 512 bytes / 512 bytes
+I/O size (minimum/optimal): 512 bytes / 512 bytes
+
+Disk /dev/mapper/vgpaas-kubernetes: 10 GiB, 10733223936 bytes, 20963328 sectors
+Units: sectors of 1 * 512 = 512 bytes
+Sector size (logical/physical): 512 bytes / 512 bytes
+I/O size (minimum/optimal): 512 bytes / 512 bytes</pre>
+</p></li><li id="cce_bestpractice_00198__li849281818811"><span>Run the following command to check the capacity of the system disk partition <strong id="cce_bestpractice_00198__b7596195123213">/dev/vda1</strong>:</span><p><pre class="screen" id="cce_bestpractice_00198__screen173851816103417">df -TH</pre>
+<p id="cce_bestpractice_00198__p3209194412317">The command output is as follows:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen635811382344">[root@test-48162 ~]# df -TH
+Filesystem                    Type      Size  Used Avail Use% Mounted on
+devtmpfs                      devtmpfs  1.8G     0  1.8G   0% /dev
+tmpfs                         tmpfs     1.8G     0  1.8G   0% /dev/shm
+tmpfs                         tmpfs     1.8G   13M  1.8G   1% /run
+tmpfs                         tmpfs     1.8G     0  1.8G   0% /sys/fs/cgroup
+<strong id="cce_bestpractice_00198__b2528182273519">/dev/vda1                     ext4      53G  3.3G   47G   7% /</strong>
+tmpfs                         tmpfs     1.8G   75M  1.8G   5% /tmp
+/dev/mapper/vgpaas-dockersys  ext4       95G  1.3G   89G   2% /var/lib/docker
+/dev/mapper/vgpaas-kubernetes ext4       11G   39M   10G   1% /mnt/paas/kubernetes/kubelet
+...</pre>
+</p></li><li id="cce_bestpractice_00198__li9334102043710"><span>Run the following command to extend the partition using growpart:</span><p><pre class="screen" id="cce_bestpractice_00198__screen136012011378"><strong id="cce_bestpractice_00198__b291316441337">growpart</strong> <em id="cce_bestpractice_00198__i18325351153218">System disk</em> <em id="cce_bestpractice_00198__i193251051113217">Partition number</em></pre>
+<p id="cce_bestpractice_00198__p23611620193714">Command example: (The system disk has only one partition <strong id="cce_bestpractice_00198__b6402152512339">/dev/vda1</strong>. Therefore, the partition number is <strong id="cce_bestpractice_00198__b173761128133312">1</strong>.)</p>
+<pre class="screen" id="cce_bestpractice_00198__screen336172010375">growpart /dev/vda 1</pre>
+<p id="cce_bestpractice_00198__p16361820153711">The command output is as follows:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen736112010375">CHANGED: partition=1 start=2048 old: size=104855519 end=104857567 new: size=209713119 end=209715167</pre>
+</p></li><li id="cce_bestpractice_00198__li1337615183713"><span>Run the following command to extend the file system:</span><p><pre class="screen" id="cce_bestpractice_00198__screen3635164715362"><strong id="cce_bestpractice_00198__b1224734018339">resize2fs</strong> <em id="cce_bestpractice_00198__i16248140133319">Disk partition</em></pre>
+<p id="cce_bestpractice_00198__p2036091517376">Example command:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen153601315173716">resize2fs /dev/vda1</pre>
+<p id="cce_bestpractice_00198__p163601515113710">The command output is as follows:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen771332753719">resize2fs 1.45.6 (20-Mar-2020)
+Filesystem at /dev/vda1 is mounted on /; on-line resizing required
+old_desc_blocks = 7, new_desc_blocks = 13
+The filesystem on /dev/vda1 is now 26214139 (4k) blocks long.</pre>
+</p></li><li id="cce_bestpractice_00198__li107161013817"><span>Run the following command to view the new capacity of the <strong id="cce_bestpractice_00198__b15378721153412">/dev/vda1</strong> partition:</span><p><pre class="screen" id="cce_bestpractice_00198__screen1782952418377">df -TH</pre>
+<p id="cce_bestpractice_00198__p58241093819">Information similar to the following is displayed:</p>
+<pre class="screen" id="cce_bestpractice_00198__screen192841217380">[root@test-48162 ~]# df -TH
+Filesystem                    Type      Size  Used Avail Use% Mounted on
+devtmpfs                      devtmpfs  1.8G     0  1.8G   0% /dev
+tmpfs                         tmpfs     1.8G     0  1.8G   0% /dev/shm
+tmpfs                         tmpfs     1.8G   13M  1.8G   1% /run
+tmpfs                         tmpfs     1.8G     0  1.8G   0% /sys/fs/cgroup
+<strong id="cce_bestpractice_00198__b08391433203813">/dev/vda1                     ext4     106G  3.3G   98G   4% /</strong>
+tmpfs                         tmpfs     1.8G   75M  1.8G   5% /tmp
+/dev/mapper/vgpaas-dockersys  ext4       95G  1.3G   89G   2% /var/lib/docker
+/dev/mapper/vgpaas-kubernetes ext4       11G   39M   10G   1% /mnt/paas/kubernetes/kubelet
+...</pre>
+</p></li><li id="cce_bestpractice_00198__li134261257132518"><span>Log in to the CCE console and click the cluster. In the navigation pane, choose <strong id="cce_bestpractice_00198__b78661034103413">Nodes</strong>. Click <strong id="cce_bestpractice_00198__b3866193411349">More</strong> &gt; <strong id="cce_bestpractice_00198__b10866534143415">Sync Server Data</strong> at the row containing the target node.</span></li></ol>
 </div>
 <div class="section" id="cce_bestpractice_00198__en-us_topic_0196817407_section155006183017"><h4 class="sectiontitle">Node Data Disk (Dedicated for Docker)</h4><ol id="cce_bestpractice_00198__en-us_topic_0196817407_ol99174381202"><li id="cce_bestpractice_00198__en-us_topic_0196817407_li1091823811013"><span>Expand the capacity of the data disk on the EVS console.</span></li><li id="cce_bestpractice_00198__li15327184914542"><span>Log in to the CCE console and click the cluster. In the navigation pane, choose <strong id="cce_bestpractice_00198__b176491516203817">Nodes</strong>. Click <strong id="cce_bestpractice_00198__b464971673810">More</strong> &gt; <strong id="cce_bestpractice_00198__b9649161615380">Sync Server Data</strong> at the row containing the target node.</span></li><li id="cce_bestpractice_00198__en-us_topic_0196817407_li209187382011"><span>Log in to the target node.</span></li><li id="cce_bestpractice_00198__li128005014232"><span>Run the <strong id="cce_bestpractice_00198__b6455184022316">lsblk</strong> command to check the block device information of the node.</span><p><p id="cce_bestpractice_00198__p980018092312">A data disk is divided depending on the container storage <strong id="cce_bestpractice_00198__b687813596016">Rootfs</strong>:</p>
 <ul id="cce_bestpractice_00198__ul89731919102417"><li id="cce_bestpractice_00198__li1536084418247">Overlayfs: No independent thin pool is allocated. Image data is stored in the <strong id="cce_bestpractice_00198__b14504233414">dockersys</strong> disk.<pre class="screen" id="cce_bestpractice_00198__screen736044442417"># lsblk
@@ -28,9 +97,12 @@ sdb                                   8:16   0  200G  0 disk
 │ └─vgpaas-thinpool                 253:3    0   67G  0 lvm  
 │   ...
 └─vgpaas-kubernetes                 253:4    0   10G  0 lvm  /mnt/paas/kubernetes/kubelet</pre>
-<p id="cce_bestpractice_00198__p19417131211313">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_00198__b299821246">thinpool</strong> disk:</p>
-<pre class="screen" id="cce_bestpractice_00198__screen1941742617282">pvresize /dev/sdb 
+<ul id="cce_bestpractice_00198__ul151541148142616"><li id="cce_bestpractice_00198__li8154948152611">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_00198__b299821246">thinpool</strong> disk:<pre class="screen" id="cce_bestpractice_00198__screen1941742617282">pvresize /dev/sdb 
 lvextend -l+100%FREE -n vgpaas/thinpool</pre>
+</li><li id="cce_bestpractice_00198__li715464810269">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_00198__b17977940173414">dockersys</strong> disk:<pre class="screen" id="cce_bestpractice_00198__screen3309227102613">pvresize /dev/sdb 
+lvextend -l+100%FREE -n vgpaas/dockersys
+resize2fs /dev/vgpaas/dockersys</pre>
+</li></ul>
 </li></ul>
 </p></li></ol>
 </div>
diff --git a/docs/cce/umn/cce_bestpractice_00199.html b/docs/cce/umn/cce_bestpractice_00199.html
index 2f6e241f..a26ddc3b 100644
--- a/docs/cce/umn/cce_bestpractice_00199.html
+++ b/docs/cce/umn/cce_bestpractice_00199.html
@@ -10,7 +10,7 @@
 </div>
 <div class="section" id="cce_bestpractice_00199__section193471249193310"><a name="cce_bestpractice_00199__section193471249193310"></a><a name="section193471249193310"></a><h4 class="sectiontitle">Authorizing the SaaS Service Provider to Access the OBS Buckets</h4><p id="cce_bestpractice_00199__p1875516136566">The following uses an OBS bucket as an example to describe how to set a bucket policy and bucket ACL to authorize the SaaS service provider. The configuration for an OBS parallel file system is the same.</p>
 <ol id="cce_bestpractice_00199__ol833253975212"><li id="cce_bestpractice_00199__li633253935210"><span>Log in to the OBS console. In the navigation pane, choose <strong id="cce_bestpractice_00199__b2435414183611">Buckets</strong>.</span></li><li id="cce_bestpractice_00199__li3463735310"><span>In the bucket list, click a bucket name to access the <strong id="cce_bestpractice_00199__b18829181715363">Overview</strong> page.</span></li></ol><ol start="3" id="cce_bestpractice_00199__ol99282343911"><li id="cce_bestpractice_00199__li554574744910"><span>In the navigation pane, choose <strong id="cce_bestpractice_00199__b7328142203915">Permissions</strong> &gt; <strong id="cce_bestpractice_00199__b143281221398">Bucket Policy</strong>. On the displayed page, click <strong id="cce_bestpractice_00199__b3415314205710">Create</strong> to create a bucket policy.</span><p><div class="p" id="cce_bestpractice_00199__p2054594734915">Set the parameters as shown in the following figure.<div class="fignone" id="cce_bestpractice_00199__fig1854564754912"><span class="figcap"><b>Figure 2 </b>Creating a bucket policy</span><br><span><img id="cce_bestpractice_00199__image954504724917" src="en-us_image_0000001325377749.png"></span></div>
-<ul id="cce_bestpractice_00199__ul11545124714494"><li id="cce_bestpractice_00199__li063716875214"><strong id="cce_bestpractice_00199__b11511194133413">Policy Mode</strong>: Select <strong id="cce_bestpractice_00199__b2095371013342">Customized</strong>.</li><li id="cce_bestpractice_00199__li10545647174914"><strong id="cce_bestpractice_00199__b168516157348">Effect</strong>: Select <strong id="cce_bestpractice_00199__b108611513341">Allow</strong>.</li><li id="cce_bestpractice_00199__li1454594715494"><strong id="cce_bestpractice_00199__b383668709">Principal</strong>: Select <strong id="cce_bestpractice_00199__b898804887">Other account</strong>, and enter the account ID and user ID. The bucket policy takes effect for the specified users.</li><li id="cce_bestpractice_00199__li16545164794920"><strong id="cce_bestpractice_00199__b10978526">Resources</strong>: Select the resources that can be operated.</li><li id="cce_bestpractice_00199__li8545144714495"><strong id="cce_bestpractice_00199__b172896563376">Actions</strong>: Select the actions that can be operated.</li></ul>
+<ul id="cce_bestpractice_00199__ul11545124714494"><li id="cce_bestpractice_00199__li063716875214"><strong id="cce_bestpractice_00199__b11511194133413">Policy Mode</strong>: Select <strong id="cce_bestpractice_00199__b2095371013342">Customized</strong>.</li><li id="cce_bestpractice_00199__li10545647174914"><strong id="cce_bestpractice_00199__b168516157348">Effect</strong>: Select <strong id="cce_bestpractice_00199__b108611513341">Allow</strong>.</li><li id="cce_bestpractice_00199__li1454594715494"><strong id="cce_bestpractice_00199__b18985466323">Principal</strong>: Select <strong id="cce_bestpractice_00199__b49994617323">Other account</strong>, and enter the account ID and user ID. The bucket policy takes effect for the specified users.</li><li id="cce_bestpractice_00199__li16545164794920"><strong id="cce_bestpractice_00199__b1993838720">Resources</strong>: Select the resources that can be operated.</li><li id="cce_bestpractice_00199__li8545144714495"><strong id="cce_bestpractice_00199__b172896563376">Actions</strong>: Select the actions that can be operated.</li></ul>
 </div>
 </p></li><li id="cce_bestpractice_00199__li13503613502"><span>In the navigation pane, choose <strong id="cce_bestpractice_00199__b9718153124710">Permissions</strong> &gt; <strong id="cce_bestpractice_00199__b147187324710">Bucket ACLs</strong>. In the right pane, click <strong id="cce_bestpractice_00199__b199195586487">Add</strong>.Enter the account ID or account name of the authorized user, select <strong id="cce_bestpractice_00199__b219915371573">Read</strong> and <strong id="cce_bestpractice_00199__b791217401576">Write</strong> for <strong id="cce_bestpractice_00199__b188374355718">Access to Bucket</strong>, select <strong id="cce_bestpractice_00199__b443404915716">Read</strong> and <strong id="cce_bestpractice_00199__b388575195717">Write</strong> for <strong id="cce_bestpractice_00199__b96971054175710">Access to ACL</strong>, and click <strong id="cce_bestpractice_00199__b135653588578">OK</strong>.</span></li></ol>
 </div>
@@ -32,12 +32,12 @@ spec:
     fsType: obsfs
     volumeAttributes:
       everest.io/obs-volume-type: STANDARD
-      everest.io/region:   <strong id="cce_bestpractice_00199__b1035933031610">eu-de</strong>     #Set it to the ID of the current region.
+      everest.io/region:    <strong id="cce_bestpractice_00199__b1035933031610">eu-de</strong>     #Set it to the ID of the current region.
       storage.kubernetes.io/csiProvisionerIdentity: everest-csi-provisioner
     volumeHandle: <strong id="cce_bestpractice_00199__b249514404235">objbucket</strong>             #Replace the name with the actual bucket name of the third-party tenant.
   persistentVolumeReclaimPolicy: <strong id="cce_bestpractice_00199__b341545032418">Retain</strong>    #This parameter must be set to <strong id="cce_bestpractice_00199__b146658142412">Retain</strong> to ensure that the bucket will not be deleted when a PV is deleted.
   storageClassName: <strong id="cce_bestpractice_00199__b10185165532510">csi-obs-mountoption</strong>    #You can associate a new custom OBS storage class or the built-in csi-obs of the cluster.</pre>
-<ul id="cce_bestpractice_00199__ul1595124103911"><li id="cce_bestpractice_00199__li171531846194420"><strong id="cce_bestpractice_00199__b118161262818">mountOptions</strong>: This field contains the new OBS mounting parameters that allow the bucket owner to have full access to the data in the bucket. This field solves the problem that the bucket owner cannot read the data written into a mounted third-party bucket. If the object storage of a third-party tenant is mounted, <strong id="cce_bestpractice_00199__b953194033313">default_acl</strong> must be set to <strong id="cce_bestpractice_00199__b15241245143417">bucket-owner-full-control</strong>. For details about other values of <strong id="cce_bestpractice_00199__b416174913345">default_acl</strong>, see <a href="https://docs.otc.t-systems.com/usermanual/obs/en-us_topic_0066088967.html" target="_blank" rel="noopener noreferrer">Bucket ACLs and Object ACLs</a>.</li><li id="cce_bestpractice_00199__li17913438433"><strong id="cce_bestpractice_00199__b102548414420">persistentVolumeReclaimPolicy</strong>: When the object storage of a third-party tenant is mounted, this field must be set to <strong id="cce_bestpractice_00199__b184185634410">Retain</strong>. In this way, the OBS bucket will not be deleted when a PV is deleted. The service platform of the SaaS service provider needs to manage the lifecycle of the third-party bucket PVs. When a PVC is deleted separately, the PV is not deleted. Instead, it will be retained. To do so, you need to call the native Kubernetes APIs to create and delete static PVs.</li><li id="cce_bestpractice_00199__li524945474217"><strong id="cce_bestpractice_00199__b259155884515">storageClassName</strong>: You can associate a new custom OBS storage class (<a href="#cce_bestpractice_00199__li1235812419467">click here</a>) or the built-in csi-obs of the cluster.</li></ul>
+<ul id="cce_bestpractice_00199__ul1595124103911"><li id="cce_bestpractice_00199__li171531846194420"><strong id="cce_bestpractice_00199__b118161262818">mountOptions</strong>: This field contains the new OBS mounting parameters that allow the bucket owner to have full access to the data in the bucket. This field solves the problem that the bucket owner cannot read the data written into a mounted third-party bucket. If the object storage of a third-party tenant is mounted, <strong id="cce_bestpractice_00199__b1249929191416">default_acl</strong> must be set to <strong id="cce_bestpractice_00199__b949929171412">bucket-owner-full-control</strong>. For details about other values of <strong id="cce_bestpractice_00199__b649929121419">default_acl</strong>, see <a href="https://docs.otc.t-systems.com/usermanual/obs/en-us_topic_0066088967.html" target="_blank" rel="noopener noreferrer">Bucket ACLs and Object ACLs</a>.</li><li id="cce_bestpractice_00199__li17913438433"><strong id="cce_bestpractice_00199__b102548414420">persistentVolumeReclaimPolicy</strong>: When the object storage of a third-party tenant is mounted, this field must be set to <strong id="cce_bestpractice_00199__b184185634410">Retain</strong>. In this way, the OBS bucket will not be deleted when a PV is deleted. The service platform of the SaaS service provider needs to manage the lifecycle of the third-party bucket PVs. When a PVC is deleted separately, the PV is not deleted. Instead, it will be retained. To do so, you need to call the native Kubernetes APIs to create and delete static PVs.</li><li id="cce_bestpractice_00199__li524945474217"><strong id="cce_bestpractice_00199__b259155884515">storageClassName</strong>: You can associate a new custom OBS storage class (<a href="#cce_bestpractice_00199__li1235812419467">click here</a>) or the built-in csi-obs of the cluster.</li></ul>
 <div class="p" id="cce_bestpractice_00199__p201991729111715"><strong id="cce_bestpractice_00199__b4729131224817">PVC of a bound OBS bucket:</strong><pre class="screen" id="cce_bestpractice_00199__screen25531018167">apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
@@ -79,7 +79,7 @@ spec:
     volumeHandle: <strong id="cce_bestpractice_00199__b9314144765316">obsfscheck</strong>               #Replace the name with the actual name of the parallel file system of the third-party tenant.
   persistentVolumeReclaimPolicy: <strong id="cce_bestpractice_00199__b217875914534">Retain</strong>        #This parameter must be set to <strong id="cce_bestpractice_00199__b41831859205318">Retain</strong> to ensure that the bucket will not be deleted when a PV is deleted.
   storageClassName: <strong id="cce_bestpractice_00199__b4661138541">csi-obs-mountoption</strong>       #You can associate a new custom OBS storage class or the built-in csi-obs of the cluster.</pre>
-<ul id="cce_bestpractice_00199__ul53721653124616"><li id="cce_bestpractice_00199__cce_bestpractice_00199_li171531846194420"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b118161262818">mountOptions</strong>: This field contains the new OBS mounting parameters that allow the bucket owner to have full access to the data in the bucket. This field solves the problem that the bucket owner cannot read the data written into a mounted third-party bucket. If the object storage of a third-party tenant is mounted, <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b953194033313">default_acl</strong> must be set to <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b15241245143417">bucket-owner-full-control</strong>. For details about other values of <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b416174913345">default_acl</strong>, see <a href="https://docs.otc.t-systems.com/usermanual/obs/en-us_topic_0066088967.html" target="_blank" rel="noopener noreferrer">Bucket ACLs and Object ACLs</a>.</li><li id="cce_bestpractice_00199__cce_bestpractice_00199_li17913438433"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b102548414420">persistentVolumeReclaimPolicy</strong>: When the object storage of a third-party tenant is mounted, this field must be set to <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b184185634410">Retain</strong>. In this way, the OBS bucket will not be deleted when a PV is deleted. The service platform of the SaaS service provider needs to manage the lifecycle of the third-party bucket PVs. When a PVC is deleted separately, the PV is not deleted. Instead, it will be retained. To do so, you need to call the native Kubernetes APIs to create and delete static PVs.</li><li id="cce_bestpractice_00199__cce_bestpractice_00199_li524945474217"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b259155884515">storageClassName</strong>: You can associate a new custom OBS storage class (<a href="cce_bestpractice_00199.html#cce_bestpractice_00199__li1235812419467">click here</a>) or the built-in csi-obs of the cluster.</li></ul>
+<ul id="cce_bestpractice_00199__ul53721653124616"><li id="cce_bestpractice_00199__cce_bestpractice_00199_li171531846194420"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b118161262818">mountOptions</strong>: This field contains the new OBS mounting parameters that allow the bucket owner to have full access to the data in the bucket. This field solves the problem that the bucket owner cannot read the data written into a mounted third-party bucket. If the object storage of a third-party tenant is mounted, <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b1249929191416">default_acl</strong> must be set to <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b949929171412">bucket-owner-full-control</strong>. For details about other values of <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b649929121419">default_acl</strong>, see <a href="https://docs.otc.t-systems.com/usermanual/obs/en-us_topic_0066088967.html" target="_blank" rel="noopener noreferrer">Bucket ACLs and Object ACLs</a>.</li><li id="cce_bestpractice_00199__cce_bestpractice_00199_li17913438433"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b102548414420">persistentVolumeReclaimPolicy</strong>: When the object storage of a third-party tenant is mounted, this field must be set to <strong id="cce_bestpractice_00199__cce_bestpractice_00199_b184185634410">Retain</strong>. In this way, the OBS bucket will not be deleted when a PV is deleted. The service platform of the SaaS service provider needs to manage the lifecycle of the third-party bucket PVs. When a PVC is deleted separately, the PV is not deleted. Instead, it will be retained. To do so, you need to call the native Kubernetes APIs to create and delete static PVs.</li><li id="cce_bestpractice_00199__cce_bestpractice_00199_li524945474217"><strong id="cce_bestpractice_00199__cce_bestpractice_00199_b259155884515">storageClassName</strong>: You can associate a new custom OBS storage class (<a href="cce_bestpractice_00199.html#cce_bestpractice_00199__li1235812419467">click here</a>) or the built-in csi-obs of the cluster.</li></ul>
 <div class="p" id="cce_bestpractice_00199__p126984225451">PVC of a bound OBS parallel file system:<pre class="screen" id="cce_bestpractice_00199__screen76981822194516">apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
diff --git a/docs/cce/umn/cce_bestpractice_00220.html b/docs/cce/umn/cce_bestpractice_00220.html
index 921efc41..cf89c178 100644
--- a/docs/cce/umn/cce_bestpractice_00220.html
+++ b/docs/cce/umn/cce_bestpractice_00220.html
@@ -5,12 +5,12 @@
 <ol id="cce_bestpractice_00220__en-us_topic_0226102193_ol1288495941210"><li id="cce_bestpractice_00220__en-us_topic_0226102193_li12884059121212">Deploy three master nodes for the cluster.</li><li id="cce_bestpractice_00220__en-us_topic_0226102193_li3884135917125">When nodes are deployed across AZs, set custom scheduling policies based on site requirements to maximize resource utilization.</li><li id="cce_bestpractice_00220__li07770269459">Create multiple node pools in different AZs and use them for node scaling.</li><li id="cce_bestpractice_00220__en-us_topic_0226102193_li178031817171620">Set the number of pods to be greater than 2 when creating a workload.</li><li id="cce_bestpractice_00220__en-us_topic_0226102193_li158841559121215">Set pod affinity rules to distribute pods to different AZs and nodes.</li></ol>
 </div>
 <div class="section" id="cce_bestpractice_00220__en-us_topic_0226102193_en-us_topic_0161035939_section1184815509400"><h4 class="sectiontitle">Procedure</h4><p id="cce_bestpractice_00220__en-us_topic_0226102193_p1865915314124">Assume that there are four nodes in a cluster distributed in the following AZs:</p>
-<pre class="screen" id="cce_bestpractice_00220__screen206101248562">$ kubectl get node -L topology.kubernetes.io/zone,kubernetes.io/hostname
-NAME            STATUS   ROLES    AGE   VERSION                      ZONE       HOSTNAME
-192.168.5.112   Ready    &lt;none&gt;   42m   v1.21.7-r0-CCE21.11.1.B007   eu-de-01   192.168.5.112
-192.168.5.179   Ready    &lt;none&gt;   42m   v1.21.7-r0-CCE21.11.1.B007   eu-de-01   192.168.5.179
-192.168.5.252   Ready    &lt;none&gt;   37m   v1.21.7-r0-CCE21.11.1.B007   eu-de-02   192.168.5.252
-192.168.5.8     Ready    &lt;none&gt;   33h   v1.21.7-r0-CCE21.11.1.B007   eu-de-03   192.168.5.8</pre>
+<pre class="screen" id="cce_bestpractice_00220__screen11470194417389">$ kubectl get node -L topology.kubernetes.io/zone,kubernetes.io/hostname
+NAME            STATUS   ROLES    AGE   VERSION                      ZONE     HOSTNAME
+192.168.5.112   Ready    &lt;none&gt;   42m   v1.21.7-r0-CCE21.11.1.B007   zone01   192.168.5.112
+192.168.5.179   Ready    &lt;none&gt;   42m   v1.21.7-r0-CCE21.11.1.B007   zone01   192.168.5.179
+192.168.5.252   Ready    &lt;none&gt;   37m   v1.21.7-r0-CCE21.11.1.B007   zone02   192.168.5.252
+192.168.5.8     Ready    &lt;none&gt;   33h   v1.21.7-r0-CCE21.11.1.B007   zone03   192.168.5.8</pre>
 <p id="cce_bestpractice_00220__p886104233818">Create workloads according to the following two podAntiAffinity rules:</p>
 <ul id="cce_bestpractice_00220__ul1752111682611"><li id="cce_bestpractice_00220__li75291617269">The first one is the pod anti-affinity in an AZ. Set the parameters as follows:<ul id="cce_bestpractice_00220__ul31352148254"><li id="cce_bestpractice_00220__li01351814132518"><strong id="cce_bestpractice_00220__b13495615122314">weight</strong>: A larger weight value indicates a higher priority. In this example, set it to <strong id="cce_bestpractice_00220__b3741917112815">50</strong>.</li><li id="cce_bestpractice_00220__li2042781913286"><strong id="cce_bestpractice_00220__b14967113632312">topologyKey</strong>: a default or custom key for the node label that the system uses to denote a topology domain. A topology key determines the scope where the pod should be scheduled to. In this example, set this parameter to <strong id="cce_bestpractice_00220__b13632852202618">topology.kubernetes.io/zone</strong>, which is the label for identifying the AZ where the node is located.</li><li id="cce_bestpractice_00220__li2013561417256"><strong id="cce_bestpractice_00220__b642431013275">labelSelector</strong>: Select the label of the workload to realize the anti-affinity between this container and the workload.</li></ul>
 </li><li id="cce_bestpractice_00220__li639824118295">The second one is the pod anti-affinity in the node host name. Set the parameters as follows:<ul id="cce_bestpractice_00220__ul1511765542911"><li id="cce_bestpractice_00220__li11738115542910"><strong id="cce_bestpractice_00220__b17461363287">weight</strong>: Set it to <strong id="cce_bestpractice_00220__b4153202512280">50</strong>.</li><li id="cce_bestpractice_00220__li1055413454318"><strong id="cce_bestpractice_00220__b428919513281">topologyKey</strong>: Set it to <strong id="cce_bestpractice_00220__b12890125122912">kubernetes.io/hostname</strong>.</li><li id="cce_bestpractice_00220__li142325363212"><strong id="cce_bestpractice_00220__b1837122732712">labelSelector</strong>: Select the label of the pod, which is anti-affinity with the pod.</li></ul>
diff --git a/docs/cce/umn/cce_bestpractice_00221.html b/docs/cce/umn/cce_bestpractice_00221.html
new file mode 100644
index 00000000..de168969
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00221.html
@@ -0,0 +1,105 @@
+<a name="cce_bestpractice_00221"></a><a name="cce_bestpractice_00221"></a>
+
+<h1 class="topictitle1">Configuring kubeconfig for Fine-Grained Management on Cluster Resources</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00221__en-us_topic_0235296162_section185876017314"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_00221__en-us_topic_0235296162_p1129761834">By default, the kubeconfig file provided by CCE for users has permissions bound to the <strong id="cce_bestpractice_00221__en-us_topic_0235296162_b1076319143710">cluster-admin</strong> role, which are equivalent to the permissions of user <strong id="cce_bestpractice_00221__en-us_topic_0235296162_b1417272019388">root</strong>. It is difficult to implement refined management on users with such permissions.</p>
+</div>
+<div class="section" id="cce_bestpractice_00221__en-us_topic_0235296162_section483710529313"><h4 class="sectiontitle">Purpose</h4><p id="cce_bestpractice_00221__en-us_topic_0235296162_p6254145715317">Cluster resources are managed in a refined manner so that specific users have only certain permissions (such as adding, querying, and modifying resources).</p>
+</div>
+<div class="section" id="cce_bestpractice_00221__section15818155714583"><h4 class="sectiontitle">Note</h4><p id="cce_bestpractice_00221__p11442468477">Ensure that kubectl is available on your host. If not, download it from <a href="https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/README.md" target="_blank" rel="noopener noreferrer">here</a> (corresponding to the cluster version or the latest version).</p>
+</div>
+<div class="section" id="cce_bestpractice_00221__en-us_topic_0235296162_section0534114511224"><h4 class="sectiontitle">Configuration Method</h4><div class="note" id="cce_bestpractice_00221__note1477115617137"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00221__p377119651316">In the following example, only pods and Deployments in the <strong id="cce_bestpractice_00221__b7947326248">test</strong> space can be viewed and added, and they cannot be deleted.</p>
+</div></div>
+<ol id="cce_bestpractice_00221__en-us_topic_0235296162_ol2045310117246"><li id="cce_bestpractice_00221__en-us_topic_0235296162_li1145313111245"><span>Set the service account name to <strong id="cce_bestpractice_00221__b10998615853">my-sa</strong> and namespace to <strong id="cce_bestpractice_00221__b172610191512">test</strong>.</span><p><pre class="screen" id="cce_bestpractice_00221__screen3385123214588">kubectl create sa<strong id="cce_bestpractice_00221__b738763215581"> my-sa</strong> -n <strong id="cce_bestpractice_00221__b438733245813">test</strong></pre>
+<p id="cce_bestpractice_00221__p58791833142216"><span><img id="cce_bestpractice_00221__image11792172214323" src="en-us_image_0271457115.png"></span></p>
+</p></li><li id="cce_bestpractice_00221__en-us_topic_0235296162_li1113514136241"><span>Configure the role table and assign operation permissions to different resources.</span><p><pre class="screen" id="cce_bestpractice_00221__screen77219314593">vi<strong id="cce_bestpractice_00221__b19722232592"> </strong><strong id="cce_bestpractice_00221__b6722131599">role-test.yaml</strong></pre>
+<div class="p" id="cce_bestpractice_00221__p186825218585">The content is as follows:<pre class="screen" id="cce_bestpractice_00221__screen350115832310">apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    rbac.authorization.kubernetes.io/autoupdate: "true"
+  labels:
+    kubernetes.io/bootstrapping: rbac-defaults
+  name: myrole
+  namespace: <strong id="cce_bestpractice_00221__b2534014610">test</strong>
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - apps
+  resources:
+  - pods
+  - deployments
+  verbs:
+  - get
+  - list
+  - watch
+  - create</pre>
+</div>
+<p id="cce_bestpractice_00221__p3294161035914">Create a Role.</p>
+<pre class="screen" id="cce_bestpractice_00221__screen137421928195913">kubectl create -f <strong id="cce_bestpractice_00221__b574412825916">role-test.yaml</strong></pre>
+<p id="cce_bestpractice_00221__p1650188202314"><span><img id="cce_bestpractice_00221__image12591847170" src="en-us_image_0271467350.png"></span></p>
+</p></li><li id="cce_bestpractice_00221__en-us_topic_0235296162_li101557118243"><span>Create a RoleBinding and bind the service account to the role so that the user can obtain the corresponding permissions.</span><p><pre class="screen" id="cce_bestpractice_00221__screen2012334716596">vi <strong id="cce_bestpractice_00221__b17124847125915">myrolebinding.yaml</strong></pre>
+<div class="p" id="cce_bestpractice_00221__p1435133885916">The content is as follows:<pre class="screen" id="cce_bestpractice_00221__screen13412026131810">apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: myrolebinding
+  namespace: <strong id="cce_bestpractice_00221__b2383124517505">test</strong>
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: myrole
+subjects:
+- kind: ServiceAccount
+  name: <strong id="cce_bestpractice_00221__b26141715816">my-sa</strong>
+  namespace: <strong id="cce_bestpractice_00221__b444934205019">test</strong></pre>
+</div>
+<p id="cce_bestpractice_00221__p177586527592">Create a RoleBinding.</p>
+<pre class="screen" id="cce_bestpractice_00221__screen10175129603">kubectl create -f <strong id="cce_bestpractice_00221__b1917612913013">myrolebinding.yaml</strong></pre>
+<p id="cce_bestpractice_00221__p18412226191812"><span><img id="cce_bestpractice_00221__image1464615881920" src="en-us_image_0271467469.png"></span></p>
+<p id="cce_bestpractice_00221__p34122026131812">The user information is configured. Now perform <a href="#cce_bestpractice_00221__en-us_topic_0235296162_li756812692518">4</a> to <a href="#cce_bestpractice_00221__en-us_topic_0235296162_li147965421277">6</a> to write the user information to the configuration file.</p>
+</p></li><li id="cce_bestpractice_00221__en-us_topic_0235296162_li756812692518"><a name="cce_bestpractice_00221__en-us_topic_0235296162_li756812692518"></a><a name="en-us_topic_0235296162_li756812692518"></a><span>Configure the cluster information.</span><p><ol type="a" id="cce_bestpractice_00221__ol31833391499"><li id="cce_bestpractice_00221__li91831239154917">Use the sa name <strong id="cce_bestpractice_00221__b131555561090">my-sa</strong> to obtain the secret corresponding to the sa. In the following example, <strong id="cce_bestpractice_00221__b6746202271016">my-sa-token-z4967</strong> in the first column is the secret name.</li></ol>
+<pre class="screen" id="cce_bestpractice_00221__screen88183121906">kubectl get secret -n <strong id="cce_bestpractice_00221__b118191120012">test</strong> |grep <strong id="cce_bestpractice_00221__b6819312505">my-sa</strong></pre>
+<p id="cce_bestpractice_00221__p47542620542"><span><img id="cce_bestpractice_00221__image196021926165413" src="en-us_image_0271463079.png"></span></p>
+<ol type="a" start="2" id="cce_bestpractice_00221__ol1974954334911"><li id="cce_bestpractice_00221__li37498433499">Decrypt the <strong id="cce_bestpractice_00221__b26491452191017">ca.crt</strong> file in the secret and export it.</li></ol>
+<pre class="screen" id="cce_bestpractice_00221__screen84648161702">kubectl get secret<em id="cce_bestpractice_00221__i174652016206"> </em><strong id="cce_bestpractice_00221__b94651816605">my-sa-token-5gpl4</strong> -n <strong id="cce_bestpractice_00221__b10465131611019">test</strong> -oyaml |grep ca.crt: | awk '{print $2}' |base64 -d &gt; /home/ca.crt</pre>
+<ol type="a" start="3" id="cce_bestpractice_00221__ol34941555134914"><li id="cce_bestpractice_00221__li15494115519498">Set the cluster access mode. <strong id="cce_bestpractice_00221__b1127211116119">test-arm</strong> indicates the cluster to be accessed, <strong id="cce_bestpractice_00221__b015118191114">10.0.1.100</strong> indicates the IP address of the API server in the cluster and <strong id="cce_bestpractice_00221__b185964814139">/home/test.config</strong> indicates the path for storing the configuration file.<ul id="cce_bestpractice_00221__ul539175734216"><li id="cce_bestpractice_00221__li2391157154212">If the internal API server address is used, run the following command:<pre class="screen" id="cce_bestpractice_00221__screen457817264011">kubectl config set-cluster <strong id="cce_bestpractice_00221__b1757918261906">test-arm</strong><strong id="cce_bestpractice_00221__b155791626208"> </strong>--server=https://<strong id="cce_bestpractice_00221__b18579102615018">10.0.1.100</strong>:5443  --certificate-authority=/home/ca.crt  --embed-certs=true --kubeconfig=<strong id="cce_bestpractice_00221__b55798261109">/home/test.config</strong></pre>
+</li><li id="cce_bestpractice_00221__li43935734215">If the public API server address is used, run the following command:<pre class="screen" id="cce_bestpractice_00221__screen18919308011">kubectl config set-cluster <strong id="cce_bestpractice_00221__b121014301401">test-arm</strong> --server=https://<strong id="cce_bestpractice_00221__b2010173019017">10.0.1.100</strong>:5443 --kubeconfig=<strong id="cce_bestpractice_00221__b1010163016011">/home/test.config</strong> --insecure-skip-tls-verify=true</pre>
+</li></ul>
+<p id="cce_bestpractice_00221__p192194944412"><span><img id="cce_bestpractice_00221__image5359624124416" src="en-us_image_0271466158.png"></span></p>
+</li></ol>
+<div class="note" id="cce_bestpractice_00221__note146571654173913"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00221__p9657554173917">If you <strong id="cce_bestpractice_00221__b6256121121412">perform operations on a node in the cluster</strong> or <strong id="cce_bestpractice_00221__b1973925721412">the node that uses the configuration is a cluster node</strong>, do not set the path of kubeconfig to <strong id="cce_bestpractice_00221__b192521822101614">/root/.kube/config</strong>.</p>
+</div></div>
+<p id="cce_bestpractice_00221__p95821828546">The cluster API server address is an intranet API server address. After an EIP is bound to the cluster, the cluster API server address can also be a public API server address.</p>
+</p></li><li id="cce_bestpractice_00221__en-us_topic_0235296162_li1295817892413"><span>Configure the cluster authentication information.</span><p><ol type="a" id="cce_bestpractice_00221__ol34521145553"><li id="cce_bestpractice_00221__li2045241410553">Obtain the cluster token. (If the token is obtained in GET mode, you need to run <strong id="cce_bestpractice_00221__b12410114433714">based64 -d</strong> to decode the token.)</li></ol>
+<pre class="screen" id="cce_bestpractice_00221__screen112297351101">token=$(kubectl describe secret <strong id="cce_bestpractice_00221__b52302351012">my-sa-token-5gpl4</strong> -n <strong id="cce_bestpractice_00221__b823012352002">test</strong> | awk '/token:/{print $2}')</pre>
+<ol type="a" start="2" id="cce_bestpractice_00221__ol181156405614"><li id="cce_bestpractice_00221__li151151416567">Set the cluster user <strong id="cce_bestpractice_00221__b126543396263">ui-admin</strong>.</li></ol>
+<pre class="screen" id="cce_bestpractice_00221__screen875133819019">kubectl config set-credentials <strong id="cce_bestpractice_00221__b187615383012">ui-admin</strong> --token=$token --kubeconfig=<strong id="cce_bestpractice_00221__b47613387015">/home/test.config</strong></pre>
+<p id="cce_bestpractice_00221__p8115181534911"><span><img id="cce_bestpractice_00221__image177931727185917" src="en-us_image_0271466198.png"></span></p>
+</p></li><li id="cce_bestpractice_00221__en-us_topic_0235296162_li147965421277"><a name="cce_bestpractice_00221__en-us_topic_0235296162_li147965421277"></a><a name="en-us_topic_0235296162_li147965421277"></a><span>Configure the context information for cluster authentication. <strong id="cce_bestpractice_00221__b7744291275">ui-admin@test</strong> is the context name.</span><p><pre class="screen" id="cce_bestpractice_00221__screen10880943107">kubectl config set-context <strong id="cce_bestpractice_00221__b148828439011">ui-admin@test</strong> --cluster=<strong id="cce_bestpractice_00221__b10882154317012">test-arm </strong>--user=<strong id="cce_bestpractice_00221__b1688216431004">ui-admin </strong>--kubeconfig=<strong id="cce_bestpractice_00221__b1488264315016">/home/test.config</strong></pre>
+<p id="cce_bestpractice_00221__p830220399581"><span><img id="cce_bestpractice_00221__image18484456125914" src="en-us_image_0271466336.png"></span></p>
+</p></li><li id="cce_bestpractice_00221__en-us_topic_0235296162_li1088912408273"><a name="cce_bestpractice_00221__en-us_topic_0235296162_li1088912408273"></a><a name="en-us_topic_0235296162_li1088912408273"></a><span>Set the context. For details about how to use the context, see <a href="#cce_bestpractice_00221__en-us_topic_0235296162_section14884146153319">Permissions Verification</a>.</span><p><pre class="screen" id="cce_bestpractice_00221__screen7591114617014">kubectl config use-context <strong id="cce_bestpractice_00221__b1359311468020">ui-admin@test</strong> --kubeconfig=<strong id="cce_bestpractice_00221__b559315464018">/home/test.config</strong></pre>
+<p id="cce_bestpractice_00221__p104992811208"><span><img id="cce_bestpractice_00221__image55073531019" src="en-us_image_0271466320.png"></span></p>
+<div class="note" id="cce_bestpractice_00221__note169312501578"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00221__p1369345012720">If you want to assign other users the above permissions to perform operations on the cluster, provide the generated configuration file <strong id="cce_bestpractice_00221__b1113921543120">/home/test.config</strong> to the user after performing step <a href="#cce_bestpractice_00221__en-us_topic_0235296162_li147965421277">6</a>. The user must ensure that the host can access the API server address of the cluster. When performing step <a href="#cce_bestpractice_00221__en-us_topic_0235296162_li1088912408273">7</a> on the host and using kubectl, the user must set the kubeconfig parameter to the path of the configuration file.</p>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00221__en-us_topic_0235296162_section14884146153319"><a name="cce_bestpractice_00221__en-us_topic_0235296162_section14884146153319"></a><a name="en-us_topic_0235296162_section14884146153319"></a><h4 class="sectiontitle">Permissions Verification</h4><ol id="cce_bestpractice_00221__en-us_topic_0235296162_ol69545202346"><li id="cce_bestpractice_00221__en-us_topic_0235296162_li295482023415">Pods in the <strong id="cce_bestpractice_00221__b19621154553312">test</strong> namespace cannot access pods in other namespaces.<pre class="screen" id="cce_bestpractice_00221__screen107671651801">kubectl get pod -n <strong id="cce_bestpractice_00221__b18768175111014">test</strong> --kubeconfig=<strong id="cce_bestpractice_00221__b1276812511006">/home/test.config</strong></pre>
+<p id="cce_bestpractice_00221__p91060454413"><span><img id="cce_bestpractice_00221__image71062451941" src="en-us_image_0271466402.png"></span></p>
+</li><li id="cce_bestpractice_00221__en-us_topic_0235296162_li6151024103414">Pods in the <strong id="cce_bestpractice_00221__b15620212365">test</strong> namespace cannot be deleted.<p id="cce_bestpractice_00221__p220105212163"><span><img id="cce_bestpractice_00221__image106531832140" src="en-us_image_0271466430.png"></span></p>
+</li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00221__en-us_topic_0235296162_section12824811142211"><h4 class="sectiontitle">Further Readings</h4><p id="cce_bestpractice_00221__en-us_topic_0235296162_p1596122315225">For more information about users and identity authentication in Kubernetes, see <a href="https://kubernetes.io/docs/reference/access-authn-authz/authentication/" target="_blank" rel="noopener noreferrer">Authenticating</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0055.html">Permission</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00227.html b/docs/cce/umn/cce_bestpractice_00227.html
index 040ae3fc..2936b8da 100644
--- a/docs/cce/umn/cce_bestpractice_00227.html
+++ b/docs/cce/umn/cce_bestpractice_00227.html
@@ -45,7 +45,7 @@ spec:
       - name: default-secret</pre>
 </li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li16654143132615">Create a DaemonSet.<p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p19378714202719"><a name="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li16654143132615"></a><a name="en-us_topic_0226102201_en-us_topic_0179003019_li16654143132615"></a><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b449172122717">kubectl create –f daemonSet.yaml</strong></p>
 </li></ol>
-</p></li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li1989115691812"><span>Check whether the DaemonSet is successfully created.</span><p><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p330213205299"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b3510114519214">kubectl get daemonset </strong> <em id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_i15896105518214">DaemonSet name</em></p>
+</p></li><li id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_li1989115691812"><span>Check whether the DaemonSet is successfully created.</span><p><p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p330213205299"><strong id="cce_bestpractice_00227__b63374531347">kubectl get daemonset </strong> <em id="cce_bestpractice_00227__i333775323415">DaemonSet name</em></p>
 <p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p8260371304">In this example, run the following command:</p>
 <p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p262474111301"><strong id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_b77659461301">kubectl get daemonset</strong> daemonset-test</p>
 <p id="cce_bestpractice_00227__en-us_topic_0226102201_en-us_topic_0179003019_p144280503115">Information similar to the following is displayed:</p>
diff --git a/docs/cce/umn/cce_bestpractice_00231.html b/docs/cce/umn/cce_bestpractice_00231.html
index 2eb46737..5a8c13af 100644
--- a/docs/cce/umn/cce_bestpractice_00231.html
+++ b/docs/cce/umn/cce_bestpractice_00231.html
@@ -5,10 +5,12 @@
 <p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p158441053124019">Session persistence is also called sticky sessions. After the sticky session function is enabled, requests from the same client are distributed to the same backend ECS by the load balancer for better continuity.</p>
 <p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p19844125312402">In load balancing and sticky session, connection and session are two key concepts. When only load balancing is concerned, session and connection refer to the same thing.</p>
 <p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p8844253104015">Simply put, if a user needs to log in, it can be regarded as a session; otherwise, a connection.</p>
-<p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p68441453144013">The sticky session mechanism fundamentally conflicts with the basic functions of load balancing. A load balancer forwards requests from clients to multiple backend servers to avoid overload on a single server. However, sticky session requires that some requests be forwarded to the same server for processing. Therefore, you need to select a proper sticky session mechanism based on the application environment.</p>
+<p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p68441453144013">The sticky session mechanism fundamentally conflicts with the basic functions of load balancing. A load balancer forwards requests from clients to multiple backend servers to avoid overload on a single server. However, sticky session requires that some requests be forwarded to the same server for processing. Therefore, select a proper sticky session mechanism based on the application environment.</p>
 </div>
 <div class="section" id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_section94681829101"><h4 class="sectiontitle">Layer-4 Load Balancing (Service)</h4><p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p17432131472">In layer-4 load balancing, source IP address-based sticky session (Hash routing based on the client IP address) can be enabled. To enable source IP address-based sticky session on Services, the following conditions must be met:</p>
-<ol id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_ol146719359478"><li id="cce_bestpractice_00231__li968014117386"><strong id="cce_bestpractice_00231__b975782132613">Service Affinity</strong> of the Service is set to <strong id="cce_bestpractice_00231__b63151810293">Node level</strong> (that is, the value of the <strong id="cce_bestpractice_00231__b1242923262916">externalTrafficPolicy</strong> field of the Service is <strong id="cce_bestpractice_00231__b4402184812915">Local</strong>).</li><li id="cce_bestpractice_00231__li45711478339">Enable the source IP address-based sticky session in the load balancing configuration of the Service.<pre class="screen" id="cce_bestpractice_00231__screen14193018147">apiVersion: v1
+<div class="p" id="cce_bestpractice_00231__p55615491241"><strong id="cce_bestpractice_00231__b99261421185614">CCE cluster</strong><ol id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_ol146719359478"><li id="cce_bestpractice_00231__li968014117386"><strong id="cce_bestpractice_00231__b975782132613">Service Affinity</strong> of the Service is set to <strong id="cce_bestpractice_00231__b63151810293">Node level</strong> (that is, the value of the <strong id="cce_bestpractice_00231__b1242923262916">externalTrafficPolicy</strong> field of the Service is <strong id="cce_bestpractice_00231__b4402184812915">Local</strong>).<div class="note" id="cce_bestpractice_00231__note3751143112716"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00231__p10761743202720">You do not need to set this parameter for CCE Turbo clusters.</p>
+</div></div>
+</li><li id="cce_bestpractice_00231__li45711478339">Enable the source IP address-based sticky session in the load balancing configuration of the Service.<pre class="screen" id="cce_bestpractice_00231__screen14193018147">apiVersion: v1
 kind: Service
 metadata:
   name: svc-example
@@ -21,7 +23,7 @@ metadata:
 spec:
   selector: 
     app: nginx
-  externalTrafficPolicy: Local
+  externalTrafficPolicy: Local   # You do not need to set this parameter for CCE Turbo clusters.
   ports:
     - name: cce-service-0
       targetPort: 80
@@ -31,6 +33,7 @@ spec:
   type: LoadBalancer</pre>
 </li><li id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li13671735144717">Anti-affinity is enabled for the backend application corresponding to the Service.</li></ol>
 </div>
+</div>
 <div class="section" id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_section7684169135614"><h4 class="sectiontitle">Layer-7 Load Balancing (Ingress)</h4><p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p819192517506">In layer-7 load balancing, sticky session based on HTTP cookies and app cookies can be enabled. To enable such sticky session, the following conditions must be met:</p>
 <ol id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_ol13704202116515"><li id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li127041821165117">The application (workload) corresponding to the ingress is enabled with workload anti-affinity.</li><li id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_li1370462195119">Node affinity is enabled for the Service corresponding to the ingress.</li></ol>
 <p id="cce_bestpractice_00231__en-us_topic_0226102205_en-us_topic_0179003349_p514014531516"><strong id="cce_bestpractice_00231__en-us_topic_0226102205_b126341389412">Procedure</strong></p>
@@ -104,7 +107,7 @@ metadata:
     kubernetes.io/elb.session-affinity-mode: APP_COOKIE     # Select <strong id="cce_bestpractice_00231__b91151110132816">APP_COOKIE</strong>.
     kubernetes.io/elb.session-affinity-option: '{"app_cookie_name":"test"}'  # Application cookie name.
 ...</pre>
-</p></li><li id="cce_bestpractice_00231__li1499116492297"><span>Create an ingress and associate it with a Service. The following example describes how to automatically create a shared load balancer. For details about how to specify other types of load balancers, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0252.html" target="_blank" rel="noopener noreferrer">Using kubectl to Create an ELB Ingress</a>.</span><p><pre class="screen" id="cce_bestpractice_00231__screen1790322712361">apiVersion: networking.k8s.io/v1
+</p></li><li id="cce_bestpractice_00231__li1499116492297"><span>Create an ingress and associate it with a Service. The following example describes how to automatically create a shared load balancer. For details about how to specify other types of load balancers, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0252.html" target="_blank" rel="noopener noreferrer">Using kubectl to Create an ELB Ingress</a>.</span><p><pre class="screen" id="cce_bestpractice_00231__screen1790322712361">apiVersion: networking.k8s.io/v1
 kind: Ingress 
 metadata: 
   name: ingress-test
diff --git a/docs/cce/umn/cce_bestpractice_00253.html b/docs/cce/umn/cce_bestpractice_00253.html
new file mode 100644
index 00000000..711f2d04
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00253.html
@@ -0,0 +1,171 @@
+<a name="cce_bestpractice_00253"></a><a name="cce_bestpractice_00253"></a>
+
+<h1 class="topictitle1">Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System</h1>
+<div id="body8662426"><div class="section" id="cce_bestpractice_00253__section1253143915414"><h4 class="sectiontitle">Background</h4><p id="cce_bestpractice_00253__p20577205044110">The minimum capacity of an SFS Turbo file system is 500 GB, and the SFS Turbo file system cannot be billed by usage. By default, the root directory of an SFS Turbo file system is mounted to a container which, in most case, does not require such a large capacity.</p>
+<p id="cce_bestpractice_00253__p1595551225512">The everest add-on allows you to dynamically create subdirectories in an SFS Turbo file system and mount these subdirectories to containers. In this way, an SFS Turbo file system can be shared by multiple containers to increase storage efficiency.</p>
+</div>
+<div class="section" id="cce_bestpractice_00253__section17695156154019"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_bestpractice_00253__ul17455186154219"><li id="cce_bestpractice_00253__li54551562423">Only clusters of v1.15 and later are supported.</li><li id="cce_bestpractice_00253__li045646184211">The cluster must use the everest add-on of version 1.1.13 or later.</li><li id="cce_bestpractice_00253__li54566618425">Kata containers are not supported.</li><li id="cce_bestpractice_00253__li11620175819575">When the everest add-on earlier than 1.2.69 or 2.1.11 is used, a maximum of 10 PVCs can be created concurrently at a time by using the subdirectory function. Everest 1.2.69 or later or 2.1.11 or later is recommended.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00253__en-us_topic_0278443086_section2794612"><h4 class="sectiontitle">Creating an SFS Turbo Volume of the subpath Type</h4><div class="caution" id="cce_bestpractice_00253__en-us_topic_0278443086_note2373120455"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_00253__en-us_topic_0278443086_p33745274517">Do not expand, disassociate, or delete subPath volumes.</p>
+</div></div>
+<ol id="cce_bestpractice_00253__en-us_topic_0278443086_ol12819762"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li48268995"><span>Import an SFS Turbo file system that is located in the same VPC and subnet as the cluster.</span></li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li31767774"><span>Create a StorageClass YAML file, for example, <strong id="cce_bestpractice_00253__b533819231317">sfsturbo-sc-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253__en-us_topic_0278443086_p12658339115317">Configuration example:</p>
+<pre class="screen" id="cce_bestpractice_00253__en-us_topic_0278443086_screen386441711546">apiVersion: storage.k8s.io/v1
+allowVolumeExpansion: true
+kind: StorageClass
+metadata:
+  name: sfsturbo-sc-test
+mountOptions:
+- lock
+parameters:
+  csi.storage.k8s.io/csi-driver-name: sfsturbo.csi.everest.io
+  csi.storage.k8s.io/fstype: nfs
+  everest.io/archive-on-delete: "true"
+  everest.io/share-access-to: 7ca2dba2-1234-1234-1234-626371a8fb3a
+  everest.io/share-expand-type: bandwidth
+  everest.io/share-export-location: 192.168.1.1:/sfsturbo/
+  everest.io/share-source: sfs-turbo
+  everest.io/share-volume-type: STANDARD
+  everest.io/volume-as: subpath
+  everest.io/volume-id: 0d773f2e-1234-1234-1234-de6a35074696
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+<p class="msonormal" id="cce_bestpractice_00253__en-us_topic_0278443086_p35962059">In this example:</p>
+<ul id="cce_bestpractice_00253__en-us_topic_0278443086_ul795395815547"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li27245651"><strong id="cce_bestpractice_00253__b59516297213">name</strong>: name of the StorageClass.</li><li id="cce_bestpractice_00253__li827114118142"><strong id="cce_bestpractice_00253__b1842222223318">mountOptions</strong>: mount options. This field is optional.<ul id="cce_bestpractice_00253__ul2080191311145"><li id="cce_bestpractice_00253__li118941043511">In versions later than everest 1.1.13 and earlier than everest 1.2.8, only the <strong id="cce_bestpractice_00253__b1530712183345">nolock</strong> parameter can be configured. By default, the <strong id="cce_bestpractice_00253__b1074524617406">nolock</strong> parameter is used for the mount operation and does not need to be configured. If <strong id="cce_bestpractice_00253__b1055562717355">nolock</strong> is set to <strong id="cce_bestpractice_00253__b9563227143514">false</strong>, the <strong id="cce_bestpractice_00253__b19563192717359">lock</strong> field is used.</li><li id="cce_bestpractice_00253__li688882012141">Starting from everest 1.2.8, more mount options are supported. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0337.html" target="_blank" rel="noopener noreferrer">Setting Mount Options</a>. <strong id="cce_bestpractice_00253__b176745492029">Do not set nolock to true. Otherwise, the mount operation fails.</strong><pre class="screen" id="cce_bestpractice_00253__screen1779155351116">mountOptions:
+- vers=3
+- timeo=600
+- nolock
+- hard</pre>
+</li></ul>
+</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li59414099"><strong id="cce_bestpractice_00253__b683652511616">everest.io/volume-as</strong>: Set this parameter to <strong id="cce_bestpractice_00253__b1069812451564">subpath</strong>.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li64964848"><strong id="cce_bestpractice_00253__b19358581569">everest.io/share-access-to</strong>: This parameter is optional. In subpath mode, set this parameter to the ID of the VPC where the SFS Turbo file system is located.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li47812724"><strong id="cce_bestpractice_00253__b127663114712">everest.io/share-expand-type</strong>: This parameter is optional. If the type of the SFS Turbo file system is SFS Turbo Standard – Enhanced or SFS Turbo Performance – Enhanced, set this parameter to <strong id="cce_bestpractice_00253__b134224338918">bandwidth</strong>.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li27661336"><strong id="cce_bestpractice_00253__b1572537996">everest.io/share-export-location</strong>: root directory to be mounted. It consists of the SFS Turbo shared path and sub-directory. The shared path can be queried on the SFS Turbo console. The sub-directory is user-defined. The PVCs created by the StorageClass are located in the sub-directory.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li47625437"><strong id="cce_bestpractice_00253__b6709163321610">everest.io/share-volume-type</strong>: This parameter is optional. It specifies the SFS Turbo file system type. The value can be <strong id="cce_bestpractice_00253__b037932717173">STANDARD</strong> or <strong id="cce_bestpractice_00253__b1641030111718">PERFORMANCE</strong>. For enhanced types, this parameter must be used together with <strong id="cce_bestpractice_00253__b131533103415">everest.io/share-expand-type</strong> (whose value should be <strong id="cce_bestpractice_00253__b590213587341">bandwidth</strong>).</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li25975757"><strong id="cce_bestpractice_00253__b695171217249">everest.io/zone</strong>: This parameter is optional. Set it to the AZ where the SFS Turbo file system is located.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li32455223"><strong id="cce_bestpractice_00253__b118371555102415">everest.io/volume-id</strong>: ID of the SFS Turbo volume. You can query the volume ID on the SFS Turbo page.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li15953145805416"><strong id="cce_bestpractice_00253__b77796106276">everest.io/archive-on-delete</strong>: If this parameter is set to <strong id="cce_bestpractice_00253__b1015211417278">true</strong> and the recycling policy is set to <strong id="cce_bestpractice_00253__b13108122662818">Delete</strong>, the original PV file will be archived when the PVC is deleted. The archive directory is named in the format of <em id="cce_bestpractice_00253__i264667113011">archived-$PV name.timestamp</em>. If this parameter is set to <strong id="cce_bestpractice_00253__b76771833193017">false</strong>, the SFS Turbo sub-directory corresponding to the PV will be deleted. The default value is <strong id="cce_bestpractice_00253__b192753912325">true</strong>.</li></ul>
+</p></li></ol><ol start="3" id="cce_bestpractice_00253__en-us_topic_0278443086_ol11627434"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li37538044"><span>Run the <strong id="cce_bestpractice_00253__en-us_topic_0278443086_b195971021185515">kubectl create -f sfsturbo-sc-test.yaml</strong> command to create a StorageClass.</span></li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li2298077"><span>Create a PVC YAML file named <strong id="cce_bestpractice_00253__b103274313328">sfs-turbo-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253__en-us_topic_0278443086_p1710723205516">Configuration example:</p>
+<pre class="screen" id="cce_bestpractice_00253__en-us_topic_0278443086_screen102059461551">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: sfs-turbo-test
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteMany
+  resources:
+    requests:
+      storage: 50Gi
+  storageClassName: sfsturbo-sc-test
+  volumeMode: Filesystem</pre>
+<p class="msonormal" id="cce_bestpractice_00253__en-us_topic_0278443086_p51062251">In this example:</p>
+<ul id="cce_bestpractice_00253__en-us_topic_0278443086_ul141055813557"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li42401657"><strong id="cce_bestpractice_00253__b55881230143711">name</strong>: name of the PVC.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li46070597"><strong id="cce_bestpractice_00253__b840884117372">storageClassName</strong>: name of the StorageClass created in the previous step.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li810458165517"><strong id="cce_bestpractice_00253__b1729053143817">storage</strong>: In the subpath mode, this parameter is invalid. The storage capacity is limited by the total capacity of the SFS Turbo file system. If the total capacity of the SFS Turbo file system is insufficient, expand the capacity on the SFS Turbo page in a timely manner.</li></ul>
+</p></li></ol><ol start="5" id="cce_bestpractice_00253__en-us_topic_0278443086_ol40730901"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li31033795"><span>Run the <strong id="cce_bestpractice_00253__en-us_topic_0278443086_b19629151617568">kubectl create -f sfs-turbo-test.yaml</strong> command to create a PVC.</span></li></ol>
+<div class="note" id="cce_bestpractice_00253__en-us_topic_0278443086_note93389369214"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00253__en-us_topic_0278443086_p2338113616218">It is meaningless to conduct capacity expansion on an SFS Turbo volume created in the subpath mode. This operation does not expand the capacity of the SFS Turbo file system. You need to ensure that the total capacity of the SFS Turbo file system is not used up.</p>
+</div></div>
+</div>
+<div class="section" id="cce_bestpractice_00253__en-us_topic_0278443086_section25151514"><h4 class="sectiontitle">Creating a Deployment and Mounting an Existing Volume</h4><ol id="cce_bestpractice_00253__en-us_topic_0278443086_ol30709455"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li7949639"><span>Create a Deployment YAML file named <strong id="cce_bestpractice_00253__b1671155814319">deployment-test.yaml</strong>.</span><p><div class="p" id="cce_bestpractice_00253__en-us_topic_0278443086_p18260165212212">Configuration example:<pre class="screen" id="cce_bestpractice_00253__en-us_topic_0278443086_screen1691315352015">apiVersion: <strong id="cce_bestpractice_00253__b6285133413417">apps/v1</strong>
+kind: Deployment
+metadata:
+  name: test-turbo-subpath-example
+  namespace: default
+  generation: 1
+  labels:
+    appgroup: ''
+spec: 
+  replicas: 1 
+  selector: 
+    matchLabels: 
+      app: test-turbo-subpath-example 
+  template: 
+    metadata: 
+      labels: 
+        app: test-turbo-subpath-example 
+    spec: 
+      containers: 
+      - image: nginx:latest 
+        name: container-0 
+        volumeMounts: 
+        - mountPath: /tmp
+          name: pvc-sfs-turbo-example 
+      restartPolicy: Always 
+      imagePullSecrets:
+      - name: default-secret
+      volumes: 
+      - name: pvc-sfs-turbo-example 
+        persistentVolumeClaim: 
+          claimName: sfs-turbo-test</pre>
+</div>
+<p class="msonormal" id="cce_bestpractice_00253__en-us_topic_0278443086_p4860205">In this example:</p>
+<ul id="cce_bestpractice_00253__en-us_topic_0278443086_ul36201717228"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li58132325"><strong id="cce_bestpractice_00253__b31113410411260">name</strong>: name of the Deployment.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li53428882"><strong id="cce_bestpractice_00253__b22553026611260">image</strong>: image used by the Deployment.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li11097898"><strong id="cce_bestpractice_00253__b201972372711260">mountPath</strong>: mount path of the container. In this example, the volume is mounted to the <strong id="cce_bestpractice_00253__b211877593811260">/tmp</strong> directory.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li14691711225"><strong id="cce_bestpractice_00253__b143341716164517">claimName</strong>: name of an existing PVC.</li></ul>
+</p></li></ol><ol start="2" id="cce_bestpractice_00253__en-us_topic_0278443086_ol26514531"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li37304191"><span>Run the <strong id="cce_bestpractice_00253__b20772483514">kubectl create -f deployment-test.yaml</strong> command to create a Deployment.</span></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_00253__en-us_topic_0278443086_section25037038"><h4 class="sectiontitle">Creating a StatefulSet That Uses a Volume Dynamically Created in subpath Mode</h4><ol id="cce_bestpractice_00253__en-us_topic_0278443086_ol60945241"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li11636265"><span>Create a StatefulSet YAML file named <strong id="cce_bestpractice_00253__b552833616470">statefulset-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253__en-us_topic_0278443086_p1397704611222">Configuration example:</p>
+<pre class="screen" id="cce_bestpractice_00253__en-us_topic_0278443086_screen37909379235">apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: test-turbo-subpath
+  namespace: default
+  generation: 1
+  labels:
+    appgroup: ''
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: test-turbo-subpath
+  template:
+    metadata:
+      labels:
+        app: test-turbo-subpath
+      annotations:
+        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
+        pod.alpha.kubernetes.io/initialized: 'true'
+    spec:
+      containers:
+        - name: container-0
+          image: 'nginx:latest'
+          env:
+            - name: PAAS_APP_NAME
+              value: deploy-sfs-nfs-rw-in
+            - name: PAAS_NAMESPACE
+              value: default
+            - name: PAAS_PROJECT_ID
+              value: 8190a2a1692c46f284585c56fc0e2fb9
+          resources: {}
+          volumeMounts:
+            - name: sfs-turbo-160024548582479676
+              mountPath: /tmp
+          terminationMessagePath: /dev/termination-log
+          terminationMessagePolicy: File
+          imagePullPolicy: IfNotPresent
+      restartPolicy: Always
+      terminationGracePeriodSeconds: 30
+      dnsPolicy: ClusterFirst
+      securityContext: {}
+      imagePullSecrets:
+        - name: default-secret
+      affinity: {}
+      schedulerName: default-scheduler
+  volumeClaimTemplates:
+    - metadata:
+        name: sfs-turbo-160024548582479676
+        namespace: default
+        annotations: {}
+      spec:
+        accessModes:
+          - ReadWriteOnce
+        resources:
+          requests:
+            storage: 10Gi
+        storageClassName: sfsturbo-sc-test
+  serviceName: wwww
+  podManagementPolicy: OrderedReady
+  updateStrategy:
+    type: RollingUpdate
+  revisionHistoryLimit: 10</pre>
+<p class="msonormal" id="cce_bestpractice_00253__en-us_topic_0278443086_p16490530">In this example:</p>
+<ul id="cce_bestpractice_00253__en-us_topic_0278443086_ul197522816235"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li60664521"><strong id="cce_bestpractice_00253__b136565215111260">name</strong>: name of the StatefulSet.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li9109783"><strong id="cce_bestpractice_00253__b5576105914811">image</strong>: image used by the StatefulSet.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li14879189"><strong id="cce_bestpractice_00253__b350221013490">mountPath</strong>: mount path of the container. In this example, the volume is mounted to the <strong id="cce_bestpractice_00253__b1850671015494">/tmp</strong> directory.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li66803845"><strong id="cce_bestpractice_00253__b36936475411260">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_bestpractice_00253__b9012554811260">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</li><li id="cce_bestpractice_00253__en-us_topic_0278443086_li127521389238"><strong id="cce_bestpractice_00253__b1899022819490">storageClassName</strong>: name of the created StorageClass.</li></ul>
+</p></li></ol><ol start="2" id="cce_bestpractice_00253__en-us_topic_0278443086_ol42402339"><li id="cce_bestpractice_00253__en-us_topic_0278443086_li46076731"><span>Run the <strong id="cce_bestpractice_00253__b1943813683515">kubectl create -f statefulset-test.yaml</strong> command to create a StatefulSet.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00253_0.html b/docs/cce/umn/cce_bestpractice_00253_0.html
deleted file mode 100644
index 77ab416c..00000000
--- a/docs/cce/umn/cce_bestpractice_00253_0.html
+++ /dev/null
@@ -1,171 +0,0 @@
-<a name="cce_bestpractice_00253_0"></a><a name="cce_bestpractice_00253_0"></a>
-
-<h1 class="topictitle1">Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System</h1>
-<div id="body8662426"><div class="section" id="cce_bestpractice_00253_0__section1253143915414"><h4 class="sectiontitle">Background</h4><p id="cce_bestpractice_00253_0__p20577205044110">The minimum capacity of an SFS Turbo file system is 500 GB, and the SFS Turbo file system cannot be billed by usage. By default, the root directory of an SFS Turbo file system is mounted to a container which, in most case, does not require such a large capacity.</p>
-<p id="cce_bestpractice_00253_0__p1595551225512">The everest add-on allows you to dynamically create subdirectories in an SFS Turbo file system and mount these subdirectories to containers. In this way, an SFS Turbo file system can be shared by multiple containers to increase storage efficiency.</p>
-</div>
-<div class="section" id="cce_bestpractice_00253_0__section17695156154019"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_bestpractice_00253_0__ul17455186154219"><li id="cce_bestpractice_00253_0__li54551562423">Only clusters of v1.15 and later are supported.</li><li id="cce_bestpractice_00253_0__li045646184211">The cluster must use the everest add-on of version 1.1.13 or later.</li><li id="cce_bestpractice_00253_0__li54566618425">Kata containers are not supported.</li><li id="cce_bestpractice_00253_0__li11620175819575">A maximum of 10 PVCs can be created concurrently at a time by using the subdirectory function.</li></ul>
-</div>
-<div class="section" id="cce_bestpractice_00253_0__en-us_topic_0278443086_section2794612"><h4 class="sectiontitle">Creating an SFS Turbo Volume of the subpath Type</h4><div class="caution" id="cce_bestpractice_00253_0__en-us_topic_0278443086_note2373120455"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p33745274517">The CCE console has not yet supported the operations related to this feature, such as expanding, disassociating, and deleting subPath volumes.</p>
-</div></div>
-<ol id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol12819762"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li48268995"><span>Import an SFS Turbo file system that is located in the same VPC and subnet as the cluster.</span></li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li31767774"><span>Create a StorageClass YAML file, for example, <strong id="cce_bestpractice_00253_0__b533819231317">sfsturbo-sc-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p12658339115317">Configuration example:</p>
-<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen386441711546">apiVersion: storage.k8s.io/v1
-allowVolumeExpansion: true
-kind: StorageClass
-metadata:
-  name: sfsturbo-sc-test
-mountOptions:
-- lock
-parameters:
-  csi.storage.k8s.io/csi-driver-name: sfsturbo.csi.everest.io
-  csi.storage.k8s.io/fstype: nfs
-  everest.io/archive-on-delete: "true"
-  everest.io/share-access-to: 7ca2dba2-1234-1234-1234-626371a8fb3a
-  everest.io/share-expand-type: bandwidth
-  everest.io/share-export-location: 192.168.1.1:/sfsturbo/
-  everest.io/share-source: sfs-turbo
-  everest.io/share-volume-type: STANDARD
-  everest.io/volume-as: subpath
-  everest.io/volume-id: 0d773f2e-1234-1234-1234-de6a35074696
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate</pre>
-<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p35962059">In this example:</p>
-<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul795395815547"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li27245651"><strong id="cce_bestpractice_00253_0__b59516297213">name</strong>: name of the StorageClass.</li><li id="cce_bestpractice_00253_0__li827114118142"><strong id="cce_bestpractice_00253_0__b1842222223318">mountOptions</strong>: mount options. This field is optional.<ul id="cce_bestpractice_00253_0__ul2080191311145"><li id="cce_bestpractice_00253_0__li118941043511">In versions later than everest 1.1.13 and earlier than everest 1.2.8, only the <strong id="cce_bestpractice_00253_0__b1530712183345">nolock</strong> parameter can be configured. By default, the <strong id="cce_bestpractice_00253_0__b1074524617406">nolock</strong> parameter is used for the mount operation and does not need to be configured. If <strong id="cce_bestpractice_00253_0__b1055562717355">nolock</strong> is set to <strong id="cce_bestpractice_00253_0__b9563227143514">false</strong>, the <strong id="cce_bestpractice_00253_0__b19563192717359">lock</strong> field is used.</li><li id="cce_bestpractice_00253_0__li688882012141">Starting from everest 1.2.8, more parameters are supported. The default parameter configurations are shown below. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0337.html" target="_blank" rel="noopener noreferrer">Setting Mount Options</a>. <strong id="cce_bestpractice_00253_0__b176745492029">Do not set nolock to true. Otherwise, the mount operation fails.</strong><pre class="screen" id="cce_bestpractice_00253_0__screen1779155351116">mountOptions:
-- vers=3
-- timeo=600
-- nolock
-- hard</pre>
-</li></ul>
-</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li59414099"><strong id="cce_bestpractice_00253_0__b683652511616">everest.io/volume-as</strong>: Set this parameter to <strong id="cce_bestpractice_00253_0__b1069812451564">subpath</strong>.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li64964848"><strong id="cce_bestpractice_00253_0__b19358581569">everest.io/share-access-to</strong>: This parameter is optional. In subpath mode, set this parameter to the ID of the VPC where the SFS Turbo file system is located.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li47812724"><strong id="cce_bestpractice_00253_0__b127663114712">everest.io/share-expand-type</strong>: This parameter is optional. If the type of the SFS Turbo file system is SFS Turbo Standard – Enhanced or SFS Turbo Performance – Enhanced, set this parameter to <strong id="cce_bestpractice_00253_0__b134224338918">bandwidth</strong>.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li27661336"><strong id="cce_bestpractice_00253_0__b1572537996">everest.io/share-export-location</strong>: root directory to be mounted. It consists of the SFS Turbo shared path and sub-directory. The shared path can be queried on the SFS Turbo console. The sub-directory is user-defined. The PVCs created by the StorageClass are located in the sub-directory.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li47625437"><strong id="cce_bestpractice_00253_0__b6709163321610">everest.io/share-volume-type</strong>: This parameter is optional. It specifies the SFS Turbo file system type. The value can be <strong id="cce_bestpractice_00253_0__b037932717173">STANDARD</strong> or <strong id="cce_bestpractice_00253_0__b1641030111718">PERFORMANCE</strong>. For enhanced types, this parameter must be used together with <strong id="cce_bestpractice_00253_0__b131533103415">everest.io/share-expand-type</strong> (whose value should be <strong id="cce_bestpractice_00253_0__b590213587341">bandwidth</strong>).</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li25975757"><strong id="cce_bestpractice_00253_0__b695171217249">everest.io/zone</strong>: This parameter is optional. Set it to the AZ where the SFS Turbo file system is located.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li32455223"><strong id="cce_bestpractice_00253_0__b118371555102415">everest.io/volume-id</strong>: ID of the SFS Turbo volume. You can query the volume ID on the SFS Turbo page.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li15953145805416"><strong id="cce_bestpractice_00253_0__b77796106276">everest.io/archive-on-delete</strong>: If this parameter is set to <strong id="cce_bestpractice_00253_0__b1015211417278">true</strong> and the recycling policy is set to <strong id="cce_bestpractice_00253_0__b13108122662818">Delete</strong>, the original PV file will be archived when the PVC is deleted. The archive directory is named in the format of <em id="cce_bestpractice_00253_0__i264667113011">archived-$PV name.timestamp</em>. If this parameter is set to <strong id="cce_bestpractice_00253_0__b76771833193017">false</strong>, the SFS Turbo sub-directory corresponding to the PV will be deleted. The default value is <strong id="cce_bestpractice_00253_0__b192753912325">true</strong>.</li></ul>
-</p></li></ol><ol start="3" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol11627434"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li37538044"><span>Run the <strong id="cce_bestpractice_00253_0__en-us_topic_0278443086_b195971021185515">kubectl create -f sfsturbo-sc-test.yaml</strong> command to create a StorageClass.</span></li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li2298077"><span>Create a PVC YAML file named <strong id="cce_bestpractice_00253_0__b103274313328">sfs-turbo-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p1710723205516">Configuration example:</p>
-<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen102059461551">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: sfs-turbo-test
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteMany
-  resources:
-    requests:
-      storage: 50Gi
-  storageClassName: sfsturbo-sc-test
-  volumeMode: Filesystem</pre>
-<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p51062251">In this example:</p>
-<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul141055813557"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li42401657"><strong id="cce_bestpractice_00253_0__b55881230143711">name</strong>: name of the PVC.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li46070597"><strong id="cce_bestpractice_00253_0__b840884117372">storageClassName</strong>: name of the StorageClass created in the previous step.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li810458165517"><strong id="cce_bestpractice_00253_0__b1729053143817">storage</strong>: In the subpath mode, this parameter is invalid. The storage capacity is limited by the total capacity of the SFS Turbo file system. If the total capacity of the SFS Turbo file system is insufficient, expand the capacity on the SFS Turbo page in a timely manner.</li></ul>
-</p></li></ol><ol start="5" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol40730901"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li31033795"><span>Run the <strong id="cce_bestpractice_00253_0__en-us_topic_0278443086_b19629151617568">kubectl create -f sfs-turbo-test.yaml</strong> command to create a PVC.</span></li></ol>
-<div class="note" id="cce_bestpractice_00253_0__en-us_topic_0278443086_note93389369214"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p2338113616218">It is meaningless to conduct capacity expansion on an SFS Turbo volume created in the subpath mode. This operation does not expand the capacity of the SFS Turbo file system. You need to ensure that the total capacity of the SFS Turbo file system is not used up.</p>
-</div></div>
-</div>
-<div class="section" id="cce_bestpractice_00253_0__en-us_topic_0278443086_section25151514"><h4 class="sectiontitle">Creating a Deployment and Mounting an Existing Volume</h4><ol id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol30709455"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li7949639"><span>Create a Deployment YAML file named <strong id="cce_bestpractice_00253_0__b1671155814319">deployment-test.yaml</strong>.</span><p><div class="p" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p18260165212212">Configuration example:<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen1691315352015">apiVersion: <strong id="cce_bestpractice_00253_0__b6285133413417">apps/v1</strong>
-kind: Deployment
-metadata:
-  name: test-turbo-subpath-example
-  namespace: default
-  generation: 1
-  labels:
-    appgroup: ''
-spec: 
-  replicas: 1 
-  selector: 
-    matchLabels: 
-      app: test-turbo-subpath-example 
-  template: 
-    metadata: 
-      labels: 
-        app: test-turbo-subpath-example 
-    spec: 
-      containers: 
-      - image: nginx:latest 
-        name: container-0 
-        volumeMounts: 
-        - mountPath: /tmp
-          name: pvc-sfs-turbo-example 
-      restartPolicy: Always 
-      imagePullSecrets:
-      - name: default-secret
-      volumes: 
-      - name: pvc-sfs-turbo-example 
-        persistentVolumeClaim: 
-          claimName: sfs-turbo-test</pre>
-</div>
-<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p4860205">In this example:</p>
-<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul36201717228"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li58132325"><strong id="cce_bestpractice_00253_0__b31113410411260">name</strong>: name of the Deployment.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li53428882"><strong id="cce_bestpractice_00253_0__b22553026611260">image</strong>: image used by the Deployment.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li11097898"><strong id="cce_bestpractice_00253_0__b201972372711260">mountPath</strong>: mount path of the container. In this example, the volume is mounted to the <strong id="cce_bestpractice_00253_0__b211877593811260">/tmp</strong> directory.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li14691711225"><strong id="cce_bestpractice_00253_0__b143341716164517">claimName</strong>: name of an existing PVC.</li></ul>
-</p></li></ol><ol start="2" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol26514531"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li37304191"><span>Run the <strong id="cce_bestpractice_00253_0__b20772483514">kubectl create -f deployment-test.yaml</strong> command to create a Deployment.</span></li></ol>
-</div>
-<div class="section" id="cce_bestpractice_00253_0__en-us_topic_0278443086_section25037038"><h4 class="sectiontitle">Creating a StatefulSet That Uses a Volume Dynamically Created in subpath Mode</h4><ol id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol60945241"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li11636265"><span>Create a StatefulSet YAML file named <strong id="cce_bestpractice_00253_0__b552833616470">statefulset-test.yaml</strong>.</span><p><p id="cce_bestpractice_00253_0__en-us_topic_0278443086_p1397704611222">Configuration example:</p>
-<pre class="screen" id="cce_bestpractice_00253_0__en-us_topic_0278443086_screen37909379235">apiVersion: apps/v1
-kind: StatefulSet
-metadata:
-  name: test-turbo-subpath
-  namespace: default
-  generation: 1
-  labels:
-    appgroup: ''
-spec:
-  replicas: 2
-  selector:
-    matchLabels:
-      app: test-turbo-subpath
-  template:
-    metadata:
-      labels:
-        app: test-turbo-subpath
-      annotations:
-        metrics.alpha.kubernetes.io/custom-endpoints: '[{"api":"","path":"","port":"","names":""}]'
-        pod.alpha.kubernetes.io/initialized: 'true'
-    spec:
-      containers:
-        - name: container-0
-          image: 'nginx:latest'
-          env:
-            - name: PAAS_APP_NAME
-              value: deploy-sfs-nfs-rw-in
-            - name: PAAS_NAMESPACE
-              value: default
-            - name: PAAS_PROJECT_ID
-              value: 8190a2a1692c46f284585c56fc0e2fb9
-          resources: {}
-          volumeMounts:
-            - name: sfs-turbo-160024548582479676
-              mountPath: /tmp
-          terminationMessagePath: /dev/termination-log
-          terminationMessagePolicy: File
-          imagePullPolicy: IfNotPresent
-      restartPolicy: Always
-      terminationGracePeriodSeconds: 30
-      dnsPolicy: ClusterFirst
-      securityContext: {}
-      imagePullSecrets:
-        - name: default-secret
-      affinity: {}
-      schedulerName: default-scheduler
-  volumeClaimTemplates:
-    - metadata:
-        name: sfs-turbo-160024548582479676
-        namespace: default
-        annotations: {}
-      spec:
-        accessModes:
-          - ReadWriteOnce
-        resources:
-          requests:
-            storage: 10Gi
-        storageClassName: sfsturbo-sc-test
-  serviceName: wwww
-  podManagementPolicy: OrderedReady
-  updateStrategy:
-    type: RollingUpdate
-  revisionHistoryLimit: 10</pre>
-<p class="msonormal" id="cce_bestpractice_00253_0__en-us_topic_0278443086_p16490530">In this example:</p>
-<ul id="cce_bestpractice_00253_0__en-us_topic_0278443086_ul197522816235"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li60664521"><strong id="cce_bestpractice_00253_0__b136565215111260">name</strong>: name of the StatefulSet.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li9109783"><strong id="cce_bestpractice_00253_0__b5576105914811">image</strong>: image used by the StatefulSet.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li14879189"><strong id="cce_bestpractice_00253_0__b350221013490">mountPath</strong>: mount path of the container. In this example, the volume is mounted to the <strong id="cce_bestpractice_00253_0__b1850671015494">/tmp</strong> directory.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li66803845"><strong id="cce_bestpractice_00253_0__b36936475411260">spec.template.spec.containers.volumeMounts.name</strong> and <strong id="cce_bestpractice_00253_0__b9012554811260">spec.volumeClaimTemplates.metadata.name</strong> must be consistent because they have a mapping relationship.</li><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li127521389238"><strong id="cce_bestpractice_00253_0__b1899022819490">storageClassName</strong>: name of the created StorageClass.</li></ul>
-</p></li></ol><ol start="2" id="cce_bestpractice_00253_0__en-us_topic_0278443086_ol42402339"><li id="cce_bestpractice_00253_0__en-us_topic_0278443086_li46076731"><span>Run the <strong id="cce_bestpractice_00253_0__b1943813683515">kubectl create -f statefulset-test.yaml</strong> command to create a StatefulSet.</span></li></ol>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_bestpractice_00281.html b/docs/cce/umn/cce_bestpractice_00281.html
new file mode 100644
index 00000000..14021273
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_00281.html
@@ -0,0 +1,230 @@
+<a name="cce_bestpractice_00281"></a><a name="cce_bestpractice_00281"></a>
+
+<h1 class="topictitle1">Custom Storage Classes</h1>
+<div id="body0000001148435277"><div class="section" id="cce_bestpractice_00281__section13347243125312"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_00281__p19810642103411">When using storage resources in CCE, the most common method is to specify <strong id="cce_bestpractice_00281__b1439518042014">storageClassName</strong> to define the type of storage resources to be created when creating a PVC. The following configuration shows how to use a PVC to apply for an SAS (high I/O) EVS disk (block storage).</p>
+<pre class="screen" id="cce_bestpractice_00281__screen146941631606">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-example
+  namespace: default
+  annotations:
+    everest.io/disk-volume-type: SAS
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: csi-disk</pre>
+<p id="cce_bestpractice_00281__p10416164023811">If you need to specify the EVS disk type, you can set the <strong id="cce_bestpractice_00281__b69097575910">everest.io/disk-volume-type</strong> field. The value <strong id="cce_bestpractice_00281__b149091571397">SAS</strong> is used as an example here, indicating the high I/O EVS disk type. Or you can choose <strong id="cce_bestpractice_00281__b99091957698">SATA</strong> (common I/O) and <strong id="cce_bestpractice_00281__b1790918578914">SSD</strong> (ultra-high I/O).</p>
+<p id="cce_bestpractice_00281__p1992812244296">This configuration method may not work if you want to:</p>
+<ul id="cce_bestpractice_00281__ul1666681113305"><li id="cce_bestpractice_00281__li26671211203012">Set <strong id="cce_bestpractice_00281__b7751649116">storageClassName</strong> only, which is simpler than specifying the EVS disk type by using <strong id="cce_bestpractice_00281__b147618498116">everest.io/disk-volume-type</strong>.</li><li id="cce_bestpractice_00281__li1430122517314">Avoid modifying YAML files or Helm charts. Some users switch from self-built or other Kubernetes services to CCE and have written YAML files of many applications. In these YAML files, different types of storage resources are specified by different StorageClassNames. When using CCE, they need to modify a large number of YAML files or Helm charts to use storage resources, which is labor-consuming and error-prone.</li><li id="cce_bestpractice_00281__li6714783711">Set the default <strong id="cce_bestpractice_00281__b3414714817">storageClassName</strong> for all applications to use the default storage class. In this way, you can create storage resources of the default type without needing to specify <strong id="cce_bestpractice_00281__b15163103104815">storageClassName</strong> in the YAML file.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00281__section10387181592813"><h4 class="sectiontitle">Solution</h4><p id="cce_bestpractice_00281__p33361127181019">This section describes how to set a custom storage class in CCE and how to set the default storage class. You can specify different types of storage resources by setting <strong id="cce_bestpractice_00281__b15705152195010">storageClassName</strong>.</p>
+<ul id="cce_bestpractice_00281__ul1394816541798"><li id="cce_bestpractice_00281__li1494865412920">For the first scenario, you can define custom storageClassNames for SAS and SSD EVS disks. For example, define a storage class named <strong id="cce_bestpractice_00281__b11954204618017">csi-disk-sas</strong> for creating SAS disks. The following figure shows the differences before and after you use a custom storage class.<p id="cce_bestpractice_00281__p1639843625220"><span><img id="cce_bestpractice_00281__image62065521613" src="en-us_image_0000001102275444.png"></span></p>
+</li><li id="cce_bestpractice_00281__li112521973108">For the second scenario, you can define a storage class with the same name as that in the existing YAML file without needing to modify <strong id="cce_bestpractice_00281__b13346387104">storageClassName</strong> in the YAML file.</li><li id="cce_bestpractice_00281__li595443471215">For the third scenario, you can set the default storage class as described below to create storage resources without specifying <strong id="cce_bestpractice_00281__b863812014124">storageClassName</strong> in YAML files.<pre class="screen" id="cce_bestpractice_00281__screen22067304183">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: pvc-evs-example
+  namespace: default
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00281__section11887112131418"><h4 class="sectiontitle">Storage Classes in CCE</h4><p id="cce_bestpractice_00281__p1633311831410">Run the following command to query the supported storage classes.</p>
+<pre class="screen" id="cce_bestpractice_00281__screen207891315121516"># kubectl get sc
+NAME                PROVISIONER                     AGE
+csi-disk            everest-csi-provisioner         17d          # Storage class for EVS disks
+csi-disk-topology   everest-csi-provisioner         17d          # Storage class for EVS disks with delayed association
+csi-nas             everest-csi-provisioner         17d          # Storage class for SFS file systems
+csi-obs             everest-csi-provisioner         17d          # Storage Class for OBS buckets
+csi-sfsturbo        everest-csi-provisioner         17d          # Storage class for SFS Turbo file systems</pre>
+<p id="cce_bestpractice_00281__p3417711182818">Check the details of <strong id="cce_bestpractice_00281__b08035920551">csi-disk</strong>. You can see that the type of the disk created by <strong id="cce_bestpractice_00281__b138145995512">csi-disk</strong> is SAS by default.</p>
+<pre class="screen" id="cce_bestpractice_00281__screen12583162812818"># kubectl get sc csi-disk -oyaml
+allowVolumeExpansion: true
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  creationTimestamp: "2021-03-17T02:10:32Z"
+  name: csi-disk
+  resourceVersion: "760"
+  selfLink: /apis/storage.k8s.io/v1/storageclasses/csi-disk
+  uid: 4db97b6c-853b-443d-b0dc-41cdcb8140f2
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SAS
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+</div>
+<div class="section" id="cce_bestpractice_00281__section179154267162"><h4 class="sectiontitle">Custom Storage Classes</h4><p id="cce_bestpractice_00281__p9601335151617">You can customize a high I/O storage class in a YAML file. For example, the name <strong id="cce_bestpractice_00281__b186185811594">csi-disk-sas</strong> indicates that the disk type is SAS (high I/O).</p>
+<pre class="screen" id="cce_bestpractice_00281__screen659210819391">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-sas                          # Name of the high I/O storage class, which can be customized.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SAS            # High I/O EVS disk type, which cannot be customized.
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true                    # <strong id="cce_bestpractice_00281__b148711949142017">true</strong> indicates that capacity expansion is allowed.</pre>
+<p id="cce_bestpractice_00281__p1281618138471">For an ultra-high I/O storage class, you can set the class name to <strong id="cce_bestpractice_00281__b722754812">csi-disk-ssd</strong> to create SSD EVS disk (ultra-high I/O).</p>
+<pre class="screen" id="cce_bestpractice_00281__screen199713432478">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-ssd                       # Name of the ultra-high I/O storage class, which can be customized.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SSD         # Ultra-high I/O EVS disk type, which cannot be customized.
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true</pre>
+<p id="cce_bestpractice_00281__p146067122106"><strong id="cce_bestpractice_00281__b69321846286">reclaimPolicy</strong>: indicates the recycling policies of the underlying cloud storage. The value can be <strong id="cce_bestpractice_00281__b9392322125012">Delete</strong> or <strong id="cce_bestpractice_00281__b91651126105014">Retain</strong>.</p>
+<ul id="cce_bestpractice_00281__ul42481619111116"><li id="cce_bestpractice_00281__li1624871911111"><strong id="cce_bestpractice_00281__b1313332805014">Delete</strong>: When a PVC is deleted, both the PV and the EVS disk are deleted.</li><li id="cce_bestpractice_00281__li9248141919118"><strong id="cce_bestpractice_00281__b26601433105212">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the <strong id="cce_bestpractice_00281__b1956334045518">Released</strong> state and cannot be bound to the PVC again.</li></ul>
+<div class="note" id="cce_bestpractice_00281__note8801953114018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00281__p178035314020">The reclamation policy set here has no impact on the SFS Turbo storage.</p>
+</div></div>
+<p id="cce_bestpractice_00281__p778102518503">If high data security is required, you are advised to select <strong id="cce_bestpractice_00281__b1478374995218">Retain</strong> to prevent data from being deleted by mistake.</p>
+<p id="cce_bestpractice_00281__p824713561207">After the definition is complete, run the <strong id="cce_bestpractice_00281__b14281158232">kubectl create</strong> commands to create storage resources.</p>
+<pre class="screen" id="cce_bestpractice_00281__screen164494218115"># kubectl create -f sas.yaml
+storageclass.storage.k8s.io/csi-disk-sas created
+# kubectl create -f ssd.yaml
+storageclass.storage.k8s.io/csi-disk-ssd created</pre>
+<p id="cce_bestpractice_00281__p1412183715488">Query the storage class again. Two more types of storage classes are displayed in the command output, as shown below.</p>
+<pre class="screen" id="cce_bestpractice_00281__screen13784148495"># kubectl get sc
+NAME                PROVISIONER                     AGE
+csi-disk            everest-csi-provisioner         17d
+csi-disk-sas        everest-csi-provisioner         2m28s
+csi-disk-ssd        everest-csi-provisioner         16s
+csi-disk-topology   everest-csi-provisioner         17d
+csi-nas             everest-csi-provisioner         17d
+csi-obs             everest-csi-provisioner         17d
+csi-sfsturbo        everest-csi-provisioner         17d</pre>
+<p id="cce_bestpractice_00281__p05291082227">Other types of storage resources can be defined in the similar way. You can use kubectl to obtain the YAML file and modify it as required.</p>
+<ul id="cce_bestpractice_00281__ul38311130152115"><li id="cce_bestpractice_00281__li18831113072113">File storage<pre class="screen" id="cce_bestpractice_00281__screen181646213295"># kubectl get sc csi-nas -oyaml
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  name: csi-nas
+provisioner: everest-csi-provisioner
+parameters:
+  csi.storage.k8s.io/csi-driver-name: nas.csi.everest.io
+  csi.storage.k8s.io/fstype: nfs
+  everest.io/share-access-level: rw
+  everest.io/share-access-to: 5e3864c6-e78d-4d00-b6fd-de09d432c632   # ID of the VPC to which the cluster belongs
+  everest.io/share-is-public: 'false'
+  everest.io/zone: xxxxx          # AZ
+reclaimPolicy: Delete
+allowVolumeExpansion: true
+volumeBindingMode: Immediate</pre>
+</li><li id="cce_bestpractice_00281__li4390135712118">Object storage<pre class="screen" id="cce_bestpractice_00281__screen1745353552911"># kubectl get sc csi-obs -oyaml
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  name: csi-obs
+provisioner: everest-csi-provisioner
+parameters:
+  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
+  csi.storage.k8s.io/fstype: s3fs           # Object storage type. <strong id="cce_bestpractice_00281__b581916217422">s3fs</strong> indicates an object bucket, and <strong id="cce_bestpractice_00281__b19130111019424">obsfs</strong> indicates a parallel file system.
+  everest.io/obs-volume-type: STANDARD      # Storage class of the OBS bucket
+reclaimPolicy: Delete
+volumeBindingMode: Immediate</pre>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_00281__section13586291218"><h4 class="sectiontitle">Setting a Default Storage Class</h4><p id="cce_bestpractice_00281__p163571329132111">You can specify a storage class as the default class. In this way, if you do not specify <strong id="cce_bestpractice_00281__b133883591469">storageClassName</strong> when creating a PVC, the PVC is created using the default storage class.</p>
+<p id="cce_bestpractice_00281__p1435710291217">For example, to specify <strong id="cce_bestpractice_00281__b1964515812715">csi-disk-ssd</strong> as the default storage class, edit your YAML file as follows:</p>
+<pre class="screen" id="cce_bestpractice_00281__screen5357429172112">apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: csi-disk-ssd
+  annotations:
+    storageclass.kubernetes.io/is-default-class: "true"   # Specifies the default storage class in a cluster. A cluster can have only one default storage class.
+parameters:
+  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
+  csi.storage.k8s.io/fstype: ext4
+  everest.io/disk-volume-type: SSD
+  everest.io/passthrough: "true"
+provisioner: everest-csi-provisioner
+reclaimPolicy: Delete
+volumeBindingMode: Immediate
+allowVolumeExpansion: true</pre>
+<p id="cce_bestpractice_00281__p1135711298213">Delete the created csi-disk-ssd disk, run the <strong id="cce_bestpractice_00281__b152561717817">kubectl create</strong> command to create a csi-disk-ssd disk again, and then query the storage class. The following information is displayed.</p>
+<pre class="screen" id="cce_bestpractice_00281__screen135872982120"># kubectl delete sc csi-disk-ssd
+storageclass.storage.k8s.io "csi-disk-ssd" deleted
+# kubectl create -f ssd.yaml
+storageclass.storage.k8s.io/csi-disk-ssd created
+# kubectl get sc
+NAME                     PROVISIONER                     AGE
+csi-disk                 everest-csi-provisioner         17d
+csi-disk-sas             everest-csi-provisioner         114m
+csi-disk-ssd (default)   everest-csi-provisioner         9s
+csi-disk-topology        everest-csi-provisioner         17d
+csi-nas                  everest-csi-provisioner         17d
+csi-obs                  everest-csi-provisioner         17d
+csi-sfsturbo             everest-csi-provisioner         17d</pre>
+</div>
+<div class="section" id="cce_bestpractice_00281__section113669814307"><h4 class="sectiontitle">Verification</h4><ul id="cce_bestpractice_00281__ul326513332433"><li id="cce_bestpractice_00281__li1426593312439">Use <strong id="cce_bestpractice_00281__b72318715919">csi-disk-sas</strong> to create a PVC.<pre class="screen" id="cce_bestpractice_00281__screen164121655153014">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  sas-disk
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: csi-disk-sas</pre>
+<p id="cce_bestpractice_00281__p1331523183215">Create a storage class and view its details. As shown below, the object can be created and the value of <strong id="cce_bestpractice_00281__b2841103141010">STORAGECLASS</strong> is <strong id="cce_bestpractice_00281__b1290115143103">csi-disk-sas</strong>.</p>
+<pre class="screen" id="cce_bestpractice_00281__screen3819181515400"># kubectl create -f sas-disk.yaml 
+persistentvolumeclaim/sas-disk created
+# kubectl get pvc
+NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
+sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   24s
+# kubectl get pv
+NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
+pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            30s</pre>
+<p id="cce_bestpractice_00281__p296654417436">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is high I/O.</p>
+<p id="cce_bestpractice_00281__p1365215405213"></p>
+</li><li id="cce_bestpractice_00281__li16722125154315">If <strong id="cce_bestpractice_00281__b53910164176">storageClassName</strong> is not specified, the default configuration is used, as shown below.<pre class="screen" id="cce_bestpractice_00281__screen623034510524">apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name:  ssd-disk
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi</pre>
+<p id="cce_bestpractice_00281__p14101131875619">Create and view the storage resource. You can see that the storage class of PVC ssd-disk is csi-disk-ssd, indicating that csi-disk-ssd is used by default.</p>
+<pre class="screen" id="cce_bestpractice_00281__screen133543256569"># kubectl create -f ssd-disk.yaml 
+persistentvolumeclaim/ssd-disk created
+# kubectl get pvc
+NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
+sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   16m
+ssd-disk   Bound    pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            csi-disk-ssd   10s
+# kubectl get pv
+NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
+pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            Delete           Bound       default/ssd-disk          csi-disk-ssd            15s
+pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            17m</pre>
+<p id="cce_bestpractice_00281__p14639104411583">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is ultra-high I/O.</p>
+<p id="cce_bestpractice_00281__p76651917155918"></p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_00281_0.html b/docs/cce/umn/cce_bestpractice_00281_0.html
deleted file mode 100644
index 7bf0c936..00000000
--- a/docs/cce/umn/cce_bestpractice_00281_0.html
+++ /dev/null
@@ -1,230 +0,0 @@
-<a name="cce_bestpractice_00281_0"></a><a name="cce_bestpractice_00281_0"></a>
-
-<h1 class="topictitle1">Custom Storage Classes</h1>
-<div id="body0000001148435277"><div class="section" id="cce_bestpractice_00281_0__section13347243125312"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_00281_0__p19810642103411">When using storage resources in CCE, the most common method is to specify <strong id="cce_bestpractice_00281_0__b1439518042014">storageClassName</strong> to define the type of storage resources to be created when creating a PVC. The following configuration shows how to use a PVC to apply for an SAS (high I/O) EVS disk (block storage).</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen146941631606">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-evs-example
-  namespace: default
-  annotations:
-    everest.io/disk-volume-type: SAS
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi
-  storageClassName: csi-disk</pre>
-<p id="cce_bestpractice_00281_0__p10416164023811">If you need to specify the EVS disk type, you can set the <strong id="cce_bestpractice_00281_0__b1327345035413">everest.io/disk-volume-type</strong> field. The value <strong id="cce_bestpractice_00281_0__b1527965015414">SAS</strong> is used as an example here, indicating the high I/O EVS disk type. Or you can choose <strong id="cce_bestpractice_00281_0__b18796143718507">SATA</strong> (common I/O) and <strong id="cce_bestpractice_00281_0__b5279250115416">SSD</strong> (ultra-high I/O).</p>
-<p id="cce_bestpractice_00281_0__p1992812244296">This configuration method may not work if you want to:</p>
-<ul id="cce_bestpractice_00281_0__ul1666681113305"><li id="cce_bestpractice_00281_0__li26671211203012">Set <strong id="cce_bestpractice_00281_0__b19384122374818">storageClassName</strong> only, which is simpler than specifying the EVS disk type by using <strong id="cce_bestpractice_00281_0__b1043282143520">everest.io/disk-volume-type</strong>.</li><li id="cce_bestpractice_00281_0__li1430122517314">Avoid modifying YAML files or Helm charts. Some users switch from self-built or other Kubernetes services to CCE and have written YAML files of many applications. In these YAML files, different types of storage resources are specified by different StorageClassNames. When using CCE, they need to modify a large number of YAML files or Helm charts to use storage resources, which is labor-consuming and error-prone.</li><li id="cce_bestpractice_00281_0__li6714783711">Set the default <strong id="cce_bestpractice_00281_0__b3414714817">storageClassName</strong> for all applications to use the default storage class. In this way, you can create storage resources of the default type without needing to specify <strong id="cce_bestpractice_00281_0__b15163103104815">storageClassName</strong> in the YAML file.</li></ul>
-</div>
-<div class="section" id="cce_bestpractice_00281_0__section10387181592813"><h4 class="sectiontitle">Solution</h4><p id="cce_bestpractice_00281_0__p33361127181019">This section describes how to set a custom storage class in CCE and how to set the default storage class. You can specify different types of storage resources by setting <strong id="cce_bestpractice_00281_0__b15705152195010">storageClassName</strong>.</p>
-<ul id="cce_bestpractice_00281_0__ul1394816541798"><li id="cce_bestpractice_00281_0__li1494865412920">For the first scenario, you can define custom storageClassNames for SAS and SSD EVS disks. For example, define a storage class named <strong id="cce_bestpractice_00281_0__b11954204618017">csi-disk-sas</strong> for creating SAS disks. The following figure shows the differences before and after you use a custom storage class.<p id="cce_bestpractice_00281_0__p1639843625220"><span><img id="cce_bestpractice_00281_0__image62065521613" src="en-us_image_0000001102275444.png"></span></p>
-</li><li id="cce_bestpractice_00281_0__li112521973108">For the second scenario, you can define a storage class with the same name as that in the existing YAML file without needing to modify <strong id="cce_bestpractice_00281_0__b13346387104">storageClassName</strong> in the YAML file.</li><li id="cce_bestpractice_00281_0__li595443471215">For the third scenario, you can set the default storage class as described below to create storage resources without specifying <strong id="cce_bestpractice_00281_0__b863812014124">storageClassName</strong> in YAML files.<pre class="screen" id="cce_bestpractice_00281_0__screen22067304183">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: pvc-evs-example
-  namespace: default
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi</pre>
-</li></ul>
-</div>
-<div class="section" id="cce_bestpractice_00281_0__section11887112131418"><h4 class="sectiontitle">Storage Classes in CCE</h4><p id="cce_bestpractice_00281_0__p1633311831410">Run the following command to query the supported storage classes.</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen207891315121516"># kubectl get sc
-NAME                PROVISIONER                     AGE
-csi-disk            everest-csi-provisioner         17d          # Storage class for EVS disks
-csi-disk-topology   everest-csi-provisioner         17d          # Storage class for EVS disks with delayed association
-csi-nas             everest-csi-provisioner         17d          # Storage class for SFS file systems
-csi-obs             everest-csi-provisioner         17d          # Storage Class for OBS buckets
-csi-sfsturbo        everest-csi-provisioner         17d          # Storage class for SFS Turbo file systems</pre>
-<p id="cce_bestpractice_00281_0__p3417711182818">Check the details of <strong id="cce_bestpractice_00281_0__b08035920551">csi-disk</strong>. You can see that the type of the disk created by <strong id="cce_bestpractice_00281_0__b138145995512">csi-disk</strong> is SAS by default.</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen12583162812818"># kubectl get sc csi-disk -oyaml
-allowVolumeExpansion: true
-apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  creationTimestamp: "2021-03-17T02:10:32Z"
-  name: csi-disk
-  resourceVersion: "760"
-  selfLink: /apis/storage.k8s.io/v1/storageclasses/csi-disk
-  uid: 4db97b6c-853b-443d-b0dc-41cdcb8140f2
-parameters:
-  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
-  csi.storage.k8s.io/fstype: ext4
-  everest.io/disk-volume-type: SAS
-  everest.io/passthrough: "true"
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate</pre>
-</div>
-<div class="section" id="cce_bestpractice_00281_0__section179154267162"><h4 class="sectiontitle">Custom Storage Classes</h4><p id="cce_bestpractice_00281_0__p9601335151617">You can customize a high I/O storage class in a YAML file. For example, the name <strong id="cce_bestpractice_00281_0__b186185811594">csi-disk-sas</strong> indicates that the disk type is SAS (high I/O).</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen659210819391">apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  name: csi-disk-sas                          # Name of the high I/O storage class, which can be customized.
-parameters:
-  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
-  csi.storage.k8s.io/fstype: ext4
-  everest.io/disk-volume-type: SAS            # High I/O EVS disk type, which cannot be customized.
-  everest.io/passthrough: "true"
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate
-allowVolumeExpansion: true                    # <strong id="cce_bestpractice_00281_0__b148711949142017">true</strong> indicates that capacity expansion is allowed.</pre>
-<p id="cce_bestpractice_00281_0__p1281618138471">For an ultra-high I/O storage class, you can set the class name to <strong id="cce_bestpractice_00281_0__b722754812">csi-disk-ssd</strong> to create SSD EVS disk (ultra-high I/O).</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen199713432478">apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  name: csi-disk-ssd                       # Name of the ultra-high I/O storage class, which can be customized.
-parameters:
-  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
-  csi.storage.k8s.io/fstype: ext4
-  everest.io/disk-volume-type: SSD         # Ultra-high I/O EVS disk type, which cannot be customized.
-  everest.io/passthrough: "true"
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate
-allowVolumeExpansion: true</pre>
-<p id="cce_bestpractice_00281_0__p146067122106"><strong id="cce_bestpractice_00281_0__b69321846286">reclaimPolicy</strong>: indicates the recycling policies of the underlying cloud storage. The value can be <strong id="cce_bestpractice_00281_0__b9392322125012">Delete</strong> or <strong id="cce_bestpractice_00281_0__b91651126105014">Retain</strong>.</p>
-<ul id="cce_bestpractice_00281_0__ul42481619111116"><li id="cce_bestpractice_00281_0__li1624871911111"><strong id="cce_bestpractice_00281_0__b1313332805014">Delete</strong>: When a PVC is deleted, both the PV and the EVS disk are deleted.</li><li id="cce_bestpractice_00281_0__li9248141919118"><strong id="cce_bestpractice_00281_0__b26601433105212">Retain</strong>: When a PVC is deleted, the PV and underlying storage resources are not deleted. Instead, you must manually delete these resources. After that, the PV resource is in the <strong id="cce_bestpractice_00281_0__b1956334045518">Released</strong> state and cannot be bound to the PVC again.</li></ul>
-<div class="note" id="cce_bestpractice_00281_0__note8801953114018"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_00281_0__p178035314020">The reclamation policy set here has no impact on the SFS Turbo storage. Therefore, the yearly/monthly SFS Turbo resources will not be reclaimed when the cluster or PVC is deleted.</p>
-</div></div>
-<p id="cce_bestpractice_00281_0__p778102518503">If high data security is required, you are advised to select <strong id="cce_bestpractice_00281_0__b1478374995218">Retain</strong> to prevent data from being deleted by mistake.</p>
-<p id="cce_bestpractice_00281_0__p824713561207">After the definition is complete, run the <strong id="cce_bestpractice_00281_0__b14281158232">kubectl create</strong> commands to create storage resources.</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen164494218115"># kubectl create -f sas.yaml
-storageclass.storage.k8s.io/csi-disk-sas created
-# kubectl create -f ssd.yaml
-storageclass.storage.k8s.io/csi-disk-ssd created</pre>
-<p id="cce_bestpractice_00281_0__p1412183715488">Query the storage class again. Two more types of storage classes are displayed in the command output, as shown below.</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen13784148495"># kubectl get sc
-NAME                PROVISIONER                     AGE
-csi-disk            everest-csi-provisioner         17d
-csi-disk-sas        everest-csi-provisioner         2m28s
-csi-disk-ssd        everest-csi-provisioner         16s
-csi-disk-topology   everest-csi-provisioner         17d
-csi-nas             everest-csi-provisioner         17d
-csi-obs             everest-csi-provisioner         17d
-csi-sfsturbo        everest-csi-provisioner         17d</pre>
-<p id="cce_bestpractice_00281_0__p05291082227">Other types of storage resources can be defined in the similar way. You can use kubectl to obtain the YAML file and modify it as required.</p>
-<ul id="cce_bestpractice_00281_0__ul38311130152115"><li id="cce_bestpractice_00281_0__li18831113072113">File storage<pre class="screen" id="cce_bestpractice_00281_0__screen181646213295"># kubectl get sc csi-nas -oyaml
-kind: StorageClass
-apiVersion: storage.k8s.io/v1
-metadata:
-  name: csi-nas
-provisioner: everest-csi-provisioner
-parameters:
-  csi.storage.k8s.io/csi-driver-name: nas.csi.everest.io
-  csi.storage.k8s.io/fstype: nfs
-  everest.io/share-access-level: rw
-  everest.io/share-access-to: 5e3864c6-e78d-4d00-b6fd-de09d432c632   # ID of the VPC to which the cluster belongs
-  everest.io/share-is-public: 'false'
-  everest.io/zone: xxxxx          # AZ
-reclaimPolicy: Delete
-allowVolumeExpansion: true
-volumeBindingMode: Immediate</pre>
-</li><li id="cce_bestpractice_00281_0__li4390135712118">Object storage<pre class="screen" id="cce_bestpractice_00281_0__screen1745353552911"># kubectl get sc csi-obs -oyaml
-kind: StorageClass
-apiVersion: storage.k8s.io/v1
-metadata:
-  name: csi-obs
-provisioner: everest-csi-provisioner
-parameters:
-  csi.storage.k8s.io/csi-driver-name: obs.csi.everest.io
-  csi.storage.k8s.io/fstype: s3fs           # Object storage type. <strong id="cce_bestpractice_00281_0__b581916217422">s3fs</strong> indicates an object bucket, and <strong id="cce_bestpractice_00281_0__b19130111019424">obsfs</strong> indicates a parallel file system.
-  everest.io/obs-volume-type: STANDARD      # Storage class of the OBS bucket
-reclaimPolicy: Delete
-volumeBindingMode: Immediate</pre>
-</li></ul>
-</div>
-<div class="section" id="cce_bestpractice_00281_0__section13586291218"><h4 class="sectiontitle">Setting a Default Storage Class</h4><p id="cce_bestpractice_00281_0__p163571329132111">You can specify a storage class as the default class. In this way, if you do not specify <strong id="cce_bestpractice_00281_0__b133883591469">storageClassName</strong> when creating a PVC, the PVC is created using the default storage class.</p>
-<p id="cce_bestpractice_00281_0__p1435710291217">For example, to specify <strong id="cce_bestpractice_00281_0__b1964515812715">csi-disk-ssd</strong> as the default storage class, edit your YAML file as follows:</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen5357429172112">apiVersion: storage.k8s.io/v1
-kind: StorageClass
-metadata:
-  name: csi-disk-ssd
-  annotations:
-    storageclass.kubernetes.io/is-default-class: "true"   # Specifies the default storage class in a cluster. A cluster can have only one default storage class.
-parameters:
-  csi.storage.k8s.io/csi-driver-name: disk.csi.everest.io
-  csi.storage.k8s.io/fstype: ext4
-  everest.io/disk-volume-type: SSD
-  everest.io/passthrough: "true"
-provisioner: everest-csi-provisioner
-reclaimPolicy: Delete
-volumeBindingMode: Immediate
-allowVolumeExpansion: true</pre>
-<p id="cce_bestpractice_00281_0__p1135711298213">Delete the created csi-disk-ssd disk, run the <strong id="cce_bestpractice_00281_0__b152561717817">kubectl create</strong> command to create a csi-disk-ssd disk again, and then query the storage class. The following information is displayed.</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen135872982120"># kubectl delete sc csi-disk-ssd
-storageclass.storage.k8s.io "csi-disk-ssd" deleted
-# kubectl create -f ssd.yaml
-storageclass.storage.k8s.io/csi-disk-ssd created
-# kubectl get sc
-NAME                     PROVISIONER                     AGE
-csi-disk                 everest-csi-provisioner         17d
-csi-disk-sas             everest-csi-provisioner         114m
-csi-disk-ssd (default)   everest-csi-provisioner         9s
-csi-disk-topology        everest-csi-provisioner         17d
-csi-nas                  everest-csi-provisioner         17d
-csi-obs                  everest-csi-provisioner         17d
-csi-sfsturbo             everest-csi-provisioner         17d</pre>
-</div>
-<div class="section" id="cce_bestpractice_00281_0__section113669814307"><h4 class="sectiontitle">Verification</h4><ul id="cce_bestpractice_00281_0__ul326513332433"><li id="cce_bestpractice_00281_0__li1426593312439">Use <strong id="cce_bestpractice_00281_0__b72318715919">csi-disk-sas</strong> to create a PVC.<pre class="screen" id="cce_bestpractice_00281_0__screen164121655153014">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name:  sas-disk
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi
-  storageClassName: csi-disk-sas</pre>
-<p id="cce_bestpractice_00281_0__p1331523183215">Create a storage class and view its details. As shown below, the object can be created and the value of <strong id="cce_bestpractice_00281_0__b2841103141010">STORAGECLASS</strong> is <strong id="cce_bestpractice_00281_0__b1290115143103">csi-disk-sas</strong>.</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen3819181515400"># kubectl create -f sas-disk.yaml 
-persistentvolumeclaim/sas-disk created
-# kubectl get pvc
-NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
-sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   24s
-# kubectl get pv
-NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
-pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            30s</pre>
-<p id="cce_bestpractice_00281_0__p296654417436">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is high I/O.</p>
-<p id="cce_bestpractice_00281_0__p1365215405213"></p>
-</li><li id="cce_bestpractice_00281_0__li16722125154315">If <strong id="cce_bestpractice_00281_0__b53910164176">storageClassName</strong> is not specified, the default configuration is used, as shown below.<pre class="screen" id="cce_bestpractice_00281_0__screen623034510524">apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name:  ssd-disk
-spec:
-  accessModes:
-  - ReadWriteOnce
-  resources:
-    requests:
-      storage: 10Gi</pre>
-<p id="cce_bestpractice_00281_0__p14101131875619">Create and view the storage resource. You can see that the storage class of PVC ssd-disk is csi-disk-ssd, indicating that csi-disk-ssd is used by default.</p>
-<pre class="screen" id="cce_bestpractice_00281_0__screen133543256569"># kubectl create -f ssd-disk.yaml 
-persistentvolumeclaim/ssd-disk created
-# kubectl get pvc
-NAME       STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
-sas-disk   Bound    pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            csi-disk-sas   16m
-ssd-disk   Bound    pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            csi-disk-ssd   10s
-# kubectl get pv
-NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM                     STORAGECLASS   REASON   AGE
-pvc-4d2b059c-0d6c-44af-9994-f74d01c78731   10Gi       RWO            Delete           Bound       default/ssd-disk          csi-disk-ssd            15s
-pvc-6e2f37f9-7346-4419-82f7-b42e79f7964c   10Gi       RWO            Delete           Bound       default/sas-disk          csi-disk-sas            17m</pre>
-<p id="cce_bestpractice_00281_0__p14639104411583">View the PVC details on the CCE console. On the PV details page, you can see that the disk type is ultra-high I/O.</p>
-<p id="cce_bestpractice_00281_0__p76651917155918"></p>
-</li></ul>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0053.html">Storage</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_bestpractice_0050.html b/docs/cce/umn/cce_bestpractice_0050.html
index 60c3536d..123ced02 100644
--- a/docs/cce/umn/cce_bestpractice_0050.html
+++ b/docs/cce/umn/cce_bestpractice_0050.html
@@ -9,6 +9,8 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_00190.html">Adding a Second Data Disk to a Node in a CCE Cluster</a></strong><br>
 </li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_10012.html">Selecting a Data Disk for the Node</a></strong><br>
+</li>
 </ul>
 
 <div class="familylinks">
diff --git a/docs/cce/umn/cce_bestpractice_0053.html b/docs/cce/umn/cce_bestpractice_0053.html
index aed39b6d..4e38f74f 100644
--- a/docs/cce/umn/cce_bestpractice_0053.html
+++ b/docs/cce/umn/cce_bestpractice_0053.html
@@ -8,11 +8,11 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_00199.html">Mounting an Object Storage Bucket of a Third-Party Tenant</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_bestpractice_00253_0.html">Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00253.html">Dynamically Creating and Mounting Subdirectories of an SFS Turbo File System</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_0107.html">How Do I Change the Storage Class Used by a Cluster of v1.15 from FlexVolume to CSI Everest?</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_bestpractice_00281_0.html">Custom Storage Classes</a></strong><br>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00281.html">Custom Storage Classes</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_bestpractice_00284.html">Realizing Automatic Topology for EVS Disks When Nodes Are Deployed Across AZs (csi-disk-topology)</a></strong><br>
 </li>
diff --git a/docs/cce/umn/cce_bestpractice_0055.html b/docs/cce/umn/cce_bestpractice_0055.html
new file mode 100644
index 00000000..71fac532
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0055.html
@@ -0,0 +1,15 @@
+<a name="cce_bestpractice_0055"></a><a name="cce_bestpractice_0055"></a>
+
+<h1 class="topictitle1">Permission</h1>
+<div id="body1594731697312"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_00221.html">Configuring kubeconfig for Fine-Grained Management on Cluster Resources</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0107.html b/docs/cce/umn/cce_bestpractice_0107.html
index e3bbc32a..61766e7e 100644
--- a/docs/cce/umn/cce_bestpractice_0107.html
+++ b/docs/cce/umn/cce_bestpractice_0107.html
@@ -84,7 +84,7 @@ spec:
 </tr>
 <tr id="cce_bestpractice_0107__row153610571511"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.7.2.3.1.1 "><p id="cce_bestpractice_0107__p03614576517">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_bestpractice_0107__b25261158105018">csi-disk</strong> for EVS disks.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.7.2.3.1.2 "><p id="cce_bestpractice_0107__p1436557154">Name of the Kubernetes storage class associated with the storage volume. Set this field to <strong id="cce_bestpractice_0107__b178186575356">csi-disk</strong> for EVS disks.</p>
 </td>
 </tr>
 </tbody>
@@ -147,7 +147,7 @@ spec:
 </tr>
 <tr id="cce_bestpractice_0107__row5860143317914"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.12.2.3.1.1 "><p id="cce_bestpractice_0107__p178608331994">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b1398782915210">csi-nas</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.12.2.3.1.2 "><p id="cce_bestpractice_0107__p1786013338917">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b384216614366">csi-nas</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -221,7 +221,7 @@ spec:
 </tr>
 <tr id="cce_bestpractice_0107__row197641935171213"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.17.2.3.1.1 "><p id="cce_bestpractice_0107__p576413351125">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b184161337594">csi-obs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.17.2.3.1.2 "><p id="cce_bestpractice_0107__p576473510123">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b99771619123610">csi-obs</strong>.</p>
 </td>
 </tr>
 </tbody>
@@ -284,7 +284,7 @@ spec:
 </tr>
 <tr id="cce_bestpractice_0107__row12603415203"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.2.2.22.2.3.1.1 "><p id="cce_bestpractice_0107__p11879153915225">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b92392161313">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.2.2.22.2.3.1.2 "><p id="cce_bestpractice_0107__p19878539112216">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b057131163615">csi-sfsturbo</strong> for SFS Turbo volumes.</p>
 </td>
 </tr>
 </tbody>
@@ -359,7 +359,7 @@ spec:
 </tr>
 <tr id="cce_bestpractice_0107__row18815102892413"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.8.2.3.1.1 "><p id="cce_bestpractice_0107__p8310164517245">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b595416107185">csi-disk</strong> for EVS disks.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.8.2.3.1.2 "><p id="cce_bestpractice_0107__p1530854517246">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b1460943817368">csi-disk</strong> for EVS disks.</p>
 </td>
 </tr>
 </tbody>
@@ -472,7 +472,7 @@ spec:
 </tr>
 <tr id="cce_bestpractice_0107__row19543858172911"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p185431558192914">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b55964491456">csi-obs</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.18.2.3.1.2 "><p id="cce_bestpractice_0107__p12544958192916">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b1113154916369">csi-obs</strong>.</p>
 </td>
 </tr>
 <tr id="cce_bestpractice_0107__row1577494282811"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.18.2.3.1.1 "><p id="cce_bestpractice_0107__p169043554284">volumeName</p>
@@ -520,7 +520,7 @@ spec:
 </tr>
 <tr id="cce_bestpractice_0107__row10712132133110"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_bestpractice_0107__p193419653113">storageClassName</p>
 </td>
-<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_bestpractice_0107__p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b205679596525">csi-sfsturbo</strong>.</p>
+<td class="cellrowborder" valign="top" width="73.9%" headers="mcps1.3.4.2.3.2.23.2.3.1.2 "><p id="cce_bestpractice_0107__p593318613110">Name of the Kubernetes storage class. Set this field to <strong id="cce_bestpractice_0107__b18465105517360">csi-sfsturbo</strong>.</p>
 </td>
 </tr>
 <tr id="cce_bestpractice_0107__row97131621319"><td class="cellrowborder" valign="top" width="26.1%" headers="mcps1.3.4.2.3.2.23.2.3.1.1 "><p id="cce_bestpractice_0107__p11933106203116">storage</p>
@@ -563,7 +563,7 @@ spec:
 <div class="note" id="cce_bestpractice_0107__note1984317491325"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p884394916216">Replace the example file name <strong id="cce_bestpractice_0107__b63634327258">pvc-example.yaml</strong> in the preceding commands with the names of the YAML files configured in <a href="#cce_bestpractice_0107__li1219802032512">2</a> and <a href="#cce_bestpractice_0107__li1710710385418">3</a>.</p>
 </div></div>
 </li><li id="cce_bestpractice_0107__li416917424">Change the number of pods back to the original value and wait until the pods are running.</li></ol>
-<div class="note" id="cce_bestpractice_0107__note16369154924218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p193690499421">The dynamic allocation of storage for StatefulSets is achieved by using <strong id="cce_bestpractice_0107__b718174012716">volumeClaimTemplates</strong>. This field cannot be modified by Kubernetes. Therefore, data cannot be migrated by using a new PVC.</p>
+<div class="note" id="cce_bestpractice_0107__note16369154924218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_0107__p193690499421">The dynamic allocation of storage for StatefulSets is achieved by using <strong id="cce_bestpractice_0107__b18281421379">volumeClaimTemplates</strong>. This field cannot be modified by Kubernetes. Therefore, data cannot be migrated by using a new PVC.</p>
 <p id="cce_bestpractice_0107__p191911444124512">The PVC naming rule of the <strong id="cce_bestpractice_0107__b586438122911">volumeClaimTemplates</strong> is fixed. When a PVC that meets the naming rule exists, this PVC is used.</p>
 <p id="cce_bestpractice_0107__p226010117479">Therefore, disassociate the original PVC first, and then create a PVC with the same name in the CSI format.</p>
 </div></div>
diff --git a/docs/cce/umn/cce_bestpractice_0308.html b/docs/cce/umn/cce_bestpractice_0308.html
index d3b2be7f..e2c13f10 100644
--- a/docs/cce/umn/cce_bestpractice_0308.html
+++ b/docs/cce/umn/cce_bestpractice_0308.html
@@ -19,7 +19,7 @@
 </td>
 <td class="cellrowborder" valign="top" width="12.001200120012001%" headers="mcps1.3.3.2.5.1.2 "><p id="cce_bestpractice_0308__p35159461125"><strong id="cce_bestpractice_0308__b5390232995">*</strong>Cluster Type</p>
 </td>
-<td class="cellrowborder" valign="top" width="72.19721972197219%" headers="mcps1.3.3.2.5.1.3 "><ul id="cce_bestpractice_0308__ul149822281462"><li id="cce_bestpractice_0308__li49825285469"><strong id="cce_bestpractice_0308__b23176124910">CCE cluster</strong>: supports VM nodes. You can run your containers in a secure and stable container runtime environment based on a high-performance network model.</li><li id="cce_bestpractice_0308__li09822028114616"><strong id="cce_bestpractice_0308__b14415104315493">CCE Turbo cluster</strong>: runs on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, intelligent scheduling, and BMS nodes.</li></ul>
+<td class="cellrowborder" valign="top" width="72.19721972197219%" headers="mcps1.3.3.2.5.1.3 "><ul id="cce_bestpractice_0308__ul149822281462"><li id="cce_bestpractice_0308__li49825285469"><strong id="cce_bestpractice_0308__b23176124910">CCE cluster</strong>: supports VM nodes. You can run your containers in a secure and stable container runtime environment based on a high-performance network model.</li><li id="cce_bestpractice_0308__li09822028114616"><strong id="cce_bestpractice_0308__b14415104315493">CCE Turbo cluster</strong>: runs on a cloud native infrastructure that features software-hardware synergy to support passthrough networking, high security and reliability, and intelligent scheduling, and BMS nodes.</li></ul>
 </td>
 <td class="cellrowborder" valign="top" width="10.051005100510052%" headers="mcps1.3.3.2.5.1.4 "><p id="cce_bestpractice_0308__p1784219151395">CCE cluster</p>
 </td>
diff --git a/docs/cce/umn/cce_bestpractice_0310.html b/docs/cce/umn/cce_bestpractice_0310.html
index 6ed4b549..5e51485f 100644
--- a/docs/cce/umn/cce_bestpractice_0310.html
+++ b/docs/cce/umn/cce_bestpractice_0310.html
@@ -3,7 +3,7 @@
 <h1 class="topictitle1">Installing the Migration Tool</h1>
 <div id="body0000001172022292"><p id="cce_bestpractice_0310__p3809931112915">Velero is an open-source backup and migration tool for Kubernetes clusters. It integrates the persistent volume (PV) data backup capability of the Restic tool and can be used to back up Kubernetes resource objects (such as Deployments, jobs, Services, and ConfigMaps) in the source cluster. Data in the PV mounted to the pod is backed up and uploaded to the object storage. When a disaster occurs or migration is required, the target cluster can use Velero to obtain the corresponding backup data from OBS and restore cluster resources as required.</p>
 <p id="cce_bestpractice_0310__p1411654112223">According to <a href="cce_bestpractice_0307.html#cce_bestpractice_0307__section96147345128">Migration Solution</a>, you need to prepare temporary object storage to store backup files before the migration. Velero supports OSB or <strong id="cce_bestpractice_0310__b1312245414411"><a href="https://min.io/" target="_blank" rel="noopener noreferrer">MinIO</a></strong> as the object storage. OBS requires sufficient storage space for storing backup files. You can estimate the storage space based on your cluster scale and data volume. You are advised to use OBS for backup. For details about how to deploy Velero, see <a href="#cce_bestpractice_0310__section138392220432">Installing Velero</a>.</p>
-<div class="section" id="cce_bestpractice_0310__section359172610485"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_bestpractice_0310__ul6273183844819"><li id="cce_bestpractice_0310__li20273193884812">The Kubernetes version of the source on-premises cluster must be 1.10 or later, and the cluster can use DNS and Internet services properly.</li><li id="cce_bestpractice_0310__li155136174411">If you use OBS to store backup files, you need to obtain the AK/SK of a user who has the right to operate OBS. For details about how to obtain the AK/SK, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/ac/en-us_topic_0046606340.html" target="_blank" rel="noopener noreferrer">Access Keys</a>.</li><li id="cce_bestpractice_0310__li1891954012534">If you use MinIO to store backup files, bind an EIP to the server where MinIO is installed and enable the API and console port of MinIO in the security group.</li><li id="cce_bestpractice_0310__li134135186499">The target CCE cluster has been created.</li><li id="cce_bestpractice_0310__li559517319329">The source cluster and target cluster must each have at least one idle node. It is recommended that the node specifications be 4 vCPUs and 8 GB memory or higher.</li></ul>
+<div class="section" id="cce_bestpractice_0310__section359172610485"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_bestpractice_0310__ul6273183844819"><li id="cce_bestpractice_0310__li20273193884812">The Kubernetes version of the source on-premises cluster must be 1.10 or later, and the cluster can use DNS and Internet services properly.</li><li id="cce_bestpractice_0310__li155136174411">If you use OBS to store backup files, you need to obtain the AK/SK of a user who has the right to operate OBS. For details, see <a href="https://docs.otc.t-systems.com/en-us/api/obs/obs_04_0116.html" target="_blank" rel="noopener noreferrer">Obtaining Access Keys (AK/SK)</a>.</li><li id="cce_bestpractice_0310__li1891954012534">If you use MinIO to store backup files, bind an EIP to the server where MinIO is installed and enable the API and console port of MinIO in the security group.</li><li id="cce_bestpractice_0310__li134135186499">The target CCE cluster has been created.</li><li id="cce_bestpractice_0310__li559517319329">The source cluster and target cluster must each have at least one idle node. It is recommended that the node specifications be 4 vCPUs and 8 GB memory or higher.</li></ul>
 </div>
 <div class="section" id="cce_bestpractice_0310__section181263714271"><h4 class="sectiontitle">Installing MinIO</h4><p id="cce_bestpractice_0310__p6796542102519">MinIO is an open-source, high-performance object storage tool compatible with the S3 API protocol. If MinIO is used to store backup files for cluster migration, you need a temporary server to deploy MinIO and provide services for external systems. If you use OBS to store backup files, skip this section and go to <a href="#cce_bestpractice_0310__section138392220432">Installing Velero</a>.</p>
 <p id="cce_bestpractice_0310__p14624847191214">MinIO can be installed in any of the following locations:</p>
@@ -37,7 +37,7 @@ export MINIO_ROOT_PASSWORD=minio123</pre>
 </p></li><li id="cce_bestpractice_0310__li689617355117"><span>Install the Velero client.</span><p><pre class="screen" id="cce_bestpractice_0310__screen56461032153214">tar -xvf velero-v1.7.0-linux-amd64.tar.gz
 cp ./velero-v1.7.0-linux-amd64/velero /usr/local/bin</pre>
 </p></li><li id="cce_bestpractice_0310__li197871715322"><a name="cce_bestpractice_0310__li197871715322"></a><a name="li197871715322"></a><span>Create the access key file <strong id="cce_bestpractice_0310__b667315187332">credentials-velero</strong> for the backup object storage.</span><p><pre class="screen" id="cce_bestpractice_0310__screen349193683016">vim credentials-velero</pre>
-<div class="p" id="cce_bestpractice_0310__p829284510217">Replace the AK/SK in the file based on the site requirements. If OBS is used, obtain the AK/SK by referring to . If MinIO is used, the AK and SK are the username and password created in <a href="#cce_bestpractice_0310__li126129251432">2</a>.<pre class="screen" id="cce_bestpractice_0310__screen1785641615356">[default]
+<div class="p" id="cce_bestpractice_0310__p829284510217">Replace the AK/SK in the file based on the site requirements. If MinIO is used, the AK/SK are the username and password created in <a href="#cce_bestpractice_0310__li126129251432">2</a>.<pre class="screen" id="cce_bestpractice_0310__screen1785641615356">[default]
 aws_access_key_id = {AK}
 aws_secret_access_key = {SK}</pre>
 </div>
diff --git a/docs/cce/umn/cce_bestpractice_0312.html b/docs/cce/umn/cce_bestpractice_0312.html
index c5971c38..514835ab 100644
--- a/docs/cce/umn/cce_bestpractice_0312.html
+++ b/docs/cce/umn/cce_bestpractice_0312.html
@@ -7,9 +7,9 @@
 </p></li><li id="cce_bestpractice_0312__li1960315315492"><span>Run the following command to modify the workload and replace the <strong id="cce_bestpractice_0312__b0644124213411">image</strong> field in the YAML file with the image path:</span><p><pre class="screen" id="cce_bestpractice_0312__screen1160343174917">kubectl edit deploy wordpress</pre>
 </p></li><li id="cce_bestpractice_0312__li160363184919"><span>Check the running status of the workload.</span></li></ol>
 </div>
-<div class="section" id="cce_bestpractice_0312__section41282507482"><a name="cce_bestpractice_0312__section41282507482"></a><a name="section41282507482"></a><h4 class="sectiontitle">Updating Services</h4><p id="cce_bestpractice_0312__p1560383174913">After the cluster is migrated, the Service of the source cluster may fail to take effect. You can perform the following steps to update the Service. If ingresses are configured in the source cluster, you need to connect the new cluster to ELB again after the migration. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0252.html" target="_blank" rel="noopener noreferrer">Using kubectl to Create an ELB Ingress</a>.</p>
+<div class="section" id="cce_bestpractice_0312__section41282507482"><a name="cce_bestpractice_0312__section41282507482"></a><a name="section41282507482"></a><h4 class="sectiontitle">Updating Services</h4><p id="cce_bestpractice_0312__p1560383174913">After the cluster is migrated, the Service of the source cluster may fail to take effect. You can perform the following steps to update the Service. If ingresses are configured in the source cluster, you need to connect the new cluster to ELB again after the migration. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0252.html" target="_blank" rel="noopener noreferrer">Using kubectl to Create an ELB Ingress</a>.</p>
 <ol id="cce_bestpractice_0312__ol1960423184919"><li id="cce_bestpractice_0312__li1660418319490"><span>Connect to the cluster using kubectl.</span></li><li id="cce_bestpractice_0312__li5604636499"><span>Edit the YAML file of the corresponding Service to change the Service type and port number.</span><p><pre class="screen" id="cce_bestpractice_0312__screen66048315494">kubectl edit svc wordpress</pre>
-<div class="p" id="cce_bestpractice_0312__p1860411394913">To update load balancer resources, you need to connect to ELB again. Add the annotations by following the procedure described in <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0014.html" target="_blank" rel="noopener noreferrer">LoadBalancer</a>.<pre class="screen" id="cce_bestpractice_0312__screen106043304914">annotations: 
+<div class="p" id="cce_bestpractice_0312__p1860411394913">To update load balancer resources, you need to connect to ELB again. Add the following annotations. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0014.html" target="_blank" rel="noopener noreferrer">LoadBalancer</a>.<pre class="screen" id="cce_bestpractice_0312__screen106043304914">annotations: 
   kubernetes.io/elb.class: union # Shared load balancer
   kubernetes.io/elb.id: 9d06a39d-xxxx-xxxx-xxxx-c204397498a3    # Load balancer ID, which can be queried on the ELB console.
   kubernetes.io/elb.subnet-id: f86ba71c-xxxx-xxxx-xxxx-39c8a7d4bb36    # ID of the cluster where the subnet resides
diff --git a/docs/cce/umn/cce_bestpractice_0317.html b/docs/cce/umn/cce_bestpractice_0317.html
index 80c9b6ac..76eb1ea0 100644
--- a/docs/cce/umn/cce_bestpractice_0317.html
+++ b/docs/cce/umn/cce_bestpractice_0317.html
@@ -7,13 +7,13 @@
 </div>
 <div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section188477111536"><h4 class="sectiontitle">Disabling the Automatic Token Mounting Function of the Default Service Account</h4><p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p186241431173414">By default, Kubernetes associates the default service account with every pod. That is, the token is mounted to a container. The container can use this token to pass the authentication by the kube-apiserver and kubelet components. In a cluster with RBAC disabled, the service account who owns the token has the control permissions for the entire cluster. In a cluster with RBAC enabled, the permissions of the service account who owns the token depends on the roles associated by the administrator. The service account's token is generally used by workloads that need to access kube-apiserver, such as coredns, autoscaler, and prometheus. For workloads that do not need to access kube-apiserver, you are advised to disable the automatic association between the service account and token.</p>
 <p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p9625163114348">Two methods are available:</p>
-<ul id="cce_bestpractice_0317__en-us_topic_0000001226756283_ul1695212371341"><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li18952103743417">Method 1: Set the <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b2131255175913">automountServiceAccountToken</strong> field of the service account to <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b41311855175910">false</strong>. After the configuration is complete, newly created workloads will not be associated with the default service account by default. Set this field for each namespace as required.<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen169251958163416">apiVersion: v1 
+<ul id="cce_bestpractice_0317__en-us_topic_0000001226756283_ul1695212371341"><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li18952103743417">Method 1: Set the <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b9857194511518">automountServiceAccountToken</strong> field of the service account to <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b5857184518511">false</strong>. After the configuration is complete, newly created workloads will not be associated with the default service account by default. Set this field for each namespace as required.<pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen169251958163416">apiVersion: v1 
 kind: ServiceAccount 
 metadata: 
   name: default 
 automountServiceAccountToken: false 
 ...</pre>
-<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p169601538341">When a workload needs to be associated with a service account, explicitly set the <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b11601125515019">automountServiceAccountToken</strong> field to <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b76011655803">true</strong> in the YAML file of the workload.</p>
+<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p169601538341">When a workload needs to be associated with a service account, explicitly set the <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b1368885018512">automountServiceAccountToken</strong> field to <strong id="cce_bestpractice_0317__en-us_topic_0000001226756283_b168995018515">true</strong> in the YAML file of the workload.</p>
 <pre class="screen" id="cce_bestpractice_0317__en-us_topic_0000001226756283_screen295517306350">... 
  spec: 
    template: 
@@ -78,7 +78,7 @@ spec:
 </li></ul>
 </div>
 <div class="section" id="cce_bestpractice_0317__en-us_topic_0000001226756283_section13967110185719"><h4 class="sectiontitle">Configuring Network Isolation in a Cluster</h4><ul id="cce_bestpractice_0317__en-us_topic_0000001226756283_ul1786982355710"><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li14869123125713">Container tunnel network<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p923219216146"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li14869123125713"></a><a name="en-us_topic_0000001226756283_li14869123125713"></a>If networks need to be isolated between namespaces in a cluster or between workloads in the same namespace, you can configure network policies to isolate the networks. </p>
-</li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li17869142335714">Cloud Native Network 2.0<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p1691384325712"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li17869142335714"></a><a name="en-us_topic_0000001226756283_li17869142335714"></a>In the Cloud Native Network 2.0 model, you can configure security groups to isolate networks between pods. For details, see <a href="https://support.huaweicloud.com/en-us/usermanual-cce/cce_01_0288.html" target="_blank" rel="noopener noreferrer">SecurityGroups</a>.</p>
+</li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li17869142335714">Cloud Native Network 2.0<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p1691384325712"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li17869142335714"></a><a name="en-us_topic_0000001226756283_li17869142335714"></a>In the Cloud Native Network 2.0 model, you can configure security groups to isolate networks between pods. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_10_0288.html" target="_blank" rel="noopener noreferrer">SecurityGroup</a>.</p>
 </li><li id="cce_bestpractice_0317__en-us_topic_0000001226756283_li17895010563">VPC network<p id="cce_bestpractice_0317__en-us_topic_0000001226756283_p811841416567"><a name="cce_bestpractice_0317__en-us_topic_0000001226756283_li17895010563"></a><a name="en-us_topic_0000001226756283_li17895010563"></a>Network isolation is not supported.</p>
 </li></ul>
 </div>
diff --git a/docs/cce/umn/cce_bestpractice_0319.html b/docs/cce/umn/cce_bestpractice_0319.html
index 19ae5aa3..5d3b4d9b 100644
--- a/docs/cce/umn/cce_bestpractice_0319.html
+++ b/docs/cce/umn/cce_bestpractice_0319.html
@@ -68,7 +68,7 @@ spec:
 </p></li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li19454135821910"><span>Log in to each node in the CCE cluster as user <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b16397169201316">root</strong> and run the following command:</span><p><ul id="cce_bestpractice_0319__en-us_topic_0000001181182498_ul2206102094315"><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li11206820114310">VPC network:<pre class="screen" id="cce_bestpractice_0319__en-us_topic_0000001181182498_screen1826691752418">iptables -I OUTPUT -s {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i17492042294">container_cidr</em>} -d {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i349212421792">Private API server IP</em>} -j REJECT</pre>
 </li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li82061820194315">Container tunnel network:<pre class="screen" id="cce_bestpractice_0319__en-us_topic_0000001181182498_screen1857421916242">iptables -I FORWARD -s {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i134061451191213">container_cidr</em>} -d {<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i124061510122">Private API server IP</em>} -j REJECT</pre>
 </li></ul>
-<p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p8208153174219"><em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i1192051918131">{container_cidr}</em> indicates the container network of the cluster, for example, 10.0.0.0/16, and <em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i8487827101313">{master_ip}</em> indicates the IP address of the master node.</p>
+<p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p8208153174219"><em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i15254153715117">{container_cidr}</em> indicates the container CIDR of the cluster, for example, 10.0.0.0/16.</p>
 <p id="cce_bestpractice_0319__en-us_topic_0000001181182498_p5208185310428">To ensure configuration persistence, you are advised to write the command to the <strong id="cce_bestpractice_0319__en-us_topic_0000001181182498_b0858451111319">/etc/rc.local</strong> script.</p>
 </p></li><li id="cce_bestpractice_0319__en-us_topic_0000001181182498_li8454105818194"><span>Run the following command in the container to access kube-apiserver and check whether the request is intercepted:</span><p><pre class="screen" id="cce_bestpractice_0319__en-us_topic_0000001181182498_screen198782045205215">curl -k https://{<em id="cce_bestpractice_0319__en-us_topic_0000001181182498_i0393123151412">Private API server IP</em>}:5443</pre>
 </p></li></ol>
diff --git a/docs/cce/umn/cce_bestpractice_0321.html b/docs/cce/umn/cce_bestpractice_0321.html
new file mode 100644
index 00000000..737858fe
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0321.html
@@ -0,0 +1,19 @@
+<a name="cce_bestpractice_0321"></a><a name="cce_bestpractice_0321"></a>
+
+
+  <h1 class="topictitle1">Containerization</h1>
+
+  <div id="body0000001238374944"><p id="cce_bestpractice_0321__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0001.html">Containerizing an Enterprise Application (ERP)</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_0324.html b/docs/cce/umn/cce_bestpractice_0324.html
index 2bbfa67a..ab18d269 100644
--- a/docs/cce/umn/cce_bestpractice_0324.html
+++ b/docs/cce/umn/cce_bestpractice_0324.html
@@ -54,7 +54,7 @@ stages:
   - package  
   - build
   - deploy
-# If no image is specified in each stage, the default image <strong id="cce_bestpractice_0324__b1284348989">docker:latest</strong> is used.
+# If no image is specified in each stage, the default image <strong id="cce_bestpractice_0324__b1292024838">docker:latest</strong> is used.
 image: docker:latest
 # In the package stage, only printing is performed.
 package:
@@ -86,6 +86,8 @@ deploy:
   stage: deploy
   script:
     # Configure the kubeconfig file.
+    - mkdir -p $HOME/.kube
+    - export KUBECONFIG=$HOME/.kube/config
     - echo $kube_config |base64 -d &gt; $KUBECONFIG
     # Replace the image in the <strong id="cce_bestpractice_0324__b12796161463513">k8s.yaml</strong> file.
     - sed -i "s/&lt;IMAGE_NAME&gt;/swr.eu-de.otc.t-systems.com\/k8s-dev\/nginx:$CI_PIPELINE_ID/g" k8s.yaml
@@ -100,6 +102,27 @@ deploy:
 Hello Gitlab!</pre>
 <p id="cce_bestpractice_0324__p1044314811417">If the preceding information is displayed, the deployment is correct.</p>
 </div>
+<div class="section" id="cce_bestpractice_0324__section551818510449"><h4 class="sectiontitle">FAQs</h4><p id="cce_bestpractice_0324__p1235014184413">If the following problems occur during the deployment:</p>
+<p id="cce_bestpractice_0324__p1285121534410"><span><img id="cce_bestpractice_0324__image936271619446" src="en-us_image_0000001520115845.png"></span></p>
+<p id="cce_bestpractice_0324__p16611155514325">or</p>
+<p id="cce_bestpractice_0324__p3444132110308"><span><img id="cce_bestpractice_0324__image740316491325" src="en-us_image_0000001520396937.png"></span></p>
+<p id="cce_bestpractice_0324__p21152032144812">Check whether the following commands are missing in the <strong id="cce_bestpractice_0324__b2331054194816">.gitlab-ci.yml</strong> file. If yes, add them to the <strong id="cce_bestpractice_0324__b7945116153614">.gitlab-ci.yml</strong> file.</p>
+<pre class="screen" id="cce_bestpractice_0324__screen1976184105012">...
+deploy:
+  # Use the kubectl image.
+  image: 
+    name: bitnami/kubectl:latest
+    entrypoint: [""]
+  stage: deploy
+  script:
+    # Configure the kubeconfig file.
+<strong id="cce_bestpractice_0324__b2947195417281">    - mkdir -p $HOME/.kube</strong>
+<strong id="cce_bestpractice_0324__b294813542285">    - export KUBECONFIG=$HOME/.kube/config</strong>
+    - echo $kube_config |base64 -d &gt; $KUBECONFIG
+    # Replace the image in the <strong id="cce_bestpractice_0324__b6540173213271">k8s.yaml</strong> file.
+...</pre>
+<p id="cce_bestpractice_0324__p1506952154818"></p>
+</div>
 </div>
 <div>
 <div class="familylinks">
diff --git a/docs/cce/umn/cce_bestpractice_0325.html b/docs/cce/umn/cce_bestpractice_0325.html
index 506ca265..7dbfe27c 100644
--- a/docs/cce/umn/cce_bestpractice_0325.html
+++ b/docs/cce/umn/cce_bestpractice_0325.html
@@ -4,10 +4,13 @@
 <div id="body0000001283292257"><div class="section" id="cce_bestpractice_0325__section14618738113"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_0325__p1338285915416">Linux allows you to create a core dump file if an application crashes, which contains the data the application had in memory at the time of the crash. You can analyze the file to locate the fault.</p>
 <p id="cce_bestpractice_0325__p1038218591147">Generally, when a service application crashes, its container exits and is reclaimed and destroyed. Therefore, container core files need to be permanently stored on the host or cloud storage. This topic describes how to configure container core dumps.</p>
 </div>
+<div class="section" id="cce_bestpractice_0325__section196512021516"><h4 class="sectiontitle">Notes and Constraints</h4><p id="cce_bestpractice_0325__p18281275525">When a container core dump is persistently stored to OBS (parallel file system or object bucket), the default mount option <strong id="cce_bestpractice_0325__b240585683312">umask=0</strong> is used. As a result, although the core dump file is generated, the core dump information cannot be written to the core file. </p>
+</div>
 <div class="section" id="cce_bestpractice_0325__section9971753171912"><h4 class="sectiontitle">Enabling Core Dump on a Node</h4><p id="cce_bestpractice_0325__p1734196152018">Log in to the node, run the following command to enable core dump, and set the path and format for storing core files:</p>
 <p id="cce_bestpractice_0325__p194919126270"><strong id="cce_bestpractice_0325__b38136022917">echo "/tmp/cores/core.%h.%e.%p.%t" &gt; /proc/sys/kernel/core_pattern</strong></p>
-<p id="cce_bestpractice_0325__p39805477280">Parameters:</p>
+<p id="cce_bestpractice_0325__p39805477280"><strong id="cce_bestpractice_0325__b1761044616397">%h</strong>,<strong id="cce_bestpractice_0325__b3783124873913"> %e</strong>, <strong id="cce_bestpractice_0325__b10270135533910">%p</strong>, and <strong id="cce_bestpractice_0325__b13763165733915">%t</strong> are placeholders, which are described as follows:</p>
 <ul id="cce_bestpractice_0325__ul1011719502913"><li id="cce_bestpractice_0325__li611713513296"><strong id="cce_bestpractice_0325__b11644105318327">%h</strong>: host name (or pod name). You are advised to configure this parameter.</li><li id="cce_bestpractice_0325__li811710516296"><strong id="cce_bestpractice_0325__b208401216103315">%e</strong>: program file name. You are advised to configure this parameter.</li><li id="cce_bestpractice_0325__li71171451292"><strong id="cce_bestpractice_0325__b1482684833315">%p</strong>: (optional) process ID.</li><li id="cce_bestpractice_0325__li161177552917"><strong id="cce_bestpractice_0325__b1025135103416">%t</strong>: (optional) time of the core dump.</li></ul>
+<p id="cce_bestpractice_0325__p6502183118110">After the core dump function is enabled by running the preceding command, the generated core file is named in the format of <strong id="cce_bestpractice_0325__b91231447174213">core.{</strong><strong id="cce_bestpractice_0325__b20123184724212"><em id="cce_bestpractice_0325__i17351102620421">Host name</em></strong><strong id="cce_bestpractice_0325__b131231747114216">}.{</strong><strong id="cce_bestpractice_0325__b8123847164214"><em id="cce_bestpractice_0325__i73141930174219">Program file name</em></strong><strong id="cce_bestpractice_0325__b612394716425">}.{</strong><strong id="cce_bestpractice_0325__b212334719424"><em id="cce_bestpractice_0325__i12561163615422">Process ID</em></strong><strong id="cce_bestpractice_0325__b1412324719429">}.{</strong><strong id="cce_bestpractice_0325__b012324784216"><em id="cce_bestpractice_0325__i18782193954211">Time</em></strong><strong id="cce_bestpractice_0325__b18123447174218">}</strong>.</p>
 <p id="cce_bestpractice_0325__p2260244162911">You can also configure a pre-installation or post-installation script to automatically run this command when creating a node.</p>
 </div>
 <div class="section" id="cce_bestpractice_0325__section1648563614590"><h4 class="sectiontitle">Permanently Storing Core Dumps</h4><div class="p" id="cce_bestpractice_0325__p5974185015920">A core file can be stored in your host (using a hostPath volume) or cloud storage (using a PVC). The following is an example YAML file for using a hostPath volume.<pre class="screen" id="cce_bestpractice_0325__screen18924185211372">apiVersion: v1
diff --git a/docs/cce/umn/cce_bestpractice_0340.html b/docs/cce/umn/cce_bestpractice_0340.html
new file mode 100644
index 00000000..bf0eca10
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_0340.html
@@ -0,0 +1,33 @@
+<a name="cce_bestpractice_0340"></a><a name="cce_bestpractice_0340"></a>
+
+
+  <h1 class="topictitle1">Procedure</h1>
+
+  <div id="body0000001288863172"><p id="cce_bestpractice_0340__p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0003.html">Containerizing an Entire Application</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0004.html">Containerization Process</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0005.html">Analyzing the Application</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0006.html">Preparing the Application Runtime</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0007.html">Compiling a Startup Script</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0008.html">Compiling the Dockerfile</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0009.html">Building and Uploading an Image</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_0010.html">Creating a Container Workload</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0001.html">Containerizing an Enterprise Application (ERP)</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_10000.html b/docs/cce/umn/cce_bestpractice_10000.html
new file mode 100644
index 00000000..1d7f2a2f
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_10000.html
@@ -0,0 +1,17 @@
+<a name="cce_bestpractice_10000"></a><a name="cce_bestpractice_10000"></a>
+
+<h1 class="topictitle1">Release</h1>
+<div id="body0000001168996054"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_10001.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_bestpractice_10002.html">Using Services to Implement Simple Grayscale Release and Blue-Green Deployment</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_10001.html b/docs/cce/umn/cce_bestpractice_10001.html
new file mode 100644
index 00000000..e8a94203
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_10001.html
@@ -0,0 +1,21 @@
+<a name="cce_bestpractice_10001"></a><a name="cce_bestpractice_10001"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body0000001169474540"><div class="section" id="cce_bestpractice_10001__section144281731123314"><h4 class="sectiontitle">Challenges</h4><p id="cce_bestpractice_10001__p20997182564919">When switching between old and new services, you may be challenged in ensuring the system service continuity. If a new service version is directly released to all users at a time, it can be risky because once an online accident or bug occurs, the impact on users is great. It could take a long time to fix the issue. Sometimes, the version has to be rolled back, which severely affects user experience.</p>
+</div>
+<div class="section" id="cce_bestpractice_10001__section21456422006"><h4 class="sectiontitle">Solutions</h4><p id="cce_bestpractice_10001__p7666183218338">Several release policies are developed for service upgrade: grayscale release, blue-green deployment, A/B testing, rolling upgrade, and batch suspension of release. Traffic loss or service unavailability caused by releases can be avoided as much as possible.</p>
+<p id="cce_bestpractice_10001__p149931132203310">This document describes the principles and practices of grayscale release and blue-green deployment.</p>
+<ul id="cce_bestpractice_10001__ul18763133093812"><li id="cce_bestpractice_10001__li1763143053816">Grayscale release, also called canary release, is a smooth iteration mode for version upgrade. During the upgrade, some users use the new version, while other users continue to use the old version. After the new version is stable and ready, it gradually takes over all the live traffic. In this way, service risks brought by the release of the new version can be minimized, the impact of faults can be reduced, and quick rollback is supported.<p id="cce_bestpractice_10001__p9393194334619"><a name="cce_bestpractice_10001__li1763143053816"></a><a name="li1763143053816"></a>The following figure shows the general process of grayscale release. First, divide 20% of all service traffic to the new version. If the service version runs normally, gradually increase the traffic proportion and continue to test the performance of the new version. If the new version is stable, switch all traffic to it and bring the old version offline.</p>
+<p id="cce_bestpractice_10001__p539611418463"><span><img id="cce_bestpractice_10001__image739612454612" src="en-us_image_0000001214475863.gif"></span></p>
+<p id="cce_bestpractice_10001__p109833463464">If an exception occurs in the new version when 20% of the traffic goes to the new version, you can quickly switch back to the old version.</p>
+<p id="cce_bestpractice_10001__p28541625134618"><span><img id="cce_bestpractice_10001__image485472544617" src="en-us_image_0000001214717329.gif"></span></p>
+</li><li id="cce_bestpractice_10001__li13488131417517">Blue-green deployment provides a zero-downtime, predictable manner for releasing applications to reduce service interruption during the release. A new version is deployed while the old version is retained. The two versions are online at the same time. The new and old versions work in hot backup mode. The route weight is switched (0 or 100) to enable different versions to go online or offline. If a problem occurs, the version can be quickly rolled back.<p id="cce_bestpractice_10001__p168119471375"><a name="cce_bestpractice_10001__li13488131417517"></a><a name="li13488131417517"></a><span><img id="cce_bestpractice_10001__image1381174719371" src="en-us_image_0000001169315996.gif"></span></p>
+</li></ul>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_10000.html">Release</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_10002.html b/docs/cce/umn/cce_bestpractice_10002.html
new file mode 100644
index 00000000..6820913f
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_10002.html
@@ -0,0 +1,177 @@
+<a name="cce_bestpractice_10002"></a><a name="cce_bestpractice_10002"></a>
+
+<h1 class="topictitle1">Using Services to Implement Simple Grayscale Release and Blue-Green Deployment</h1>
+<div id="body0000001214715927"><p id="cce_bestpractice_10002__p134945762919">To implement grayscale release for a CCE cluster, you need to deploy other open-source tools, such as Nginx Ingress, to the cluster or deploy services to a service mesh. These solutions are difficult to implement. If your grayscale release requirements are simple and you do not want to introduce too many plug-ins or complex configurations, you can refer to this section to implement simple grayscale release and blue-green deployment based on native Kubernetes features.</p>
+<div class="section" id="cce_bestpractice_10002__section83181748204815"><h4 class="sectiontitle">Principles</h4><p id="cce_bestpractice_10002__p9721204914488">Users usually use Kubernetes objects such as Deployments and StatefulSets to deploy services. Each workload manages a group of pods. The following figure uses Deployment as an example.</p>
+<p id="cce_bestpractice_10002__p83034205119"><span><img id="cce_bestpractice_10002__image1430312011113" src="en-us_image_0000001169475948.png"></span></p>
+<p id="cce_bestpractice_10002__p99543095117">Generally, a Service is created for each workload. The Service uses the selector to match the backend pod. Other Services or objects outside the cluster can access the pods backing the Service. If a pod needs to be exposed, set the Service type to LoadBalancer. The ELB load balancer functions as the traffic entrance.</p>
+<ul id="cce_bestpractice_10002__ul496444661313"><li id="cce_bestpractice_10002__li10964164631319"><strong id="cce_bestpractice_10002__b798201619015">Grayscale release principles</strong><p id="cce_bestpractice_10002__p1937157151310">Take a Deployment as an example. A Service, in most cases, will be created for each Deployment. However, Kubernetes does not require that Services and Deployments correspond to each other. A Service uses a selector to match backend pods. If pods of different Deployments are selected by the same selector, a Service corresponds to multiple versions of Deployments. You can adjust the number of replicas of Deployments of different versions to adjust the weights of services of different versions to achieve grayscale release. The following figure shows the process:</p>
+<p id="cce_bestpractice_10002__p16985419414"><span><img id="cce_bestpractice_10002__image136935424112" src="en-us_image_0000001168997466.png"></span></p>
+</li><li id="cce_bestpractice_10002__li7237164816139"><strong id="cce_bestpractice_10002__b138751414299">Blue-green deployment principles</strong><p id="cce_bestpractice_10002__p890755681315">Take a Deployment as an example. Two Deployments of different versions have been deployed in the cluster, and their pods are labeled with the same key but different values to distinguish versions. A Service uses the selector to select the pod of a Deployment of a version. In this case, you can change the value of the label that determines the version in the Service selector to change the pod backing the Service. In this way, you can directly switch the service traffic from one version to another. The following figure shows the process:</p>
+<p id="cce_bestpractice_10002__p15687143993520"><span><img id="cce_bestpractice_10002__image368773913510" src="en-us_image_0000001214635805.png"></span></p>
+</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_10002__section17736476474"><h4 class="sectiontitle">Prerequisites</h4><p id="cce_bestpractice_10002__p10789251104217">The Nginx image has been uploaded to SWR. The Nginx images have two versions: v1 and v2. The welcome pages are <strong id="cce_bestpractice_10002__b246092220173">Nginx-v1</strong> and <strong id="cce_bestpractice_10002__b64421260176">Nginx-v2</strong>.</p>
+</div>
+<div class="section" id="cce_bestpractice_10002__section5306945183515"><h4 class="sectiontitle">Resource Creation</h4><p id="cce_bestpractice_10002__p929922183219">You can use YAML to deploy Deployments and Services in either of the following ways:</p>
+<ul id="cce_bestpractice_10002__ul130263943212"><li id="cce_bestpractice_10002__li15359104173218">On the <strong id="cce_bestpractice_10002__b13266145019173">Create Deployment</strong> page, click <strong id="cce_bestpractice_10002__b689918543179">Create YAML</strong> on the right and edit the YAML file in the window.</li><li id="cce_bestpractice_10002__li730203933212">Save the sample YAML file in this section as a file and use kubectl to specify the YAML file. For example, run the <strong id="cce_bestpractice_10002__b484014972314">kubectl create -f xxx.yaml</strong> command.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_10002__section1111011567298"><h4 class="sectiontitle">Step 1: Deploy Services of Two Versions</h4><p id="cce_bestpractice_10002__p15357640174610">Two versions of Nginx services are deployed in the cluster to provide external access through ELB.</p>
+<ol id="cce_bestpractice_10002__ol026510278444"><li id="cce_bestpractice_10002__li182659278445"><span>Create a Deployment of the first version. The following uses nginx-v1 as an example. Example YAML:</span><p><pre class="screen" id="cce_bestpractice_10002__screen1238910449211">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-v1
+spec:
+  replicas: 2               # Number of replicas of the Deployment, that is, the number of pods
+  selector:                 # Label selector
+    matchLabels:
+      app: nginx
+      version: v1
+  template:
+    metadata:
+      labels:               # Pod label
+        app: nginx
+        version: v1
+    spec:
+      containers:
+      - image: {your_repository}/nginx:v1 # The image used by the container is nginx:v1.
+        name: container-0
+        resources:
+          limits:
+            cpu: 100m
+            memory: 200Mi
+          requests:
+            cpu: 100m
+            memory: 200Mi
+      imagePullSecrets:
+      - name: default-secret</pre>
+</p></li><li id="cce_bestpractice_10002__li16787948005"><span>Create a Deployment of the second version. The following uses nginx-v2 as an example. Example YAML:</span><p><pre class="screen" id="cce_bestpractice_10002__screen1778794817016">apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-v2
+spec:
+  replicas: 2               # Number of replicas of the Deployment, that is, the number of pods
+  selector:                 # Label selector
+    matchLabels:
+      app: nginx
+      version: v2
+  template:
+    metadata:
+      labels:               # Pod label
+        app: nginx
+        version: v2
+    spec:
+      containers:
+      - image: {your_repository}/nginx:v2   # The image used by the container is nginx:v2.
+        name: container-0
+        resources:
+          limits:
+            cpu: 100m
+            memory: 200Mi
+          requests:
+            cpu: 100m
+            memory: 200Mi
+      imagePullSecrets:
+      - name: default-secret</pre>
+<p id="cce_bestpractice_10002__p578719484016">You can log in to the CCE console to view the deployment status.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_10002__section911135614291"><h4 class="sectiontitle">Step 2: Implement Grayscale Release</h4><ol id="cce_bestpractice_10002__ol21285238187"><li id="cce_bestpractice_10002__li0128122361820"><span>Create a LoadBalancer Service for the Deployment. Do not specify the version in the selector. Enable the Service to select the pods of the Deployments of two versions. Example YAML:</span><p><pre class="screen" id="cce_bestpractice_10002__screen131282232184">apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    kubernetes.io/elb.id: 586c97da-a47c-467c-a615-bd25a20de39c    # ID of the ELB load balancer. Replace it with the actual value.
+  name: nginx
+spec: 
+  ports:
+  - name: service0
+    port: 80
+    protocol: TCP
+    targetPort: 80
+  selector:             # The selector does not contain version information.
+    app: nginx
+   type: LoadBalancer   # Service type (LoadBalancer)</pre>
+</p></li><li id="cce_bestpractice_10002__li13128423151810"><span>Run the following command to test the access:</span><p><p id="cce_bestpractice_10002__p1912852331818"><strong id="cce_bestpractice_10002__b171281323131811">for i in {1..10}; do curl </strong>&lt;EXTERNAL_IP&gt;<strong id="cce_bestpractice_10002__b0128122319184">; done;</strong></p>
+<p id="cce_bestpractice_10002__p13128172331813">&lt;EXTERNAL_IP&gt; indicates the IP address of the ELB load balancer.</p>
+<p id="cce_bestpractice_10002__p19128123101819">The command output is as follows. Half of the responses are from the Deployment of version v1, and the other half are from version v2.</p>
+<pre class="screen" id="cce_bestpractice_10002__screen1512892391811">Nginx-v2
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v2
+Nginx-v1
+Nginx-v2
+Nginx-v1
+Nginx-v2
+Nginx-v2</pre>
+</p></li><li id="cce_bestpractice_10002__li01281123141812"><span>Use the console or kubectl to adjust the number of replicas of the Deployments. Change the number of replicas to 4 for v1 and 1 for v2.</span><p><p id="cce_bestpractice_10002__p19907820174510"><strong id="cce_bestpractice_10002__b6516182514518">kubectl scale deployment/nginx-v1 --replicas=4</strong></p>
+<p id="cce_bestpractice_10002__p8907102015457"><strong id="cce_bestpractice_10002__b451718252455">kubectl scale deployment/nginx-v2 --replicas=1</strong></p>
+</p></li><li id="cce_bestpractice_10002__li312962311816"><span>Run the following command to test the access again:</span><p><p id="cce_bestpractice_10002__p21292023171818"><strong id="cce_bestpractice_10002__b012916232180">for i in {1..10}; do curl </strong>&lt;EXTERNAL_IP&gt;<strong id="cce_bestpractice_10002__b18129623201813">; done;</strong></p>
+<p id="cce_bestpractice_10002__p11293231188">&lt;EXTERNAL_IP&gt; indicates the IP address of the ELB load balancer.</p>
+<p id="cce_bestpractice_10002__p121291823201813">In the command output, among the 10 access requests, only two responses are from the v2 version. The response ratio of the v1 and v2 versions is the same as the ratio of the number of replicas of the v1 and v2 versions, that is, 4:1. Grayscale release is implemented by controlling the number of replicas of services of different versions.</p>
+<pre class="screen" id="cce_bestpractice_10002__screen812914236187">Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v2
+Nginx-v1
+Nginx-v2
+Nginx-v1
+Nginx-v1
+Nginx-v1</pre>
+<div class="note" id="cce_bestpractice_10002__note263143615510"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_10002__p1563936105116">If the ratio of v1 to v2 is not 4:1, you can set the number of access times to a larger value, for example, 20. Theoretically, the more the times, the closer the response ratio between v1 and v2 is to 4:1.</p>
+</div></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_bestpractice_10002__section61141756112911"><h4 class="sectiontitle">Step 3: Implement Blue-Green Deployment</h4><ol id="cce_bestpractice_10002__ol143411558191711"><li id="cce_bestpractice_10002__li53411358111717"><span>Create a LoadBalancer Service for a deployed Deployment and specify that the v1 version is used. Example YAML:</span><p><pre class="screen" id="cce_bestpractice_10002__screen1980404861810">apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    kubernetes.io/elb.id: 586c97da-a47c-467c-a615-bd25a20de39c    # ID of the ELB load balancer. Replace it with the actual value.
+  name: nginx
+spec:
+  ports:
+  - name: service0
+    port: 80
+    protocol: TCP
+    targetPort: 80
+  selector:             # Set the version to v1 in the selector.
+    app: nginx
+    version: v1
+  type: LoadBalancer    # Service type (LoadBalancer)</pre>
+</p></li><li id="cce_bestpractice_10002__li14997203617186"><span>Run the following command to test the access:</span><p><p id="cce_bestpractice_10002__p1359215919219"><strong id="cce_bestpractice_10002__b108271505312">for i in {1..10}; do curl </strong>&lt;EXTERNAL_IP&gt;<strong id="cce_bestpractice_10002__b2013195413314">; done;</strong></p>
+<p id="cce_bestpractice_10002__p199536461433">&lt;EXTERNAL_IP&gt; indicates the IP address of the ELB load balancer.</p>
+<p id="cce_bestpractice_10002__p6605171942">The command output is as follows (all responses are from the v1 version):</p>
+<pre class="screen" id="cce_bestpractice_10002__screen265211111250">Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1
+Nginx-v1</pre>
+</p></li><li id="cce_bestpractice_10002__li95104365181"><span>Use the console or kubectl to modify the selector of the Service so that the v2 version is selected.</span><p><p id="cce_bestpractice_10002__p1653718979"><strong id="cce_bestpractice_10002__b81393522131">kubectl patch service nginx -p '{"spec":{"selector":{"version":"v2"}}}'</strong></p>
+</p></li><li id="cce_bestpractice_10002__li69641356188"><span>Run the following command to test the access again:</span><p><p id="cce_bestpractice_10002__p5873112710157"><strong id="cce_bestpractice_10002__b19873172716157">for i in {1..10}; do curl </strong>&lt;EXTERNAL_IP&gt;<strong id="cce_bestpractice_10002__b19873172731512">; done;</strong></p>
+<p id="cce_bestpractice_10002__p2087332710153">&lt;EXTERNAL_IP&gt; indicates the IP address of the ELB load balancer.</p>
+<p id="cce_bestpractice_10002__p2873027131516">The returned results show that are all responses are from the v2 version. The blue-green deployment is successfully implemented.</p>
+<pre class="screen" id="cce_bestpractice_10002__screen18211124012164">Nginx-v2
+Nginx-v2
+Nginx-v2
+Nginx-v2
+Nginx-v2
+Nginx-v2
+Nginx-v2
+Nginx-v2
+Nginx-v2
+Nginx-v2</pre>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_10000.html">Release</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_10008.html b/docs/cce/umn/cce_bestpractice_10008.html
new file mode 100644
index 00000000..c6c44888
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_10008.html
@@ -0,0 +1,16 @@
+<a name="cce_bestpractice_10008"></a><a name="cce_bestpractice_10008"></a>
+
+<h1 class="topictitle1">Monitoring</h1>
+<div id="body0000001402880281"><p id="cce_bestpractice_10008__p8060118"></p>
+</div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_bestpractice_10009.html">Using Prometheus for Multi-cluster Monitoring</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice.html">Best Practice</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_10009.html b/docs/cce/umn/cce_bestpractice_10009.html
new file mode 100644
index 00000000..79fde1f9
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_10009.html
@@ -0,0 +1,143 @@
+<a name="cce_bestpractice_10009"></a><a name="cce_bestpractice_10009"></a>
+
+<h1 class="topictitle1">Using Prometheus for Multi-cluster Monitoring</h1>
+<div id="body0000001352560312"><div class="section" id="cce_bestpractice_10009__section138709397197"><h4 class="sectiontitle">Scenario</h4><p id="cce_bestpractice_10009__p192316545192">Generally, a user has different clusters for different purposes, such as production, testing, and development. To monitor, collect, and view metrics of these clusters, you can deploy a set of Prometheus.</p>
+</div>
+<div class="section" id="cce_bestpractice_10009__section53701752131915"><h4 class="sectiontitle">Solution Architecture</h4><p id="cce_bestpractice_10009__p113991357173915">Multiple clusters are connected to the same Prometheus monitoring system, as shown in the following figure. This reduces maintenance and resource costs and facilitates monitoring information aggregation.</p>
+<p id="cce_bestpractice_10009__p19833855151919"><span><img id="cce_bestpractice_10009__image16360751173811" src="en-us_image_0000001352090724.png"></span></p>
+</div>
+<div class="section" id="cce_bestpractice_10009__section1554172512415"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_bestpractice_10009__ul90113319415"><li id="cce_bestpractice_10009__li70123312411">The target cluster has been created.</li><li id="cce_bestpractice_10009__li378675411414">Prometheus is properly connected to the target cluster.</li><li id="cce_bestpractice_10009__li16882194115559">Prometheus has been installed on a Linux host using a binary file. For details, see <a href="https://prometheus.io/docs/prometheus/latest/installation/" target="_blank" rel="noopener noreferrer">Installation</a>.</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_10009__section16854145742512"><h4 class="sectiontitle">Procedure</h4><ol id="cce_bestpractice_10009__ol68234275313"><li id="cce_bestpractice_10009__li208234270316"><span>Obtain the <strong id="cce_bestpractice_10009__b19926203984411">bear_token</strong> information of the target cluster.</span><p><ol type="a" id="cce_bestpractice_10009__ol16899945202617"><li id="cce_bestpractice_10009__li789914456263">Create the RBAC permission in the target cluster.<div class="p" id="cce_bestpractice_10009__p9904631283"><a name="cce_bestpractice_10009__li789914456263"></a><a name="li789914456263"></a>Log in to the background node of the target cluster and create the <strong id="cce_bestpractice_10009__b570153314517">prometheus_rbac.yaml</strong> file.<pre class="screen" id="cce_bestpractice_10009__screen563211462518">apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: prometheus-test
+  namespace: kube-system
+
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: prometheus-test
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  - services
+  - endpoints
+  - pods
+  - nodes/proxy
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - "extensions"
+  resources:
+    - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - nodes/metrics
+  verbs:
+  - get
+- nonResourceURLs:
+  - /metrics
+  verbs:
+  - get
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: prometheus-test
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: prometheus-test
+subjects:
+- kind: ServiceAccount
+  name: prometheus-test
+  namespace: kube-system</pre>
+</div>
+<p id="cce_bestpractice_10009__p1886493213502">Run the following command to create the RBAC permission:</p>
+<p id="cce_bestpractice_10009__p1040455212262"><strong id="cce_bestpractice_10009__b1463113420254">kubectl apply -f prometheus_rbac.yaml</strong></p>
+</li><li id="cce_bestpractice_10009__li79009452266">Obtain the <strong id="cce_bestpractice_10009__b71068125484">bearer_token</strong> information of the target cluster.<div class="note" id="cce_bestpractice_10009__note9906457142719"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="cce_bestpractice_10009__cce_bestpractice_0070_en-us_topic_0249851131_ul126619458255"><li id="cce_bestpractice_10009__cce_bestpractice_0070_en-us_topic_0249851131_li7140417111115">In clusters earlier than v1.21, a token is obtained by mounting the secret of the service account to a pod. Tokens obtained this way are permanent. This approach is no longer recommended starting from version 1.21. Service accounts will stop auto creating secrets in clusters from version 1.25.<p id="cce_bestpractice_10009__cce_bestpractice_0070_en-us_topic_0249851131_p238119179114"><a name="cce_bestpractice_10009__cce_bestpractice_0070_en-us_topic_0249851131_li7140417111115"></a><a name="cce_bestpractice_0070_en-us_topic_0249851131_li7140417111115"></a>In clusters of version 1.21 or later, you can use the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API to <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume" target="_blank" rel="noopener noreferrer">obtain the token</a> and use the projected volume to mount the token to the pod. Such tokens are valid for a fixed period. When the mounting pod is deleted, the token automatically becomes invalid. .</p>
+</li><li id="cce_bestpractice_10009__cce_bestpractice_0070_en-us_topic_0249851131_li666114512253">If you need a token that never expires, you can also <a href="https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#manual-secret-management-for-serviceaccounts" target="_blank" rel="noopener noreferrer">manually manage secrets for service accounts</a>. Although a permanent service account token can be manually created, you are advised to use a short-lived token by calling the <a href="https://kubernetes.io/docs/reference/kubernetes-api/authentication-resources/token-request-v1/" target="_blank" rel="noopener noreferrer">TokenRequest</a> API for higher security.</li></ul>
+</div></div>
+<p id="cce_bestpractice_10009__p18188145142714">Obtain the <strong id="cce_bestpractice_10009__b109291416154811">serviceaccount</strong> information.</p>
+<p id="cce_bestpractice_10009__p1250115622719"><strong id="cce_bestpractice_10009__b61071650124115">kubectl describe sa prometheus-test -n kube-system</strong></p>
+<p id="cce_bestpractice_10009__p14606159172718"><span><img id="cce_bestpractice_10009__image9409192014219" src="en-us_image_0000001403252957.png"></span></p>
+<p id="cce_bestpractice_10009__p1918512153273"><strong id="cce_bestpractice_10009__b143091702442">kubectl describe secret prometheus-test-token-hdhkg -n kube-system</strong></p>
+<p id="cce_bestpractice_10009__p44331713276"><span><img id="cce_bestpractice_10009__image76833102444" src="en-us_image_0000001352573116.png"></span></p>
+<p id="cce_bestpractice_10009__p983982432720">Record the token value, which is the <strong id="cce_bestpractice_10009__b32241332164817">bearer_token</strong> information to be collected.</p>
+</li></ol>
+</p></li><li id="cce_bestpractice_10009__li288212192419"><span>Configure <strong id="cce_bestpractice_10009__b67816367487">bearer_token</strong> information.</span><p><p id="cce_bestpractice_10009__p48041450164613">Log in to the host where Prometheus is located, go to the Prometheus installation directory, and save the token information of the target cluster in a file.</p>
+<p id="cce_bestpractice_10009__p096017351754"><span><img id="cce_bestpractice_10009__image9181825194912" src="en-us_image_0000001352413288.png"></span></p>
+</p></li><li id="cce_bestpractice_10009__li1743416444419"><span>Configure Prometheus to monitor jobs.</span><p><p id="cce_bestpractice_10009__p31631031084">The example job monitors container metrics. If you need to monitor other metrics, you can add jobs and compile capture rules.</p>
+<pre class="screen" id="cce_bestpractice_10009__screen1486575214814">  - job_name: k8s_cAdvisor
+    scheme: https
+    bearer_token_file: k8s_token # Token file in the previous step.
+    tls_config:
+      insecure_skip_verify: true
+    kubernetes_sd_configs:  # kubernetes automatic discovery configuration
+    - role: node    # Automatic discovery of the node type
+      bearer_token_file: k8s_token # Token file in the previous step
+      api_server: https://192.168.0.153:5443  # The API server address of the Kubernetes cluster
+      tls_config:
+        insecure_skip_verify: true   # Skip the authentication on the server.
+    relabel_configs:  ## Modify the existing label of the target cluster before capturing metrics.
+    - target_label: __address__
+      replacement: 192.168.0.153:5443
+      action: replace
+      ## Convert metrics_path to /api/v1/nodes/${1}/proxy/metrics/cadvisor.
+      # Obtain data from kubelet using the API Server proxy.
+    - source_labels: [__meta_kubernetes_node_name]   # Specifies the source label to be processed.
+      regex: (.+)    # Match the value of the source label. (.+) indicates that any value of the source label can be matched.
+      target_label: __metrics_path__     # specifies the label to be replaced.
+      replacement: /api/v1/nodes/${1}/proxy/metrics/cadvisor  # indicates the new label, that is, the value of __metrics_path__. ${1} indicates the value that matches the regular expression, that is, node name.
+    - target_label: cluster
+      replacement: xxxxx   ## (Optional) Enter the cluster information based on the actual situation.
+
+### The following job monitors another cluster.
+  - job_name: k8s02_cAdvisor
+    scheme: https
+    bearer_token_file: k8s02_token # Token file in the previous step
+    tls_config:
+      insecure_skip_verify: true
+    kubernetes_sd_configs: 
+    - role: node    
+      bearer_token_file: k8s02_token # Token file in the previous step
+      api_server: https://192.168.0.147:5443  # API Server address of the Kubernetes cluster
+      tls_config:
+        insecure_skip_verify: true   # Skip the authentication on the server.
+    relabel_configs:  ## Modify the existing label of the target cluster before capturing metrics.
+    - target_label: __address__
+      replacement: 192.168.0.147:5443
+      action: replace
+
+    - source_labels: [__meta_kubernetes_node_name]
+      regex: (.+)
+      target_label: __metrics_path__
+      replacement: /api/v1/nodes/${1}/proxy/metrics/cadvisor
+
+    - target_label: cluster
+      replacement: xxxx    ## (Optional) Enter the cluster information based on the actual situation.</pre>
+</p></li><li id="cce_bestpractice_10009__li228615233"><span>Enable Prometheus.</span><p><p id="cce_bestpractice_10009__p20170134082113">After the configuration, enable Prometheus.</p>
+<p id="cce_bestpractice_10009__p1394172217347"><strong id="cce_bestpractice_10009__b20941202243412">./prometheus --config.file=prometheus.yml</strong></p>
+</p></li><li id="cce_bestpractice_10009__li91161024101"><span>Log in to Prometheus and view the monitoring information.</span><p><p id="cce_bestpractice_10009__p1972413201562"><span><img id="cce_bestpractice_10009__image172414200612" src="en-us_image_0000001352253356.png"></span></p>
+<p id="cce_bestpractice_10009__p1548071713355"><span><img id="cce_bestpractice_10009__image1548051717357" src="en-us_image_0000001402893085.png"></span></p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_10008.html">Monitoring</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bestpractice_10012.html b/docs/cce/umn/cce_bestpractice_10012.html
new file mode 100644
index 00000000..b8c887c9
--- /dev/null
+++ b/docs/cce/umn/cce_bestpractice_10012.html
@@ -0,0 +1,83 @@
+<a name="cce_bestpractice_10012"></a><a name="cce_bestpractice_10012"></a>
+
+<h1 class="topictitle1">Selecting a Data Disk for the Node</h1>
+<div id="body0000001461038616"><p id="cce_bestpractice_10012__p176023315316">When a node is created, a data disk is created by default for container runtime and kubelet components to use.  The data disk used by the container runtime and kubelet components cannot be detached, and the default size is 100 GB. To reduce costs, the size of a common data disk attached to a node can be reduced to 10 GB.</p>
+<div class="notice" id="cce_bestpractice_10012__note1950511302015"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="cce_bestpractice_10012__p11302111624511">Adjusting the size of the data disk used by the container and Kubelet component may cause risks. You are advised to adjust the size after comprehensive evaluation based on the estimation method provided in this section.</p>
+<ul id="cce_bestpractice_10012__ul9224105619463"><li id="cce_bestpractice_10012__li6224185654616">If the data disk capacity is too small, the disk space may be insufficient. As a result, the image fails to be pulled. If different images need to be frequently pulled on the node, you are not advised to reduce the data disk capacity.</li><li id="cce_bestpractice_10012__li6224105614460">During the cluster upgrade pre-check, the system checks whether the data disk usage exceeds 95%. If the disk pressure is high, the cluster upgrade may be affected.</li><li id="cce_bestpractice_10012__li922415664615">If Device Mapper is used, the disk space may be insufficient. You are advised to use the OverlayFS or select a large-capacity data disk.</li><li id="cce_bestpractice_10012__li6160142954811">For dumping logs, application logs must be stored in a separate disk to prevent insufficient space of the dockersys partition from affecting service running.</li></ul>
+<ul id="cce_bestpractice_10012__ul122593871513"><li id="cce_bestpractice_10012__li79751239111515">After reducing the data disk capacity, you are advised to install a npd add-on in the cluster to detect node disk pressure. If the disk pressure of a node is high, rectify the fault by referring to <a href="#cce_bestpractice_10012__section094517492470">What Do I Do If the Data Disk Space Is Insufficient?</a>.</li></ul>
+</div></div>
+<div class="section" id="cce_bestpractice_10012__section127631631483"><h4 class="sectiontitle">Notes and Constraints</h4><ul id="cce_bestpractice_10012__ul8466153719503"><li id="cce_bestpractice_10012__li18466203725018">Only clusters of v1.19 or later support reducing the data disk capacity used by running containers and kubelet components.</li><li id="cce_bestpractice_10012__li11466173717509">Only the EVS disk capacity can be adjusted. (Local disks are available only when the node specification is <strong id="cce_bestpractice_10012__b33381932165614">disk-intensive</strong> or <strong id="cce_bestpractice_10012__b11711437165618">Ultra-high I/O</strong>.)</li></ul>
+</div>
+<div class="section" id="cce_bestpractice_10012__section13184235812"><h4 class="sectiontitle">Selecting a Data Disk</h4><p id="cce_bestpractice_10012__p55171581418">When selecting a proper data disk, consider the following factors:</p>
+<ul id="cce_bestpractice_10012__ul577414222116"><li id="cce_bestpractice_10012__li1277414221615">During image pulling, the system downloads the image .tar package from the image repository, decompresses the package, and deletes the TAR package to retain the image file. During the decompression of the .tar package, the .tar package and the decompressed image file coexist, occupying extra storage space. Pay attention to this when calculating the required data disk capacity.</li><li id="cce_bestpractice_10012__li1077416223118">During cluster creation, mandatory add-ons (such as everest and coredns add-ons) may be deployed on nodes, occupying certain space. When calculating the data disk size, reserve about 2 GB space for them.</li><li id="cce_bestpractice_10012__li2047110581443">Logs are generated during application running and occupy certain space. To ensure normal service running, reserve about 1 GB space for each pod.</li></ul>
+<p id="cce_bestpractice_10012__p1546911371939">For details about the calculation formulas, see <a href="#cce_bestpractice_10012__section97181505230">OverlayFS</a> and <a href="#cce_bestpractice_10012__section212373119234">Device Mapper</a>.</p>
+</div>
+<div class="section" id="cce_bestpractice_10012__section97181505230"><a name="cce_bestpractice_10012__section97181505230"></a><a name="section97181505230"></a><h4 class="sectiontitle">OverlayFS</h4><p id="cce_bestpractice_10012__p2531222268">By default, the container engine and container image space on OverlayFS nodes occupy 90% of the data disk space (you are advised to retain this value). All the space is used for the dockersys partition. The calculation formula is as follows:</p>
+<ul id="cce_bestpractice_10012__ul185322172610"><li id="cce_bestpractice_10012__li14531528269"><a name="cce_bestpractice_10012__li14531528269"></a><a name="li14531528269"></a>Container engine and container image space: Defaults to 90%. Space size = Data disk space x 90%<ul id="cce_bestpractice_10012__ul125315262616"><li id="cce_bestpractice_10012__li453229269">dockersys partition (<strong id="cce_bestpractice_10012__b101830360573">/var/lib/docker</strong> path): The entire container engine and container image space (90% of the data disk by default) are in the <strong id="cce_bestpractice_10012__b1354810137587">/var/lib/docker</strong> directory. Space size = Data disk space x 90%</li></ul>
+</li><li id="cce_bestpractice_10012__li185316215269">kubelet components and emptyDir volumes space: 10% of the data disk space. Space size = Data disk space x 10%</li></ul>
+<p id="cce_bestpractice_10012__p19913171817279">On an OverlayFS node, when an image is pulled, the .tar package is decompressed after being downloaded. During this process, the .tar package and the decompressed image file are stored in the dockersys space at the same time, occupying about twice the actual image capacity, after the decompression is complete, the .tar package is deleted. Therefore, in the actual image pulling process, after deducting the space occupied by the system add-on image, ensure that the remaining space of the dockersys partition is greater than twice the actual image capacity. To ensure that the container can run properly, you need to reserve pod space in the dockersys partition for container logs and other related files.</p>
+<p id="cce_bestpractice_10012__p14539154512610">A proper data disk should meet the following formula:</p>
+<p id="cce_bestpractice_10012__p28521375429"><strong id="cce_bestpractice_10012__b1950622924312">dockersys partition capacity &gt; 2 x Actual total image capacity + Total system add-on image capacity (about 2 GB) + Number of containers x Available space for a single container (about 1 GB log space)</strong></p>
+<div class="note" id="cce_bestpractice_10012__note14308142125"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_10012__p183087418126">If container logs are output in the json.log format, the dockersys partition is occupied. If persistent storage is configured for container logs, the dockersys partition is not occupied. Estimate the space of a single container as required.</p>
+</div></div>
+<p id="cce_bestpractice_10012__p3940971217">Example:</p>
+<p id="cce_bestpractice_10012__p99403792115">Assume that the storage type of the node is OverlayFS and the data disk size of the node is 20 GB. According to <a href="#cce_bestpractice_10012__li14531528269">the preceding formula</a>, the default ratio of the container engine and image space is 90%. Therefore, the dockersys partition disk usage is 18 GB (20 GB x 90%). In addition, mandatory add-ons may occupy about 2 GB space during cluster creation. If you deploy a .tar image package of 10 GB, 20 GB dockersys space is occupied by the decompressed package. In addition, the space occupied by mandatory add-ons exceeds the remaining space of dockersys. As a result, the image may fail to be pulled.</p>
+</div>
+<div class="section" id="cce_bestpractice_10012__section212373119234"><a name="cce_bestpractice_10012__section212373119234"></a><a name="section212373119234"></a><h4 class="sectiontitle">Device Mapper</h4><p id="cce_bestpractice_10012__p1841416411003">By default, the container engine and image space on Device Mapper nodes occupy 90% of the data disk space (recommended). This 90% capacity is divided into the dockersys partition and thinpool space. The calculation formula is as follows:</p>
+<ul id="cce_bestpractice_10012__ul493021615587"><li id="cce_bestpractice_10012__li1519941320114"><a name="cce_bestpractice_10012__li1519941320114"></a><a name="li1519941320114"></a>Container engine and image space: 90% of the data disk space by default. Space size = Data disk space x 90%<ul id="cce_bestpractice_10012__ul178372203117"><li id="cce_bestpractice_10012__li411213205">dockersys partition (<strong id="cce_bestpractice_10012__b14671529164612">/var/lib/docker</strong> path): Defaults to 20%. Space size = Data disk space x 90% x 20%</li><li id="cce_bestpractice_10012__li993041645817">thinpool space: Defaults to 80%. Space size = Data disk space x 90% x 80%</li></ul>
+</li><li id="cce_bestpractice_10012__li1148564915114">kubelet and emptyDir space: occupy 10%. Space size = Data disk space x 10%</li></ul>
+<p id="cce_bestpractice_10012__p15703423182415">On a Device Mapper node, when an image is pulled, the TAR package is temporarily stored in the dockersys partition. After the TAR package is decompressed, the image file is stored in the thinpool space. Finally, the TAR package in the dockersys space is deleted. Therefore, during image pulling, ensure that the dockersys partition space and thinpool space are sufficient. The dockersys space is smaller than the thinpool space. Pay attention to this when calculating the data disk space. To ensure that a container can run properly, reserve pod space in the dockersys partition to store container logs and other related files.</p>
+<div class="p" id="cce_bestpractice_10012__p7560102625016">A proper data disk should meet the following formula:<ul id="cce_bestpractice_10012__ul151025017477"><li id="cce_bestpractice_10012__li17391030101810"><strong id="cce_bestpractice_10012__b158581047141818">dockersys partition capacity &gt; temporary storage space of the TAR package (approximately equal to the actual total image capacity) + Number of containers x Space of a single container (about 1 GB log space must be reserved for each container)</strong></li><li id="cce_bestpractice_10012__li15111110194718"><strong id="cce_bestpractice_10012__b98591474183">thinpool space &gt; Actual total image capacity + Total add-on image capacity (about 2 GB)</strong></li></ul>
+</div>
+<div class="note" id="cce_bestpractice_10012__note171721613"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_10012__p9711210111">If container logs are output in the json.log format, the dockersys partition is occupied. If persistent storage is configured for container logs, the dockersys partition is not occupied. Estimate the space of a single container as required.</p>
+</div></div>
+<p id="cce_bestpractice_10012__p7870142585716">Example:</p>
+<p id="cce_bestpractice_10012__p3703723152416">Assume that the storage type of the node is Device Mapper and the data disk size of the node is 20 GB. According to <a href="#cce_bestpractice_10012__li1519941320114">the preceding formula</a>, the default ratio of the container engine and image space is 90%. Therefore, the dockersys partition disk usage is: 20 GB x 90% x 20% = 3.6 GB. In addition, mandatory add-ons may occupy about 2 GB dockersys space during cluster creation. Therefore, the remaining space is about 1.6 GB. If you deploy a .tar image package larger than 1.6 GB, the dockersys partition space is insufficient when the package is decompressed. As a result, the image may fail to be pulled.</p>
+</div>
+<div class="section" id="cce_bestpractice_10012__section094517492470"><a name="cce_bestpractice_10012__section094517492470"></a><a name="section094517492470"></a><h4 class="sectiontitle">What Do I Do If the Data Disk Space Is Insufficient?</h4><p id="cce_bestpractice_10012__p152190294356"><strong id="cce_bestpractice_10012__b0870710175814">Solution 1: Clearing Images</strong></p>
+<p id="cce_bestpractice_10012__p149283331251">You can run the following command to clear unused Docker images:</p>
+<pre class="screen" id="cce_bestpractice_10012__screen1329712163610">docker system prune -a</pre>
+<div class="note" id="cce_bestpractice_10012__note10839183911115"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bestpractice_10012__p983953911114">This command will delete all Docker images that are not used. Exercise caution when running this command.</p>
+</div></div>
+<p id="cce_bestpractice_10012__p132271148115716"><strong id="cce_bestpractice_10012__b4873161035819">Solution 2: Expanding the Disk Capacity</strong></p>
+<ol id="cce_bestpractice_10012__ol554315445112"><li id="cce_bestpractice_10012__cce_bestpractice_00198_en-us_topic_0196817407_li1091823811013"><span>Expand the capacity of the data disk on the EVS console.</span></li><li id="cce_bestpractice_10012__cce_bestpractice_00198_li15327184914542"><span>Log in to the CCE console and click the cluster. In the navigation pane, choose <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b176491516203817">Nodes</strong>. Click <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b464971673810">More</strong> &gt; <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b9649161615380">Sync Server Data</strong> at the row containing the target node.</span></li><li id="cce_bestpractice_10012__cce_bestpractice_00198_en-us_topic_0196817407_li209187382011"><span>Log in to the target node.</span></li><li id="cce_bestpractice_10012__cce_bestpractice_00198_li128005014232"><span>Run the <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b6455184022316">lsblk</strong> command to check the block device information of the node.</span><p><p id="cce_bestpractice_10012__cce_bestpractice_00198_p980018092312">A data disk is divided depending on the container storage <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b687813596016">Rootfs</strong>:</p>
+<ul id="cce_bestpractice_10012__cce_bestpractice_00198_ul89731919102417"><li id="cce_bestpractice_10012__cce_bestpractice_00198_li1536084418247">Overlayfs: No independent thin pool is allocated. Image data is stored in the <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b14504233414">dockersys</strong> disk.<pre class="screen" id="cce_bestpractice_10012__cce_bestpractice_00198_screen736044442417"># lsblk
+NAME                MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
+sda                   8:0    0   50G  0 disk 
+└─sda1                8:1    0   50G  0 part /
+sdb                   8:16   0  200G  0 disk 
+├─vgpaas-dockersys  253:0    0   90G  0 lvm  /var/lib/docker               # Space used by Docker.
+└─vgpaas-kubernetes 253:1    0   10G  0 lvm  /mnt/paas/kubernetes/kubelet  # Space used by Kubernetes.</pre>
+<p id="cce_bestpractice_10012__cce_bestpractice_00198_p1599151113360">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b12521182040">dockersys</strong> disk:</p>
+<pre class="screen" id="cce_bestpractice_10012__cce_bestpractice_00198_screen10503202016363">pvresize /dev/sdb 
+lvextend -l+100%FREE -n vgpaas/dockersys
+resize2fs /dev/vgpaas/dockersys</pre>
+</li><li id="cce_bestpractice_10012__cce_bestpractice_00198_li7973131913245">Devicemapper: A thin pool is allocated to store image data.<pre class="screen" id="cce_bestpractice_10012__cce_bestpractice_00198_screen10480142251"># lsblk
+NAME                                MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
+sda                                   8:0    0   50G  0 disk 
+└─sda1                                8:1    0   50G  0 part /
+sdb                                   8:16   0  200G  0 disk 
+├─vgpaas-dockersys                  253:0    0   18G  0 lvm  /var/lib/docker    
+├─vgpaas-thinpool_tmeta             253:1    0    3G  0 lvm                   
+│ └─vgpaas-thinpool                 253:3    0   67G  0 lvm                   # Thin pool space.
+│   ...
+├─vgpaas-thinpool_tdata             253:2    0   67G  0 lvm  
+│ └─vgpaas-thinpool                 253:3    0   67G  0 lvm  
+│   ...
+└─vgpaas-kubernetes                 253:4    0   10G  0 lvm  /mnt/paas/kubernetes/kubelet</pre>
+<ul id="cce_bestpractice_10012__cce_bestpractice_00198_ul151541148142616"><li id="cce_bestpractice_10012__cce_bestpractice_00198_li8154948152611">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b299821246">thinpool</strong> disk:<pre class="screen" id="cce_bestpractice_10012__cce_bestpractice_00198_screen1941742617282">pvresize /dev/sdb 
+lvextend -l+100%FREE -n vgpaas/thinpool</pre>
+</li><li id="cce_bestpractice_10012__cce_bestpractice_00198_li715464810269">Run the following commands on the node to add the new disk capacity to the <strong id="cce_bestpractice_10012__cce_bestpractice_00198_b17977940173414">dockersys</strong> disk:<pre class="screen" id="cce_bestpractice_10012__cce_bestpractice_00198_screen3309227102613">pvresize /dev/sdb 
+lvextend -l+100%FREE -n vgpaas/dockersys
+resize2fs /dev/vgpaas/dockersys</pre>
+</li></ul>
+</li></ul>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bestpractice_0050.html">Cluster</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_bulletin_0000.html b/docs/cce/umn/cce_bulletin_0000.html
index 003398f0..0cbf0885 100644
--- a/docs/cce/umn/cce_bulletin_0000.html
+++ b/docs/cce/umn/cce_bulletin_0000.html
@@ -4,8 +4,6 @@
 <div id="body0000001197314909"></div>
 <div>
 <ul class="ullinks">
-<li class="ulchildlink"><strong><a href="cce_bulletin_0054.html">Risky Operations on Cluster Nodes</a></strong><br>
-</li>
 <li class="ulchildlink"><strong><a href="cce_bulletin_0003.html">Kubernetes Version Support Mechanism</a></strong><br>
 </li>
 <li class="ulchildlink"><strong><a href="cce_bulletin_0068.html">CCE Cluster Version Release Notes</a></strong><br>
@@ -14,8 +12,6 @@
 </li>
 <li class="ulchildlink"><strong><a href="cce_bulletin_0169.html">Security Vulnerability Responses</a></strong><br>
 </li>
-<li class="ulchildlink"><strong><a href="cce_10_0477.html">Service Account Token Security Improvement</a></strong><br>
-</li>
 </ul>
 </div>
 
diff --git a/docs/cce/umn/cce_bulletin_0054.html b/docs/cce/umn/cce_bulletin_0054.html
deleted file mode 100644
index bff99bbd..00000000
--- a/docs/cce/umn/cce_bulletin_0054.html
+++ /dev/null
@@ -1,78 +0,0 @@
-<a name="cce_bulletin_0054"></a><a name="cce_bulletin_0054"></a>
-
-<h1 class="topictitle1">Risky Operations on Cluster Nodes</h1>
-<div id="body0000001197234811"><div class="section" id="cce_bulletin_0054__section12415304374"><h4 class="sectiontitle">Precautions for Using a Cluster</h4><ul id="cce_bulletin_0054__ul14785159125017"><li id="cce_bulletin_0054__li4785169115017">When performing operations such as creating, deleting, and scaling clusters, do not change user permission in the Identity and Access Management (IAM) console. Otherwise, these operations may fail.</li><li id="cce_bulletin_0054__li173771616145012">The containerized network canal of CCE nodes uses a CIDR block as the CIDR block of the container network. This CIDR block can be configured during cluster creation and defaults to 172.16.0.0/16. The Docker service creates a docker0 bridge by default. The default docker0 address is 172.17.0.1. When creating a cluster, ensure that the CIDR block of the VPC in the cluster is different from the CIDR blocks of the container network docker0 bridge. If VPC peering connections are used, also ensure that the CIDR block of the peer VPC is different from the CIDR blocks of the container network docker0 bridge.</li><li id="cce_bulletin_0054__li38507371217">For a cluster of Kubernetes v1.15, the DNS server of nodes in the cluster uses the DNS address in the VPC subnet, not the CoreDNS address of Kubernetes. Ensure that the DNS address in the subnet exists and is configurable.</li><li id="cce_bulletin_0054__li912144318351">For a cluster of Kubernetes v1.17, a single-plane network is used for nodes. When a multi-plane network is used, if you bind a NIC to an ECS, you need to configure the NIC information on the node and restart the NIC.</li><li id="cce_bulletin_0054__li17378131613503">Do not modify the security groups, Elastic Volume Service (EVS) disks, and other resources created by CCE. Otherwise, clusters may not function properly. The resources created by CCE are labeled <strong id="cce_bulletin_0054__b2031311765313">cce</strong>, for example, <strong id="cce_bulletin_0054__b1995624911215">cce-evs-jwh9pcl7-****</strong>.</li><li id="cce_bulletin_0054__li3824532291">When adding a node, ensure that the DNS server in the subnet can resolve the domain name of the corresponding service. Otherwise, the node cannot be installed properly.</li></ul>
-</div>
-<div class="section" id="cce_bulletin_0054__section19751152619340"><h4 class="sectiontitle">Precautions for Using a Node</h4><p id="cce_bulletin_0054__p997712421510">Some of the resources on the node need to run some necessary Kubernetes system components and resources to make the node as part of your cluster. Therefore, the total number of node resources and the number of assignable node resources in Kubernetes are different. The larger the node specifications, the more the containers deployed on the node. Therefore, Kubernetes needs to reserve more resources.</p>
-<p id="cce_bulletin_0054__p591031155413">To ensure node stability, CCE cluster nodes reserve some resources for Kubernetes components (such as kubelet, kube-proxy, and docker) based on node specifications.</p>
-<div class="note" id="cce_bulletin_0054__note327919016595"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_bulletin_0054__p92804045915">You are advised not to install software or modify the operating system (OS) configuration on a cluster node. This may cause exceptions on Kubernetes components installed on the node, and make the node unavailable.</p>
-</div></div>
-</div>
-<div class="section" id="cce_bulletin_0054__section1688214368495"><h4 class="sectiontitle">Risky Operations on Nodes</h4><p id="cce_bulletin_0054__p167041557193418">After logging in to a node created by CCE, do not perform the following operations. Otherwise, <span class="keyword" id="cce_bulletin_0054__keyword510945084155623">the node will become unready</span>.</p>
-</div>
-
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0054__en-us_topic_0074268051_table275811429288" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Operations that will cause nodes to become unready</caption><thead align="left"><tr id="cce_bulletin_0054__en-us_topic_0074268051_row112303759288"><th align="left" class="cellrowborder" valign="top" width="9.87%" id="mcps1.3.4.2.5.1.1"><p id="cce_bulletin_0054__en-us_topic_0074268051_p667710269288">SN</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="35.75%" id="mcps1.3.4.2.5.1.2"><p id="cce_bulletin_0054__en-us_topic_0074268051_p4794206293155">Risky Operation</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="21.6%" id="mcps1.3.4.2.5.1.3"><p id="cce_bulletin_0054__p378914461617">Impact</p>
-</th>
-<th align="left" class="cellrowborder" valign="top" width="32.78%" id="mcps1.3.4.2.5.1.4"><p id="cce_bulletin_0054__p115912613377">Solution</p>
-</th>
-</tr>
-</thead>
-<tbody><tr id="cce_bulletin_0054__en-us_topic_0074268051_row26713570113514"><td class="cellrowborder" valign="top" width="9.87%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_bulletin_0054__p13474145214175">1</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.75%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_bulletin_0054__p18821616143613">Reinstall the operating system using the original image or another image</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.6%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_bulletin_0054__p157891746163">The node will become unready.</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_bulletin_0054__p1559117663719">Delete the node and buy a new node.</p>
-</td>
-</tr>
-<tr id="cce_bulletin_0054__row1332010131816"><td class="cellrowborder" valign="top" width="9.87%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_bulletin_0054__p033191020188">2</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.75%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_bulletin_0054__p1533121051820">Modify OS configuration</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.6%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_bulletin_0054__p1733171018185">The node will become unready.</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_bulletin_0054__p9592196143718">Restore the original configuration or buy the node again.</p>
-</td>
-</tr>
-<tr id="cce_bulletin_0054__en-us_topic_0074268051_row459635119288"><td class="cellrowborder" valign="top" width="9.87%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_bulletin_0054__p347418524175">3</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.75%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_bulletin_0054__p887841623614">Delete the <strong id="cce_bulletin_0054__b2848184815488">opt</strong> directory, <strong id="cce_bulletin_0054__b784910484480">/var/paas</strong> directory, or a data disk</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.6%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_bulletin_0054__p14789104111613">The node will become unready.</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_bulletin_0054__p105921623717">Delete the node and buy a new node.</p>
-</td>
-</tr>
-<tr id="cce_bulletin_0054__en-us_topic_0074268051_row10353620112057"><td class="cellrowborder" valign="top" width="9.87%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_bulletin_0054__p1847417527172">4</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.75%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_bulletin_0054__p1187431610365">Format and partition a node disk</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.6%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_bulletin_0054__p1978917461620">The node will become unready.</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_bulletin_0054__p16592768378">Delete the node and buy a new node.</p>
-</td>
-</tr>
-<tr id="cce_bulletin_0054__row19857131110174"><td class="cellrowborder" valign="top" width="9.87%" headers="mcps1.3.4.2.5.1.1 "><p id="cce_bulletin_0054__p11474135216170">5</p>
-</td>
-<td class="cellrowborder" valign="top" width="35.75%" headers="mcps1.3.4.2.5.1.2 "><p id="cce_bulletin_0054__p2085811151718">Modify a security group</p>
-</td>
-<td class="cellrowborder" valign="top" width="21.6%" headers="mcps1.3.4.2.5.1.3 "><p id="cce_bulletin_0054__p118581511181715">The node will become unready or the cluster will exhibit unexpected behavior.</p>
-</td>
-<td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.2.5.1.4 "><p id="cce_bulletin_0054__p126212039121815">Correct the security group settings based on security group settings of normal clusters.</p>
-</td>
-</tr>
-</tbody>
-</table>
-</div>
-</div>
-<div>
-<div class="familylinks">
-<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_bulletin_0000.html">Product Bulletin</a></div>
-</div>
-</div>
-
diff --git a/docs/cce/umn/cce_bulletin_0301.html b/docs/cce/umn/cce_bulletin_0301.html
index 28021127..1c13941e 100644
--- a/docs/cce/umn/cce_bulletin_0301.html
+++ b/docs/cce/umn/cce_bulletin_0301.html
@@ -1,32 +1,276 @@
 <a name="cce_bulletin_0301"></a><a name="cce_bulletin_0301"></a>
 
 <h1 class="topictitle1">OS Patch Notes for Cluster Nodes</h1>
-<div id="body0000001197314911"><div class="section" id="cce_bulletin_0301__section326285833711"><h4 class="sectiontitle">Nodes in Hybrid Clusters</h4><p id="cce_bulletin_0301__p420694412491">CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9 and CentOS 7.7. The following table lists the supported patches for these OSs.</p>
+<div id="body0000001197314911"><div class="section" id="cce_bulletin_0301__section326285833711"><h4 class="sectiontitle">Nodes in Hybrid Clusters</h4><p id="cce_bulletin_0301__p420694412491">CCE nodes in Hybrid clusters can run on EulerOS 2.5, EulerOS 2.9, CentOS 7.7 and Ubuntu 22.04. The following table lists the supported patches for these OSs.</p>
 
-<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0301__table1704174684710" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node OS patches</caption><thead align="left"><tr id="cce_bulletin_0301__row147041846154716"><th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.3.2.3.1.1"><p id="cce_bulletin_0301__p14704154614472">OS</p>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0301__table1704174684710" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Node OS patches</caption><thead align="left"><tr id="cce_bulletin_0301__row147041846154716"><th align="left" class="cellrowborder" valign="top" width="23.57%" id="mcps1.3.1.3.2.4.1.1"><p id="cce_bulletin_0301__p14704154614472">OS</p>
 </th>
-<th align="left" class="cellrowborder" valign="top" width="50%" id="mcps1.3.1.3.2.3.1.2"><p id="cce_bulletin_0301__p5704194664712">Patch</p>
+<th align="left" class="cellrowborder" valign="top" width="22.189999999999998%" id="mcps1.3.1.3.2.4.1.2"><p id="cce_bulletin_0301__p102471407714">Cluster Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="54.24%" id="mcps1.3.1.3.2.4.1.3"><p id="cce_bulletin_0301__p5704194664712">Latest Kernel</p>
 </th>
 </tr>
 </thead>
-<tbody><tr id="cce_bulletin_0301__row17704144644713"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p7704184612471">EulerOS release 2.0 (SP5)</p>
+<tbody><tr id="cce_bulletin_0301__row46831821426"><td class="cellrowborder" rowspan="4" valign="top" width="23.57%" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p768512211625">EulerOS release 2.5</p>
+<p id="cce_bulletin_0301__p546813401215"></p>
+<p id="cce_bulletin_0301__p1026215381123"></p>
+<p id="cce_bulletin_0301__p081517351523"></p>
 </td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p20704846104711">3.10.0-862.14.1.5.h687.eulerosv2r7.x86_64</p>
+<td class="cellrowborder" valign="top" width="22.189999999999998%" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p317354615215">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.24%" headers="mcps1.3.1.3.2.4.1.3 "><p id="cce_bulletin_0301__p166854211219">3.10.0-862.14.1.5.h687.eulerosv2r7.x86_64</p>
 </td>
 </tr>
-<tr id="cce_bulletin_0301__row13771104834214"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p1277134884215">EulerOS release 2.0 (SP9)</p>
+<tr id="cce_bulletin_0301__row446815407213"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p917320467212">v1.23</p>
 </td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p1877154814425">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p86341525113018">3.10.0-862.14.1.5.h687.eulerosv2r7.x86_64</p>
 </td>
 </tr>
-<tr id="cce_bulletin_0301__row3430310162"><td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.1 "><p id="cce_bulletin_0301__p1143081016618">CentOS Linux release 7.7</p>
+<tr id="cce_bulletin_0301__row22626381423"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p181739461211">v1.21</p>
 </td>
-<td class="cellrowborder" valign="top" width="50%" headers="mcps1.3.1.3.2.3.1.2 "><p id="cce_bulletin_0301__p04301710967">3.10.0-1160.76.1.el7.x86_64</p>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p13643182513305">3.10.0-862.14.1.5.h687.eulerosv2r7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row48159358214"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p51741461424">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p1764792503011">3.10.0-862.14.1.5.h687.eulerosv2r7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row121112295112"><td class="cellrowborder" rowspan="4" valign="top" width="23.57%" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p411022115113">EulerOS release 2.9</p>
+<p id="cce_bulletin_0301__p1158104385211"></p>
+<p id="cce_bulletin_0301__p1773374505213"></p>
+<p id="cce_bulletin_0301__p136901648185212"></p>
+</td>
+<td class="cellrowborder" valign="top" width="22.189999999999998%" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p1058718352719">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.24%" headers="mcps1.3.1.3.2.4.1.3 "><p id="cce_bulletin_0301__p168891232537">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row175764320529"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__zh-cn_topic_0261805756_p3447161044">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p1898318414318">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row373324575215"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__zh-cn_topic_0261805756_p1318195412270">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p0992124119314">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row16902048115220"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__zh-cn_topic_0261805756_p1949954782320">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p69961841143115">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row3430310162"><td class="cellrowborder" rowspan="4" valign="top" width="23.57%" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p1143081016618">CentOS Linux release 7.7</p>
+<p id="cce_bulletin_0301__p79581234123815"></p>
+<p id="cce_bulletin_0301__p187366386382"></p>
+<p id="cce_bulletin_0301__p1133210563618"></p>
+</td>
+<td class="cellrowborder" valign="top" width="22.189999999999998%" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__en-us_topic_0261805756_p893575518316">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.24%" headers="mcps1.3.1.3.2.4.1.3 "><p id="cce_bulletin_0301__p04301710967">3.10.0-1160.76.1.el7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row6958334163811"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p1184714112156">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p12958183416381">3.10.0-1160.76.1.el7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row1573623813818"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__en-us_topic_0261805756_p160412211273">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p473615388385">3.10.0-1160.76.1.el7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row433225615616"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p4101621279">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p151011324714">3.10.0-1160.76.1.el7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row13914604616"><td class="cellrowborder" valign="top" width="23.57%" headers="mcps1.3.1.3.2.4.1.1 "><p id="cce_bulletin_0301__p6393616467">Ubuntu 22.04</p>
+<p id="cce_bulletin_0301__p3631814123917"></p>
+</td>
+<td class="cellrowborder" valign="top" width="22.189999999999998%" headers="mcps1.3.1.3.2.4.1.2 "><p id="cce_bulletin_0301__p1761015117517">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="54.24%" headers="mcps1.3.1.3.2.4.1.3 "><p id="cce_bulletin_0301__p96101511252">5.15.0-53-generic</p>
 </td>
 </tr>
 </tbody>
 </table>
 </div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0301__table1839854264119" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Mappings between BMS node OS versions and cluster versions</caption><thead align="left"><tr id="cce_bulletin_0301__row839814224112"><th align="left" class="cellrowborder" valign="top" width="31.033103310331033%" id="mcps1.3.1.4.2.4.1.1"><p id="cce_bulletin_0301__en-us_topic_0261805756_p167912420917">OS Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="27.912791279127912%" id="mcps1.3.1.4.2.4.1.2"><p id="cce_bulletin_0301__en-us_topic_0261805756_p17792046916">Cluster Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="41.054105410541055%" id="mcps1.3.1.4.2.4.1.3"><p id="cce_bulletin_0301__en-us_topic_0261805756_p14791148913">Latest Kernel</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bulletin_0301__row1039804210419"><td class="cellrowborder" rowspan="2" valign="top" width="31.033103310331033%" headers="mcps1.3.1.4.2.4.1.1 "><p id="cce_bulletin_0301__p1825916495014">EulerOS release 2.9 (bare metal server)</p>
+<p id="cce_bulletin_0301__p1139954234111"></p>
+</td>
+<td class="cellrowborder" valign="top" width="27.912791279127912%" headers="mcps1.3.1.4.2.4.1.2 "><p id="cce_bulletin_0301__p172594491304">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="41.054105410541055%" headers="mcps1.3.1.4.2.4.1.3 "><p id="cce_bulletin_0301__p20459418122616">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row239917422414"><td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.4.1.1 "><p id="cce_bulletin_0301__p133991142104113">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.4.1.2 "><p id="cce_bulletin_0301__p1545961892610">4.18.0-147.5.1.6.h766.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_bulletin_0301__table172585361802" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Mappings between OS versions and network model</caption><thead align="left"><tr id="cce_bulletin_0301__row825813617013"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.1.5.2.6.1.1"><p id="cce_bulletin_0301__p1757611572473">OS Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.1.5.2.6.1.2"><p id="cce_bulletin_0301__p457618575472">Cluster Version</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.1.5.2.6.1.3"><p id="cce_bulletin_0301__p86178176118">VPC Network</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.1.5.2.6.1.4"><p id="cce_bulletin_0301__p628016277116">Tunnel Network</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.1.5.2.6.1.5"><p id="cce_bulletin_0301__p9391891311">Cloud Native Network 2.0</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_bulletin_0301__row112583361507"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p125819361808">Ubuntu 22.04</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p1125815369016">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p082253445">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p98210532049">×</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.5 "><p id="cce_bulletin_0301__p108217539414">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row132582360015"><td class="cellrowborder" rowspan="4" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p142591736908">CentOS Linux release 7.7</p>
+<p id="cce_bulletin_0301__p1795813161673"></p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p1725913361405">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p394814715313">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p795944715319">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.5 "><p id="cce_bulletin_0301__p596914472311">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row22591236002"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p12591636402">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p1397844717315">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p14987947333">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p12997647531">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row425911365018"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p62592361509">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p3644811314">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p6153486319">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p11251148638">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row13958141617712"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p15114925371">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p511418252714">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p1811410258717">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p1811442516717">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row1425915361705"><td class="cellrowborder" rowspan="4" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p6259133616016">EulerOS release 2.9</p>
+<p id="cce_bulletin_0301__p185635411338"></p>
+<p id="cce_bulletin_0301__p1756315416318"></p>
+<p id="cce_bulletin_0301__p75635417315"></p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p12591536902">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p1547920594315">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p249012590317">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.5 "><p id="cce_bulletin_0301__p154991159434">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row192591136206"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p4259113614012">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p115080591131">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p1651705917317">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p155266591535">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row7259123616012"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p7259143613011">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p11535959337">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p1154416599319">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p85533594314">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row02597361509"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p1925973612013">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p185621559032">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p18571159134">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p185808591535">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row1642015015416"><td class="cellrowborder" rowspan="4" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p11518614417">EulerOS release 2.5</p>
+<p id="cce_bulletin_0301__p1952176846"></p>
+<p id="cce_bulletin_0301__p12521661414"></p>
+<p id="cce_bulletin_0301__p1531263418"></p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p9529617414">v1.25</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p15520618412">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p20527617416">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.1.5.2.6.1.5 "><p id="cce_bulletin_0301__p20521761042">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row1875675718313"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p852061941">v1.23</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p05236544">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p9521761347">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p152861944">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row47871354530"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p11521365410">v1.21</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p552864415">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p12521461343">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p1252176948">√</p>
+</td>
+</tr>
+<tr id="cce_bulletin_0301__row1097516461936"><td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.1 "><p id="cce_bulletin_0301__p1853764420">v1.19</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.2 "><p id="cce_bulletin_0301__p17531061449">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.3 "><p id="cce_bulletin_0301__p1053362419">√</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.1.5.2.6.1.4 "><p id="cce_bulletin_0301__p753261241">√</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+<p id="cce_bulletin_0301__p5708143654611"></p>
 </div>
 <p id="cce_bulletin_0301__p1039783315444">The OS patches and verification results will be updated from time to time. You can update the operating system based on your needs.</p>
 </div>
diff --git a/docs/cce/umn/cce_productdesc_0002.html b/docs/cce/umn/cce_productdesc_0002.html
new file mode 100644
index 00000000..8f25e71d
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0002.html
@@ -0,0 +1,409 @@
+<a name="cce_productdesc_0002"></a><a name="cce_productdesc_0002"></a>
+
+<h1 class="topictitle1">Permissions</h1>
+<div id="body32001227"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p123631955111810">CCE allows you to assign permissions to IAM users and user groups under your tenant accounts. CCE combines the advantages of Identity and Access Management (IAM) and Kubernetes Role-based Access Control (RBAC) to provide a variety of authorization methods, including IAM fine-grained/token authorization and cluster-/namespace-scoped authorization.</p>
+<div class="p" id="cce_productdesc_0002__en-us_topic_0000001550245829_p206041921795">CCE permissions are described as follows:<ul id="cce_productdesc_0002__en-us_topic_0000001550245829_ul1689014153919"><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li46052152312"><strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b14580139191917"><a href="#cce_productdesc_0002__en-us_topic_0000001550245829_section14734188">Cluster-level permissions</a></strong>: Cluster-level permissions management evolves out of the system policy authorization feature of IAM. IAM users in the same user group have the same permissions. On IAM, you can configure system policies to describe which IAM user groups can perform which operations on cluster resources. For example, you can grant user group A to create and delete cluster X, add a node, or install an add-on, while granting user group B to view information about cluster X. <p id="cce_productdesc_0002__en-us_topic_0000001550245829_p161401647231">Cluster-level permissions involve CCE non-Kubernetes APIs and support fine-grained IAM policies and enterprise project management capabilities.</p>
+</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li128903151991"><strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b12646617111918"><a href="#cce_productdesc_0002__en-us_topic_0000001550245829_section54736241399">Namespace-level permissions</a></strong>: You can regulate users' or user groups' access to <strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b1878082813513">Kubernetes resources</strong>, such as workloads, jobs, and Services, in a single namespace based on their Kubernetes RBAC roles. CCE has also been enhanced based on open-source capabilities. It supports RBAC authorization based on IAM user or user group, and RBAC authentication on access to APIs using IAM tokens.<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p112293116233">Namespace-level permissions involve CCE Kubernetes APIs and are enhanced based on the Kubernetes RBAC capabilities. Namespace-level permissions can be granted to IAM users or user groups for authentication and authorization, but are independent of fine-grained IAM policies. For details, see <a href="https://kubernetes.io/docs/reference/access-authn-authz/rbac/" target="_blank" rel="noopener noreferrer">Using RBAC Authorization</a>.</p>
+</li></ul>
+</div>
+<div class="caution" id="cce_productdesc_0002__en-us_topic_0000001550245829_note560142111218"><span class="cautiontitle"><img src="public_sys-resources/caution_3.0-en-us.png"> </span><div class="cautionbody"><ul id="cce_productdesc_0002__en-us_topic_0000001550245829_ul1919309266"><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li2093814912263"><strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b1181892714166">Cluster-level permissions</strong> are configured only for cluster-related resources (such as clusters and nodes). You must also configure <a href="#cce_productdesc_0002__en-us_topic_0000001550245829_section54736241399">namespace permissions</a> to operate Kubernetes resources (such as workloads, jobs, and Services).</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li9232193524714">After you create a cluster of v1.11.7-r2 or later, CCE automatically assigns the cluster-admin permissions of all namespaces in the cluster to you, which means you have full control on the cluster and all resources in all namespaces.</li></ul>
+</div></div>
+<div class="section" id="cce_productdesc_0002__en-us_topic_0000001550245829_section14734188"><a name="cce_productdesc_0002__en-us_topic_0000001550245829_section14734188"></a><a name="en-us_topic_0000001550245829_section14734188"></a><h4 class="sectiontitle">Cluster-level Permissions (Assigned by Using IAM System Policies)</h4><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p88918558572">By default, new IAM users do not have permissions assigned. You need to add a user to one or more groups, and attach permissions policies or roles to these groups. Users inherit permissions from the groups to which they are added and can perform specified operations on cloud services based on the permissions.</p>
+<p class="MsoNormal" id="cce_productdesc_0002__en-us_topic_0000001550245829_p20328083">CCE is a project-level service deployed and accessed in specific physical regions. To assign AOM permissions to a user group, specify the scope as region-specific projects and select projects for the permissions to take effect. If <strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b18299032199">All projects</strong> is selected, the permissions will take effect for the user group in all region-specific projects. When accessing CCE, the users need to switch to a region where they have been authorized to use the CCE service.</p>
+<div class="p" id="cce_productdesc_0002__en-us_topic_0000001550245829_p145814361569">You can grant users permissions by using roles and policies.<ul id="cce_productdesc_0002__en-us_topic_0000001550245829_ul1191262315294"><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li20912122372914">Roles: A type of coarse-grained authorization mechanism that defines permissions related to user responsibilities. This mechanism provides only a limited number of service-level roles for authorization. When using roles to assign permissions, you need to also assign other roles on which the permissions depend to take effect. However, roles are not an ideal choice for fine-grained authorization and secure access control.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li12912102317292">Policies: A type of fine-grained authorization mechanism that defines permissions required to perform operations on specific cloud resources under certain conditions. This mechanism allows for more flexible policy-based authorization, meeting requirements for secure access control. For example, you can assign users only the permissions for managing a certain type of clusters and nodes. </li></ul>
+</div>
+<p class="MsoNormal" id="cce_productdesc_0002__en-us_topic_0000001550245829_p47812724"><a href="#cce_productdesc_0002__en-us_topic_0000001550245829_table9857780">Table 1</a> lists all the system permissions supported by CCE.</p>
+
+<div class="tablenoborder"><a name="cce_productdesc_0002__en-us_topic_0000001550245829_table9857780"></a><a name="en-us_topic_0000001550245829_table9857780"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0002__en-us_topic_0000001550245829_table9857780" frame="border" border="1" rules="all"><caption><b>Table 1 </b>System permissions supported by CCE</caption><thead align="left"><tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row46070597"><th align="left" class="cellrowborder" valign="top" width="15.310000000000002%" id="mcps1.3.4.6.2.5.1.1"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p40730901">Role/Policy Name</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="26.6%" id="mcps1.3.4.6.2.5.1.2"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p10868702">Description</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="13.58%" id="mcps1.3.4.6.2.5.1.3"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p7949639">Type</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="44.51%" id="mcps1.3.4.6.2.5.1.4"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p39940984">Dependencies</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row746116215286"><td class="cellrowborder" valign="top" width="15.310000000000002%" headers="mcps1.3.4.6.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p58132325">CCE Administrator</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.6%" headers="mcps1.3.4.6.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p12163104311414">Read and write permissions for CCE clusters and all resources (including workloads, nodes, jobs, and Services) in the clusters</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.58%" headers="mcps1.3.4.6.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p6771693">Role</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.51%" headers="mcps1.3.4.6.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1058915014393">Users granted permissions of this policy must also be granted permissions of the following policies:</p>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1643815565396"><strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b7903607374">Global service project</strong>: OBS Buckets Viewer and OBS Administrator</p>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1392401254419"><strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b4295192419136">Region-specific projects</strong>: Tenant Guest, Server Administrator, ELB Administrator, SFS Administrator, SWR Admin, and APM FullAccess</p>
+<div class="note" id="cce_productdesc_0002__en-us_topic_0000001550245829_note4134123212367"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p42148358389">Users with both <strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b19809125073711">CCE Administrator</strong> and <strong id="cce_productdesc_0002__en-us_topic_0000001550245829_b1599914428371">NAT Gateway Administrator</strong> policies can use NAT Gateway functions for clusters.</p>
+</div></div>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row13994266"><td class="cellrowborder" valign="top" width="15.310000000000002%" headers="mcps1.3.4.6.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p59793748">CCE FullAccess</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.6%" headers="mcps1.3.4.6.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p11455439">Common operation permissions on CCE cluster resources, excluding the namespace-level permissions for the clusters (with Kubernetes RBAC enabled) and the privileged administrator operations, such as agency configuration and cluster certificate generation</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.58%" headers="mcps1.3.4.6.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p55475379">Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.51%" headers="mcps1.3.4.6.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p64320678">None.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row19572825"><td class="cellrowborder" valign="top" width="15.310000000000002%" headers="mcps1.3.4.6.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p41895032">CCE ReadOnlyAccess</p>
+</td>
+<td class="cellrowborder" valign="top" width="26.6%" headers="mcps1.3.4.6.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p38054464">Permissions to view CCE cluster resources, excluding the namespace-level permissions of the clusters (with Kubernetes RBAC enabled)</p>
+</td>
+<td class="cellrowborder" valign="top" width="13.58%" headers="mcps1.3.4.6.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p62512728">Policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="44.51%" headers="mcps1.3.4.6.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p30366184">None.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0002__en-us_topic_0000001550245829_table65762630" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Common operations supported by CCE system policies</caption><thead align="left"><tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row64098000"><th align="left" class="cellrowborder" valign="top" width="32.78%" id="mcps1.3.4.7.2.5.1.1"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p24555510">Operation</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="21.8%" id="mcps1.3.4.7.2.5.1.2"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1948725512381">CCE ReadOnlyAccess</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="22.99%" id="mcps1.3.4.7.2.5.1.3"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p2981924192919">CCE FullAccess</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="22.43%" id="mcps1.3.4.7.2.5.1.4"><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p196633589378">CCE Administrator</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row33671837142011"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p17681517143220">Creating a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p951543514120">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p2064852515494">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p26481125164915">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1136803716207"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p15769181710326">Deleting a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p11444853203813">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p15648192515498">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5648182517498">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row236893713200"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p157698171326">Updating a cluster, for example, updating cluster node scheduling parameters and providing RBAC support to clusters</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p194443533385">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p3741126114910">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p0741526164913">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row14369237182014"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p16770181763217">Upgrading a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p17444105318385">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p3742162614491">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p974272617496">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row336911371201"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p97708172320">Waking up a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p8444053163815">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p189931273493">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p3994162712497">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row10369173792011"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p477121710323">Hibernating a cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p11444653183811">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p179943276493">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p499452717495">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row9371153720209"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p10772817153214">Listing all clusters</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1244519535388">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5483192920492">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p13483182964912">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1337193719205"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1877361717328">Querying cluster details</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p512713462410">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p107982052184116">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5428456194111">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row183721437152013"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p107738172328">Adding a node</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p54451153103811">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5824195273713">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p266419581373">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1337223782012"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p10774717183215">Deleting one or more nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p114458534385">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p53161831184915">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p131613319498">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row537316378201"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p187751317163218">Updating a cluster node, for example, updating the node name</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p7445553113813">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1813617334496">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p513613354910">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row9374137182017"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p2775131773214">Querying node details</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p9445135311388">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p913612337495">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p513619338493">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row95581429192015"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5775181718326">Listing all nodes</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p7445125316383">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1082525212371">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p13664758163710">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row4559162992016"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p17776517113217">Listing all jobs</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p17445125323810">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p108252523372">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p4664155813377">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row195591929132018"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p2777817153217">Deleting one or more cluster jobs</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1644545343812">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p55311735104920">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1253213564919">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row2056082962010"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p777718179327">Querying job details</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p644518533380">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p10532193594914">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1353223554916">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row176811342112812"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p16681642142819">Creating a storage volume</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5446653133815">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p566037154915">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p2664370499">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row17431133642816"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p9432133662812">Deleting a storage volume</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p194460531380">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1767103716494">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p136719371499">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1355001813192"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p19551121810199">Performing operations on all Kubernetes resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p114474533384">√ (Kubernetes RBAC required)</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p17825185218373">√ (Kubernetes RBAC required)</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p76651258163715">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row7655154602020"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p540810333219">Performing all operations on an Elastic Cloud Server (ECS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1444745314383">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p17825115283720">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p196651058113715">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row13685854112019"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5545230133217">Performing all operations on Elastic Volume Service (EVS) disks</p>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1666335113594">EVS disks can be attached to cloud servers and scaled to a higher capacity whenever needed.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p124482053133813">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p082585219373">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p156651583373">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1222410528205"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p112083121013">Performing all operations on VPC</p>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p8937625175814">A cluster must run in a VPC. When creating a namespace, you need to create or associate a VPC for the namespace so that all containers in the namespace will run in the VPC.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p2448155315380">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p18825145253713">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p4665658123714">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row19085143614"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1357112152343">Viewing details of all resources on an ECS</p>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p957215152348">In CCE, a node is an ECS with multiple EVS disks.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p345115315387">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p12827115211371">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p26661858143714">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1690818133619"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p118611115101816">Listing all resources on an ECS</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p845125313388">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p8827205223713">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p5666175811379">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row119081216360"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1957301523411">Viewing details about all EVS disk resources EVS disks can be attached to cloud servers and scaled to a higher capacity whenever needed.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p845113538382">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p17827135213711">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1266625815377">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row169081414365"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p11788141442118">Listing all EVS resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p114511453183810">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p4827135253711">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p136661258113714">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1490710113616"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p55734154348">Viewing details about all VPC resources</p>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1557361573415">A cluster must run in a VPC. When creating a namespace, you need to create or associate a VPC for the namespace so that all containers in the namespace will run in the VPC.</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p44521953103819">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1982835213712">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1666185819379">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1490741203618"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p48104012227">Listing all VPC resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p513200194519">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p91312011450">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p151340154510">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row690731113615"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p7222143322410">Viewing details about all Elastic Load Balance (ELB) resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p0142015456">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1314904453">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p814150194515">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row690618133611"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p107417364247">Listing all ELB resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p14141002450">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p31412011456">x</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p11141900457">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1190610110369"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1954215550240">Viewing Scalable File Service (SFS) resource details</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p12142004455">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p615130124514">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p8151701453">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1290613117369"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p869114526243">Listing all SFS resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p115180204514">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p18151064518">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p9157013453">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row1290613116369"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p28621210162516">Viewing Application Operations Management (AOM) resource details</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p13158074514">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p191520024510">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p11580164512">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row79050173611"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p10970151614255">Listing AOM resources</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p245411417458">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1845474164510">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p144543412450">√</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0002__en-us_topic_0000001550245829_row119058113367"><td class="cellrowborder" valign="top" width="32.78%" headers="mcps1.3.4.7.2.5.1.1 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p575812138257">Performing all operations on AOM auto scaling rules</p>
+</td>
+<td class="cellrowborder" valign="top" width="21.8%" headers="mcps1.3.4.7.2.5.1.2 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p122891664512">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.99%" headers="mcps1.3.4.7.2.5.1.3 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p1428916618451">√</p>
+</td>
+<td class="cellrowborder" valign="top" width="22.43%" headers="mcps1.3.4.7.2.5.1.4 "><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p22891966452">√</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_productdesc_0002__en-us_topic_0000001550245829_section54736241399"><a name="cce_productdesc_0002__en-us_topic_0000001550245829_section54736241399"></a><a name="en-us_topic_0000001550245829_section54736241399"></a><h4 class="sectiontitle">Namespace-level Permissions (Assigned by Using Kubernetes RBAC)</h4><p id="cce_productdesc_0002__en-us_topic_0000001550245829_p293018587113">You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. The RBAC API declares four kinds of Kubernetes objects: Role, ClusterRole, RoleBinding, and ClusterRoleBinding, which are described as follows:</p>
+<ul id="cce_productdesc_0002__en-us_topic_0000001550245829_ul1051101311020"><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0249851132_li1481515491386">Role: defines a set of rules for accessing Kubernetes resources in a namespace.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0249851132_li1224120528819">RoleBinding: defines the relationship between users and roles.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0249851132_li11770153233818">ClusterRole: defines a set of rules for accessing Kubernetes resources in a cluster (including all namespaces).</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0249851132_li15813127781">ClusterRoleBinding: defines the relationship between users and cluster roles.</li></ul>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p13511813111010">Role and ClusterRole specify actions that can be performed on specific resources. RoleBinding and ClusterRoleBinding bind roles to specific users, user groups, or ServiceAccounts. See the following figure.</p>
+<div class="fignone" id="cce_productdesc_0002__en-us_topic_0000001550245829_fig1751131311103"><span class="figcap"><b>Figure 1 </b>Role binding</span><br><span><img id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0249851132_image19499911182110" src="en-us_image_0261301557.png"></span></div>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p18544162681014">On the CCE console, you can assign permissions to a user or user group to access resources in one or all namespaces. By default, the CCE console provides the following ClusterRoles:</p>
+<ul id="cce_productdesc_0002__en-us_topic_0000001550245829_ul12544126191012"><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0084600596_li1754413268102">view (read-only): read-only permission on most resources in all or selected namespaces.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0084600596_li15545182611109">edit (development): read and write permissions on most resources in all or selected namespaces. If this ClusterRole is configured for all namespaces, its capability is the same as the O&amp;M permission.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0084600596_li14545926101013">admin (O&amp;M): read and write permissions on most resources in all namespaces, and read-only permission on nodes, storage volumes, namespaces, and quota management.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_en-us_topic_0084600596_li10545926201011">cluster-admin (administrator): read and write permissions on all resources in all namespaces.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li19771313143717">drainage-editor: drain a node.</li><li id="cce_productdesc_0002__en-us_topic_0000001550245829_li20758163163711">drainage-viewer: view the nodal drainage status but cannot drain a node.</li></ul>
+</div>
+<p id="cce_productdesc_0002__en-us_topic_0000001550245829_p41271722133">In addition to cluster-admin, admin, edit, and view, you can define Roles and RoleBindings to configure the permissions to add, delete, modify, and query resources, such as pods, Deployments, and Services, in the namespace.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000001550437509.html">Service Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0003.html b/docs/cce/umn/cce_productdesc_0003.html
new file mode 100644
index 00000000..17963c18
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0003.html
@@ -0,0 +1,136 @@
+<a name="cce_productdesc_0003"></a><a name="cce_productdesc_0003"></a>
+
+<h1 class="topictitle1">Product Advantages</h1>
+<div id="body32001227"><div class="section" id="cce_productdesc_0003__en-us_topic_0000001499246142_section2011513952"><h4 class="sectiontitle">Why CCE?</h4><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p118653920810">CCE is a container service built on Docker and Kubernetes. A wealth of features enable you to run container clusters at scale. CCE eases containerization thanks to its reliability, performance, and open source engagement.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p717691813612"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b16215635">Easy to Use</strong></p>
+<ul id="cce_productdesc_0003__en-us_topic_0000001499246142_ul998916336618"><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li1397163413267">Creating a Kubernetes cluster is as easy as a few clicks on the web console. You can deploy and manage VMs and BMSs together.</li><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li203191536152617">CCE automates deployment and O&amp;M of containerized applications throughout their lifecycle.</li><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li14166163852618">You can resize clusters and workloads by setting auto scaling policies. In-the-moment load spikes are no longer headaches.</li><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li1687104019261">The console walks you through the steps to upgrade Kubernetes clusters.</li><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li899011331261">CCE supports turnkey Helm charts.</li></ul>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p09271040665"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1961017591683">High Performance</strong></p>
+<ul id="cce_productdesc_0003__en-us_topic_0000001499246142_ul138394295913"><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li429883519152">CCE runs on mature IaaS services and heterogeneous compute resources. You can launch containers at scale.</li><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li173831142185916">AI computing is 3x to 5x better with NUMA BMSs and high-speed InfiniBand network cards.</li></ul>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p124596219711"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b92661562287">Highly Available and Secure</strong></p>
+<ul id="cce_productdesc_0003__en-us_topic_0000001499246142_ul736815129719"><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li444014278275">HA: Three master nodes in different AZs for your cluster control plane. Multi-active DR for your nodes and workloads. All these ensure service continuity when one of the nodes is down or an AZ gets hit by natural disasters.<div class="fignone" id="cce_productdesc_0003__en-us_topic_0000001499246142_fig36841249172217"><span class="figcap"><b>Figure 1 </b>High-availability setup of clusters</span><br><span><img id="cce_productdesc_0003__en-us_topic_0000001499246142_image171218120581" src="en-us_image_0000001550365685.png"></span></div>
+</li><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li14368312479">Secure: Integrating IAM and Kubernetes RBAC, CCE clusters are under your full control. You can set different RBAC permissions for IAM users on the console.</li></ul>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p127513328710"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1580943333619">Open and Compatible</strong></p>
+<ul id="cce_productdesc_0003__en-us_topic_0000001499246142_ul1012565511715"><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li14075693417">CCE runs on Docker that automates container deployment, discovery, scheduling, and scaling.</li><li id="cce_productdesc_0003__en-us_topic_0000001499246142_li11100444113715">CCE is compatible with native Kubernetes APIs and kubectl. Updates from Kubernetes and Docker communities are regularly incorporated into CCE.</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0003__en-us_topic_0000001499246142_section16681123204515"><h4 class="sectiontitle">Comparative Analysis of CCE and On-Premises Kubernetes Cluster Management Systems</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0003__en-us_topic_0000001499246142_table2500132713311" frame="border" border="1" rules="all"><caption><b>Table 1 </b>CCE clusters versus on-premises Kubernetes clusters</caption><thead align="left"><tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row220219414418"><th align="left" class="cellrowborder" valign="top" width="18.41%" id="mcps1.3.2.2.2.4.1.1"><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1620319415412"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1342910754316">Area of Focus</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="30.94%" id="mcps1.3.2.2.2.4.1.2"><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p10203047417"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1897116185441">On-Premises Cluster</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50.64999999999999%" id="mcps1.3.2.2.2.4.1.3"><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p132814015523"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b188421331174416">CCE</strong></p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row9553162714311"><td class="cellrowborder" valign="top" width="18.41%" headers="mcps1.3.2.2.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p5553172717316">Ease of use</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.94%" headers="mcps1.3.2.2.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p55535271630">You have to handle all the complexity in deploying and managing Kubernetes clusters. Cluster upgrades are often a heavy burden to O&amp;M personnel.</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.64999999999999%" headers="mcps1.3.2.2.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1154384153915"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1349501213542">Easy to manage and use clusters</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p027973724611">You can create a Kubernetes container cluster in a few clicks. No need to set up Docker or Kubernetes environments. CCE automates deployment and O&amp;M of containerized applications throughout their lifecycle.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p88411280495">CCE supports turnkey Helm charts.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p127915379462">Using CCE is as simple as choosing a cluster and the workloads that you want to run in the cluster. CCE takes care of cluster management and you focus on app development.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row1555317279315"><td class="cellrowborder" valign="top" width="18.41%" headers="mcps1.3.2.2.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p45531427933">Scalability</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.94%" headers="mcps1.3.2.2.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p105541327336">You have to assess service loads and cluster health before resizing a cluster.</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.64999999999999%" headers="mcps1.3.2.2.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p53281825164516"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1210711518197">Managed scaling service</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p12862916124816">CCE auto scales clusters and workloads according to resource metrics and scaling policies.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row25541427138"><td class="cellrowborder" valign="top" width="18.41%" headers="mcps1.3.2.2.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p655412710319">Reliability</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.94%" headers="mcps1.3.2.2.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p175547270318">Only one master node is available in a cluster. Once this node is down, the entire cluster is down, as well as all the applications in it.</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.64999999999999%" headers="mcps1.3.2.2.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p457211509491"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1530016122295">High availability</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p15931149113213">Enabling HA when creating a cluster will create three master nodes for the control plane. Single points of failure (SPOFs) will not shut down your cluster.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row2554182714317"><td class="cellrowborder" valign="top" width="18.41%" headers="mcps1.3.2.2.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p6554927535">Efficiency</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.94%" headers="mcps1.3.2.2.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p855414275315">You have to either build an image repository or turn to a third-party one. Images are pulled in serial.</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.64999999999999%" headers="mcps1.3.2.2.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1247754984514"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b59312151312">Rapid deployment with images</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p19529141610125">CCE connects to SWR to pull images in parallel. Faster pulls, faster container build.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row1555413271637"><td class="cellrowborder" valign="top" width="18.41%" headers="mcps1.3.2.2.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1555402716310">Cost</p>
+</td>
+<td class="cellrowborder" valign="top" width="30.94%" headers="mcps1.3.2.2.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p255410271434">Heavy upfront investment in installing, managing, and scaling cluster management infrastructure</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.64999999999999%" headers="mcps1.3.2.2.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p194549014619"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1974953916417">Cost effective</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1162952817525">You only pay for master nodes and the resources used to run and manage applications.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_productdesc_0003__en-us_topic_0000001499246142_section15905192016314"><h4 class="sectiontitle">Why Containers?</h4><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1448104943716">Docker is written in the Go language designed by Google. It provides operating-system-level virtualization. Linux Control Groups (cgroups), namespaces, and UnionFS (for example, AUFS) isolate each software process. A Docker container packages everything needed to run a software process. Containers are independent from each other and from the host.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1169922014410">Docker has moved forward to enhance container isolation. Containers have their own file systems. They cannot see each other's processes or network interfaces. This simplifies container creation and management.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p91351179331">VMs use a hypervisor to virtualize and allocate hardware resources (such as memory, CPU, network, and disk) of a host machine. A complete operating system runs on a VM. Each VM needs to run its own system processes. On the contrary, a container does not require hardware resource virtualization. It runs an application process directly in the the host machine OS kernel. No resource overheads are incurred by running system processes. Therefore, Docker is lighter and faster than VMs.</p>
+<div class="fignone" id="cce_productdesc_0003__en-us_topic_0000001499246142_fig185931295398"><span class="figcap"><b>Figure 2 </b>Comparison between Docker containers and VMs</span><br><span><img id="cce_productdesc_0003__en-us_topic_0000001499246142_image156175583719" src="en-us_image_0000001499406022.png"></span></div>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p734433154611">To sum up, Docker containers have many advantages over VMs.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p153513315462"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1486029191419">Resource use</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p10356336466">Containers have no overheads for virtualizing hardware and running a complete OS. They are faster than VMs in execution and file storage, while having no memory loss.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p2357331460"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b137665291231">Start speed</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p19354339464">It takes several minutes to start an application on a VM. Docker containers run on the host kernel without needing an independent OS. Apps in containers can start in seconds or even milliseconds. Development, testing, and deployment can be much faster.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p835933134614"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1086832119328">Consistent environment</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p113593324613">Different development, testing, and production environments sometimes prevent bug discovery before rollout. A Docker container image includes everything needed to run an application. You can deploy the same copy of configurations in different environments.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p13351433134619"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b107274553392">Continuous delivery and deployment</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1535143318468">"Deploy once, run everywhere" would be great for DevOps personnel.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p13517339466">Docker supports CI/CD by allowing you to customize container images. You compile Dockerfiles to build container images and use CI systems for testing. The Ops team can deploy images into production environments and use CD systems for auto deployment.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1935193394618">The use of Dockerfiles makes the DevOps process visible to everyone in a DevOps team. Developers can better understand both user needs and the O&amp;M headaches faced by the Ops team. The Ops team can also have some knowledge of the must-met conditions to run the application. The knowledge is helpful when the Ops personnel deploy container images in production.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p8355334469"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1648114421677">Portability</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1335123374614">Docker ensures environmental consistency across development, testing, and production. Portable Docker containers work the same, regardless of their running environments. Physical machines, VMs, public clouds, private clouds, or even laptops, you name it. Apps are now free to migrate and run anywhere.</p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p19351933114617"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1688655094116">Application update</strong></p>
+<p id="cce_productdesc_0003__en-us_topic_0000001499246142_p735103319467">Docker images consist of layers. Each layer is only stored once and different images can contain the exact same layers. When transferring such images, those same layers get transferred only once. This makes distribution efficient. Updating a containerized application is also simple. Either edit the top-most writable layer in the final image or add layers to the base image. Docker joins hands with many open source projects to maintain a variety of high-quality official images. You can directly use them in the production environment or easily build new images based on them.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0003__en-us_topic_0000001499246142_table1414519493517" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Containers versus traditional VMs</caption><thead align="left"><tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row1814616494516"><th align="left" class="cellrowborder" valign="top" width="26.46264626462646%" id="mcps1.3.3.21.2.4.1.1"><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p191467495516"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b1844411010189">Feature</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="37.47374737473747%" id="mcps1.3.3.21.2.4.1.2"><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p141461949135118"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b16491163145415">Containers</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="36.063606360636065%" id="mcps1.3.3.21.2.4.1.3"><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1014614913513"><strong id="cce_productdesc_0003__en-us_topic_0000001499246142_b17888151110544">VMs</strong></p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row1146124955115"><td class="cellrowborder" valign="top" width="26.46264626462646%" headers="mcps1.3.3.21.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p6146549155110">Start speed</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.47374737473747%" headers="mcps1.3.3.21.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p1146249105114">In seconds</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.063606360636065%" headers="mcps1.3.3.21.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p81461149135117">In minutes</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row17146144916519"><td class="cellrowborder" valign="top" width="26.46264626462646%" headers="mcps1.3.3.21.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p4146124912516">Disk capacity</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.47374737473747%" headers="mcps1.3.3.21.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p18146144911512">MB</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.063606360636065%" headers="mcps1.3.3.21.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p0146124918512">GB</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row141461549135115"><td class="cellrowborder" valign="top" width="26.46264626462646%" headers="mcps1.3.3.21.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p814617494512">Performance</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.47374737473747%" headers="mcps1.3.3.21.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p151463498517">Near-native performance</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.063606360636065%" headers="mcps1.3.3.21.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p20146194911512">Weak</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0003__en-us_topic_0000001499246142_row181465493514"><td class="cellrowborder" valign="top" width="26.46264626462646%" headers="mcps1.3.3.21.2.4.1.1 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p131473496514">Per-machine capacity</p>
+</td>
+<td class="cellrowborder" valign="top" width="37.47374737473747%" headers="mcps1.3.3.21.2.4.1.2 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p13147194918519">Thousands of containers</p>
+</td>
+<td class="cellrowborder" valign="top" width="36.063606360636065%" headers="mcps1.3.3.21.2.4.1.3 "><p id="cce_productdesc_0003__en-us_topic_0000001499246142_p121471849165110">Tens of VMs</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000001550437509.html">Service Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0004.html b/docs/cce/umn/cce_productdesc_0004.html
new file mode 100644
index 00000000..81186d4b
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0004.html
@@ -0,0 +1,19 @@
+<a name="cce_productdesc_0004"></a><a name="cce_productdesc_0004"></a>
+
+<h1 class="topictitle1">Basic Concepts</h1>
+<div id="body32001227"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_productdesc_0011.html">Basic Concepts</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0010.html">Mappings Between CCE and Kubernetes Terms</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0012.html">Regions and AZs</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000001550437509.html">Service Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0005.html b/docs/cce/umn/cce_productdesc_0005.html
new file mode 100644
index 00000000..f87961ff
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0005.html
@@ -0,0 +1,193 @@
+<a name="cce_productdesc_0005"></a><a name="cce_productdesc_0005"></a>
+
+<h1 class="topictitle1">Notes and Constraints</h1>
+<div id="body32001227"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p134431210154813">This section describes the notes and constraints on using CCE.</p>
+<div class="section" id="cce_productdesc_0005__en-us_topic_0000001499406014_section15956656154813"><h4 class="sectiontitle">Clusters and Nodes</h4><ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul686414167496"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li1186441616491">After a cluster is created, the following items cannot be changed:<ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul1386431634910"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li359558115311">Number of master nodes. For example, you cannot change a non-HA cluster (with one master node) to an HA cluster (with three master nodes).</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li452948112016">AZ of a master node.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li1686412165496">Network configuration of the cluster, such as the VPC, subnet, container CIDR block, Service CIDR block, IPv6 settings, and kube-proxy (forwarding) settings.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li1686451618494">Network model. For example, change the <strong id="cce_productdesc_0005__en-us_topic_0000001499406014_b151959434315">tunnel network</strong> to the <strong id="cce_productdesc_0005__en-us_topic_0000001499406014_b129721045163110">VPC network</strong>.</li></ul>
+</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li886411634910">Applications cannot be migrated between different namespaces.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li19864191664910">Underlying resources, such as ECSs (nodes), are limited by quotas and their inventory. Therefore, only some nodes may be successfully created during cluster creation, cluster scaling, or auto scaling.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li1286414164495">The ECS (node) specifications must be higher than 2 cores and 4 GB memory.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li125625428299">To access a CCE cluster through a VPN, ensure that the VPN CIDR block does not conflict with the VPC CIDR block where the cluster resides and the container CIDR block.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li10270151316279">Ubuntu 22.04 does not support the tunnel network model.</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0005__en-us_topic_0000001499406014_section3604141011384"><h4 class="sectiontitle">Networking</h4><ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul1599084417394"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li119902449391">By default, a NodePort Service is accessed within a VPC. If you need to use an EIP to access a NodePort Service through public networks, bind an EIP to the node in the cluster in advance.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li185003304441">LoadBalancer Services allow workloads to be accessed from public networks through <strong id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0107283537_b1511118124819">ELB</strong>. This access mode has the following restrictions:<ul id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0107283537_ul1241483374717"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0107283537_li162242024131019">It is recommended that automatically created load balancers not be used by other resources. Otherwise, these load balancers cannot be completely deleted, causing residual resources.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0107283537_li1080453124610">Do not change the listener name for the load balancer in clusters of v1.15 and earlier. Otherwise, the load balancer cannot be accessed.</li></ul>
+</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li3935110451">Constraints on network policies:<ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul2570125784511"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_li1388224818153">Only clusters that use the tunnel network model support network policies.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_li1393141012329">Network isolation is not supported for IPv6 addresses.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_en-us_topic_0000001199501178_li570615420397">Network policies do not support egress rules except for clusters of v1.23 or later.<p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p27292611408"><a name="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_en-us_topic_0000001199501178_li570615420397"></a><a name="en-us_topic_0000001499406014_en-us_topic_0000001199501178_en-us_topic_0000001199501178_li570615420397"></a>Egress rules are supported only in the following operating systems:</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_table12813218163117" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_row11813218183120"><th align="left" class="cellrowborder" valign="top" width="32.96%" id="mcps1.3.3.2.3.1.3.2.1.3.1.1"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p18132189316">OS</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="67.04%" id="mcps1.3.3.2.3.1.3.2.1.3.1.2"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p1581381817312">Kernel Version</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_row68142018133114"><td class="cellrowborder" valign="top" width="32.96%" headers="mcps1.3.3.2.3.1.3.2.1.3.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p198143185315">CentOS</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.04%" headers="mcps1.3.3.2.3.1.3.2.1.3.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p98141018153119">3.10.0-1062.18.1.el7.x86_64</p>
+<p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p538831018308">3.10.0-1127.19.1.el7.x86_64</p>
+<p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p16214182113020">3.10.0-1160.25.1.el7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_row18814118153114"><td class="cellrowborder" valign="top" width="32.96%" headers="mcps1.3.3.2.3.1.3.2.1.3.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p481431810315">EulerOS 2.5</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.04%" headers="mcps1.3.3.2.3.1.3.2.1.3.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p188141518133118">3.10.0-862.14.1.5.h591.eulerosv2r7.x86_64</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_row115473572295"><td class="cellrowborder" valign="top" width="32.96%" headers="mcps1.3.3.2.3.1.3.2.1.3.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p1181481843113">EulerOS 2.9</p>
+</td>
+<td class="cellrowborder" valign="top" width="67.04%" headers="mcps1.3.3.2.3.1.3.2.1.3.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_p181413185315">4.18.0-147.5.1.6.h541.eulerosv2r9.x86_64</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0000001199501178_li513145015013">If a cluster is upgraded to v1.23 in in-place mode, you cannot use egress rules because the node OS is not upgraded. In this case, reset the node.</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0005__en-us_topic_0000001499406014_section6820453113815"><h4 class="sectiontitle"><span class="keyword" id="cce_productdesc_0005__en-us_topic_0000001499406014_keyword10106445154415">Volumes</span></h4><ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul872415191527"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li37249199527">Constraints on EVS volumes:<ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul379814230529"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li1442042929">EVS disks cannot be attached across AZs and cannot be used by multiple workloads, multiple pods of the same workload, or multiple jobs.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li4870174703512">Data in a shared disk cannot be shared between nodes in a CCE cluster. If the same EVS disk is attached to multiple nodes, read and write conflicts and data cache conflicts may occur. When creating a Deployment, you are advised to create only one pod if you want to use EVS disks.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li829541919564">For clusters earlier than v1.19.10, if an HPA policy is used to scale out a workload with EVS volumes mounted, the existing pods cannot be read or written when a new pod is scheduled to another node.<p id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_p14296819135619"><a name="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li829541919564"></a><a name="en-us_topic_0000001499406014_en-us_topic_0276664173_li829541919564"></a>For clusters of v1.19.10 and later, if an HPA policy is used to scale out a workload with EVS volume mounted, a new pod cannot be started because EVS disks cannot be attached.</p>
+</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li1568933917388">When you create a StatefulSet and add a cloud storage volume, existing EVS volumes cannot be used.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li1935032917138">EVS disks that have partitions or have non-ext4 file systems cannot be imported.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li15870447163514">Container storage in CCE clusters of Kubernetes 1.13 or later version supports encryption. Currently, E2E encryption is supported only in certain regions.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664173_li735145611289">EVS volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li></ul>
+</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li1724111905211">Constraints on SFS volumes:<ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul1279643175519"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664535_li2081717523167">SFS volumes are available only in certain regions.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664535_li15870447163514">Container storage in CCE clusters of Kubernetes 1.13 or later version supports encryption. Currently, E2E encryption is supported only in certain regions.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664535_li12223010153511">Volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li></ul>
+</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li8472195565410">Constraints on OBS volumes:<ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul1598859115611"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664221_li671312521915">CCE clusters of v1.7.3-r8 and earlier do not support OBS volumes. You need to upgrade these clusters or create clusters of a later version that supports OBS.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0276664221_li147138531910">Volumes cannot be created in specified enterprise projects. Only the default enterprise project is supported.</li></ul>
+</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_li1286453895714">Constraints on snapshots and backups:<ul id="cce_productdesc_0005__en-us_topic_0000001499406014_ul2060763455913"><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0194132336_li617612518534">The snapshot function is available <strong id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0194132336_b1825411362331">only for clusters of v1.15 or later</strong> and requires the CSI-based everest add-on.</li><li id="cce_productdesc_0005__en-us_topic_0000001499406014_en-us_topic_0194132336_li199561838153910">The subtype (common I/O, high I/O, or ultra-high I/O), disk mode (SCSI or VBD), data encryption, sharing status, and capacity of an EVS disk created from a snapshot must be the same as those of the disk associated with the snapshot. These attributes cannot be modified after being queried or set.</li></ul>
+</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0005__en-us_topic_0000001499406014_section14820185316382"><h4 class="sectiontitle">Services</h4><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1714912563116">A Service is a Kubernetes resource object that defines a logical set of pods and a policy by which to access them.</p>
+<p id="cce_productdesc_0005__en-us_topic_0000001499406014_p9968458133717">A maximum of 6,000 Services can be created in each <span class="keyword" id="cce_productdesc_0005__en-us_topic_0000001499406014_keyword44731537155111">namespace</span>.</p>
+</div>
+<div class="section" id="cce_productdesc_0005__en-us_topic_0000001499406014_section81914147156"><h4 class="sectiontitle">CCE Cluster Resources</h4><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p674819500354">There are resource quotas for your CCE clusters in each region.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0005__en-us_topic_0000001499406014_table18730455131520" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row10730105561515"><th align="left" class="cellrowborder" valign="top" width="43.29%" id="mcps1.3.6.3.1.3.1.1"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p7730145541514">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="56.71000000000001%" id="mcps1.3.6.3.1.3.1.2"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p6730175515159">Constraints on Common Users</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row7730165518152"><td class="cellrowborder" valign="top" width="43.29%" headers="mcps1.3.6.3.1.3.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p3730155531516">Total number of clusters in a region</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.71000000000001%" headers="mcps1.3.6.3.1.3.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p3730655121517">50</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row1973005581517"><td class="cellrowborder" valign="top" width="43.29%" headers="mcps1.3.6.3.1.3.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p16730145517153">Number of nodes in a cluster (cluster management scale)</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.71000000000001%" headers="mcps1.3.6.3.1.3.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p11730455201516">You can select 50, 200, 1,000, or 2,000 nodes.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row127301255161515"><td class="cellrowborder" valign="top" width="43.29%" headers="mcps1.3.6.3.1.3.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p4730555101518">Maximum number of container pods created on each worker node</p>
+</td>
+<td class="cellrowborder" valign="top" width="56.71000000000001%" headers="mcps1.3.6.3.1.3.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p122753213012">This number can be set on the console when you are creating a cluster.</p>
+<p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1673065519151">In the VPC network model, a maximum of 256 pods can be created.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div class="section" id="cce_productdesc_0005__en-us_topic_0000001499406014_section576131611224"><h4 class="sectiontitle">Dependent Underlying Cloud Resources</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0005__en-us_topic_0000001499406014_table85331335142214" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row3533435192216"><th align="left" class="cellrowborder" valign="top" width="14.948505149485051%" id="mcps1.3.7.2.1.4.1.1"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p145331635132211">Category</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="43.30566943305669%" id="mcps1.3.7.2.1.4.1.2"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p15533535192212">Item</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="41.745825417458256%" id="mcps1.3.7.2.1.4.1.3"><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p10533153562220">Constraints on Common Users</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row8533203502214"><td class="cellrowborder" rowspan="3" valign="top" width="14.948505149485051%" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p35331135202210">Compute</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.30566943305669%" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1053224593212">Pods</p>
+</td>
+<td class="cellrowborder" valign="top" width="41.745825417458256%" headers="mcps1.3.7.2.1.4.1.3 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1853284513215">1,000</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row115335353225"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p953284516325">Cores</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p10532204533211">8,000</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row4534535112217"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p376672319214">RAM capacity (MB)</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p98761137426">16384000</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row11141142418325"><td class="cellrowborder" rowspan="9" valign="top" width="14.948505149485051%" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p9141824113212">Networking</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.30566943305669%" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1233683044111">VPCs per account</p>
+</td>
+<td class="cellrowborder" valign="top" width="41.745825417458256%" headers="mcps1.3.7.2.1.4.1.3 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p10336123034118">5</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row414172463216"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p333617301419">Subnets per account</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p143363304415">100</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row131421624173215"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1433615303417">Security groups per account</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p10336430124118">100</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row4143122417321"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p12336030164113">Security group rules per account</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p203361330104111">5000</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row1814392493213"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p7336230184113">Routes per route table</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p17336163019413">100</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row3624202811322"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p13337203064118">Routes per VPC</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1133710309418">100</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row7411111914412"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p11337163015418">VPC peering connections per region</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p83371330104110">50</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row5412101984110"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1833773018418">Network ACLs per account</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1433723020410">200</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row11624172853215"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p233710305413">Layer 2 connection gateways per account</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p933793010415">5</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row116241928163211"><td class="cellrowborder" rowspan="6" valign="top" width="14.948505149485051%" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p1624128173213">Load balancing</p>
+</td>
+<td class="cellrowborder" valign="top" width="43.30566943305669%" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p068161715018">Elastic load balancers</p>
+</td>
+<td class="cellrowborder" valign="top" width="41.745825417458256%" headers="mcps1.3.7.2.1.4.1.3 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p968121716013">50</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row1611929015"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p176820171017">Load balancer listeners</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p206851711016">100</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row162592893217"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p166818179013">Load balancer certificates</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p76861717014">120</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row186259286323"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p126818176012">Load balancer forwarding policies</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p19686171906">500</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row717805565916"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p068181717016">Load balancer backend host group</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p196817174018">500</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0005__en-us_topic_0000001499406014_row10179185518593"><td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.1 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p5683171407">Load balancer backend server</p>
+</td>
+<td class="cellrowborder" valign="top" headers="mcps1.3.7.2.1.4.1.2 "><p id="cce_productdesc_0005__en-us_topic_0000001499406014_p13681217902">500</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000001550437509.html">Service Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0007.html b/docs/cce/umn/cce_productdesc_0007.html
new file mode 100644
index 00000000..7a246b17
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0007.html
@@ -0,0 +1,21 @@
+<a name="cce_productdesc_0007"></a><a name="cce_productdesc_0007"></a>
+
+<h1 class="topictitle1">Application Scenarios</h1>
+<div id="body32001227"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_productdesc_0020.html">Infrastructure and Containerized Application Management</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0015.html">Auto Scaling in Seconds</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0017.html">DevOps and CI/CD</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0018.html">Hybrid Cloud Architecture</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000001550437509.html">Service Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0008.html b/docs/cce/umn/cce_productdesc_0008.html
new file mode 100644
index 00000000..40cf84a4
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0008.html
@@ -0,0 +1,75 @@
+<a name="cce_productdesc_0008"></a><a name="cce_productdesc_0008"></a>
+
+<h1 class="topictitle1">Related Services</h1>
+<div id="body32001227"><div class="fignone" id="cce_productdesc_0008__en-us_topic_0000001499565910_fig558751131120"><span class="figcap"><b>Figure 1 </b>Relationships between CCE and other services</span><br><span><img id="cce_productdesc_0008__en-us_topic_0000001499565910_image15464421118" src="en-us_image_0000001550245853.png"></span></div>
+<div class="section" id="cce_productdesc_0008__en-us_topic_0000001499565910_section19692192823213"><h4 class="sectiontitle">Relationships Between CCE and Other Services</h4>
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0008__en-us_topic_0000001499565910_table8332194183219" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Relationships between CCE and other services</caption><thead align="left"><tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row1533312413322"><th align="left" class="cellrowborder" valign="top" width="30.833882663150952%" id="mcps1.4.2.2.2.3.1.1"><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p333314417328">Service</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="69.16611733684904%" id="mcps1.4.2.2.2.3.1.2"><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p03331241113218">Relationship</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row13333154133220"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p4333174111327"><span class="keyword" id="cce_productdesc_0008__en-us_topic_0000001499565910_keyword28591117466">Elastic Cloud Server (ECS)</span></p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p12333184112328">An ECS with multiple EVS disks is a node in CCE. You can choose ECS specifications during node creation.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row7333164163219"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p14333144123218"><span class="keyword" id="cce_productdesc_0008__en-us_topic_0000001499565910_keyword1799514152460">Virtual Private Cloud (VPC)</span></p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p1733334103211">For security reasons, all clusters created by CCE must run in VPCs. When creating a namespace, you need to create a VPC or bind an existing VPC to the namespace so all containers in the namespace will run in this VPC.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row933316417325"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p16333194119325"><span class="keyword" id="cce_productdesc_0008__en-us_topic_0000001499565910_keyword861671812462">Elastic Load Balance (ELB)</span></p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p14223165614413">CCE works with ELB to load balance a workload's access requests across multiple pods.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row13333104173212"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p0333154133213">NAT Gateway</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p4523114613432">The NAT Gateway service provides source network address translation (SNAT) for container instances in a VPC. The SNAT feature translates private IP addresses of these container instances to the same EIP, which is a public IP address reachable on Internet.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row147868423339"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p5787204219335">Software Repository for Container (SWR)</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p1499672811434">An image repository is used to store and manage Docker images.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row1078711425338"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p137871142133319">Elastic Volume Service (EVS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p61567153433">EVS disks can be attached to cloud servers and scaled to a higher capacity whenever needed.</p>
+<p id="cce_productdesc_0008__en-us_topic_0000001499565910_p315618157431">An ECS with multiple EVS disks is a node in CCE. You can choose ECS specifications during node creation.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row17787124218333"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p137881042153320">Object Storage Service (OBS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p23262037184416">OBS provides stable, secure, cost-efficient, and object-based <span class="keyword" id="cce_productdesc_0008__en-us_topic_0000001499565910_keyword1189854114619">cloud storage for data of any size</span>. With OBS, you can create, modify, and delete buckets, as well as uploading, downloading, and deleting objects.</p>
+<p id="cce_productdesc_0008__en-us_topic_0000001499565910_p1327173719445">CCE allows you to create an OBS volume and attach it to a path inside a container.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row11901183123414"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p990163163416">Scalable File Service (SFS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p715034954415">SFS is a shared, fully managed file storage service. Compatible with the Network File System protocol, SFS file systems can elastically scale up to petabytes, thereby ensuring top performance of data-intensive and bandwidth-intensive applications.</p>
+<p id="cce_productdesc_0008__en-us_topic_0000001499565910_p815084914442">You can use SFS file systems as persistent storage for containers and attach the file systems to containers when creating a workload.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row1415994616346"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p1415964613340">Application Operations Management (AOM)</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p1015964613349">AOM collects container log files in formats like .log from CCE and dumps them to AOM. On the AOM console, you can easily query and view log files. In addition, AOM monitors CCE resource usage. You can define metric thresholds for CCE resource usage to trigger auto scaling.</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0008__en-us_topic_0000001499565910_row41591546113420"><td class="cellrowborder" valign="top" width="30.833882663150952%" headers="mcps1.4.2.2.2.3.1.1 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p815944619345">Cloud Trace Service (CTS)</p>
+</td>
+<td class="cellrowborder" valign="top" width="69.16611733684904%" headers="mcps1.4.2.2.2.3.1.2 "><p id="cce_productdesc_0008__en-us_topic_0000001499565910_p01605463344">CTS records operations on your cloud resources, allowing you to query, audit, and backtrack resource operation requests initiated from the management console or open APIs as well as responses to these requests.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000001550437509.html">Service Overview</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0010.html b/docs/cce/umn/cce_productdesc_0010.html
new file mode 100644
index 00000000..fac5003b
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0010.html
@@ -0,0 +1,197 @@
+<a name="cce_productdesc_0010"></a><a name="cce_productdesc_0010"></a>
+
+<h1 class="topictitle1">Mappings Between CCE and Kubernetes Terms</h1>
+<div id="body32001227"><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p878135073012">Kubernetes (K8s) is an open-source system for automating deployment, scaling, and management of container clusters. It is a container orchestration tool and a leading solution based on the distributed architecture of the container technology. Kubernetes is built on the open-source Docker technology that automates deployment, resource scheduling, service discovery, and dynamic scaling of containerized applications.</p>
+<p id="cce_productdesc_0010__en-us_topic_0000001550125849_p98121626202411">This topic describes the mappings between CCE and Kubernetes terms.</p>
+
+<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_productdesc_0010__en-us_topic_0000001550125849_table1998613303428" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Mappings between CCE and Kubernetes terms</caption><thead align="left"><tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row1298616301422"><th align="left" class="cellrowborder" valign="top" width="49.88%" id="mcps1.3.3.2.3.1.1"><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p111711330104311"><strong id="cce_productdesc_0010__en-us_topic_0000001550125849_b1737819353225">CCE</strong></p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="50.12%" id="mcps1.3.3.2.3.1.2"><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p59872304429"><strong id="cce_productdesc_0010__en-us_topic_0000001550125849_b8910124112224">Kubernetes</strong></p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row1498714304421"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p174703176434">Cluster</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p4470151704313">Cluster</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row209871630184218"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p5470017164317">Node</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p347061713436">Node</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row39192220186"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p2919222111812">Node pool</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p119192228182">NodePool</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row12987163074217"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p12470417184310">Container</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p15470111764319">Container</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row129878307422"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p647013179433">Image</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p194701717174311">Image</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row59877305420"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p5470151718438">Namespace</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p19471017104318">Namespace</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row89882030164212"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p8472171784311">Deployment</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p194721217124314">Deployment</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row99881330114219"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p14728176430">StatefulSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1472917194314">StatefulSet</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row11141369178"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p762314412439">DaemonSet</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p11624247437">DaemonSet</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row265116430427"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1047331710432">Job</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1347391744313">Job</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row186518435423"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p4473317104319">Cron job</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p16473117194320">CronJob</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row1165213432422"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1647381714434">Pod</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1473141719435">Pod</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row265216437428"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1180411718456">Service</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p4474017104318">Service</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row17182552145619"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1618214523560">ClusterIP</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p151825521560">Cluster IP</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row22661428105611"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p226682816565">NodePort</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p12266728185612">NodePort</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row290514436551"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1790513433555">LoadBalancer</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p690524315554">LoadBalancer</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row765312436425"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p14805151716450">Layer-7 load balancing (ingress)</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p17475161711436">Ingress</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row1865314437427"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p980518177457">Network policy</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1647581713435">NetworkPolicy</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row15461105072119"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p12478141712430">Chart</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p147811784314">Template</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row580555619428"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p19475181784313">ConfigMap</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1347519174435">ConfigMap</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row144573617197"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p10475217154318">Secret</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p12475131712432">Secret</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row9240456111814"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p947512173437">Label</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p34751217154317">Label</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row610535811182"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1247717176432">Label selector</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p647710178438">LabelSelector</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row1546110111910"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p16477181784320">Annotation</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p5477717164319">Annotation</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row2080635614213"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p447531717438">Volume</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1347641794312">PersistentVolume</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row58061056144210"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p6476191714312">PersistentVolumeClaim</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p13476181764320">PersistentVolumeClaim</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row6807185614210"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p19476617174313">Auto scaling</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p18476617134317">HPA</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row18808756104211"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p9476917194320">Node affinity</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1947661719437">NodeAffinity</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row17690144912314"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p18691104913231">Node anti-affinity</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p82055225217">NodeAntiAffinity</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row180818567423"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p347721712431">Pod affinity</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p10477917114313">PodAffinity</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row15808656134211"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p54777172431">Pod anti-affinity</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p18477121734317">PodAntiAffinity</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row12127629185210"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p212732955218">Webhook</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p3127202965216">Webhook</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row13641440522"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p336484145214">Endpoint</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1636415475216">Endpoint</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row1062219419438"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p547841744317">Quota</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p1147851734313">Resource Quota</p>
+</td>
+</tr>
+<tr id="cce_productdesc_0010__en-us_topic_0000001550125849_row19622164124314"><td class="cellrowborder" valign="top" width="49.88%" headers="mcps1.3.3.2.3.1.1 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p19478217194314">Resource limit</p>
+</td>
+<td class="cellrowborder" valign="top" width="50.12%" headers="mcps1.3.3.2.3.1.2 "><p id="cce_productdesc_0010__en-us_topic_0000001550125849_p18478201716431">Limit Range</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_productdesc_0004.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0011.html b/docs/cce/umn/cce_productdesc_0011.html
new file mode 100644
index 00000000..f9d7f890
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0011.html
@@ -0,0 +1,93 @@
+<a name="cce_productdesc_0011"></a><a name="cce_productdesc_0011"></a>
+
+<h1 class="topictitle1">Basic Concepts</h1>
+<div id="body32001227"><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p1662104418215">CCE provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. With CCE, you can easily deploy, manage, and scale containerized applications in the cloud.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p993512231511">The graphical CCE console enables E2E user experiences. In addition, CCE supports native Kubernetes APIs and kubectl. Before using CCE, you are advised to understand related basic concepts.</p>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section08562515129"><h4 class="sectiontitle"><span class="keyword" id="cce_productdesc_0011__en-us_topic_0000001550245837_keyword11850164512616">Cluster</span></h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p926884512321">A cluster is a group of one or more cloud servers (also known as nodes) in the same subnet. It has all the cloud resources (including VPCs and compute resources) required for running containers.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section6896519128"><h4 class="sectiontitle"><span class="keyword" id="cce_productdesc_0011__en-us_topic_0000001550245837_keyword1048211914286">Node</span></h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p1128754111213">A node is a cloud server (virtual or physical machine) running an instance of the Docker Engine. Containers are deployed, run, and managed on nodes. The node agent (kubelet) runs on each node to manage container instances on the node. The number of nodes in a cluster can be scaled.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1318453745818"><h4 class="sectiontitle">Node Pool</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p9931125113581">A node pool contains one node or a group of nodes with identical configuration in a cluster.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1658019402525"><h4 class="sectiontitle">Virtual Private Cloud (VPC)</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p16781105217521">A VPC is a logically isolated virtual network that facilitates secure internal network management and configurations. Resources in the same VPC can communicate with each other, but those in different VPCs cannot communicate with each other by default. VPCs provide the same network functions as physical networks and also advanced network services, such as elastic IP addresses and security groups.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section53011091611"><h4 class="sectiontitle">Security Group</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p1112317344215">A security group is a collection of access control rules for ECSs that have the same security protection requirements and are mutually trusted in a VPC. After a security group is created, you can create different access rules for the security group to protect the ECSs that are added to this security group.</p>
+</div>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p660884011524"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b5448110161912">Relationship Between Clusters, VPCs, Security Groups, and Nodes</strong></p>
+<div class="p" id="cce_productdesc_0011__en-us_topic_0000001550245837_p126087400523">As shown in <a href="#cce_productdesc_0011__en-us_topic_0000001550245837_fig96091540175212">Figure 1</a>, a region may comprise multiple VPCs. A VPC consists of one or more subnets. The subnets communicate with each other through a subnet gateway. A cluster is created in a subnet. There are three scenarios:<ul id="cce_productdesc_0011__en-us_topic_0000001550245837_ul4608104019522"><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li860824015212">Different clusters are created in different VPCs.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li4608154019521">Different clusters are created in the same subnet.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li1160854035214">Different clusters are created in different subnets.</li></ul>
+</div>
+<div class="fignone" id="cce_productdesc_0011__en-us_topic_0000001550245837_fig96091540175212"><a name="cce_productdesc_0011__en-us_topic_0000001550245837_fig96091540175212"></a><a name="en-us_topic_0000001550245837_fig96091540175212"></a><span class="figcap"><b>Figure 1 </b>Relationship between clusters, VPCs, security groups, and nodes</span><br><span><img id="cce_productdesc_0011__en-us_topic_0000001550245837_image15609240135216" src="en-us_image_0000001499565934.png"></span></div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section465312781318"><h4 class="sectiontitle"><span class="keyword" id="cce_productdesc_0011__en-us_topic_0000001550245837_keyword9883182014130">Pod</span></h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p5717134617419">A pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. A pod encapsulates an application container (or, in some cases, multiple containers), storage resources, a unique network IP address, and options that govern how the containers should run.</p>
+<div class="fignone" id="cce_productdesc_0011__en-us_topic_0000001550245837_fig133167321817"><span class="figcap"><b>Figure 2 </b>Pod</span><br><span><img id="cce_productdesc_0011__en-us_topic_0000001550245837_image1781701317442" src="en-us_image_0000001550365705.png"></span></div>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section5192203721619"><h4 class="sectiontitle">Container</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p3874163981611">A container is a running instance of a Docker image. Multiple containers can run on one node. Containers are actually software processes. Unlike traditional software processes, containers have separate namespace and do not run directly on a host.</p>
+<div class="fignone" id="cce_productdesc_0011__en-us_topic_0000001550245837_fig314445319512"><span class="figcap"><b>Figure 3 </b>Relationships between pods, containers, and nodes</span><br><span><img id="cce_productdesc_0011__en-us_topic_0000001550245837_image1234319444512" src="en-us_image_0000001550445737.png"></span></div>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1044118381619"><h4 class="sectiontitle"><span class="keyword" id="cce_productdesc_0011__en-us_topic_0000001550245837_keyword120918616357">Workload</span></h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p13573144745412">A workload is an application running on Kubernetes. No matter how many components are there in your workload, you can run it in a group of Kubernetes pods. A workload is an abstract model of a group of pods in Kubernetes. Workloads classified in Kubernetes include Deployments, StatefulSets, DaemonSets, jobs, and cron jobs.</p>
+<ul id="cce_productdesc_0011__en-us_topic_0000001550245837_ul47231377534"><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li127238715314"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b037912931714">Deployment</strong>: Pods are completely independent of each other and functionally identical. They feature auto scaling and rolling upgrade. Typical examples include Nginx and WordPress.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li062831612530"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b12834190161811">StatefulSet</strong>: Pods are not completely independent of each other. They have stable persistent storage, and feature orderly deployment and deletion. Typical examples include MySQL-HA and etcd.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li18175165995812"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b4945171761815">DaemonSet</strong>: A DaemonSet ensures that all or some nodes run a pod. It is applicable to pods running on every node. Typical examples include Ceph, Fluentd, and Prometheus Node Exporter.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li267857154311"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b19418123231816">Job</strong>: It is a one-time task that runs to completion. It can be executed immediately after being created. Before creating a workload, you can execute a job to upload an <span class="keyword" id="cce_productdesc_0011__en-us_topic_0000001550245837_keyword1767151071916">image</span> to the <span class="keyword" id="cce_productdesc_0011__en-us_topic_0000001550245837_keyword467121012192">image repository</span>.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li183631382347"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b1719710371194">Cron job</strong>: It runs a <span class="keyword" id="cce_productdesc_0011__en-us_topic_0000001550245837_keyword9640173910435">job</span> periodically on a given schedule. You can perform time synchronization for all active nodes at a fixed time point.</li></ul>
+<div class="fignone" id="cce_productdesc_0011__en-us_topic_0000001550245837_fig1486916324306"><span class="figcap"><b>Figure 4 </b>Relationship between workloads and pods</span><br><span><img id="cce_productdesc_0011__en-us_topic_0000001550245837_image6984750134512" src="en-us_image_0000001550125873.png"></span></div>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section349615041713"><h4 class="sectiontitle">Image</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p04131159182014">Docker creates an industry standard for packaging containerized applications. Docker images are like templates that include everything needed to run containers, and are used to create Docker containers. In other words, Docker image is a special file system that includes everything needed to run containers: programs, libraries, resources, and configuration files. It also contains configuration parameters (such as anonymous volumes, environment variables, and users) required within a container runtime. An image does not contain any dynamic data. Its content remains unchanged after being built. When deploying containerized applications, you can use images from Docker Hub, SoftWare Repository for Container (SWR), and your private image registries. For example, a Docker image can contain a complete Ubuntu operating system, in which only the required programs and dependencies are installed.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p1477353641718">Images become containers at runtime, that is, containers are created from images. Containers can be created, started, stopped, deleted, and suspended.</p>
+<div class="fignone" id="cce_productdesc_0011__en-us_topic_0000001550245837_fig19945344285"><span class="figcap"><b>Figure 5 </b>Relationship between images, containers, and workloads</span><br><span><img id="cce_productdesc_0011__en-us_topic_0000001550245837_image101301310163511" src="en-us_image_0000001499406030.png"></span></div>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1367517494173"><h4 class="sectiontitle">Namespace</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p1992119014456">A namespace is an abstract collection of resources and objects. It enables resources to be organized into non-overlapping groups. Multiple namespaces can be created inside a cluster and isolated from each other. This enables namespaces to share the same cluster services without affecting each other. Examples:</p>
+<ul id="cce_productdesc_0011__en-us_topic_0000001550245837_ul799062012020"><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li11990152010011">You can deploy workloads in a development environment into one namespace, and deploy workloads in a test environment into another namespace.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li12990142015014">Pods, Services, ReplicationControllers, and Deployments belong to a namespace (named <strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b91696201463">default</strong>, by default), whereas nodes and PersistentVolumes do not belong to any namespace.</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section197391010175211"><h4 class="sectiontitle">Service</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p102971230124718">A Service is an abstract method that exposes a group of applications running on a pod as network services.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p195831833164713">Kubernetes provides you with a service discovery mechanism without modifying applications. In this mechanism, Kubernetes provides pods with their own IP addresses and a single DNS for a group of pods, and balances load between them.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p1790485818507">Kubernetes allows you to specify a Service of a required type. The values and actions of different types of Services are as follows:</p>
+<ul id="cce_productdesc_0011__en-us_topic_0000001550245837_ul928493215525"><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li42841632105220"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b19976113175514">ClusterIP</strong>: ClusterIP Service, as the default Service type, is exposed through the internal IP address of the cluster. If this mode is selected, Services can be accessed only within the cluster.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li8284203235212"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b1340818219553">NodePort</strong>: NodePort Services are exposed through the IP address and static port of each node. A ClusterIP Service, to which a NodePort Service will route, is automatically created. By sending a request to &lt;NodeIP&gt;:&lt;NodePort&gt;, you can access a NodePort Service from outside of a cluster.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li172846329523"><strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b149311376557">LoadBalancer (ELB)</strong>: LoadBalancer (ELB) Services are exposed by using load balancers of the cloud provider. External load balancers can route to NodePort and ClusterIP Services.</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section16349814133"><h4 class="sectiontitle">Layer-7 Load Balancing (Ingress)</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p20281143012314">An ingress is a set of routing rules for requests entering a cluster. It provides Services with URLs, load balancing, SSL termination, and HTTP routing for external access to the cluster.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section02869431138"><h4 class="sectiontitle">Network Policy</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p10334165419314">Network policies provide policy-based network control to isolate applications and reduce the attack surface. A network policy uses label selectors to simulate traditional segmented networks and controls traffic between them and traffic from outside.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1151313582419"><h4 class="sectiontitle">ConfigMap</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p792981218515">A ConfigMap is used to store configuration data or configuration files as key-value pairs. ConfigMaps are similar to secrets, but provide a means of working with strings that do not contain sensitive information.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section877702415516"><h4 class="sectiontitle">Secret</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p3863193313510">Secrets resolve the configuration problem of sensitive data such as passwords, tokens, and keys, and will not expose the sensitive data in images or pod specs. A secret can be used as a volume or an environment variable.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section82555481559"><h4 class="sectiontitle">Label</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p118611829618">A label is a key-value pair and is associated with an object, for example, a pod. Labels are used to identify special features of objects and are meaningful to users. However, labels have no direct meaning to the kernel system.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1265919236617"><h4 class="sectiontitle">Label Selector</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p8809165634213">Label selector is the core grouping mechanism of Kubernetes. It identifies a group of resource objects with the same characteristics or attributes through the label selector client or user.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section257816531615"><h4 class="sectiontitle">Annotation</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p32291325151815">Annotations are defined in key-value pairs as labels are.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p137461032201812">Labels have strict naming rules. They define the metadata of Kubernetes objects and are used by label selectors.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p198092056124218">Annotations are additional user-defined information for external tools to search for a resource object.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section6105121086"><h4 class="sectiontitle">PersistentVolume</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p298882019817">A PersistentVolume (PV) is a network storage in a cluster. Similar to a node, it is also a cluster resource.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section116221321680"><h4 class="sectiontitle">PersistentVolumeClaim</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p1041010411989">A PV is a storage resource, and a PersistentVolumeClaim (PVC) is a request for a PV. PVC is similar to pod. Pods consume node resources, and PVCs consume PV resources. Pods request CPU and memory resources, and PVCs request data volumes of a specific size and access mode.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1778619588812"><h4 class="sectiontitle">Auto Scaling - HPA</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p695615111098">Horizontal Pod Autoscaling (HPA) is a function that implements horizontal scaling of pods in Kubernetes. The scaling mechanism of ReplicationController can be used to scale your Kubernetes clusters.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section8817192301814"><h4 class="sectiontitle">Affinity and Anti-Affinity</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p987702734112">If an application is not containerized, multiple components of the application may run on the same virtual machine and processes communicate with each other. However, in the case of containerization, software processes are packed into different containers and each container has its own lifecycle. For example, the transaction process is packed into a container while the monitoring/logging process and local storage process are packed into other containers. If closely related container processes run on distant nodes, routing between them will be costly and slow.</p>
+<ul id="cce_productdesc_0011__en-us_topic_0000001550245837_ul737254819229"><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li12884184011415">Affinity: Containers are scheduled onto the nearest node. For example, if application A and application B frequently interact with each other, it is necessary to use the affinity feature to keep the two applications as close as possible or even let them run on the same node. In this way, no performance loss will occur due to slow routing.</li><li id="cce_productdesc_0011__en-us_topic_0000001550245837_li1837394892215">Anti-affinity: Instances of the same application spread across different nodes to achieve higher availability. Once a node is down, instances on other nodes are not affected. For example, if an application has multiple replicas, it is necessary to use the anti-affinity feature to deploy the replicas on different nodes. In this way, no single point of failure will occur.</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section166493141106"><h4 class="sectiontitle">Node Affinity</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p10948182111103">By selecting labels, you can schedule pods to specific nodes.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section2849113361019"><h4 class="sectiontitle">Node Anti-Affinity</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p19798174419103">By selecting labels, you can prevent pods from being scheduled to specific nodes.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1549409112"><h4 class="sectiontitle">Pod Affinity</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p82443413117">You can deploy pods onto the same node to reduce consumption of network resources.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section4452114910113"><h4 class="sectiontitle">Pod Anti-Affinity</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p5412476128">You can deploy pods onto different nodes to reduce the impact of system breakdowns. Anti-affinity deployment is also recommended for workloads that may interfere with each other.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section1685083291311"><h4 class="sectiontitle">Resource Quota</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p103899422132">Resource quotas are used to limit the resource usage of users.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section134605211146"><h4 class="sectiontitle">Resource Limit (LimitRange)</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p122863365142">By default, all containers in Kubernetes have no CPU or memory limit. LimitRange (<strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b3218114122918">limits</strong> for short) is used to add a resource limit to a namespace, including the minimum, maximum, and default amounts of resources. When a pod is created, resources are allocated according to the <strong id="cce_productdesc_0011__en-us_topic_0000001550245837_b17877926163017">limits</strong> parameters.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section13820101175118"><h4 class="sectiontitle">Environment Variable</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p385183120514">An environment variable is a variable whose value can affect the way a running container will behave. A maximum of 30 environment variables can be defined at container creation time. You can modify environment variables even after workloads are deployed, increasing flexibility in workload configuration.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p9852731195120">The function of setting environment variables on CCE is the same as that of specifying ENV in a Dockerfile.</p>
+</div>
+<div class="section" id="cce_productdesc_0011__en-us_topic_0000001550245837_section6425397206"><h4 class="sectiontitle">Chart</h4><p id="cce_productdesc_0011__en-us_topic_0000001550245837_p9810111132512">For your Kubernetes clusters, you can use <a href="https://helm.sh/" target="_blank" rel="noopener noreferrer">Helm</a> to manage software packages, which are called charts. Helm is to Kubernetes what the apt command is to Ubuntu or what the yum command is to CentOS. Helm can quickly search for, download, and install charts.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p530203515203">Charts are a Helm packaging format. It describes only a group of related cluster resource definitions, not a real container image package. A Helm chart contains only a series of YAML files used to deploy Kubernetes applications. You can customize some parameter settings in a Helm chart. When installing a chart, Helm deploys resources in the cluster based on the YAML files defined in the chart. Related container images are not included in the chart but are pulled from the image repository defined in the YAML files.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p104929318351">Application developers need to push container image packages to the image repository, use Helm charts to package dependencies, and preset some key parameters to simplify application deployment.</p>
+<p id="cce_productdesc_0011__en-us_topic_0000001550245837_p20492631113510">Helm directly installs applications and their dependencies in the cluster based on the YAML files in a chart. Application users can search for, install, upgrade, roll back, and uninstall applications without defining complex deployment files.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_productdesc_0004.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0012.html b/docs/cce/umn/cce_productdesc_0012.html
new file mode 100644
index 00000000..abe7667c
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0012.html
@@ -0,0 +1,23 @@
+<a name="cce_productdesc_0012"></a><a name="cce_productdesc_0012"></a>
+
+<h1 class="topictitle1">Regions and AZs</h1>
+<div id="body32001227"><div class="section" id="cce_productdesc_0012__en-us_topic_0000001550445721_section853831873014"><h4 class="sectiontitle">Definition</h4><p id="cce_productdesc_0012__en-us_topic_0000001550445721_p212716216381">A region and availability zone (AZ) identify the location of a data center. You can create resources in a specific region and AZ.</p>
+<ul id="cce_productdesc_0012__en-us_topic_0000001550445721_ul1658935944510"><li id="cce_productdesc_0012__en-us_topic_0000001550445721_li1658975911454">Regions are divided based on geographical location and network latency. Public services, such as Elastic Cloud Server (ECS), Elastic Volume Service (EVS), Object Storage Service (OBS), Virtual Private Cloud (VPC), Elastic IP (EIP), and Image Management Service (IMS), are shared within the same region. Regions are classified as universal regions and dedicated regions. A universal region provides universal cloud services for common domains. A dedicated region provides services of the same type only or for specific domains.</li><li id="cce_productdesc_0012__en-us_topic_0000001550445721_li204701150465">An AZ contains one or more physical data centers. Each AZ has independent cooling, fire extinguishing, moisture-proof, and electricity facilities. Within an AZ, computing, network, storage, and other resources are logically divided into multiple clusters. AZs in a region are interconnected through high-speed optic fibers. This is helpful if you will deploy systems across AZs to achieve higher availability.</li></ul>
+<p id="cce_productdesc_0012__en-us_topic_0000001550445721_p1985632102414">Cloud services are available in many regions around the world. You can select a region and AZ as needed.</p>
+</div>
+<div class="section" id="cce_productdesc_0012__en-us_topic_0000001550445721_section1777417269304"><h4 class="sectiontitle">How to Select a Region?</h4><div class="p" id="cce_productdesc_0012__en-us_topic_0000001550445721_p113610560487">When selecting a region, consider the following factors:<ul id="cce_productdesc_0012__en-us_topic_0000001550445721_ul652682734920"><li id="cce_productdesc_0012__en-us_topic_0000001550445721_li352682734912">Location<p id="cce_productdesc_0012__en-us_topic_0000001550445721_p19532423409"><a name="cce_productdesc_0012__en-us_topic_0000001550445721_li352682734912"></a><a name="en-us_topic_0000001550445721_li352682734912"></a>Select a region close to you or your target users to reduce network latency and improve access rate.</p>
+</li></ul>
+</div>
+</div>
+<div class="section" id="cce_productdesc_0012__en-us_topic_0000001550445721_section318215301304"><h4 class="sectiontitle">Selecting an AZ</h4><p id="cce_productdesc_0012__en-us_topic_0000001550445721_en-us_topic_0184026189_p859161416717">When deploying resources, consider your applications' requirements on disaster recovery (DR) and network latency.</p>
+<ul id="cce_productdesc_0012__en-us_topic_0000001550445721_en-us_topic_0184026189_ul157203571473"><li id="cce_productdesc_0012__en-us_topic_0000001550445721_en-us_topic_0184026189_li7720175710711">For high DR capability, deploy resources in different AZs within the same region.</li><li id="cce_productdesc_0012__en-us_topic_0000001550445721_en-us_topic_0184026189_li109763595719">For lower network latency, deploy resources in the same AZ.</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0012__en-us_topic_0000001550445721_section147193843016"><h4 class="sectiontitle">Regions and Endpoints</h4><p id="cce_productdesc_0012__en-us_topic_0000001550445721_p361784821111">When using an API to access resources, you must specify a region and endpoint. For more information about regions and endpoints, see <a href="https://docs.otc.t-systems.com/en-us/endpoint/index.html" target="_blank" rel="noopener noreferrer">Regions and Endpoints</a>.</p>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_productdesc_0004.html">Basic Concepts</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0015.html b/docs/cce/umn/cce_productdesc_0015.html
new file mode 100644
index 00000000..d1644135
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0015.html
@@ -0,0 +1,22 @@
+<a name="cce_productdesc_0015"></a><a name="cce_productdesc_0015"></a>
+
+<h1 class="topictitle1">Auto Scaling in Seconds</h1>
+<div id="body32001227"><div class="section" id="cce_productdesc_0015__en-us_topic_0000001499725818_section13599448191517"><h4 class="sectiontitle">Application Scenarios</h4><ul id="cce_productdesc_0015__en-us_topic_0000001499725818_ul1996162161614"><li id="cce_productdesc_0015__en-us_topic_0000001499725818_li18410195231811">Shopping apps and websites, especially during promotions and flash sales</li><li id="cce_productdesc_0015__en-us_topic_0000001499725818_li541012523185">Live streaming, where service loads often fluctuate</li><li id="cce_productdesc_0015__en-us_topic_0000001499725818_li13996152161616">Games, where many players may go online in certain time periods</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0015__en-us_topic_0000001499725818_section191591464164"><h4 class="sectiontitle">Benefits</h4><p id="cce_productdesc_0015__en-us_topic_0000001499725818_p498121017168">CCE auto adjusts capacity to cope with service surges according to the policies you set. CCE adds or reduces cloud servers and containers to scale your cluster and workloads. Your applications will always have the right resources at the right time.</p>
+</div>
+<div class="section" id="cce_productdesc_0015__en-us_topic_0000001499725818_section823716175167"><h4 class="sectiontitle">Advantages</h4><ul id="cce_productdesc_0015__en-us_topic_0000001499725818_ul17765191942518"><li id="cce_productdesc_0015__en-us_topic_0000001499725818_li808486917">Flexible<p id="cce_productdesc_0015__en-us_topic_0000001499725818_p693012541793"><a name="cce_productdesc_0015__en-us_topic_0000001499725818_li808486917"></a><a name="en-us_topic_0000001499725818_li808486917"></a>Allows diverse types of scaling policies and scales containers within seconds once triggered.</p>
+</li><li id="cce_productdesc_0015__en-us_topic_0000001499725818_li633820141014">Highly available<p id="cce_productdesc_0015__en-us_topic_0000001499725818_p17508111191018"><a name="cce_productdesc_0015__en-us_topic_0000001499725818_li633820141014"></a><a name="en-us_topic_0000001499725818_li633820141014"></a>Monitors pod running and replaces unhealthy pods with new ones.</p>
+</li><li id="cce_productdesc_0015__en-us_topic_0000001499725818_li185002671012">Lower costs<p id="cce_productdesc_0015__en-us_topic_0000001499725818_p15133147121015"><a name="cce_productdesc_0015__en-us_topic_0000001499725818_li185002671012"></a><a name="en-us_topic_0000001499725818_li185002671012"></a>Bills you only for the scaled cloud servers as you use.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0015__en-us_topic_0000001499725818_section149871641161613"><h4 class="sectiontitle">Related Services</h4><p id="cce_productdesc_0015__en-us_topic_0000001499725818_p54049588619">HPA (Horizontal Pod Autoscaling) + CA (Cluster AutoScaling)</p>
+<div class="fignone" id="cce_productdesc_0015__en-us_topic_0000001499725818_fig13507742172514"><span class="figcap"><b>Figure 1 </b>How auto scaling works</span><br><span><img id="cce_productdesc_0015__en-us_topic_0000001499725818_image1927651124120" src="en-us_image_0000001550245869.png"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_productdesc_0007.html">Application Scenarios</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0017.html b/docs/cce/umn/cce_productdesc_0017.html
new file mode 100644
index 00000000..99ef3003
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0017.html
@@ -0,0 +1,22 @@
+<a name="cce_productdesc_0017"></a><a name="cce_productdesc_0017"></a>
+
+<h1 class="topictitle1">DevOps and CI/CD</h1>
+<div id="body32001227"><div class="section" id="cce_productdesc_0017__en-us_topic_0000001499406018_section1046918441177"><h4 class="sectiontitle">Application Scenario</h4><p id="cce_productdesc_0017__en-us_topic_0000001499406018_p118629497172">You may receive a lot feedback and requirements for your apps or services. You may want to boost user experience with new features. Continuous integration (CI) and delivery (CD) can help. CI/CD automates builds, tests, and merges, making app delivery faster.</p>
+</div>
+<div class="section" id="cce_productdesc_0017__en-us_topic_0000001499406018_section16396145511175"><h4 class="sectiontitle">Benefits</h4><p id="cce_productdesc_0017__en-us_topic_0000001499406018_p17210507181">CCE works with SWR to support DevOps and CI/CD. A pipeline automates coding, image build, grayscale release, and deployment based on code sources. Existing CI/CD systems can connect to CCE to containerize legacy applications.</p>
+</div>
+<div class="section" id="cce_productdesc_0017__en-us_topic_0000001499406018_section125063141813"><h4 class="sectiontitle">Advantages</h4><ul id="cce_productdesc_0017__en-us_topic_0000001499406018_ul37411636141915"><li id="cce_productdesc_0017__en-us_topic_0000001499406018_li616713454163">Efficient process<p id="cce_productdesc_0017__en-us_topic_0000001499406018_p058912713107"><a name="cce_productdesc_0017__en-us_topic_0000001499406018_li616713454163"></a><a name="en-us_topic_0000001499406018_li616713454163"></a>Reduces scripting workload by more than 80% through streamlined processes.</p>
+</li><li id="cce_productdesc_0017__en-us_topic_0000001499406018_li1391102513109">Flexible integration<p id="cce_productdesc_0017__en-us_topic_0000001499406018_p1892132911014"><a name="cce_productdesc_0017__en-us_topic_0000001499406018_li1391102513109"></a><a name="en-us_topic_0000001499406018_li1391102513109"></a>Provides various APIs to integrate with existing CI/CD systems for in-depth customization.</p>
+</li><li id="cce_productdesc_0017__en-us_topic_0000001499406018_li15741036191916">High performance<p id="cce_productdesc_0017__en-us_topic_0000001499406018_p19741133641913"><a name="cce_productdesc_0017__en-us_topic_0000001499406018_li15741036191916"></a><a name="en-us_topic_0000001499406018_li15741036191916"></a>Enables flexible scheduling with a containerized architecture.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0017__en-us_topic_0000001499406018_section14817201019189"><h4 class="sectiontitle">Related Services</h4><p id="cce_productdesc_0017__en-us_topic_0000001499406018_p96788536121">Software Repository for Container (SWR), Object Storage Service (OBS), Virtual Private Network (VPN)</p>
+<div class="fignone" id="cce_productdesc_0017__en-us_topic_0000001499406018_fig16107222132313"><span class="figcap"><b>Figure 1 </b>How DevOps works</span><br><span><img id="cce_productdesc_0017__en-us_topic_0000001499406018_image15291158142410" src="en-us_image_0000001499725850.png"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_productdesc_0007.html">Application Scenarios</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0018.html b/docs/cce/umn/cce_productdesc_0018.html
new file mode 100644
index 00000000..d83785b6
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0018.html
@@ -0,0 +1,27 @@
+<a name="cce_productdesc_0018"></a><a name="cce_productdesc_0018"></a>
+
+<h1 class="topictitle1">Hybrid Cloud Architecture</h1>
+<div id="body32001227"><div class="section" id="cce_productdesc_0018__en-us_topic_0000001550445713_section1046918441177"><h4 class="sectiontitle">Application Scenarios</h4><ul id="cce_productdesc_0018__en-us_topic_0000001550445713_ul6523153266"><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li3592349488">Multi-cloud deployment and disaster recovery<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p11869144911820"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li3592349488"></a><a name="en-us_topic_0000001550445713_li3592349488"></a>Running apps in containers on different clouds can ensure high availability. When a cloud is down, other clouds respond and serve.</p>
+</li><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li15676546289">Traffic distribution and auto scaling<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p13969114610811"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li15676546289"></a><a name="en-us_topic_0000001550445713_li15676546289"></a>Large organizations often span cloud facilities in different regions. They need to communicate and auto scale — start small and then scale as system load grows. CCE takes care of these for you, cutting the costs of maintaining facilities.</p>
+</li><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li1833084212814">Migration to the cloud and database hosting<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p64921431181"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li1833084212814"></a><a name="en-us_topic_0000001550445713_li1833084212814"></a>Industries like finance and security have a top concern on data protection. They want to run critical systems in local IDCs while moving others to the cloud. They also expect one unified dashboard to manage all systems.</p>
+</li><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li109261219811">Environment decoupling<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p56710351284"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li109261219811"></a><a name="en-us_topic_0000001550445713_li109261219811"></a>To ensure IP security, you can decouple development from production. Set up one on the public cloud and the other in the local IDC.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0018__en-us_topic_0000001550445713_section16396145511175"><h4 class="sectiontitle">Benefits</h4><p id="cce_productdesc_0018__en-us_topic_0000001550445713_p17210507181">Your apps and data can flow free on and off the cloud. Resource scheduling and DR are much easier, thanks to environment-independent containers. CCE connects private and public clouds for you to run containers on them.</p>
+</div>
+<div class="section" id="cce_productdesc_0018__en-us_topic_0000001550445713_section125063141813"><h4 class="sectiontitle">Advantages</h4><ul id="cce_productdesc_0018__en-us_topic_0000001550445713_ul1123931814224"><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li1923991812219">On-cloud DR<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p14761121192216"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li1923991812219"></a><a name="en-us_topic_0000001550445713_li1923991812219"></a>Multicloud prevents systems from outages. When a cloud is faulty, CCE auto diverts traffic to other clouds to ensure service continuity.</p>
+</li><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li472512982318">Automatic traffic distribution<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p2737329162311"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li472512982318"></a><a name="en-us_topic_0000001550445713_li472512982318"></a>CCE reduces access latency by processing user requests on the nodes nearest to the users. Overloaded apps in local IDCs can be burst to the cloud backed by auto scaling.</p>
+</li><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li2239111832213">Decoupling and sharing<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p10232205713164"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li2239111832213"></a><a name="en-us_topic_0000001550445713_li2239111832213"></a>CCE decouples data, environments, and compute capacity. Sensitive data vs general data. Development vs production. Compute-intensive services vs general services. Apps running on-premises can burst to the cloud. Your resources on and off the cloud can be better used.</p>
+</li><li id="cce_productdesc_0018__en-us_topic_0000001550445713_li152398188228">Lower costs<p id="cce_productdesc_0018__en-us_topic_0000001550445713_p92111120192219"><a name="cce_productdesc_0018__en-us_topic_0000001550445713_li152398188228"></a><a name="en-us_topic_0000001550445713_li152398188228"></a>Public cloud resource pools, backed by auto scaling, can respond to load spikes in time. Manual operations are no longer needed and you can save big.</p>
+</li></ul>
+</div>
+<div class="section" id="cce_productdesc_0018__en-us_topic_0000001550445713_section14817201019189"><h4 class="sectiontitle">Related Services</h4><p id="cce_productdesc_0018__en-us_topic_0000001550445713_p18186171272311">Elastic Cloud Server (ECS), Direct Connect (DC), Virtual Private Network (VPN), SoftWare Repository for Container (SWR)</p>
+<div class="fignone" id="cce_productdesc_0018__en-us_topic_0000001550445713_fig669614580236"><span class="figcap"><b>Figure 1 </b>How hybrid cloud works</span><br><span><img id="cce_productdesc_0018__en-us_topic_0000001550445713_image1352374516613" src="en-us_image_0000001626725269.png"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_productdesc_0007.html">Application Scenarios</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_productdesc_0020.html b/docs/cce/umn/cce_productdesc_0020.html
new file mode 100644
index 00000000..501da97a
--- /dev/null
+++ b/docs/cce/umn/cce_productdesc_0020.html
@@ -0,0 +1,21 @@
+<a name="cce_productdesc_0020"></a><a name="cce_productdesc_0020"></a>
+
+<h1 class="topictitle1">Infrastructure and Containerized Application Management</h1>
+<div id="body32001227"><div class="section" id="cce_productdesc_0020__en-us_topic_0000001499565898_section484mcpsimp"><h4 class="sectiontitle">Application Scenario</h4><p id="cce_productdesc_0020__en-us_topic_0000001499565898_p842mcpsimp">In CCE, you can run clusters with x86 and Arm nodes. Create and manage Kubernetes clusters. Deploy containerized applications in them. All done in CCE.</p>
+<div class="fignone" id="cce_productdesc_0020__en-us_topic_0000001499565898_fig78968459253"><span class="figcap"><b>Figure 1 </b>CCE cluster</span><br><span><img id="cce_productdesc_0020__en-us_topic_0000001499565898_image161" src="en-us_image_0000001550125865.png"></span></div>
+</div>
+<div class="section" id="cce_productdesc_0020__en-us_topic_0000001499565898_section487mcpsimp"><h4 class="sectiontitle">Benefits</h4><p id="cce_productdesc_0020__en-us_topic_0000001499565898_p489mcpsimp">Containerization requires less resources to deploy application. Services are not uninterrupted during upgrades.</p>
+</div>
+<div class="section" id="cce_productdesc_0020__en-us_topic_0000001499565898_section490mcpsimp"><h4 class="sectiontitle">Advantages</h4><ul id="cce_productdesc_0020__en-us_topic_0000001499565898_ul492mcpsimp"><li id="cce_productdesc_0020__en-us_topic_0000001499565898_li493mcpsimp">Multiple types of workloads<p id="cce_productdesc_0020__en-us_topic_0000001499565898_p494mcpsimp"><a name="cce_productdesc_0020__en-us_topic_0000001499565898_li493mcpsimp"></a><a name="en-us_topic_0000001499565898_li493mcpsimp"></a>Runs Deployments, StatefulSets, DaemonSets, jobs, and cron jobs to meet different needs.</p>
+</li><li id="cce_productdesc_0020__en-us_topic_0000001499565898_li495mcpsimp">Application upgrade<p id="cce_productdesc_0020__en-us_topic_0000001499565898_p496mcpsimp"><a name="cce_productdesc_0020__en-us_topic_0000001499565898_li495mcpsimp"></a><a name="en-us_topic_0000001499565898_li495mcpsimp"></a>Upgrades your apps in replace or rolling mode (by proportion or by number of pods), or rolls back the upgrades.</p>
+</li><li id="cce_productdesc_0020__en-us_topic_0000001499565898_li497mcpsimp">Auto scaling<p id="cce_productdesc_0020__en-us_topic_0000001499565898_p498mcpsimp"><a name="cce_productdesc_0020__en-us_topic_0000001499565898_li497mcpsimp"></a><a name="en-us_topic_0000001499565898_li497mcpsimp"></a>Auto scales your nodes and workloads according to the policies you set.</p>
+</li></ul>
+<div class="fignone" id="cce_productdesc_0020__en-us_topic_0000001499565898_fig130151222818"><span class="figcap"><b>Figure 2 </b>Workload</span><br><span><img id="cce_productdesc_0020__en-us_topic_0000001499565898_image115" src="en-us_image_0000001499246158.png"></span></div>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_productdesc_0007.html">Application Scenarios</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0000.html b/docs/cce/umn/cce_qs_0000.html
new file mode 100644
index 00000000..0f4bc672
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0000.html
@@ -0,0 +1,19 @@
+<a name="cce_qs_0000"></a><a name="cce_qs_0000"></a>
+
+<h1 class="topictitle1">Getting Started</h1>
+<div id="body32001227"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_qs_0001.html">Introduction</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_qs_0006.html">Preparations</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_qs_0008.html">Creating a Kubernetes Cluster</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_qs_0003.html">Creating a Deployment (Nginx) from an Image</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_qs_0007.html">Deploying WordPress and MySQL That Depend on Each Other</a></strong><br>
+</li>
+</ul>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0001.html b/docs/cce/umn/cce_qs_0001.html
index 9cd4c9ee..8695526e 100644
--- a/docs/cce/umn/cce_qs_0001.html
+++ b/docs/cce/umn/cce_qs_0001.html
@@ -1,26 +1,26 @@
 <a name="cce_qs_0001"></a><a name="cce_qs_0001"></a>
 
-<h1 class="topictitle1">Instruction</h1>
-<div id="body0000001151315242"><p id="cce_qs_0001__p1326211113390">This document provides instructions for getting started with the Cloud Container Engine (CCE).</p>
-<div class="section" id="cce_qs_0001__section19297198134420"><h4 class="sectiontitle">Procedure</h4><p id="cce_qs_0001__p6253212111713">Complete the following tasks to get started with CCE.</p>
-<div class="fignone" id="cce_qs_0001__fig154658221372"><span class="figcap"><b>Figure 1 </b>Procedure for getting started with CCE</span><br><span><img id="cce_qs_0001__image185691312124214" src="en-us_image_0000001178352608.png"></span></div>
-<ol id="cce_qs_0001__ol36118145197"><li id="cce_qs_0001__li561214131915"><span><strong id="cce_qs_0001__b935719471156"><a href="cce_10_0019.html">Charts (Helm)</a>Authorize an IAM user to use CCE.</strong></span><p><p id="cce_qs_0001__p6622149196">The accounts have the permission to use CCE. However, IAM users created by the accounts do not have the permission. You need to manually assign the permission to IAM users.</p>
-</p></li><li id="cce_qs_0001__li96271414199"><span><strong id="cce_qs_0001__b8136134182211">Create a cluster.</strong></span><p><p id="cce_qs_0001__p247113280451">For details on how to create a regular Kubernetes cluster, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0028.html" target="_blank" rel="noopener noreferrer">Creating a CCE Cluster</a>.</p>
-</p></li><li id="cce_qs_0001__li862314191919"><span><strong id="cce_qs_0001__b660310483016">Create a workload from images or a chart.</strong></span><p><p id="cce_qs_0001__p262161411192">Select existing images/chart, or create new images/chart.</p>
-<ul id="cce_qs_0001__ul6591849114510"><li id="cce_qs_0001__li10591174913456">For details on how to create a workload from images, see <a href="cce_10_0046.html">Workloads</a>.</li><li id="cce_qs_0001__li14912743102117">For details on how to create a workload from a chart, see <a href="https://docs.otc.t-systems.com/en-us/usermanual2/cce/cce_01_0019.html" target="_blank" rel="noopener noreferrer">Charts (Helm)</a>.</li></ul>
-</p></li><li id="cce_qs_0001__li96241491911"><span><strong id="cce_qs_0001__b14652202516442">View workload status and logs. Upgrade, scale, and monitor the workload.</strong></span><p><p id="cce_qs_0001__p24978321104">For details, see <a href="cce_10_0007.html">Managing Workloads and Jobs</a>.</p>
-</p></li></ol>
+<h1 class="topictitle1">Introduction</h1>
+<div id="body1523431173772"><p id="cce_qs_0001__p8060118">This section describes how to use Cloud Container Engine (CCE) and provides frequently asked questions (FAQs) to help you quickly get started with CCE.</p>
+<div class="section" id="cce_qs_0001__section194306711204"><h4 class="sectiontitle">Procedure</h4><p id="cce_qs_0001__p6253212111713">Complete the following tasks to get started with CCE.</p>
+<div class="fignone" id="cce_qs_0001__fig10549125352716"><span class="figcap"><b>Figure 1 </b>Procedure for getting started with CCE</span><br><span><img id="cce_qs_0001__image0627435134815" src="en-us_image_0000001499760912.png"></span></div>
+<ol id="cce_qs_0001__ol36118145197"><li id="cce_qs_0001__li561214131915"><span><strong id="cce_qs_0001__b16585853112415">Register an account and grant permissions to IAM users.</strong></span><p><p id="cce_qs_0001__p6622149196">An account has the permissions to use CCE. However, IAM users created by an account do not have the permission. You need to manually grant the permission to IAM users. For details, see .</p>
+</p></li><li id="cce_qs_0001__li96271414199"><span><strong id="cce_qs_0001__b362273718447">Create a cluster.</strong></span><p><p id="cce_qs_0001__p3331125664216">For details on how to create a regular Kubernetes cluster, see <a href="cce_qs_0008.html">Creating a Kubernetes Cluster</a>.</p>
+</p></li><li id="cce_qs_0001__li862314191919"><span><strong id="cce_qs_0001__b111184419504">Create a workload from an image or chart.</strong></span><p><ul id="cce_qs_0001__ul6591849114510"><li id="cce_qs_0001__li10591174913456"><a href="cce_qs_0003.html">Creating a Deployment (Nginx) from an Image</a></li><li id="cce_qs_0001__li1780616117483"><a href="cce_qs_0007.html">Deploying WordPress and MySQL That Depend on Each Other</a></li></ul>
+</p></li><li id="cce_qs_0001__li96241491911"><span><strong id="cce_qs_0001__b1994644895010">View workload status and logs. Upgrade, scale, and monitor the workload.</strong></span></li></ol>
 </div>
-<div class="section" id="cce_qs_0001__section194421388298"><h4 class="sectiontitle">FAQs</h4><ol id="cce_qs_0001__ol44421786292"><li id="cce_qs_0001__li136697585502"><strong id="cce_qs_0001__b137795284220">Is CCE suitable for users who are not familiar with Kubernetes?</strong><p id="cce_qs_0001__p9517929144411">Yes. The CCE console is easy-to-use.</p>
-</li><li id="cce_qs_0001__li77593711519"><strong id="cce_qs_0001__b13838749144616">Is CCE suitable for users who have little experience in building images?</strong><p id="cce_qs_0001__p197591076513">Yes. You can select images from <strong id="cce_qs_0001__b576625914461">Third-party Images</strong>, and <strong id="cce_qs_0001__b15766195984614">Shared Images</strong> pages on the CCE console. The <strong id="cce_qs_0001__b1576655911464">My Images</strong> page displays only the images created by you. For details, see <a href="cce_10_0046.html">Workloads</a>.</p>
-</li><li id="cce_qs_0001__li144388122912"><strong id="cce_qs_0001__b1885272210107">How do I create a workload using CCE?</strong><p id="cce_qs_0001__p84431820293">Create a cluster and then create a workload in the cluster.</p>
-</li><li id="cce_qs_0001__li744310816298"><strong id="cce_qs_0001__b1365132511112">How do I create a workload accessible to public networks?</strong><p id="cce_qs_0001__p31041519455">CCE provides different types of Services for workload access in diverse scenarios. Currently, CCE provides two access types to expose a workload to public networks: NodePort and LoadBalancer. For details, see <a href="cce_10_0020.html">Networking</a>.</p>
-</li><li id="cce_qs_0001__li104431832910"><strong id="cce_qs_0001__b1858117417451">How can I allow multiple workloads in the same cluster to access each other?</strong><p id="cce_qs_0001__p744310811290">Select the access type ClusterIP, which allows workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
-<p id="cce_qs_0001__p94431686292">Cluster-internal domain names are in the format of &lt;self-defined service name&gt;.&lt;workload's namespace&gt;.svc.cluster.local:&lt;port number&gt;. For example, nginx.default.svc.cluster.local:80.</p>
-<p id="cce_qs_0001__p644313892918">Example:</p>
-<p id="cce_qs_0001__p13443388293">Assume that workload A needs to access workload B in the same cluster. Then, you can create a <a href="cce_10_0011.html">ClusterIP</a> Service for workload B. After the ClusterIP Service is created, workload B is reachable at &lt;self-defined service name&gt;.&lt;workload B's namespace&gt;.svc.cluster.local:&lt;port number&gt;.</p>
+<div class="section" id="cce_qs_0001__section1727619161913"><h4 class="sectiontitle">FAQs</h4><ol id="cce_qs_0001__ol53811698105"><li id="cce_qs_0001__li2380098105"><strong id="cce_qs_0001__b28115125251">Is CCE suitable for users who are not familiar with Kubernetes?</strong><p id="cce_qs_0001__p1781642062712">Yes. The CCE console is easy-to-use, and the <em id="cce_qs_0001__i1437913414477">Getting Started</em> guide helps you quickly understand and use CCE.</p>
+</li><li id="cce_qs_0001__li12458105113352"><strong id="cce_qs_0001__b1624719541991">Is CCE suitable for users who have little experience in building images?</strong><p id="cce_qs_0001__p587616114386">In addition to storing images created by yourself in <strong id="cce_qs_0001__b876914291315">My Images</strong>, CCE allows you to create containerized applications using open source images. For details, see <a href="cce_qs_0003.html">Creating a Deployment (Nginx) from an Image</a>.</p>
+</li><li id="cce_qs_0001__li325755918919"><strong id="cce_qs_0001__b1885272210107">How do I create a workload using CCE?</strong><p id="cce_qs_0001__p125054221205">Create a cluster and then create a workload in the cluster. For details, see <a href="cce_qs_0003.html">Creating a Deployment (Nginx) from an Image</a>.</p>
+</li><li id="cce_qs_0001__li20104191204519"><strong id="cce_qs_0001__b1365132511112">How do I create a workload accessible to public networks?</strong><p id="cce_qs_0001__p31041519455">CCE provides different workload access types to address diverse scenarios. </p>
+</li><li id="cce_qs_0001__li15672112118423"><strong id="cce_qs_0001__b1858117417451">How can I allow multiple workloads in the same cluster to access each other?</strong><p id="cce_qs_0001__p4933154518">Set <strong id="cce_qs_0001__b15981311154418">Service Type</strong> to <strong id="cce_qs_0001__b47088147441">ClusterIP</strong>, which allows workloads in the same cluster to use their cluster-internal domain names to access each other.</p>
+<p id="cce_qs_0001__p79331154514">Cluster-internal domain names are in the format of &lt;self-defined service name&gt;.&lt;workload's namespace&gt;.svc.cluster.local:&lt;port number&gt;. For example, nginx.default.svc.cluster.local:80.</p>
 </li></ol>
 </div>
 </div>
-<div></div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0000.html">Getting Started</a></div>
+</div>
+</div>
 
diff --git a/docs/cce/umn/cce_qs_0003.html b/docs/cce/umn/cce_qs_0003.html
new file mode 100644
index 00000000..dd25ccba
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0003.html
@@ -0,0 +1,36 @@
+<a name="cce_qs_0003"></a><a name="cce_qs_0003"></a>
+
+<h1 class="topictitle1">Creating a Deployment (Nginx) from an Image</h1>
+<div id="body1523431189176"><p id="cce_qs_0003__p19302172118175">You can use images to quickly create a single-pod workload that can be accessed from public networks. This section describes how to use CCE to quickly deploy an Nginx application and manage its life cycle.</p>
+<div class="section" id="cce_qs_0003__section12250663181"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_qs_0003__ul19322124243112"><li id="cce_qs_0003__li163229425318">The Nginx image has been pushed to SWR.</li><li id="cce_qs_0003__li08119446310">You have created a CCE cluster that contains a node with 4 vCPUs and 8 GB memory. The node has an elastic IP address (EIP).</li></ul>
+<ul id="cce_qs_0003__ul1121724612314"><li id="cce_qs_0003__li19217164633118">A cluster is a logical group of cloud servers that run workloads. Each cloud server is a node in the cluster.</li><li id="cce_qs_0003__li1427213489317">For details on how to create a cluster, see <a href="cce_qs_0008.html">Creating a Kubernetes Cluster</a>.</li></ul>
+</div>
+<div class="section" id="cce_qs_0003__section18915182921212"><h4 class="sectiontitle">Nginx Overview</h4><p id="cce_qs_0003__p288664132416">Nginx is a lightweight web server. On CCE, you can quickly set up a Nginx web server. </p>
+</div>
+<p id="cce_qs_0003__p21473252210">This section uses the Nginx application as an example to describe how to create a workload. The creation takes about 5 minutes.</p>
+<p id="cce_qs_0003__p1631217467325">After Nginx is created successfully, you can access the Nginx web page.</p>
+<div class="fignone" id="cce_qs_0003__fig14247183114337"><span class="figcap"><b>Figure 1 </b>Nginx web page</span><br><span><img id="cce_qs_0003__image202481031183319" src="en-us_image_0000001550558281.png"></span></div>
+<div class="section" id="cce_qs_0003__section13176115411313"><h4 class="sectiontitle">Procedure</h4><p id="cce_qs_0003__p105341412041">The following is the procedure for creating a containerized workload from a container image.</p>
+<ol id="cce_qs_0003__ol19575164212915"><li id="cce_qs_0003__li2525844162213"><span>Log in to the CCE console.</span></li><li id="cce_qs_0003__li482679122317"><span>Choose the target cluster.</span></li><li id="cce_qs_0003__li1885962692419"><span>In the navigation pane, choose <strong id="cce_qs_0003__b792118572410">Workloads</strong>. Then, click <strong id="cce_qs_0003__b1055407657">Create Workload</strong>.</span></li><li id="cce_qs_0003__li15350526133620"><span>Configure the following parameters and retain the default value for other parameters:</span><p><p id="cce_qs_0003__p725616141263"><strong id="cce_qs_0003__b7478173017514">Basic Info</strong></p>
+<ul id="cce_qs_0003__ul163847572267"><li id="cce_qs_0003__li126242588262"><strong id="cce_qs_0003__b9385341552">Workload Type</strong>: Select <strong id="cce_qs_0003__b11398341659">Deployment</strong>.</li><li id="cce_qs_0003__li12178365273"><strong id="cce_qs_0003__b12377736756">Workload Name</strong>: Set it to <strong id="cce_qs_0003__b153782361356">nginx</strong>.</li><li id="cce_qs_0003__li1246627115510"><strong id="cce_qs_0003__b49381110194414">Namespace</strong>: Select <strong id="cce_qs_0003__b7938310124420">default</strong>.</li><li id="cce_qs_0003__li16652372271"><strong id="cce_qs_0003__b1680511423510">Pods</strong>: Set the quantity of pods to <strong id="cce_qs_0003__b1480674220519">1</strong>.</li></ul>
+<p id="cce_qs_0003__p52831417122617"><strong id="cce_qs_0003__b14917201011618">Container Settings</strong></p>
+<p id="cce_qs_0003__p18250104315111">Enter <strong id="cce_qs_0003__b157221025171615">nginx:latest</strong> in the <strong id="cce_qs_0003__b61317338165">Image Name</strong> text box.</p>
+<p id="cce_qs_0003__p124159208265"><strong id="cce_qs_0003__b717832651018">Service Settings</strong></p>
+<p id="cce_qs_0003__p116910552322">Click the plus sign (+) to create a Service for accessing the workload from an external network. In this example, create a LoadBalancer Service. Set the following parameters:</p>
+<ul id="cce_qs_0003__ul998975223213"><li id="cce_qs_0003__li16262144343310"><strong id="cce_qs_0003__b116625791115">Service Name</strong>: name of the Service exposed to external networks. In this example, the Service name is <strong id="cce_qs_0003__b966214712116">nginx</strong>.</li><li id="cce_qs_0003__li7989135213219"><strong id="cce_qs_0003__b1316152241513">Service Type</strong>: Select <strong id="cce_qs_0003__b431632210159">LoadBalancer</strong>.</li><li id="cce_qs_0003__li198271412123413"><strong id="cce_qs_0003__b1058743013154">Service Affinity</strong>: Retain the default value.</li><li id="cce_qs_0003__li298975219322"><strong id="cce_qs_0003__b18379145511513">Load Balancer</strong>: If a load balancer is available, select an existing load balancer. If not, choose <strong id="cce_qs_0003__b16797112312173">Auto create</strong> to create one on the ELB console.</li><li id="cce_qs_0003__li1798975217321"><strong id="cce_qs_0003__b6125433191712">Port</strong>:<ul id="cce_qs_0003__ul139893521326"><li id="cce_qs_0003__li1598915211322"><strong id="cce_qs_0003__b1554362111180">Protocol</strong>: Select <strong id="cce_qs_0003__b85447215182">TCP</strong>.</li><li id="cce_qs_0003__li811816144219"><strong id="cce_qs_0003__b0515103617180">Service Port</strong>: Set this parameter to <strong id="cce_qs_0003__b1251616367186">8080</strong>, which is mapped to the container port.</li><li id="cce_qs_0003__li13989175263211"><strong id="cce_qs_0003__b129341812181916">Container Port</strong>: port on which the application listens. For containers created using the Nginx image, set this parameter to <strong id="cce_qs_0003__b893571241912">80</strong>. For other applications, set this parameter to the port of the application.</li></ul>
+</li></ul>
+</p></li><li id="cce_qs_0003__li151183363920"><span>Click <strong id="cce_qs_0003__b3259121216234">Create Workload</strong>.</span><p><p id="cce_qs_0003__p10133182724917">Wait until the workload is created.</p>
+<p id="cce_qs_0003__p4295124231313">The created Deployment will be displayed on the <strong id="cce_qs_0003__b612755192311">Deployments</strong> page.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_qs_0003__section742084320481"><h4 class="sectiontitle">Accessing Nginx</h4><ol id="cce_qs_0003__ol99181823490"><li id="cce_qs_0003__li16918122124912"><span>Obtain the external access address of Nginx.</span><p><p id="cce_qs_0003__p122031215155615">Click the Nginx workload to enter its details page. On the <strong id="cce_qs_0003__b92583337288">Access Mode</strong> tab page, you can view the IP address of Nginx. The public IP address is the external access address.</p>
+</p></li><li id="cce_qs_0003__li1891817224917"><span>Enter the <strong id="cce_qs_0003__b9679111116324">external access address</strong> in the address box of a browser. The following shows the welcome page if you successfully access the workload.</span><p><div class="fignone" id="cce_qs_0003__fig15608115604817"><span class="figcap"><b>Figure 2 </b>Accessing Nginx</span><br><span><img id="cce_qs_0003__image86081056164816" src="en-us_image_0000001550558289.png"></span></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0000.html">Getting Started</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0004.html b/docs/cce/umn/cce_qs_0004.html
new file mode 100644
index 00000000..131a29ce
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0004.html
@@ -0,0 +1,28 @@
+<a name="cce_qs_0004"></a><a name="cce_qs_0004"></a>
+
+<h1 class="topictitle1">Step 1: Create a MySQL Workload</h1>
+<div id="body1523431192560"><p id="cce_qs_0004__p11835182117249">WordPress must be used together with MySQL. WordPress runs the content management program while MySQL serves as a database to store data.</p>
+<div class="section" id="cce_qs_0004__section1949252765716"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_qs_0004__ul5707311153120"><li id="cce_qs_0004__li470711110316">The WordPress and MySQL images have been pushed to SWR.</li><li id="cce_qs_0004__li1942761418315">You have created a CCE cluster that contains a node with 4 vCPUs and 8 GB memory. For details on how to create a cluster, see <a href="cce_qs_0008.html">Creating a Kubernetes Cluster</a>.</li></ul>
+</div>
+<div class="section" id="cce_qs_0004__section13528183612816"><h4 class="sectiontitle">Creating a MySQL Workload</h4><ol id="cce_qs_0004__ol162711945486"><li id="cce_qs_0004__li2525844162213"><span>Log in to the CCE console.</span></li><li id="cce_qs_0004__li482679122317"><span>Choose the target cluster.</span></li><li id="cce_qs_0004__li1885962692419"><span>In the navigation pane, choose <strong id="cce_qs_0004__b193563154917">Workloads</strong>. Then, click <strong id="cce_qs_0004__b093563154915">Create Workload</strong>.</span></li><li id="cce_qs_0004__li182796474816"><span>Set workload parameters.</span><p><div class="p" id="cce_qs_0004__p2081355311214"><strong id="cce_qs_0004__b86061756123319">Basic Info</strong><ul id="cce_qs_0004__ul17871352121219"><li id="cce_qs_0004__li8870175211213"><strong id="cce_qs_0004__b5433057153316">Workload Type</strong>: Select <strong id="cce_qs_0004__b2434145733313">Deployment</strong>.</li><li id="cce_qs_0004__li687025231210"><strong id="cce_qs_0004__b124941359153315">Workload Name</strong>: Set it to <strong id="cce_qs_0004__b549445973313">mysql</strong>.</li><li id="cce_qs_0004__li38711352101218"><strong id="cce_qs_0004__b2791449348">Namespace</strong>: Select <strong id="cce_qs_0004__b207911463411">default</strong>.</li><li id="cce_qs_0004__li987185216128"><strong id="cce_qs_0004__b6134336340">Pods</strong>: Change the value to <strong id="cce_qs_0004__b71493310342">1</strong> in this example.</li></ul>
+</div>
+<p id="cce_qs_0004__p615219352238"><strong id="cce_qs_0004__b8121422163519">Container Settings</strong></p>
+<p id="cce_qs_0004__p18250104315111">Enter <strong id="cce_qs_0004__b692816569197">mysql:5.7</strong> in the <strong id="cce_qs_0004__b7929856161913">Image Name</strong> text box.</p>
+<p id="cce_qs_0004__p15638194210325">Add the following four environment variables (details available in <a href="https://github.com/docker-library/docs/tree/master/mysql" target="_blank" rel="noopener noreferrer">MySQL</a>):</p>
+<ul id="cce_qs_0004__ul147573376323"><li id="cce_qs_0004__li175719373324"><strong id="cce_qs_0004__b984362714338">MYSQL_ROOT_PASSWORD</strong>: password of the <strong id="cce_qs_0004__b2503204619328">root</strong> user of MySQL.</li><li id="cce_qs_0004__li7757737183210"><strong id="cce_qs_0004__b9923617348">MYSQL_DATABASE</strong>: name of the database created during image startup.</li><li id="cce_qs_0004__li11757113716326"><strong id="cce_qs_0004__b48987304351">MYSQL_USER</strong>: name of the database user.</li><li id="cce_qs_0004__li5757123773218"><strong id="cce_qs_0004__b37202937613599">MYSQL_PASSWORD</strong>: password of the database user.</li></ul>
+<p id="cce_qs_0004__p124159208265"><strong id="cce_qs_0004__b26971435307">Service Settings</strong></p>
+<p id="cce_qs_0004__p116910552322">Click the plus sign (+) to create a Service for accessing MySQL from WordPress.</p>
+<p id="cce_qs_0004__p1849413583510">Select <strong id="cce_qs_0004__b4165057908">ClusterIP</strong> for <strong id="cce_qs_0004__b1316545712014">Service Type</strong>, set <strong id="cce_qs_0004__b151665571702">Service Name</strong> to <strong id="cce_qs_0004__b131672571805">mysql</strong>, set both the <strong id="cce_qs_0004__b141677575015">Container Port</strong> and <strong id="cce_qs_0004__b216815571011">Service Port</strong> to <strong id="cce_qs_0004__b916845715018">3306</strong>, and click <strong id="cce_qs_0004__b121697572005">OK</strong>.</p>
+<p id="cce_qs_0004__p144943517351">The default access port in the MySQL image is 3306. In this example, both the container port and Service port are set to <strong id="cce_qs_0004__b15396171317116">3306</strong> for convenience. The access port can be changed to another port.</p>
+<p id="cce_qs_0004__p749475183514">In this way, the MySQL workload can be accessed through <strong id="cce_qs_0004__b3273113819116"><em id="cce_qs_0004__i1027218381113">Service name</em>:<em id="cce_qs_0004__i12273438814">Access port</em></strong> (<strong id="cce_qs_0004__b17273113810114">mysql:3306</strong> in this example) from within the cluster.</p>
+</p></li><li id="cce_qs_0004__li151183363920"><span>Click <strong id="cce_qs_0004__b713842927">Create Workload</strong>.</span><p><p id="cce_qs_0004__p10133182724917">Wait until the workload is created.</p>
+<p id="cce_qs_0004__p4295124231313">The created Deployment will be displayed on the <strong id="cce_qs_0004__b0191550026">Deployments</strong> page.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0007.html">Deploying WordPress and MySQL That Depend on Each Other</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0005.html b/docs/cce/umn/cce_qs_0005.html
new file mode 100644
index 00000000..c0823502
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0005.html
@@ -0,0 +1,38 @@
+<a name="cce_qs_0005"></a><a name="cce_qs_0005"></a>
+
+<h1 class="topictitle1">Step 2: Create a WordPress Workload</h1>
+<div id="body1523431195895"><p id="cce_qs_0005__p11827218142916">WordPress was originally a blog platform based on PHP and MySQL. It is gradually evolved into a content management system. You can set up your own blog website on any server that supports PHP and MySQL.  Thousands of plug-ins and countless theme templates are available for WordPress and easy to install.</p>
+<p id="cce_qs_0005__p451316419511">This section describes how to create a public WordPress website from images.</p>
+<div class="section" id="cce_qs_0005__section1949252765716"><h4 class="sectiontitle">Prerequisites</h4><ul id="cce_qs_0005__ul1366489019"><li id="cce_qs_0005__li131821117134215">The WordPress and MySQL images have been pushed to SWR.</li><li id="cce_qs_0005__li19664291114">You have created a CCE cluster that contains a node with 4 vCPUs and 8 GB memory. For details on how to create a cluster, see <a href="cce_qs_0008.html">Creating a Kubernetes Cluster</a>.</li><li id="cce_qs_0005__li682420146118">The MySQL database has been created by following the instructions in <a href="cce_qs_0004.html">Step 1: Create a MySQL Workload</a>. In this example, WordPress data is stored in the MySQL database.</li></ul>
+</div>
+<div class="section" id="cce_qs_0005__section18577418576"><h4 class="sectiontitle">Creating a WordPress Blog Website</h4><ol id="cce_qs_0005__ol1280815318573"><li id="cce_qs_0005__li2525844162213"><span>Log in to the CCE console.</span></li><li id="cce_qs_0005__li482679122317"><span>Choose the target cluster.</span></li><li id="cce_qs_0005__li1885962692419"><span>In the navigation pane, choose <strong id="cce_qs_0005__b135181211164920">Workloads</strong>. Then, click <strong id="cce_qs_0005__b15518141117490">Create Workload</strong>.</span></li><li id="cce_qs_0005__li42214408510"><span>Set workload parameters.</span><p><div class="p" id="cce_qs_0005__p2081355311214"><strong id="cce_qs_0005__b165281630448">Basic Info</strong><ul id="cce_qs_0005__ul17871352121219"><li id="cce_qs_0005__li8870175211213"><strong id="cce_qs_0005__b9404153111413">Workload Type</strong>: Select <strong id="cce_qs_0005__b194058317411">Deployment</strong>.</li><li id="cce_qs_0005__li687025231210"><strong id="cce_qs_0005__b13565240944">Workload Name</strong>: Set it to <strong id="cce_qs_0005__b75715402411">wordpress</strong>.</li><li id="cce_qs_0005__li38711352101218"><strong id="cce_qs_0005__b986110441649">Namespace</strong>: Select <strong id="cce_qs_0005__b9861184415410">default</strong>.</li><li id="cce_qs_0005__li987185216128"><strong id="cce_qs_0005__b14273511542">Pods</strong>: Set this parameter to <strong id="cce_qs_0005__b18693195218417">2</strong> in this example.</li></ul>
+</div>
+<p id="cce_qs_0005__p615219352238"><strong id="cce_qs_0005__b244733017520">Container Settings</strong></p>
+<p id="cce_qs_0005__p18250104315111">Enter <strong id="cce_qs_0005__b920072816206">wordpress:php7.3</strong> in the <strong id="cce_qs_0005__b192001328162016">Image Name</strong> text box.</p>
+<p id="cce_qs_0005__p15638194210325">Add the following environment variables:</p>
+<p id="cce_qs_0005__p10109124654411">(These variables let WordPress know the information about the MySQL database.)</p>
+<ul id="cce_qs_0005__ul12109184694411"><li id="cce_qs_0005__li117379411253"><strong id="cce_qs_0005__b277313111216">WORDPRESS_DB_HOST</strong>: address for accessing the database, which can be found in the Service (on the <strong id="cce_qs_0005__b22326499516">Services</strong> tab page) of the MySQL workload. You can use the internal domain name <strong id="cce_qs_0005__b148115715128">mysql.default.svc.cluster.local:3306</strong> to access the database, or use only <strong id="cce_qs_0005__b13482372124">mysql:3306</strong> omitting <strong id="cce_qs_0005__b174821277120">.default.svc.cluster.local</strong>.</li><li id="cce_qs_0005__li2010934684418"><strong id="cce_qs_0005__b920491512129">WORDPRESS_DB_USER</strong>: username for accessing the database. The value must be the same as that of <strong id="cce_qs_0005__b17204171511129">MYSQL_USER</strong> in <a href="cce_qs_0004.html">Step 1: Create a MySQL Workload</a>, which is used to connect to MySQL.</li><li id="cce_qs_0005__li1710994674418"><strong id="cce_qs_0005__b4428151031914">WORDPRESS_DB_PASSWORD</strong>: password for accessing the database. The value must be the same as that of <strong id="cce_qs_0005__b4537182961913">MYSQL_PASSWORD</strong> in <a href="cce_qs_0004.html">Step 1: Create a MySQL Workload</a>.</li><li id="cce_qs_0005__li12109194610442"><strong id="cce_qs_0005__b1062719569123">WORDPRESS_DB_NAME</strong>: name of the database to be accessed. The value must be the same as that of <strong id="cce_qs_0005__b2627105617127">MYSQL_DATABASE</strong> in <a href="cce_qs_0004.html">Step 1: Create a MySQL Workload</a>.</li></ul>
+<p id="cce_qs_0005__p124159208265"><strong id="cce_qs_0005__b383375951412">Service Settings</strong></p>
+<p id="cce_qs_0005__p116910552322">Click the plus sign (+) to create a Service for accessing the workload from an external network. In this example, create a LoadBalancer Service. Set the following parameters:</p>
+<ul id="cce_qs_0005__ul998975223213"><li id="cce_qs_0005__li16262144343310"><strong id="cce_qs_0005__b19191164141514">Service Name</strong>: name of the Service exposed to external networks. In this example, the Service name is <strong id="cce_qs_0005__b1192164141513">wordpress</strong>.</li><li id="cce_qs_0005__li7989135213219"><strong id="cce_qs_0005__b382917681518">Service Type</strong>: Select <strong id="cce_qs_0005__b28291168154">LoadBalancer</strong>.</li><li id="cce_qs_0005__li198271412123413"><strong id="cce_qs_0005__b1517514921510">Service Affinity</strong>: Retain the default value.</li><li id="cce_qs_0005__li298975219322"><strong id="cce_qs_0005__b1625117817554">Load Balancer</strong>: If a load balancer is available, select an existing load balancer. If not, choose <strong id="cce_qs_0005__b625114812558">Auto create</strong> to create one on the ELB console.</li><li id="cce_qs_0005__li1798975217321"><strong id="cce_qs_0005__b175071115158">Port</strong>:<ul id="cce_qs_0005__ul139893521326"><li id="cce_qs_0005__li1598915211322"><strong id="cce_qs_0005__b8221017181512">Protocol</strong>: Select <strong id="cce_qs_0005__b20226174156">TCP</strong>.</li><li id="cce_qs_0005__li811816144219"><strong id="cce_qs_0005__b91221916153">Service Port</strong>: Set this parameter to <strong id="cce_qs_0005__b012191917151">80</strong>, which is mapped to the container port.</li><li id="cce_qs_0005__li13989175263211"><strong id="cce_qs_0005__b99582671513">Container Port</strong>: port on which the application listens. For containers created using the wordpress image, set this parameter to <strong id="cce_qs_0005__b1296026201510">80</strong>. For other applications, set this parameter to the port of the application.</li></ul>
+</li></ul>
+</p></li><li id="cce_qs_0005__li151183363920"><span>Click <strong id="cce_qs_0005__b17346203611613">Create Workload</strong>.</span><p><p id="cce_qs_0005__p10133182724917">Wait until the workload is created.</p>
+<p id="cce_qs_0005__p4295124231313">The created Deployment will be displayed on the <strong id="cce_qs_0005__b31031138171612">Deployments</strong> page.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_qs_0005__section1432195115010"><h4 class="sectiontitle">Accessing WordPress</h4><ol id="cce_qs_0005__ol7211117135110"><li id="cce_qs_0005__li206421796516"><span>Obtain the external access address of WordPress.</span><p><p id="cce_qs_0005__p122031215155615">Click the wordpress workload to enter its details page. On the <strong id="cce_qs_0005__b13457523103115">Access Mode</strong> tab page, you can view the IP address of WordPress. The load balancer IP address is the external access address.</p>
+</p></li><li id="cce_qs_0005__li15675314597"><span>Enter the external access address in the address box of a browser to connect to the workload.</span><p><p id="cce_qs_0005__p1262185312590">The following figure shows the accessed WordPress page.</p>
+<div class="fignone" id="cce_qs_0005__fig862753155915"><span class="figcap"><b>Figure 1 </b>WordPress workload</span><br><span><img id="cce_qs_0005__image362135345915" src="en-us_image_0000001550838141.png"></span></div>
+<div class="fignone" id="cce_qs_0005__fig162853135915"><span class="figcap"><b>Figure 2 </b>WordPress</span><br><span><img id="cce_qs_0005__image1462205313596" src="en-us_image_0000001550678265.png"></span></div>
+</p></li></ol>
+</div>
+<div class="section" id="cce_qs_0005__section10661101494316"><h4 class="sectiontitle">Deleting Resources</h4><p id="cce_qs_0005__p18254183214316">Until now, you have completed all the Getting Started walkthroughs and have understood how to use CCE. Fees are incurred while nodes are running. If the clusters used in the Getting Started walkthroughs are no longer in use, perform the following steps to delete them. If you will continue the CCE walkthroughs, retain the clusters.</p>
+<ol id="cce_qs_0005__ol1513518434415"><li id="cce_qs_0005__li10455123813314"><span>Log in to the CCE console.</span></li><li id="cce_qs_0005__li31131541113115"><span>In the navigation pane on the left, choose <strong id="cce_qs_0005__b2031350164216">Clusters</strong>.</span></li><li id="cce_qs_0005__li813510454410"><span>Click <span><img id="cce_qs_0005__image186171558366" src="en-us_image_0000001499758244.png"></span> next to a cluster and delete the cluster as prompted.</span></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0007.html">Deploying WordPress and MySQL That Depend on Each Other</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0006.html b/docs/cce/umn/cce_qs_0006.html
new file mode 100644
index 00000000..a0f2266e
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0006.html
@@ -0,0 +1,42 @@
+<a name="cce_qs_0006"></a><a name="cce_qs_0006"></a>
+
+<h1 class="topictitle1">Preparations</h1>
+<div id="body1536721291671"><p id="cce_qs_0006__p19495122115211">Before using CCE, you need to make the following preparations:</p>
+<ul id="cce_qs_0006__ul799312176718"><li id="cce_qs_0006__li20757918194215"><a href="#cce_qs_0006__section929013341428">Creating an IAM user</a></li><li id="cce_qs_0006__li115030014313"><a href="#cce_qs_0006__section8819171411219">Obtaining Resource Permissions</a></li><li id="cce_qs_0006__li91962815313"><a href="#cce_qs_0006__section896411852619">(Optional) Creating a VPC</a></li><li id="cce_qs_0006__li1855410321583"><a href="#cce_qs_0006__section2031413481717">(Optional) Creating a Key Pair</a></li></ul>
+<div class="section" id="cce_qs_0006__section929013341428"><a name="cce_qs_0006__section929013341428"></a><a name="section929013341428"></a><h4 class="sectiontitle">Creating an IAM user</h4><p id="cce_qs_0006__p8782104013422">If you want to allow multiple users to manage your resources without sharing your password or keys, you can create users using IAM and grant permissions to the users. These users can use specified links and their own accounts to access the cloud and manage resources efficiently. You can also configure account security policies to ensure the security of these accounts.</p>
+<p id="cce_qs_0006__p637116703116">Your accounts have the permissions to use CCE. However, IAM users created by your accounts do not have the permissions. You need to manually assign the permissions to IAM users. </p>
+</div>
+<div class="section" id="cce_qs_0006__section8819171411219"><a name="cce_qs_0006__section8819171411219"></a><a name="section8819171411219"></a><h4 class="sectiontitle">Obtaining Resource Permissions</h4><div class="p" id="cce_qs_0006__p14970231788">CCE works closely with multiple cloud services to support computing, storage, networking, and monitoring functions. When you log in to the CCE console for the first time, CCE automatically requests permissions to access those cloud services in the region where you run your applications. Specifically:<ul id="cce_qs_0006__ul3701191818917"><li id="cce_qs_0006__li10701131818911">Compute services<p id="cce_qs_0006__p1087644518126"><a name="cce_qs_0006__li10701131818911"></a><a name="li10701131818911"></a>When you create a node in a cluster, a cloud server is created accordingly. The prerequisite is that CCE has obtained the permissions to access Elastic Cloud Service (ECS) and Bare Metal Server (BMS).</p>
+</li><li id="cce_qs_0006__li183546439915">Storage services<p id="cce_qs_0006__p1726215716134"><a name="cce_qs_0006__li183546439915"></a><a name="li183546439915"></a>CCE allows you to mount storage to nodes and containers in a cluster. The prerequisite is that CCE has obtained the permissions to access services such as Elastic Volume Service (EVS), Scalable File Service (SFS), and Object Storage Service (OBS).</p>
+</li><li id="cce_qs_0006__li1982014497913">Networking services<p id="cce_qs_0006__p113391343111318"><a name="cce_qs_0006__li1982014497913"></a><a name="li1982014497913"></a>CCE allows containers in a cluster to be published as services that can be accessed by external systems. The prerequisite is that CCE has obtained the permissions to access services such as Virtual Private Cloud (VPC) and Elastic Load Balance (ELB).</p>
+</li><li id="cce_qs_0006__li1828065516916">Container and monitoring services<p id="cce_qs_0006__p99237594139"><a name="cce_qs_0006__li1828065516916"></a><a name="li1828065516916"></a>CCE supports functions such as container image pull, monitoring, and logging. The prerequisite is that CCE has obtained the permissions to access services such as SoftWare Repository for Container (SWR) and Application Operations Management (AOM).</p>
+</li></ul>
+</div>
+<p id="cce_qs_0006__p16691744154410">After you agree to delegate the permissions, an agency named <strong id="cce_qs_0006__b165521533162715">cce_admin_trust</strong> will be created for CCE in Identity and Access Management (IAM). The system account <strong id="cce_qs_0006__b125538333279">op_svc_cce</strong> will be delegated the <strong id="cce_qs_0006__b1055363310271">Tenant Administrator</strong> role to perform operations on other cloud service resources. Tenant Administrator has the permissions on all cloud services except IAM, which calls the cloud services on which CCE depends. The delegation takes effect only in the current region. For details, see <a href="https://docs.otc.t-systems.com/en-us/usermanual/iam/iam_01_0054.html" target="_blank" rel="noopener noreferrer">Delegating Resource Access to Another Account</a>.</p>
+<p id="cce_qs_0006__p17113145902611">To use CCE in multiple regions, you need to request cloud resource permissions in each region. You can go to the IAM console, choose <strong id="cce_qs_0006__b867181312472">Agencies</strong>, and click <strong id="cce_qs_0006__b111022114549">cce_admin_trust</strong> to view the delegation records of each region.</p>
+<div class="note" id="cce_qs_0006__note134549584260"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_qs_0006__p124671324103315">CCE may fail to run as expected if the Tenant Administrator role is not assigned. Therefore, do not delete or modify the <strong id="cce_qs_0006__b17463155175611">cce_admin_trust</strong> agency when using CCE.</p>
+</div></div>
+</div>
+<div class="section" id="cce_qs_0006__section896411852619"><a name="cce_qs_0006__section896411852619"></a><a name="section896411852619"></a><h4 class="sectiontitle">(Optional) Creating a VPC</h4><p id="cce_qs_0006__p1886543119409">A VPC provides an isolated, configurable, and manageable virtual network for CCE clusters.</p>
+<p id="cce_qs_0006__p8745186402">Before creating the first cluster, ensure that a <span class="keyword" id="cce_qs_0006__keyword117451383403">VPC</span> has been created. </p>
+<p id="cce_qs_0006__p3605322153814">If you already have a VPC available, skip this step.</p>
+<ol id="cce_qs_0006__ol18747439134015"><li id="cce_qs_0006__li5940544184010"><span>Log in to the management console.</span></li><li id="cce_qs_0006__li0940114411403"><span>Click <span><img id="cce_qs_0006__image15940164414403" src="en-us_image_0000001499598344.png"></span> in the upper left corner and select a region and a project.</span></li><li id="cce_qs_0006__li10940204411409"><span>Under <strong id="cce_qs_0006__b1977416664814">Networking</strong>, click <strong id="cce_qs_0006__b20774365484">Virtual Private Cloud</strong>.</span></li><li id="cce_qs_0006__li971217142427"><span>Click <strong id="cce_qs_0006__b119241142184815">Create VPC</strong>.</span></li><li id="cce_qs_0006__li14819172111420"><span>On the <strong id="cce_qs_0006__b553114414485">Create VPC</strong> page, configure parameters as prompted.</span><p><p id="cce_qs_0006__p3581134316422">A default subnet will be created together with a VPC. You can click <strong id="cce_qs_0006__b8483457114812">Add Subnet</strong> to create more subnets for the VPC.</p>
+</p></li><li id="cce_qs_0006__li16140174214215"><span>Click <strong id="cce_qs_0006__b192611939491">Create Now</strong>.</span></li></ol>
+</div>
+<div class="section" id="cce_qs_0006__section2031413481717"><a name="cce_qs_0006__section2031413481717"></a><a name="section2031413481717"></a><h4 class="sectiontitle">(Optional) Creating a Key Pair</h4><p id="cce_qs_0006__p182696269371">The cloud platform uses public key cryptography to protect the login information of your CCE nodes. Passwords or key pairs are used for identity authentication during remote login to nodes.</p>
+<ul id="cce_qs_0006__ul419115377371"><li id="cce_qs_0006__li41911137123714">You need to specify the key pair name and provide the private key when logging to CCE nodes using SSH if you choose the key pair login mode. </li><li id="cce_qs_0006__li419120370376">If you choose the password login mode, skip this task.</li></ul>
+<div class="note" id="cce_qs_0006__note417917197446"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_qs_0006__p718041914417">If you want to create pods in multiple regions, you need to create a key pair in each region. </p>
+</div></div>
+<p id="cce_qs_0006__p188504983011"><strong id="cce_qs_0006__b6902114613297">Creating a Key Pair on the Management Console</strong></p>
+<p id="cce_qs_0006__p6571115311377">If you have no key pair, create one on the management console. The procedure is as follows:</p>
+<ol id="cce_qs_0006__ol191941404333"><li id="cce_qs_0006__li1194140183310"><span>Log in to the management console.</span></li><li id="cce_qs_0006__li1319413003313"><span>Click <span><img id="cce_qs_0006__image514410416331" src="en-us_image_0000001499758236.png"></span> in the upper left corner and select a region and a project.</span></li><li id="cce_qs_0006__li1619417073310"><span>Under <strong id="cce_qs_0006__b12603122453015">Computing</strong>, click <strong id="cce_qs_0006__b12604122463017">Elastic Cloud Server</strong>.</span></li><li id="cce_qs_0006__li319460143316"><span>In the navigation pane on the left, choose <strong id="cce_qs_0006__b529216685349">Key Pair</strong>.</span></li><li id="cce_qs_0006__li11944017333"><span>On the right pane, click <strong id="cce_qs_0006__b1620374911305">Create Key Pair</strong>.</span></li><li id="cce_qs_0006__li519412093318"><span>Enter the key name and click <strong id="cce_qs_0006__b52971754113019">OK</strong>.</span></li><li id="cce_qs_0006__li1019416017337"><span>A key pair name consists of two parts: <strong id="cce_qs_0006__b1995611565302">KeyPair</strong> and four random digits. You can enter an easy-to-remember name, for example, <strong id="cce_qs_0006__b4956165617306">KeyPair-xxxx_ecs</strong>.</span></li><li id="cce_qs_0006__li141944013313"><span>Manually or automatically download the private key file. The file name is a specified key pair name with a suffix of .pem. Securely store the private key file. In the dialog box displayed, click <strong id="cce_qs_0006__b3783162719318">OK</strong>.</span><p><div class="note" id="cce_qs_0006__note20556135115316"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_qs_0006__p105661651133118">The private key file can be downloaded only once. Keep it secure. When creating an ECS, provide the name of your desired key pair. Each time you log in to the ECS using SSH, provide the private key.</p>
+</div></div>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0000.html">Getting Started</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0007.html b/docs/cce/umn/cce_qs_0007.html
new file mode 100644
index 00000000..d7048aa9
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0007.html
@@ -0,0 +1,19 @@
+<a name="cce_qs_0007"></a><a name="cce_qs_0007"></a>
+
+<h1 class="topictitle1">Deploying WordPress and MySQL That Depend on Each Other</h1>
+<div id="body1545635030444"></div>
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_qs_0009.html">Overview</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_qs_0004.html">Step 1: Create a MySQL Workload</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_qs_0005.html">Step 2: Create a WordPress Workload</a></strong><br>
+</li>
+</ul>
+
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0000.html">Getting Started</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0008.html b/docs/cce/umn/cce_qs_0008.html
new file mode 100644
index 00000000..b9111622
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0008.html
@@ -0,0 +1,99 @@
+<a name="cce_qs_0008"></a><a name="cce_qs_0008"></a>
+
+<h1 class="topictitle1">Creating a Kubernetes Cluster</h1>
+<div id="body1561023193788"><div class="section" id="cce_qs_0008__section24891646133813"><h4 class="sectiontitle">Context</h4><p id="cce_qs_0008__p29591752123811">This section describes how to quickly create a CCE cluster. In this example, the default or simple configurations are in use.</p>
+</div>
+<div class="section" id="cce_qs_0008__section36005582389"><h4 class="sectiontitle">Creating a Cluster</h4><ol id="cce_qs_0008__en-us_topic_0107283640_ol363781272614"><li id="cce_qs_0008__li1320652521716"><span>Log in to the CCE console.</span><p><ul id="cce_qs_0008__ul3320152918178"><li id="cce_qs_0008__li13320152910172">If you have not created a cluster, a wizard page is displayed. Click <strong id="cce_qs_0008__b1584815217274">Create</strong> under <strong id="cce_qs_0008__b1184875262716">CCE cluster</strong>.</li><li id="cce_qs_0008__li1197263010178">If you have created a cluster, choose <strong id="cce_qs_0008__b16104125516274">Clusters</strong> from the navigation pane on the left and click <span class="uicontrol" id="cce_qs_0008__uicontrol310413550274"><b>Create</b></span> next to <strong id="cce_qs_0008__b1710495502710">CCE cluster</strong>.</li></ul>
+</p></li><li id="cce_qs_0008__li1660214285244"><span>On the <strong id="cce_qs_0008__b19865171110611">Configure Cluster</strong> page, configure cluster parameters.</span><p><div class="p" id="cce_qs_0008__p43604551242">In this example, a majority of parameters retain default values. Only mandatory parameters are described. For details, see <a href="#cce_qs_0008__table462753513248">Table 1</a>.
+<div class="tablenoborder"><a name="cce_qs_0008__table462753513248"></a><a name="table462753513248"></a><table cellpadding="4" cellspacing="0" summary="" id="cce_qs_0008__table462753513248" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameters for creating a cluster</caption><thead align="left"><tr id="cce_qs_0008__row86122352248"><th align="left" class="cellrowborder" valign="top" width="20.02%" id="mcps1.3.2.2.2.2.1.2.2.3.1.1"><p id="cce_qs_0008__p16611153582410">Parameter</p>
+</th>
+<th align="left" class="cellrowborder" valign="top" width="79.97999999999999%" id="mcps1.3.2.2.2.2.1.2.2.3.1.2"><p id="cce_qs_0008__p1561253532418">Description</p>
+</th>
+</tr>
+</thead>
+<tbody><tr id="cce_qs_0008__row061213516244"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p13612183572416"><strong id="cce_qs_0008__b8388144552815">Basic Settings</strong></p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row1061433519249"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p1861318353248">*Cluster Name</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p186131035152416">Name of the cluster to be created. A cluster name contains 4 to 128 characters starting with a lowercase letter and not ending with a hyphen (-). Only lowercase letters, digits, and hyphens (-) are allowed.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row88932192012"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p15281925172015">* Enterprise Project</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p428162542019">This parameter is displayed only for enterprise users who have enabled Enterprise Project Management.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row10614103552415"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p36146357242">* Cluster Version</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p206143351241">Choose the latest version.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row261563542414"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p106142035142410">* Cluster Scale</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p46141435172419">Maximum number of <strong id="cce_qs_0008__b861473532411">worker nodes</strong> that can be managed by the cluster. If you select <strong id="cce_qs_0008__b19532185612143">50 nodes</strong>, the cluster can manage a maximum of 50 worker nodes.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row126161235142416"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p161503592410">*High Availability</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p1560126135018">The default value is <span class="uicontrol" id="cce_qs_0008__uicontrol447511711509"><b>Yes</b></span>.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row1772713506215"><td class="cellrowborder" colspan="2" valign="top" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p16816354192110"><strong id="cce_qs_0008__b6315539153116">Network Settings</strong></p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row865518307228"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p191135182218">* Network Model</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p31193520226">Retain the default settings.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row3617173520240"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p17617193512241">*VPC</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p146178352248">VPC where the cluster will be located.</p>
+<p id="cce_qs_0008__p14617113532420">If no VPC is available, click <strong id="cce_qs_0008__b59011728183313">Create VPC</strong> to create one. After the VPC is created, click refresh.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row361816357248"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p96171035102410">* Master Node Subnet</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p16618335142413">Subnet where master nodes of the cluster are located.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row1962053517241"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p56191235112410">* Container CIDR Block</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p71011829165514">Retain the default value.</p>
+</td>
+</tr>
+<tr id="cce_qs_0008__row122561210559"><td class="cellrowborder" valign="top" width="20.02%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.1 "><p id="cce_qs_0008__p72565245510">* IPv4 Service CIDR Block</p>
+</td>
+<td class="cellrowborder" valign="top" width="79.97999999999999%" headers="mcps1.3.2.2.2.2.1.2.2.3.1.2 "><p id="cce_qs_0008__p2257122175512">CIDR block for Services used by containers in the same cluster to access each other. The value determines the maximum number of Services you can create. The value cannot be changed after creation.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</div>
+</div>
+</p></li><li id="cce_qs_0008__li123146192716"><span>Click <strong id="cce_qs_0008__b105114286280">Next: Add-on Configuration</strong>. Retain the default settings.</span></li><li id="cce_qs_0008__li1223172517283"><span>Click <span class="uicontrol" id="cce_qs_0008__uicontrol36131794526"><b>Next: Confirm</b></span>. After confirming that the cluster configuration information is correct, select <strong id="cce_qs_0008__b10881154820328">I have read and understand the preceding instructions</strong> and click <strong id="cce_qs_0008__b125057527328">Submit</strong>.</span><p><p id="cce_qs_0008__p1353510572322">It takes about 6 to 10 minutes to create a cluster.</p>
+<p id="cce_qs_0008__p4291952131118">The created cluster will be displayed on the <strong id="cce_qs_0008__b466154116359">Clusters</strong> page, and the number of nodes in the cluster is 0.</p>
+</p></li></ol>
+</div>
+<div class="section" id="cce_qs_0008__section554512156349"><h4 class="sectiontitle">Creating a Node</h4><p id="cce_qs_0008__p7519191933414">After a cluster is created, you need to create nodes in the cluster to run workloads.</p>
+<ol id="cce_qs_0008__ol9375163114376"><li id="cce_qs_0008__li5375113116377"><span>Log in to the CCE console.</span></li><li id="cce_qs_0008__li635919367371"><span>Click the created cluster.</span></li><li id="cce_qs_0008__li484235174212"><span>In the navigation pane, choose <strong id="cce_qs_0008__b17315530104313">Nodes</strong>. Click <strong id="cce_qs_0008__b171185322437">Create Node</strong> in the upper right corner and set node parameters.</span><p><p id="cce_qs_0008__p111212015473">The following describes only important parameters. For other parameters, retain the defaults.</p>
+<p id="cce_qs_0008__p12802175917460"><strong id="cce_qs_0008__b0659356444">Compute Settings</strong></p>
+<ul id="cce_qs_0008__ul38021659184612"><li id="cce_qs_0008__li10802175914613"><strong id="cce_qs_0008__b18804154715442">AZ</strong>: Retain the default value.</li><li id="cce_qs_0008__li748427104717"><strong id="cce_qs_0008__b63030114518">Node Type</strong>: Select <strong id="cce_qs_0008__b4986229134515">Elastic Cloud Server (VM)</strong>.</li><li id="cce_qs_0008__li134124204715"><strong id="cce_qs_0008__b101959314455">Specifications</strong>: Select node specifications that fit your business needs.</li><li id="cce_qs_0008__li3879120101015"><strong id="cce_qs_0008__b1209193112417">Container Engine</strong>: Select a container engine as required.</li><li id="cce_qs_0008__li62516257489"><strong id="cce_qs_0008__b20261124814457">OS</strong>: Select the operating system (OS) of the nodes to be created.</li><li id="cce_qs_0008__li14774236184812"><strong id="cce_qs_0008__b46841517144618">Node Name</strong>: Enter a node name.</li><li id="cce_qs_0008__li58462134911"><strong id="cce_qs_0008__b1157142164113">Login Mode</strong>:<ul id="cce_qs_0008__ul1984102164920"><li id="cce_qs_0008__li184152154912">If the login mode is <span class="uicontrol" id="cce_qs_0008__uicontrol1553612416182"><b>Key pair</b></span>, select a key pair for logging to the node and select the check box to acknowledge that you have obtained the key file and without this file you will not be able to log in to the node.<p id="cce_qs_0008__p1784622499">A key pair is used for identity authentication when you remotely log in to a node. If no key pair is available, click <strong id="cce_qs_0008__b28941520183310">Create Key Pair</strong>..</p>
+</li></ul>
+</li></ul>
+<p id="cce_qs_0008__p1880275918465"><strong id="cce_qs_0008__b6444756154614">Storage Settings</strong></p>
+<ul id="cce_qs_0008__ul887914162501"><li id="cce_qs_0008__li16879101615014"><strong id="cce_qs_0008__b93631589468">System Disk</strong>: Set disk type and capacity based on site requirements. The default disk capacity is 50 GB.</li><li id="cce_qs_0008__li11879171645016"><strong id="cce_qs_0008__b14294181311473">Data Disk</strong>: Set disk type and capacity based on site requirements. The default disk capacity is 100 GB.</li></ul>
+<p id="cce_qs_0008__p880417594467"><strong id="cce_qs_0008__b1473174293111">Network Settings</strong></p>
+<ul id="cce_qs_0008__ul1128781765"><li id="cce_qs_0008__li1200101018618"><strong id="cce_qs_0008__b91861643114912">VPC</strong>: Use the default value, that is, the subnet selected during cluster creation.</li><li id="cce_qs_0008__li4200181010610"><strong id="cce_qs_0008__b9200135817498">Node Subnet</strong>: Select a subnet in which the node runs.</li><li id="cce_qs_0008__li1032494719132"><strong id="cce_qs_0008__b8518921194320">Node IP</strong>: IP address of the specified node.</li><li id="cce_qs_0008__li15147195115131"><strong id="cce_qs_0008__b163411453194117">EIP</strong>: The default value is <strong id="cce_qs_0008__b2342053164117">Do not use</strong>. You can select <strong id="cce_qs_0008__b15266624219">Use existing</strong> and <strong id="cce_qs_0008__b72710694214">Auto create</strong>.</li></ul>
+</p></li><li id="cce_qs_0008__li4309417097"><span>At the bottom of the page, select the node quantity, and click <strong id="cce_qs_0008__b1574837195212">Next: Confirm</strong>.</span></li><li id="cce_qs_0008__li1211333618719"><span>Review the node specifications, read the instructions, select <strong id="cce_qs_0008__b2037543515318">I have read and understand the preceding instructions</strong>, and click <strong id="cce_qs_0008__b1815114416532">Submit</strong>.</span><p><p id="cce_qs_0008__p3245115514107">It takes about 6 to 10 minutes to add a node.</p>
+<p id="cce_qs_0008__p4295124231313">The created node will be displayed on the <strong id="cce_qs_0008__b25193107541">Nodes</strong> page.</p>
+</p></li></ol>
+</div>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0000.html">Getting Started</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/cce_qs_0009.html b/docs/cce/umn/cce_qs_0009.html
new file mode 100644
index 00000000..f946b27a
--- /dev/null
+++ b/docs/cce/umn/cce_qs_0009.html
@@ -0,0 +1,17 @@
+<a name="cce_qs_0009"></a><a name="cce_qs_0009"></a>
+
+<h1 class="topictitle1">Overview</h1>
+<div id="body1561531545321"><p id="cce_qs_0009__p11827218142916">WordPress was originally a blog platform based on PHP and MySQL. It is gradually evolved into a content management system. You can set up your own blog website on any server that supports PHP and MySQL.  Thousands of plug-ins and countless theme templates are available for WordPress and easy to install.</p>
+<p id="cce_qs_0009__p88961501942">WordPress is a blog platform developed in hypertext preprocessor (PHP). You can set up your websites on the services that support PHP and MySQL databases, or use WordPress as a content management system. For more information about WordPress, visit <a href="https://wordpress.org/" target="_blank" rel="noopener noreferrer">https://wordpress.org/</a>.</p>
+<p id="cce_qs_0009__p13672629144214">WordPress must be used together with MySQL. WordPress runs the content management program while MySQL serves as a database to store data. Generally, WordPress and MySQL run in different containers, as shown in the following figure.</p>
+<div class="fignone" id="cce_qs_0009__fig115999313219"><span class="figcap"><b>Figure 1 </b>WordPress</span><br><span><img id="cce_qs_0009__image840382317189" src="en-us_image_0000001550678257.png"></span></div>
+<p id="cce_qs_0009__p157611323213">In this example, two container images are involved.</p>
+<ul id="cce_qs_0009__ul4643185654414"><li id="cce_qs_0009__li117820453210"><a href="https://github.com/docker-library/docs/tree/master/wordpress" target="_blank" rel="noopener noreferrer">WordPress</a>: Select wordpress:php7.3 in this example.</li><li id="cce_qs_0009__li164420566449"><a href="https://github.com/docker-library/docs/tree/master/mysql" target="_blank" rel="noopener noreferrer">MySQL</a>: Select mysql:5.7 in this example.</li></ul>
+<p id="cce_qs_0009__p16835456114814">When WordPress accesses MySQL in a cluster, Kubernetes provides a resource object called Service for the workload access. In this example, a Service is created for MySQL and WordPress, respectively. For details about how to create and configure a Service, see the following sections.</p>
+</div>
+<div>
+<div class="familylinks">
+<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_qs_0007.html">Deploying WordPress and MySQL That Depend on Each Other</a></div>
+</div>
+</div>
+
diff --git a/docs/cce/umn/en-us_image_0000001168997466.png b/docs/cce/umn/en-us_image_0000001168997466.png
new file mode 100644
index 00000000..8d3ac2a8
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001168997466.png differ
diff --git a/docs/cce/umn/en-us_image_0000001169315996.gif b/docs/cce/umn/en-us_image_0000001169315996.gif
new file mode 100644
index 00000000..3ced28eb
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001169315996.gif differ
diff --git a/docs/cce/umn/en-us_image_0000001169475948.png b/docs/cce/umn/en-us_image_0000001169475948.png
new file mode 100644
index 00000000..1a7c01e7
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001169475948.png differ
diff --git a/docs/cce/umn/en-us_image_0000001178352608.png b/docs/cce/umn/en-us_image_0000001178352608.png
deleted file mode 100644
index 505b8207..00000000
Binary files a/docs/cce/umn/en-us_image_0000001178352608.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001214475863.gif b/docs/cce/umn/en-us_image_0000001214475863.gif
new file mode 100644
index 00000000..7086a096
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001214475863.gif differ
diff --git a/docs/cce/umn/en-us_image_0000001214635805.png b/docs/cce/umn/en-us_image_0000001214635805.png
new file mode 100644
index 00000000..00ccbf1a
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001214635805.png differ
diff --git a/docs/cce/umn/en-us_image_0000001214717329.gif b/docs/cce/umn/en-us_image_0000001214717329.gif
new file mode 100644
index 00000000..c8fba921
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001214717329.gif differ
diff --git a/docs/cce/umn/en-us_image_0000001221820189.png b/docs/cce/umn/en-us_image_0000001221820189.png
deleted file mode 100644
index 2af028bd..00000000
Binary files a/docs/cce/umn/en-us_image_0000001221820189.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001244128658.png b/docs/cce/umn/en-us_image_0000001244128658.png
new file mode 100644
index 00000000..e456965b
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001244128658.png differ
diff --git a/docs/cce/umn/en-us_image_0000001287883210.png b/docs/cce/umn/en-us_image_0000001287883210.png
deleted file mode 100644
index 2b5990a2..00000000
Binary files a/docs/cce/umn/en-us_image_0000001287883210.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001336475537.png b/docs/cce/umn/en-us_image_0000001336475537.png
deleted file mode 100644
index 21a8c0aa..00000000
Binary files a/docs/cce/umn/en-us_image_0000001336475537.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001340138373.png b/docs/cce/umn/en-us_image_0000001340138373.png
deleted file mode 100644
index 3b8d9e34..00000000
Binary files a/docs/cce/umn/en-us_image_0000001340138373.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0000001352090724.png b/docs/cce/umn/en-us_image_0000001352090724.png
new file mode 100644
index 00000000..5333b491
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001352090724.png differ
diff --git a/docs/cce/umn/en-us_image_0000001352253356.png b/docs/cce/umn/en-us_image_0000001352253356.png
new file mode 100644
index 00000000..424c2262
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001352253356.png differ
diff --git a/docs/cce/umn/en-us_image_0000001352413288.png b/docs/cce/umn/en-us_image_0000001352413288.png
new file mode 100644
index 00000000..76689687
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001352413288.png differ
diff --git a/docs/cce/umn/en-us_image_0000001352573116.png b/docs/cce/umn/en-us_image_0000001352573116.png
new file mode 100644
index 00000000..bc44aa3f
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001352573116.png differ
diff --git a/docs/cce/umn/en-us_image_0000001402893085.png b/docs/cce/umn/en-us_image_0000001402893085.png
new file mode 100644
index 00000000..8133e723
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001402893085.png differ
diff --git a/docs/cce/umn/en-us_image_0000001403252957.png b/docs/cce/umn/en-us_image_0000001403252957.png
new file mode 100644
index 00000000..191dafd1
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001403252957.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499246158.png b/docs/cce/umn/en-us_image_0000001499246158.png
new file mode 100644
index 00000000..36d4cf8b
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499246158.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499406022.png b/docs/cce/umn/en-us_image_0000001499406022.png
new file mode 100644
index 00000000..49d22c1d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499406022.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499406030.png b/docs/cce/umn/en-us_image_0000001499406030.png
new file mode 100644
index 00000000..c3b27f99
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499406030.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499565914.png b/docs/cce/umn/en-us_image_0000001499565914.png
new file mode 100644
index 00000000..ce0d9e1b
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499565914.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499565934.png b/docs/cce/umn/en-us_image_0000001499565934.png
new file mode 100644
index 00000000..3acce983
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499565934.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499598344.png b/docs/cce/umn/en-us_image_0000001499598344.png
new file mode 100644
index 00000000..1b65f721
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499598344.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499725850.png b/docs/cce/umn/en-us_image_0000001499725850.png
new file mode 100644
index 00000000..4b7cdafe
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499725850.png differ
diff --git a/docs/cce/umn/en-us_image_0000001499758236.png b/docs/cce/umn/en-us_image_0000001499758236.png
new file mode 100644
index 00000000..1b65f721
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499758236.png differ
diff --git a/docs/cce/umn/en-us_image_0000001244997085.png b/docs/cce/umn/en-us_image_0000001499758244.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244997085.png
rename to docs/cce/umn/en-us_image_0000001499758244.png
diff --git a/docs/cce/umn/en-us_image_0000001499760912.png b/docs/cce/umn/en-us_image_0000001499760912.png
new file mode 100644
index 00000000..7428f0ef
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001499760912.png differ
diff --git a/docs/cce/umn/en-us_image_0000001504661902.png b/docs/cce/umn/en-us_image_0000001504661902.png
new file mode 100644
index 00000000..f1ae6312
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001504661902.png differ
diff --git a/docs/cce/umn/en-us_image_0000001504821802.png b/docs/cce/umn/en-us_image_0000001504821802.png
new file mode 100644
index 00000000..4c012a58
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001504821802.png differ
diff --git a/docs/cce/umn/en-us_image_0000001244101121.png b/docs/cce/umn/en-us_image_0000001517743364.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244101121.png
rename to docs/cce/umn/en-us_image_0000001517743364.png
diff --git a/docs/cce/umn/en-us_image_0000001244141139.png b/docs/cce/umn/en-us_image_0000001517743372.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244141139.png
rename to docs/cce/umn/en-us_image_0000001517743372.png
diff --git a/docs/cce/umn/en-us_image_0000001199501230.png b/docs/cce/umn/en-us_image_0000001517743380.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199501230.png
rename to docs/cce/umn/en-us_image_0000001517743380.png
diff --git a/docs/cce/umn/en-us_image_0000001199501262.png b/docs/cce/umn/en-us_image_0000001517743384.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199501262.png
rename to docs/cce/umn/en-us_image_0000001517743384.png
diff --git a/docs/cce/umn/en-us_image_0258889981.png b/docs/cce/umn/en-us_image_0000001517743432.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258889981.png
rename to docs/cce/umn/en-us_image_0000001517743432.png
diff --git a/docs/cce/umn/en-us_image_0000001212924318.png b/docs/cce/umn/en-us_image_0000001517743452.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001212924318.png
rename to docs/cce/umn/en-us_image_0000001517743452.png
diff --git a/docs/cce/umn/en-us_image_0000001206959574.png b/docs/cce/umn/en-us_image_0000001517743456.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001206959574.png
rename to docs/cce/umn/en-us_image_0000001517743456.png
diff --git a/docs/cce/umn/en-us_image_0000001236562704.png b/docs/cce/umn/en-us_image_0000001517743460.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001236562704.png
rename to docs/cce/umn/en-us_image_0000001517743460.png
diff --git a/docs/cce/umn/en-us_image_0000001244261103.png b/docs/cce/umn/en-us_image_0000001517743464.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261103.png
rename to docs/cce/umn/en-us_image_0000001517743464.png
diff --git a/docs/cce/umn/en-us_image_0000001517743496.png b/docs/cce/umn/en-us_image_0000001517743496.png
new file mode 100644
index 00000000..8d6c69b3
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001517743496.png differ
diff --git a/docs/cce/umn/en-us_image_0000001243981203.png b/docs/cce/umn/en-us_image_0000001517743520.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243981203.png
rename to docs/cce/umn/en-us_image_0000001517743520.png
diff --git a/docs/cce/umn/en-us_image_0000001249023453.png b/docs/cce/umn/en-us_image_0000001517743540.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001249023453.png
rename to docs/cce/umn/en-us_image_0000001517743540.png
diff --git a/docs/cce/umn/en-us_image_0000001244261073.png b/docs/cce/umn/en-us_image_0000001517743544.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261073.png
rename to docs/cce/umn/en-us_image_0000001517743544.png
diff --git a/docs/cce/umn/en-us_image_0000001199021334.png b/docs/cce/umn/en-us_image_0000001517743552.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199021334.png
rename to docs/cce/umn/en-us_image_0000001517743552.png
diff --git a/docs/cce/umn/en-us_image_0000001464878016.png b/docs/cce/umn/en-us_image_0000001517743600.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001464878016.png
rename to docs/cce/umn/en-us_image_0000001517743600.png
diff --git a/docs/cce/umn/en-us_image_0258894622.png b/docs/cce/umn/en-us_image_0000001517743624.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258894622.png
rename to docs/cce/umn/en-us_image_0000001517743624.png
diff --git a/docs/cce/umn/en-us_image_0258203193.png b/docs/cce/umn/en-us_image_0000001517743628.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258203193.png
rename to docs/cce/umn/en-us_image_0000001517743628.png
diff --git a/docs/cce/umn/en-us_image_0000001244261071.png b/docs/cce/umn/en-us_image_0000001517743636.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261071.png
rename to docs/cce/umn/en-us_image_0000001517743636.png
diff --git a/docs/cce/umn/en-us_image_0000001199341268.png b/docs/cce/umn/en-us_image_0000001517743644.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199341268.png
rename to docs/cce/umn/en-us_image_0000001517743644.png
diff --git a/docs/cce/umn/en-us_image_0275445543.png b/docs/cce/umn/en-us_image_0000001517743652.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0275445543.png
rename to docs/cce/umn/en-us_image_0000001517743652.png
diff --git a/docs/cce/umn/en-us_image_0000001531373685.png b/docs/cce/umn/en-us_image_0000001517743660.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001531373685.png
rename to docs/cce/umn/en-us_image_0000001517743660.png
diff --git a/docs/cce/umn/en-us_image_0000001244101223.png b/docs/cce/umn/en-us_image_0000001517743672.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244101223.png
rename to docs/cce/umn/en-us_image_0000001517743672.png
diff --git a/docs/cce/umn/en-us_image_0000001199021278.png b/docs/cce/umn/en-us_image_0000001517902940.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199021278.png
rename to docs/cce/umn/en-us_image_0000001517902940.png
diff --git a/docs/cce/umn/en-us_image_0258961458.png b/docs/cce/umn/en-us_image_0000001517903016.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258961458.png
rename to docs/cce/umn/en-us_image_0000001517903016.png
diff --git a/docs/cce/umn/en-us_image_0000001517903020.png b/docs/cce/umn/en-us_image_0000001517903020.png
new file mode 100644
index 00000000..68876838
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001517903020.png differ
diff --git a/docs/cce/umn/en-us_image_0000001408895746.png b/docs/cce/umn/en-us_image_0000001517903028.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001408895746.png
rename to docs/cce/umn/en-us_image_0000001517903028.png
diff --git a/docs/cce/umn/en-us_image_0000001517903036.png b/docs/cce/umn/en-us_image_0000001517903036.png
new file mode 100644
index 00000000..0bb483b2
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001517903036.png differ
diff --git a/docs/cce/umn/en-us_image_0000001199757520.png b/docs/cce/umn/en-us_image_0000001517903048.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199757520.png
rename to docs/cce/umn/en-us_image_0000001517903048.png
diff --git a/docs/cce/umn/en-us_image_0000001517903056.png b/docs/cce/umn/en-us_image_0000001517903056.png
new file mode 100644
index 00000000..c301af90
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001517903056.png differ
diff --git a/docs/cce/umn/en-us_image_0000001248663503.png b/docs/cce/umn/en-us_image_0000001517903060.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001248663503.png
rename to docs/cce/umn/en-us_image_0000001517903060.png
diff --git a/docs/cce/umn/en-us_image_0000001251716033.png b/docs/cce/umn/en-us_image_0000001517903064.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001251716033.png
rename to docs/cce/umn/en-us_image_0000001517903064.png
diff --git a/docs/cce/umn/en-us_image_0000001482546084.png b/docs/cce/umn/en-us_image_0000001517903068.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001482546084.png
rename to docs/cce/umn/en-us_image_0000001517903068.png
diff --git a/docs/cce/umn/en-us_image_0000001199501276.png b/docs/cce/umn/en-us_image_0000001517903088.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199501276.png
rename to docs/cce/umn/en-us_image_0000001517903088.png
diff --git a/docs/cce/umn/en-us_image_0000001249073211.png b/docs/cce/umn/en-us_image_0000001517903124.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001249073211.png
rename to docs/cce/umn/en-us_image_0000001517903124.png
diff --git a/docs/cce/umn/en-us_image_0000001517903128.png b/docs/cce/umn/en-us_image_0000001517903128.png
new file mode 100644
index 00000000..60b60d53
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001517903128.png differ
diff --git a/docs/cce/umn/en-us_image_0000001465197524.png b/docs/cce/umn/en-us_image_0000001517903168.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001465197524.png
rename to docs/cce/umn/en-us_image_0000001517903168.png
diff --git a/docs/cce/umn/en-us_image_0000001243981115.png b/docs/cce/umn/en-us_image_0000001517903200.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243981115.png
rename to docs/cce/umn/en-us_image_0000001517903200.png
diff --git a/docs/cce/umn/en-us_image_0000001531533045.png b/docs/cce/umn/en-us_image_0000001517903240.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001531533045.png
rename to docs/cce/umn/en-us_image_0000001517903240.png
diff --git a/docs/cce/umn/en-us_image_0000001517903252.png b/docs/cce/umn/en-us_image_0000001517903252.png
new file mode 100644
index 00000000..2da6ba35
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001517903252.png differ
diff --git a/docs/cce/umn/en-us_image_0000001325364477.png b/docs/cce/umn/en-us_image_0000001518062492.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001325364477.png
rename to docs/cce/umn/en-us_image_0000001518062492.png
diff --git a/docs/cce/umn/en-us_image_0000001518062524.png b/docs/cce/umn/en-us_image_0000001518062524.png
new file mode 100644
index 00000000..65e1184f
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518062524.png differ
diff --git a/docs/cce/umn/en-us_image_0000001518062540.png b/docs/cce/umn/en-us_image_0000001518062540.png
new file mode 100644
index 00000000..4cff8a73
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518062540.png differ
diff --git a/docs/cce/umn/en-us_image_0000001207511384.png b/docs/cce/umn/en-us_image_0000001518062608.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001207511384.png
rename to docs/cce/umn/en-us_image_0000001518062608.png
diff --git a/docs/cce/umn/en-us_image_0000001203031716.png b/docs/cce/umn/en-us_image_0000001518062612.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001203031716.png
rename to docs/cce/umn/en-us_image_0000001518062612.png
diff --git a/docs/cce/umn/en-us_image_0000001518062624.png b/docs/cce/umn/en-us_image_0000001518062624.png
new file mode 100644
index 00000000..e970982c
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518062624.png differ
diff --git a/docs/cce/umn/en-us_image_0000001518062636.png b/docs/cce/umn/en-us_image_0000001518062636.png
new file mode 100644
index 00000000..33068815
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518062636.png differ
diff --git a/docs/cce/umn/en-us_image_0000001515838557.png b/docs/cce/umn/en-us_image_0000001518062644.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001515838557.png
rename to docs/cce/umn/en-us_image_0000001518062644.png
diff --git a/docs/cce/umn/en-us_image_0000001236723668.png b/docs/cce/umn/en-us_image_0000001518062664.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001236723668.png
rename to docs/cce/umn/en-us_image_0000001518062664.png
diff --git a/docs/cce/umn/en-us_image_0000001199181230.png b/docs/cce/umn/en-us_image_0000001518062672.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181230.png
rename to docs/cce/umn/en-us_image_0000001518062672.png
diff --git a/docs/cce/umn/en-us_image_0000001244101107.png b/docs/cce/umn/en-us_image_0000001518062684.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244101107.png
rename to docs/cce/umn/en-us_image_0000001518062684.png
diff --git a/docs/cce/umn/en-us_image_0000001244261119.png b/docs/cce/umn/en-us_image_0000001518062704.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261119.png
rename to docs/cce/umn/en-us_image_0000001518062704.png
diff --git a/docs/cce/umn/en-us_image_0000001518062756.png b/docs/cce/umn/en-us_image_0000001518062756.png
new file mode 100644
index 00000000..5bfbc6ca
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518062756.png differ
diff --git a/docs/cce/umn/en-us_image_0258871213.png b/docs/cce/umn/en-us_image_0000001518062772.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258871213.png
rename to docs/cce/umn/en-us_image_0000001518062772.png
diff --git a/docs/cce/umn/en-us_image_0261818893.png b/docs/cce/umn/en-us_image_0000001518062796.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0261818893.png
rename to docs/cce/umn/en-us_image_0000001518062796.png
diff --git a/docs/cce/umn/en-us_image_0000001531533921.png b/docs/cce/umn/en-us_image_0000001518062808.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001531533921.png
rename to docs/cce/umn/en-us_image_0000001518062808.png
diff --git a/docs/cce/umn/en-us_image_0000001238225460.png b/docs/cce/umn/en-us_image_0000001518062812.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001238225460.png
rename to docs/cce/umn/en-us_image_0000001518062812.png
diff --git a/docs/cce/umn/en-us_image_0000001402494682.png b/docs/cce/umn/en-us_image_0000001518062816.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001402494682.png
rename to docs/cce/umn/en-us_image_0000001518062816.png
diff --git a/docs/cce/umn/en-us_image_0000001518222492.png b/docs/cce/umn/en-us_image_0000001518222492.png
new file mode 100644
index 00000000..d09e52ed
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518222492.png differ
diff --git a/docs/cce/umn/en-us_image_0000001199181334.png b/docs/cce/umn/en-us_image_0000001518222536.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181334.png
rename to docs/cce/umn/en-us_image_0000001518222536.png
diff --git a/docs/cce/umn/en-us_image_0000001518222592.png b/docs/cce/umn/en-us_image_0000001518222592.png
new file mode 100644
index 00000000..f9d93b4e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518222592.png differ
diff --git a/docs/cce/umn/en-us_image_0000001201381906.png b/docs/cce/umn/en-us_image_0000001518222604.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001201381906.png
rename to docs/cce/umn/en-us_image_0000001518222604.png
diff --git a/docs/cce/umn/en-us_image_0000001244141191.png b/docs/cce/umn/en-us_image_0000001518222608.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244141191.png
rename to docs/cce/umn/en-us_image_0000001518222608.png
diff --git a/docs/cce/umn/en-us_image_0000001205757902.png b/docs/cce/umn/en-us_image_0000001518222636.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001205757902.png
rename to docs/cce/umn/en-us_image_0000001518222636.png
diff --git a/docs/cce/umn/en-us_image_0000001518222700.png b/docs/cce/umn/en-us_image_0000001518222700.png
new file mode 100644
index 00000000..603c9468
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518222700.png differ
diff --git a/docs/cce/umn/en-us_image_0000001518222708.png b/docs/cce/umn/en-us_image_0000001518222708.png
new file mode 100644
index 00000000..226fcf76
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001518222708.png differ
diff --git a/docs/cce/umn/en-us_image_0258392378.png b/docs/cce/umn/en-us_image_0000001518222716.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258392378.png
rename to docs/cce/umn/en-us_image_0000001518222716.png
diff --git a/docs/cce/umn/en-us_image_0262051194.png b/docs/cce/umn/en-us_image_0000001518222732.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0262051194.png
rename to docs/cce/umn/en-us_image_0000001518222732.png
diff --git a/docs/cce/umn/en-us_image_0000001199341330.png b/docs/cce/umn/en-us_image_0000001518222740.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199341330.png
rename to docs/cce/umn/en-us_image_0000001518222740.png
diff --git a/docs/cce/umn/en-us_image_0000001520115845.png b/docs/cce/umn/en-us_image_0000001520115845.png
new file mode 100644
index 00000000..13582d7b
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001520115845.png differ
diff --git a/docs/cce/umn/en-us_image_0000001520396937.png b/docs/cce/umn/en-us_image_0000001520396937.png
new file mode 100644
index 00000000..48e6fbe5
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001520396937.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550125865.png b/docs/cce/umn/en-us_image_0000001550125865.png
new file mode 100644
index 00000000..dab58aa9
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550125865.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550125873.png b/docs/cce/umn/en-us_image_0000001550125873.png
new file mode 100644
index 00000000..086f270b
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550125873.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550245853.png b/docs/cce/umn/en-us_image_0000001550245853.png
new file mode 100644
index 00000000..0420d05a
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550245853.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550245869.png b/docs/cce/umn/en-us_image_0000001550245869.png
new file mode 100644
index 00000000..80fd8a48
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550245869.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550365685.png b/docs/cce/umn/en-us_image_0000001550365685.png
new file mode 100644
index 00000000..87c98e36
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550365685.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550365705.png b/docs/cce/umn/en-us_image_0000001550365705.png
new file mode 100644
index 00000000..821c26f4
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550365705.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550445737.png b/docs/cce/umn/en-us_image_0000001550445737.png
new file mode 100644
index 00000000..4d7de178
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550445737.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550558281.png b/docs/cce/umn/en-us_image_0000001550558281.png
new file mode 100644
index 00000000..7578b2a1
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550558281.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550558289.png b/docs/cce/umn/en-us_image_0000001550558289.png
new file mode 100644
index 00000000..c9086642
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550558289.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550678257.png b/docs/cce/umn/en-us_image_0000001550678257.png
new file mode 100644
index 00000000..89c31a80
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550678257.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550678265.png b/docs/cce/umn/en-us_image_0000001550678265.png
new file mode 100644
index 00000000..c483b45d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550678265.png differ
diff --git a/docs/cce/umn/en-us_image_0000001550838141.png b/docs/cce/umn/en-us_image_0000001550838141.png
new file mode 100644
index 00000000..3153ed6c
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001550838141.png differ
diff --git a/docs/cce/umn/en-us_image_0000001199181228.png b/docs/cce/umn/en-us_image_0000001568822637.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181228.png
rename to docs/cce/umn/en-us_image_0000001568822637.png
diff --git a/docs/cce/umn/en-us_image_0000001243981177.png b/docs/cce/umn/en-us_image_0000001568822693.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243981177.png
rename to docs/cce/umn/en-us_image_0000001568822693.png
diff --git a/docs/cce/umn/en-us_image_0000001201823500.png b/docs/cce/umn/en-us_image_0000001568822709.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001201823500.png
rename to docs/cce/umn/en-us_image_0000001568822709.png
diff --git a/docs/cce/umn/en-us_image_0000001199181336.png b/docs/cce/umn/en-us_image_0000001568822717.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181336.png
rename to docs/cce/umn/en-us_image_0000001568822717.png
diff --git a/docs/cce/umn/en-us_image_0000001199181340.png b/docs/cce/umn/en-us_image_0000001568822733.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181340.png
rename to docs/cce/umn/en-us_image_0000001568822733.png
diff --git a/docs/cce/umn/en-us_image_0000001244261169.png b/docs/cce/umn/en-us_image_0000001568822741.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261169.png
rename to docs/cce/umn/en-us_image_0000001568822741.png
diff --git a/docs/cce/umn/en-us_image_0000001199181338.png b/docs/cce/umn/en-us_image_0000001568822773.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181338.png
rename to docs/cce/umn/en-us_image_0000001568822773.png
diff --git a/docs/cce/umn/en-us_image_0000001533586881.png b/docs/cce/umn/en-us_image_0000001568822793.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001533586881.png
rename to docs/cce/umn/en-us_image_0000001568822793.png
diff --git a/docs/cce/umn/en-us_image_0000001244141105.png b/docs/cce/umn/en-us_image_0000001568822821.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244141105.png
rename to docs/cce/umn/en-us_image_0000001568822821.png
diff --git a/docs/cce/umn/en-us_image_0000001568822825.png b/docs/cce/umn/en-us_image_0000001568822825.png
new file mode 100644
index 00000000..d5254673
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001568822825.png differ
diff --git a/docs/cce/umn/en-us_image_0267028603.png b/docs/cce/umn/en-us_image_0000001568822869.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0267028603.png
rename to docs/cce/umn/en-us_image_0000001568822869.png
diff --git a/docs/cce/umn/en-us_image_0000001244261167.png b/docs/cce/umn/en-us_image_0000001568822905.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261167.png
rename to docs/cce/umn/en-us_image_0000001568822905.png
diff --git a/docs/cce/umn/en-us_image_0000001515917789.png b/docs/cce/umn/en-us_image_0000001568822917.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001515917789.png
rename to docs/cce/umn/en-us_image_0000001568822917.png
diff --git a/docs/cce/umn/en-us_image_0000001199501200.png b/docs/cce/umn/en-us_image_0000001568822925.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199501200.png
rename to docs/cce/umn/en-us_image_0000001568822925.png
diff --git a/docs/cce/umn/en-us_image_0261818896.png b/docs/cce/umn/en-us_image_0000001568822957.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0261818896.png
rename to docs/cce/umn/en-us_image_0000001568822957.png
diff --git a/docs/cce/umn/en-us_image_0275445566.png b/docs/cce/umn/en-us_image_0000001568822961.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0275445566.png
rename to docs/cce/umn/en-us_image_0000001568822961.png
diff --git a/docs/cce/umn/en-us_image_0000001199021320.png b/docs/cce/umn/en-us_image_0000001568822965.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199021320.png
rename to docs/cce/umn/en-us_image_0000001568822965.png
diff --git a/docs/cce/umn/en-us_image_0000001378942548.png b/docs/cce/umn/en-us_image_0000001568902489.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001378942548.png
rename to docs/cce/umn/en-us_image_0000001568902489.png
diff --git a/docs/cce/umn/en-us_image_0000001568902509.png b/docs/cce/umn/en-us_image_0000001568902509.png
new file mode 100644
index 00000000..30a7eb21
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001568902509.png differ
diff --git a/docs/cce/umn/en-us_image_0000001244261161.png b/docs/cce/umn/en-us_image_0000001568902521.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261161.png
rename to docs/cce/umn/en-us_image_0000001568902521.png
diff --git a/docs/cce/umn/en-us_image_0000001568902533.png b/docs/cce/umn/en-us_image_0000001568902533.png
new file mode 100644
index 00000000..b52a62db
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001568902533.png differ
diff --git a/docs/cce/umn/en-us_image_0000001249958645.png b/docs/cce/umn/en-us_image_0000001568902541.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001249958645.png
rename to docs/cce/umn/en-us_image_0000001568902541.png
diff --git a/docs/cce/umn/en-us_image_0000001203385342.png b/docs/cce/umn/en-us_image_0000001568902557.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001203385342.png
rename to docs/cce/umn/en-us_image_0000001568902557.png
diff --git a/docs/cce/umn/en-us_image_0000001199021308.png b/docs/cce/umn/en-us_image_0000001568902577.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199021308.png
rename to docs/cce/umn/en-us_image_0000001568902577.png
diff --git a/docs/cce/umn/en-us_image_0000001568902601.png b/docs/cce/umn/en-us_image_0000001568902601.png
new file mode 100644
index 00000000..0e6fa614
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001568902601.png differ
diff --git a/docs/cce/umn/en-us_image_0000001568902637.png b/docs/cce/umn/en-us_image_0000001568902637.png
new file mode 100644
index 00000000..ebc69763
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001568902637.png differ
diff --git a/docs/cce/umn/en-us_image_0000001568902649.png b/docs/cce/umn/en-us_image_0000001568902649.png
new file mode 100644
index 00000000..ebc69763
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001568902649.png differ
diff --git a/docs/cce/umn/en-us_image_0000001482796460.png b/docs/cce/umn/en-us_image_0000001568902653.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001482796460.png
rename to docs/cce/umn/en-us_image_0000001568902653.png
diff --git a/docs/cce/umn/en-us_image_0000001568902661.png b/docs/cce/umn/en-us_image_0000001568902661.png
new file mode 100644
index 00000000..47324ea0
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001568902661.png differ
diff --git a/docs/cce/umn/en-us_image_0000001202103502.png b/docs/cce/umn/en-us_image_0000001568902669.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001202103502.png
rename to docs/cce/umn/en-us_image_0000001568902669.png
diff --git a/docs/cce/umn/en-us_image_0261818899.png b/docs/cce/umn/en-us_image_0000001568902689.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0261818899.png
rename to docs/cce/umn/en-us_image_0000001568902689.png
diff --git a/docs/cce/umn/en-us_image_0000001243981141.png b/docs/cce/umn/en-us_image_0000001569022781.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243981141.png
rename to docs/cce/umn/en-us_image_0000001569022781.png
diff --git a/docs/cce/umn/en-us_image_0000001243981147.png b/docs/cce/umn/en-us_image_0000001569022797.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243981147.png
rename to docs/cce/umn/en-us_image_0000001569022797.png
diff --git a/docs/cce/umn/en-us_image_0000001244261055.png b/docs/cce/umn/en-us_image_0000001569022837.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261055.png
rename to docs/cce/umn/en-us_image_0000001569022837.png
diff --git a/docs/cce/umn/en-us_image_0000001202101148.png b/docs/cce/umn/en-us_image_0000001569022881.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001202101148.png
rename to docs/cce/umn/en-us_image_0000001569022881.png
diff --git a/docs/cce/umn/en-us_image_0000001244261173.png b/docs/cce/umn/en-us_image_0000001569022889.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261173.png
rename to docs/cce/umn/en-us_image_0000001569022889.png
diff --git a/docs/cce/umn/en-us_image_0000001569022901.png b/docs/cce/umn/en-us_image_0000001569022901.png
new file mode 100644
index 00000000..827836e1
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001569022901.png differ
diff --git a/docs/cce/umn/en-us_image_0000001533585325.png b/docs/cce/umn/en-us_image_0000001569022905.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001533585325.png
rename to docs/cce/umn/en-us_image_0000001569022905.png
diff --git a/docs/cce/umn/en-us_image_0000001247802971.png b/docs/cce/umn/en-us_image_0000001569022913.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001247802971.png
rename to docs/cce/umn/en-us_image_0000001569022913.png
diff --git a/docs/cce/umn/en-us_image_0000001397733101.png b/docs/cce/umn/en-us_image_0000001569022929.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001397733101.png
rename to docs/cce/umn/en-us_image_0000001569022929.png
diff --git a/docs/cce/umn/en-us_image_0000001244261069.png b/docs/cce/umn/en-us_image_0000001569022933.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261069.png
rename to docs/cce/umn/en-us_image_0000001569022933.png
diff --git a/docs/cce/umn/en-us_image_0000001199181298.png b/docs/cce/umn/en-us_image_0000001569022957.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181298.png
rename to docs/cce/umn/en-us_image_0000001569022957.png
diff --git a/docs/cce/umn/en-us_image_0000001244141181.png b/docs/cce/umn/en-us_image_0000001569022961.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244141181.png
rename to docs/cce/umn/en-us_image_0000001569022961.png
diff --git a/docs/cce/umn/en-us_image_0000001276433425.png b/docs/cce/umn/en-us_image_0000001569022977.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001276433425.png
rename to docs/cce/umn/en-us_image_0000001569022977.png
diff --git a/docs/cce/umn/en-us_image_0000001569023013.png b/docs/cce/umn/en-us_image_0000001569023013.png
new file mode 100644
index 00000000..ebc69763
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001569023013.png differ
diff --git a/docs/cce/umn/en-us_image_0000001569023025.png b/docs/cce/umn/en-us_image_0000001569023025.png
new file mode 100644
index 00000000..ebc69763
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001569023025.png differ
diff --git a/docs/cce/umn/en-us_image_0000001569023029.png b/docs/cce/umn/en-us_image_0000001569023029.png
new file mode 100644
index 00000000..9b7e01f2
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001569023029.png differ
diff --git a/docs/cce/umn/en-us_image_0258095884.png b/docs/cce/umn/en-us_image_0000001569023033.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0258095884.png
rename to docs/cce/umn/en-us_image_0000001569023033.png
diff --git a/docs/cce/umn/en-us_image_0000001243981117.png b/docs/cce/umn/en-us_image_0000001569023045.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243981117.png
rename to docs/cce/umn/en-us_image_0000001569023045.png
diff --git a/docs/cce/umn/en-us_image_0275452681.png b/docs/cce/umn/en-us_image_0000001569023069.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0275452681.png
rename to docs/cce/umn/en-us_image_0000001569023069.png
diff --git a/docs/cce/umn/en-us_image_0000001569023085.png b/docs/cce/umn/en-us_image_0000001569023085.png
new file mode 100644
index 00000000..ff8087ba
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001569023085.png differ
diff --git a/docs/cce/umn/en-us_image_0000001244141141.gif b/docs/cce/umn/en-us_image_0000001569182497.gif
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244141141.gif
rename to docs/cce/umn/en-us_image_0000001569182497.gif
diff --git a/docs/cce/umn/en-us_image_0000001199341250.png b/docs/cce/umn/en-us_image_0000001569182505.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199341250.png
rename to docs/cce/umn/en-us_image_0000001569182505.png
diff --git a/docs/cce/umn/en-us_image_0000001199021298.png b/docs/cce/umn/en-us_image_0000001569182513.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199021298.png
rename to docs/cce/umn/en-us_image_0000001569182513.png
diff --git a/docs/cce/umn/en-us_image_0000001244261171.png b/docs/cce/umn/en-us_image_0000001569182549.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244261171.png
rename to docs/cce/umn/en-us_image_0000001569182549.png
diff --git a/docs/cce/umn/en-us_image_0000001199501290.png b/docs/cce/umn/en-us_image_0000001569182553.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199501290.png
rename to docs/cce/umn/en-us_image_0000001569182553.png
diff --git a/docs/cce/umn/en-us_image_0000001256348238.jpg b/docs/cce/umn/en-us_image_0000001569182569.jpg
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001256348238.jpg
rename to docs/cce/umn/en-us_image_0000001569182569.jpg
diff --git a/docs/cce/umn/en-us_image_0000001225747980.png b/docs/cce/umn/en-us_image_0000001569182589.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001225747980.png
rename to docs/cce/umn/en-us_image_0000001569182589.png
diff --git a/docs/cce/umn/en-us_image_0000001199181266.png b/docs/cce/umn/en-us_image_0000001569182621.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181266.png
rename to docs/cce/umn/en-us_image_0000001569182621.png
diff --git a/docs/cce/umn/en-us_image_0000001569182625.png b/docs/cce/umn/en-us_image_0000001569182625.png
new file mode 100644
index 00000000..ebc69763
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001569182625.png differ
diff --git a/docs/cce/umn/en-us_image_0000001199181232.png b/docs/cce/umn/en-us_image_0000001569182645.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001199181232.png
rename to docs/cce/umn/en-us_image_0000001569182645.png
diff --git a/docs/cce/umn/en-us_image_0000001414561076.png b/docs/cce/umn/en-us_image_0000001569182661.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001414561076.png
rename to docs/cce/umn/en-us_image_0000001569182661.png
diff --git a/docs/cce/umn/en-us_image_0000001206876656.png b/docs/cce/umn/en-us_image_0000001569182673.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001206876656.png
rename to docs/cce/umn/en-us_image_0000001569182673.png
diff --git a/docs/cce/umn/en-us_image_0000001243981181.png b/docs/cce/umn/en-us_image_0000001569182677.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001243981181.png
rename to docs/cce/umn/en-us_image_0000001569182677.png
diff --git a/docs/cce/umn/en-us_image_0000001569182741.png b/docs/cce/umn/en-us_image_0000001569182741.png
new file mode 100644
index 00000000..ca9934b1
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001569182741.png differ
diff --git a/docs/cce/umn/en-us_image_0000001244141217.png b/docs/cce/umn/en-us_image_0000001569182773.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001244141217.png
rename to docs/cce/umn/en-us_image_0000001569182773.png
diff --git a/docs/cce/umn/en-us_image_0000001192028618.png b/docs/cce/umn/en-us_image_0000001569182781.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001192028618.png
rename to docs/cce/umn/en-us_image_0000001569182781.png
diff --git a/docs/cce/umn/en-us_image_0000001578443828.png b/docs/cce/umn/en-us_image_0000001578443828.png
new file mode 100644
index 00000000..0819970d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001578443828.png differ
diff --git a/docs/cce/umn/en-us_image_0000001579008782.png b/docs/cce/umn/en-us_image_0000001579008782.png
new file mode 100644
index 00000000..bbd7fce0
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001579008782.png differ
diff --git a/docs/cce/umn/en-us_image_0000001626725269.png b/docs/cce/umn/en-us_image_0000001626725269.png
new file mode 100644
index 00000000..6dd1e58d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001626725269.png differ
diff --git a/docs/cce/umn/en-us_image_0000001628843805.png b/docs/cce/umn/en-us_image_0000001628843805.png
new file mode 100644
index 00000000..6bc88c9b
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001628843805.png differ
diff --git a/docs/cce/umn/en-us_image_0000001629186693.png b/docs/cce/umn/en-us_image_0000001629186693.png
new file mode 100644
index 00000000..59c35f26
Binary files /dev/null and b/docs/cce/umn/en-us_image_0000001629186693.png differ
diff --git a/docs/cce/umn/en-us_image_0000001528627005.png b/docs/cce/umn/en-us_image_0000001629926113.png
similarity index 100%
rename from docs/cce/umn/en-us_image_0000001528627005.png
rename to docs/cce/umn/en-us_image_0000001629926113.png
diff --git a/docs/cce/umn/en-us_image_0091280734.png b/docs/cce/umn/en-us_image_0091280734.png
new file mode 100644
index 00000000..9f288ee7
Binary files /dev/null and b/docs/cce/umn/en-us_image_0091280734.png differ
diff --git a/docs/cce/umn/en-us_image_0091292713.png b/docs/cce/umn/en-us_image_0091292713.png
new file mode 100644
index 00000000..e76121b0
Binary files /dev/null and b/docs/cce/umn/en-us_image_0091292713.png differ
diff --git a/docs/cce/umn/en-us_image_0166039537.png b/docs/cce/umn/en-us_image_0166039537.png
new file mode 100644
index 00000000..29757269
Binary files /dev/null and b/docs/cce/umn/en-us_image_0166039537.png differ
diff --git a/docs/cce/umn/en-us_image_0259557735.png b/docs/cce/umn/en-us_image_0259557735.png
deleted file mode 100644
index f8724134..00000000
Binary files a/docs/cce/umn/en-us_image_0259557735.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0259558489.png b/docs/cce/umn/en-us_image_0259558489.png
deleted file mode 100644
index b3c70325..00000000
Binary files a/docs/cce/umn/en-us_image_0259558489.png and /dev/null differ
diff --git a/docs/cce/umn/en-us_image_0261301557.png b/docs/cce/umn/en-us_image_0261301557.png
new file mode 100644
index 00000000..35845e12
Binary files /dev/null and b/docs/cce/umn/en-us_image_0261301557.png differ
diff --git a/docs/cce/umn/en-us_image_0264626618.png b/docs/cce/umn/en-us_image_0264626618.png
new file mode 100644
index 00000000..3aa8ffe4
Binary files /dev/null and b/docs/cce/umn/en-us_image_0264626618.png differ
diff --git a/docs/cce/umn/en-us_image_0271457115.png b/docs/cce/umn/en-us_image_0271457115.png
new file mode 100644
index 00000000..0385dfad
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271457115.png differ
diff --git a/docs/cce/umn/en-us_image_0271463079.png b/docs/cce/umn/en-us_image_0271463079.png
new file mode 100644
index 00000000..ed2fe21a
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271463079.png differ
diff --git a/docs/cce/umn/en-us_image_0271466158.png b/docs/cce/umn/en-us_image_0271466158.png
new file mode 100644
index 00000000..82576d0e
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271466158.png differ
diff --git a/docs/cce/umn/en-us_image_0271466198.png b/docs/cce/umn/en-us_image_0271466198.png
new file mode 100644
index 00000000..b5d2ca2d
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271466198.png differ
diff --git a/docs/cce/umn/en-us_image_0271466320.png b/docs/cce/umn/en-us_image_0271466320.png
new file mode 100644
index 00000000..d9b35cdd
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271466320.png differ
diff --git a/docs/cce/umn/en-us_image_0271466336.png b/docs/cce/umn/en-us_image_0271466336.png
new file mode 100644
index 00000000..a84cdae8
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271466336.png differ
diff --git a/docs/cce/umn/en-us_image_0271466402.png b/docs/cce/umn/en-us_image_0271466402.png
new file mode 100644
index 00000000..5ca5f9a0
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271466402.png differ
diff --git a/docs/cce/umn/en-us_image_0271466430.png b/docs/cce/umn/en-us_image_0271466430.png
new file mode 100644
index 00000000..88ea1be7
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271466430.png differ
diff --git a/docs/cce/umn/en-us_image_0271467350.png b/docs/cce/umn/en-us_image_0271467350.png
new file mode 100644
index 00000000..245b77a5
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271467350.png differ
diff --git a/docs/cce/umn/en-us_image_0271467469.png b/docs/cce/umn/en-us_image_0271467469.png
new file mode 100644
index 00000000..4d46baa0
Binary files /dev/null and b/docs/cce/umn/en-us_image_0271467469.png differ
diff --git a/docs/cce/umn/en-us_topic_0000001550437509.html b/docs/cce/umn/en-us_topic_0000001550437509.html
new file mode 100644
index 00000000..a49ae903
--- /dev/null
+++ b/docs/cce/umn/en-us_topic_0000001550437509.html
@@ -0,0 +1,27 @@
+<a name="EN-US_TOPIC_0000001550437509"></a><a name="EN-US_TOPIC_0000001550437509"></a>
+
+
+  <h1 class="topictitle1">Service Overview</h1>
+
+  <div id="body32001227"><p id="EN-US_TOPIC_0000001550437509__en-us_topic_0000001489679804_p8060118"></p>
+</div>
+
+<div>
+<ul class="ullinks">
+<li class="ulchildlink"><strong><a href="cce_01_0091.html">What Is Cloud Container Engine?</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0003.html">Product Advantages</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0007.html">Application Scenarios</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0005.html">Notes and Constraints</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0002.html">Permissions</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0004.html">Basic Concepts</a></strong><br>
+</li>
+<li class="ulchildlink"><strong><a href="cce_productdesc_0008.html">Related Services</a></strong><br>
+</li>
+</ul>
+</div>
+