D SCP Traffic IP Flow
This section describes the Internet Protocol (IP) flow between the IP services.
Table D-1 SCP Traffic IP Flow of SCP-Worker (SCP Data Plane)
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| Peer 5G Network Function | F5 Service Proxy | 8000/9443 | Load Balancer | External | IPv4 | Yes |
| F5 Service Proxy | SCP-W Pods | 8080 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Subscription | SCP-W Pods (Service fqdn) | 8000/8080 | Service Port or Container Target Port | Internal | IPv4 | Yes |
| SCPC-Audit | SCP-W Pods (Service fqdn) | 8000/8080 | Service Port or Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCP-W Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Worker | Peer 5G NF | Peer NF port | Load balancer port | External | IPv4 | Yes |
| Kubelet (readiness) | SCP-W Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (liveness) | SCP-W Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Configuration | SCP-W Pods (Service fqdn) | 8080 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Worker Coherence | SCP-Worker/SCP-Cache Coherence | 8095/8096 | Container Target Port | Internal | IPv4 | No |
| Operator/User | SCP Worker Coherence Mgmt | 9000/30000 | Service Port or Container Target Port | Internal | IPv4 | Yes |
| SCP-Worker | SCP-Nrfproxy | 8086 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Nrfproxy | SCP-Worker | 8000 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Worker | scp-mediation | 9090/30081 | Service Port or Container Target Port | Internal | IPv4 | No |
| SCP-Worker | scp-nrfproxy-oauth | 8040 | Container target port | Internal | IPv4 | Yes |
| SCP-Worker | SCPC-Configuration | 8092 | Container target port | Internal | IPv4 | No |
| SCP-Worker | SCPC-Notification | 8092 | Container target port | Internal | IPv4 | No |
| SCP-Worker | SCPC-Audit | 8092 | Container target port | Internal | IPv4 | No |
Table D-2 SCP Traffic IP Flow SCP Control plane SCPC- Configuration
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| Operator/User | F5 Service Proxy | 443 | Load Balance Port | External | IPv4 | Yes |
| F5 Service Proxy | CNCC Ingress API GW Pods | 8081 | Container Target Port | Internal | IPv4 | Yes |
| CNCC | SCP Configuration Pod | 8081/8081 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCPC-Config Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (readiness) | SCPC-Config Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Configuration | Kubenetes API server | API Server Port | Kube API Server Ports | Infrastructure | IPv4 | Yes |
| SCPC-Configuration | DB service | 3306 | Container Target Port | External | IPv4 | Yes |
| SCPC-Configuration | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
| SCPC-Configuration | SCPC-Alternate-Resolution | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-3 SCP Traffic IP Flow SCP Control plane SCPC- Subscription
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| SCPC-Subscription | SCP-W Pods (Service fqdn) | 8000/8080 | Service Port / Container Target Port | Internal | IPv4 | Yes |
| SCPC-Subscription | Kubenetes API server | API Server Port | Kube API Server Ports | Infrastructure | IPv4 | Yes |
| SCPC-Subscription | DB service | 3306 | Container Target Port | External | IPv4 | Yes |
| Prometheus | SCPC-Subscription Pod | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (readiness) | SCPC-Subscription Pod | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Configuration | SCPC-Subscription Pod | 8080 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Subscription | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-4 SCP Control plane SCPC- Notification
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| NRF | F5 Service Proxy (SCP -Worker svc) | 8000 | Load Balancer | External | IPv4 | Yes |
| F5 Service Proxy (SCP-Worker svc) | SCP-W Pods | 8080 | Container Target Port | Internal | IPv4 | Yes |
| SCP-W Pods | SCP-Notificaton Service/Pods | 8082/8082 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| SCPC-Configuration | SCP-Notificaton Service/Pods | 8082/8082 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| SCPC-Audit | SCP-Notificaton Service/Pods | 8082/8082 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCP-Notificaton Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (readiness) | SCP-Notificaton Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Notification | Kubenetes API server | API Server Port | Kube API Server Ports | Infrastructure | IPv4 | Yes |
| SCPC-Notification | DB service | 3306 | Container Target Port | External | IPv4 | Yes |
| SCPC-Configuration | SCP-Notificaton | 8082 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Notification Coherence | SCPC-Notification/SCP-Cache Coherence | 8095/8096 | Container Target Port | Internal | IPv4 | No |
| SCPC-Notification | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-5 SCP Control plane SCPC-Audit
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| SCPC-Configuration | SCP Audit Service/Pods | 8083/8083 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| SCPC-Audit | SCP-W Pods (Service fqdn) | 8000/8080 | service Port/Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCPC-Audit Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (readiness) | SCPC-Audit Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Audit | Kubenetes API server | API Server Port | Kube API Server Ports | Infrastructure | IPv4 | Yes |
| SCPC-Audit | DB service | 3306 | Container Target Port | External | IPv4 | Yes |
| SCPC-Alternate-Resolution | SCP Audit Service/Pods | 8083/8083 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| SCPC-Audit | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
| SCPC-Audit | SCPC-Notification | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-6 SCP Control plane SCPC-Alternate- Resolution
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| SCPC-Configuration | SCPC-Alternate-Resolution Service/Pods | 8084/8084 | Internal Service Port / Container target port | Internal | IPv4 | Yes |
| SCPC-Notification | SCPC-Alternate-Resolution Service/Pods | 8084/8084 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| SCPC-Audit | SCPC-Alternate-Resolution Service/Pods | 8084/8084 | Internal Service Port / Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCPC-Alternate-Resolution Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (readiness) | SCPC-Alternate-Resolution Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCPC-Alternate-Resolution | DB service | 3306 | Container Target Port | Infrastructure | IPv4 | Yes |
| SCPC-Alternate-Resolution | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-7 SCP-Cache (SCP Data Plane)
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| SCPC-Configuration | SCP-Cache Service/Pods | 8010/8010 | Service Port / Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCP-Cache Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (readiness) | SCP-Cache Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Cache Coherence | SCP-Worker/SCP-Cache Coherence | 8095/8096 | Container Target Port | Internal | IPv4 | Yes |
| Operator/User | SCP Cache Coherence Mgmt | 9000/30000 | Service Port / Container Target Port | Internal | IPv4 | Yes |
| SCP-Cache Coherence Federation | SCP Cache Coherence Federation | 30001/30001 | Service Port / Container Target Port | External | IPv4 | Yes |
| SCP-Cache | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-8 SCP-Nrfproxy (SCP Data Plane)
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| SCP-Nrfproxy | SCPC-Configuration | 8081 | Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCP-Nrfpfoxy Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| Kubelet (readiness) | SCP-Nrfproxy Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Nrfporxy | DB service | 3306 | Container Target Port | Infrastructure | IPv4 | Yes |
| SCP-Worker | SCP-Nrfproxy | 8086 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Nrfproxy | SCP-Worker | 8000 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Nrfproxy | SCP-Worker-int | 8092 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Nrfproxy | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-9 SCP-Mediation and SCP-Data Director (SCP Data Plane)
| Flow Description | Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|---|
| SCP-Mediation(SCP Data plane) | SCP-Worker | SCP-Mediation | 9090/30081 | Service Port / Container Target Port | Internal | IPv4 | No |
| SCP-Data Director(SCP Data plane) | SCP-Worker | OCNADD | OCNADD Port | Service Port / Container Target Port | External | IPv4 | No |
Table D-10 SCP-load-manager
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| scp-worker coherence | SCP-Worker/scp-load-manager coherence | 8095/8096 | Container Target Port | Internal | IPv4 | No |
| scp-load-manager | SCPC-Notification | 8082 | Container Target Port | Internal | IPv4 | Yes |
| scp-load-manager | SCPC-Configuration | 8081 | Container Target Port | Internal | IPv4 | Yes |
| scp-load-manager | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
| scp-load-manager | SCPC-Notification | 8092 | Container Target Port | Internal | IPv4 | No |
Table D-11 SCP-Nrfproxy-Oauth (SCP Data Plane)
| Source Node | Destination Node | Destination Port | Type of Port | Nature of Port | IP Protocol Version | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|---|---|---|
| SCP-Nrfproxy-Oauth | SCPC-Configuration | 8081 | Container Target Port | Internal | IPv4 | Yes |
| Prometheus | SCP-Nrfproxy-Oauth Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| kubelet (readiness) | SCP-Nrfproxy-Oauth Pods | 8091 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Worker | SCP-Nrfproxy-Oauth | 8040 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Nrfproxy-Oauth | SCP-Worker-int | 8092 | Container Target Port | Internal | IPv4 | Yes |
| SCP-Nrfproxy-Oauth | coherence | 8095/8096 | Container Target Port | Internal | IPv4 | No |
| SCP-Nrfproxy-Oauth | SCPC-Configuration | 8092 | Container Target Port | Internal | IPv4 | No |
SCP Microservices Port Information
The following table lists the port used by SCP microservices.
Table D-12 SCP Microservices Port Information
| Service | Application Container Listen Port | Type of Port | Service Mesh Included(No means excluded from SM) |
|---|---|---|---|
| SCP-Worker (SCP Data plane) | 8080 | Container Target Port | Yes |
| 8091 | Container Target Port | Yes | |
| 8095/8096 | Container Target Port | No | |
| 9000/30000 | Service Port/Container Target Port | Yes | |
| 9443 | Container Target Port | No | |
| scp-worker-int | 8092 | Container Target Port | No |
| SCP Control plane SCPC-Configuration | 8081 | Internal Service Port / Container Target Port | Yes |
| 8091 | Container Target Port | Yes | |
| scpc-configuration-int | 8092 | Container Target Port | No |
| SCP Control plane SCPC-Subscription | 8091 | Container Target Port | Yes |
| 8080 | Container Target Port | Yes | |
| SCP Control plane SCPC-Notification | 8082 | Container Target Port | Yes |
| 8091 | Container Target Port | Yes | |
| scpc-notification-int | 8092 | Container Target Port | No |
| SCP Control plane SCPC-Audit | 8083 | Container Target Port | Yes |
| 8091 | Container Target Port | Yes | |
| scpc-audit-int | 8092 | Container Target Port | No |
| SCP Control plane SCPC-Alternate-Resolution | 8084 | Container Target Port | Yes |
| 8091 | Container Target Port | Yes | |
| scpc-alternate-resolution-int | 8092 | Container Target Port | No |
| SCP-Cache (SCP Data plane) | 8010 | Container Target Port | Yes |
| 8091 | Container Target Port | Yes | |
| 8095/8096 | Container Target Port | No | |
| 9000/30000 | Service Port / Container Target Port | Yes | |
| SCP-Nrfproxy (SCP Data plane) | 8086 | Container Target Port | Yes |
| 8091 | Container Target Port | Yes | |
| SCP-Mediation(SCP Data Plane) | 9090/30081 | Service Port/Container Target Port | No |
| SCP-Load-Manager (SCP Data plane) | 8091 | Container Target Port | Yes |
| 8095/8096 | Container Target Port | No | |
| 9000/30000 | Service Port/Container Target Port | Yes | |
| SCP-Nrfproxy-Oauth (SCP Data plane) | 8081 | container target Port | Yes |
| 8091 | container target Port | Yes | |
| 8091 | container target Port | Yes | |
| 8040 | container target Port | Yes | |
| 8000 | container target Port | Yes | |
| 8095/8096 | container target Port | No |