Resource Item | Quota |
Number of members that resources can be shared with | 20 |
Number of resources that can be shared each time | 10 |
Number of times that a resource can be shared | 10 |
Role | When Subnet Resources Are Shared | When Subnet Resources Are Not Shared | After Sharing Is Exited |
Resource owner | They can use and manage all resources under the VPC, such as Direct Connect gateways, VPN Gateway, NAT Gateway, CCN, ACLs, and route tables. They cannot modify or delete resources created by resource users, such as CVM, TencentDB, and CLB. | They can use and manage all resources under the VPC. | Resources are no longer shared and all associated subnets are disassociated. |
Resource user | They can use existing VPC resources but cannot create or modify them (for example, CVM instances can use the VPC's existing NAT gateways to access the public network, but cannot create one). They can create resources under the shared subnet, such as CVM, TencentDB, and CLB. They cannot view or use resources created by other resource users. | They can still use the resources they've created but cannot create resources in the subnet. They cannot use the existing resources under the VPC. | All subnet resources are no longer shared. |
Network Resource | Resource User | Resource Owner |
VPC | They can only view the VPC of the shared subnet. | They have all the operation permissions but cannot delete a VPC with shared resources. |
Subnet | They can only view the shared subnet. | They have all the operation permissions but cannot delete a subnet that is shared with other users. |
Route table | They can only view the route table bound to the shared subnet and the routing policy of that table. | They have all the operation permissions. |
Network ACL | They can view the ACL bound to the shared subnet. | They have all the operation permissions. |
CCN | They have no operation permissions. | They have all the operation permissions. All VPC resources (including those created by the resource owners/users) can communicate with other VPCs/IDCs over CCN. |
VPN Gateway | They have no operation permissions. | They have all the operation permissions. All VPC resources (including those created by the resource owners/users) can communicate with other IDCs through a VPN gateway. |
NAT gateway | They have no operation permissions. | They have all the operation permissions. All VPC resources (including those created by the resource owners/users) can access the internet through a NAT gateway. |
Direct Connect gateway | They have no operation permissions. | They have all the operation permissions. All VPC resources (including those created by the resource owners/users) can communicate with other IDCs through the Direct Connect gateway. |
Was this page helpful?