CreateCenChildInstanceRouteEntryToCen - Cloud Enterprise Network

Operation description

By default, the CreateCenChildInstanceRouteEntryToCen operation is unavailable. To call this operation,submit a ticket.
You cannot add a route entry to an Enterprise Edition transit router by calling the CreateCenChildInstanceRouteEntryToCen operation.
By default, the next hop of the route entry is the regional gateway of the Cloud Enterprise Network (CEN) instance. You cannot modify the next hop.

The table below describes the authorization required to call this API. You can define it in a RAM policy. The table's columns are detailed below:

Action: The actions can be used in the Action element of RAM permission policy statements to grant permissions to perform the operation.
API: The API that you can call to perform the action.
Access level: The predefined level of access granted for each API. Valid values: create, list, get, update, and delete.
Resource type: The type of the resource that support authorization to perform the action. It indicates if the action supports resource-level permission. The specified resource must be compatible with the action. Otherwise, the policy will be ineffective.
- For APIs with resource-level permissions, required resource types are marked with an asterisk (*). Specify the corresponding ARN in the Resource element of the policy.
- For APIs without resource-level permissions, it is shown as All Resources. Use an asterisk (*) in the Resource element of the policy.
Condition key: The condition keys defined by the service. The key allows for granular control, applying to either actions alone or actions associated with specific resources. In addition to service-specific condition keys, Alibaba Cloud provides a set of common condition keys applicable across all RAM-supported services. For more information, see Common condition keys.
Dependent action: The dependent actions required to run the action. To complete the action, the RAM user or the RAM role must have the permissions to perform all dependent actions.

Action

Access level

Resource type

Condition key

Dependent action

cen:CreateCenChildInstanceRouteEntryToCen

create

*CenInstance

acs:cen:*:{#accountId}:ceninstance/{#ceninstanceId}

None

Parameter	Type	Required	Description	Example
CenId	string	Yes	The ID of the CEN instance.	cen-7febra5nqj7jjh****
ChildInstanceId	string	Yes	The ID of the network instance.	vpc-k1alm2jbuwibhxtx2****
ChildInstanceType	string	Yes	The type of the network instance. Valid values: VPC: a virtual private cloud (VPC) VBR: a virtual border router (VBR)	VPC
ChildInstanceRegionId	string	Yes	The ID of the region where the network instance is deployed. You can call the DescribeRegions operation to query the most recent region list.	ap-southeast-5
ChildInstanceAliUid	integer	No	The ID of the Alibaba Cloud account to which the network instance belongs. Note If the network instance belongs to another Alibaba Cloud account, this parameter is required.	1787100000000000
RouteTableId	string	Yes	The ID of the route table configured on the network instance.	vtb-k1aa8ulqs39f86op8****
DestinationCidrBlock	string	Yes	The destination CIDR block of the route. Specify the value of this parameter in CIDR notation. Example: 192.168.10.0/24.	192.168.22.0/24

Success response

JSON format

{
  "RequestId": "437ED236-BE47-5370-8695-15C58C7A8014"
}

HTTP status code	Error code	Error message	Description
400	OperationFailed.TransitRouterType	The specified TransitRouterType does not support the operation.	The error message returned because this operation is not supported by the specified type of transit router.
400	InvalidParameter	Invalid parameter.	The error message returned because the parameter is set to an invalid value.
400	Unauthorized	The AccessKeyId is unauthorized.	The error message returned because you do not have the permissions to perform this operation.

See Error Codes for a complete list.

See Release Notes for a complete list.