| # Copyright 2018 Intel Corporation |
| # Copyright 2018-present Open Networking Foundation |
| # |
| # SPDX-License-Identifier: Apache-2.0 |
| # SPDX-License-Identifier: LicenseRef-ONF-Member-Only-1.0 |
| |
| images: |
| tags: |
| init: docker.io/omecproject/pod-init:1.0.0 |
| hssdb: "registry.aetherproject.org/proxy/omecproject/c3po-hssdb:master-deaea91" |
| hss: "registry.aetherproject.org/proxy/omecproject/c3po-hss:master-deaea91" |
| mme: "registry.aetherproject.org/proxy/omecproject/nucleus:master-9f86f87" |
| spgwc: "registry.aetherproject.org/omecproject/spgw:master-b9ce120" |
| pcrf: "registry.aetherproject.org/proxy/omecproject/c3po-pcrf:pcrf-7824e6e" |
| pcrfdb: "registry.aetherproject.org/proxy/omecproject/c3po-pcrfdb:pcrf-7824e6e" |
| depCheck: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1 |
| pullPolicy: IfNotPresent |
| # Secrets must be manually created in the namespace. |
| pullSecrets: |
| - name: aether.registry |
| |
| nodeSelectors: |
| enabled: false |
| hss: |
| label: omec-cp |
| value: enabled |
| pcrf: |
| label: omec-cp |
| value: enabled |
| mme: |
| label: omec-cp |
| value: enabled |
| spgwc: |
| label: omec-cp |
| value: enabled |
| |
| resources: |
| enabled: true |
| pcrf: |
| requests: |
| cpu: 2 |
| memory: 1Gi |
| limits: |
| cpu: 2 |
| memory: 1Gi |
| hss: |
| requests: |
| cpu: 2 |
| memory: 1Gi |
| limits: |
| cpu: 2 |
| memory: 1Gi |
| mme: |
| # Note that MME pod is composed of 4 containers |
| # Provide resources for a container, not a pod total |
| requests: |
| cpu: 0.5 |
| memory: 1Gi |
| limits: |
| cpu: 0.5 |
| memory: 1Gi |
| spgwc: |
| requests: |
| cpu: 2 |
| memory: 5Gi |
| limits: |
| cpu: 2 |
| memory: 5Gi |
| |
| cassandra: |
| deploy: true |
| fullnameOverride: cassandra |
| image: |
| tag: 2.1.20 |
| #selector: |
| # nodeSelector: |
| # cassandra: enabled |
| persistence: |
| enabled: false |
| config: |
| #cluster_size: 1 |
| #seed_size: 1 |
| endpoint_snitch: GossipingPropertyFileSnitch |
| readinessProbe: |
| initialDelaySeconds: 10 |
| resources: {} |
| #requests: |
| # memory: 4Gi |
| # cpu: 2 |
| #limits: |
| # memory: 4Gi |
| # cpu: 2 |
| |
| config: |
| clusterDomain: cluster.local |
| coreDump: |
| enabled: true |
| path: /tmp/coredump |
| useExistingConfigMap: false |
| pcrf: |
| deploy: true |
| podAnnotations: |
| fluentbit.io/parser: pcrf |
| field.cattle.io/workloadMetrics: '[{"path":"/metrics","port":9089,"schema":"HTTP"}]' |
| pcrfdb: cassandra |
| configPort: |
| port: 8080 |
| nodePort: |
| enabled: false |
| port: 30081 |
| gx: |
| nodePort: |
| enabled: false |
| port: 33868 |
| prometheus: |
| port: 9089 |
| nodePort: |
| enabled: false |
| port: 30086 |
| # Provide the peer whitelist extension |
| # The peer name must be a fqdn. We allow also a special "*" character as the |
| # first label of the fqdn, to allow all fqdn with the same domain name. |
| # Example: *.example.net will allow host1.example.net and host2.example.net |
| acl: |
| oldTls: "*.cluster.local" |
| #ipSec: |
| bootstrap: |
| enabled: false |
| # See https://github.com/omec-project/c3po for details of config options |
| cfgFiles: |
| subscriber_mapping.json: |
| Policies: |
| service-groups: |
| internet: |
| default-activate-service: |
| - be-internet-access |
| services: |
| be-internet-access: |
| qci: 9 |
| arp: 1 |
| AMBR_UL: 1024000 |
| AMBR_DL: 10240000 |
| service-activation-rules: |
| - best-effort-internet-access |
| #activate-conditions: |
| # timer: 50 |
| #deactivate-conditions: |
| # timer: 60 |
| rules: |
| best-effort-internet-access: |
| definition: |
| Charging-Rule-Name: "best-effort-internet-access" |
| QoS-Information: |
| QoS-Class-Identifier: 9 |
| Max-Requested-Bandwidth-UL: 512000 |
| Max-Requested-Bandwidth-DL: 5120000 |
| Guaranteed-Bitrate-UL: 0 |
| Guaranteed-Bitrate-DL: 0 |
| Allocation-Retention-Priority: |
| Priority-Level: 1 |
| Pre-emption-Capability: 1 |
| Pre-emption-Vulnerability: 1 |
| Flow-Information: |
| Flow-Direction: 3 |
| Flow-Description: "permit out ip from 0.0.0.0/0 to assigned" |
| pcrf.json: |
| common: |
| fdcfg: conf/pcrf.conf |
| # Origin host and realm will be set automatically if unset |
| #originhost: "" |
| #originrealm: "" |
| pcrf: |
| gtwhost: "*" |
| gtwport: 9080 |
| #restport will be set by configmap |
| #restport: "" |
| ossport: 9082 |
| # casssrv will be set to cassandra in the same cluster if unset |
| #casssrv: "" |
| casskeyspace: vpcrf |
| casshost: "cassandra" |
| cassusr: root |
| casspwd: root |
| cassdb: vpcrf |
| casscoreconnections: 2 |
| cassmaxconnections: 8 |
| cassioqueuesize: 32768 |
| cassiothreads: 2 |
| randv: true |
| optkey: "63bfa50ee6523365ff14c1f45f88737d" |
| reloadkey: false |
| logsize: 20 |
| lognumber: 5 |
| logname: logs/pcrf.log |
| logqsize: 8192 |
| statlogsize: 20 |
| statlognumber: 5 |
| statlogname: logs/pcrf_stat.log |
| auditlogsize: 20 |
| auditlognumber: 5 |
| auditlogname: logs/pcrf_audit.log |
| statfreq: 2000 |
| numworkers: 4 |
| concurrent: 10 |
| ossfile: conf/oss.json |
| verifyroamingsubscribers: false |
| rulesfile: conf/subscriber_mapping.json |
| oss.json: |
| option: |
| id: url |
| type: string |
| services: |
| - id: logger |
| commands: |
| - id: describe_loggers |
| - id: set_logger_level |
| options: |
| - id: name |
| type: string |
| - id: level |
| type: integer |
| - id: stats |
| commands: |
| - id: describe_stats_frequency |
| - id: describe_stats_live |
| - id: set_stats_frequency |
| options: |
| - id: frequency |
| type: integer |
| hss: |
| deploy: true |
| podAnnotations: |
| fluentbit.io/parser: hss |
| field.cattle.io/workloadMetrics: '[{"path":"/metrics","port":9089,"schema":"HTTP"}]' |
| hssdb: cassandra |
| s6a: |
| nodePort: |
| enabled: false |
| port: 33868 |
| configPort: |
| port: 8080 |
| nodePort: |
| enabled: false |
| port: 30081 |
| prometheus: |
| port: 9089 |
| nodePort: |
| enabled: false |
| port: 30086 |
| # Provide the peer whitelist extension |
| # The peer name must be a fqdn. We allow also a special "*" character as the |
| # first label of the fqdn, to allow all fqdn with the same domain name. |
| # Example: *.example.net will allow host1.example.net and host2.example.net |
| acl: |
| oldTls: "*.cluster.local" |
| #ipSec: |
| bootstrap: |
| enabled: true |
| users: |
| - apn: internet |
| key: "465b5ce8b199b49faa5f0a2ee238a6bc" |
| opc: "d4416644f6154936193433dd20a0ace0" |
| sqn: 96 |
| imsiStart: "208014567891200" |
| msisdnStart: "1122334455" |
| mme_identity: mme.omec.svc.cluster.local |
| mme_realm: omec.svc.cluster.local |
| count: 10 |
| staticusers: |
| - apn: internet |
| key: "465b5ce8b199b49faa5f0a2ee238a6bc" |
| opc: "d4416644f6154936193433dd20a0ace0" |
| sqn: 96 |
| imsi: "208014567891200" |
| msisdn: "1122334455" |
| staticAddr: 0.0.0.0 |
| mme_identity: mme.omec.svc.cluster.local |
| mme_realm: omec.svc.cluster.local |
| mmes: |
| - id: 1 |
| mme_identity: mme.omec.svc.cluster.local |
| mme_realm: omec.svc.cluster.local |
| isdn: "19136246000" |
| unreachability: 1 |
| # See https://github.com/omec-project/c3po for details of config options |
| cfgFiles: |
| hss.json: |
| common: |
| fdcfg: conf/hss.conf |
| # Origin host and realm will be set automatically if unset |
| #originhost: "" |
| #originrealm: "" |
| hss: |
| gtwhost: "*" |
| gtwport: 9080 |
| #restport will be set by configmap |
| #restport: "" |
| ossport: 9082 |
| # casssrv will be set to cassandra in the same cluster if unset |
| #casssrv: "" |
| cassusr: root |
| casspwd: root |
| cassdb: vhss |
| casscoreconnections: 2 |
| cassmaxconnections: 8 |
| cassioqueuesize: 32768 |
| cassiothreads: 2 |
| randv: true |
| optkey: "63bfa50ee6523365ff14c1f45f88737d" |
| reloadkey: false |
| logsize: 20 |
| lognumber: 5 |
| logname: logs/hss.log |
| logqsize: 8192 |
| statlogsize: 20 |
| statlognumber: 5 |
| statlogname: logs/hss_stat.log |
| auditlogsize: 20 |
| auditlognumber: 5 |
| auditlogname: logs/hss_audit.log |
| statfreq: 2000 |
| numworkers: 4 |
| concurrent: 10 |
| ossfile: conf/oss.json |
| verifyroamingsubscribers: false |
| oss.json: |
| option: |
| id: url |
| type: string |
| services: |
| - id: logger |
| commands: |
| - id: describe_loggers |
| - id: set_logger_level |
| options: |
| - id: name |
| type: string |
| - id: level |
| type: integer |
| - id: stats |
| commands: |
| - id: describe_stats_frequency |
| - id: describe_stats_live |
| - id: set_stats_frequency |
| options: |
| - id: frequency |
| type: integer |
| mme: |
| deploy: true |
| podAnnotations: |
| fluentbit.io/parser: mme |
| field.cattle.io/workloadMetrics: '[{"path":"/metrics","port":3081,"schema":"HTTP"}]' |
| spgwAddr: spgwc |
| s11: |
| nodePort: |
| enabled: false |
| port: 32124 |
| s6a: |
| nodePort: |
| enabled: false |
| port: 33869 |
| prometheus: |
| port: 3081 |
| nodePort: |
| enabled: false |
| port: 30085 |
| # See https://github.com/omec-project/openmme/blob/master/README.txt for more config options |
| cfgFiles: |
| config.json: |
| mme: |
| name: vmmestandalone |
| group_id: 1 |
| code: 1 |
| logging: debug |
| mcc: |
| dig1: 2 |
| dig2: 0 |
| dig3: 8 |
| mnc: |
| dig1: 0 |
| dig2: 1 |
| dig3: -1 |
| plmnlist: |
| #plmn1 is aether common plmn, plmn2 is for aether-in-a-box |
| plmn1: "mcc=315,mnc=010" |
| plmn2: "mcc=208,mnc=01" |
| apnlist: |
| internet: "spgwc" |
| feature_list: |
| dcnr_support: "disabled" |
| security: |
| #int_alg_list: "[EIA0]" |
| int_alg_list: "[EIA1, EIA2, EIA0]" |
| sec_alg_list: "[EEA0, EEA1, EEA2]" |
| s1ap: |
| sctp_port: 36412 |
| sctp_port_external: 36412 |
| s11: |
| egtp_default_port: 2123 |
| # sgw_addr and pgw_addr will be set dynamically if unset |
| #sgw_addr: |
| #pgw_addr: |
| s6a: |
| host_type: freediameter |
| # host and realm will be set dynamically if unset |
| #host: |
| #realm: |
| spgwc: |
| deploy: true |
| managedByRoc: |
| enabled: false |
| syncUrl: "" |
| podAnnotations: |
| fluentbit.io/parser: spgwc |
| field.cattle.io/workloadMetrics: '[{"path":"/metrics","port":9089,"schema":"HTTP"}]' |
| s11: |
| port: 2123 |
| nodePort: |
| enabled: false |
| port: 32123 |
| n4: |
| port: 8805 |
| nodePort: |
| enabled: false |
| port: 30021 |
| prometheus: |
| port: 9089 |
| nodePort: |
| enabled: false |
| port: 30084 |
| rest: |
| port: 8080 |
| nodePort: |
| enabled: false |
| port: 30080 |
| cfgFiles: |
| cp.json: |
| global: |
| transmitTimerSec: 2 |
| periodicTimerSec: 10 |
| transmitCount: 5 |
| requestTimeoutMilliSec: 5000 |
| requestTries: 3 |
| gxConfig: 0 |
| urrConfig: 0 |
| loggingLevel: "LOG_DEBUG" |
| heartbeatFailure: false |
| #DNS Server - 3gpp compliant DNS server |
| dns: |
| cache: |
| concurrent: 25 |
| percentage: 80 |
| intervalSec: 60 |
| queryTimeoutMilliSec: 1000 |
| queryTries: 1 |
| app: |
| frequencySec: 3 |
| filename: "appqueries.json" |
| nameserver: "127.0.0.1" |
| ops: |
| frequencySec: 3 |
| filename: "opsqueries.json" |
| nameserver: "127.0.0.1" |
| ip_pool_config: |
| ueIpPool: |
| ip: "10.250.0.0" |
| mask: "255.255.0.0" |
| staticUeIpPool: |
| ip: "10.249.1.0" |
| mask: "255.255.255.0" |
| config.json: |
| gx: |
| host_type: freediameter |
| # host and realm will be set dynamically if unset |
| #host: |
| #realm: |
| subscriber_mapping.json: |
| subscriber-selection-rules: |
| - priority: 5 |
| keys: |
| serving-plmn: |
| mcc: 208 |
| mnc: 10 |
| tac: 1 |
| imsi-range: |
| from: 200000000000000 |
| to: 299999999999999 |
| selected-apn-profile: apn-profile1 |
| selected-qos-profile: qos-profile1 |
| selected-access-profile: |
| - access-all |
| selected-user-plane-profile: user-plane1 |
| - priority: 10 |
| keys: |
| match-all: true |
| selected-apn-profile: apn-profile1 |
| selected-qos-profile: qos-profile1 |
| selected-access-profile: |
| - access-all |
| selected-user-plane-profile: user-plane1 |
| apn-profiles: |
| apn-profile1: |
| apn-name: internet |
| usage: 1 |
| network: lbo |
| gx_enabled: true |
| dns_primary: 8.8.8.4 |
| dns_secondary: 8.8.8.8 |
| mtu: 1460 |
| user-plane-profiles: |
| user-plane1: |
| user-plane: upf |
| global-address: true |
| qos-tags: |
| tag1: BW |
| access-tags: |
| tag1: ACC |
| qos-profiles: |
| mobile: |
| qci: 9 |
| arp: 1 |
| apn-ambr: |
| - 12345678 |
| - 12345678 |
| access-profiles: |
| access-all: |
| type: allow-all |
| internet-only: |
| type: internet-only |
| filter: No_private_network |
| intranet-only: |
| type: intranet-only |
| filter: only_private_network |
| apps-only: |
| type: specific-network |
| filter: only_apps_network |
| specific-app: |
| type: specific-destination-only |
| filter: allow-app-name |
| excluding-app: |
| type: excluding-this-app |
| filter: exclude-app-name |