A transit router (TR) can connect to virtual private cloud (VPC) instances, virtual border router (VBR) instances, IPsec-VPN connections, and Cloud Connect Network (CCN) instances. This lets you establish network connectivity between VPCs, across regions, and between cloud and on-premises environments. A TR also supports various routing control features, such as custom route tables, custom route entries, and routing policies, that let you customize network connectivity. The Cloud Enterprise Network (CEN) console provides a visual interface for monitoring and O&M. This helps you quickly understand the status of your entire network and improves O&M efficiency. This topic describes the features of CEN.
Feature summary
The following table summarizes the features of Cloud Enterprise Network (CEN) and indicates which features are supported by different editions of transit routers.
The 
icon indicates that the feature is supported. The 
icon indicates that the feature is not supported.
Category | Feature | Basic Edition | Enterprise Edition |
Connect to virtual private cloud (VPC) instances |
|
| |
Connect to virtual border router (VBR) instances |
|
| |
Connect to Cloud Connect Network (CCN) instances Note Regions where CCN is deployed support only Basic Edition transit routers. |
|
| |
Connect to IPsec-VPN connections |
|
| |
Connect to transit router instances |
|
| |
Bandwidth plans |
|
| |
Inter-region connections |
|
| |
Bandwidth multiplexing |
|
| |
Traffic rerouting |
|
| |
Custom route tables |
|
| |
Custom route entries |
|
| |
Associated Forwarding |
|
| |
Route learning |
|
| |
Prefix lists |
|
| |
Route synchronization |
|
| |
Route aggregation |
|
| |
Routing policies |
|
| |
Cross-region ECMP routing for VBRs |
|
| |
Access Alibaba Cloud services |
|
| |
Access PrivateZone |
|
| |
Create and manage multicast networks |
|
| |
Monitor bandwidth plans |
|
| |
Monitor inter-region connections |
|
| |
Monitor Express Connect circuits |
|
| |
Monitor network instance connections |
|
| |
Health checks |
|
| |
Flow logs |
|
| |
Transit router diagnostics |
|
| |
Path analysis |
|
|
Connect network instances
Connect to VPC instances
You can connect VPC instances to a transit router to enable private communication between them. For more information, see Create a VPC connection.
Connect to VBR instances
You can connect VBR instances to a transit router to enable private communication between them. For more information, see Create a VBR connection.
Connect to CCN instances
You can connect CCN instances to a transit router to enable private communication between them. For more information, see Create a CCN connection.
Connect to IPsec-VPN connections
You can connect a data center to a transit router over an IPsec-VPN connection. This allows the data center to communicate with other networks through the transit router. For more information, see Create a VPN connection.
Inter-region management
Inter-region connections
An inter-region connection connects transit router instances in different regions to enable communication between resources in those regions. For more information, see Inter-region connections.
Bandwidth multiplexing
The bandwidth multiplexing feature allows a CCN transit router and an Enterprise Edition transit router in the same region to share an inter-region bandwidth plan. This improves bandwidth utilization flexibility. For more information, see Bandwidth multiplexing for CCN.
Traffic rerouting
The traffic rerouting feature lets you mark cross-region traffic and apply bandwidth limits to different types of traffic based on the marks. This ensures sufficient bandwidth for various services and improves overall network efficiency. For more information, see Use traffic rerouting to control cross-region bandwidth for different types of traffic.
Route management
Custom route tables
A custom route table is similar to a Virtual Routing and Forwarding (VRF) instance on a traditional router. It is completely isolated from the default route table of an Enterprise Edition transit router. You can associate network instances with custom route tables to isolate traffic. For more information, see Custom route tables.
Route learning
Route learning controls how routes are advertised from network instances. After you enable route learning between a network instance connection and a route table of an Enterprise Edition transit router, the routes from the network instance are advertised to the route table. For more information, see Route learning.
Route association
Route association controls how traffic from a network instance is forwarded. After a route association is created between a network instance connection and a route table of an Enterprise Edition transit router, the transit router forwards traffic from the network instance by looking up routes in that route table. For more information, see Route association.
Custom route entries
An Enterprise Edition transit router supports static routes and blackhole routes. You can add custom route entries to a route table of an Enterprise Edition transit router to control traffic forwarding for network instances. For more information, see Custom route entries.
Prefix lists
A route table of an Enterprise Edition transit router can be associated with a prefix list of a VPC. After the association is created, the system automatically adds routes that point to all CIDR blocks in the prefix list to the route table of the transit router. For more information, see Prefix lists.
Route synchronization
You can use the route synchronization feature to control how an Enterprise Edition transit router advertises routes from its route tables to associated network instances. For more information, see Route synchronization.
Route aggregation
Multiple specific routes in the route table of an Enterprise Edition transit router can be merged into a single aggregate route. If route synchronization is enabled for a VPC instance, the system advertises the aggregate route to the VPC instance by default, instead of the specific routes. For more information, see Route aggregation.
Routing policies
Routing policies control how routes are advertised from a transit router route table. You can use a routing policy to decide whether to advertise routes from the route table to network instances or to transit routers in other regions. For more information, see Routing policies.
Cross-region ECMP routing for VBRs
After you enable cross-region Equal-Cost Multi-Path (ECMP) routing for VBRs, if an Enterprise Edition transit router learns routes with the same destination CIDR block from multiple VBR instances, these routes can form an ECMP route to forward traffic concurrently. For more information, see Cross-region ECMP routing for VBRs.
Cloud service management
PrivateZone
PrivateZone is a private domain name resolution and management service based on the VPC environment. After VBR and CCN instances are connected to a transit router, their associated on-premises networks can access PrivateZone through the transit router. For more information, see Configure access to PrivateZone.
Alibaba Cloud services
After VBR and CCN instances are connected to a transit router, their associated on-premises networks can access Alibaba Cloud services through the transit router. For more information, see Configure access to Alibaba Cloud services.
Multicast management
Create and manage multicast networks
After you connect network instances to an Enterprise Edition transit router, you can create and manage a multicast network. The transit router acts as a multicast router to forward multicast traffic between the network instances. For more information, see Multicast management.
Monitoring and O&M
Monitor CEN resources
CEN provides a unified monitoring page. You can view monitoring charts for transit router instances, bandwidth plans, inter-region connections, Express Connect circuits associated with VBR instances, and traffic from network instances connected to the transit router. For more information, see Monitor CEN resources.
Health checks
A VBR instance connects to a data center through an Express Connect circuit. After you connect the VBR instance to a transit router, you can use the health check feature to monitor the connectivity of the Express Connect circuit. For more information, see Configure health checks for a VBR.
Flow logs
Flow logs capture information about cross-region traffic between transit routers and traffic over VBR connections. You can use the captured traffic information to analyze bandwidth usage and troubleshoot network issues. For more information, see Flow logs.
Transit router diagnostics
CEN is integrated with Network Intelligence Service (NIS). NIS can diagnose transit router instances and provide suggestions to fix detected issues. For more information, see Diagnose a transit router instance.
Path analysis
CEN is integrated with Network Intelligence Service (NIS), which supports path analysis. You can use path analysis to diagnose the network connectivity between resources. For more information, see Use path analysis.